aws-sdk-elasticloadbalancingv2 1.9.0 → 1.10.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: c8194340e3d62d5019e95b118a98010c90098fe7
4
- data.tar.gz: ca90d30662c659054beb918ac56b06ff141e5c0f
3
+ metadata.gz: a4557292c43d995a53f3558315252e1fcb908db8
4
+ data.tar.gz: 05cd83c5689de2c4a894877271da710b5943435f
5
5
  SHA512:
6
- metadata.gz: 78d91b127faf2edc672462abc254e1d531ccf606bd5c04193a67e8bf4b4a6bda333e51066e6acff72508054e4b7aec04e155f676d1dff13c92cb6549cdd11cb4
7
- data.tar.gz: e5e5a7873547cdb2ffaf40bfe9314565b17f395cc2db360697e7f35facc9280662d781462574d65087a576b373d69a2771d5d2c6e570fb29cf6b6d380c5127e6
6
+ metadata.gz: d6785cac659abb20c781717c51d0a719ed13a6533ce62f46792ceb91a98479591b018850612f76c3401af0b0e940e84b8bd00eccff582a13228fdc79b9af8ab1
7
+ data.tar.gz: ce3f7215b6ab025d6d32550e4373127654d361e37a7f6c670c367d9d8b8a85f3d4014befeaafcdbe86db0fb097184fbc1bce31dba216ebf2fde1196527546b7c
@@ -43,6 +43,6 @@ require_relative 'aws-sdk-elasticloadbalancingv2/customizations'
43
43
  # @service
44
44
  module Aws::ElasticLoadBalancingV2
45
45
 
46
- GEM_VERSION = '1.9.0'
46
+ GEM_VERSION = '1.10.0'
47
47
 
48
48
  end
@@ -290,14 +290,24 @@ module Aws::ElasticLoadBalancingV2
290
290
  # security policy.
291
291
  #
292
292
  # @option params [Array<Types::Certificate>] :certificates
293
- # \[HTTPS listeners\] The SSL server certificate. You must provide
294
- # exactly one certificate.
293
+ # \[HTTPS listeners\] The default SSL server certificate. You must
294
+ # provide exactly one certificate. To create a certificate list, use
295
+ # AddListenerCertificates.
295
296
  #
296
297
  # @option params [required, Array<Types::Action>] :default_actions
297
- # The default action for the listener. For Application Load Balancers,
298
- # the protocol of the specified target group must be HTTP or HTTPS. For
299
- # Network Load Balancers, the protocol of the specified target group
300
- # must be TCP.
298
+ # The actions for the default rule. The rule must include one forward
299
+ # action.
300
+ #
301
+ # If the action type is `forward`, you can specify a single target
302
+ # group. The protocol of the target group must be HTTP or HTTPS for an
303
+ # Application Load Balancer or TCP for a Network Load Balancer.
304
+ #
305
+ # If the action type is `authenticate-oidc`, you can use an identity
306
+ # provider that is OpenID Connect (OIDC) compliant to authenticate users
307
+ # as they access your application.
308
+ #
309
+ # If the action type is `authenticate-cognito`, you can use Amazon
310
+ # Cognito to authenticate users as they access your application.
301
311
  #
302
312
  # @return [Types::CreateListenerOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
303
313
  #
@@ -403,8 +413,36 @@ module Aws::ElasticLoadBalancingV2
403
413
  # ],
404
414
  # default_actions: [ # required
405
415
  # {
406
- # type: "forward", # required, accepts forward
407
- # target_group_arn: "TargetGroupArn", # required
416
+ # type: "forward", # required, accepts forward, authenticate-oidc, authenticate-cognito
417
+ # target_group_arn: "TargetGroupArn",
418
+ # authenticate_oidc_config: {
419
+ # issuer: "AuthenticateOidcActionIssuer", # required
420
+ # authorization_endpoint: "AuthenticateOidcActionAuthorizationEndpoint", # required
421
+ # token_endpoint: "AuthenticateOidcActionTokenEndpoint", # required
422
+ # user_info_endpoint: "AuthenticateOidcActionUserInfoEndpoint", # required
423
+ # client_id: "AuthenticateOidcActionClientId", # required
424
+ # client_secret: "AuthenticateOidcActionClientSecret", # required
425
+ # session_cookie_name: "AuthenticateOidcActionSessionCookieName",
426
+ # scope: "AuthenticateOidcActionScope",
427
+ # session_timeout: 1,
428
+ # authentication_request_extra_params: {
429
+ # "AuthenticateOidcActionAuthenticationRequestParamName" => "AuthenticateOidcActionAuthenticationRequestParamValue",
430
+ # },
431
+ # on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
432
+ # },
433
+ # authenticate_cognito_config: {
434
+ # user_pool_arn: "AuthenticateCognitoActionUserPoolArn", # required
435
+ # user_pool_client_id: "AuthenticateCognitoActionUserPoolClientId", # required
436
+ # user_pool_domain: "AuthenticateCognitoActionUserPoolDomain", # required
437
+ # session_cookie_name: "AuthenticateCognitoActionSessionCookieName",
438
+ # scope: "AuthenticateCognitoActionScope",
439
+ # session_timeout: 1,
440
+ # authentication_request_extra_params: {
441
+ # "AuthenticateCognitoActionAuthenticationRequestParamName" => "AuthenticateCognitoActionAuthenticationRequestParamValue",
442
+ # },
443
+ # on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
444
+ # },
445
+ # order: 1,
408
446
  # },
409
447
  # ],
410
448
