aws-sdk-kms 1.76.0 → 1.78.0

Sign up to get free protection for your applications and to get access to all the features.
data/sig/types.rbs ADDED
@@ -0,0 +1,974 @@
1
+ # WARNING ABOUT GENERATED CODE
2
+ #
3
+ # This file is generated. See the contributing guide for more information:
4
+ # https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
5
+ #
6
+ # WARNING ABOUT GENERATED CODE
7
+
8
+ module Aws::KMS
9
+ module Types
10
+
11
+ class AliasListEntry
12
+ attr_accessor alias_name: ::String
13
+ attr_accessor alias_arn: ::String
14
+ attr_accessor target_key_id: ::String
15
+ attr_accessor creation_date: ::Time
16
+ attr_accessor last_updated_date: ::Time
17
+ SENSITIVE: []
18
+ end
19
+
20
+ class AlreadyExistsException
21
+ attr_accessor message: ::String
22
+ SENSITIVE: []
23
+ end
24
+
25
+ class CancelKeyDeletionRequest
26
+ attr_accessor key_id: ::String
27
+ SENSITIVE: []
28
+ end
29
+
30
+ class CancelKeyDeletionResponse
31
+ attr_accessor key_id: ::String
32
+ SENSITIVE: []
33
+ end
34
+
35
+ class CloudHsmClusterInUseException
36
+ attr_accessor message: ::String
37
+ SENSITIVE: []
38
+ end
39
+
40
+ class CloudHsmClusterInvalidConfigurationException
41
+ attr_accessor message: ::String
42
+ SENSITIVE: []
43
+ end
44
+
45
+ class CloudHsmClusterNotActiveException
46
+ attr_accessor message: ::String
47
+ SENSITIVE: []
48
+ end
49
+
50
+ class CloudHsmClusterNotFoundException
51
+ attr_accessor message: ::String
52
+ SENSITIVE: []
53
+ end
54
+
55
+ class CloudHsmClusterNotRelatedException
56
+ attr_accessor message: ::String
57
+ SENSITIVE: []
58
+ end
59
+
60
+ class ConnectCustomKeyStoreRequest
61
+ attr_accessor custom_key_store_id: ::String
62
+ SENSITIVE: []
63
+ end
64
+
65
+ class ConnectCustomKeyStoreResponse < Aws::EmptyStructure
66
+ end
67
+
68
+ class CreateAliasRequest
69
+ attr_accessor alias_name: ::String
70
+ attr_accessor target_key_id: ::String
71
+ SENSITIVE: []
72
+ end
73
+
74
+ class CreateCustomKeyStoreRequest
75
+ attr_accessor custom_key_store_name: ::String
76
+ attr_accessor cloud_hsm_cluster_id: ::String
77
+ attr_accessor trust_anchor_certificate: ::String
78
+ attr_accessor key_store_password: ::String
79
+ attr_accessor custom_key_store_type: ("AWS_CLOUDHSM" | "EXTERNAL_KEY_STORE")
80
+ attr_accessor xks_proxy_uri_endpoint: ::String
81
+ attr_accessor xks_proxy_uri_path: ::String
82
+ attr_accessor xks_proxy_vpc_endpoint_service_name: ::String
83
+ attr_accessor xks_proxy_authentication_credential: Types::XksProxyAuthenticationCredentialType
84
+ attr_accessor xks_proxy_connectivity: ("PUBLIC_ENDPOINT" | "VPC_ENDPOINT_SERVICE")
85
+ SENSITIVE: [:key_store_password]
86
+ end
87
+
88
+ class CreateCustomKeyStoreResponse
89
+ attr_accessor custom_key_store_id: ::String
90
+ SENSITIVE: []
91
+ end
92
+
93
+ class CreateGrantRequest
94
+ attr_accessor key_id: ::String
95
+ attr_accessor grantee_principal: ::String
96
+ attr_accessor retiring_principal: ::String
97
+ attr_accessor operations: ::Array[("Decrypt" | "Encrypt" | "GenerateDataKey" | "GenerateDataKeyWithoutPlaintext" | "ReEncryptFrom" | "ReEncryptTo" | "Sign" | "Verify" | "GetPublicKey" | "CreateGrant" | "RetireGrant" | "DescribeKey" | "GenerateDataKeyPair" | "GenerateDataKeyPairWithoutPlaintext" | "GenerateMac" | "VerifyMac")]
98
+ attr_accessor constraints: Types::GrantConstraints
99
+ attr_accessor grant_tokens: ::Array[::String]
100
+ attr_accessor name: ::String
101
+ attr_accessor dry_run: bool
102
+ SENSITIVE: []
103
+ end
104
+
105
+ class CreateGrantResponse
106
+ attr_accessor grant_token: ::String
107
+ attr_accessor grant_id: ::String
108
+ SENSITIVE: []
109
+ end
110
+
111
+ class CreateKeyRequest
112
+ attr_accessor policy: ::String
113
+ attr_accessor description: ::String
114
+ attr_accessor key_usage: ("SIGN_VERIFY" | "ENCRYPT_DECRYPT" | "GENERATE_VERIFY_MAC")
115
+ attr_accessor customer_master_key_spec: ("RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521" | "ECC_SECG_P256K1" | "SYMMETRIC_DEFAULT" | "HMAC_224" | "HMAC_256" | "HMAC_384" | "HMAC_512" | "SM2")
116
+ attr_accessor key_spec: ("RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521" | "ECC_SECG_P256K1" | "SYMMETRIC_DEFAULT" | "HMAC_224" | "HMAC_256" | "HMAC_384" | "HMAC_512" | "SM2")
117
