aws-sdk-kms 1.68.0 → 1.70.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: d373f868372690caf5a811e8e13364a6e880d0a9dacc2c348001ae6237627557
4
- data.tar.gz: 5b030dbe7ff713292fdf9aff90da527e096ce08ac1913f3edcad29f4c784a0d8
3
+ metadata.gz: 99cd12ee0339a218cf684d249032de2e1aa2fe6f4fecb1483287bb383f930df8
4
+ data.tar.gz: 48834be747c4b8ee7c0774fd47817998ec8ca4b75434b39453cbc3bb3b501c1a
5
5
  SHA512:
6
- metadata.gz: 5374b3d5d34316f41efc2e88d2e1335c2618ace03508f120e5525be378690a6d67a471065cbb55959934caed8fce0e2bb4875d703499123abae15e4c1cf8767c
7
- data.tar.gz: ae3225908ba8a4708e29c073f1a6b49906ef5cc3dc8158b659cccb310c64ca4fa0d00805b722a0e06007b5cec1f8be5b141d5cc27e4d56f2f5083c2474c66ec4
6
+ metadata.gz: baa66d9fe0fd1faf4427f6111abe201258d95de03a3ef38e1b00ee024dff8eef2e1e556673024d1b5ab2aefd58374b92be1a3113bbf3670f2ff9fa937c34e7e6
7
+ data.tar.gz: dbae01c5012769be7f4a5795f73d3d47feb637aa2802978c147440a0a14dcf336a2c942e80d64ab822c9a22120aabe7c9815aec2a2e344f76fd838db2b62f921
data/CHANGELOG.md CHANGED
@@ -1,6 +1,16 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.70.0 (2023-07-06)
5
+ ------------------
6
+
7
+ * Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
8
+
9
+ 1.69.0 (2023-07-05)
10
+ ------------------
11
+
12
+ * Feature - Added Dry Run Feature to cryptographic and cross-account mutating KMS APIs (14 in all). This feature allows users to test their permissions and parameters before making the actual API call.
13
+
4
14
  1.68.0 (2023-06-28)
5
15
  ------------------
6
16
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.68.0
1
+ 1.70.0
@@ -28,6 +28,7 @@ require 'aws-sdk-core/plugins/client_metrics_send_plugin.rb'
28
28
  require 'aws-sdk-core/plugins/transfer_encoding.rb'
29
29
  require 'aws-sdk-core/plugins/http_checksum.rb'
30
30
  require 'aws-sdk-core/plugins/checksum_algorithm.rb'
31
+ require 'aws-sdk-core/plugins/request_compression.rb'
31
32
  require 'aws-sdk-core/plugins/defaults_mode.rb'
32
33
  require 'aws-sdk-core/plugins/recursion_detection.rb'
33
34
  require 'aws-sdk-core/plugins/sign.rb'
@@ -77,6 +78,7 @@ module Aws::KMS
77
78
  add_plugin(Aws::Plugins::TransferEncoding)
78
79
  add_plugin(Aws::Plugins::HttpChecksum)
79
80
  add_plugin(Aws::Plugins::ChecksumAlgorithm)
81
+ add_plugin(Aws::Plugins::RequestCompression)
80
82
  add_plugin(Aws::Plugins::DefaultsMode)
81
83
  add_plugin(Aws::Plugins::RecursionDetection)
82
84
  add_plugin(Aws::Plugins::Sign)
@@ -190,6 +192,10 @@ module Aws::KMS
190
192
  # Set to true to disable SDK automatically adding host prefix
191
193
  # to default service endpoint when available.
192
194
  #
195
+ # @option options [Boolean] :disable_request_compression (false)
196
+ # When set to 'true' the request body will not be compressed
197
+ # for supported operations.
198
+ #
193
199
  # @option options [String] :endpoint
194
200
  # The client endpoint is normally constructed from the `:region`
195
201
  # option. You should only configure an `:endpoint` when connecting
@@ -230,6 +236,11 @@ module Aws::KMS
230
236
  # Used when loading credentials from the shared credentials file
231
237
  # at HOME/.aws/credentials. When not specified, 'default' is used.
232
238
  #
239
+ # @option options [Integer] :request_min_compression_size_bytes (10240)
240
+ # The minimum size in bytes that triggers compression for request
241
+ # bodies. The value must be non-negative integer value between 0
242
+ # and 10485780 bytes inclusive.
243
+ #
233
244
  # @option options [Proc] :retry_backoff
234
245
  # A proc or lambda used for backoff. Defaults to 2**retries * retry_base_delay.
235
246
  # This option is only used in the `legacy` retry mode.
@@ -1319,6 +1330,17 @@ module Aws::KMS
1319
1330
  # when a duplicate `GrantId` is returned. All grant tokens for the same
1320
1331
  # grant ID can be used interchangeably.
1321
1332
  #
1333
+ # @option params [Boolean] :dry_run
1334
+ # Checks if your request will succeed. `DryRun` is an optional
1335
+ # parameter.
1336
+ #
1337
+ # To learn more about how to use this parameter, see [Testing your KMS
1338
+ # API calls][1] in the *Key Management Service Developer Guide*.
1339
+ #
1340
+ #
1341
+ #
1342
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
1343
+ #
1322
1344
  # @return [Types::CreateGrantResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1323
1345
  #
1324
1346
  # * {Types::CreateGrantResponse#grant_token #grant_token} => String
@@ -1361,6 +1383,7 @@ module Aws::KMS
1361
1383
  # },
1362
1384
  # grant_tokens: ["GrantTokenType"],
1363
1385
  # name: "GrantNameType",
1386
+ # dry_run: false,
1364
1387
  # })
1365
1388
  #
1366
1389
  # @example Response structure
@@ -2469,6 +2492,17 @@ module Aws::KMS
2469
2492
  # [2]: https://docs.aws.amazon.com/enclaves/latest/user/developing-applications.html#sdk
2470
2493
  # [3]: https://docs.aws.amazon.com/kms/latest/developerguide/services-nitro-enclaves.html
2471
2494
  #
2495
+ # @option params [Boolean] :dry_run
2496
+ # Checks if your request will succeed. `DryRun` is an optional
2497
+ # parameter.
2498
+ #
2499
+ # To learn more about how to use this parameter, see [Testing your KMS
2500
+ # API calls][1] in the *Key Management Service Developer Guide*.
2501
+ #
2502
+ #
2503
+ #
2504
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
2505
+ #
2472
2506
  # @return [Types::DecryptResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
2473
2507
  #
2474
2508
  # * {Types::DecryptResponse#key_id #key_id} => String
@@ -2548,6 +2582,7 @@ module Aws::KMS
2548
2582
  # key_encryption_algorithm: "RSAES_OAEP_SHA_256", # accepts RSAES_OAEP_SHA_256
2549
2583
  # attestation_document: "data",
2550
2584
  # },
2585
+ # dry_run: false,
2551
2586
  # })
2552
2587
  #
2553
2588
  # @example Response structure
@@ -4029,6 +4064,17 @@ module Aws::KMS
4029
4064
  #
4030
4065
  # The SM2PKE algorithm is only available in China Regions.
4031
4066
  #
4067
+ # @option params [Boolean] :dry_run
4068
+ # Checks if your request will succeed. `DryRun` is an optional
4069
+ # parameter.
4070
+ #
4071
+ # To learn more about how to use this parameter, see [Testing your KMS
4072
+ # API calls][1] in the *Key Management Service Developer Guide*.
4073
+ #
4074
+ #
4075
+ #
4076
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
4077
+ #
4032
4078
  # @return [Types::EncryptResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
4033
4079
  #
4034
4080
  # * {Types::EncryptResponse#ciphertext_blob #ciphertext_blob} => String
@@ -4080,6 +4126,7 @@ module Aws::KMS
4080
4126
  # },
4081
4127
  # grant_tokens: ["GrantTokenType"],
4082
4128
  # encryption_algorithm: "SYMMETRIC_DEFAULT", # accepts SYMMETRIC_DEFAULT, RSAES_OAEP_SHA_1, RSAES_OAEP_SHA_256, SM2PKE
4129
+ # dry_run: false,
4083
4130
  # })
4084
4131
  #
4085
4132
  # @example Response structure
@@ -4314,6 +4361,17 @@ module Aws::KMS
4314
4361
  # [2]: https://docs.aws.amazon.com/enclaves/latest/user/developing-applications.html#sdk
4315
4362
  # [3]: https://docs.aws.amazon.com/kms/latest/developerguide/services-nitro-enclaves.html
4316
