aws-sdk-kafka 1.39.0 → 1.40.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 8c812df1726ccc67cbf279a14159611ae0f59bc3b226e78b2e3982bd9fc3080f
-  data.tar.gz: 72e0314a11cbfa02d5c66db01d102d7b9407e48d74644f2062705acc50e6ef3c
+  metadata.gz: 01c8c1fc42f4eb462a8e5bb5eb247643ba19db7e382515425239f85f70a1d029
+  data.tar.gz: e013716efd35898107c2ebe86d516d7990b1ee228c4c89d51a82adf5693019e0
 SHA512:
-  metadata.gz: 8a0303ac5b84553f8fa7193228ff3c0f5e368998d9cd56a4aa35c6226b7dde32fc5d59ad0667eab6e5bf1d7dd40d14d8c5e3a13087a354cce1ea142bce93c5a2
-  data.tar.gz: 502fb3926059f1b7bfcd95704aa4358d3723b8a81b33f4e097fc9ac15856f809b83da44396890abf0d8ea031fecd2fe7da38d7dbcb19cab5551b6c47f7dfb546
+  metadata.gz: 39094b78886db122aa27dd50a19098726b57d88e39692231cd4c6ff2760f80992d77231835e2d035fe47fe2b5239f57f67cda1b99742c36392729812ebbb133d
+  data.tar.gz: aee6c1e062dca2cfc220cfe40ea78aecf1e7802de3ee0bc66d6c177e8687828f82c105b5039cb5d5980551e86a902dbe6d94550a70571f64c9c92f47a16802b5

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.40.0 (2021-09-08)
+------------------
+
+* Feature - Amazon MSK has added a new API that allows you to update the encrypting and authentication settings for an existing cluster.
+
 1.39.0 (2021-09-01)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.39.0
+1.40.0

