aws-sdk-ec2 1.417.0 → 1.418.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 7ac4887a539a63a494296958bdf908d279a6407db370596be8a3a3ace6fd1197
-  data.tar.gz: d4cc951fc9825b038d5f0ce1841fa6ff741eb1d2722a8d947ff4bc7b17b05cea
+  metadata.gz: '09ef990077457f5ffd7d8666fe33d33613e9bfadb193eeb3e1c9a0bf7dba6a98'
+  data.tar.gz: b2773e0f8086200d2e055377dc4f18fca51b27fcb638f6423b6d9dfcd906ea58
 SHA512:
-  metadata.gz: 4fbf66a95a483a41ed3103c63a2e5d80ecaa32630f064bc5ced87991e52afbe014c6e8b4adb5cd52ddaedd9037f49fe956eef125b619b8493e94975820d88a3d
-  data.tar.gz: 2bd114210651203a603951c89036882d1f30110e497552856bf8caf3eae33f39b78d31583d672bc76f4022112d97fb808ea477c705d37eecf47d8a23b17b17f4
+  metadata.gz: 141cfeb55798b634120530dd6b235b7c6293775a42518927e9582467d6013717d1cec1c3c826831fcfda857b34697eeeb6e64c09791d7b2eef6894dc14476f4d
+  data.tar.gz: 38904bbccc3fb94d94c21d96271439437f50669584ba882c67e3960744434183d46df56afd3e5369f486048c49cf6fc59dc6baeeebd2714515bdcef7a7522cdc

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.418.0 (2023-11-09)
+------------------
+
+* Feature - AWS EBS now supports Block Public Access for EBS Snapshots. This release introduces the EnableSnapshotBlockPublicAccess, DisableSnapshotBlockPublicAccess and GetSnapshotBlockPublicAccessState APIs to manage account-level public access settings for EBS Snapshots in an AWS Region.
+
 1.417.0 (2023-10-31)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.417.0
+1.418.0

data/lib/aws-sdk-ec2/client.rb

@@ -37762,6 +37762,54 @@ module Aws::EC2
       req.send_request(options)
     end
 
+    # Disables the *block public access for snapshots* setting at the
+    # account level for the specified Amazon Web Services Region. After you
+    # disable block public access for snapshots in a Region, users can
+    # publicly share snapshots in that Region.
+    #
+    # If block public access is enabled in `block-all-sharing` mode, and you
+    # disable block public access, all snapshots that were previously
+    # publicly shared are no longer treated as private and they become
+    # publicly accessible again.
+    #
+    # For more information, see [ Block public access for snapshots][1] in
+    # the *Amazon Elastic Compute Cloud User Guide* .
+    #
+    #
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/block-public-access-snapshots.html
+    #
+    # @option params [Boolean] :dry_run
+    #   Checks whether you have the required permissions for the action,
+    #   without actually making the request, and provides an error response.
+    #   If you have the required permissions, the error response is
+    #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
+    #
+    # @return [Types::DisableSnapshotBlockPublicAccessResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::DisableSnapshotBlockPublicAccessResult#state #state} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.disable_snapshot_block_public_access({
+    #     dry_run: false,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.state #=> String, one of "block-all-sharing", "block-new-sharing", "unblocked"
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DisableSnapshotBlockPublicAccess AWS API Documentation
+    #
+    # @overload disable_snapshot_block_public_access(params = {})
+    # @param [Hash] params ({})
+    def disable_snapshot_block_public_access(params = {}, options = {})
+      req = build_request(:disable_snapshot_block_public_access, params)
+      req.send_request(options)
+    end
+
     # Disables the specified resource attachment from propagating routes to
     # the specified propagation route table.
     #
@@ -39247,6 +39295,80 @@ module Aws::EC2
       req.send_request(options)
     end
 
