aws-sdk-rolesanywhere 1.1.0 → 1.3.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +12 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-rolesanywhere/client.rb +222 -84
- data/lib/aws-sdk-rolesanywhere/client_api.rb +78 -1
- data/lib/aws-sdk-rolesanywhere/endpoint_provider.rb +38 -96
- data/lib/aws-sdk-rolesanywhere/endpoints.rb +28 -0
- data/lib/aws-sdk-rolesanywhere/plugins/endpoints.rb +4 -0
- data/lib/aws-sdk-rolesanywhere/types.rb +217 -265
- data/lib/aws-sdk-rolesanywhere.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: b6b5ec07044d62d0cea7db2734e163429a7948f6864a374e1ae7df957c0a942d
|
4
|
+
data.tar.gz: 4c81452a2f2e804a5ce7d2e59725f9e6b61cda6c86377bd243fce04657b0133c
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 7aa625a2156e3a938fdc2ee4b84fd1d54b072c9436b57b5e4550317e585dd790865d2c1afd4e89906302fdfbdb5efae3de01c3390e24ae5aa53d5c137e05d39c
|
7
|
+
data.tar.gz: f3e81287e28ddc89ea13b62e7c98acdcb122137b20d6d097cf1fd944c249d4f2bf26e169c4c4e85d747cfe3ebbb0793a44bec966c5299ca3da7637c938e5f68c
|
data/CHANGELOG.md
CHANGED
@@ -1,6 +1,18 @@
|
|
1
1
|
Unreleased Changes
|
2
2
|
------------------
|
3
3
|
|
4
|
+
1.3.0 (2023-05-15)
|
5
|
+
------------------
|
6
|
+
|
7
|
+
* Feature - Adds support for custom notification settings in a trust anchor. Introduces PutNotificationSettings and ResetNotificationSettings API's. Updates DurationSeconds max value to 3600.
|
8
|
+
|
9
|
+
1.2.0 (2023-01-18)
|
10
|
+
------------------
|
11
|
+
|
12
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
13
|
+
|
14
|
+
* Issue - Replace runtime endpoint resolution approach with generated ruby code.
|
15
|
+
|
4
16
|
1.1.0 (2022-10-25)
|
5
17
|
------------------
|
6
18
|
|
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
1.
|
1
|
+
1.3.0
|
@@ -368,10 +368,9 @@ module Aws::RolesAnywhere
|
|
368
368
|
|
369
369
|
# @!group API Operations
|
370
370
|
|
371
|
-
# Creates a profile
|
372
|
-
#
|
373
|
-
#
|
374
|
-
# policies.
|
371
|
+
# Creates a *profile*, a list of the roles that Roles Anywhere service
|
372
|
+
# is trusted to assume. You use profiles to intersect permissions with
|
373
|
+
# IAM managed policies.
|
375
374
|
#
|
376
375
|
# <b>Required permissions: </b> `rolesanywhere:CreateProfile`.
|
377
376
|
#
|
@@ -389,20 +388,12 @@ module Aws::RolesAnywhere
|
|
389
388
|
# The name of the profile.
|
390
389
|
#
|
391
390
|
# @option params [Boolean] :require_instance_properties
|
392
|
-
# Specifies whether instance properties are required in
|
393
|
-
#
|
394
|
-
#
|
395
|
-
#
|
396
|
-
#
|
397
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
391
|
+
# Specifies whether instance properties are required in temporary
|
392
|
+
# credential requests with this profile.
|
398
393
|
#
|
399
394
|
# @option params [required, Array<String>] :role_arns
|
400
|
-
# A list of IAM roles that this profile can assume in a
|
401
|
-
#
|
402
|
-
#
|
403
|
-
#
|
404
|
-
#
|
405
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
395
|
+
# A list of IAM roles that this profile can assume in a temporary
|
396
|
+
# credential request.
|
406
397
|
#
|
407
398
|
# @option params [String] :session_policy
|
408
399
|
# A session policy that applies to the trust boundary of the vended
|
@@ -459,14 +450,12 @@ module Aws::RolesAnywhere
|
|
459
450
|
req.send_request(options)
