aws-sdk-lambda 1.53.0 → 1.54.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 70078dd67659e21cbea7f9f1b66704815c8aa15de85aaeb53112908315cabd38
4
- data.tar.gz: d7c33760b4d483cf4e086af86224f91a373c91cb534d7c703171d2ca6bbf15be
3
+ metadata.gz: 01aadaff7ee188fd2834c001b2c384d6988b54a9645f2b2d3eff845fb07bf39a
4
+ data.tar.gz: e1e51237ad366eb2937f0b3ca7153ab9e4572636bc31b1d54c990fa6640db12a
5
5
  SHA512:
6
- metadata.gz: a293f20ae9e9af1011fb603e4b22230e9034f6dbd1fe540797edb836e1920345baf28ea14fba9ec644fc9a03e53665ddff10aa6e429195fc53fae6b90edd22eb
7
- data.tar.gz: 45fdfebd416512f8d24c104ebb31ce41c7689841b419d9de8414ec1adfaaebb1ebbc3c08bf29244a5568b460e4b89b01bb66dbbeb2c8ecafd5dec9a145a77cc8
6
+ metadata.gz: 5ee3af7b52c6c0e7da2d45508ebc4c2f17370b5dfef652a8388acb65dd5750caac181a6a6d7d0d4676c3768f992e41f8de6d21740e8c902b631665b3ab2b7814
7
+ data.tar.gz: 687840bfcae16359714078d01806cfaf700d62430371bfa197982e445acf5125ddf05c47e382c50ade988f6669f0cc673b0d0dbd6ba31b47165d73badcea0a97
@@ -49,6 +49,6 @@ require_relative 'aws-sdk-lambda/customizations'
49
49
  # @!group service
50
50
  module Aws::Lambda
51
51
 
52
- GEM_VERSION = '1.53.0'
52
+ GEM_VERSION = '1.54.0'
53
53
 
54
54
  end
@@ -664,6 +664,60 @@ module Aws::Lambda
664
664
  req.send_request(options)
665
665
  end
666
666
 
667
+ # Creates a code signing configuration. A [code signing
668
+ # configuration][1] defines a list of allowed signing profiles and
669
+ # defines the code-signing validation policy (action to be taken if
670
+ # deployment validation checks fail).
671
+ #
672
+ #
673
+ #
674
+ # [1]: https://docs.aws.amazon.com/lambda/latest/dg/configuration-trustedcode.html
675
+ #
676
+ # @option params [String] :description
677
+ # Descriptive name for this code signing configuration.
678
+ #
679
+ # @option params [required, Types::AllowedPublishers] :allowed_publishers
680
+ # Signing profiles for this code signing configuration.
681
+ #
682
+ # @option params [Types::CodeSigningPolicies] :code_signing_policies
683
+ # The code signing policies define the actions to take if the validation
684
+ # checks fail.
685
+ #
686
+ # @return [Types::CreateCodeSigningConfigResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
687
+ #
688
+ # * {Types::CreateCodeSigningConfigResponse#code_signing_config #code_signing_config} => Types::CodeSigningConfig
689
+ #
690
+ # @example Request syntax with placeholder values
691
+ #
692
+ # resp = client.create_code_signing_config({
693
+ # description: "Description",
694
+ # allowed_publishers: { # required
695
+ # signing_profile_version_arns: ["Arn"], # required
696
+ # },
697
+ # code_signing_policies: {
698
+ # untrusted_artifact_on_deployment: "Warn", # accepts Warn, Enforce
699
+ # },
700
+ # })
701
+ #
702
+ # @example Response structure
703
+ #
704
+ # resp.code_signing_config.code_signing_config_id #=> String
705
+ # resp.code_signing_config.code_signing_config_arn #=> String
706
+ # resp.code_signing_config.description #=> String
707
+ # resp.code_signing_config.allowed_publishers.signing_profile_version_arns #=> Array
708
+ # resp.code_signing_config.allowed_publishers.signing_profile_version_arns[0] #=> String
709
+ # resp.code_signing_config.code_signing_policies.untrusted_artifact_on_deployment #=> String, one of "Warn", "Enforce"
710
+ # resp.code_signing_config.last_modified #=> Time
711
+ #
712
+ # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/CreateCodeSigningConfig AWS API Documentation
713
+ #
714
+ # @overload create_code_signing_config(params = {})
715
+ # @param [Hash] params ({})
716
+ def create_code_signing_config(params = {}, options = {})
717
+ req = build_request(:create_code_signing_config, params)
718
+ req.send_request(options)
719
+ end
720
+
667
721
  # Creates a mapping between an event source and an AWS Lambda function.
668
722
  # Lambda reads items from the event source and triggers the function.
669
723
  #
@@ -948,6 +1002,13 @@ module Aws::Lambda
948
1002
  # include tags (TagResource) and per-function concurrency limits
949
1003
  # (PutFunctionConcurrency).
950
1004
  #
1005
+ # To enable code signing for this function, specify the ARN of a
1006
+ # code-signing configuration. When a user attempts to deploy a code
1007
+ # package with UpdateFunctionCode, Lambda checks that the code package
1008
+ # has a valid signature from a trusted publisher. The code-signing
1009
+ # configuration includes set set of signing profiles, which define the
1010
+ # trusted publishers for this function.
