aws-sdk-identitystore 1.61.0 → 1.63.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 81ae79e73e3dc34ffafadacd524d96867103d7971ac4d7eba64349add070f37d
-  data.tar.gz: 38d18390635bd5177b912c9b8ae9b18313916f5dfb0c7f4be988aeff2096e777
+  metadata.gz: f8a0eff9ffc10a97b8fd7c7f3c5def7252be9d90c76b0cdd606af6bb17f51460
+  data.tar.gz: 426a927eb08e0b20455b2268b62d3c90923f0f3fea5e94a6f2a8eaeb490a3349
 SHA512:
-  metadata.gz: 403d8db17463eb9cd10a1b0e36701c15a827f517b64e91bf979fea837fff9ce3c81f6ab14233841214eea104e121f61b57384900a7429712343e4d00ca704ed8
-  data.tar.gz: c5e1f044de933689f1cade160bd3b5cd73933f69ef51d32d4fd6383b0895e21975991569b2df59b4c00673f30de82e892a539dbb70d7816672c659aa4fcd1c22
+  metadata.gz: 43ba50a4214a2e1af96dc836ce028d4bc93ee40e57da0362bab77f17fef27a845a2549977b7d93499a83295000d413ea0bfd76a8a55b65f5dfc7ae5c478b06f4
+  data.tar.gz: eb57f7ef5da60cea0faf64611c7684e0c33ad41c11950f49875a8d4c6ed14ae0e288f511367564e99b2d4d1d333a8283a5f8ac7eb15b99e771e21ed428cf3f18

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.63.0 (2026-01-02)
+------------------
+
+* Feature - This change introduces "Roles" attribute for User entities supported by AWS Identity Store SDK.
+
+1.62.0 (2025-12-08)
+------------------
+
+* Feature - Updating AWS Identity Store APIs to support Attribute Extensions capability, with the first release adding Enterprise Attributes. This launch aligns Identity Store APIs with SCIM for enterprise attributes, reducing cases when customers are forced to use SCIM due to lack of SigV4 API support.
+
 1.61.0 (2025-11-21)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.61.0
+1.63.0

