aws-sdk-kendra 1.25.0 → 1.30.0

data/lib/aws-sdk-kendra/types.rb

@@ -25,7 +25,8 @@ module Aws::Kendra
     #       }
     #
     # @!attribute [rw] key_path
-    #   Path to the AWS S3 bucket that contains the ACL files.
+    #   Path to the Amazon Web Services S3 bucket that contains the ACL
+    #   files.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/AccessControlListConfiguration AWS API Documentation
@@ -492,6 +493,87 @@ module Aws::Kendra
       include Aws::Structure
     end
 
+    # Provides the configuration information to connect to websites that
+    # require user authentication.
+    #
+    # @note When making an API call, you may pass AuthenticationConfiguration
+    #   data as a hash:
+    #
+    #       {
+    #         basic_authentication: [
+    #           {
+    #             host: "Host", # required
+    #             port: 1, # required
+    #             credentials: "SecretArn", # required
+    #           },
+    #         ],
+    #       }
+    #
+    # @!attribute [rw] basic_authentication
+    #   The list of configuration information that's required to connect to
+    #   and crawl a website host using basic authentication credentials.
+    #
+    #   The list includes the name and port number of the website host.
+    #   @return [Array<Types::BasicAuthenticationConfiguration>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/AuthenticationConfiguration AWS API Documentation
+    #
+    class AuthenticationConfiguration < Struct.new(
+      :basic_authentication)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Provides the configuration information to connect to websites that
+    # require basic user authentication.
+    #
+    # @note When making an API call, you may pass BasicAuthenticationConfiguration
+    #   data as a hash:
+    #
+    #       {
+    #         host: "Host", # required
+    #         port: 1, # required
+    #         credentials: "SecretArn", # required
+    #       }
+    #
+    # @!attribute [rw] host
+    #   The name of the website host you want to connect to using
+    #   authentication credentials.
+    #
+    #   For example, the host name of https://a.example.com/page1.html is
+    #   "a.example.com".
+    #   @return [String]
+    #
+    # @!attribute [rw] port
+    #   The port number of the website host you want to connect to using
+    #   authentication credentials.
+    #
+    #   For example, the port for https://a.example.com/page1.html is 443,
+    #   the standard port for HTTPS.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] credentials
+    #   Your secret ARN, which you can create in [AWS Secrets Manager][1]
+    #
+    #   You use a secret if basic authentication credentials are required to
+    #   connect to a website. The secret stores your credentials of user
+    #   name and password.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/intro.html
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/BasicAuthenticationConfiguration AWS API Documentation
+    #
+    class BasicAuthenticationConfiguration < Struct.new(
+      :host,
+      :port,
+      :credentials)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass BatchDeleteDocumentRequest
     #   data as a hash:
     #
@@ -568,6 +650,103 @@ module Aws::Kendra
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass BatchGetDocumentStatusRequest
+    #   data as a hash:
+    #
+    #       {
+    #         index_id: "IndexId", # required
+    #         document_info_list: [ # required
+    #           {
+    #             document_id: "DocumentId", # required
+    #             attributes: [
+    #               {
+    #                 key: "DocumentAttributeKey", # required
+    #                 value: { # required
+    #                   string_value: "DocumentAttributeStringValue",
+    #                   string_list_value: ["String"],
+    #                   long_value: 1,
+    #                   date_value: Time.now,
+    #                 },
+    #               },
+    #             ],
+    #           },
+    #         ],
+    #       }
+    #
+    # @!attribute [rw] index_id
+    #   The identifier of the index to add documents to. The index ID is
+    #   returned by the [ CreateIndex ][1] operation.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/kendra/latest/dg/API_CreateIndex.html
+    #   @return [String]
+    #
+    # @!attribute [rw] document_info_list
+    #   A list of `DocumentInfo` objects that identify the documents for
+    #   which to get the status. You identify the documents by their
+    #   document ID and optional attributes.
+    #   @return [Array<Types::DocumentInfo>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/BatchGetDocumentStatusRequest AWS API Documentation
+    #
+    class BatchGetDocumentStatusRequest < Struct.new(
+      :index_id,
+      :document_info_list)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] errors
+    #   A list of documents that Amazon Kendra couldn't get the status for.
+    #   The list includes the ID of the document and the reason that the
+    #   status couldn't be found.
+    #   @return [Array<Types::BatchGetDocumentStatusResponseError>]
+    #
+    # @!attribute [rw] document_status_list
+    #   The status of documents. The status indicates if the document is
+    #   waiting to be indexed, is in the process of indexing, has completed
+    #   indexing, or failed indexing. If a document failed indexing, the
+    #   status provides the reason why.
+    #   @return [Array<Types::Status>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/BatchGetDocumentStatusResponse AWS API Documentation
+    #
+    class BatchGetDocumentStatusResponse < Struct.new(
+      :errors,
+      :document_status_list)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Provides a response when the status of a document could not be
+    # retrieved.
+    #
+    # @!attribute [rw] document_id
+    #   The unique identifier of the document whose status could not be
+    #   retrieved.
+    #   @return [String]
+    #
+    # @!attribute [rw] error_code
+    #   Indicates the source of the error.
+    #   @return [String]
+    #
+    # @!attribute [rw] error_message
+    #   States that the API could not get the status of a document. This
+    #   could be because the request is not valid or there is a system
+    #   error.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/BatchGetDocumentStatusResponseError AWS API Documentation
+    #
+    class BatchGetDocumentStatusResponseError < Struct.new(
+      :document_id,
+      :error_code,
+      :error_message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass BatchPutDocumentRequest
     #   data as a hash:
     #
@@ -599,6 +778,19 @@ module Aws::Kendra
     #                 name: "PrincipalName", # required
     #                 type: "USER", # required, accepts USER, GROUP
     #                 access: "ALLOW", # required, accepts ALLOW, DENY
+    #                 data_source_id: "DataSourceId",
+    #               },
+    #             ],
+    #             hierarchical_access_control_list: [
+    #               {
+    #                 principal_list: [ # required
+    #                   {
+    #                     name: "PrincipalName", # required
+    #                     type: "USER", # required, accepts USER, GROUP
+    #                     access: "ALLOW", # required, accepts ALLOW, DENY
+    #                     data_source_id: "DataSourceId",
+    #                   },
+    #                 ],
     #               },
     #             ],
     #             content_type: "PDF", # accepts PDF, HTML, MS_WORD, PLAIN_TEXT, PPT
@@ -664,8 +856,9 @@ module Aws::Kendra
     #   index.
     #
     #   If there was an error adding a document to an index the error is
-    #   reported in your AWS CloudWatch log. For more information, see
-    #   [Monitoring Amazon Kendra with Amazon CloudWatch Logs][1]
+    #   reported in your Amazon Web Services CloudWatch log. For more
+    #   information, see [Monitoring Amazon Kendra with Amazon CloudWatch
+    #   Logs][1]
     #
     #
     #
@@ -704,8 +897,9 @@ module Aws::Kendra
       include Aws::Structure
     end
 
-    # Specifies capacity units configured for your index. You can add and
-    # remove capacity units to tune an index to your requirements.
+    # Specifies capacity units configured for your enterprise edition index.
+    # You can add and remove capacity units to tune an index to your
+    # requirements.
     #
     # @note When making an API call, you may pass CapacityUnitsConfiguration
     #   data as a hash:
@@ -716,14 +910,28 @@ module Aws::Kendra
     #       }
     #
     # @!attribute [rw] storage_capacity_units
-    #   The amount of extra storage capacity for an index. Each capacity
-    #   unit provides 150 Gb of storage space or 500,000 documents,
-    #   whichever is reached first.
+    #   The amount of extra storage capacity for an index. A single capacity
+    #   unit for an index provides 150 GB of storage space or 500,000
+    #   documents, whichever is reached first.
     #   @return [Integer]
     #
     # @!attribute [rw] query_capacity_units
-    #   The amount of extra query capacity for an index. Each capacity unit
-    #   provides 0.5 queries per second and 40,000 queries per day.
+    #   The amount of extra query capacity for an index and
+    #   [GetQuerySuggestions][1] capacity.
+    #
+    #   A single extra capacity unit for an index provides 0.5 queries per
+    #   second or approximately 40,000 queries per day.
