aws-sdk-iam 1.134.0 → 1.135.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 5cbfead62cf3bea81bd446aa80db539555d7d24ae4e4594d21f8581ba3dd7257
-  data.tar.gz: 6296338a4c18da4367f765752e65a8dac08c4dc5d82cd4ae7eb461264fc8ae47
+  metadata.gz: bdc3168c4c4ce65d294720e3b374dcbbfe002068530d5980223b12ed6d6faaf3
+  data.tar.gz: 03bbe33c11ce8256b7445bde352739d26b4fd1b6cabb50230cac3afde75f57b3
 SHA512:
-  metadata.gz: e2b64398cca2774ccde7cab5889f2a0a815cacfe3e402f18da7e5ada4045fb23cd812c375401c28e997df0e0ef07e6cda2c46197b0cb52ee535eafaaeea1d279
-  data.tar.gz: 8569857476f5ac87ffaf80f0b2370f043042e8a692114a7c32dea12ca61a70a25d92e3744420a9d77a8cf9628adbb0aeebcf52b83ad4ac0806ff4e7a408be2ac
+  metadata.gz: 52714681b8597efbfabfe2860cbc2214d76f1082433c16d5aeb3d128cd28d51e792080e12fc1a65b94c5279ea7d21639f353663f6c4737a8f5c26838d73e78ae
+  data.tar.gz: 4eed0b90758976f28770cab235dc9c82bf9aa762f7d8e44110f34e8399beb53fd188e86dc677f8820c0a6f9b1ed641f302c3d63dbc88915a5e28d07c196d888a

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.135.0 (2025-11-19)
+------------------
+
+* Feature - Added the EnableOutboundWebIdentityFederation, DisableOutboundWebIdentityFederation and GetOutboundWebIdentityFederationInfo APIs for the IAM outbound federation feature.
+
 1.134.0 (2025-11-18)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.134.0
+1.135.0

data/lib/aws-sdk-iam/client.rb

@@ -4290,6 +4290,23 @@ module Aws::IAM
       req.send_request(options)
     end
 
+    # Disables the outbound identity federation feature for your Amazon Web
+    # Services account. When disabled, IAM principals in the account cannot
+    # use the `GetWebIdentityToken` API to obtain JSON Web Tokens (JWTs) for
+    # authentication with external services. This operation does not affect
+    # tokens that were issued before the feature was disabled.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DisableOutboundWebIdentityFederation AWS API Documentation
+    #
+    # @overload disable_outbound_web_identity_federation(params = {})
+    # @param [Hash] params ({})
+    def disable_outbound_web_identity_federation(params = {}, options = {})
+      req = build_request(:disable_outbound_web_identity_federation, params)
+      req.send_request(options)
+    end
+
     # Enables the specified MFA device and associates it with the specified
     # IAM user. When enabled, the MFA device is required for every
     # subsequent login by the IAM user associated with the device.
@@ -4489,6 +4506,29 @@ module Aws::IAM
       req.send_request(options)
     end
 
+    # Enables the outbound identity federation feature for your Amazon Web
+    # Services account. When enabled, IAM principals in your account can use
+    # the `GetWebIdentityToken` API to obtain JSON Web Tokens (JWTs) for
+    # secure authentication with external services. This operation also
+    # generates a unique issuer URL for your Amazon Web Services account.
+    #
+    # @return [Types::EnableOutboundWebIdentityFederationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::EnableOutboundWebIdentityFederationResponse#issuer_identifier #issuer_identifier} => String
+    #
+    # @example Response structure
+    #
+    #   resp.issuer_identifier #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/EnableOutboundWebIdentityFederation AWS API Documentation
+    #
+    # @overload enable_outbound_web_identity_federation(params = {})
+    # @param [Hash] params ({})
+    def enable_outbound_web_identity_federation(params = {}, options = {})
+      req = build_request(:enable_outbound_web_identity_federation, params)
+      req.send_request(options)
+    end
+
     # Generates a credential report for the Amazon Web Services account. For
     # more information about the credential report, see [Getting credential
     # reports][1] in the *IAM User Guide*.
@@ -6081,6 +6121,32 @@ module Aws::IAM
       req.send_request(options)
     end
 