|
460
451
|
end
|
461
452
|
|
462
|
-
# Creates a trust anchor
|
463
|
-
# and your certificate authority (CA)
|
464
|
-
#
|
465
|
-
#
|
466
|
-
#
|
467
|
-
#
|
468
|
-
# trusted Certificate Authority (CA) in exchange for temporary AWS
|
469
|
-
# credentials.
|
453
|
+
# Creates a trust anchor to establish trust between IAM Roles Anywhere
|
454
|
+
# and your certificate authority (CA). You can define a trust anchor as
|
455
|
+
# a reference to an Private Certificate Authority (Private CA) or by
|
456
|
+
# uploading a CA certificate. Your Amazon Web Services workloads can
|
457
|
+
# authenticate with the trust anchor using certificates issued by the CA
|
458
|
+
# in exchange for temporary Amazon Web Services credentials.
|
470
459
|
#
|
471
460
|
# <b>Required permissions: </b> `rolesanywhere:CreateTrustAnchor`.
|
472
461
|
#
|
@@ -476,6 +465,9 @@ module Aws::RolesAnywhere
|
|
476
465
|
# @option params [required, String] :name
|
477
466
|
# The name of the trust anchor.
|
478
467
|
#
|
468
|
+
# @option params [Array<Types::NotificationSetting>] :notification_settings
|
469
|
+
# A list of notification settings to be associated to the trust anchor.
|
470
|
+
#
|
479
471
|
# @option params [required, Types::Source] :source
|
480
472
|
# The trust anchor type and its related certificate data.
|
481
473
|
#
|
@@ -491,10 +483,18 @@ module Aws::RolesAnywhere
|
|
491
483
|
# resp = client.create_trust_anchor({
|
492
484
|
# enabled: false,
|
493
485
|
# name: "ResourceName", # required
|
486
|
+
# notification_settings: [
|
487
|
+
# {
|
488
|
+
# channel: "ALL", # accepts ALL
|
489
|
+
# enabled: false, # required
|
490
|
+
# event: "CA_CERTIFICATE_EXPIRY", # required, accepts CA_CERTIFICATE_EXPIRY, END_ENTITY_CERTIFICATE_EXPIRY
|
491
|
+
# threshold: 1,
|
492
|
+
# },
|
493
|
+
# ],
|
494
494
|
# source: { # required
|
495
495
|
# source_data: {
|
496
496
|
# acm_pca_arn: "String",
|
497
|
-
# x509_certificate_data: "
|
497
|
+
# x509_certificate_data: "SourceDataX509CertificateDataString",
|
498
498
|
# },
|
499
499
|
# source_type: "AWS_ACM_PCA", # accepts AWS_ACM_PCA, CERTIFICATE_BUNDLE, SELF_SIGNED_REPOSITORY
|
500
500
|
# },
|
@@ -511,6 +511,12 @@ module Aws::RolesAnywhere
|
|
511
511
|
# resp.trust_anchor.created_at #=> Time
|
512
512
|
# resp.trust_anchor.enabled #=> Boolean
|
513
513
|
# resp.trust_anchor.name #=> String
|
514
|
+
# resp.trust_anchor.notification_settings #=> Array
|
515
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
516
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
517
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
518
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
519
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
514
520
|
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
515
521
|
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
516
522
|
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
@@ -629,6 +635,12 @@ module Aws::RolesAnywhere
|
|
629
635
|
# resp.trust_anchor.created_at #=> Time
|
630
636
|
# resp.trust_anchor.enabled #=> Boolean
|
631
637
|
# resp.trust_anchor.name #=> String
|
638
|
+
# resp.trust_anchor.notification_settings #=> Array
|
639
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
640
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
641
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
642
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
643
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
632
644
|
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
633
645
|
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
634
646
|
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
@@ -682,15 +694,11 @@ module Aws::RolesAnywhere
|
|
682
694
|
req.send_request(options)
