aws-sdk-rolesanywhere 1.2.0 → 1.3.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-rolesanywhere/client.rb +222 -84
- data/lib/aws-sdk-rolesanywhere/client_api.rb +78 -1
- data/lib/aws-sdk-rolesanywhere/endpoint_provider.rb +27 -24
- data/lib/aws-sdk-rolesanywhere/endpoints.rb +28 -0
- data/lib/aws-sdk-rolesanywhere/plugins/endpoints.rb +4 -0
- data/lib/aws-sdk-rolesanywhere/types.rb +217 -90
- data/lib/aws-sdk-rolesanywhere.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b6b5ec07044d62d0cea7db2734e163429a7948f6864a374e1ae7df957c0a942d
|
|
4
|
+
data.tar.gz: 4c81452a2f2e804a5ce7d2e59725f9e6b61cda6c86377bd243fce04657b0133c
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 7aa625a2156e3a938fdc2ee4b84fd1d54b072c9436b57b5e4550317e585dd790865d2c1afd4e89906302fdfbdb5efae3de01c3390e24ae5aa53d5c137e05d39c
|
|
7
|
+
data.tar.gz: f3e81287e28ddc89ea13b62e7c98acdcb122137b20d6d097cf1fd944c249d4f2bf26e169c4c4e85d747cfe3ebbb0793a44bec966c5299ca3da7637c938e5f68c
|
data/CHANGELOG.md
CHANGED
|
@@ -1,6 +1,11 @@
|
|
|
1
1
|
Unreleased Changes
|
|
2
2
|
------------------
|
|
3
3
|
|
|
4
|
+
1.3.0 (2023-05-15)
|
|
5
|
+
------------------
|
|
6
|
+
|
|
7
|
+
* Feature - Adds support for custom notification settings in a trust anchor. Introduces PutNotificationSettings and ResetNotificationSettings API's. Updates DurationSeconds max value to 3600.
|
|
8
|
+
|
|
4
9
|
1.2.0 (2023-01-18)
|
|
5
10
|
------------------
|
|
6
11
|
|
data/VERSION
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
1.
|
|
1
|
+
1.3.0
|
|
@@ -368,10 +368,9 @@ module Aws::RolesAnywhere
|
|
|
368
368
|
|
|
369
369
|
# @!group API Operations
|
|
370
370
|
|
|
371
|
-
# Creates a profile
|
|
372
|
-
#
|
|
373
|
-
#
|
|
374
|
-
# policies.
|
|
371
|
+
# Creates a *profile*, a list of the roles that Roles Anywhere service
|
|
372
|
+
# is trusted to assume. You use profiles to intersect permissions with
|
|
373
|
+
# IAM managed policies.
|
|
375
374
|
#
|
|
376
375
|
# <b>Required permissions: </b> `rolesanywhere:CreateProfile`.
|
|
377
376
|
#
|
|
@@ -389,20 +388,12 @@ module Aws::RolesAnywhere
|
|
|
389
388
|
# The name of the profile.
|
|
390
389
|
#
|
|
391
390
|
# @option params [Boolean] :require_instance_properties
|
|
392
|
-
# Specifies whether instance properties are required in
|
|
393
|
-
#
|
|
394
|
-
#
|
|
395
|
-
#
|
|
396
|
-
#
|
|
397
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
391
|
+
# Specifies whether instance properties are required in temporary
|
|
392
|
+
# credential requests with this profile.
|
|
398
393
|
#
|
|
399
394
|
# @option params [required, Array<String>] :role_arns
|
|
400
|
-
# A list of IAM roles that this profile can assume in a
|
|
401
|
-
#
|
|
402
|
-
#
|
|
403
|
-
#
|
|
404
|
-
#
|
|
405
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
395
|
+
# A list of IAM roles that this profile can assume in a temporary
|
|
396
|
+
# credential request.
|
|
406
397
|
#
|
|
407
398
|
# @option params [String] :session_policy
|
|
408
399
|
# A session policy that applies to the trust boundary of the vended
|
|
@@ -459,14 +450,12 @@ module Aws::RolesAnywhere
|
|
|
459
450
|
req.send_request(options)
|
|
460
451
|
end
|
|
461
452
|
|
|
462
|
-
# Creates a trust anchor
|
|
463
|
-
# and your certificate authority (CA)
|
|
464
|
-
#
|
|
465
|
-
#
|
|
466
|
-
#
|
|
467
|
-
#
|
|
468
|
-
# trusted Certificate Authority (CA) in exchange for temporary AWS
|
|
469
|
-
# credentials.
|
|
453
|
+
# Creates a trust anchor to establish trust between IAM Roles Anywhere
|
|
454
|
+
# and your certificate authority (CA). You can define a trust anchor as
|
|
455
|
+
# a reference to an Private Certificate Authority (Private CA) or by
|
|
456
|
+
# uploading a CA certificate. Your Amazon Web Services workloads can
|
|
457
|
+
# authenticate with the trust anchor using certificates issued by the CA
|
|
458
|
+
# in exchange for temporary Amazon Web Services credentials.
|
|
470
459
|
#
|
|
471
460
|
# <b>Required permissions: </b> `rolesanywhere:CreateTrustAnchor`.
|
|
472
461
|
#
|
|
@@ -476,6 +465,9 @@ module Aws::RolesAnywhere
|
|
|
476
465
|
# @option params [required, String] :name
|
|
477
466
|
# The name of the trust anchor.
|
|
478
467
|
#
|
|
468
|
+
# @option params [Array<Types::NotificationSetting>] :notification_settings
|
|
469
|
+
# A list of notification settings to be associated to the trust anchor.
|
|
470
|
+
#
|
|
479
471
|
# @option params [required, Types::Source] :source
|
|
480
472
|
# The trust anchor type and its related certificate data.
|
|
481
473
|
#
|
|
@@ -491,10 +483,18 @@ module Aws::RolesAnywhere
|
|
|
491
483
|
# resp = client.create_trust_anchor({
|
|
492
484
|
# enabled: false,
|
|
493
485
|
# name: "ResourceName", # required
|
|
486
|
+
# notification_settings: [
|
|
487
|
+
# {
|
|
488
|
+
# channel: "ALL", # accepts ALL
|
|
489
|
+
# enabled: false, # required
|
|
490
|
+
# event: "CA_CERTIFICATE_EXPIRY", # required, accepts CA_CERTIFICATE_EXPIRY, END_ENTITY_CERTIFICATE_EXPIRY
|
|
491
|
+
# threshold: 1,
|
|
492
|
+
# },
|
|
493
|
+
# ],
|
|
494
494
|
# source: { # required
|
|
495
495
|
# source_data: {
|
|
496
496
|
# acm_pca_arn: "String",
|
|
497
|
-
# x509_certificate_data: "
|
|
497
|
+
# x509_certificate_data: "SourceDataX509CertificateDataString",
|
|
498
498
|
# },
|
|
499
499
|
# source_type: "AWS_ACM_PCA", # accepts AWS_ACM_PCA, CERTIFICATE_BUNDLE, SELF_SIGNED_REPOSITORY
|
|
500
500
|
# },
|
|
@@ -511,6 +511,12 @@ module Aws::RolesAnywhere
|
|
|
511
511
|
# resp.trust_anchor.created_at #=> Time
|
|
512
512
|
# resp.trust_anchor.enabled #=> Boolean
|
|
513
513
|
# resp.trust_anchor.name #=> String
|
|
514
|
+
# resp.trust_anchor.notification_settings #=> Array
|
|
515
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
|
516
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
|
517
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
|
518
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
|
519
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
|
514
520
|
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
|
515
521
|
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
|
516
522
|
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
|
@@ -629,6 +635,12 @@ module Aws::RolesAnywhere
|
|
|
629
635
|
# resp.trust_anchor.created_at #=> Time
|
|
630
636
|
# resp.trust_anchor.enabled #=> Boolean
|
|
631
637
|
# resp.trust_anchor.name #=> String
|
|
638
|
+
# resp.trust_anchor.notification_settings #=> Array
|
|
639
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
|
640
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
|
641
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
|
642
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
|
643
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
|
632
644
|
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
|
633
645
|
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
|
634
646
|
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
|
@@ -682,15 +694,11 @@ module Aws::RolesAnywhere
|
|
|
682
694
|
req.send_request(options)
|
|
683
695
|
end
|
|
684
696
|
|
|
685
|
-
# Disables a profile. When disabled,
|
|
697
|
+
# Disables a profile. When disabled, temporary credential requests with
|
|
686
698
|
# this profile fail.
|
|
687
699
|
#
|
|
688
700
|
# <b>Required permissions: </b> `rolesanywhere:DisableProfile`.
|
|
689
701
|
#
|
|
690
|
-
#
|
|
691
|
-
#
|
|
692
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
693
|
-
#
|
|
694
702
|
# @option params [required, String] :profile_id
|
|
695
703
|
# The unique identifier of the profile.
|
|
696
704
|
#
|
|
@@ -730,15 +738,11 @@ module Aws::RolesAnywhere
|
|
|
730
738
|
req.send_request(options)
