aws-sdk-elasticloadbalancingv2 1.9.0 → 1.10.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -12,6 +12,7 @@ module Aws::ElasticLoadBalancingV2
|
|
12
12
|
include Seahorse::Model
|
13
13
|
|
14
14
|
Action = Shapes::StructureShape.new(name: 'Action')
|
15
|
+
ActionOrder = Shapes::IntegerShape.new(name: 'ActionOrder')
|
15
16
|
ActionTypeEnum = Shapes::StringShape.new(name: 'ActionTypeEnum')
|
16
17
|
Actions = Shapes::ListShape.new(name: 'Actions')
|
17
18
|
AddListenerCertificatesInput = Shapes::StructureShape.new(name: 'AddListenerCertificatesInput')
|
@@ -20,6 +21,31 @@ module Aws::ElasticLoadBalancingV2
|
|
20
21
|
AddTagsOutput = Shapes::StructureShape.new(name: 'AddTagsOutput')
|
21
22
|
AllocationId = Shapes::StringShape.new(name: 'AllocationId')
|
22
23
|
AllocationIdNotFoundException = Shapes::StructureShape.new(name: 'AllocationIdNotFoundException')
|
24
|
+
AuthenticateCognitoActionAuthenticationRequestExtraParams = Shapes::MapShape.new(name: 'AuthenticateCognitoActionAuthenticationRequestExtraParams')
|
25
|
+
AuthenticateCognitoActionAuthenticationRequestParamName = Shapes::StringShape.new(name: 'AuthenticateCognitoActionAuthenticationRequestParamName')
|
26
|
+
AuthenticateCognitoActionAuthenticationRequestParamValue = Shapes::StringShape.new(name: 'AuthenticateCognitoActionAuthenticationRequestParamValue')
|
27
|
+
AuthenticateCognitoActionConditionalBehaviorEnum = Shapes::StringShape.new(name: 'AuthenticateCognitoActionConditionalBehaviorEnum')
|
28
|
+
AuthenticateCognitoActionConfig = Shapes::StructureShape.new(name: 'AuthenticateCognitoActionConfig')
|
29
|
+
AuthenticateCognitoActionScope = Shapes::StringShape.new(name: 'AuthenticateCognitoActionScope')
|
30
|
+
AuthenticateCognitoActionSessionCookieName = Shapes::StringShape.new(name: 'AuthenticateCognitoActionSessionCookieName')
|
31
|
+
AuthenticateCognitoActionSessionTimeout = Shapes::IntegerShape.new(name: 'AuthenticateCognitoActionSessionTimeout')
|
32
|
+
AuthenticateCognitoActionUserPoolArn = Shapes::StringShape.new(name: 'AuthenticateCognitoActionUserPoolArn')
|
33
|
+
AuthenticateCognitoActionUserPoolClientId = Shapes::StringShape.new(name: 'AuthenticateCognitoActionUserPoolClientId')
|
34
|
+
AuthenticateCognitoActionUserPoolDomain = Shapes::StringShape.new(name: 'AuthenticateCognitoActionUserPoolDomain')
|
35
|
+
AuthenticateOidcActionAuthenticationRequestExtraParams = Shapes::MapShape.new(name: 'AuthenticateOidcActionAuthenticationRequestExtraParams')
|
36
|
+
AuthenticateOidcActionAuthenticationRequestParamName = Shapes::StringShape.new(name: 'AuthenticateOidcActionAuthenticationRequestParamName')
|
37
|
+
AuthenticateOidcActionAuthenticationRequestParamValue = Shapes::StringShape.new(name: 'AuthenticateOidcActionAuthenticationRequestParamValue')
|
38
|
+
AuthenticateOidcActionAuthorizationEndpoint = Shapes::StringShape.new(name: 'AuthenticateOidcActionAuthorizationEndpoint')
|
39
|
+
AuthenticateOidcActionClientId = Shapes::StringShape.new(name: 'AuthenticateOidcActionClientId')
|
40
|
+
AuthenticateOidcActionClientSecret = Shapes::StringShape.new(name: 'AuthenticateOidcActionClientSecret')
|
41
|
+
AuthenticateOidcActionConditionalBehaviorEnum = Shapes::StringShape.new(name: 'AuthenticateOidcActionConditionalBehaviorEnum')
|
42
|
+
AuthenticateOidcActionConfig = Shapes::StructureShape.new(name: 'AuthenticateOidcActionConfig')
|
43
|
+
AuthenticateOidcActionIssuer = Shapes::StringShape.new(name: 'AuthenticateOidcActionIssuer')
|
44
|
+
AuthenticateOidcActionScope = Shapes::StringShape.new(name: 'AuthenticateOidcActionScope')
|
45
|
+
AuthenticateOidcActionSessionCookieName = Shapes::StringShape.new(name: 'AuthenticateOidcActionSessionCookieName')
|
46
|
+
AuthenticateOidcActionSessionTimeout = Shapes::IntegerShape.new(name: 'AuthenticateOidcActionSessionTimeout')
|
47
|
+
AuthenticateOidcActionTokenEndpoint = Shapes::StringShape.new(name: 'AuthenticateOidcActionTokenEndpoint')
|
48
|
+
AuthenticateOidcActionUserInfoEndpoint = Shapes::StringShape.new(name: 'AuthenticateOidcActionUserInfoEndpoint')
|
23
49
|
AvailabilityZone = Shapes::StructureShape.new(name: 'AvailabilityZone')
|
24
50
|
AvailabilityZoneNotSupportedException = Shapes::StructureShape.new(name: 'AvailabilityZoneNotSupportedException')
|
25
51
|
AvailabilityZones = Shapes::ListShape.new(name: 'AvailabilityZones')
|
@@ -89,6 +115,7 @@ module Aws::ElasticLoadBalancingV2
|
|
89
115
|
HttpCode = Shapes::StringShape.new(name: 'HttpCode')
|
90
116
|
IncompatibleProtocolsException = Shapes::StructureShape.new(name: 'IncompatibleProtocolsException')
|
91
117
|
InvalidConfigurationRequestException = Shapes::StructureShape.new(name: 'InvalidConfigurationRequestException')
|
118
|
+
InvalidLoadBalancerActionException = Shapes::StructureShape.new(name: 'InvalidLoadBalancerActionException')
|
92
119
|
InvalidSchemeException = Shapes::StructureShape.new(name: 'InvalidSchemeException')
|
93
120
|
InvalidSecurityGroupException = Shapes::StructureShape.new(name: 'InvalidSecurityGroupException')
|
94
121
|
InvalidSubnetException = Shapes::StructureShape.new(name: 'InvalidSubnetException')
|
@@ -213,6 +240,7 @@ module Aws::ElasticLoadBalancingV2
|
|
213
240
|
TargetHealthStateEnum = Shapes::StringShape.new(name: 'TargetHealthStateEnum')
|
214
241
|
TargetId = Shapes::StringShape.new(name: 'TargetId')
|
215
242
|
TargetTypeEnum = Shapes::StringShape.new(name: 'TargetTypeEnum')
|
243
|
+
TooManyActionsException = Shapes::StructureShape.new(name: 'TooManyActionsException')
|
216
244
|
TooManyCertificatesException = Shapes::StructureShape.new(name: 'TooManyCertificatesException')
|
217
245
|
TooManyListenersException = Shapes::StructureShape.new(name: 'TooManyListenersException')
|
218
246
|
TooManyLoadBalancersException = Shapes::StructureShape.new(name: 'TooManyLoadBalancersException')
|
@@ -226,7 +254,10 @@ module Aws::ElasticLoadBalancingV2
|
|
226
254
|
ZoneName = Shapes::StringShape.new(name: 'ZoneName')
|
227
255
|
|
228
256
|
