aws-sdk-s3control 1.97.0 → 1.99.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 30ffdf89bc69e79f0d7fddaca467179bb9b41a866926c48a865e4c3eb41c7560
-  data.tar.gz: 1da95e12ac5c767c2c35594a29e8bee214119ff9c2cdb891e751e4d63429a4c5
+  metadata.gz: a2177ac0aad4f1bc0af9afb89a5b6a3311c8754d44c96aefb37129eff15d310b
+  data.tar.gz: 2bb2314fc3f666343c24517fb7e6d53c78a7ac1840156a3c16c85e2c16a0f082
 SHA512:
-  metadata.gz: 8fa6e239ea7d19dc49ef04fa9043e811833bbb4c429c51f9f7620a576987c3707f01ca6bb7d6fb3797380cea78cb5261b657272d0b25785d0fb64d4ced831a39
-  data.tar.gz: b963e8468cfef67f547253ba099dcc633ebfe37d39155e1cecf4a0f92208dd394051a2bb49edbf4ab9432e7287d4aaaa7883ac14632c4a8c20ed41244afebd14
+  metadata.gz: d9403af2698f4b597c1fcc3c77b2bcb008b1577381c5715d21df7d845715f9dc6f140d791c086847c0e867f1fb4d00fbfe26f2fcab063f74edb5d1a1b9cecd6d
+  data.tar.gz: 5b23efb92902012a35ddae456e39bbe91f691e692d5e8be4d07da7c44c7bad959113cb404f78b784fbe9a6a30c2bacf7b04653913d25ee0b525df03fecf69984

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.99.0 (2024-12-03)
+------------------
+
+* Feature - It allows customers to pass CRC64NVME as a header in S3 Batch Operations copy requests
+
+1.98.0 (2024-12-02)
+------------------
+
+* Feature - Amazon S3 introduces support for AWS Dedicated Local Zones
+
 1.97.0 (2024-11-18)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.97.0
+1.99.0

data/lib/aws-sdk-s3control/client.rb

@@ -1235,7 +1235,7 @@ module Aws::S3Control
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/batch-ops-actions.html
+    #   [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/batch-ops-operations.html
     #
     # @option params [required, Types::JobReport] :report
     #   Configuration parameters for the optional job-completion report.
@@ -1336,7 +1336,7 @@ module Aws::S3Control
     #         object_lock_mode: "COMPLIANCE", # accepts COMPLIANCE, GOVERNANCE
     #         object_lock_retain_until_date: Time.now,
     #         bucket_key_enabled: false,
-    #         checksum_algorithm: "CRC32", # accepts CRC32, CRC32C, SHA1, SHA256
+    #         checksum_algorithm: "CRC32", # accepts CRC32, CRC32C, SHA1, SHA256, CRC64NVME
     #       },
     #       s3_put_object_acl: {
     #         access_control_policy: {
@@ -2847,7 +2847,7 @@ module Aws::S3Control
     #   resp.job.operation.s3_put_object_copy.object_lock_mode #=> String, one of "COMPLIANCE", "GOVERNANCE"
     #   resp.job.operation.s3_put_object_copy.object_lock_retain_until_date #=> Time
     #   resp.job.operation.s3_put_object_copy.bucket_key_enabled #=> Boolean
-    #   resp.job.operation.s3_put_object_copy.checksum_algorithm #=> String, one of "CRC32", "CRC32C", "SHA1", "SHA256"
+    #   resp.job.operation.s3_put_object_copy.checksum_algorithm #=> String, one of "CRC32", "CRC32C", "SHA1", "SHA256", "CRC64NVME"
     #   resp.job.operation.s3_put_object_acl.access_control_policy.access_control_list.owner.id #=> String
     #   resp.job.operation.s3_put_object_acl.access_control_policy.access_control_list.owner.display_name #=> String
     #   resp.job.operation.s3_put_object_acl.access_control_policy.access_control_list.grants #=> Array
@@ -5393,15 +5393,29 @@ module Aws::S3Control
       req.send_request(options)
     end
 