|
|
731
739
|
end
|
|
732
740
|
|
|
733
|
-
# Disables a trust anchor. When disabled,
|
|
741
|
+
# Disables a trust anchor. When disabled, temporary credential requests
|
|
734
742
|
# specifying this trust anchor are unauthorized.
|
|
735
743
|
#
|
|
736
744
|
# <b>Required permissions: </b> `rolesanywhere:DisableTrustAnchor`.
|
|
737
745
|
#
|
|
738
|
-
#
|
|
739
|
-
#
|
|
740
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
741
|
-
#
|
|
742
746
|
# @option params [required, String] :trust_anchor_id
|
|
743
747
|
# The unique identifier of the trust anchor.
|
|
744
748
|
#
|
|
@@ -757,6 +761,12 @@ module Aws::RolesAnywhere
|
|
|
757
761
|
# resp.trust_anchor.created_at #=> Time
|
|
758
762
|
# resp.trust_anchor.enabled #=> Boolean
|
|
759
763
|
# resp.trust_anchor.name #=> String
|
|
764
|
+
# resp.trust_anchor.notification_settings #=> Array
|
|
765
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
|
766
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
|
767
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
|
768
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
|
769
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
|
760
770
|
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
|
761
771
|
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
|
762
772
|
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
|
@@ -812,15 +822,10 @@ module Aws::RolesAnywhere
|
|
|
812
822
|
req.send_request(options)
|
|
813
823
|
end
|
|
814
824
|
|
|
815
|
-
# Enables
|
|
816
|
-
# [CreateSession][1].
|
|
825
|
+
# Enables temporary credential requests for a profile.
|
|
817
826
|
#
|
|
818
827
|
# <b>Required permissions: </b> `rolesanywhere:EnableProfile`.
|
|
819
828
|
#
|
|
820
|
-
#
|
|
821
|
-
#
|
|
822
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
823
|
-
#
|
|
824
829
|
# @option params [required, String] :profile_id
|
|
825
830
|
# The unique identifier of the profile.
|
|
826
831
|
#
|
|
@@ -883,6 +888,12 @@ module Aws::RolesAnywhere
|
|
|
883
888
|
# resp.trust_anchor.created_at #=> Time
|
|
884
889
|
# resp.trust_anchor.enabled #=> Boolean
|
|
885
890
|
# resp.trust_anchor.name #=> String
|
|
891
|
+
# resp.trust_anchor.notification_settings #=> Array
|
|
892
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
|
893
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
|
894
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
|
895
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
|
896
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
|
886
897
|
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
|
887
898
|
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
|
888
899
|
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
|
@@ -979,11 +990,11 @@ module Aws::RolesAnywhere
|
|
|
979
990
|
req.send_request(options)
|
|
980
991
|
end
|
|
981
992
|
|
|
982
|
-
# Gets a
|
|
983
|
-
# authentication attempts
|
|
984
|
-
#
|
|
985
|
-
#
|
|
986
|
-
#
|
|
993
|
+
# Gets a *subject*, which associates a certificate identity with
|
|
994
|
+
# authentication attempts. The subject stores auditing information such
|
|
995
|
+
# as the status of the last authentication attempt, the certificate data
|
|
996
|
+
# used in the attempt, and the last time the associated identity
|
|
997
|
+
# attempted authentication.
|
|
987
998
|
#
|
|
988
999
|
# <b>Required permissions: </b> `rolesanywhere:GetSubject`.
|
|
989
1000
|
#
|
|
@@ -1053,6 +1064,12 @@ module Aws::RolesAnywhere
|
|
|
1053
1064
|
# resp.trust_anchor.created_at #=> Time
|
|
1054
1065
|
# resp.trust_anchor.enabled #=> Boolean
|
|
1055
1066
|
# resp.trust_anchor.name #=> String
|
|
1067
|
+
# resp.trust_anchor.notification_settings #=> Array
|
|
1068
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
|
1069
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
|
1070
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
|
1071
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
|
1072
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
|
1056
1073
|
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
|
1057
1074
|
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
|
1058
1075
|
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
|
@@ -1069,15 +1086,15 @@ module Aws::RolesAnywhere
|
|
|
1069
1086
|
req.send_request(options)
|
|
1070
1087
|
end
|
|
1071
1088
|
|
|
1072
|
-
# Imports the certificate revocation list (CRL).
|
|
1089
|
+
# Imports the certificate revocation list (CRL). A CRL is a list of
|
|
1073
1090
|
# certificates that have been revoked by the issuing certificate
|
|
1074
|
-
# Authority (CA). IAM Roles Anywhere validates against the
|
|
1075
|
-
#
|
|
1091
|
+
# Authority (CA). IAM Roles Anywhere validates against the CRL before
|
|
1092
|
+
# issuing credentials.
|
|
1076
1093
|
#
|
|
1077
1094
|
# <b>Required permissions: </b> `rolesanywhere:ImportCrl`.
|
|
1078
1095
|
#
|
|
1079
1096
|
# @option params [required, String, StringIO, File] :crl_data
|
|
1080
|
-
# The x509 v3 specified certificate revocation list
|
|
1097
|
+
# The x509 v3 specified certificate revocation list (CRL).
|
|
1081
1098
|
#
|
|
1082
1099
|
# @option params [Boolean] :enabled
|
|
1083
1100
|
# Specifies whether the certificate revocation list (CRL) is enabled.
|
|
@@ -1131,15 +1148,15 @@ module Aws::RolesAnywhere
|
|
|
1131
1148
|
req.send_request(options)
|
|
1132
1149
|
end
|
|
1133
1150
|
|
|
1134
|
-
# Lists all
|
|
1135
|
-
# Region.
|
|
1151
|
+
# Lists all certificate revocation lists (CRL) in the authenticated
|
|
1152
|
+
# account and Amazon Web Services Region.
|
|
1136
1153
|
#
|
|
1137
1154
|
# <b>Required permissions: </b> `rolesanywhere:ListCrls`.
|
|
1138
1155
|
#
|
|
1139
1156
|
# @option params [String] :next_token
|
|
1140
1157
|
# A token that indicates where the output should continue from, if a
|
|
1141
|
-
# previous
|
|
1142
|
-
#
|
|
1158
|
+
# previous request did not show all results. To get the next results,
|
|
1159
|
+
# make the request again with this value.
|
|
1143
1160
|
#
|
|
1144
1161
|
# @option params [Integer] :page_size
|
|
1145
1162
|
# The number of resources in the paginated list.
|
|
@@ -1187,8 +1204,8 @@ module Aws::RolesAnywhere
|
|
|
1187
1204
|
#
|
|
1188
1205
|
# @option params [String] :next_token
|
|
1189
1206
|
# A token that indicates where the output should continue from, if a
|
|
1190
|
-
# previous
|
|
1191
|
-
#
|
|
1207
|
+
# previous request did not show all results. To get the next results,
|
|
1208
|
+
# make the request again with this value.
|
|
1192
1209
|
#
|
|
1193
1210
|
# @option params [Integer] :page_size
|
|
1194
1211
|
# The number of resources in the paginated list.
|
|
@@ -1242,8 +1259,8 @@ module Aws::RolesAnywhere
|
|
|
1242
1259
|
#
|
|
1243
1260
|
# @option params [String] :next_token
|
|
1244
1261
|
# A token that indicates where the output should continue from, if a
|
|
1245
|
-
# previous
|
|
1246
|
-
#
|
|
1262
|
+
# previous request did not show all results. To get the next results,
|
|
1263
|
+
# make the request again with this value.
|
|
1247
1264
|
#
|
|
1248
1265
|
# @option params [Integer] :page_size
|
|
1249
1266
|
# The number of resources in the paginated list.
|
|
@@ -1322,8 +1339,8 @@ module Aws::RolesAnywhere
|
|
|
1322
1339
|
#
|
|
1323
1340
|
# @option params [String] :next_token
|
|
1324
1341
|
# A token that indicates where the output should continue from, if a
|
|
1325
|
-
# previous
|
|
1326
|
-
#
|
|
1342
|
+
# previous request did not show all results. To get the next results,
|
|
1343
|
+
# make the request again with this value.
|
|
1327
1344
|
#
|
|
1328
1345
|
# @option params [Integer] :page_size
|
|
1329
1346
|
# The number of resources in the paginated list.
|
|
@@ -1349,6 +1366,12 @@ module Aws::RolesAnywhere
|
|
|
1349
1366
|
# resp.trust_anchors[0].created_at #=> Time
|
|
1350
1367
|
# resp.trust_anchors[0].enabled #=> Boolean
|
|
1351
1368
|
# resp.trust_anchors[0].name #=> String
|
|
1369
|
+
# resp.trust_anchors[0].notification_settings #=> Array
|
|
1370
|
+
# resp.trust_anchors[0].notification_settings[0].channel #=> String, one of "ALL"
|
|
1371
|
+
# resp.trust_anchors[0].notification_settings[0].configured_by #=> String
|
|
1372
|
+
# resp.trust_anchors[0].notification_settings[0].enabled #=> Boolean
|
|
1373
|
+
# resp.trust_anchors[0].notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
|
1374
|
+
# resp.trust_anchors[0].notification_settings[0].threshold #=> Integer
|
|
1352
1375
|
# resp.trust_anchors[0].source.source_data.acm_pca_arn #=> String
|
|
1353
1376
|
# resp.trust_anchors[0].source.source_data.x509_certificate_data #=> String
|
|
1354
1377
|
# resp.trust_anchors[0].source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
|
@@ -1365,6 +1388,121 @@ module Aws::RolesAnywhere
|
|
|
1365
1388
|
req.send_request(options)