1011
+ #
951
1012
  # If another account or an AWS service invokes your function, use
952
1013
  # AddPermission to grant permission by creating a resource-based IAM
953
1014
  # policy. You can grant permissions at the function level, on a version,
@@ -1070,6 +1131,12 @@ module Aws::Lambda
1070
1131
  # @option params [Array<Types::FileSystemConfig>] :file_system_configs
1071
1132
  # Connection settings for an Amazon EFS file system.
1072
1133
  #
1134
+ # @option params [String] :code_signing_config_arn
1135
+ # To enable code signing for this function, specify the ARN of a
1136
+ # code-signing configuration. A code-signing configuration includes set
1137
+ # set of signing profiles, which define the trusted publishers for this
1138
+ # function.
1139
+ #
1073
1140
  # @return [Types::FunctionConfiguration] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1074
1141
  #
1075
1142
  # * {Types::FunctionConfiguration#function_name #function_name} => String
@@ -1099,6 +1166,8 @@ module Aws::Lambda
1099
1166
  # * {Types::FunctionConfiguration#last_update_status_reason #last_update_status_reason} => String
1100
1167
  # * {Types::FunctionConfiguration#last_update_status_reason_code #last_update_status_reason_code} => String
1101
1168
  # * {Types::FunctionConfiguration#file_system_configs #file_system_configs} => Array&lt;Types::FileSystemConfig&gt;
1169
+ # * {Types::FunctionConfiguration#signing_profile_version_arn #signing_profile_version_arn} => String
1170
+ # * {Types::FunctionConfiguration#signing_job_arn #signing_job_arn} => String
1102
1171
  #
1103
1172
  #
1104
1173
  # @example Example: To create a function
@@ -1206,6 +1275,7 @@ module Aws::Lambda
1206
1275
  # local_mount_path: "LocalMountPath", # required
1207
1276
  # },
1208
1277
  # ],
1278
+ # code_signing_config_arn: "CodeSigningConfigArn",
1209
1279
  # })
1210
1280
  #
1211
1281
  # @example Response structure
@@ -1239,6 +1309,8 @@ module Aws::Lambda
1239
1309
  # resp.layers #=> Array
1240
1310
  # resp.layers[0].arn #=> String
1241
1311
  # resp.layers[0].code_size #=> Integer
1312
+ # resp.layers[0].signing_profile_version_arn #=> String
1313
+ # resp.layers[0].signing_job_arn #=> String
1242
1314
  # resp.state #=> String, one of "Pending", "Active", "Inactive", "Failed"
1243
1315
  # resp.state_reason #=> String
1244
1316
  # resp.state_reason_code #=> String, one of "Idle", "Creating", "Restoring", "EniLimitExceeded", "InsufficientRolePermissions", "InvalidConfiguration", "InternalError", "SubnetOutOfIPAddresses", "InvalidSubnet", "InvalidSecurityGroup"
@@ -1248,6 +1320,8 @@ module Aws::Lambda
1248
1320
  # resp.file_system_configs #=> Array
1249
1321
  # resp.file_system_configs[0].arn #=> String
1250
1322
  # resp.file_system_configs[0].local_mount_path #=> String
1323
+ # resp.signing_profile_version_arn #=> String
1324
+ # resp.signing_job_arn #=> String
1251
1325
  #
1252
1326
  # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/CreateFunction AWS API Documentation
1253
1327
  #
@@ -1310,6 +1384,29 @@ module Aws::Lambda
1310
1384
  req.send_request(options)
1311
1385
  end
1312
1386
 
1387
+ # Deletes the code signing configuration. You can delete the code
1388
+ # signing configuration only if no function is using it.
1389
+ #
1390
+ # @option params [required, String] :code_signing_config_arn
1391
+ # The The Amazon Resource Name (ARN) of the code signing configuration.
1392
+ #
1393
+ # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
1394
+ #
1395
+ # @example Request syntax with placeholder values
1396
+ #
1397
+ # resp = client.delete_code_signing_config({
1398
+ # code_signing_config_arn: "CodeSigningConfigArn", # required
1399
+ # })
1400
+ #
1401
+ # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/DeleteCodeSigningConfig AWS API Documentation
1402
+ #
1403
+ # @overload delete_code_signing_config(params = {})
1404
+ # @param [Hash] params ({})
1405
+ def delete_code_signing_config(params = {}, options = {})
1406
+ req = build_request(:delete_code_signing_config, params)
1407
+ req.send_request(options)
1408
+ end
1409
+
1313
1410
  # Deletes an [event source mapping][1]. You can get the identifier of a
1314
1411
  # mapping from the output of ListEventSourceMappings.
1315
1412
  #
@@ -1465,6 +1562,40 @@ module Aws::Lambda
1465
1562
  req.send_request(options)
1466
1563
  end
1467
1564
 
1565
+ # Removes the code signing configuration from the function.
1566
+ #
1567
+ # @option params [required, String] :function_name
1568
+ # The name of the Lambda function.
1569
+ #
1570
+ # **Name formats**
1571
+ #
1572
+ # * **Function name** - `MyFunction`.
1573
+ #
1574
+ # * **Function ARN** -
1575
+ # `arn:aws:lambda:us-west-2:123456789012:function:MyFunction`.
1576
+ #
1577
+ # * **Partial ARN** - `123456789012:function:MyFunction`.