  # })
@@ -421,8 +459,30 @@ module Aws::ElasticLoadBalancingV2
421
459
  # resp.listeners[0].certificates[0].is_default #=> Boolean
422
460
  # resp.listeners[0].ssl_policy #=> String
423
461
  # resp.listeners[0].default_actions #=> Array
424
- # resp.listeners[0].default_actions[0].type #=> String, one of "forward"
462
+ # resp.listeners[0].default_actions[0].type #=> String, one of "forward", "authenticate-oidc", "authenticate-cognito"
425
463
  # resp.listeners[0].default_actions[0].target_group_arn #=> String
464
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.issuer #=> String
465
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.authorization_endpoint #=> String
466
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.token_endpoint #=> String
467
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.user_info_endpoint #=> String
468
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.client_id #=> String
469
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.client_secret #=> String
470
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.session_cookie_name #=> String
471
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.scope #=> String
472
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.session_timeout #=> Integer
473
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.authentication_request_extra_params #=> Hash
474
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.authentication_request_extra_params["AuthenticateOidcActionAuthenticationRequestParamName"] #=> String
475
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.on_unauthenticated_request #=> String, one of "deny", "allow", "authenticate"
476
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.user_pool_arn #=> String
477
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.user_pool_client_id #=> String
478
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.user_pool_domain #=> String
479
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.session_cookie_name #=> String
480
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.scope #=> String
481
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.session_timeout #=> Integer
482
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.authentication_request_extra_params #=> Hash
483
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.authentication_request_extra_params["AuthenticateCognitoActionAuthenticationRequestParamName"] #=> String
484
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.on_unauthenticated_request #=> String, one of "deny", "allow", "authenticate"
485
+ # resp.listeners[0].default_actions[0].order #=> Integer
426
486
  #
427
487
  # @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/CreateListener AWS API Documentation
428
488
  #
@@ -679,10 +739,10 @@ module Aws::ElasticLoadBalancingV2
679
739
  # associated with an Application Load Balancer.
680
740
  #
681
741
  # Rules are evaluated in priority order, from the lowest value to the
682
- # highest value. When the condition for a rule is met, the specified
683
- # action is taken. If no conditions are met, the action for the default
684
- # rule is taken. For more information, see [Listener Rules][1] in the
685
- # *Application Load Balancers Guide*.
742
+ # highest value. When the conditions for a rule are met, its actions are
743
+ # performed. If the conditions for no rules are met, the actions for the
744
+ # default rule are performed. For more information, see [Listener
745
+ # Rules][1] in the *Application Load Balancers Guide*.
686
746
  #
687
747
  # To view your current rules, use DescribeRules. To update a rule, use
688
748
  # ModifyRule. To set the priorities of your rules, use
@@ -728,13 +788,22 @@ module Aws::ElasticLoadBalancingV2
728
788
  # * ? (matches exactly 1 character)
729
789
  #
730
790
  # @option params [required, Integer] :priority
731
- # The priority for the rule. A listener can't have multiple rules with
732
- # the same priority.
791
+ # The rule priority. A listener can't have multiple rules with the same
792
+ # priority.
733
793
  #
734
794
  # @option params [required, Array<Types::Action>] :actions
735
- # An action. Each action has the type `forward` and specifies a target
795
+ # The actions. Each rule must include one forward action.
796
+ #
797
+ # If the action type is `forward`, you can specify a single target
736
798
  # group.
737
799
  #
800
+ # If the action type is `authenticate-oidc`, you can use an identity
801
+ # provider that is OpenID Connect (OIDC) compliant to authenticate users
802
+ # as they access your application.
803
+ #
804
+ # If the action type is `authenticate-cognito`, you can use Amazon
805
+ # Cognito to authenticate users as they access your application.