|
|
1366
1389
|
end
|
|
1367
1390
|
|
|
1391
|
+
# Attaches a list of *notification settings* to a trust anchor.
|
|
1392
|
+
#
|
|
1393
|
+
# A notification setting includes information such as event name,
|
|
1394
|
+
# threshold, status of the notification setting, and the channel to
|
|
1395
|
+
# notify.
|
|
1396
|
+
#
|
|
1397
|
+
# <b>Required permissions: </b> `rolesanywhere:PutNotificationSettings`.
|
|
1398
|
+
#
|
|
1399
|
+
# @option params [required, Array<Types::NotificationSetting>] :notification_settings
|
|
1400
|
+
# A list of notification settings to be associated to the trust anchor.
|
|
1401
|
+
#
|
|
1402
|
+
# @option params [required, String] :trust_anchor_id
|
|
1403
|
+
# The unique identifier of the trust anchor.
|
|
1404
|
+
#
|
|
1405
|
+
# @return [Types::PutNotificationSettingsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
|
1406
|
+
#
|
|
1407
|
+
# * {Types::PutNotificationSettingsResponse#trust_anchor #trust_anchor} => Types::TrustAnchorDetail
|
|
1408
|
+
#
|
|
1409
|
+
# @example Request syntax with placeholder values
|
|
1410
|
+
#
|
|
1411
|
+
# resp = client.put_notification_settings({
|
|
1412
|
+
# notification_settings: [ # required
|
|
1413
|
+
# {
|
|
1414
|
+
# channel: "ALL", # accepts ALL
|
|
1415
|
+
# enabled: false, # required
|
|
1416
|
+
# event: "CA_CERTIFICATE_EXPIRY", # required, accepts CA_CERTIFICATE_EXPIRY, END_ENTITY_CERTIFICATE_EXPIRY
|
|
1417
|
+
# threshold: 1,
|
|
1418
|
+
# },
|
|
1419
|
+
# ],
|
|
1420
|
+
# trust_anchor_id: "Uuid", # required
|
|
1421
|
+
# })
|
|
1422
|
+
#
|
|
1423
|
+
# @example Response structure
|
|
1424
|
+
#
|
|
1425
|
+
# resp.trust_anchor.created_at #=> Time
|
|
1426
|
+
# resp.trust_anchor.enabled #=> Boolean
|
|
1427
|
+
# resp.trust_anchor.name #=> String
|
|
1428
|
+
# resp.trust_anchor.notification_settings #=> Array
|
|
1429
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
|
1430
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
|
1431
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
|
1432
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
|
1433
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
|
1434
|
+
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
|
1435
|
+
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
|
1436
|
+
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
|
1437
|
+
# resp.trust_anchor.trust_anchor_arn #=> String
|
|
1438
|
+
# resp.trust_anchor.trust_anchor_id #=> String
|
|
1439
|
+
# resp.trust_anchor.updated_at #=> Time
|
|
1440
|
+
#
|
|
1441
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/rolesanywhere-2018-05-10/PutNotificationSettings AWS API Documentation
|
|
1442
|
+
#
|
|
1443
|
+
# @overload put_notification_settings(params = {})
|
|
1444
|
+
# @param [Hash] params ({})
|
|
1445
|
+
def put_notification_settings(params = {}, options = {})
|
|
1446
|
+
req = build_request(:put_notification_settings, params)
|
|
1447
|
+
req.send_request(options)
|
|
1448
|
+
end
|
|
1449
|
+
|
|
1450
|
+
# Resets the *custom notification setting* to IAM Roles Anywhere default
|
|
1451
|
+
# setting.
|
|
1452
|
+
#
|
|
1453
|
+
# <b>Required permissions: </b>
|
|
1454
|
+
# `rolesanywhere:ResetNotificationSettings`.
|
|
1455
|
+
#
|
|
1456
|
+
# @option params [required, Array<Types::NotificationSettingKey>] :notification_setting_keys
|
|
1457
|
+
# A list of notification setting keys to reset. A notification setting
|
|
1458
|
+
# key includes the event and the channel.
|
|
1459
|
+
#
|
|
1460
|
+
# @option params [required, String] :trust_anchor_id
|
|
1461
|
+
# The unique identifier of the trust anchor.
|
|
1462
|
+
#
|
|
1463
|
+
# @return [Types::ResetNotificationSettingsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
|
1464
|
+
#
|
|
1465
|
+
# * {Types::ResetNotificationSettingsResponse#trust_anchor #trust_anchor} => Types::TrustAnchorDetail
|
|
1466
|
+
#
|
|
1467
|
+
# @example Request syntax with placeholder values
|
|
1468
|
+
#
|
|
1469
|
+
# resp = client.reset_notification_settings({
|
|
1470
|
+
# notification_setting_keys: [ # required
|
|
1471
|
+
# {
|
|
1472
|
+
# channel: "ALL", # accepts ALL
|
|
1473
|
+
# event: "CA_CERTIFICATE_EXPIRY", # required, accepts CA_CERTIFICATE_EXPIRY, END_ENTITY_CERTIFICATE_EXPIRY
|
|
1474
|
+
# },
|
|
1475
|
+
# ],
|
|
1476
|
+
# trust_anchor_id: "Uuid", # required
|
|
1477
|
+
# })
|
|
1478
|
+
#
|
|
1479
|
+
# @example Response structure
|
|
1480
|
+
#
|
|
1481
|
+
# resp.trust_anchor.created_at #=> Time
|
|
1482
|
+
# resp.trust_anchor.enabled #=> Boolean
|
|
1483
|
+
# resp.trust_anchor.name #=> String
|
|
1484
|
+
# resp.trust_anchor.notification_settings #=> Array
|
|
1485
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
|
1486
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
|
1487
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
|
1488
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
|
1489
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
|
1490
|
+
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
|
1491
|
+
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
|
1492
|
+
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
|
1493
|
+
# resp.trust_anchor.trust_anchor_arn #=> String
|
|
1494
|
+
# resp.trust_anchor.trust_anchor_id #=> String
|
|
1495
|
+
# resp.trust_anchor.updated_at #=> Time
|
|
1496
|
+
#
|
|
1497
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/rolesanywhere-2018-05-10/ResetNotificationSettings AWS API Documentation
|
|
1498
|
+
#
|
|
1499
|
+
# @overload reset_notification_settings(params = {})
|
|
1500
|
+
# @param [Hash] params ({})
|
|
1501
|
+
def reset_notification_settings(params = {}, options = {})
|
|
1502
|
+
req = build_request(:reset_notification_settings, params)
|
|
1503
|
+
req.send_request(options)
|
|
1504
|
+
end
|
|
1505
|
+
|
|
1368
1506
|
# Attaches tags to a resource.
|
|
1369
1507
|
#
|
|
1370
1508
|
# <b>Required permissions: </b> `rolesanywhere:TagResource`.
|
|
@@ -1426,15 +1564,15 @@ module Aws::RolesAnywhere
|
|
|
1426
1564
|
req.send_request(options)
|
|
1427
1565
|
end
|
|
1428
1566
|
|
|
1429
|
-
# Updates the certificate revocation list (CRL).
|
|
1567
|
+
# Updates the certificate revocation list (CRL). A CRL is a list of
|
|
1430
1568
|
# certificates that have been revoked by the issuing certificate
|
|
1431
|
-
#
|
|
1432
|
-
#
|
|
1569
|
+
# authority (CA). IAM Roles Anywhere validates against the CRL before
|
|
1570
|
+
# issuing credentials.
|
|
1433
1571
|
#
|
|
1434
1572
|
# <b>Required permissions: </b> `rolesanywhere:UpdateCrl`.
|
|
1435
1573
|
#
|
|
1436
1574
|
# @option params [String, StringIO, File] :crl_data
|
|
1437
|
-
# The x509 v3 specified certificate revocation list
|
|
1575
|
+
# The x509 v3 specified certificate revocation list (CRL).
|
|
1438
1576
|
#
|
|
1439
1577
|
# @option params [required, String] :crl_id
|
|
1440
1578
|
# The unique identifier of the certificate revocation list (CRL).
|
|
@@ -1474,10 +1612,9 @@ module Aws::RolesAnywhere
|
|
|
1474
1612
|
req.send_request(options)
|
|
1475
1613
|
end
|
|
1476
1614
|
|
|
1477
|
-
# Updates
|
|
1478
|
-
#
|
|
1479
|
-
#
|
|
1480
|
-
# policies.
|
|
1615
|
+
# Updates a *profile*, a list of the roles that IAM Roles Anywhere
|
|
1616
|
+
# service is trusted to assume. You use profiles to intersect
|
|
1617
|
+
# permissions with IAM managed policies.
|
|
1481
1618
|
#
|
|
1482
1619
|
# <b>Required permissions: </b> `rolesanywhere:UpdateProfile`.
|
|
1483
1620
|
#
|
|
@@ -1495,12 +1632,8 @@ module Aws::RolesAnywhere
|
|
|
1495
1632
|
# The unique identifier of the profile.
|
|
1496
1633
|
#
|
|
1497
1634
|
# @option params [Array<String>] :role_arns
|
|
1498
|
-
# A list of IAM roles that this profile can assume in a
|
|
1499
|
-
#
|
|
1500
|
-
#
|
|
1501
|
-
#
|
|
1502
|
-
#
|
|
1503
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
1635
|
+
# A list of IAM roles that this profile can assume in a temporary
|
|
1636
|
+
# credential request.
|
|
1504
1637
|
#
|
|
1505
1638
|
# @option params [String] :session_policy
|
|
1506
1639
|
# A session policy that applies to the trust boundary of the vended
|
|
@@ -1547,14 +1680,13 @@ module Aws::RolesAnywhere
|
|
|
1547
1680
|
req.send_request(options)