data/lib/aws-sdk-identitystore/client.rb

@@ -639,6 +639,16 @@ module Aws::IdentityStore
     #   The user's birthdate in YYYY-MM-DD format. This field supports
     #   standard date format for storing personal information.
     #
+    # @option params [Array<Types::Role>] :roles
+    #   A list of `Role` objects containing roles associated with the user.
+    #
+    # @option params [Hash<String,Hash,Array,String,Numeric,Boolean>] :extensions
+    #   A map with additional attribute extensions for the user. Each map key
+    #   corresponds to an extension name, while map values represent extension
+    #   data in `Document` type (not supported by Java V1, Go V1 and older
+    #   versions of the CLI). `aws:identitystore:enterprise` is the only
+    #   supported extension name.
+    #
     # @return [Types::CreateUserResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreateUserResponse#identity_store_id #identity_store_id} => String
@@ -701,6 +711,16 @@ module Aws::IdentityStore
     #     ],
     #     website: "SensitiveStringType",
     #     birthdate: "SensitiveStringType",
+    #     roles: [
+    #       {
+    #         value: "SensitiveStringType",
+    #         type: "SensitiveStringType",
+    #         primary: false,
+    #       },
+    #     ],
+    #     extensions: {
+    #       "ExtensionName" => "value", # value <Hash,Array,String,Numeric,Boolean,IO,Set,nil>
+    #     },
     #   })
     #
     # @example Response structure
@@ -943,6 +963,11 @@ module Aws::IdentityStore
     # @option params [required, String] :user_id
     #   The identifier for a user in the identity store.
     #
+    # @option params [Array<String>] :extensions
+    #   A collection of extension names indicating what extensions the service
+    #   should retrieve alongside other user attributes.
+    #   `aws:identitystore:enterprise` is the only supported extension name.
+    #
     # @return [Types::DescribeUserResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::DescribeUserResponse#identity_store_id #identity_store_id} => String
@@ -965,16 +990,19 @@ module Aws::IdentityStore
     #   * {Types::DescribeUserResponse#photos #photos} => Array&lt;Types::Photo&gt;
     #   * {Types::DescribeUserResponse#website #website} => String
     #   * {Types::DescribeUserResponse#birthdate #birthdate} => String
+    #   * {Types::DescribeUserResponse#roles #roles} => Array&lt;Types::Role&gt;
     #   * {Types::DescribeUserResponse#created_at #created_at} => Time
     #   * {Types::DescribeUserResponse#created_by #created_by} => String
     #   * {Types::DescribeUserResponse#updated_at #updated_at} => Time
     #   * {Types::DescribeUserResponse#updated_by #updated_by} => String
+    #   * {Types::DescribeUserResponse#extensions #extensions} => Hash&lt;String,Hash,Array,String,Numeric,Boolean&gt;
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.describe_user({
     #     identity_store_id: "IdentityStoreId", # required
     #     user_id: "ResourceId", # required
+    #     extensions: ["ExtensionName"],
     #   })
     #
     # @example Response structure
@@ -1024,10 +1052,16 @@ module Aws::IdentityStore
     #   resp.photos[0].primary #=> Boolean
     #   resp.website #=> String
     #   resp.birthdate #=> String
+    #   resp.roles #=> Array
+    #   resp.roles[0].value #=> String
+    #   resp.roles[0].type #=> String
+    #   resp.roles[0].primary #=> Boolean
     #   resp.created_at #=> Time
     #   resp.created_by #=> String
     #   resp.updated_at #=> Time
     #   resp.updated_by #=> String
+    #   resp.extensions #=> Hash
+    #   resp.extensions["ExtensionName"] #=> <Hash,Array,String,Numeric,Boolean,IO,Set,nil>
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/identitystore-2020-06-15/DescribeUser AWS API Documentation
     #
@@ -1516,6 +1550,11 @@ module Aws::IdentityStore
     #   lower case letters. This value is generated at the time that a new
     #   identity store is created.
     #
+    # @option params [Array<String>] :extensions
+    #   A collection of extension names indicating what extensions the service
+    #   should retrieve alongside other user attributes.
+    #   `aws:identitystore:enterprise` is the only supported extension name.
+    #
     # @option params [Integer] :max_results
     #   The maximum number of results to be returned per request. This
     #   parameter is used in the ` ListUsers` and `ListGroups` requests to
@@ -1544,6 +1583,7 @@ module Aws::IdentityStore
     #
     #   resp = client.list_users({
     #     identity_store_id: "IdentityStoreId", # required
+    #     extensions: ["ExtensionName"],
     #     max_results: 1,
     #     next_token: "NextToken",
     #     filters: [
@@ -1602,10 +1642,16 @@ module Aws::IdentityStore
     #   resp.users[0].photos[0].primary #=> Boolean
     #   resp.users[0].website #=> String
     #   resp.users[0].birthdate #=> String
+    #   resp.users[0].roles #=> Array
+    #   resp.users[0].roles[0].value #=> String
+    #   resp.users[0].roles[0].type #=> String
+    #   resp.users[0].roles[0].primary #=> Boolean
     #   resp.users[0].created_at #=> Time
     #   resp.users[0].created_by #=> String
     #   resp.users[0].updated_at #=> Time
     #   resp.users[0].updated_by #=> String
+    #   resp.users[0].extensions #=> Hash
+    #   resp.users[0].extensions["ExtensionName"] #=> <Hash,Array,String,Numeric,Boolean,IO,Set,nil>
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/identitystore-2020-06-15/ListUsers AWS API Documentation
@@ -1721,7 +1767,7 @@ module Aws::IdentityStore
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-identitystore'
-      context[:gem_version] = '1.61.0'
+      context[:gem_version] = '1.63.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-identitystore/client_api.rb

