aws-sdk-efs 1.23.0 → 1.24.0

data/lib/aws-sdk-efs/errors.rb

@@ -10,6 +10,74 @@ module Aws::EFS
 
     extend Aws::Errors::DynamicErrors
 
+    class AccessPointAlreadyExists < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::EFS::Types::AccessPointAlreadyExists] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def error_code
+        @data[:error_code]
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+
+      # @return [String]
+      def access_point_id
+        @data[:access_point_id]
+      end
+
+    end
+
+    class AccessPointLimitExceeded < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::EFS::Types::AccessPointLimitExceeded] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def error_code
+        @data[:error_code]
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+
+    end
+
+    class AccessPointNotFound < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::EFS::Types::AccessPointNotFound] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def error_code
+        @data[:error_code]
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+
+    end
+
     class BadRequest < ServiceError
 
       # @param [Seahorse::Client::RequestContext] context
@@ -225,6 +293,27 @@ module Aws::EFS
 
     end
 
+    class InvalidPolicyException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::EFS::Types::InvalidPolicyException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def error_code
+        @data[:error_code]
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+
+    end
+
     class IpAddressInUse < ServiceError
 
       # @param [Seahorse::Client::RequestContext] context
@@ -330,6 +419,27 @@ module Aws::EFS
 
     end
 
+    class PolicyNotFound < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::EFS::Types::PolicyNotFound] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def error_code
+        @data[:error_code]
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+
+    end
+
     class SecurityGroupLimitExceeded < ServiceError
 