+    #
+    #   `GetQuerySuggestions` capacity is 5 times the provisioned query
+    #   capacity for an index. For example, the base capacity for an index
+    #   is 0.5 queries per second, so GetQuerySuggestions capacity is 2.5
+    #   calls per second. If adding another 0.5 queries per second to total
+    #   1 queries per second for an index, the `GetQuerySuggestions`
+    #   capacity is 5 calls per second.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/kendra/latest/dg/API_GetQuerySuggestions.html
     #   @return [Integer]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/CapacityUnitsConfiguration AWS API Documentation
@@ -1079,7 +1287,7 @@ module Aws::Kendra
     #   @return [String]
     #
     # @!attribute [rw] secret_arn
-    #   The Amazon Resource Name (ARN) of an AWS Secrets Manager secret that
+    #   The Amazon Resource Name (ARN) of an Secrets Managersecret that
     #   contains the key/value pairs required to connect to your Confluence
     #   server. The secret must contain a JSON structure with the following
     #   keys:
@@ -1376,7 +1584,7 @@ module Aws::Kendra
     #   Manager. The credentials should be a user/password pair. For more
     #   information, see [Using a Database Data Source][1]. For more
     #   information about AWS Secrets Manager, see [ What Is AWS Secrets
-    #   Manager ][2] in the *AWS Secrets Manager* user guide.
+    #   Manager ][2] in the <i> Secrets Manager </i> user guide.
     #
     #
     #
@@ -1402,7 +1610,7 @@ module Aws::Kendra
     #       {
     #         name: "DataSourceName", # required
     #         index_id: "IndexId", # required
-    #         type: "S3", # required, accepts S3, SHAREPOINT, DATABASE, SALESFORCE, ONEDRIVE, SERVICENOW, CUSTOM, CONFLUENCE, GOOGLEDRIVE
+    #         type: "S3", # required, accepts S3, SHAREPOINT, DATABASE, SALESFORCE, ONEDRIVE, SERVICENOW, CUSTOM, CONFLUENCE, GOOGLEDRIVE, WEBCRAWLER
     #         configuration: {
     #           s3_configuration: {
     #             bucket_name: "S3BucketName", # required
@@ -1417,7 +1625,7 @@ module Aws::Kendra
     #             },
     #           },
     #           share_point_configuration: {
-    #             share_point_version: "SHAREPOINT_ONLINE", # required, accepts SHAREPOINT_ONLINE
+    #             share_point_version: "SHAREPOINT_2013", # required, accepts SHAREPOINT_2013, SHAREPOINT_2016, SHAREPOINT_ONLINE
     #             urls: ["Url"], # required
     #             secret_arn: "SecretArn", # required
     #             crawl_attachments: false,
@@ -1437,6 +1645,10 @@ module Aws::Kendra
     #             ],
     #             document_title_field_name: "DataSourceFieldName",
     #             disable_local_groups: false,
+    #             ssl_certificate_s3_path: {
+    #               bucket: "S3BucketName", # required
+    #               key: "S3ObjectKey", # required
+    #             },
     #           },
     #           database_configuration: {
     #             database_engine_type: "RDS_AURORA_MYSQL", # required, accepts RDS_AURORA_MYSQL, RDS_AURORA_POSTGRESQL, RDS_MYSQL, RDS_POSTGRESQL
@@ -1665,6 +1877,37 @@ module Aws::Kendra
     #             exclude_user_accounts: ["UserAccount"],
     #             exclude_shared_drives: ["SharedDriveId"],
     #           },
+    #           web_crawler_configuration: {
+    #             urls: { # required
+    #               seed_url_configuration: {
+    #                 seed_urls: ["SeedUrl"], # required
+    #                 web_crawler_mode: "HOST_ONLY", # accepts HOST_ONLY, SUBDOMAINS, EVERYTHING
+    #               },
+    #               site_maps_configuration: {
+    #                 site_maps: ["SiteMap"], # required
+    #               },
+    #             },
+    #             crawl_depth: 1,
+    #             max_links_per_page: 1,
+    #             max_content_size_per_page_in_mega_bytes: 1.0,
+    #             max_urls_per_minute_crawl_rate: 1,
+    #             url_inclusion_patterns: ["DataSourceInclusionsExclusionsStringsMember"],
+    #             url_exclusion_patterns: ["DataSourceInclusionsExclusionsStringsMember"],
+    #             proxy_configuration: {
+    #               host: "Host", # required
+    #               port: 1, # required
+    #               credentials: "SecretArn",
+    #             },
+    #             authentication_configuration: {
+    #               basic_authentication: [
+    #                 {
+    #                   host: "Host", # required
+    #                   port: 1, # required
+    #                   credentials: "SecretArn", # required
+    #                 },
+    #               ],
+    #             },
+    #           },
     #         },
     #         description: "Description",
     #         schedule: "ScanSchedule",
@@ -1937,15 +2180,14 @@ module Aws::Kendra
     #   @return [String]
     #
     # @!attribute [rw] role_arn
-    #   An AWS Identity and Access Management (IAM) role that gives Amazon
-    #   Kendra permissions to access your Amazon CloudWatch logs and
-    #   metrics. This is also the role used when you use the
-    #   `BatchPutDocument` operation to index documents from an Amazon S3
-    #   bucket.
+    #   An Identity and Access Management(IAM) role that gives Amazon Kendra
+    #   permissions to access your Amazon CloudWatch logs and metrics. This
+    #   is also the role used when you use the `BatchPutDocument` operation
+    #   to index documents from an Amazon S3 bucket.
     #   @return [String]
     #
     # @!attribute [rw] server_side_encryption_configuration
-    #   The identifier of the AWS KMS customer managed key (CMK) to use to
+    #   The identifier of the KMScustomer managed key (CMK) to use to
     #   encrypt data indexed by Amazon Kendra. Amazon Kendra doesn't
     #   support asymmetric CMKs.
     #   @return [Types::ServerSideEncryptionConfiguration]
@@ -2225,7 +2467,7 @@ module Aws::Kendra
     #           },
     #         },
     #         share_point_configuration: {
-    #           share_point_version: "SHAREPOINT_ONLINE", # required, accepts SHAREPOINT_ONLINE
+    #           share_point_version: "SHAREPOINT_2013", # required, accepts SHAREPOINT_2013, SHAREPOINT_2016, SHAREPOINT_ONLINE
     #           urls: ["Url"], # required
     #           secret_arn: "SecretArn", # required
     #           crawl_attachments: false,
@@ -2245,6 +2487,10 @@ module Aws::Kendra
     #           ],
     #           document_title_field_name: "DataSourceFieldName",
     #           disable_local_groups: false,
+    #           ssl_certificate_s3_path: {
+    #             bucket: "S3BucketName", # required
+    #             key: "S3ObjectKey", # required
+    #           },
     #         },
     #         database_configuration: {
     #           database_engine_type: "RDS_AURORA_MYSQL", # required, accepts RDS_AURORA_MYSQL, RDS_AURORA_POSTGRESQL, RDS_MYSQL, RDS_POSTGRESQL
@@ -2473,6 +2719,37 @@ module Aws::Kendra
     #           exclude_user_accounts: ["UserAccount"],
     #           exclude_shared_drives: ["SharedDriveId"],
     #         },
+    #         web_crawler_configuration: {
+    #           urls: { # required
+    #             seed_url_configuration: {
+    #               seed_urls: ["SeedUrl"], # required
+    #               web_crawler_mode: "HOST_ONLY", # accepts HOST_ONLY, SUBDOMAINS, EVERYTHING
+    #             },
+    #             site_maps_configuration: {
+    #               site_maps: ["SiteMap"], # required
+    #             },
+    #           },
+    #           crawl_depth: 1,
+    #           max_links_per_page: 1,
+    #           max_content_size_per_page_in_mega_bytes: 1.0,
+    #           max_urls_per_minute_crawl_rate: 1,
+    #           url_inclusion_patterns: ["DataSourceInclusionsExclusionsStringsMember"],
+    #           url_exclusion_patterns: ["DataSourceInclusionsExclusionsStringsMember"],
+    #           proxy_configuration: {
+    #             host: "Host", # required
+    #             port: 1, # required
+    #             credentials: "SecretArn",
+    #           },
+    #           authentication_configuration: {
+    #             basic_authentication: [
+    #               {
+    #                 host: "Host", # required
+    #                 port: 1, # required
+    #                 credentials: "SecretArn", # required
+    #               },
+    #             ],
+    #           },
+    #         },
     #       }
     #
     # @!attribute [rw] s3_configuration
@@ -2515,6 +2792,11 @@ module Aws::Kendra
     #   Drive.
     #   @return [Types::GoogleDriveConfiguration]
     #
+    # @!attribute [rw] web_crawler_configuration
+    #   Provides the configuration information required for Amazon Kendra
+    #   web crawler.