1578
+ #
1579
+ # The length constraint applies only to the full ARN. If you specify
1580
+ # only the function name, it is limited to 64 characters in length.
1581
+ #
1582
+ # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
1583
+ #
1584
+ # @example Request syntax with placeholder values
1585
+ #
1586
+ # resp = client.delete_function_code_signing_config({
1587
+ # function_name: "FunctionName", # required
1588
+ # })
1589
+ #
1590
+ # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/DeleteFunctionCodeSigningConfig AWS API Documentation
1591
+ #
1592
+ # @overload delete_function_code_signing_config(params = {})
1593
+ # @param [Hash] params ({})
1594
+ def delete_function_code_signing_config(params = {}, options = {})
1595
+ req = build_request(:delete_function_code_signing_config, params)
1596
+ req.send_request(options)
1597
+ end
1598
+
1468
1599
  # Removes a concurrent execution limit from a function.
1469
1600
  #
1470
1601
  # @option params [required, String] :function_name
@@ -1786,6 +1917,40 @@ module Aws::Lambda
1786
1917
  req.send_request(options)
1787
1918
  end
1788
1919
 
1920
+ # Returns information about the specified code signing configuration.
1921
+ #
1922
+ # @option params [required, String] :code_signing_config_arn
1923
+ # The The Amazon Resource Name (ARN) of the code signing configuration.
1924
+ #
1925
+ # @return [Types::GetCodeSigningConfigResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1926
+ #
1927
+ # * {Types::GetCodeSigningConfigResponse#code_signing_config #code_signing_config} => Types::CodeSigningConfig
1928
+ #
1929
+ # @example Request syntax with placeholder values
1930
+ #
1931
+ # resp = client.get_code_signing_config({
1932
+ # code_signing_config_arn: "CodeSigningConfigArn", # required
1933
+ # })
1934
+ #
1935
+ # @example Response structure
1936
+ #
1937
+ # resp.code_signing_config.code_signing_config_id #=> String
1938
+ # resp.code_signing_config.code_signing_config_arn #=> String
1939
+ # resp.code_signing_config.description #=> String
1940
+ # resp.code_signing_config.allowed_publishers.signing_profile_version_arns #=> Array
1941
+ # resp.code_signing_config.allowed_publishers.signing_profile_version_arns[0] #=> String
1942
+ # resp.code_signing_config.code_signing_policies.untrusted_artifact_on_deployment #=> String, one of "Warn", "Enforce"
1943
+ # resp.code_signing_config.last_modified #=> Time
1944
+ #
1945
+ # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/GetCodeSigningConfig AWS API Documentation
1946
+ #
1947
+ # @overload get_code_signing_config(params = {})
1948
+ # @param [Hash] params ({})
1949
+ def get_code_signing_config(params = {}, options = {})
1950
+ req = build_request(:get_code_signing_config, params)
1951
+ req.send_request(options)
1952
+ end
1953
+
1789
1954
  # Returns details about an event source mapping. You can get the
1790
1955
  # identifier of a mapping from the output of ListEventSourceMappings.
1791
1956
  #
@@ -2002,6 +2167,8 @@ module Aws::Lambda
2002
2167
  # resp.configuration.layers #=> Array
2003
2168
  # resp.configuration.layers[0].arn #=> String
2004
2169
  # resp.configuration.layers[0].code_size #=> Integer
2170
+ # resp.configuration.layers[0].signing_profile_version_arn #=> String
2171
+ # resp.configuration.layers[0].signing_job_arn #=> String
2005
2172
  # resp.configuration.state #=> String, one of "Pending", "Active", "Inactive", "Failed"
2006
2173
  # resp.configuration.state_reason #=> String
2007
2174
  # resp.configuration.state_reason_code #=> String, one of "Idle", "Creating", "Restoring", "EniLimitExceeded", "InsufficientRolePermissions", "InvalidConfiguration", "InternalError", "SubnetOutOfIPAddresses", "InvalidSubnet", "InvalidSecurityGroup"
@@ -2011,6 +2178,8 @@ module Aws::Lambda
2011
2178
  # resp.configuration.file_system_configs #=> Array
2012
2179
  # resp.configuration.file_system_configs[0].arn #=> String
2013
2180
  # resp.configuration.file_system_configs[0].local_mount_path #=> String
2181
+ # resp.configuration.signing_profile_version_arn #=> String
2182
+ # resp.configuration.signing_job_arn #=> String
2014
2183
  # resp.code.repository_type #=> String
2015
2184
  # resp.code.location #=> String
2016
2185
  # resp.tags #=> Hash
@@ -2031,6 +2200,48 @@ module Aws::Lambda
2031
2200
  req.send_request(options)
2032
2201
  end
2033
2202
 
2203
+ # Returns the code signing configuration for the specified function.
2204
+ #
2205
+ # @option params [required, String] :function_name
2206
+ # The name of the Lambda function.
2207
+ #
2208
+ # **Name formats**
2209
+ #
2210
+ # * **Function name** - `MyFunction`.
2211
+ #
2212
+ # * **Function ARN** -
2213
+ # `arn:aws:lambda:us-west-2:123456789012:function:MyFunction`.
2214
+ #
2215
+ # * **Partial ARN** - `123456789012:function:MyFunction`.