+    # Retrieves the configuration information for the outbound identity
+    # federation feature in your Amazon Web Services account. The response
+    # includes the unique issuer URL for your Amazon Web Services account
+    # and the current enabled/disabled status of the feature. Use this
+    # operation to obtain the issuer URL that you need to configure trust
+    # relationships with external services.
+    #
+    # @return [Types::GetOutboundWebIdentityFederationInfoResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetOutboundWebIdentityFederationInfoResponse#issuer_identifier #issuer_identifier} => String
+    #   * {Types::GetOutboundWebIdentityFederationInfoResponse#jwt_vending_enabled #jwt_vending_enabled} => Boolean
+    #
+    # @example Response structure
+    #
+    #   resp.issuer_identifier #=> String
+    #   resp.jwt_vending_enabled #=> Boolean
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/GetOutboundWebIdentityFederationInfo AWS API Documentation
+    #
+    # @overload get_outbound_web_identity_federation_info(params = {})
+    # @param [Hash] params ({})
+    def get_outbound_web_identity_federation_info(params = {}, options = {})
+      req = build_request(:get_outbound_web_identity_federation_info, params)
+      req.send_request(options)
+    end
+
     # Retrieves information about the specified managed policy, including
     # the policy's default version and the total number of IAM users,
     # groups, and roles to which the policy is attached. To retrieve the
@@ -14623,7 +14689,7 @@ module Aws::IAM
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-iam'
-      context[:gem_version] = '1.134.0'
+      context[:gem_version] = '1.135.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-iam/client_api.rb

@@ -126,6 +126,7 @@ module Aws::IAM
     EnableOrganizationsRootCredentialsManagementResponse = Shapes::StructureShape.new(name: 'EnableOrganizationsRootCredentialsManagementResponse')
     EnableOrganizationsRootSessionsRequest = Shapes::StructureShape.new(name: 'EnableOrganizationsRootSessionsRequest')
     EnableOrganizationsRootSessionsResponse = Shapes::StructureShape.new(name: 'EnableOrganizationsRootSessionsResponse')
+    EnableOutboundWebIdentityFederationResponse = Shapes::StructureShape.new(name: 'EnableOutboundWebIdentityFederationResponse')
     EntityAlreadyExistsException = Shapes::StructureShape.new(name: 'EntityAlreadyExistsException', error: {"code" => "EntityAlreadyExists", "httpStatusCode" => 409, "senderFault" => true})
     EntityDetails = Shapes::StructureShape.new(name: 'EntityDetails')
     EntityInfo = Shapes::StructureShape.new(name: 'EntityInfo')
@@ -136,6 +137,10 @@ module Aws::IAM
     EvalDecisionSourceType = Shapes::StringShape.new(name: 'EvalDecisionSourceType')
     EvaluationResult = Shapes::StructureShape.new(name: 'EvaluationResult')
     EvaluationResultsListType = Shapes::ListShape.new(name: 'EvaluationResultsListType')
+    FeatureDisabledException = Shapes::StructureShape.new(name: 'FeatureDisabledException', error: {"code" => "FeatureDisabled", "httpStatusCode" => 404, "senderFault" => true})
+    FeatureDisabledMessage = Shapes::StringShape.new(name: 'FeatureDisabledMessage')
+    FeatureEnabledException = Shapes::StructureShape.new(name: 'FeatureEnabledException', error: {"code" => "FeatureEnabled", "httpStatusCode" => 409, "senderFault" => true})
+    FeatureEnabledMessage = Shapes::StringShape.new(name: 'FeatureEnabledMessage')
     FeatureType = Shapes::StringShape.new(name: 'FeatureType')
     FeaturesListType = Shapes::ListShape.new(name: 'FeaturesListType')
     GenerateCredentialReportResponse = Shapes::StructureShape.new(name: 'GenerateCredentialReportResponse')
@@ -171,6 +176,7 @@ module Aws::IAM
     GetOpenIDConnectProviderResponse = Shapes::StructureShape.new(name: 'GetOpenIDConnectProviderResponse')
     GetOrganizationsAccessReportRequest = Shapes::StructureShape.new(name: 'GetOrganizationsAccessReportRequest')
     GetOrganizationsAccessReportResponse = Shapes::StructureShape.new(name: 'GetOrganizationsAccessReportResponse')
+    GetOutboundWebIdentityFederationInfoResponse = Shapes::StructureShape.new(name: 'GetOutboundWebIdentityFederationInfoResponse')
     GetPolicyRequest = Shapes::StructureShape.new(name: 'GetPolicyRequest')
     GetPolicyResponse = Shapes::StructureShape.new(name: 'GetPolicyResponse')
     GetPolicyVersionRequest = Shapes::StructureShape.new(name: 'GetPolicyVersionRequest')
@@ -976,6 +982,9 @@ module Aws::IAM
     EnableOrganizationsRootSessionsResponse.add_member(:enabled_features, Shapes::ShapeRef.new(shape: FeaturesListType, location_name: "EnabledFeatures"))
     EnableOrganizationsRootSessionsResponse.struct_class = Types::EnableOrganizationsRootSessionsResponse
 