+    #   @return [Types::WebCrawlerConfiguration]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/DataSourceConfiguration AWS API Documentation
     #
     class DataSourceConfiguration < Struct.new(
@@ -2525,7 +2807,39 @@ module Aws::Kendra
       :one_drive_configuration,
       :service_now_configuration,
       :confluence_configuration,
-      :google_drive_configuration)
+      :google_drive_configuration,
+      :web_crawler_configuration)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Data source information for user context filtering.
+    #
+    # @note When making an API call, you may pass DataSourceGroup
+    #   data as a hash:
+    #
+    #       {
+    #         group_id: "PrincipalName", # required
+    #         data_source_id: "DataSourceId", # required
+    #       }
+    #
+    # @!attribute [rw] group_id
+    #   The identifier of the group you want to add to your list of groups.
+    #   This is for filtering search results based on the groups' access to
+    #   documents.
+    #   @return [String]
+    #
+    # @!attribute [rw] data_source_id
+    #   The identifier of the data source group you want to add to your list
+    #   of data source groups. This is for filtering search results based on
+    #   the groups' access to documents in that data source.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/DataSourceGroup AWS API Documentation
+    #
+    class DataSourceGroup < Struct.new(
+      :group_id,
+      :data_source_id)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -2921,6 +3235,68 @@ module Aws::Kendra
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass DeletePrincipalMappingRequest
+    #   data as a hash:
+    #
+    #       {
+    #         index_id: "IndexId", # required
+    #         data_source_id: "DataSourceId",
+    #         group_id: "GroupId", # required
+    #         ordering_id: 1,
+    #       }
+    #
+    # @!attribute [rw] index_id
+    #   The identifier of the index you want to delete a group from.
+    #   @return [String]
+    #
+    # @!attribute [rw] data_source_id
+    #   The identifier of the data source you want to delete a group from.
+    #
+    #   This is useful if a group is tied to multiple data sources and you
+    #   want to delete a group from accessing documents in a certain data
+    #   source. For example, the groups "Research", "Engineering", and
+    #   "Sales and Marketing" are all tied to the company's documents
+    #   stored in the data sources Confluence and Salesforce. You want to
+    #   delete "Research" and "Engineering" groups from Salesforce, so
+    #   that these groups cannot access customer-related documents stored in
+    #   Salesforce. Only "Sales and Marketing" should access documents in
+    #   the Salesforce data source.
+    #   @return [String]
+    #
+    # @!attribute [rw] group_id
+    #   The identifier of the group you want to delete.
+    #   @return [String]
+    #
+    # @!attribute [rw] ordering_id
+    #   The timestamp identifier you specify to ensure Amazon Kendra does
+    #   not override the latest `DELETE` action with previous actions. The
+    #   highest number ID, which is the ordering ID, is the latest action
+    #   you want to process and apply on top of other actions with lower
+    #   number IDs. This prevents previous actions with lower number IDs
+    #   from possibly overriding the latest action.
+    #
+    #   The ordering ID can be the UNIX time of the last update you made to
+    #   a group members list. You would then provide this list when calling
+    #   `PutPrincipalMapping`. This ensures your `DELETE` action for that
+    #   updated group with the latest members list doesn't get overwritten
+    #   by earlier `DELETE` actions for the same group which are yet to be
+    #   processed.
+    #
+    #   The default ordering ID is the current UNIX time in milliseconds
+    #   that the action was received by Amazon Kendra.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/DeletePrincipalMappingRequest AWS API Documentation
+    #
+    class DeletePrincipalMappingRequest < Struct.new(
+      :index_id,
+      :data_source_id,
+      :group_id,
+      :ordering_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass DeleteQuerySuggestionsBlockListRequest
     #   data as a hash:
     #
@@ -3199,8 +3575,8 @@ module Aws::Kendra
     #   @return [String]
     #
     # @!attribute [rw] server_side_encryption_configuration
-    #   The identifier of the AWS KMS customer master key (CMK) used to
-    #   encrypt your data. Amazon Kendra doesn't support asymmetric CMKs.
+    #   The identifier of the KMScustomer master key (CMK) used to encrypt
+    #   your data. Amazon Kendra doesn't support asymmetric CMKs.
     #   @return [Types::ServerSideEncryptionConfiguration]
     #
     # @!attribute [rw] status
@@ -3274,6 +3650,86 @@ module Aws::Kendra
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass DescribePrincipalMappingRequest
+    #   data as a hash:
+    #
+    #       {
+    #         index_id: "IndexId", # required
+    #         data_source_id: "DataSourceId",
+    #         group_id: "GroupId", # required
+    #       }
+    #
+    # @!attribute [rw] index_id
+    #   The identifier of the index required to check the processing of
+    #   `PUT` and `DELETE` actions for mapping users to their groups.
+    #   @return [String]
+    #
+    # @!attribute [rw] data_source_id
+    #   The identifier of the data source to check the processing of `PUT`
+    #   and `DELETE` actions for mapping users to their groups.
+    #   @return [String]
+    #
+    # @!attribute [rw] group_id
+    #   The identifier of the group required to check the processing of
+    #   `PUT` and `DELETE` actions for mapping users to their groups.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/DescribePrincipalMappingRequest AWS API Documentation
+    #
+    class DescribePrincipalMappingRequest < Struct.new(
+      :index_id,
+      :data_source_id,
+      :group_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] index_id
+    #   Shows the identifier of the index to see information on the
+    #   processing of `PUT` and `DELETE` actions for mapping users to their
+    #   groups.
+    #   @return [String]
+    #
+    # @!attribute [rw] data_source_id
+    #   Shows the identifier of the data source to see information on the
+    #   processing of `PUT` and `DELETE` actions for mapping users to their
+    #   groups.
+    #   @return [String]
+    #
+    # @!attribute [rw] group_id
+    #   Shows the identifier of the group to see information on the
+    #   processing of `PUT` and `DELETE` actions for mapping users to their
+    #   groups.
+    #   @return [String]
+    #
+    # @!attribute [rw] group_ordering_id_summaries
+    #   Shows the following information on the processing of `PUT` and
+    #   `DELETE` actions for mapping users to their groups:
+    #
+    #   * Status – the status can be either `PROCESSING`, `SUCCEEDED`,
+    #     `DELETING`, `DELETED`, or `FAILED`.
+    #
+    #   * Last updated – the last date-time an action was updated.
+    #
+    #   * Received – the last date-time an action was received or submitted.
+    #
+    #   * Ordering ID – the latest action that should process and apply
+    #     after other actions.
+    #
+    #   * Failure reason – the reason an action could not be processed.
+    #   @return [Array<Types::GroupOrderingIdSummary>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/DescribePrincipalMappingResponse AWS API Documentation
+    #
+    class DescribePrincipalMappingResponse < Struct.new(
+      :index_id,
+      :data_source_id,
+      :group_id,
+      :group_ordering_id_summaries)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass DescribeQuerySuggestionsBlockListRequest
     #   data as a hash:
     #
@@ -3624,6 +4080,19 @@ module Aws::Kendra
     #             name: "PrincipalName", # required
     #             type: "USER", # required, accepts USER, GROUP
     #             access: "ALLOW", # required, accepts ALLOW, DENY
+    #             data_source_id: "DataSourceId",
+    #           },
+    #         ],
+    #         hierarchical_access_control_list: [
+    #           {
+    #             principal_list: [ # required
+    #               {
+    #                 name: "PrincipalName", # required
+    #                 type: "USER", # required, accepts USER, GROUP
+    #                 access: "ALLOW", # required, accepts ALLOW, DENY
+    #                 data_source_id: "DataSourceId",
+    #               },
+    #             ],
     #           },
     #         ],
     #         content_type: "PDF", # accepts PDF, HTML, MS_WORD, PLAIN_TEXT, PPT
@@ -3642,9 +4111,9 @@ module Aws::Kendra
     #
     #   Documents passed to the `Blob` parameter must be base64 encoded.
     #   Your code might not need to encode the document file bytes if
-    #   you're using an AWS SDK to call Amazon Kendra operations. If you
-    #   are calling the Amazon Kendra endpoint directly using REST, you must
-    #   base64 encode the contents before sending.