2216
+ #
2217
+ # The length constraint applies only to the full ARN. If you specify
2218
+ # only the function name, it is limited to 64 characters in length.
2219
+ #
2220
+ # @return [Types::GetFunctionCodeSigningConfigResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
2221
+ #
2222
+ # * {Types::GetFunctionCodeSigningConfigResponse#code_signing_config_arn #code_signing_config_arn} => String
2223
+ # * {Types::GetFunctionCodeSigningConfigResponse#function_name #function_name} => String
2224
+ #
2225
+ # @example Request syntax with placeholder values
2226
+ #
2227
+ # resp = client.get_function_code_signing_config({
2228
+ # function_name: "FunctionName", # required
2229
+ # })
2230
+ #
2231
+ # @example Response structure
2232
+ #
2233
+ # resp.code_signing_config_arn #=> String
2234
+ # resp.function_name #=> String
2235
+ #
2236
+ # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/GetFunctionCodeSigningConfig AWS API Documentation
2237
+ #
2238
+ # @overload get_function_code_signing_config(params = {})
2239
+ # @param [Hash] params ({})
2240
+ def get_function_code_signing_config(params = {}, options = {})
2241
+ req = build_request(:get_function_code_signing_config, params)
2242
+ req.send_request(options)
2243
+ end
2244
+
2034
2245
  # Returns details about the reserved concurrency configuration for a
2035
2246
  # function. To set a concurrency limit for a function, use
2036
2247
  # PutFunctionConcurrency.
@@ -2144,6 +2355,8 @@ module Aws::Lambda
2144
2355
  # * {Types::FunctionConfiguration#last_update_status_reason #last_update_status_reason} => String
2145
2356
  # * {Types::FunctionConfiguration#last_update_status_reason_code #last_update_status_reason_code} => String
2146
2357
  # * {Types::FunctionConfiguration#file_system_configs #file_system_configs} => Array&lt;Types::FileSystemConfig&gt;
2358
+ # * {Types::FunctionConfiguration#signing_profile_version_arn #signing_profile_version_arn} => String
2359
+ # * {Types::FunctionConfiguration#signing_job_arn #signing_job_arn} => String
2147
2360
  #
2148
2361
  #
2149
2362
  # @example Example: To get a Lambda function's event source mapping
@@ -2222,6 +2435,8 @@ module Aws::Lambda
2222
2435
  # resp.layers #=> Array
2223
2436
  # resp.layers[0].arn #=> String
2224
2437
  # resp.layers[0].code_size #=> Integer
2438
+ # resp.layers[0].signing_profile_version_arn #=> String
2439
+ # resp.layers[0].signing_job_arn #=> String
2225
2440
  # resp.state #=> String, one of "Pending", "Active", "Inactive", "Failed"
2226
2441
  # resp.state_reason #=> String
2227
2442
  # resp.state_reason_code #=> String, one of "Idle", "Creating", "Restoring", "EniLimitExceeded", "InsufficientRolePermissions", "InvalidConfiguration", "InternalError", "SubnetOutOfIPAddresses", "InvalidSubnet", "InvalidSecurityGroup"
@@ -2231,6 +2446,8 @@ module Aws::Lambda
2231
2446
  # resp.file_system_configs #=> Array
2232
2447
  # resp.file_system_configs[0].arn #=> String
2233
2448
  # resp.file_system_configs[0].local_mount_path #=> String
2449
+ # resp.signing_profile_version_arn #=> String
2450
+ # resp.signing_job_arn #=> String
2234
2451
  #
2235
2452
  #
2236
2453
  # The following waiters are defined for this operation (see {Client#wait_until} for detailed usage):
@@ -2397,6 +2614,8 @@ module Aws::Lambda
2397
2614
  # resp.content.location #=> String
2398
2615
  # resp.content.code_sha_256 #=> String
2399
2616
  # resp.content.code_size #=> Integer
2617
+ # resp.content.signing_profile_version_arn #=> String
2618
+ # resp.content.signing_job_arn #=> String
2400
2619
  # resp.layer_arn #=> String
2401
2620
  # resp.layer_version_arn #=> String
2402
2621
  # resp.description #=> String
@@ -2473,6 +2692,8 @@ module Aws::Lambda
2473
2692
  # resp.content.location #=> String
2474
2693
  # resp.content.code_sha_256 #=> String
2475
2694
  # resp.content.code_size #=> Integer
2695
+ # resp.content.signing_profile_version_arn #=> String
2696
+ # resp.content.signing_job_arn #=> String
2476
2697
  # resp.layer_arn #=> String
2477
2698
  # resp.layer_version_arn #=> String
2478
2699
  # resp.description #=> String
@@ -3023,6 +3244,57 @@ module Aws::Lambda
3023
3244
  req.send_request(options)
3024
3245
  end
3025
3246
 
3247
+ # Returns a list of [code signing configurations][1] for the specified
3248
+ # function. A request returns up to 10,000 configurations per call. You
3249
+ # can use the `MaxItems` parameter to return fewer configurations per
3250
+ # call.
3251
+ #
3252
+ #
3253
+ #
3254
+ # [1]: https://docs.aws.amazon.com/lambda/latest/dg/configuring-codesigning.html
3255
+ #
3256
+ # @option params [String] :marker
3257
+ # Specify the pagination token that's returned by a previous request to
3258
+ # retrieve the next page of results.