806
+ #
738
807
  # @return [Types::CreateRuleOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
739
808
  #
740
809
  # * {Types::CreateRuleOutput#rules #rules} => Array&lt;Types::Rule&gt;
@@ -802,8 +871,36 @@ module Aws::ElasticLoadBalancingV2
802
871
  # priority: 1, # required
803
872
  # actions: [ # required
804
873
  # {
805
- # type: "forward", # required, accepts forward
806
- # target_group_arn: "TargetGroupArn", # required
874
+ # type: "forward", # required, accepts forward, authenticate-oidc, authenticate-cognito
875
+ # target_group_arn: "TargetGroupArn",
876
+ # authenticate_oidc_config: {
877
+ # issuer: "AuthenticateOidcActionIssuer", # required
878
+ # authorization_endpoint: "AuthenticateOidcActionAuthorizationEndpoint", # required
879
+ # token_endpoint: "AuthenticateOidcActionTokenEndpoint", # required
880
+ # user_info_endpoint: "AuthenticateOidcActionUserInfoEndpoint", # required
881
+ # client_id: "AuthenticateOidcActionClientId", # required
882
+ # client_secret: "AuthenticateOidcActionClientSecret", # required
883
+ # session_cookie_name: "AuthenticateOidcActionSessionCookieName",
884
+ # scope: "AuthenticateOidcActionScope",
885
+ # session_timeout: 1,
886
+ # authentication_request_extra_params: {
887
+ # "AuthenticateOidcActionAuthenticationRequestParamName" => "AuthenticateOidcActionAuthenticationRequestParamValue",
888
+ # },
889
+ # on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
890
+ # },
891
+ # authenticate_cognito_config: {
892
+ # user_pool_arn: "AuthenticateCognitoActionUserPoolArn", # required
893
+ # user_pool_client_id: "AuthenticateCognitoActionUserPoolClientId", # required
894
+ # user_pool_domain: "AuthenticateCognitoActionUserPoolDomain", # required
895
+ # session_cookie_name: "AuthenticateCognitoActionSessionCookieName",
896
+ # scope: "AuthenticateCognitoActionScope",
897
+ # session_timeout: 1,
898
+ # authentication_request_extra_params: {
899
+ # "AuthenticateCognitoActionAuthenticationRequestParamName" => "AuthenticateCognitoActionAuthenticationRequestParamValue",
900
+ # },
901
+ # on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
902
+ # },
903
+ # order: 1,
807
904
  # },
808
905
  # ],
809
906
  # })
@@ -818,8 +915,30 @@ module Aws::ElasticLoadBalancingV2
818
915
  # resp.rules[0].conditions[0].values #=> Array
819
916
  # resp.rules[0].conditions[0].values[0] #=> String
820
917
  # resp.rules[0].actions #=> Array
821
- # resp.rules[0].actions[0].type #=> String, one of "forward"
918
+ # resp.rules[0].actions[0].type #=> String, one of "forward", "authenticate-oidc", "authenticate-cognito"
822
919
  # resp.rules[0].actions[0].target_group_arn #=> String
920
+ # resp.rules[0].actions[0].authenticate_oidc_config.issuer #=> String
921
+ # resp.rules[0].actions[0].authenticate_oidc_config.authorization_endpoint #=> String
922
+ # resp.rules[0].actions[0].authenticate_oidc_config.token_endpoint #=> String
923
+ # resp.rules[0].actions[0].authenticate_oidc_config.user_info_endpoint #=> String
924
+ # resp.rules[0].actions[0].authenticate_oidc_config.client_id #=> String
925
+ # resp.rules[0].actions[0].authenticate_oidc_config.client_secret #=> String
926
+ # resp.rules[0].actions[0].authenticate_oidc_config.session_cookie_name #=> String
927
+ # resp.rules[0].actions[0].authenticate_oidc_config.scope #=> String
928
+ # resp.rules[0].actions[0].authenticate_oidc_config.session_timeout #=> Integer
929
+ # resp.rules[0].actions[0].authenticate_oidc_config.authentication_request_extra_params #=> Hash
930
+ # resp.rules[0].actions[0].authenticate_oidc_config.authentication_request_extra_params["AuthenticateOidcActionAuthenticationRequestParamName"] #=> String
931
+ # resp.rules[0].actions[0].authenticate_oidc_config.on_unauthenticated_request #=> String, one of "deny", "allow", "authenticate"
932
+ # resp.rules[0].actions[0].authenticate_cognito_config.user_pool_arn #=> String
933
+ # resp.rules[0].actions[0].authenticate_cognito_config.user_pool_client_id #=> String
934
+ # resp.rules[0].actions[0].authenticate_cognito_config.user_pool_domain #=> String
935
+ # resp.rules[0].actions[0].authenticate_cognito_config.session_cookie_name #=> String
936
+ # resp.rules[0].actions[0].authenticate_cognito_config.scope #=> String
937
+ # resp.rules[0].actions[0].authenticate_cognito_config.session_timeout #=> Integer
938
+ # resp.rules[0].actions[0].authenticate_cognito_config.authentication_request_extra_params #=> Hash
939
+ # resp.rules[0].actions[0].authenticate_cognito_config.authentication_request_extra_params["AuthenticateCognitoActionAuthenticationRequestParamName"] #=> String
940
+ # resp.rules[0].actions[0].authenticate_cognito_config.on_unauthenticated_request #=> String, one of "deny", "allow", "authenticate"
941
+ # resp.rules[0].actions[0].order #=> Integer
823
942
  # resp.rules[0].is_default #=> Boolean
824
943
  #
825
944
  # @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/CreateRule AWS API Documentation
@@ -1372,8 +1491,30 @@ module Aws::ElasticLoadBalancingV2
1372
1491
  # resp.listeners[0].certificates[0].is_default #=> Boolean
1373
1492
  # resp.listeners[0].ssl_policy #=> String
1374
1493
  # resp.listeners[0].default_actions #=> Array
1375
- # resp.listeners[0].default_actions[0].type #=> String, one of "forward"
1494
+ # resp.listeners[0].default_actions[0].type #=> String, one of "forward", "authenticate-oidc", "authenticate-cognito"
1376
1495
