aws-sdk-lambda 1.80.0 → 1.81.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 61b0784a5e3ac354aa2bc8c89559de340c0df2922890087a8fb2c563cc5c1aa8
-  data.tar.gz: 340292b3ded20355b8b374fa87d436a5ef1943225509fe990a19f9cae5452247
+  metadata.gz: cbf59df8bb6ab3666f3d34cb78b5dddec8124414d09814709c7178788e769c1f
+  data.tar.gz: 9f87dcc69f1a2935ba755481b129cccd3a2a217a5b51b35b76228fb691d7c6f1
 SHA512:
-  metadata.gz: 41c9c8e3f18beae94d3c09868a9bcd6f2f396d808e3d0e5707a159b0fd686a6932262d4faa5d6896344b70e512f195576e4a6bd2ccfbcab9c1b9b9706a0fd6e0
-  data.tar.gz: e2f14ab4cb90abc53b29f68e13ff4343e71fcf98b551062de966c7f23414b99a7c2f456d3da63788412d91d644cc10d79883c60b180892b380ad95028e530b0a
+  metadata.gz: fedfc4453b4be2e63cdc6b8340bb8435544a7b263aa100dbc31dd170eabc22b43effee24f5aab9f24edbc5270a4c88ce49b592236fb28fdb4543db625a8018c5
+  data.tar.gz: 975b04e9066c91b8ad57c13350356795f0968e0d15e56aac24bb0dd5ec4c2cfbde476800d76fdffd81bb1aa1ac6ed3823f92dca611b0c12d71cc04f1b1cf1fc4

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.81.0 (2022-03-11)
+------------------
+
+* Feature - Adds PrincipalOrgID support to AddPermission API. Customers can use it to manage permissions to lambda functions at AWS Organizations level.
+
 1.80.0 (2022-02-24)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.80.0
+1.81.0

data/lib/aws-sdk-lambda/client.rb

@@ -424,21 +424,23 @@ module Aws::Lambda
       req.send_request(options)
     end
 
-    # Grants an Amazon Web Services service or another account permission to
-    # use a function. You can apply the policy at the function level, or
-    # specify a qualifier to restrict access to a single version or alias.
-    # If you use a qualifier, the invoker must use the full Amazon Resource
-    # Name (ARN) of that version or alias to invoke the function. Note:
-    # Lambda does not support adding policies to version $LATEST.
+    # Grants an Amazon Web Services service, account, or organization
+    # permission to use a function. You can apply the policy at the function
+    # level, or specify a qualifier to restrict access to a single version
+    # or alias. If you use a qualifier, the invoker must use the full Amazon
+    # Resource Name (ARN) of that version or alias to invoke the function.
+    # Note: Lambda does not support adding policies to version $LATEST.
     #
     # To grant permission to another account, specify the account ID as the
-    # `Principal`. For Amazon Web Services services, the principal is a
-    # domain-style identifier defined by the service, like
-    # `s3.amazonaws.com` or `sns.amazonaws.com`. For Amazon Web Services
-    # services, you can also specify the ARN of the associated resource as
-    # the `SourceArn`. If you grant permission to a service principal
-    # without specifying the source, other accounts could potentially
-    # configure resources in their account to invoke your Lambda function.
+    # `Principal`. To grant permission to an organization defined in
+    # Organizations, specify the organization ID as the `PrincipalOrgID`.
+    # For Amazon Web Services services, the principal is a domain-style
+    # identifier defined by the service, like `s3.amazonaws.com` or
+    # `sns.amazonaws.com`. For Amazon Web Services services, you can also
+    # specify the ARN of the associated resource as the `SourceArn`. If you
+    # grant permission to a service principal without specifying the source,
+    # other accounts could potentially configure resources in their account
+    # to invoke your Lambda function.
     #
     # This action adds a statement to a resource-based permissions policy
     # for the function. For more information about function policies, see
@@ -505,6 +507,11 @@ module Aws::Lambda
     #   specified. Use this option to avoid modifying a policy that has
     #   changed since you last read it.
     #
+    # @option params [String] :principal_org_id
+    #   The identifier for your organization in Organizations. Use this to
+    #   grant permissions to all the Amazon Web Services accounts under this
+    #   organization.
+    #
     # @return [Types::AddPermissionResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::AddPermissionResponse#statement #statement} => String
@@ -521,6 +528,7 @@ module Aws::Lambda
     #     event_source_token: "EventSourceToken",
     #     qualifier: "Qualifier",
     #     revision_id: "String",
+    #     principal_org_id: "PrincipalOrgID",
     #   })
     #
     # @example Response structure
@@ -5280,7 +5288,7 @@ module Aws::Lambda
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-lambda'
-      context[:gem_version] = '1.80.0'
+      context[:gem_version] = '1.81.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-lambda/client_api.rb