+    # Enables or modifies the *block public access for snapshots* setting at
+    # the account level for the specified Amazon Web Services Region. After
+    # you enable block public access for snapshots in a Region, users can no
+    # longer request public sharing for snapshots in that Region. Snapshots
+    # that are already publicly shared are either treated as private or they
+    # remain publicly shared, depending on the **State** that you specify.
+    #
+    # If block public access is enabled in `block-all-sharing` mode, and you
+    # change the mode to `block-new-sharing`, all snapshots that were
+    # previously publicly shared are no longer treated as private and they
+    # become publicly accessible again.
+    #
+    # For more information, see [ Block public access for snapshots][1] in
+    # the *Amazon Elastic Compute Cloud User Guide*.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/block-public-access-snapshots.html
+    #
+    # @option params [required, String] :state
+    #   The mode in which to enable block public access for snapshots for the
+    #   Region. Specify one of the following values:
+    #
+    #   * `block-all-sharing` - Prevents all public sharing of snapshots in
+    #     the Region. Users in the account will no longer be able to request
+    #     new public sharing. Additionally, snapshots that are already
+    #     publicly shared are treated as private and they are no longer
+    #     publicly available.
+    #
+    #     <note markdown="1"> If you enable block public access for snapshots in
+    #     `block-all-sharing` mode, it does not change the permissions for
+    #     snapshots that are already publicly shared. Instead, it prevents
+    #     these snapshots from be publicly visible and publicly accessible.
+    #     Therefore, the attributes for these snapshots still indicate that
+    #     they are publicly shared, even though they are not publicly
+    #     available.
+    #
+    #      </note>
+    #
+    #   * `block-new-sharing` - Prevents only new public sharing of snapshots
+    #     in the Region. Users in the account will no longer be able to
+    #     request new public sharing. However, snapshots that are already
+    #     publicly shared, remain publicly available.
+    #
+    # @option params [Boolean] :dry_run
+    #   Checks whether you have the required permissions for the action,
+    #   without actually making the request, and provides an error response.
+    #   If you have the required permissions, the error response is
+    #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
+    #
+    # @return [Types::EnableSnapshotBlockPublicAccessResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::EnableSnapshotBlockPublicAccessResult#state #state} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.enable_snapshot_block_public_access({
+    #     state: "block-all-sharing", # required, accepts block-all-sharing, block-new-sharing, unblocked
+    #     dry_run: false,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.state #=> String, one of "block-all-sharing", "block-new-sharing", "unblocked"
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/EnableSnapshotBlockPublicAccess AWS API Documentation
+    #
+    # @overload enable_snapshot_block_public_access(params = {})
+    # @param [Hash] params ({})
+    def enable_snapshot_block_public_access(params = {}, options = {})
+      req = build_request(:enable_snapshot_block_public_access, params)
+      req.send_request(options)
+    end
+
     # Enables the specified attachment to propagate routes to the specified
     # propagation route table.
     #
@@ -42336,6 +42458,45 @@ module Aws::EC2
       req.send_request(options)
     end
 
+    # Gets the current state of *block public access for snapshots* setting
+    # for the account and Region.
+    #
+    # For more information, see [ Block public access for snapshots][1] in
+    # the *Amazon Elastic Compute Cloud User Guide*.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/block-public-access-snapshots.html
+    #
+    # @option params [Boolean] :dry_run
+    #   Checks whether you have the required permissions for the action,
+    #   without actually making the request, and provides an error response.
+    #   If you have the required permissions, the error response is
+    #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
+    #
+    # @return [Types::GetSnapshotBlockPublicAccessStateResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetSnapshotBlockPublicAccessStateResult#state #state} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.get_snapshot_block_public_access_state({
+    #     dry_run: false,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.state #=> String, one of "block-all-sharing", "block-new-sharing", "unblocked"
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/GetSnapshotBlockPublicAccessState AWS API Documentation
+    #
+    # @overload get_snapshot_block_public_access_state(params = {})
+    # @param [Hash] params ({})
+    def get_snapshot_block_public_access_state(params = {}, options = {})
+      req = build_request(:get_snapshot_block_public_access_state, params)
+      req.send_request(options)
+    end
+
     # Calculates the Spot placement score for a Region or Availability Zone
     # based on the specified target capacity and compute requirements.
     #
@@ -57434,7 +57595,7 @@ module Aws::EC2
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-ec2'
-      context[:gem_version] = '1.417.0'
+      context[:gem_version] = '1.418.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-ec2/client_api.rb