  # resp.listeners[0].default_actions[0].target_group_arn #=> String
1496
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.issuer #=> String
1497
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.authorization_endpoint #=> String
1498
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.token_endpoint #=> String
1499
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.user_info_endpoint #=> String
1500
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.client_id #=> String
1501
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.client_secret #=> String
1502
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.session_cookie_name #=> String
1503
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.scope #=> String
1504
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.session_timeout #=> Integer
1505
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.authentication_request_extra_params #=> Hash
1506
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.authentication_request_extra_params["AuthenticateOidcActionAuthenticationRequestParamName"] #=> String
1507
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.on_unauthenticated_request #=> String, one of "deny", "allow", "authenticate"
1508
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.user_pool_arn #=> String
1509
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.user_pool_client_id #=> String
1510
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.user_pool_domain #=> String
1511
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.session_cookie_name #=> String
1512
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.scope #=> String
1513
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.session_timeout #=> Integer
1514
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.authentication_request_extra_params #=> Hash
1515
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.authentication_request_extra_params["AuthenticateCognitoActionAuthenticationRequestParamName"] #=> String
1516
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.on_unauthenticated_request #=> String, one of "deny", "allow", "authenticate"
1517
+ # resp.listeners[0].default_actions[0].order #=> Integer
1377
1518
  # resp.next_marker #=> String
1378
1519
  #
1379
1520
  # @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/DescribeListeners AWS API Documentation
@@ -1646,8 +1787,30 @@ module Aws::ElasticLoadBalancingV2
1646
1787
  # resp.rules[0].conditions[0].values #=> Array
1647
1788
  # resp.rules[0].conditions[0].values[0] #=> String
1648
1789
  # resp.rules[0].actions #=> Array
1649
- # resp.rules[0].actions[0].type #=> String, one of "forward"
1790
+ # resp.rules[0].actions[0].type #=> String, one of "forward", "authenticate-oidc", "authenticate-cognito"
1650
1791
  # resp.rules[0].actions[0].target_group_arn #=> String
1792
+ # resp.rules[0].actions[0].authenticate_oidc_config.issuer #=> String
1793
+ # resp.rules[0].actions[0].authenticate_oidc_config.authorization_endpoint #=> String
1794
+ # resp.rules[0].actions[0].authenticate_oidc_config.token_endpoint #=> String
1795
+ # resp.rules[0].actions[0].authenticate_oidc_config.user_info_endpoint #=> String
1796
+ # resp.rules[0].actions[0].authenticate_oidc_config.client_id #=> String
1797
+ # resp.rules[0].actions[0].authenticate_oidc_config.client_secret #=> String
1798
+ # resp.rules[0].actions[0].authenticate_oidc_config.session_cookie_name #=> String
1799
+ # resp.rules[0].actions[0].authenticate_oidc_config.scope #=> String
1800
+ # resp.rules[0].actions[0].authenticate_oidc_config.session_timeout #=> Integer
1801
+ # resp.rules[0].actions[0].authenticate_oidc_config.authentication_request_extra_params #=> Hash
1802
+ # resp.rules[0].actions[0].authenticate_oidc_config.authentication_request_extra_params["AuthenticateOidcActionAuthenticationRequestParamName"] #=> String
1803
+ # resp.rules[0].actions[0].authenticate_oidc_config.on_unauthenticated_request #=> String, one of "deny", "allow", "authenticate"
1804
+ # resp.rules[0].actions[0].authenticate_cognito_config.user_pool_arn #=> String
1805
+ # resp.rules[0].actions[0].authenticate_cognito_config.user_pool_client_id #=> String
1806
+ # resp.rules[0].actions[0].authenticate_cognito_config.user_pool_domain #=> String
1807
+ # resp.rules[0].actions[0].authenticate_cognito_config.session_cookie_name #=> String
1808
+ # resp.rules[0].actions[0].authenticate_cognito_config.scope #=> String
1809
+ # resp.rules[0].actions[0].authenticate_cognito_config.session_timeout #=> Integer
1810
+ # resp.rules[0].actions[0].authenticate_cognito_config.authentication_request_extra_params #=> Hash
1811
+ # resp.rules[0].actions[0].authenticate_cognito_config.authentication_request_extra_params["AuthenticateCognitoActionAuthenticationRequestParamName"] #=> String
1812
+ # resp.rules[0].actions[0].authenticate_cognito_config.on_unauthenticated_request #=> String, one of "deny", "allow", "authenticate"
1813
+ # resp.rules[0].actions[0].order #=> Integer
1651
1814
  # resp.rules[0].is_default #=> Boolean
1652
1815
  # resp.next_marker #=> String
1653
1816
  #
@@ -2190,21 +2353,33 @@ module Aws::ElasticLoadBalancingV2
2190
2353
  # Balancers support TCP.
2191
2354
  #
2192
2355
  # @option params [String] :ssl_policy
2193
- # The security policy that defines which protocols and ciphers are
2194
- # supported. For more information, see [Security Policies][1] in the
2195
- # *Application Load Balancers Guide*.
