aws-sdk-iam 1.93.0 → 1.95.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 5d40d7c7e7aef8b0a765f0a8f9f3d0459eb26e61ef25060aaac254823b27c2e0
-  data.tar.gz: 1361203bb9b3b28bf8dcb00b4d5994d1ae2c21d217c485b888874431e5298faf
+  metadata.gz: 5b1babaf1113737628781613a10bcdbb3fa4f7ca9feb75fad5b6e753f56ff904
+  data.tar.gz: b87db6c6cf3de1820478094f84bf31af1b3bad2559d8e0b5d3aae3b5be64be8c
 SHA512:
-  metadata.gz: 04df07ecd29481fb8b4813c13a93c82f207dc4eb79e78a2663d9af6a9599e3d24f1cacd0cdb033a7fa55135df44fb07ac630a51671824d2c9f25a67a89d20334
-  data.tar.gz: 04d035228f544aec7d9e60d999fc1b816f4ed55acb25184e327dafeeadc71f2082574586386281e6e691ce5e33ee26dd0e2397b99bcda6140ad35251b3c1514f
+  metadata.gz: 6fa5f05f98660acd3bf706c7c2d8932a45542d219f2a51b60eda0028efe664c422a737aa82401e195891d6ecc14ad932a8dde511e61cc1c319f88562b5345785
+  data.tar.gz: 7cce096cae8761f3179c58f44080612109991111dbe98e84ed30ac9fd5b771e74e406af5891a6675d40e59ba51a3ca6b10b87e347f3bd389f249fcb67050ab2c

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.95.0 (2024-04-11)
+------------------
+
+* Feature - For CreateOpenIDConnectProvider API, the ThumbprintList parameter is no longer required.
+
+1.94.0 (2024-01-26)
+------------------
+
+* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
+
 1.93.0 (2023-12-26)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.93.0
+1.95.0

data/lib/aws-sdk-iam/client.rb

@@ -1372,20 +1372,23 @@ module Aws::IAM
     #   `CreateOpenIDConnectProviderRequest` operation accepts client IDs up
     #   to 255 characters long.
     #
-    # @option params [required, Array<String>] :thumbprint_list
+    # @option params [Array<String>] :thumbprint_list
     #   A list of server certificate thumbprints for the OpenID Connect (OIDC)
     #   identity provider's server certificates. Typically this list includes
     #   only one entry. However, IAM lets you have up to five thumbprints for
     #   an OIDC provider. This lets you maintain multiple thumbprints if the
     #   identity provider is rotating certificates.
     #
+    #   This parameter is optional. If it is not included, IAM will retrieve
+    #   and use the top intermediate certificate authority (CA) thumbprint of
+    #   the OpenID Connect identity provider server certificate.
+    #
     #   The server certificate thumbprint is the hex-encoded SHA-1 hash value
     #   of the X.509 certificate used by the domain where the OpenID Connect
     #   provider makes its keys available. It is always a 40-character string.
     #
-    #   You must provide at least one thumbprint when creating an IAM OIDC
-    #   provider. For example, assume that the OIDC provider is
-    #   `server.example.com` and the provider stores its keys at
+    #   For example, assume that the OIDC provider is `server.example.com` and
+    #   the provider stores its keys at
     #   https://keys.server.example.com/openid-connect. In that case, the
     #   thumbprint string would be the hex-encoded SHA-1 hash value of the
     #   certificate used by `https://keys.server.example.com.`
@@ -1445,7 +1448,7 @@ module Aws::IAM
     #   resp = client.create_open_id_connect_provider({
     #     url: "OpenIDConnectProviderUrlType", # required
     #     client_id_list: ["clientIDType"],
-    #     thumbprint_list: ["thumbprintType"], # required
+    #     thumbprint_list: ["thumbprintType"],
     #     tags: [
     #       {
     #         key: "tagKeyType", # required
@@ -9878,7 +9881,7 @@ module Aws::IAM
       req.send_request(options)
     end
 