@@ -23,6 +23,7 @@ module Aws::IdentityStore
     AttributeOperations = Shapes::ListShape.new(name: 'AttributeOperations')
     AttributePath = Shapes::StringShape.new(name: 'AttributePath')
     AttributeValue = Shapes::DocumentShape.new(name: 'AttributeValue', document: true)
+    BooleanType = Shapes::BooleanShape.new(name: 'BooleanType')
     ConflictException = Shapes::StructureShape.new(name: 'ConflictException')
     ConflictExceptionReason = Shapes::StringShape.new(name: 'ConflictExceptionReason')
     CreateGroupMembershipRequest = Shapes::StructureShape.new(name: 'CreateGroupMembershipRequest')
@@ -47,6 +48,9 @@ module Aws::IdentityStore
     Email = Shapes::StructureShape.new(name: 'Email')
     Emails = Shapes::ListShape.new(name: 'Emails')
     ExceptionMessage = Shapes::StringShape.new(name: 'ExceptionMessage')
+    ExtensionName = Shapes::StringShape.new(name: 'ExtensionName')
+    ExtensionNames = Shapes::ListShape.new(name: 'ExtensionNames')
+    Extensions = Shapes::MapShape.new(name: 'Extensions')
     ExternalId = Shapes::StructureShape.new(name: 'ExternalId')
     ExternalIdIdentifier = Shapes::StringShape.new(name: 'ExternalIdIdentifier')
     ExternalIdIssuer = Shapes::StringShape.new(name: 'ExternalIdIssuer')
@@ -93,7 +97,8 @@ module Aws::IdentityStore
     ResourceNotFoundExceptionReason = Shapes::StringShape.new(name: 'ResourceNotFoundExceptionReason')
     ResourceType = Shapes::StringShape.new(name: 'ResourceType')
     RetryAfterSeconds = Shapes::IntegerShape.new(name: 'RetryAfterSeconds')
-    SensitiveBooleanType = Shapes::BooleanShape.new(name: 'SensitiveBooleanType')
+    Role = Shapes::StructureShape.new(name: 'Role')
+    Roles = Shapes::ListShape.new(name: 'Roles')
     SensitiveStringType = Shapes::StringShape.new(name: 'SensitiveStringType')
     ServiceQuotaExceededException = Shapes::StructureShape.new(name: 'ServiceQuotaExceededException')
     StringType = Shapes::StringShape.new(name: 'StringType')
@@ -123,7 +128,7 @@ module Aws::IdentityStore
     Address.add_member(:country, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Country"))
     Address.add_member(:formatted, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Formatted"))
     Address.add_member(:type, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Type"))
-    Address.add_member(:primary, Shapes::ShapeRef.new(shape: SensitiveBooleanType, location_name: "Primary"))
+    Address.add_member(:primary, Shapes::ShapeRef.new(shape: BooleanType, location_name: "Primary"))
     Address.struct_class = Types::Address
 
     Addresses.member = Shapes::ShapeRef.new(shape: Address)
@@ -182,6 +187,8 @@ module Aws::IdentityStore
     CreateUserRequest.add_member(:photos, Shapes::ShapeRef.new(shape: Photos, location_name: "Photos"))
     CreateUserRequest.add_member(:website, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Website"))
     CreateUserRequest.add_member(:birthdate, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Birthdate"))
+    CreateUserRequest.add_member(:roles, Shapes::ShapeRef.new(shape: Roles, location_name: "Roles"))
+    CreateUserRequest.add_member(:extensions, Shapes::ShapeRef.new(shape: Extensions, location_name: "Extensions"))
     CreateUserRequest.struct_class = Types::CreateUserRequest
 
     CreateUserResponse.add_member(:identity_store_id, Shapes::ShapeRef.new(shape: IdentityStoreId, required: true, location_name: "IdentityStoreId"))
@@ -237,6 +244,7 @@ module Aws::IdentityStore
 
     DescribeUserRequest.add_member(:identity_store_id, Shapes::ShapeRef.new(shape: IdentityStoreId, required: true, location_name: "IdentityStoreId"))
     DescribeUserRequest.add_member(:user_id, Shapes::ShapeRef.new(shape: ResourceId, required: true, location_name: "UserId"))
+    DescribeUserRequest.add_member(:extensions, Shapes::ShapeRef.new(shape: ExtensionNames, location_name: "Extensions"))
     DescribeUserRequest.struct_class = Types::DescribeUserRequest
 
     DescribeUserResponse.add_member(:identity_store_id, Shapes::ShapeRef.new(shape: IdentityStoreId, required: true, location_name: "IdentityStoreId"))
@@ -259,19 +267,26 @@ module Aws::IdentityStore
     DescribeUserResponse.add_member(:photos, Shapes::ShapeRef.new(shape: Photos, location_name: "Photos"))
     DescribeUserResponse.add_member(:website, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Website"))
     DescribeUserResponse.add_member(:birthdate, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Birthdate"))
+    DescribeUserResponse.add_member(:roles, Shapes::ShapeRef.new(shape: Roles, location_name: "Roles"))
     DescribeUserResponse.add_member(:created_at, Shapes::ShapeRef.new(shape: DateType, location_name: "CreatedAt"))
     DescribeUserResponse.add_member(:created_by, Shapes::ShapeRef.new(shape: StringType, location_name: "CreatedBy"))
     DescribeUserResponse.add_member(:updated_at, Shapes::ShapeRef.new(shape: DateType, location_name: "UpdatedAt"))
     DescribeUserResponse.add_member(:updated_by, Shapes::ShapeRef.new(shape: StringType, location_name: "UpdatedBy"))
+    DescribeUserResponse.add_member(:extensions, Shapes::ShapeRef.new(shape: Extensions, location_name: "Extensions"))
     DescribeUserResponse.struct_class = Types::DescribeUserResponse
 
