aws-sdk-iam 1.45.0 → 1.50.0

Sign up to get free protection for your applications and to get access to all the features.
@@ -3,7 +3,7 @@
3
3
  # WARNING ABOUT GENERATED CODE
4
4
  #
5
5
  # This file is generated. See the contributing guide for more information:
6
- # https://github.com/aws/aws-sdk-ruby/blob/master/CONTRIBUTING.md
6
+ # https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
7
7
  #
8
8
  # WARNING ABOUT GENERATED CODE
9
9
 
@@ -36,7 +36,7 @@ module Aws::IAM
36
36
  alias :role_name :name
37
37
 
38
38
  # The path to the role. For more information about paths, see [IAM
39
- # Identifiers][1] in the *IAM User Guide*.
39
+ # identifiers][1] in the *IAM User Guide*.
40
40
  #
41
41
  #
42
42
  #
@@ -47,7 +47,7 @@ module Aws::IAM
47
47
  end
48
48
 
49
49
  # The stable and unique string identifying the role. For more
50
- # information about IDs, see [IAM Identifiers][1] in the *IAM User
50
+ # information about IDs, see [IAM identifiers][1] in the *IAM User
51
51
  # Guide*.
52
52
  #
53
53
  #
@@ -60,7 +60,7 @@ module Aws::IAM
60
60
 
61
61
  # The Amazon Resource Name (ARN) specifying the role. For more
62
62
  # information about ARNs and how to use them in policies, see [IAM
63
- # Identifiers][1] in the *IAM User Guide* guide.
63
+ # identifiers][1] in the *IAM User Guide* guide.
64
64
  #
65
65
  #
66
66
  #
@@ -106,7 +106,7 @@ module Aws::IAM
106
106
  # role.
107
107
  #
108
108
  # For more information about permissions boundaries, see [Permissions
109
- # Boundaries for IAM Identities ][1] in the *IAM User Guide*.
109
+ # boundaries for IAM identities ][1] in the *IAM User Guide*.
110
110
  #
111
111
  #
112
112
  #
@@ -116,9 +116,8 @@ module Aws::IAM
116
116
  data[:permissions_boundary]
117
117
  end
118
118
 
119
- # A list of tags that are attached to the specified role. For more
120
- # information about tagging, see [Tagging IAM Identities][1] in the *IAM
121
- # User Guide*.
119
+ # A list of tags that are attached to the role. For more information
120
+ # about tagging, see [Tagging IAM resources][1] in the *IAM User Guide*.
122
121
  #
123
122
  #
124
123
  #
@@ -133,7 +132,7 @@ module Aws::IAM
133
132
  # last used. Activity is only reported for the trailing 400 days. This
134
133
  # period can be shorter if your Region began supporting these features
135
134
  # within the last year. The role might have been used more than 400 days
136
- # ago. For more information, see [Regions Where Data Is Tracked][1] in
135
+ # ago. For more information, see [Regions where data is tracked][1] in
137
136
  # the *IAM User Guide*.
138
137
  #
139
138
  #
@@ -287,8 +286,8 @@ module Aws::IAM
287
286
  # @option options [required, String] :policy_arn
288
287
  # The Amazon Resource Name (ARN) of the IAM policy you want to attach.
289
288
  #
290
- # For more information about ARNs, see [Amazon Resource Names (ARNs) and
291
- # AWS Service Namespaces][1] in the *AWS General Reference*.
289
+ # For more information about ARNs, see [Amazon Resource Names (ARNs)][1]
290
+ # in the *AWS General Reference*.
292
291
  #
293
292
  #
294
293
  #
@@ -320,8 +319,8 @@ module Aws::IAM
320
319
  # @option options [required, String] :policy_arn
321
320
  # The Amazon Resource Name (ARN) of the IAM policy you want to detach.
322
321
  #
323
- # For more information about ARNs, see [Amazon Resource Names (ARNs) and
324
- # AWS Service Namespaces][1] in the *AWS General Reference*.
322
+ # For more information about ARNs, see [Amazon Resource Names (ARNs)][1]
323
+ # in the *AWS General Reference*.
325
324
  #
326
325
  #
327
326
  #
@@ -3,7 +3,7 @@
3
3
  # WARNING ABOUT GENERATED CODE
4
4
  #
5
5
  # This file is generated. See the contributing guide for more information:
6
- # https://github.com/aws/aws-sdk-ruby/blob/master/CONTRIBUTING.md
6
+ # https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
7
7
  #
8
8
  # WARNING ABOUT GENERATED CODE
9
9
 
@@ -3,7 +3,7 @@
3
3
  # WARNING ABOUT GENERATED CODE
4
4
  #
5
5
  # This file is generated. See the contributing guide for more information:
6
- # https://github.com/aws/aws-sdk-ruby/blob/master/CONTRIBUTING.md
6
+ # https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
7
7
  #
8
8
  # WARNING ABOUT GENERATED CODE
9
9
 
@@ -53,6 +53,18 @@ module Aws::IAM
53
53
  data[:valid_until]
54
54
  end
55
55
 
56
+ # A list of tags that are attached to the specified IAM SAML provider.
57
+ # The returned list of tags is sorted by tag key. For more information
58
+ # about tagging, see [Tagging IAM resources][1] in the *IAM User Guide*.
59
+ #
60
+ #
61
+ #
62
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
63
+ # @return [Array<Types::Tag>]
64
+ def tags
65
+ data[:tags]
66
+ end
67
+
56
68
  # @!endgroup
57
69
 
58
70
  # @return [Client]
@@ -3,7 +3,7 @@
3
3
  # WARNING ABOUT GENERATED CODE
4
4
  #
5
5
  # This file is generated. See the contributing guide for more information:
6
- # https://github.com/aws/aws-sdk-ruby/blob/master/CONTRIBUTING.md
6
+ # https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
7
7
  #
8
8
  # WARNING ABOUT GENERATED CODE
9
9
 
@@ -53,6 +53,18 @@ module Aws::IAM
53
53
  data[:certificate_chain]
54
54
  end
55
55
 
56
+ # A list of tags that are attached to the server certificate. For more
57
+ # information about tagging, see [Tagging IAM resources][1] in the *IAM
58
+ # User Guide*.
59
+ #
60
+ #
61
+ #
62
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
63
+ # @return [Array<Types::Tag>]
64
+ def tags
65
+ data[:tags]
66
+ end
67
+
56
68
  # @!endgroup
57
69
 
58
70
  # @return [Client]
@@ -3,7 +3,7 @@
3
3
  # WARNING ABOUT GENERATED CODE
4
4
  #
5
5
  # This file is generated. See the contributing guide for more information:
6
- # https://github.com/aws/aws-sdk-ruby/blob/master/CONTRIBUTING.md
6
+ # https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
7
7
  #
8
8
  # WARNING ABOUT GENERATED CODE
9
9
 
@@ -3,7 +3,7 @@
3
3
  # WARNING ABOUT GENERATED CODE
4
4
  #
5
5
  # This file is generated. See the contributing guide for more information:
6
- # https://github.com/aws/aws-sdk-ruby/blob/master/CONTRIBUTING.md
6
+ # https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
7
7
  #
8
8
  # WARNING ABOUT GENERATED CODE
9
9
 