Action.add_member(:type, Shapes::ShapeRef.new(shape: ActionTypeEnum, required: true, location_name: "Type"))
|
229
|
-
Action.add_member(:target_group_arn, Shapes::ShapeRef.new(shape: TargetGroupArn,
|
257
|
+
Action.add_member(:target_group_arn, Shapes::ShapeRef.new(shape: TargetGroupArn, location_name: "TargetGroupArn"))
|
258
|
+
Action.add_member(:authenticate_oidc_config, Shapes::ShapeRef.new(shape: AuthenticateOidcActionConfig, location_name: "AuthenticateOidcConfig"))
|
259
|
+
Action.add_member(:authenticate_cognito_config, Shapes::ShapeRef.new(shape: AuthenticateCognitoActionConfig, location_name: "AuthenticateCognitoConfig"))
|
260
|
+
Action.add_member(:order, Shapes::ShapeRef.new(shape: ActionOrder, location_name: "Order"))
|
230
261
|
Action.struct_class = Types::Action
|
231
262
|
|
232
263
|
Actions.member = Shapes::ShapeRef.new(shape: Action)
|
@@ -244,6 +275,35 @@ module Aws::ElasticLoadBalancingV2
|
|
244
275
|
|
245
276
|
AddTagsOutput.struct_class = Types::AddTagsOutput
|
246
277
|
|
278
|
+
AuthenticateCognitoActionAuthenticationRequestExtraParams.key = Shapes::ShapeRef.new(shape: AuthenticateCognitoActionAuthenticationRequestParamName)
|
279
|
+
AuthenticateCognitoActionAuthenticationRequestExtraParams.value = Shapes::ShapeRef.new(shape: AuthenticateCognitoActionAuthenticationRequestParamValue)
|
280
|
+
|
281
|
+
AuthenticateCognitoActionConfig.add_member(:user_pool_arn, Shapes::ShapeRef.new(shape: AuthenticateCognitoActionUserPoolArn, required: true, location_name: "UserPoolArn"))
|
282
|
+
AuthenticateCognitoActionConfig.add_member(:user_pool_client_id, Shapes::ShapeRef.new(shape: AuthenticateCognitoActionUserPoolClientId, required: true, location_name: "UserPoolClientId"))
|
283
|
+
AuthenticateCognitoActionConfig.add_member(:user_pool_domain, Shapes::ShapeRef.new(shape: AuthenticateCognitoActionUserPoolDomain, required: true, location_name: "UserPoolDomain"))
|
284
|
+
AuthenticateCognitoActionConfig.add_member(:session_cookie_name, Shapes::ShapeRef.new(shape: AuthenticateCognitoActionSessionCookieName, location_name: "SessionCookieName"))
|
285
|
+
AuthenticateCognitoActionConfig.add_member(:scope, Shapes::ShapeRef.new(shape: AuthenticateCognitoActionScope, location_name: "Scope"))
|
286
|
+
AuthenticateCognitoActionConfig.add_member(:session_timeout, Shapes::ShapeRef.new(shape: AuthenticateCognitoActionSessionTimeout, location_name: "SessionTimeout"))
|
287
|
+
AuthenticateCognitoActionConfig.add_member(:authentication_request_extra_params, Shapes::ShapeRef.new(shape: AuthenticateCognitoActionAuthenticationRequestExtraParams, location_name: "AuthenticationRequestExtraParams"))
|
288
|
+
AuthenticateCognitoActionConfig.add_member(:on_unauthenticated_request, Shapes::ShapeRef.new(shape: AuthenticateCognitoActionConditionalBehaviorEnum, location_name: "OnUnauthenticatedRequest"))
|
289
|
+
AuthenticateCognitoActionConfig.struct_class = Types::AuthenticateCognitoActionConfig
|
290
|
+
|
291
|
+
AuthenticateOidcActionAuthenticationRequestExtraParams.key = Shapes::ShapeRef.new(shape: AuthenticateOidcActionAuthenticationRequestParamName)
|
292
|
+
AuthenticateOidcActionAuthenticationRequestExtraParams.value = Shapes::ShapeRef.new(shape: AuthenticateOidcActionAuthenticationRequestParamValue)
|
293
|
+
|
294
|
+
AuthenticateOidcActionConfig.add_member(:issuer, Shapes::ShapeRef.new(shape: AuthenticateOidcActionIssuer, required: true, location_name: "Issuer"))
|
295
|
+
AuthenticateOidcActionConfig.add_member(:authorization_endpoint, Shapes::ShapeRef.new(shape: AuthenticateOidcActionAuthorizationEndpoint, required: true, location_name: "AuthorizationEndpoint"))
|
296
|
+
AuthenticateOidcActionConfig.add_member(:token_endpoint, Shapes::ShapeRef.new(shape: AuthenticateOidcActionTokenEndpoint, required: true, location_name: "TokenEndpoint"))
|
297
|
+
AuthenticateOidcActionConfig.add_member(:user_info_endpoint, Shapes::ShapeRef.new(shape: AuthenticateOidcActionUserInfoEndpoint, required: true, location_name: "UserInfoEndpoint"))
|
298
|
+
AuthenticateOidcActionConfig.add_member(:client_id, Shapes::ShapeRef.new(shape: AuthenticateOidcActionClientId, required: true, location_name: "ClientId"))
|
299
|
+
AuthenticateOidcActionConfig.add_member(:client_secret, Shapes::ShapeRef.new(shape: AuthenticateOidcActionClientSecret, required: true, location_name: "ClientSecret"))
|
300
|
+
AuthenticateOidcActionConfig.add_member(:session_cookie_name, Shapes::ShapeRef.new(shape: AuthenticateOidcActionSessionCookieName, location_name: "SessionCookieName"))
|
301
|
+
AuthenticateOidcActionConfig.add_member(:scope, Shapes::ShapeRef.new(shape: AuthenticateOidcActionScope, location_name: "Scope"))
|
302
|
+
AuthenticateOidcActionConfig.add_member(:session_timeout, Shapes::ShapeRef.new(shape: AuthenticateOidcActionSessionTimeout, location_name: "SessionTimeout"))
|
303
|
+
AuthenticateOidcActionConfig.add_member(:authentication_request_extra_params, Shapes::ShapeRef.new(shape: AuthenticateOidcActionAuthenticationRequestExtraParams, location_name: "AuthenticationRequestExtraParams"))
|
304
|
+
AuthenticateOidcActionConfig.add_member(:on_unauthenticated_request, Shapes::ShapeRef.new(shape: AuthenticateOidcActionConditionalBehaviorEnum, location_name: "OnUnauthenticatedRequest"))
|
305
|
+
AuthenticateOidcActionConfig.struct_class = Types::AuthenticateOidcActionConfig
|
306
|
+
|
247
307
|
AvailabilityZone.add_member(:zone_name, Shapes::ShapeRef.new(shape: ZoneName, location_name: "ZoneName"))
|
248
308
|
AvailabilityZone.add_member(:subnet_id, Shapes::ShapeRef.new(shape: SubnetId, location_name: "SubnetId"))
|
249
309
|
AvailabilityZone.add_member(:load_balancer_addresses, Shapes::ShapeRef.new(shape: LoadBalancerAddresses, location_name: "LoadBalancerAddresses"))
|
@@ -605,7 +665,7 @@ module Aws::ElasticLoadBalancingV2
|
|
605
665
|
SetSecurityGroupsOutput.struct_class = Types::SetSecurityGroupsOutput
|
606
666
|
|
607
667
|
