aws-sdk-networkfirewall 1.24.0 → 1.25.0

Sign up to get free protection for your applications and to get access to all the features.
@@ -31,6 +31,7 @@ module Aws::NetworkFirewall
31
31
  CIDRCount = Shapes::IntegerShape.new(name: 'CIDRCount')
32
32
  CIDRSummary = Shapes::StructureShape.new(name: 'CIDRSummary')
33
33
  CapacityUsageSummary = Shapes::StructureShape.new(name: 'CapacityUsageSummary')
34
+ Certificates = Shapes::ListShape.new(name: 'Certificates')
34
35
  CollectionMember_String = Shapes::StringShape.new(name: 'CollectionMember_String')
35
36
  ConfigurationSyncState = Shapes::StringShape.new(name: 'ConfigurationSyncState')
36
37
  CreateFirewallPolicyRequest = Shapes::StructureShape.new(name: 'CreateFirewallPolicyRequest')
@@ -39,6 +40,8 @@ module Aws::NetworkFirewall
39
40
  CreateFirewallResponse = Shapes::StructureShape.new(name: 'CreateFirewallResponse')
40
41
  CreateRuleGroupRequest = Shapes::StructureShape.new(name: 'CreateRuleGroupRequest')
41
42
  CreateRuleGroupResponse = Shapes::StructureShape.new(name: 'CreateRuleGroupResponse')
43
+ CreateTLSInspectionConfigurationRequest = Shapes::StructureShape.new(name: 'CreateTLSInspectionConfigurationRequest')
44
+ CreateTLSInspectionConfigurationResponse = Shapes::StructureShape.new(name: 'CreateTLSInspectionConfigurationResponse')
42
45
  CustomAction = Shapes::StructureShape.new(name: 'CustomAction')
43
46
  CustomActions = Shapes::ListShape.new(name: 'CustomActions')
44
47
  DeleteFirewallPolicyRequest = Shapes::StructureShape.new(name: 'DeleteFirewallPolicyRequest')
@@ -49,6 +52,8 @@ module Aws::NetworkFirewall
49
52
  DeleteResourcePolicyResponse = Shapes::StructureShape.new(name: 'DeleteResourcePolicyResponse')
50
53
  DeleteRuleGroupRequest = Shapes::StructureShape.new(name: 'DeleteRuleGroupRequest')
51
54
  DeleteRuleGroupResponse = Shapes::StructureShape.new(name: 'DeleteRuleGroupResponse')
55
+ DeleteTLSInspectionConfigurationRequest = Shapes::StructureShape.new(name: 'DeleteTLSInspectionConfigurationRequest')
56
+ DeleteTLSInspectionConfigurationResponse = Shapes::StructureShape.new(name: 'DeleteTLSInspectionConfigurationResponse')
52
57
  DescribeFirewallPolicyRequest = Shapes::StructureShape.new(name: 'DescribeFirewallPolicyRequest')
53
58
  DescribeFirewallPolicyResponse = Shapes::StructureShape.new(name: 'DescribeFirewallPolicyResponse')
54
59
  DescribeFirewallRequest = Shapes::StructureShape.new(name: 'DescribeFirewallRequest')
@@ -61,6 +66,8 @@ module Aws::NetworkFirewall
61
66
  DescribeRuleGroupMetadataResponse = Shapes::StructureShape.new(name: 'DescribeRuleGroupMetadataResponse')
62
67
  DescribeRuleGroupRequest = Shapes::StructureShape.new(name: 'DescribeRuleGroupRequest')
63
68
  DescribeRuleGroupResponse = Shapes::StructureShape.new(name: 'DescribeRuleGroupResponse')
69
+ DescribeTLSInspectionConfigurationRequest = Shapes::StructureShape.new(name: 'DescribeTLSInspectionConfigurationRequest')
70
+ DescribeTLSInspectionConfigurationResponse = Shapes::StructureShape.new(name: 'DescribeTLSInspectionConfigurationResponse')
64
71
  Description = Shapes::StringShape.new(name: 'Description')
65
72
  Destination = Shapes::StringShape.new(name: 'Destination')
66
73
  Dimension = Shapes::StructureShape.new(name: 'Dimension')
@@ -111,6 +118,8 @@ module Aws::NetworkFirewall
111
118
  ListFirewallsResponse = Shapes::StructureShape.new(name: 'ListFirewallsResponse')
112
119
  ListRuleGroupsRequest = Shapes::StructureShape.new(name: 'ListRuleGroupsRequest')
113
120
  ListRuleGroupsResponse = Shapes::StructureShape.new(name: 'ListRuleGroupsResponse')
121
+ ListTLSInspectionConfigurationsRequest = Shapes::StructureShape.new(name: 'ListTLSInspectionConfigurationsRequest')
122
+ ListTLSInspectionConfigurationsResponse = Shapes::StructureShape.new(name: 'ListTLSInspectionConfigurationsResponse')
114
123
  ListTagsForResourceRequest = Shapes::StructureShape.new(name: 'ListTagsForResourceRequest')
115
124
  ListTagsForResourceResponse = Shapes::StructureShape.new(name: 'ListTagsForResourceResponse')
116
125
  LogDestinationConfig = Shapes::StructureShape.new(name: 'LogDestinationConfig')
@@ -165,6 +174,12 @@ module Aws::NetworkFirewall
