aws-sdk-iam 1.112.0 → 1.114.0

Sign up to get free protection for your applications and to get access to all the features.
@@ -249,6 +249,18 @@ module Aws::IAM
249
249
  include Aws::Structure
250
250
  end
251
251
 
252
+ # The request was rejected because the account making the request is not
253
+ # the management account or delegated administrator account for
254
+ # [centralized root access][1].
255
+ #
256
+ #
257
+ #
258
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_root-user.html#id_root-user-access-management
259
+ #
260
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/AccountNotManagementOrDelegatedAdministratorException AWS API Documentation
261
+ #
262
+ class AccountNotManagementOrDelegatedAdministratorException < Aws::EmptyStructure; end
263
+
252
264
  # @!attribute [rw] open_id_connect_provider_arn
253
265
  # The Amazon Resource Name (ARN) of the IAM OpenID Connect (OIDC)
254
266
  # provider resource to add the client ID to. You can get a list of
@@ -514,6 +526,13 @@ module Aws::IAM
514
526
  include Aws::Structure
515
527
  end
516
528
 
529
+ # The request was rejected because the account making the request is not
530
+ # the management account for the organization.
531
+ #
532
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CallerIsNotManagementAccountException AWS API Documentation
533
+ #
534
+ class CallerIsNotManagementAccountException < Aws::EmptyStructure; end
535
+
517
536
  # @!attribute [rw] old_password
518
537
  # The IAM user's current password.
519
538
  # @return [String]
@@ -783,20 +802,29 @@ module Aws::IAM
783
802
  # The name of the IAM user to create a password for. The user must
784
803
  # already exist.
785
804
  #
786
- # This parameter allows (through its [regex pattern][1]) a string of
805
+ # This parameter is optional. If no user name is included, it defaults
806
+ # to the principal making the request. When you make this request with
807
+ # root user credentials, you must use an [AssumeRoot][1] session to
808
+ # omit the user name.
809
+ #
810
+ # This parameter allows (through its [regex pattern][2]) a string of
787
811
  # characters consisting of upper and lowercase alphanumeric characters
788
812
  # with no spaces. You can also include any of the following
789
813
  # characters: \_+=,.@-
790
814
  #
791
815
  #
792
816
  #
793
- # [1]: http://wikipedia.org/wiki/regex
817
+ # [1]: https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRoot.html
818
+ # [2]: http://wikipedia.org/wiki/regex
794
819
  # @return [String]
795
820
  #
796
821
  # @!attribute [rw] password
797
822
  # The new password for the user.
798
823
  #
799
- # The [regex pattern][1] that is used to validate this parameter is a
824
+ # This parameter must be omitted when you make the request with an
825
+ # [AssumeRoot][1] session. It is required in all other cases.
826
+ #
827
+ # The [regex pattern][2] that is used to validate this parameter is a
800
828
  # string of characters. That string can include almost any printable
801
829
  # ASCII character from the space (`\u0020`) through the end of the
802
830
  # ASCII character range (`\u00FF`). You can also include the tab
@@ -808,7 +836,8 @@ module Aws::IAM
808
836
  #
809
837
  #
810
838
  #
811
- # [1]: http://wikipedia.org/wiki/regex
839
+ # [1]: https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRoot.html
840
+ # [2]: http://wikipedia.org/wiki/regex
812
841
  # @return [String]
813
842
  #
814
843
  # @!attribute [rw] password_reset_required
@@ -1731,14 +1760,20 @@ module Aws::IAM
1731
1760
  # @!attribute [rw] user_name
1732
1761
  # The name of the user whose MFA device you want to deactivate.
1733
1762
  #
1734
- # This parameter allows (through its [regex pattern][1]) a string of
1763
+ # This parameter is optional. If no user name is included, it defaults
1764
+ # to the principal making the request. When you make this request with
1765
+ # root user credentials, you must use an [AssumeRoot][1] session to
1766
+ # omit the user name.
1767
+ #
1768
+ # This parameter allows (through its [regex pattern][2]) a string of
1735
1769
  # characters consisting of upper and lowercase alphanumeric characters
1736
1770
  # with no spaces. You can also include any of the following
1737
1771
  # characters: \_+=,.@-
1738
1772
  #
1739
1773
  #
1740
1774
  #
1741
- # [1]: http://wikipedia.org/wiki/regex
1775
+ # [1]: https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRoot.html
1776
+ # [2]: http://wikipedia.org/wiki/regex
1742
1777
  # @return [String]
1743
1778
  #
1744
1779
  # @!attribute [rw] serial_number
@@ -1916,14 +1951,20 @@ module Aws::IAM
1916
1951
  # @!attribute [rw] user_name
1917
1952
  # The name of the user whose password you want to delete.
1918
1953
  #
1919
- # This parameter allows (through its [regex pattern][1]) a string of
1954
+ # This parameter is optional. If no user name is included, it defaults
1955
+ # to the principal making the request. When you make this request with
1956
+ # root user credentials, you must use an [AssumeRoot][1] session to
1957
+ # omit the user name.
1958
+ #
1959
+ # This parameter allows (through its [regex pattern][2]) a string of
1920
1960
  # characters consisting of upper and lowercase alphanumeric characters
1921
1961
  # with no spaces. You can also include any of the following
1922
1962
  # characters: \_+=,.@-
1923
1963
  #
1924
1964
  #
1925
1965
  #
1926
- # [1]: http://wikipedia.org/wiki/regex
1966
+ # [1]: https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRoot.html
1967
+ # [2]: http://wikipedia.org/wiki/regex
1927
1968
  # @return [String]
1928
1969
  #
1929
1970
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteLoginProfileRequest AWS API Documentation
@@ -2463,6 +2504,54 @@ module Aws::IAM
2463
2504
  include Aws::Structure
2464
2505
  end
2465
2506
 