SetSubnetsInput.add_member(:load_balancer_arn, Shapes::ShapeRef.new(shape: LoadBalancerArn, required: true, location_name: "LoadBalancerArn"))
|
608
|
-
SetSubnetsInput.add_member(:subnets, Shapes::ShapeRef.new(shape: Subnets,
|
668
|
+
SetSubnetsInput.add_member(:subnets, Shapes::ShapeRef.new(shape: Subnets, location_name: "Subnets"))
|
609
669
|
SetSubnetsInput.add_member(:subnet_mappings, Shapes::ShapeRef.new(shape: SubnetMappings, location_name: "SubnetMappings"))
|
610
670
|
SetSubnetsInput.struct_class = Types::SetSubnetsInput
|
611
671
|
|
@@ -749,6 +809,8 @@ module Aws::ElasticLoadBalancingV2
|
|
749
809
|
o.errors << Shapes::ShapeRef.new(shape: UnsupportedProtocolException)
|
750
810
|
o.errors << Shapes::ShapeRef.new(shape: TooManyRegistrationsForTargetIdException)
|
751
811
|
o.errors << Shapes::ShapeRef.new(shape: TooManyTargetsException)
|
812
|
+
o.errors << Shapes::ShapeRef.new(shape: TooManyActionsException)
|
813
|
+
o.errors << Shapes::ShapeRef.new(shape: InvalidLoadBalancerActionException)
|
752
814
|
end)
|
753
815
|
|
754
816
|
api.add_operation(:create_load_balancer, Seahorse::Model::Operation.new.tap do |o|
|
@@ -788,6 +850,9 @@ module Aws::ElasticLoadBalancingV2
|
|
788
850
|
o.errors << Shapes::ShapeRef.new(shape: InvalidConfigurationRequestException)
|
789
851
|
o.errors << Shapes::ShapeRef.new(shape: TooManyRegistrationsForTargetIdException)
|
790
852
|
o.errors << Shapes::ShapeRef.new(shape: TooManyTargetsException)
|
853
|
+
o.errors << Shapes::ShapeRef.new(shape: UnsupportedProtocolException)
|
854
|
+
o.errors << Shapes::ShapeRef.new(shape: TooManyActionsException)
|
855
|
+
o.errors << Shapes::ShapeRef.new(shape: InvalidLoadBalancerActionException)
|
791
856
|
end)
|
792
857
|
|
793
858
|
api.add_operation(:create_target_group, Seahorse::Model::Operation.new.tap do |o|
|
@@ -875,6 +940,7 @@ module Aws::ElasticLoadBalancingV2
|
|
875
940
|
o.output = Shapes::ShapeRef.new(shape: DescribeListenersOutput)
|
876
941
|
o.errors << Shapes::ShapeRef.new(shape: ListenerNotFoundException)
|
877
942
|
o.errors << Shapes::ShapeRef.new(shape: LoadBalancerNotFoundException)
|
943
|
+
o.errors << Shapes::ShapeRef.new(shape: UnsupportedProtocolException)
|
878
944
|
o[:pager] = Aws::Pager.new(
|
879
945
|
tokens: {
|
880
946
|
"next_marker" => "marker"
|
@@ -913,6 +979,7 @@ module Aws::ElasticLoadBalancingV2
|
|
913
979
|
o.output = Shapes::ShapeRef.new(shape: DescribeRulesOutput)
|
914
980
|
o.errors << Shapes::ShapeRef.new(shape: ListenerNotFoundException)
|
915
981
|
o.errors << Shapes::ShapeRef.new(shape: RuleNotFoundException)
|
982
|
+
o.errors << Shapes::ShapeRef.new(shape: UnsupportedProtocolException)
|
916
983
|
end)
|
917
984
|
|
918
985
|
api.add_operation(:describe_ssl_policies, Seahorse::Model::Operation.new.tap do |o|
|
@@ -990,6 +1057,8 @@ module Aws::ElasticLoadBalancingV2
|
|
990
1057
|
o.errors << Shapes::ShapeRef.new(shape: UnsupportedProtocolException)
|
991
1058
|
o.errors << Shapes::ShapeRef.new(shape: TooManyRegistrationsForTargetIdException)
|
992
1059
|
o.errors << Shapes::ShapeRef.new(shape: TooManyTargetsException)
|
1060
|
+
o.errors << Shapes::ShapeRef.new(shape: TooManyActionsException)
|
1061
|
+
o.errors << Shapes::ShapeRef.new(shape: InvalidLoadBalancerActionException)
|
993
1062
|
end)
|
994
1063
|
|
995
1064
|
api.add_operation(:modify_load_balancer_attributes, Seahorse::Model::Operation.new.tap do |o|
|
@@ -1015,6 +1084,9 @@ module Aws::ElasticLoadBalancingV2
|
|
1015
1084
|
o.errors << Shapes::ShapeRef.new(shape: TooManyRegistrationsForTargetIdException)
|
1016
1085
|
o.errors << Shapes::ShapeRef.new(shape: TooManyTargetsException)
|
1017
1086
|
o.errors << Shapes::ShapeRef.new(shape: TargetGroupNotFoundException)
|
1087
|
+
o.errors << Shapes::ShapeRef.new(shape: UnsupportedProtocolException)
|
1088
|
+
o.errors << Shapes::ShapeRef.new(shape: TooManyActionsException)
|
1089
|
+
o.errors << Shapes::ShapeRef.new(shape: InvalidLoadBalancerActionException)
|
1018
1090
|
end)
|
1019
1091
|
|
1020
1092
|
api.add_operation(:modify_target_group, Seahorse::Model::Operation.new.tap do |o|
|
@@ -14,23 +14,77 @@ module Aws::ElasticLoadBalancingV2
|
|
14
14
|
# data as a hash:
|
15
15
|
#
|
16
16
|
# {
|
17
|
-
# type: "forward", # required, accepts forward
|
18
|
-
# target_group_arn: "TargetGroupArn",
|
17
|
+
# type: "forward", # required, accepts forward, authenticate-oidc, authenticate-cognito
|
18
|
+
# target_group_arn: "TargetGroupArn",
|
19
|
+
# authenticate_oidc_config: {
|
20
|
+
# issuer: "AuthenticateOidcActionIssuer", # required
|
21
|
+
# authorization_endpoint: "AuthenticateOidcActionAuthorizationEndpoint", # required
|
22
|
+
# token_endpoint: "AuthenticateOidcActionTokenEndpoint", # required
|
23
|
+
# user_info_endpoint: "AuthenticateOidcActionUserInfoEndpoint", # required
|
24
|
+
# client_id: "AuthenticateOidcActionClientId", # required
|
25
|
+
# client_secret: "AuthenticateOidcActionClientSecret", # required
|
26
|
+
# session_cookie_name: "AuthenticateOidcActionSessionCookieName",
|
27
|
+
# scope: "AuthenticateOidcActionScope",
|
28
|
+
# session_timeout: 1,
|
29
|
+
# authentication_request_extra_params: {
|
30
|
+
# "AuthenticateOidcActionAuthenticationRequestParamName" => "AuthenticateOidcActionAuthenticationRequestParamValue",
|
31
|
+
# },
|
32
|
+
# on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
|
33
|
+
# },
|
34
|
+
# authenticate_cognito_config: {
|
35
|
+
# user_pool_arn: "AuthenticateCognitoActionUserPoolArn", # required
|
36
|
+
# user_pool_client_id: "AuthenticateCognitoActionUserPoolClientId", # required
|
37
|
+
# user_pool_domain: "AuthenticateCognitoActionUserPoolDomain", # required
|
38
|
+
# session_cookie_name: "AuthenticateCognitoActionSessionCookieName",
|
39
|
+
# scope: "AuthenticateCognitoActionScope",
|
40
|
+
# session_timeout: 1,
|
41
|
+
# authentication_request_extra_params: {
|
42
|
+
# "AuthenticateCognitoActionAuthenticationRequestParamName" => "AuthenticateCognitoActionAuthenticationRequestParamValue",
