aws-sdk-iot 1.52.0 → 1.57.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 34d0cf141a1d23ed3d624ae3c0368689384abb41d3962d9d1087669ff041a084
-  data.tar.gz: e7383faa6d760e4192b30611558ea43ac22b18e453fb10458b2658fca7074e25
+  metadata.gz: '09ba3831c59952f57554b88a823843b2e5f70adc288b26190219e75c57fbc756'
+  data.tar.gz: a02b870903972779934140eb34e8e785a8910bdc49e1fdb66cbaa771c4ceb4c2
 SHA512:
-  metadata.gz: 6e2010a9c15f8375419e6fe60e33c41c15c2396751e6f0f70f5aa72b845a6aefc5d237a67075aa43b05a22c7e5c67ffb275a53b48337ba2d480a7b4a9bf75f53
-  data.tar.gz: 2beb536daaed0840db6e24ea469288e7635b2be6e29b24b1db070c967ba451f3312fa27b782b4e3723dc7e508f69840e9c4393b7f92ff07be15c03fe34b5bfaf
+  metadata.gz: 500cfe2efd2ca2c4aeb08ff2c255a503677c4e563bbeb83d4e4d463bed2adf6a5f0d1eb9de6cfb7a0499e41edf759634fee45f2dbf202cdd641de830367c44c3
+  data.tar.gz: 3988a7884b709d5288236aee40aef9a5c0115bd792ea5df4bab6227a45de74302fe040a8595f1eef792f9e66addde0fc59da29118ab464f2447f4a73baa52760

data/lib/aws-sdk-iot.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:
@@ -5,6 +7,7 @@
 #
 # WARNING ABOUT GENERATED CODE
 
+
 require 'aws-sdk-core'
 require 'aws-sigv4'
 
@@ -42,9 +45,9 @@ require_relative 'aws-sdk-iot/customizations'
 #
 # See {Errors} for more information.
 #
-# @service
+# @!group service
 module Aws::IoT
 
-  GEM_VERSION = '1.52.0'
+  GEM_VERSION = '1.57.0'
 
 end

data/lib/aws-sdk-iot/client.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:
@@ -83,13 +85,28 @@ module Aws::IoT
     #     * `Aws::Credentials` - Used for configuring static, non-refreshing
     #       credentials.
     #
+    #     * `Aws::SharedCredentials` - Used for loading static credentials from a
+    #       shared file, such as `~/.aws/config`.
+    #
+    #     * `Aws::AssumeRoleCredentials` - Used when you need to assume a role.
+    #
+    #     * `Aws::AssumeRoleWebIdentityCredentials` - Used when you need to
+    #       assume a role after providing credentials via the web.
+    #
+    #     * `Aws::SSOCredentials` - Used for loading credentials from AWS SSO using an
+    #       access token generated from `aws login`.
+    #
+    #     * `Aws::ProcessCredentials` - Used for loading credentials from a
+    #       process that outputs to stdout.
+    #
     #     * `Aws::InstanceProfileCredentials` - Used for loading credentials
     #       from an EC2 IMDS on an EC2 instance.
     #
-    #     * `Aws::SharedCredentials` - Used for loading credentials from a
-    #       shared file, such as `~/.aws/config`.
+    #     * `Aws::ECSCredentials` - Used for loading credentials from
+    #       instances running in ECS.
     #
-    #     * `Aws::AssumeRoleCredentials` - Used when you need to assume a role.
+    #     * `Aws::CognitoIdentityCredentials` - Used for loading credentials
+    #       from the Cognito Identity service.
     #
     #     When `:credentials` are not configured directly, the following
     #     locations will be searched for credentials:
@@ -99,10 +116,10 @@ module Aws::IoT
     #     * ENV['AWS_ACCESS_KEY_ID'], ENV['AWS_SECRET_ACCESS_KEY']
     #     * `~/.aws/credentials`
     #     * `~/.aws/config`
-    #     * EC2 IMDS instance profile - When used by default, the timeouts are
-    #       very aggressive. Construct and pass an instance of
-    #       `Aws::InstanceProfileCredentails` to enable retries and extended
-    #       timeouts.