     Email.add_member(:value, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Value"))
     Email.add_member(:type, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Type"))
-    Email.add_member(:primary, Shapes::ShapeRef.new(shape: SensitiveBooleanType, location_name: "Primary"))
+    Email.add_member(:primary, Shapes::ShapeRef.new(shape: BooleanType, location_name: "Primary"))
     Email.struct_class = Types::Email
 
     Emails.member = Shapes::ShapeRef.new(shape: Email)
 
+    ExtensionNames.member = Shapes::ShapeRef.new(shape: ExtensionName)
+
+    Extensions.key = Shapes::ShapeRef.new(shape: ExtensionName)
+    Extensions.value = Shapes::ShapeRef.new(shape: AttributeValue)
+
     ExternalId.add_member(:issuer, Shapes::ShapeRef.new(shape: ExternalIdIssuer, required: true, location_name: "Issuer"))
     ExternalId.add_member(:id, Shapes::ShapeRef.new(shape: ExternalIdIdentifier, required: true, location_name: "Id"))
     ExternalId.struct_class = Types::ExternalId
@@ -334,7 +349,7 @@ module Aws::IdentityStore
 
     GroupMembershipExistenceResult.add_member(:group_id, Shapes::ShapeRef.new(shape: ResourceId, location_name: "GroupId"))
     GroupMembershipExistenceResult.add_member(:member_id, Shapes::ShapeRef.new(shape: MemberId, location_name: "MemberId"))
-    GroupMembershipExistenceResult.add_member(:membership_exists, Shapes::ShapeRef.new(shape: SensitiveBooleanType, location_name: "MembershipExists"))
+    GroupMembershipExistenceResult.add_member(:membership_exists, Shapes::ShapeRef.new(shape: BooleanType, location_name: "MembershipExists"))
     GroupMembershipExistenceResult.struct_class = Types::GroupMembershipExistenceResult
 
     GroupMembershipExistenceResults.member = Shapes::ShapeRef.new(shape: GroupMembershipExistenceResult)
@@ -387,6 +402,7 @@ module Aws::IdentityStore
     ListGroupsResponse.struct_class = Types::ListGroupsResponse
 
     ListUsersRequest.add_member(:identity_store_id, Shapes::ShapeRef.new(shape: IdentityStoreId, required: true, location_name: "IdentityStoreId"))
+    ListUsersRequest.add_member(:extensions, Shapes::ShapeRef.new(shape: ExtensionNames, location_name: "Extensions"))
     ListUsersRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: MaxResults, location_name: "MaxResults", metadata: {"box" => true}))
     ListUsersRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location_name: "NextToken"))
     ListUsersRequest.add_member(:filters, Shapes::ShapeRef.new(shape: Filters, deprecated: true, location_name: "Filters", metadata: {"deprecatedMessage" => "Using filters with ListUsers API is deprecated, please use GetGroupId API instead."}))
@@ -412,7 +428,7 @@ module Aws::IdentityStore
 
     PhoneNumber.add_member(:value, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Value"))
     PhoneNumber.add_member(:type, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Type"))
-    PhoneNumber.add_member(:primary, Shapes::ShapeRef.new(shape: SensitiveBooleanType, location_name: "Primary"))
+    PhoneNumber.add_member(:primary, Shapes::ShapeRef.new(shape: BooleanType, location_name: "Primary"))
     PhoneNumber.struct_class = Types::PhoneNumber
 
     PhoneNumbers.member = Shapes::ShapeRef.new(shape: PhoneNumber)
@@ -420,7 +436,7 @@ module Aws::IdentityStore
     Photo.add_member(:value, Shapes::ShapeRef.new(shape: SensitiveStringType, required: true, location_name: "Value"))
     Photo.add_member(:type, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Type"))
     Photo.add_member(:display, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Display"))
-    Photo.add_member(:primary, Shapes::ShapeRef.new(shape: SensitiveBooleanType, location_name: "Primary"))
+    Photo.add_member(:primary, Shapes::ShapeRef.new(shape: BooleanType, location_name: "Primary"))
     Photo.struct_class = Types::Photo
 
