aws-sdk-ec2 1.409.0 → 1.410.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 4a79ccac49b51b8378239a2bb7d20dcdd1b374ec35da225c643fab27dbfc59e8
-  data.tar.gz: 64d0388f5977d642059a02f0cd2ee7cca8cb0446aae09e35400eb06f621e4fa2
+  metadata.gz: '09d342cb4393dbfea5ca3d62fb71da42130c8c9f3736f4bf82d4972c865843fa'
+  data.tar.gz: 04c3120ac172a4ce2298ec9897b05c2168dc02b4a1b059b8e7df4bcf5eae295d
 SHA512:
-  metadata.gz: de18098f37dd80418d44b95f380971d408d6c7c809f2be8d1ba2808d83f9c77d1e275c9d0a8771a09e9a03a708ebe9e34d4cee7225a7cc345333713ae7a58107
-  data.tar.gz: 115f0c635fcb911a374bd0011557b3684652ba108fbdd6706fe752374f93cc6c04507d14eb593806ceb1d625d4f6977f4a5265c4fdb049bed6a624f13aecdd6a
+  metadata.gz: 6afa3eb2318b54a1a797f81be5429cc50773b8ea4b4133b5005c831d71cbcec838614bbc5c2d4a73a13f4dd783bbcd7e9174d4012e2f0bd783cbf2be17ca5967
+  data.tar.gz: 49869c32c85505a5a814494348746fbe9d6cedcd55f491f1d83698a50a8dca277f0a085c80dad526afbc85f47e03b56e8fc97a6240ff0f2376c140a2695f5d18

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.410.0 (2023-09-28)
+------------------
+
+* Feature - Adds support for Customer Managed Key encryption for Amazon Verified Access resources
+
 1.409.0 (2023-09-27)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.409.0
+1.410.0