+    #     * EC2/ECS IMDS instance profile - When used by default, the timeouts
+    #       are very aggressive. Construct and pass an instance of
+    #       `Aws::InstanceProfileCredentails` or `Aws::ECSCredentials` to
+    #       enable retries and extended timeouts.
     #
     #   @option options [required, String] :region
     #     The AWS region to connect to.  The configured `:region` is
@@ -783,6 +800,64 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Creates a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @option params [Time,DateTime,Date,Integer,String] :expiration_date
+    #   The epoch timestamp in seconds at which this suppression expires.
+    #
+    # @option params [Boolean] :suppress_indefinitely
+    #   Indicates whether a suppression should exist indefinitely or not.
+    #
+    # @option params [String] :description
+    #   The description of the audit suppression.
+    #
+    # @option params [required, String] :client_request_token
+    #   The epoch timestamp in seconds at which this suppression expires.
+    #
+    #   **A suitable default value is auto-generated.** You should normally
+    #   not need to pass this option.**
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.create_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #     expiration_date: Time.now,
+    #     suppress_indefinitely: false,
+    #     description: "AuditDescription",
+    #     client_request_token: "ClientRequestToken", # required
+    #   })
+    #
+    # @overload create_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def create_audit_suppression(params = {}, options = {})
+      req = build_request(:create_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Creates an authorizer.
     #
     # @option params [required, String] :authorizer_name
@@ -1380,8 +1455,14 @@ module Aws::IoT
     end
 
     # Defines an action that can be applied to audit findings by using
-    # StartAuditMitigationActionsTask. Each mitigation action can apply only
-    # one type of change.
+    # StartAuditMitigationActionsTask. Only certain types of mitigation
+    # actions can be applied to specific check names. For more information,
+    # see [Mitigation actions][1]. Each mitigation action can apply only one
+    # type of change.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/iot/latest/developerguide/device-defender-mitigation-actions.html
     #
     # @option params [required, String] :action_name
     #   A friendly name for the action. Choose a friendly name that accurately
@@ -2735,6 +2816,45 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Deletes a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.delete_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #   })
+    #
+    # @overload delete_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def delete_audit_suppression(params = {}, options = {})
+      req = build_request(:delete_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Deletes an authorizer.
     #
     # @option params [required, String] :authorizer_name
@@ -3500,6 +3620,7 @@ module Aws::IoT
     #   resp.finding.related_resources[0].additional_info["String"] #=> String
     #   resp.finding.reason_for_non_compliance #=> String
     #   resp.finding.reason_for_non_compliance_code #=> String
+    #   resp.finding.is_suppressed #=> Boolean
     #
     # @overload describe_audit_finding(params = {})
     # @param [Hash] params ({})
@@ -3573,6 +3694,67 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Gets information about a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @return [Types::DescribeAuditSuppressionResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::DescribeAuditSuppressionResponse#check_name #check_name} => String
+    #   * {Types::DescribeAuditSuppressionResponse#resource_identifier #resource_identifier} => Types::ResourceIdentifier
+    #   * {Types::DescribeAuditSuppressionResponse#expiration_date #expiration_date} => Time
+    #   * {Types::DescribeAuditSuppressionResponse#suppress_indefinitely #suppress_indefinitely} => Boolean
+    #   * {Types::DescribeAuditSuppressionResponse#description #description} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.describe_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.check_name #=> String
+    #   resp.resource_identifier.device_certificate_id #=> String
+    #   resp.resource_identifier.ca_certificate_id #=> String
+    #   resp.resource_identifier.cognito_identity_pool_id #=> String
+    #   resp.resource_identifier.client_id #=> String
+    #   resp.resource_identifier.policy_version_identifier.policy_name #=> String
+    #   resp.resource_identifier.policy_version_identifier.policy_version_id #=> String
+    #   resp.resource_identifier.account #=> String
+    #   resp.resource_identifier.iam_role_arn #=> String
+    #   resp.resource_identifier.role_alias_arn #=> String
+    #   resp.expiration_date #=> Time
+    #   resp.suppress_indefinitely #=> Boolean
+    #   resp.description #=> String
+    #
+    # @overload describe_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def describe_audit_suppression(params = {}, options = {})
+      req = build_request(:describe_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Gets information about a Device Defender audit.
