aws-sdk-secretsmanager 1.11.0 → 1.12.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/aws-sdk-secretsmanager.rb +1 -1
- data/lib/aws-sdk-secretsmanager/client.rb +38 -35
- data/lib/aws-sdk-secretsmanager/types.rb +36 -33
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA1:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: fd358061ebd70aaed40677acb3ef32be6676624d
|
4
|
+
data.tar.gz: 3fba6faad31395890452df24f2725eaa55ba5133
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 13007f16163101777b4420f3e03819c15a122125b0fe5da6bca956d016df22ee1baeea910880e5d6c023e8cd2cebf20fa523899d6c5e36d57cdf44a482574f8a
|
7
|
+
data.tar.gz: 76c0698c49ff526e01770c0b09d696c6011ed89ba970a632bda03e84afe4da10555235022a83bf749dd751ae22391937742f6514dda3b56198bd05eda486b0e2
|
@@ -178,10 +178,10 @@ module Aws::SecretsManager
|
|
178
178
|
# `VersionStage` labels in an unexpected state. Depending on what step
|
179
179
|
# of the rotation was in progress, you might need to remove the staging
|
180
180
|
# label `AWSPENDING` from the partially created version, specified by
|
181
|
-
# the `
|
182
|
-
#
|
183
|
-
#
|
184
|
-
#
|
181
|
+
# the `VersionId` response value. You should also evaluate the partially
|
182
|
+
# rotated new version to see if it should be deleted, which you can do
|
183
|
+
# by removing all staging labels from the new version's `VersionStage`
|
184
|
+
# field.
|
185
185
|
#
|
186
186
|
# </note>
|
187
187
|
#
|
@@ -387,7 +387,7 @@ module Aws::SecretsManager
|
|
387
387
|
# existing version. Instead, use PutSecretValue to create a new
|
388
388
|
# version.
|
389
389
|
#
|
390
|
-
# This value becomes the `
|
390
|
+
# This value becomes the `VersionId` of the new version.
|
391
391
|
#
|
392
392
|
# **A suitable default value is auto-generated.** You should normally
|
393
393
|
# not need to pass this option.**
|
@@ -686,14 +686,15 @@ module Aws::SecretsManager
|
|
686
686
|
#
|
687
687
|
# @option params [Integer] :recovery_window_in_days
|
688
688
|
# (Optional) Specifies the number of days that Secrets Manager waits
|
689
|
-
# before it can delete the secret.
|
689
|
+
# before it can delete the secret. You can't use both this parameter
|
690
|
+
# and the `ForceDeleteWithoutRecovery` parameter in the same API call.
|
690
691
|
#
|
691
692
|
# This value can range from 7 to 30 days. The default value is 30.
|
692
693
|
#
|
693
694
|
# @option params [Boolean] :force_delete_without_recovery
|
694
|
-
# (Optional) Specifies that the secret is to be deleted
|
695
|
-
#
|
696
|
-
#
|
695
|
+
# (Optional) Specifies that the secret is to be deleted without any
|
696
|
+
# recovery window. You can't use both this parameter and the
|
697
|
+
# `RecoveryWindowInDays` parameter in the same API call.
|
697
698
|
#
|
698
699
|
# An asynchronous background process performs the actual deletion, so
|
699
700
|
# there can be a short delay before the operation completes. If you
|
@@ -911,6 +912,13 @@ module Aws::SecretsManager
|
|
911
912
|
# characters. The default if you do not include this switch parameter is
|
912
913
|
# that punctuation characters can be included.
|
913
914
|
#
|
915