3259
+ #
3260
+ # @option params [Integer] :max_items
3261
+ # Maximum number of items to return.
3262
+ #
3263
+ # @return [Types::ListCodeSigningConfigsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
3264
+ #
3265
+ # * {Types::ListCodeSigningConfigsResponse#next_marker #next_marker} => String
3266
+ # * {Types::ListCodeSigningConfigsResponse#code_signing_configs #code_signing_configs} => Array&lt;Types::CodeSigningConfig&gt;
3267
+ #
3268
+ # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
3269
+ #
3270
+ # @example Request syntax with placeholder values
3271
+ #
3272
+ # resp = client.list_code_signing_configs({
3273
+ # marker: "String",
3274
+ # max_items: 1,
3275
+ # })
3276
+ #
3277
+ # @example Response structure
3278
+ #
3279
+ # resp.next_marker #=> String
3280
+ # resp.code_signing_configs #=> Array
3281
+ # resp.code_signing_configs[0].code_signing_config_id #=> String
3282
+ # resp.code_signing_configs[0].code_signing_config_arn #=> String
3283
+ # resp.code_signing_configs[0].description #=> String
3284
+ # resp.code_signing_configs[0].allowed_publishers.signing_profile_version_arns #=> Array
3285
+ # resp.code_signing_configs[0].allowed_publishers.signing_profile_version_arns[0] #=> String
3286
+ # resp.code_signing_configs[0].code_signing_policies.untrusted_artifact_on_deployment #=> String, one of "Warn", "Enforce"
3287
+ # resp.code_signing_configs[0].last_modified #=> Time
3288
+ #
3289
+ # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/ListCodeSigningConfigs AWS API Documentation
3290
+ #
3291
+ # @overload list_code_signing_configs(params = {})
3292
+ # @param [Hash] params ({})
3293
+ def list_code_signing_configs(params = {}, options = {})
3294
+ req = build_request(:list_code_signing_configs, params)
3295
+ req.send_request(options)
3296
+ end
3297
+
3026
3298
  # Lists event source mappings. Specify an `EventSourceArn` to only show
3027
3299
  # event source mappings for a single event source.
3028
3300
  #
@@ -3362,6 +3634,8 @@ module Aws::Lambda
3362
3634
  # resp.functions[0].layers #=> Array
3363
3635
  # resp.functions[0].layers[0].arn #=> String
3364
3636
  # resp.functions[0].layers[0].code_size #=> Integer
3637
+ # resp.functions[0].layers[0].signing_profile_version_arn #=> String
3638
+ # resp.functions[0].layers[0].signing_job_arn #=> String
3365
3639
  # resp.functions[0].state #=> String, one of "Pending", "Active", "Inactive", "Failed"
3366
3640
  # resp.functions[0].state_reason #=> String
3367
3641
  # resp.functions[0].state_reason_code #=> String, one of "Idle", "Creating", "Restoring", "EniLimitExceeded", "InsufficientRolePermissions", "InvalidConfiguration", "InternalError", "SubnetOutOfIPAddresses", "InvalidSubnet", "InvalidSecurityGroup"
@@ -3371,6 +3645,8 @@ module Aws::Lambda
3371
3645
  # resp.functions[0].file_system_configs #=> Array
3372
3646
  # resp.functions[0].file_system_configs[0].arn #=> String
3373
3647
  # resp.functions[0].file_system_configs[0].local_mount_path #=> String
3648
+ # resp.functions[0].signing_profile_version_arn #=> String
3649
+ # resp.functions[0].signing_job_arn #=> String
3374
3650
  #
3375
3651
  # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/ListFunctions AWS API Documentation
3376
3652
  #
@@ -3381,6 +3657,50 @@ module Aws::Lambda
3381
3657
  req.send_request(options)
3382
3658
  end
3383
3659
 
3660
+ # List the functions that use the specified code signing configuration.
3661
+ # You can use this method prior to deleting a code signing
3662
+ # configuration, to verify that no functions are using it.
3663
+ #
3664
+ # @option params [required, String] :code_signing_config_arn
3665
+ # The The Amazon Resource Name (ARN) of the code signing configuration.
3666
+ #
3667
+ # @option params [String] :marker
3668
+ # Specify the pagination token that's returned by a previous request to
3669
+ # retrieve the next page of results.
3670
+ #
3671
+ # @option params [Integer] :max_items
3672
+ # Maximum number of items to return.