       # @param [Seahorse::Client::RequestContext] context

data/lib/aws-sdk-efs/types.rb

@@ -8,6 +8,125 @@
 module Aws::EFS
   module Types
 
+    # Returned if the access point you are trying to create already exists,
+    # with the creation token you provided in the request.
+    #
+    # @!attribute [rw] error_code
+    #   @return [String]
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @!attribute [rw] access_point_id
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/AccessPointAlreadyExists AWS API Documentation
+    #
+    class AccessPointAlreadyExists < Struct.new(
+      :error_code,
+      :message,
+      :access_point_id)
+      include Aws::Structure
+    end
+
+    # Provides a description of an EFS file system access point.
+    #
+    # @!attribute [rw] client_token
+    #   The opaque string specified in the request to ensure idempotent
+    #   creation.
+    #   @return [String]
+    #
+    # @!attribute [rw] name
+    #   The name of the access point. This is the value of the `Name` tag.
+    #   @return [String]
+    #
+    # @!attribute [rw] tags
+    #   The tags associated with the access point, presented as an array of
+    #   Tag objects.
+    #   @return [Array<Types::Tag>]
+    #
+    # @!attribute [rw] access_point_id
+    #   The ID of the access point, assigned by Amazon EFS.
+    #   @return [String]
+    #
+    # @!attribute [rw] access_point_arn
+    #   The unique Amazon Resource Name (ARN) associated with the access
+    #   point.
+    #   @return [String]
+    #
+    # @!attribute [rw] file_system_id
+    #   The ID of the EFS file system that the access point applies to.
+    #   @return [String]
+    #
+    # @!attribute [rw] posix_user
+    #   The full POSIX identity, including the user ID, group ID, and
+    #   secondary group IDs on the access point that is used for all file
+    #   operations by NFS clients using the access point.
+    #   @return [Types::PosixUser]
+    #
+    # @!attribute [rw] root_directory
+    #   The directory on the Amazon EFS file system that the access point
+    #   exposes as the root directory to NFS clients using the access point.
+    #   @return [Types::RootDirectory]
+    #
+    # @!attribute [rw] owner_id
+    #   Identified the AWS account that owns the access point resource.
+    #   @return [String]
+    #
+    # @!attribute [rw] life_cycle_state
+    #   Identifies the lifecycle phase of the access point.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/AccessPointDescription AWS API Documentation
+    #
+    class AccessPointDescription < Struct.new(
+      :client_token,
+      :name,
+      :tags,
+      :access_point_id,
+      :access_point_arn,
+      :file_system_id,
+      :posix_user,
+      :root_directory,
+      :owner_id,
+      :life_cycle_state)
+      include Aws::Structure
+    end
+
+    # Returned if the AWS account has already created the maximum number of
+    # access points allowed per file system.
+    #
+    # @!attribute [rw] error_code
+    #   @return [String]
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/AccessPointLimitExceeded AWS API Documentation
+    #
+    class AccessPointLimitExceeded < Struct.new(
+      :error_code,
+      :message)
+      include Aws::Structure
+    end
+
+    # Returned if the specified `AccessPointId` value doesn't exist in the
+    # requester's AWS account.
+    #
+    # @!attribute [rw] error_code
+    #   @return [String]
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/AccessPointNotFound AWS API Documentation
+    #
+    class AccessPointNotFound < Struct.new(
+      :error_code,
+      :message)
+      include Aws::Structure
+    end
+
     # Returned if the request is malformed or contains an error such as an
     # invalid parameter value or a missing required parameter.
     #
@@ -25,6 +144,78 @@ module Aws::EFS
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass CreateAccessPointRequest
+    #   data as a hash:
+    #
+    #       {
+    #         client_token: "ClientToken", # required
+    #         tags: [
+    #           {
+    #             key: "TagKey", # required
+    #             value: "TagValue", # required
+    #           },
+    #         ],
+    #         file_system_id: "FileSystemId", # required
+    #         posix_user: {
+    #           uid: 1, # required
+    #           gid: 1, # required
+    #           secondary_gids: [1],
+    #         },
+    #         root_directory: {
+    #           path: "Path",
+    #           creation_info: {
+    #             owner_uid: 1, # required
+    #             owner_gid: 1, # required
+    #             permissions: "Permissions", # required
+    #           },
+    #         },
+    #       }
+    #
+    # @!attribute [rw] client_token
+    #   A string of up to 64 ASCII characters that Amazon EFS uses to ensure
+    #   idempotent creation.
+    #
+    #   **A suitable default value is auto-generated.** You should normally
+    #   not need to pass this option.
+    #   @return [String]
+    #
+    # @!attribute [rw] tags
+    #   Creates tags associated with the access point. Each tag is a
+    #   key-value pair.
+    #   @return [Array<Types::Tag>]
+    #
+    # @!attribute [rw] file_system_id
+    #   The ID of the EFS file system that the access point provides access
+    #   to.
+    #   @return [String]
+    #
+    # @!attribute [rw] posix_user
+    #   The operating system user and group applied to all file system
+    #   requests made using the access point.
+    #   @return [Types::PosixUser]
+    #
+    # @!attribute [rw] root_directory
+    #   Specifies the directory on the Amazon EFS file system that the
+    #   access point exposes as the root directory of your file system to
+    #   NFS clients using the access point. The clients using the access
+    #   point can only access the root directory and below. If the
+    #   `RootDirectory` &gt; `Path` specified does not exist, EFS creates it
+    #   and applies the `CreationInfo` settings when a client connects to an
+    #   access point. When specifying a `RootDirectory`, you need to provide
+    #   the `Path`, and the `CreationInfo` is optional.
+    #   @return [Types::RootDirectory]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/CreateAccessPointRequest AWS API Documentation
+    #
+    class CreateAccessPointRequest < Struct.new(
+      :client_token,
+      :tags,
+      :file_system_id,
+      :posix_user,
+      :root_directory)
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass CreateFileSystemRequest
     #   data as a hash:
     #
@@ -46,6 +237,9 @@ module Aws::EFS
     # @!attribute [rw] creation_token
     #   A string of up to 64 ASCII characters. Amazon EFS uses this to
     #   ensure idempotent creation.
+    #
+    #   **A suitable default value is auto-generated.** You should normally
+    #   not need to pass this option.
     #   @return [String]
     #
     # @!attribute [rw] performance_mode
@@ -208,6 +402,87 @@ module Aws::EFS
       include Aws::Structure
     end
 