+ attr_accessor origin: ("AWS_KMS" | "EXTERNAL" | "AWS_CLOUDHSM" | "EXTERNAL_KEY_STORE")
118
+ attr_accessor custom_key_store_id: ::String
119
+ attr_accessor bypass_policy_lockout_safety_check: bool
120
+ attr_accessor tags: ::Array[Types::Tag]
121
+ attr_accessor multi_region: bool
122
+ attr_accessor xks_key_id: ::String
123
+ SENSITIVE: []
124
+ end
125
+
126
+ class CreateKeyResponse
127
+ attr_accessor key_metadata: Types::KeyMetadata
128
+ SENSITIVE: []
129
+ end
130
+
131
+ class CustomKeyStoreHasCMKsException
132
+ attr_accessor message: ::String
133
+ SENSITIVE: []
134
+ end
135
+
136
+ class CustomKeyStoreInvalidStateException
137
+ attr_accessor message: ::String
138
+ SENSITIVE: []
139
+ end
140
+
141
+ class CustomKeyStoreNameInUseException
142
+ attr_accessor message: ::String
143
+ SENSITIVE: []
144
+ end
145
+
146
+ class CustomKeyStoreNotFoundException
147
+ attr_accessor message: ::String
148
+ SENSITIVE: []
149
+ end
150
+
151
+ class CustomKeyStoresListEntry
152
+ attr_accessor custom_key_store_id: ::String
153
+ attr_accessor custom_key_store_name: ::String
154
+ attr_accessor cloud_hsm_cluster_id: ::String
155
+ attr_accessor trust_anchor_certificate: ::String
156
+ attr_accessor connection_state: ("CONNECTED" | "CONNECTING" | "FAILED" | "DISCONNECTED" | "DISCONNECTING")
157
+ attr_accessor connection_error_code: ("INVALID_CREDENTIALS" | "CLUSTER_NOT_FOUND" | "NETWORK_ERRORS" | "INTERNAL_ERROR" | "INSUFFICIENT_CLOUDHSM_HSMS" | "USER_LOCKED_OUT" | "USER_NOT_FOUND" | "USER_LOGGED_IN" | "SUBNET_NOT_FOUND" | "INSUFFICIENT_FREE_ADDRESSES_IN_SUBNET" | "XKS_PROXY_ACCESS_DENIED" | "XKS_PROXY_NOT_REACHABLE" | "XKS_VPC_ENDPOINT_SERVICE_NOT_FOUND" | "XKS_PROXY_INVALID_RESPONSE" | "XKS_PROXY_INVALID_CONFIGURATION" | "XKS_VPC_ENDPOINT_SERVICE_INVALID_CONFIGURATION" | "XKS_PROXY_TIMED_OUT" | "XKS_PROXY_INVALID_TLS_CONFIGURATION")
158
+ attr_accessor creation_date: ::Time
159
+ attr_accessor custom_key_store_type: ("AWS_CLOUDHSM" | "EXTERNAL_KEY_STORE")
160
+ attr_accessor xks_proxy_configuration: Types::XksProxyConfigurationType
161
+ SENSITIVE: []
162
+ end
163
+
164
+ class DecryptRequest
165
+ attr_accessor ciphertext_blob: ::String
166
+ attr_accessor encryption_context: ::Hash[::String, ::String]
167
+ attr_accessor grant_tokens: ::Array[::String]
168
+ attr_accessor key_id: ::String
169
+ attr_accessor encryption_algorithm: ("SYMMETRIC_DEFAULT" | "RSAES_OAEP_SHA_1" | "RSAES_OAEP_SHA_256" | "SM2PKE")
170
+ attr_accessor recipient: Types::RecipientInfo
171
+ attr_accessor dry_run: bool
172
+ SENSITIVE: []
173
+ end
174
+
175
+ class DecryptResponse
176
+ attr_accessor key_id: ::String
177
+ attr_accessor plaintext: ::String
178
+ attr_accessor encryption_algorithm: ("SYMMETRIC_DEFAULT" | "RSAES_OAEP_SHA_1" | "RSAES_OAEP_SHA_256" | "SM2PKE")
179
+ attr_accessor ciphertext_for_recipient: ::String
180
+ SENSITIVE: [:plaintext]
181
+ end
182
+
183
+ class DeleteAliasRequest
184
+ attr_accessor alias_name: ::String
185
+ SENSITIVE: []
186
+ end
187
+
188
+ class DeleteCustomKeyStoreRequest
189
+ attr_accessor custom_key_store_id: ::String
190
+ SENSITIVE: []
191
+ end
192
+
193
+ class DeleteCustomKeyStoreResponse < Aws::EmptyStructure
194
+ end
195
+
196
+ class DeleteImportedKeyMaterialRequest
197
+ attr_accessor key_id: ::String
198
+ SENSITIVE: []
199
+ end
200
+
201
+ class DependencyTimeoutException
202
+ attr_accessor message: ::String
203
+ SENSITIVE: []
204
+ end
205
+
206
+ class DescribeCustomKeyStoresRequest
207
+ attr_accessor custom_key_store_id: ::String
208
+ attr_accessor custom_key_store_name: ::String
209
+ attr_accessor limit: ::Integer
210
+ attr_accessor marker: ::String
211
+ SENSITIVE: []
212
+ end
213
+
214
+ class DescribeCustomKeyStoresResponse
215
+ attr_accessor custom_key_stores: ::Array[Types::CustomKeyStoresListEntry]
216
+ attr_accessor next_marker: ::String
217
+ attr_accessor truncated: bool
218
+ SENSITIVE: []
219
+ end
220
+
221
+ class DescribeKeyRequest
222
+ attr_accessor key_id: ::String
223
+ attr_accessor grant_tokens: ::Array[::String]
224
+ SENSITIVE: []
225
+ end
226
+
227
+ class DescribeKeyResponse
228
+ attr_accessor key_metadata: Types::KeyMetadata
229
+ SENSITIVE: []
230
+ end
231
+
232
+ class DisableKeyRequest
233
+ attr_accessor key_id: ::String
234
+ SENSITIVE: []
235
+ end
236
+
237