3673
+ #
3674
+ # @return [Types::ListFunctionsByCodeSigningConfigResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
3675
+ #
3676
+ # * {Types::ListFunctionsByCodeSigningConfigResponse#next_marker #next_marker} => String
3677
+ # * {Types::ListFunctionsByCodeSigningConfigResponse#function_arns #function_arns} => Array&lt;String&gt;
3678
+ #
3679
+ # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
3680
+ #
3681
+ # @example Request syntax with placeholder values
3682
+ #
3683
+ # resp = client.list_functions_by_code_signing_config({
3684
+ # code_signing_config_arn: "CodeSigningConfigArn", # required
3685
+ # marker: "String",
3686
+ # max_items: 1,
3687
+ # })
3688
+ #
3689
+ # @example Response structure
3690
+ #
3691
+ # resp.next_marker #=> String
3692
+ # resp.function_arns #=> Array
3693
+ # resp.function_arns[0] #=> String
3694
+ #
3695
+ # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/ListFunctionsByCodeSigningConfig AWS API Documentation
3696
+ #
3697
+ # @overload list_functions_by_code_signing_config(params = {})
3698
+ # @param [Hash] params ({})
3699
+ def list_functions_by_code_signing_config(params = {}, options = {})
3700
+ req = build_request(:list_functions_by_code_signing_config, params)
3701
+ req.send_request(options)
3702
+ end
3703
+
3384
3704
  # Lists the versions of an [AWS Lambda layer][1]. Versions that have
3385
3705
  # been deleted aren't listed. Specify a [runtime identifier][2] to list
3386
3706
  # only versions that indicate that they're compatible with that
@@ -3843,6 +4163,8 @@ module Aws::Lambda
3843
4163
  # resp.versions[0].layers #=> Array
3844
4164
  # resp.versions[0].layers[0].arn #=> String
3845
4165
  # resp.versions[0].layers[0].code_size #=> Integer
4166
+ # resp.versions[0].layers[0].signing_profile_version_arn #=> String
4167
+ # resp.versions[0].layers[0].signing_job_arn #=> String
3846
4168
  # resp.versions[0].state #=> String, one of "Pending", "Active", "Inactive", "Failed"
3847
4169
  # resp.versions[0].state_reason #=> String
3848
4170
  # resp.versions[0].state_reason_code #=> String, one of "Idle", "Creating", "Restoring", "EniLimitExceeded", "InsufficientRolePermissions", "InvalidConfiguration", "InternalError", "SubnetOutOfIPAddresses", "InvalidSubnet", "InvalidSecurityGroup"
@@ -3852,6 +4174,8 @@ module Aws::Lambda
3852
4174
  # resp.versions[0].file_system_configs #=> Array
3853
4175
  # resp.versions[0].file_system_configs[0].arn #=> String
3854
4176
  # resp.versions[0].file_system_configs[0].local_mount_path #=> String
4177
+ # resp.versions[0].signing_profile_version_arn #=> String
4178
+ # resp.versions[0].signing_job_arn #=> String
3855
4179
  #
3856
4180
  # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/ListVersionsByFunction AWS API Documentation
3857
4181
  #
@@ -3974,6 +4298,8 @@ module Aws::Lambda
3974
4298
  # resp.content.location #=> String
3975
4299
  # resp.content.code_sha_256 #=> String
3976
4300
  # resp.content.code_size #=> Integer
4301
+ # resp.content.signing_profile_version_arn #=> String
4302
+ # resp.content.signing_job_arn #=> String
3977
4303
  # resp.layer_arn #=> String
3978
4304
  # resp.layer_version_arn #=> String
3979
4305
  # resp.description #=> String
@@ -4068,6 +4394,8 @@ module Aws::Lambda
4068
4394
  # * {Types::FunctionConfiguration#last_update_status_reason #last_update_status_reason} => String
4069
4395
  # * {Types::FunctionConfiguration#last_update_status_reason_code #last_update_status_reason_code} => String
4070
4396
  # * {Types::FunctionConfiguration#file_system_configs #file_system_configs} => Array&lt;Types::FileSystemConfig&gt;
4397
+ # * {Types::FunctionConfiguration#signing_profile_version_arn #signing_profile_version_arn} => String
4398
+ # * {Types::FunctionConfiguration#signing_job_arn #signing_job_arn} => String
4071
4399
  #
4072
4400
  #
4073
4401
  # @example Example: To publish a version of a Lambda function
@@ -4149,6 +4477,8 @@ module Aws::Lambda
4149
4477
  # resp.layers #=> Array
4150
4478
  # resp.layers[0].arn #=> String
4151
4479
  # resp.layers[0].code_size #=> Integer
4480
+ # resp.layers[0].signing_profile_version_arn #=> String
4481
+ # resp.layers[0].signing_job_arn #=> String
4152
4482
  # resp.state #=> String, one of "Pending", "Active", "Inactive", "Failed"
4153
4483
  # resp.state_reason #=> String
4154
4484
  # resp.state_reason_code #=> String, one of "Idle", "Creating", "Restoring", "EniLimitExceeded", "InsufficientRolePermissions", "InvalidConfiguration", "InternalError", "SubnetOutOfIPAddresses", "InvalidSubnet", "InvalidSecurityGroup"
@@ -4158,6 +4488,8 @@ module Aws::Lambda
4158
4488
  # resp.file_system_configs #=> Array
4159
4489
  # resp.file_system_configs[0].arn #=> String
4160
4490
  # resp.file_system_configs[0].local_mount_path #=> String
4491
+ # resp.signing_profile_version_arn #=> String
4492
+ # resp.signing_job_arn #=> String
4161
4493
  #
4162
4494
  # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/PublishVersion AWS API Documentation
4163
4495
  #
@@ -4168,6 +4500,54 @@ module Aws::Lambda
4168
4500
  req.send_request(options)
4169
4501
  end
4170
4502
 
4503
+ # Update the code signing configuration for the function. Changes to the
4504
+ # code signing configuration take effect the next time a user tries to
4505
+ # deploy a code package to the function.
