aws-sdk-secretsmanager 1.67.0 → 1.69.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: f5a6c03a02b9b2daa83f085034afb055f3fe92cf5e3ecea832fee1fa3f65a8be
-  data.tar.gz: d5a004d5a0caa94cf36a67c5c9c39f0a4ef91466a8117f2c45d4d7f0f4411304
+  metadata.gz: bc0ff5feca9ac6b712aeb0e2dddc7f1111a0559e20ff191c97ad4aaa516f0ebf
+  data.tar.gz: c86dd204ca83ac9cfa57e0569a2c839f304ee3fcb98cb3e3bdc071508fe10078
 SHA512:
-  metadata.gz: 9c2acc3c5d7141c1f3ca416d80748579f02713e1e43c92fbec1ffd746f7b7bd9c0c4ab49b7d4ae82c60d2513345cb7b627973aaf97d04b192d30a01b8a6f1a15
-  data.tar.gz: 47c7654563343053d0d0297091a58a92749fac36c74edb144fed0b33e2e01fe06faa534a595d1997cc18ee7c86684db4d229b5bf243351cc7db50f5d23b06306
+  metadata.gz: b18c25898ad3591d6e1bd90731469b669ec0896fde5bfa7447922f24b02eeef95968360c687ab07e9fde9e7f5cef7cd05ca0dfcb375d67c087e0b180e8c0bff7
+  data.tar.gz: 7e24ae8e98ed0e5b541e5e50f5a71030114b5e196c8e38625e0c1fefed69c3d67355b86827329ca98b006230bfbcbce47b45481b6ad191dfcd38ec0cb81ec49d

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.69.0 (2022-12-22)
+------------------
+
+* Feature - Documentation updates for Secrets Manager
+
+1.68.0 (2022-11-17)
+------------------
+
+* Feature - Documentation updates for Secrets Manager.
+
 1.67.0 (2022-10-25)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.67.0
+1.69.0

data/lib/aws-sdk-secretsmanager/client.rb

@@ -471,8 +471,12 @@ module Aws::SecretsManager
     # secret in Secrets Manager consists of both the protected secret data
     # and the important information needed to manage the secret.
     #
+    # For secrets that use *managed rotation*, you need to create the secret
+    # through the managing service. For more information, see [Secrets
+    # Manager secrets managed by other Amazon Web Services services][1].
+    #
     # For information about creating a secret in the console, see [Create a
-    # secret][1].
+    # secret][2].
     #
     # To create a secret, you can provide the secret value to be encrypted
     # in either the `SecretString` parameter or the `SecretBinary`
@@ -483,7 +487,7 @@ module Aws::SecretsManager
     # For database credentials you want to rotate, for Secrets Manager to be
     # able to rotate the secret, you must make sure the JSON you store in
     # the `SecretString` matches the [JSON structure of a database
-    # secret][2].
+    # secret][3].
     #
     # If you don't specify an KMS encryption key, Secrets Manager uses the
     # Amazon Web Services managed key `aws/secretsmanager`. If this key
@@ -502,13 +506,13 @@ module Aws::SecretsManager
     # action. Do not include sensitive information in request parameters
     # except `SecretBinary` or `SecretString` because it might be logged.
     # For more information, see [Logging Secrets Manager events with
-    # CloudTrail][3].
+    # CloudTrail][4].
     #
     # <b>Required permissions: </b> `secretsmanager:CreateSecret`. If you
     # include tags in the secret, you also need
     # `secretsmanager:TagResource`. For more information, see [ IAM policy
-    # actions for Secrets Manager][4] and [Authentication and access control
-    # in Secrets Manager][5].
+    # actions for Secrets Manager][5] and [Authentication and access control
+    # in Secrets Manager][6].