+ class DisableKeyRotationRequest
238
+ attr_accessor key_id: ::String
239
+ SENSITIVE: []
240
+ end
241
+
242
+ class DisabledException
243
+ attr_accessor message: ::String
244
+ SENSITIVE: []
245
+ end
246
+
247
+ class DisconnectCustomKeyStoreRequest
248
+ attr_accessor custom_key_store_id: ::String
249
+ SENSITIVE: []
250
+ end
251
+
252
+ class DisconnectCustomKeyStoreResponse < Aws::EmptyStructure
253
+ end
254
+
255
+ class DryRunOperationException
256
+ attr_accessor message: ::String
257
+ SENSITIVE: []
258
+ end
259
+
260
+ class EnableKeyRequest
261
+ attr_accessor key_id: ::String
262
+ SENSITIVE: []
263
+ end
264
+
265
+ class EnableKeyRotationRequest
266
+ attr_accessor key_id: ::String
267
+ SENSITIVE: []
268
+ end
269
+
270
+ class EncryptRequest
271
+ attr_accessor key_id: ::String
272
+ attr_accessor plaintext: ::String
273
+ attr_accessor encryption_context: ::Hash[::String, ::String]
274
+ attr_accessor grant_tokens: ::Array[::String]
275
+ attr_accessor encryption_algorithm: ("SYMMETRIC_DEFAULT" | "RSAES_OAEP_SHA_1" | "RSAES_OAEP_SHA_256" | "SM2PKE")
276
+ attr_accessor dry_run: bool
277
+ SENSITIVE: [:plaintext]
278
+ end
279
+
280
+ class EncryptResponse
281
+ attr_accessor ciphertext_blob: ::String
282
+ attr_accessor key_id: ::String
283
+ attr_accessor encryption_algorithm: ("SYMMETRIC_DEFAULT" | "RSAES_OAEP_SHA_1" | "RSAES_OAEP_SHA_256" | "SM2PKE")
284
+ SENSITIVE: []
285
+ end
286
+
287
+ class ExpiredImportTokenException
288
+ attr_accessor message: ::String
289
+ SENSITIVE: []
290
+ end
291
+
292
+ class GenerateDataKeyPairRequest
293
+ attr_accessor encryption_context: ::Hash[::String, ::String]
294
+ attr_accessor key_id: ::String
295
+ attr_accessor key_pair_spec: ("RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521" | "ECC_SECG_P256K1" | "SM2")
296
+ attr_accessor grant_tokens: ::Array[::String]
297
+ attr_accessor recipient: Types::RecipientInfo
298
+ attr_accessor dry_run: bool
299
+ SENSITIVE: []
300
+ end
301
+
302
+ class GenerateDataKeyPairResponse
303
+ attr_accessor private_key_ciphertext_blob: ::String
304
+ attr_accessor private_key_plaintext: ::String
305
+ attr_accessor public_key: ::String
306
+ attr_accessor key_id: ::String
307
+ attr_accessor key_pair_spec: ("RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521" | "ECC_SECG_P256K1" | "SM2")
308
+ attr_accessor ciphertext_for_recipient: ::String
309
+ SENSITIVE: [:private_key_plaintext]
310
+ end
311
+
312
+ class GenerateDataKeyPairWithoutPlaintextRequest
313
+ attr_accessor encryption_context: ::Hash[::String, ::String]
314
+ attr_accessor key_id: ::String
315
+ attr_accessor key_pair_spec: ("RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521" | "ECC_SECG_P256K1" | "SM2")
316
+ attr_accessor grant_tokens: ::Array[::String]
317
+ attr_accessor dry_run: bool
318
+ SENSITIVE: []
319
+ end
320
+
321
+ class GenerateDataKeyPairWithoutPlaintextResponse
322
+ attr_accessor private_key_ciphertext_blob: ::String
323
+ attr_accessor public_key: ::String
324
+ attr_accessor key_id: ::String
325
+ attr_accessor key_pair_spec: ("RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521" | "ECC_SECG_P256K1" | "SM2")
326
+ SENSITIVE: []
327
+ end
328
+
329
+ class GenerateDataKeyRequest
330
+ attr_accessor key_id: ::String
331
+ attr_accessor encryption_context: ::Hash[::String, ::String]
332
+ attr_accessor number_of_bytes: ::Integer
333
+ attr_accessor key_spec: ("AES_256" | "AES_128")
334
+ attr_accessor grant_tokens: ::Array[::String]
335
+ attr_accessor recipient: Types::RecipientInfo
336
+ attr_accessor dry_run: bool
337
+ SENSITIVE: []
338
+ end
339
+
340
+ class GenerateDataKeyResponse
341
+ attr_accessor ciphertext_blob: ::String
342
+ attr_accessor plaintext: ::String
343
+ attr_accessor key_id: ::String
344
+ attr_accessor ciphertext_for_recipient: ::String
345
+ SENSITIVE: [:plaintext]
346
+ end
347
+
348
+ class GenerateDataKeyWithoutPlaintextRequest
349
+ attr_accessor key_id: ::String
350
+ attr_accessor encryption_context: ::Hash[::String, ::String]
351
+ attr_accessor key_spec: ("AES_256" | "AES_128")
352
+ attr_accessor number_of_bytes: ::Integer
353
+ attr_accessor grant_tokens: ::Array[::String]
354
+ attr_accessor dry_run: bool
355
+ SENSITIVE: []
356
+ end
357
+
358