165
174
  RulesSource = Shapes::StructureShape.new(name: 'RulesSource')
166
175
  RulesSourceList = Shapes::StructureShape.new(name: 'RulesSourceList')
167
176
  RulesString = Shapes::StringShape.new(name: 'RulesString')
177
+ ServerCertificate = Shapes::StructureShape.new(name: 'ServerCertificate')
178
+ ServerCertificateConfiguration = Shapes::StructureShape.new(name: 'ServerCertificateConfiguration')
179
+ ServerCertificateConfigurations = Shapes::ListShape.new(name: 'ServerCertificateConfigurations')
180
+ ServerCertificateScope = Shapes::StructureShape.new(name: 'ServerCertificateScope')
181
+ ServerCertificateScopes = Shapes::ListShape.new(name: 'ServerCertificateScopes')
182
+ ServerCertificates = Shapes::ListShape.new(name: 'ServerCertificates')
168
183
  Setting = Shapes::StringShape.new(name: 'Setting')
169
184
  Settings = Shapes::ListShape.new(name: 'Settings')
170
185
  Source = Shapes::StringShape.new(name: 'Source')
@@ -187,6 +202,7 @@ module Aws::NetworkFirewall
187
202
  StatelessRules = Shapes::ListShape.new(name: 'StatelessRules')
188
203
  StatelessRulesAndCustomActions = Shapes::StructureShape.new(name: 'StatelessRulesAndCustomActions')
189
204
  StatusMessage = Shapes::StringShape.new(name: 'StatusMessage')
205
+ StatusReason = Shapes::StringShape.new(name: 'StatusReason')
190
206
  StreamExceptionPolicy = Shapes::StringShape.new(name: 'StreamExceptionPolicy')
191
207
  SubnetMapping = Shapes::StructureShape.new(name: 'SubnetMapping')
192
208
  SubnetMappings = Shapes::ListShape.new(name: 'SubnetMappings')
@@ -196,6 +212,10 @@ module Aws::NetworkFirewall
196
212
  TCPFlag = Shapes::StringShape.new(name: 'TCPFlag')
197
213
  TCPFlagField = Shapes::StructureShape.new(name: 'TCPFlagField')
198
214
  TCPFlags = Shapes::ListShape.new(name: 'TCPFlags')
215
+ TLSInspectionConfiguration = Shapes::StructureShape.new(name: 'TLSInspectionConfiguration')
216
+ TLSInspectionConfigurationMetadata = Shapes::StructureShape.new(name: 'TLSInspectionConfigurationMetadata')
217
+ TLSInspectionConfigurationResponse = Shapes::StructureShape.new(name: 'TLSInspectionConfigurationResponse')
218
+ TLSInspectionConfigurations = Shapes::ListShape.new(name: 'TLSInspectionConfigurations')
199
219
  Tag = Shapes::StructureShape.new(name: 'Tag')
200
220
  TagKey = Shapes::StringShape.new(name: 'TagKey')
201
221
  TagKeyList = Shapes::ListShape.new(name: 'TagKeyList')
@@ -207,6 +227,7 @@ module Aws::NetworkFirewall
207
227
  TargetType = Shapes::StringShape.new(name: 'TargetType')
208
228
  TargetTypes = Shapes::ListShape.new(name: 'TargetTypes')
209
229
  ThrottlingException = Shapes::StructureShape.new(name: 'ThrottlingException')
230
+ TlsCertificateData = Shapes::StructureShape.new(name: 'TlsCertificateData')
210
231
  UnsupportedOperationException = Shapes::StructureShape.new(name: 'UnsupportedOperationException')
211
232
  UntagResourceRequest = Shapes::StructureShape.new(name: 'UntagResourceRequest')
212
233
  UntagResourceResponse = Shapes::StructureShape.new(name: 'UntagResourceResponse')
@@ -226,6 +247,8 @@ module Aws::NetworkFirewall
226
247
  UpdateRuleGroupResponse = Shapes::StructureShape.new(name: 'UpdateRuleGroupResponse')
227
248
  UpdateSubnetChangeProtectionRequest = Shapes::StructureShape.new(name: 'UpdateSubnetChangeProtectionRequest')
228
249
  UpdateSubnetChangeProtectionResponse = Shapes::StructureShape.new(name: 'UpdateSubnetChangeProtectionResponse')
250
+ UpdateTLSInspectionConfigurationRequest = Shapes::StructureShape.new(name: 'UpdateTLSInspectionConfigurationRequest')
251
+ UpdateTLSInspectionConfigurationResponse = Shapes::StructureShape.new(name: 'UpdateTLSInspectionConfigurationResponse')
229
252
  UpdateToken = Shapes::StringShape.new(name: 'UpdateToken')
230
253
  VariableDefinition = Shapes::StringShape.new(name: 'VariableDefinition')
231
254
  VariableDefinitionList = Shapes::ListShape.new(name: 'VariableDefinitionList')
@@ -280,6 +303,8 @@ module Aws::NetworkFirewall
280
303
  CapacityUsageSummary.add_member(:cid_rs, Shapes::ShapeRef.new(shape: CIDRSummary, location_name: "CIDRs"))
281
304
  CapacityUsageSummary.struct_class = Types::CapacityUsageSummary
282
305
 