     Photos.member = Shapes::ShapeRef.new(shape: Photo)
@@ -432,6 +448,13 @@ module Aws::IdentityStore
     ResourceNotFoundException.add_member(:request_id, Shapes::ShapeRef.new(shape: RequestId, location_name: "RequestId"))
     ResourceNotFoundException.struct_class = Types::ResourceNotFoundException
 
+    Role.add_member(:value, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Value"))
+    Role.add_member(:type, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Type"))
+    Role.add_member(:primary, Shapes::ShapeRef.new(shape: BooleanType, location_name: "Primary"))
+    Role.struct_class = Types::Role
+
+    Roles.member = Shapes::ShapeRef.new(shape: Role)
+
     ServiceQuotaExceededException.add_member(:message, Shapes::ShapeRef.new(shape: ExceptionMessage, location_name: "Message"))
     ServiceQuotaExceededException.add_member(:request_id, Shapes::ShapeRef.new(shape: RequestId, location_name: "RequestId"))
     ServiceQuotaExceededException.struct_class = Types::ServiceQuotaExceededException
@@ -480,10 +503,12 @@ module Aws::IdentityStore
     User.add_member(:photos, Shapes::ShapeRef.new(shape: Photos, location_name: "Photos"))
     User.add_member(:website, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Website"))
     User.add_member(:birthdate, Shapes::ShapeRef.new(shape: SensitiveStringType, location_name: "Birthdate"))
+    User.add_member(:roles, Shapes::ShapeRef.new(shape: Roles, location_name: "Roles"))
     User.add_member(:created_at, Shapes::ShapeRef.new(shape: DateType, location_name: "CreatedAt"))
     User.add_member(:created_by, Shapes::ShapeRef.new(shape: StringType, location_name: "CreatedBy"))
     User.add_member(:updated_at, Shapes::ShapeRef.new(shape: DateType, location_name: "UpdatedAt"))
     User.add_member(:updated_by, Shapes::ShapeRef.new(shape: StringType, location_name: "UpdatedBy"))
+    User.add_member(:extensions, Shapes::ShapeRef.new(shape: Extensions, location_name: "Extensions"))
     User.struct_class = Types::User
 
     Users.member = Shapes::ShapeRef.new(shape: User)

data/lib/aws-sdk-identitystore/types.rb

@@ -84,7 +84,7 @@ module Aws::IdentityStore
       :formatted,
       :type,
       :primary)
-      SENSITIVE = [:street_address, :locality, :region, :postal_code, :country, :formatted, :type, :primary]
+      SENSITIVE = [:street_address, :locality, :region, :postal_code, :country, :formatted, :type]
       include Aws::Structure
     end
 