4363
  #
4364
+ # @option params [Boolean] :dry_run
4365
+ # Checks if your request will succeed. `DryRun` is an optional
4366
+ # parameter.
4367
+ #
4368
+ # To learn more about how to use this parameter, see [Testing your KMS
4369
+ # API calls][1] in the *Key Management Service Developer Guide*.
4370
+ #
4371
+ #
4372
+ #
4373
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
4374
+ #
4317
4375
  # @return [Types::GenerateDataKeyResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
4318
4376
  #
4319
4377
  # * {Types::GenerateDataKeyResponse#ciphertext_blob #ciphertext_blob} => String
@@ -4378,6 +4436,7 @@ module Aws::KMS
4378
4436
  # key_encryption_algorithm: "RSAES_OAEP_SHA_256", # accepts RSAES_OAEP_SHA_256
4379
4437
  # attestation_document: "data",
4380
4438
  # },
4439
+ # dry_run: false,
4381
4440
  # })
4382
4441
  #
4383
4442
  # @example Response structure
@@ -4593,6 +4652,17 @@ module Aws::KMS
4593
4652
  # [2]: https://docs.aws.amazon.com/enclaves/latest/user/developing-applications.html#sdk
4594
4653
  # [3]: https://docs.aws.amazon.com/kms/latest/developerguide/services-nitro-enclaves.html
4595
4654
  #
4655
+ # @option params [Boolean] :dry_run
4656
+ # Checks if your request will succeed. `DryRun` is an optional
4657
+ # parameter.
4658
+ #
4659
+ # To learn more about how to use this parameter, see [Testing your KMS
4660
+ # API calls][1] in the *Key Management Service Developer Guide*.
4661
+ #
4662
+ #
4663
+ #
4664
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
4665
+ #
4596
4666
  # @return [Types::GenerateDataKeyPairResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
4597
4667
  #
4598
4668
  # * {Types::GenerateDataKeyPairResponse#private_key_ciphertext_blob #private_key_ciphertext_blob} => String
@@ -4662,6 +4732,7 @@ module Aws::KMS
4662
4732
  # key_encryption_algorithm: "RSAES_OAEP_SHA_256", # accepts RSAES_OAEP_SHA_256
4663
4733
  # attestation_document: "data",
4664
4734
  # },
4735
+ # dry_run: false,
4665
4736
  # })
4666
4737
  #
4667
4738
  # @example Response structure
@@ -4821,6 +4892,17 @@ module Aws::KMS
4821
4892
  # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/grants.html#grant_token
4822
4893
  # [2]: https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#using-grant-token
4823
4894
  #
4895
+ # @option params [Boolean] :dry_run
4896
+ # Checks if your request will succeed. `DryRun` is an optional
4897
+ # parameter.
4898
+ #
4899
+ # To learn more about how to use this parameter, see [Testing your KMS
4900
+ # API calls][1] in the *Key Management Service Developer Guide*.
4901
+ #
4902
+ #
4903
+ #
4904
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
4905
+ #
4824
4906
  # @return [Types::GenerateDataKeyPairWithoutPlaintextResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
4825
4907
  #
4826
4908
  # * {Types::GenerateDataKeyPairWithoutPlaintextResponse#private_key_ciphertext_blob #private_key_ciphertext_blob} => String
@@ -4856,6 +4938,7 @@ module Aws::KMS
4856
4938
  # key_id: "KeyIdType", # required
4857
4939
  # key_pair_spec: "RSA_2048", # required, accepts RSA_2048, RSA_3072, RSA_4096, ECC_NIST_P256, ECC_NIST_P384, ECC_NIST_P521, ECC_SECG_P256K1, SM2
4858
4940
  # grant_tokens: ["GrantTokenType"],
4941
+ # dry_run: false,
4859
4942
  # })
4860
4943
  #
4861
4944
  # @example Response structure
@@ -5025,6 +5108,17 @@ module Aws::KMS
5025
5108
  # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/grants.html#grant_token
5026
5109
  # [2]: https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#using-grant-token
5027
5110
  #
5111
+ # @option params [Boolean] :dry_run
5112
+ # Checks if your request will succeed. `DryRun` is an optional
5113
+ # parameter.
5114
+ #
5115
+ # To learn more about how to use this parameter, see [Testing your KMS
5116
+ # API calls][1] in the *Key Management Service Developer Guide*.
5117
+ #
5118
+ #
5119
+ #
5120
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
5121
+ #
5028
5122
  # @return [Types::GenerateDataKeyWithoutPlaintextResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
5029
5123
  #
5030
5124
  # * {Types::GenerateDataKeyWithoutPlaintextResponse#ciphertext_blob #ciphertext_blob} => String
@@ -5057,6 +5151,7 @@ module Aws::KMS
5057
5151
  # key_spec: "AES_256", # accepts AES_256, AES_128
5058
5152
  # number_of_bytes: 1,
5059
5153
  # grant_tokens: ["GrantTokenType"],
5154
+ # dry_run: false,
5060
5155
  # })
5061
5156
  #
5062
5157
  # @example Response structure
@@ -5154,6 +5249,17 @@ module Aws::KMS
5154
5249
  # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/grants.html#grant_token
5155
5250
  # [2]: https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#using-grant-token
5156
5251
  #
5252
+ # @option params [Boolean] :dry_run
5253
+ # Checks if your request will succeed. `DryRun` is an optional
5254
+ # parameter.
5255
+ #
5256
+ # To learn more about how to use this parameter, see [Testing your KMS
5257
+ # API calls][1] in the *Key Management Service Developer Guide*.
5258
+ #
5259
+ #
5260
+ #
5261
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
5262
+ #
5157
5263
  # @return [Types::GenerateMacResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
5158
5264
  #
5159
5265
  # * {Types::GenerateMacResponse#mac #mac} => String
@@ -5186,6 +5292,7 @@ module Aws::KMS
5186
5292
  # key_id: "KeyIdType", # required
5187
5293
  # mac_algorithm: "HMAC_SHA_224", # required, accepts HMAC_SHA_224, HMAC_SHA_256, HMAC_SHA_384, HMAC_SHA_512
5188
5294
  # grant_tokens: ["GrantTokenType"],
5295
+ # dry_run: false,
5189
5296
  # })
5190
5297
  #
5191
5298
  # @example Response structure
@@ -7406,6 +7513,17 @@ module Aws::KMS
7406
7513
  # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/grants.html#grant_token
7407
7514
  # [2]: https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#using-grant-token
7408
7515
  #
7516
+ # @option params [Boolean] :dry_run
7517
+ # Checks if your request will succeed. `DryRun` is an optional
7518
+ # parameter.
7519
+ #
7520
+ # To learn more about how to use this parameter, see [Testing your KMS
7521
+ # API calls][1] in the *Key Management Service Developer Guide*.
7522
+ #
7523
+ #
7524
+ #
7525
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
7526
+ #
7409
7527
  # @return [Types::ReEncryptResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
7410
7528
  #
7411
7529
  # * {Types::ReEncryptResponse#ciphertext_blob #ciphertext_blob} => String
@@ -7446,6 +7564,7 @@ module Aws::KMS
7446
7564
  # source_encryption_algorithm: "SYMMETRIC_DEFAULT", # accepts SYMMETRIC_DEFAULT, RSAES_OAEP_SHA_1, RSAES_OAEP_SHA_256, SM2PKE
7447
7565
  # destination_encryption_algorithm: "SYMMETRIC_DEFAULT", # accepts SYMMETRIC_DEFAULT, RSAES_OAEP_SHA_1, RSAES_OAEP_SHA_256, SM2PKE
7448
7566
  # grant_tokens: ["GrantTokenType"],
7567
+ # dry_run: false,
7449
7568
  # })
7450
7569
  #
7451
7570
  # @example Response structure
@@ -7929,6 +8048,17 @@ module Aws::KMS
7929
8048
  #
7930
8049
  # ^
7931
8050
  #
8051
+ # @option params [Boolean] :dry_run
8052