data/lib/aws-sdk-kafka/client.rb

@@ -431,6 +431,10 @@ module Aws::Kafka
     #       },
     #       tls: {
     #         certificate_authority_arn_list: ["__string"],
+    #         enabled: false,
+    #       },
+    #       unauthenticated: {
+    #         enabled: false,
     #       },
     #     },
     #     cluster_name: "__stringMin1Max64", # required
@@ -641,6 +645,8 @@ module Aws::Kafka
     #   resp.cluster_info.client_authentication.sasl.iam.enabled #=> Boolean
     #   resp.cluster_info.client_authentication.tls.certificate_authority_arn_list #=> Array
     #   resp.cluster_info.client_authentication.tls.certificate_authority_arn_list[0] #=> String
+    #   resp.cluster_info.client_authentication.tls.enabled #=> Boolean
+    #   resp.cluster_info.client_authentication.unauthenticated.enabled #=> Boolean
     #   resp.cluster_info.cluster_arn #=> String
     #   resp.cluster_info.cluster_name #=> String
     #   resp.cluster_info.creation_time #=> Time
@@ -723,6 +729,15 @@ module Aws::Kafka
     #   resp.cluster_operation_info.source_cluster_info.logging_info.broker_logs.s3.enabled #=> Boolean
     #   resp.cluster_operation_info.source_cluster_info.logging_info.broker_logs.s3.prefix #=> String
     #   resp.cluster_operation_info.source_cluster_info.instance_type #=> String
+    #   resp.cluster_operation_info.source_cluster_info.client_authentication.sasl.scram.enabled #=> Boolean
+    #   resp.cluster_operation_info.source_cluster_info.client_authentication.sasl.iam.enabled #=> Boolean
+    #   resp.cluster_operation_info.source_cluster_info.client_authentication.tls.certificate_authority_arn_list #=> Array
+    #   resp.cluster_operation_info.source_cluster_info.client_authentication.tls.certificate_authority_arn_list[0] #=> String
+    #   resp.cluster_operation_info.source_cluster_info.client_authentication.tls.enabled #=> Boolean
+    #   resp.cluster_operation_info.source_cluster_info.client_authentication.unauthenticated.enabled #=> Boolean
+    #   resp.cluster_operation_info.source_cluster_info.encryption_info.encryption_at_rest.data_volume_kms_key_id #=> String
+    #   resp.cluster_operation_info.source_cluster_info.encryption_info.encryption_in_transit.client_broker #=> String, one of "TLS", "TLS_PLAINTEXT", "PLAINTEXT"
+    #   resp.cluster_operation_info.source_cluster_info.encryption_info.encryption_in_transit.in_cluster #=> Boolean
     #   resp.cluster_operation_info.target_cluster_info.broker_ebs_volume_info #=> Array
     #   resp.cluster_operation_info.target_cluster_info.broker_ebs_volume_info[0].kafka_broker_node_id #=> String
     #   resp.cluster_operation_info.target_cluster_info.broker_ebs_volume_info[0].volume_size_gb #=> Integer
@@ -741,6 +756,15 @@ module Aws::Kafka
     #   resp.cluster_operation_info.target_cluster_info.logging_info.broker_logs.s3.enabled #=> Boolean
     #   resp.cluster_operation_info.target_cluster_info.logging_info.broker_logs.s3.prefix #=> String
     #   resp.cluster_operation_info.target_cluster_info.instance_type #=> String
+    #   resp.cluster_operation_info.target_cluster_info.client_authentication.sasl.scram.enabled #=> Boolean
+    #   resp.cluster_operation_info.target_cluster_info.client_authentication.sasl.iam.enabled #=> Boolean
+    #   resp.cluster_operation_info.target_cluster_info.client_authentication.tls.certificate_authority_arn_list #=> Array
+    #   resp.cluster_operation_info.target_cluster_info.client_authentication.tls.certificate_authority_arn_list[0] #=> String
+    #   resp.cluster_operation_info.target_cluster_info.client_authentication.tls.enabled #=> Boolean
+    #   resp.cluster_operation_info.target_cluster_info.client_authentication.unauthenticated.enabled #=> Boolean
+    #   resp.cluster_operation_info.target_cluster_info.encryption_info.encryption_at_rest.data_volume_kms_key_id #=> String
+    #   resp.cluster_operation_info.target_cluster_info.encryption_info.encryption_in_transit.client_broker #=> String, one of "TLS", "TLS_PLAINTEXT", "PLAINTEXT"
+    #   resp.cluster_operation_info.target_cluster_info.encryption_info.encryption_in_transit.in_cluster #=> Boolean
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kafka-2018-11-14/DescribeClusterOperation AWS API Documentation
     #
@@ -988,6 +1012,15 @@ module Aws::Kafka
     #   resp.cluster_operation_info_list[0].source_cluster_info.logging_info.broker_logs.s3.enabled #=> Boolean
     #   resp.cluster_operation_info_list[0].source_cluster_info.logging_info.broker_logs.s3.prefix #=> String
     #   resp.cluster_operation_info_list[0].source_cluster_info.instance_type #=> String
+    #   resp.cluster_operation_info_list[0].source_cluster_info.client_authentication.sasl.scram.enabled #=> Boolean
+    #   resp.cluster_operation_info_list[0].source_cluster_info.client_authentication.sasl.iam.enabled #=> Boolean
+    #   resp.cluster_operation_info_list[0].source_cluster_info.client_authentication.tls.certificate_authority_arn_list #=> Array
+    #   resp.cluster_operation_info_list[0].source_cluster_info.client_authentication.tls.certificate_authority_arn_list[0] #=> String
+    #   resp.cluster_operation_info_list[0].source_cluster_info.client_authentication.tls.enabled #=> Boolean
+    #   resp.cluster_operation_info_list[0].source_cluster_info.client_authentication.unauthenticated.enabled #=> Boolean
+    #   resp.cluster_operation_info_list[0].source_cluster_info.encryption_info.encryption_at_rest.data_volume_kms_key_id #=> String
+    #   resp.cluster_operation_info_list[0].source_cluster_info.encryption_info.encryption_in_transit.client_broker #=> String, one of "TLS", "TLS_PLAINTEXT", "PLAINTEXT"
+    #   resp.cluster_operation_info_list[0].source_cluster_info.encryption_info.encryption_in_transit.in_cluster #=> Boolean
     #   resp.cluster_operation_info_list[0].target_cluster_info.broker_ebs_volume_info #=> Array
     #   resp.cluster_operation_info_list[0].target_cluster_info.broker_ebs_volume_info[0].kafka_broker_node_id #=> String
     #   resp.cluster_operation_info_list[0].target_cluster_info.broker_ebs_volume_info[0].volume_size_gb #=> Integer
@@ -1006,6 +1039,15 @@ module Aws::Kafka
     #   resp.cluster_operation_info_list[0].target_cluster_info.logging_info.broker_logs.s3.enabled #=> Boolean
     #   resp.cluster_operation_info_list[0].target_cluster_info.logging_info.broker_logs.s3.prefix #=> String
     #   resp.cluster_operation_info_list[0].target_cluster_info.instance_type #=> String
+    #   resp.cluster_operation_info_list[0].target_cluster_info.client_authentication.sasl.scram.enabled #=> Boolean
+    #   resp.cluster_operation_info_list[0].target_cluster_info.client_authentication.sasl.iam.enabled #=> Boolean
+    #   resp.cluster_operation_info_list[0].target_cluster_info.client_authentication.tls.certificate_authority_arn_list #=> Array
+    #   resp.cluster_operation_info_list[0].target_cluster_info.client_authentication.tls.certificate_authority_arn_list[0] #=> String
+    #   resp.cluster_operation_info_list[0].target_cluster_info.client_authentication.tls.enabled #=> Boolean
+    #   resp.cluster_operation_info_list[0].target_cluster_info.client_authentication.unauthenticated.enabled #=> Boolean
+    #   resp.cluster_operation_info_list[0].target_cluster_info.encryption_info.encryption_at_rest.data_volume_kms_key_id #=> String
+    #   resp.cluster_operation_info_list[0].target_cluster_info.encryption_info.encryption_in_transit.client_broker #=> String, one of "TLS", "TLS_PLAINTEXT", "PLAINTEXT"
+    #   resp.cluster_operation_info_list[0].target_cluster_info.encryption_info.encryption_in_transit.in_cluster #=> Boolean
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kafka-2018-11-14/ListClusterOperations AWS API Documentation
@@ -1055,6 +1097,8 @@ module Aws::Kafka
     #   resp.cluster_info_list[0].client_authentication.sasl.iam.enabled #=> Boolean
     #   resp.cluster_info_list[0].client_authentication.tls.certificate_authority_arn_list #=> Array
     #   resp.cluster_info_list[0].client_authentication.tls.certificate_authority_arn_list[0] #=> String
+    #   resp.cluster_info_list[0].client_authentication.tls.enabled #=> Boolean
+    #   resp.cluster_info_list[0].client_authentication.unauthenticated.enabled #=> Boolean
     #   resp.cluster_info_list[0].cluster_arn #=> String
     #   resp.cluster_info_list[0].cluster_name #=> String
     #   resp.cluster_info_list[0].creation_time #=> Time
@@ -1748,6 +1792,74 @@ module Aws::Kafka
       req.send_request(options)
     end
 