@@ -161,14 +161,9 @@ module Aws::IdentityStore
     #   @return [String]
     #
     # @!attribute [rw] reason
-    #   This request cannot be completed for one of the following reasons:
-    #
-    #   * Performing the requested operation would violate an existing
-    #     uniqueness claim in the identity store. Resolve the conflict
-    #     before retrying this request.
-    #
-    #   * The requested resource was being concurrently modified by another
-    #     request.
+    #   Indicates the reason for a conflict error when the service is unable
+    #   to access a Customer Managed KMS key. For non-KMS permission errors,
+    #   this field is not included.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/identitystore-2020-06-15/ConflictException AWS API Documentation
@@ -353,6 +348,18 @@ module Aws::IdentityStore
     #   standard date format for storing personal information.
     #   @return [String]
     #
+    # @!attribute [rw] roles
+    #   A list of `Role` objects containing roles associated with the user.
+    #   @return [Array<Types::Role>]
+    #
+    # @!attribute [rw] extensions
+    #   A map with additional attribute extensions for the user. Each map
+    #   key corresponds to an extension name, while map values represent
+    #   extension data in `Document` type (not supported by Java V1, Go V1
+    #   and older versions of the CLI). `aws:identitystore:enterprise` is
+    #   the only supported extension name.
+    #   @return [Hash<String,Hash,Array,String,Numeric,Boolean>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/identitystore-2020-06-15/CreateUserRequest AWS API Documentation
     #
     class CreateUserRequest < Struct.new(
@@ -372,7 +379,9 @@ module Aws::IdentityStore
       :timezone,
       :photos,
       :website,
-      :birthdate)
+      :birthdate,
+      :roles,
+      :extensions)
       SENSITIVE = [:user_name, :display_name, :nick_name, :profile_url, :user_type, :title, :preferred_language, :locale, :timezone, :website, :birthdate]
       include Aws::Structure
     end
@@ -614,11 +623,18 @@ module Aws::IdentityStore
     #   The identifier for a user in the identity store.
     #   @return [String]
     #
+    # @!attribute [rw] extensions
+    #   A collection of extension names indicating what extensions the
+    #   service should retrieve alongside other user attributes.
+    #   `aws:identitystore:enterprise` is the only supported extension name.
+    #   @return [Array<String>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/identitystore-2020-06-15/DescribeUserRequest AWS API Documentation
     #
     class DescribeUserRequest < Struct.new(
       :identity_store_id,
-      :user_id)
+      :user_id,
+      :extensions)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -712,6 +728,10 @@ module Aws::IdentityStore
     #   stored birthdate information for the user.
     #   @return [String]
     #
+    # @!attribute [rw] roles
+    #   The roles of the user.
+    #   @return [Array<Types::Role>]
+    #
     # @!attribute [rw] created_at
     #   The date and time the user was created.
     #   @return [Time]
@@ -728,6 +748,11 @@ module Aws::IdentityStore
     #   The identifier of the user or system that last updated the user.
     #   @return [String]
     #
+    # @!attribute [rw] extensions
+    #   A map of explicitly requested attribute extensions associated with
+    #   the user. Not populated if the user has no requested extensions.
+    #   @return [Hash<String,Hash,Array,String,Numeric,Boolean>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/identitystore-2020-06-15/DescribeUserResponse AWS API Documentation
     #
     class DescribeUserResponse < Struct.new(
@@ -751,10 +776,12 @@ module Aws::IdentityStore
       :photos,
       :website,
       :birthdate,
+      :roles,
       :created_at,
       :created_by,
       :updated_at,
-      :updated_by)
+      :updated_by,
+      :extensions)
       SENSITIVE = [:user_name, :display_name, :nick_name, :profile_url, :user_type, :title, :preferred_language, :locale, :timezone, :website, :birthdate]
       include Aws::Structure
     end
@@ -781,7 +808,7 @@ module Aws::IdentityStore
       :value,
       :type,
       :primary)
-      SENSITIVE = [:value, :type, :primary]
+      SENSITIVE = [:value, :type]
       include Aws::Structure
     end
 
@@ -1088,7 +1115,7 @@ module Aws::IdentityStore
       :group_id,
       :member_id,
       :membership_exists)
-      SENSITIVE = [:membership_exists]
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1337,6 +1364,12 @@ module Aws::IdentityStore
     #   new identity store is created.
     #   @return [String]
     #
+    # @!attribute [rw] extensions
+    #   A collection of extension names indicating what extensions the
+    #   service should retrieve alongside other user attributes.
+    #   `aws:identitystore:enterprise` is the only supported extension name.
+    #   @return [Array<String>]
+    #
     # @!attribute [rw] max_results
     #   The maximum number of results to be returned per request. This
     #   parameter is used in the ` ListUsers` and `ListGroups` requests to
@@ -1361,6 +1394,7 @@ module Aws::IdentityStore
     #
     class ListUsersRequest < Struct.new(
       :identity_store_id,
+      :extensions,
       :max_results,
       :next_token,
       :filters)
@@ -1475,7 +1509,7 @@ module Aws::IdentityStore
       :value,
       :type,
       :primary)
-      SENSITIVE = [:value, :type, :primary]
+      SENSITIVE = [:value, :type]
       include Aws::Structure
     end
 
@@ -1510,7 +1544,7 @@ module Aws::IdentityStore
       :type,
       :display,
       :primary)
-      SENSITIVE = [:value, :type, :display, :primary]
+      SENSITIVE = [:value, :type, :display]
       include Aws::Structure
     end
 
@@ -1560,6 +1594,31 @@ module Aws::IdentityStore
       include Aws::Structure
     end
 