@@ -1140,6 +1140,8 @@ module Aws::EC2
     DisableIpamOrganizationAdminAccountResult = Shapes::StructureShape.new(name: 'DisableIpamOrganizationAdminAccountResult')
     DisableSerialConsoleAccessRequest = Shapes::StructureShape.new(name: 'DisableSerialConsoleAccessRequest')
     DisableSerialConsoleAccessResult = Shapes::StructureShape.new(name: 'DisableSerialConsoleAccessResult')
+    DisableSnapshotBlockPublicAccessRequest = Shapes::StructureShape.new(name: 'DisableSnapshotBlockPublicAccessRequest')
+    DisableSnapshotBlockPublicAccessResult = Shapes::StructureShape.new(name: 'DisableSnapshotBlockPublicAccessResult')
     DisableTransitGatewayRouteTablePropagationRequest = Shapes::StructureShape.new(name: 'DisableTransitGatewayRouteTablePropagationRequest')
     DisableTransitGatewayRouteTablePropagationResult = Shapes::StructureShape.new(name: 'DisableTransitGatewayRouteTablePropagationResult')
     DisableVgwRoutePropagationRequest = Shapes::StructureShape.new(name: 'DisableVgwRoutePropagationRequest')
@@ -1268,6 +1270,8 @@ module Aws::EC2
     EnableReachabilityAnalyzerOrganizationSharingResult = Shapes::StructureShape.new(name: 'EnableReachabilityAnalyzerOrganizationSharingResult')
     EnableSerialConsoleAccessRequest = Shapes::StructureShape.new(name: 'EnableSerialConsoleAccessRequest')
     EnableSerialConsoleAccessResult = Shapes::StructureShape.new(name: 'EnableSerialConsoleAccessResult')
+    EnableSnapshotBlockPublicAccessRequest = Shapes::StructureShape.new(name: 'EnableSnapshotBlockPublicAccessRequest')
+    EnableSnapshotBlockPublicAccessResult = Shapes::StructureShape.new(name: 'EnableSnapshotBlockPublicAccessResult')
     EnableTransitGatewayRouteTablePropagationRequest = Shapes::StructureShape.new(name: 'EnableTransitGatewayRouteTablePropagationRequest')
     EnableTransitGatewayRouteTablePropagationResult = Shapes::StructureShape.new(name: 'EnableTransitGatewayRouteTablePropagationResult')
     EnableVgwRoutePropagationRequest = Shapes::StructureShape.new(name: 'EnableVgwRoutePropagationRequest')
@@ -1459,6 +1463,8 @@ module Aws::EC2
     GetSecurityGroupsForVpcResult = Shapes::StructureShape.new(name: 'GetSecurityGroupsForVpcResult')
     GetSerialConsoleAccessStatusRequest = Shapes::StructureShape.new(name: 'GetSerialConsoleAccessStatusRequest')
     GetSerialConsoleAccessStatusResult = Shapes::StructureShape.new(name: 'GetSerialConsoleAccessStatusResult')
+    GetSnapshotBlockPublicAccessStateRequest = Shapes::StructureShape.new(name: 'GetSnapshotBlockPublicAccessStateRequest')
+    GetSnapshotBlockPublicAccessStateResult = Shapes::StructureShape.new(name: 'GetSnapshotBlockPublicAccessStateResult')
     GetSpotPlacementScoresRequest = Shapes::StructureShape.new(name: 'GetSpotPlacementScoresRequest')
     GetSpotPlacementScoresResult = Shapes::StructureShape.new(name: 'GetSpotPlacementScoresResult')
     GetSubnetCidrReservationsMaxResults = Shapes::IntegerShape.new(name: 'GetSubnetCidrReservationsMaxResults')
@@ -2605,6 +2611,7 @@ module Aws::EC2
     SlotStartTimeRangeRequest = Shapes::StructureShape.new(name: 'SlotStartTimeRangeRequest')
     Snapshot = Shapes::StructureShape.new(name: 'Snapshot')
     SnapshotAttributeName = Shapes::StringShape.new(name: 'SnapshotAttributeName')
+    SnapshotBlockPublicAccessState = Shapes::StringShape.new(name: 'SnapshotBlockPublicAccessState')
     SnapshotDetail = Shapes::StructureShape.new(name: 'SnapshotDetail')
     SnapshotDetailList = Shapes::ListShape.new(name: 'SnapshotDetailList')
     SnapshotDiskContainer = Shapes::StructureShape.new(name: 'SnapshotDiskContainer')
@@ -7799,6 +7806,12 @@ module Aws::EC2
     DisableSerialConsoleAccessResult.add_member(:serial_console_access_enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "serialConsoleAccessEnabled"))
     DisableSerialConsoleAccessResult.struct_class = Types::DisableSerialConsoleAccessResult
 
+    DisableSnapshotBlockPublicAccessRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
+    DisableSnapshotBlockPublicAccessRequest.struct_class = Types::DisableSnapshotBlockPublicAccessRequest
+
+    DisableSnapshotBlockPublicAccessResult.add_member(:state, Shapes::ShapeRef.new(shape: SnapshotBlockPublicAccessState, location_name: "state"))
+    DisableSnapshotBlockPublicAccessResult.struct_class = Types::DisableSnapshotBlockPublicAccessResult
+
     DisableTransitGatewayRouteTablePropagationRequest.add_member(:transit_gateway_route_table_id, Shapes::ShapeRef.new(shape: TransitGatewayRouteTableId, required: true, location_name: "TransitGatewayRouteTableId"))
     DisableTransitGatewayRouteTablePropagationRequest.add_member(:transit_gateway_attachment_id, Shapes::ShapeRef.new(shape: TransitGatewayAttachmentId, location_name: "TransitGatewayAttachmentId"))
     DisableTransitGatewayRouteTablePropagationRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
@@ -8226,6 +8239,13 @@ module Aws::EC2
     EnableSerialConsoleAccessResult.add_member(:serial_console_access_enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "serialConsoleAccessEnabled"))
     EnableSerialConsoleAccessResult.struct_class = Types::EnableSerialConsoleAccessResult
 
+    EnableSnapshotBlockPublicAccessRequest.add_member(:state, Shapes::ShapeRef.new(shape: SnapshotBlockPublicAccessState, required: true, location_name: "State"))
+    EnableSnapshotBlockPublicAccessRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
+    EnableSnapshotBlockPublicAccessRequest.struct_class = Types::EnableSnapshotBlockPublicAccessRequest
+
+    EnableSnapshotBlockPublicAccessResult.add_member(:state, Shapes::ShapeRef.new(shape: SnapshotBlockPublicAccessState, location_name: "state"))
+    EnableSnapshotBlockPublicAccessResult.struct_class = Types::EnableSnapshotBlockPublicAccessResult
+
     EnableTransitGatewayRouteTablePropagationRequest.add_member(:transit_gateway_route_table_id, Shapes::ShapeRef.new(shape: TransitGatewayRouteTableId, required: true, location_name: "TransitGatewayRouteTableId"))
     EnableTransitGatewayRouteTablePropagationRequest.add_member(:transit_gateway_attachment_id, Shapes::ShapeRef.new(shape: TransitGatewayAttachmentId, location_name: "TransitGatewayAttachmentId"))
     EnableTransitGatewayRouteTablePropagationRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
@@ -8986,6 +9006,12 @@ module Aws::EC2
     GetSerialConsoleAccessStatusResult.add_member(:serial_console_access_enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "serialConsoleAccessEnabled"))
     GetSerialConsoleAccessStatusResult.struct_class = Types::GetSerialConsoleAccessStatusResult
 
+    GetSnapshotBlockPublicAccessStateRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
+    GetSnapshotBlockPublicAccessStateRequest.struct_class = Types::GetSnapshotBlockPublicAccessStateRequest
+
+    GetSnapshotBlockPublicAccessStateResult.add_member(:state, Shapes::ShapeRef.new(shape: SnapshotBlockPublicAccessState, location_name: "state"))
+    GetSnapshotBlockPublicAccessStateResult.struct_class = Types::GetSnapshotBlockPublicAccessStateResult
+
     GetSpotPlacementScoresRequest.add_member(:instance_types, Shapes::ShapeRef.new(shape: InstanceTypes, location_name: "InstanceType"))
     GetSpotPlacementScoresRequest.add_member(:target_capacity, Shapes::ShapeRef.new(shape: SpotPlacementScoresTargetCapacity, required: true, location_name: "TargetCapacity"))
     GetSpotPlacementScoresRequest.add_member(:target_capacity_unit_type, Shapes::ShapeRef.new(shape: TargetCapacityUnitType, location_name: "TargetCapacityUnitType"))
@@ -18872,6 +18898,14 @@ module Aws::EC2
         o.output = Shapes::ShapeRef.new(shape: DisableSerialConsoleAccessResult)
       end)
 
+      api.add_operation(:disable_snapshot_block_public_access, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "DisableSnapshotBlockPublicAccess"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: DisableSnapshotBlockPublicAccessRequest)
+        o.output = Shapes::ShapeRef.new(shape: DisableSnapshotBlockPublicAccessResult)
+      end)
+
       api.add_operation(:disable_transit_gateway_route_table_propagation, Seahorse::Model::Operation.new.tap do |o|
         o.name = "DisableTransitGatewayRouteTablePropagation"
         o.http_method = "POST"
@@ -19104,6 +19138,14 @@ module Aws::EC2
         o.output = Shapes::ShapeRef.new(shape: EnableSerialConsoleAccessResult)
       end)
 