+    # You can use this operation to update the encrypting and authentication
+    # settings for an existing cluster.
+    #
+    # @option params [Types::ClientAuthentication] :client_authentication
+    #   Includes all client authentication related information.
+    #
+    # @option params [required, String] :cluster_arn
+    #
+    # @option params [required, String] :current_version
+    #   You can use the DescribeCluster operation to get the current version
+    #   of the cluster. After the security update is complete, the cluster
+    #   will have a new version.
+    #
+    # @option params [Types::EncryptionInfo] :encryption_info
+    #   Includes all encryption-related information.
+    #
+    # @return [Types::UpdateSecurityResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::UpdateSecurityResponse#cluster_arn #cluster_arn} => String
+    #   * {Types::UpdateSecurityResponse#cluster_operation_arn #cluster_operation_arn} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.update_security({
+    #     client_authentication: {
+    #       sasl: {
+    #         scram: {
+    #           enabled: false,
+    #         },
+    #         iam: {
+    #           enabled: false,
+    #         },
+    #       },
+    #       tls: {
+    #         certificate_authority_arn_list: ["__string"],
+    #         enabled: false,
+    #       },
+    #       unauthenticated: {
+    #         enabled: false,
+    #       },
+    #     },
+    #     cluster_arn: "__string", # required
+    #     current_version: "__string", # required
+    #     encryption_info: {
+    #       encryption_at_rest: {
+    #         data_volume_kms_key_id: "__string", # required
+    #       },
+    #       encryption_in_transit: {
+    #         client_broker: "TLS", # accepts TLS, TLS_PLAINTEXT, PLAINTEXT
+    #         in_cluster: false,
+    #       },
+    #     },
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.cluster_arn #=> String
+    #   resp.cluster_operation_arn #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kafka-2018-11-14/UpdateSecurity AWS API Documentation
+    #
+    # @overload update_security(params = {})
+    # @param [Hash] params ({})
+    def update_security(params = {}, options = {})
+      req = build_request(:update_security, params)
+      req.send_request(options)
+    end
+
     # @!endgroup
 