306
+ Certificates.member = Shapes::ShapeRef.new(shape: TlsCertificateData)
307
+
283
308
  CreateFirewallPolicyRequest.add_member(:firewall_policy_name, Shapes::ShapeRef.new(shape: ResourceName, required: true, location_name: "FirewallPolicyName"))
284
309
  CreateFirewallPolicyRequest.add_member(:firewall_policy, Shapes::ShapeRef.new(shape: FirewallPolicy, required: true, location_name: "FirewallPolicy"))
285
310
  CreateFirewallPolicyRequest.add_member(:description, Shapes::ShapeRef.new(shape: Description, location_name: "Description"))
@@ -324,6 +349,17 @@ module Aws::NetworkFirewall
324
349
  CreateRuleGroupResponse.add_member(:rule_group_response, Shapes::ShapeRef.new(shape: RuleGroupResponse, required: true, location_name: "RuleGroupResponse"))
325
350
  CreateRuleGroupResponse.struct_class = Types::CreateRuleGroupResponse
326
351
 
352
+ CreateTLSInspectionConfigurationRequest.add_member(:tls_inspection_configuration_name, Shapes::ShapeRef.new(shape: ResourceName, required: true, location_name: "TLSInspectionConfigurationName"))
353
+ CreateTLSInspectionConfigurationRequest.add_member(:tls_inspection_configuration, Shapes::ShapeRef.new(shape: TLSInspectionConfiguration, required: true, location_name: "TLSInspectionConfiguration"))
354
+ CreateTLSInspectionConfigurationRequest.add_member(:description, Shapes::ShapeRef.new(shape: Description, location_name: "Description"))
355
+ CreateTLSInspectionConfigurationRequest.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "Tags"))
356
+ CreateTLSInspectionConfigurationRequest.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
357
+ CreateTLSInspectionConfigurationRequest.struct_class = Types::CreateTLSInspectionConfigurationRequest
358
+
359
+ CreateTLSInspectionConfigurationResponse.add_member(:update_token, Shapes::ShapeRef.new(shape: UpdateToken, required: true, location_name: "UpdateToken"))
360
+ CreateTLSInspectionConfigurationResponse.add_member(:tls_inspection_configuration_response, Shapes::ShapeRef.new(shape: TLSInspectionConfigurationResponse, required: true, location_name: "TLSInspectionConfigurationResponse"))
361
+ CreateTLSInspectionConfigurationResponse.struct_class = Types::CreateTLSInspectionConfigurationResponse
362
+
327
363
  CustomAction.add_member(:action_name, Shapes::ShapeRef.new(shape: ActionName, required: true, location_name: "ActionName"))
328
364
  CustomAction.add_member(:action_definition, Shapes::ShapeRef.new(shape: ActionDefinition, required: true, location_name: "ActionDefinition"))
329
365
  CustomAction.struct_class = Types::CustomAction
@@ -358,6 +394,13 @@ module Aws::NetworkFirewall
358
394
  DeleteRuleGroupResponse.add_member(:rule_group_response, Shapes::ShapeRef.new(shape: RuleGroupResponse, required: true, location_name: "RuleGroupResponse"))
359
395
  DeleteRuleGroupResponse.struct_class = Types::DeleteRuleGroupResponse
360
396
 
397
+ DeleteTLSInspectionConfigurationRequest.add_member(:tls_inspection_configuration_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "TLSInspectionConfigurationArn"))
398
+ DeleteTLSInspectionConfigurationRequest.add_member(:tls_inspection_configuration_name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "TLSInspectionConfigurationName"))
399
+ DeleteTLSInspectionConfigurationRequest.struct_class = Types::DeleteTLSInspectionConfigurationRequest
400
+
401
+ DeleteTLSInspectionConfigurationResponse.add_member(:tls_inspection_configuration_response, Shapes::ShapeRef.new(shape: TLSInspectionConfigurationResponse, required: true, location_name: "TLSInspectionConfigurationResponse"))
402
+ DeleteTLSInspectionConfigurationResponse.struct_class = Types::DeleteTLSInspectionConfigurationResponse
403
+
361
404
  DescribeFirewallPolicyRequest.add_member(:firewall_policy_name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "FirewallPolicyName"))
362
405
  DescribeFirewallPolicyRequest.add_member(:firewall_policy_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "FirewallPolicyArn"))
363
406
  DescribeFirewallPolicyRequest.struct_class = Types::DescribeFirewallPolicyRequest
@@ -414,6 +457,15 @@ module Aws::NetworkFirewall
414
457
  DescribeRuleGroupResponse.add_member(:rule_group_response, Shapes::ShapeRef.new(shape: RuleGroupResponse, required: true, location_name: "RuleGroupResponse"))
415
458
  DescribeRuleGroupResponse.struct_class = Types::DescribeRuleGroupResponse
416
459
 
460
+ DescribeTLSInspectionConfigurationRequest.add_member(:tls_inspection_configuration_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "TLSInspectionConfigurationArn"))
461
+ DescribeTLSInspectionConfigurationRequest.add_member(:tls_inspection_configuration_name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "TLSInspectionConfigurationName"))
462
+ DescribeTLSInspectionConfigurationRequest.struct_class = Types::DescribeTLSInspectionConfigurationRequest
463
+
464
+ DescribeTLSInspectionConfigurationResponse.add_member(:update_token, Shapes::ShapeRef.new(shape: UpdateToken, required: true, location_name: "UpdateToken"))
465
+ DescribeTLSInspectionConfigurationResponse.add_member(:tls_inspection_configuration, Shapes::ShapeRef.new(shape: TLSInspectionConfiguration, location_name: "TLSInspectionConfiguration"))
466
+ DescribeTLSInspectionConfigurationResponse.add_member(:tls_inspection_configuration_response, Shapes::ShapeRef.new(shape: TLSInspectionConfigurationResponse, required: true, location_name: "TLSInspectionConfigurationResponse"))
467
+ DescribeTLSInspectionConfigurationResponse.struct_class = Types::DescribeTLSInspectionConfigurationResponse
468
+
417
469
  Dimension.add_member(:value, Shapes::ShapeRef.new(shape: DimensionValue, required: true, location_name: "Value"))
418
470
  Dimension.struct_class = Types::Dimension
419
471
 