+    #   you're using an Amazon Web Services SDK to call Amazon Kendra
+    #   operations. If you are calling the Amazon Kendra endpoint directly
+    #   using REST, you must base64 encode the contents before sending.
     #   @return [String]
     #
     # @!attribute [rw] s3_path
@@ -3659,9 +4128,19 @@ module Aws::Kendra
     #   @return [Array<Types::DocumentAttribute>]
     #
     # @!attribute [rw] access_control_list
-    #   Information to use for user context filtering.
+    #   Information on user and group access rights, which is used for user
+    #   context filtering.
     #   @return [Array<Types::Principal>]
     #
+    # @!attribute [rw] hierarchical_access_control_list
+    #   The list of [principal][1] lists that define the hierarchy for which
+    #   documents users should have access to.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/kendra/latest/dg/API_Principal.html
+    #   @return [Array<Types::HierarchicalPrincipal>]
+    #
     # @!attribute [rw] content_type
     #   The file type of the document in the `Blob` field.
     #   @return [String]
@@ -3675,6 +4154,7 @@ module Aws::Kendra
       :s3_path,
       :attributes,
       :access_control_list,
+      :hierarchical_access_control_list,
       :content_type)
       SENSITIVE = []
       include Aws::Structure
@@ -3739,6 +4219,11 @@ module Aws::Kendra
     #
     # @!attribute [rw] date_value
     #   A date expressed as an ISO 8601 string.
+    #
+    #   It is important for the time zone to be included in the ISO 8601
+    #   date-time format. For example, 20120325T123010+01:00 is the ISO 8601
+    #   date-time format for March 25th 2012 at 12:30PM (plus 10 seconds) in
+    #   Central European Time.
     #   @return [Time]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/DocumentAttributeValue AWS API Documentation
@@ -3773,32 +4258,87 @@ module Aws::Kendra
       include Aws::Structure
     end
 
-    # Specifies the properties of a custom index field.
+    # Identifies a document for which to retrieve status information
     #
-    # @note When making an API call, you may pass DocumentMetadataConfiguration
+    # @note When making an API call, you may pass DocumentInfo
     #   data as a hash:
     #
     #       {
-    #         name: "DocumentMetadataConfigurationName", # required
-    #         type: "STRING_VALUE", # required, accepts STRING_VALUE, STRING_LIST_VALUE, LONG_VALUE, DATE_VALUE
-    #         relevance: {
-    #           freshness: false,
-    #           importance: 1,
-    #           duration: "Duration",
-    #           rank_order: "ASCENDING", # accepts ASCENDING, DESCENDING
-    #           value_importance_map: {
-    #             "ValueImportanceMapKey" => 1,
+    #         document_id: "DocumentId", # required
+    #         attributes: [
+    #           {
+    #             key: "DocumentAttributeKey", # required
+    #             value: { # required
+    #               string_value: "DocumentAttributeStringValue",
+    #               string_list_value: ["String"],
+    #               long_value: 1,
+    #               date_value: Time.now,
+    #             },
     #           },
-    #         },
-    #         search: {
-    #           facetable: false,
-    #           searchable: false,
-    #           displayable: false,
-    #           sortable: false,
-    #         },
+    #         ],
     #       }
     #
-    # @!attribute [rw] name
+    # @!attribute [rw] document_id
+    #   The unique identifier of the document.
+    #   @return [String]
+    #
+    # @!attribute [rw] attributes
+    #   Attributes that identify a specific version of a document to check.
+    #
+    #   The only valid attributes are:
+    #
+    #   * version
+    #
+    #   * datasourceId
+    #
+    #   * jobExecutionId
+    #
+    #   The attributes follow these rules:
+    #
+    #   * `dataSourceId` and `jobExecutionId` must be used together.
+    #
+    #   * `version` is ignored if `dataSourceId` and `jobExecutionId` are
+    #     not provided.
+    #
+    #   * If `dataSourceId` and `jobExecutionId` are provided, but `version`
+    #     is not, the version defaults to "0".
+    #   @return [Array<Types::DocumentAttribute>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/DocumentInfo AWS API Documentation
+    #
+    class DocumentInfo < Struct.new(
+      :document_id,
+      :attributes)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Specifies the properties of a custom index field.
+    #
+    # @note When making an API call, you may pass DocumentMetadataConfiguration
+    #   data as a hash:
+    #
+    #       {
+    #         name: "DocumentMetadataConfigurationName", # required
+    #         type: "STRING_VALUE", # required, accepts STRING_VALUE, STRING_LIST_VALUE, LONG_VALUE, DATE_VALUE
+    #         relevance: {
+    #           freshness: false,
+    #           importance: 1,
+    #           duration: "Duration",
+    #           rank_order: "ASCENDING", # accepts ASCENDING, DESCENDING
+    #           value_importance_map: {
+    #             "ValueImportanceMapKey" => 1,
+    #           },
+    #         },
+    #         search: {
+    #           facetable: false,
+    #           searchable: false,
+    #           displayable: false,
+    #           sortable: false,
+    #         },
+    #       }
+    #
+    # @!attribute [rw] name
     #   The name of the index field.
     #   @return [String]
     #
@@ -3878,9 +4418,10 @@ module Aws::Kendra
     #       }
     #
     # @!attribute [rw] s3_prefix
-    #   A prefix used to filter metadata configuration files in the AWS S3
-    #   bucket. The S3 bucket might contain multiple metadata files. Use
-    #   `S3Prefix` to include only the desired metadata files.
+    #   A prefix used to filter metadata configuration files in the Amazon
+    #   Web Services S3 bucket. The S3 bucket might contain multiple
+    #   metadata files. Use `S3Prefix` to include only the desired metadata
+    #   files.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/DocumentsMetadataConfiguration AWS API Documentation
@@ -4078,7 +4619,7 @@ module Aws::Kendra
     #       }
     #
     # @!attribute [rw] secret_arn
-    #   The Amazon Resource Name (ARN) of a AWS Secrets Manager secret that
+    #   The Amazon Resource Name (ARN) of a Secrets Managersecret that
     #   contains the credentials required to connect to Google Drive. For
     #   more information, see [Using a Google Workspace Drive data
     #   source][1].
@@ -4152,6 +4693,157 @@ module Aws::Kendra
       include Aws::Structure
     end
 
+    # A list of users or sub groups that belong to a group. Users and groups
+    # are useful for filtering search results to different users based on
+    # their group's access to documents.
+    #
+    # @note When making an API call, you may pass GroupMembers
+    #   data as a hash:
+    #
+    #       {
+    #         member_groups: [
+    #           {
+    #             group_id: "GroupId", # required
+    #             data_source_id: "DataSourceId",
+    #           },
+    #         ],
+    #         member_users: [
+    #           {
+    #             user_id: "UserId", # required
+    #           },
+    #         ],
+    #         s3_pathfor_group_members: {
+    #           bucket: "S3BucketName", # required
+    #           key: "S3ObjectKey", # required
+    #         },
+    #       }
+    #
+    # @!attribute [rw] member_groups
+    #   A list of sub groups that belong to a group. For example, the sub
+    #   groups "Research", "Engineering", and "Sales and Marketing"
+    #   all belong to the group "Company".
+    #   @return [Array<Types::MemberGroup>]
+    #
+    # @!attribute [rw] member_users
+    #   A list of users that belong to a group. For example, a list of
+    #   interns all belong to the "Interns" group.
+    #   @return [Array<Types::MemberUser>]
+    #
+    # @!attribute [rw] s3_pathfor_group_members
+    #   If you have more than 1000 users and/or sub groups for a single
+    #   group, you need to provide the path to the S3 file that lists your
+    #   users and sub groups for a group. Your sub groups can contain more
+    #   than 1000 users, but the list of sub groups that belong to a group
+    #   (and/or users) must be no more than 1000.