|
|
1548
1681
|
end
|
|
1549
1682
|
|
|
1550
|
-
# Updates
|
|
1551
|
-
#
|
|
1552
|
-
#
|
|
1553
|
-
#
|
|
1554
|
-
#
|
|
1555
|
-
#
|
|
1556
|
-
#
|
|
1557
|
-
# credentials.
|
|
1683
|
+
# Updates a trust anchor. You establish trust between IAM Roles Anywhere
|
|
1684
|
+
# and your certificate authority (CA) by configuring a trust anchor. You
|
|
1685
|
+
# can define a trust anchor as a reference to an Private Certificate
|
|
1686
|
+
# Authority (Private CA) or by uploading a CA certificate. Your Amazon
|
|
1687
|
+
# Web Services workloads can authenticate with the trust anchor using
|
|
1688
|
+
# certificates issued by the CA in exchange for temporary Amazon Web
|
|
1689
|
+
# Services credentials.
|
|
1558
1690
|
#
|
|
1559
1691
|
# <b>Required permissions: </b> `rolesanywhere:UpdateTrustAnchor`.
|
|
1560
1692
|
#
|
|
@@ -1578,7 +1710,7 @@ module Aws::RolesAnywhere
|
|
|
1578
1710
|
# source: {
|
|
1579
1711
|
# source_data: {
|
|
1580
1712
|
# acm_pca_arn: "String",
|
|
1581
|
-
# x509_certificate_data: "
|
|
1713
|
+
# x509_certificate_data: "SourceDataX509CertificateDataString",
|
|
1582
1714
|
# },
|
|
1583
1715
|
# source_type: "AWS_ACM_PCA", # accepts AWS_ACM_PCA, CERTIFICATE_BUNDLE, SELF_SIGNED_REPOSITORY
|
|
1584
1716
|
# },
|
|
@@ -1590,6 +1722,12 @@ module Aws::RolesAnywhere
|
|
|
1590
1722
|
# resp.trust_anchor.created_at #=> Time
|
|
1591
1723
|
# resp.trust_anchor.enabled #=> Boolean
|
|
1592
1724
|
# resp.trust_anchor.name #=> String
|
|
1725
|
+
# resp.trust_anchor.notification_settings #=> Array
|
|
1726
|
+
# resp.trust_anchor.notification_settings[0].channel #=> String, one of "ALL"
|
|
1727
|
+
# resp.trust_anchor.notification_settings[0].configured_by #=> String
|
|
1728
|
+
# resp.trust_anchor.notification_settings[0].enabled #=> Boolean
|
|
1729
|
+
# resp.trust_anchor.notification_settings[0].event #=> String, one of "CA_CERTIFICATE_EXPIRY", "END_ENTITY_CERTIFICATE_EXPIRY"
|
|
1730
|
+
# resp.trust_anchor.notification_settings[0].threshold #=> Integer
|
|
1593
1731
|
# resp.trust_anchor.source.source_data.acm_pca_arn #=> String
|
|
1594
1732
|
# resp.trust_anchor.source.source_data.x509_certificate_data #=> String
|
|
1595
1733
|
# resp.trust_anchor.source.source_type #=> String, one of "AWS_ACM_PCA", "CERTIFICATE_BUNDLE", "SELF_SIGNED_REPOSITORY"
|
|
@@ -1619,7 +1757,7 @@ module Aws::RolesAnywhere
|
|
|
1619
1757
|
params: params,
|
|
1620
1758
|
config: config)
|
|
1621
1759
|
context[:gem_name] = 'aws-sdk-rolesanywhere'
|
|
1622
|
-
context[:gem_version] = '1.
|
|
1760
|
+
context[:gem_version] = '1.3.0'
|
|
1623
1761
|
Seahorse::Client::Request.new(handlers, context)
|
|
1624
1762
|
end
|
|
1625
1763
|
|
|
@@ -43,10 +43,25 @@ module Aws::RolesAnywhere
|
|
|
43
43
|
ListTrustAnchorsResponse = Shapes::StructureShape.new(name: 'ListTrustAnchorsResponse')
|
|
44
44
|
ManagedPolicyList = Shapes::ListShape.new(name: 'ManagedPolicyList')
|
|
45
45
|
ManagedPolicyListMemberString = Shapes::StringShape.new(name: 'ManagedPolicyListMemberString')
|
|
46
|
+
NotificationChannel = Shapes::StringShape.new(name: 'NotificationChannel')
|
|
47
|
+
NotificationEvent = Shapes::StringShape.new(name: 'NotificationEvent')
|
|
48
|
+
NotificationSetting = Shapes::StructureShape.new(name: 'NotificationSetting')
|
|
49
|
+
NotificationSettingDetail = Shapes::StructureShape.new(name: 'NotificationSettingDetail')
|
|
50
|
+
NotificationSettingDetailConfiguredByString = Shapes::StringShape.new(name: 'NotificationSettingDetailConfiguredByString')
|
|
51
|
+
NotificationSettingDetailThresholdInteger = Shapes::IntegerShape.new(name: 'NotificationSettingDetailThresholdInteger')
|
|
52
|
+
NotificationSettingDetails = Shapes::ListShape.new(name: 'NotificationSettingDetails')
|
|
53
|
+
NotificationSettingKey = Shapes::StructureShape.new(name: 'NotificationSettingKey')
|
|
54
|
+
NotificationSettingKeys = Shapes::ListShape.new(name: 'NotificationSettingKeys')
|
|
55
|
+
NotificationSettingThresholdInteger = Shapes::IntegerShape.new(name: 'NotificationSettingThresholdInteger')
|
|
56
|
+
NotificationSettings = Shapes::ListShape.new(name: 'NotificationSettings')
|
|
46
57
|
ProfileArn = Shapes::StringShape.new(name: 'ProfileArn')
|
|
47
58
|
ProfileDetail = Shapes::StructureShape.new(name: 'ProfileDetail')
|
|
48
59
|
ProfileDetailResponse = Shapes::StructureShape.new(name: 'ProfileDetailResponse')
|
|
49
60
|
ProfileDetails = Shapes::ListShape.new(name: 'ProfileDetails')
|
|
61
|
+
PutNotificationSettingsRequest = Shapes::StructureShape.new(name: 'PutNotificationSettingsRequest')
|
|
62
|
+
PutNotificationSettingsResponse = Shapes::StructureShape.new(name: 'PutNotificationSettingsResponse')
|
|
63
|
+
ResetNotificationSettingsRequest = Shapes::StructureShape.new(name: 'ResetNotificationSettingsRequest')
|
|
64
|
+
ResetNotificationSettingsResponse = Shapes::StructureShape.new(name: 'ResetNotificationSettingsResponse')
|
|
50
65
|
ResourceName = Shapes::StringShape.new(name: 'ResourceName')
|
|
51
66
|
ResourceNotFoundException = Shapes::StructureShape.new(name: 'ResourceNotFoundException')
|
|
52
67
|
RoleArn = Shapes::StringShape.new(name: 'RoleArn')
|
|
@@ -57,6 +72,7 @@ module Aws::RolesAnywhere
|
|
|
57
72
|
ScalarTrustAnchorRequest = Shapes::StructureShape.new(name: 'ScalarTrustAnchorRequest')
|
|
58
73
|
Source = Shapes::StructureShape.new(name: 'Source')
|
|
59
74
|
SourceData = Shapes::UnionShape.new(name: 'SourceData')
|
|
75
|
+
SourceDataX509CertificateDataString = Shapes::StringShape.new(name: 'SourceDataX509CertificateDataString')
|
|
60
76
|
String = Shapes::StringShape.new(name: 'String')
|
|
61
77
|
SubjectDetail = Shapes::StructureShape.new(name: 'SubjectDetail')
|
|
62
78
|
SubjectDetailResponse = Shapes::StructureShape.new(name: 'SubjectDetailResponse')
|
|
@@ -102,6 +118,7 @@ module Aws::RolesAnywhere
|
|
|
102
118
|
|
|
103
119
|
CreateTrustAnchorRequest.add_member(:enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "enabled"))
|
|
104
120
|
CreateTrustAnchorRequest.add_member(:name, Shapes::ShapeRef.new(shape: ResourceName, required: true, location_name: "name"))
|
|
121
|
+
CreateTrustAnchorRequest.add_member(:notification_settings, Shapes::ShapeRef.new(shape: NotificationSettings, location_name: "notificationSettings"))
|
|
105
122
|
CreateTrustAnchorRequest.add_member(:source, Shapes::ShapeRef.new(shape: Source, required: true, location_name: "source"))
|
|
106
123
|
CreateTrustAnchorRequest.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "tags"))
|
|
107
124
|
CreateTrustAnchorRequest.struct_class = Types::CreateTrustAnchorRequest
|
|
@@ -176,6 +193,29 @@ module Aws::RolesAnywhere
|
|
|
176
193
|
|
|
177
194
|
ManagedPolicyList.member = Shapes::ShapeRef.new(shape: ManagedPolicyListMemberString)
|
|
178
195
|
|
|
196
|
+
NotificationSetting.add_member(:channel, Shapes::ShapeRef.new(shape: NotificationChannel, location_name: "channel"))
|
|
197
|
+
NotificationSetting.add_member(:enabled, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "enabled"))
|
|
198
|
+
NotificationSetting.add_member(:event, Shapes::ShapeRef.new(shape: NotificationEvent, required: true, location_name: "event"))
|
|
199
|
+
NotificationSetting.add_member(:threshold, Shapes::ShapeRef.new(shape: NotificationSettingThresholdInteger, location_name: "threshold"))
|
|