@@ -462,6 +514,7 @@ module Aws::NetworkFirewall
462
514
  FirewallPolicy.add_member(:stateful_rule_group_references, Shapes::ShapeRef.new(shape: StatefulRuleGroupReferences, location_name: "StatefulRuleGroupReferences"))
463
515
  FirewallPolicy.add_member(:stateful_default_actions, Shapes::ShapeRef.new(shape: StatefulActions, location_name: "StatefulDefaultActions"))
464
516
  FirewallPolicy.add_member(:stateful_engine_options, Shapes::ShapeRef.new(shape: StatefulEngineOptions, location_name: "StatefulEngineOptions"))
517
+ FirewallPolicy.add_member(:tls_inspection_configuration_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "TLSInspectionConfigurationArn"))
465
518
  FirewallPolicy.struct_class = Types::FirewallPolicy
466
519
 
467
520
  FirewallPolicyMetadata.add_member(:name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "Name"))
@@ -566,6 +619,14 @@ module Aws::NetworkFirewall
566
619
  ListRuleGroupsResponse.add_member(:rule_groups, Shapes::ShapeRef.new(shape: RuleGroups, location_name: "RuleGroups"))
567
620
  ListRuleGroupsResponse.struct_class = Types::ListRuleGroupsResponse
568
621
 
622
+ ListTLSInspectionConfigurationsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: PaginationToken, location_name: "NextToken"))
623
+ ListTLSInspectionConfigurationsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: PaginationMaxResults, location_name: "MaxResults"))
624
+ ListTLSInspectionConfigurationsRequest.struct_class = Types::ListTLSInspectionConfigurationsRequest
625
+
626
+ ListTLSInspectionConfigurationsResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: PaginationToken, location_name: "NextToken"))
627
+ ListTLSInspectionConfigurationsResponse.add_member(:tls_inspection_configurations, Shapes::ShapeRef.new(shape: TLSInspectionConfigurations, location_name: "TLSInspectionConfigurations"))
628
+ ListTLSInspectionConfigurationsResponse.struct_class = Types::ListTLSInspectionConfigurationsResponse
629
+
569
630
  ListTagsForResourceRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: PaginationToken, location_name: "NextToken"))
570
631
  ListTagsForResourceRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: TagsPaginationMaxResults, location_name: "MaxResults"))
571
632
  ListTagsForResourceRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ResourceArn, required: true, location_name: "ResourceArn"))
@@ -690,6 +751,26 @@ module Aws::NetworkFirewall
690
751
  RulesSourceList.add_member(:generated_rules_type, Shapes::ShapeRef.new(shape: GeneratedRulesType, required: true, location_name: "GeneratedRulesType"))
691
752
  RulesSourceList.struct_class = Types::RulesSourceList
692
753
 
754
+ ServerCertificate.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "ResourceArn"))
755
+ ServerCertificate.struct_class = Types::ServerCertificate
756
+
757
+ ServerCertificateConfiguration.add_member(:server_certificates, Shapes::ShapeRef.new(shape: ServerCertificates, location_name: "ServerCertificates"))
758
+ ServerCertificateConfiguration.add_member(:scopes, Shapes::ShapeRef.new(shape: ServerCertificateScopes, location_name: "Scopes"))
759
+ ServerCertificateConfiguration.struct_class = Types::ServerCertificateConfiguration
760
+
761
+ ServerCertificateConfigurations.member = Shapes::ShapeRef.new(shape: ServerCertificateConfiguration)
762
+
763
+ ServerCertificateScope.add_member(:sources, Shapes::ShapeRef.new(shape: Addresses, location_name: "Sources"))
764
+ ServerCertificateScope.add_member(:destinations, Shapes::ShapeRef.new(shape: Addresses, location_name: "Destinations"))
765
+ ServerCertificateScope.add_member(:source_ports, Shapes::ShapeRef.new(shape: PortRanges, location_name: "SourcePorts"))
766
+ ServerCertificateScope.add_member(:destination_ports, Shapes::ShapeRef.new(shape: PortRanges, location_name: "DestinationPorts"))
767
+ ServerCertificateScope.add_member(:protocols, Shapes::ShapeRef.new(shape: ProtocolNumbers, location_name: "Protocols"))
768
+ ServerCertificateScope.struct_class = Types::ServerCertificateScope
769
+
770
+ ServerCertificateScopes.member = Shapes::ShapeRef.new(shape: ServerCertificateScope)
771
+
772
+ ServerCertificates.member = Shapes::ShapeRef.new(shape: ServerCertificate)
773
+
693
774
  Settings.member = Shapes::ShapeRef.new(shape: Setting)
694
775
 
695
776
  SourceMetadata.add_member(:source_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "SourceArn"))
@@ -762,6 +843,27 @@ module Aws::NetworkFirewall
762
843
 