+    #   @return [Types::S3Path]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/GroupMembers AWS API Documentation
+    #
+    class GroupMembers < Struct.new(
+      :member_groups,
+      :member_users,
+      :s3_pathfor_group_members)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Information on the processing of `PUT` and `DELETE` actions for
+    # mapping users to their groups.
+    #
+    # @!attribute [rw] status
+    #   The current processing status of actions for mapping users to their
+    #   groups. The status can be either `PROCESSING`, `SUCCEEDED`,
+    #   `DELETING`, `DELETED`, or `FAILED`.
+    #   @return [String]
+    #
+    # @!attribute [rw] last_updated_at
+    #   The last date-time an action was updated. An action can be a `PUT`
+    #   or `DELETE` action for mapping users to their groups.
+    #   @return [Time]
+    #
+    # @!attribute [rw] received_at
+    #   The date-time an action was received by Amazon Kendra. An action can
+    #   be a `PUT` or `DELETE` action for mapping users to their groups.
+    #   @return [Time]
+    #
+    # @!attribute [rw] ordering_id
+    #   The order in which actions should complete processing. An action can
+    #   be a `PUT` or `DELETE` action for mapping users to their groups.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] failure_reason
+    #   The reason an action could not be processed. An action can be a
+    #   `PUT` or `DELETE` action for mapping users to their groups.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/GroupOrderingIdSummary AWS API Documentation
+    #
+    class GroupOrderingIdSummary < Struct.new(
+      :status,
+      :last_updated_at,
+      :received_at,
+      :ordering_id,
+      :failure_reason)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Group summary information.
+    #
+    # @!attribute [rw] group_id
+    #   The identifier of the group you want group summary information on.
+    #   @return [String]
+    #
+    # @!attribute [rw] ordering_id
+    #   The timestamp identifier used for the latest `PUT` or `DELETE`
+    #   action.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/GroupSummary AWS API Documentation
+    #
+    class GroupSummary < Struct.new(
+      :group_id,
+      :ordering_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Information to define the hierarchy for which documents users should
+    # have access to.
+    #
+    # @note When making an API call, you may pass HierarchicalPrincipal
+    #   data as a hash:
+    #
+    #       {
+    #         principal_list: [ # required
+    #           {
+    #             name: "PrincipalName", # required
+    #             type: "USER", # required, accepts USER, GROUP
+    #             access: "ALLOW", # required, accepts ALLOW, DENY
+    #             data_source_id: "DataSourceId",
+    #           },
+    #         ],
+    #       }
+    #
+    # @!attribute [rw] principal_list
+    #   A list of [principal][1] lists that define the hierarchy for which
+    #   documents users should have access to. Each hierarchical list
+    #   specifies which user or group has allow or deny access for each
+    #   document.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/kendra/latest/dg/API_Principal.html
+    #   @return [Array<Types::Principal>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/HierarchicalPrincipal AWS API Documentation
+    #
+    class HierarchicalPrincipal < Struct.new(
+      :principal_list)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Provides information that you can use to highlight a search result so
     # that your users can quickly identify terms in the response.
     #
@@ -4532,6 +5224,71 @@ module Aws::Kendra
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass ListGroupsOlderThanOrderingIdRequest
+    #   data as a hash:
+    #
+    #       {
+    #         index_id: "IndexId", # required
+    #         data_source_id: "DataSourceId",
+    #         ordering_id: 1, # required
+    #         next_token: "NextToken",
+    #         max_results: 1,
+    #       }
+    #
+    # @!attribute [rw] index_id
+    #   The identifier of the index for getting a list of groups mapped to
+    #   users before a given ordering or timestamp identifier.
+    #   @return [String]
+    #
+    # @!attribute [rw] data_source_id
+    #   The identifier of the data source for getting a list of groups
+    #   mapped to users before a given ordering timestamp identifier.
+    #   @return [String]
+    #
+    # @!attribute [rw] ordering_id
+    #   The timestamp identifier used for the latest `PUT` or `DELETE`
+    #   action for mapping users to their groups.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] next_token
+    #   The next items in the list of groups that go beyond the maximum.
+    #   @return [String]
+    #
+    # @!attribute [rw] max_results
+    #   The maximum results shown for a list of groups that are mapped to
+    #   users before a given ordering or timestamp identifier.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/ListGroupsOlderThanOrderingIdRequest AWS API Documentation
+    #
+    class ListGroupsOlderThanOrderingIdRequest < Struct.new(
+      :index_id,
+      :data_source_id,
+      :ordering_id,
+      :next_token,
+      :max_results)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] groups_summaries
+    #   Summary information for list of groups that are mapped to users
+    #   before a given ordering or timestamp identifier.
+    #   @return [Array<Types::GroupSummary>]
+    #
+    # @!attribute [rw] next_token
+    #   The next items in the list of groups that go beyond the maximum.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/ListGroupsOlderThanOrderingIdResponse AWS API Documentation
+    #
+    class ListGroupsOlderThanOrderingIdResponse < Struct.new(
+      :groups_summaries,
+      :next_token)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass ListIndicesRequest
     #   data as a hash:
     #
@@ -4736,6 +5493,55 @@ module Aws::Kendra
       include Aws::Structure
     end
 
+    # The sub groups that belong to a group.
+    #
+    # @note When making an API call, you may pass MemberGroup
+    #   data as a hash:
+    #
+    #       {
+    #         group_id: "GroupId", # required
+    #         data_source_id: "DataSourceId",
+    #       }
+    #
+    # @!attribute [rw] group_id
+    #   The identifier of the sub group you want to map to a group.
+    #   @return [String]
+    #
+    # @!attribute [rw] data_source_id
+    #   The identifier of the data source for the sub group you want to map
+    #   to a group.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/MemberGroup AWS API Documentation
+    #
+    class MemberGroup < Struct.new(
+      :group_id,
+      :data_source_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # The users that belong to a group.
+    #
+    # @note When making an API call, you may pass MemberUser
+    #   data as a hash:
+    #
+    #       {
+    #         user_id: "UserId", # required
+    #       }
+    #
+    # @!attribute [rw] user_id
+    #   The identifier of the user you want to map to a group.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/MemberUser AWS API Documentation
+    #
+    class MemberUser < Struct.new(
+      :user_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Provides configuration information for data sources that connect to
     # OneDrive.
     #
@@ -4769,7 +5575,7 @@ module Aws::Kendra
     #   @return [String]
     #
     # @!attribute [rw] secret_arn
-    #   The Amazon Resource Name (ARN) of an AWS Secrets Manager secret that
+    #   The Amazon Resource Name (ARN) of an Secrets Managersecret that
     #   contains the user name and password to connect to OneDrive. The user
     #   namd should be the application ID for the OneDrive application, and
     #   the password is the application key for the OneDrive application.
@@ -4867,6 +5673,7 @@ module Aws::Kendra
     #         name: "PrincipalName", # required
     #         type: "USER", # required, accepts USER, GROUP
     #         access: "ALLOW", # required, accepts ALLOW, DENY
+    #         data_source_id: "DataSourceId",
     #       }
     #
     # @!attribute [rw] name
@@ -4881,12 +5688,177 @@ module Aws::Kendra
     #   Whether to allow or deny access to the principal.
     #   @return [String]
     #
+    # @!attribute [rw] data_source_id
+    #   The identifier of the data source the principal should access
+    #   documents from.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/Principal AWS API Documentation
     #
     class Principal < Struct.new(
       :name,
       :type,
-      :access)
+      :access,
+      :data_source_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Provides the configuration information for a web proxy to connect to
+    # website hosts.
+    #
+    # @note When making an API call, you may pass ProxyConfiguration
+    #   data as a hash:
+    #
+    #       {
+    #         host: "Host", # required
+    #         port: 1, # required
+    #         credentials: "SecretArn",
+    #       }
+    #
+    # @!attribute [rw] host
+    #   The name of the website host you want to connect to via a web proxy
+    #   server.
+    #
+    #   For example, the host name of https://a.example.com/page1.html is
+    #   "a.example.com".
+    #   @return [String]
+    #
+    # @!attribute [rw] port
+    #   The port number of the website host you want to connect to via a web
+    #   proxy server.