|
683
695
|
end
|
684
696
|
|
685
|
-
# Disables a profile. When disabled,
|
697
|
+
# Disables a profile. When disabled, temporary credential requests with
|
686
698
|
# this profile fail.
|
687
699
|
#
|
688
700
|
# <b>Required permissions: </b> `rolesanywhere:DisableProfile`.
|
689
701
|
#
|
690
|
-
#
|
691
|
-
#
|
692
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
693
|
-
#
|
694
702
|
# @option params [required, String] :profile_id
|
695
703
|
# The unique identifier of the profile.
|
696
704
|
#
|
@@ -730,15 +738,11 @@ module Aws::RolesAnywhere
|
|
730
738
|
req.send_request(options)
|
731
739
|
end
|
732
740
|
|
733
|
-
# Disables a trust anchor. When disabled,
|
741
|
+
# Disables a trust anchor. When disabled, temporary credential requests
|
734
742
|
# specifying this trust anchor are unauthorized.
|
735
743
|
#
|
736
744
|
# <b>Required permissions: </b> `rolesanywhere:DisableTrustAnchor`.
|
737
745
|
#
|
738
|
-
#
|
739
|
-
#
|
740
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
741
|
-
#
|
742
746
|
# @option params [required, String] :trust_anchor_id
|
743
747
|
# The unique identifier of the trust anchor.
|
744
748
|
#
|
@@ -757,6 +761,12 @@ module Aws::RolesAnywhere
|
|
757
761
|
# resp.trust_anchor.created_at #=> Time
|
758
762
|
# resp.trust_anchor.enabled #=> Boolean
|
759
763
|
# resp.trust_anchor.name #=> String
|
764
|
+
# resp.trust_anchor.notification_settings #=> Array
|
765
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
766
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
767
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
768
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
769
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
760
770
|
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
761
771
|
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
762
772
|
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
@@ -812,15 +822,10 @@ module Aws::RolesAnywhere
|
|
812
822
|
req.send_request(options)
|
813
823
|
end
|
814
824
|
|
815
|
-
# Enables
|
816
|
-
# [CreateSession][1].
|
825
|
+
# Enables temporary credential requests for a profile.
|
817
826
|
#
|
818
827
|
# <b>Required permissions: </b> `rolesanywhere:EnableProfile`.
|
819
828
|
#
|
820
|
-
#
|
821
|
-
#
|
822
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
823
|
-
#
|
824
829
|
# @option params [required, String] :profile_id
|
825
830
|
# The unique identifier of the profile.
|
826
831
|
#
|
@@ -883,6 +888,12 @@ module Aws::RolesAnywhere
|
|
883
888
|
# resp.trust_anchor.created_at #=> Time
|
884
889
|
# resp.trust_anchor.enabled #=> Boolean
|
885
890
|
# resp.trust_anchor.name #=> String
|
891
|
+
# resp.trust_anchor.notification_settings #=> Array
|
892
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
893
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
894
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
895
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
896
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
886
897
|
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
887
898
|
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
888
899
|
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
@@ -979,11 +990,11 @@ module Aws::RolesAnywhere
|
|
979
990
|
req.send_request(options)
|
980
991
|
end
|
981
992
|
|
982
|
-
# Gets a
|
983
|
-
# authentication attempts
|
984
|
-
#
|
985
|
-
#
|
986
|
-
#
|
993
|
+
# Gets a *subject*, which associates a certificate identity with
|
994
|
+
# authentication attempts. The subject stores auditing information such
|
995
|
+
# as the status of the last authentication attempt, the certificate data
|
996
|
+
# used in the attempt, and the last time the associated identity
|
997
|
+
# attempted authentication.
|
987
998
|
#
|
988
999
|
# <b>Required permissions: </b> `rolesanywhere:GetSubject`.
|
989
1000
|
#
|
@@ -1053,6 +1064,12 @@ module Aws::RolesAnywhere
|
|
1053
1064
|
# resp.trust_anchor.created_at #=> Time
|
1054
1065
|
# resp.trust_anchor.enabled #=> Boolean
|
1055
1066
|
# resp.trust_anchor.name #=> String
|
1067
|
+
# resp.trust_anchor.notification_settings #=> Array
|
1068
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
1069
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
1070
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
1071
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
1072
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
1056
1073
|
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
1057
1074
|
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
1058
1075
|
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
@@ -1069,15 +1086,15 @@ module Aws::RolesAnywhere
|
|
1069
1086
|
req.send_request(options)