763
844
  TCPFlags.member = Shapes::ShapeRef.new(shape: TCPFlagField)
764
845
 
846
+ TLSInspectionConfiguration.add_member(:server_certificate_configurations, Shapes::ShapeRef.new(shape: ServerCertificateConfigurations, location_name: "ServerCertificateConfigurations"))
847
+ TLSInspectionConfiguration.struct_class = Types::TLSInspectionConfiguration
848
+
849
+ TLSInspectionConfigurationMetadata.add_member(:name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "Name"))
850
+ TLSInspectionConfigurationMetadata.add_member(:arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "Arn"))
851
+ TLSInspectionConfigurationMetadata.struct_class = Types::TLSInspectionConfigurationMetadata
852
+
853
+ TLSInspectionConfigurationResponse.add_member(:tls_inspection_configuration_arn, Shapes::ShapeRef.new(shape: ResourceArn, required: true, location_name: "TLSInspectionConfigurationArn"))
854
+ TLSInspectionConfigurationResponse.add_member(:tls_inspection_configuration_name, Shapes::ShapeRef.new(shape: ResourceName, required: true, location_name: "TLSInspectionConfigurationName"))
855
+ TLSInspectionConfigurationResponse.add_member(:tls_inspection_configuration_id, Shapes::ShapeRef.new(shape: ResourceId, required: true, location_name: "TLSInspectionConfigurationId"))
856
+ TLSInspectionConfigurationResponse.add_member(:tls_inspection_configuration_status, Shapes::ShapeRef.new(shape: ResourceStatus, location_name: "TLSInspectionConfigurationStatus"))
857
+ TLSInspectionConfigurationResponse.add_member(:description, Shapes::ShapeRef.new(shape: Description, location_name: "Description"))
858
+ TLSInspectionConfigurationResponse.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "Tags"))
859
+ TLSInspectionConfigurationResponse.add_member(:last_modified_time, Shapes::ShapeRef.new(shape: LastUpdateTime, location_name: "LastModifiedTime"))
860
+ TLSInspectionConfigurationResponse.add_member(:number_of_associations, Shapes::ShapeRef.new(shape: NumberOfAssociations, location_name: "NumberOfAssociations"))
861
+ TLSInspectionConfigurationResponse.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
862
+ TLSInspectionConfigurationResponse.add_member(:certificates, Shapes::ShapeRef.new(shape: Certificates, location_name: "Certificates"))
863
+ TLSInspectionConfigurationResponse.struct_class = Types::TLSInspectionConfigurationResponse
864
+
865
+ TLSInspectionConfigurations.member = Shapes::ShapeRef.new(shape: TLSInspectionConfigurationMetadata)
866
+
765
867
  Tag.add_member(:key, Shapes::ShapeRef.new(shape: TagKey, required: true, location_name: "Key"))
766
868
  Tag.add_member(:value, Shapes::ShapeRef.new(shape: TagValue, required: true, location_name: "Value"))
767
869
  Tag.struct_class = Types::Tag
@@ -781,6 +883,12 @@ module Aws::NetworkFirewall
781
883
  ThrottlingException.add_member(:message, Shapes::ShapeRef.new(shape: ErrorMessage, location_name: "Message"))
782
884
  ThrottlingException.struct_class = Types::ThrottlingException
783
885
 
886
+ TlsCertificateData.add_member(:certificate_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "CertificateArn"))
887
+ TlsCertificateData.add_member(:certificate_serial, Shapes::ShapeRef.new(shape: CollectionMember_String, location_name: "CertificateSerial"))
888
+ TlsCertificateData.add_member(:status, Shapes::ShapeRef.new(shape: CollectionMember_String, location_name: "Status"))
889
+ TlsCertificateData.add_member(:status_message, Shapes::ShapeRef.new(shape: StatusReason, location_name: "StatusMessage"))
890
+ TlsCertificateData.struct_class = Types::TlsCertificateData
891
+
784
892
  UnsupportedOperationException.add_member(:message, Shapes::ShapeRef.new(shape: ErrorMessage, location_name: "Message"))
785
893
  UnsupportedOperationException.struct_class = Types::UnsupportedOperationException
786
894
 
@@ -889,6 +997,18 @@ module Aws::NetworkFirewall
889
997
  UpdateSubnetChangeProtectionResponse.add_member(:subnet_change_protection, Shapes::ShapeRef.new(shape: Boolean, location_name: "SubnetChangeProtection"))
890
998
  UpdateSubnetChangeProtectionResponse.struct_class = Types::UpdateSubnetChangeProtectionResponse
891
999
 
1000
+ UpdateTLSInspectionConfigurationRequest.add_member(:tls_inspection_configuration_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "TLSInspectionConfigurationArn"))
1001
+ UpdateTLSInspectionConfigurationRequest.add_member(:tls_inspection_configuration_name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "TLSInspectionConfigurationName"))
1002
+ UpdateTLSInspectionConfigurationRequest.add_member(:tls_inspection_configuration, Shapes::ShapeRef.new(shape: TLSInspectionConfiguration, required: true, location_name: "TLSInspectionConfiguration"))
1003
+ UpdateTLSInspectionConfigurationRequest.add_member(:description, Shapes::ShapeRef.new(shape: Description, location_name: "Description"))
1004
+ UpdateTLSInspectionConfigurationRequest.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
1005
+ UpdateTLSInspectionConfigurationRequest.add_member(:update_token, Shapes::ShapeRef.new(shape: UpdateToken, required: true, location_name: "UpdateToken"))
1006
+ UpdateTLSInspectionConfigurationRequest.struct_class = Types::UpdateTLSInspectionConfigurationRequest
1007
+
1008
+ UpdateTLSInspectionConfigurationResponse.add_member(:update_token, Shapes::ShapeRef.new(shape: UpdateToken, required: true, location_name: "UpdateToken"))
1009
+ UpdateTLSInspectionConfigurationResponse.add_member(:tls_inspection_configuration_response, Shapes::ShapeRef.new(shape: TLSInspectionConfigurationResponse, required: true, location_name: "TLSInspectionConfigurationResponse"))
1010
+ UpdateTLSInspectionConfigurationResponse.struct_class = Types::UpdateTLSInspectionConfigurationResponse
1011
+
892
1012
  VariableDefinitionList.member = Shapes::ShapeRef.new(shape: VariableDefinition)
893
1013
 