     # @param params ({})
@@ -1761,7 +1873,7 @@ module Aws::Kafka
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-kafka'
-      context[:gem_version] = '1.39.0'
+      context[:gem_version] = '1.40.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-kafka/client_api.rb

@@ -112,6 +112,7 @@ module Aws::Kafka
     TagResourceRequest = Shapes::StructureShape.new(name: 'TagResourceRequest')
     Tls = Shapes::StructureShape.new(name: 'Tls')
     TooManyRequestsException = Shapes::StructureShape.new(name: 'TooManyRequestsException')
+    Unauthenticated = Shapes::StructureShape.new(name: 'Unauthenticated')
     UnauthorizedException = Shapes::StructureShape.new(name: 'UnauthorizedException')
     UnprocessedScramSecret = Shapes::StructureShape.new(name: 'UnprocessedScramSecret')
     UntagResourceRequest = Shapes::StructureShape.new(name: 'UntagResourceRequest')
@@ -129,6 +130,8 @@ module Aws::Kafka
     UpdateConfigurationResponse = Shapes::StructureShape.new(name: 'UpdateConfigurationResponse')
     UpdateMonitoringRequest = Shapes::StructureShape.new(name: 'UpdateMonitoringRequest')
     UpdateMonitoringResponse = Shapes::StructureShape.new(name: 'UpdateMonitoringResponse')
+    UpdateSecurityRequest = Shapes::StructureShape.new(name: 'UpdateSecurityRequest')
+    UpdateSecurityResponse = Shapes::StructureShape.new(name: 'UpdateSecurityResponse')
     ZookeeperNodeInfo = Shapes::StructureShape.new(name: 'ZookeeperNodeInfo')
     __blob = Shapes::BlobShape.new(name: '__blob')
     __boolean = Shapes::BooleanShape.new(name: '__boolean')
@@ -206,6 +209,7 @@ module Aws::Kafka
 
     ClientAuthentication.add_member(:sasl, Shapes::ShapeRef.new(shape: Sasl, location_name: "sasl"))
     ClientAuthentication.add_member(:tls, Shapes::ShapeRef.new(shape: Tls, location_name: "tls"))
+    ClientAuthentication.add_member(:unauthenticated, Shapes::ShapeRef.new(shape: Unauthenticated, location_name: "unauthenticated"))
     ClientAuthentication.struct_class = Types::ClientAuthentication
 