data/lib/aws-sdk-ec2/client.rb

@@ -2882,6 +2882,8 @@ module Aws::EC2
     #   resp.verified_access_trust_provider.tags #=> Array
     #   resp.verified_access_trust_provider.tags[0].key #=> String
     #   resp.verified_access_trust_provider.tags[0].value #=> String
+    #   resp.verified_access_trust_provider.sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.verified_access_trust_provider.sse_specification.kms_key_arn #=> String
     #   resp.verified_access_instance.verified_access_instance_id #=> String
     #   resp.verified_access_instance.description #=> String
     #   resp.verified_access_instance.verified_access_trust_providers #=> Array
@@ -13343,6 +13345,9 @@ module Aws::EC2
     #   If you have the required permissions, the error response is
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #
+    # @option params [Types::VerifiedAccessSseSpecificationRequest] :sse_specification
+    #   Options for server side encryption.
+    #
     # @return [Types::CreateVerifiedAccessEndpointResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreateVerifiedAccessEndpointResult#verified_access_endpoint #verified_access_endpoint} => Types::VerifiedAccessEndpoint
@@ -13383,6 +13388,10 @@ module Aws::EC2
     #     ],
     #     client_token: "String",
     #     dry_run: false,
+    #     sse_specification: {
+    #       customer_managed_key_enabled: false,
+    #       kms_key_arn: "KmsKeyArn",
+    #     },
     #   })
     #
     # @example Response structure
@@ -13415,6 +13424,8 @@ module Aws::EC2
     #   resp.verified_access_endpoint.tags #=> Array
     #   resp.verified_access_endpoint.tags[0].key #=> String
     #   resp.verified_access_endpoint.tags[0].value #=> String
+    #   resp.verified_access_endpoint.sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.verified_access_endpoint.sse_specification.kms_key_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/CreateVerifiedAccessEndpoint AWS API Documentation
     #
@@ -13462,6 +13473,9 @@ module Aws::EC2
     #   If you have the required permissions, the error response is
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #
+    # @option params [Types::VerifiedAccessSseSpecificationRequest] :sse_specification
+    #   Options for server side encryption.
+    #
     # @return [Types::CreateVerifiedAccessGroupResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreateVerifiedAccessGroupResult#verified_access_group #verified_access_group} => Types::VerifiedAccessGroup
@@ -13485,6 +13499,10 @@ module Aws::EC2
     #     ],
     #     client_token: "String",
     #     dry_run: false,
+    #     sse_specification: {
+    #       customer_managed_key_enabled: false,
+    #       kms_key_arn: "KmsKeyArn",
+    #     },
     #   })
     #
     # @example Response structure
@@ -13500,6 +13518,8 @@ module Aws::EC2
     #   resp.verified_access_group.tags #=> Array
     #   resp.verified_access_group.tags[0].key #=> String
     #   resp.verified_access_group.tags[0].value #=> String
+    #   resp.verified_access_group.sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.verified_access_group.sse_specification.kms_key_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/CreateVerifiedAccessGroup AWS API Documentation
     #
@@ -13539,8 +13559,8 @@ module Aws::EC2
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #
     # @option params [Boolean] :fips_enabled
-    #   Choose to enable or disable support for Federal Information Processing
-    #   Standards (FIPS) on the instance.
+    #   Enable or disable support for Federal Information Processing Standards
+    #   (FIPS) on the instance.
     #
     # @return [Types::CreateVerifiedAccessInstanceResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -13644,6 +13664,9 @@ module Aws::EC2
     #   If you have the required permissions, the error response is
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #
+    # @option params [Types::VerifiedAccessSseSpecificationRequest] :sse_specification
+    #   Options for server side encryption.
+    #
     # @return [Types::CreateVerifiedAccessTrustProviderResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreateVerifiedAccessTrustProviderResult#verified_access_trust_provider #verified_access_trust_provider} => Types::VerifiedAccessTrustProvider
@@ -13681,6 +13704,10 @@ module Aws::EC2
     #     ],
     #     client_token: "String",
     #     dry_run: false,
+    #     sse_specification: {
+    #       customer_managed_key_enabled: false,
+    #       kms_key_arn: "KmsKeyArn",
+    #     },
     #   })
     #
     # @example Response structure
@@ -13704,6 +13731,8 @@ module Aws::EC2
     #   resp.verified_access_trust_provider.tags #=> Array
     #   resp.verified_access_trust_provider.tags[0].key #=> String
     #   resp.verified_access_trust_provider.tags[0].value #=> String
+    #   resp.verified_access_trust_provider.sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.verified_access_trust_provider.sse_specification.kms_key_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/CreateVerifiedAccessTrustProvider AWS API Documentation
     #
@@ -18062,6 +18091,8 @@ module Aws::EC2
     #   resp.verified_access_endpoint.tags #=> Array
     #   resp.verified_access_endpoint.tags[0].key #=> String
     #   resp.verified_access_endpoint.tags[0].value #=> String
+    #   resp.verified_access_endpoint.sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.verified_access_endpoint.sse_specification.kms_key_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DeleteVerifiedAccessEndpoint AWS API Documentation
     #
@@ -18120,6 +18151,8 @@ module Aws::EC2
     #   resp.verified_access_group.tags #=> Array
     #   resp.verified_access_group.tags[0].key #=> String
     #   resp.verified_access_group.tags[0].value #=> String
+    #   resp.verified_access_group.sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.verified_access_group.sse_specification.kms_key_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DeleteVerifiedAccessGroup AWS API Documentation
     #
@@ -18247,6 +18280,8 @@ module Aws::EC2
     #   resp.verified_access_trust_provider.tags #=> Array
     #   resp.verified_access_trust_provider.tags[0].key #=> String
     #   resp.verified_access_trust_provider.tags[0].value #=> String
+    #   resp.verified_access_trust_provider.sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.verified_access_trust_provider.sse_specification.kms_key_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DeleteVerifiedAccessTrustProvider AWS API Documentation
     #
@@ -34334,6 +34369,8 @@ module Aws::EC2
     #   resp.verified_access_endpoints[0].tags #=> Array
     #   resp.verified_access_endpoints[0].tags[0].key #=> String
     #   resp.verified_access_endpoints[0].tags[0].value #=> String
+    #   resp.verified_access_endpoints[0].sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.verified_access_endpoints[0].sse_specification.kms_key_arn #=> String
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DescribeVerifiedAccessEndpoints AWS API Documentation
@@ -34407,6 +34444,8 @@ module Aws::EC2
     #   resp.verified_access_groups[0].tags #=> Array
     #   resp.verified_access_groups[0].tags[0].key #=> String
     #   resp.verified_access_groups[0].tags[0].value #=> String
+    #   resp.verified_access_groups[0].sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.verified_access_groups[0].sse_specification.kms_key_arn #=> String
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DescribeVerifiedAccessGroups AWS API Documentation
@@ -34632,6 +34671,8 @@ module Aws::EC2
     #   resp.verified_access_trust_providers[0].tags #=> Array
     #   resp.verified_access_trust_providers[0].tags[0].key #=> String
     #   resp.verified_access_trust_providers[0].tags[0].value #=> String
+    #   resp.verified_access_trust_providers[0].sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.verified_access_trust_providers[0].sse_specification.kms_key_arn #=> String
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DescribeVerifiedAccessTrustProviders AWS API Documentation
@@ -36875,6 +36916,8 @@ module Aws::EC2
     #   resp.verified_access_trust_provider.tags #=> Array
     #   resp.verified_access_trust_provider.tags[0].key #=> String
     #   resp.verified_access_trust_provider.tags[0].value #=> String
+    #   resp.verified_access_trust_provider.sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.verified_access_trust_provider.sse_specification.kms_key_arn #=> String
     #   resp.verified_access_instance.verified_access_instance_id #=> String
     #   resp.verified_access_instance.description #=> String
     #   resp.verified_access_instance.verified_access_trust_providers #=> Array
@@ -47826,6 +47869,8 @@ module Aws::EC2
     #   resp.verified_access_endpoint.tags #=> Array
     #   resp.verified_access_endpoint.tags[0].key #=> String
     #   resp.verified_access_endpoint.tags[0].value #=> String
+    #   resp.verified_access_endpoint.sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.verified_access_endpoint.sse_specification.kms_key_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyVerifiedAccessEndpoint AWS API Documentation
     #
@@ -47842,7 +47887,7 @@ module Aws::EC2
     # @option params [required, String] :verified_access_endpoint_id
     #   The ID of the Verified Access endpoint.
     #
-    # @option params [required, Boolean] :policy_enabled
+    # @option params [Boolean] :policy_enabled
     #   The status of the Verified Access policy.
     #
     # @option params [String] :policy_document
@@ -47866,25 +47911,35 @@ module Aws::EC2
     #   If you have the required permissions, the error response is
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #
+    # @option params [Types::VerifiedAccessSseSpecificationRequest] :sse_specification
+    #   Options for server side encryption.
+    #
     # @return [Types::ModifyVerifiedAccessEndpointPolicyResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ModifyVerifiedAccessEndpointPolicyResult#policy_enabled #policy_enabled} => Boolean
     #   * {Types::ModifyVerifiedAccessEndpointPolicyResult#policy_document #policy_document} => String
+    #   * {Types::ModifyVerifiedAccessEndpointPolicyResult#sse_specification #sse_specification} => Types::VerifiedAccessSseSpecificationResponse
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.modify_verified_access_endpoint_policy({
     #     verified_access_endpoint_id: "VerifiedAccessEndpointId", # required
-    #     policy_enabled: false, # required
+    #     policy_enabled: false,
     #     policy_document: "String",
     #     client_token: "String",
     #     dry_run: false,
+    #     sse_specification: {
+    #       customer_managed_key_enabled: false,
+    #       kms_key_arn: "KmsKeyArn",
+    #     },
     #   })
     #
     # @example Response structure
     #
     #   resp.policy_enabled #=> Boolean
     #   resp.policy_document #=> String
+    #   resp.sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.sse_specification.kms_key_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyVerifiedAccessEndpointPolicy AWS API Documentation
     #
@@ -47952,6 +48007,8 @@ module Aws::EC2
     #   resp.verified_access_group.tags #=> Array
     #   resp.verified_access_group.tags[0].key #=> String
     #   resp.verified_access_group.tags[0].value #=> String
+    #   resp.verified_access_group.sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.verified_access_group.sse_specification.kms_key_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyVerifiedAccessGroup AWS API Documentation
     #
@@ -47968,7 +48025,7 @@ module Aws::EC2
     # @option params [required, String] :verified_access_group_id
     #   The ID of the Verified Access group.
     #
-    # @option params [required, Boolean] :policy_enabled
+    # @option params [Boolean] :policy_enabled
     #   The status of the Verified Access policy.
     #
     # @option params [String] :policy_document
@@ -47992,25 +48049,35 @@ module Aws::EC2
     #   If you have the required permissions, the error response is
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #
+    # @option params [Types::VerifiedAccessSseSpecificationRequest] :sse_specification
+    #   Options for server side encryption.
+    #
     # @return [Types::ModifyVerifiedAccessGroupPolicyResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ModifyVerifiedAccessGroupPolicyResult#policy_enabled #policy_enabled} => Boolean
     #   * {Types::ModifyVerifiedAccessGroupPolicyResult#policy_document #policy_document} => String
+    #   * {Types::ModifyVerifiedAccessGroupPolicyResult#sse_specification #sse_specification} => Types::VerifiedAccessSseSpecificationResponse
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.modify_verified_access_group_policy({
     #     verified_access_group_id: "VerifiedAccessGroupId", # required
-    #     policy_enabled: false, # required
+    #     policy_enabled: false,
     #     policy_document: "String",
     #     client_token: "String",
     #     dry_run: false,
+    #     sse_specification: {
+    #       customer_managed_key_enabled: false,
+    #       kms_key_arn: "KmsKeyArn",
+    #     },
     #   })
     #
     # @example Response structure
     #
     #   resp.policy_enabled #=> Boolean
     #   resp.policy_document #=> String
+    #   resp.sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.sse_specification.kms_key_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyVerifiedAccessGroupPolicy AWS API Documentation
     #
@@ -48204,6 +48271,9 @@ module Aws::EC2
     #
     #   [1]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/Run_Instance_Idempotency.html
     #
+    # @option params [Types::VerifiedAccessSseSpecificationRequest] :sse_specification
+    #   Options for server side encryption.
+    #
     # @return [Types::ModifyVerifiedAccessTrustProviderResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ModifyVerifiedAccessTrustProviderResult#verified_access_trust_provider #verified_access_trust_provider} => Types::VerifiedAccessTrustProvider
@@ -48224,6 +48294,10 @@ module Aws::EC2
     #     description: "String",
     #     dry_run: false,
     #     client_token: "String",
+    #     sse_specification: {
+    #       customer_managed_key_enabled: false,
+    #       kms_key_arn: "KmsKeyArn",
+    #     },
     #   })
     #
     # @example Response structure
@@ -48247,6 +48321,8 @@ module Aws::EC2
     #   resp.verified_access_trust_provider.tags #=> Array
     #   resp.verified_access_trust_provider.tags[0].key #=> String
     #   resp.verified_access_trust_provider.tags[0].value #=> String
+    #   resp.verified_access_trust_provider.sse_specification.customer_managed_key_enabled #=> Boolean
+    #   resp.verified_access_trust_provider.sse_specification.kms_key_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyVerifiedAccessTrustProvider AWS API Documentation
     #
@@ -56894,7 +56970,7 @@ module Aws::EC2
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-ec2'
-      context[:gem_version] = '1.409.0'
+      context[:gem_version] = '1.410.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-ec2/client_api.rb