     #
     # To encrypt the secret with a KMS key other than `aws/secretsmanager`,
     # you need `kms:GenerateDataKey` and `kms:Decrypt` permission to the
@@ -516,11 +520,12 @@ module Aws::SecretsManager
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/manage_create-basic-secret.html
-    # [2]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_secret_json_structure.html
-    # [3]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html
-    # [4]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_iam-permissions.html#reference_iam-permissions_actions
-    # [5]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access.html
+    # [1]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/service-linked-secrets.html
+    # [2]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/manage_create-basic-secret.html
+    # [3]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_secret_json_structure.html
+    # [4]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html
+    # [5]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_iam-permissions.html#reference_iam-permissions_actions
+    # [6]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access.html
     #
     # @option params [required, String] :name
     #   The name of the new secret.
@@ -907,9 +912,9 @@ module Aws::SecretsManager
     #   Use this parameter with caution. This parameter causes the operation
     #   to skip the normal recovery window before the permanent deletion that
     #   Secrets Manager would normally impose with the `RecoveryWindowInDays`
-    #   parameter. If you delete a secret with the `ForceDeleteWithouRecovery`
-    #   parameter, then you have no opportunity to recover the secret. You
-    #   lose the secret permanently.
+    #   parameter. If you delete a secret with the
+    #   `ForceDeleteWithoutRecovery` parameter, then you have no opportunity
+    #   to recover the secret. You lose the secret permanently.
     #
     # @return [Types::DeleteSecretResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -1575,7 +1580,7 @@ module Aws::SecretsManager
     #   The filters to apply to the list of secrets.
     #
     # @option params [String] :sort_order
-    #   Lists secrets in the requested order.
+    #   Secrets are listed by `CreatedDate`.
     #
     # @return [Types::ListSecretsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -2139,61 +2144,42 @@ module Aws::SecretsManager
     end
 
     # Configures and starts the asynchronous process of rotating the secret.
-    # For more information about rotation, see [Rotate secrets][1].
-    #
-    # If you include the configuration parameters, the operation sets the
-    # values for the secret and then immediately starts a rotation. If you
-    # don't include the configuration parameters, the operation starts a
-    # rotation with the values already stored in the secret.
-    #
-    # For database credentials you want to rotate, for Secrets Manager to be
-    # able to rotate the secret, you must make sure the secret value is in
-    # the [ JSON structure of a database secret][2]. In particular, if you
-    # want to use the [ alternating users strategy][3], your secret must
-    # contain the ARN of a superuser secret.
-    #
-    # To configure rotation, you also need the ARN of an Amazon Web Services
-    # Lambda function and the schedule for the rotation. The Lambda rotation
-    # function creates a new version of the secret and creates or updates
-    # the credentials on the database or service to match. After testing the
-    # new credentials, the function marks the new secret version with the
-    # staging label `AWSCURRENT`. Then anyone who retrieves the secret gets
-    # the new version. For more information, see [How rotation works][4].
-    #
-    # You can create the Lambda rotation function based on the [rotation
-    # function templates][5] that Secrets Manager provides. Choose a
-    # template that matches your [Rotation strategy][6].
+    # For information about rotation, see [Rotate secrets][1] in the
+    # *Secrets Manager User Guide*. If you include the configuration
+    # parameters, the operation sets the values for the secret and then
+    # immediately starts a rotation. If you don't include the configuration
+    # parameters, the operation starts a rotation with the values already
+    # stored in the secret.
     #
     # When rotation is successful, the `AWSPENDING` staging label might be
     # attached to the same version as the `AWSCURRENT` version, or it might
     # not be attached to any version. If the `AWSPENDING` staging label is
     # present but not attached to the same version as `AWSCURRENT`, then any
     # later invocation of `RotateSecret` assumes that a previous rotation
-    # request is still in progress and returns an error.
+    # request is still in progress and returns an error. When rotation is
+    # unsuccessful, the `AWSPENDING` staging label might be attached to an
+    # empty secret version. For more information, see [Troubleshoot
+    # rotation][2] in the *Secrets Manager User Guide*.
     #
     # Secrets Manager generates a CloudTrail log entry when you call this
     # action. Do not include sensitive information in request parameters
     # because it might be logged. For more information, see [Logging Secrets
-    # Manager events with CloudTrail][7].
+    # Manager events with CloudTrail][3].