|
+
# The following are the punctuation characters that *can* be included in
|
916
|
+
# the generated password if you don't explicitly exclude them with
|
917
|
+
# `ExcludeCharacters` or `ExcludePunctuation`\:
|
918
|
+
#
|
919
|
+
# `` ! " # $ % & ' ( ) * + , - . / : ; < = > ? @ [ \ ] ^ _ ` \{ | \} ~
|
920
|
+
# ``
|
921
|
+
#
|
914
922
|
# @option params [Boolean] :exclude_uppercase
|
915
923
|
# Specifies that the generated password should not include uppercase
|
916
924
|
# letters. The default if you do not include this switch parameter is
|
@@ -1081,7 +1089,7 @@ module Aws::SecretsManager
|
|
1081
1089
|
# Specifies the unique identifier of the version of the secret that you
|
1082
1090
|
# want to retrieve. If you specify this parameter then don't specify
|
1083
1091
|
# `VersionStage`. If you don't specify either a `VersionStage` or
|
1084
|
-
# `
|
1092
|
+
# `VersionId` then the default is to perform the operation on the
|
1085
1093
|
# version with the `VersionStage` value of `AWSCURRENT`.
|
1086
1094
|
#
|
1087
1095
|
# This value is typically a [UUID-type][1] value with 32 hexadecimal
|
@@ -1097,8 +1105,8 @@ module Aws::SecretsManager
|
|
1097
1105
|
#
|
1098
1106
|
# Staging labels are used to keep track of different versions during the
|
1099
1107
|
# rotation process. If you use this parameter then don't specify
|
1100
|
-
# `
|
1101
|
-
# `
|
1108
|
+
# `VersionId`. If you don't specify either a `VersionStage` or
|
1109
|
+
# `VersionId`, then the default is to perform the operation on the
|
1102
1110
|
# version with the `VersionStage` value of `AWSCURRENT`.
|
1103
1111
|
#
|
1104
1112
|
# @return [Types::GetSecretValueResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
@@ -1541,10 +1549,10 @@ module Aws::SecretsManager
|
|
1541
1549
|
# moves the staging label `AWSPREVIOUS` to the version that
|
1542
1550
|
# `AWSCURRENT` was removed from.
|
1543
1551
|
#
|
1544
|
-
# * This operation is idempotent. If a version with a `
|
1545
|
-
#
|
1546
|
-
#
|
1547
|
-
#
|
1552
|
+
# * This operation is idempotent. If a version with a `VersionId` with
|
1553
|
+
# the same value as the `ClientRequestToken` parameter already exists
|
1554
|
+
# and you specify the same secret data, the operation succeeds but
|
1555
|
+
# does nothing. However, if the secret data is different, then the
|
1548
1556
|
# operation fails because you cannot modify an existing version; you
|
1549
1557
|
# can only create new ones.
|
1550
1558
|
#
|
@@ -1633,7 +1641,7 @@ module Aws::SecretsManager
|
|
1633
1641
|
# existing secret version. You can only create new versions to store
|
1634
1642
|
# new secret values.
|
1635
1643
|
#
|
1636
|
-
# This value becomes the `
|
1644
|
+
# This value becomes the `VersionId` of the new version.
|
1637
1645
|
#
|
1638
1646
|
# **A suitable default value is auto-generated.** You should normally
|
1639
1647
|
# not need to pass this option.**
|
@@ -1837,6 +1845,14 @@ module Aws::SecretsManager
|
|
1837
1845
|
# for your protected service, see [Rotating Secrets in AWS Secrets
|
1838
1846
|
# Manager][1] in the *AWS Secrets Manager User Guide*.
|
1839
1847
|
#
|