|
1070
1087
|
end
|
1071
1088
|
|
1072
|
-
# Imports the certificate revocation list (CRL).
|
1089
|
+
# Imports the certificate revocation list (CRL). A CRL is a list of
|
1073
1090
|
# certificates that have been revoked by the issuing certificate
|
1074
|
-
# Authority (CA). IAM Roles Anywhere validates against the
|
1075
|
-
#
|
1091
|
+
# Authority (CA). IAM Roles Anywhere validates against the CRL before
|
1092
|
+
# issuing credentials.
|
1076
1093
|
#
|
1077
1094
|
# <b>Required permissions: </b> `rolesanywhere:ImportCrl`.
|
1078
1095
|
#
|
1079
1096
|
# @option params [required, String, StringIO, File] :crl_data
|
1080
|
-
# The x509 v3 specified certificate revocation list
|
1097
|
+
# The x509 v3 specified certificate revocation list (CRL).
|
1081
1098
|
#
|
1082
1099
|
# @option params [Boolean] :enabled
|
1083
1100
|
# Specifies whether the certificate revocation list (CRL) is enabled.
|
@@ -1131,15 +1148,15 @@ module Aws::RolesAnywhere
|
|
1131
1148
|
req.send_request(options)
|
1132
1149
|
end
|
1133
1150
|
|
1134
|
-
# Lists all
|
1135
|
-
# Region.
|
1151
|
+
# Lists all certificate revocation lists (CRL) in the authenticated
|
1152
|
+
# account and Amazon Web Services Region.
|
1136
1153
|
#
|
1137
1154
|
# <b>Required permissions: </b> `rolesanywhere:ListCrls`.
|
1138
1155
|
#
|
1139
1156
|
# @option params [String] :next_token
|
1140
1157
|
# A token that indicates where the output should continue from, if a
|
1141
|
-
# previous
|
1142
|
-
#
|
1158
|
+
# previous request did not show all results. To get the next results,
|
1159
|
+
# make the request again with this value.
|
1143
1160
|
#
|
1144
1161
|
# @option params [Integer] :page_size
|
1145
1162
|
# The number of resources in the paginated list.
|
@@ -1187,8 +1204,8 @@ module Aws::RolesAnywhere
|
|
1187
1204
|
#
|
1188
1205
|
# @option params [String] :next_token
|
1189
1206
|
# A token that indicates where the output should continue from, if a
|
1190
|
-
# previous
|
1191
|
-
#
|
1207
|
+
# previous request did not show all results. To get the next results,
|
1208
|
+
# make the request again with this value.
|
1192
1209
|
#
|
1193
1210
|
# @option params [Integer] :page_size
|
1194
1211
|
# The number of resources in the paginated list.
|
@@ -1242,8 +1259,8 @@ module Aws::RolesAnywhere
|
|
1242
1259
|
#
|
1243
1260
|
# @option params [String] :next_token
|
1244
1261
|
# A token that indicates where the output should continue from, if a
|
1245
|
-
# previous
|
1246
|
-
#
|
1262
|
+
# previous request did not show all results. To get the next results,
|
1263
|
+
# make the request again with this value.
|
1247
1264
|
#
|
1248
1265
|
# @option params [Integer] :page_size
|
1249
1266
|
# The number of resources in the paginated list.
|
@@ -1322,8 +1339,8 @@ module Aws::RolesAnywhere
|
|
1322
1339
|
#
|
1323
1340
|
# @option params [String] :next_token
|
1324
1341
|
# A token that indicates where the output should continue from, if a
|
1325
|
-
# previous
|
1326
|
-
#
|
1342
|
+
# previous request did not show all results. To get the next results,
|
1343
|
+
# make the request again with this value.
|
1327
1344
|
#
|
1328
1345
|
# @option params [Integer] :page_size
|
1329
1346
|
# The number of resources in the paginated list.
|
@@ -1349,6 +1366,12 @@ module Aws::RolesAnywhere
|
|
1349
1366
|
# resp.trust_anchors[0].created_at #=> Time
|
1350
1367
|
# resp.trust_anchors[0].enabled #=> Boolean
|
1351
1368
|
# resp.trust_anchors[0].name #=> String
|
1369
|
+
# resp.trust_anchors[0].notification_settings #=> Array
|
1370
|
+