     #
     # <b>Required permissions: </b> `secretsmanager:RotateSecret`. For more
-    # information, see [ IAM policy actions for Secrets Manager][8] and
-    # [Authentication and access control in Secrets Manager][9]. You also
+    # information, see [ IAM policy actions for Secrets Manager][4] and
+    # [Authentication and access control in Secrets Manager][5]. You also
     # need `lambda:InvokeFunction` permissions on the rotation function. For
-    # more information, see [ Permissions for rotation][10].
+    # more information, see [ Permissions for rotation][6].
     #
     #
     #
     # [1]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotating-secrets.html
-    # [2]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_secret_json_structure.html
-    # [3]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotating-secrets_strategies.html#rotating-secrets-two-users
-    # [4]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotate-secrets_how.html
-    # [5]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_available-rotation-templates.html
-    # [6]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotating-secrets_strategies.html
-    # [7]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html
-    # [8]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_iam-permissions.html#reference_iam-permissions_actions
-    # [9]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access.html
-    # [10]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotating-secrets-required-permissions-function.html
+    # [2]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/troubleshoot_rotation.html
+    # [3]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html
+    # [4]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_iam-permissions.html#reference_iam-permissions_actions
+    # [5]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access.html
+    # [6]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotating-secrets-required-permissions-function.html
     #
     # @option params [required, String] :secret_id
     #   The ARN or name of the secret to rotate.
@@ -2233,7 +2219,16 @@ module Aws::SecretsManager
     #   [1]: https://wikipedia.org/wiki/Universally_unique_identifier
     #
     # @option params [String] :rotation_lambda_arn
-    #   The ARN of the Lambda rotation function that can rotate the secret.
+    #   For secrets that use a Lambda rotation function to rotate, the ARN of
+    #   the Lambda rotation function.
+    #
+    #   For secrets that use *managed rotation*, omit this field. For more
+    #   information, see [Managed rotation][1] in the *Secrets Manager User
+    #   Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotate-secrets_managed.html
     #
     # @option params [Types::RotationRulesType] :rotation_rules
     #   A structure that defines the rotation configuration for this secret.
@@ -2243,7 +2238,8 @@ module Aws::SecretsManager
     #   next scheduled rotation window. The rotation schedule is defined in
     #   RotateSecretRequest$RotationRules.
     #
-    #   If you don't immediately rotate the secret, Secrets Manager tests the
+    #   For secrets that use a Lambda rotation function to rotate, if you
+    #   don't immediately rotate the secret, Secrets Manager tests the
     #   rotation configuration by running the [ `testSecret` step][1] of the
     #   Lambda rotation function. The test creates an `AWSPENDING` version of
     #   the secret and then removes it.
@@ -2579,6 +2575,10 @@ module Aws::SecretsManager
     # To change the rotation configuration of a secret, use RotateSecret
     # instead.
     #
+    # To change a secret so that it is managed by another service, you need
+    # to recreate the secret in that service. See [Secrets Manager secrets
+    # managed by other Amazon Web Services services][1].
+    #
     # We recommend you avoid calling `UpdateSecret` at a sustained rate of
     # more than once every 10 minutes. When you call `UpdateSecret` to
     # update the secret value, Secrets Manager creates a new version of the
@@ -2603,21 +2603,22 @@ module Aws::SecretsManager
     # action. Do not include sensitive information in request parameters
     # except `SecretBinary` or `SecretString` because it might be logged.
     # For more information, see [Logging Secrets Manager events with
-    # CloudTrail][1].
+    # CloudTrail][2].
     #
     # <b>Required permissions: </b> `secretsmanager:UpdateSecret`. For more
-    # information, see [ IAM policy actions for Secrets Manager][2] and
-    # [Authentication and access control in Secrets Manager][3]. If you use
+    # information, see [ IAM policy actions for Secrets Manager][3] and
+    # [Authentication and access control in Secrets Manager][4]. If you use
     # a customer managed key, you must also have `kms:GenerateDataKey` and
     # `kms:Decrypt` permissions on the key. For more information, see [
-    # Secret encryption and decryption][4].
+    # Secret encryption and decryption][5].