@@ -25,17 +25,17 @@ module Aws::IAM
25
25
  # @!attribute [rw] service_namespace
26
26
  # The namespace of the service in which access was attempted.
27
27
  #
28
- # To learn the service namespace of a service, go to [Actions,
29
- # Resources, and Condition Keys for AWS Services][1] in the *IAM User
30
- # Guide*. Choose the name of the service to view details for that
31
- # service. In the first paragraph, find the service prefix. For
32
- # example, `(service prefix: a4b)`. For more information about service
33
- # namespaces, see [AWS Service Namespaces][2] in the *AWS General
34
- # Reference*.
28
+ # To learn the service namespace of a service, see [Actions,
29
+ # resources, and condition keys for AWS services][1] in the *Service
30
+ # Authorization Reference*. Choose the name of the service to view
31
+ # details for that service. In the first paragraph, find the service
32
+ # prefix. For example, `(service prefix: a4b)`. For more information
33
+ # about service namespaces, see [AWS service namespaces][2] in
34
+ # the *AWS General Reference*.
35
35
  #
36
36
  #
37
37
  #
38
- # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_actions-resources-contextkeys.html
38
+ # [1]: https://docs.aws.amazon.com/service-authorization/latest/reference/reference_policies_actions-resources-contextkeys.html
39
39
  # [2]: https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html#genref-aws-service-namespaces
40
40
  # @return [String]
41
41
  #
@@ -192,7 +192,7 @@ module Aws::IAM
192
192
  # * There is no sign-in data associated with the user.
193
193
  #
194
194
  # For more information about AWS Regions, see [Regions and
195
- # Endpoints][1] in the Amazon Web Services General Reference.
195
+ # endpoints][1] in the Amazon Web Services General Reference.
196
196
  #
197
197
  #
198
198
  #
@@ -382,8 +382,8 @@ module Aws::IAM
382
382
  # @!attribute [rw] policy_arn
383
383
  # The Amazon Resource Name (ARN) of the IAM policy you want to attach.
384
384
  #
385
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
386
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
385
+ # For more information about ARNs, see [Amazon Resource Names
386
+ # (ARNs)][1] in the *AWS General Reference*.
387
387
  #
388
388
  #
389
389
  #
@@ -424,8 +424,8 @@ module Aws::IAM
424
424
  # @!attribute [rw] policy_arn
425
425
  # The Amazon Resource Name (ARN) of the IAM policy you want to attach.
426
426
  #
427
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
428
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
427
+ # For more information about ARNs, see [Amazon Resource Names
428
+ # (ARNs)][1] in the *AWS General Reference*.
429
429
  #
430
430
  #
431
431
  #
@@ -466,8 +466,8 @@ module Aws::IAM
466
466
  # @!attribute [rw] policy_arn
467
467
  # The Amazon Resource Name (ARN) of the IAM policy you want to attach.
468
468
  #
469
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
470
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
469
+ # For more information about ARNs, see [Amazon Resource Names
470
+ # (ARNs)][1] in the *AWS General Reference*.
471
471
  #
472
472
  #
473
473
  #
@@ -489,7 +489,7 @@ module Aws::IAM
489
489
  # attached to a user or role to set the permissions boundary.
490
490
  #
491
491
  # For more information about permissions boundaries, see [Permissions
492
- # Boundaries for IAM Identities ][1] in the *IAM User Guide*.
492
+ # boundaries for IAM identities ][1] in the *IAM User Guide*.
493
493
  #
494
494
  #
495
495
  #
@@ -524,7 +524,7 @@ module Aws::IAM
524
524
  # operations.
525
525
  #
526
526
  # For more information about managed policies, refer to [Managed
527
- # Policies and Inline Policies][1] in the *IAM User Guide*.
527
+ # policies and inline policies][1] in the *IAM User Guide*.
528
528
  #
529
529
  #
530
530
  #
@@ -538,8 +538,8 @@ module Aws::IAM
538
538
  # The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS
539
539
  # resources.
540
540
  #
541
- # For more information about ARNs, go to [Amazon Resource Names (ARNs)
542
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
541
+ # For more information about ARNs, go to [Amazon Resource Names
542
+ # (ARNs)][1] in the *AWS General Reference*.
543
543
  #
544
544
  #
545
545
  #
@@ -734,7 +734,7 @@ module Aws::IAM
734
734
  #
735
735
  # @!attribute [rw] path
736
736
  # The path to the group. For more information about paths, see [IAM
737
- # Identifiers][1] in the *IAM User Guide*.
737
+ # identifiers][1] in the *IAM User Guide*.
738
738
  #
739
739
  # This parameter is optional. If it is not included, it defaults to a
740
740
  # slash (/).
@@ -791,6 +791,12 @@ module Aws::IAM
791
791
  # {
792
792
  # instance_profile_name: "instanceProfileNameType", # required
793
793
  # path: "pathType",
794
+ # tags: [
795
+ # {
796
+ # key: "tagKeyType", # required
797
+ # value: "tagValueType", # required
798
+ # },
799
+ # ],
794
800
  # }
795
801
  #
796
802
  # @!attribute [rw] instance_profile_name
@@ -826,11 +832,29 @@ module Aws::IAM
826
832
  # [2]: http://wikipedia.org/wiki/regex
827
833
  # @return [String]
828
834
  #
835
+ # @!attribute [rw] tags
836
+ # A list of tags that you want to attach to the newly created IAM
837
+ # instance profile. Each tag consists of a key name and an associated
838
+ # value. For more information about tagging, see [Tagging IAM
839
+ # resources][1] in the *IAM User Guide*.
840
+ #
841
+ # <note markdown="1"> If any one of the tags is invalid or if you exceed the allowed
842
+ # maximum number of tags, then the entire request fails and the
843
+ # resource is not created.
844
+ #
845
+ # </note>
846
+ #
847
+ #
848
+ #
849
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
850
+ # @return [Array<Types::Tag>]
851
+ #
829
852
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateInstanceProfileRequest AWS API Documentation
830
853
  #
831
854
  class CreateInstanceProfileRequest < Struct.new(
832
855
  :instance_profile_name,
833
- :path)
856
+ :path,
857
+ :tags)
834
858
  SENSITIVE = []
835
859
  include Aws::Structure
836
860
  end
@@ -926,6 +950,12 @@ module Aws::IAM
926
950
  # url: "OpenIDConnectProviderUrlType", # required
927
951
  # client_id_list: ["clientIDType"],
928
952
  # thumbprint_list: ["thumbprintType"], # required
953
+ # tags: [
954
+ # {
955
+ # key: "tagKeyType", # required
956
+ # value: "tagValueType", # required
957
+ # },
958
+ # ],
929
959
  # }
930
960
  #
931
961
  # @!attribute [rw] url
@@ -978,20 +1008,38 @@ module Aws::IAM
978
1008
  # certificate used by https://keys.server.example.com.
979
1009
  #
980
1010
  # For more information about obtaining the OIDC provider's
981
- # thumbprint, see [Obtaining the Thumbprint for an OpenID Connect
982
- # Provider][1] in the *IAM User Guide*.
1011
+ # thumbprint, see [Obtaining the thumbprint for an OpenID Connect
1012
+ # provider][1] in the *IAM User Guide*.
983
1013
  #
984
1014
  #
985
1015
  #
986
1016
  # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/identity-providers-oidc-obtain-thumbprint.html
987
1017
  # @return [Array<String>]
988
1018
  #
1019
+ # @!attribute [rw] tags
1020
+ # A list of tags that you want to attach to the new IAM OpenID Connect
1021
+ # (OIDC) provider. Each tag consists of a key name and an associated
1022
+ # value. For more information about tagging, see [Tagging IAM
1023
+ # resources][1] in the *IAM User Guide*.
1024
+ #
1025
+ # <note markdown="1"> If any one of the tags is invalid or if you exceed the allowed
1026
+ # maximum number of tags, then the entire request fails and the
1027
+ # resource is not created.
1028
+ #
1029
+ # </note>
1030
+ #
1031
+ #
1032
+ #
1033
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
1034
+ # @return [Array<Types::Tag>]
1035
+ #
989
1036
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateOpenIDConnectProviderRequest AWS API Documentation
990
1037
  #
991
1038
  class CreateOpenIDConnectProviderRequest < Struct.new(
992
1039
  :url,
993
1040
  :client_id_list,
994
- :thumbprint_list)
1041
+ :thumbprint_list,
1042
+ :tags)
995
1043
  SENSITIVE = []
996
1044
  include Aws::Structure
997
1045
  end
@@ -1005,10 +1053,22 @@ module Aws::IAM
1005
1053
  # OpenIDConnectProviderListEntry.
1006
1054
  # @return [String]
1007
1055
  #
1056
+ # @!attribute [rw] tags
1057
+ # A list of tags that are attached to the new IAM OIDC provider. The
1058
+ # returned list of tags is sorted by tag key. For more information
1059
+ # about tagging, see [Tagging IAM resources][1] in the *IAM User
1060
+ # Guide*.
1061
+ #
1062
+ #
1063
+ #
1064
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
1065
+ # @return [Array<Types::Tag>]
1066
+ #
1008
1067
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateOpenIDConnectProviderResponse AWS API Documentation
1009
1068
  #
1010
1069
  class CreateOpenIDConnectProviderResponse < Struct.new(
1011
- :open_id_connect_provider_arn)
1070
+ :open_id_connect_provider_arn,
1071
+ :tags)
1012
1072
  SENSITIVE = []
1013
1073
  include Aws::Structure
1014
1074
  end
@@ -1021,6 +1081,12 @@ module Aws::IAM
1021
1081
  # path: "policyPathType",
1022
1082
  # policy_document: "policyDocumentType", # required
1023
1083
  # description: "policyDescriptionType",
1084
+ # tags: [
1085
+ # {
1086
+ # key: "tagKeyType", # required
1087
+ # value: "tagValueType", # required
1088
+ # },
1089
+ # ],
1024
1090
  # }
1025
1091
  #
1026
1092
  # @!attribute [rw] policy_name
@@ -1035,7 +1101,7 @@ module Aws::IAM
1035
1101
  # @!attribute [rw] path
1036
1102
  # The path for the policy.
1037
1103
  #
1038
- # For more information about paths, see [IAM Identifiers][1] in the
1104
+ # For more information about paths, see [IAM identifiers][1] in the
1039
1105
  # *IAM User Guide*.
1040
1106
  #
1041
1107
  # This parameter is optional. If it is not included, it defaults to a
@@ -1091,13 +1157,31 @@ module Aws::IAM
1091
1157
  # cannot be changed.
1092
1158
  # @return [String]
1093
1159
  #
1160
+ # @!attribute [rw] tags
1161
+ # A list of tags that you want to attach to the new IAM customer
1162
+ # managed policy. Each tag consists of a key name and an associated
1163
+ # value. For more information about tagging, see [Tagging IAM
1164
+ # resources][1] in the *IAM User Guide*.
1165
+ #
1166
+ # <note markdown="1"> If any one of the tags is invalid or if you exceed the allowed
1167
+ # maximum number of tags, then the entire request fails and the
1168
+ # resource is not created.
1169
+ #
1170
+ # </note>
1171
+ #
1172
+ #
1173
+ #
1174
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
1175
+ # @return [Array<Types::Tag>]
1176
+ #
1094
1177
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreatePolicyRequest AWS API Documentation
1095
1178
  #
1096
1179
  class CreatePolicyRequest < Struct.new(
1097
1180
  :policy_name,
1098
1181
  :path,
1099
1182
  :policy_document,
1100
- :description)
1183
+ :description,
1184
+ :tags)
1101
1185
  SENSITIVE = []
1102
1186
  include Aws::Structure
1103
1187
  end
@@ -1129,8 +1213,8 @@ module Aws::IAM
1129
1213
  # The Amazon Resource Name (ARN) of the IAM policy to which you want
1130
1214
  # to add a new version.
1131
1215
  #
1132
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
1133
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
1216
+ # For more information about ARNs, see [Amazon Resource Names
1217
+ # (ARNs)][1] in the *AWS General Reference*.
1134
1218
  #
1135
1219
  #
1136
1220
  #
@@ -1172,7 +1256,7 @@ module Aws::IAM
1172
1256
  # for the IAM users, groups, and roles that the policy is attached to.
1173
1257
  #
1174
1258
  # For more information about managed policy versions, see [Versioning
1175
- # for Managed Policies][1] in the *IAM User Guide*.
1259
+ # for managed policies][1] in the *IAM User Guide*.
1176
1260
  #
1177
1261
  #
1178
1262
  #
@@ -1299,7 +1383,7 @@ module Aws::IAM
1299
1383
  # valid for one hour by default. This applies when you use the
1300
1384
  # `AssumeRole*` API operations or the `assume-role*` CLI operations
1301
1385
  # but does not apply when you use those operations to create a console
1302
- # URL. For more information, see [Using IAM Roles][1] in the *IAM User
1386
+ # URL. For more information, see [Using IAM roles][1] in the *IAM User
1303
1387
  # Guide*.
1304
1388
  #
1305
1389
  #
@@ -1313,14 +1397,14 @@ module Aws::IAM
1313
1397
  # @return [String]
1314
1398
  #
1315
1399
  # @!attribute [rw] tags
1316
- # A list of tags that you want to attach to the newly created role.
1317
- # Each tag consists of a key name and an associated value. For more
1318
- # information about tagging, see [Tagging IAM Identities][1] in the
1319
- # *IAM User Guide*.
1400
+ # A list of tags that you want to attach to the new role. Each tag
1401
+ # consists of a key name and an associated value. For more information
1402
+ # about tagging, see [Tagging IAM resources][1] in the *IAM User
1403
+ # Guide*.
1320
1404
  #
1321
1405
  # <note markdown="1"> If any one of the tags is invalid or if you exceed the allowed
1322
- # number of tags per role, then the entire request fails and the role
1323
- # is not created.
1406
+ # maximum number of tags, then the entire request fails and the
1407
+ # resource is not created.
1324
1408
  #
1325
1409
  # </note>
1326
1410
  #
@@ -1363,6 +1447,12 @@ module Aws::IAM
1363
1447
  # {
1364
1448
  # saml_metadata_document: "SAMLMetadataDocumentType", # required
1365
1449
  # name: "SAMLProviderNameType", # required
1450
+ # tags: [
1451
+ # {
1452
+ # key: "tagKeyType", # required
1453
+ # value: "tagValueType", # required
1454
+ # },
1455
+ # ],
1366
1456
  # }
1367
1457
  #
1368
1458
  # @!attribute [rw] saml_metadata_document
@@ -1373,7 +1463,7 @@ module Aws::IAM
1373
1463
  # IdP. You must generate the metadata document using the identity
1374
1464
  # management software that is used as your organization's IdP.
1375
1465
  #
1376
- # For more information, see [About SAML 2.0-based Federation][1] in
1466
+ # For more information, see [About SAML 2.0-based federation][1] in
1377
1467
  # the *IAM User Guide*
1378
1468
  #
1379
1469
  #
@@ -1394,11 +1484,29 @@ module Aws::IAM
1394
1484
  # [1]: http://wikipedia.org/wiki/regex
1395
1485
  # @return [String]
1396
1486
  #
1487
+ # @!attribute [rw] tags
1488
+ # A list of tags that you want to attach to the new IAM SAML provider.
1489
+ # Each tag consists of a key name and an associated value. For more
1490
+ # information about tagging, see [Tagging IAM resources][1] in the
1491
+ # *IAM User Guide*.
1492
+ #
1493
+ # <note markdown="1"> If any one of the tags is invalid or if you exceed the allowed
1494
+ # maximum number of tags, then the entire request fails and the
1495
+ # resource is not created.
1496
+ #
1497
+ # </note>
1498
+ #
1499
+ #
1500
+ #
1501
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
1502
+ # @return [Array<Types::Tag>]
1503
+ #
1397
1504
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateSAMLProviderRequest AWS API Documentation
1398
1505
  #
1399
1506
  class CreateSAMLProviderRequest < Struct.new(
1400
1507
  :saml_metadata_document,
1401
- :name)
1508
+ :name,
1509
+ :tags)
1402
1510
  SENSITIVE = []
1403
1511
  include Aws::Structure
1404
1512
  end
@@ -1410,10 +1518,22 @@ module Aws::IAM
1410
1518
  # IAM.
1411
1519
  # @return [String]
1412
1520
  #
1521
+ # @!attribute [rw] tags
1522
+ # A list of tags that are attached to the new IAM SAML provider. The
1523
+ # returned list of tags is sorted by tag key. For more information
1524
+ # about tagging, see [Tagging IAM resources][1] in the *IAM User
1525
+ # Guide*.
1526
+ #
1527
+ #
1528
+ #
1529
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
1530
+ # @return [Array<Types::Tag>]
1531
+ #
1413
1532
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateSAMLProviderResponse AWS API Documentation
1414
1533
  #
1415
1534
  class CreateSAMLProviderResponse < Struct.new(
1416
- :saml_provider_arn)
1535
+ :saml_provider_arn,
1536
+ :tags)
1417
1537
  SENSITIVE = []
1418
1538
  include Aws::Structure
1419
1539
  end
@@ -1433,8 +1553,8 @@ module Aws::IAM
1433
1553
  # in front. For example: `elasticbeanstalk.amazonaws.com`.
1434
1554
  #
1435
1555
  # Service principals are unique and case-sensitive. To find the exact
1436
- # service principal for your service-linked role, see [AWS Services
1437
- # That Work with IAM][1] in the *IAM User Guide*. Look for the
1556
+ # service principal for your service-linked role, see [AWS services
1557
+ # that work with IAM][1] in the *IAM User Guide*. Look for the
1438
1558
  # services that have <b>Yes </b>in the **Service-Linked Role** column.
1439
1559
  # Choose the **Yes** link to view the service-linked role
1440
1560
  # documentation for that service.
@@ -1556,7 +1676,7 @@ module Aws::IAM
1556
1676
  #
1557
1677
  # @!attribute [rw] path
1558
1678
  # The path for the user name. For more information about paths, see
1559
- # [IAM Identifiers][1] in the *IAM User Guide*.
1679
+ # [IAM identifiers][1] in the *IAM User Guide*.
1560
1680
  #
1561
1681
  # This parameter is optional. If it is not included, it defaults to a
1562
1682
  # slash (/).
@@ -1589,14 +1709,14 @@ module Aws::IAM
1589
1709
  # @return [String]
1590
1710
  #
1591
1711
  # @!attribute [rw] tags
1592
- # A list of tags that you want to attach to the newly created user.
1593
- # Each tag consists of a key name and an associated value. For more
1594
- # information about tagging, see [Tagging IAM Identities][1] in the
1595
- # *IAM User Guide*.
1712
+ # A list of tags that you want to attach to the new user. Each tag
1713
+ # consists of a key name and an associated value. For more information
1714
+ # about tagging, see [Tagging IAM resources][1] in the *IAM User
1715
+ # Guide*.
1596
1716
  #
1597
1717
  # <note markdown="1"> If any one of the tags is invalid or if you exceed the allowed
1598
- # number of tags per user, then the entire request fails and the user
1599
- # is not created.
1718
+ # maximum number of tags, then the entire request fails and the
1719
+ # resource is not created.
1600
1720
  #
1601
1721
  # </note>
1602
1722
  #
@@ -1636,11 +1756,17 @@ module Aws::IAM
1636
1756
  # {
1637
1757
  # path: "pathType",
1638
1758
  # virtual_mfa_device_name: "virtualMFADeviceName", # required
1759
+ # tags: [
1760
+ # {
1761
+ # key: "tagKeyType", # required
1762
+ # value: "tagValueType", # required
1763
+ # },
1764
+ # ],
1639
1765
  # }
1640
1766
  #
1641
1767
  # @!attribute [rw] path
1642
1768
  # The path for the virtual MFA device. For more information about
1643
- # paths, see [IAM Identifiers][1] in the *IAM User Guide*.
1769
+ # paths, see [IAM identifiers][1] in the *IAM User Guide*.
1644
1770
  #
1645
1771
  # This parameter is optional. If it is not included, it defaults to a
1646
1772
  # slash (/).
@@ -1672,11 +1798,29 @@ module Aws::IAM
1672
1798
  # [1]: http://wikipedia.org/wiki/regex
1673
1799
  # @return [String]
1674
1800
  #
1801
+ # @!attribute [rw] tags
1802
+ # A list of tags that you want to attach to the new IAM virtual MFA
1803
+ # device. Each tag consists of a key name and an associated value. For
1804
+ # more information about tagging, see [Tagging IAM resources][1] in
1805
+ # the *IAM User Guide*.
1806
+ #
1807
+ # <note markdown="1"> If any one of the tags is invalid or if you exceed the allowed
1808
+ # maximum number of tags, then the entire request fails and the
1809
+ # resource is not created.
1810
+ #
1811
+ # </note>
1812
+ #
1813
+ #
1814
+ #
1815
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
1816
+ # @return [Array<Types::Tag>]
1817
+ #
1675
1818
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateVirtualMFADeviceRequest AWS API Documentation
1676
1819
  #
1677
1820
  class CreateVirtualMFADeviceRequest < Struct.new(
1678
1821
  :path,
1679
- :virtual_mfa_device_name)
1822
+ :virtual_mfa_device_name,
1823
+ :tags)
1680
1824
  SENSITIVE = []
1681
1825
  include Aws::Structure
1682
1826
  end
@@ -1698,7 +1842,7 @@ module Aws::IAM
1698
1842
  # The request was rejected because the most recent credential report has
1699
1843
  # expired. To generate a new credential report, use
1700
1844
  # GenerateCredentialReport. For more information about credential report
1701
- # expiration, see [Getting Credential Reports][1] in the *IAM User
1845
+ # expiration, see [Getting credential reports][1] in the *IAM User
1702
1846
  # Guide*.
1703
1847
  #
1704
1848
  #
@@ -2034,8 +2178,8 @@ module Aws::IAM
2034
2178
  # @!attribute [rw] policy_arn
2035
2179
  # The Amazon Resource Name (ARN) of the IAM policy you want to delete.
2036
2180
  #
2037
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
2038
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
2181
+ # For more information about ARNs, see [Amazon Resource Names
2182
+ # (ARNs)][1] in the *AWS General Reference*.
2039
2183
  #
2040
2184
  #
2041
2185
  #
@@ -2062,8 +2206,8 @@ module Aws::IAM
2062
2206
  # The Amazon Resource Name (ARN) of the IAM policy from which you want
2063
2207
  # to delete a version.
2064
2208
  #
2065
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
2066
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
2209
+ # For more information about ARNs, see [Amazon Resource Names
2210
+ # (ARNs)][1] in the *AWS General Reference*.
2067
2211
  #
2068
2212
  #
2069
2213
  #
@@ -2079,7 +2223,7 @@ module Aws::IAM
2079
2223
  # string of letters and digits.
2080
2224
  #
2081
2225
  # For more information about managed policy versions, see [Versioning
2082
- # for Managed Policies][2] in the *IAM User Guide*.
2226
+ # for managed policies][2] in the *IAM User Guide*.
2083
2227
  #
2084
2228
  #
2085
2229
  #
@@ -2572,8 +2716,8 @@ module Aws::IAM
2572
2716
  # @!attribute [rw] policy_arn
2573
2717
  # The Amazon Resource Name (ARN) of the IAM policy you want to detach.
2574
2718
  #
2575
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
2576
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
2719
+ # For more information about ARNs, see [Amazon Resource Names
2720
+ # (ARNs)][1] in the *AWS General Reference*.
2577
2721
  #
2578
2722
  #
2579
2723
  #
@@ -2614,8 +2758,8 @@ module Aws::IAM
2614
2758
  # @!attribute [rw] policy_arn
2615
2759
  # The Amazon Resource Name (ARN) of the IAM policy you want to detach.
2616
2760
  #
2617
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
2618
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
2761
+ # For more information about ARNs, see [Amazon Resource Names
2762
+ # (ARNs)][1] in the *AWS General Reference*.
2619
2763
  #
2620
2764
  #
2621
2765
  #
@@ -2656,8 +2800,8 @@ module Aws::IAM
2656
2800
  # @!attribute [rw] policy_arn
2657
2801
  # The Amazon Resource Name (ARN) of the IAM policy you want to detach.
2658
2802
  #
2659
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
2660
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
2803
+ # For more information about ARNs, see [Amazon Resource Names
2804
+ # (ARNs)][1] in the *AWS General Reference*.
2661
2805
  #
2662
2806
  #
2663
2807
  #
@@ -2840,8 +2984,8 @@ module Aws::IAM
2840
2984
  # The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS
2841
2985
  # resources.
2842
2986
  #
2843
- # For more information about ARNs, go to [Amazon Resource Names (ARNs)
2844
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
2987
+ # For more information about ARNs, go to [Amazon Resource Names
2988
+ # (ARNs)][1] in the *AWS General Reference*.
2845
2989
  #
2846
2990
  #
2847
2991
  #
@@ -2862,7 +3006,7 @@ module Aws::IAM
2862
3006
  #
2863
3007
  # @!attribute [rw] path
2864
3008
  # The path to the entity (user or role). For more information about
2865
- # paths, see [IAM Identifiers][1] in the *IAM User Guide*.
3009
+ # paths, see [IAM identifiers][1] in the *IAM User Guide*.
2866
3010
  #
2867
3011
  #
2868
3012
  #
@@ -2986,8 +3130,8 @@ module Aws::IAM
2986
3130
  # When you make a cross-account request, AWS evaluates the request in
2987
3131
  # the trusting account and the trusted account. The request is allowed
2988
3132
  # only if both evaluations return `true`. For more information about
2989
- # how policies are evaluated, see [Evaluating Policies Within a Single
2990
- # Account][1].
3133
+ # how policies are evaluated, see [Evaluating policies within a single
3134
+ # account][1].
2991
3135
  #
2992
3136
  # If an AWS Organizations SCP included in the evaluation denies
2993
3137
  # access, the simulation ends. In this case, policy evaluation does
@@ -3384,8 +3528,8 @@ module Aws::IAM
3384
3528
  # clarity, but must be URL encoded to be included as a part of a real
3385
3529
  # HTML request.
3386
3530
  #
3387
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
3388
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
3531
+ # For more information about ARNs, see [Amazon Resource Names
3532
+ # (ARNs)][1] in the *AWS General Reference*.
3389
3533
  #
3390
3534
  #
3391
3535
  #
@@ -3709,8 +3853,8 @@ module Aws::IAM
3709
3853
  # in IAM to get information for. You can get a list of OIDC provider
3710
3854
  # resource ARNs by using the ListOpenIDConnectProviders operation.
3711
3855
  #
3712
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
3713
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
3856
+ # For more information about ARNs, see [Amazon Resource Names
3857
+ # (ARNs)][1] in the *AWS General Reference*.
3714
3858
  #
3715
3859
  #
3716
3860
  #
@@ -3750,13 +3894,25 @@ module Aws::IAM
3750
3894
  # created in the AWS account.
3751
3895
  # @return [Time]
3752
3896
  #
3897
+ # @!attribute [rw] tags
3898
+ # A list of tags that are attached to the specified IAM OIDC provider.
3899
+ # The returned list of tags is sorted by tag key. For more information
3900
+ # about tagging, see [Tagging IAM resources][1] in the *IAM User
3901
+ # Guide*.
3902
+ #
3903
+ #
3904
+ #
3905
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
3906
+ # @return [Array<Types::Tag>]
3907
+ #
3753
3908
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/GetOpenIDConnectProviderResponse AWS API Documentation
3754
3909
  #
3755
3910
  class GetOpenIDConnectProviderResponse < Struct.new(
3756
3911
  :url,
3757
3912
  :client_id_list,
3758
3913
  :thumbprint_list,
3759
- :create_date)
3914
+ :create_date,
3915
+ :tags)
3760
3916
  SENSITIVE = []
3761
3917
  include Aws::Structure
3762
3918
  end
@@ -3905,8 +4061,8 @@ module Aws::IAM
3905
4061
  # The Amazon Resource Name (ARN) of the managed policy that you want
3906
4062
  # information about.
3907
4063
  #
3908
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
3909
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
4064
+ # For more information about ARNs, see [Amazon Resource Names
4065
+ # (ARNs)][1] in the *AWS General Reference*.
3910
4066
  #
3911
4067
  #
3912
4068
  #
@@ -3947,8 +4103,8 @@ module Aws::IAM
3947
4103
  # The Amazon Resource Name (ARN) of the managed policy that you want
3948
4104
  # information about.
3949
4105
  #
3950
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
3951
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
4106
+ # For more information about ARNs, see [Amazon Resource Names
4107
+ # (ARNs)][1] in the *AWS General Reference*.
3952
4108
  #
3953
4109
  #
3954
4110
  #
@@ -4116,8 +4272,8 @@ module Aws::IAM
4116
4272
  # The Amazon Resource Name (ARN) of the SAML provider resource object
4117
4273
  # in IAM to get information about.
4118
4274
  #
4119
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
4120
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
4275
+ # For more information about ARNs, see [Amazon Resource Names
4276
+ # (ARNs)][1] in the *AWS General Reference*.
4121
4277
  #
4122
4278
  #
4123
4279
  #
@@ -4147,12 +4303,24 @@ module Aws::IAM
4147
4303
  # The expiration date and time for the SAML provider.
4148
4304
  # @return [Time]
4149
4305
  #
4306
+ # @!attribute [rw] tags
4307
+ # A list of tags that are attached to the specified IAM SAML provider.
4308
+ # The returned list of tags is sorted by tag key. For more information
4309
+ # about tagging, see [Tagging IAM resources][1] in the *IAM User
4310
+ # Guide*.
4311
+ #
4312
+ #
4313
+ #
4314
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
4315
+ # @return [Array<Types::Tag>]
4316
+ #
4150
4317
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/GetSAMLProviderResponse AWS API Documentation
4151
4318
  #
4152
4319
  class GetSAMLProviderResponse < Struct.new(
4153
4320
  :saml_metadata_document,
4154
4321
  :create_date,
4155
- :valid_until)
4322
+ :valid_until,
4323
+ :tags)
4156
4324
  SENSITIVE = []
4157
4325
  include Aws::Structure
4158
4326
  end
@@ -4403,17 +4571,17 @@ module Aws::IAM
4403
4571
  # namespace to learn when the IAM entity last attempted to access the
4404
4572
  # specified service.
4405
4573
  #
4406
- # To learn the service namespace for a service, go to [Actions,
4407
- # Resources, and Condition Keys for AWS Services][1] in the *IAM User
4574
+ # To learn the service namespace for a service, see [Actions,
4575
+ # resources, and condition keys for AWS services][1] in the *IAM User
4408
4576
  # Guide*. Choose the name of the service to view details for that
4409
4577
  # service. In the first paragraph, find the service prefix. For
4410
4578
  # example, `(service prefix: a4b)`. For more information about service
4411
- # namespaces, see [AWS Service Namespaces][2] in the *AWS General
4579
+ # namespaces, see [AWS service namespaces][2] in the *AWS General
4412
4580
  # Reference*.
4413
4581
  #
4414
4582
  #
4415
4583
  #
4416
- # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_actions-resources-contextkeys.html
4584
+ # [1]: https://docs.aws.amazon.com/service-authorization/latest/reference/reference_policies_actions-resources-contextkeys.html
4417
4585
  # [2]: https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html#genref-aws-service-namespaces
4418
4586
  # @return [String]
4419
4587
  #
@@ -4663,7 +4831,7 @@ module Aws::IAM
4663
4831
  # password use from May 3, 2018 22:50 PDT to May 23, 2018 14:08 PDT.
4664
4832
  # This affects [last sign-in][1] dates shown in the IAM console and
4665
4833
  # password last used dates in the [IAM credential report][2], and
4666
- # returned by this GetUser API. If users signed in during the affected
4834
+ # returned by this operation. If users signed in during the affected
4667
4835
  # time, the password last used date that is returned is the date the
4668
4836
  # user last signed in before May 3, 2018. For users that signed in
4669
4837
  # after May 23, 2018 14:08 PDT, the returned password last used date
@@ -4704,7 +4872,7 @@ module Aws::IAM
4704
4872
  #
4705
4873
  # @!attribute [rw] path
4706
4874
  # The path to the group. For more information about paths, see [IAM
4707
- # Identifiers][1] in the *IAM User Guide*.
4875
+ # identifiers][1] in the *IAM User Guide*.
4708
4876
  #
4709
4877
  #
4710
4878
  #
@@ -4717,7 +4885,7 @@ module Aws::IAM
4717
4885
  #
4718
4886
  # @!attribute [rw] group_id
4719
4887
  # The stable and unique string identifying the group. For more
4720
- # information about IDs, see [IAM Identifiers][1] in the *IAM User
4888
+ # information about IDs, see [IAM identifiers][1] in the *IAM User
4721
4889
  # Guide*.
4722
4890
  #
4723
4891
  #
@@ -4728,7 +4896,7 @@ module Aws::IAM
4728
4896
  # @!attribute [rw] arn
4729
4897
  # The Amazon Resource Name (ARN) specifying the group. For more
4730
4898
  # information about ARNs and how to use them in policies, see [IAM
4731
- # Identifiers][1] in the *IAM User Guide*.
4899
+ # identifiers][1] in the *IAM User Guide*.
4732
4900
  #
4733
4901
  #
4734
4902
  #
@@ -4764,7 +4932,7 @@ module Aws::IAM
4764
4932
  #
4765
4933
  # @!attribute [rw] path
4766
4934
  # The path to the group. For more information about paths, see [IAM
4767
- # Identifiers][1] in the *IAM User Guide*.
4935
+ # identifiers][1] in the *IAM User Guide*.
4768
4936
  #
4769
4937
  #
4770
4938
  #
@@ -4777,7 +4945,7 @@ module Aws::IAM
4777
4945
  #
4778
4946
  # @!attribute [rw] group_id
4779
4947
  # The stable and unique string identifying the group. For more
4780
- # information about IDs, see [IAM Identifiers][1] in the *IAM User
4948
+ # information about IDs, see [IAM identifiers][1] in the *IAM User
4781
4949
  # Guide*.
4782
4950
  #
4783
4951
  #
@@ -4789,8 +4957,8 @@ module Aws::IAM
4789
4957
  # The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS
4790
4958
  # resources.
4791
4959
  #
4792
- # For more information about ARNs, go to [Amazon Resource Names (ARNs)
4793
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
4960
+ # For more information about ARNs, go to [Amazon Resource Names
4961
+ # (ARNs)][1] in the *AWS General Reference*.
4794
4962
  #
4795
4963
  #
4796
4964
  #
@@ -4843,7 +5011,7 @@ module Aws::IAM
4843
5011
  #
4844
5012
  # @!attribute [rw] path
4845
5013
  # The path to the instance profile. For more information about paths,
4846
- # see [IAM Identifiers][1] in the *IAM User Guide*.
5014
+ # see [IAM identifiers][1] in the *IAM User Guide*.
4847
5015
  #
4848
5016
  #
4849
5017
  #
@@ -4856,7 +5024,7 @@ module Aws::IAM
4856
5024
  #
4857
5025
  # @!attribute [rw] instance_profile_id
4858
5026
  # The stable and unique string identifying the instance profile. For
4859
- # more information about IDs, see [IAM Identifiers][1] in the *IAM
5027
+ # more information about IDs, see [IAM identifiers][1] in the *IAM
4860
5028
  # User Guide*.
4861
5029
  #
4862
5030
  #
@@ -4867,7 +5035,7 @@ module Aws::IAM
4867
5035
  # @!attribute [rw] arn
4868
5036
  # The Amazon Resource Name (ARN) specifying the instance profile. For
4869
5037
  # more information about ARNs and how to use them in policies, see
4870
- # [IAM Identifiers][1] in the *IAM User Guide*.
5038
+ # [IAM identifiers][1] in the *IAM User Guide*.
4871
5039
  #
4872
5040
  #
4873
5041
  #
@@ -4882,6 +5050,16 @@ module Aws::IAM
4882
5050
  # The role associated with the instance profile.
4883
5051
  # @return [Array<Types::Role>]
4884
5052
  #
5053
+ # @!attribute [rw] tags
5054
+ # A list of tags that are attached to the instance profile. For more
5055
+ # information about tagging, see [Tagging IAM resources][1] in the
5056
+ # *IAM User Guide*.
5057
+ #
5058
+ #
5059
+ #
5060
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
5061
+ # @return [Array<Types::Tag>]
5062
+ #
4885
5063
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/InstanceProfile AWS API Documentation
4886
5064
  #
4887
5065
  class InstanceProfile < Struct.new(
@@ -4890,7 +5068,8 @@ module Aws::IAM
4890
5068
  :instance_profile_id,
4891
5069
  :arn,
4892
5070
  :create_date,
4893
- :roles)
5071
+ :roles,
5072
+ :tags)
4894
5073
  SENSITIVE = []
4895
5074
  include Aws::Structure
4896
5075
  end
@@ -4979,8 +5158,8 @@ module Aws::IAM
4979
5158
  end
4980
5159
 