@@ -1813,6 +1813,7 @@ module Aws::EC2
     KeyPairList = Shapes::ListShape.new(name: 'KeyPairList')
     KeyPairName = Shapes::StringShape.new(name: 'KeyPairName')
     KeyType = Shapes::StringShape.new(name: 'KeyType')
+    KmsKeyArn = Shapes::StringShape.new(name: 'KmsKeyArn')
     KmsKeyId = Shapes::StringShape.new(name: 'KmsKeyId')
     LastError = Shapes::StructureShape.new(name: 'LastError')
     LaunchPermission = Shapes::StructureShape.new(name: 'LaunchPermission')
@@ -2933,6 +2934,8 @@ module Aws::EC2
     VerifiedAccessLogS3Destination = Shapes::StructureShape.new(name: 'VerifiedAccessLogS3Destination')
     VerifiedAccessLogS3DestinationOptions = Shapes::StructureShape.new(name: 'VerifiedAccessLogS3DestinationOptions')
     VerifiedAccessLogs = Shapes::StructureShape.new(name: 'VerifiedAccessLogs')
+    VerifiedAccessSseSpecificationRequest = Shapes::StructureShape.new(name: 'VerifiedAccessSseSpecificationRequest')
+    VerifiedAccessSseSpecificationResponse = Shapes::StructureShape.new(name: 'VerifiedAccessSseSpecificationResponse')
     VerifiedAccessTrustProvider = Shapes::StructureShape.new(name: 'VerifiedAccessTrustProvider')
     VerifiedAccessTrustProviderCondensed = Shapes::StructureShape.new(name: 'VerifiedAccessTrustProviderCondensed')
     VerifiedAccessTrustProviderCondensedList = Shapes::ListShape.new(name: 'VerifiedAccessTrustProviderCondensedList')
@@ -5153,6 +5156,7 @@ module Aws::EC2
     CreateVerifiedAccessEndpointRequest.add_member(:tag_specifications, Shapes::ShapeRef.new(shape: TagSpecificationList, location_name: "TagSpecification"))
     CreateVerifiedAccessEndpointRequest.add_member(:client_token, Shapes::ShapeRef.new(shape: String, location_name: "ClientToken", metadata: {"idempotencyToken"=>true}))
     CreateVerifiedAccessEndpointRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
+    CreateVerifiedAccessEndpointRequest.add_member(:sse_specification, Shapes::ShapeRef.new(shape: VerifiedAccessSseSpecificationRequest, location_name: "SseSpecification"))
     CreateVerifiedAccessEndpointRequest.struct_class = Types::CreateVerifiedAccessEndpointRequest
 