# resp.trust_anchors[0].notification_settings[0].channel #=> String, one of "ALL"
|
1371
|
+
# resp.trust_anchors[0].notification_settings[0].configured_by #=> String
|
1372
|
+
# resp.trust_anchors[0].notification_settings[0].enabled #=> Boolean
|
1373
|
+
# resp.trust_anchors[0].notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
1374
|
+
# resp.trust_anchors[0].notification_settings[0].threshold #=> Integer
|
1352
1375
|
# resp.trust_anchors[0].source.source_data.acm_pca_arn #=> String
|
1353
1376
|
# resp.trust_anchors[0].source.source_data.x509_certificate_data #=> String
|
1354
1377
|
# resp.trust_anchors[0].source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
@@ -1365,6 +1388,121 @@ module Aws::RolesAnywhere
|
|
1365
1388
|
req.send_request(options)
|
1366
1389
|
end
|
1367
1390
|
|
1391
|
+
# Attaches a list of *notification settings* to a trust anchor.
|
1392
|
+
#
|
1393
|
+
# A notification setting includes information such as event name,
|
1394
|
+
# threshold, status of the notification setting, and the channel to
|
1395
|
+
# notify.
|
1396
|
+
#
|
1397
|
+
# <b>Required permissions: </b> `rolesanywhere:PutNotificationSettings`.
|
1398
|
+
#
|
1399
|
+
# @option params [required, Array<Types::NotificationSetting>] :notification_settings
|
1400
|
+
# A list of notification settings to be associated to the trust anchor.
|
1401
|
+
#
|
1402
|
+
# @option params [required, String] :trust_anchor_id
|
1403
|
+
# The unique identifier of the trust anchor.
|
1404
|
+
#
|
1405
|
+
# @return [Types::PutNotificationSettingsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
1406
|
+
#
|
1407
|
+
# * {Types::PutNotificationSettingsResponse#trust_anchor #trust_anchor} => Types::TrustAnchorDetail
|
1408
|
+
#
|
1409
|
+
# @example Request syntax with placeholder values
|
1410
|
+
#
|
1411
|
+
# resp = client.put_notification_settings({
|
1412
|
+
# notification_settings: [ # required
|
1413
|
+
# {
|
1414
|
+
# channel: "ALL", # accepts ALL
|
1415
|
+
# enabled: false, # required
|
1416
|
+
# event: "CA_CERTIFICATE_EXPIRY", # required, accepts CA_CERTIFICATE_EXPIRY, END_ENTITY_CERTIFICATE_EXPIRY
|
1417
|
+
# threshold: 1,
|
1418
|
+
# },
|
1419
|
+
# ],
|
1420
|
+
# trust_anchor_id: "Uuid", # required
|
1421
|
+
# })
|
1422
|
+
#
|
1423
|
+
# @example Response structure
|
1424
|
+
#
|
1425
|
+
# resp.trust_anchor.created_at #=> Time
|
1426
|
+
# resp.trust_anchor.enabled #=> Boolean
|
1427
|
+
# resp.trust_anchor.name #=> String
|
1428
|
+
# resp.trust_anchor.notification_settings #=> Array
|
1429
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
1430
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
1431
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
1432
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
1433
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
1434
|
+
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
1435
|
+
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
1436
|
+
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
1437
|
+
# resp.trust_anchor.trust_anchor_arn #=> String
|
1438
|
+
# resp.trust_anchor.trust_anchor_id #=> String
|
1439
|
+
# resp.trust_anchor.updated_at #=> Time
|
1440
|
+
#
|
1441
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/rolesanywhere-2018-05-10/PutNotificationSettings AWS API Documentation
|
1442
|
+
#
|
1443
|
+
# @overload put_notification_settings(params = {})
|
1444
|
+
# @param [Hash] params ({})
|
1445
|
+
def put_notification_settings(params = {}, options = {})
|
1446
|
+
req = build_request(:put_notification_settings, params)
|
1447
|
+
req.send_request(options)