+    EnableOutboundWebIdentityFederationResponse.add_member(:issuer_identifier, Shapes::ShapeRef.new(shape: stringType, location_name: "IssuerIdentifier"))
+    EnableOutboundWebIdentityFederationResponse.struct_class = Types::EnableOutboundWebIdentityFederationResponse
+
     EntityAlreadyExistsException.add_member(:message, Shapes::ShapeRef.new(shape: entityAlreadyExistsMessage, location_name: "message"))
     EntityAlreadyExistsException.struct_class = Types::EntityAlreadyExistsException
 
@@ -1013,6 +1022,12 @@ module Aws::IAM
 
     EvaluationResultsListType.member = Shapes::ShapeRef.new(shape: EvaluationResult)
 
+    FeatureDisabledException.add_member(:message, Shapes::ShapeRef.new(shape: FeatureDisabledMessage, location_name: "message"))
+    FeatureDisabledException.struct_class = Types::FeatureDisabledException
+
+    FeatureEnabledException.add_member(:message, Shapes::ShapeRef.new(shape: FeatureEnabledMessage, location_name: "message"))
+    FeatureEnabledException.struct_class = Types::FeatureEnabledException
+
     FeaturesListType.member = Shapes::ShapeRef.new(shape: FeatureType)
 
     GenerateCredentialReportResponse.add_member(:state, Shapes::ShapeRef.new(shape: ReportStateType, location_name: "State"))
@@ -1161,6 +1176,10 @@ module Aws::IAM
     GetOrganizationsAccessReportResponse.add_member(:error_details, Shapes::ShapeRef.new(shape: ErrorDetails, location_name: "ErrorDetails"))
     GetOrganizationsAccessReportResponse.struct_class = Types::GetOrganizationsAccessReportResponse
 
+    GetOutboundWebIdentityFederationInfoResponse.add_member(:issuer_identifier, Shapes::ShapeRef.new(shape: stringType, location_name: "IssuerIdentifier"))
+    GetOutboundWebIdentityFederationInfoResponse.add_member(:jwt_vending_enabled, Shapes::ShapeRef.new(shape: booleanType, location_name: "JwtVendingEnabled"))
+    GetOutboundWebIdentityFederationInfoResponse.struct_class = Types::GetOutboundWebIdentityFederationInfoResponse
+
     GetPolicyRequest.add_member(:policy_arn, Shapes::ShapeRef.new(shape: arnType, required: true, location_name: "PolicyArn"))
     GetPolicyRequest.struct_class = Types::GetPolicyRequest
 
@@ -3016,6 +3035,15 @@ module Aws::IAM
         o.errors << Shapes::ShapeRef.new(shape: OrganizationNotInAllFeaturesModeException)
       end)
 
+      api.add_operation(:disable_outbound_web_identity_federation, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "DisableOutboundWebIdentityFederation"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: Shapes::StructureShape.new(struct_class: Aws::EmptyStructure))
+        o.output = Shapes::ShapeRef.new(shape: Shapes::StructureShape.new(struct_class: Aws::EmptyStructure))
+        o.errors << Shapes::ShapeRef.new(shape: FeatureDisabledException)
+      end)
+
       api.add_operation(:enable_mfa_device, Seahorse::Model::Operation.new.tap do |o|
         o.name = "EnableMFADevice"
         o.http_method = "POST"
@@ -3057,6 +3085,15 @@ module Aws::IAM
         o.errors << Shapes::ShapeRef.new(shape: CallerIsNotManagementAccountException)
       end)
 
+      api.add_operation(:enable_outbound_web_identity_federation, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "EnableOutboundWebIdentityFederation"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: Shapes::StructureShape.new(struct_class: Aws::EmptyStructure))
+        o.output = Shapes::ShapeRef.new(shape: EnableOutboundWebIdentityFederationResponse)
+        o.errors << Shapes::ShapeRef.new(shape: FeatureEnabledException)
+      end)
+
       api.add_operation(:generate_credential_report, Seahorse::Model::Operation.new.tap do |o|
         o.name = "GenerateCredentialReport"
         o.http_method = "POST"
@@ -3258,6 +3295,15 @@ module Aws::IAM
         o.errors << Shapes::ShapeRef.new(shape: NoSuchEntityException)
       end)
 