     CloudWatchLogs.add_member(:enabled, Shapes::ShapeRef.new(shape: __boolean, required: true, location_name: "enabled"))
@@ -497,7 +501,9 @@ module Aws::Kafka
     MutableClusterInfo.add_member(:enhanced_monitoring, Shapes::ShapeRef.new(shape: EnhancedMonitoring, location_name: "enhancedMonitoring"))
     MutableClusterInfo.add_member(:kafka_version, Shapes::ShapeRef.new(shape: __string, location_name: "kafkaVersion"))
     MutableClusterInfo.add_member(:logging_info, Shapes::ShapeRef.new(shape: LoggingInfo, location_name: "loggingInfo"))
-    MutableClusterInfo.add_member(:instance_type, Shapes::ShapeRef.new(shape: __stringMin5Max32, location_name: "instanceType"))
+    MutableClusterInfo.add_member(:instance_type, Shapes::ShapeRef.new(shape: __string, location_name: "instanceType"))
+    MutableClusterInfo.add_member(:client_authentication, Shapes::ShapeRef.new(shape: ClientAuthentication, location_name: "clientAuthentication"))
+    MutableClusterInfo.add_member(:encryption_info, Shapes::ShapeRef.new(shape: EncryptionInfo, location_name: "encryptionInfo"))
     MutableClusterInfo.struct_class = Types::MutableClusterInfo
 
     NodeExporter.add_member(:enabled_in_broker, Shapes::ShapeRef.new(shape: __boolean, required: true, location_name: "enabledInBroker"))
@@ -568,12 +574,16 @@ module Aws::Kafka
     TagResourceRequest.struct_class = Types::TagResourceRequest
 
     Tls.add_member(:certificate_authority_arn_list, Shapes::ShapeRef.new(shape: __listOf__string, location_name: "certificateAuthorityArnList"))
+    Tls.add_member(:enabled, Shapes::ShapeRef.new(shape: __boolean, location_name: "enabled"))
     Tls.struct_class = Types::Tls
 
     TooManyRequestsException.add_member(:invalid_parameter, Shapes::ShapeRef.new(shape: __string, location_name: "invalidParameter"))
     TooManyRequestsException.add_member(:message, Shapes::ShapeRef.new(shape: __string, location_name: "message"))
     TooManyRequestsException.struct_class = Types::TooManyRequestsException
 
+    Unauthenticated.add_member(:enabled, Shapes::ShapeRef.new(shape: __boolean, location_name: "enabled"))
+    Unauthenticated.struct_class = Types::Unauthenticated
+
     UnauthorizedException.add_member(:invalid_parameter, Shapes::ShapeRef.new(shape: __string, location_name: "invalidParameter"))
     UnauthorizedException.add_member(:message, Shapes::ShapeRef.new(shape: __string, location_name: "message"))
     UnauthorizedException.struct_class = Types::UnauthorizedException
@@ -653,6 +663,16 @@ module Aws::Kafka
     UpdateMonitoringResponse.add_member(:cluster_operation_arn, Shapes::ShapeRef.new(shape: __string, location_name: "clusterOperationArn"))
     UpdateMonitoringResponse.struct_class = Types::UpdateMonitoringResponse
 