2507
+ # @api private
2508
+ #
2509
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DisableOrganizationsRootCredentialsManagementRequest AWS API Documentation
2510
+ #
2511
+ class DisableOrganizationsRootCredentialsManagementRequest < Aws::EmptyStructure; end
2512
+
2513
+ # @!attribute [rw] organization_id
2514
+ # The unique identifier (ID) of an organization.
2515
+ # @return [String]
2516
+ #
2517
+ # @!attribute [rw] enabled_features
2518
+ # The features enabled for centralized root access for member accounts
2519
+ # in your organization.
2520
+ # @return [Array<String>]
2521
+ #
2522
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DisableOrganizationsRootCredentialsManagementResponse AWS API Documentation
2523
+ #
2524
+ class DisableOrganizationsRootCredentialsManagementResponse < Struct.new(
2525
+ :organization_id,
2526
+ :enabled_features)
2527
+ SENSITIVE = []
2528
+ include Aws::Structure
2529
+ end
2530
+
2531
+ # @api private
2532
+ #
2533
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DisableOrganizationsRootSessionsRequest AWS API Documentation
2534
+ #
2535
+ class DisableOrganizationsRootSessionsRequest < Aws::EmptyStructure; end
2536
+
2537
+ # @!attribute [rw] organization_id
2538
+ # The unique identifier (ID) of an organization.
2539
+ # @return [String]
2540
+ #
2541
+ # @!attribute [rw] enabled_features
2542
+ # The features you have enabled for centralized root access of member
2543
+ # accounts in your organization.
2544
+ # @return [Array<String>]
2545
+ #
2546
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DisableOrganizationsRootSessionsResponse AWS API Documentation
2547
+ #
2548
+ class DisableOrganizationsRootSessionsResponse < Struct.new(
2549
+ :organization_id,
2550
+ :enabled_features)
2551
+ SENSITIVE = []
2552
+ include Aws::Structure
2553
+ end
2554
+
2466
2555
  # The request was rejected because the same certificate is associated
2467
2556
  # with an IAM user in the account.
2468
2557
  #
@@ -2563,6 +2652,52 @@ module Aws::IAM
2563
2652
  include Aws::Structure
2564
2653
  end
2565
2654
 