     CreateVerifiedAccessEndpointResult.add_member(:verified_access_endpoint, Shapes::ShapeRef.new(shape: VerifiedAccessEndpoint, location_name: "verifiedAccessEndpoint"))
@@ -5166,6 +5170,7 @@ module Aws::EC2
     CreateVerifiedAccessGroupRequest.add_member(:tag_specifications, Shapes::ShapeRef.new(shape: TagSpecificationList, location_name: "TagSpecification"))
     CreateVerifiedAccessGroupRequest.add_member(:client_token, Shapes::ShapeRef.new(shape: String, location_name: "ClientToken", metadata: {"idempotencyToken"=>true}))
     CreateVerifiedAccessGroupRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
+    CreateVerifiedAccessGroupRequest.add_member(:sse_specification, Shapes::ShapeRef.new(shape: VerifiedAccessSseSpecificationRequest, location_name: "SseSpecification"))
     CreateVerifiedAccessGroupRequest.struct_class = Types::CreateVerifiedAccessGroupRequest
 
     CreateVerifiedAccessGroupResult.add_member(:verified_access_group, Shapes::ShapeRef.new(shape: VerifiedAccessGroup, location_name: "verifiedAccessGroup"))
@@ -5203,6 +5208,7 @@ module Aws::EC2
     CreateVerifiedAccessTrustProviderRequest.add_member(:tag_specifications, Shapes::ShapeRef.new(shape: TagSpecificationList, location_name: "TagSpecification"))
     CreateVerifiedAccessTrustProviderRequest.add_member(:client_token, Shapes::ShapeRef.new(shape: String, location_name: "ClientToken", metadata: {"idempotencyToken"=>true}))
     CreateVerifiedAccessTrustProviderRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
+    CreateVerifiedAccessTrustProviderRequest.add_member(:sse_specification, Shapes::ShapeRef.new(shape: VerifiedAccessSseSpecificationRequest, location_name: "SseSpecification"))
     CreateVerifiedAccessTrustProviderRequest.struct_class = Types::CreateVerifiedAccessTrustProviderRequest
 