+      api.add_operation(:enable_snapshot_block_public_access, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "EnableSnapshotBlockPublicAccess"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: EnableSnapshotBlockPublicAccessRequest)
+        o.output = Shapes::ShapeRef.new(shape: EnableSnapshotBlockPublicAccessResult)
+      end)
+
       api.add_operation(:enable_transit_gateway_route_table_propagation, Seahorse::Model::Operation.new.tap do |o|
         o.name = "EnableTransitGatewayRouteTablePropagation"
         o.http_method = "POST"
@@ -19508,6 +19550,14 @@ module Aws::EC2
         o.output = Shapes::ShapeRef.new(shape: GetSerialConsoleAccessStatusResult)
       end)
 
+      api.add_operation(:get_snapshot_block_public_access_state, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "GetSnapshotBlockPublicAccessState"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: GetSnapshotBlockPublicAccessStateRequest)
+        o.output = Shapes::ShapeRef.new(shape: GetSnapshotBlockPublicAccessStateResult)
+      end)
+
       api.add_operation(:get_spot_placement_scores, Seahorse::Model::Operation.new.tap do |o|
         o.name = "GetSpotPlacementScores"
         o.http_method = "POST"

data/lib/aws-sdk-ec2/endpoints.rb

@@ -5318,6 +5318,20 @@ module Aws::EC2
       end
     end
 
+    class DisableSnapshotBlockPublicAccess
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::EC2::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+        )
+      end
+    end
+
     class DisableTransitGatewayRouteTablePropagation
       def self.build(context)
         unless context.config.regional_endpoint
@@ -5724,6 +5738,20 @@ module Aws::EC2
       end
     end
 
+    class EnableSnapshotBlockPublicAccess
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::EC2::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+        )
+      end
+    end
+
     class EnableTransitGatewayRouteTablePropagation
       def self.build(context)
         unless context.config.regional_endpoint
@@ -6284,6 +6312,20 @@ module Aws::EC2
       end
     end
 
+    class GetSnapshotBlockPublicAccessState
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::EC2::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+        )
+      end
+    end
+
     class GetSpotPlacementScores
       def self.build(context)
         unless context.config.regional_endpoint

data/lib/aws-sdk-ec2/plugins/endpoints.rb

@@ -814,6 +814,8 @@ module Aws::EC2
             Aws::EC2::Endpoints::DisableIpamOrganizationAdminAccount.build(context)
           when :disable_serial_console_access
             Aws::EC2::Endpoints::DisableSerialConsoleAccess.build(context)
+          when :disable_snapshot_block_public_access
+            Aws::EC2::Endpoints::DisableSnapshotBlockPublicAccess.build(context)
           when :disable_transit_gateway_route_table_propagation
             Aws::EC2::Endpoints::DisableTransitGatewayRouteTablePropagation.build(context)
           when :disable_vgw_route_propagation
@@ -872,6 +874,8 @@ module Aws::EC2
             Aws::EC2::Endpoints::EnableReachabilityAnalyzerOrganizationSharing.build(context)
           when :enable_serial_console_access
             Aws::EC2::Endpoints::EnableSerialConsoleAccess.build(context)
+          when :enable_snapshot_block_public_access
+            Aws::EC2::Endpoints::EnableSnapshotBlockPublicAccess.build(context)
           when :enable_transit_gateway_route_table_propagation
             Aws::EC2::Endpoints::EnableTransitGatewayRouteTablePropagation.build(context)
           when :enable_vgw_route_propagation
@@ -952,6 +956,8 @@ module Aws::EC2
             Aws::EC2::Endpoints::GetSecurityGroupsForVpc.build(context)
           when :get_serial_console_access_status
             Aws::EC2::Endpoints::GetSerialConsoleAccessStatus.build(context)
+          when :get_snapshot_block_public_access_state
+            Aws::EC2::Endpoints::GetSnapshotBlockPublicAccessState.build(context)
           when :get_spot_placement_scores
             Aws::EC2::Endpoints::GetSpotPlacementScores.build(context)
           when :get_subnet_cidr_reservations

data/lib/aws-sdk-ec2/types.rb

@@ -28205,6 +28205,33 @@ module Aws::EC2
       include Aws::Structure
     end
 
+    # @!attribute [rw] dry_run
+    #   Checks whether you have the required permissions for the action,
+    #   without actually making the request, and provides an error response.
+    #   If you have the required permissions, the error response is
+    #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DisableSnapshotBlockPublicAccessRequest AWS API Documentation
+    #
+    class DisableSnapshotBlockPublicAccessRequest < Struct.new(
+      :dry_run)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] state
+    #   Returns `unblocked` if the request succeeds.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DisableSnapshotBlockPublicAccessResult AWS API Documentation
+    #
+    class DisableSnapshotBlockPublicAccessResult < Struct.new(
+      :state)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] transit_gateway_route_table_id
     #   The ID of the propagation route table.
     #   @return [String]
@@ -30353,6 +30380,62 @@ module Aws::EC2
       include Aws::Structure
     end
 