|
43
|
+
# },
|
44
|
+
# on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
|
45
|
+
# },
|
46
|
+
# order: 1,
|
19
47
|
# }
|
20
48
|
#
|
21
49
|
# @!attribute [rw] type
|
22
|
-
# The type of action.
|
50
|
+
# The type of action. Each rule must include one forward action.
|
23
51
|
# @return [String]
|
24
52
|
#
|
25
53
|
# @!attribute [rw] target_group_arn
|
26
|
-
# The Amazon Resource Name (ARN) of the target group.
|
27
|
-
#
|
54
|
+
# The Amazon Resource Name (ARN) of the target group. Specify only
|
55
|
+
# when `Type` is `forward`.
|
56
|
+
#
|
57
|
+
# For a default rule, the protocol of the target group must be HTTP or
|
58
|
+
# HTTPS for an Application Load Balancer or TCP for a Network Load
|
59
|
+
# Balancer.
|
60
|
+
# @return [String]
|
61
|
+
#
|
62
|
+
# @!attribute [rw] authenticate_oidc_config
|
63
|
+
# \[HTTPS listener\] Information about an identity provider that is
|
64
|
+
# compliant with OpenID Connect (OIDC). Specify only when `Type` is
|
65
|
+
# `authenticate-oidc`.
|
66
|
+
# @return [Types::AuthenticateOidcActionConfig]
|
67
|
+
#
|
68
|
+
# @!attribute [rw] authenticate_cognito_config
|
69
|
+
# \[HTTPS listener\] Information for using Amazon Cognito to
|
70
|
+
# authenticate users. Specify only when `Type` is
|
71
|
+
# `authenticate-cognito`.
|
72
|
+
# @return [Types::AuthenticateCognitoActionConfig]
|
73
|
+
#
|
74
|
+
# @!attribute [rw] order
|
75
|
+
# The order for the action. This value is required for rules with
|
76
|
+
# multiple actions. The action with the lowest value for order is
|
77
|
+
# performed first. The forward action must be performed last.
|
78
|
+
# @return [Integer]
|
28
79
|
#
|
29
80
|
# @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/Action AWS API Documentation
|
30
81
|
#
|
31
82
|
class Action < Struct.new(
|
32
83
|
:type,
|
33
|
-
:target_group_arn
|
84
|
+
:target_group_arn,
|
85
|
+
:authenticate_oidc_config,
|
86
|
+
:authenticate_cognito_config,
|
87
|
+
:order)
|
34
88
|
include Aws::Structure
|
35
89
|
end
|
36
90
|
|
@@ -107,6 +161,189 @@ module Aws::ElasticLoadBalancingV2
|
|
107
161
|
#
|
108
162
|
class AddTagsOutput < Aws::EmptyStructure; end
|
109
163
|
|
164
|
+
# Request parameters to use when integrating with Amazon Cognito to
|
165
|
+
# authenticate users.
|
166
|
+
#
|
167
|
+
# @note When making an API call, you may pass AuthenticateCognitoActionConfig
|
168
|
+
# data as a hash:
|
169
|
+
#
|
170
|
+
# {
|
171
|
+
# user_pool_arn: "AuthenticateCognitoActionUserPoolArn", # required
|
172
|
+
# user_pool_client_id: "AuthenticateCognitoActionUserPoolClientId", # required
|
173
|
+
# user_pool_domain: "AuthenticateCognitoActionUserPoolDomain", # required
|
174
|
+
# session_cookie_name: "AuthenticateCognitoActionSessionCookieName",
|
175
|
+
# scope: "AuthenticateCognitoActionScope",
|
176
|
+
# session_timeout: 1,
|
177
|
+
# authentication_request_extra_params: {
|
178
|
+
# "AuthenticateCognitoActionAuthenticationRequestParamName" => "AuthenticateCognitoActionAuthenticationRequestParamValue",