+      api.add_operation(:get_outbound_web_identity_federation_info, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "GetOutboundWebIdentityFederationInfo"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: Shapes::StructureShape.new(struct_class: Aws::EmptyStructure))
+        o.output = Shapes::ShapeRef.new(shape: GetOutboundWebIdentityFederationInfoResponse)
+        o.errors << Shapes::ShapeRef.new(shape: FeatureDisabledException)
+      end)
+
       api.add_operation(:get_policy, Seahorse::Model::Operation.new.tap do |o|
         o.name = "GetPolicy"
         o.http_method = "POST"

data/lib/aws-sdk-iam/errors.rb

@@ -47,6 +47,10 @@ module Aws::IAM
   #    * This error class is not used. `EntityAlreadyExists` is used during parsing instead.
   # * {EntityTemporarilyUnmodifiableException}
   #    * This error class is not used. `EntityTemporarilyUnmodifiable` is used during parsing instead.
+  # * {FeatureDisabledException}
+  #    * This error class is not used. `FeatureDisabled` is used during parsing instead.
+  # * {FeatureEnabledException}
+  #    * This error class is not used. `FeatureEnabled` is used during parsing instead.
   # * {InvalidAuthenticationCodeException}
   #    * This error class is not used. `InvalidAuthenticationCode` is used during parsing instead.
   # * {InvalidCertificateException}
@@ -268,6 +272,40 @@ module Aws::IAM
       end
     end
 
+    # @deprecated This error class is not used during parsing.
+    #   Please use `FeatureDisabled` instead.
+    class FeatureDisabledException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::IAM::Types::FeatureDisabledException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+    end
+
+    # @deprecated This error class is not used during parsing.
+    #   Please use `FeatureEnabled` instead.
+    class FeatureEnabledException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::IAM::Types::FeatureEnabledException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+    end
+
     # @deprecated This error class is not used during parsing.
     #   Please use `InvalidAuthenticationCode` instead.
     class InvalidAuthenticationCodeException < ServiceError

data/lib/aws-sdk-iam/types.rb

@@ -3145,6 +3145,22 @@ module Aws::IAM
       include Aws::Structure
     end
 
+    # @!attribute [rw] issuer_identifier
+    #   A unique issuer URL for your Amazon Web Services account that hosts
+    #   the OpenID Connect (OIDC) discovery endpoints at
+    #   `/.well-known/openid-configuration and /.well-known/jwks.json`. The
+    #   OpenID Connect (OIDC) discovery endpoints contain verification keys
+    #   and metadata necessary for token verification.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/EnableOutboundWebIdentityFederationResponse AWS API Documentation
+    #
+    class EnableOutboundWebIdentityFederationResponse < Struct.new(
+      :issuer_identifier)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The request was rejected because it attempted to create a resource
     # that already exists.
     #
@@ -3401,6 +3417,38 @@ module Aws::IAM
       include Aws::Structure
     end
 
+    # The request failed because outbound identity federation is already
+    # disabled for your Amazon Web Services account. You cannot disable the
+    # feature multiple times
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/FeatureDisabledException AWS API Documentation
+    #
+    class FeatureDisabledException < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # The request failed because outbound identity federation is already
+    # enabled for your Amazon Web Services account. You cannot enable the
+    # feature multiple times. To fetch the current configuration (including
+    # the unique issuer URL), use the `GetOutboundWebIdentityFederationInfo`
+    # operation.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/FeatureEnabledException AWS API Documentation
+    #
+    class FeatureEnabledException < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Contains the response to a successful [GenerateCredentialReport][1]
     # request.
     #
@@ -4467,6 +4515,30 @@ module Aws::IAM
       include Aws::Structure
     end
 
+    # @!attribute [rw] issuer_identifier
+    #   A unique issuer URL for your Amazon Web Services account that hosts
+    #   the OpenID Connect (OIDC) discovery endpoints at
+    #   `/.well-known/openid-configuration and /.well-known/jwks.json`. The
+    #   OpenID Connect (OIDC) discovery endpoints contain verification keys
+    #   and metadata necessary for token verification.
+    #   @return [String]
+    #
+    # @!attribute [rw] jwt_vending_enabled
+    #   Indicates whether outbound identity federation is currently enabled
+    #   for your Amazon Web Services account. When true, IAM principals in
+    #   the account can call the `GetWebIdentityToken` API to obtain JSON
+    #   Web Tokens (JWTs) for authentication with external services.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/GetOutboundWebIdentityFederationInfoResponse AWS API Documentation
+    #
+    class GetOutboundWebIdentityFederationInfoResponse < Struct.new(
+      :issuer_identifier,
+      :jwt_vending_enabled)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] policy_arn
     #   The Amazon Resource Name (ARN) of the managed policy that you want
     #   information about.

data/lib/aws-sdk-iam.rb

@@ -76,7 +76,7 @@ module Aws::IAM
   autoload :UserPolicy, 'aws-sdk-iam/user_policy'
   autoload :VirtualMfaDevice, 'aws-sdk-iam/virtual_mfa_device'
 