     CreateVerifiedAccessTrustProviderResult.add_member(:verified_access_trust_provider, Shapes::ShapeRef.new(shape: VerifiedAccessTrustProvider, location_name: "verifiedAccessTrustProvider"))
@@ -11271,14 +11277,16 @@ module Aws::EC2
     ModifyVerifiedAccessEndpointLoadBalancerOptions.struct_class = Types::ModifyVerifiedAccessEndpointLoadBalancerOptions
 
     ModifyVerifiedAccessEndpointPolicyRequest.add_member(:verified_access_endpoint_id, Shapes::ShapeRef.new(shape: VerifiedAccessEndpointId, required: true, location_name: "VerifiedAccessEndpointId"))
-    ModifyVerifiedAccessEndpointPolicyRequest.add_member(:policy_enabled, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "PolicyEnabled"))
+    ModifyVerifiedAccessEndpointPolicyRequest.add_member(:policy_enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "PolicyEnabled"))
     ModifyVerifiedAccessEndpointPolicyRequest.add_member(:policy_document, Shapes::ShapeRef.new(shape: String, location_name: "PolicyDocument"))
     ModifyVerifiedAccessEndpointPolicyRequest.add_member(:client_token, Shapes::ShapeRef.new(shape: String, location_name: "ClientToken", metadata: {"idempotencyToken"=>true}))
     ModifyVerifiedAccessEndpointPolicyRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
+    ModifyVerifiedAccessEndpointPolicyRequest.add_member(:sse_specification, Shapes::ShapeRef.new(shape: VerifiedAccessSseSpecificationRequest, location_name: "SseSpecification"))
     ModifyVerifiedAccessEndpointPolicyRequest.struct_class = Types::ModifyVerifiedAccessEndpointPolicyRequest
 
     ModifyVerifiedAccessEndpointPolicyResult.add_member(:policy_enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "policyEnabled"))
     ModifyVerifiedAccessEndpointPolicyResult.add_member(:policy_document, Shapes::ShapeRef.new(shape: String, location_name: "policyDocument"))
+    ModifyVerifiedAccessEndpointPolicyResult.add_member(:sse_specification, Shapes::ShapeRef.new(shape: VerifiedAccessSseSpecificationResponse, location_name: "sseSpecification"))
     ModifyVerifiedAccessEndpointPolicyResult.struct_class = Types::ModifyVerifiedAccessEndpointPolicyResult
 
     ModifyVerifiedAccessEndpointRequest.add_member(:verified_access_endpoint_id, Shapes::ShapeRef.new(shape: VerifiedAccessEndpointId, required: true, location_name: "VerifiedAccessEndpointId"))
@@ -11296,14 +11304,16 @@ module Aws::EC2
     ModifyVerifiedAccessEndpointSubnetIdList.member = Shapes::ShapeRef.new(shape: SubnetId, location_name: "item")
 
     ModifyVerifiedAccessGroupPolicyRequest.add_member(:verified_access_group_id, Shapes::ShapeRef.new(shape: VerifiedAccessGroupId, required: true, location_name: "VerifiedAccessGroupId"))
-    ModifyVerifiedAccessGroupPolicyRequest.add_member(:policy_enabled, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "PolicyEnabled"))
+    ModifyVerifiedAccessGroupPolicyRequest.add_member(:policy_enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "PolicyEnabled"))
     ModifyVerifiedAccessGroupPolicyRequest.add_member(:policy_document, Shapes::ShapeRef.new(shape: String, location_name: "PolicyDocument"))
     ModifyVerifiedAccessGroupPolicyRequest.add_member(:client_token, Shapes::ShapeRef.new(shape: String, location_name: "ClientToken", metadata: {"idempotencyToken"=>true}))
     ModifyVerifiedAccessGroupPolicyRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
+    ModifyVerifiedAccessGroupPolicyRequest.add_member(:sse_specification, Shapes::ShapeRef.new(shape: VerifiedAccessSseSpecificationRequest, location_name: "SseSpecification"))
     ModifyVerifiedAccessGroupPolicyRequest.struct_class = Types::ModifyVerifiedAccessGroupPolicyRequest
 
     ModifyVerifiedAccessGroupPolicyResult.add_member(:policy_enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "policyEnabled"))
     ModifyVerifiedAccessGroupPolicyResult.add_member(:policy_document, Shapes::ShapeRef.new(shape: String, location_name: "policyDocument"))
+    ModifyVerifiedAccessGroupPolicyResult.add_member(:sse_specification, Shapes::ShapeRef.new(shape: VerifiedAccessSseSpecificationResponse, location_name: "sseSpecification"))
     ModifyVerifiedAccessGroupPolicyResult.struct_class = Types::ModifyVerifiedAccessGroupPolicyResult
 