2655
+ # @api private
2656
+ #
2657
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/EnableOrganizationsRootCredentialsManagementRequest AWS API Documentation
2658
+ #
2659
+ class EnableOrganizationsRootCredentialsManagementRequest < Aws::EmptyStructure; end
2660
+
2661
+ # @!attribute [rw] organization_id
2662
+ # The unique identifier (ID) of an organization.
2663
+ # @return [String]
2664
+ #
2665
+ # @!attribute [rw] enabled_features
2666
+ # The features you have enabled for centralized root access.
2667
+ # @return [Array<String>]
2668
+ #
2669
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/EnableOrganizationsRootCredentialsManagementResponse AWS API Documentation
2670
+ #
2671
+ class EnableOrganizationsRootCredentialsManagementResponse < Struct.new(
2672
+ :organization_id,
2673
+ :enabled_features)
2674
+ SENSITIVE = []
2675
+ include Aws::Structure
2676
+ end
2677
+
2678
+ # @api private
2679
+ #
2680
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/EnableOrganizationsRootSessionsRequest AWS API Documentation
2681
+ #
2682
+ class EnableOrganizationsRootSessionsRequest < Aws::EmptyStructure; end
2683
+
2684
+ # @!attribute [rw] organization_id
2685
+ # The unique identifier (ID) of an organization.
2686
+ # @return [String]
2687
+ #
2688
+ # @!attribute [rw] enabled_features
2689
+ # The features you have enabled for centralized root access.
2690
+ # @return [Array<String>]
2691
+ #
2692
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/EnableOrganizationsRootSessionsResponse AWS API Documentation
2693
+ #
2694
+ class EnableOrganizationsRootSessionsResponse < Struct.new(
2695
+ :organization_id,
2696
+ :enabled_features)
2697
+ SENSITIVE = []
2698
+ include Aws::Structure
2699
+ end
2700
+
2566
2701
  # The request was rejected because it attempted to create a resource
2567
2702
  # that already exists.
2568
2703
  #
@@ -3366,14 +3501,20 @@ module Aws::IAM
3366
3501
  # @!attribute [rw] user_name
3367
3502
  # The name of the user whose login profile you want to retrieve.
3368
3503
  #
3369
- # This parameter allows (through its [regex pattern][1]) a string of
3504
+ # This parameter is optional. If no user name is included, it defaults
3505
+ # to the principal making the request. When you make this request with
3506
+ # root user credentials, you must use an [AssumeRoot][1] session to
3507
+ # omit the user name.
3508
+ #
3509
+ # This parameter allows (through its [regex pattern][2]) a string of
3370
3510
  # characters consisting of upper and lowercase alphanumeric characters
3371
3511
  # with no spaces. You can also include any of the following
3372
3512
  # characters: \_+=,.@-
3373
3513
  #
3374
3514
  #
3375
3515
  #
3376
- # [1]: http://wikipedia.org/wiki/regex
3516
+ # [1]: https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRoot.html
3517
+ # [2]: http://wikipedia.org/wiki/regex
3377
3518
  # @return [String]
3378
3519
  #
3379
3520
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/GetLoginProfileRequest AWS API Documentation
@@ -5953,6 +6094,30 @@ module Aws::IAM
5953
6094
  include Aws::Structure
5954
6095
  end
5955
6096
 
6097
+ # @api private
6098
+ #
6099
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListOrganizationsFeaturesRequest AWS API Documentation
6100
+ #
6101
+ class ListOrganizationsFeaturesRequest < Aws::EmptyStructure; end
6102
+
6103
+ # @!attribute [rw] organization_id
6104
+ # The unique identifier (ID) of an organization.
6105
+ # @return [String]
6106
+ #
6107
+ # @!attribute [rw] enabled_features
6108
+ # Specifies the features that are currently available in your
6109
+ # organization.
6110
+ # @return [Array<String>]
6111
+ #
6112
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListOrganizationsFeaturesResponse AWS API Documentation
6113
+ #
6114
+ class ListOrganizationsFeaturesResponse < Struct.new(
6115
+ :organization_id,
6116
+ :enabled_features)
6117
+ SENSITIVE = []
6118
+ include Aws::Structure
6119
+ end
6120
+
5956
6121
  # Contains details about the permissions policies that are attached to
5957
6122
  # the specified identity (user, group, or role).
5958
6123
  #
@@ -7590,6 +7755,25 @@ module Aws::IAM
7590
7755
  include Aws::Structure
7591
7756
  end
7592
7757
 