-    # Removes the specified IAM role from the specified EC2 instance
+    # Removes the specified IAM role from the specified Amazon EC2 instance
     # profile.
     #
     # Make sure that you do not have any Amazon EC2 instances running with
@@ -10465,13 +10468,13 @@ module Aws::IAM
     #   following list shows each of the supported scenario values and the
     #   resources that you must define to run the simulation.
     #
-    #   Each of the EC2 scenarios requires that you specify instance, image,
-    #   and security group resources. If your scenario includes an EBS volume,
-    #   then you must specify that volume as a resource. If the EC2 scenario
-    #   includes VPC, then you must supply the network interface resource. If
-    #   it includes an IP subnet, then you must specify the subnet resource.
-    #   For more information on the EC2 scenario options, see [Supported
-    #   platforms][1] in the *Amazon EC2 User Guide*.
+    #   Each of the Amazon EC2 scenarios requires that you specify instance,
+    #   image, and security group resources. If your scenario includes an EBS
+    #   volume, then you must specify that volume as a resource. If the Amazon
+    #   EC2 scenario includes VPC, then you must supply the network interface
+    #   resource. If it includes an IP subnet, then you must specify the
+    #   subnet resource. For more information on the Amazon EC2 scenario
+    #   options, see [Supported platforms][1] in the *Amazon EC2 User Guide*.
     #
     #   * **EC2-VPC-InstanceStore**
     #
@@ -10830,13 +10833,13 @@ module Aws::IAM
     #   following list shows each of the supported scenario values and the
     #   resources that you must define to run the simulation.
     #
-    #   Each of the EC2 scenarios requires that you specify instance, image,
-    #   and security group resources. If your scenario includes an EBS volume,
-    #   then you must specify that volume as a resource. If the EC2 scenario
-    #   includes VPC, then you must supply the network interface resource. If
-    #   it includes an IP subnet, then you must specify the subnet resource.
-    #   For more information on the EC2 scenario options, see [Supported
-    #   platforms][1] in the *Amazon EC2 User Guide*.
+    #   Each of the Amazon EC2 scenarios requires that you specify instance,
+    #   image, and security group resources. If your scenario includes an EBS
+    #   volume, then you must specify that volume as a resource. If the Amazon
+    #   EC2 scenario includes VPC, then you must supply the network interface
+    #   resource. If it includes an IP subnet, then you must specify the
+    #   subnet resource. For more information on the Amazon EC2 scenario
+    #   options, see [Supported platforms][1] in the *Amazon EC2 User Guide*.
     #
     #   * **EC2-VPC-InstanceStore**
     #
@@ -12564,6 +12567,11 @@ module Aws::IAM
     #   when you use those operations to create a console URL. For more
     #   information, see [Using IAM roles][1] in the *IAM User Guide*.
     #
+    #   <note markdown="1"> IAM role credentials provided by Amazon EC2 instances assigned to the
+    #   role are not subject to the specified maximum session duration.
+    #
+    #    </note>
+    #
     #
     #
     #   [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use.html
@@ -13467,7 +13475,7 @@ module Aws::IAM
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-iam'
-      context[:gem_version] = '1.93.0'
+      context[:gem_version] = '1.95.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-iam/client_api.rb

@@ -262,6 +262,7 @@ module Aws::IAM
     OpenIDConnectProviderListEntry = Shapes::StructureShape.new(name: 'OpenIDConnectProviderListEntry')
     OpenIDConnectProviderListType = Shapes::ListShape.new(name: 'OpenIDConnectProviderListType')
     OpenIDConnectProviderUrlType = Shapes::StringShape.new(name: 'OpenIDConnectProviderUrlType')
+    OpenIdIdpCommunicationErrorException = Shapes::StructureShape.new(name: 'OpenIdIdpCommunicationErrorException')
     OrganizationsDecisionDetail = Shapes::StructureShape.new(name: 'OrganizationsDecisionDetail')
     PasswordPolicy = Shapes::StructureShape.new(name: 'PasswordPolicy')
     PasswordPolicyViolationException = Shapes::StructureShape.new(name: 'PasswordPolicyViolationException')
@@ -444,6 +445,7 @@ module Aws::IAM
     mfaDeviceListType = Shapes::ListShape.new(name: 'mfaDeviceListType')
     minimumPasswordLengthType = Shapes::IntegerShape.new(name: 'minimumPasswordLengthType')
     noSuchEntityMessage = Shapes::StringShape.new(name: 'noSuchEntityMessage')
+    openIdIdpCommunicationErrorExceptionMessage = Shapes::StringShape.new(name: 'openIdIdpCommunicationErrorExceptionMessage')
     organizationsEntityPathType = Shapes::StringShape.new(name: 'organizationsEntityPathType')
     organizationsPolicyIdType = Shapes::StringShape.new(name: 'organizationsPolicyIdType')
     passwordPolicyViolationMessage = Shapes::StringShape.new(name: 'passwordPolicyViolationMessage')
@@ -628,7 +630,7 @@ module Aws::IAM
 
