aws-sdk-iam 1.56.0 → 1.57.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-iam.rb +1 -1
- data/lib/aws-sdk-iam/client.rb +26 -6
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 1ae7b51549cceb428fcbe5c1ad94860906ddefa627820cacf546bd7ff1c8ace2
|
4
|
+
data.tar.gz: 49641a153d51518e5974e8f83fc00ee9e355128118ea3b560f66ced338fc166e
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: ee208cfa74d294f5d3003a586dec4ed63c9e43c3b9e0de00575c86270081bb0e6b182c522425525d40a6350a64cdc789be15fb120d4ee0c83d9dc98b5220556d
|
7
|
+
data.tar.gz: d6d147ac9bbf7dc91e49e8615fd09ebb1d3ce3a01d3d14f092ea40de5cbe1f3e3a068ff92158991b8a208e2c1172e3cd0a8f4e09b7962331684e444082968075
|
data/CHANGELOG.md
CHANGED
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
1.
|
1
|
+
1.57.0
|
data/lib/aws-sdk-iam.rb
CHANGED
data/lib/aws-sdk-iam/client.rb
CHANGED
@@ -1250,6 +1250,16 @@ module Aws::IAM
|
|
1250
1250
|
# You get all of this information from the OIDC IdP that you want to use
|
1251
1251
|
# to access Amazon Web Services.
|
1252
1252
|
#
|
1253
|
+
# <note markdown="1"> Amazon Web Services secures communication with some OIDC identity
|
1254
|
+
# providers (IdPs) through our library of trusted certificate
|
1255
|
+
# authorities (CAs) instead of using a certificate thumbprint to verify
|
1256
|
+
# your IdP server certificate. These OIDC IdPs include Google, and those
|
1257
|
+
# that use an Amazon S3 bucket to host a JSON Web Key Set (JWKS)
|
1258
|
+
# endpoint. In these cases, your legacy thumbprint remains in your
|
1259
|
+
# configuration, but is no longer used for validation.
|
1260
|
+
#
|
1261
|
+
# </note>
|
1262
|
+
#
|
1253
1263
|
# <note markdown="1"> The trust for the OIDC provider is derived from the IAM provider that
|
1254
1264
|
# this operation creates. Therefore, it is best to limit access to the
|
1255
1265
|
# CreateOpenIDConnectProvider operation to highly privileged users.
|
@@ -12167,15 +12177,25 @@ module Aws::IAM
|
|
12167
12177
|
# existing list of thumbprints. (The lists are not merged.)
|
12168
12178
|
#
|
12169
12179
|
# Typically, you need to update a thumbprint only when the identity
|
12170
|
-
# provider
|
12180
|
+
# provider certificate changes, which occurs rarely. However, if the
|
12171
12181
|
# provider's certificate *does* change, any attempt to assume an IAM
|
12172
12182
|
# role that specifies the OIDC provider as a principal fails until the
|
12173
12183
|
# certificate thumbprint is updated.
|
12174
12184
|
#
|
12175
|
-
# <note markdown="1">
|
12176
|
-
#
|
12177
|
-
#
|
12178
|
-
#
|
12185
|
+
# <note markdown="1"> Amazon Web Services secures communication with some OIDC identity
|
12186
|
+
# providers (IdPs) through our library of trusted certificate
|
12187
|
+
# authorities (CAs) instead of using a certificate thumbprint to verify
|
12188
|
+
# your IdP server certificate. These OIDC IdPs include Google, and those
|
12189
|
+
# that use an Amazon S3 bucket to host a JSON Web Key Set (JWKS)
|
12190
|
+
# endpoint. In these cases, your legacy thumbprint remains in your
|
12191
|
+
# configuration, but is no longer used for validation.
|
12192
|
+
#
|
12193
|
+
# </note>
|
12194
|
+
#
|
12195
|
+
# <note markdown="1"> Trust for the OIDC provider is derived from the provider certificate
|
12196
|
+
# and is validated by the thumbprint. Therefore, it is best to limit
|
12197
|
+
# access to the `UpdateOpenIDConnectProviderThumbprint` operation to
|
12198
|
+
# highly privileged users.
|
12179
12199
|
#
|
12180
12200
|
# </note>
|
12181
12201
|
#
|
@@ -13140,7 +13160,7 @@ module Aws::IAM
|
|
13140
13160
|
params: params,
|
13141
13161
|
config: config)
|
13142
13162
|
context[:gem_name] = 'aws-sdk-iam'
|
13143
|
-
context[:gem_version] = '1.
|
13163
|
+
context[:gem_version] = '1.57.0'
|
13144
13164
|
Seahorse::Client::Request.new(handlers, context)
|
13145
13165
|
end
|
13146
13166
|
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-iam
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.57.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2021-07-
|
11
|
+
date: 2021-07-21 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|