7758
+ # The request was rejected because no organization is associated with
7759
+ # your account.
7760
+ #
7761
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/OrganizationNotFoundException AWS API Documentation
7762
+ #
7763
+ class OrganizationNotFoundException < Aws::EmptyStructure; end
7764
+
7765
+ # The request was rejected because your organization does not have All
7766
+ # features enabled. For more information, see [Available feature
7767
+ # sets][1] in the *Organizations User Guide*.
7768
+ #
7769
+ #
7770
+ #
7771
+ # [1]: https://docs.aws.amazon.com/organizations/latest/userguide/orgs_getting-started_concepts.html#feature-set
7772
+ #
7773
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/OrganizationNotInAllFeaturesModeException AWS API Documentation
7774
+ #
7775
+ class OrganizationNotInAllFeaturesModeException < Aws::EmptyStructure; end
7776
+
7593
7777
  # Contains information about the effect that Organizations has on a
7594
7778
  # policy simulation.
7595
7779
  #
@@ -7620,7 +7804,7 @@ module Aws::IAM
7620
7804
  # Specifies whether IAM user passwords must contain at least one of
7621
7805
  # the following symbols:
7622
7806
  #
7623
- # ! @ # $ % ^ &amp; * ( ) \_ + - = \[ \] \\\{ \\} \| '
7807
+ # ! @ # $ % ^ &amp; * ( ) \_ + - = \[ \] \{ } \| '
7624
7808
  # @return [Boolean]
7625
7809
  #
7626
7810
  # @!attribute [rw] require_numbers
@@ -9220,6 +9404,14 @@ module Aws::IAM
9220
9404
  include Aws::Structure
9221
9405
  end
9222
9406
 
9407
+ # The request was rejected because trusted access is not enabled for IAM
9408
+ # in Organizations. For details, see IAM and Organizations in the
9409
+ # *Organizations User Guide*.
9410
+ #
9411
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ServiceAccessNotEnabledException AWS API Documentation
9412
+ #
9413
+ class ServiceAccessNotEnabledException < Aws::EmptyStructure; end
9414
+
9223
9415
  # The request processing has failed because of an unknown error,
9224
9416
  # exception or failure.
9225
9417
  #
@@ -10783,7 +10975,7 @@ module Aws::IAM
10783
10975
  # Specifies whether IAM user passwords must contain at least one of
10784
10976
  # the following non-alphanumeric characters:
10785
10977
  #
10786
- # ! @ # $ % ^ &amp; * ( ) \_ + - = \[ \] \\\{ \\} \| '
10978
+ # ! @ # $ % ^ &amp; * ( ) \_ + - = \[ \] \{ } \| '
10787
10979
  #
10788
10980
  # If you do not specify a value for this parameter, then the operation
10789
10981
  # uses the default value of `false`. The result is that passwords do
@@ -455,14 +455,17 @@ module Aws::IAM
455
455
  # @example Request syntax with placeholder values
456
456
  #
457
457
  # loginprofile = user.create_login_profile({
458
- # password: "passwordType", # required
458
+ # password: "passwordType",
459
459
  # password_reset_required: false,
460
460
  # })
461
461
  # @param [Hash] options ({})
462
- # @option options [required, String] :password
462
+ # @option options [String] :password
463
463
  # The new password for the user.
464
464
  #
465
- # The [regex pattern][1] that is used to validate this parameter is a
465
+ # This parameter must be omitted when you make the request with an
466
+ # [AssumeRoot][1] session. It is required in all other cases.
467
+ #
468
+ # The [regex pattern][2] that is used to validate this parameter is a
466
469
  # string of characters. That string can include almost any printable
467
470
  # ASCII character from the space (`\u0020`) through the end of the ASCII
468
471
  # character range (`\u00FF`). You can also include the tab (`\u0009`),
@@ -474,7 +477,8 @@ module Aws::IAM
474
477
  #
475
478
  #
476
479
  #
477
- # [1]: http://wikipedia.org/wiki/regex
480
+ # [1]: https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRoot.html
481
+ # [2]: http://wikipedia.org/wiki/regex
478
482
  # @option options [Boolean] :password_reset_required
479
483
  # Specifies whether the user is required to set a new password on next
480
484
  # sign-in.
data/lib/aws-sdk-iam.rb CHANGED
@@ -76,7 +76,7 @@ module Aws::IAM
76
76
  autoload :UserPolicy, 'aws-sdk-iam/user_policy'
77
77
  autoload :VirtualMfaDevice, 'aws-sdk-iam/virtual_mfa_device'
78
78
 