|
1448
|
+
end
|
1449
|
+
|
1450
|
+
# Resets the *custom notification setting* to IAM Roles Anywhere default
|
1451
|
+
# setting.
|
1452
|
+
#
|
1453
|
+
# <b>Required permissions: </b>
|
1454
|
+
# `rolesanywhere:ResetNotificationSettings`.
|
1455
|
+
#
|
1456
|
+
# @option params [required, Array<Types::NotificationSettingKey>] :notification_setting_keys
|
1457
|
+
# A list of notification setting keys to reset. A notification setting
|
1458
|
+
# key includes the event and the channel.
|
1459
|
+
#
|
1460
|
+
# @option params [required, String] :trust_anchor_id
|
1461
|
+
# The unique identifier of the trust anchor.
|
1462
|
+
#
|
1463
|
+
# @return [Types::ResetNotificationSettingsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
1464
|
+
#
|
1465
|
+
# * {Types::ResetNotificationSettingsResponse#trust_anchor #trust_anchor} => Types::TrustAnchorDetail
|
1466
|
+
#
|
1467
|
+
# @example Request syntax with placeholder values
|
1468
|
+
#
|
1469
|
+
# resp = client.reset_notification_settings({
|
1470
|
+
# notification_setting_keys: [ # required
|
1471
|
+
# {
|
1472
|
+
# channel: "ALL", # accepts ALL
|
1473
|
+
# event: "CA_CERTIFICATE_EXPIRY", # required, accepts CA_CERTIFICATE_EXPIRY, END_ENTITY_CERTIFICATE_EXPIRY
|
1474
|
+
# },
|
1475
|
+
# ],
|
1476
|
+
# trust_anchor_id: "Uuid", # required
|
1477
|
+
# })
|
1478
|
+
#
|
1479
|
+
# @example Response structure
|
1480
|
+
#
|
1481
|
+
# resp.trust_anchor.created_at #=> Time
|
1482
|
+
# resp.trust_anchor.enabled #=> Boolean
|
1483
|
+
# resp.trust_anchor.name #=> String
|
1484
|
+
# resp.trust_anchor.notification_settings #=> Array
|
1485
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
1486
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
1487
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
1488
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
1489
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
1490
|
+
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
1491
|
+
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
1492
|
+
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
1493
|
+
# resp.trust_anchor.trust_anchor_arn #=> String
|
1494
|
+
# resp.trust_anchor.trust_anchor_id #=> String
|
1495
|
+
# resp.trust_anchor.updated_at #=> Time
|
1496
|
+
#
|
1497
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/rolesanywhere-2018-05-10/ResetNotificationSettings AWS API Documentation
|
1498
|
+
#
|
1499
|
+
# @overload reset_notification_settings(params = {})
|
1500
|
+
# @param [Hash] params ({})
|
1501
|
+
def reset_notification_settings(params = {}, options = {})
|
1502
|
+
req = build_request(:reset_notification_settings, params)
|
1503
|
+
req.send_request(options)
|
1504
|
+
end
|
1505
|
+
|
1368
1506
|
# Attaches tags to a resource.
|
1369
1507
|
#
|
1370
1508
|
# <b>Required permissions: </b> `rolesanywhere:TagResource`.
|
@@ -1426,15 +1564,15 @@ module Aws::RolesAnywhere
|
|
1426
1564
|
req.send_request(options)