2356
+ # \[HTTPS listeners\] The security policy that defines which protocols
2357
+ # and ciphers are supported. For more information, see [Security
2358
+ # Policies][1] in the *Application Load Balancers Guide*.
2196
2359
  #
2197
2360
  #
2198
2361
  #
2199
2362
  # [1]: http://docs.aws.amazon.com/elasticloadbalancing/latest/application/create-https-listener.html#describe-ssl-policies
2200
2363
  #
2201
2364
  # @option params [Array<Types::Certificate>] :certificates
2202
- # The default SSL server certificate.
2365
+ # \[HTTPS listeners\] The default SSL server certificate. You must
2366
+ # provide exactly one certificate. To create a certificate list, use
2367
+ # AddListenerCertificates.
2203
2368
  #
2204
2369
  # @option params [Array<Types::Action>] :default_actions
2205
- # The default action. For Application Load Balancers, the protocol of
2206
- # the specified target group must be HTTP or HTTPS. For Network Load
2207
- # Balancers, the protocol of the specified target group must be TCP.
2370
+ # The actions for the default rule. The rule must include one forward
2371
+ # action.
2372
+ #
2373
+ # If the action type is `forward`, you can specify a single target
2374
+ # group. The protocol of the target group must be HTTP or HTTPS for an
2375
+ # Application Load Balancer or TCP for a Network Load Balancer.
2376
+ #
2377
+ # If the action type is `authenticate-oidc`, you can use an identity
2378
+ # provider that is OpenID Connect (OIDC) compliant to authenticate users
2379
+ # as they access your application.
2380
+ #
2381
+ # If the action type is `authenticate-cognito`, you can use Amazon
2382
+ # Cognito to authenticate users as they access your application.
2208
2383
  #
2209
2384
  # @return [Types::ModifyListenerOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
2210
2385
  #
@@ -2295,8 +2470,36 @@ module Aws::ElasticLoadBalancingV2
2295
2470
  # ],
2296
2471
  # default_actions: [
2297
2472
  # {
2298
- # type: "forward", # required, accepts forward
2299
- # target_group_arn: "TargetGroupArn", # required
2473
+ # type: "forward", # required, accepts forward, authenticate-oidc, authenticate-cognito
2474
+ # target_group_arn: "TargetGroupArn",
2475
+ # authenticate_oidc_config: {
2476
+ # issuer: "AuthenticateOidcActionIssuer", # required
2477
+ # authorization_endpoint: "AuthenticateOidcActionAuthorizationEndpoint", # required
2478
+ # token_endpoint: "AuthenticateOidcActionTokenEndpoint", # required
2479
+ # user_info_endpoint: "AuthenticateOidcActionUserInfoEndpoint", # required
2480
+ # client_id: "AuthenticateOidcActionClientId", # required
2481
+ # client_secret: "AuthenticateOidcActionClientSecret", # required
2482
+ # session_cookie_name: "AuthenticateOidcActionSessionCookieName",
2483
+ # scope: "AuthenticateOidcActionScope",
2484
+ # session_timeout: 1,
2485
+ # authentication_request_extra_params: {
2486
+ # "AuthenticateOidcActionAuthenticationRequestParamName" => "AuthenticateOidcActionAuthenticationRequestParamValue",
2487
+ # },
2488
+ # on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
2489
+ # },
2490
+ # authenticate_cognito_config: {
2491
+ # user_pool_arn: "AuthenticateCognitoActionUserPoolArn", # required
2492
+ # user_pool_client_id: "AuthenticateCognitoActionUserPoolClientId", # required
2493
+ # user_pool_domain: "AuthenticateCognitoActionUserPoolDomain", # required
2494
+ # session_cookie_name: "AuthenticateCognitoActionSessionCookieName",
2495
+ # scope: "AuthenticateCognitoActionScope",
2496
+ # session_timeout: 1,
2497
+ # authentication_request_extra_params: {
2498
+ # "AuthenticateCognitoActionAuthenticationRequestParamName" => "AuthenticateCognitoActionAuthenticationRequestParamValue",
2499
+ # },
2500
+ # on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
2501
+ # },
2502
+ # order: 1,
2300
2503
  # },
2301
2504
  # ],
2302
2505
  # })
@@ -2313,8 +2516,30 @@ module Aws::ElasticLoadBalancingV2
2313
2516
  # resp.listeners[0].certificates[0].is_default #=> Boolean
2314
2517
  # resp.listeners[0].ssl_policy #=> String
2315
2518
  # resp.listeners[0].default_actions #=> Array
2316
- # resp.listeners[0].default_actions[0].type #=> String, one of "forward"
2519
+ # resp.listeners[0].default_actions[0].type #=> String, one of "forward", "authenticate-oidc", "authenticate-cognito"
2317
2520
  # resp.listeners[0].default_actions[0].target_group_arn #=> String
2521
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.issuer #=> String
2522