-    # Returns a list of the access grants that were given to the caller
-    # using S3 Access Grants and that allow the caller to access the S3 data
-    # of the Amazon Web Services account specified in the request.
+    # Use this API to list the access grants that grant the caller access to
+    # Amazon S3 data through S3 Access Grants. The caller (grantee) can be
+    # an Identity and Access Management (IAM) identity or Amazon Web
+    # Services Identity Center corporate directory identity. You must pass
+    # the Amazon Web Services account of the S3 data owner (grantor) in the
+    # request. You can, optionally, narrow the results by `GrantScope`,
+    # using a fragment of the data's S3 path, and S3 Access Grants will
+    # return only the grants with a path that contains the path fragment.
+    # You can also pass the `AllowedByApplication` filter in the request,
+    # which returns only the grants authorized for applications, whether the
+    # application is the caller's Identity Center application or any other
+    # application (`ALL`). For more information, see [List the caller's
+    # access grants][1] in the *Amazon S3 User Guide*.
     #
     # Permissions
     #
     # : You must have the `s3:ListCallerAccessGrants` permission to use this
     #   operation.
     #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-grants-list-grants.html
+    #
     # @option params [String] :account_id
     #   The Amazon Web Services account ID of the S3 Access Grants instance.
     #
@@ -7720,7 +7734,7 @@ module Aws::S3Control
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-s3control'
-      context[:gem_version] = '1.97.0'
+      context[:gem_version] = '1.99.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-s3control/types.rb

@@ -1175,7 +1175,7 @@ module Aws::S3Control
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/batch-ops-actions.html
+    #   [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/batch-ops-operations.html
     #   @return [Types::JobOperation]
     #
     # @!attribute [rw] report
@@ -7013,9 +7013,35 @@ module Aws::S3Control
     #   @return [Time]
     #
     # @!attribute [rw] sse_aws_kms_key_id
-    #   <note markdown="1"> This functionality is not supported by directory buckets.
+    #   Specifies the KMS key ID (Key ID, Key ARN, or Key Alias) to use for
+    #   object encryption. If the KMS key doesn't exist in the same account
+    #   that's issuing the command, you must use the full Key ARN not the
+    #   Key ID.
+    #
+    #   <note markdown="1"> **Directory buckets** - If you specify `SSEAlgorithm` with `KMS`,
+    #   you must specify the ` SSEAwsKmsKeyId` parameter with the ID (Key ID
+    #   or Key ARN) of the KMS symmetric encryption customer managed key to
+    #   use. Otherwise, you get an HTTP `400 Bad Request` error. The key
+    #   alias format of the KMS key isn't supported. To encrypt new object
+    #   copies in a directory bucket with SSE-KMS, you must specify SSE-KMS
+    #   as the directory bucket's default encryption configuration with a
+    #   KMS key (specifically, a [customer managed key][1]). The [Amazon Web
+    #   Services managed key][2] (`aws/s3`) isn't supported. Your SSE-KMS
+    #   configuration can only support 1 [customer managed key][1] per
+    #   directory bucket for the lifetime of the bucket. After you specify a
+    #   customer managed key for SSE-KMS as the bucket default encryption,
+    #   you can't override the customer managed key for the bucket's
+    #   SSE-KMS configuration. Then, when you specify server-side encryption
+    #   settings for new object copies with SSE-KMS, you must make sure the
+    #   encryption key is the same customer managed key that you specified
+    #   for the directory bucket's default encryption configuration.
     #
     #    </note>
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#customer-cmk
+    #   [2]: https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-managed-cmk
     #   @return [String]
     #
     # @!attribute [rw] target_key_prefix
@@ -7058,12 +7084,21 @@ module Aws::S3Control
     #   (SSE-KMS). Setting this header to `true` causes Amazon S3 to use an
     #   S3 Bucket Key for object encryption with SSE-KMS.
     #
-    #   Specifying this header with an *object* action doesn’t affect
+    #   Specifying this header with an *Copy* action doesn’t affect
     #   *bucket-level* settings for S3 Bucket Key.
     #
-    #   <note markdown="1"> This functionality is not supported by directory buckets.
+    #   <note markdown="1"> **Directory buckets** - S3 Bucket Keys aren't supported, when you
+    #   copy SSE-KMS encrypted objects from general purpose buckets to
+    #   directory buckets, from directory buckets to general purpose
+    #   buckets, or between directory buckets, through [the Copy operation
+    #   in Batch Operations][1]. In this case, Amazon S3 makes a call to KMS
+    #   every time a copy request is made for a KMS-encrypted object.
     #
     #    </note>
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/directory-buckets-objects-Batch-Ops
     #   @return [Boolean]
     #
     # @!attribute [rw] checksum_algorithm
@@ -7360,10 +7395,22 @@ module Aws::S3Control
     #   @return [Boolean]
     #
     # @!attribute [rw] sse_algorithm
-    #   <note markdown="1"> For directory buckets, only the server-side encryption with Amazon
-    #   S3 managed keys (SSE-S3) (`AES256`) is supported.
+    #   The server-side encryption algorithm used when storing objects in
+    #   Amazon S3.
     #
-    #    </note>
+    #   <b>Directory buckets </b> - For directory buckets, there are only
+    #   two supported options for server-side encryption: server-side
+    #   encryption with Amazon S3 managed keys (SSE-S3) (`AES256`) and
+    #   server-side encryption with KMS keys (SSE-KMS) (`KMS`). For more
+    #   information, see [Protecting data with server-side encryption][1] in
+    #   the *Amazon S3 User Guide*. For [the Copy operation in Batch
+    #   Operations][2], see [S3CopyObjectOperation][3].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/s3-express-serv-side-encryption.html
+    #   [2]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/directory-buckets-objects-Batch-Ops
+    #   [3]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_S3CopyObjectOperation.html
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/s3control-2018-08-20/S3ObjectMetadata AWS API Documentation