1848
|
+
# Secrets Manager schedules the next rotation when the previous one is
|
1849
|
+
# complete. Secrets Manager schedules the date by adding the rotation
|
1850
|
+
# interval (number of days) to the actual date of the last rotation. The
|
1851
|
+
# service chooses the hour within that 24-hour date window randomly. The
|
1852
|
+
# minute is also chosen somewhat randomly, but weighted towards the top
|
1853
|
+
# of the hour and influenced by a variety of factors that help
|
1854
|
+
# distribute load.
|
1855
|
+
#
|
1840
1856
|
# The rotation function must end with the versions of the secret in one
|
1841
1857
|
# of two states:
|
1842
1858
|
#
|
@@ -1898,21 +1914,8 @@ module Aws::SecretsManager
|
|
1898
1914
|
#
|
1899
1915
|
# Secrets Manager uses this value to prevent the accidental creation of
|
1900
1916
|
# duplicate versions if there are failures and retries during the
|
1901
|
-
# function's processing.
|
1902
|
-
#
|
1903
|
-
# * If the `ClientRequestToken` value isn't already associated with a
|
1904
|
-
# version of the secret then a new version of the secret is created.
|
1905
|
-
#
|
1906
|
-
# * If a version with this value already exists and that version's
|
1907
|
-
# `SecretString` and `SecretBinary` values are the same as the
|
1908
|
-
# request, then the request is ignored (the operation is idempotent).
|
1909
|
-
#
|
1910
|
-
# * If a version with this value already exists and that version's
|
1911
|
-
# `SecretString` and `SecretBinary` values are different from the
|
1912
|
-
# request then an error occurs because you cannot modify an existing
|
1913
|
-
# secret value.
|
1914
|
-
#
|
1915
|
-
# This value becomes the `SecretVersionId` of the new version.
|
1917
|
+
# function's processing. This value becomes the `VersionId` of the new
|
1918
|
+
# version.
|
1916
1919
|
#
|
1917
1920
|
# **A suitable default value is auto-generated.** You should normally
|
1918
1921
|
# not need to pass this option.**
|
@@ -2158,7 +2161,7 @@ module Aws::SecretsManager
|
|
2158
2161
|
#
|
2159
2162
|
# </note>
|
2160
2163
|
#
|
2161
|
-
# * If a version with a `
|
2164
|
+
# * If a version with a `VersionId` with the same value as the
|
2162
2165
|
# `ClientRequestToken` parameter already exists, the operation results
|
2163
2166
|
# in an error. You cannot modify an existing version, you can only
|
2164
2167
|
# create a new version.
|
@@ -2258,7 +2261,7 @@ module Aws::SecretsManager
|
|
2258
2261
|
# request then an error occurs because you cannot modify an existing
|
2259
2262
|
# secret value.
|
2260
2263
|
#
|
2261
|
-
# This value becomes the `
|
2264
|
+
# This value becomes the `VersionId` of the new version.
|
2262
2265
|
#
|
2263
2266
|
# **A suitable default value is auto-generated.** You should normally
|
2264
2267
|
# not need to pass this option.**
|
@@ -2580,7 +2583,7 @@ module Aws::SecretsManager
|
|
2580
2583
|
params: params,
|
2581
2584
|
config: config)
|
2582
2585
|
context[:gem_name] = 'aws-sdk-secretsmanager'
|
2583
|
-
context[:gem_version] = '1.
|
2586
|
+
context[:gem_version] = '1.12.0'
|
2584
2587
|
Seahorse::Client::Request.new(handlers, context)