4981
5160
  # The request was rejected because it attempted to create resources
4982
- # beyond the current AWS account limitations. The error message
4983
- # describes the limit exceeded.
5161
+ # beyond the current AWS account limits. The error message describes the
5162
+ # limit exceeded.
4984
5163
  #
4985
5164
  # @!attribute [rw] message
4986
5165
  # @return [String]
@@ -5478,8 +5657,8 @@ module Aws::IAM
5478
5657
  # The Amazon Resource Name (ARN) of the IAM policy for which you want
5479
5658
  # the versions.
5480
5659
  #
5481
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
5482
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
5660
+ # For more information about ARNs, see [Amazon Resource Names
5661
+ # (ARNs)][1] in the *AWS General Reference*.
5483
5662
  #
5484
5663
  #
5485
5664
  #
@@ -5867,6 +6046,91 @@ module Aws::IAM
5867
6046
  include Aws::Structure
5868
6047
  end
5869
6048
 
6049
+ # @note When making an API call, you may pass ListInstanceProfileTagsRequest
6050
+ # data as a hash:
6051
+ #
6052
+ # {
6053
+ # instance_profile_name: "instanceProfileNameType", # required
6054
+ # marker: "markerType",
6055
+ # max_items: 1,
6056
+ # }
6057
+ #
6058
+ # @!attribute [rw] instance_profile_name
6059
+ # The name of the IAM instance profile whose tags you want to see.
6060
+ #
6061
+ # This parameter accepts (through its [regex pattern][1]) a string of
6062
+ # characters that consist of upper and lowercase alphanumeric
6063
+ # characters with no spaces. You can also include any of the following
6064
+ # characters: =,.@-
6065
+ #
6066
+ #
6067
+ #
6068
+ # [1]: http://wikipedia.org/wiki/regex
6069
+ # @return [String]
6070
+ #
6071
+ # @!attribute [rw] marker
6072
+ # Use this parameter only when paginating results and only after you
6073
+ # receive a response indicating that the results are truncated. Set it
6074
+ # to the value of the `Marker` element in the response that you
6075
+ # received to indicate where the next call should start.
6076
+ # @return [String]
6077
+ #
6078
+ # @!attribute [rw] max_items
6079
+ # (Optional) Use this only when paginating results to indicate the
6080
+ # maximum number of items that you want in the response. If additional
6081
+ # items exist beyond the maximum that you specify, the `IsTruncated`
6082
+ # response element is `true`.
6083
+ #
6084
+ # If you do not include this parameter, it defaults to 100. Note that
6085
+ # IAM might return fewer results, even when more results are
6086
+ # available. In that case, the `IsTruncated` response element returns
6087
+ # `true`, and `Marker` contains a value to include in the subsequent
6088
+ # call that tells the service where to continue from.
6089
+ # @return [Integer]
6090
+ #
6091
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListInstanceProfileTagsRequest AWS API Documentation
6092
+ #
6093
+ class ListInstanceProfileTagsRequest < Struct.new(
6094
+ :instance_profile_name,
6095
+ :marker,
6096
+ :max_items)
6097
+ SENSITIVE = []
6098
+ include Aws::Structure
6099
+ end
6100
+
6101
+ # @!attribute [rw] tags
6102
+ # The list of tags that are currently attached to the IAM instance
6103
+ # profile. Each tag consists of a key name and an associated value. If
6104
+ # no tags are attached to the specified resource, the response
6105
+ # contains an empty list.
6106
+ # @return [Array<Types::Tag>]
6107
+ #
6108
+ # @!attribute [rw] is_truncated
6109
+ # A flag that indicates whether there are more items to return. If
6110
+ # your results were truncated, you can use the `Marker` request
6111
+ # parameter to make a subsequent pagination request that retrieves
6112
+ # more items. Note that IAM might return fewer than the `MaxItems`
6113
+ # number of results even when more results are available. Check
6114
+ # `IsTruncated` after every call to ensure that you receive all of
6115
+ # your results.
6116
+ # @return [Boolean]
6117
+ #
6118
+ # @!attribute [rw] marker
6119
+ # When `IsTruncated` is `true`, this element is present and contains
6120
+ # the value to use for the `Marker` parameter in a subsequent
6121
+ # pagination request.
6122
+ # @return [String]
6123
+ #
6124
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListInstanceProfileTagsResponse AWS API Documentation
6125
+ #
6126
+ class ListInstanceProfileTagsResponse < Struct.new(
6127
+ :tags,
6128
+ :is_truncated,
6129
+ :marker)
6130
+ SENSITIVE = []
6131
+ include Aws::Structure
6132
+ end
6133
+
5870
6134
  # @note When making an API call, you may pass ListInstanceProfilesForRoleRequest
5871
6135
  # data as a hash:
5872
6136
  #
@@ -6042,22 +6306,109 @@ module Aws::IAM
6042
6306
  include Aws::Structure
6043
6307
  end
6044
6308
 
6045
- # @note When making an API call, you may pass ListMFADevicesRequest
6309
+ # @note When making an API call, you may pass ListMFADeviceTagsRequest
6046
6310
  # data as a hash:
6047
6311
  #
6048
6312
  # {
6049
- # user_name: "existingUserNameType",
6313
+ # serial_number: "serialNumberType", # required
6050
6314
  # marker: "markerType",
6051
6315
  # max_items: 1,
6052
6316
  # }
6053
6317
  #
6054
- # @!attribute [rw] user_name
6055
- # The name of the user whose MFA devices you want to list.
6318
+ # @!attribute [rw] serial_number
6319
+ # The unique identifier for the IAM virtual MFA device whose tags you
6320
+ # want to see. For virtual MFA devices, the serial number is the same
6321
+ # as the ARN.
6056
6322
  #
6057
- # This parameter allows (through its [regex pattern][1]) a string of
6058
- # characters consisting of upper and lowercase alphanumeric characters
6059
- # with no spaces. You can also include any of the following
6060
- # characters: \_+=,.@-
6323
+ # This parameter accepts (through its [regex pattern][1]) a string of
6324
+ # characters that consist of upper and lowercase alphanumeric
6325
+ # characters with no spaces. You can also include any of the following
6326
+ # characters: =,.@-
6327
+ #
6328
+ #
6329
+ #
6330
+ # [1]: http://wikipedia.org/wiki/regex
6331
+ # @return [String]
6332
+ #
6333
+ # @!attribute [rw] marker
6334
+ # Use this parameter only when paginating results and only after you
6335
+ # receive a response indicating that the results are truncated. Set it
6336
+ # to the value of the `Marker` element in the response that you
6337
+ # received to indicate where the next call should start.
6338
+ # @return [String]
6339
+ #
6340
+ # @!attribute [rw] max_items
6341
+ # (Optional) Use this only when paginating results to indicate the
6342
+ # maximum number of items that you want in the response. If additional
6343
+ # items exist beyond the maximum that you specify, the `IsTruncated`
6344
+ # response element is `true`.
6345
+ #
6346
+ # If you do not include this parameter, it defaults to 100. Note that
6347
+ # IAM might return fewer results, even when more results are
6348
+ # available. In that case, the `IsTruncated` response element returns
6349
+ # `true`, and `Marker` contains a value to include in the subsequent
6350
+ # call that tells the service where to continue from.
6351
+ # @return [Integer]
6352
+ #
6353
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListMFADeviceTagsRequest AWS API Documentation
6354
+ #
6355
+ class ListMFADeviceTagsRequest < Struct.new(
6356
+ :serial_number,
6357
+ :marker,
6358
+ :max_items)
6359
+ SENSITIVE = []
6360
+ include Aws::Structure
6361
+ end
6362
+
6363
+ # @!attribute [rw] tags
6364
+ # The list of tags that are currently attached to the virtual MFA
6365
+ # device. Each tag consists of a key name and an associated value. If
6366
+ # no tags are attached to the specified resource, the response
6367
+ # contains an empty list.
6368
+ # @return [Array<Types::Tag>]
6369
+ #
6370
+ # @!attribute [rw] is_truncated
6371
+ # A flag that indicates whether there are more items to return. If
6372
+ # your results were truncated, you can use the `Marker` request
6373
+ # parameter to make a subsequent pagination request that retrieves
6374
+ # more items. Note that IAM might return fewer than the `MaxItems`
6375
+ # number of results even when more results are available. Check
6376
+ # `IsTruncated` after every call to ensure that you receive all of
6377
+ # your results.
6378
+ # @return [Boolean]
6379
+ #
6380
+ # @!attribute [rw] marker
6381
+ # When `IsTruncated` is `true`, this element is present and contains
6382
+ # the value to use for the `Marker` parameter in a subsequent
6383
+ # pagination request.
6384
+ # @return [String]
6385
+ #
6386
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListMFADeviceTagsResponse AWS API Documentation
6387
+ #
6388
+ class ListMFADeviceTagsResponse < Struct.new(
6389
+ :tags,
6390
+ :is_truncated,
6391
+ :marker)
6392
+ SENSITIVE = []
6393
+ include Aws::Structure
6394
+ end
6395
+
6396
+ # @note When making an API call, you may pass ListMFADevicesRequest
6397
+ # data as a hash:
6398
+ #
6399
+ # {
6400
+ # user_name: "existingUserNameType",
6401
+ # marker: "markerType",
6402
+ # max_items: 1,
6403
+ # }
6404
+ #
6405
+ # @!attribute [rw] user_name
6406
+ # The name of the user whose MFA devices you want to list.
6407
+ #
6408
+ # This parameter allows (through its [regex pattern][1]) a string of
6409
+ # characters consisting of upper and lowercase alphanumeric characters
6410
+ # with no spaces. You can also include any of the following
6411
+ # characters: \_+=,.@-
6061
6412
  #
6062
6413
  #
6063
6414
  #
@@ -6126,6 +6477,92 @@ module Aws::IAM
6126
6477
  include Aws::Structure
6127
6478
  end
6128
6479
 