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html
-    # [2]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_iam-permissions.html#reference_iam-permissions_actions
-    # [3]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access.html
-    # [4]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/security-encryption.html
+    # [1]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/service-linked-secrets.html
+    # [2]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieve-ct-entries.html
+    # [3]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_iam-permissions.html#reference_iam-permissions_actions
+    # [4]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access.html
+    # [5]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/security-encryption.html
     #
     # @option params [required, String] :secret_id
     #   The ARN or name of the secret.
@@ -3041,7 +3042,7 @@ module Aws::SecretsManager
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-secretsmanager'
-      context[:gem_version] = '1.67.0'
+      context[:gem_version] = '1.69.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-secretsmanager/endpoint_parameters.rb

@@ -50,6 +50,9 @@ module Aws::SecretsManager
 
     def initialize(options = {})
       self[:region] = options[:region]
+      if self[:region].nil?
+        raise ArgumentError, "Missing required EndpointParameter: :region"
+      end
       self[:use_dual_stack] = options[:use_dual_stack]
       self[:use_dual_stack] = false if self[:use_dual_stack].nil?
       if self[:use_dual_stack].nil?

data/lib/aws-sdk-secretsmanager/endpoint_provider.rb

@@ -29,83 +29,82 @@ module Aws::SecretsManager
     # @api private
     RULES = <<-JSON
 eyJ2ZXJzaW9uIjoiMS4wIiwicGFyYW1ldGVycyI6eyJSZWdpb24iOnsiYnVp
-bHRJbiI6IkFXUzo6UmVnaW9uIiwicmVxdWlyZWQiOmZhbHNlLCJkb2N1bWVu
-dGF0aW9uIjoiVGhlIEFXUyByZWdpb24gdXNlZCB0byBkaXNwYXRjaCB0aGUg
-cmVxdWVzdC4iLCJ0eXBlIjoiU3RyaW5nIn0sIlVzZUR1YWxTdGFjayI6eyJi
-dWlsdEluIjoiQVdTOjpVc2VEdWFsU3RhY2siLCJyZXF1aXJlZCI6dHJ1ZSwi
-ZGVmYXVsdCI6ZmFsc2UsImRvY3VtZW50YXRpb24iOiJXaGVuIHRydWUsIHVz
-ZSB0aGUgZHVhbC1zdGFjayBlbmRwb2ludC4gSWYgdGhlIGNvbmZpZ3VyZWQg
-ZW5kcG9pbnQgZG9lcyBub3Qgc3VwcG9ydCBkdWFsLXN0YWNrLCBkaXNwYXRj
-aGluZyB0aGUgcmVxdWVzdCBNQVkgcmV0dXJuIGFuIGVycm9yLiIsInR5cGUi
