aws-sdk-redshift 1.58.0 → 1.59.0

data/lib/aws-sdk-redshift/types.rb

@@ -49,6 +49,12 @@ module Aws::Redshift
       include Aws::Structure
     end
 
+    # You are not authorized to access the cluster.
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/AccessToClusterDeniedFault AWS API Documentation
+    #
+    class AccessToClusterDeniedFault < Aws::EmptyStructure; end
+
     # The owner of the specified snapshot has not authorized your account to
     # access the snapshot.
     #
@@ -198,6 +204,37 @@ module Aws::Redshift
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass AuthorizeEndpointAccessMessage
+    #   data as a hash:
+    #
+    #       {
+    #         cluster_identifier: "String",
+    #         account: "String", # required
+    #         vpc_ids: ["String"],
+    #       }
+    #
+    # @!attribute [rw] cluster_identifier
+    #   The cluster identifier of the cluster to grant access to.
+    #   @return [String]
+    #
+    # @!attribute [rw] account
+    #   The AWS account ID to grant access to.
+    #   @return [String]
+    #
+    # @!attribute [rw] vpc_ids
+    #   The virtual private cloud (VPC) identifiers to grant access to.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/AuthorizeEndpointAccessMessage AWS API Documentation
+    #
+    class AuthorizeEndpointAccessMessage < Struct.new(
+      :cluster_identifier,
+      :account,
+      :vpc_ids)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass AuthorizeSnapshotAccessMessage
     #   data as a hash:
     #
@@ -2320,6 +2357,57 @@ module Aws::Redshift
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass CreateEndpointAccessMessage
+    #   data as a hash:
+    #
+    #       {
+    #         cluster_identifier: "String",
+    #         resource_owner: "String",
+    #         endpoint_name: "String", # required
+    #         subnet_group_name: "String", # required
+    #         vpc_security_group_ids: ["String"],
+    #       }
+    #
+    # @!attribute [rw] cluster_identifier
+    #   The cluster identifier of the cluster to access.
+    #   @return [String]
+    #
+    # @!attribute [rw] resource_owner
+    #   The AWS account ID of the owner of the cluster. This is only
+    #   required if the cluster is in another AWS account.
+    #   @return [String]
+    #
+    # @!attribute [rw] endpoint_name
+    #   The Redshift-managed VPC endpoint name.
+    #
+    #   An endpoint name must contain 1-30 characters. Valid characters are
+    #   A-Z, a-z, 0-9, and hyphen(-). The first character must be a letter.
+    #   The name can't contain two consecutive hyphens or end with a
+    #   hyphen.
+    #   @return [String]
+    #
+    # @!attribute [rw] subnet_group_name
+    #   The subnet group from which Amazon Redshift chooses the subnet to
+    #   deploy the endpoint.
+    #   @return [String]
+    #
+    # @!attribute [rw] vpc_security_group_ids
+    #   The security group that defines the ports, protocols, and sources
+    #   for inbound traffic that you are authorizing into your endpoint.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/CreateEndpointAccessMessage AWS API Documentation
+    #
+    class CreateEndpointAccessMessage < Struct.new(
+      :cluster_identifier,
+      :resource_owner,
+      :endpoint_name,
+      :subnet_group_name,
+      :vpc_security_group_ids)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass CreateEventSubscriptionMessage
     #   data as a hash:
     #
@@ -3193,6 +3281,25 @@ module Aws::Redshift
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass DeleteEndpointAccessMessage
+    #   data as a hash:
+    #
+    #       {