+    UpdateSecurityRequest.add_member(:client_authentication, Shapes::ShapeRef.new(shape: ClientAuthentication, location_name: "clientAuthentication"))
+    UpdateSecurityRequest.add_member(:cluster_arn, Shapes::ShapeRef.new(shape: __string, required: true, location: "uri", location_name: "clusterArn"))
+    UpdateSecurityRequest.add_member(:current_version, Shapes::ShapeRef.new(shape: __string, required: true, location_name: "currentVersion"))
+    UpdateSecurityRequest.add_member(:encryption_info, Shapes::ShapeRef.new(shape: EncryptionInfo, location_name: "encryptionInfo"))
+    UpdateSecurityRequest.struct_class = Types::UpdateSecurityRequest
+
+    UpdateSecurityResponse.add_member(:cluster_arn, Shapes::ShapeRef.new(shape: __string, location_name: "clusterArn"))
+    UpdateSecurityResponse.add_member(:cluster_operation_arn, Shapes::ShapeRef.new(shape: __string, location_name: "clusterOperationArn"))
+    UpdateSecurityResponse.struct_class = Types::UpdateSecurityResponse
+
     ZookeeperNodeInfo.add_member(:attached_eni_id, Shapes::ShapeRef.new(shape: __string, location_name: "attachedENIId"))
     ZookeeperNodeInfo.add_member(:client_vpc_ip_address, Shapes::ShapeRef.new(shape: __string, location_name: "clientVpcIpAddress"))
     ZookeeperNodeInfo.add_member(:endpoints, Shapes::ShapeRef.new(shape: __listOf__string, location_name: "endpoints"))
@@ -1145,6 +1165,21 @@ module Aws::Kafka
         o.errors << Shapes::ShapeRef.new(shape: InternalServerErrorException)
         o.errors << Shapes::ShapeRef.new(shape: ForbiddenException)
       end)
+
+      api.add_operation(:update_security, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "UpdateSecurity"
+        o.http_method = "PATCH"
+        o.http_request_uri = "/v1/clusters/{clusterArn}/security"
+        o.input = Shapes::ShapeRef.new(shape: UpdateSecurityRequest)
+        o.output = Shapes::ShapeRef.new(shape: UpdateSecurityResponse)
+        o.errors << Shapes::ShapeRef.new(shape: BadRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: UnauthorizedException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalServerErrorException)
+        o.errors << Shapes::ShapeRef.new(shape: ForbiddenException)
+        o.errors << Shapes::ShapeRef.new(shape: NotFoundException)
+        o.errors << Shapes::ShapeRef.new(shape: ServiceUnavailableException)
+        o.errors << Shapes::ShapeRef.new(shape: TooManyRequestsException)
+      end)
     end
 
   end

data/lib/aws-sdk-kafka/types.rb

@@ -287,6 +287,10 @@ module Aws::Kafka
     #         },
     #         tls: {
     #           certificate_authority_arn_list: ["__string"],
+    #           enabled: false,
+    #         },
+    #         unauthenticated: {
+    #           enabled: false,
     #         },
     #       }
     #
@@ -297,11 +301,16 @@ module Aws::Kafka
     #   Details for ClientAuthentication using TLS.
     #   @return [Types::Tls]
     #
+    # @!attribute [rw] unauthenticated
+    #   Contains information about unauthenticated traffic to the cluster.
+    #   @return [Types::Unauthenticated]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kafka-2018-11-14/ClientAuthentication AWS API Documentation
     #
     class ClientAuthentication < Struct.new(
       :sasl,
-      :tls)
+      :tls,
+      :unauthenticated)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -702,6 +711,10 @@ module Aws::Kafka
     #           },
     #           tls: {
     #             certificate_authority_arn_list: ["__string"],
+    #             enabled: false,
+    #           },
+    #           unauthenticated: {
+    #             enabled: false,
     #           },
     #         },
     #         cluster_name: "__stringMin1Max64", # required
@@ -2005,6 +2018,14 @@ module Aws::Kafka
     #   cluster to be.
     #   @return [String]
     #
+    # @!attribute [rw] client_authentication
+    #   Includes all client authentication related information.
+    #   @return [Types::ClientAuthentication]
+    #
+    # @!attribute [rw] encryption_info
+    #   Includes all encryption-related information.
+    #   @return [Types::EncryptionInfo]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kafka-2018-11-14/MutableClusterInfo AWS API Documentation
     #
     class MutableClusterInfo < Struct.new(
@@ -2015,7 +2036,9 @@ module Aws::Kafka
       :enhanced_monitoring,
       :kafka_version,
       :logging_info,
-      :instance_type)
+      :instance_type,
+      :client_authentication,
+      :encryption_info)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -2111,6 +2134,7 @@ module Aws::Kafka
     #       }
     #
     # @!attribute [rw] enabled
+    #   SASL/SCRAM authentication is enabled or not.
     #   @return [Boolean]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kafka-2018-11-14/Scram AWS API Documentation
@@ -2236,16 +2260,22 @@ module Aws::Kafka
     #
     #       {
     #         certificate_authority_arn_list: ["__string"],
+    #         enabled: false,
     #       }
     #
     # @!attribute [rw] certificate_authority_arn_list
     #   List of ACM Certificate Authority ARNs.
     #   @return [Array<String>]
     #
+    # @!attribute [rw] enabled
+    #   TLS authentication is enabled or not.
+    #   @return [Boolean]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kafka-2018-11-14/Tls AWS API Documentation
     #
     class Tls < Struct.new(
-      :certificate_authority_arn_list)
+      :certificate_authority_arn_list,
+      :enabled)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -2267,6 +2297,28 @@ module Aws::Kafka
       include Aws::Structure
     end
 