     #
     # @option params [required, String] :task_id
@@ -3611,6 +3793,7 @@ module Aws::IoT
     #   resp.audit_details["AuditCheckName"].check_compliant #=> Boolean
     #   resp.audit_details["AuditCheckName"].total_resources_count #=> Integer
     #   resp.audit_details["AuditCheckName"].non_compliant_resources_count #=> Integer
+    #   resp.audit_details["AuditCheckName"].suppressed_non_compliant_resources_count #=> Integer
     #   resp.audit_details["AuditCheckName"].error_code #=> String
     #   resp.audit_details["AuditCheckName"].message #=> String
     #
@@ -4612,8 +4795,11 @@ module Aws::IoT
     # @option params [required, String] :principal
     #   The principal.
     #
-    #   If the principal is a certificate, specify the certificate ARN. If the
-    #   principal is an Amazon Cognito identity, specify the identity ID.
+    #   Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
@@ -4773,7 +4959,11 @@ module Aws::IoT
     # device gateway.
     #
     # @option params [String] :principal
-    #   The principal.
+    #   The principal. Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [String] :cognito_identity_pool_id
     #   The Cognito identity pool ID.
@@ -5430,6 +5620,8 @@ module Aws::IoT
     #   * {Types::ListActiveViolationsResponse#active_violations #active_violations} => Array<Types::ActiveViolation>
     #   * {Types::ListActiveViolationsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_active_violations({
@@ -5478,7 +5670,12 @@ module Aws::IoT
     # Lists the policies attached to the specified thing group.
     #
     # @option params [required, String] :target
-    #   The group or principal for which the policies will be listed.
+    #   The group or principal for which the policies will be listed. Valid
+    #   principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [Boolean] :recursive
     #   When true, recursively list attached policies.
@@ -5494,6 +5691,8 @@ module Aws::IoT
     #   * {Types::ListAttachedPoliciesResponse#policies #policies} => Array<Types::Policy>
     #   * {Types::ListAttachedPoliciesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_attached_policies({
@@ -5549,11 +5748,19 @@ module Aws::IoT
     #   You must specify either the startTime and endTime or the taskId, but
     #   not both.
     #
+    # @option params [Boolean] :list_suppressed_findings
+    #   Boolean flag indicating whether only the suppressed findings or the
+    #   unsuppressed findings should be listed. If this parameter isn't
+    #   provided, the response will list both suppressed and unsuppressed
+    #   findings.
+    #
     # @return [Types::ListAuditFindingsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListAuditFindingsResponse#findings #findings} => Array<Types::AuditFinding>
     #   * {Types::ListAuditFindingsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_findings({
@@ -5576,6 +5783,7 @@ module Aws::IoT
     #     next_token: "NextToken",
     #     start_time: Time.now,
     #     end_time: Time.now,
+    #     list_suppressed_findings: false,
     #   })
     #
     # @example Response structure
@@ -5614,6 +5822,7 @@ module Aws::IoT
     #   resp.findings[0].related_resources[0].additional_info["String"] #=> String
     #   resp.findings[0].reason_for_non_compliance #=> String
     #   resp.findings[0].reason_for_non_compliance_code #=> String
+    #   resp.findings[0].is_suppressed #=> Boolean
     #   resp.next_token #=> String
     #
     # @overload list_audit_findings(params = {})
@@ -5648,6 +5857,8 @@ module Aws::IoT
     #   * {Types::ListAuditMitigationActionsExecutionsResponse#actions_executions #actions_executions} => Array<Types::AuditMitigationActionExecutionMetadata>
     #   * {Types::ListAuditMitigationActionsExecutionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_mitigation_actions_executions({
@@ -5714,6 +5925,8 @@ module Aws::IoT
     #   * {Types::ListAuditMitigationActionsTasksResponse#tasks #tasks} => Array<Types::AuditMitigationActionsTaskMetadata>
     #   * {Types::ListAuditMitigationActionsTasksResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_mitigation_actions_tasks({
@@ -5741,6 +5954,83 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Lists your Device Defender audit listings.