6480
+ # @note When making an API call, you may pass ListOpenIDConnectProviderTagsRequest
6481
+ # data as a hash:
6482
+ #
6483
+ # {
6484
+ # open_id_connect_provider_arn: "arnType", # required
6485
+ # marker: "markerType",
6486
+ # max_items: 1,
6487
+ # }
6488
+ #
6489
+ # @!attribute [rw] open_id_connect_provider_arn
6490
+ # The ARN of the OpenID Connect (OIDC) identity provider whose tags
6491
+ # you want to see.
6492
+ #
6493
+ # This parameter accepts (through its [regex pattern][1]) a string of
6494
+ # characters that consist of upper and lowercase alphanumeric
6495
+ # characters with no spaces. You can also include any of the following
6496
+ # characters: =,.@-
6497
+ #
6498
+ #
6499
+ #
6500
+ # [1]: http://wikipedia.org/wiki/regex
6501
+ # @return [String]
6502
+ #
6503
+ # @!attribute [rw] marker
6504
+ # Use this parameter only when paginating results and only after you
6505
+ # receive a response indicating that the results are truncated. Set it
6506
+ # to the value of the `Marker` element in the response that you
6507
+ # received to indicate where the next call should start.
6508
+ # @return [String]
6509
+ #
6510
+ # @!attribute [rw] max_items
6511
+ # (Optional) Use this only when paginating results to indicate the
6512
+ # maximum number of items that you want in the response. If additional
6513
+ # items exist beyond the maximum that you specify, the `IsTruncated`
6514
+ # response element is `true`.
6515
+ #
6516
+ # If you do not include this parameter, it defaults to 100. Note that
6517
+ # IAM might return fewer results, even when more results are
6518
+ # available. In that case, the `IsTruncated` response element returns
6519
+ # `true`, and `Marker` contains a value to include in the subsequent
6520
+ # call that tells the service where to continue from.
6521
+ # @return [Integer]
6522
+ #
6523
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListOpenIDConnectProviderTagsRequest AWS API Documentation
6524
+ #
6525
+ class ListOpenIDConnectProviderTagsRequest < Struct.new(
6526
+ :open_id_connect_provider_arn,
6527
+ :marker,
6528
+ :max_items)
6529
+ SENSITIVE = []
6530
+ include Aws::Structure
6531
+ end
6532
+
6533
+ # @!attribute [rw] tags
6534
+ # The list of tags that are currently attached to the OpenID Connect
6535
+ # (OIDC) identity provider. Each tag consists of a key name and an
6536
+ # associated value. If no tags are attached to the specified resource,
6537
+ # the response contains an empty list.
6538
+ # @return [Array<Types::Tag>]
6539
+ #
6540
+ # @!attribute [rw] is_truncated
6541
+ # A flag that indicates whether there are more items to return. If
6542
+ # your results were truncated, you can use the `Marker` request
6543
+ # parameter to make a subsequent pagination request that retrieves
6544
+ # more items. Note that IAM might return fewer than the `MaxItems`
6545
+ # number of results even when more results are available. Check
6546
+ # `IsTruncated` after every call to ensure that you receive all of
6547
+ # your results.
6548
+ # @return [Boolean]
6549
+ #
6550
+ # @!attribute [rw] marker
6551
+ # When `IsTruncated` is `true`, this element is present and contains
6552
+ # the value to use for the `Marker` parameter in a subsequent
6553
+ # pagination request.
6554
+ # @return [String]
6555
+ #
6556
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListOpenIDConnectProviderTagsResponse AWS API Documentation
6557
+ #
6558
+ class ListOpenIDConnectProviderTagsResponse < Struct.new(
6559
+ :tags,
6560
+ :is_truncated,
6561
+ :marker)
6562
+ SENSITIVE = []
6563
+ include Aws::Structure
6564
+ end
6565
+
6129
6566
  # @api private
6130
6567
  #
6131
6568
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListOpenIDConnectProvidersRequest AWS API Documentation
@@ -6157,17 +6594,17 @@ module Aws::IAM
6157
6594
  # @!attribute [rw] service_namespace
6158
6595
  # The namespace of the service that was accessed.
6159
6596
  #
6160
- # To learn the service namespace of a service, go to [Actions,
6161
- # Resources, and Condition Keys for AWS Services][1] in the *IAM User
6162
- # Guide*. Choose the name of the service to view details for that
6163
- # service. In the first paragraph, find the service prefix. For
6164
- # example, `(service prefix: a4b)`. For more information about service
6165
- # namespaces, see [AWS Service Namespaces][2] in the *AWS General
6166
- # Reference*.
6597
+ # To learn the service namespace of a service, see [Actions,
6598
+ # resources, and condition keys for AWS services][1] in the *Service
6599
+ # Authorization Reference*. Choose the name of the service to view
6600
+ # details for that service. In the first paragraph, find the service
6601
+ # prefix. For example, `(service prefix: a4b)`. For more information
6602
+ # about service namespaces, see [AWS service namespaces][2] in
6603
+ # the *AWS General Reference*.
6167
6604
  #
6168
6605
  #
6169
6606
  #
6170
- # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_actions-resources-contextkeys.html
6607
+ # [1]: https://docs.aws.amazon.com/service-authorization/latest/reference/reference_policies_actions-resources-contextkeys.html
6171
6608
  # [2]: https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html#genref-aws-service-namespaces
6172
6609
  # @return [String]
6173
6610
  #
@@ -6210,17 +6647,17 @@ module Aws::IAM
6210
6647
  # The service namespace for the AWS services whose policies you want
6211
6648
  # to list.
6212
6649
  #
6213
- # To learn the service namespace for a service, go to [Actions,
6214
- # Resources, and Condition Keys for AWS Services][1] in the *IAM User
6650
+ # To learn the service namespace for a service, see [Actions,
6651
+ # resources, and condition keys for AWS services][1] in the *IAM User
6215
6652
  # Guide*. Choose the name of the service to view details for that
6216
6653
  # service. In the first paragraph, find the service prefix. For
6217
6654
  # example, `(service prefix: a4b)`. For more information about service
6218
- # namespaces, see [AWS Service Namespaces][2] in the *AWS General
6655
+ # namespaces, see [AWS service namespaces][2] in the *AWS General
6219
6656
  # Reference*.
6220
6657
  #
6221
6658
  #
6222
6659
  #
6223
- # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_actions-resources-contextkeys.html
6660
+ # [1]: https://docs.aws.amazon.com/service-authorization/latest/reference/reference_policies_actions-resources-contextkeys.html
6224
6661
  # [2]: https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html#genref-aws-service-namespaces
6225
6662
  # @return [Array<String>]
6226
6663
  #
@@ -6388,6 +6825,92 @@ module Aws::IAM
6388
6825
  include Aws::Structure
6389
6826
  end
6390
6827
 
6828
+ # @note When making an API call, you may pass ListPolicyTagsRequest
6829
+ # data as a hash:
6830
+ #
6831
+ # {
6832
+ # policy_arn: "arnType", # required
6833
+ # marker: "markerType",
6834
+ # max_items: 1,
6835
+ # }
6836
+ #
6837
+ # @!attribute [rw] policy_arn
6838
+ # The ARN of the IAM customer managed policy whose tags you want to
6839
+ # see.
6840
+ #
6841
+ # This parameter accepts (through its [regex pattern][1]) a string of
6842
+ # characters that consist of upper and lowercase alphanumeric
6843
+ # characters with no spaces. You can also include any of the following
6844
+ # characters: =,.@-
6845
+ #
6846
+ #
6847
+ #
6848
+ # [1]: http://wikipedia.org/wiki/regex
6849
+ # @return [String]
6850
+ #
6851
+ # @!attribute [rw] marker
6852
+ # Use this parameter only when paginating results and only after you
6853
+ # receive a response indicating that the results are truncated. Set it
6854
+ # to the value of the `Marker` element in the response that you
6855
+ # received to indicate where the next call should start.
6856
+ # @return [String]
6857
+ #
6858
+ # @!attribute [rw] max_items
6859
+ # (Optional) Use this only when paginating results to indicate the
6860
+ # maximum number of items that you want in the response. If additional
6861
+ # items exist beyond the maximum that you specify, the `IsTruncated`
6862
+ # response element is `true`.
6863
+ #
6864
+ # If you do not include this parameter, it defaults to 100. Note that
6865
+ # IAM might return fewer results, even when more results are
6866
+ # available. In that case, the `IsTruncated` response element returns
6867
+ # `true`, and `Marker` contains a value to include in the subsequent
6868
+ # call that tells the service where to continue from.
6869
+ # @return [Integer]
6870
+ #
6871
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListPolicyTagsRequest AWS API Documentation
6872
+ #
6873
+ class ListPolicyTagsRequest < Struct.new(
6874
+ :policy_arn,
6875
+ :marker,
6876
+ :max_items)
6877
+ SENSITIVE = []
6878
+ include Aws::Structure
6879
+ end
6880
+
6881
+ # @!attribute [rw] tags
6882
+ # The list of tags that are currently attached to the IAM customer
6883
+ # managed policy. Each tag consists of a key name and an associated
6884
+ # value. If no tags are attached to the specified resource, the
6885
+ # response contains an empty list.
6886
+ # @return [Array<Types::Tag>]
6887
+ #
6888
+ # @!attribute [rw] is_truncated
6889
+ # A flag that indicates whether there are more items to return. If
6890
+ # your results were truncated, you can use the `Marker` request
6891
+ # parameter to make a subsequent pagination request that retrieves
6892
+ # more items. Note that IAM might return fewer than the `MaxItems`
6893
+ # number of results even when more results are available. Check
6894
+ # `IsTruncated` after every call to ensure that you receive all of
6895
+ # your results.
6896
+ # @return [Boolean]
6897
+ #
6898
+ # @!attribute [rw] marker
6899
+ # When `IsTruncated` is `true`, this element is present and contains
6900
+ # the value to use for the `Marker` parameter in a subsequent
6901
+ # pagination request.
6902
+ # @return [String]
6903
+ #
6904
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListPolicyTagsResponse AWS API Documentation
6905
+ #
6906
+ class ListPolicyTagsResponse < Struct.new(
6907
+ :tags,
6908
+ :is_truncated,
6909
+ :marker)
6910
+ SENSITIVE = []
6911
+ include Aws::Structure
6912
+ end
6913
+
6391
6914
  # @note When making an API call, you may pass ListPolicyVersionsRequest
6392
6915
  # data as a hash:
6393
6916
  #
@@ -6401,8 +6924,8 @@ module Aws::IAM
6401
6924
  # The Amazon Resource Name (ARN) of the IAM policy for which you want
6402
6925
  # the versions.
6403
6926
  #
6404
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
6405
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
6927
+ # For more information about ARNs, see [Amazon Resource Names
6928
+ # (ARNs)][1] in the *AWS General Reference*.
6406
6929
  #
6407
6930
  #
6408
6931
  #
@@ -6445,7 +6968,7 @@ module Aws::IAM
6445
6968
  # A list of policy versions.
6446
6969
  #
6447
6970
  # For more information about managed policy versions, see [Versioning
6448
- # for Managed Policies][1] in the *IAM User Guide*.
6971
+ # for managed policies][1] in the *IAM User Guide*.
6449
6972
  #
6450
6973
  #
6451
6974
  #
@@ -6615,9 +7138,10 @@ module Aws::IAM
6615
7138
  end
6616
7139
 
6617
7140
  # @!attribute [rw] tags
6618
- # The list of tags currently that is attached to the role. Each tag
7141
+ # The list of tags that are currently attached to the role. Each tag
6619
7142
  # consists of a key name and an associated value. If no tags are
6620
- # attached to the specified role, the response contains an empty list.
7143
+ # attached to the specified resource, the response contains an empty
7144
+ # list.
6621
7145
  # @return [Array<Types::Tag>]
6622
7146
  #
6623
7147
  # @!attribute [rw] is_truncated
@@ -6736,6 +7260,93 @@ module Aws::IAM
6736
7260
  include Aws::Structure
6737
7261
  end
6738
7262
 