+    # Required if the `RootDirectory` &gt; `Path` specified does not exist.
+    # Specifies the POSIX IDs and permissions to apply to the access
+    # point's `RootDirectory` &gt; `Path`. If the access point root
+    # directory does not exist, EFS creates it with these settings when a
+    # client connects to the access point. When specifying `CreationInfo`,
+    # you must include values for all properties.
+    #
+    # If you do not provide `CreationInfo` and the specified `RootDirectory`
+    # does not exist, attempts to mount the file system using the access
+    # point will fail.
+    #
+    # @note When making an API call, you may pass CreationInfo
+    #   data as a hash:
+    #
+    #       {
+    #         owner_uid: 1, # required
+    #         owner_gid: 1, # required
+    #         permissions: "Permissions", # required
+    #       }
+    #
+    # @!attribute [rw] owner_uid
+    #   Specifies the POSIX user ID to apply to the `RootDirectory`. Accepts
+    #   values from 0 to 2^32 (4294967295).
+    #   @return [Integer]
+    #
+    # @!attribute [rw] owner_gid
+    #   Specifies the POSIX group ID to apply to the `RootDirectory`.
+    #   Accepts values from 0 to 2^32 (4294967295).
+    #   @return [Integer]
+    #
+    # @!attribute [rw] permissions
+    #   Specifies the POSIX permissions to apply to the `RootDirectory`, in
+    #   the format of an octal number representing the file's mode bits.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/CreationInfo AWS API Documentation
+    #
+    class CreationInfo < Struct.new(
+      :owner_uid,
+      :owner_gid,
+      :permissions)
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass DeleteAccessPointRequest
+    #   data as a hash:
+    #
+    #       {
+    #         access_point_id: "AccessPointId", # required
+    #       }
+    #
+    # @!attribute [rw] access_point_id
+    #   The ID of the access point that you want to delete.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/DeleteAccessPointRequest AWS API Documentation
+    #
+    class DeleteAccessPointRequest < Struct.new(
+      :access_point_id)
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass DeleteFileSystemPolicyRequest
+    #   data as a hash:
+    #
+    #       {
+    #         file_system_id: "FileSystemId", # required
+    #       }
+    #
+    # @!attribute [rw] file_system_id
+    #   Specifies the EFS file system for which to delete the
+    #   `FileSystemPolicy`.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/DeleteFileSystemPolicyRequest AWS API Documentation
+    #
+    class DeleteFileSystemPolicyRequest < Struct.new(
+      :file_system_id)
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass DeleteFileSystemRequest
     #   data as a hash:
     #
@@ -285,6 +560,86 @@ module Aws::EFS
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass DescribeAccessPointsRequest
+    #   data as a hash:
+    #
+    #       {
+    #         max_results: 1,
+    #         next_token: "Token",
+    #         access_point_id: "AccessPointId",
+    #         file_system_id: "FileSystemId",
+    #       }
+    #
+    # @!attribute [rw] max_results
+    #   (Optional) When retrieving all access points for a file system, you
+    #   can optionally specify the `MaxItems` parameter to limit the number
+    #   of objects returned in a response. The default value is 100.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] next_token
+    #   `NextToken` is present if the response is paginated. You can use
+    #   `NextMarker` in the subsequent request to fetch the next page of
+    #   access point descriptions.
+    #   @return [String]
+    #
+    # @!attribute [rw] access_point_id
+    #   (Optional) Specifies an EFS access point to describe in the
+    #   response; mutually exclusive with `FileSystemId`.
+    #   @return [String]
+    #
+    # @!attribute [rw] file_system_id
+    #   (Optional) If you provide a `FileSystemId`, EFS returns all access
+    #   points for that file system; mutually exclusive with
+    #   `AccessPointId`.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/DescribeAccessPointsRequest AWS API Documentation