+    #         endpoint_name: "String", # required
+    #       }
+    #
+    # @!attribute [rw] endpoint_name
+    #   The Redshift-managed VPC endpoint to delete.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/DeleteEndpointAccessMessage AWS API Documentation
+    #
+    class DeleteEndpointAccessMessage < Struct.new(
+      :endpoint_name)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass DeleteEventSubscriptionMessage
     #   data as a hash:
     #
@@ -4109,6 +4216,104 @@ module Aws::Redshift
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass DescribeEndpointAccessMessage
+    #   data as a hash:
+    #
+    #       {
+    #         cluster_identifier: "String",
+    #         resource_owner: "String",
+    #         endpoint_name: "String",
+    #         vpc_id: "String",
+    #         max_records: 1,
+    #         marker: "String",
+    #       }
+    #
+    # @!attribute [rw] cluster_identifier
+    #   The cluster identifier associated with the described endpoint.
+    #   @return [String]
+    #
+    # @!attribute [rw] resource_owner
+    #   The AWS account ID of the owner of the cluster.
+    #   @return [String]
+    #
+    # @!attribute [rw] endpoint_name
+    #   The name of the endpoint to be described.
+    #   @return [String]
+    #
+    # @!attribute [rw] vpc_id
+    #   The virtual private cloud (VPC) identifier with access to the
+    #   cluster.
+    #   @return [String]
+    #
+    # @!attribute [rw] max_records
+    #   Reserved for Amazon Redshift internal use.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] marker
+    #   Reserved for Amazon Redshift internal use.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/DescribeEndpointAccessMessage AWS API Documentation
+    #
+    class DescribeEndpointAccessMessage < Struct.new(
+      :cluster_identifier,
+      :resource_owner,
+      :endpoint_name,
+      :vpc_id,
+      :max_records,
+      :marker)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass DescribeEndpointAuthorizationMessage
+    #   data as a hash:
+    #
+    #       {
+    #         cluster_identifier: "String",
+    #         account: "String",
+    #         grantee: false,
+    #         max_records: 1,
+    #         marker: "String",
+    #       }
+    #
+    # @!attribute [rw] cluster_identifier
+    #   The cluster identifier of the cluster to access.
+    #   @return [String]
+    #
+    # @!attribute [rw] account
+    #   The AWS account ID of either the cluster owner (grantor) or grantee.
+    #   If `Grantee` parameter is true, then the `Account` value is of the
+    #   grantor.
+    #   @return [String]
+    #
+    # @!attribute [rw] grantee
+    #   Indicates whether to check authorization from a grantor or grantee
+    #   point of view. If true, Amazon Redshift returns endpoint
+    #   authorizations that you've been granted. If false (default), checks
+    #   authorization from a grantor point of view.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] max_records
+    #   Reserved for Amazon Redshift internal use.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] marker
+    #   Reserved for Amazon Redshift internal use.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/DescribeEndpointAuthorizationMessage AWS API Documentation
+    #
+    class DescribeEndpointAuthorizationMessage < Struct.new(
+      :cluster_identifier,
+      :account,
+      :grantee,
+      :max_records,
+      :marker)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass DescribeEventCategoriesMessage
     #   data as a hash:
     #
@@ -5475,6 +5680,204 @@ module Aws::Redshift
       include Aws::Structure
     end
 