+    #
+    # @option params [String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @option params [Boolean] :ascending_order
+    #   Determines whether suppressions are listed in ascending order by
+    #   expiration date or not. If parameter isn't provided,
+    #   `ascendingOrder=true`.
+    #
+    # @option params [String] :next_token
+    #   The token for the next set of results.
+    #
+    # @option params [Integer] :max_results
+    #   The maximum number of results to return at one time. The default is
+    #   25.
+    #
+    # @return [Types::ListAuditSuppressionsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::ListAuditSuppressionsResponse#suppressions #suppressions} => Array<Types::AuditSuppression>
+    #   * {Types::ListAuditSuppressionsResponse#next_token #next_token} => String
+    #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_audit_suppressions({
+    #     check_name: "AuditCheckName",
+    #     resource_identifier: {
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #     ascending_order: false,
+    #     next_token: "NextToken",
+    #     max_results: 1,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.suppressions #=> Array
+    #   resp.suppressions[0].check_name #=> String
+    #   resp.suppressions[0].resource_identifier.device_certificate_id #=> String
+    #   resp.suppressions[0].resource_identifier.ca_certificate_id #=> String
+    #   resp.suppressions[0].resource_identifier.cognito_identity_pool_id #=> String
+    #   resp.suppressions[0].resource_identifier.client_id #=> String
+    #   resp.suppressions[0].resource_identifier.policy_version_identifier.policy_name #=> String
+    #   resp.suppressions[0].resource_identifier.policy_version_identifier.policy_version_id #=> String
+    #   resp.suppressions[0].resource_identifier.account #=> String
+    #   resp.suppressions[0].resource_identifier.iam_role_arn #=> String
+    #   resp.suppressions[0].resource_identifier.role_alias_arn #=> String
+    #   resp.suppressions[0].expiration_date #=> Time
+    #   resp.suppressions[0].suppress_indefinitely #=> Boolean
+    #   resp.suppressions[0].description #=> String
+    #   resp.next_token #=> String
+    #
+    # @overload list_audit_suppressions(params = {})
+    # @param [Hash] params ({})
+    def list_audit_suppressions(params = {}, options = {})
+      req = build_request(:list_audit_suppressions, params)
+      req.send_request(options)
+    end
+
     # Lists the Device Defender audits that have been performed during a
     # given time period.
     #
@@ -5773,6 +6063,8 @@ module Aws::IoT
     #   * {Types::ListAuditTasksResponse#tasks #tasks} => Array<Types::AuditTaskMetadata>
     #   * {Types::ListAuditTasksResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_tasks({
@@ -5818,6 +6110,8 @@ module Aws::IoT
     #   * {Types::ListAuthorizersResponse#authorizers #authorizers} => Array<Types::AuthorizerSummary>
     #   * {Types::ListAuthorizersResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_authorizers({
@@ -5857,6 +6151,8 @@ module Aws::IoT
     #   * {Types::ListBillingGroupsResponse#billing_groups #billing_groups} => Array<Types::GroupNameAndArn>
     #   * {Types::ListBillingGroupsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_billing_groups({
@@ -5898,6 +6194,8 @@ module Aws::IoT
     #   * {Types::ListCACertificatesResponse#certificates #certificates} => Array<Types::CACertificate>
     #   * {Types::ListCACertificatesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_ca_certificates({
@@ -5942,6 +6240,8 @@ module Aws::IoT