-OiJCb29sZWFuIn0sIlVzZUZJUFMiOnsiYnVpbHRJbiI6IkFXUzo6VXNlRklQ
-UyIsInJlcXVpcmVkIjp0cnVlLCJkZWZhdWx0IjpmYWxzZSwiZG9jdW1lbnRh
-dGlvbiI6IldoZW4gdHJ1ZSwgc2VuZCB0aGlzIHJlcXVlc3QgdG8gdGhlIEZJ
-UFMtY29tcGxpYW50IHJlZ2lvbmFsIGVuZHBvaW50LiBJZiB0aGUgY29uZmln
-dXJlZCBlbmRwb2ludCBkb2VzIG5vdCBoYXZlIGEgRklQUyBjb21wbGlhbnQg
-ZW5kcG9pbnQsIGRpc3BhdGNoaW5nIHRoZSByZXF1ZXN0IHdpbGwgcmV0dXJu
-IGFuIGVycm9yLiIsInR5cGUiOiJCb29sZWFuIn0sIkVuZHBvaW50Ijp7ImJ1
-aWx0SW4iOiJTREs6OkVuZHBvaW50IiwicmVxdWlyZWQiOmZhbHNlLCJkb2N1
-bWVudGF0aW9uIjoiT3ZlcnJpZGUgdGhlIGVuZHBvaW50IHVzZWQgdG8gc2Vu
-ZCB0aGlzIHJlcXVlc3QiLCJ0eXBlIjoiU3RyaW5nIn19LCJydWxlcyI6W3si
-Y29uZGl0aW9ucyI6W3siZm4iOiJhd3MucGFydGl0aW9uIiwiYXJndiI6W3si
-cmVmIjoiUmVnaW9uIn1dLCJhc3NpZ24iOiJQYXJ0aXRpb25SZXN1bHQifV0s
-InR5cGUiOiJ0cmVlIiwicnVsZXMiOlt7ImNvbmRpdGlvbnMiOlt7ImZuIjoi
-aXNTZXQiLCJhcmd2IjpbeyJyZWYiOiJFbmRwb2ludCJ9XX0seyJmbiI6InBh
-cnNlVVJMIiwiYXJndiI6W3sicmVmIjoiRW5kcG9pbnQifV0sImFzc2lnbiI6
-InVybCJ9XSwidHlwZSI6InRyZWUiLCJydWxlcyI6W3siY29uZGl0aW9ucyI6
-W3siZm4iOiJib29sZWFuRXF1YWxzIiwiYXJndiI6W3sicmVmIjoiVXNlRklQ
-UyJ9LHRydWVdfV0sImVycm9yIjoiSW52YWxpZCBDb25maWd1cmF0aW9uOiBG
-SVBTIGFuZCBjdXN0b20gZW5kcG9pbnQgYXJlIG5vdCBzdXBwb3J0ZWQiLCJ0
-eXBlIjoiZXJyb3IifSx7ImNvbmRpdGlvbnMiOltdLCJ0eXBlIjoidHJlZSIs
-InJ1bGVzIjpbeyJjb25kaXRpb25zIjpbeyJmbiI6ImJvb2xlYW5FcXVhbHMi
-LCJhcmd2IjpbeyJyZWYiOiJVc2VEdWFsU3RhY2sifSx0cnVlXX1dLCJlcnJv
-ciI6IkludmFsaWQgQ29uZmlndXJhdGlvbjogRHVhbHN0YWNrIGFuZCBjdXN0
-b20gZW5kcG9pbnQgYXJlIG5vdCBzdXBwb3J0ZWQiLCJ0eXBlIjoiZXJyb3Ii
-fSx7ImNvbmRpdGlvbnMiOltdLCJlbmRwb2ludCI6eyJ1cmwiOnsicmVmIjoi
-RW5kcG9pbnQifSwicHJvcGVydGllcyI6e30sImhlYWRlcnMiOnt9fSwidHlw
-ZSI6ImVuZHBvaW50In1dfV19LHsiY29uZGl0aW9ucyI6W3siZm4iOiJib29s
-ZWFuRXF1YWxzIiwiYXJndiI6W3sicmVmIjoiVXNlRklQUyJ9LHRydWVdfSx7
-ImZuIjoiYm9vbGVhbkVxdWFscyIsImFyZ3YiOlt7InJlZiI6IlVzZUR1YWxT
-dGFjayJ9LHRydWVdfV0sInR5cGUiOiJ0cmVlIiwicnVsZXMiOlt7ImNvbmRp
-dGlvbnMiOlt7ImZuIjoiYm9vbGVhbkVxdWFscyIsImFyZ3YiOlt0cnVlLHsi
-Zm4iOiJnZXRBdHRyIiwiYXJndiI6W3sicmVmIjoiUGFydGl0aW9uUmVzdWx0
-In0sInN1cHBvcnRzRklQUyJdfV19LHsiZm4iOiJib29sZWFuRXF1YWxzIiwi
-YXJndiI6W3RydWUseyJmbiI6ImdldEF0dHIiLCJhcmd2IjpbeyJyZWYiOiJQ
-YXJ0aXRpb25SZXN1bHQifSwic3VwcG9ydHNEdWFsU3RhY2siXX1dfV0sInR5
-cGUiOiJ0cmVlIiwicnVsZXMiOlt7ImNvbmRpdGlvbnMiOltdLCJlbmRwb2lu
-dCI6eyJ1cmwiOiJodHRwczovL3NlY3JldHNtYW5hZ2VyLWZpcHMue1JlZ2lv
-bn0ue1BhcnRpdGlvblJlc3VsdCNkdWFsU3RhY2tEbnNTdWZmaXh9IiwicHJv