200
|
+
NotificationSetting.struct_class = Types::NotificationSetting
|
|
201
|
+
|
|
202
|
+
NotificationSettingDetail.add_member(:channel, Shapes::ShapeRef.new(shape: NotificationChannel, location_name: "channel"))
|
|
203
|
+
NotificationSettingDetail.add_member(:configured_by, Shapes::ShapeRef.new(shape: NotificationSettingDetailConfiguredByString, location_name: "configuredBy"))
|
|
204
|
+
NotificationSettingDetail.add_member(:enabled, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "enabled"))
|
|
205
|
+
NotificationSettingDetail.add_member(:event, Shapes::ShapeRef.new(shape: NotificationEvent, required: true, location_name: "event"))
|
|
206
|
+
NotificationSettingDetail.add_member(:threshold, Shapes::ShapeRef.new(shape: NotificationSettingDetailThresholdInteger, location_name: "threshold"))
|
|
207
|
+
NotificationSettingDetail.struct_class = Types::NotificationSettingDetail
|
|
208
|
+
|
|
209
|
+
NotificationSettingDetails.member = Shapes::ShapeRef.new(shape: NotificationSettingDetail)
|
|
210
|
+
|
|
211
|
+
NotificationSettingKey.add_member(:channel, Shapes::ShapeRef.new(shape: NotificationChannel, location_name: "channel"))
|
|
212
|
+
NotificationSettingKey.add_member(:event, Shapes::ShapeRef.new(shape: NotificationEvent, required: true, location_name: "event"))
|
|
213
|
+
NotificationSettingKey.struct_class = Types::NotificationSettingKey
|
|
214
|
+
|
|
215
|
+
NotificationSettingKeys.member = Shapes::ShapeRef.new(shape: NotificationSettingKey)
|
|
216
|
+
|
|
217
|
+
NotificationSettings.member = Shapes::ShapeRef.new(shape: NotificationSetting)
|
|
218
|
+
|
|
179
219
|
ProfileDetail.add_member(:created_at, Shapes::ShapeRef.new(shape: SyntheticTimestamp_date_time, location_name: "createdAt"))
|
|
180
220
|
ProfileDetail.add_member(:created_by, Shapes::ShapeRef.new(shape: String, location_name: "createdBy"))
|
|
181
221
|
ProfileDetail.add_member(:duration_seconds, Shapes::ShapeRef.new(shape: Integer, location_name: "durationSeconds"))
|
|
@@ -195,6 +235,20 @@ module Aws::RolesAnywhere
|
|
|
195
235
|
|
|
196
236
|
ProfileDetails.member = Shapes::ShapeRef.new(shape: ProfileDetail)
|
|
197
237
|
|
|
238
|
+
PutNotificationSettingsRequest.add_member(:notification_settings, Shapes::ShapeRef.new(shape: NotificationSettings, required: true, location_name: "notificationSettings"))
|
|
239
|
+
PutNotificationSettingsRequest.add_member(:trust_anchor_id, Shapes::ShapeRef.new(shape: Uuid, required: true, location_name: "trustAnchorId"))
|
|
240
|
+
PutNotificationSettingsRequest.struct_class = Types::PutNotificationSettingsRequest
|
|
241
|
+
|
|
242
|
+
PutNotificationSettingsResponse.add_member(:trust_anchor, Shapes::ShapeRef.new(shape: TrustAnchorDetail, required: true, location_name: "trustAnchor"))
|
|
243
|
+
PutNotificationSettingsResponse.struct_class = Types::PutNotificationSettingsResponse
|
|
244
|
+
|
|
245
|
+
ResetNotificationSettingsRequest.add_member(:notification_setting_keys, Shapes::ShapeRef.new(shape: NotificationSettingKeys, required: true, location_name: "notificationSettingKeys"))
|
|
246
|
+
ResetNotificationSettingsRequest.add_member(:trust_anchor_id, Shapes::ShapeRef.new(shape: Uuid, required: true, location_name: "trustAnchorId"))
|
|
247
|
+
ResetNotificationSettingsRequest.struct_class = Types::ResetNotificationSettingsRequest
|
|
248
|
+
|
|
249
|
+
ResetNotificationSettingsResponse.add_member(:trust_anchor, Shapes::ShapeRef.new(shape: TrustAnchorDetail, required: true, location_name: "trustAnchor"))
|
|
250
|
+
ResetNotificationSettingsResponse.struct_class = Types::ResetNotificationSettingsResponse
|
|
251
|
+
|
|
198
252
|
ResourceNotFoundException.add_member(:message, Shapes::ShapeRef.new(shape: String, location_name: "message"))
|
|
199
253
|
ResourceNotFoundException.struct_class = Types::ResourceNotFoundException
|
|
200
254
|
|
|
@@ -217,7 +271,7 @@ module Aws::RolesAnywhere
|
|
|
217
271
|
Source.struct_class = Types::Source
|
|
218
272
|
|
|
219
273
|
SourceData.add_member(:acm_pca_arn, Shapes::ShapeRef.new(shape: String, location_name: "acmPcaArn"))
|
|
220
|
-
SourceData.add_member(:x509_certificate_data, Shapes::ShapeRef.new(shape:
|
|
274
|
+
SourceData.add_member(:x509_certificate_data, Shapes::ShapeRef.new(shape: SourceDataX509CertificateDataString, location_name: "x509CertificateData"))
|
|
221
275
|
SourceData.add_member(:unknown, Shapes::ShapeRef.new(shape: nil, location_name: 'unknown'))
|
|
222
276
|
SourceData.add_member_subclass(:acm_pca_arn, Types::SourceData::AcmPcaArn)
|
|
223
277
|
SourceData.add_member_subclass(:x509_certificate_data, Types::SourceData::X509CertificateData)
|
|
@@ -269,6 +323,7 @@ module Aws::RolesAnywhere
|
|
|
269
323
|
TrustAnchorDetail.add_member(:created_at, Shapes::ShapeRef.new(shape: SyntheticTimestamp_date_time, location_name: "createdAt"))
|
|
270
324
|
TrustAnchorDetail.add_member(:enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "enabled"))
|
|
271
325
|
TrustAnchorDetail.add_member(:name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "name"))
|
|
326
|
+
TrustAnchorDetail.add_member(:notification_settings, Shapes::ShapeRef.new(shape: NotificationSettingDetails, location_name: "notificationSettings"))
|
|
272
327
|
TrustAnchorDetail.add_member(:source, Shapes::ShapeRef.new(shape: Source, location_name: "source"))
|
|
273
328
|
TrustAnchorDetail.add_member(:trust_anchor_arn, Shapes::ShapeRef.new(shape: String, location_name: "trustAnchorArn"))
|
|
274
329
|
TrustAnchorDetail.add_member(:trust_anchor_id, Shapes::ShapeRef.new(shape: Uuid, location_name: "trustAnchorId"))
|
|
@@ -556,6 +611,28 @@ module Aws::RolesAnywhere
|
|
|
556
611
|
)
|
|
557
612
|
end)
|
|
558
613
|
|
|
614
|
+
api.add_operation(:put_notification_settings, Seahorse::Model::Operation.new.tap do |o|
|
|
615
|
+
o.name = "PutNotificationSettings"
|
|
616
|
+
o.http_method = "PATCH"
|
|
617
|
+
o.http_request_uri = "/put-notifications-settings"
|
|
618
|
+
o.input = Shapes::ShapeRef.new(shape: PutNotificationSettingsRequest)
|
|
619
|
+
o.output = Shapes::ShapeRef.new(shape: PutNotificationSettingsResponse)
|
|
620
|
+
o.errors << Shapes::ShapeRef.new(shape: ValidationException)
|
|
621
|
+
o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
|
|
622
|
+
o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
|
|
623
|
+
end)
|
|
624
|
+
|
|
625
|
+
api.add_operation(:reset_notification_settings, Seahorse::Model::Operation.new.tap do |o|
|
|
626
|
+
o.name = "ResetNotificationSettings"
|
|
627
|
+
o.http_method = "PATCH"
|
|
628
|
+
o.http_request_uri = "/reset-notifications-settings"
|
|
629
|
+
o.input = Shapes::ShapeRef.new(shape: ResetNotificationSettingsRequest)
|
|
630
|
+
o.output = Shapes::ShapeRef.new(shape: ResetNotificationSettingsResponse)
|
|
631
|
+
o.errors << Shapes::ShapeRef.new(shape: ValidationException)
|
|
632
|
+
o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
|
|
633
|
+
o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
|
|
634
|
+
end)
|
|
635
|
+
|
|
559
636
|
api.add_operation(:tag_resource, Seahorse::Model::Operation.new.tap do |o|
|
|
560
637
|
o.name = "TagResource"
|
|
561
638
|
o.http_method = "POST"
|
|
@@ -14,36 +14,39 @@ module Aws::RolesAnywhere
|
|
|
14
14
|
use_dual_stack = parameters.use_dual_stack
|
|
15
15
|
use_fips = parameters.use_fips
|
|
16
16