894
1014
  VpcIds.member = Shapes::ShapeRef.new(shape: VpcId)
@@ -982,6 +1102,17 @@ module Aws::NetworkFirewall
982
1102
  o.errors << Shapes::ShapeRef.new(shape: InsufficientCapacityException)
983
1103
  end)
984
1104
 
1105
+ api.add_operation(:create_tls_inspection_configuration, Seahorse::Model::Operation.new.tap do |o|
1106
+ o.name = "CreateTLSInspectionConfiguration"
1107
+ o.http_method = "POST"
1108
+ o.http_request_uri = "/"
1109
+ o.input = Shapes::ShapeRef.new(shape: CreateTLSInspectionConfigurationRequest)
1110
+ o.output = Shapes::ShapeRef.new(shape: CreateTLSInspectionConfigurationResponse)
1111
+ o.errors << Shapes::ShapeRef.new(shape: InvalidRequestException)
1112
+ o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
1113
+ o.errors << Shapes::ShapeRef.new(shape: InternalServerError)
1114
+ end)
1115
+
985
1116
  api.add_operation(:delete_firewall, Seahorse::Model::Operation.new.tap do |o|
986
1117
  o.name = "DeleteFirewall"
987
1118
  o.http_method = "POST"
@@ -1037,6 +1168,19 @@ module Aws::NetworkFirewall
1037
1168
  o.errors << Shapes::ShapeRef.new(shape: InvalidOperationException)
1038
1169
  end)
1039
1170
 
1171
+ api.add_operation(:delete_tls_inspection_configuration, Seahorse::Model::Operation.new.tap do |o|
1172
+ o.name = "DeleteTLSInspectionConfiguration"
1173
+ o.http_method = "POST"
1174
+ o.http_request_uri = "/"
1175
+ o.input = Shapes::ShapeRef.new(shape: DeleteTLSInspectionConfigurationRequest)
1176
+ o.output = Shapes::ShapeRef.new(shape: DeleteTLSInspectionConfigurationResponse)
1177
+ o.errors << Shapes::ShapeRef.new(shape: InvalidRequestException)
1178
+ o.errors << Shapes::ShapeRef.new(shape: InternalServerError)
1179
+ o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
1180
+ o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
1181
+ o.errors << Shapes::ShapeRef.new(shape: InvalidOperationException)
1182
+ end)
1183
+
1040
1184
  api.add_operation(:describe_firewall, Seahorse::Model::Operation.new.tap do |o|
1041
1185
  o.name = "DescribeFirewall"
1042
1186
  o.http_method = "POST"
@@ -1109,6 +1253,18 @@ module Aws::NetworkFirewall
1109
1253
  o.errors << Shapes::ShapeRef.new(shape: InternalServerError)
1110
1254
  end)
1111
1255
 
1256
+ api.add_operation(:describe_tls_inspection_configuration, Seahorse::Model::Operation.new.tap do |o|
1257
+ o.name = "DescribeTLSInspectionConfiguration"
1258
+ o.http_method = "POST"
1259
+ o.http_request_uri = "/"
1260
+ o.input = Shapes::ShapeRef.new(shape: DescribeTLSInspectionConfigurationRequest)
1261
+ o.output = Shapes::ShapeRef.new(shape: DescribeTLSInspectionConfigurationResponse)
1262
+ o.errors << Shapes::ShapeRef.new(shape: InvalidRequestException)
1263
+ o.errors << Shapes::ShapeRef.new(shape: InternalServerError)
1264
+ o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
1265
+ o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
1266
+ end)
1267
+
1112
1268
  api.add_operation(:disassociate_subnets, Seahorse::Model::Operation.new.tap do |o|
1113
1269
  o.name = "DisassociateSubnets"
1114
1270
  o.http_method = "POST"
@@ -1174,6 +1330,23 @@ module Aws::NetworkFirewall
1174
1330
  )
1175
1331
  end)
1176
1332
 
1333
+ api.add_operation(:list_tls_inspection_configurations, Seahorse::Model::Operation.new.tap do |o|
1334
+ o.name = "ListTLSInspectionConfigurations"
1335
+ o.http_method = "POST"
1336
+ o.http_request_uri = "/"
1337
+ o.input = Shapes::ShapeRef.new(shape: ListTLSInspectionConfigurationsRequest)
1338
+ o.output = Shapes::ShapeRef.new(shape: ListTLSInspectionConfigurationsResponse)
1339
+ o.errors << Shapes::ShapeRef.new(shape: InvalidRequestException)
1340
+ o.errors << Shapes::ShapeRef.new(shape: InternalServerError)
1341
+ o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
1342
+ o[:pager] = Aws::Pager.new(
1343
+ limit_key: "max_results",
1344
+ tokens: {
1345
+ "next_token" => "next_token"
1346
+ }
1347
+ )
1348
+ end)
1349
+
1177
1350
  api.add_operation(:list_tags_for_resource, Seahorse::Model::Operation.new.tap do |o|
1178
1351
  o.name = "ListTagsForResource"
1179
1352
  o.http_method = "POST"
@@ -1337,6 +1510,19 @@ module Aws::NetworkFirewall
1337
1510
  o.errors << Shapes::ShapeRef.new(shape: InvalidTokenException)
1338
1511
  o.errors << Shapes::ShapeRef.new(shape: ResourceOwnerCheckException)
1339
1512
  end)
1513
+
1514
+ api.add_operation(:update_tls_inspection_configuration, Seahorse::Model::Operation.new.tap do |o|
1515
+ o.name = "UpdateTLSInspectionConfiguration"
1516
+ o.http_method = "POST"
1517
+ o.http_request_uri = "/"
1518
+ o.input = Shapes::ShapeRef.new(shape: UpdateTLSInspectionConfigurationRequest)
1519
+ o.output = Shapes::ShapeRef.new(shape: UpdateTLSInspectionConfigurationResponse)
1520
+ o.errors << Shapes::ShapeRef.new(shape: InvalidRequestException)
1521
+ o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
1522
+ o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
1523
+ o.errors << Shapes::ShapeRef.new(shape: InternalServerError)
1524
+ o.errors << Shapes::ShapeRef.new(shape: InvalidTokenException)
1525
+ end)
1340
1526
  end
1341
1527
 