+    #
+    class DescribeAccessPointsRequest < Struct.new(
+      :max_results,
+      :next_token,
+      :access_point_id,
+      :file_system_id)
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] access_points
+    #   An array of access point descriptions.
+    #   @return [Array<Types::AccessPointDescription>]
+    #
+    # @!attribute [rw] next_token
+    #   Present if there are more access points than returned in the
+    #   response. You can use the NextMarker in the subsequent request to
+    #   fetch the additional descriptions.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/DescribeAccessPointsResponse AWS API Documentation
+    #
+    class DescribeAccessPointsResponse < Struct.new(
+      :access_points,
+      :next_token)
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass DescribeFileSystemPolicyRequest
+    #   data as a hash:
+    #
+    #       {
+    #         file_system_id: "FileSystemId", # required
+    #       }
+    #
+    # @!attribute [rw] file_system_id
+    #   Specifies which EFS file system to retrieve the `FileSystemPolicy`
+    #   for.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/DescribeFileSystemPolicyRequest AWS API Documentation
+    #
+    class DescribeFileSystemPolicyRequest < Struct.new(
+      :file_system_id)
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass DescribeFileSystemsRequest
     #   data as a hash:
     #
@@ -297,9 +652,9 @@ module Aws::EFS
     #
     # @!attribute [rw] max_items
     #   (Optional) Specifies the maximum number of file systems to return in
-    #   the response (integer). Currently, this number is automatically set
-    #   to 10, and other values are ignored. The response is paginated at 10
-    #   per page if you have more than 10 file systems.
+    #   the response (integer). This number is automatically set to 100. The
+    #   response is paginated at 100 per page if you have more than 100 file
+    #   systems.
     #   @return [Integer]
     #
     # @!attribute [rw] marker
@@ -409,13 +764,14 @@ module Aws::EFS
     #         marker: "Marker",
     #         file_system_id: "FileSystemId",
     #         mount_target_id: "MountTargetId",
+    #         access_point_id: "AccessPointId",
     #       }
     #
     # @!attribute [rw] max_items
     #   (Optional) Maximum number of mount targets to return in the
     #   response. Currently, this number is automatically set to 10, and
-    #   other values are ignored. The response is paginated at 10 per page
-    #   if you have more than 10 mount targets.
+    #   other values are ignored. The response is paginated at 100 per page
+    #   if you have more than 100 mount targets.
     #   @return [Integer]
     #
     # @!attribute [rw] marker
@@ -427,14 +783,22 @@ module Aws::EFS
     #
     # @!attribute [rw] file_system_id
     #   (Optional) ID of the file system whose mount targets you want to
-    #   list (String). It must be included in your request if
-    #   `MountTargetId` is not included.
+    #   list (String). It must be included in your request if an
+    #   `AccessPointId` or `MountTargetId` is not included. Accepts either a
+    #   file system ID or ARN as input.
     #   @return [String]
     #
     # @!attribute [rw] mount_target_id
     #   (Optional) ID of the mount target that you want to have described
     #   (String). It must be included in your request if `FileSystemId` is
-    #   not included.
+    #   not included. Accepts either a mount target ID or ARN as input.
+    #   @return [String]
+    #
+    # @!attribute [rw] access_point_id
+    #   (Optional) The ID of the access point whose mount targets that you
+    #   want to list. It must be included in your request if a
+    #   `FileSystemId` or `MountTargetId` is not included in your request.
+    #   Accepts either an access point ID or ARN as input.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/DescribeMountTargetsRequest AWS API Documentation
@@ -443,7 +807,8 @@ module Aws::EFS
       :max_items,
       :marker,
       :file_system_id,
-      :mount_target_id)
+      :mount_target_id,
+      :access_point_id)
       include Aws::Structure
     end
 