@@ -223,6 +223,7 @@ module Aws::Lambda
     PositiveInteger = Shapes::IntegerShape.new(name: 'PositiveInteger')
     PreconditionFailedException = Shapes::StructureShape.new(name: 'PreconditionFailedException')
     Principal = Shapes::StringShape.new(name: 'Principal')
+    PrincipalOrgID = Shapes::StringShape.new(name: 'PrincipalOrgID')
     ProvisionedConcurrencyConfigList = Shapes::ListShape.new(name: 'ProvisionedConcurrencyConfigList')
     ProvisionedConcurrencyConfigListItem = Shapes::StructureShape.new(name: 'ProvisionedConcurrencyConfigListItem')
     ProvisionedConcurrencyConfigNotFoundException = Shapes::StructureShape.new(name: 'ProvisionedConcurrencyConfigNotFoundException')
@@ -338,6 +339,7 @@ module Aws::Lambda
     AddPermissionRequest.add_member(:event_source_token, Shapes::ShapeRef.new(shape: EventSourceToken, location_name: "EventSourceToken"))
     AddPermissionRequest.add_member(:qualifier, Shapes::ShapeRef.new(shape: Qualifier, location: "querystring", location_name: "Qualifier"))
     AddPermissionRequest.add_member(:revision_id, Shapes::ShapeRef.new(shape: String, location_name: "RevisionId"))
+    AddPermissionRequest.add_member(:principal_org_id, Shapes::ShapeRef.new(shape: PrincipalOrgID, location_name: "PrincipalOrgID"))
     AddPermissionRequest.struct_class = Types::AddPermissionRequest
 
     AddPermissionResponse.add_member(:statement, Shapes::ShapeRef.new(shape: String, location_name: "Statement"))

data/lib/aws-sdk-lambda/types.rb

@@ -164,6 +164,7 @@ module Aws::Lambda
     #         event_source_token: "EventSourceToken",
     #         qualifier: "Qualifier",
     #         revision_id: "String",
+    #         principal_org_id: "PrincipalOrgID",
     #       }
     #
     # @!attribute [rw] function_name
@@ -233,6 +234,12 @@ module Aws::Lambda
     #   changed since you last read it.
     #   @return [String]
     #
+    # @!attribute [rw] principal_org_id
+    #   The identifier for your organization in Organizations. Use this to
+    #   grant permissions to all the Amazon Web Services accounts under this
+    #   organization.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/lambda-2015-03-31/AddPermissionRequest AWS API Documentation
     #
     class AddPermissionRequest < Struct.new(
@@ -244,7 +251,8 @@ module Aws::Lambda
       :source_account,
       :event_source_token,
       :qualifier,
-      :revision_id)
+      :revision_id,
+      :principal_org_id)
       SENSITIVE = []
       include Aws::Structure
     end

data/lib/aws-sdk-lambda.rb

@@ -49,6 +49,6 @@ require_relative 'aws-sdk-lambda/customizations'
 # @!group service
 module Aws::Lambda
 
-  GEM_VERSION = '1.80.0'
+  GEM_VERSION = '1.81.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-lambda
 version: !ruby/object:Gem::Version
-  version: 1.80.0
+  version: 1.81.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-02-24 00:00:00.000000000 Z
+date: 2022-03-11 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core