1342
1528
  end
@@ -50,9 +50,6 @@ module Aws::NetworkFirewall
50
50
 
51
51
  def initialize(options = {})
52
52
  self[:region] = options[:region]
53
- if self[:region].nil?
54
- raise ArgumentError, "Missing required EndpointParameter: :region"
55
- end
56
53
  self[:use_dual_stack] = options[:use_dual_stack]
57
54
  self[:use_dual_stack] = false if self[:use_dual_stack].nil?
58
55
  if self[:use_dual_stack].nil?
@@ -14,36 +14,39 @@ module Aws::NetworkFirewall
14
14
  use_dual_stack = parameters.use_dual_stack
15
15
  use_fips = parameters.use_fips
16
16
  endpoint = parameters.endpoint
17
- if (partition_result = Aws::Endpoints::Matchers.aws_partition(region))
18
- if Aws::Endpoints::Matchers.set?(endpoint)
19
- if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
20
- raise ArgumentError, "Invalid Configuration: FIPS and custom endpoint are not supported"
21
- end
22
- if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
23
- raise ArgumentError, "Invalid Configuration: Dualstack and custom endpoint are not supported"
24
- end
25
- return Aws::Endpoints::Endpoint.new(url: endpoint, headers: {}, properties: {})
26
- end
27
- if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
28
- if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS")) && Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
29
- return Aws::Endpoints::Endpoint.new(url: "https://network-firewall-fips.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
30
- end
31
- raise ArgumentError, "FIPS and DualStack are enabled, but this partition does not support one or both"
32
- end
17
+ if Aws::Endpoints::Matchers.set?(endpoint)
33
18
  if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
34
- if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"))
35
- return Aws::Endpoints::Endpoint.new(url: "https://network-firewall-fips.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
36
- end
37
- raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
19
+ raise ArgumentError, "Invalid Configuration: FIPS and custom endpoint are not supported"
38
20
  end
39
21
  if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
40
- if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
41
- return Aws::Endpoints::Endpoint.new(url: "https://network-firewall.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
22
+ raise ArgumentError, "Invalid Configuration: Dualstack and custom endpoint are not supported"
23
+ end
24
+ return Aws::Endpoints::Endpoint.new(url: endpoint, headers: {}, properties: {})
25
+ end
26
+ if Aws::Endpoints::Matchers.set?(region)
27
+ if (partition_result = Aws::Endpoints::Matchers.aws_partition(region))
28
+ if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
29
+ if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS")) && Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
30
+ return Aws::Endpoints::Endpoint.new(url: "https://network-firewall-fips.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
31
+ end
32
+ raise ArgumentError, "FIPS and DualStack are enabled, but this partition does not support one or both"
33
+ end
34
+ if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
35
+ if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"))
36
+ return Aws::Endpoints::Endpoint.new(url: "https://network-firewall-fips.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
37
+ end
38
+ raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
39
+ end
40
+ if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
41
+ if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
42
+ return Aws::Endpoints::Endpoint.new(url: "https://network-firewall.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
43
+ end
44
+ raise ArgumentError, "DualStack is enabled but this partition does not support DualStack"
42
45
  end
43
- raise ArgumentError, "DualStack is enabled but this partition does not support DualStack"
46
+ return Aws::Endpoints::Endpoint.new(url: "https://network-firewall.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
44
47
  end
45
- return Aws::Endpoints::Endpoint.new(url: "https://network-firewall.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
46
48
  end
49
+ raise ArgumentError, "Invalid Configuration: Missing Region"
47
50
  raise ArgumentError, 'No endpoint could be resolved'
48
51
 
49
52
  end
@@ -81,6 +81,20 @@ module Aws::NetworkFirewall
81
81
  end
82
82
  end
83
83
 
84
+ class CreateTLSInspectionConfiguration
85
+ def self.build(context)
86
+ unless context.config.regional_endpoint
87
+ endpoint = context.config.endpoint.to_s
88
+ end
89
+ Aws::NetworkFirewall::EndpointParameters.new(
90
+ region: context.config.region,
91
+ use_dual_stack: context.config.use_dualstack_endpoint,
92
+ use_fips: context.config.use_fips_endpoint,
93
+ endpoint: endpoint,
94
+ )
95
+ end
96
+ end
97
+
84
98
  class DeleteFirewall
85
99
  def self.build(context)
86
100
  unless context.config.regional_endpoint
@@ -137,6 +151,20 @@ module Aws::NetworkFirewall
137
151
  end
138
152
  end
139
153
 
154
+ class DeleteTLSInspectionConfiguration
155
+ def self.build(context)
156
+ unless context.config.regional_endpoint
157
+ endpoint = context.config.endpoint.to_s
158
+ end
159
+ Aws::NetworkFirewall::EndpointParameters.new(
160
+ region: context.config.region,
161
+ use_dual_stack: context.config.use_dualstack_endpoint,
162
+ use_fips: context.config.use_fips_endpoint,
163
+ endpoint: endpoint,
164
+ )
165
+ end
166
+ end
167
+
140
168
  class DescribeFirewall
141
169
  def self.build(context)
142
170
  unless context.config.regional_endpoint
@@ -221,6 +249,20 @@ module Aws::NetworkFirewall
221
249
  end
222
250
  end
223
251
 