     CreateOpenIDConnectProviderRequest.add_member(:url, Shapes::ShapeRef.new(shape: OpenIDConnectProviderUrlType, required: true, location_name: "Url"))
     CreateOpenIDConnectProviderRequest.add_member(:client_id_list, Shapes::ShapeRef.new(shape: clientIDListType, location_name: "ClientIDList"))
-    CreateOpenIDConnectProviderRequest.add_member(:thumbprint_list, Shapes::ShapeRef.new(shape: thumbprintListType, required: true, location_name: "ThumbprintList"))
+    CreateOpenIDConnectProviderRequest.add_member(:thumbprint_list, Shapes::ShapeRef.new(shape: thumbprintListType, location_name: "ThumbprintList"))
     CreateOpenIDConnectProviderRequest.add_member(:tags, Shapes::ShapeRef.new(shape: tagListType, location_name: "Tags"))
     CreateOpenIDConnectProviderRequest.struct_class = Types::CreateOpenIDConnectProviderRequest
 
@@ -1523,6 +1525,9 @@ module Aws::IAM
 
     OpenIDConnectProviderListType.member = Shapes::ShapeRef.new(shape: OpenIDConnectProviderListEntry)
 
+    OpenIdIdpCommunicationErrorException.add_member(:message, Shapes::ShapeRef.new(shape: openIdIdpCommunicationErrorExceptionMessage, location_name: "message"))
+    OpenIdIdpCommunicationErrorException.struct_class = Types::OpenIdIdpCommunicationErrorException
+
     OrganizationsDecisionDetail.add_member(:allowed_by_organizations, Shapes::ShapeRef.new(shape: booleanType, location_name: "AllowedByOrganizations"))
     OrganizationsDecisionDetail.struct_class = Types::OrganizationsDecisionDetail
 
@@ -2290,6 +2295,7 @@ module Aws::IAM
         o.errors << Shapes::ShapeRef.new(shape: LimitExceededException)
         o.errors << Shapes::ShapeRef.new(shape: ConcurrentModificationException)
         o.errors << Shapes::ShapeRef.new(shape: ServiceFailureException)
+        o.errors << Shapes::ShapeRef.new(shape: OpenIdIdpCommunicationErrorException)
       end)
 
       api.add_operation(:create_policy, Seahorse::Model::Operation.new.tap do |o|

data/lib/aws-sdk-iam/errors.rb

@@ -46,6 +46,7 @@ module Aws::IAM
   # * {MalformedCertificateException}
   # * {MalformedPolicyDocumentException}
   # * {NoSuchEntityException}
+  # * {OpenIdIdpCommunicationErrorException}
   # * {PasswordPolicyViolationException}
   # * {PolicyEvaluationException}
   # * {PolicyNotAttachableException}
@@ -346,6 +347,21 @@ module Aws::IAM
       end
     end
 
+    class OpenIdIdpCommunicationErrorException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::IAM::Types::OpenIdIdpCommunicationErrorException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+    end
+
     class PasswordPolicyViolationException < ServiceError
 
       # @param [Seahorse::Client::RequestContext] context

data/lib/aws-sdk-iam/plugins/endpoints.rb

@@ -14,6 +14,7 @@ module Aws::IAM
       option(
         :endpoint_provider,
         doc_type: 'Aws::IAM::EndpointProvider',
+        rbs_type: 'untyped',
         docstring: 'The endpoint provider used to resolve endpoints. Any '\
                    'object that responds to `#resolve_endpoint(parameters)` '\
                    'where `parameters` is a Struct similar to '\

data/lib/aws-sdk-iam/types.rb

@@ -877,14 +877,17 @@ module Aws::IAM
     #   thumbprints for an OIDC provider. This lets you maintain multiple
     #   thumbprints if the identity provider is rotating certificates.
     #
+    #   This parameter is optional. If it is not included, IAM will retrieve
+    #   and use the top intermediate certificate authority (CA) thumbprint
+    #   of the OpenID Connect identity provider server certificate.
+    #
     #   The server certificate thumbprint is the hex-encoded SHA-1 hash
     #   value of the X.509 certificate used by the domain where the OpenID
     #   Connect provider makes its keys available. It is always a
     #   40-character string.
     #
-    #   You must provide at least one thumbprint when creating an IAM OIDC
-    #   provider. For example, assume that the OIDC provider is
-    #   `server.example.com` and the provider stores its keys at
+    #   For example, assume that the OIDC provider is `server.example.com`
+    #   and the provider stores its keys at
     #   https://keys.server.example.com/openid-connect. In that case, the
     #   thumbprint string would be the hex-encoded SHA-1 hash value of the
     #   certificate used by `https://keys.server.example.com.`
@@ -7573,6 +7576,20 @@ module Aws::IAM
       include Aws::Structure
     end
 