+ class GenerateDataKeyWithoutPlaintextResponse
359
+ attr_accessor ciphertext_blob: ::String
360
+ attr_accessor key_id: ::String
361
+ SENSITIVE: []
362
+ end
363
+
364
+ class GenerateMacRequest
365
+ attr_accessor message: ::String
366
+ attr_accessor key_id: ::String
367
+ attr_accessor mac_algorithm: ("HMAC_SHA_224" | "HMAC_SHA_256" | "HMAC_SHA_384" | "HMAC_SHA_512")
368
+ attr_accessor grant_tokens: ::Array[::String]
369
+ attr_accessor dry_run: bool
370
+ SENSITIVE: [:message]
371
+ end
372
+
373
+ class GenerateMacResponse
374
+ attr_accessor mac: ::String
375
+ attr_accessor mac_algorithm: ("HMAC_SHA_224" | "HMAC_SHA_256" | "HMAC_SHA_384" | "HMAC_SHA_512")
376
+ attr_accessor key_id: ::String
377
+ SENSITIVE: []
378
+ end
379
+
380
+ class GenerateRandomRequest
381
+ attr_accessor number_of_bytes: ::Integer
382
+ attr_accessor custom_key_store_id: ::String
383
+ attr_accessor recipient: Types::RecipientInfo
384
+ SENSITIVE: []
385
+ end
386
+
387
+ class GenerateRandomResponse
388
+ attr_accessor plaintext: ::String
389
+ attr_accessor ciphertext_for_recipient: ::String
390
+ SENSITIVE: [:plaintext]
391
+ end
392
+
393
+ class GetKeyPolicyRequest
394
+ attr_accessor key_id: ::String
395
+ attr_accessor policy_name: ::String
396
+ SENSITIVE: []
397
+ end
398
+
399
+ class GetKeyPolicyResponse
400
+ attr_accessor policy: ::String
401
+ attr_accessor policy_name: ::String
402
+ SENSITIVE: []
403
+ end
404
+
405
+ class GetKeyRotationStatusRequest
406
+ attr_accessor key_id: ::String
407
+ SENSITIVE: []
408
+ end
409
+
410
+ class GetKeyRotationStatusResponse
411
+ attr_accessor key_rotation_enabled: bool
412
+ SENSITIVE: []
413
+ end
414
+
415
+ class GetParametersForImportRequest
416
+ attr_accessor key_id: ::String
417
+ attr_accessor wrapping_algorithm: ("RSAES_PKCS1_V1_5" | "RSAES_OAEP_SHA_1" | "RSAES_OAEP_SHA_256" | "RSA_AES_KEY_WRAP_SHA_1" | "RSA_AES_KEY_WRAP_SHA_256")
418
+ attr_accessor wrapping_key_spec: ("RSA_2048" | "RSA_3072" | "RSA_4096")
419
+ SENSITIVE: []
420
+ end
421
+
422
+ class GetParametersForImportResponse
423
+ attr_accessor key_id: ::String
424
+ attr_accessor import_token: ::String
425
+ attr_accessor public_key: ::String
426
+ attr_accessor parameters_valid_to: ::Time
427
+ SENSITIVE: [:public_key]
428
+ end
429
+
430
+ class GetPublicKeyRequest
431
+ attr_accessor key_id: ::String
432
+ attr_accessor grant_tokens: ::Array[::String]
433
+ SENSITIVE: []
434
+ end
435
+
436
+ class GetPublicKeyResponse
437
+ attr_accessor key_id: ::String
438
+ attr_accessor public_key: ::String
439
+ attr_accessor customer_master_key_spec: ("RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521" | "ECC_SECG_P256K1" | "SYMMETRIC_DEFAULT" | "HMAC_224" | "HMAC_256" | "HMAC_384" | "HMAC_512" | "SM2")
440
+ attr_accessor key_spec: ("RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521" | "ECC_SECG_P256K1" | "SYMMETRIC_DEFAULT" | "HMAC_224" | "HMAC_256" | "HMAC_384" | "HMAC_512" | "SM2")
441
+ attr_accessor key_usage: ("SIGN_VERIFY" | "ENCRYPT_DECRYPT" | "GENERATE_VERIFY_MAC")
442
+ attr_accessor encryption_algorithms: ::Array[("SYMMETRIC_DEFAULT" | "RSAES_OAEP_SHA_1" | "RSAES_OAEP_SHA_256" | "SM2PKE")]
443
+ attr_accessor signing_algorithms: ::Array[("RSASSA_PSS_SHA_256" | "RSASSA_PSS_SHA_384" | "RSASSA_PSS_SHA_512" | "RSASSA_PKCS1_V1_5_SHA_256" | "RSASSA_PKCS1_V1_5_SHA_384" | "RSASSA_PKCS1_V1_5_SHA_512" | "ECDSA_SHA_256" | "ECDSA_SHA_384" | "ECDSA_SHA_512" | "SM2DSA")]
444
+ SENSITIVE: []
445
+ end
446
+
447
+ class GrantConstraints
448
+ attr_accessor encryption_context_subset: ::Hash[::String, ::String]
449
+ attr_accessor encryption_context_equals: ::Hash[::String, ::String]
450
+ SENSITIVE: []
451
+ end
452
+
453
+ class GrantListEntry
454
+ attr_accessor key_id: ::String
455
+ attr_accessor grant_id: ::String
456
+ attr_accessor name: ::String
457
+ attr_accessor creation_date: ::Time
458
+ attr_accessor grantee_principal: ::String
459
+ attr_accessor retiring_principal: ::String
460
+ attr_accessor issuing_account: ::String
461
+ attr_accessor operations: ::Array[("Decrypt" | "Encrypt" | "GenerateDataKey" | "GenerateDataKeyWithoutPlaintext" | "ReEncryptFrom" | "ReEncryptTo" | "Sign" | "Verify" | "GetPublicKey" | "CreateGrant" | "RetireGrant" | "DescribeKey" | "GenerateDataKeyPair" | "GenerateDataKeyPairWithoutPlaintext" | "GenerateMac" | "VerifyMac")]