+    # @!attribute [rw] state
+    #   The mode in which to enable block public access for snapshots for
+    #   the Region. Specify one of the following values:
+    #
+    #   * `block-all-sharing` - Prevents all public sharing of snapshots in
+    #     the Region. Users in the account will no longer be able to request
+    #     new public sharing. Additionally, snapshots that are already
+    #     publicly shared are treated as private and they are no longer
+    #     publicly available.
+    #
+    #     <note markdown="1"> If you enable block public access for snapshots in
+    #     `block-all-sharing` mode, it does not change the permissions for
+    #     snapshots that are already publicly shared. Instead, it prevents
+    #     these snapshots from be publicly visible and publicly accessible.
+    #     Therefore, the attributes for these snapshots still indicate that
+    #     they are publicly shared, even though they are not publicly
+    #     available.
+    #
+    #      </note>
+    #
+    #   * `block-new-sharing` - Prevents only new public sharing of
+    #     snapshots in the Region. Users in the account will no longer be
+    #     able to request new public sharing. However, snapshots that are
+    #     already publicly shared, remain publicly available.
+    #   @return [String]
+    #
+    # @!attribute [rw] dry_run
+    #   Checks whether you have the required permissions for the action,
+    #   without actually making the request, and provides an error response.
+    #   If you have the required permissions, the error response is
+    #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/EnableSnapshotBlockPublicAccessRequest AWS API Documentation
+    #
+    class EnableSnapshotBlockPublicAccessRequest < Struct.new(
+      :state,
+      :dry_run)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] state
+    #   The state of block public access for snapshots for the account and
+    #   Region. Returns either `block-all-sharing` or `block-new-sharing` if
+    #   the request succeeds.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/EnableSnapshotBlockPublicAccessResult AWS API Documentation
+    #
+    class EnableSnapshotBlockPublicAccessResult < Struct.new(
+      :state)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] transit_gateway_route_table_id
     #   The ID of the propagation route table.
     #   @return [String]
@@ -34392,6 +34475,47 @@ module Aws::EC2
       include Aws::Structure
     end
 
+    # @!attribute [rw] dry_run
+    #   Checks whether you have the required permissions for the action,
+    #   without actually making the request, and provides an error response.
+    #   If you have the required permissions, the error response is
+    #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/GetSnapshotBlockPublicAccessStateRequest AWS API Documentation
+    #
+    class GetSnapshotBlockPublicAccessStateRequest < Struct.new(
+      :dry_run)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] state
+    #   The current state of block public access for snapshots. Possible
+    #   values include:
+    #
+    #   * `block-all-sharing` - All public sharing of snapshots is blocked.
+    #     Users in the account can't request new public sharing.
+    #     Additionally, snapshots that were already publicly shared are
+    #     treated as private and are not publicly available.
+    #
+    #   * `block-new-sharing` - Only new public sharing of snapshots is
+    #     blocked. Users in the account can't request new public sharing.
+    #     However, snapshots that were already publicly shared, remain
+    #     publicly available.
+    #
+    #   * `unblocked` - Public sharing is not blocked. Users can publicly
+    #     share snapshots.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/GetSnapshotBlockPublicAccessStateResult AWS API Documentation
+    #
+    class GetSnapshotBlockPublicAccessStateResult < Struct.new(
+      :state)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] instance_types
     #   The instance types. We recommend that you specify at least three
     #   instance types. If you specify one or two instance types, or specify

data/lib/aws-sdk-ec2.rb

@@ -76,6 +76,6 @@ require_relative 'aws-sdk-ec2/customizations'
 # @!group service
 module Aws::EC2
 
-  GEM_VERSION = '1.417.0'
+  GEM_VERSION = '1.418.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-ec2
 version: !ruby/object:Gem::Version
-  version: 1.417.0
+  version: 1.418.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-10-31 00:00:00.000000000 Z
+date: 2023-11-09 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sigv4