7263
+ # @note When making an API call, you may pass ListSAMLProviderTagsRequest
7264
+ # data as a hash:
7265
+ #
7266
+ # {
7267
+ # saml_provider_arn: "arnType", # required
7268
+ # marker: "markerType",
7269
+ # max_items: 1,
7270
+ # }
7271
+ #
7272
+ # @!attribute [rw] saml_provider_arn
7273
+ # The ARN of the Security Assertion Markup Language (SAML) identity
7274
+ # provider whose tags you want to see.
7275
+ #
7276
+ # This parameter accepts (through its [regex pattern][1]) a string of
7277
+ # characters that consist of upper and lowercase alphanumeric
7278
+ # characters with no spaces. You can also include any of the following
7279
+ # characters: =,.@-
7280
+ #
7281
+ #
7282
+ #
7283
+ # [1]: http://wikipedia.org/wiki/regex
7284
+ # @return [String]
7285
+ #
7286
+ # @!attribute [rw] marker
7287
+ # Use this parameter only when paginating results and only after you
7288
+ # receive a response indicating that the results are truncated. Set it
7289
+ # to the value of the `Marker` element in the response that you
7290
+ # received to indicate where the next call should start.
7291
+ # @return [String]
7292
+ #
7293
+ # @!attribute [rw] max_items
7294
+ # (Optional) Use this only when paginating results to indicate the
7295
+ # maximum number of items that you want in the response. If additional
7296
+ # items exist beyond the maximum that you specify, the `IsTruncated`
7297
+ # response element is `true`.
7298
+ #
7299
+ # If you do not include this parameter, it defaults to 100. Note that
7300
+ # IAM might return fewer results, even when more results are
7301
+ # available. In that case, the `IsTruncated` response element returns
7302
+ # `true`, and `Marker` contains a value to include in the subsequent
7303
+ # call that tells the service where to continue from.
7304
+ # @return [Integer]
7305
+ #
7306
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListSAMLProviderTagsRequest AWS API Documentation
7307
+ #
7308
+ class ListSAMLProviderTagsRequest < Struct.new(
7309
+ :saml_provider_arn,
7310
+ :marker,
7311
+ :max_items)
7312
+ SENSITIVE = []
7313
+ include Aws::Structure
7314
+ end
7315
+
7316
+ # @!attribute [rw] tags
7317
+ # The list of tags that are currently attached to the Security
7318
+ # Assertion Markup Language (SAML) identity provider. Each tag
7319
+ # consists of a key name and an associated value. If no tags are
7320
+ # attached to the specified resource, the response contains an empty
7321
+ # list.
7322
+ # @return [Array<Types::Tag>]
7323
+ #
7324
+ # @!attribute [rw] is_truncated
7325
+ # A flag that indicates whether there are more items to return. If
7326
+ # your results were truncated, you can use the `Marker` request
7327
+ # parameter to make a subsequent pagination request that retrieves
7328
+ # more items. Note that IAM might return fewer than the `MaxItems`
7329
+ # number of results even when more results are available. Check
7330
+ # `IsTruncated` after every call to ensure that you receive all of
7331
+ # your results.
7332
+ # @return [Boolean]
7333
+ #
7334
+ # @!attribute [rw] marker
7335
+ # When `IsTruncated` is `true`, this element is present and contains
7336
+ # the value to use for the `Marker` parameter in a subsequent
7337
+ # pagination request.
7338
+ # @return [String]
7339
+ #
7340
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListSAMLProviderTagsResponse AWS API Documentation
7341
+ #
7342
+ class ListSAMLProviderTagsResponse < Struct.new(
7343
+ :tags,
7344
+ :is_truncated,
7345
+ :marker)
7346
+ SENSITIVE = []
7347
+ include Aws::Structure
7348
+ end
7349
+
6739
7350
  # @api private
6740
7351
  #
6741
7352
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListSAMLProvidersRequest AWS API Documentation
@@ -6833,10 +7444,95 @@ module Aws::IAM
6833
7444
  # pagination request.
6834
7445
  # @return [String]
6835
7446
  #
6836
- # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListSSHPublicKeysResponse AWS API Documentation
7447
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListSSHPublicKeysResponse AWS API Documentation
7448
+ #
7449
+ class ListSSHPublicKeysResponse < Struct.new(
7450
+ :ssh_public_keys,
7451
+ :is_truncated,
7452
+ :marker)
7453
+ SENSITIVE = []
7454
+ include Aws::Structure
7455
+ end
7456
+
7457
+ # @note When making an API call, you may pass ListServerCertificateTagsRequest
7458
+ # data as a hash:
7459
+ #
7460
+ # {
7461
+ # server_certificate_name: "serverCertificateNameType", # required
7462
+ # marker: "markerType",
7463
+ # max_items: 1,
7464
+ # }
7465
+ #
7466
+ # @!attribute [rw] server_certificate_name
7467
+ # The name of the IAM server certificate whose tags you want to see.
7468
+ #
7469
+ # This parameter accepts (through its [regex pattern][1]) a string of
7470
+ # characters that consist of upper and lowercase alphanumeric
7471
+ # characters with no spaces. You can also include any of the following
7472
+ # characters: =,.@-
7473
+ #
7474
+ #
7475
+ #
7476
+ # [1]: http://wikipedia.org/wiki/regex
7477
+ # @return [String]
7478
+ #
7479
+ # @!attribute [rw] marker
7480
+ # Use this parameter only when paginating results and only after you
7481
+ # receive a response indicating that the results are truncated. Set it
7482
+ # to the value of the `Marker` element in the response that you
7483
+ # received to indicate where the next call should start.
7484
+ # @return [String]
7485
+ #
7486
+ # @!attribute [rw] max_items
7487
+ # (Optional) Use this only when paginating results to indicate the
7488
+ # maximum number of items that you want in the response. If additional
7489
+ # items exist beyond the maximum that you specify, the `IsTruncated`
7490
+ # response element is `true`.
7491
+ #
7492
+ # If you do not include this parameter, it defaults to 100. Note that
7493
+ # IAM might return fewer results, even when more results are
7494
+ # available. In that case, the `IsTruncated` response element returns
7495
+ # `true`, and `Marker` contains a value to include in the subsequent
7496
+ # call that tells the service where to continue from.
7497
+ # @return [Integer]
7498
+ #
7499
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListServerCertificateTagsRequest AWS API Documentation
7500
+ #
7501
+ class ListServerCertificateTagsRequest < Struct.new(
7502
+ :server_certificate_name,
7503
+ :marker,
7504
+ :max_items)
7505
+ SENSITIVE = []
7506
+ include Aws::Structure
7507
+ end
7508
+
7509
+ # @!attribute [rw] tags
7510
+ # The list of tags that are currently attached to the IAM server
7511
+ # certificate. Each tag consists of a key name and an associated
7512
+ # value. If no tags are attached to the specified resource, the
7513
+ # response contains an empty list.
7514
+ # @return [Array<Types::Tag>]
7515
+ #
7516
+ # @!attribute [rw] is_truncated
7517
+ # A flag that indicates whether there are more items to return. If
7518
+ # your results were truncated, you can use the `Marker` request
7519
+ # parameter to make a subsequent pagination request that retrieves
7520
+ # more items. Note that IAM might return fewer than the `MaxItems`
7521
+ # number of results even when more results are available. Check
7522
+ # `IsTruncated` after every call to ensure that you receive all of
7523
+ # your results.
7524
+ # @return [Boolean]
7525
+ #
7526
+ # @!attribute [rw] marker
7527
+ # When `IsTruncated` is `true`, this element is present and contains
7528
+ # the value to use for the `Marker` parameter in a subsequent
7529
+ # pagination request.
7530
+ # @return [String]
7531
+ #
7532
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ListServerCertificateTagsResponse AWS API Documentation
6837
7533
  #
6838
- class ListSSHPublicKeysResponse < Struct.new(
6839
- :ssh_public_keys,
7534
+ class ListServerCertificateTagsResponse < Struct.new(
7535
+ :tags,
6840
7536
  :is_truncated,
6841
7537
  :marker)
6842
7538
  SENSITIVE = []
@@ -7209,7 +7905,8 @@ module Aws::IAM
7209
7905
  # @!attribute [rw] tags
7210
7906
  # The list of tags that are currently attached to the user. Each tag
7211
7907
  # consists of a key name and an associated value. If no tags are
7212
- # attached to the specified user, the response contains an empty list.
7908
+ # attached to the specified resource, the response contains an empty
7909
+ # list.
7213
7910
  # @return [Array<Types::Tag>]
7214
7911
  #
7215
7912
  # @!attribute [rw] is_truncated
@@ -7499,8 +8196,8 @@ module Aws::IAM
7499
8196
  # This data type is used as a response element in the
7500
8197
  # GetAccountAuthorizationDetails operation.
7501
8198
  #
7502
- # For more information about managed policies, see [Managed Policies and
7503
- # Inline Policies][1] in the *IAM User Guide*.
8199
+ # For more information about managed policies, see [Managed policies and
8200
+ # inline policies][1] in the *IAM User Guide*.
7504
8201
  #
7505
8202
  #
7506
8203
  #
@@ -7513,7 +8210,7 @@ module Aws::IAM
7513
8210
  # @!attribute [rw] policy_id
7514
8211
  # The stable and unique string identifying the policy.
7515
8212
  #
7516
- # For more information about IDs, see [IAM Identifiers][1] in the *IAM
8213
+ # For more information about IDs, see [IAM identifiers][1] in the *IAM
7517
8214
  # User Guide*.
7518
8215
  #
7519
8216
  #
@@ -7525,8 +8222,8 @@ module Aws::IAM
7525
8222
  # The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS
7526
8223
  # resources.
7527
8224
  #
7528
- # For more information about ARNs, go to [Amazon Resource Names (ARNs)
7529
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
8225
+ # For more information about ARNs, go to [Amazon Resource Names
8226
+ # (ARNs)][1] in the *AWS General Reference*.
7530
8227
  #
7531
8228
  #
7532
8229
  #
@@ -7536,7 +8233,7 @@ module Aws::IAM
7536
8233
  # @!attribute [rw] path
7537
8234
  # The path to the policy.
7538
8235
  #
7539
- # For more information about paths, see [IAM Identifiers][1] in the
8236
+ # For more information about paths, see [IAM identifiers][1] in the
7540
8237
  # *IAM User Guide*.
7541
8238
  #
7542
8239
  #
@@ -7549,7 +8246,7 @@ module Aws::IAM
7549
8246
  # default (operative) version.
7550
8247
  #
7551
8248
  # For more information about policy versions, see [Versioning for
7552
- # Managed Policies][1] in the *IAM User Guide*.
8249
+ # managed policies][1] in the *IAM User Guide*.
7553
8250
  #
7554
8251
  #
7555
8252
  #
@@ -7566,7 +8263,7 @@ module Aws::IAM
7566
8263
  # used as the permissions boundary.
7567
8264
  #
7568
8265
  # For more information about permissions boundaries, see [Permissions
7569
- # Boundaries for IAM Identities ][1] in the *IAM User Guide*.
8266
+ # boundaries for IAM identities ][1] in the *IAM User Guide*.
7570
8267
  #
7571
8268
  #
7572
8269
  #
@@ -7649,8 +8346,8 @@ module Aws::IAM
7649
8346
  # The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS
7650
8347
  # resources.
7651
8348
  #
7652
- # For more information about ARNs, go to [Amazon Resource Names (ARNs)
7653
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
8349
+ # For more information about ARNs, go to [Amazon Resource Names
8350
+ # (ARNs)][1] in the *AWS General Reference*.
7654
8351
  #
7655
8352
  #
7656
8353
  #
@@ -7692,21 +8389,25 @@ module Aws::IAM
7692
8389
  # @return [Integer]
7693
8390
  #
7694
8391
  # @!attribute [rw] require_symbols
7695
- # Specifies whether to require symbols for IAM user passwords.
8392
+ # Specifies whether IAM user passwords must contain at least one of
8393
+ # the following symbols:
8394
+ #
8395
+ # ! @ # $ % ^ &amp; * ( ) \_ + - = \[ \] \\\{ \\} \| '
7696
8396
  # @return [Boolean]
7697
8397
  #
7698
8398
  # @!attribute [rw] require_numbers
7699
- # Specifies whether to require numbers for IAM user passwords.
8399
+ # Specifies whether IAM user passwords must contain at least one
8400
+ # numeric character (0 to 9).
7700
8401
  # @return [Boolean]
7701
8402
  #
7702
8403
  # @!attribute [rw] require_uppercase_characters
7703
- # Specifies whether to require uppercase characters for IAM user
7704
- # passwords.
8404
+ # Specifies whether IAM user passwords must contain at least one
8405
+ # uppercase character (A to Z).
7705
8406
  # @return [Boolean]
7706
8407
  #
7707
8408
  # @!attribute [rw] require_lowercase_characters
7708
- # Specifies whether to require lowercase characters for IAM user
7709
- # passwords.
8409
+ # Specifies whether IAM user passwords must contain at least one
8410
+ # lowercase character (a to z).
7710
8411
  # @return [Boolean]
7711
8412
  #
7712
8413
  # @!attribute [rw] allow_users_to_change_password
@@ -7795,7 +8496,7 @@ module Aws::IAM
7795
8496
  # GetPolicy, and ListPolicies operations.
7796
8497
  #
7797
8498
  # For more information about managed policies, refer to [Managed
7798
- # Policies and Inline Policies][1] in the *IAM User Guide*.
8499
+ # policies and inline policies][1] in the *IAM User Guide*.
7799
8500
  #
7800
8501
  #
7801
8502
  #
@@ -7808,7 +8509,7 @@ module Aws::IAM
7808
8509
  # @!attribute [rw] policy_id
7809
8510
  # The stable and unique string identifying the policy.
7810
8511
  #
7811
- # For more information about IDs, see [IAM Identifiers][1] in the *IAM
8512
+ # For more information about IDs, see [IAM identifiers][1] in the *IAM
7812
8513
  # User Guide*.
7813
8514
  #
7814
8515
  #
@@ -7820,8 +8521,8 @@ module Aws::IAM
7820
8521
  # The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS
7821
8522
  # resources.
7822
8523
  #
7823
- # For more information about ARNs, go to [Amazon Resource Names (ARNs)
7824
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
8524
+ # For more information about ARNs, go to [Amazon Resource Names
8525
+ # (ARNs)][1] in the *AWS General Reference*.
7825
8526
  #
7826
8527
  #
7827
8528
  #
@@ -7831,7 +8532,7 @@ module Aws::IAM
7831
8532
  # @!attribute [rw] path
7832
8533
  # The path to the policy.
7833
8534
  #
7834
- # For more information about paths, see [IAM Identifiers][1] in the
8535
+ # For more information about paths, see [IAM identifiers][1] in the
7835
8536
  # *IAM User Guide*.
7836
8537
  #
7837
8538
  #
@@ -7854,7 +8555,7 @@ module Aws::IAM
7854
8555
  # used to set the permissions boundary.
7855
8556
  #
7856
8557
  # For more information about permissions boundaries, see [Permissions
7857
- # Boundaries for IAM Identities ][1] in the *IAM User Guide*.
8558
+ # boundaries for IAM identities ][1] in the *IAM User Guide*.
7858
8559
  #
7859
8560
  #
7860
8561
  #
@@ -7896,6 +8597,16 @@ module Aws::IAM
7896
8597
  # [1]: http://www.iso.org/iso/iso8601
7897
8598
  # @return [Time]
7898
8599
  #
8600
+ # @!attribute [rw] tags
8601
+ # A list of tags that are attached to the instance profile. For more
8602
+ # information about tagging, see [Tagging IAM resources][1] in the
8603
+ # *IAM User Guide*.
8604
+ #
8605
+ #
8606
+ #
8607
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
8608
+ # @return [Array<Types::Tag>]
8609
+ #
7899
8610
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/Policy AWS API Documentation
7900
8611
  #
7901
8612
  class Policy < Struct.new(
@@ -7909,7 +8620,8 @@ module Aws::IAM
7909
8620
  :is_attachable,
7910
8621
  :description,
7911
8622
  :create_date,
7912
- :update_date)
8623
+ :update_date,
8624
+ :tags)
7913
8625
  SENSITIVE = []
7914
8626
  include Aws::Structure
7915
8627
  end
@@ -7964,7 +8676,7 @@ module Aws::IAM
7964
8676
  #
7965
8677
  # @!attribute [rw] policy_type
7966
8678
  # The policy type. For more information about these policy types, see
7967
- # [Managed Policies and Inline Policies][1] in the *IAM User Guide*.
8679
+ # [Managed policies and inline policies][1] in the *IAM User Guide*.
7968
8680
  #
7969
8681
  #
7970
8682
  #
@@ -7975,8 +8687,8 @@ module Aws::IAM
7975
8687
  # The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS
7976
8688
  # resources.
7977
8689
  #
7978
- # For more information about ARNs, go to [Amazon Resource Names (ARNs)
7979
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
8690
+ # For more information about ARNs, go to [Amazon Resource Names
8691
+ # (ARNs)][1] in the *AWS General Reference*.
7980
8692
  #
7981
8693
  #
7982
8694
  #
@@ -7988,7 +8700,7 @@ module Aws::IAM
7988
8700
  # service to which the inline policy is attached.
7989
8701
  #
7990
8702
  # This field is null for managed policies. For more information about
7991
- # these policy types, see [Managed Policies and Inline Policies][1] in
8703
+ # these policy types, see [Managed policies and inline policies][1] in
7992
8704
  # the *IAM User Guide*.
7993
8705
  #
7994
8706
  #
@@ -8001,7 +8713,7 @@ module Aws::IAM
8001
8713
  # attached.
8002
8714
  #
8003
8715
  # This field is null for managed policies. For more information about
8004
- # these policy types, see [Managed Policies and Inline Policies][1] in
8716
+ # these policy types, see [Managed policies and inline policies][1] in
8005
8717
  # the *IAM User Guide*.
8006
8718
  #
8007
8719
  #
@@ -8028,7 +8740,7 @@ module Aws::IAM
8028
8740
  # ListEntitiesForPolicy operation.
8029
8741
  #
8030
8742
  # For more information about managed policies, refer to [Managed
8031
- # Policies and Inline Policies][1] in the *IAM User Guide*.
8743
+ # policies and inline policies][1] in the *IAM User Guide*.
8032
8744
  #
8033
8745
  #
8034
8746
  #
@@ -8040,7 +8752,7 @@ module Aws::IAM
8040
8752
  #
8041
8753
  # @!attribute [rw] group_id
8042
8754
  # The stable and unique string identifying the group. For more
8043
- # information about IDs, see [IAM Identifiers][1] in the *IAM User
8755
+ # information about IDs, see [IAM identifiers][1] in the *IAM User
8044
8756
  # Guide*.
8045
8757
  #
8046
8758
  #
@@ -8078,7 +8790,7 @@ module Aws::IAM
8078
8790
  # ListEntitiesForPolicy operation.
8079
8791
  #
8080
8792
  # For more information about managed policies, refer to [Managed
8081
- # Policies and Inline Policies][1] in the *IAM User Guide*.
8793
+ # policies and inline policies][1] in the *IAM User Guide*.
8082
8794
  #
8083
8795
  #
8084
8796
  #
@@ -8090,7 +8802,7 @@ module Aws::IAM
8090
8802
  #
8091
8803
  # @!attribute [rw] role_id
8092
8804
  # The stable and unique string identifying the role. For more
8093
- # information about IDs, see [IAM Identifiers][1] in the *IAM User
8805
+ # information about IDs, see [IAM identifiers][1] in the *IAM User
8094
8806
  # Guide*.
8095
8807
  #
8096
8808
  #
@@ -8114,7 +8826,7 @@ module Aws::IAM
8114
8826
  # ListEntitiesForPolicy operation.
8115
8827
  #
8116
8828
  # For more information about managed policies, refer to [Managed
8117
- # Policies and Inline Policies][1] in the *IAM User Guide*.
8829
+ # policies and inline policies][1] in the *IAM User Guide*.
8118
8830
  #
8119
8831
  #
8120
8832
  #
@@ -8126,7 +8838,7 @@ module Aws::IAM
8126
8838
  #
8127
8839
  # @!attribute [rw] user_id
8128
8840
  # The stable and unique string identifying the user. For more
8129
- # information about IDs, see [IAM Identifiers][1] in the *IAM User
8841
+ # information about IDs, see [IAM identifiers][1] in the *IAM User
8130
8842
  # Guide*.
8131
8843
  #
8132
8844
  #
@@ -8150,7 +8862,7 @@ module Aws::IAM
8150
8862
  # GetAccountAuthorizationDetails operations.
8151
8863
  #
8152
8864
  # For more information about managed policies, refer to [Managed
8153
- # Policies and Inline Policies][1] in the *IAM User Guide*.
8865
+ # policies and inline policies][1] in the *IAM User Guide*.
8154
8866
  #
8155
8867
  #
8156
8868
  #
@@ -8508,8 +9220,8 @@ module Aws::IAM
8508
9220
  # remove the client ID from. You can get a list of OIDC provider ARNs
8509
9221
  # by using the ListOpenIDConnectProviders operation.
8510
9222
  #
8511
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
8512
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
9223
+ # For more information about ARNs, see [Amazon Resource Names
9224
+ # (ARNs)][1] in the *AWS General Reference*.
8513
9225
  #
8514
9226
  #
8515
9227
  #
@@ -8817,7 +9529,7 @@ module Aws::IAM
8817
9529
  #
8818
9530
  # @!attribute [rw] path
8819
9531
  # The path to the role. For more information about paths, see [IAM
8820
- # Identifiers][1] in the *IAM User Guide*.
9532
+ # identifiers][1] in the *IAM User Guide*.
8821
9533
  #
8822
9534
  #
8823
9535
  #
@@ -8830,7 +9542,7 @@ module Aws::IAM
8830
9542
  #
8831
9543
  # @!attribute [rw] role_id
8832
9544
  # The stable and unique string identifying the role. For more
8833
- # information about IDs, see [IAM Identifiers][1] in the *IAM User
9545
+ # information about IDs, see [IAM identifiers][1] in the *IAM User
8834
9546
  # Guide*.
8835
9547
  #
8836
9548
  #
@@ -8841,7 +9553,7 @@ module Aws::IAM
8841
9553
  # @!attribute [rw] arn
8842
9554
  # The Amazon Resource Name (ARN) specifying the role. For more
8843
9555
  # information about ARNs and how to use them in policies, see [IAM
8844
- # Identifiers][1] in the *IAM User Guide* guide.
9556
+ # identifiers][1] in the *IAM User Guide* guide.
8845
9557
  #
8846
9558
  #
8847
9559
  #
@@ -8877,7 +9589,7 @@ module Aws::IAM
8877
9589
  # role.
8878
9590
  #
8879
9591
  # For more information about permissions boundaries, see [Permissions
8880
- # Boundaries for IAM Identities ][1] in the *IAM User Guide*.
9592
+ # boundaries for IAM identities ][1] in the *IAM User Guide*.
8881
9593
  #
8882
9594
  #
8883
9595
  #
@@ -8885,9 +9597,9 @@ module Aws::IAM
8885
9597
  # @return [Types::AttachedPermissionsBoundary]
8886
9598
  #
8887
9599
  # @!attribute [rw] tags
8888
- # A list of tags that are attached to the specified role. For more
8889
- # information about tagging, see [Tagging IAM Identities][1] in the
8890
- # *IAM User Guide*.
9600
+ # A list of tags that are attached to the role. For more information
9601
+ # about tagging, see [Tagging IAM resources][1] in the *IAM User
9602
+ # Guide*.
8891
9603
  #
8892
9604
  #
8893
9605
  #
@@ -8900,8 +9612,8 @@ module Aws::IAM
8900
9612
  # last used. Activity is only reported for the trailing 400 days. This
8901
9613
  # period can be shorter if your Region began supporting these features
8902
9614
  # within the last year. The role might have been used more than 400
8903
- # days ago. For more information, see [Regions Where Data Is
8904
- # Tracked][1] in the *IAM User Guide*.
9615
+ # days ago. For more information, see [Regions where data is
9616
+ # tracked][1] in the *IAM User Guide*.
8905
9617
  #
8906
9618
  #
8907
9619
  #
@@ -8934,7 +9646,7 @@ module Aws::IAM
8934
9646
  #
8935
9647
  # @!attribute [rw] path
8936
9648
  # The path to the role. For more information about paths, see [IAM
8937
- # Identifiers][1] in the *IAM User Guide*.
9649
+ # identifiers][1] in the *IAM User Guide*.
8938
9650
  #
8939
9651
  #
8940
9652
  #
@@ -8947,7 +9659,7 @@ module Aws::IAM
8947
9659
  #
8948
9660
  # @!attribute [rw] role_id
8949
9661
  # The stable and unique string identifying the role. For more
8950
- # information about IDs, see [IAM Identifiers][1] in the *IAM User
9662
+ # information about IDs, see [IAM identifiers][1] in the *IAM User
8951
9663
  # Guide*.
8952
9664
  #
8953
9665
  #
@@ -8959,8 +9671,8 @@ module Aws::IAM
8959
9671
  # The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS
8960
9672
  # resources.
8961
9673
  #
8962
- # For more information about ARNs, go to [Amazon Resource Names (ARNs)
8963
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
9674
+ # For more information about ARNs, go to [Amazon Resource Names
9675
+ # (ARNs)][1] in the *AWS General Reference*.
8964
9676
  #
8965
9677
  #
8966
9678
  #
@@ -8999,7 +9711,7 @@ module Aws::IAM
8999
9711
  # role.
9000
9712
  #
9001
9713
  # For more information about permissions boundaries, see [Permissions
9002
- # Boundaries for IAM Identities ][1] in the *IAM User Guide*.
9714
+ # boundaries for IAM identities ][1] in the *IAM User Guide*.
9003
9715
  #
9004
9716
  #
9005
9717
  #
@@ -9007,9 +9719,9 @@ module Aws::IAM
9007
9719
  # @return [Types::AttachedPermissionsBoundary]
9008
9720
  #
9009
9721
  # @!attribute [rw] tags
9010
- # A list of tags that are attached to the specified role. For more
9011
- # information about tagging, see [Tagging IAM Identities][1] in the
9012
- # *IAM User Guide*.
9722
+ # A list of tags that are attached to the role. For more information
9723
+ # about tagging, see [Tagging IAM resources][1] in the *IAM User
9724
+ # Guide*.
9013
9725
  #
9014
9726
  #
9015
9727
  #
@@ -9022,8 +9734,8 @@ module Aws::IAM
9022
9734
  # last used. Activity is only reported for the trailing 400 days. This
9023
9735
  # period can be shorter if your Region began supporting these features
9024
9736
  # within the last year. The role might have been used more than 400
9025
- # days ago. For more information, see [Regions Where Data Is
9026
- # Tracked][1] in the *IAM User Guide*.
9737
+ # days ago. For more information, see [Regions where data is
9738
+ # tracked][1] in the *IAM User Guide*.
9027
9739
  #
9028
9740
  #
9029
9741
  #
@@ -9054,7 +9766,7 @@ module Aws::IAM
9054
9766
  # last used. Activity is only reported for the trailing 400 days. This
9055
9767
  # period can be shorter if your Region began supporting these features
9056
9768
  # within the last year. The role might have been used more than 400 days
9057
- # ago. For more information, see [Regions Where Data Is Tracked][1] in
9769
+ # ago. For more information, see [Regions where data is tracked][1] in
9058
9770
  # the *IAM User Guide*.
9059
9771
  #
9060
9772
  # This data type is returned as a response element in the GetRole and
@@ -9070,7 +9782,7 @@ module Aws::IAM
9070
9782
  #
9071
9783
  # This field is null if the role has not been used within the IAM
9072
9784
  # tracking period. For more information about the tracking period, see
9073
- # [Regions Where Data Is Tracked][2] in the *IAM User Guide*.
9785
+ # [Regions where data is tracked][2] in the *IAM User Guide*.
9074
9786
  #
9075
9787
  #
9076
9788
  #
@@ -9245,12 +9957,23 @@ module Aws::IAM
9245
9957
  # The contents of the public key certificate chain.
9246
9958
  # @return [String]
9247
9959
  #
9960
+ # @!attribute [rw] tags
9961
+ # A list of tags that are attached to the server certificate. For more
9962
+ # information about tagging, see [Tagging IAM resources][1] in the
9963
+ # *IAM User Guide*.
9964
+ #
9965
+ #
9966
+ #
9967
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
9968
+ # @return [Array<Types::Tag>]
9969
+ #
9248
9970
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ServerCertificate AWS API Documentation
9249
9971
  #
9250
9972
  class ServerCertificate < Struct.new(
9251
9973
  :server_certificate_metadata,
9252
9974
  :certificate_body,
9253
- :certificate_chain)
9975
+ :certificate_chain,
9976
+ :tags)
9254
9977
  SENSITIVE = []
9255
9978
  include Aws::Structure
9256
9979
  end
@@ -9263,7 +9986,7 @@ module Aws::IAM
9263
9986
  #
9264
9987
  # @!attribute [rw] path
9265
9988
  # The path to the server certificate. For more information about
9266
- # paths, see [IAM Identifiers][1] in the *IAM User Guide*.
9989
+ # paths, see [IAM identifiers][1] in the *IAM User Guide*.
9267
9990
  #
9268
9991
  #
9269
9992
  #
@@ -9276,7 +9999,7 @@ module Aws::IAM
9276
9999
  #
9277
10000
  # @!attribute [rw] server_certificate_id
9278
10001
  # The stable and unique string identifying the server certificate. For
9279
- # more information about IDs, see [IAM Identifiers][1] in the *IAM
10002
+ # more information about IDs, see [IAM identifiers][1] in the *IAM
9280
10003
  # User Guide*.
9281
10004
  #
9282
10005
  #
@@ -9287,7 +10010,7 @@ module Aws::IAM
9287
10010
  # @!attribute [rw] arn
9288
10011
  # The Amazon Resource Name (ARN) specifying the server certificate.
9289
10012
  # For more information about ARNs and how to use them in policies, see
9290
- # [IAM Identifiers][1] in the *IAM User Guide*.
10013
+ # [IAM identifiers][1] in the *IAM User Guide*.
9291
10014
  #
9292
10015
  #
9293
10016
  #
@@ -9355,17 +10078,17 @@ module Aws::IAM
9355
10078
  # @!attribute [rw] service_namespace
9356
10079
  # The namespace of the service in which access was attempted.
9357
10080
  #
9358
- # To learn the service namespace of a service, go to [Actions,
9359
- # Resources, and Condition Keys for AWS Services][1] in the *IAM User
9360
- # Guide*. Choose the name of the service to view details for that
9361
- # service. In the first paragraph, find the service prefix. For
9362
- # example, `(service prefix: a4b)`. For more information about service
9363
- # namespaces, see [AWS Service Namespaces][2] in the *AWS General
9364
- # Reference*.
10081
+ # To learn the service namespace of a service, see [Actions,
10082
+ # resources, and condition keys for AWS services][1] in the *Service
10083
+ # Authorization Reference*. Choose the name of the service to view
10084
+ # details for that service. In the first paragraph, find the service
10085
+ # prefix. For example, `(service prefix: a4b)`. For more information
10086
+ # about service namespaces, see [AWS Service Namespaces][2] in
10087
+ # the *AWS General Reference*.
9365
10088
  #
9366
10089
  #
9367
10090
  #
9368
- # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_actions-resources-contextkeys.html
10091
+ # [1]: https://docs.aws.amazon.com/service-authorization/latest/reference/reference_policies_actions-resources-contextkeys.html
9369
10092
  # [2]: https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html#genref-aws-service-namespaces
9370
10093
  # @return [String]
9371
10094
  #
@@ -9563,8 +10286,8 @@ module Aws::IAM
9563
10286
  # The Amazon Resource Name (ARN) of the IAM policy whose default
9564
10287
  # version you want to set.
9565
10288
  #
9566
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
9567
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
10289
+ # For more information about ARNs, see [Amazon Resource Names
10290
+ # (ARNs)][1] in the *AWS General Reference*.
9568
10291
  #
9569
10292
  #
9570
10293
  #
@@ -9575,7 +10298,7 @@ module Aws::IAM
9575
10298
  # The version of the policy to set as the default (operative) version.
9576
10299
  #
9577
10300
  # For more information about managed policy versions, see [Versioning
9578
- # for Managed Policies][1] in the *IAM User Guide*.
10301
+ # for managed policies][1] in the *IAM User Guide*.
9579
10302
  #
9580
10303
  #
9581
10304
  #
@@ -9606,8 +10329,8 @@ module Aws::IAM
9606
10329
  # tokens are longer and might affect systems where you temporarily
9607
10330
  # store tokens.
9608
10331
  #
9609
- # For information, see [Activating and Deactivating STS in an AWS
9610
- # Region][1] in the *IAM User Guide*.
10332
+ # For information, see [Activating and deactivating STS in an AWS
10333
+ # region][1] in the *IAM User Guide*.
9611
10334
  #
9612
10335
  #
9613
10336
  #
@@ -9718,7 +10441,7 @@ module Aws::IAM
9718
10441
  # boundary sets the maximum permissions that an IAM entity can have.
9719
10442
  # You can input only one permissions boundary when you pass a policy
9720
10443
  # to this operation. For more information about permissions
9721
- # boundaries, see [Permissions Boundaries for IAM Entities][1] in the
10444
+ # boundaries, see [Permissions boundaries for IAM entities][1] in the
9722
10445
  # *IAM User Guide*. The policy input is specified as a string that
9723
10446
  # contains the complete, valid JSON text of a permissions boundary
9724
10447
  # policy.
@@ -9754,7 +10477,8 @@ module Aws::IAM
9754
10477
  # resources). Each API in the `ActionNames` parameter is evaluated for
9755
10478
  # each resource in this list. The simulation determines the access
9756
10479
  # result (allowed or denied) of each combination and reports it in the
9757
- # response.
10480
+ # response. You can simulate resources that don't exist in your
10481
+ # account.
9758
10482
  #
9759
10483
  # The simulation does not automatically retrieve policies for the
9760
10484
  # specified resources. If you want to include a resource policy in the
@@ -9765,8 +10489,8 @@ module Aws::IAM
9765
10489
  # of the resources included in the simulation or you receive an
9766
10490
  # invalid input error.
9767
10491
  #
9768
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
9769
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
10492
+ # For more information about ARNs, see [Amazon Resource Names
10493
+ # (ARNs)][1] in the *AWS General Reference*.
9770
10494
  #
9771
10495
  #
9772
10496
  #
@@ -9848,7 +10572,7 @@ module Aws::IAM
9848
10572
  # scenario includes VPC, then you must supply the network-interface
9849
10573
  # resource. If it includes an IP subnet, then you must specify the
9850
10574
  # subnet resource. For more information on the EC2 scenario options,
9851
- # see [Supported Platforms][1] in the *Amazon EC2 User Guide*.
10575
+ # see [Supported platforms][1] in the *Amazon EC2 User Guide*.
9852
10576
  #
9853
10577
  # * **EC2-Classic-InstanceStore**
9854
10578
  #
@@ -9982,8 +10706,8 @@ module Aws::IAM
9982
10706
  # also includes all policies that are attached to any groups the user
9983
10707
  # belongs to.
9984
10708
  #
9985
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
9986
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
10709
+ # For more information about ARNs, see [Amazon Resource Names
10710
+ # (ARNs)][1] in the *AWS General Reference*.
9987
10711
  #
9988
10712
  #
9989
10713
  #
@@ -10021,8 +10745,8 @@ module Aws::IAM
10021
10745
  # attached to an entity and you pass in a different permissions
10022
10746
  # boundary policy using this parameter, then the new permissions
10023
10747
  # boundary policy is used for the simulation. For more information
10024
- # about permissions boundaries, see [Permissions Boundaries for IAM
10025
- # Entities][1] in the *IAM User Guide*. The policy input is specified
10748
+ # about permissions boundaries, see [Permissions boundaries for IAM
10749
+ # entities][1] in the *IAM User Guide*. The policy input is specified
10026
10750
  # as a string containing the complete, valid JSON text of a
10027
10751
  # permissions boundary policy.
10028
10752
  #
@@ -10056,15 +10780,16 @@ module Aws::IAM
10056
10780
  # resources). Each API in the `ActionNames` parameter is evaluated for
10057
10781
  # each resource in this list. The simulation determines the access
10058
10782
  # result (allowed or denied) of each combination and reports it in the
10059
- # response.
10783
+ # response. You can simulate resources that don't exist in your
10784
+ # account.
10060
10785
  #
10061
10786
  # The simulation does not automatically retrieve policies for the
10062
10787
  # specified resources. If you want to include a resource policy in the
10063
10788
  # simulation, then you must include the policy as a string in the
10064
10789
  # `ResourcePolicy` parameter.
10065
10790
  #
10066
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
10067
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
10791
+ # For more information about ARNs, see [Amazon Resource Names
10792
+ # (ARNs)][1] in the *AWS General Reference*.
10068
10793
  #
10069
10794
  #
10070
10795
  #
@@ -10127,8 +10852,8 @@ module Aws::IAM
10127
10852
  # so that the resource-based policy's `Principal` element has a value
10128
10853
  # to use in evaluating the policy.
10129
10854
  #
10130
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
10131
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
10855
+ # For more information about ARNs, see [Amazon Resource Names
10856
+ # (ARNs)][1] in the *AWS General Reference*.
10132
10857
  #
10133
10858
  #
10134
10859
  #
@@ -10158,7 +10883,7 @@ module Aws::IAM
10158
10883
  # scenario includes VPC, then you must supply the network interface
10159
10884
  # resource. If it includes an IP subnet, then you must specify the
10160
10885
  # subnet resource. For more information on the EC2 scenario options,
10161
- # see [Supported Platforms][1] in the *Amazon EC2 User Guide*.
10886
+ # see [Supported platforms][1] in the *Amazon EC2 User Guide*.
10162
10887
  #
10163
10888
  # * **EC2-Classic-InstanceStore**
10164
10889
  #
@@ -10263,9 +10988,8 @@ module Aws::IAM
10263
10988
  end
10264
10989
 