+    # The request failed because IAM cannot connect to the OpenID Connect
+    # identity provider URL.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/OpenIdIdpCommunicationErrorException AWS API Documentation
+    #
+    class OpenIdIdpCommunicationErrorException < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Contains information about the effect that Organizations has on a
     # policy simulation.
     #
@@ -9723,13 +9740,14 @@ module Aws::IAM
     #   scenario values and the resources that you must define to run the
     #   simulation.
     #
-    #   Each of the EC2 scenarios requires that you specify instance, image,
-    #   and security group resources. If your scenario includes an EBS
-    #   volume, then you must specify that volume as a resource. If the EC2
-    #   scenario includes VPC, then you must supply the network interface
-    #   resource. If it includes an IP subnet, then you must specify the
-    #   subnet resource. For more information on the EC2 scenario options,
-    #   see [Supported platforms][1] in the *Amazon EC2 User Guide*.
+    #   Each of the Amazon EC2 scenarios requires that you specify instance,
+    #   image, and security group resources. If your scenario includes an
+    #   EBS volume, then you must specify that volume as a resource. If the
+    #   Amazon EC2 scenario includes VPC, then you must supply the network
+    #   interface resource. If it includes an IP subnet, then you must
+    #   specify the subnet resource. For more information on the Amazon EC2
+    #   scenario options, see [Supported platforms][1] in the *Amazon EC2
+    #   User Guide*.
     #
     #   * **EC2-VPC-InstanceStore**
     #
@@ -10030,13 +10048,14 @@ module Aws::IAM
     #   scenario values and the resources that you must define to run the
     #   simulation.
     #
-    #   Each of the EC2 scenarios requires that you specify instance, image,
-    #   and security group resources. If your scenario includes an EBS
-    #   volume, then you must specify that volume as a resource. If the EC2
-    #   scenario includes VPC, then you must supply the network interface
-    #   resource. If it includes an IP subnet, then you must specify the
-    #   subnet resource. For more information on the EC2 scenario options,
-    #   see [Supported platforms][1] in the *Amazon EC2 User Guide*.
+    #   Each of the Amazon EC2 scenarios requires that you specify instance,
+    #   image, and security group resources. If your scenario includes an
+    #   EBS volume, then you must specify that volume as a resource. If the
+    #   Amazon EC2 scenario includes VPC, then you must supply the network
+    #   interface resource. If it includes an IP subnet, then you must
+    #   specify the subnet resource. For more information on the Amazon EC2
+    #   scenario options, see [Supported platforms][1] in the *Amazon EC2
+    #   User Guide*.
     #
     #   * **EC2-VPC-InstanceStore**
     #
@@ -11104,6 +11123,11 @@ module Aws::IAM
     #   URL. For more information, see [Using IAM roles][1] in the *IAM User
     #   Guide*.
     #
+    #   <note markdown="1"> IAM role credentials provided by Amazon EC2 instances assigned to
+    #   the role are not subject to the specified maximum session duration.
+    #
+    #    </note>
+    #
     #
     #
     #   [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use.html

data/lib/aws-sdk-iam.rb

@@ -74,6 +74,6 @@ require_relative 'aws-sdk-iam/customizations'
 # @!group service
 module Aws::IAM
 
-  GEM_VERSION = '1.93.0'
+  GEM_VERSION = '1.95.0'
 