|
179
|
+
# },
|
180
|
+
# on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
|
181
|
+
# }
|
182
|
+
#
|
183
|
+
# @!attribute [rw] user_pool_arn
|
184
|
+
# The Amazon Resource Name (ARN) of the Amazon Cognito user pool.
|
185
|
+
# @return [String]
|
186
|
+
#
|
187
|
+
# @!attribute [rw] user_pool_client_id
|
188
|
+
# The ID of the Amazon Cognito user pool client.
|
189
|
+
# @return [String]
|
190
|
+
#
|
191
|
+
# @!attribute [rw] user_pool_domain
|
192
|
+
# The domain prefix or fully-qualified domain name of the Amazon
|
193
|
+
# Cognito user pool.
|
194
|
+
# @return [String]
|
195
|
+
#
|
196
|
+
# @!attribute [rw] session_cookie_name
|
197
|
+
# The name of the cookie used to maintain session information. The
|
198
|
+
# default is AWSELBAuthSessionCookie.
|
199
|
+
# @return [String]
|
200
|
+
#
|
201
|
+
# @!attribute [rw] scope
|
202
|
+
# The set of user claims to be requested from the IdP. The default is
|
203
|
+
# `openid`.
|
204
|
+
#
|
205
|
+
# To verify which scope values your IdP supports and how to separate
|
206
|
+
# multiple values, see the documentation for your IdP.
|
207
|
+
# @return [String]
|
208
|
+
#
|
209
|
+
# @!attribute [rw] session_timeout
|
210
|
+
# The maximum duration of the authentication session, in seconds. The
|
211
|
+
# default is 604800 seconds (7 days).
|
212
|
+
# @return [Integer]
|
213
|
+
#
|
214
|
+
# @!attribute [rw] authentication_request_extra_params
|
215
|
+
# The query parameters (up to 10) to include in the redirect request
|
216
|
+
# to the authorization endpoint.
|
217
|
+
# @return [Hash<String,String>]
|
218
|
+
#
|
219
|
+
# @!attribute [rw] on_unauthenticated_request
|
220
|
+
# The behavior if the user is not authenticated. The following are
|
221
|
+
# possible values:
|
222
|
+
#
|
223
|
+
# * deny`` - Return an HTTP 401 Unauthorized error.
|
224
|
+
#
|
225
|
+
# * allow`` - Allow the request to be forwarded to the target.
|
226
|
+
#
|
227
|
+
# * authenticate`` - Redirect the request to the IdP authorization
|
228
|
+
# endpoint. This is the default value.
|
229
|
+
# @return [String]
|
230
|
+
#
|
231
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/AuthenticateCognitoActionConfig AWS API Documentation
|
232
|
+
#
|
233
|
+
class AuthenticateCognitoActionConfig < Struct.new(
|
234
|
+
:user_pool_arn,
|
235
|
+
:user_pool_client_id,
|
236
|
+
:user_pool_domain,
|
237
|
+
:session_cookie_name,
|
238
|
+
:scope,
|
239
|
+
:session_timeout,
|
240
|
+
:authentication_request_extra_params,
|
241
|
+
:on_unauthenticated_request)
|
242
|
+
include Aws::Structure
|
243
|
+
end
|
244
|
+
|
245
|
+
# Request parameters when using an identity provider (IdP) that is
|
246
|
+
# compliant with OpenID Connect (OIDC) to authenticate users.
|
247
|
+
#
|
248
|
+
# @note When making an API call, you may pass AuthenticateOidcActionConfig
|
249
|
+
# data as a hash:
|
250
|
+
#
|
251
|
+
# {
|
252
|
+
# issuer: "AuthenticateOidcActionIssuer", # required
|
253
|
+
# authorization_endpoint: "AuthenticateOidcActionAuthorizationEndpoint", # required
|
254
|
+
# token_endpoint: "AuthenticateOidcActionTokenEndpoint", # required
|
255
|
+
# user_info_endpoint: "AuthenticateOidcActionUserInfoEndpoint", # required
|
256
|
+
# client_id: "AuthenticateOidcActionClientId", # required
|
257
|
+
# client_secret: "AuthenticateOidcActionClientSecret", # required
|
258
|
+
# session_cookie_name: "AuthenticateOidcActionSessionCookieName",
|
259
|
+
# scope: "AuthenticateOidcActionScope",
|
260
|
+
# session_timeout: 1,
|
261
|
+
# authentication_request_extra_params: {
|
262
|
+
# "AuthenticateOidcActionAuthenticationRequestParamName" => "AuthenticateOidcActionAuthenticationRequestParamValue",
|
263
|
+
# },
|
264
|
+
# on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
|
265
|
+
# }
|
266
|
+
#
|
267
|
+
# @!attribute [rw] issuer
|
268
|
+
# The OIDC issuer identifier of the IdP. This must be a full URL,
|
269
|
+
# including the HTTPS protocol, the domain, and the path.
|
270
|
+
# @return [String]
|
271
|
+
#
|
272
|
+
# @!attribute [rw] authorization_endpoint
|
273
|
+
# The authorization endpoint of the IdP. This must be a full URL,
|
274
|
+
# including the HTTPS protocol, the domain, and the path.
|
275
|
+
# @return [String]
|
276
|
+
#
|
277
|
+
# @!attribute [rw] token_endpoint
|
278
|
+
# The token endpoint of the IdP. This must be a full URL, including
|
279
|
+
# the HTTPS protocol, the domain, and the path.
|
280
|
+
# @return [String]
|
281
|
+
#
|
282
|
+
# @!attribute [rw] user_info_endpoint
|
283
|
+
# The user info endpoint of the IdP. This must be a full URL,
|
284
|
+
# including the HTTPS protocol, the domain, and the path.
|
285
|
+
# @return [String]
|
286
|
+
#
|
287
|
+
# @!attribute [rw] client_id
|
288
|
+
# The OAuth 2.0 client identifier.
|
289
|
+
# @return [String]
|
290
|
+
#
|
291
|
+
# @!attribute [rw] client_secret
|
292
|
+
# The OAuth 2.0 client secret.
|
293
|
+
# @return [String]
|
294
|
+
#
|
295
|
+
# @!attribute [rw] session_cookie_name
|
296
|
+
# The name of the cookie used to maintain session information. The
|
297
|
+
# default is AWSELBAuthSessionCookie.
|
298
|
+
# @return [String]
|
299
|
+
#
|
300
|
+
# @!attribute [rw] scope
|
301
|
+
# The set of user claims to be requested from the IdP. The default is
|
302
|
+
# `openid`.
|
303
|
+
#
|
304
|
+
# To verify which scope values your IdP supports and how to separate
|
305
|
+
# multiple values, see the documentation for your IdP.
|
306
|
+
# @return [String]
|
307
|
+
#
|
308
|
+
# @!attribute [rw] session_timeout
|
309
|
+
# The maximum duration of the authentication session, in seconds. The
|
310
|
+
# default is 604800 seconds (7 days).
|
311
|
+
# @return [Integer]
|
312
|
+
#
|
313
|
+
# @!attribute [rw] authentication_request_extra_params
|
314
|
+
# The query parameters (up to 10) to include in the redirect request
|
315
|
+
# to the authorization endpoint.
|
316
|
+
# @return [Hash<String,String>]
|
317
|
+
#
|
318
|
+
# @!attribute [rw] on_unauthenticated_request
|
319
|
+
# The behavior if the user is not authenticated. The following are
|
320
|
+
# possible values:
|
321
|
+
#
|
322
|
+
# * deny`` - Return an HTTP 401 Unauthorized error.
|
323
|
+
#
|
324
|
+
# * allow`` - Allow the request to be forwarded to the target.
|
325
|
+
#
|
326
|
+
# * authenticate`` - Redirect the request to the IdP authorization
|
327
|
+
# endpoint. This is the default value.
|
328
|
+
# @return [String]
|
329
|
+
#
|
330
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/AuthenticateOidcActionConfig AWS API Documentation
|
331
|
+
#
|
332
|
+
class AuthenticateOidcActionConfig < Struct.new(
|
333
|
+
:issuer,
|
334
|
+
:authorization_endpoint,
|
335
|
+
:token_endpoint,
|
336
|
+
:user_info_endpoint,
|
337
|
+
:client_id,
|
338
|
+
:client_secret,
|
339
|
+
:session_cookie_name,
|
340
|
+
:scope,
|
341
|
+
:session_timeout,
|
342
|
+
:authentication_request_extra_params,
|
343
|
+
:on_unauthenticated_request)