462
+ attr_accessor constraints: Types::GrantConstraints
463
+ SENSITIVE: []
464
+ end
465
+
466
+ class ImportKeyMaterialRequest
467
+ attr_accessor key_id: ::String
468
+ attr_accessor import_token: ::String
469
+ attr_accessor encrypted_key_material: ::String
470
+ attr_accessor valid_to: ::Time
471
+ attr_accessor expiration_model: ("KEY_MATERIAL_EXPIRES" | "KEY_MATERIAL_DOES_NOT_EXPIRE")
472
+ SENSITIVE: []
473
+ end
474
+
475
+ class ImportKeyMaterialResponse < Aws::EmptyStructure
476
+ end
477
+
478
+ class IncorrectKeyException
479
+ attr_accessor message: ::String
480
+ SENSITIVE: []
481
+ end
482
+
483
+ class IncorrectKeyMaterialException
484
+ attr_accessor message: ::String
485
+ SENSITIVE: []
486
+ end
487
+
488
+ class IncorrectTrustAnchorException
489
+ attr_accessor message: ::String
490
+ SENSITIVE: []
491
+ end
492
+
493
+ class InvalidAliasNameException
494
+ attr_accessor message: ::String
495
+ SENSITIVE: []
496
+ end
497
+
498
+ class InvalidArnException
499
+ attr_accessor message: ::String
500
+ SENSITIVE: []
501
+ end
502
+
503
+ class InvalidCiphertextException
504
+ attr_accessor message: ::String
505
+ SENSITIVE: []
506
+ end
507
+
508
+ class InvalidGrantIdException
509
+ attr_accessor message: ::String
510
+ SENSITIVE: []
511
+ end
512
+
513
+ class InvalidGrantTokenException
514
+ attr_accessor message: ::String
515
+ SENSITIVE: []
516
+ end
517
+
518
+ class InvalidImportTokenException
519
+ attr_accessor message: ::String
520
+ SENSITIVE: []
521
+ end
522
+
523
+ class InvalidKeyUsageException
524
+ attr_accessor message: ::String
525
+ SENSITIVE: []
526
+ end
527
+
528
+ class InvalidMarkerException
529
+ attr_accessor message: ::String
530
+ SENSITIVE: []
531
+ end
532
+
533
+ class KMSInternalException
534
+ attr_accessor message: ::String
535
+ SENSITIVE: []
536
+ end
537
+
538
+ class KMSInvalidMacException
539
+ attr_accessor message: ::String
540
+ SENSITIVE: []
541
+ end
542
+
543
+ class KMSInvalidSignatureException
544
+ attr_accessor message: ::String
545
+ SENSITIVE: []
546
+ end
547
+
548
+ class KMSInvalidStateException
549
+ attr_accessor message: ::String
550
+ SENSITIVE: []
551
+ end
552
+
553
+ class KeyListEntry
554
+ attr_accessor key_id: ::String
555
+ attr_accessor key_arn: ::String
556
+ SENSITIVE: []
557
+ end
558
+
559
+ class KeyMetadata
560
+ attr_accessor aws_account_id: ::String
561
+ attr_accessor key_id: ::String
562
+ attr_accessor arn: ::String
563
+ attr_accessor creation_date: ::Time
564
+ attr_accessor enabled: bool
565
+ attr_accessor description: ::String
566
+ attr_accessor key_usage: ("SIGN_VERIFY" | "ENCRYPT_DECRYPT" | "GENERATE_VERIFY_MAC")
567
+ attr_accessor key_state: ("Creating" | "Enabled" | "Disabled" | "PendingDeletion" | "PendingImport" | "PendingReplicaDeletion" | "Unavailable" | "Updating")
568
+ attr_accessor deletion_date: ::Time
569
+ attr_accessor valid_to: ::Time
570
+ attr_accessor origin: ("AWS_KMS" | "EXTERNAL" | "AWS_CLOUDHSM" | "EXTERNAL_KEY_STORE")
571
+ attr_accessor custom_key_store_id: ::String
572
+ attr_accessor cloud_hsm_cluster_id: ::String
573
+ attr_accessor expiration_model: ("KEY_MATERIAL_EXPIRES" | "KEY_MATERIAL_DOES_NOT_EXPIRE")
574
+ attr_accessor key_manager: ("AWS" | "CUSTOMER")
575
+ attr_accessor customer_master_key_spec: ("RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521" | "ECC_SECG_P256K1" | "SYMMETRIC_DEFAULT" | "HMAC_224" | "HMAC_256" | "HMAC_384" | "HMAC_512" | "SM2")
576
+ attr_accessor key_spec: ("RSA_2048" | "RSA_3072" | "RSA_4096" | "ECC_NIST_P256" | "ECC_NIST_P384" | "ECC_NIST_P521" | "ECC_SECG_P256K1" | "SYMMETRIC_DEFAULT" | "HMAC_224" | "HMAC_256" | "HMAC_384" | "HMAC_512" | "SM2")
577
+ attr_accessor encryption_algorithms: ::Array[("SYMMETRIC_DEFAULT" | "RSAES_OAEP_SHA_1" | "RSAES_OAEP_SHA_256" | "SM2PKE")]
578
+ attr_accessor signing_algorithms: ::Array[("RSASSA_PSS_SHA_256" | "RSASSA_PSS_SHA_384" | "RSASSA_PSS_SHA_512" | "RSASSA_PKCS1_V1_5_SHA_256" | "RSASSA_PKCS1_V1_5_SHA_384" | "RSASSA_PKCS1_V1_5_SHA_512" | "ECDSA_SHA_256" | "ECDSA_SHA_384" | "ECDSA_SHA_512" | "SM2DSA")]
579
+ attr_accessor multi_region: bool
580
+ attr_accessor multi_region_configuration: Types::MultiRegionConfiguration
581
+ attr_accessor pending_deletion_window_in_days: ::Integer