+ # Checks if your request will succeed. `DryRun` is an optional
8053
+ # parameter.
8054
+ #
8055
+ # To learn more about how to use this parameter, see [Testing your KMS
8056
+ # API calls][1] in the *Key Management Service Developer Guide*.
8057
+ #
8058
+ #
8059
+ #
8060
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
8061
+ #
7932
8062
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
7933
8063
  #
7934
8064
  #
@@ -7947,6 +8077,7 @@ module Aws::KMS
7947
8077
  # grant_token: "GrantTokenType",
7948
8078
  # key_id: "KeyIdType",
7949
8079
  # grant_id: "GrantIdType",
8080
+ # dry_run: false,
7950
8081
  # })
7951
8082
  #
7952
8083
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/RetireGrant AWS API Documentation
@@ -8019,6 +8150,17 @@ module Aws::KMS
8019
8150
  # Identifies the grant to revoke. To get the grant ID, use CreateGrant,
8020
8151
  # ListGrants, or ListRetirableGrants.
8021
8152
  #
8153
+ # @option params [Boolean] :dry_run
8154
+ # Checks if your request will succeed. `DryRun` is an optional
8155
+ # parameter.
8156
+ #
8157
+ # To learn more about how to use this parameter, see [Testing your KMS
8158
+ # API calls][1] in the *Key Management Service Developer Guide*.
8159
+ #
8160
+ #
8161
+ #
8162
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
8163
+ #
8022
8164
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
8023
8165
  #
8024
8166
  #
@@ -8036,6 +8178,7 @@ module Aws::KMS
8036
8178
  # resp = client.revoke_grant({
8037
8179
  # key_id: "KeyIdType", # required
8038
8180
  # grant_id: "GrantIdType", # required
8181
+ # dry_run: false,
8039
8182
  # })
8040
8183
  #
8041
8184
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/RevokeGrant AWS API Documentation
@@ -8063,9 +8206,9 @@ module Aws::KMS
8063
8206
  # under the KMS key is unrecoverable. (The only exception is a
8064
8207
  # [multi-Region replica
8065
8208
  # key](kms/latest/developerguide/multi-region-keys-delete.html), or an
8066
- # asymmetric or HMAC KMS key with imported key material\[BUGBUG-link to
8067
- # importing-keys-managing.html#import-delete-key.) To prevent the use of
8068
- # a KMS key without deleting it, use DisableKey.
8209
+ # [asymmetric or HMAC KMS key with imported key
8210
+ # material](kms/latest/developerguide/importing-keys-managing.html#import-delete-key).)
8211
+ # To prevent the use of a KMS key without deleting it, use DisableKey.
8069
8212
  #
8070
8213
  # You can schedule the deletion of a multi-Region primary key and its
8071
8214
  # replica keys at any time. However, KMS will not delete a multi-Region
@@ -8149,7 +8292,7 @@ module Aws::KMS
8149
8292
  #
8150
8293
  #
8151
8294
  #
8152
- # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/conditions-kms.html#conditions-pending-deletion-window
8295
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/conditions-kms.html#conditions-kms-schedule-key-deletion-pending-window-in-days
8153
8296
  #
8154
8297
  # @return [Types::ScheduleKeyDeletionResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
8155
8298
  #
@@ -8358,6 +8501,17 @@ module Aws::KMS
8358
8501
  # RSASSA-PSS algorithms are preferred. We include RSASSA-PKCS1-v1\_5
8359
8502
  # algorithms for compatibility with existing applications.
8360
8503
  #
8504
+ # @option params [Boolean] :dry_run
8505
+ # Checks if your request will succeed. `DryRun` is an optional
8506
+ # parameter.
8507
+ #
8508
+ # To learn more about how to use this parameter, see [Testing your KMS
8509
+ # API calls][1] in the *Key Management Service Developer Guide*.
8510
+ #
8511
+ #
8512
+ #
8513
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
8514
+ #
8361
8515
  # @return [Types::SignResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
8362
8516
  #
8363
8517
  # * {Types::SignResponse#key_id #key_id} => String
@@ -8412,6 +8566,7 @@ module Aws::KMS
8412
8566
  # message_type: "RAW", # accepts RAW, DIGEST
8413
8567
  # grant_tokens: ["GrantTokenType"],
8414
8568
  # signing_algorithm: "RSASSA_PSS_SHA_256", # required, accepts RSASSA_PSS_SHA_256, RSASSA_PSS_SHA_384, RSASSA_PSS_SHA_512, RSASSA_PKCS1_V1_5_SHA_256, RSASSA_PKCS1_V1_5_SHA_384, RSASSA_PKCS1_V1_5_SHA_512, ECDSA_SHA_256, ECDSA_SHA_384, ECDSA_SHA_512, SM2DSA
8569
+ # dry_run: false,
8415
8570
  # })
8416
8571
  #
8417
8572
  # @example Response structure
@@ -9494,6 +9649,17 @@ module Aws::KMS
9494
9649
  # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/grants.html#grant_token
9495
9650
  # [2]: https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#using-grant-token
9496
9651
  #
9652
+ # @option params [Boolean] :dry_run
9653
+ # Checks if your request will succeed. `DryRun` is an optional
9654
+ # parameter.
9655
+ #
9656
+ # To learn more about how to use this parameter, see [Testing your KMS
9657
+ # API calls][1] in the *Key Management Service Developer Guide*.
9658
+ #
9659
+ #
9660
+ #
9661
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
9662
+ #
9497
9663
  # @return [Types::VerifyResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
9498
9664
  #
9499
9665
  # * {Types::VerifyResponse#key_id #key_id} => String
@@ -9551,6 +9717,7 @@ module Aws::KMS
9551
9717
  # signature: "data", # required
9552
9718
  # signing_algorithm: "RSASSA_PSS_SHA_256", # required, accepts RSASSA_PSS_SHA_256, RSASSA_PSS_SHA_384, RSASSA_PSS_SHA_512, RSASSA_PKCS1_V1_5_SHA_256, RSASSA_PKCS1_V1_5_SHA_384, RSASSA_PKCS1_V1_5_SHA_512, ECDSA_SHA_256, ECDSA_SHA_384, ECDSA_SHA_512, SM2DSA
9553
9719
  # grant_tokens: ["GrantTokenType"],
9720
+ # dry_run: false,
9554
9721
  # })
9555
9722
  #
9556
9723
  # @example Response structure
@@ -9641,6 +9808,17 @@ module Aws::KMS
9641
9808
  # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/grants.html#grant_token
9642
9809
  # [2]: https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#using-grant-token
9643
9810
  #
9811
+ # @option params [Boolean] :dry_run
9812
+ # Checks if your request will succeed. `DryRun` is an optional
9813
+ # parameter.
9814
+ #
9815
+ # To learn more about how to use this parameter, see [Testing your KMS
9816
+ # API calls][1] in the *Key Management Service Developer Guide*.
9817
+ #
9818
+ #
9819
+ #
9820
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
9821
+ #
9644
9822
  # @return [Types::VerifyMacResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
9645
9823
  #
9646
9824
  # * {Types::VerifyMacResponse#key_id #key_id} => String
@@ -9675,6 +9853,7 @@ module Aws::KMS
9675
9853
  # mac_algorithm: "HMAC_SHA_224", # required, accepts HMAC_SHA_224, HMAC_SHA_256, HMAC_SHA_384, HMAC_SHA_512
9676
9854
  # mac: "data", # required
9677
9855
  # grant_tokens: ["GrantTokenType"],
9856
+ # dry_run: false,
9678
9857
  # })
9679
9858
  #
9680
9859
  # @example Response structure
@@ -9705,7 +9884,7 @@ module Aws::KMS
9705
9884
  params: params,
9706
9885
  config: config)
9707
9886
  context[:gem_name] = 'aws-sdk-kms'
9708
- context[:gem_version] = '1.68.0'
9887
+ context[:gem_version] = '1.70.0'
9709
9888
  Seahorse::Client::Request.new(handlers, context)
9710
9889
  end
9711
9890
 