+    #
+    #   For example, the port for https://a.example.com/page1.html is 443,
+    #   the standard port for HTTPS.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] credentials
+    #   Your secret ARN, which you can create in [AWS Secrets Manager][1]
+    #
+    #   The credentials are optional. You use a secret if web proxy
+    #   credentials are required to connect to a website host. Amazon Kendra
+    #   currently support basic authentication to connect to a web proxy
+    #   server. The secret stores your credentials.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/intro.html
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/ProxyConfiguration AWS API Documentation
+    #
+    class ProxyConfiguration < Struct.new(
+      :host,
+      :port,
+      :credentials)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass PutPrincipalMappingRequest
+    #   data as a hash:
+    #
+    #       {
+    #         index_id: "IndexId", # required
+    #         data_source_id: "DataSourceId",
+    #         group_id: "GroupId", # required
+    #         group_members: { # required
+    #           member_groups: [
+    #             {
+    #               group_id: "GroupId", # required
+    #               data_source_id: "DataSourceId",
+    #             },
+    #           ],
+    #           member_users: [
+    #             {
+    #               user_id: "UserId", # required
+    #             },
+    #           ],
+    #           s3_pathfor_group_members: {
+    #             bucket: "S3BucketName", # required
+    #             key: "S3ObjectKey", # required
+    #           },
+    #         },
+    #         ordering_id: 1,
+    #         role_arn: "RoleArn",
+    #       }
+    #
+    # @!attribute [rw] index_id
+    #   The identifier of the index you want to map users to their groups.
+    #   @return [String]
+    #
+    # @!attribute [rw] data_source_id
+    #   The identifier of the data source you want to map users to their
+    #   groups.
+    #
+    #   This is useful if a group is tied to multiple data sources, but you
+    #   only want the group to access documents of a certain data source.
+    #   For example, the groups "Research", "Engineering", and "Sales
+    #   and Marketing" are all tied to the company's documents stored in
+    #   the data sources Confluence and Salesforce. However, "Sales and
+    #   Marketing" team only needs access to customer-related documents
+    #   stored in Salesforce.
+    #   @return [String]
+    #
+    # @!attribute [rw] group_id
+    #   The identifier of the group you want to map its users to.
+    #   @return [String]
+    #
+    # @!attribute [rw] group_members
+    #   The list that contains your users or sub groups that belong the same
+    #   group.
+    #
+    #   For example, the group "Company" includes the user "CEO" and the
+    #   sub groups "Research", "Engineering", and "Sales and
+    #   Marketing".
+    #
+    #   If you have more than 1000 users and/or sub groups for a single
+    #   group, you need to provide the path to the S3 file that lists your
+    #   users and sub groups for a group. Your sub groups can contain more
+    #   than 1000 users, but the list of sub groups that belong to a group
+    #   (and/or users) must be no more than 1000.
+    #   @return [Types::GroupMembers]
+    #
+    # @!attribute [rw] ordering_id
+    #   The timestamp identifier you specify to ensure Amazon Kendra does
+    #   not override the latest `PUT` action with previous actions. The
+    #   highest number ID, which is the ordering ID, is the latest action
+    #   you want to process and apply on top of other actions with lower
+    #   number IDs. This prevents previous actions with lower number IDs
+    #   from possibly overriding the latest action.
+    #
+    #   The ordering ID can be the UNIX time of the last update you made to
+    #   a group members list. You would then provide this list when calling
+    #   `PutPrincipalMapping`. This ensures your `PUT` action for that
+    #   updated group with the latest members list doesn't get overwritten
+    #   by earlier `PUT` actions for the same group which are yet to be
+    #   processed.
+    #
+    #   The default ordering ID is the current UNIX time in milliseconds
+    #   that the action was received by Amazon Kendra.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] role_arn
+    #   The Amazon Resource Name (ARN) of a role that has access to the S3
+    #   file that contains your list of users or sub groups that belong to a
+    #   group.
+    #
+    #   For more information, see [IAM roles for Amazon Kendra][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/kendra/latest/dg/iam-roles.html#iam-roles-ds
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/PutPrincipalMappingRequest AWS API Documentation
+    #
+    class PutPrincipalMappingRequest < Struct.new(
+      :index_id,
+      :data_source_id,
+      :group_id,
+      :group_members,
+      :ordering_id,
+      :role_arn)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -5004,6 +5976,14 @@ module Aws::Kendra
     #         },
     #         user_context: {
     #           token: "Token",
+    #           user_id: "PrincipalName",
+    #           groups: ["PrincipalName"],
+    #           data_source_groups: [
+    #             {
+    #               group_id: "PrincipalName", # required
+    #               data_source_id: "DataSourceId", # required
+    #             },
+    #           ],
     #         },
     #         visitor_id: "VisitorId",
     #       }
@@ -5706,7 +6686,7 @@ module Aws::Kendra
     #   @return [String]
     #
     # @!attribute [rw] secret_arn
-    #   The Amazon Resource Name (ARN) of an AWS Secrets Manager secret that
+    #   The Amazon Resource Name (ARN) of an Secrets Managersecret that
     #   contains the key/value pairs required to connect to your Salesforce
     #   instance. The secret must contain a JSON structure with the
     #   following keys:
@@ -6096,9 +7076,62 @@ module Aws::Kendra
       include Aws::Structure
     end
 
-    # Provides the identifier of the AWS KMS customer master key (CMK) used
-    # to encrypt data indexed by Amazon Kendra. Amazon Kendra doesn't
-    # support asymmetric CMKs.
+    # Provides the configuration information of the seed or starting point
+    # URLs to crawl.
+    #
+    # *When selecting websites to index, you must adhere to the [Amazon
+    # Acceptable Use Policy][1] and all other Amazon terms. Remember that
+    # you must only use the Amazon Kendra web crawler to index your own
+    # webpages, or webpages that you have authorization to index.*
+    #
+    #
+    #
+    # [1]: https://aws.amazon.com/aup/
+    #
+    # @note When making an API call, you may pass SeedUrlConfiguration
+    #   data as a hash:
+    #
+    #       {
+    #         seed_urls: ["SeedUrl"], # required
+    #         web_crawler_mode: "HOST_ONLY", # accepts HOST_ONLY, SUBDOMAINS, EVERYTHING
+    #       }
+    #
+    # @!attribute [rw] seed_urls
+    #   The list of seed or starting point URLs of the websites you want to
+    #   crawl.
+    #
+    #   The list can include a maximum of 100 seed URLs.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] web_crawler_mode
+    #   You can choose one of the following modes:
+    #
+    #   * `HOST_ONLY` – crawl only the website host names. For example, if
+    #     the seed URL is "abc.example.com", then only URLs with host name
+    #     "abc.example.com" are crawled.
+    #
+    #   * `SUBDOMAINS` – crawl the website host names with subdomains. For
+    #     example, if the seed URL is "abc.example.com", then
+    #     "a.abc.example.com" and "b.abc.example.com" are also crawled.
+    #
+    #   * `EVERYTHING` – crawl the website host names with subdomains and
+    #     other domains that the webpages link to.
+    #
+    #   The default mode is set to `HOST_ONLY`.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/SeedUrlConfiguration AWS API Documentation
+    #
+    class SeedUrlConfiguration < Struct.new(
+      :seed_urls,
+      :web_crawler_mode)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Provides the identifier of the KMScustomer master key (CMK) used to
+    # encrypt data indexed by Amazon Kendra. Amazon Kendra doesn't support
+    # asymmetric CMKs.
     #
     # @note When making an API call, you may pass ServerSideEncryptionConfiguration
     #   data as a hash:
@@ -6108,8 +7141,8 @@ module Aws::Kendra
     #       }
     #
     # @!attribute [rw] kms_key_id
-    #   The identifier of the AWS KMS customer master key (CMK). Amazon
-    #   Kendra doesn't support asymmetric CMKs.