     #   * {Types::ListCertificatesResponse#certificates #certificates} => Array<Types::Certificate>
     #   * {Types::ListCertificatesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_certificates({
@@ -5988,6 +6288,8 @@ module Aws::IoT
     #   * {Types::ListCertificatesByCAResponse#certificates #certificates} => Array<Types::Certificate>
     #   * {Types::ListCertificatesByCAResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_certificates_by_ca({
@@ -6027,6 +6329,8 @@ module Aws::IoT
     #   * {Types::ListDimensionsResponse#dimension_names #dimension_names} => Array<String>
     #   * {Types::ListDimensionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_dimensions({
@@ -6069,6 +6373,8 @@ module Aws::IoT
     #   * {Types::ListDomainConfigurationsResponse#domain_configurations #domain_configurations} => Array<Types::DomainConfigurationSummary>
     #   * {Types::ListDomainConfigurationsResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_domain_configurations({
@@ -6106,6 +6412,8 @@ module Aws::IoT
     #   * {Types::ListIndicesResponse#index_names #index_names} => Array<String>
     #   * {Types::ListIndicesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_indices({
@@ -6145,6 +6453,8 @@ module Aws::IoT
     #   * {Types::ListJobExecutionsForJobResponse#execution_summaries #execution_summaries} => Array<Types::JobExecutionSummaryForJob>
     #   * {Types::ListJobExecutionsForJobResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_job_executions_for_job({
@@ -6192,6 +6502,8 @@ module Aws::IoT
     #   * {Types::ListJobExecutionsForThingResponse#execution_summaries #execution_summaries} => Array<Types::JobExecutionSummaryForThing>
     #   * {Types::ListJobExecutionsForThingResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_job_executions_for_thing({
@@ -6252,6 +6564,8 @@ module Aws::IoT
     #   * {Types::ListJobsResponse#jobs #jobs} => Array<Types::JobSummary>
     #   * {Types::ListJobsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_jobs({
@@ -6302,6 +6616,8 @@ module Aws::IoT
     #   * {Types::ListMitigationActionsResponse#action_identifiers #action_identifiers} => Array<Types::MitigationActionIdentifier>
     #   * {Types::ListMitigationActionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_mitigation_actions({
@@ -6341,6 +6657,8 @@ module Aws::IoT
     #   * {Types::ListOTAUpdatesResponse#ota_updates #ota_updates} => Array<Types::OTAUpdateSummary>
     #   * {Types::ListOTAUpdatesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_ota_updates({
@@ -6381,6 +6699,8 @@ module Aws::IoT
     #   * {Types::ListOutgoingCertificatesResponse#outgoing_certificates #outgoing_certificates} => Array<Types::OutgoingCertificate>
     #   * {Types::ListOutgoingCertificatesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_outgoing_certificates({
@@ -6424,6 +6744,8 @@ module Aws::IoT
     #   * {Types::ListPoliciesResponse#policies #policies} => Array<Types::Policy>
     #   * {Types::ListPoliciesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_policies({
@@ -6469,6 +6791,8 @@ module Aws::IoT
     #   * {Types::ListPolicyPrincipalsResponse#principals #principals} => Array<String>
     #   * {Types::ListPolicyPrincipalsResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_policy_principals({
@@ -6533,7 +6857,11 @@ module Aws::IoT
     # [1]: https://docs.aws.amazon.com/cognitoidentity/latest/APIReference/API_GetCredentialsForIdentity.html#API_GetCredentialsForIdentity_RequestSyntax
     #
     # @option params [required, String] :principal
-    #   The principal.
+    #   The principal. Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [String] :marker