4506
+ #
4507
+ # @option params [required, String] :code_signing_config_arn
4508
+ # The The Amazon Resource Name (ARN) of the code signing configuration.
4509
+ #
4510
+ # @option params [required, String] :function_name
4511
+ # The name of the Lambda function.
4512
+ #
4513
+ # **Name formats**
4514
+ #
4515
+ # * **Function name** - `MyFunction`.
4516
+ #
4517
+ # * **Function ARN** -
4518
+ # `arn:aws:lambda:us-west-2:123456789012:function:MyFunction`.
4519
+ #
4520
+ # * **Partial ARN** - `123456789012:function:MyFunction`.
4521
+ #
4522
+ # The length constraint applies only to the full ARN. If you specify
4523
+ # only the function name, it is limited to 64 characters in length.
4524
+ #
4525
+ # @return [Types::PutFunctionCodeSigningConfigResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
4526
+ #
4527
+ # * {Types::PutFunctionCodeSigningConfigResponse#code_signing_config_arn #code_signing_config_arn} => String
4528
+ # * {Types::PutFunctionCodeSigningConfigResponse#function_name #function_name} => String
4529
+ #
4530
+ # @example Request syntax with placeholder values
4531
+ #
4532
+ # resp = client.put_function_code_signing_config({
4533
+ # code_signing_config_arn: "CodeSigningConfigArn", # required
4534
+ # function_name: "FunctionName", # required
4535
+ # })
4536
+ #
4537
+ # @example Response structure
4538
+ #
4539
+ # resp.code_signing_config_arn #=> String
4540
+ # resp.function_name #=> String
4541
+ #
4542
+ # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/PutFunctionCodeSigningConfig AWS API Documentation
4543
+ #
4544
+ # @overload put_function_code_signing_config(params = {})
4545
+ # @param [Hash] params ({})
4546
+ def put_function_code_signing_config(params = {}, options = {})
4547
+ req = build_request(:put_function_code_signing_config, params)
4548
+ req.send_request(options)
4549
+ end
4550
+
4171
4551
  # Sets the maximum number of simultaneous executions for a function, and
4172
4552
  # reserves capacity for that concurrency level.
4173
4553
  #
@@ -4778,6 +5158,58 @@ module Aws::Lambda
4778
5158
  req.send_request(options)
4779
5159
  end
4780
5160
 
5161
+ # Update the code signing configuration. Changes to the code signing
5162
+ # configuration take effect the next time a user tries to deploy a code
5163
+ # package to the function.
5164
+ #
5165
+ # @option params [required, String] :code_signing_config_arn
5166
+ # The The Amazon Resource Name (ARN) of the code signing configuration.
5167
+ #
5168
+ # @option params [String] :description
5169
+ # Descriptive name for this code signing configuration.
5170
+ #
5171
+ # @option params [Types::AllowedPublishers] :allowed_publishers
5172
+ # Signing profiles for this code signing configuration.
5173
+ #
5174
+ # @option params [Types::CodeSigningPolicies] :code_signing_policies
5175
+ # The code signing policy.
5176
+ #
5177
+ # @return [Types::UpdateCodeSigningConfigResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
5178
+ #
5179
+ # * {Types::UpdateCodeSigningConfigResponse#code_signing_config #code_signing_config} => Types::CodeSigningConfig
5180
+ #
5181
+ # @example Request syntax with placeholder values
5182
+ #
5183
+ # resp = client.update_code_signing_config({
5184
+ # code_signing_config_arn: "CodeSigningConfigArn", # required
5185
+ # description: "Description",
5186
+ # allowed_publishers: {
5187
+ # signing_profile_version_arns: ["Arn"], # required
5188
+ # },
5189
+ # code_signing_policies: {
5190
+ # untrusted_artifact_on_deployment: "Warn", # accepts Warn, Enforce
5191
+ # },
5192
+ # })
5193
+ #
5194
+ # @example Response structure
5195
+ #
5196
+ # resp.code_signing_config.code_signing_config_id #=> String
5197
+ # resp.code_signing_config.code_signing_config_arn #=> String
5198
+ # resp.code_signing_config.description #=> String
5199
+ # resp.code_signing_config.allowed_publishers.signing_profile_version_arns #=> Array
5200
+ # resp.code_signing_config.allowed_publishers.signing_profile_version_arns[0] #=> String
5201
+ # resp.code_signing_config.code_signing_policies.untrusted_artifact_on_deployment #=> String, one of "Warn", "Enforce"
5202
+ # resp.code_signing_config.last_modified #=> Time
5203
+ #
5204
+ # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/UpdateCodeSigningConfig AWS API Documentation
5205
+ #
5206
+ # @overload update_code_signing_config(params = {})
5207
+ # @param [Hash] params ({})
5208
+ def update_code_signing_config(params = {}, options = {})
5209
+ req = build_request(:update_code_signing_config, params)
5210
+ req.send_request(options)
5211
+ end
5212
+
4781
5213
  # Updates an event source mapping. You can change the function that AWS
4782
5214
  # Lambda invokes, or pause invocation and resume later from the same
4783
5215
  # location.
@@ -4987,11 +5419,17 @@ module Aws::Lambda
4987
5419
  req.send_request(options)
4988
5420
  end
4989
5421
 
4990
- # Updates a Lambda function's code.