|
endpoint = parameters.endpoint
|
|
17
|
-
if
|
|
18
|
-
if Aws::Endpoints::Matchers.set?(endpoint) && (url = Aws::Endpoints::Matchers.parse_url(endpoint))
|
|
19
|
-
if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
|
|
20
|
-
raise ArgumentError, "Invalid Configuration: FIPS and custom endpoint are not supported"
|
|
21
|
-
end
|
|
22
|
-
if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
|
|
23
|
-
raise ArgumentError, "Invalid Configuration: Dualstack and custom endpoint are not supported"
|
|
24
|
-
end
|
|
25
|
-
return Aws::Endpoints::Endpoint.new(url: endpoint, headers: {}, properties: {})
|
|
26
|
-
end
|
|
27
|
-
if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
|
|
28
|
-
if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS")) && Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
|
|
29
|
-
return Aws::Endpoints::Endpoint.new(url: "https://rolesanywhere-fips.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
|
|
30
|
-
end
|
|
31
|
-
raise ArgumentError, "FIPS and DualStack are enabled, but this partition does not support one or both"
|
|
32
|
-
end
|
|
17
|
+
if Aws::Endpoints::Matchers.set?(endpoint)
|
|
33
18
|
if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
|
|
34
|
-
|
|
35
|
-
return Aws::Endpoints::Endpoint.new(url: "https://rolesanywhere-fips.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
|
|
36
|
-
end
|
|
37
|
-
raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
|
|
19
|
+
raise ArgumentError, "Invalid Configuration: FIPS and custom endpoint are not supported"
|
|
38
20
|
end
|
|
39
21
|
if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
|
|
40
|
-
|
|
41
|
-
|
|
22
|
+
raise ArgumentError, "Invalid Configuration: Dualstack and custom endpoint are not supported"
|
|
23
|
+
end
|
|
24
|
+
return Aws::Endpoints::Endpoint.new(url: endpoint, headers: {}, properties: {})
|
|
25
|
+
end
|
|
26
|
+
if Aws::Endpoints::Matchers.set?(region)
|
|
27
|
+
if (partition_result = Aws::Endpoints::Matchers.aws_partition(region))
|
|
28
|
+
if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
|
|
29
|
+
if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS")) && Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
|
|
30
|
+
return Aws::Endpoints::Endpoint.new(url: "https://rolesanywhere-fips.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
|
|
31
|
+
end
|
|
32
|
+
raise ArgumentError, "FIPS and DualStack are enabled, but this partition does not support one or both"
|
|
33
|
+
end
|
|
34
|
+
if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
|
|
35
|
+
if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"))
|
|
36
|
+
return Aws::Endpoints::Endpoint.new(url: "https://rolesanywhere-fips.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
|
|
37
|
+
end
|
|
38
|
+
raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
|
|
39
|
+
end
|
|
40
|
+
if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
|
|
41
|
+
if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
|
|
42
|
+
return Aws::Endpoints::Endpoint.new(url: "https://rolesanywhere.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
|
|
43
|
+
end
|
|
44
|
+
raise ArgumentError, "DualStack is enabled but this partition does not support DualStack"
|
|
42
45
|
end
|
|
43
|
-
|
|
46
|
+
return Aws::Endpoints::Endpoint.new(url: "https://rolesanywhere.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
|
|
44
47
|
end
|
|
45
|
-
return Aws::Endpoints::Endpoint.new(url: "https://rolesanywhere.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
|
|
46
48
|
end
|
|
49
|
+
raise ArgumentError, "Invalid Configuration: Missing Region"
|
|
47
50
|
raise ArgumentError, 'No endpoint could be resolved'
|
|
48
51
|
|
|
49
52
|
end
|
|
@@ -305,6 +305,34 @@ module Aws::RolesAnywhere
|
|
|
305
305
|
end
|
|
306
306
|
end
|
|
307
307
|
|
|
308
|
+
class PutNotificationSettings
|
|
309
|
+
def self.build(context)
|
|
310
|
+
unless context.config.regional_endpoint
|
|
311
|
+
endpoint = context.config.endpoint.to_s
|
|
312
|
+
end
|
|
313
|
+
Aws::RolesAnywhere::EndpointParameters.new(
|
|
314
|
+
region: context.config.region,
|
|
315
|
+
use_dual_stack: context.config.use_dualstack_endpoint,
|
|
316
|
+
use_fips: context.config.use_fips_endpoint,
|
|
317
|
+
endpoint: endpoint,
|
|
318
|
+
)
|
|
319
|
+
end
|
|
320
|
+
end
|
|
321
|
+
|
|
322
|
+
class ResetNotificationSettings
|
|
323
|
+
def self.build(context)
|
|
324
|
+
unless context.config.regional_endpoint
|
|
325
|
+
endpoint = context.config.endpoint.to_s
|
|
326
|
+
end
|
|
327
|
+
Aws::RolesAnywhere::EndpointParameters.new(
|
|
328
|
+
region: context.config.region,
|
|
329
|
+
use_dual_stack: context.config.use_dualstack_endpoint,
|
|
330
|
+
use_fips: context.config.use_fips_endpoint,
|
|
331
|
+
endpoint: endpoint,
|
|
332
|
+
)
|
|
333
|
+
end
|
|
334
|
+
end
|
|
335
|
+
|
|
308
336
|
class TagResource
|
|
309
337
|
def self.build(context)
|
|
310
338
|
unless context.config.regional_endpoint
|
|
@@ -98,6 +98,10 @@ module Aws::RolesAnywhere
|
|
|
98
98
|
Aws::RolesAnywhere::Endpoints::ListTagsForResource.build(context)
|
|
99
99
|
when :list_trust_anchors
|
|
100
100
|
Aws::RolesAnywhere::Endpoints::ListTrustAnchors.build(context)
|
|
101
|
+
when :put_notification_settings
|
|
102
|
+
Aws::RolesAnywhere::Endpoints::PutNotificationSettings.build(context)
|
|
103
|
+
when :reset_notification_settings
|
|
104
|
+
Aws::RolesAnywhere::Endpoints::ResetNotificationSettings.build(context)
|
|
101
105
|
when :tag_resource
|
|
102
106
|
Aws::RolesAnywhere::Endpoints::TagResource.build(context)
|
|
103
107
|
when :untag_resource
|
|
@@ -41,21 +41,13 @@ module Aws::RolesAnywhere
|
|
|
41
41
|
# @return [String]
|
|
42
42
|
#
|
|
43
43
|
# @!attribute [rw] require_instance_properties
|
|
44
|
-
# Specifies whether instance properties are required in
|
|
45
|
-
#
|
|
46
|
-
#
|
|
47
|
-
#
|
|
48
|
-
#
|
|
49
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
44
|
+
# Specifies whether instance properties are required in temporary
|
|
45
|
+
# credential requests with this profile.
|
|
50
46
|
# @return [Boolean]
|
|
51
47
|
#
|
|
52
48
|
# @!attribute [rw] role_arns
|
|
53
|
-
# A list of IAM roles that this profile can assume in a
|
|
54
|
-
#
|
|
55
|
-
#
|
|
56
|
-
#
|
|
57
|
-
#
|
|
58
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
49
|
+
# A list of IAM roles that this profile can assume in a temporary
|
|
50
|
+
# credential request.
|
|
59
51
|
# @return [Array<String>]
|
|
60
52
|
#
|
|
61
53
|
# @!attribute [rw] session_policy
|
|
@@ -90,6 +82,11 @@ module Aws::RolesAnywhere
|
|
|
90
82
|
# The name of the trust anchor.
|
|
91
83
|
# @return [String]
|
|
92
84
|
#
|
|
85
|
+
# @!attribute [rw] notification_settings
|
|
86
|
+
# A list of notification settings to be associated to the trust
|
|
87
|
+
# anchor.
|
|
88
|
+
# @return [Array<Types::NotificationSetting>]
|
|
89
|
+
#
|
|
93
90
|
# @!attribute [rw] source
|
|
94
91
|
# The trust anchor type and its related certificate data.
|
|
95
92
|
# @return [Types::Source]
|
|
@@ -103,28 +100,22 @@ module Aws::RolesAnywhere
|
|
|
103
100
|
class CreateTrustAnchorRequest < Struct.new(
|
|
104
101
|
:enabled,
|
|
105
102
|
:name,
|
|
103
|
+
:notification_settings,
|
|
106
104
|
:source,
|
|
107
105
|
:tags)
|
|
108
106
|
SENSITIVE = []