10265
10990
  # A structure that represents user-provided metadata that can be
10266
- # associated with a resource such as an IAM user or role. For more
10267
- # information about tagging, see [Tagging IAM Identities][1] in the *IAM
10268
- # User Guide*.
10991
+ # associated with an IAM resource. For more information about tagging,
10992
+ # see [Tagging IAM resources][1] in the *IAM User Guide*.
10269
10993
  #
10270
10994
  #
10271
10995
  #
@@ -10293,27 +11017,274 @@ module Aws::IAM
10293
11017
  # different cost centers in your company. Typically, many resources
10294
11018
  # have tags with the same key name but with different values.
10295
11019
  #
10296
- # <note markdown="1"> AWS always interprets the tag `Value` as a single string. If you
10297
- # need to store an array, you can store comma-separated values in the
10298
- # string. However, you must interpret the value in your code.
11020
+ # <note markdown="1"> AWS always interprets the tag `Value` as a single string. If you
11021
+ # need to store an array, you can store comma-separated values in the
11022
+ # string. However, you must interpret the value in your code.
11023
+ #
11024
+ # </note>
11025
+ # @return [String]
11026
+ #
11027
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/Tag AWS API Documentation
11028
+ #
11029
+ class Tag < Struct.new(
11030
+ :key,
11031
+ :value)
11032
+ SENSITIVE = []
11033
+ include Aws::Structure
11034
+ end
11035
+
11036
+ # @note When making an API call, you may pass TagInstanceProfileRequest
11037
+ # data as a hash:
11038
+ #
11039
+ # {
11040
+ # instance_profile_name: "instanceProfileNameType", # required
11041
+ # tags: [ # required
11042
+ # {
11043
+ # key: "tagKeyType", # required
11044
+ # value: "tagValueType", # required
11045
+ # },
11046
+ # ],
11047
+ # }
11048
+ #
11049
+ # @!attribute [rw] instance_profile_name
11050
+ # The name of the IAM instance profile to which you want to add tags.
11051
+ #
11052
+ # This parameter accepts (through its [regex pattern][1]) a string of
11053
+ # characters that consist of upper and lowercase alphanumeric
11054
+ # characters with no spaces. You can also include any of the following
11055
+ # characters: =,.@-
11056
+ #
11057
+ #
11058
+ #
11059
+ # [1]: http://wikipedia.org/wiki/regex
11060
+ # @return [String]
11061
+ #
11062
+ # @!attribute [rw] tags
11063
+ # The list of tags that you want to attach to the IAM instance
11064
+ # profile. Each tag consists of a key name and an associated value.
11065
+ # @return [Array<Types::Tag>]
11066
+ #
11067
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/TagInstanceProfileRequest AWS API Documentation
11068
+ #
11069
+ class TagInstanceProfileRequest < Struct.new(
11070
+ :instance_profile_name,
11071
+ :tags)
11072
+ SENSITIVE = []
11073
+ include Aws::Structure
11074
+ end
11075
+
11076
+ # @note When making an API call, you may pass TagMFADeviceRequest
11077
+ # data as a hash:
11078
+ #
11079
+ # {
11080
+ # serial_number: "serialNumberType", # required
11081
+ # tags: [ # required
11082
+ # {
11083
+ # key: "tagKeyType", # required
11084
+ # value: "tagValueType", # required
11085
+ # },
11086
+ # ],
11087
+ # }
11088
+ #
11089
+ # @!attribute [rw] serial_number
11090
+ # The unique identifier for the IAM virtual MFA device to which you
11091
+ # want to add tags. For virtual MFA devices, the serial number is the
11092
+ # same as the ARN.
11093
+ #
11094
+ # This parameter accepts (through its [regex pattern][1]) a string of
11095
+ # characters that consist of upper and lowercase alphanumeric
11096
+ # characters with no spaces. You can also include any of the following
11097
+ # characters: =,.@-
11098
+ #
11099
+ #
11100
+ #
11101
+ # [1]: http://wikipedia.org/wiki/regex
11102
+ # @return [String]
11103
+ #
11104
+ # @!attribute [rw] tags
11105
+ # The list of tags that you want to attach to the IAM virtual MFA
11106
+ # device. Each tag consists of a key name and an associated value.
11107
+ # @return [Array<Types::Tag>]
11108
+ #
11109
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/TagMFADeviceRequest AWS API Documentation
11110
+ #
11111
+ class TagMFADeviceRequest < Struct.new(
11112
+ :serial_number,
11113
+ :tags)
11114
+ SENSITIVE = []
11115
+ include Aws::Structure
11116
+ end
11117
+
11118
+ # @note When making an API call, you may pass TagOpenIDConnectProviderRequest
11119
+ # data as a hash:
11120
+ #
11121
+ # {
11122
+ # open_id_connect_provider_arn: "arnType", # required
11123
+ # tags: [ # required
11124
+ # {
11125
+ # key: "tagKeyType", # required
11126
+ # value: "tagValueType", # required
11127
+ # },
11128
+ # ],
11129
+ # }
11130
+ #
11131
+ # @!attribute [rw] open_id_connect_provider_arn
11132
+ # The ARN of the OIDC identity provider in IAM to which you want to
11133
+ # add tags.
11134
+ #
11135
+ # This parameter accepts (through its [regex pattern][1]) a string of
11136
+ # characters that consist of upper and lowercase alphanumeric
11137
+ # characters with no spaces. You can also include any of the following
11138
+ # characters: =,.@-
11139
+ #
11140
+ #
11141
+ #
11142
+ # [1]: http://wikipedia.org/wiki/regex
11143
+ # @return [String]
11144
+ #
11145
+ # @!attribute [rw] tags
11146
+ # The list of tags that you want to attach to the OIDC identity
11147
+ # provider in IAM. Each tag consists of a key name and an associated
11148
+ # value.
11149
+ # @return [Array<Types::Tag>]
11150
+ #
11151
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/TagOpenIDConnectProviderRequest AWS API Documentation
11152
+ #
11153
+ class TagOpenIDConnectProviderRequest < Struct.new(
11154
+ :open_id_connect_provider_arn,
11155
+ :tags)
11156
+ SENSITIVE = []
11157
+ include Aws::Structure
11158
+ end
11159
+
11160
+ # @note When making an API call, you may pass TagPolicyRequest
11161
+ # data as a hash:
11162
+ #
11163
+ # {
11164
+ # policy_arn: "arnType", # required
11165
+ # tags: [ # required
11166
+ # {
11167
+ # key: "tagKeyType", # required
11168
+ # value: "tagValueType", # required
11169
+ # },
11170
+ # ],
11171
+ # }
11172
+ #
11173
+ # @!attribute [rw] policy_arn
11174
+ # The ARN of the IAM customer managed policy to which you want to add
11175
+ # tags.
11176
+ #
11177
+ # This parameter accepts (through its [regex pattern][1]) a string of
11178
+ # characters that consist of upper and lowercase alphanumeric
11179
+ # characters with no spaces. You can also include any of the following
11180
+ # characters: =,.@-
11181
+ #
11182
+ #
11183
+ #
11184
+ # [1]: http://wikipedia.org/wiki/regex
11185
+ # @return [String]
11186
+ #
11187
+ # @!attribute [rw] tags
11188
+ # The list of tags that you want to attach to the IAM customer managed
11189
+ # policy. Each tag consists of a key name and an associated value.
11190
+ # @return [Array<Types::Tag>]
11191
+ #
11192
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/TagPolicyRequest AWS API Documentation
11193
+ #
11194
+ class TagPolicyRequest < Struct.new(
11195
+ :policy_arn,
11196
+ :tags)
11197
+ SENSITIVE = []
11198
+ include Aws::Structure
11199
+ end
11200
+
11201
+ # @note When making an API call, you may pass TagRoleRequest
11202
+ # data as a hash:
11203
+ #
11204
+ # {
11205
+ # role_name: "roleNameType", # required
11206
+ # tags: [ # required
11207
+ # {
11208
+ # key: "tagKeyType", # required
11209
+ # value: "tagValueType", # required
11210
+ # },
11211
+ # ],
11212
+ # }
11213
+ #
11214
+ # @!attribute [rw] role_name
11215
+ # The name of the IAM role to which you want to add tags.
11216
+ #
11217
+ # This parameter accepts (through its [regex pattern][1]) a string of
11218
+ # characters that consist of upper and lowercase alphanumeric
11219
+ # characters with no spaces. You can also include any of the following
11220
+ # characters: \_+=,.@-
11221
+ #
11222
+ #
11223
+ #
11224
+ # [1]: http://wikipedia.org/wiki/regex
11225
+ # @return [String]
11226
+ #
11227
+ # @!attribute [rw] tags
11228
+ # The list of tags that you want to attach to the IAM role. Each tag
11229
+ # consists of a key name and an associated value.
11230
+ # @return [Array<Types::Tag>]
11231
+ #
11232
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/TagRoleRequest AWS API Documentation
11233
+ #
11234
+ class TagRoleRequest < Struct.new(
11235
+ :role_name,
11236
+ :tags)
11237
+ SENSITIVE = []
11238
+ include Aws::Structure
11239
+ end
11240
+
11241
+ # @note When making an API call, you may pass TagSAMLProviderRequest
11242
+ # data as a hash:
11243
+ #
11244
+ # {
11245
+ # saml_provider_arn: "arnType", # required
11246
+ # tags: [ # required
11247
+ # {
11248
+ # key: "tagKeyType", # required
11249
+ # value: "tagValueType", # required
11250
+ # },
11251
+ # ],
11252
+ # }
11253
+ #
11254
+ # @!attribute [rw] saml_provider_arn
11255
+ # The ARN of the SAML identity provider in IAM to which you want to
11256
+ # add tags.
11257
+ #
11258
+ # This parameter accepts (through its [regex pattern][1]) a string of
11259
+ # characters that consist of upper and lowercase alphanumeric
11260
+ # characters with no spaces. You can also include any of the following
11261
+ # characters: =,.@-
11262
+ #
10299
11263
  #
10300
- # </note>
11264
+ #
11265
+ # [1]: http://wikipedia.org/wiki/regex
10301
11266
  # @return [String]
10302
11267
  #
10303
- # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/Tag AWS API Documentation
11268
+ # @!attribute [rw] tags
11269
+ # The list of tags that you want to attach to the SAML identity
11270
+ # provider in IAM. Each tag consists of a key name and an associated
11271
+ # value.
11272
+ # @return [Array<Types::Tag>]
10304
11273
  #
10305
- class Tag < Struct.new(
10306
- :key,
10307
- :value)
11274
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/TagSAMLProviderRequest AWS API Documentation
11275
+ #
11276
+ class TagSAMLProviderRequest < Struct.new(
11277
+ :saml_provider_arn,
11278
+ :tags)
10308
11279
  SENSITIVE = []
10309
11280
  include Aws::Structure
10310
11281
  end
10311
11282
 