|
1427
1565
|
end
|
1428
1566
|
|
1429
|
-
# Updates the certificate revocation list (CRL).
|
1567
|
+
# Updates the certificate revocation list (CRL). A CRL is a list of
|
1430
1568
|
# certificates that have been revoked by the issuing certificate
|
1431
|
-
#
|
1432
|
-
#
|
1569
|
+
# authority (CA). IAM Roles Anywhere validates against the CRL before
|
1570
|
+
# issuing credentials.
|
1433
1571
|
#
|
1434
1572
|
# <b>Required permissions: </b> `rolesanywhere:UpdateCrl`.
|
1435
1573
|
#
|
1436
1574
|
# @option params [String, StringIO, File] :crl_data
|
1437
|
-
# The x509 v3 specified certificate revocation list
|
1575
|
+
# The x509 v3 specified certificate revocation list (CRL).
|
1438
1576
|
#
|
1439
1577
|
# @option params [required, String] :crl_id
|
1440
1578
|
# The unique identifier of the certificate revocation list (CRL).
|
@@ -1474,10 +1612,9 @@ module Aws::RolesAnywhere
|
|
1474
1612
|
req.send_request(options)
|
1475
1613
|
end
|
1476
1614
|
|
1477
|
-
# Updates
|
1478
|
-
#
|
1479
|
-
#
|
1480
|
-
# policies.
|
1615
|
+
# Updates a *profile*, a list of the roles that IAM Roles Anywhere
|
1616
|
+
# service is trusted to assume. You use profiles to intersect
|
1617
|
+
# permissions with IAM managed policies.
|
1481
1618
|
#
|
1482
1619
|
# <b>Required permissions: </b> `rolesanywhere:UpdateProfile`.
|
1483
1620
|
#
|
@@ -1495,12 +1632,8 @@ module Aws::RolesAnywhere
|
|
1495
1632
|
# The unique identifier of the profile.
|
1496
1633
|
#
|
1497
1634
|
# @option params [Array<String>] :role_arns
|
1498
|
-
# A list of IAM roles that this profile can assume in a
|
1499
|
-
#
|
1500
|
-
#
|
1501
|
-
#
|
1502
|
-
#
|
1503
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
1635
|
+
# A list of IAM roles that this profile can assume in a temporary
|
1636
|
+
# credential request.
|
1504
1637
|
#
|
1505
1638
|
# @option params [String] :session_policy
|
1506
1639
|
# A session policy that applies to the trust boundary of the vended
|
@@ -1547,14 +1680,13 @@ module Aws::RolesAnywhere
|
|
1547
1680
|
req.send_request(options)
|
1548
1681
|
end
|
1549
1682
|
|
1550
|
-
# Updates
|
1551
|
-
#
|
1552
|
-
#
|
1553
|
-
#
|
1554
|
-
#
|
1555
|
-
#
|
1556
|
-
#
|
1557
|
-
# credentials.
|
1683
|
+
# Updates a trust anchor. You establish trust between IAM Roles Anywhere
|
1684
|
+
# and your certificate authority (CA) by configuring a trust anchor. You
|
1685
|
+
# can define a trust anchor as a reference to an Private Certificate
|
1686
|
+
# Authority (Private CA) or by uploading a CA certificate. Your Amazon
|
1687
|
+
# Web Services workloads can authenticate with the trust anchor using
|
1688
|
+
# certificates issued by the CA in exchange for temporary Amazon Web
|
1689
|
+
# Services credentials.
|
1558
1690
|
#
|
1559
1691
|
# <b>Required permissions: </b> `rolesanywhere:UpdateTrustAnchor`.
|
1560
1692
|
#
|
@@ -1578,7 +1710,7 @@ module Aws::RolesAnywhere
|
|
1578
1710
|
# source: {
|
1579
1711
|
# source_data: {
|
1580
1712
|
# acm_pca_arn: "String",
|
1581
|
-
# x509_certificate_data: "
|
1713
|
+
# x509_certificate_data: "SourceDataX509CertificateDataString",
|
1582
1714
|
# },
|
1583
1715
|
# source_type: "AWS_ACM_PCA", # accepts AWS_ACM_PCA, CERTIFICATE_BUNDLE, SELF_SIGNED_REPOSITORY
|
1584
1716
|
# },
|
@@ -1590,6 +1722,12 @@ module Aws::RolesAnywhere
|
|
1590
1722
|
# resp.trust_anchor.created_at #=> Time
|
1591
1723
|
# resp.trust_anchor.enabled #=> Boolean
|
1592
1724
|
# resp.trust_anchor.name #=> String
|
1725
|
+
# resp.trust_anchor.notification_settings #=> Array
|
1726
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
1727
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
1728
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
1729
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
1730
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
1593
1731
|
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
1594
1732
|
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
1595
1733
|
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
@@ -1619,7 +1757,7 @@ module Aws::RolesAnywhere
|
|
1619
1757
|
params: params,
|
1620
1758
|
config: config)
|
1621
1759
|
context[:gem_name] = 'aws-sdk-rolesanywhere'
|
1622
|
-
context[:gem_version] = '1.
|
1760
|
+
context[:gem_version] = '1.3.0'
|
1623
1761
|
Seahorse::Client::Request.new(handlers, context)
|
1624
1762
|
end
|
1625
1763
|
|