|
|
109
107
|
include Aws::Structure
|
|
110
108
|
end
|
|
111
109
|
|
|
112
|
-
# A record of a presented X509 credential
|
|
113
|
-
#
|
|
114
|
-
#
|
|
115
|
-
#
|
|
116
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
110
|
+
# A record of a presented X509 credential from a temporary credential
|
|
111
|
+
# request.
|
|
117
112
|
#
|
|
118
113
|
# @!attribute [rw] enabled
|
|
119
114
|
# Indicates whether the credential is enabled.
|
|
120
115
|
# @return [Boolean]
|
|
121
116
|
#
|
|
122
117
|
# @!attribute [rw] failed
|
|
123
|
-
# Indicates whether the
|
|
124
|
-
#
|
|
125
|
-
#
|
|
126
|
-
#
|
|
127
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
118
|
+
# Indicates whether the temporary credential request was successful.
|
|
128
119
|
# @return [Boolean]
|
|
129
120
|
#
|
|
130
121
|
# @!attribute [rw] issuer
|
|
@@ -134,11 +125,7 @@ module Aws::RolesAnywhere
|
|
|
134
125
|
#
|
|
135
126
|
# @!attribute [rw] seen_at
|
|
136
127
|
# The ISO-8601 time stamp of when the certificate was last used in a
|
|
137
|
-
#
|
|
138
|
-
#
|
|
139
|
-
#
|
|
140
|
-
#
|
|
141
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
128
|
+
# temporary credential request.
|
|
142
129
|
# @return [Time]
|
|
143
130
|
#
|
|
144
131
|
# @!attribute [rw] serial_number
|
|
@@ -230,7 +217,7 @@ module Aws::RolesAnywhere
|
|
|
230
217
|
end
|
|
231
218
|
|
|
232
219
|
# @!attribute [rw] crl_data
|
|
233
|
-
# The x509 v3 specified certificate revocation list
|
|
220
|
+
# The x509 v3 specified certificate revocation list (CRL).
|
|
234
221
|
# @return [String]
|
|
235
222
|
#
|
|
236
223
|
# @!attribute [rw] enabled
|
|
@@ -266,11 +253,7 @@ module Aws::RolesAnywhere
|
|
|
266
253
|
# authenticating instance.
|
|
267
254
|
#
|
|
268
255
|
# @!attribute [rw] failed
|
|
269
|
-
# Indicates whether the
|
|
270
|
-
#
|
|
271
|
-
#
|
|
272
|
-
#
|
|
273
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
256
|
+
# Indicates whether the temporary credential request was successful.
|
|
274
257
|
# @return [Boolean]
|
|
275
258
|
#
|
|
276
259
|
# @!attribute [rw] properties
|
|
@@ -279,11 +262,7 @@ module Aws::RolesAnywhere
|
|
|
279
262
|
#
|
|
280
263
|
# @!attribute [rw] seen_at
|
|
281
264
|
# The ISO-8601 time stamp of when the certificate was last used in a
|
|
282
|
-
#
|
|
283
|
-
#
|
|
284
|
-
#
|
|
285
|
-
#
|
|
286
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
265
|
+
# temporary credential request.
|
|
287
266
|
# @return [Time]
|
|
288
267
|
#
|
|
289
268
|
# @see http://docs.aws.amazon.com/goto/WebAPI/rolesanywhere-2018-05-10/InstanceProperty AWS API Documentation
|
|
@@ -302,8 +281,8 @@ module Aws::RolesAnywhere
|
|
|
302
281
|
#
|
|
303
282
|
# @!attribute [rw] next_token
|
|
304
283
|
# A token that indicates where the output should continue from, if a
|
|
305
|
-
# previous
|
|
306
|
-
#
|
|
284
|
+
# previous request did not show all results. To get the next results,
|
|
285
|
+
# make the request again with this value.
|
|
307
286
|
# @return [String]
|
|
308
287
|
#
|
|
309
288
|
# @see http://docs.aws.amazon.com/goto/WebAPI/rolesanywhere-2018-05-10/ListCrlsResponse AWS API Documentation
|
|
@@ -317,8 +296,8 @@ module Aws::RolesAnywhere
|
|
|
317
296
|
|
|
318
297
|
# @!attribute [rw] next_token
|
|
319
298
|
# A token that indicates where the output should continue from, if a
|
|
320
|
-
# previous
|
|
321
|
-
#
|
|
299
|
+
# previous request did not show all results. To get the next results,
|
|
300
|
+
# make the request again with this value.
|
|
322
301
|
# @return [String]
|
|
323
302
|
#
|
|
324
303
|
# @!attribute [rw] profiles
|
|
@@ -336,8 +315,8 @@ module Aws::RolesAnywhere
|
|
|
336
315
|
|
|
337
316
|
# @!attribute [rw] next_token
|
|
338
317
|
# A token that indicates where the output should continue from, if a
|
|
339
|
-
# previous
|
|
340
|
-
#
|
|
318
|
+
# previous request did not show all results. To get the next results,
|
|
319
|
+
# make the request again with this value.
|
|
341
320
|
# @return [String]
|
|
342
321
|
#
|
|
343
322
|
# @!attribute [rw] page_size
|
|
@@ -355,8 +334,8 @@ module Aws::RolesAnywhere
|
|
|
355
334
|
|
|
356
335
|
# @!attribute [rw] next_token
|
|
357
336
|
# A token that indicates where the output should continue from, if a
|
|
358
|
-
# previous
|
|
359
|
-
#
|
|
337
|
+
# previous request did not show all results. To get the next results,
|
|
338
|
+
# make the request again with this value.
|
|
360
339
|
# @return [String]
|
|
361
340
|
#
|
|
362
341
|
# @!attribute [rw] subjects
|
|
@@ -398,8 +377,8 @@ module Aws::RolesAnywhere
|
|
|
398
377
|
|
|
399
378
|
# @!attribute [rw] next_token
|
|
400
379
|
# A token that indicates where the output should continue from, if a
|
|
401
|
-
# previous
|
|
402
|
-
#
|
|
380
|
+
# previous request did not show all results. To get the next results,
|
|
381
|
+
# make the request again with this value.
|
|
403
382
|
# @return [String]
|
|
404
383
|
#
|
|
405
384
|
# @!attribute [rw] trust_anchors
|
|
@@ -415,6 +394,114 @@ module Aws::RolesAnywhere
|
|
|
415
394
|
include Aws::Structure
|
|
416
395
|
end
|
|
417
396
|
|
|
397
|
+
# Customizable notification settings that will be applied to
|
|
398
|
+
# notification events. IAM Roles Anywhere consumes these settings while
|
|
399
|
+
# notifying across multiple channels - CloudWatch metrics, EventBridge,
|
|
400
|
+
# and Health Dashboard.
|
|
401
|
+
#
|
|
402
|
+
# @!attribute [rw] channel
|
|
403
|
+
# The specified channel of notification. IAM Roles Anywhere uses
|
|
404
|
+
# CloudWatch metrics, EventBridge, and Health Dashboard to notify for
|
|
405
|
+
# an event.
|
|
406
|
+
#
|
|
407
|
+
# <note markdown="1"> In the absence of a specific channel, IAM Roles Anywhere applies
|
|
408
|
+
# this setting to 'ALL' channels.
|
|
409
|
+
#
|
|
410
|
+
# </note>
|
|
411
|
+
# @return [String]
|
|
412
|
+
#
|
|
413
|
+
# @!attribute [rw] enabled
|
|
414
|
+
# Indicates whether the notification setting is enabled.
|
|
415
|
+
# @return [Boolean]
|
|
416
|
+
#
|
|
417
|
+
# @!attribute [rw] event
|
|
418
|
+
# The event to which this notification setting is applied.
|
|
419
|
+
# @return [String]
|
|
420
|
+
#
|
|
421
|
+
# @!attribute [rw] threshold
|
|
422
|
+
# The number of days before a notification event. This value is
|
|
423
|
+
# required for a notification setting that is enabled.
|
|
424
|
+
# @return [Integer]
|
|
425
|
+
#
|
|
426
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/rolesanywhere-2018-05-10/NotificationSetting AWS API Documentation
|
|
427
|
+
#
|
|
428
|
+
class NotificationSetting < Struct.new(
|
|
429
|
+
:channel,
|
|
430
|
+
:enabled,
|
|
431
|
+
:event,
|
|
432
|
+
:threshold)
|
|
433
|
+
SENSITIVE = []
|
|
434
|
+
include Aws::Structure
|
|
435
|
+
end
|
|
436
|
+
|
|
437
|
+
# The state of a notification setting.
|
|
438
|
+
#
|
|
439
|
+
# A notification setting includes information such as event name,
|
|
440
|
+
# threshold, status of the notification setting, and the channel to
|
|
441
|
+
# notify.
|
|
442
|
+
#
|
|
443
|
+
# @!attribute [rw] channel
|
|
444
|
+
# The specified channel of notification. IAM Roles Anywhere uses
|
|
445
|
+
# CloudWatch metrics, EventBridge, and Health Dashboard to notify for
|
|
446
|
+
# an event.
|
|
447
|
+
#
|
|
448
|
+
# <note markdown="1"> In the absence of a specific channel, IAM Roles Anywhere applies
|
|
449
|
+
# this setting to 'ALL' channels.
|
|
450
|
+
#
|
|
451
|
+
# </note>
|
|
452
|
+
# @return [String]
|
|
453
|
+
#
|
|
454
|
+
# @!attribute [rw] configured_by
|
|
455
|
+
# The principal that configured the notification setting. For default
|
|
456
|
+
# settings configured by IAM Roles Anywhere, the value is
|
|
457
|
+
# `rolesanywhere.amazonaws.com`, and for customized notifications
|
|
458
|
+
# settings, it is the respective account ID.
|
|
459
|
+
# @return [String]
|
|
460
|
+
#
|
|
461
|
+
# @!attribute [rw] enabled
|
|
462
|
+
# Indicates whether the notification setting is enabled.
|
|
463
|
+
# @return [Boolean]
|
|
464
|
+
#
|
|
465
|
+
# @!attribute [rw] event
|
|
466
|
+
# The event to which this notification setting is applied.
|
|
467
|
+
# @return [String]
|
|
468
|
+
#
|
|
469
|
+
# @!attribute [rw] threshold
|
|
470
|
+
# The number of days before a notification event.
|
|
471
|
+
# @return [Integer]
|
|
472
|
+
#
|
|
473
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/rolesanywhere-2018-05-10/NotificationSettingDetail AWS API Documentation
|
|
474
|
+
#
|
|
475
|
+
class NotificationSettingDetail < Struct.new(
|
|
476
|
+
:channel,
|
|
477
|
+
:configured_by,
|
|
478
|
+
:enabled,
|
|
479
|
+
:event,
|
|
480
|
+
:threshold)
|
|
481
|
+
SENSITIVE = []
|
|
482
|
+
include Aws::Structure
|
|
483
|
+
end
|
|
484
|
+
|
|
485
|
+
# A notification setting key to reset. A notification setting key
|
|
486
|
+
# includes the event and the channel.
|
|
487
|
+
#
|
|
488
|
+
# @!attribute [rw] channel
|
|
489
|
+
# The specified channel of notification.
|
|
490
|
+
# @return [String]
|
|
491
|
+
#
|
|
492
|
+
# @!attribute [rw] event
|
|
493
|
+
# The notification setting event to reset.
|
|
494
|
+
# @return [String]
|
|
495
|
+
#
|
|
496
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/rolesanywhere-2018-05-10/NotificationSettingKey AWS API Documentation
|
|
497
|
+
#
|
|
498
|
+
class NotificationSettingKey < Struct.new(
|
|
499
|
+
:channel,
|
|
500
|
+
:event)
|
|
501
|
+
SENSITIVE = []