@@ -72,6 +72,7 @@ module Aws::KMS
72
72
  DisabledException = Shapes::StructureShape.new(name: 'DisabledException')
73
73
  DisconnectCustomKeyStoreRequest = Shapes::StructureShape.new(name: 'DisconnectCustomKeyStoreRequest')
74
74
  DisconnectCustomKeyStoreResponse = Shapes::StructureShape.new(name: 'DisconnectCustomKeyStoreResponse')
75
+ DryRunOperationException = Shapes::StructureShape.new(name: 'DryRunOperationException')
75
76
  EnableKeyRequest = Shapes::StructureShape.new(name: 'EnableKeyRequest')
76
77
  EnableKeyRotationRequest = Shapes::StructureShape.new(name: 'EnableKeyRotationRequest')
77
78
  EncryptRequest = Shapes::StructureShape.new(name: 'EncryptRequest')
@@ -296,6 +297,7 @@ module Aws::KMS
296
297
  CreateGrantRequest.add_member(:constraints, Shapes::ShapeRef.new(shape: GrantConstraints, location_name: "Constraints"))
297
298
  CreateGrantRequest.add_member(:grant_tokens, Shapes::ShapeRef.new(shape: GrantTokenList, location_name: "GrantTokens"))
298
299
  CreateGrantRequest.add_member(:name, Shapes::ShapeRef.new(shape: GrantNameType, location_name: "Name"))
300
+ CreateGrantRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: NullableBooleanType, location_name: "DryRun"))
299
301
  CreateGrantRequest.struct_class = Types::CreateGrantRequest
300
302
 