+    #   The identifier of the KMScustomer master key (CMK). Amazon Kendra
+    #   doesn't support asymmetric CMKs.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/ServerSideEncryptionConfiguration AWS API Documentation
@@ -6169,7 +7202,7 @@ module Aws::Kendra
     #   @return [String]
     #
     # @!attribute [rw] secret_arn
-    #   The Amazon Resource Name (ARN) of the AWS Secret Manager secret that
+    #   The Amazon Resource Name (ARN) of the Secrets Manager secret that
     #   contains the user name and password required to connect to the
     #   ServiceNow instance.
     #   @return [String]
@@ -6395,7 +7428,7 @@ module Aws::Kendra
     #   data as a hash:
     #
     #       {
-    #         share_point_version: "SHAREPOINT_ONLINE", # required, accepts SHAREPOINT_ONLINE
+    #         share_point_version: "SHAREPOINT_2013", # required, accepts SHAREPOINT_2013, SHAREPOINT_2016, SHAREPOINT_ONLINE
     #         urls: ["Url"], # required
     #         secret_arn: "SecretArn", # required
     #         crawl_attachments: false,
@@ -6415,6 +7448,10 @@ module Aws::Kendra
     #         ],
     #         document_title_field_name: "DataSourceFieldName",
     #         disable_local_groups: false,
+    #         ssl_certificate_s3_path: {
+    #           bucket: "S3BucketName", # required
+    #           key: "S3ObjectKey", # required
+    #         },
     #       }
     #
     # @!attribute [rw] share_point_version
@@ -6429,10 +7466,12 @@ module Aws::Kendra
     #
     # @!attribute [rw] secret_arn
     #   The Amazon Resource Name (ARN) of credentials stored in AWS Secrets
-    #   Manager. The credentials should be a user/password pair. For more
-    #   information, see [Using a Microsoft SharePoint Data Source][1]. For
-    #   more information about AWS Secrets Manager, see [ What Is AWS
-    #   Secrets Manager ][2] in the *AWS Secrets Manager* user guide.
+    #   Manager. The credentials should be a user/password pair. If you use
+    #   SharePoint Sever, you also need to provide the sever domain name as
+    #   part of the credentials. For more information, see [Using a
+    #   Microsoft SharePoint Data Source][1]. For more information about AWS
+    #   Secrets Manager, see [ What Is AWS Secrets Manager ][2] in the
+    #   <i>Secrets Manager </i> user guide.
     #
     #
     #
@@ -6500,6 +7539,10 @@ module Aws::Kendra
     #   (`True`) or enabled (`False`).
     #   @return [Boolean]
     #
+    # @!attribute [rw] ssl_certificate_s3_path
+    #   Information required to find a specific file in an Amazon S3 bucket.
+    #   @return [Types::S3Path]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/SharePointConfiguration AWS API Documentation
     #
     class SharePointConfiguration < Struct.new(
@@ -6513,7 +7556,40 @@ module Aws::Kendra
       :vpc_configuration,
       :field_mappings,
       :document_title_field_name,
-      :disable_local_groups)
+      :disable_local_groups,
+      :ssl_certificate_s3_path)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Provides the configuration information of the sitemap URLs to crawl.
+    #
+    # *When selecting websites to index, you must adhere to the [Amazon
+    # Acceptable Use Policy][1] and all other Amazon terms. Remember that
+    # you must only use the Amazon Kendra web crawler to index your own
+    # webpages, or webpages that you have authorization to index.*
+    #
+    #
+    #
+    # [1]: https://aws.amazon.com/aup/
+    #
+    # @note When making an API call, you may pass SiteMapsConfiguration
+    #   data as a hash:
+    #
+    #       {
+    #         site_maps: ["SiteMap"], # required
+    #       }
+    #
+    # @!attribute [rw] site_maps
+    #   The list of sitemap URLs of the websites you want to crawl.
+    #
+    #   The list can include a maximum of three sitemap URLs.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/SiteMapsConfiguration AWS API Documentation
+    #
+    class SiteMapsConfiguration < Struct.new(
+      :site_maps)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -6649,6 +7725,41 @@ module Aws::Kendra
       include Aws::Structure
     end
 
+    # Provides information about the status of documents submitted for
+    # indexing.
+    #
+    # @!attribute [rw] document_id
+    #   The unique identifier of the document.
+    #   @return [String]
+    #
+    # @!attribute [rw] document_status
+    #   The current status of a document.
+    #
+    #   If the document was submitted for deletion, the status is
+    #   `NOT_FOUND` after the document is deleted.
+    #   @return [String]
+    #
+    # @!attribute [rw] failure_code
+    #   Indicates the source of the error.
+    #   @return [String]
+    #
+    # @!attribute [rw] failure_reason
+    #   Provides detailed information about why the document couldn't be
+    #   indexed. Use this information to correct the error before you
+    #   resubmit the document for indexing.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/Status AWS API Documentation
+    #
+    class Status < Struct.new(
+      :document_id,
+      :document_status,
+      :failure_code,
+      :failure_reason)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass StopDataSourceSyncJobRequest
     #   data as a hash:
     #
@@ -7036,7 +8147,7 @@ module Aws::Kendra
     #             },
     #           },
     #           share_point_configuration: {
-    #             share_point_version: "SHAREPOINT_ONLINE", # required, accepts SHAREPOINT_ONLINE
+    #             share_point_version: "SHAREPOINT_2013", # required, accepts SHAREPOINT_2013, SHAREPOINT_2016, SHAREPOINT_ONLINE
     #             urls: ["Url"], # required
     #             secret_arn: "SecretArn", # required
     #             crawl_attachments: false,
@@ -7056,6 +8167,10 @@ module Aws::Kendra
     #             ],
     #             document_title_field_name: "DataSourceFieldName",
     #             disable_local_groups: false,
+    #             ssl_certificate_s3_path: {
+    #               bucket: "S3BucketName", # required
+    #               key: "S3ObjectKey", # required
+    #             },
     #           },
     #           database_configuration: {
     #             database_engine_type: "RDS_AURORA_MYSQL", # required, accepts RDS_AURORA_MYSQL, RDS_AURORA_POSTGRESQL, RDS_MYSQL, RDS_POSTGRESQL
@@ -7284,6 +8399,37 @@ module Aws::Kendra
     #             exclude_user_accounts: ["UserAccount"],
     #             exclude_shared_drives: ["SharedDriveId"],
     #           },
+    #           web_crawler_configuration: {
+    #             urls: { # required
+    #               seed_url_configuration: {
+    #                 seed_urls: ["SeedUrl"], # required
+    #                 web_crawler_mode: "HOST_ONLY", # accepts HOST_ONLY, SUBDOMAINS, EVERYTHING
+    #               },
+    #               site_maps_configuration: {
+    #                 site_maps: ["SiteMap"], # required
+    #               },
+    #             },
+    #             crawl_depth: 1,
+    #             max_links_per_page: 1,
+    #             max_content_size_per_page_in_mega_bytes: 1.0,
+    #             max_urls_per_minute_crawl_rate: 1,
+    #             url_inclusion_patterns: ["DataSourceInclusionsExclusionsStringsMember"],
+    #             url_exclusion_patterns: ["DataSourceInclusionsExclusionsStringsMember"],
+    #             proxy_configuration: {
+    #               host: "Host", # required
+    #               port: 1, # required
+    #               credentials: "SecretArn",
+    #             },
+    #             authentication_configuration: {
+    #               basic_authentication: [
+    #                 {
+    #                   host: "Host", # required
+    #                   port: 1, # required
+    #                   credentials: "SecretArn", # required
+    #                 },
+    #               ],
+    #             },
+    #           },
     #         },
     #         description: "Description",
     #         schedule: "ScanSchedule",
@@ -7646,23 +8792,114 @@ module Aws::Kendra
       include Aws::Structure
     end
 
+    # Provides the configuration information of the URLs to crawl.
+    #
+    # *When selecting websites to index, you must adhere to the [Amazon
+    # Acceptable Use Policy][1] and all other Amazon terms. Remember that
+    # you must only use the Amazon Kendra web crawler to index your own
+    # webpages, or webpages that you have authorization to index.*
+    #
+    #
+    #
+    # [1]: https://aws.amazon.com/aup/
+    #
+    # @note When making an API call, you may pass Urls
+    #   data as a hash:
+    #
+    #       {
+    #         seed_url_configuration: {
+    #           seed_urls: ["SeedUrl"], # required
+    #           web_crawler_mode: "HOST_ONLY", # accepts HOST_ONLY, SUBDOMAINS, EVERYTHING
+    #         },
+    #         site_maps_configuration: {
+    #           site_maps: ["SiteMap"], # required
+    #         },
+    #       }
+    #
+    # @!attribute [rw] seed_url_configuration
+    #   Provides the configuration of the seed or starting point URLs of the
+    #   websites you want to crawl.