@@ -483,9 +848,9 @@ module Aws::EFS
     #
     # @!attribute [rw] max_items
     #   (Optional) The maximum number of file system tags to return in the
-    #   response. Currently, this number is automatically set to 10, and
-    #   other values are ignored. The response is paginated at 10 per page
-    #   if you have more than 10 tags.
+    #   response. Currently, this number is automatically set to 100, and
+    #   other values are ignored. The response is paginated at 100 per page
+    #   if you have more than 100 tags.
     #   @return [Integer]
     #
     # @!attribute [rw] marker
@@ -716,6 +1081,23 @@ module Aws::EFS
       include Aws::Structure
     end
 
+    # @!attribute [rw] file_system_id
+    #   Specifies the EFS file system to which the `FileSystemPolicy`
+    #   applies.
+    #   @return [String]
+    #
+    # @!attribute [rw] policy
+    #   The JSON formatted `FileSystemPolicy` for the EFS file system.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/FileSystemPolicyDescription AWS API Documentation
+    #
+    class FileSystemPolicyDescription < Struct.new(
+      :file_system_id,
+      :policy)
+      include Aws::Structure
+    end
+
     # The latest known metered size (in bytes) of data stored in the file
     # system, in its `Value` field, and the time at which that size was
     # determined in its `Timestamp` field. The value doesn't represent the
@@ -827,6 +1209,25 @@ module Aws::EFS
       include Aws::Structure
     end
 
+    # Returned if the `FileSystemPolicy` is is malformed or contains an
+    # error such as an invalid parameter value or a missing required
+    # parameter. Returned in the case of a policy lockout safety check
+    # error.
+    #
+    # @!attribute [rw] error_code
+    #   @return [String]
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/InvalidPolicyException AWS API Documentation
+    #
+    class InvalidPolicyException < Struct.new(
+      :error_code,
+      :message)
+      include Aws::Structure
+    end
+
     # Returned if the request specified an `IpAddress` that is already in
     # use in the subnet.
     #
@@ -880,6 +1281,59 @@ module Aws::EFS
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass ListTagsForResourceRequest
+    #   data as a hash:
+    #
+    #       {
+    #         resource_id: "ResourceId", # required
+    #         max_results: 1,
+    #         next_token: "Token",
+    #       }
+    #
+    # @!attribute [rw] resource_id
+    #   Specifies the EFS resource you want to retrieve tags for. You can
+    #   retrieve tags for EFS file systems and access points using this API
+    #   endpoint.
+    #   @return [String]
+    #
+    # @!attribute [rw] max_results
+    #   (Optional) Specifies the maximum number of tag objects to return in
+    #   the response. The default value is 100.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] next_token
+    #   You can use `NextToken` in a subsequent request to fetch the next
+    #   page of access point descriptions if the response payload was
+    #   paginated.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/ListTagsForResourceRequest AWS API Documentation
+    #
+    class ListTagsForResourceRequest < Struct.new(
+      :resource_id,
+      :max_results,
+      :next_token)
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] tags
+    #   An array of the tags for the specified EFS resource.
+    #   @return [Array<Types::Tag>]
+    #
+    # @!attribute [rw] next_token
+    #   `NextToken` is present if the response payload is paginated. You can
+    #   use `NextToken` in a subsequent request to fetch the next page of
+    #   access point descriptions.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/ListTagsForResourceResponse AWS API Documentation
+    #
+    class ListTagsForResourceResponse < Struct.new(
+      :tags,
+      :next_token)
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass ModifyMountTargetSecurityGroupsRequest
     #   data as a hash:
     #
@@ -953,6 +1407,21 @@ module Aws::EFS
     #   created the mount target.
     #   @return [String]
     #
+    # @!attribute [rw] availability_zone_id
+    #   The unique and consistent identifier of the Availability Zone (AZ)
+    #   that the mount target resides in. For example, `use1-az1` is an AZ
+    #   ID for the us-east-1 Region and it has the same location in every
+    #   AWS account.
+    #   @return [String]
+    #
+    # @!attribute [rw] availability_zone_name
+    #   The name of the Availability Zone (AZ) that the mount target resides
+    #   in. AZs are independently mapped to names for each AWS account. For
+    #   example, the Availability Zone `us-east-1a` for your AWS account
+    #   might not be the same location as `us-east-1a` for another AWS
+    #   account.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/MountTargetDescription AWS API Documentation
     #
     class MountTargetDescription < Struct.new(
@@ -962,7 +1431,9 @@ module Aws::EFS
       :subnet_id,
       :life_cycle_state,
       :ip_address,
-      :network_interface_id)
+      :network_interface_id,
+      :availability_zone_id,
+      :availability_zone_name)
       include Aws::Structure
     end
 