|
2585
2588
|
end
|
2586
2589
|
|
@@ -114,7 +114,7 @@ module Aws::SecretsManager
|
|
114
114
|
# existing version. Instead, use PutSecretValue to create a new
|
115
115
|
# version.
|
116
116
|
#
|
117
|
-
# This value becomes the `
|
117
|
+
# This value becomes the `VersionId` of the new version.
|
118
118
|
#
|
119
119
|
# **A suitable default value is auto-generated.** You should normally
|
120
120
|
# not need to pass this option.
|
@@ -345,15 +345,16 @@ module Aws::SecretsManager
|
|
345
345
|
#
|
346
346
|
# @!attribute [rw] recovery_window_in_days
|
347
347
|
# (Optional) Specifies the number of days that Secrets Manager waits
|
348
|
-
# before it can delete the secret.
|
348
|
+
# before it can delete the secret. You can't use both this parameter
|
349
|
+
# and the `ForceDeleteWithoutRecovery` parameter in the same API call.
|
349
350
|
#
|
350
351
|
# This value can range from 7 to 30 days. The default value is 30.
|
351
352
|
# @return [Integer]
|
352
353
|
#
|
353
354
|
# @!attribute [rw] force_delete_without_recovery
|
354
|
-
# (Optional) Specifies that the secret is to be deleted
|
355
|
-
#
|
356
|
-
#
|
355
|
+
# (Optional) Specifies that the secret is to be deleted without any
|
356
|
+
# recovery window. You can't use both this parameter and the
|
357
|
+
# `RecoveryWindowInDays` parameter in the same API call.
|
357
358
|
#
|
358
359
|
# An asynchronous background process performs the actual deletion, so
|
359
360
|
# there can be a short delay before the operation completes. If you
|
@@ -462,8 +463,9 @@ module Aws::SecretsManager
|
|
462
463
|
# @return [Types::RotationRulesType]
|
463
464
|
#
|
464
465
|
# @!attribute [rw] last_rotated_date
|
465
|
-
# The
|
466
|
-
#
|
466
|
+
# The most recent date and time that the Secrets Manager rotation
|
467
|
+
# process was successfully completed. This value is null if the secret
|
468
|
+
# has never rotated.
|
467
469
|
# @return [Time]
|
468
470
|
#
|
469
471
|
# @!attribute [rw] last_changed_date
|
@@ -494,9 +496,9 @@ module Aws::SecretsManager
|
|
494
496
|
#
|
495
497
|
# @!attribute [rw] version_ids_to_stages
|
496
498
|
# A list of all of the currently assigned `VersionStage` staging
|
497
|
-
# labels and the `
|
498
|
-
#
|
499
|
-
#
|
499
|
+
# labels and the `VersionId` that each is attached to. Staging labels
|
500
|
+
# are used to keep track of the different versions during the rotation
|
501
|
+
# process.
|
500
502
|
#
|
501
503
|
# <note markdown="1"> A version that does not have any staging labels attached is
|
502
504
|
# considered deprecated and subject to deletion. Such versions are not
|
@@ -559,6 +561,13 @@ module Aws::SecretsManager
|
|
559
561
|
# Specifies that the generated password should not include punctuation
|
560
562
|
# characters. The default if you do not include this switch parameter
|
561
563
|
# is that punctuation characters can be included.
|
564
|
+
#
|
565
|
+
# The following are the punctuation characters that *can* be included
|
566
|
+
# in the generated password if you don't explicitly exclude them with
|
567
|
+
# `ExcludeCharacters` or `ExcludePunctuation`\:
|
568
|
+
#
|
569
|
+
# `` ! " # $ % & ' ( ) * + , - . / : ; < = > ? @ [ \ ] ^ _ ` \{ | \} ~
|
570
|
+
# ``
|
562
571
|
# @return [Boolean]
|
563
572
|
#
|
564
573
|
# @!attribute [rw] exclude_uppercase
|
@@ -683,8 +692,8 @@ module Aws::SecretsManager
|
|
683
692
|
# Specifies the unique identifier of the version of the secret that
|
684
693
|
# you want to retrieve. If you specify this parameter then don't
|
685
694
|
# specify `VersionStage`. If you don't specify either a
|
686
|
-
# `VersionStage` or `
|
687
|
-
#
|
695
|
+
# `VersionStage` or `VersionId` then the default is to perform the
|
696
|
+
# operation on the version with the `VersionStage` value of
|
688
697
|
# `AWSCURRENT`.
|
689
698
|
#
|
690
699
|
# This value is typically a [UUID-type][1] value with 32 hexadecimal
|
@@ -701,9 +710,9 @@ module Aws::SecretsManager
|
|
701
710