301
303
  CreateGrantResponse.add_member(:grant_token, Shapes::ShapeRef.new(shape: GrantTokenType, location_name: "GrantToken"))
@@ -349,6 +351,7 @@ module Aws::KMS
349
351
  DecryptRequest.add_member(:key_id, Shapes::ShapeRef.new(shape: KeyIdType, location_name: "KeyId"))
350
352
  DecryptRequest.add_member(:encryption_algorithm, Shapes::ShapeRef.new(shape: EncryptionAlgorithmSpec, location_name: "EncryptionAlgorithm"))
351
353
  DecryptRequest.add_member(:recipient, Shapes::ShapeRef.new(shape: RecipientInfo, location_name: "Recipient"))
354
+ DecryptRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: NullableBooleanType, location_name: "DryRun"))
352
355
  DecryptRequest.struct_class = Types::DecryptRequest
353
356
 
354
357
  DecryptResponse.add_member(:key_id, Shapes::ShapeRef.new(shape: KeyIdType, location_name: "KeyId"))
@@ -403,6 +406,9 @@ module Aws::KMS
403
406
 
404
407
  DisconnectCustomKeyStoreResponse.struct_class = Types::DisconnectCustomKeyStoreResponse
405
408
 
409
+ DryRunOperationException.add_member(:message, Shapes::ShapeRef.new(shape: ErrorMessageType, location_name: "message"))
410
+ DryRunOperationException.struct_class = Types::DryRunOperationException
411
+
406
412
  EnableKeyRequest.add_member(:key_id, Shapes::ShapeRef.new(shape: KeyIdType, required: true, location_name: "KeyId"))
407
413
  EnableKeyRequest.struct_class = Types::EnableKeyRequest
408
414
 
@@ -414,6 +420,7 @@ module Aws::KMS
414
420
  EncryptRequest.add_member(:encryption_context, Shapes::ShapeRef.new(shape: EncryptionContextType, location_name: "EncryptionContext"))
415
421
  EncryptRequest.add_member(:grant_tokens, Shapes::ShapeRef.new(shape: GrantTokenList, location_name: "GrantTokens"))
416
422
  EncryptRequest.add_member(:encryption_algorithm, Shapes::ShapeRef.new(shape: EncryptionAlgorithmSpec, location_name: "EncryptionAlgorithm"))
423
+ EncryptRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: NullableBooleanType, location_name: "DryRun"))
417
424
  EncryptRequest.struct_class = Types::EncryptRequest
418
425
 
419
426
  EncryptResponse.add_member(:ciphertext_blob, Shapes::ShapeRef.new(shape: CiphertextType, location_name: "CiphertextBlob"))
@@ -434,6 +441,7 @@ module Aws::KMS
434
441
  GenerateDataKeyPairRequest.add_member(:key_pair_spec, Shapes::ShapeRef.new(shape: DataKeyPairSpec, required: true, location_name: "KeyPairSpec"))
435
442
  GenerateDataKeyPairRequest.add_member(:grant_tokens, Shapes::ShapeRef.new(shape: GrantTokenList, location_name: "GrantTokens"))
436
443
  GenerateDataKeyPairRequest.add_member(:recipient, Shapes::ShapeRef.new(shape: RecipientInfo, location_name: "Recipient"))
444
+ GenerateDataKeyPairRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: NullableBooleanType, location_name: "DryRun"))
437
445
  GenerateDataKeyPairRequest.struct_class = Types::GenerateDataKeyPairRequest
438
446
 
439
447
  GenerateDataKeyPairResponse.add_member(:private_key_ciphertext_blob, Shapes::ShapeRef.new(shape: CiphertextType, location_name: "PrivateKeyCiphertextBlob"))
@@ -448,6 +456,7 @@ module Aws::KMS
448
456
  GenerateDataKeyPairWithoutPlaintextRequest.add_member(:key_id, Shapes::ShapeRef.new(shape: KeyIdType, required: true, location_name: "KeyId"))
449
457
  GenerateDataKeyPairWithoutPlaintextRequest.add_member(:key_pair_spec, Shapes::ShapeRef.new(shape: DataKeyPairSpec, required: true, location_name: "KeyPairSpec"))
450
458
  GenerateDataKeyPairWithoutPlaintextRequest.add_member(:grant_tokens, Shapes::ShapeRef.new(shape: GrantTokenList, location_name: "GrantTokens"))
459
+ GenerateDataKeyPairWithoutPlaintextRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: NullableBooleanType, location_name: "DryRun"))
451
460
  GenerateDataKeyPairWithoutPlaintextRequest.struct_class = Types::GenerateDataKeyPairWithoutPlaintextRequest
452
461
 
453
462
  GenerateDataKeyPairWithoutPlaintextResponse.add_member(:private_key_ciphertext_blob, Shapes::ShapeRef.new(shape: CiphertextType, location_name: "PrivateKeyCiphertextBlob"))
@@ -462,6 +471,7 @@ module Aws::KMS
462
471
  GenerateDataKeyRequest.add_member(:key_spec, Shapes::ShapeRef.new(shape: DataKeySpec, location_name: "KeySpec"))
463
472
  GenerateDataKeyRequest.add_member(:grant_tokens, Shapes::ShapeRef.new(shape: GrantTokenList, location_name: "GrantTokens"))
464
473
  GenerateDataKeyRequest.add_member(:recipient, Shapes::ShapeRef.new(shape: RecipientInfo, location_name: "Recipient"))
474
+ GenerateDataKeyRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: NullableBooleanType, location_name: "DryRun"))
465
475
  GenerateDataKeyRequest.struct_class = Types::GenerateDataKeyRequest
466
476
 
467
477
  GenerateDataKeyResponse.add_member(:ciphertext_blob, Shapes::ShapeRef.new(shape: CiphertextType, location_name: "CiphertextBlob"))
@@ -475,6 +485,7 @@ module Aws::KMS
475
485
  GenerateDataKeyWithoutPlaintextRequest.add_member(:key_spec, Shapes::ShapeRef.new(shape: DataKeySpec, location_name: "KeySpec"))
476
486
  GenerateDataKeyWithoutPlaintextRequest.add_member(:number_of_bytes, Shapes::ShapeRef.new(shape: NumberOfBytesType, location_name: "NumberOfBytes"))
477
487
  GenerateDataKeyWithoutPlaintextRequest.add_member(:grant_tokens, Shapes::ShapeRef.new(shape: GrantTokenList, location_name: "GrantTokens"))
488
+ GenerateDataKeyWithoutPlaintextRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: NullableBooleanType, location_name: "DryRun"))
478
489
  GenerateDataKeyWithoutPlaintextRequest.struct_class = Types::GenerateDataKeyWithoutPlaintextRequest
479
490
 