@@ -1025,6 +1496,106 @@ module Aws::EFS
       include Aws::Structure
     end
 
+    # Returned if the default file system policy is in effect for the EFS
+    # file system specified.
+    #
+    # @!attribute [rw] error_code
+    #   @return [String]
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/PolicyNotFound AWS API Documentation
+    #
+    class PolicyNotFound < Struct.new(
+      :error_code,
+      :message)
+      include Aws::Structure
+    end
+
+    # The full POSIX identity, including the user ID, group ID, and any
+    # secondary group IDs, on the access point that is used for all file
+    # system operations performed by NFS clients using the access point.
+    #
+    # @note When making an API call, you may pass PosixUser
+    #   data as a hash:
+    #
+    #       {
+    #         uid: 1, # required
+    #         gid: 1, # required
+    #         secondary_gids: [1],
+    #       }
+    #
+    # @!attribute [rw] uid
+    #   The POSIX user ID used for all file system operations using this
+    #   access point.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] gid
+    #   The POSIX group ID used for all file system operations using this
+    #   access point.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] secondary_gids
+    #   Secondary POSIX group IDs used for all file system operations using
+    #   this access point.
+    #   @return [Array<Integer>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/PosixUser AWS API Documentation
+    #
+    class PosixUser < Struct.new(
+      :uid,
+      :gid,
+      :secondary_gids)
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass PutFileSystemPolicyRequest
+    #   data as a hash:
+    #
+    #       {
+    #         file_system_id: "FileSystemId", # required
+    #         policy: "Policy", # required
+    #         bypass_policy_lockout_safety_check: false,
+    #       }
+    #
+    # @!attribute [rw] file_system_id
+    #   The ID of the EFS file system that you want to create or update the
+    #   `FileSystemPolicy` for.
+    #   @return [String]
+    #
+    # @!attribute [rw] policy
+    #   The `FileSystemPolicy` that you're creating. Accepts a JSON
+    #   formatted policy definition. To find out more about the elements
+    #   that make up a file system policy, see [EFS Resource-based
+    #   Policies][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/efs/latest/ug/access-control-overview.html#access-control-manage-access-intro-resource-policies
+    #   @return [String]
+    #
+    # @!attribute [rw] bypass_policy_lockout_safety_check
+    #   (Optional) A flag to indicate whether to bypass the
+    #   `FileSystemPolicy` lockout safety check. The policy lockout safety
+    #   check determines whether the policy in the request will prevent the
+    #   principal making the request will be locked out from making future
+    #   `PutFileSystemPolicy` requests on the file system. Set
+    #   `BypassPolicyLockoutSafetyCheck` to `True` only when you intend to
+    #   prevent the principal that is making the request from making a
+    #   subsequent `PutFileSystemPolicy` request on the file system. The
+    #   default value is False.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/PutFileSystemPolicyRequest AWS API Documentation
+    #
+    class PutFileSystemPolicyRequest < Struct.new(
+      :file_system_id,
+      :policy,
+      :bypass_policy_lockout_safety_check)
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass PutLifecycleConfigurationRequest
     #   data as a hash:
     #
@@ -1057,6 +1628,54 @@ module Aws::EFS
       include Aws::Structure
     end
 