 end

data/sig/access_key.rbs

@@ -0,0 +1,62 @@
+# WARNING ABOUT GENERATED CODE
+#
+# This file is generated. See the contributing guide for more information:
+# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
+#
+# WARNING ABOUT GENERATED CODE
+
+module Aws
+  module IAM
+    # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKey.html
+    class AccessKey
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKey.html#initialize-instance_method
+      def initialize: (String user_name, String id, Hash[Symbol, untyped] options) -> void
+                    | (user_name: String, id: String, ?client: Client) -> void
+                    | (Hash[Symbol, untyped] args) -> void
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKey.html#user_name-instance_method
+      def user_name: () -> String
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKey.html#id-instance_method
+      def id: () -> String
+      alias access_key_id id
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKey.html#status-instance_method
+      def status: () -> ("Active" | "Inactive")
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKey.html#create_date-instance_method
+      def create_date: () -> ::Time
+
+      def client: () -> Client
+
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKey.html#data-instance_method
+      def data: () -> Types::AccessKeyMetadata
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKey.html#data_loaded?-instance_method
+      def data_loaded?: () -> bool
+
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKey.html#activate-instance_method
+      def activate: (
+                    ) -> ::Aws::EmptyStructure
+                  | (?Hash[Symbol, untyped]) -> ::Aws::EmptyStructure
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKey.html#deactivate-instance_method
+      def deactivate: (
+                      ) -> ::Aws::EmptyStructure
+                    | (?Hash[Symbol, untyped]) -> ::Aws::EmptyStructure
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKey.html#delete-instance_method
+      def delete: (
+                  ) -> ::Aws::EmptyStructure
+                | (?Hash[Symbol, untyped]) -> ::Aws::EmptyStructure
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKey.html#user-instance_method
+      def user: () -> User
+
+      class Collection < ::Aws::Resources::Collection[AccessKey]
+      end
+    end
+  end
+end

data/sig/access_key_pair.rbs

@@ -0,0 +1,63 @@
+# WARNING ABOUT GENERATED CODE
+#
+# This file is generated. See the contributing guide for more information:
+# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
+#
+# WARNING ABOUT GENERATED CODE
+
+module Aws
+  module IAM
+    # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKeyPair.html
+    class AccessKeyPair
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKeyPair.html#initialize-instance_method
+      def initialize: (String user_name, String id, String secret, Hash[Symbol, untyped] options) -> void
+                    | (user_name: String, id: String, secret: String, ?client: Client) -> void
+                    | (Hash[Symbol, untyped] args) -> void
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKeyPair.html#user_name-instance_method
+      def user_name: () -> String
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKeyPair.html#id-instance_method
+      def id: () -> String
+      alias access_key_id id
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKeyPair.html#secret-instance_method
+      def secret: () -> String
+      alias secret_access_key secret
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKeyPair.html#status-instance_method
+      def status: () -> ("Active" | "Inactive")
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKeyPair.html#create_date-instance_method
+      def create_date: () -> ::Time
+
+      def client: () -> Client
+
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKeyPair.html#data-instance_method
+      def data: () -> Types::AccessKey
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKeyPair.html#data_loaded?-instance_method
+      def data_loaded?: () -> bool
+
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKeyPair.html#activate-instance_method
+      def activate: (
+                    ) -> ::Aws::EmptyStructure
+                  | (?Hash[Symbol, untyped]) -> ::Aws::EmptyStructure
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKeyPair.html#deactivate-instance_method
+      def deactivate: (
+                      ) -> ::Aws::EmptyStructure
+                    | (?Hash[Symbol, untyped]) -> ::Aws::EmptyStructure
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccessKeyPair.html#delete-instance_method
+      def delete: (
+                  ) -> ::Aws::EmptyStructure
+                | (?Hash[Symbol, untyped]) -> ::Aws::EmptyStructure
+
+      class Collection < ::Aws::Resources::Collection[AccessKeyPair]
+      end
+    end
+  end
+end

data/sig/account_password_policy.rbs

@@ -0,0 +1,80 @@
+# WARNING ABOUT GENERATED CODE
+#
+# This file is generated. See the contributing guide for more information:
+# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
+#
+# WARNING ABOUT GENERATED CODE
+
+module Aws
+  module IAM
+    # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html
+    class AccountPasswordPolicy
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#initialize-instance_method
+      def initialize: (Hash[Symbol, untyped] args) -> void
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#minimum_password_length-instance_method
+      def minimum_password_length: () -> ::Integer
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#require_symbols-instance_method
+      def require_symbols: () -> bool
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#require_numbers-instance_method
+      def require_numbers: () -> bool
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#require_uppercase_characters-instance_method
+      def require_uppercase_characters: () -> bool
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#require_lowercase_characters-instance_method
+      def require_lowercase_characters: () -> bool
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#allow_users_to_change_password-instance_method
+      def allow_users_to_change_password: () -> bool
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#expire_passwords-instance_method
+      def expire_passwords: () -> bool
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#max_password_age-instance_method
+      def max_password_age: () -> ::Integer
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#password_reuse_prevention-instance_method
+      def password_reuse_prevention: () -> ::Integer
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#hard_expiry-instance_method
+      def hard_expiry: () -> bool
+
+      def client: () -> Client
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#load-instance_method
+      def load: () -> self
+      alias reload load
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#data-instance_method
+      def data: () -> Types::PasswordPolicy
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#data_loaded?-instance_method
+      def data_loaded?: () -> bool
+
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#delete-instance_method
+      def delete: () -> ::Aws::EmptyStructure
+                | (?Hash[Symbol, untyped]) -> ::Aws::EmptyStructure
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountPasswordPolicy.html#update-instance_method
+      def update: (
+                    ?minimum_password_length: ::Integer,
+                    ?require_symbols: bool,
+                    ?require_numbers: bool,
+                    ?require_uppercase_characters: bool,
+                    ?require_lowercase_characters: bool,
+                    ?allow_users_to_change_password: bool,
+                    ?max_password_age: ::Integer,
+                    ?password_reuse_prevention: ::Integer,
+                    ?hard_expiry: bool
+                  ) -> ::Aws::EmptyStructure
+                | (?Hash[Symbol, untyped]) -> ::Aws::EmptyStructure
+
+      class Collection < ::Aws::Resources::Collection[AccountPasswordPolicy]
+      end
+    end
+  end
+end