582
+ attr_accessor mac_algorithms: ::Array[("HMAC_SHA_224" | "HMAC_SHA_256" | "HMAC_SHA_384" | "HMAC_SHA_512")]
583
+ attr_accessor xks_key_configuration: Types::XksKeyConfigurationType
584
+ SENSITIVE: []
585
+ end
586
+
587
+ class KeyUnavailableException
588
+ attr_accessor message: ::String
589
+ SENSITIVE: []
590
+ end
591
+
592
+ class LimitExceededException
593
+ attr_accessor message: ::String
594
+ SENSITIVE: []
595
+ end
596
+
597
+ class ListAliasesRequest
598
+ attr_accessor key_id: ::String
599
+ attr_accessor limit: ::Integer
600
+ attr_accessor marker: ::String
601
+ SENSITIVE: []
602
+ end
603
+
604
+ class ListAliasesResponse
605
+ attr_accessor aliases: ::Array[Types::AliasListEntry]
606
+ attr_accessor next_marker: ::String
607
+ attr_accessor truncated: bool
608
+ SENSITIVE: []
609
+ end
610
+
611
+ class ListGrantsRequest
612
+ attr_accessor limit: ::Integer
613
+ attr_accessor marker: ::String
614
+ attr_accessor key_id: ::String
615
+ attr_accessor grant_id: ::String
616
+ attr_accessor grantee_principal: ::String
617
+ SENSITIVE: []
618
+ end
619
+
620
+ class ListGrantsResponse
621
+ attr_accessor grants: ::Array[Types::GrantListEntry]
622
+ attr_accessor next_marker: ::String
623
+ attr_accessor truncated: bool
624
+ SENSITIVE: []
625
+ end
626
+
627
+ class ListKeyPoliciesRequest
628
+ attr_accessor key_id: ::String
629
+ attr_accessor limit: ::Integer
630
+ attr_accessor marker: ::String
631
+ SENSITIVE: []
632
+ end
633
+
634
+ class ListKeyPoliciesResponse
635
+ attr_accessor policy_names: ::Array[::String]
636
+ attr_accessor next_marker: ::String
637
+ attr_accessor truncated: bool
638
+ SENSITIVE: []
639
+ end
640
+
641
+ class ListKeysRequest
642
+ attr_accessor limit: ::Integer
643
+ attr_accessor marker: ::String
644
+ SENSITIVE: []
645
+ end
646
+
647
+ class ListKeysResponse
648
+ attr_accessor keys: ::Array[Types::KeyListEntry]
649
+ attr_accessor next_marker: ::String
650
+ attr_accessor truncated: bool
651
+ SENSITIVE: []
652
+ end
653
+
654
+ class ListResourceTagsRequest
655
+ attr_accessor key_id: ::String
656
+ attr_accessor limit: ::Integer
657
+ attr_accessor marker: ::String
658
+ SENSITIVE: []
659
+ end
660
+
661
+ class ListResourceTagsResponse
662
+ attr_accessor tags: ::Array[Types::Tag]
663
+ attr_accessor next_marker: ::String
664
+ attr_accessor truncated: bool
665
+ SENSITIVE: []
666
+ end
667
+
668
+ class ListRetirableGrantsRequest
669
+ attr_accessor limit: ::Integer
670
+ attr_accessor marker: ::String
671
+ attr_accessor retiring_principal: ::String
672
+ SENSITIVE: []
673
+ end
674
+
675
+ class MalformedPolicyDocumentException
676
+ attr_accessor message: ::String
677
+ SENSITIVE: []
678
+ end
679
+
680
+ class MultiRegionConfiguration
681
+ attr_accessor multi_region_key_type: ("PRIMARY" | "REPLICA")
682
+ attr_accessor primary_key: Types::MultiRegionKey
683
+ attr_accessor replica_keys: ::Array[Types::MultiRegionKey]
684
+ SENSITIVE: []
685
+ end
686
+
687
+ class MultiRegionKey
688
+ attr_accessor arn: ::String
689
+ attr_accessor region: ::String
690
+ SENSITIVE: []
691
+ end
692
+
693
+ class NotFoundException
694
+ attr_accessor message: ::String
695
+ SENSITIVE: []
696
+ end
697
+
698
+ class PutKeyPolicyRequest
699
+ attr_accessor key_id: ::String
700
+ attr_accessor policy_name: ::String
701
+ attr_accessor policy: ::String
702
+ attr_accessor bypass_policy_lockout_safety_check: bool
703
+ SENSITIVE: []
704
+ end
705
+
706
+ class ReEncryptRequest
707
+ attr_accessor ciphertext_blob: ::String
708
+ attr_accessor source_encryption_context: ::Hash[::String, ::String]
709
+ attr_accessor source_key_id: ::String
710
+ attr_accessor destination_key_id: ::String
711
+ attr_accessor destination_encryption_context: ::Hash[::String, ::String]
712
+ attr_accessor source_encryption_algorithm: ("SYMMETRIC_DEFAULT" | "RSAES_OAEP_SHA_1" | "RSAES_OAEP_SHA_256" | "SM2PKE")
713
+ attr_accessor destination_encryption_algorithm: ("SYMMETRIC_DEFAULT" | "RSAES_OAEP_SHA_1" | "RSAES_OAEP_SHA_256" | "SM2PKE")
714
+ attr_accessor grant_tokens: ::Array[::String]
715
+ attr_accessor dry_run: bool
716
+ SENSITIVE: []
717
+ end
718
+
719
+ class ReEncryptResponse
720
+ attr_accessor ciphertext_blob: ::String
721
+ attr_accessor source_key_id: ::String