10312
- # @note When making an API call, you may pass TagRoleRequest
11283
+ # @note When making an API call, you may pass TagServerCertificateRequest
10313
11284
  # data as a hash:
10314
11285
  #
10315
11286
  # {
10316
- # role_name: "roleNameType", # required
11287
+ # server_certificate_name: "serverCertificateNameType", # required
10317
11288
  # tags: [ # required
10318
11289
  # {
10319
11290
  # key: "tagKeyType", # required
@@ -10322,13 +11293,14 @@ module Aws::IAM
10322
11293
  # ],
10323
11294
  # }
10324
11295
  #
10325
- # @!attribute [rw] role_name
10326
- # The name of the role that you want to add tags to.
11296
+ # @!attribute [rw] server_certificate_name
11297
+ # The name of the IAM server certificate to which you want to add
11298
+ # tags.
10327
11299
  #
10328
11300
  # This parameter accepts (through its [regex pattern][1]) a string of
10329
11301
  # characters that consist of upper and lowercase alphanumeric
10330
11302
  # characters with no spaces. You can also include any of the following
10331
- # characters: \_+=,.@-
11303
+ # characters: =,.@-
10332
11304
  #
10333
11305
  #
10334
11306
  #
@@ -10336,15 +11308,15 @@ module Aws::IAM
10336
11308
  # @return [String]
10337
11309
  #
10338
11310
  # @!attribute [rw] tags
10339
- # The list of tags that you want to attach to the role. Each tag
10340
- # consists of a key name and an associated value. You can specify this
10341
- # with a JSON string.
11311
+ # The list of tags that you want to attach to the IAM server
11312
+ # certificate. Each tag consists of a key name and an associated
11313
+ # value.
10342
11314
  # @return [Array<Types::Tag>]
10343
11315
  #
10344
- # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/TagRoleRequest AWS API Documentation
11316
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/TagServerCertificateRequest AWS API Documentation
10345
11317
  #
10346
- class TagRoleRequest < Struct.new(
10347
- :role_name,
11318
+ class TagServerCertificateRequest < Struct.new(
11319
+ :server_certificate_name,
10348
11320
  :tags)
10349
11321
  SENSITIVE = []
10350
11322
  include Aws::Structure
@@ -10364,7 +11336,7 @@ module Aws::IAM
10364
11336
  # }
10365
11337
  #
10366
11338
  # @!attribute [rw] user_name
10367
- # The name of the user that you want to add tags to.
11339
+ # The name of the IAM user to which you want to add tags.
10368
11340
  #
10369
11341
  # This parameter accepts (through its [regex pattern][1]) a string of
10370
11342
  # characters that consist of upper and lowercase alphanumeric
@@ -10377,7 +11349,7 @@ module Aws::IAM
10377
11349
  # @return [String]
10378
11350
  #
10379
11351
  # @!attribute [rw] tags
10380
- # The list of tags that you want to attach to the user. Each tag
11352
+ # The list of tags that you want to attach to the IAM user. Each tag
10381
11353
  # consists of a key name and an associated value.
10382
11354
  # @return [Array<Types::Tag>]
10383
11355
  #
@@ -10405,8 +11377,8 @@ module Aws::IAM
10405
11377
  # The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS
10406
11378
  # resources.
10407
11379
  #
10408
- # For more information about ARNs, go to [Amazon Resource Names (ARNs)
10409
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
11380
+ # For more information about ARNs, go to [Amazon Resource Names
11381
+ # (ARNs)][1] in the *AWS General Reference*.
10410
11382
  #
10411
11383
  #
10412
11384
  #
@@ -10481,6 +11453,151 @@ module Aws::IAM
10481
11453
  include Aws::Structure
10482
11454
  end
10483
11455
 
11456
+ # @note When making an API call, you may pass UntagInstanceProfileRequest
11457
+ # data as a hash:
11458
+ #
11459
+ # {
11460
+ # instance_profile_name: "instanceProfileNameType", # required
11461
+ # tag_keys: ["tagKeyType"], # required
11462
+ # }
11463
+ #
11464
+ # @!attribute [rw] instance_profile_name
11465
+ # The name of the IAM instance profile from which you want to remove
11466
+ # tags.
11467
+ #
11468
+ # This parameter accepts (through its [regex pattern][1]) a string of
11469
+ # characters that consist of upper and lowercase alphanumeric
11470
+ # characters with no spaces. You can also include any of the following
11471
+ # characters: =,.@-
11472
+ #
11473
+ #
11474
+ #
11475
+ # [1]: http://wikipedia.org/wiki/regex
11476
+ # @return [String]
11477
+ #
11478
+ # @!attribute [rw] tag_keys
11479
+ # A list of key names as a simple array of strings. The tags with
11480
+ # matching keys are removed from the specified instance profile.
11481
+ # @return [Array<String>]
11482
+ #
11483
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/UntagInstanceProfileRequest AWS API Documentation
11484
+ #
11485
+ class UntagInstanceProfileRequest < Struct.new(
11486
+ :instance_profile_name,
11487
+ :tag_keys)
11488
+ SENSITIVE = []
11489
+ include Aws::Structure
11490
+ end
11491
+
11492
+ # @note When making an API call, you may pass UntagMFADeviceRequest
11493
+ # data as a hash:
11494
+ #
11495
+ # {
11496
+ # serial_number: "serialNumberType", # required
11497
+ # tag_keys: ["tagKeyType"], # required
11498
+ # }
11499
+ #
11500
+ # @!attribute [rw] serial_number
11501
+ # The unique identifier for the IAM virtual MFA device from which you
11502
+ # want to remove tags. For virtual MFA devices, the serial number is
11503
+ # the same as the ARN.
11504
+ #
11505
+ # This parameter accepts (through its [regex pattern][1]) a string of
11506
+ # characters that consist of upper and lowercase alphanumeric
11507
+ # characters with no spaces. You can also include any of the following
11508
+ # characters: =,.@-
11509
+ #
11510
+ #
11511
+ #
11512
+ # [1]: http://wikipedia.org/wiki/regex
11513
+ # @return [String]
11514
+ #
11515
+ # @!attribute [rw] tag_keys
11516
+ # A list of key names as a simple array of strings. The tags with
11517
+ # matching keys are removed from the specified instance profile.
11518
+ # @return [Array<String>]
11519
+ #
11520
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/UntagMFADeviceRequest AWS API Documentation
11521
+ #
11522
+ class UntagMFADeviceRequest < Struct.new(
11523
+ :serial_number,
11524
+ :tag_keys)
11525
+ SENSITIVE = []
11526
+ include Aws::Structure
11527
+ end
11528
+
11529
+ # @note When making an API call, you may pass UntagOpenIDConnectProviderRequest
11530
+ # data as a hash:
11531
+ #
11532
+ # {
11533
+ # open_id_connect_provider_arn: "arnType", # required
11534
+ # tag_keys: ["tagKeyType"], # required
11535
+ # }
11536
+ #
11537
+ # @!attribute [rw] open_id_connect_provider_arn
11538
+ # The ARN of the OIDC provider in IAM from which you want to remove
11539
+ # tags.
11540
+ #
11541
+ # This parameter accepts (through its [regex pattern][1]) a string of
11542
+ # characters that consist of upper and lowercase alphanumeric
11543
+ # characters with no spaces. You can also include any of the following
11544
+ # characters: =,.@-
11545
+ #
11546
+ #
11547
+ #
11548
+ # [1]: http://wikipedia.org/wiki/regex
11549
+ # @return [String]
11550
+ #
11551
+ # @!attribute [rw] tag_keys
11552
+ # A list of key names as a simple array of strings. The tags with
11553
+ # matching keys are removed from the specified OIDC provider.
11554
+ # @return [Array<String>]
11555
+ #
11556
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/UntagOpenIDConnectProviderRequest AWS API Documentation
11557
+ #
11558
+ class UntagOpenIDConnectProviderRequest < Struct.new(
11559
+ :open_id_connect_provider_arn,
11560
+ :tag_keys)
11561
+ SENSITIVE = []
11562
+ include Aws::Structure
11563
+ end
11564
+
11565
+ # @note When making an API call, you may pass UntagPolicyRequest
11566
+ # data as a hash:
11567
+ #
11568
+ # {
11569
+ # policy_arn: "arnType", # required
11570
+ # tag_keys: ["tagKeyType"], # required
11571
+ # }
11572
+ #
11573
+ # @!attribute [rw] policy_arn
11574
+ # The ARN of the IAM customer managed policy from which you want to
11575
+ # remove tags.
11576
+ #
11577
+ # This parameter accepts (through its [regex pattern][1]) a string of
11578
+ # characters that consist of upper and lowercase alphanumeric
11579
+ # characters with no spaces. You can also include any of the following
11580
+ # characters: =,.@-
11581
+ #
11582
+ #
11583
+ #
11584
+ # [1]: http://wikipedia.org/wiki/regex
11585
+ # @return [String]
11586
+ #
11587
+ # @!attribute [rw] tag_keys
11588
+ # A list of key names as a simple array of strings. The tags with
11589
+ # matching keys are removed from the specified policy.
11590
+ # @return [Array<String>]
11591
+ #
11592
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/UntagPolicyRequest AWS API Documentation
11593
+ #
11594
+ class UntagPolicyRequest < Struct.new(
11595
+ :policy_arn,
11596
+ :tag_keys)
11597
+ SENSITIVE = []
11598
+ include Aws::Structure
11599
+ end
11600
+
10484
11601
  # @note When making an API call, you may pass UntagRoleRequest
10485
11602
  # data as a hash:
10486
11603
  #
@@ -10516,6 +11633,78 @@ module Aws::IAM
10516
11633
  include Aws::Structure
10517
11634
  end
10518
11635
 