+    # Specifies the directory on the Amazon EFS file system that the access
+    # point provides access to. The access point exposes the specified file
+    # system path as the root directory of your file system to applications
+    # using the access point. NFS clients using the access point can only
+    # access data in the access point's `RootDirectory` and it's
+    # subdirectories.
+    #
+    # @note When making an API call, you may pass RootDirectory
+    #   data as a hash:
+    #
+    #       {
+    #         path: "Path",
+    #         creation_info: {
+    #           owner_uid: 1, # required
+    #           owner_gid: 1, # required
+    #           permissions: "Permissions", # required
+    #         },
+    #       }
+    #
+    # @!attribute [rw] path
+    #   Specifies the path on the EFS file system to expose as the root
+    #   directory to NFS clients using the access point to access the EFS
+    #   file system. A path can have up to four subdirectories. If the
+    #   specified path does not exist, you are required to provide the
+    #   `CreationInfo`.
+    #   @return [String]
+    #
+    # @!attribute [rw] creation_info
+    #   (Optional) Specifies the POSIX IDs and permissions to apply to the
+    #   access point's `RootDirectory`. If the `RootDirectory` &gt; `Path`
+    #   specified does not exist, EFS creates the root directory using the
+    #   `CreationInfo` settings when a client connects to an access point.
+    #   When specifying the `CreationInfo`, you must provide values for all
+    #   properties.
+    #
+    #   If you do not provide `CreationInfo` and the specified
+    #   `RootDirectory` &gt; `Path` does not exist, attempts to mount the
+    #   file system using the access point will fail.
+    #   @return [Types::CreationInfo]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/RootDirectory AWS API Documentation
+    #
+    class RootDirectory < Struct.new(
+      :path,
+      :creation_info)
+      include Aws::Structure
+    end
+
     # Returned if the size of `SecurityGroups` specified in the request is
     # greater than five.
     #
@@ -1136,6 +1755,35 @@ module Aws::EFS
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass TagResourceRequest
+    #   data as a hash:
+    #
+    #       {
+    #         resource_id: "ResourceId", # required
+    #         tags: [ # required
+    #           {
+    #             key: "TagKey", # required
+    #             value: "TagValue", # required
+    #           },
+    #         ],
+    #       }
+    #
+    # @!attribute [rw] resource_id
+    #   The ID specifying the EFS resource that you want to create a tag
+    #   for.
+    #   @return [String]
+    #
+    # @!attribute [rw] tags
+    #   @return [Array<Types::Tag>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/TagResourceRequest AWS API Documentation
+    #
+    class TagResourceRequest < Struct.new(
+      :resource_id,
+      :tags)
+      include Aws::Structure
+    end
+
     # Returned if the throughput mode or amount of provisioned throughput
     # can't be changed because the throughput limit of 1024 MiB/s has been
     # reached.
@@ -1185,6 +1833,31 @@ module Aws::EFS
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass UntagResourceRequest
+    #   data as a hash:
+    #
+    #       {
+    #         resource_id: "ResourceId", # required
+    #         tag_keys: ["TagKey"],
+    #       }
+    #
+    # @!attribute [rw] resource_id
+    #   Specifies the EFS resource that you want to remove tags from.
+    #   @return [String]
+    #
+    # @!attribute [rw] tag_keys
+    #   The keys of the key:value tag pairs that you want to remove from the
+    #   specified EFS resource.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/elasticfilesystem-2015-02-01/UntagResourceRequest AWS API Documentation
+    #
+    class UntagResourceRequest < Struct.new(
+      :resource_id,
+      :tag_keys)
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass UpdateFileSystemRequest
     #   data as a hash:
     #