79
- GEM_VERSION = '1.112.0'
79
+ GEM_VERSION = '1.114.0'
80
80
 
81
81
  end
82
82
 
@@ -13,7 +13,7 @@ module Aws
13
13
  def initialize: (Hash[Symbol, untyped] args) -> void
14
14
 
15
15
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountSummary.html#summary_map-instance_method
16
- def summary_map: () -> ::Hash[("Users" | "UsersQuota" | "Groups" | "GroupsQuota" | "ServerCertificates" | "ServerCertificatesQuota" | "UserPolicySizeQuota" | "GroupPolicySizeQuota" | "GroupsPerUserQuota" | "SigningCertificatesPerUserQuota" | "AccessKeysPerUserQuota" | "MFADevices" | "MFADevicesInUse" | "AccountMFAEnabled" | "AccountAccessKeysPresent" | "AccountSigningCertificatesPresent" | "AttachedPoliciesPerGroupQuota" | "AttachedPoliciesPerRoleQuota" | "AttachedPoliciesPerUserQuota" | "Policies" | "PoliciesQuota" | "PolicySizeQuota" | "PolicyVersionsInUse" | "PolicyVersionsInUseQuota" | "VersionsPerPolicyQuota" | "GlobalEndpointTokenVersion"), ::Integer]
16
+ def summary_map: () -> ::Hash[("Users" | "UsersQuota" | "Groups" | "GroupsQuota" | "ServerCertificates" | "ServerCertificatesQuota" | "UserPolicySizeQuota" | "GroupPolicySizeQuota" | "GroupsPerUserQuota" | "SigningCertificatesPerUserQuota" | "AccessKeysPerUserQuota" | "MFADevices" | "MFADevicesInUse" | "AccountMFAEnabled" | "AccountAccessKeysPresent" | "AccountPasswordPresent" | "AccountSigningCertificatesPresent" | "AttachedPoliciesPerGroupQuota" | "AttachedPoliciesPerRoleQuota" | "AttachedPoliciesPerUserQuota" | "Policies" | "PoliciesQuota" | "PolicySizeQuota" | "PolicyVersionsInUse" | "PolicyVersionsInUseQuota" | "VersionsPerPolicyQuota" | "GlobalEndpointTokenVersion"), ::Integer]
17
17
 
18
18
  def client: () -> Client
19
19
 
data/sig/client.rbs CHANGED
@@ -174,11 +174,11 @@ module Aws
174
174
  end
175
175
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#create_login_profile-instance_method
176
176
  def create_login_profile: (
177
- user_name: ::String,
178
- password: ::String,
177
+ ?user_name: ::String,
178
+ ?password: ::String,
179
179
  ?password_reset_required: bool
180
180
  ) -> _CreateLoginProfileResponseSuccess
181
- | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateLoginProfileResponseSuccess
181
+ | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateLoginProfileResponseSuccess
182
182
 
183
183
  interface _CreateOpenIDConnectProviderResponseSuccess
184
184
  include ::Seahorse::Client::_ResponseSuccess[Types::CreateOpenIDConnectProviderResponse]
@@ -329,7 +329,7 @@ module Aws
329
329
 
330
330
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#deactivate_mfa_device-instance_method
331
331
  def deactivate_mfa_device: (
332
- user_name: ::String,
332
+ ?user_name: ::String,
333
333
  serial_number: ::String
334
334
  ) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
335
335
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
@@ -372,9 +372,9 @@ module Aws
372
372
 
373
373
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#delete_login_profile-instance_method
374
374
  def delete_login_profile: (
375
- user_name: ::String
375
+ ?user_name: ::String
376
376
  ) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
377
- | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
377
+ | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
378
378
 
379
379
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#delete_open_id_connect_provider-instance_method
380
380
  def delete_open_id_connect_provider: (
@@ -503,6 +503,26 @@ module Aws
503
503
  ) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
504
504
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
505
505
 