data/sig/account_summary.rbs

@@ -0,0 +1,35 @@
+# WARNING ABOUT GENERATED CODE
+#
+# This file is generated. See the contributing guide for more information:
+# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
+#
+# WARNING ABOUT GENERATED CODE
+
+module Aws
+  module IAM
+    # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountSummary.html
+    class AccountSummary
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountSummary.html#initialize-instance_method
+      def initialize: (Hash[Symbol, untyped] args) -> void
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountSummary.html#summary_map-instance_method
+      def summary_map: () -> ::Hash[("Users" | "UsersQuota" | "Groups" | "GroupsQuota" | "ServerCertificates" | "ServerCertificatesQuota" | "UserPolicySizeQuota" | "GroupPolicySizeQuota" | "GroupsPerUserQuota" | "SigningCertificatesPerUserQuota" | "AccessKeysPerUserQuota" | "MFADevices" | "MFADevicesInUse" | "AccountMFAEnabled" | "AccountAccessKeysPresent" | "AccountSigningCertificatesPresent" | "AttachedPoliciesPerGroupQuota" | "AttachedPoliciesPerRoleQuota" | "AttachedPoliciesPerUserQuota" | "Policies" | "PoliciesQuota" | "PolicySizeQuota" | "PolicyVersionsInUse" | "PolicyVersionsInUseQuota" | "VersionsPerPolicyQuota" | "GlobalEndpointTokenVersion"), ::Integer]
+
+      def client: () -> Client
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountSummary.html#load-instance_method
+      def load: () -> self
+      alias reload load
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountSummary.html#data-instance_method
+      def data: () -> Types::GetAccountSummaryResponse
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AccountSummary.html#data_loaded?-instance_method
+      def data_loaded?: () -> bool
+
+
+      class Collection < ::Aws::Resources::Collection[AccountSummary]
+      end
+    end
+  end
+end

data/sig/assume_role_policy.rbs

@@ -0,0 +1,43 @@
+# WARNING ABOUT GENERATED CODE
+#
+# This file is generated. See the contributing guide for more information:
+# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
+#
+# WARNING ABOUT GENERATED CODE
+
+module Aws
+  module IAM
+    # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AssumeRolePolicy.html
+    class AssumeRolePolicy
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AssumeRolePolicy.html#initialize-instance_method
+      def initialize: (String role_name, Hash[Symbol, untyped] options) -> void
+                    | (role_name: String, ?client: Client) -> void
+                    | (Hash[Symbol, untyped] args) -> void
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AssumeRolePolicy.html#role_name-instance_method
+      def role_name: () -> String
+
+      def client: () -> Client
+
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AssumeRolePolicy.html#data-instance_method
+      def data: () -> EmptyStructure
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AssumeRolePolicy.html#data_loaded?-instance_method
+      def data_loaded?: () -> bool
+
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AssumeRolePolicy.html#update-instance_method
+      def update: (
+                    policy_document: ::String
+                  ) -> ::Aws::EmptyStructure
+                | (?Hash[Symbol, untyped]) -> ::Aws::EmptyStructure
+
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/AssumeRolePolicy.html#role-instance_method
+      def role: () -> Role
+
+      class Collection < ::Aws::Resources::Collection[AssumeRolePolicy]
+      end
+    end
+  end
+end