480
491
  GenerateDataKeyWithoutPlaintextResponse.add_member(:ciphertext_blob, Shapes::ShapeRef.new(shape: CiphertextType, location_name: "CiphertextBlob"))
@@ -485,6 +496,7 @@ module Aws::KMS
485
496
  GenerateMacRequest.add_member(:key_id, Shapes::ShapeRef.new(shape: KeyIdType, required: true, location_name: "KeyId"))
486
497
  GenerateMacRequest.add_member(:mac_algorithm, Shapes::ShapeRef.new(shape: MacAlgorithmSpec, required: true, location_name: "MacAlgorithm"))
487
498
  GenerateMacRequest.add_member(:grant_tokens, Shapes::ShapeRef.new(shape: GrantTokenList, location_name: "GrantTokens"))
499
+ GenerateMacRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: NullableBooleanType, location_name: "DryRun"))
488
500
  GenerateMacRequest.struct_class = Types::GenerateMacRequest
489
501
 
490
502
  GenerateMacResponse.add_member(:mac, Shapes::ShapeRef.new(shape: CiphertextType, location_name: "Mac"))
@@ -742,6 +754,7 @@ module Aws::KMS
742
754
  ReEncryptRequest.add_member(:source_encryption_algorithm, Shapes::ShapeRef.new(shape: EncryptionAlgorithmSpec, location_name: "SourceEncryptionAlgorithm"))
743
755
  ReEncryptRequest.add_member(:destination_encryption_algorithm, Shapes::ShapeRef.new(shape: EncryptionAlgorithmSpec, location_name: "DestinationEncryptionAlgorithm"))
744
756
  ReEncryptRequest.add_member(:grant_tokens, Shapes::ShapeRef.new(shape: GrantTokenList, location_name: "GrantTokens"))
757
+ ReEncryptRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: NullableBooleanType, location_name: "DryRun"))
745
758
  ReEncryptRequest.struct_class = Types::ReEncryptRequest
746
759
 
747
760
  ReEncryptResponse.add_member(:ciphertext_blob, Shapes::ShapeRef.new(shape: CiphertextType, location_name: "CiphertextBlob"))
@@ -771,10 +784,12 @@ module Aws::KMS
771
784
  RetireGrantRequest.add_member(:grant_token, Shapes::ShapeRef.new(shape: GrantTokenType, location_name: "GrantToken"))
772
785
  RetireGrantRequest.add_member(:key_id, Shapes::ShapeRef.new(shape: KeyIdType, location_name: "KeyId"))
773
786
  RetireGrantRequest.add_member(:grant_id, Shapes::ShapeRef.new(shape: GrantIdType, location_name: "GrantId"))
787
+ RetireGrantRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: NullableBooleanType, location_name: "DryRun"))
774
788
  RetireGrantRequest.struct_class = Types::RetireGrantRequest
775
789
 
776
790
  RevokeGrantRequest.add_member(:key_id, Shapes::ShapeRef.new(shape: KeyIdType, required: true, location_name: "KeyId"))
777
791
  RevokeGrantRequest.add_member(:grant_id, Shapes::ShapeRef.new(shape: GrantIdType, required: true, location_name: "GrantId"))
792
+ RevokeGrantRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: NullableBooleanType, location_name: "DryRun"))
778
793
  RevokeGrantRequest.struct_class = Types::RevokeGrantRequest
779
794
 
780
795
  ScheduleKeyDeletionRequest.add_member(:key_id, Shapes::ShapeRef.new(shape: KeyIdType, required: true, location_name: "KeyId"))
@@ -792,6 +807,7 @@ module Aws::KMS
792
807
  SignRequest.add_member(:message_type, Shapes::ShapeRef.new(shape: MessageType, location_name: "MessageType"))
793
808
  SignRequest.add_member(:grant_tokens, Shapes::ShapeRef.new(shape: GrantTokenList, location_name: "GrantTokens"))
794
809
  SignRequest.add_member(:signing_algorithm, Shapes::ShapeRef.new(shape: SigningAlgorithmSpec, required: true, location_name: "SigningAlgorithm"))
810
+ SignRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: NullableBooleanType, location_name: "DryRun"))
795
811
  SignRequest.struct_class = Types::SignRequest
796
812
 
797
813
  SignResponse.add_member(:key_id, Shapes::ShapeRef.new(shape: KeyIdType, location_name: "KeyId"))
@@ -853,6 +869,7 @@ module Aws::KMS
853
869
  VerifyMacRequest.add_member(:mac_algorithm, Shapes::ShapeRef.new(shape: MacAlgorithmSpec, required: true, location_name: "MacAlgorithm"))
854
870
  VerifyMacRequest.add_member(:mac, Shapes::ShapeRef.new(shape: CiphertextType, required: true, location_name: "Mac"))
855
871
  VerifyMacRequest.add_member(:grant_tokens, Shapes::ShapeRef.new(shape: GrantTokenList, location_name: "GrantTokens"))
872
+ VerifyMacRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: NullableBooleanType, location_name: "DryRun"))
856
873
  VerifyMacRequest.struct_class = Types::VerifyMacRequest
857
874
 
858
875
  VerifyMacResponse.add_member(:key_id, Shapes::ShapeRef.new(shape: KeyIdType, location_name: "KeyId"))
@@ -866,6 +883,7 @@ module Aws::KMS
866
883
  VerifyRequest.add_member(:signature, Shapes::ShapeRef.new(shape: CiphertextType, required: true, location_name: "Signature"))
867
884
  VerifyRequest.add_member(:signing_algorithm, Shapes::ShapeRef.new(shape: SigningAlgorithmSpec, required: true, location_name: "SigningAlgorithm"))
868
885
  VerifyRequest.add_member(:grant_tokens, Shapes::ShapeRef.new(shape: GrantTokenList, location_name: "GrantTokens"))
886
+ VerifyRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: NullableBooleanType, location_name: "DryRun"))
869
887
  VerifyRequest.struct_class = Types::VerifyRequest
870
888
 
871
889
  VerifyResponse.add_member(:key_id, Shapes::ShapeRef.new(shape: KeyIdType, location_name: "KeyId"))
@@ -1022,6 +1040,7 @@ module Aws::KMS
1022
1040
  o.errors << Shapes::ShapeRef.new(shape: InvalidGrantTokenException)
1023
1041
  o.errors << Shapes::ShapeRef.new(shape: LimitExceededException)
1024
1042
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidStateException)
1043
+ o.errors << Shapes::ShapeRef.new(shape: DryRunOperationException)
1025
1044
  end)
1026
1045
 
1027
1046
  api.add_operation(:create_key, Seahorse::Model::Operation.new.tap do |o|
@@ -1061,6 +1080,7 @@ module Aws::KMS
1061
1080
  o.errors << Shapes::ShapeRef.new(shape: InvalidGrantTokenException)
1062
1081
  o.errors << Shapes::ShapeRef.new(shape: KMSInternalException)
1063
1082
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidStateException)
1083
+ o.errors << Shapes::ShapeRef.new(shape: DryRunOperationException)
1064
1084
  end)
1065
1085
 
1066
1086
  api.add_operation(:delete_alias, Seahorse::Model::Operation.new.tap do |o|
@@ -1212,6 +1232,7 @@ module Aws::KMS
1212
1232
  o.errors << Shapes::ShapeRef.new(shape: InvalidGrantTokenException)
1213
1233
  o.errors << Shapes::ShapeRef.new(shape: KMSInternalException)
1214
1234
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidStateException)
1235
+ o.errors << Shapes::ShapeRef.new(shape: DryRunOperationException)
1215
1236
  end)
1216
1237
 
1217
1238
  api.add_operation(:generate_data_key, Seahorse::Model::Operation.new.tap do |o|
@@ -1228,6 +1249,7 @@ module Aws::KMS
1228
1249
  o.errors << Shapes::ShapeRef.new(shape: InvalidGrantTokenException)
1229
1250
  o.errors << Shapes::ShapeRef.new(shape: KMSInternalException)
1230
1251
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidStateException)
1252
+ o.errors << Shapes::ShapeRef.new(shape: DryRunOperationException)
1231
1253
  end)
1232
1254
 