|
344
|
+
include Aws::Structure
|
345
|
+
end
|
346
|
+
|
110
347
|
# Information about an Availability Zone.
|
111
348
|
#
|
112
349
|
# @!attribute [rw] zone_name
|
@@ -190,8 +427,36 @@ module Aws::ElasticLoadBalancingV2
|
|
190
427
|
# ],
|
191
428
|
# default_actions: [ # required
|
192
429
|
# {
|
193
|
-
# type: "forward", # required, accepts forward
|
194
|
-
# target_group_arn: "TargetGroupArn",
|
430
|
+
# type: "forward", # required, accepts forward, authenticate-oidc, authenticate-cognito
|
431
|
+
# target_group_arn: "TargetGroupArn",
|
432
|
+
# authenticate_oidc_config: {
|
433
|
+
# issuer: "AuthenticateOidcActionIssuer", # required
|
434
|
+
# authorization_endpoint: "AuthenticateOidcActionAuthorizationEndpoint", # required
|
435
|
+
# token_endpoint: "AuthenticateOidcActionTokenEndpoint", # required
|
436
|
+
# user_info_endpoint: "AuthenticateOidcActionUserInfoEndpoint", # required
|
437
|
+
# client_id: "AuthenticateOidcActionClientId", # required
|
438
|
+
# client_secret: "AuthenticateOidcActionClientSecret", # required
|
439
|
+
# session_cookie_name: "AuthenticateOidcActionSessionCookieName",
|
440
|
+
# scope: "AuthenticateOidcActionScope",
|
441
|
+
# session_timeout: 1,
|
442
|
+
# authentication_request_extra_params: {
|
443
|
+
# "AuthenticateOidcActionAuthenticationRequestParamName" => "AuthenticateOidcActionAuthenticationRequestParamValue",
|
444
|
+
# },
|
445
|
+
# on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
|
446
|
+
# },
|
447
|
+
# authenticate_cognito_config: {
|
448
|
+
# user_pool_arn: "AuthenticateCognitoActionUserPoolArn", # required
|
449
|
+
# user_pool_client_id: "AuthenticateCognitoActionUserPoolClientId", # required
|
450
|
+
# user_pool_domain: "AuthenticateCognitoActionUserPoolDomain", # required
|
451
|
+
# session_cookie_name: "AuthenticateCognitoActionSessionCookieName",
|
452
|
+
# scope: "AuthenticateCognitoActionScope",
|
453
|
+
# session_timeout: 1,
|
454
|
+
# authentication_request_extra_params: {
|
455
|
+
# "AuthenticateCognitoActionAuthenticationRequestParamName" => "AuthenticateCognitoActionAuthenticationRequestParamValue",
|
456
|
+
# },
|
457
|
+
# on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
|
458
|
+
# },
|
459
|
+
# order: 1,
|
195
460
|
# },
|
196
461
|
# ],
|
197
462
|
# }
|
@@ -217,15 +482,25 @@ module Aws::ElasticLoadBalancingV2
|
|
217
482
|
# @return [String]
|
218
483
|
#
|
219
484
|
# @!attribute [rw] certificates
|
220
|
-
# \[HTTPS listeners\] The SSL server certificate. You must
|
221
|
-
# exactly one certificate.
|
485
|
+
# \[HTTPS listeners\] The default SSL server certificate. You must
|
486
|
+
# provide exactly one certificate. To create a certificate list, use
|
487
|
+
# AddListenerCertificates.
|
222
488
|
# @return [Array<Types::Certificate>]
|
223
489
|
#
|
224
490
|
# @!attribute [rw] default_actions
|
225
|
-
# The
|
226
|
-
#
|
227
|
-
#
|
228
|
-
#
|
491
|
+
# The actions for the default rule. The rule must include one forward
|
492
|
+
# action.
|
493
|
+
#
|
494
|
+
# If the action type is `forward`, you can specify a single target
|
495
|
+
# group. The protocol of the target group must be HTTP or HTTPS for an
|
496
|
+
# Application Load Balancer or TCP for a Network Load Balancer.
|
497
|
+
#
|
498
|
+
# If the action type is `authenticate-oidc`, you can use an identity
|
499
|
+
# provider that is OpenID Connect (OIDC) compliant to authenticate
|
500
|
+
# users as they access your application.
|
501
|
+
#
|
502
|
+
# If the action type is `authenticate-cognito`, you can use Amazon
|
503
|
+
# Cognito to authenticate users as they access your application.
|
229
504
|
# @return [Array<Types::Action>]
|
230
505
|
#
|
231
506
|
# @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/CreateListenerInput AWS API Documentation
|
@@ -385,8 +660,36 @@ module Aws::ElasticLoadBalancingV2
|
|
385
660
|
# priority: 1, # required
|
386
661
|
# actions: [ # required
|
387
662
|
# {
|
388
|
-
# type: "forward", # required, accepts forward
|
389
|
-
# target_group_arn: "TargetGroupArn",
|
663
|
+
# type: "forward", # required, accepts forward, authenticate-oidc, authenticate-cognito
|
664
|
+
# target_group_arn: "TargetGroupArn",
|
665
|
+
# authenticate_oidc_config: {
|
666
|
+
# issuer: "AuthenticateOidcActionIssuer", # required
|
667
|
+
# authorization_endpoint: "AuthenticateOidcActionAuthorizationEndpoint", # required
|
668
|
+
# token_endpoint: "AuthenticateOidcActionTokenEndpoint", # required
|
669
|
+
# user_info_endpoint: "AuthenticateOidcActionUserInfoEndpoint", # required
|
670
|
+
# client_id: "AuthenticateOidcActionClientId", # required
|
671
|
+
# client_secret: "AuthenticateOidcActionClientSecret", # required
|
672
|
+
# session_cookie_name: "AuthenticateOidcActionSessionCookieName",
|
673
|
+
# scope: "AuthenticateOidcActionScope",
|
674
|
+
# session_timeout: 1,
|
675
|
+
# authentication_request_extra_params: {
|
676
|
+
# "AuthenticateOidcActionAuthenticationRequestParamName" => "AuthenticateOidcActionAuthenticationRequestParamValue",
|
677
|
+
# },
|
678
|
+
# on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
|
679
|
+
# },
|
680
|
+
# authenticate_cognito_config: {
|
681
|
+
# user_pool_arn: "AuthenticateCognitoActionUserPoolArn", # required
|
682
|
+
# user_pool_client_id: "AuthenticateCognitoActionUserPoolClientId", # required
|
683
|
+
# user_pool_domain: "AuthenticateCognitoActionUserPoolDomain", # required
|
684
|
+
# session_cookie_name: "AuthenticateCognitoActionSessionCookieName",
|
685
|
+
# scope: "AuthenticateCognitoActionScope",
|
686
|
+
# session_timeout: 1,
|
687
|
+
# authentication_request_extra_params: {
|
688
|
+
# "AuthenticateCognitoActionAuthenticationRequestParamName" => "AuthenticateCognitoActionAuthenticationRequestParamValue",