-  GEM_VERSION = '1.134.0'
+  GEM_VERSION = '1.135.0'
 
 end
 

data/sig/client.rbs

@@ -569,6 +569,10 @@ module Aws
                                                ) -> _DisableOrganizationsRootSessionsResponseSuccess
                                              | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DisableOrganizationsRootSessionsResponseSuccess
 
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#disable_outbound_web_identity_federation-instance_method
+      def disable_outbound_web_identity_federation: () -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
+                                                  | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
+
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#enable_mfa_device-instance_method
       def enable_mfa_device: (
                                user_name: ::String,
@@ -598,6 +602,14 @@ module Aws
                                               ) -> _EnableOrganizationsRootSessionsResponseSuccess
                                             | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _EnableOrganizationsRootSessionsResponseSuccess
 
+      interface _EnableOutboundWebIdentityFederationResponseSuccess
+        include ::Seahorse::Client::_ResponseSuccess[Types::EnableOutboundWebIdentityFederationResponse]
+        def issuer_identifier: () -> ::String
+      end
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#enable_outbound_web_identity_federation-instance_method
+      def enable_outbound_web_identity_federation: () -> _EnableOutboundWebIdentityFederationResponseSuccess
+                                                 | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _EnableOutboundWebIdentityFederationResponseSuccess
+
       interface _GenerateCredentialReportResponseSuccess
         include ::Seahorse::Client::_ResponseSuccess[Types::GenerateCredentialReportResponse]
         def state: () -> ("STARTED" | "INPROGRESS" | "COMPLETE")
@@ -827,6 +839,15 @@ module Aws
                                            ) -> _GetOrganizationsAccessReportResponseSuccess
                                          | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _GetOrganizationsAccessReportResponseSuccess
 
+      interface _GetOutboundWebIdentityFederationInfoResponseSuccess
+        include ::Seahorse::Client::_ResponseSuccess[Types::GetOutboundWebIdentityFederationInfoResponse]
+        def issuer_identifier: () -> ::String
+        def jwt_vending_enabled: () -> bool
+      end
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IAM/Client.html#get_outbound_web_identity_federation_info-instance_method
+      def get_outbound_web_identity_federation_info: () -> _GetOutboundWebIdentityFederationInfoResponseSuccess
+                                                   | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _GetOutboundWebIdentityFederationInfoResponseSuccess
+
       interface _GetPolicyResponseSuccess
         include ::Seahorse::Client::_ResponseSuccess[Types::GetPolicyResponse]
         def policy: () -> Types::Policy

data/sig/errors.rbs

@@ -42,6 +42,12 @@ module Aws
       class EntityTemporarilyUnmodifiableException < ::Aws::Errors::ServiceError
         def message: () -> ::String
       end
+      class FeatureDisabledException < ::Aws::Errors::ServiceError
+        def message: () -> ::String
+      end
+      class FeatureEnabledException < ::Aws::Errors::ServiceError
+        def message: () -> ::String
+      end
       class InvalidAuthenticationCodeException < ::Aws::Errors::ServiceError
         def message: () -> ::String
       end

data/sig/types.rbs

@@ -569,6 +569,11 @@ module Aws::IAM
       SENSITIVE: []
     end
 
+    class EnableOutboundWebIdentityFederationResponse
+      attr_accessor issuer_identifier: ::String
+      SENSITIVE: []
+    end
+
     class EntityAlreadyExistsException
       attr_accessor message: ::String
       SENSITIVE: []
@@ -613,6 +618,16 @@ module Aws::IAM
       SENSITIVE: []
     end
 
+    class FeatureDisabledException
+      attr_accessor message: ::String
+      SENSITIVE: []
+    end
+
+    class FeatureEnabledException
+      attr_accessor message: ::String
+      SENSITIVE: []
+    end
+
     class GenerateCredentialReportResponse
       attr_accessor state: ("STARTED" | "INPROGRESS" | "COMPLETE")
       attr_accessor description: ::String
@@ -825,6 +840,12 @@ module Aws::IAM
       SENSITIVE: []
     end
 
+    class GetOutboundWebIdentityFederationInfoResponse
+      attr_accessor issuer_identifier: ::String
+      attr_accessor jwt_vending_enabled: bool
+      SENSITIVE: []
+    end
+
     class GetPolicyRequest
       attr_accessor policy_arn: ::String
       SENSITIVE: []

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-iam
 version: !ruby/object:Gem::Version
-  version: 1.134.0
+  version: 1.135.0
 platform: ruby
 authors:
 - Amazon Web Services