     ModifyVerifiedAccessGroupRequest.add_member(:verified_access_group_id, Shapes::ShapeRef.new(shape: VerifiedAccessGroupId, required: true, location_name: "VerifiedAccessGroupId"))
@@ -11348,6 +11358,7 @@ module Aws::EC2
     ModifyVerifiedAccessTrustProviderRequest.add_member(:description, Shapes::ShapeRef.new(shape: String, location_name: "Description"))
     ModifyVerifiedAccessTrustProviderRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
     ModifyVerifiedAccessTrustProviderRequest.add_member(:client_token, Shapes::ShapeRef.new(shape: String, location_name: "ClientToken", metadata: {"idempotencyToken"=>true}))
+    ModifyVerifiedAccessTrustProviderRequest.add_member(:sse_specification, Shapes::ShapeRef.new(shape: VerifiedAccessSseSpecificationRequest, location_name: "SseSpecification"))
     ModifyVerifiedAccessTrustProviderRequest.struct_class = Types::ModifyVerifiedAccessTrustProviderRequest
 
     ModifyVerifiedAccessTrustProviderResult.add_member(:verified_access_trust_provider, Shapes::ShapeRef.new(shape: VerifiedAccessTrustProvider, location_name: "verifiedAccessTrustProvider"))
@@ -14543,6 +14554,7 @@ module Aws::EC2
     VerifiedAccessEndpoint.add_member(:last_updated_time, Shapes::ShapeRef.new(shape: String, location_name: "lastUpdatedTime"))
     VerifiedAccessEndpoint.add_member(:deletion_time, Shapes::ShapeRef.new(shape: String, location_name: "deletionTime"))
     VerifiedAccessEndpoint.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "tagSet"))
+    VerifiedAccessEndpoint.add_member(:sse_specification, Shapes::ShapeRef.new(shape: VerifiedAccessSseSpecificationResponse, location_name: "sseSpecification"))
     VerifiedAccessEndpoint.struct_class = Types::VerifiedAccessEndpoint
 
     VerifiedAccessEndpointEniOptions.add_member(:network_interface_id, Shapes::ShapeRef.new(shape: NetworkInterfaceId, location_name: "networkInterfaceId"))
@@ -14575,6 +14587,7 @@ module Aws::EC2
     VerifiedAccessGroup.add_member(:last_updated_time, Shapes::ShapeRef.new(shape: String, location_name: "lastUpdatedTime"))
     VerifiedAccessGroup.add_member(:deletion_time, Shapes::ShapeRef.new(shape: String, location_name: "deletionTime"))
     VerifiedAccessGroup.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "tagSet"))
+    VerifiedAccessGroup.add_member(:sse_specification, Shapes::ShapeRef.new(shape: VerifiedAccessSseSpecificationResponse, location_name: "sseSpecification"))
     VerifiedAccessGroup.struct_class = Types::VerifiedAccessGroup
 
     VerifiedAccessGroupIdList.member = Shapes::ShapeRef.new(shape: VerifiedAccessGroupId, location_name: "item")
@@ -14649,6 +14662,14 @@ module Aws::EC2
     VerifiedAccessLogs.add_member(:include_trust_context, Shapes::ShapeRef.new(shape: Boolean, location_name: "includeTrustContext"))
     VerifiedAccessLogs.struct_class = Types::VerifiedAccessLogs
 
+    VerifiedAccessSseSpecificationRequest.add_member(:customer_managed_key_enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "CustomerManagedKeyEnabled"))
+    VerifiedAccessSseSpecificationRequest.add_member(:kms_key_arn, Shapes::ShapeRef.new(shape: KmsKeyArn, location_name: "KmsKeyArn"))
+    VerifiedAccessSseSpecificationRequest.struct_class = Types::VerifiedAccessSseSpecificationRequest
+
+    VerifiedAccessSseSpecificationResponse.add_member(:customer_managed_key_enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "customerManagedKeyEnabled"))
+    VerifiedAccessSseSpecificationResponse.add_member(:kms_key_arn, Shapes::ShapeRef.new(shape: KmsKeyArn, location_name: "kmsKeyArn"))
+    VerifiedAccessSseSpecificationResponse.struct_class = Types::VerifiedAccessSseSpecificationResponse
+
     VerifiedAccessTrustProvider.add_member(:verified_access_trust_provider_id, Shapes::ShapeRef.new(shape: String, location_name: "verifiedAccessTrustProviderId"))
     VerifiedAccessTrustProvider.add_member(:description, Shapes::ShapeRef.new(shape: String, location_name: "description"))
     VerifiedAccessTrustProvider.add_member(:trust_provider_type, Shapes::ShapeRef.new(shape: TrustProviderType, location_name: "trustProviderType"))
@@ -14660,6 +14681,7 @@ module Aws::EC2
     VerifiedAccessTrustProvider.add_member(:creation_time, Shapes::ShapeRef.new(shape: String, location_name: "creationTime"))
     VerifiedAccessTrustProvider.add_member(:last_updated_time, Shapes::ShapeRef.new(shape: String, location_name: "lastUpdatedTime"))
     VerifiedAccessTrustProvider.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "tagSet"))
+    VerifiedAccessTrustProvider.add_member(:sse_specification, Shapes::ShapeRef.new(shape: VerifiedAccessSseSpecificationResponse, location_name: "sseSpecification"))
     VerifiedAccessTrustProvider.struct_class = Types::VerifiedAccessTrustProvider
 