+    # The role associated with the user.
+    #
+    # @!attribute [rw] value
+    #   A string containing a role name. For example, "Researcher."
+    #   @return [String]
+    #
+    # @!attribute [rw] type
+    #   A string representing the type of role. For example, "Work."
+    #   @return [String]
+    #
+    # @!attribute [rw] primary
+    #   A Boolean value representing whether this is the primary role for
+    #   the associated resource.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/identitystore-2020-06-15/Role AWS API Documentation
+    #
+    class Role < Struct.new(
+      :value,
+      :type,
+      :primary)
+      SENSITIVE = [:value, :type]
+      include Aws::Structure
+    end
+
     # The request would cause the number of users or groups in the identity
     # store to exceed the maximum allowed.
     #
@@ -1804,6 +1863,10 @@ module Aws::IdentityStore
     #   personal birthdate information for the user.
     #   @return [String]
     #
+    # @!attribute [rw] roles
+    #   A list of `Role` objects containing roles associated with the user.
+    #   @return [Array<Types::Role>]
+    #
     # @!attribute [rw] created_at
     #   The date and time the user was created.
     #   @return [Time]
@@ -1820,6 +1883,11 @@ module Aws::IdentityStore
     #   The identifier of the user or system that last updated the user.
     #   @return [String]
     #
+    # @!attribute [rw] extensions
+    #   A map of explicitly requested attribute extensions associated with
+    #   the user. Not populated if the user has no requested extensions.
+    #   @return [Hash<String,Hash,Array,String,Numeric,Boolean>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/identitystore-2020-06-15/User AWS API Documentation
     #
     class User < Struct.new(
@@ -1843,10 +1911,12 @@ module Aws::IdentityStore
       :photos,
       :website,
       :birthdate,
+      :roles,
       :created_at,
       :created_by,
       :updated_at,
-      :updated_by)
+      :updated_by,
+      :extensions)
       SENSITIVE = [:user_name, :display_name, :nick_name, :profile_url, :user_type, :title, :preferred_language, :locale, :timezone, :website, :birthdate]
       include Aws::Structure
     end

data/lib/aws-sdk-identitystore.rb

@@ -54,7 +54,7 @@ module Aws::IdentityStore
   autoload :EndpointProvider, 'aws-sdk-identitystore/endpoint_provider'
   autoload :Endpoints, 'aws-sdk-identitystore/endpoints'
 
-  GEM_VERSION = '1.61.0'
+  GEM_VERSION = '1.63.0'
 
 end
 

data/sig/client.rbs

@@ -167,7 +167,15 @@ module Aws
                            },
                          ],
                          ?website: ::String,
-                         ?birthdate: ::String
+                         ?birthdate: ::String,
+                         ?roles: Array[
+                           {
+                             value: ::String?,
+                             type: ::String?,
+                             primary: bool?
+                           },
+                         ],
+                         ?extensions: Hash[::String, untyped]
                        ) -> _CreateUserResponseSuccess
                      | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateUserResponseSuccess
 
@@ -260,15 +268,18 @@ module Aws
         def photos: () -> ::Array[Types::Photo]
         def website: () -> ::String
         def birthdate: () -> ::String
+        def roles: () -> ::Array[Types::Role]
         def created_at: () -> ::Time
         def created_by: () -> ::String
         def updated_at: () -> ::Time
         def updated_by: () -> ::String
+        def extensions: () -> ::Hash[::String, untyped]
       end
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IdentityStore/Client.html#describe_user-instance_method
       def describe_user: (
                            identity_store_id: ::String,
-                           user_id: ::String
+                           user_id: ::String,
+                           ?extensions: Array[::String]
                          ) -> _DescribeUserResponseSuccess
                        | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeUserResponseSuccess
 
@@ -400,6 +411,7 @@ module Aws
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/IdentityStore/Client.html#list_users-instance_method
       def list_users: (
                         identity_store_id: ::String,
+                        ?extensions: Array[::String],
                         ?max_results: ::Integer,
                         ?next_token: ::String,
                         ?filters: Array[

data/sig/types.rbs

@@ -24,7 +24,7 @@ module Aws::IdentityStore
       attr_accessor formatted: ::String
       attr_accessor type: ::String
       attr_accessor primary: bool
-      SENSITIVE: [:street_address, :locality, :region, :postal_code, :country, :formatted, :type, :primary]
+      SENSITIVE: [:street_address, :locality, :region, :postal_code, :country, :formatted, :type]
     end
 
     class AlternateIdentifier
@@ -98,6 +98,8 @@ module Aws::IdentityStore
       attr_accessor photos: ::Array[Types::Photo]
       attr_accessor website: ::String
       attr_accessor birthdate: ::String
+      attr_accessor roles: ::Array[Types::Role]
+      attr_accessor extensions: ::Hash[::String, untyped]
       SENSITIVE: [:user_name, :display_name, :nick_name, :profile_url, :user_type, :title, :preferred_language, :locale, :timezone, :website, :birthdate]
     end
 