722
+ attr_accessor key_id: ::String
723
+ attr_accessor source_encryption_algorithm: ("SYMMETRIC_DEFAULT" | "RSAES_OAEP_SHA_1" | "RSAES_OAEP_SHA_256" | "SM2PKE")
724
+ attr_accessor destination_encryption_algorithm: ("SYMMETRIC_DEFAULT" | "RSAES_OAEP_SHA_1" | "RSAES_OAEP_SHA_256" | "SM2PKE")
725
+ SENSITIVE: []
726
+ end
727
+
728
+ class RecipientInfo
729
+ attr_accessor key_encryption_algorithm: ("RSAES_OAEP_SHA_256")
730
+ attr_accessor attestation_document: ::String
731
+ SENSITIVE: []
732
+ end
733
+
734
+ class ReplicateKeyRequest
735
+ attr_accessor key_id: ::String
736
+ attr_accessor replica_region: ::String
737
+ attr_accessor policy: ::String
738
+ attr_accessor bypass_policy_lockout_safety_check: bool
739
+ attr_accessor description: ::String
740
+ attr_accessor tags: ::Array[Types::Tag]
741
+ SENSITIVE: []
742
+ end
743
+
744
+ class ReplicateKeyResponse
745
+ attr_accessor replica_key_metadata: Types::KeyMetadata
746
+ attr_accessor replica_policy: ::String
747
+ attr_accessor replica_tags: ::Array[Types::Tag]
748
+ SENSITIVE: []
749
+ end
750
+
751
+ class RetireGrantRequest
752
+ attr_accessor grant_token: ::String
753
+ attr_accessor key_id: ::String
754
+ attr_accessor grant_id: ::String
755
+ attr_accessor dry_run: bool
756
+ SENSITIVE: []
757
+ end
758
+
759
+ class RevokeGrantRequest
760
+ attr_accessor key_id: ::String
761
+ attr_accessor grant_id: ::String
762
+ attr_accessor dry_run: bool
763
+ SENSITIVE: []
764
+ end
765
+
766
+ class ScheduleKeyDeletionRequest
767
+ attr_accessor key_id: ::String
768
+ attr_accessor pending_window_in_days: ::Integer
769
+ SENSITIVE: []
770
+ end
771
+
772
+ class ScheduleKeyDeletionResponse
773
+ attr_accessor key_id: ::String
774
+ attr_accessor deletion_date: ::Time
775
+ attr_accessor key_state: ("Creating" | "Enabled" | "Disabled" | "PendingDeletion" | "PendingImport" | "PendingReplicaDeletion" | "Unavailable" | "Updating")
776
+ attr_accessor pending_window_in_days: ::Integer
777
+ SENSITIVE: []
778
+ end
779
+
780
+ class SignRequest
781
+ attr_accessor key_id: ::String
782
+ attr_accessor message: ::String
783
+ attr_accessor message_type: ("RAW" | "DIGEST")
784
+ attr_accessor grant_tokens: ::Array[::String]
785
+ attr_accessor signing_algorithm: ("RSASSA_PSS_SHA_256" | "RSASSA_PSS_SHA_384" | "RSASSA_PSS_SHA_512" | "RSASSA_PKCS1_V1_5_SHA_256" | "RSASSA_PKCS1_V1_5_SHA_384" | "RSASSA_PKCS1_V1_5_SHA_512" | "ECDSA_SHA_256" | "ECDSA_SHA_384" | "ECDSA_SHA_512" | "SM2DSA")
786
+ attr_accessor dry_run: bool
787
+ SENSITIVE: [:message]
788
+ end
789
+
790
+ class SignResponse
791
+ attr_accessor key_id: ::String
792
+ attr_accessor signature: ::String
793
+ attr_accessor signing_algorithm: ("RSASSA_PSS_SHA_256" | "RSASSA_PSS_SHA_384" | "RSASSA_PSS_SHA_512" | "RSASSA_PKCS1_V1_5_SHA_256" | "RSASSA_PKCS1_V1_5_SHA_384" | "RSASSA_PKCS1_V1_5_SHA_512" | "ECDSA_SHA_256" | "ECDSA_SHA_384" | "ECDSA_SHA_512" | "SM2DSA")
794
+ SENSITIVE: []
795
+ end
796
+
797
+ class Tag
798
+ attr_accessor tag_key: ::String
799
+ attr_accessor tag_value: ::String
800
+ SENSITIVE: []
801
+ end
802
+
803
+ class TagException
804
+ attr_accessor message: ::String
805
+ SENSITIVE: []
806
+ end
807
+
808
+ class TagResourceRequest
809
+ attr_accessor key_id: ::String
810
+ attr_accessor tags: ::Array[Types::Tag]
811
+ SENSITIVE: []
812
+ end
813
+
814
+ class UnsupportedOperationException
815
+ attr_accessor message: ::String
816
+ SENSITIVE: []
817
+ end
818
+
819
+ class UntagResourceRequest
820
+ attr_accessor key_id: ::String
821
+ attr_accessor tag_keys: ::Array[::String]
822
+ SENSITIVE: []
823
+ end
824
+
825
+ class UpdateAliasRequest
826
+ attr_accessor alias_name: ::String
827
+ attr_accessor target_key_id: ::String
828
+ SENSITIVE: []
829
+ end
830
+
831
+ class UpdateCustomKeyStoreRequest
832
+ attr_accessor custom_key_store_id: ::String
833
+ attr_accessor new_custom_key_store_name: ::String
834
+ attr_accessor key_store_password: ::String
835
+ attr_accessor cloud_hsm_cluster_id: ::String
836
+ attr_accessor xks_proxy_uri_endpoint: ::String
837
+ attr_accessor xks_proxy_uri_path: ::String
838
+ attr_accessor xks_proxy_vpc_endpoint_service_name: ::String
839
+ attr_accessor xks_proxy_authentication_credential: Types::XksProxyAuthenticationCredentialType
840