5422
+ # Updates a Lambda function's code. If code signing is enabled for the
5423
+ # function, the code package must be signed by a trusted publisher. For
5424
+ # more information, see [Configuring code signing][1].
4991
5425
  #
4992
5426
  # The function's code is locked when you publish a version. You can't
4993
5427
  # modify the code of a published version, only the unpublished version.
4994
5428
  #
5429
+ #
5430
+ #
5431
+ # [1]: https://docs.aws.amazon.com/lambda/latest/dg/configuration-trustedcode.html
5432
+ #
4995
5433
  # @option params [required, String] :function_name
4996
5434
  # The name of the Lambda function.
4997
5435
  #
@@ -5065,6 +5503,8 @@ module Aws::Lambda
5065
5503
  # * {Types::FunctionConfiguration#last_update_status_reason #last_update_status_reason} => String
5066
5504
  # * {Types::FunctionConfiguration#last_update_status_reason_code #last_update_status_reason_code} => String
5067
5505
  # * {Types::FunctionConfiguration#file_system_configs #file_system_configs} => Array&lt;Types::FileSystemConfig&gt;
5506
+ # * {Types::FunctionConfiguration#signing_profile_version_arn #signing_profile_version_arn} => String
5507
+ # * {Types::FunctionConfiguration#signing_job_arn #signing_job_arn} => String
5068
5508
  #
5069
5509
  #
5070
5510
  # @example Example: To update a Lambda function's code
@@ -5142,6 +5582,8 @@ module Aws::Lambda
5142
5582
  # resp.layers #=> Array
5143
5583
  # resp.layers[0].arn #=> String
5144
5584
  # resp.layers[0].code_size #=> Integer
5585
+ # resp.layers[0].signing_profile_version_arn #=> String
5586
+ # resp.layers[0].signing_job_arn #=> String
5145
5587
  # resp.state #=> String, one of "Pending", "Active", "Inactive", "Failed"
5146
5588
  # resp.state_reason #=> String
5147
5589
  # resp.state_reason_code #=> String, one of "Idle", "Creating", "Restoring", "EniLimitExceeded", "InsufficientRolePermissions", "InvalidConfiguration", "InternalError", "SubnetOutOfIPAddresses", "InvalidSubnet", "InvalidSecurityGroup"
@@ -5151,6 +5593,8 @@ module Aws::Lambda
5151
5593
  # resp.file_system_configs #=> Array
5152
5594
  # resp.file_system_configs[0].arn #=> String
5153
5595
  # resp.file_system_configs[0].local_mount_path #=> String
5596
+ # resp.signing_profile_version_arn #=> String
5597
+ # resp.signing_job_arn #=> String
5154
5598
  #
5155
5599
  # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/UpdateFunctionCode AWS API Documentation
5156
5600
  #
@@ -5310,6 +5754,8 @@ module Aws::Lambda
5310
5754
  # * {Types::FunctionConfiguration#last_update_status_reason #last_update_status_reason} => String
5311
5755
  # * {Types::FunctionConfiguration#last_update_status_reason_code #last_update_status_reason_code} => String
5312
5756
  # * {Types::FunctionConfiguration#file_system_configs #file_system_configs} => Array&lt;Types::FileSystemConfig&gt;
5757
+ # * {Types::FunctionConfiguration#signing_profile_version_arn #signing_profile_version_arn} => String
5758
+ # * {Types::FunctionConfiguration#signing_job_arn #signing_job_arn} => String
5313
5759
  #
5314
5760
  #
5315
5761
  # @example Example: To update a Lambda function's configuration
@@ -5409,6 +5855,8 @@ module Aws::Lambda
5409
5855
  # resp.layers #=> Array
5410
5856
  # resp.layers[0].arn #=> String
5411
5857
  # resp.layers[0].code_size #=> Integer
5858
+ # resp.layers[0].signing_profile_version_arn #=> String
5859
+ # resp.layers[0].signing_job_arn #=> String
5412
5860
  # resp.state #=> String, one of "Pending", "Active", "Inactive", "Failed"
5413
5861
  # resp.state_reason #=> String
5414
5862
  # resp.state_reason_code #=> String, one of "Idle", "Creating", "Restoring", "EniLimitExceeded", "InsufficientRolePermissions", "InvalidConfiguration", "InternalError", "SubnetOutOfIPAddresses", "InvalidSubnet", "InvalidSecurityGroup"
@@ -5418,6 +5866,8 @@ module Aws::Lambda
5418
5866
  # resp.file_system_configs #=> Array
5419
5867
  # resp.file_system_configs[0].arn #=> String
5420
5868
  # resp.file_system_configs[0].local_mount_path #=> String
5869
+ # resp.signing_profile_version_arn #=> String
5870
+ # resp.signing_job_arn #=> String
5421
5871
  #
5422
5872
  # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/UpdateFunctionConfiguration AWS API Documentation
5423
5873
  #
@@ -5562,7 +6012,7 @@ module Aws::Lambda
5562
6012
  params: params,
5563
6013
  config: config)
5564
6014
  context[:gem_name] = 'aws-sdk-lambda'
5565
- context[:gem_version] = '1.53.0'
6015
+ context[:gem_version] = '1.54.0'
5566
6016
  Seahorse::Client::Request.new(handlers, context)
5567
6017
  end
5568
6018