     #   The marker for the next set of results.
@@ -6550,6 +6878,8 @@ module Aws::IoT
     #   * {Types::ListPrincipalPoliciesResponse#policies #policies} => Array<Types::Policy>
     #   * {Types::ListPrincipalPoliciesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_principal_policies({
@@ -6591,6 +6921,8 @@ module Aws::IoT
     #   * {Types::ListPrincipalThingsResponse#things #things} => Array<String>
     #   * {Types::ListPrincipalThingsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_principal_things({
@@ -6628,6 +6960,8 @@ module Aws::IoT
     #   * {Types::ListProvisioningTemplateVersionsResponse#versions #versions} => Array<Types::ProvisioningTemplateVersionSummary>
     #   * {Types::ListProvisioningTemplateVersionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_provisioning_template_versions({
@@ -6664,6 +6998,8 @@ module Aws::IoT
     #   * {Types::ListProvisioningTemplatesResponse#templates #templates} => Array<Types::ProvisioningTemplateSummary>
     #   * {Types::ListProvisioningTemplatesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_provisioning_templates({
@@ -6705,6 +7041,8 @@ module Aws::IoT
     #   * {Types::ListRoleAliasesResponse#role_aliases #role_aliases} => Array<String>
     #   * {Types::ListRoleAliasesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_role_aliases({
@@ -6740,6 +7078,8 @@ module Aws::IoT
     #   * {Types::ListScheduledAuditsResponse#scheduled_audits #scheduled_audits} => Array<Types::ScheduledAuditMetadata>
     #   * {Types::ListScheduledAuditsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_scheduled_audits({
@@ -6783,6 +7123,8 @@ module Aws::IoT
     #   * {Types::ListSecurityProfilesResponse#security_profile_identifiers #security_profile_identifiers} => Array<Types::SecurityProfileIdentifier>
     #   * {Types::ListSecurityProfilesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_security_profiles({
@@ -6826,6 +7168,8 @@ module Aws::IoT
     #   * {Types::ListSecurityProfilesForTargetResponse#security_profile_target_mappings #security_profile_target_mappings} => Array<Types::SecurityProfileTargetMapping>
     #   * {Types::ListSecurityProfilesForTargetResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_security_profiles_for_target({
@@ -6866,6 +7210,8 @@ module Aws::IoT
     #   * {Types::ListStreamsResponse#streams #streams} => Array<Types::StreamSummary>
     #   * {Types::ListStreamsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_streams({
@@ -6903,6 +7249,8 @@ module Aws::IoT
     #   * {Types::ListTagsForResourceResponse#tags #tags} => Array<Types::Tag>
     #   * {Types::ListTagsForResourceResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_tags_for_resource({
@@ -6940,6 +7288,8 @@ module Aws::IoT
     #   * {Types::ListTargetsForPolicyResponse#targets #targets} => Array<String>
     #   * {Types::ListTargetsForPolicyResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_targets_for_policy({
@@ -6978,6 +7328,8 @@ module Aws::IoT
     #   * {Types::ListTargetsForSecurityProfileResponse#security_profile_targets #security_profile_targets} => Array<Types::SecurityProfileTarget>
     #   * {Types::ListTargetsForSecurityProfileResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_targets_for_security_profile({
@@ -7023,6 +7375,8 @@ module Aws::IoT
     #   * {Types::ListThingGroupsResponse#thing_groups #thing_groups} => Array<Types::GroupNameAndArn>
     #   * {Types::ListThingGroupsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_groups({
@@ -7063,6 +7417,8 @@ module Aws::IoT
     #   * {Types::ListThingGroupsForThingResponse#thing_groups #thing_groups} => Array<Types::GroupNameAndArn>
     #   * {Types::ListThingGroupsForThingResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_groups_for_thing({
@@ -7134,6 +7490,8 @@ module Aws::IoT
     #   * {Types::ListThingRegistrationTaskReportsResponse#report_type #report_type} => String
     #   * {Types::ListThingRegistrationTaskReportsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_registration_task_reports({
@@ -7173,6 +7531,8 @@ module Aws::IoT
     #   * {Types::ListThingRegistrationTasksResponse#task_ids #task_ids} => Array<String>
     #   * {Types::ListThingRegistrationTasksResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_registration_tasks({
@@ -7210,6 +7570,8 @@ module Aws::IoT
     #   * {Types::ListThingTypesResponse#thing_types #thing_types} => Array<Types::ThingTypeDefinition>
     #   * {Types::ListThingTypesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_types({
@@ -7244,6 +7606,13 @@ module Aws::IoT
     # in the registry that contain an attribute **Color** with the value
     # **Red**.
     #
+    # <note markdown="1"> You will not be charged for calling this API if an `Access denied`
+    # error is returned. You will also not be charged if no attributes or
+    # pagination token was provided in request and no pagination token and
+    # no results were returned.