11636
+ # @note When making an API call, you may pass UntagSAMLProviderRequest
11637
+ # data as a hash:
11638
+ #
11639
+ # {
11640
+ # saml_provider_arn: "arnType", # required
11641
+ # tag_keys: ["tagKeyType"], # required
11642
+ # }
11643
+ #
11644
+ # @!attribute [rw] saml_provider_arn
11645
+ # The ARN of the SAML identity provider in IAM from which you want to
11646
+ # remove tags.
11647
+ #
11648
+ # This parameter accepts (through its [regex pattern][1]) a string of
11649
+ # characters that consist of upper and lowercase alphanumeric
11650
+ # characters with no spaces. You can also include any of the following
11651
+ # characters: =,.@-
11652
+ #
11653
+ #
11654
+ #
11655
+ # [1]: http://wikipedia.org/wiki/regex
11656
+ # @return [String]
11657
+ #
11658
+ # @!attribute [rw] tag_keys
11659
+ # A list of key names as a simple array of strings. The tags with
11660
+ # matching keys are removed from the specified SAML identity provider.
11661
+ # @return [Array<String>]
11662
+ #
11663
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/UntagSAMLProviderRequest AWS API Documentation
11664
+ #
11665
+ class UntagSAMLProviderRequest < Struct.new(
11666
+ :saml_provider_arn,
11667
+ :tag_keys)
11668
+ SENSITIVE = []
11669
+ include Aws::Structure
11670
+ end
11671
+
11672
+ # @note When making an API call, you may pass UntagServerCertificateRequest
11673
+ # data as a hash:
11674
+ #
11675
+ # {
11676
+ # server_certificate_name: "serverCertificateNameType", # required
11677
+ # tag_keys: ["tagKeyType"], # required
11678
+ # }
11679
+ #
11680
+ # @!attribute [rw] server_certificate_name
11681
+ # The name of the IAM server certificate from which you want to remove
11682
+ # tags.
11683
+ #
11684
+ # This parameter accepts (through its [regex pattern][1]) a string of
11685
+ # characters that consist of upper and lowercase alphanumeric
11686
+ # characters with no spaces. You can also include any of the following
11687
+ # characters: =,.@-
11688
+ #
11689
+ #
11690
+ #
11691
+ # [1]: http://wikipedia.org/wiki/regex
11692
+ # @return [String]
11693
+ #
11694
+ # @!attribute [rw] tag_keys
11695
+ # A list of key names as a simple array of strings. The tags with
11696
+ # matching keys are removed from the specified IAM server certificate.
11697
+ # @return [Array<String>]
11698
+ #
11699
+ # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/UntagServerCertificateRequest AWS API Documentation
11700
+ #
11701
+ class UntagServerCertificateRequest < Struct.new(
11702
+ :server_certificate_name,
11703
+ :tag_keys)
11704
+ SENSITIVE = []
11705
+ include Aws::Structure
11706
+ end
11707
+
10519
11708
  # @note When making an API call, you may pass UntagUserRequest
10520
11709
  # data as a hash:
10521
11710
  #
@@ -10587,7 +11776,7 @@ module Aws::IAM
10587
11776
  #
10588
11777
  # @!attribute [rw] status
10589
11778
  # The status you want to assign to the secret access key. `Active`
10590
- # means that the key can be used for API calls to AWS, while
11779
+ # means that the key can be used for programmatic calls to AWS, while
10591
11780
  # `Inactive` means that the key cannot be used.
10592
11781
  # @return [String]
10593
11782
  #
@@ -10664,7 +11853,7 @@ module Aws::IAM
10664
11853
  # @!attribute [rw] allow_users_to_change_password
10665
11854
  # Allows all IAM users in your account to use the AWS Management
10666
11855
  # Console to change their own passwords. For more information, see
10667
- # [Letting IAM Users Change Their Own Passwords][1] in the *IAM User
11856
+ # [Letting IAM users change their own passwords][1] in the *IAM User
10668
11857
  # Guide*.
10669
11858
  #
10670
11859
  # If you do not specify a value for this parameter, then the operation
@@ -10910,8 +12099,8 @@ module Aws::IAM
10910
12099
  # list of OIDC provider ARNs by using the ListOpenIDConnectProviders
10911
12100
  # operation.
10912
12101
  #
10913
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
10914
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
12102
+ # For more information about ARNs, see [Amazon Resource Names
12103
+ # (ARNs)][1] in the *AWS General Reference*.
10915
12104
  #
10916
12105
  #
10917
12106
  #
@@ -11002,7 +12191,7 @@ module Aws::IAM
11002
12191
  # valid for one hour by default. This applies when you use the
11003
12192
  # `AssumeRole*` API operations or the `assume-role*` CLI operations
11004
12193
  # but does not apply when you use those operations to create a console
11005
- # URL. For more information, see [Using IAM Roles][1] in the *IAM User
12194
+ # URL. For more information, see [Using IAM roles][1] in the *IAM User
11006
12195
  # Guide*.
11007
12196
  #
11008
12197
  #
@@ -11044,8 +12233,8 @@ module Aws::IAM
11044
12233
  # @!attribute [rw] saml_provider_arn
11045
12234
  # The Amazon Resource Name (ARN) of the SAML provider to update.
11046
12235
  #
11047
- # For more information about ARNs, see [Amazon Resource Names (ARNs)
11048
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
12236
+ # For more information about ARNs, see [Amazon Resource Names
12237
+ # (ARNs)][1] in the *AWS General Reference*.
11049
12238
  #
11050
12239
  #
11051
12240
  #
@@ -11275,8 +12464,8 @@ module Aws::IAM
11275
12464
  #
11276
12465
  # @!attribute [rw] status
11277
12466
  # The status you want to assign to the certificate. `Active` means
11278
- # that the certificate can be used for API calls to AWS `Inactive`
11279
- # means that the certificate cannot be used.
12467
+ # that the certificate can be used for programmatic calls to AWS
12468
+ # `Inactive` means that the certificate cannot be used.
11280
12469
  # @return [String]
11281
12470
  #
11282
12471
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/UpdateSigningCertificateRequest AWS API Documentation
@@ -11424,11 +12613,17 @@ module Aws::IAM
11424
12613
  # certificate_body: "certificateBodyType", # required
11425
12614
  # private_key: "privateKeyType", # required
11426
12615
  # certificate_chain: "certificateChainType",
12616
+ # tags: [
12617
+ # {
12618
+ # key: "tagKeyType", # required
12619
+ # value: "tagValueType", # required
12620
+ # },
12621
+ # ],
11427
12622
  # }
11428
12623
  #
11429
12624
  # @!attribute [rw] path
11430
12625
  # The path for the server certificate. For more information about
11431
- # paths, see [IAM Identifiers][1] in the *IAM User Guide*.
12626
+ # paths, see [IAM identifiers][1] in the *IAM User Guide*.
11432
12627
  #
11433
12628
  # This parameter is optional. If it is not included, it defaults to a
11434
12629
  # slash (/). This parameter allows (through its [regex pattern][2]) a
@@ -11527,6 +12722,23 @@ module Aws::IAM
11527
12722
  # [1]: http://wikipedia.org/wiki/regex
11528
12723
  # @return [String]
11529
12724
  #
12725
+ # @!attribute [rw] tags
12726
+ # A list of tags that you want to attach to the new IAM server
12727
+ # certificate resource. Each tag consists of a key name and an
12728
+ # associated value. For more information about tagging, see [Tagging
12729
+ # IAM resources][1] in the *IAM User Guide*.
12730
+ #
12731
+ # <note markdown="1"> If any one of the tags is invalid or if you exceed the allowed
12732
+ # maximum number of tags, then the entire request fails and the
12733
+ # resource is not created.
12734
+ #
12735
+ # </note>
12736
+ #
12737
+ #
12738
+ #
12739
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
12740
+ # @return [Array<Types::Tag>]
12741
+ #
11530
12742
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/UploadServerCertificateRequest AWS API Documentation
11531
12743
  #
11532
12744
  class UploadServerCertificateRequest < Struct.new(
@@ -11534,7 +12746,8 @@ module Aws::IAM
11534
12746
  :server_certificate_name,
11535
12747
  :certificate_body,
11536
12748
  :private_key,
11537
- :certificate_chain)
12749
+ :certificate_chain,
12750
+ :tags)
11538
12751
  SENSITIVE = [:private_key]
11539
12752
  include Aws::Structure
11540
12753
  end
@@ -11546,10 +12759,22 @@ module Aws::IAM
11546
12759
  # certificate body, certificate chain, and private key.
11547
12760
  # @return [Types::ServerCertificateMetadata]
11548
12761
  #
12762
+ # @!attribute [rw] tags
12763
+ # A list of tags that are attached to the new IAM server certificate.
12764
+ # The returned list of tags is sorted by tag key. For more information
12765
+ # about tagging, see [Tagging IAM resources][1] in the *IAM User
12766
+ # Guide*.
12767
+ #
12768
+ #
12769
+ #
12770
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
12771
+ # @return [Array<Types::Tag>]
12772
+ #
11549
12773
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/UploadServerCertificateResponse AWS API Documentation
11550
12774
  #
11551
12775
  class UploadServerCertificateResponse < Struct.new(
11552
- :server_certificate_metadata)
12776
+ :server_certificate_metadata,
12777
+ :tags)
11553
12778
  SENSITIVE = []
11554
12779
  include Aws::Structure
11555
12780
  end
@@ -11632,7 +12857,10 @@ module Aws::IAM
11632
12857
  #
11633
12858
  # @!attribute [rw] path
11634
12859
  # The path to the user. For more information about paths, see [IAM
11635
- # Identifiers][1] in the *IAM User Guide*.
12860
+ # identifiers][1] in the *IAM User Guide*.
12861
+ #
12862
+ # The ARN of the policy used to set the permissions boundary for the
12863
+ # user.
11636
12864
  #
11637
12865
  #
11638
12866
  #
@@ -11645,7 +12873,7 @@ module Aws::IAM
11645
12873
  #
11646
12874
  # @!attribute [rw] user_id
11647
12875
  # The stable and unique string identifying the user. For more
11648
- # information about IDs, see [IAM Identifiers][1] in the *IAM User
12876
+ # information about IDs, see [IAM identifiers][1] in the *IAM User
11649
12877
  # Guide*.
11650
12878
  #
11651
12879
  #
@@ -11676,7 +12904,7 @@ module Aws::IAM
11676
12904
  # The date and time, in [ISO 8601 date-time format][1], when the
11677
12905
  # user's password was last used to sign in to an AWS website. For a
11678
12906
  # list of AWS websites that capture a user's last sign-in time, see
11679
- # the [Credential Reports][2] topic in the *IAM User Guide*. If a
12907
+ # the [Credential reports][2] topic in the *IAM User Guide*. If a
11680
12908
  # password is used more than once in a five-minute span, only the
11681
12909
  # first use is returned in this field. If the field is null (no
11682
12910
  # value), then it indicates that they never signed in with a password.
@@ -11701,11 +12929,8 @@ module Aws::IAM
11701
12929
  # @return [Time]
11702
12930
  #
11703
12931
  # @!attribute [rw] permissions_boundary
11704
- # The ARN of the policy used to set the permissions boundary for the
11705
- # user.
11706
- #
11707
12932
  # For more information about permissions boundaries, see [Permissions
11708
- # Boundaries for IAM Identities ][1] in the *IAM User Guide*.
12933
+ # boundaries for IAM identities ][1] in the *IAM User Guide*.
11709
12934
  #
11710
12935
  #
11711
12936
  #
@@ -11713,8 +12938,8 @@ module Aws::IAM
11713
12938
  # @return [Types::AttachedPermissionsBoundary]
11714
12939
  #
11715
12940
  # @!attribute [rw] tags
11716
- # A list of tags that are associated with the specified user. For more
11717
- # information about tagging, see [Tagging IAM Identities][1] in the
12941
+ # A list of tags that are associated with the user. For more
12942
+ # information about tagging, see [Tagging IAM resources][1] in the
11718
12943
  # *IAM User Guide*.
11719
12944
  #
11720
12945
  #
@@ -11745,7 +12970,7 @@ module Aws::IAM
11745
12970
  #
11746
12971
  # @!attribute [rw] path
11747
12972
  # The path to the user. For more information about paths, see [IAM
11748
- # Identifiers][1] in the *IAM User Guide*.
12973
+ # identifiers][1] in the *IAM User Guide*.
11749
12974
  #
11750
12975
  #
11751
12976
  #
@@ -11758,7 +12983,7 @@ module Aws::IAM
11758
12983
  #
11759
12984
  # @!attribute [rw] user_id
11760
12985
  # The stable and unique string identifying the user. For more
11761
- # information about IDs, see [IAM Identifiers][1] in the *IAM User
12986
+ # information about IDs, see [IAM identifiers][1] in the *IAM User
11762
12987
  # Guide*.
11763
12988
  #
11764
12989
  #
@@ -11770,8 +12995,8 @@ module Aws::IAM
11770
12995
  # The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS
11771
12996
  # resources.
11772
12997
  #
11773
- # For more information about ARNs, go to [Amazon Resource Names (ARNs)
11774
- # and AWS Service Namespaces][1] in the *AWS General Reference*.
12998
+ # For more information about ARNs, go to [Amazon Resource Names
12999
+ # (ARNs)][1] in the *AWS General Reference*.
11775
13000
  #
11776
13001
  #
11777
13002
  #
@@ -11804,7 +13029,7 @@ module Aws::IAM
11804
13029
  # user.
11805
13030
  #
11806
13031
  # For more information about permissions boundaries, see [Permissions
11807
- # Boundaries for IAM Identities ][1] in the *IAM User Guide*.
13032
+ # boundaries for IAM identities ][1] in the *IAM User Guide*.
11808
13033
  #
11809
13034
  #
11810
13035
  #
@@ -11812,8 +13037,8 @@ module Aws::IAM
11812
13037
  # @return [Types::AttachedPermissionsBoundary]
11813
13038
  #
11814
13039
  # @!attribute [rw] tags
11815
- # A list of tags that are associated with the specified user. For more
11816
- # information about tagging, see [Tagging IAM Identities][1] in the
13040
+ # A list of tags that are associated with the user. For more
13041
+ # information about tagging, see [Tagging IAM resources][1] in the
11817
13042
  # *IAM User Guide*.
11818
13043
  #
11819
13044
  #
@@ -11870,6 +13095,16 @@ module Aws::IAM
11870
13095
  # The date and time on which the virtual MFA device was enabled.
11871
13096
  # @return [Time]
11872
13097
  #
13098
+ # @!attribute [rw] tags
13099
+ # A list of tags that are attached to the virtual MFA device. For more
13100
+ # information about tagging, see [Tagging IAM resources][1] in the
13101
+ # *IAM User Guide*.
13102
+ #
13103
+ #
13104
+ #
13105
+ # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
13106
+ # @return [Array<Types::Tag>]
13107
+ #
11873
13108
  # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/VirtualMFADevice AWS API Documentation
11874
13109
  #
11875
13110
  class VirtualMFADevice < Struct.new(
@@ -11877,7 +13112,8 @@ module Aws::IAM
11877
13112
  :base_32_string_seed,
11878
13113
  :qr_code_png,
11879
13114
  :user,
11880
- :enable_date)
13115
+ :enable_date,
13116
+ :tags)
11881
13117
  SENSITIVE = [:base_32_string_seed, :qr_code_png]
11882
13118
  include Aws::Structure
11883
13119
  end