     VerifiedAccessTrustProviderCondensed.add_member(:verified_access_trust_provider_id, Shapes::ShapeRef.new(shape: String, location_name: "verifiedAccessTrustProviderId"))

data/lib/aws-sdk-ec2/types.rb

@@ -11497,6 +11497,10 @@ module Aws::EC2
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #   @return [Boolean]
     #
+    # @!attribute [rw] sse_specification
+    #   Options for server side encryption.
+    #   @return [Types::VerifiedAccessSseSpecificationRequest]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/CreateVerifiedAccessEndpointRequest AWS API Documentation
     #
     class CreateVerifiedAccessEndpointRequest < Struct.new(
@@ -11513,7 +11517,8 @@ module Aws::EC2
       :policy_document,
       :tag_specifications,
       :client_token,
-      :dry_run)
+      :dry_run,
+      :sse_specification)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -11566,6 +11571,10 @@ module Aws::EC2
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #   @return [Boolean]
     #
+    # @!attribute [rw] sse_specification
+    #   Options for server side encryption.
+    #   @return [Types::VerifiedAccessSseSpecificationRequest]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/CreateVerifiedAccessGroupRequest AWS API Documentation
     #
     class CreateVerifiedAccessGroupRequest < Struct.new(
@@ -11574,7 +11583,8 @@ module Aws::EC2
       :policy_document,
       :tag_specifications,
       :client_token,
-      :dry_run)
+      :dry_run,
+      :sse_specification)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -11620,8 +11630,8 @@ module Aws::EC2
     #   @return [Boolean]
     #
     # @!attribute [rw] fips_enabled
-    #   Choose to enable or disable support for Federal Information
-    #   Processing Standards (FIPS) on the instance.
+    #   Enable or disable support for Federal Information Processing
+    #   Standards (FIPS) on the instance.
     #   @return [Boolean]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/CreateVerifiedAccessInstanceRequest AWS API Documentation
@@ -11767,6 +11777,10 @@ module Aws::EC2
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #   @return [Boolean]
     #
+    # @!attribute [rw] sse_specification
+    #   Options for server side encryption.
+    #   @return [Types::VerifiedAccessSseSpecificationRequest]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/CreateVerifiedAccessTrustProviderRequest AWS API Documentation
     #
     class CreateVerifiedAccessTrustProviderRequest < Struct.new(
@@ -11779,7 +11793,8 @@ module Aws::EC2
       :description,
       :tag_specifications,
       :client_token,
-      :dry_run)
+      :dry_run,
+      :sse_specification)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -46952,6 +46967,10 @@ module Aws::EC2
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #   @return [Boolean]
     #
+    # @!attribute [rw] sse_specification
+    #   Options for server side encryption.
+    #   @return [Types::VerifiedAccessSseSpecificationRequest]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyVerifiedAccessEndpointPolicyRequest AWS API Documentation
     #
     class ModifyVerifiedAccessEndpointPolicyRequest < Struct.new(
@@ -46959,7 +46978,8 @@ module Aws::EC2
       :policy_enabled,
       :policy_document,
       :client_token,
-      :dry_run)
+      :dry_run,
+      :sse_specification)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -46972,11 +46992,16 @@ module Aws::EC2
     #   The Verified Access policy document.
     #   @return [String]
     #
+    # @!attribute [rw] sse_specification
+    #   Describes the options in use for server side encryption.
+    #   @return [Types::VerifiedAccessSseSpecificationResponse]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyVerifiedAccessEndpointPolicyResult AWS API Documentation
     #
     class ModifyVerifiedAccessEndpointPolicyResult < Struct.new(
       :policy_enabled,
-      :policy_document)
+      :policy_document,
+      :sse_specification)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -47080,6 +47105,10 @@ module Aws::EC2
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #   @return [Boolean]
     #
+    # @!attribute [rw] sse_specification
+    #   Options for server side encryption.
+    #   @return [Types::VerifiedAccessSseSpecificationRequest]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyVerifiedAccessGroupPolicyRequest AWS API Documentation
     #
     class ModifyVerifiedAccessGroupPolicyRequest < Struct.new(
@@ -47087,7 +47116,8 @@ module Aws::EC2
       :policy_enabled,
       :policy_document,
       :client_token,
-      :dry_run)
+      :dry_run,
+      :sse_specification)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -47100,11 +47130,16 @@ module Aws::EC2
     #   The Verified Access policy document.
     #   @return [String]
     #
+    # @!attribute [rw] sse_specification
+    #   Describes the options in use for server side encryption.
+    #   @return [Types::VerifiedAccessSseSpecificationResponse]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyVerifiedAccessGroupPolicyResult AWS API Documentation
     #
     class ModifyVerifiedAccessGroupPolicyResult < Struct.new(
       :policy_enabled,
-      :policy_document)
+      :policy_document,
+      :sse_specification)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -47346,6 +47381,10 @@ module Aws::EC2
     #   [1]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/Run_Instance_Idempotency.html
     #   @return [String]
     #
+    # @!attribute [rw] sse_specification
+    #   Options for server side encryption.
+    #   @return [Types::VerifiedAccessSseSpecificationRequest]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyVerifiedAccessTrustProviderRequest AWS API Documentation
     #
     class ModifyVerifiedAccessTrustProviderRequest < Struct.new(
@@ -47353,7 +47392,8 @@ module Aws::EC2
       :oidc_options,
       :description,
       :dry_run,
-      :client_token)
+      :client_token,
+      :sse_specification)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -63376,6 +63416,10 @@ module Aws::EC2
     #   The tags.
     #   @return [Array<Types::Tag>]
     #
+    # @!attribute [rw] sse_specification
+    #   Describes the options in use for server side encryption.
+    #   @return [Types::VerifiedAccessSseSpecificationResponse]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/VerifiedAccessEndpoint AWS API Documentation
     #
     class VerifiedAccessEndpoint < Struct.new(
@@ -63396,7 +63440,8 @@ module Aws::EC2
       :creation_time,
       :last_updated_time,
       :deletion_time,
-      :tags)
+      :tags,
+      :sse_specification)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -63512,6 +63557,10 @@ module Aws::EC2
     #   The tags.
     #   @return [Array<Types::Tag>]
     #
+    # @!attribute [rw] sse_specification
+    #   Describes the options in use for server side encryption.
+    #   @return [Types::VerifiedAccessSseSpecificationResponse]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/VerifiedAccessGroup AWS API Documentation
     #
     class VerifiedAccessGroup < Struct.new(
@@ -63523,7 +63572,8 @@ module Aws::EC2
       :creation_time,
       :last_updated_time,
       :deletion_time,
-      :tags)
+      :tags,
+      :sse_specification)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -63555,8 +63605,8 @@ module Aws::EC2
     #   @return [Array<Types::Tag>]
     #
     # @!attribute [rw] fips_enabled
-    #   Describes if support for Federal Information Processing Standards
-    #   (FIPS) is enabled on the instance.
+    #   Describes whether support for Federal Information Processing
+    #   Standards (FIPS) is enabled on the instance.
     #   @return [Boolean]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/VerifiedAccessInstance AWS API Documentation
@@ -63832,6 +63882,53 @@ module Aws::EC2
       include Aws::Structure
     end
 