-cGVydGllcyI6e30sImhlYWRlcnMiOnt9fSwidHlwZSI6ImVuZHBvaW50In1d
-fSx7ImNvbmRpdGlvbnMiOltdLCJlcnJvciI6IkZJUFMgYW5kIER1YWxTdGFj
-ayBhcmUgZW5hYmxlZCwgYnV0IHRoaXMgcGFydGl0aW9uIGRvZXMgbm90IHN1
-cHBvcnQgb25lIG9yIGJvdGgiLCJ0eXBlIjoiZXJyb3IifV19LHsiY29uZGl0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 aW9ucyI6W3siZm4iOiJib29sZWFuRXF1YWxzIiwiYXJndiI6W3sicmVmIjoi
-VXNlRklQUyJ9LHRydWVdfV0sInR5cGUiOiJ0cmVlIiwicnVsZXMiOlt7ImNv
-bmRpdGlvbnMiOlt7ImZuIjoiYm9vbGVhbkVxdWFscyIsImFyZ3YiOlt0cnVl
-LHsiZm4iOiJnZXRBdHRyIiwiYXJndiI6W3sicmVmIjoiUGFydGl0aW9uUmVz
-dWx0In0sInN1cHBvcnRzRklQUyJdfV19XSwidHlwZSI6InRyZWUiLCJydWxl
-cyI6W3siY29uZGl0aW9ucyI6W10sInR5cGUiOiJ0cmVlIiwicnVsZXMiOlt7
-ImNvbmRpdGlvbnMiOltdLCJlbmRwb2ludCI6eyJ1cmwiOiJodHRwczovL3Nl
-Y3JldHNtYW5hZ2VyLWZpcHMue1JlZ2lvbn0ue1BhcnRpdGlvblJlc3VsdCNk
-bnNTdWZmaXh9IiwicHJvcGVydGllcyI6e30sImhlYWRlcnMiOnt9fSwidHlw
-ZSI6ImVuZHBvaW50In1dfV19LHsiY29uZGl0aW9ucyI6W10sImVycm9yIjoi
-RklQUyBpcyBlbmFibGVkIGJ1dCB0aGlzIHBhcnRpdGlvbiBkb2VzIG5vdCBz
-dXBwb3J0IEZJUFMiLCJ0eXBlIjoiZXJyb3IifV19LHsiY29uZGl0aW9ucyI6
-W3siZm4iOiJib29sZWFuRXF1YWxzIiwiYXJndiI6W3sicmVmIjoiVXNlRHVh
-bFN0YWNrIn0sdHJ1ZV19XSwidHlwZSI6InRyZWUiLCJydWxlcyI6W3siY29u
-ZGl0aW9ucyI6W3siZm4iOiJib29sZWFuRXF1YWxzIiwiYXJndiI6W3RydWUs
-eyJmbiI6ImdldEF0dHIiLCJhcmd2IjpbeyJyZWYiOiJQYXJ0aXRpb25SZXN1
-bHQifSwic3VwcG9ydHNEdWFsU3RhY2siXX1dfV0sInR5cGUiOiJ0cmVlIiwi
-cnVsZXMiOlt7ImNvbmRpdGlvbnMiOltdLCJlbmRwb2ludCI6eyJ1cmwiOiJo
-dHRwczovL3NlY3JldHNtYW5hZ2VyLntSZWdpb259LntQYXJ0aXRpb25SZXN1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 bHQjZHVhbFN0YWNrRG5zU3VmZml4fSIsInByb3BlcnRpZXMiOnt9LCJoZWFk
 ZXJzIjp7fX0sInR5cGUiOiJlbmRwb2ludCJ9XX0seyJjb25kaXRpb25zIjpb
-XSwiZXJyb3IiOiJEdWFsU3RhY2sgaXMgZW5hYmxlZCBidXQgdGhpcyBwYXJ0
-aXRpb24gZG9lcyBub3Qgc3VwcG9ydCBEdWFsU3RhY2siLCJ0eXBlIjoiZXJy
-b3IifV19LHsiY29uZGl0aW9ucyI6W10sImVuZHBvaW50Ijp7InVybCI6Imh0
-dHBzOi8vc2VjcmV0c21hbmFnZXIue1JlZ2lvbn0ue1BhcnRpdGlvblJlc3Vs
-dCNkbnNTdWZmaXh9IiwicHJvcGVydGllcyI6e30sImhlYWRlcnMiOnt9fSwi
-dHlwZSI6ImVuZHBvaW50In1dfV19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 
     JSON
   end

data/lib/aws-sdk-secretsmanager/types.rb

@@ -10,13 +10,6 @@
 module Aws::SecretsManager
   module Types
 
-    # @note When making an API call, you may pass CancelRotateSecretRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret.