+    # Describes a Redshift-managed VPC endpoint.
+    #
+    # @!attribute [rw] cluster_identifier
+    #   The cluster identifier of the cluster associated with the endpoint.
+    #   @return [String]
+    #
+    # @!attribute [rw] resource_owner
+    #   The AWS account ID of the owner of the cluster.
+    #   @return [String]
+    #
+    # @!attribute [rw] subnet_group_name
+    #   The subnet group name where Amazon Redshift chooses to deploy the
+    #   endpoint.
+    #   @return [String]
+    #
+    # @!attribute [rw] endpoint_status
+    #   The status of the endpoint.
+    #   @return [String]
+    #
+    # @!attribute [rw] endpoint_name
+    #   The name of the endpoint.
+    #   @return [String]
+    #
+    # @!attribute [rw] endpoint_create_time
+    #   The time (UTC) that the endpoint was created.
+    #   @return [Time]
+    #
+    # @!attribute [rw] port
+    #   The port number on which the cluster accepts incoming connections.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] address
+    #   The DNS address of the endpoint.
+    #   @return [String]
+    #
+    # @!attribute [rw] vpc_security_groups
+    #   The security groups associated with the endpoint.
+    #   @return [Array<Types::VpcSecurityGroupMembership>]
+    #
+    # @!attribute [rw] vpc_endpoint
+    #   The connection endpoint for connecting to an Amazon Redshift cluster
+    #   through the proxy.
+    #   @return [Types::VpcEndpoint]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/EndpointAccess AWS API Documentation
+    #
+    class EndpointAccess < Struct.new(
+      :cluster_identifier,
+      :resource_owner,
+      :subnet_group_name,
+      :endpoint_status,
+      :endpoint_name,
+      :endpoint_create_time,
+      :port,
+      :address,
+      :vpc_security_groups,
+      :vpc_endpoint)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] endpoint_access_list
+    #   The list of endpoints with access to the cluster.
+    #   @return [Array<Types::EndpointAccess>]
+    #
+    # @!attribute [rw] marker
+    #   Reserved for Amazon Redshift internal use.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/EndpointAccessList AWS API Documentation
+    #
+    class EndpointAccessList < Struct.new(
+      :endpoint_access_list,
+      :marker)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # The account already has a Redshift-managed VPC endpoint with the given
+    # identifier.
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/EndpointAlreadyExistsFault AWS API Documentation
+    #
+    class EndpointAlreadyExistsFault < Aws::EmptyStructure; end
+
+    # Describes an endpoint authorization for authorizing Redshift-managed
+    # VPC endpoint access to a cluster across AWS accounts.
+    #
+    # @!attribute [rw] grantor
+    #   The AWS account ID of the cluster owner.
+    #   @return [String]
+    #
+    # @!attribute [rw] grantee
+    #   The AWS account ID of the grantee of the cluster.
+    #   @return [String]
+    #
+    # @!attribute [rw] cluster_identifier
+    #   The cluster identifier.
+    #   @return [String]
+    #
+    # @!attribute [rw] authorize_time
+    #   The time (UTC) when the authorization was created.
+    #   @return [Time]
+    #
+    # @!attribute [rw] cluster_status
+    #   The status of the cluster.
+    #   @return [String]
+    #
+    # @!attribute [rw] status
+    #   The status of the authorization action.
+    #   @return [String]
+    #
+    # @!attribute [rw] allowed_all_vp_cs
+    #   Indicates whether all VPCs in the grantee account are allowed access
+    #   to the cluster.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] allowed_vp_cs
+    #   The VPCs allowed access to the cluster.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] endpoint_count
+    #   The number of Redshift-managed VPC endpoints created for the
+    #   authorization.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/EndpointAuthorization AWS API Documentation
+    #
+    class EndpointAuthorization < Struct.new(
+      :grantor,
+      :grantee,
+      :cluster_identifier,
+      :authorize_time,
+      :cluster_status,
+      :status,
+      :allowed_all_vp_cs,
+      :allowed_vp_cs,
+      :endpoint_count)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # The authorization already exists for this endpoint.
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/EndpointAuthorizationAlreadyExistsFault AWS API Documentation
+    #
+    class EndpointAuthorizationAlreadyExistsFault < Aws::EmptyStructure; end
+
+    # @!attribute [rw] endpoint_authorization_list
+    #   The authorizations to an endpoint.
+    #   @return [Array<Types::EndpointAuthorization>]
+    #
+    # @!attribute [rw] marker
+    #   Reserved for Amazon Redshift internal use.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/EndpointAuthorizationList AWS API Documentation
+    #
+    class EndpointAuthorizationList < Struct.new(
+      :endpoint_authorization_list,
+      :marker)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # The authorization for this endpoint can't be found.
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/EndpointAuthorizationNotFoundFault AWS API Documentation
+    #
+    class EndpointAuthorizationNotFoundFault < Aws::EmptyStructure; end
+
+    # The number of endpoint authorizations per cluster has exceeded its
+    # limit.
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/EndpointAuthorizationsPerClusterLimitExceededFault AWS API Documentation
+    #
+    class EndpointAuthorizationsPerClusterLimitExceededFault < Aws::EmptyStructure; end
+
+    # The endpoint name doesn't refer to an existing endpoint.
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/EndpointNotFoundFault AWS API Documentation
+    #
+    class EndpointNotFoundFault < Aws::EmptyStructure; end
+
+    # The number of Redshift-managed VPC endpoints per authorization has
+    # exceeded its limit.
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/EndpointsPerAuthorizationLimitExceededFault AWS API Documentation
+    #
+    class EndpointsPerAuthorizationLimitExceededFault < Aws::EmptyStructure; end
+
+    # The number of Redshift-managed VPC endpoints per cluster has exceeded
+    # its limit.
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/EndpointsPerClusterLimitExceededFault AWS API Documentation
+    #
+    class EndpointsPerClusterLimitExceededFault < Aws::EmptyStructure; end
+
     # Describes an event.
     #
     # @!attribute [rw] source_identifier
@@ -6166,6 +6569,12 @@ module Aws::Redshift
     #
     class InsufficientS3BucketPolicyFault < Aws::EmptyStructure; end
 