1233
1255
  api.add_operation(:generate_data_key_pair, Seahorse::Model::Operation.new.tap do |o|
@@ -1245,6 +1267,7 @@ module Aws::KMS
1245
1267
  o.errors << Shapes::ShapeRef.new(shape: KMSInternalException)
1246
1268
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidStateException)
1247
1269
  o.errors << Shapes::ShapeRef.new(shape: UnsupportedOperationException)
1270
+ o.errors << Shapes::ShapeRef.new(shape: DryRunOperationException)
1248
1271
  end)
1249
1272
 
1250
1273
  api.add_operation(:generate_data_key_pair_without_plaintext, Seahorse::Model::Operation.new.tap do |o|
@@ -1262,6 +1285,7 @@ module Aws::KMS
1262
1285
  o.errors << Shapes::ShapeRef.new(shape: KMSInternalException)
1263
1286
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidStateException)
1264
1287
  o.errors << Shapes::ShapeRef.new(shape: UnsupportedOperationException)
1288
+ o.errors << Shapes::ShapeRef.new(shape: DryRunOperationException)
1265
1289
  end)
1266
1290
 
1267
1291
  api.add_operation(:generate_data_key_without_plaintext, Seahorse::Model::Operation.new.tap do |o|
@@ -1278,6 +1302,7 @@ module Aws::KMS
1278
1302
  o.errors << Shapes::ShapeRef.new(shape: InvalidGrantTokenException)
1279
1303
  o.errors << Shapes::ShapeRef.new(shape: KMSInternalException)
1280
1304
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidStateException)
1305
+ o.errors << Shapes::ShapeRef.new(shape: DryRunOperationException)
1281
1306
  end)
1282
1307
 
1283
1308
  api.add_operation(:generate_mac, Seahorse::Model::Operation.new.tap do |o|
@@ -1293,6 +1318,7 @@ module Aws::KMS
1293
1318
  o.errors << Shapes::ShapeRef.new(shape: InvalidGrantTokenException)
1294
1319
  o.errors << Shapes::ShapeRef.new(shape: KMSInternalException)
1295
1320
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidStateException)
1321
+ o.errors << Shapes::ShapeRef.new(shape: DryRunOperationException)
1296
1322
  end)
1297
1323
 
1298
1324
  api.add_operation(:generate_random, Seahorse::Model::Operation.new.tap do |o|
@@ -1530,6 +1556,7 @@ module Aws::KMS
1530
1556
  o.errors << Shapes::ShapeRef.new(shape: InvalidGrantTokenException)
1531
1557
  o.errors << Shapes::ShapeRef.new(shape: KMSInternalException)
1532
1558
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidStateException)
1559
+ o.errors << Shapes::ShapeRef.new(shape: DryRunOperationException)
1533
1560
  end)
1534
1561
 
1535
1562
  api.add_operation(:replicate_key, Seahorse::Model::Operation.new.tap do |o|
@@ -1563,6 +1590,7 @@ module Aws::KMS
1563
1590
  o.errors << Shapes::ShapeRef.new(shape: DependencyTimeoutException)
1564
1591
  o.errors << Shapes::ShapeRef.new(shape: KMSInternalException)
1565
1592
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidStateException)
1593
+ o.errors << Shapes::ShapeRef.new(shape: DryRunOperationException)
1566
1594
  end)
1567
1595
 
1568
1596
  api.add_operation(:revoke_grant, Seahorse::Model::Operation.new.tap do |o|
@@ -1577,6 +1605,7 @@ module Aws::KMS
1577
1605
  o.errors << Shapes::ShapeRef.new(shape: InvalidGrantIdException)
1578
1606
  o.errors << Shapes::ShapeRef.new(shape: KMSInternalException)
1579
1607
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidStateException)
1608
+ o.errors << Shapes::ShapeRef.new(shape: DryRunOperationException)
1580
1609
  end)
1581
1610
 
1582
1611
  api.add_operation(:schedule_key_deletion, Seahorse::Model::Operation.new.tap do |o|
@@ -1606,6 +1635,7 @@ module Aws::KMS
1606
1635
  o.errors << Shapes::ShapeRef.new(shape: InvalidGrantTokenException)
1607
1636
  o.errors << Shapes::ShapeRef.new(shape: KMSInternalException)
1608
1637
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidStateException)
1638
+ o.errors << Shapes::ShapeRef.new(shape: DryRunOperationException)
1609
1639
  end)
1610
1640
 
1611
1641
  api.add_operation(:tag_resource, Seahorse::Model::Operation.new.tap do |o|
@@ -1715,6 +1745,7 @@ module Aws::KMS
1715
1745
  o.errors << Shapes::ShapeRef.new(shape: KMSInternalException)
1716
1746
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidStateException)
1717
1747
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidSignatureException)
1748
+ o.errors << Shapes::ShapeRef.new(shape: DryRunOperationException)
1718
1749
  end)
1719
1750
 
1720
1751
  api.add_operation(:verify_mac, Seahorse::Model::Operation.new.tap do |o|
@@ -1731,6 +1762,7 @@ module Aws::KMS
1731
1762
  o.errors << Shapes::ShapeRef.new(shape: KMSInternalException)
1732
1763
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidMacException)
1733
1764
  o.errors << Shapes::ShapeRef.new(shape: KMSInvalidStateException)
1765
+ o.errors << Shapes::ShapeRef.new(shape: DryRunOperationException)
1734
1766
  end)
1735
1767
  end
1736
1768
 
@@ -39,6 +39,7 @@ module Aws::KMS
39
39
  # * {CustomKeyStoreNotFoundException}
40
40
  # * {DependencyTimeoutException}
41
41
  # * {DisabledException}
42
+ # * {DryRunOperationException}
42
43
  # * {ExpiredImportTokenException}
43
44
  # * {IncorrectKeyException}
44
45
  # * {IncorrectKeyMaterialException}
@@ -260,6 +261,21 @@ module Aws::KMS
260
261
  end
261
262
  end
262
263
 
264
+ class DryRunOperationException < ServiceError
265
+
266
+ # @param [Seahorse::Client::RequestContext] context
267
+ # @param [String] message
268
+ # @param [Aws::KMS::Types::DryRunOperationException] data
269
+ def initialize(context, message, data = Aws::EmptyStructure.new)
270
+ super(context, message, data)
271
+ end
272
+
273
+ # @return [String]
274
+ def message
275
+ @message || @data[:message]
276
+ end
277
+ end
278
+
263
279
  class ExpiredImportTokenException < ServiceError
264
280
 
265
281
  # @param [Seahorse::Client::RequestContext] context
@@ -703,6 +703,18 @@ module Aws::KMS
703
703
  # the same grant ID can be used interchangeably.
704
704
  # @return [String]
705
705
  #
706
+ # @!attribute [rw] dry_run
707
+ # Checks if your request will succeed. `DryRun` is an optional
708
+ # parameter.
709
+ #
710
+ # To learn more about how to use this parameter, see [Testing your KMS
711
+ # API calls][1] in the *Key Management Service Developer Guide*.
712
+ #
713
+ #
714
+ #
715
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
716
+ # @return [Boolean]
717
+ #
706
718
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/CreateGrantRequest AWS API Documentation
707
719
  #
708
720
  class CreateGrantRequest < Struct.new(
@@ -712,7 +724,8 @@ module Aws::KMS
712
724
  :operations,
713
725
  :constraints,
714
726
  :grant_tokens,
715
- :name)
727
+ :name,
728
+ :dry_run)
716
729
  SENSITIVE = []
717
730
  include Aws::Structure
718
731
  end
@@ -1588,6 +1601,18 @@ module Aws::KMS
1588
1601
  # [3]: https://docs.aws.amazon.com/kms/latest/developerguide/services-nitro-enclaves.html
1589
1602
  # @return [Types::RecipientInfo]
1590
1603
  #
1604
+ # @!attribute [rw] dry_run
1605
+ # Checks if your request will succeed. `DryRun` is an optional
1606
+ # parameter.
1607
+ #
1608
+ # To learn more about how to use this parameter, see [Testing your KMS
1609
+ # API calls][1] in the *Key Management Service Developer Guide*.
1610
+ #
1611
+ #
1612
+ #
1613
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
1614
+ # @return [Boolean]
1615
+ #
1591
1616
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/DecryptRequest AWS API Documentation
1592
1617
  #
1593
1618
  class DecryptRequest < Struct.new(
@@ -1596,7 +1621,8 @@ module Aws::KMS
1596
1621
  :grant_tokens,
1597
1622
  :key_id,
1598
1623
  :encryption_algorithm,
1599
- :recipient)
1624
+ :recipient,
1625
+ :dry_run)
1600
1626
  SENSITIVE = []
1601
1627
  include Aws::Structure
1602
1628
  end
@@ -1944,6 +1970,19 @@ module Aws::KMS
1944
1970
  #
1945
1971
  class DisconnectCustomKeyStoreResponse < Aws::EmptyStructure; end
1946
1972
 