+    # Verified Access provides server side encryption by default to data at
+    # rest using Amazon Web Services-owned KMS keys. You also have the
+    # option of using customer managed KMS keys, which can be specified
+    # using the options below.
+    #
+    # @!attribute [rw] customer_managed_key_enabled
+    #   Enable or disable the use of customer managed KMS keys for server
+    #   side encryption.
+    #
+    #   Valid values: `True` \| `False`
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] kms_key_arn
+    #   The ARN of the KMS key.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/VerifiedAccessSseSpecificationRequest AWS API Documentation
+    #
+    class VerifiedAccessSseSpecificationRequest < Struct.new(
+      :customer_managed_key_enabled,
+      :kms_key_arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Describes the options in use for server side encryption.
+    #
+    # @!attribute [rw] customer_managed_key_enabled
+    #   Describes the use of customer managed KMS keys for server side
+    #   encryption.
+    #
+    #   Valid values: `True` \| `False`
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] kms_key_arn
+    #   Describes the ARN of the KMS key.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/VerifiedAccessSseSpecificationResponse AWS API Documentation
+    #
+    class VerifiedAccessSseSpecificationResponse < Struct.new(
+      :customer_managed_key_enabled,
+      :kms_key_arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Describes a Verified Access trust provider.
     #
     # @!attribute [rw] verified_access_trust_provider_id
@@ -63880,6 +63977,10 @@ module Aws::EC2
     #   The tags.
     #   @return [Array<Types::Tag>]
     #
+    # @!attribute [rw] sse_specification
+    #   Describes the options in use for server side encryption.
+    #   @return [Types::VerifiedAccessSseSpecificationResponse]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/VerifiedAccessTrustProvider AWS API Documentation
     #
     class VerifiedAccessTrustProvider < Struct.new(
@@ -63893,7 +63994,8 @@ module Aws::EC2
       :policy_reference_name,
       :creation_time,
       :last_updated_time,
-      :tags)
+      :tags,
+      :sse_specification)
       SENSITIVE = []
       include Aws::Structure
     end

data/lib/aws-sdk-ec2.rb

@@ -76,6 +76,6 @@ require_relative 'aws-sdk-ec2/customizations'
 # @!group service
 module Aws::EC2
 
-  GEM_VERSION = '1.409.0'
+  GEM_VERSION = '1.410.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-ec2
 version: !ruby/object:Gem::Version
-  version: 1.409.0
+  version: 1.410.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-09-27 00:00:00.000000000 Z
+date: 2023-09-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sigv4