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.authorization_endpoint #=> String
2523
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.token_endpoint #=> String
2524
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.user_info_endpoint #=> String
2525
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.client_id #=> String
2526
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.client_secret #=> String
2527
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.session_cookie_name #=> String
2528
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.scope #=> String
2529
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.session_timeout #=> Integer
2530
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.authentication_request_extra_params #=> Hash
2531
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.authentication_request_extra_params["AuthenticateOidcActionAuthenticationRequestParamName"] #=> String
2532
+ # resp.listeners[0].default_actions[0].authenticate_oidc_config.on_unauthenticated_request #=> String, one of "deny", "allow", "authenticate"
2533
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.user_pool_arn #=> String
2534
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.user_pool_client_id #=> String
2535
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.user_pool_domain #=> String
2536
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.session_cookie_name #=> String
2537
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.scope #=> String
2538
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.session_timeout #=> Integer
2539
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.authentication_request_extra_params #=> Hash
2540
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.authentication_request_extra_params["AuthenticateCognitoActionAuthenticationRequestParamName"] #=> String
2541
+ # resp.listeners[0].default_actions[0].authenticate_cognito_config.on_unauthenticated_request #=> String, one of "deny", "allow", "authenticate"
2542
+ # resp.listeners[0].default_actions[0].order #=> Integer
2318
2543
  #
2319
2544
  # @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/ModifyListener AWS API Documentation
2320
2545
  #
@@ -2504,16 +2729,55 @@ module Aws::ElasticLoadBalancingV2
2504
2729
  # Any existing properties that you do not modify retain their current
2505
2730
  # values.
2506
2731
  #
2507
- # To modify the default action, use ModifyListener.
2732
+ # To modify the actions for the default rule, use ModifyListener.
2508
2733
  #
2509
2734
  # @option params [required, String] :rule_arn
2510
2735
  # The Amazon Resource Name (ARN) of the rule.
2511
2736
  #
2512
2737
  # @option params [Array<Types::RuleCondition>] :conditions
2513
- # The conditions.
2738
+ # The conditions. Each condition specifies a field name and a single
2739
+ # value.
2740
+ #
2741
+ # If the field name is `host-header`, you can specify a single host name
2742
+ # (for example, my.example.com). A host name is case insensitive, can be
2743
+ # up to 128 characters in length, and can contain any of the following
2744
+ # characters. Note that you can include up to three wildcard characters.
2745
+ #
2746
+ # * A-Z, a-z, 0-9
2747
+ #
2748
+ # * \- .
2749
+ #
2750
+ # * * (matches 0 or more characters)
2751
+ #
2752
+ # * ? (matches exactly 1 character)
2753
+ #
2754
+ # If the field name is `path-pattern`, you can specify a single path
2755
+ # pattern. A path pattern is case sensitive, can be up to 128 characters
2756
+ # in length, and can contain any of the following characters. Note that
2757
+ # you can include up to three wildcard characters.
2758
+ #
2759
+ # * A-Z, a-z, 0-9
2760
+ #
2761
+ # * \_ - . $ / ~ " ' @ : +
2762
+ #
2763
+ # * &amp; (using &amp;amp;)
2764
+ #
2765
+ # * * (matches 0 or more characters)
2766
+ #
2767
+ # * ? (matches exactly 1 character)
2514
2768
  #
2515
2769
  # @option params [Array<Types::Action>] :actions
2516
- # The actions. The target group must use the HTTP or HTTPS protocol.
2770
+ # The actions.
2771
+ #
2772
+ # If the action type is `forward`, you can specify a single target
2773
+ # group.
2774
+ #
2775
+ # If the action type is `authenticate-oidc`, you can use an identity
2776
+ # provider that is OpenID Connect (OIDC) compliant to authenticate users
2777
+ # as they access your application.
2778
+ #
2779
+ # If the action type is `authenticate-cognito`, you can use Amazon
2780
+ # Cognito to authenticate users as they access your application.