|
689
|
+
# },
|
690
|
+
# on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
|
691
|
+
# },
|
692
|
+
# order: 1,
|
390
693
|
# },
|
391
694
|
# ],
|
392
695
|
# }
|
@@ -431,13 +734,22 @@ module Aws::ElasticLoadBalancingV2
|
|
431
734
|
# @return [Array<Types::RuleCondition>]
|
432
735
|
#
|
433
736
|
# @!attribute [rw] priority
|
434
|
-
# The priority
|
435
|
-
#
|
737
|
+
# The rule priority. A listener can't have multiple rules with the
|
738
|
+
# same priority.
|
436
739
|
# @return [Integer]
|
437
740
|
#
|
438
741
|
# @!attribute [rw] actions
|
439
|
-
#
|
742
|
+
# The actions. Each rule must include one forward action.
|
743
|
+
#
|
744
|
+
# If the action type is `forward`, you can specify a single target
|
440
745
|
# group.
|
746
|
+
#
|
747
|
+
# If the action type is `authenticate-oidc`, you can use an identity
|
748
|
+
# provider that is OpenID Connect (OIDC) compliant to authenticate
|
749
|
+
# users as they access your application.
|
750
|
+
#
|
751
|
+
# If the action type is `authenticate-cognito`, you can use Amazon
|
752
|
+
# Cognito to authenticate users as they access your application.
|
441
753
|
# @return [Array<Types::Action>]
|
442
754
|
#
|
443
755
|
# @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/CreateRuleInput AWS API Documentation
|
@@ -1527,8 +1839,36 @@ module Aws::ElasticLoadBalancingV2
|
|
1527
1839
|
# ],
|
1528
1840
|
# default_actions: [
|
1529
1841
|
# {
|
1530
|
-
# type: "forward", # required, accepts forward
|
1531
|
-
# target_group_arn: "TargetGroupArn",
|
1842
|
+
# type: "forward", # required, accepts forward, authenticate-oidc, authenticate-cognito
|
1843
|
+
# target_group_arn: "TargetGroupArn",
|
1844
|
+
# authenticate_oidc_config: {
|
1845
|
+
# issuer: "AuthenticateOidcActionIssuer", # required
|
1846
|
+
# authorization_endpoint: "AuthenticateOidcActionAuthorizationEndpoint", # required
|
1847
|
+
# token_endpoint: "AuthenticateOidcActionTokenEndpoint", # required
|
1848
|
+
# user_info_endpoint: "AuthenticateOidcActionUserInfoEndpoint", # required
|
1849
|
+
# client_id: "AuthenticateOidcActionClientId", # required
|
1850
|
+
# client_secret: "AuthenticateOidcActionClientSecret", # required
|
1851
|
+
# session_cookie_name: "AuthenticateOidcActionSessionCookieName",
|
1852
|
+
# scope: "AuthenticateOidcActionScope",
|
1853
|
+
# session_timeout: 1,
|
1854
|
+
# authentication_request_extra_params: {
|
1855
|
+
# "AuthenticateOidcActionAuthenticationRequestParamName" => "AuthenticateOidcActionAuthenticationRequestParamValue",
|
1856
|
+
# },
|
1857
|
+
# on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
|
1858
|
+
# },
|
1859
|
+
# authenticate_cognito_config: {
|
1860
|
+
# user_pool_arn: "AuthenticateCognitoActionUserPoolArn", # required
|
1861
|
+
# user_pool_client_id: "AuthenticateCognitoActionUserPoolClientId", # required
|
1862
|
+
# user_pool_domain: "AuthenticateCognitoActionUserPoolDomain", # required
|
1863
|
+
# session_cookie_name: "AuthenticateCognitoActionSessionCookieName",
|
1864
|
+
# scope: "AuthenticateCognitoActionScope",
|
1865
|
+
# session_timeout: 1,
|
1866
|
+
# authentication_request_extra_params: {
|
1867
|
+
# "AuthenticateCognitoActionAuthenticationRequestParamName" => "AuthenticateCognitoActionAuthenticationRequestParamValue",