+ attr_accessor xks_proxy_connectivity: ("PUBLIC_ENDPOINT" | "VPC_ENDPOINT_SERVICE")
841
+ SENSITIVE: [:key_store_password]
842
+ end
843
+
844
+ class UpdateCustomKeyStoreResponse < Aws::EmptyStructure
845
+ end
846
+
847
+ class UpdateKeyDescriptionRequest
848
+ attr_accessor key_id: ::String
849
+ attr_accessor description: ::String
850
+ SENSITIVE: []
851
+ end
852
+
853
+ class UpdatePrimaryRegionRequest
854
+ attr_accessor key_id: ::String
855
+ attr_accessor primary_region: ::String
856
+ SENSITIVE: []
857
+ end
858
+
859
+ class VerifyMacRequest
860
+ attr_accessor message: ::String
861
+ attr_accessor key_id: ::String
862
+ attr_accessor mac_algorithm: ("HMAC_SHA_224" | "HMAC_SHA_256" | "HMAC_SHA_384" | "HMAC_SHA_512")
863
+ attr_accessor mac: ::String
864
+ attr_accessor grant_tokens: ::Array[::String]
865
+ attr_accessor dry_run: bool
866
+ SENSITIVE: [:message]
867
+ end
868
+
869
+ class VerifyMacResponse
870
+ attr_accessor key_id: ::String
871
+ attr_accessor mac_valid: bool
872
+ attr_accessor mac_algorithm: ("HMAC_SHA_224" | "HMAC_SHA_256" | "HMAC_SHA_384" | "HMAC_SHA_512")
873
+ SENSITIVE: []
874
+ end
875
+
876
+ class VerifyRequest
877
+ attr_accessor key_id: ::String
878
+ attr_accessor message: ::String
879
+ attr_accessor message_type: ("RAW" | "DIGEST")
880
+ attr_accessor signature: ::String
881
+ attr_accessor signing_algorithm: ("RSASSA_PSS_SHA_256" | "RSASSA_PSS_SHA_384" | "RSASSA_PSS_SHA_512" | "RSASSA_PKCS1_V1_5_SHA_256" | "RSASSA_PKCS1_V1_5_SHA_384" | "RSASSA_PKCS1_V1_5_SHA_512" | "ECDSA_SHA_256" | "ECDSA_SHA_384" | "ECDSA_SHA_512" | "SM2DSA")
882
+ attr_accessor grant_tokens: ::Array[::String]
883
+ attr_accessor dry_run: bool
884
+ SENSITIVE: [:message]
885
+ end
886
+
887
+ class VerifyResponse
888
+ attr_accessor key_id: ::String
889
+ attr_accessor signature_valid: bool
890
+ attr_accessor signing_algorithm: ("RSASSA_PSS_SHA_256" | "RSASSA_PSS_SHA_384" | "RSASSA_PSS_SHA_512" | "RSASSA_PKCS1_V1_5_SHA_256" | "RSASSA_PKCS1_V1_5_SHA_384" | "RSASSA_PKCS1_V1_5_SHA_512" | "ECDSA_SHA_256" | "ECDSA_SHA_384" | "ECDSA_SHA_512" | "SM2DSA")
891
+ SENSITIVE: []
892
+ end
893
+
894
+ class XksKeyAlreadyInUseException
895
+ attr_accessor message: ::String
896
+ SENSITIVE: []
897
+ end
898
+
899
+ class XksKeyConfigurationType
900
+ attr_accessor id: ::String
901
+ SENSITIVE: []
902
+ end
903
+
904
+ class XksKeyInvalidConfigurationException
905
+ attr_accessor message: ::String
906
+ SENSITIVE: []
907
+ end
908
+
909
+ class XksKeyNotFoundException
910
+ attr_accessor message: ::String
911
+ SENSITIVE: []
912
+ end
913
+
914
+ class XksProxyAuthenticationCredentialType
915
+ attr_accessor access_key_id: ::String
916
+ attr_accessor raw_secret_access_key: ::String
917
+ SENSITIVE: [:access_key_id, :raw_secret_access_key]
918
+ end
919
+
920
+ class XksProxyConfigurationType
921
+ attr_accessor connectivity: ("PUBLIC_ENDPOINT" | "VPC_ENDPOINT_SERVICE")
922
+ attr_accessor access_key_id: ::String
923
+ attr_accessor uri_endpoint: ::String
924
+ attr_accessor uri_path: ::String
925
+ attr_accessor vpc_endpoint_service_name: ::String
926
+ SENSITIVE: [:access_key_id]
927
+ end
928
+
929
+ class XksProxyIncorrectAuthenticationCredentialException
930
+ attr_accessor message: ::String
931
+ SENSITIVE: []
932
+ end
933
+
934
+ class XksProxyInvalidConfigurationException
935
+ attr_accessor message: ::String
936
+ SENSITIVE: []
937
+ end
938
+
939
+ class XksProxyInvalidResponseException
940
+ attr_accessor message: ::String
941
+ SENSITIVE: []
942
+ end
943
+
944
+ class XksProxyUriEndpointInUseException
945
+ attr_accessor message: ::String
946
+ SENSITIVE: []
947
+ end
948
+
949
+ class XksProxyUriInUseException
950
+ attr_accessor message: ::String
951
+ SENSITIVE: []
952
+ end
953
+
954
+ class XksProxyUriUnreachableException
955
+ attr_accessor message: ::String
956
+ SENSITIVE: []
957
+ end
958
+
959
+ class XksProxyVpcEndpointServiceInUseException
960
+ attr_accessor message: ::String
961
+ SENSITIVE: []
962
+ end
963
+
964
+ class XksProxyVpcEndpointServiceInvalidConfigurationException
965
+ attr_accessor message: ::String
966
+ SENSITIVE: []
967
+ end
968
+
969
+ class XksProxyVpcEndpointServiceNotFoundException
970
+ attr_accessor message: ::String
971
+ SENSITIVE: []
972
+ end
973
+ end
974
+ end