2517
2781
  #
2518
2782
  # @return [Types::ModifyRuleOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
2519
2783
  #
@@ -2573,8 +2837,36 @@ module Aws::ElasticLoadBalancingV2
2573
2837
  # ],
2574
2838
  # actions: [
2575
2839
  # {
2576
- # type: "forward", # required, accepts forward
2577
- # target_group_arn: "TargetGroupArn", # required
2840
+ # type: "forward", # required, accepts forward, authenticate-oidc, authenticate-cognito
2841
+ # target_group_arn: "TargetGroupArn",
2842
+ # authenticate_oidc_config: {
2843
+ # issuer: "AuthenticateOidcActionIssuer", # required
2844
+ # authorization_endpoint: "AuthenticateOidcActionAuthorizationEndpoint", # required
2845
+ # token_endpoint: "AuthenticateOidcActionTokenEndpoint", # required
2846
+ # user_info_endpoint: "AuthenticateOidcActionUserInfoEndpoint", # required
2847
+ # client_id: "AuthenticateOidcActionClientId", # required
2848
+ # client_secret: "AuthenticateOidcActionClientSecret", # required
2849
+ # session_cookie_name: "AuthenticateOidcActionSessionCookieName",
2850
+ # scope: "AuthenticateOidcActionScope",
2851
+ # session_timeout: 1,
2852
+ # authentication_request_extra_params: {
2853
+ # "AuthenticateOidcActionAuthenticationRequestParamName" => "AuthenticateOidcActionAuthenticationRequestParamValue",
2854
+ # },
2855
+ # on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
2856
+ # },
2857
+ # authenticate_cognito_config: {
2858
+ # user_pool_arn: "AuthenticateCognitoActionUserPoolArn", # required
2859
+ # user_pool_client_id: "AuthenticateCognitoActionUserPoolClientId", # required
2860
+ # user_pool_domain: "AuthenticateCognitoActionUserPoolDomain", # required
2861
+ # session_cookie_name: "AuthenticateCognitoActionSessionCookieName",
2862
+ # scope: "AuthenticateCognitoActionScope",
2863
+ # session_timeout: 1,
2864
+ # authentication_request_extra_params: {
2865
+ # "AuthenticateCognitoActionAuthenticationRequestParamName" => "AuthenticateCognitoActionAuthenticationRequestParamValue",
2866
+ # },
2867
+ # on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
2868
+ # },
2869
+ # order: 1,
2578
2870
  # },
2579
2871
  # ],
2580
2872
  # })
@@ -2589,8 +2881,30 @@ module Aws::ElasticLoadBalancingV2
2589
2881
  # resp.rules[0].conditions[0].values #=> Array
2590
2882
  # resp.rules[0].conditions[0].values[0] #=> String
2591
2883
  # resp.rules[0].actions #=> Array
2592
- # resp.rules[0].actions[0].type #=> String, one of "forward"
2884
+ # resp.rules[0].actions[0].type #=> String, one of "forward", "authenticate-oidc", "authenticate-cognito"
2593
2885
  # resp.rules[0].actions[0].target_group_arn #=> String
2886
+ # resp.rules[0].actions[0].authenticate_oidc_config.issuer #=> String
2887
+ # resp.rules[0].actions[0].authenticate_oidc_config.authorization_endpoint #=> String
2888
+ # resp.rules[0].actions[0].authenticate_oidc_config.token_endpoint #=> String
2889
+ # resp.rules[0].actions[0].authenticate_oidc_config.user_info_endpoint #=> String
2890
+ # resp.rules[0].actions[0].authenticate_oidc_config.client_id #=> String
2891
+ # resp.rules[0].actions[0].authenticate_oidc_config.client_secret #=> String
2892
+ # resp.rules[0].actions[0].authenticate_oidc_config.session_cookie_name #=> String
2893
+ # resp.rules[0].actions[0].authenticate_oidc_config.scope #=> String
2894
+ # resp.rules[0].actions[0].authenticate_oidc_config.session_timeout #=> Integer
2895
+ # resp.rules[0].actions[0].authenticate_oidc_config.authentication_request_extra_params #=> Hash
2896
+ # resp.rules[0].actions[0].authenticate_oidc_config.authentication_request_extra_params["AuthenticateOidcActionAuthenticationRequestParamName"] #=> String
2897
+ # resp.rules[0].actions[0].authenticate_oidc_config.on_unauthenticated_request #=> String, one of "deny", "allow", "authenticate"
2898
+ # resp.rules[0].actions[0].authenticate_cognito_config.user_pool_arn #=> String
2899
+ # resp.rules[0].actions[0].authenticate_cognito_config.user_pool_client_id #=> String
2900
+ # resp.rules[0].actions[0].authenticate_cognito_config.user_pool_domain #=> String
2901
+ # resp.rules[0].actions[0].authenticate_cognito_config.session_cookie_name #=> String
2902
+ # resp.rules[0].actions[0].authenticate_cognito_config.scope #=> String
2903
+ # resp.rules[0].actions[0].authenticate_cognito_config.session_timeout #=> Integer
2904
+ # resp.rules[0].actions[0].authenticate_cognito_config.authentication_request_extra_params #=> Hash
2905