+    # The status of the authorization is not valid.
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/InvalidAuthorizationStateFault AWS API Documentation
+    #
+    class InvalidAuthorizationStateFault < Aws::EmptyStructure; end
+
     # The cluster parameter group action can not be completed because
     # another task is in progress that involves the parameter group. Wait a
     # few moments and try the operation again.
@@ -6223,6 +6632,12 @@ module Aws::Redshift
     #
     class InvalidElasticIpFault < Aws::EmptyStructure; end
 
+    # The status of the endpoint is not valid.
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/InvalidEndpointStateFault AWS API Documentation
+    #
+    class InvalidEndpointStateFault < Aws::EmptyStructure; end
+
     # The specified HSM client certificate is not in the `available` state,
     # or it is still in use by one or more Amazon Redshift clusters.
     #
@@ -7108,6 +7523,32 @@ module Aws::Redshift
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass ModifyEndpointAccessMessage
+    #   data as a hash:
+    #
+    #       {
+    #         endpoint_name: "String", # required
+    #         vpc_security_group_ids: ["String"],
+    #       }
+    #
+    # @!attribute [rw] endpoint_name
+    #   The endpoint to be modified.
+    #   @return [String]
+    #
+    # @!attribute [rw] vpc_security_group_ids
+    #   The complete list of VPC security groups associated with the
+    #   endpoint after the endpoint is modified.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/ModifyEndpointAccessMessage AWS API Documentation
+    #
+    class ModifyEndpointAccessMessage < Struct.new(
+      :endpoint_name,
+      :vpc_security_group_ids)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass ModifyEventSubscriptionMessage
     #   data as a hash:
     #
@@ -8978,6 +9419,46 @@ module Aws::Redshift
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass RevokeEndpointAccessMessage
+    #   data as a hash:
+    #
+    #       {
+    #         cluster_identifier: "String",
+    #         account: "String",
+    #         vpc_ids: ["String"],
+    #         force: false,
+    #       }
+    #
+    # @!attribute [rw] cluster_identifier
+    #   The cluster to revoke access from.
+    #   @return [String]
+    #
+    # @!attribute [rw] account
+    #   The AWS account ID whose access is to be revoked.
+    #   @return [String]
+    #
+    # @!attribute [rw] vpc_ids
+    #   The virtual private cloud (VPC) identifiers for which access is to
+    #   be revoked.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] force
+    #   Indicates whether to force the revoke action. If true, the
+    #   Redshift-managed VPC endpoints associated with the endpoint
+    #   authorization are also deleted.
+    #   @return [Boolean]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/redshift-2012-12-01/RevokeEndpointAccessMessage AWS API Documentation
+    #
+    class RevokeEndpointAccessMessage < Struct.new(
+      :cluster_identifier,
+      :account,
+      :vpc_ids,
+      :force)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass RevokeSnapshotAccessMessage
     #   data as a hash:
     #
@@ -10266,7 +10747,7 @@ module Aws::Redshift
     #
     class UsageLimitNotFoundFault < Aws::EmptyStructure; end
 
-    # The connection endpoint for connecting an Amazon Redshift cluster
+    # The connection endpoint for connecting to an Amazon Redshift cluster
     # through the proxy.
     #
     # @!attribute [rw] vpc_endpoint_id