252
+ class DescribeTLSInspectionConfiguration
253
+ def self.build(context)
254
+ unless context.config.regional_endpoint
255
+ endpoint = context.config.endpoint.to_s
256
+ end
257
+ Aws::NetworkFirewall::EndpointParameters.new(
258
+ region: context.config.region,
259
+ use_dual_stack: context.config.use_dualstack_endpoint,
260
+ use_fips: context.config.use_fips_endpoint,
261
+ endpoint: endpoint,
262
+ )
263
+ end
264
+ end
265
+
224
266
  class DisassociateSubnets
225
267
  def self.build(context)
226
268
  unless context.config.regional_endpoint
@@ -277,6 +319,20 @@ module Aws::NetworkFirewall
277
319
  end
278
320
  end
279
321
 
322
+ class ListTLSInspectionConfigurations
323
+ def self.build(context)
324
+ unless context.config.regional_endpoint
325
+ endpoint = context.config.endpoint.to_s
326
+ end
327
+ Aws::NetworkFirewall::EndpointParameters.new(
328
+ region: context.config.region,
329
+ use_dual_stack: context.config.use_dualstack_endpoint,
330
+ use_fips: context.config.use_fips_endpoint,
331
+ endpoint: endpoint,
332
+ )
333
+ end
334
+ end
335
+
280
336
  class ListTagsForResource
281
337
  def self.build(context)
282
338
  unless context.config.regional_endpoint
@@ -445,5 +501,19 @@ module Aws::NetworkFirewall
445
501
  end
446
502
  end
447
503
 
504
+ class UpdateTLSInspectionConfiguration
505
+ def self.build(context)
506
+ unless context.config.regional_endpoint
507
+ endpoint = context.config.endpoint.to_s
508
+ end
509
+ Aws::NetworkFirewall::EndpointParameters.new(
510
+ region: context.config.region,
511
+ use_dual_stack: context.config.use_dualstack_endpoint,
512
+ use_fips: context.config.use_fips_endpoint,
513
+ endpoint: endpoint,
514
+ )
515
+ end
516
+ end
517
+
448
518
  end
449
519
  end
@@ -66,6 +66,8 @@ module Aws::NetworkFirewall
66
66
  Aws::NetworkFirewall::Endpoints::CreateFirewallPolicy.build(context)
67
67
  when :create_rule_group
68
68
  Aws::NetworkFirewall::Endpoints::CreateRuleGroup.build(context)
69
+ when :create_tls_inspection_configuration
70
+ Aws::NetworkFirewall::Endpoints::CreateTLSInspectionConfiguration.build(context)
69
71
  when :delete_firewall
70
72
  Aws::NetworkFirewall::Endpoints::DeleteFirewall.build(context)
71
73
  when :delete_firewall_policy
@@ -74,6 +76,8 @@ module Aws::NetworkFirewall
74
76
  Aws::NetworkFirewall::Endpoints::DeleteResourcePolicy.build(context)
75
77
  when :delete_rule_group
76
78
  Aws::NetworkFirewall::Endpoints::DeleteRuleGroup.build(context)
79
+ when :delete_tls_inspection_configuration
80
+ Aws::NetworkFirewall::Endpoints::DeleteTLSInspectionConfiguration.build(context)
77
81
  when :describe_firewall
78
82
  Aws::NetworkFirewall::Endpoints::DescribeFirewall.build(context)
79
83
  when :describe_firewall_policy
@@ -86,6 +90,8 @@ module Aws::NetworkFirewall
86
90
  Aws::NetworkFirewall::Endpoints::DescribeRuleGroup.build(context)
87
91
  when :describe_rule_group_metadata
88
92
  Aws::NetworkFirewall::Endpoints::DescribeRuleGroupMetadata.build(context)
93
+ when :describe_tls_inspection_configuration
94
+ Aws::NetworkFirewall::Endpoints::DescribeTLSInspectionConfiguration.build(context)
89
95
  when :disassociate_subnets
90
96
  Aws::NetworkFirewall::Endpoints::DisassociateSubnets.build(context)
91
97
  when :list_firewall_policies
@@ -94,6 +100,8 @@ module Aws::NetworkFirewall
94
100
  Aws::NetworkFirewall::Endpoints::ListFirewalls.build(context)
95
101
  when :list_rule_groups
96
102
  Aws::NetworkFirewall::Endpoints::ListRuleGroups.build(context)
103
+ when :list_tls_inspection_configurations
104
+ Aws::NetworkFirewall::Endpoints::ListTLSInspectionConfigurations.build(context)
97
105
  when :list_tags_for_resource
98
106
  Aws::NetworkFirewall::Endpoints::ListTagsForResource.build(context)
99
107
  when :put_resource_policy
@@ -118,6 +126,8 @@ module Aws::NetworkFirewall
118
126
  Aws::NetworkFirewall::Endpoints::UpdateRuleGroup.build(context)
119
127
  when :update_subnet_change_protection
120
128
  Aws::NetworkFirewall::Endpoints::UpdateSubnetChangeProtection.build(context)
129
+ when :update_tls_inspection_configuration
130
+ Aws::NetworkFirewall::Endpoints::UpdateTLSInspectionConfiguration.build(context)
121
131
  end
122
132
  end
123
133
  end