data/lib/aws-sdk-s3control.rb

@@ -54,7 +54,7 @@ module Aws::S3Control
   autoload :EndpointProvider, 'aws-sdk-s3control/endpoint_provider'
   autoload :Endpoints, 'aws-sdk-s3control/endpoints'
 
-  GEM_VERSION = '1.97.0'
+  GEM_VERSION = '1.99.0'
 
 end
 

data/sig/client.rbs

@@ -293,7 +293,7 @@ module Aws
                             object_lock_mode: ("COMPLIANCE" | "GOVERNANCE")?,
                             object_lock_retain_until_date: ::Time?,
                             bucket_key_enabled: bool?,
-                            checksum_algorithm: ("CRC32" | "CRC32C" | "SHA1" | "SHA256")?
+                            checksum_algorithm: ("CRC32" | "CRC32C" | "SHA1" | "SHA256" | "CRC64NVME")?
                           }?,
                           s3_put_object_acl: {
                             access_control_policy: {

data/sig/types.rbs

@@ -1646,7 +1646,7 @@ module Aws::S3Control
       attr_accessor object_lock_mode: ("COMPLIANCE" | "GOVERNANCE")
       attr_accessor object_lock_retain_until_date: ::Time
       attr_accessor bucket_key_enabled: bool
-      attr_accessor checksum_algorithm: ("CRC32" | "CRC32C" | "SHA1" | "SHA256")
+      attr_accessor checksum_algorithm: ("CRC32" | "CRC32C" | "SHA1" | "SHA256" | "CRC64NVME")
       SENSITIVE: []
     end
 

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-s3control
 version: !ruby/object:Gem::Version
-  version: 1.97.0
+  version: 1.99.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-11-18 00:00:00.000000000 Z
+date: 2024-12-03 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core