|
|
502
|
+
include Aws::Structure
|
|
503
|
+
end
|
|
504
|
+
|
|
418
505
|
# The state of the profile after a read or write operation.
|
|
419
506
|
#
|
|
420
507
|
# @!attribute [rw] created_at
|
|
@@ -451,21 +538,13 @@ module Aws::RolesAnywhere
|
|
|
451
538
|
# @return [String]
|
|
452
539
|
#
|
|
453
540
|
# @!attribute [rw] require_instance_properties
|
|
454
|
-
# Specifies whether instance properties are required in
|
|
455
|
-
#
|
|
456
|
-
#
|
|
457
|
-
#
|
|
458
|
-
#
|
|
459
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
541
|
+
# Specifies whether instance properties are required in temporary
|
|
542
|
+
# credential requests with this profile.
|
|
460
543
|
# @return [Boolean]
|
|
461
544
|
#
|
|
462
545
|
# @!attribute [rw] role_arns
|
|
463
|
-
# A list of IAM roles that this profile can assume in a
|
|
464
|
-
#
|
|
465
|
-
#
|
|
466
|
-
#
|
|
467
|
-
#
|
|
468
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
546
|
+
# A list of IAM roles that this profile can assume in a temporary
|
|
547
|
+
# credential request.
|
|
469
548
|
# @return [Array<String>]
|
|
470
549
|
#
|
|
471
550
|
# @!attribute [rw] session_policy
|
|
@@ -508,6 +587,66 @@ module Aws::RolesAnywhere
|
|
|
508
587
|
include Aws::Structure
|
|
509
588
|
end
|
|
510
589
|
|
|
590
|
+
# @!attribute [rw] notification_settings
|
|
591
|
+
# A list of notification settings to be associated to the trust
|
|
592
|
+
# anchor.
|
|
593
|
+
# @return [Array<Types::NotificationSetting>]
|
|
594
|
+
#
|
|
595
|
+
# @!attribute [rw] trust_anchor_id
|
|
596
|
+
# The unique identifier of the trust anchor.
|
|
597
|
+
# @return [String]
|
|
598
|
+
#
|
|
599
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/rolesanywhere-2018-05-10/PutNotificationSettingsRequest AWS API Documentation
|
|
600
|
+
#
|
|
601
|
+
class PutNotificationSettingsRequest < Struct.new(
|
|
602
|
+
:notification_settings,
|
|
603
|
+
:trust_anchor_id)
|
|
604
|
+
SENSITIVE = []
|
|
605
|
+
include Aws::Structure
|
|
606
|
+
end
|
|
607
|
+
|
|
608
|
+
# @!attribute [rw] trust_anchor
|
|
609
|
+
# The state of the trust anchor after a read or write operation.
|
|
610
|
+
# @return [Types::TrustAnchorDetail]
|
|
611
|
+
#
|
|
612
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/rolesanywhere-2018-05-10/PutNotificationSettingsResponse AWS API Documentation
|
|
613
|
+
#
|
|
614
|
+
class PutNotificationSettingsResponse < Struct.new(
|
|
615
|
+
:trust_anchor)
|
|
616
|
+
SENSITIVE = []
|
|
617
|
+
include Aws::Structure
|
|
618
|
+
end
|
|
619
|
+
|
|
620
|
+
# @!attribute [rw] notification_setting_keys
|
|
621
|
+
# A list of notification setting keys to reset. A notification setting
|
|
622
|
+
# key includes the event and the channel.
|
|
623
|
+
# @return [Array<Types::NotificationSettingKey>]
|
|
624
|
+
#
|
|
625
|
+
# @!attribute [rw] trust_anchor_id
|
|
626
|
+
# The unique identifier of the trust anchor.
|
|
627
|
+
# @return [String]
|
|
628
|
+
#
|
|
629
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/rolesanywhere-2018-05-10/ResetNotificationSettingsRequest AWS API Documentation
|
|
630
|
+
#
|
|
631
|
+
class ResetNotificationSettingsRequest < Struct.new(
|
|
632
|
+
:notification_setting_keys,
|
|
633
|
+
:trust_anchor_id)
|
|
634
|
+
SENSITIVE = []
|
|
635
|
+
include Aws::Structure
|
|
636
|
+
end
|
|
637
|
+
|
|
638
|
+
# @!attribute [rw] trust_anchor
|
|
639
|
+
# The state of the trust anchor after a read or write operation.
|
|
640
|
+
# @return [Types::TrustAnchorDetail]
|
|
641
|
+
#
|
|
642
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/rolesanywhere-2018-05-10/ResetNotificationSettingsResponse AWS API Documentation
|
|
643
|
+
#
|
|
644
|
+
class ResetNotificationSettingsResponse < Struct.new(
|
|
645
|
+
:trust_anchor)
|
|
646
|
+
SENSITIVE = []
|
|
647
|
+
include Aws::Structure
|
|
648
|
+
end
|
|
649
|
+
|
|
511
650
|
# The resource could not be found.
|
|
512
651
|
#
|
|
513
652
|
# @!attribute [rw] message
|
|
@@ -595,14 +734,9 @@ module Aws::RolesAnywhere
|
|
|
595
734
|
# @note SourceData is a union - when returned from an API call exactly one value will be set and the returned type will be a subclass of SourceData corresponding to the set member.
|
|
596
735
|
#
|
|
597
736
|
# @!attribute [rw] acm_pca_arn
|
|
598
|
-
# The root certificate of the Certificate
|
|
599
|
-
#
|
|
600
|
-
#
|
|
601
|
-
# `AWS_ACM_PCA`.
|
|
602
|
-
#
|
|
603
|
-
#
|
|
604
|
-
#
|
|
605
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
737
|
+
# The root certificate of the Private Certificate Authority specified
|
|
738
|
+
# by this ARN is used in trust validation for temporary credential
|
|
739
|
+
# requests. Included for trust anchors of type `AWS_ACM_PCA`.
|
|
606
740
|
# @return [String]
|
|
607
741
|
#
|
|
608
742
|
# @!attribute [rw] x509_certificate_data
|
|
@@ -633,7 +767,7 @@ module Aws::RolesAnywhere
|
|
|
633
767
|
#
|
|
634
768
|
# @!attribute [rw] credentials
|
|
635
769
|
# The temporary session credentials vended at the last authenticating
|
|
636
|
-
# call with this
|
|
770
|
+
# call with this subject.
|
|
637
771
|
# @return [Array<Types::CredentialSummary>]
|
|
638
772
|
#
|
|
639
773
|
# @!attribute [rw] enabled
|
|
@@ -645,7 +779,7 @@ module Aws::RolesAnywhere
|
|
|
645
779
|
# @return [Array<Types::InstanceProperty>]
|
|
646
780
|
#
|
|
647
781
|
# @!attribute [rw] last_seen_at
|
|
648
|
-
# The ISO-8601 timestamp of the last time this
|
|
782
|
+
# The ISO-8601 timestamp of the last time this subject requested
|
|
649
783
|
# temporary session credentials.
|
|
650
784
|
# @return [Time]
|
|
651
785
|
#
|
|
@@ -693,29 +827,20 @@ module Aws::RolesAnywhere
|
|
|
693
827
|
include Aws::Structure
|
|
694
828
|
end
|
|
695
829
|
|
|
696
|
-
# A summary representation of
|
|
697
|
-
# operations; primarily ListSubjects.
|
|
830
|
+
# A summary representation of subjects.
|
|
698
831
|
#
|
|
699
832
|
# @!attribute [rw] created_at
|
|
700
833
|
# The ISO-8601 time stamp of when the certificate was first used in a
|
|
701
|
-
#
|
|
702
|
-
#
|
|
703
|
-
#
|
|
704
|
-
#
|
|
705
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
834
|
+
# temporary credential request.
|
|
706
835
|
# @return [Time]
|
|
707
836
|
#
|
|
708
837
|
# @!attribute [rw] enabled
|
|
709
|
-
# The enabled status of the
|
|
838
|
+
# The enabled status of the subject.
|
|
710
839
|
# @return [Boolean]
|
|
711
840
|
#
|
|
712
841
|
# @!attribute [rw] last_seen_at
|
|
713
842
|
# The ISO-8601 time stamp of when the certificate was last used in a
|
|
714
|
-
#
|
|
715
|
-
#
|
|
716
|
-
#
|
|
717
|
-
#
|
|
718
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
843
|
+
# temporary credential request.
|
|
719
844
|
# @return [Time]
|
|
720
845
|
#
|
|
721
846
|
# @!attribute [rw] subject_arn
|
|
@@ -815,6 +940,11 @@ module Aws::RolesAnywhere
|
|
|
815
940
|
# The name of the trust anchor.
|
|
816
941
|
# @return [String]
|
|
817
942
|
#
|
|
943
|
+
# @!attribute [rw] notification_settings
|
|
944
|
+
# A list of notification settings to be associated to the trust
|
|
945
|
+
# anchor.
|
|
946
|
+
# @return [Array<Types::NotificationSettingDetail>]
|
|
947
|
+
#
|
|
818
948
|
# @!attribute [rw] source
|
|
819
949
|
# The trust anchor type and its related certificate data.
|
|
820
950
|
# @return [Types::Source]
|
|
@@ -837,6 +967,7 @@ module Aws::RolesAnywhere
|
|
|
837
967
|
:created_at,
|
|
838
968
|
:enabled,
|
|
839
969
|
:name,
|
|
970
|
+
:notification_settings,
|
|
840
971
|
:source,
|
|
841
972
|
:trust_anchor_arn,
|
|
842
973
|
:trust_anchor_id,
|
|
@@ -879,7 +1010,7 @@ module Aws::RolesAnywhere
|
|
|
879
1010
|
class UntagResourceResponse < Aws::EmptyStructure; end
|
|
880
1011
|
|
|
881
1012
|
# @!attribute [rw] crl_data
|
|
882
|
-
# The x509 v3 specified certificate revocation list
|
|
1013
|
+
# The x509 v3 specified certificate revocation list (CRL).
|
|
883
1014
|
# @return [String]
|
|
884
1015
|
#
|
|
885
1016
|
# @!attribute [rw] crl_id
|
|
@@ -918,12 +1049,8 @@ module Aws::RolesAnywhere
|
|
|
918
1049
|
# @return [String]
|
|
919
1050
|
#
|
|
920
1051
|
# @!attribute [rw] role_arns
|
|
921
|
-
# A list of IAM roles that this profile can assume in a
|
|
922
|
-
#
|
|
923
|
-
#
|
|
924
|
-
#
|
|
925
|
-
#
|
|
926
|
-
# [1]: https://docs.aws.amazon.com/rolesanywhere/latest/APIReference/API_CreateSession.html
|
|
1052
|
+
# A list of IAM roles that this profile can assume in a temporary
|
|
1053
|
+
# credential request.
|
|
927
1054
|
# @return [Array<String>]
|
|
928
1055
|
#
|
|
929
1056
|
# @!attribute [rw] session_policy
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: aws-sdk-rolesanywhere
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.
|
|
4
|
+
version: 1.3.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Amazon Web Services
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2023-
|
|
11
|
+
date: 2023-05-15 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: aws-sdk-core
|