|
#
|
702
711
|
# Staging labels are used to keep track of different versions during
|
703
712
|
# the rotation process. If you use this parameter then don't specify
|
704
|
-
# `
|
705
|
-
# `
|
706
|
-
#
|
713
|
+
# `VersionId`. If you don't specify either a `VersionStage` or
|
714
|
+
# `VersionId`, then the default is to perform the operation on the
|
715
|
+
# version with the `VersionStage` value of `AWSCURRENT`.
|
707
716
|
# @return [String]
|
708
717
|
#
|
709
718
|
# @see http://docs.aws.amazon.com/goto/WebAPI/secretsmanager-2017-10-17/GetSecretValueRequest AWS API Documentation
|
@@ -1045,7 +1054,7 @@ module Aws::SecretsManager
|
|
1045
1054
|
# existing secret version. You can only create new versions to store
|
1046
1055
|
# new secret values.
|
1047
1056
|
#
|
1048
|
-
# This value becomes the `
|
1057
|
+
# This value becomes the `VersionId` of the new version.
|
1049
1058
|
#
|
1050
1059
|
# **A suitable default value is auto-generated.** You should normally
|
1051
1060
|
# not need to pass this option.
|
@@ -1230,22 +1239,8 @@ module Aws::SecretsManager
|
|
1230
1239
|
#
|
1231
1240
|
# Secrets Manager uses this value to prevent the accidental creation
|
1232
1241
|
# of duplicate versions if there are failures and retries during the
|
1233
|
-
# function's processing.
|
1234
|
-
#
|
1235
|
-
# * If the `ClientRequestToken` value isn't already associated with a
|
1236
|
-
# version of the secret then a new version of the secret is created.
|
1237
|
-
#
|
1238
|
-
# * If a version with this value already exists and that version's
|
1239
|
-
# `SecretString` and `SecretBinary` values are the same as the
|
1240
|
-
# request, then the request is ignored (the operation is
|
1241
|
-
# idempotent).
|
1242
|
-
#
|
1243
|
-
# * If a version with this value already exists and that version's
|
1244
|
-
# `SecretString` and `SecretBinary` values are different from the
|
1245
|
-
# request then an error occurs because you cannot modify an existing
|
1246
|
-
# secret value.
|
1247
|
-
#
|
1248
|
-
# This value becomes the `SecretVersionId` of the new version.
|
1242
|
+
# function's processing. This value becomes the `VersionId` of the
|
1243
|
+
# new version.
|
1249
1244
|
#
|
1250
1245
|
# **A suitable default value is auto-generated.** You should normally
|
1251
1246
|
# not need to pass this option.
|
@@ -1308,6 +1303,14 @@ module Aws::SecretsManager
|
|
1308
1303
|
# @!attribute [rw] automatically_after_days
|
1309
1304
|
# Specifies the number of days between automatic scheduled rotations
|
1310
1305
|
# of the secret.
|
1306
|
+
#
|
1307
|
+
# Secrets Manager schedules the next rotation when the previous one is
|
1308
|
+
# complete. Secrets Manager schedules the date by adding the rotation
|
1309
|
+
# interval (number of days) to the actual date of the last rotation.
|
1310
|
+
# The service chooses the hour within that 24-hour date window
|
1311
|
+
# randomly. The minute is also chosen somewhat randomly, but weighted
|
1312
|
+
# towards the top of the hour and influenced by a variety of factors
|
1313
|
+
# that help distribute load.
|
1311
1314
|
# @return [Integer]
|
1312
1315
|
#
|
1313
1316
|
# @see http://docs.aws.amazon.com/goto/WebAPI/secretsmanager-2017-10-17/RotationRulesType AWS API Documentation
|
@@ -1616,7 +1619,7 @@ module Aws::SecretsManager
|
|
1616
1619
|
# request then an error occurs because you cannot modify an existing
|
1617
1620
|
# secret value.
|
1618
1621
|
#
|
1619
|
-
# This value becomes the `
|
1622
|
+
# This value becomes the `VersionId` of the new version.
|
1620
1623
|
#
|
1621
1624
|
# **A suitable default value is auto-generated.** You should normally
|
1622
1625
|
# not need to pass this option.
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-secretsmanager
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.12.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2018-08-
|
11
|
+
date: 2018-08-17 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|