+    #
+    #   You can choose to crawl only the website host names, or the website
+    #   host names with subdomains, or the website host names with
+    #   subdomains and other domains that the webpages link to.
+    #
+    #   You can list up to 100 seed URLs.
+    #   @return [Types::SeedUrlConfiguration]
+    #
+    # @!attribute [rw] site_maps_configuration
+    #   Provides the configuration of the sitemap URLs of the websites you
+    #   want to crawl.
+    #
+    #   Only URLs belonging to the same website host names are crawled. You
+    #   can list up to three sitemap URLs.
+    #   @return [Types::SiteMapsConfiguration]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/Urls AWS API Documentation
+    #
+    class Urls < Struct.new(
+      :seed_url_configuration,
+      :site_maps_configuration)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Provides information about the user context for a Amazon Kendra index.
     #
+    # This is used for filtering search results for different users based on
+    # their access to documents.
+    #
+    # You provide one of the following:
+    #
+    # * User token
+    #
+    # * User ID, the groups the user belongs to, and the data sources the
+    #   groups can access
+    #
+    # If you provide both, an exception is thrown.
+    #
     # @note When making an API call, you may pass UserContext
     #   data as a hash:
     #
     #       {
     #         token: "Token",
+    #         user_id: "PrincipalName",
+    #         groups: ["PrincipalName"],
+    #         data_source_groups: [
+    #           {
+    #             group_id: "PrincipalName", # required
+    #             data_source_id: "DataSourceId", # required
+    #           },
+    #         ],
     #       }
     #
     # @!attribute [rw] token
-    #   The user context token. It must be a JWT or a JSON token.
+    #   The user context token for filtering search results for a user. It
+    #   must be a JWT or a JSON token.
+    #   @return [String]
+    #
+    # @!attribute [rw] user_id
+    #   The identifier of the user you want to filter search results based
+    #   on their access to documents.
     #   @return [String]
     #
+    # @!attribute [rw] groups
+    #   The list of groups you want to filter search results based on the
+    #   groups' access to documents.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] data_source_groups
+    #   The list of data source groups you want to filter search results
+    #   based on groups' access to documents in that data source.
+    #   @return [Array<Types::DataSourceGroup>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/UserContext AWS API Documentation
     #
     class UserContext < Struct.new(
-      :token)
+      :token,
+      :user_id,
+      :groups,
+      :data_source_groups)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -7716,5 +8953,167 @@ module Aws::Kendra
       include Aws::Structure
     end
 
+    # Provides the configuration information required for Amazon Kendra web
+    # crawler.
+    #
+    # @note When making an API call, you may pass WebCrawlerConfiguration
+    #   data as a hash:
+    #
+    #       {
+    #         urls: { # required
+    #           seed_url_configuration: {
+    #             seed_urls: ["SeedUrl"], # required
+    #             web_crawler_mode: "HOST_ONLY", # accepts HOST_ONLY, SUBDOMAINS, EVERYTHING
+    #           },
+    #           site_maps_configuration: {
+    #             site_maps: ["SiteMap"], # required
+    #           },
+    #         },
+    #         crawl_depth: 1,
+    #         max_links_per_page: 1,
+    #         max_content_size_per_page_in_mega_bytes: 1.0,
+    #         max_urls_per_minute_crawl_rate: 1,
+    #         url_inclusion_patterns: ["DataSourceInclusionsExclusionsStringsMember"],
+    #         url_exclusion_patterns: ["DataSourceInclusionsExclusionsStringsMember"],
+    #         proxy_configuration: {
+    #           host: "Host", # required
+    #           port: 1, # required
+    #           credentials: "SecretArn",
+    #         },
+    #         authentication_configuration: {
+    #           basic_authentication: [
+    #             {
+    #               host: "Host", # required
+    #               port: 1, # required
+    #               credentials: "SecretArn", # required
+    #             },
+    #           ],
+    #         },
+    #       }
+    #
+    # @!attribute [rw] urls
+    #   Specifies the seed or starting point URLs of the websites or the
+    #   sitemap URLs of the websites you want to crawl.
+    #
+    #   You can include website subdomains. You can list up to 100 seed URLs
+    #   and up to three sitemap URLs.
+    #
+    #   *When selecting websites to index, you must adhere to the [Amazon
+    #   Acceptable Use Policy][1] and all other Amazon terms. Remember that
+    #   you must only use the Amazon Kendra web crawler to index your own
+    #   webpages, or webpages that you have authorization to index.*
+    #
+    #
+    #
+    #   [1]: https://aws.amazon.com/aup/
+    #   @return [Types::Urls]
+    #
+    # @!attribute [rw] crawl_depth
+    #   Specifies the number of levels in a website that you want to crawl.
+    #
+    #   The first level begins from the website seed or starting point URL.
+    #   For example, if a website has 3 levels – index level (i.e. seed in
+    #   this example), sections level, and subsections level – and you are
+    #   only interested in crawling information up to the sections level
+    #   (i.e. levels 0-1), you can set your depth to 1.
+    #
+    #   The default crawl depth is set to 2.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] max_links_per_page
+    #   The maximum number of URLs on a webpage to include when crawling a
+    #   website. This number is per webpage.
+    #
+    #   As a website’s webpages are crawled, any URLs the webpages link to
+    #   are also crawled. URLs on a webpage are crawled in order of
+    #   appearance.
+    #
+    #   The default maximum links per page is 100.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] max_content_size_per_page_in_mega_bytes
+    #   The maximum size (in MB) of a webpage or attachment to crawl.
+    #
+    #   Files larger than this size (in MB) are skipped/not crawled.
+    #
+    #   The default maximum size of a webpage or attachment is set to 50 MB.
+    #   @return [Float]
+    #
+    # @!attribute [rw] max_urls_per_minute_crawl_rate
+    #   The maximum number of URLs crawled per website host per minute.
+    #
+    #   A minimum of one URL is required.
+    #
+    #   The default maximum number of URLs crawled per website host per
+    #   minute is 300.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] url_inclusion_patterns
+    #   The regular expression pattern to include certain URLs to crawl.
+    #
+    #   If there is a regular expression pattern to exclude certain URLs
+    #   that conflicts with the include pattern, the exclude pattern takes
+    #   precedence.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] url_exclusion_patterns
+    #   The regular expression pattern to exclude certain URLs to crawl.
+    #
+    #   If there is a regular expression pattern to include certain URLs
+    #   that conflicts with the exclude pattern, the exclude pattern takes
+    #   precedence.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] proxy_configuration
+    #   Provides configuration information required to connect to your
+    #   internal websites via a web proxy.
+    #
+    #   You must provide the website host name and port number. For example,
+    #   the host name of https://a.example.com/page1.html is
+    #   "a.example.com" and the port is 443, the standard port for HTTPS.
+    #
+    #   Web proxy credentials are optional and you can use them to connect
+    #   to a web proxy server that requires basic authentication. To store
+    #   web proxy credentials, you use a secret in [AWS Secrets Manager][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/intro.html
+    #   @return [Types::ProxyConfiguration]
+    #
+    # @!attribute [rw] authentication_configuration
+    #   Provides configuration information required to connect to websites
+    #   using authentication.
+    #
+    #   You can connect to websites using basic authentication of user name
+    #   and password.
+    #
+    #   You must provide the website host name and port number. For example,
+    #   the host name of https://a.example.com/page1.html is
+    #   "a.example.com" and the port is 443, the standard port for HTTPS.
+    #   You use a secret in [AWS Secrets Manager][1] to store your
+    #   authentication credentials.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/intro.html
+    #   @return [Types::AuthenticationConfiguration]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/kendra-2019-02-03/WebCrawlerConfiguration AWS API Documentation
+    #
+    class WebCrawlerConfiguration < Struct.new(
+      :urls,
+      :crawl_depth,
+      :max_links_per_page,
+      :max_content_size_per_page_in_mega_bytes,
+      :max_urls_per_minute_crawl_rate,
+      :url_inclusion_patterns,
+      :url_exclusion_patterns,
+      :proxy_configuration,
+      :authentication_configuration)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
   end
 end