+ # resp.rules[0].actions[0].authenticate_cognito_config.authentication_request_extra_params["AuthenticateCognitoActionAuthenticationRequestParamName"] #=> String
2906
+ # resp.rules[0].actions[0].authenticate_cognito_config.on_unauthenticated_request #=> String, one of "deny", "allow", "authenticate"
2907
+ # resp.rules[0].actions[0].order #=> Integer
2594
2908
  # resp.rules[0].is_default #=> Boolean
2595
2909
  #
2596
2910
  # @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/ModifyRule AWS API Documentation
@@ -3084,8 +3398,30 @@ module Aws::ElasticLoadBalancingV2
3084
3398
  # resp.rules[0].conditions[0].values #=> Array
3085
3399
  # resp.rules[0].conditions[0].values[0] #=> String
3086
3400
  # resp.rules[0].actions #=> Array
3087
- # resp.rules[0].actions[0].type #=> String, one of "forward"
3401
+ # resp.rules[0].actions[0].type #=> String, one of "forward", "authenticate-oidc", "authenticate-cognito"
3088
3402
  # resp.rules[0].actions[0].target_group_arn #=> String
3403
+ # resp.rules[0].actions[0].authenticate_oidc_config.issuer #=> String
3404
+ # resp.rules[0].actions[0].authenticate_oidc_config.authorization_endpoint #=> String
3405
+ # resp.rules[0].actions[0].authenticate_oidc_config.token_endpoint #=> String
3406
+ # resp.rules[0].actions[0].authenticate_oidc_config.user_info_endpoint #=> String
3407
+ # resp.rules[0].actions[0].authenticate_oidc_config.client_id #=> String
3408
+ # resp.rules[0].actions[0].authenticate_oidc_config.client_secret #=> String
3409
+ # resp.rules[0].actions[0].authenticate_oidc_config.session_cookie_name #=> String
3410
+ # resp.rules[0].actions[0].authenticate_oidc_config.scope #=> String
3411
+ # resp.rules[0].actions[0].authenticate_oidc_config.session_timeout #=> Integer
3412
+ # resp.rules[0].actions[0].authenticate_oidc_config.authentication_request_extra_params #=> Hash
3413
+ # resp.rules[0].actions[0].authenticate_oidc_config.authentication_request_extra_params["AuthenticateOidcActionAuthenticationRequestParamName"] #=> String
3414
+ # resp.rules[0].actions[0].authenticate_oidc_config.on_unauthenticated_request #=> String, one of "deny", "allow", "authenticate"
3415
+ # resp.rules[0].actions[0].authenticate_cognito_config.user_pool_arn #=> String
3416
+ # resp.rules[0].actions[0].authenticate_cognito_config.user_pool_client_id #=> String
3417
+ # resp.rules[0].actions[0].authenticate_cognito_config.user_pool_domain #=> String
3418
+ # resp.rules[0].actions[0].authenticate_cognito_config.session_cookie_name #=> String
3419
+ # resp.rules[0].actions[0].authenticate_cognito_config.scope #=> String
3420
+ # resp.rules[0].actions[0].authenticate_cognito_config.session_timeout #=> Integer
3421
+ # resp.rules[0].actions[0].authenticate_cognito_config.authentication_request_extra_params #=> Hash
3422
+ # resp.rules[0].actions[0].authenticate_cognito_config.authentication_request_extra_params["AuthenticateCognitoActionAuthenticationRequestParamName"] #=> String
3423
+ # resp.rules[0].actions[0].authenticate_cognito_config.on_unauthenticated_request #=> String, one of "deny", "allow", "authenticate"
3424
+ # resp.rules[0].actions[0].order #=> Integer
3089
3425
  # resp.rules[0].is_default #=> Boolean
3090
3426
  #
3091
3427
  # @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/SetRulePriorities AWS API Documentation
@@ -3163,7 +3499,7 @@ module Aws::ElasticLoadBalancingV2
3163
3499
  # @option params [required, String] :load_balancer_arn
3164
3500
  # The Amazon Resource Name (ARN) of the load balancer.
3165
3501
  #
3166
- # @option params [required, Array<String>] :subnets
3502
+ # @option params [Array<String>] :subnets
3167
3503
  # The IDs of the public subnets. You must specify subnets from at least
3168
3504
  # two Availability Zones. You can specify only one subnet per
3169
3505
  # Availability Zone. You must specify either subnets or subnet mappings.
@@ -3210,7 +3546,7 @@ module Aws::ElasticLoadBalancingV2
3210
3546
  #
3211
3547
  # resp = client.set_subnets({
3212
3548
  # load_balancer_arn: "LoadBalancerArn", # required
3213
- # subnets: ["SubnetId"], # required
3549
+ # subnets: ["SubnetId"],
3214
3550
  # subnet_mappings: [
3215
3551
  # {
3216
3552
  # subnet_id: "SubnetId",
@@ -3250,7 +3586,7 @@ module Aws::ElasticLoadBalancingV2
3250
3586
  params: params,
3251
3587
  config: config)
3252
3588
  context[:gem_name] = 'aws-sdk-elasticloadbalancingv2'
3253
- context[:gem_version] = '1.9.0'
3589
+ context[:gem_version] = '1.10.0'
3254
3590
  Seahorse::Client::Request.new(handlers, context)
3255
3591
  end
3256
3592