506
+ interface _DisableOrganizationsRootCredentialsManagementResponseSuccess
507
+ include ::Seahorse::Client::_ResponseSuccess[Types::DisableOrganizationsRootCredentialsManagementResponse]
508
+ def organization_id: () -> ::String
509
+ def enabled_features: () -> ::Array[("RootCredentialsManagement" | "RootSessions")]
510
+ end
511
+ # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#disable_organizations_root_credentials_management-instance_method
512
+ def disable_organizations_root_credentials_management: (
513
+ ) -> _DisableOrganizationsRootCredentialsManagementResponseSuccess
514
+ | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DisableOrganizationsRootCredentialsManagementResponseSuccess
515
+
516
+ interface _DisableOrganizationsRootSessionsResponseSuccess
517
+ include ::Seahorse::Client::_ResponseSuccess[Types::DisableOrganizationsRootSessionsResponse]
518
+ def organization_id: () -> ::String
519
+ def enabled_features: () -> ::Array[("RootCredentialsManagement" | "RootSessions")]
520
+ end
521
+ # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#disable_organizations_root_sessions-instance_method
522
+ def disable_organizations_root_sessions: (
523
+ ) -> _DisableOrganizationsRootSessionsResponseSuccess
524
+ | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DisableOrganizationsRootSessionsResponseSuccess
525
+
506
526
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#enable_mfa_device-instance_method
507
527
  def enable_mfa_device: (
508
528
  user_name: ::String,
@@ -512,6 +532,26 @@ module Aws
512
532
  ) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
513
533
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
514
534
 
535
+ interface _EnableOrganizationsRootCredentialsManagementResponseSuccess
536
+ include ::Seahorse::Client::_ResponseSuccess[Types::EnableOrganizationsRootCredentialsManagementResponse]
537
+ def organization_id: () -> ::String
538
+ def enabled_features: () -> ::Array[("RootCredentialsManagement" | "RootSessions")]
539
+ end
540
+ # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#enable_organizations_root_credentials_management-instance_method
541
+ def enable_organizations_root_credentials_management: (
542
+ ) -> _EnableOrganizationsRootCredentialsManagementResponseSuccess
543
+ | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _EnableOrganizationsRootCredentialsManagementResponseSuccess
544
+
545
+ interface _EnableOrganizationsRootSessionsResponseSuccess
546
+ include ::Seahorse::Client::_ResponseSuccess[Types::EnableOrganizationsRootSessionsResponse]
547
+ def organization_id: () -> ::String
548
+ def enabled_features: () -> ::Array[("RootCredentialsManagement" | "RootSessions")]
549
+ end
550
+ # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#enable_organizations_root_sessions-instance_method
551
+ def enable_organizations_root_sessions: (
552
+ ) -> _EnableOrganizationsRootSessionsResponseSuccess
553
+ | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _EnableOrganizationsRootSessionsResponseSuccess
554
+
515
555
  interface _GenerateCredentialReportResponseSuccess
516
556
  include ::Seahorse::Client::_ResponseSuccess[Types::GenerateCredentialReportResponse]
517
557
  def state: () -> ("STARTED" | "INPROGRESS" | "COMPLETE")
@@ -581,7 +621,7 @@ module Aws
581
621
 
582
622
  interface _GetAccountSummaryResponseSuccess
583
623
  include ::Seahorse::Client::_ResponseSuccess[Types::GetAccountSummaryResponse]
584
- def summary_map: () -> ::Hash[("Users" | "UsersQuota" | "Groups" | "GroupsQuota" | "ServerCertificates" | "ServerCertificatesQuota" | "UserPolicySizeQuota" | "GroupPolicySizeQuota" | "GroupsPerUserQuota" | "SigningCertificatesPerUserQuota" | "AccessKeysPerUserQuota" | "MFADevices" | "MFADevicesInUse" | "AccountMFAEnabled" | "AccountAccessKeysPresent" | "AccountSigningCertificatesPresent" | "AttachedPoliciesPerGroupQuota" | "AttachedPoliciesPerRoleQuota" | "AttachedPoliciesPerUserQuota" | "Policies" | "PoliciesQuota" | "PolicySizeQuota" | "PolicyVersionsInUse" | "PolicyVersionsInUseQuota" | "VersionsPerPolicyQuota" | "GlobalEndpointTokenVersion"), ::Integer]
624
+ def summary_map: () -> ::Hash[("Users" | "UsersQuota" | "Groups" | "GroupsQuota" | "ServerCertificates" | "ServerCertificatesQuota" | "UserPolicySizeQuota" | "GroupPolicySizeQuota" | "GroupsPerUserQuota" | "SigningCertificatesPerUserQuota" | "AccessKeysPerUserQuota" | "MFADevices" | "MFADevicesInUse" | "AccountMFAEnabled" | "AccountAccessKeysPresent" | "AccountPasswordPresent" | "AccountSigningCertificatesPresent" | "AttachedPoliciesPerGroupQuota" | "AttachedPoliciesPerRoleQuota" | "AttachedPoliciesPerUserQuota" | "Policies" | "PoliciesQuota" | "PolicySizeQuota" | "PolicyVersionsInUse" | "PolicyVersionsInUseQuota" | "VersionsPerPolicyQuota" | "GlobalEndpointTokenVersion"), ::Integer]
585
625
  end
586
626
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#get_account_summary-instance_method
587
627
  def get_account_summary: () -> _GetAccountSummaryResponseSuccess
@@ -662,9 +702,9 @@ module Aws
662
702
  end
663
703
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#get_login_profile-instance_method
664
704
  def get_login_profile: (
665
- user_name: ::String
705
+ ?user_name: ::String
666
706
  ) -> _GetLoginProfileResponseSuccess
667
- | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _GetLoginProfileResponseSuccess
707
+ | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _GetLoginProfileResponseSuccess
668
708
 