+    #
+    #  </note>
+    #
     # @option params [String] :next_token
     #   The token to retrieve the next set of results.
     #
@@ -7264,6 +7633,8 @@ module Aws::IoT
     #   * {Types::ListThingsResponse#things #things} => Array&lt;Types::ThingAttribute&gt;
     #   * {Types::ListThingsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_things({
@@ -7308,6 +7679,8 @@ module Aws::IoT
     #   * {Types::ListThingsInBillingGroupResponse#things #things} => Array&lt;String&gt;
     #   * {Types::ListThingsInBillingGroupResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_things_in_billing_group({
@@ -7349,6 +7722,8 @@ module Aws::IoT
     #   * {Types::ListThingsInThingGroupResponse#things #things} => Array&lt;String&gt;
     #   * {Types::ListThingsInThingGroupResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_things_in_thing_group({
@@ -7384,6 +7759,8 @@ module Aws::IoT
     #   * {Types::ListTopicRuleDestinationsResponse#destination_summaries #destination_summaries} => Array&lt;Types::TopicRuleDestinationSummary&gt;
     #   * {Types::ListTopicRuleDestinationsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_topic_rule_destinations({
@@ -7426,6 +7803,8 @@ module Aws::IoT
     #   * {Types::ListTopicRulesResponse#rules #rules} => Array&lt;Types::TopicRuleListItem&gt;
     #   * {Types::ListTopicRulesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_topic_rules({
@@ -7470,6 +7849,8 @@ module Aws::IoT
     #   * {Types::ListV2LoggingLevelsResponse#log_target_configurations #log_target_configurations} => Array&lt;Types::LogTargetConfiguration&gt;
     #   * {Types::ListV2LoggingLevelsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_v2_logging_levels({
@@ -7523,6 +7904,8 @@ module Aws::IoT
     #   * {Types::ListViolationEventsResponse#violation_events #violation_events} => Array&lt;Types::ViolationEvent&gt;
     #   * {Types::ListViolationEventsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_violation_events({
@@ -8578,7 +8961,11 @@ module Aws::IoT
     # gateway.
     #
     # @option params [String] :principal
-    #   The principal.
+    #   The principal. Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [String] :cognito_identity_pool_id
     #   The Cognito identity pool ID.
@@ -8838,6 +9225,58 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Updates a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @option params [Time,DateTime,Date,Integer,String] :expiration_date
+    #   The expiration date (epoch timestamp in seconds) that you want the
+    #   suppression to adhere to.
+    #
+    # @option params [Boolean] :suppress_indefinitely
+    #   Indicates whether a suppression should exist indefinitely or not.
+    #
+    # @option params [String] :description
+    #   The description of the audit suppression.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.update_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #     expiration_date: Time.now,
+    #     suppress_indefinitely: false,
+    #     description: "AuditDescription",
+    #   })
+    #
+    # @overload update_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def update_audit_suppression(params = {}, options = {})
+      req = build_request(:update_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Updates an authorizer.
     #
     # @option params [required, String] :authorizer_name
@@ -8969,12 +9408,13 @@ module Aws::IoT
     # Updates the status of the specified certificate. This operation is
     # idempotent.
     #
-    # Moving a certificate from the ACTIVE state (including REVOKED) will
-    # not disconnect currently connected devices, but these devices will be
-    # unable to reconnect.
+    # Certificates must be in the ACTIVE state to authenticate devices that
+    # use a certificate to connect to AWS IoT.
     #
-    # The ACTIVE state is required to authenticate devices connecting to AWS
-    # IoT using a certificate.
+    # Within a few minutes of updating a certificate from the ACTIVE state
+    # to any other state, AWS IoT disconnects all devices that used that
+    # certificate to connect. Devices cannot use a certificate that is not
+    # in the ACTIVE state to reconnect.
     #
     # @option params [required, String] :certificate_id
     #   The ID of the certificate. (The last part of the certificate ARN
@@ -9967,7 +10407,7 @@ module Aws::IoT
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-iot'
-      context[:gem_version] = '1.52.0'
+      context[:gem_version] = '1.57.0'
       Seahorse::Client::Request.new(handlers, context)
     end