+    # Contains information about unauthenticated traffic to the cluster.
+    #
+    # @note When making an API call, you may pass Unauthenticated
+    #   data as a hash:
+    #
+    #       {
+    #         enabled: false,
+    #       }
+    #
+    # @!attribute [rw] enabled
+    #   Specifies whether you want to enable or disable unauthenticated
+    #   traffic to your cluster.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kafka-2018-11-14/Unauthenticated AWS API Documentation
+    #
+    class Unauthenticated < Struct.new(
+      :enabled)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Returns information about an error.
     #
     # @!attribute [rw] invalid_parameter
@@ -2750,6 +2802,89 @@ module Aws::Kafka
       include Aws::Structure
     end
 
+    # Request body for UpdateSecurity.
+    #
+    # @note When making an API call, you may pass UpdateSecurityRequest
+    #   data as a hash:
+    #
+    #       {
+    #         client_authentication: {
+    #           sasl: {
+    #             scram: {
+    #               enabled: false,
+    #             },
+    #             iam: {
+    #               enabled: false,
+    #             },
+    #           },
+    #           tls: {
+    #             certificate_authority_arn_list: ["__string"],
+    #             enabled: false,
+    #           },
+    #           unauthenticated: {
+    #             enabled: false,
+    #           },
+    #         },
+    #         cluster_arn: "__string", # required
+    #         current_version: "__string", # required
+    #         encryption_info: {
+    #           encryption_at_rest: {
+    #             data_volume_kms_key_id: "__string", # required
+    #           },
+    #           encryption_in_transit: {
+    #             client_broker: "TLS", # accepts TLS, TLS_PLAINTEXT, PLAINTEXT
+    #             in_cluster: false,
+    #           },
+    #         },
+    #       }
+    #
+    # @!attribute [rw] client_authentication
+    #   Includes all client authentication related information.
+    #   @return [Types::ClientAuthentication]
+    #
+    # @!attribute [rw] cluster_arn
+    #   @return [String]
+    #
+    # @!attribute [rw] current_version
+    #   You can use the DescribeCluster operation to get the current version
+    #   of the cluster. After the security update is complete, the cluster
+    #   will have a new version.
+    #   @return [String]
+    #
+    # @!attribute [rw] encryption_info
+    #   Includes all encryption-related information.
+    #   @return [Types::EncryptionInfo]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kafka-2018-11-14/UpdateSecurityRequest AWS API Documentation
+    #
+    class UpdateSecurityRequest < Struct.new(
+      :client_authentication,
+      :cluster_arn,
+      :current_version,
+      :encryption_info)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Response body for UpdateSecurity.
+    #
+    # @!attribute [rw] cluster_arn
+    #   The Amazon Resource Name (ARN) of the cluster.
+    #   @return [String]
+    #
+    # @!attribute [rw] cluster_operation_arn
+    #   The Amazon Resource Name (ARN) of the cluster operation.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kafka-2018-11-14/UpdateSecurityResponse AWS API Documentation
+    #
+    class UpdateSecurityResponse < Struct.new(
+      :cluster_arn,
+      :cluster_operation_arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Zookeeper node information.
     #
     # @!attribute [rw] attached_eni_id

data/lib/aws-sdk-kafka.rb

@@ -48,6 +48,6 @@ require_relative 'aws-sdk-kafka/customizations'
 # @!group service
 module Aws::Kafka
 
-  GEM_VERSION = '1.39.0'
+  GEM_VERSION = '1.40.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-kafka
 version: !ruby/object:Gem::Version
-  version: 1.39.0
+  version: 1.40.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-09-01 00:00:00.000000000 Z
+date: 2021-09-08 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core