1973
+ # The request was rejected because the DryRun parameter was specified.
1974
+ #
1975
+ # @!attribute [rw] message
1976
+ # @return [String]
1977
+ #
1978
+ # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/DryRunOperationException AWS API Documentation
1979
+ #
1980
+ class DryRunOperationException < Struct.new(
1981
+ :message)
1982
+ SENSITIVE = []
1983
+ include Aws::Structure
1984
+ end
1985
+
1947
1986
  # @!attribute [rw] key_id
1948
1987
  # Identifies the KMS key to enable.
1949
1988
  #
@@ -2089,6 +2128,18 @@ module Aws::KMS
2089
2128
  # The SM2PKE algorithm is only available in China Regions.
2090
2129
  # @return [String]
2091
2130
  #
2131
+ # @!attribute [rw] dry_run
2132
+ # Checks if your request will succeed. `DryRun` is an optional
2133
+ # parameter.
2134
+ #
2135
+ # To learn more about how to use this parameter, see [Testing your KMS
2136
+ # API calls][1] in the *Key Management Service Developer Guide*.
2137
+ #
2138
+ #
2139
+ #
2140
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
2141
+ # @return [Boolean]
2142
+ #
2092
2143
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/EncryptRequest AWS API Documentation
2093
2144
  #
2094
2145
  class EncryptRequest < Struct.new(
@@ -2096,7 +2147,8 @@ module Aws::KMS
2096
2147
  :plaintext,
2097
2148
  :encryption_context,
2098
2149
  :grant_tokens,
2099
- :encryption_algorithm)
2150
+ :encryption_algorithm,
2151
+ :dry_run)
2100
2152
  SENSITIVE = [:plaintext]
2101
2153
  include Aws::Structure
2102
2154
  end
@@ -2252,6 +2304,18 @@ module Aws::KMS
2252
2304
  # [3]: https://docs.aws.amazon.com/kms/latest/developerguide/services-nitro-enclaves.html
2253
2305
  # @return [Types::RecipientInfo]
2254
2306
  #
2307
+ # @!attribute [rw] dry_run
2308
+ # Checks if your request will succeed. `DryRun` is an optional
2309
+ # parameter.
2310
+ #
2311
+ # To learn more about how to use this parameter, see [Testing your KMS
2312
+ # API calls][1] in the *Key Management Service Developer Guide*.
2313
+ #
2314
+ #
2315
+ #
2316
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
2317
+ # @return [Boolean]
2318
+ #
2255
2319
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/GenerateDataKeyPairRequest AWS API Documentation
2256
2320
  #
2257
2321
  class GenerateDataKeyPairRequest < Struct.new(
@@ -2259,7 +2323,8 @@ module Aws::KMS
2259
2323
  :key_id,
2260
2324
  :key_pair_spec,
2261
2325
  :grant_tokens,
2262
- :recipient)
2326
+ :recipient,
2327
+ :dry_run)
2263
2328
  SENSITIVE = []
2264
2329
  include Aws::Structure
2265
2330
  end
@@ -2403,13 +2468,26 @@ module Aws::KMS
2403
2468
  # [2]: https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#using-grant-token
2404
2469
  # @return [Array<String>]
2405
2470
  #
2471
+ # @!attribute [rw] dry_run
2472
+ # Checks if your request will succeed. `DryRun` is an optional
2473
+ # parameter.
2474
+ #
2475
+ # To learn more about how to use this parameter, see [Testing your KMS
2476
+ # API calls][1] in the *Key Management Service Developer Guide*.
2477
+ #
2478
+ #
2479
+ #
2480
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
2481
+ # @return [Boolean]
2482
+ #
2406
2483
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/GenerateDataKeyPairWithoutPlaintextRequest AWS API Documentation
2407
2484
  #
2408
2485
  class GenerateDataKeyPairWithoutPlaintextRequest < Struct.new(
2409
2486
  :encryption_context,
2410
2487
  :key_id,
2411
2488
  :key_pair_spec,
2412
- :grant_tokens)
2489
+ :grant_tokens,
2490
+ :dry_run)
2413
2491
  SENSITIVE = []
2414
2492
  include Aws::Structure
2415
2493
  end
@@ -2564,6 +2642,18 @@ module Aws::KMS
2564
2642
  # [3]: https://docs.aws.amazon.com/kms/latest/developerguide/services-nitro-enclaves.html
2565
2643
  # @return [Types::RecipientInfo]
2566
2644
  #
2645
+ # @!attribute [rw] dry_run
2646
+ # Checks if your request will succeed. `DryRun` is an optional
2647
+ # parameter.
2648
+ #
2649
+ # To learn more about how to use this parameter, see [Testing your KMS
2650
+ # API calls][1] in the *Key Management Service Developer Guide*.
2651
+ #
2652
+ #
2653
+ #
2654
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
2655
+ # @return [Boolean]
2656
+ #
2567
2657
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/GenerateDataKeyRequest AWS API Documentation
2568
2658
  #
2569
2659
  class GenerateDataKeyRequest < Struct.new(
@@ -2572,7 +2662,8 @@ module Aws::KMS
2572
2662
  :number_of_bytes,
2573
2663
  :key_spec,
2574
2664
  :grant_tokens,
2575
- :recipient)
2665
+ :recipient,
2666
+ :dry_run)
2576
2667
  SENSITIVE = []
2577
2668
  include Aws::Structure
2578
2669
  end
@@ -2707,6 +2798,18 @@ module Aws::KMS
2707
2798
  # [2]: https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#using-grant-token
2708
2799
  # @return [Array<String>]
2709
2800
  #
2801
+ # @!attribute [rw] dry_run
2802
+ # Checks if your request will succeed. `DryRun` is an optional
2803
+ # parameter.
2804
+ #
2805
+ # To learn more about how to use this parameter, see [Testing your KMS
2806
+ # API calls][1] in the *Key Management Service Developer Guide*.
2807
+ #
2808
+ #
2809
+ #
2810
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
2811
+ # @return [Boolean]
2812
+ #
2710
2813
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/GenerateDataKeyWithoutPlaintextRequest AWS API Documentation
2711
2814
  #
2712
2815
  class GenerateDataKeyWithoutPlaintextRequest < Struct.new(
@@ -2714,7 +2817,8 @@ module Aws::KMS
2714
2817
  :encryption_context,
2715
2818
  :key_spec,
2716
2819
  :number_of_bytes,
2717
- :grant_tokens)
2820
+ :grant_tokens,
2821
+ :dry_run)
2718
2822
  SENSITIVE = []
2719
2823
  include Aws::Structure
2720
2824
  end
@@ -2786,13 +2890,26 @@ module Aws::KMS
2786
2890
  # [2]: https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#using-grant-token
2787
2891
  # @return [Array<String>]
2788
2892
  #
2893
+ # @!attribute [rw] dry_run
2894
+ # Checks if your request will succeed. `DryRun` is an optional
2895
+ # parameter.
2896
+ #
2897
+ # To learn more about how to use this parameter, see [Testing your KMS
2898
+ # API calls][1] in the *Key Management Service Developer Guide*.
2899
+ #
2900
+ #
2901
+ #
2902
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
2903
+ # @return [Boolean]
2904
+ #
2789
2905
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/GenerateMacRequest AWS API Documentation
2790
2906
  #
2791
2907
  class GenerateMacRequest < Struct.new(
2792
2908
  :message,
2793
2909
  :key_id,
2794
2910
  :mac_algorithm,
2795
- :grant_tokens)
2911
+ :grant_tokens,
2912
+ :dry_run)
2796
2913
  SENSITIVE = [:message]
2797
2914
  include Aws::Structure
2798
2915
  end
@@ -4765,6 +4882,18 @@ module Aws::KMS
4765
4882
  # [2]: https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#using-grant-token
4766
4883
  # @return [Array<String>]
4767
4884
  #
4885
+ # @!attribute [rw] dry_run
4886
+ # Checks if your request will succeed. `DryRun` is an optional
4887
+ # parameter.
4888
+ #
4889
+ # To learn more about how to use this parameter, see [Testing your KMS
4890
+ # API calls][1] in the *Key Management Service Developer Guide*.
4891
+ #
4892
+ #
4893
+ #
4894
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
4895
+ # @return [Boolean]
4896
+ #
4768
4897
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/ReEncryptRequest AWS API Documentation
4769
4898
  #
4770
4899
  class ReEncryptRequest < Struct.new(
@@ -4775,7 +4904,8 @@ module Aws::KMS
4775
4904
  :destination_encryption_context,
4776
4905
  :source_encryption_algorithm,
4777
4906
  :destination_encryption_algorithm,
4778
- :grant_tokens)
4907
+ :grant_tokens,
4908
+ :dry_run)
4779
4909
  SENSITIVE = []
4780
4910
  include Aws::Structure
4781
4911
  end
@@ -5117,12 +5247,25 @@ module Aws::KMS
5117
5247
  # ^
5118
5248
  # @return [String]
5119
5249
  #
5250
+ # @!attribute [rw] dry_run
5251
+ # Checks if your request will succeed. `DryRun` is an optional
5252
+ # parameter.
5253
+ #
5254
+ # To learn more about how to use this parameter, see [Testing your KMS
5255
+ # API calls][1] in the *Key Management Service Developer Guide*.
5256
+ #
5257
+ #
5258
+ #
5259
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
5260
+ # @return [Boolean]
5261
+ #
5120
5262
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/RetireGrantRequest AWS API Documentation
5121
5263
  #
5122
5264
  class RetireGrantRequest < Struct.new(
5123
5265
  :grant_token,
5124
5266
  :key_id,
5125
- :grant_id)
5267
+ :grant_id,
5268
+ :dry_run)
5126
5269
  SENSITIVE = []
5127
5270
  include Aws::Structure
5128
5271
  end
@@ -5152,11 +5295,24 @@ module Aws::KMS
5152
5295
  # CreateGrant, ListGrants, or ListRetirableGrants.
5153
5296
  # @return [String]
5154
5297
  #
5298
+ # @!attribute [rw] dry_run
5299
+ # Checks if your request will succeed. `DryRun` is an optional
5300
+ # parameter.
5301
+ #
5302
+ # To learn more about how to use this parameter, see [Testing your KMS
5303
+ # API calls][1] in the *Key Management Service Developer Guide*.
5304
+ #
5305
+ #
5306
+ #
5307
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
5308
+ # @return [Boolean]
5309
+ #
5155
5310
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/RevokeGrantRequest AWS API Documentation
5156
5311
  #
5157
5312
  class RevokeGrantRequest < Struct.new(
5158
5313
  :key_id,
5159
- :grant_id)
5314
+ :grant_id,
5315
+ :dry_run)
5160
5316
  SENSITIVE = []
5161
5317
  include Aws::Structure
5162
5318
  end
@@ -5193,7 +5349,7 @@ module Aws::KMS
5193
5349
  #
5194
5350
  #
5195
5351
  #
5196
- # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/conditions-kms.html#conditions-pending-deletion-window
5352
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/conditions-kms.html#conditions-kms-schedule-key-deletion-pending-window-in-days
5197
5353
  # @return [Integer]
5198
5354
  #
5199
5355
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/ScheduleKeyDeletionRequest AWS API Documentation
@@ -5355,6 +5511,18 @@ module Aws::KMS
5355
5511
  # algorithms for compatibility with existing applications.
5356
5512
  # @return [String]
5357
5513
  #
5514
+ # @!attribute [rw] dry_run
5515
+ # Checks if your request will succeed. `DryRun` is an optional
5516
+ # parameter.
5517
+ #
5518
+ # To learn more about how to use this parameter, see [Testing your KMS
5519
+ # API calls][1] in the *Key Management Service Developer Guide*.
5520
+ #
5521
+ #
5522
+ #
5523
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
5524
+ # @return [Boolean]
5525
+ #
5358
5526
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/SignRequest AWS API Documentation
5359
5527
  #
5360
5528
  class SignRequest < Struct.new(
@@ -5362,7 +5530,8 @@ module Aws::KMS
5362
5530
  :message,
5363
5531
  :message_type,
5364
5532
  :grant_tokens,
5365
- :signing_algorithm)
5533
+ :signing_algorithm,
5534
+ :dry_run)
5366
5535
  SENSITIVE = [:message]
5367
5536
  include Aws::Structure
5368
5537
  end
@@ -5859,6 +6028,18 @@ module Aws::KMS
5859
6028
  # [2]: https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#using-grant-token
5860
6029
  # @return [Array<String>]
5861
6030
  #
6031
+ # @!attribute [rw] dry_run
6032
+ # Checks if your request will succeed. `DryRun` is an optional
6033
+ # parameter.
6034
+ #
6035
+ # To learn more about how to use this parameter, see [Testing your KMS
6036
+ # API calls][1] in the *Key Management Service Developer Guide*.
6037
+ #
6038
+ #
6039
+ #
6040
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
6041
+ # @return [Boolean]
6042
+ #
5862
6043
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/VerifyMacRequest AWS API Documentation
5863
6044
  #
5864
6045
  class VerifyMacRequest < Struct.new(
@@ -5866,7 +6047,8 @@ module Aws::KMS
5866
6047
  :key_id,
5867
6048
  :mac_algorithm,
5868
6049
  :mac,
5869
- :grant_tokens)
6050
+ :grant_tokens,
6051
+ :dry_run)
5870
6052
  SENSITIVE = [:message]
5871
6053
  include Aws::Structure
5872
6054
  end
@@ -6003,6 +6185,18 @@ module Aws::KMS
6003
6185
  # [2]: https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#using-grant-token
6004
6186
  # @return [Array<String>]
6005
6187
  #
6188
+ # @!attribute [rw] dry_run
6189
+ # Checks if your request will succeed. `DryRun` is an optional
6190
+ # parameter.
6191
+ #
6192
+ # To learn more about how to use this parameter, see [Testing your KMS
6193
+ # API calls][1] in the *Key Management Service Developer Guide*.
6194
+ #
6195
+ #
6196
+ #
6197
+ # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/programming-dryrun.html
6198
+ # @return [Boolean]
6199
+ #
6006
6200
  # @see http://docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/VerifyRequest AWS API Documentation
6007
6201
  #
6008
6202
  class VerifyRequest < Struct.new(
@@ -6011,7 +6205,8 @@ module Aws::KMS
6011
6205
  :message_type,
6012
6206
  :signature,
6013
6207
  :signing_algorithm,
6014
- :grant_tokens)
6208
+ :grant_tokens,
6209
+ :dry_run)
6015
6210
  SENSITIVE = [:message]
6016
6211
  include Aws::Structure
6017
6212
  end
data/lib/aws-sdk-kms.rb CHANGED
@@ -52,6 +52,6 @@ require_relative 'aws-sdk-kms/customizations'
52
52
  # @!group service
53
53
  module Aws::KMS
54
54
 
55
- GEM_VERSION = '1.68.0'
55
+ GEM_VERSION = '1.70.0'
56
56
 
57
57
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-kms
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.68.0
4
+ version: 1.70.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-06-28 00:00:00.000000000 Z
11
+ date: 2023-07-06 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-core
@@ -19,7 +19,7 @@ dependencies:
19
19
  version: '3'
20
20
  - - ">="
21
21
  - !ruby/object:Gem::Version
22
- version: 3.176.0
22
+ version: 3.177.0
23
23
  type: :runtime
24
24
  prerelease: false
25
25
  version_requirements: !ruby/object:Gem::Requirement
@@ -29,7 +29,7 @@ dependencies:
29
29
  version: '3'
30
30
  - - ">="
31
31
  - !ruby/object:Gem::Version
32
- version: 3.176.0
32
+ version: 3.177.0
33
33
  - !ruby/object:Gem::Dependency
34
34
  name: aws-sigv4
35
35
  requirement: !ruby/object:Gem::Requirement