669
709
  interface _GetMFADeviceResponseSuccess
670
710
  include ::Seahorse::Client::_ResponseSuccess[Types::GetMFADeviceResponse]
@@ -1090,6 +1130,16 @@ module Aws
1090
1130
  ) -> _ListOpenIDConnectProvidersResponseSuccess
1091
1131
  | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ListOpenIDConnectProvidersResponseSuccess
1092
1132
 
1133
+ interface _ListOrganizationsFeaturesResponseSuccess
1134
+ include ::Seahorse::Client::_ResponseSuccess[Types::ListOrganizationsFeaturesResponse]
1135
+ def organization_id: () -> ::String
1136
+ def enabled_features: () -> ::Array[("RootCredentialsManagement" | "RootSessions")]
1137
+ end
1138
+ # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#list_organizations_features-instance_method
1139
+ def list_organizations_features: (
1140
+ ) -> _ListOrganizationsFeaturesResponseSuccess
1141
+ | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ListOrganizationsFeaturesResponseSuccess
1142
+
1093
1143
  interface _ListPoliciesResponseSuccess
1094
1144
  include ::Seahorse::Client::_ResponseSuccess[Types::ListPoliciesResponse]
1095
1145
  def policies: () -> ::Array[Types::Policy]
data/sig/errors.rbs CHANGED
@@ -11,6 +11,10 @@ module Aws
11
11
  class ServiceError < ::Aws::Errors::ServiceError
12
12
  end
13
13
 
14
+ class AccountNotManagementOrDelegatedAdministratorException < ::Aws::Errors::ServiceError
15
+ end
16
+ class CallerIsNotManagementAccountException < ::Aws::Errors::ServiceError
17
+ end
14
18
  class ConcurrentModificationException < ::Aws::Errors::ServiceError
15
19
  def message: () -> ::String
16
20
  end
@@ -71,6 +75,10 @@ module Aws
71
75
  class OpenIdIdpCommunicationErrorException < ::Aws::Errors::ServiceError
72
76
  def message: () -> ::String
73
77
  end
78
+ class OrganizationNotFoundException < ::Aws::Errors::ServiceError
79
+ end
80
+ class OrganizationNotInAllFeaturesModeException < ::Aws::Errors::ServiceError
81
+ end
74
82
  class PasswordPolicyViolationException < ::Aws::Errors::ServiceError
75
83
  def message: () -> ::String
76
84
  end
@@ -83,6 +91,8 @@ module Aws
83
91
  class ReportGenerationLimitExceededException < ::Aws::Errors::ServiceError
84
92
  def message: () -> ::String
85
93
  end
94
+ class ServiceAccessNotEnabledException < ::Aws::Errors::ServiceError
95
+ end
86
96
  class ServiceFailureException < ::Aws::Errors::ServiceError
87
97
  def message: () -> ::String
88
98
  end
@@ -38,7 +38,7 @@ module Aws
38
38
 
39
39
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/LoginProfile.html#create-instance_method
40
40
  def create: (
41
- password: ::String,
41
+ ?password: ::String,
42
42
  ?password_reset_required: bool
43
43
  ) -> LoginProfile
44
44
  | (?Hash[Symbol, untyped]) -> LoginProfile