@@ -174,6 +176,7 @@ module Aws::IdentityStore
     class DescribeUserRequest
       attr_accessor identity_store_id: ::String
       attr_accessor user_id: ::String
+      attr_accessor extensions: ::Array[::String]
       SENSITIVE: []
     end
 
@@ -198,10 +201,12 @@ module Aws::IdentityStore
       attr_accessor photos: ::Array[Types::Photo]
       attr_accessor website: ::String
       attr_accessor birthdate: ::String
+      attr_accessor roles: ::Array[Types::Role]
       attr_accessor created_at: ::Time
       attr_accessor created_by: ::String
       attr_accessor updated_at: ::Time
       attr_accessor updated_by: ::String
+      attr_accessor extensions: ::Hash[::String, untyped]
       SENSITIVE: [:user_name, :display_name, :nick_name, :profile_url, :user_type, :title, :preferred_language, :locale, :timezone, :website, :birthdate]
     end
 
@@ -209,7 +214,7 @@ module Aws::IdentityStore
       attr_accessor value: ::String
       attr_accessor type: ::String
       attr_accessor primary: bool
-      SENSITIVE: [:value, :type, :primary]
+      SENSITIVE: [:value, :type]
     end
 
     class ExternalId
@@ -290,7 +295,7 @@ module Aws::IdentityStore
       attr_accessor group_id: ::String
       attr_accessor member_id: Types::MemberId
       attr_accessor membership_exists: bool
-      SENSITIVE: [:membership_exists]
+      SENSITIVE: []
     end
 
     class InternalServerException
@@ -356,6 +361,7 @@ module Aws::IdentityStore
 
     class ListUsersRequest
       attr_accessor identity_store_id: ::String
+      attr_accessor extensions: ::Array[::String]
       attr_accessor max_results: ::Integer
       attr_accessor next_token: ::String
       attr_accessor filters: ::Array[Types::Filter]
@@ -393,7 +399,7 @@ module Aws::IdentityStore
       attr_accessor value: ::String
       attr_accessor type: ::String
       attr_accessor primary: bool
-      SENSITIVE: [:value, :type, :primary]
+      SENSITIVE: [:value, :type]
     end
 
     class Photo
@@ -401,11 +407,11 @@ module Aws::IdentityStore
       attr_accessor type: ::String
       attr_accessor display: ::String
       attr_accessor primary: bool
-      SENSITIVE: [:value, :type, :display, :primary]
+      SENSITIVE: [:value, :type, :display]
     end
 
     class ResourceNotFoundException
-      attr_accessor resource_type: ("GROUP" | "USER" | "IDENTITY_STORE" | "GROUP_MEMBERSHIP")
+      attr_accessor resource_type: ("GROUP" | "USER" | "IDENTITY_STORE" | "GROUP_MEMBERSHIP" | "RESOURCE_POLICY")
       attr_accessor resource_id: ::String
       attr_accessor reason: ("KMS_KEY_NOT_FOUND")
       attr_accessor message: ::String
@@ -413,6 +419,13 @@ module Aws::IdentityStore
       SENSITIVE: []
     end
 
+    class Role
+      attr_accessor value: ::String
+      attr_accessor type: ::String
+      attr_accessor primary: bool
+      SENSITIVE: [:value, :type]
+    end
+
     class ServiceQuotaExceededException
       attr_accessor message: ::String
       attr_accessor request_id: ::String
@@ -474,10 +487,12 @@ module Aws::IdentityStore
       attr_accessor photos: ::Array[Types::Photo]
       attr_accessor website: ::String
       attr_accessor birthdate: ::String
+      attr_accessor roles: ::Array[Types::Role]
       attr_accessor created_at: ::Time
       attr_accessor created_by: ::String
       attr_accessor updated_at: ::Time
       attr_accessor updated_by: ::String
+      attr_accessor extensions: ::Hash[::String, untyped]
       SENSITIVE: [:user_name, :display_name, :nick_name, :profile_url, :user_type, :title, :preferred_language, :locale, :timezone, :website, :birthdate]
     end
 

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-identitystore
 version: !ruby/object:Gem::Version
-  version: 1.61.0
+  version: 1.63.0
 platform: ruby
 authors:
 - Amazon Web Services