|
1868
|
+
# },
|
1869
|
+
# on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
|
1870
|
+
# },
|
1871
|
+
# order: 1,
|
1532
1872
|
# },
|
1533
1873
|
# ],
|
1534
1874
|
# }
|
@@ -1548,9 +1888,9 @@ module Aws::ElasticLoadBalancingV2
|
|
1548
1888
|
# @return [String]
|
1549
1889
|
#
|
1550
1890
|
# @!attribute [rw] ssl_policy
|
1551
|
-
# The security policy that defines which protocols
|
1552
|
-
# supported. For more information, see [Security
|
1553
|
-
# *Application Load Balancers Guide*.
|
1891
|
+
# \[HTTPS listeners\] The security policy that defines which protocols
|
1892
|
+
# and ciphers are supported. For more information, see [Security
|
1893
|
+
# Policies][1] in the *Application Load Balancers Guide*.
|
1554
1894
|
#
|
1555
1895
|
#
|
1556
1896
|
#
|
@@ -1558,13 +1898,25 @@ module Aws::ElasticLoadBalancingV2
|
|
1558
1898
|
# @return [String]
|
1559
1899
|
#
|
1560
1900
|
# @!attribute [rw] certificates
|
1561
|
-
# The default SSL server certificate.
|
1901
|
+
# \[HTTPS listeners\] The default SSL server certificate. You must
|
1902
|
+
# provide exactly one certificate. To create a certificate list, use
|
1903
|
+
# AddListenerCertificates.
|
1562
1904
|
# @return [Array<Types::Certificate>]
|
1563
1905
|
#
|
1564
1906
|
# @!attribute [rw] default_actions
|
1565
|
-
# The default
|
1566
|
-
#
|
1567
|
-
#
|
1907
|
+
# The actions for the default rule. The rule must include one forward
|
1908
|
+
# action.
|
1909
|
+
#
|
1910
|
+
# If the action type is `forward`, you can specify a single target
|
1911
|
+
# group. The protocol of the target group must be HTTP or HTTPS for an
|
1912
|
+
# Application Load Balancer or TCP for a Network Load Balancer.
|
1913
|
+
#
|
1914
|
+
# If the action type is `authenticate-oidc`, you can use an identity
|
1915
|
+
# provider that is OpenID Connect (OIDC) compliant to authenticate
|
1916
|
+
# users as they access your application.
|
1917
|
+
#
|
1918
|
+
# If the action type is `authenticate-cognito`, you can use Amazon
|
1919
|
+
# Cognito to authenticate users as they access your application.
|
1568
1920
|
# @return [Array<Types::Action>]
|
1569
1921
|
#
|
1570
1922
|
# @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/ModifyListenerInput AWS API Documentation
|
@@ -1580,7 +1932,7 @@ module Aws::ElasticLoadBalancingV2
|
|
1580
1932
|
end
|
1581
1933
|
|
1582
1934
|
# @!attribute [rw] listeners
|
1583
|
-
# Information about the modified
|
1935
|
+
# Information about the modified listener.
|
1584
1936
|
# @return [Array<Types::Listener>]
|
1585
1937
|
#
|
1586
1938
|
# @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/ModifyListenerOutput AWS API Documentation
|
@@ -1643,8 +1995,36 @@ module Aws::ElasticLoadBalancingV2
|
|
1643
1995
|
# ],
|
1644
1996
|
# actions: [
|
1645
1997
|
# {
|
1646
|
-
# type: "forward", # required, accepts forward
|
1647
|
-
# target_group_arn: "TargetGroupArn",
|
1998
|
+
# type: "forward", # required, accepts forward, authenticate-oidc, authenticate-cognito
|
1999
|
+
# target_group_arn: "TargetGroupArn",
|
2000
|
+
# authenticate_oidc_config: {
|
2001
|
+
# issuer: "AuthenticateOidcActionIssuer", # required
|
2002
|
+
# authorization_endpoint: "AuthenticateOidcActionAuthorizationEndpoint", # required
|
2003
|
+
# token_endpoint: "AuthenticateOidcActionTokenEndpoint", # required
|
2004
|
+
# user_info_endpoint: "AuthenticateOidcActionUserInfoEndpoint", # required
|
2005
|
+
# client_id: "AuthenticateOidcActionClientId", # required
|
2006
|
+
# client_secret: "AuthenticateOidcActionClientSecret", # required
|
2007
|
+
# session_cookie_name: "AuthenticateOidcActionSessionCookieName",
|
2008
|
+
# scope: "AuthenticateOidcActionScope",
|
2009
|
+
# session_timeout: 1,
|
2010
|
+
# authentication_request_extra_params: {
|
2011
|
+
# "AuthenticateOidcActionAuthenticationRequestParamName" => "AuthenticateOidcActionAuthenticationRequestParamValue",
|
2012
|
+
# },
|
2013
|
+
# on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
|
2014
|
+
# },
|
2015
|
+
# authenticate_cognito_config: {
|
2016
|
+
# user_pool_arn: "AuthenticateCognitoActionUserPoolArn", # required
|
2017
|
+
# user_pool_client_id: "AuthenticateCognitoActionUserPoolClientId", # required
|
2018
|
+
# user_pool_domain: "AuthenticateCognitoActionUserPoolDomain", # required
|
2019
|
+
# session_cookie_name: "AuthenticateCognitoActionSessionCookieName",
|
2020
|
+
# scope: "AuthenticateCognitoActionScope",
|
2021
|
+
# session_timeout: 1,
|
2022
|
+
# authentication_request_extra_params: {
|
2023
|
+
# "AuthenticateCognitoActionAuthenticationRequestParamName" => "AuthenticateCognitoActionAuthenticationRequestParamValue",
|
2024
|
+
# },
|
2025
|
+
# on_unauthenticated_request: "deny", # accepts deny, allow, authenticate
|
2026
|
+
# },
|
2027
|
+
# order: 1,
|
1648
2028
|
# },
|
1649
2029
|
# ],
|
1650
2030
|
# }
|
@@ -1654,11 +2034,52 @@ module Aws::ElasticLoadBalancingV2
|
|
1654
2034
|
# @return [String]
|
1655
2035
|
#
|
1656
2036
|
# @!attribute [rw] conditions
|
1657
|
-
# The conditions.
|
2037
|
+
# The conditions. Each condition specifies a field name and a single
|
2038
|
+
# value.
|
2039
|
+
#
|
2040
|
+
# If the field name is `host-header`, you can specify a single host
|
2041
|
+
# name (for example, my.example.com). A host name is case insensitive,
|
2042
|
+
# can be up to 128 characters in length, and can contain any of the
|
2043
|
+
# following characters. Note that you can include up to three wildcard
|
2044
|
+
# characters.
|
2045
|
+
#
|
2046
|
+
# * A-Z, a-z, 0-9
|
2047
|
+
#
|
2048
|
+
# * \- .
|
2049
|
+
#
|
2050
|
+
# * * (matches 0 or more characters)
|
2051
|
+
#
|
2052
|
+
# * ? (matches exactly 1 character)
|
2053
|
+
#
|
2054
|
+
# If the field name is `path-pattern`, you can specify a single path
|
2055
|
+
# pattern. A path pattern is case sensitive, can be up to 128
|
2056
|
+
# characters in length, and can contain any of the following
|
2057
|
+
# characters. Note that you can include up to three wildcard
|
2058
|
+
# characters.
|
2059
|
+
#
|
2060
|
+
# * A-Z, a-z, 0-9
|
2061
|
+
#
|
2062
|
+
# * \_ - . $ / ~ " ' @ : +
|
2063
|
+
#
|
2064
|
+
# * & (using &amp;)
|
2065
|
+
#
|
2066
|
+
# * * (matches 0 or more characters)
|
2067
|
+
#
|
2068
|
+
# * ? (matches exactly 1 character)
|
1658
2069
|
# @return [Array<Types::RuleCondition>]
|
1659
2070
|
#
|
1660
2071
|
# @!attribute [rw] actions
|
1661
|
-
# The actions.
|
2072
|
+
# The actions.
|
2073
|
+
#
|
2074
|
+
# If the action type is `forward`, you can specify a single target
|
2075
|
+
# group.
|
2076
|
+
#
|
2077
|
+
# If the action type is `authenticate-oidc`, you can use an identity
|
2078
|
+
# provider that is OpenID Connect (OIDC) compliant to authenticate
|
2079
|
+
# users as they access your application.
|
2080
|
+
#
|
2081
|
+
# If the action type is `authenticate-cognito`, you can use Amazon
|
2082
|
+
# Cognito to authenticate users as they access your application.
|
1662
2083
|
# @return [Array<Types::Action>]
|
1663
2084
|
#
|
1664
2085
|
# @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/ModifyRuleInput AWS API Documentation
|
@@ -1671,7 +2092,7 @@ module Aws::ElasticLoadBalancingV2
|
|
1671
2092
|
end
|
1672
2093
|
|
1673
2094
|
# @!attribute [rw] rules
|
1674
|
-
# Information about the rule.
|
2095
|
+
# Information about the modified rule.
|
1675
2096
|
# @return [Array<Types::Rule>]
|
1676
2097
|
#
|
1677
2098
|
# @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/ModifyRuleOutput AWS API Documentation
|
@@ -1802,7 +2223,7 @@ module Aws::ElasticLoadBalancingV2
|
|
1802
2223
|
end
|
1803
2224
|
|
1804
2225
|
# @!attribute [rw] target_groups
|
1805
|
-
# Information about the target group.
|
2226
|
+
# Information about the modified target group.
|
1806
2227
|
# @return [Array<Types::TargetGroup>]
|
1807
2228
|
#
|
1808
2229
|
# @see http://docs.aws.amazon.com/goto/WebAPI/elasticloadbalancingv2-2015-12-01/ModifyTargetGroupOutput AWS API Documentation
|
@@ -2134,7 +2555,7 @@ module Aws::ElasticLoadBalancingV2
|
|
2134
2555
|
#
|
2135
2556
|
# {
|
2136
2557
|
# load_balancer_arn: "LoadBalancerArn", # required
|
2137
|
-
# subnets: ["SubnetId"],
|
2558
|
+
# subnets: ["SubnetId"],
|
2138
2559
|
# subnet_mappings: [
|
2139
2560
|
# {
|
2140
2561
|
# subnet_id: "SubnetId",
|