     #
@@ -63,31 +56,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass CreateSecretRequest
-    #   data as a hash:
-    #
-    #       {
-    #         name: "NameType", # required
-    #         client_request_token: "ClientRequestTokenType",
-    #         description: "DescriptionType",
-    #         kms_key_id: "KmsKeyIdType",
-    #         secret_binary: "data",
-    #         secret_string: "SecretStringType",
-    #         tags: [
-    #           {
-    #             key: "TagKeyType",
-    #             value: "TagValueType",
-    #           },
-    #         ],
-    #         add_replica_regions: [
-    #           {
-    #             region: "RegionType",
-    #             kms_key_id: "KmsKeyIdType",
-    #           },
-    #         ],
-    #         force_overwrite_replica_secret: false,
-    #       }
-    #
     # @!attribute [rw] name
     #   The name of the new secret.
     #
@@ -328,13 +296,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass DeleteResourcePolicyRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret to delete the attached resource-based
     #   policy for.
@@ -374,15 +335,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass DeleteSecretRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #         recovery_window_in_days: 1,
-    #         force_delete_without_recovery: false,
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret to delete.
     #
@@ -417,7 +369,7 @@ module Aws::SecretsManager
     #   to skip the normal recovery window before the permanent deletion
     #   that Secrets Manager would normally impose with the
     #   `RecoveryWindowInDays` parameter. If you delete a secret with the
-    #   `ForceDeleteWithouRecovery` parameter, then you have no opportunity
+    #   `ForceDeleteWithoutRecovery` parameter, then you have no opportunity
     #   to recover the secret. You lose the secret permanently.
     #   @return [Boolean]
     #
@@ -456,13 +408,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass DescribeSecretRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret.
     #
@@ -665,14 +610,6 @@ module Aws::SecretsManager
     #
     # [1]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/manage_search-secret.html
     #
-    # @note When making an API call, you may pass Filter
-    #   data as a hash:
-    #
-    #       {
-    #         key: "description", # accepts description, name, tag-key, tag-value, primary-region, all
-    #         values: ["FilterValueStringType"],
-    #       }
-    #
     # @!attribute [rw] key
     #   The following are keys you can use:
     #
@@ -706,20 +643,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass GetRandomPasswordRequest
-    #   data as a hash:
-    #
-    #       {
-    #         password_length: 1,
-    #         exclude_characters: "ExcludeCharactersType",
-    #         exclude_numbers: false,
-    #         exclude_punctuation: false,
-    #         exclude_uppercase: false,
-    #         exclude_lowercase: false,
-    #         include_space: false,
-    #         require_each_included_type: false,
-    #       }
-    #
     # @!attribute [rw] password_length
     #   The length of the password. If you don't include this parameter,
     #   the default length is 32 characters.
@@ -791,13 +714,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass GetResourcePolicyRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret to retrieve the attached
     #   resource-based policy for.
@@ -849,15 +765,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass GetSecretValueRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #         version_id: "SecretVersionIdType",
-    #         version_stage: "SecretVersionStageType",
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret to retrieve.
     #
@@ -1048,16 +955,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass ListSecretVersionIdsRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #         max_results: 1,
-    #         next_token: "NextTokenType",
-    #         include_deprecated: false,
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret whose versions you want to list.
     #
@@ -1132,21 +1029,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass ListSecretsRequest
-    #   data as a hash:
-    #
-    #       {
-    #         max_results: 1,
-    #         next_token: "NextTokenType",
-    #         filters: [
-    #           {
-    #             key: "description", # accepts description, name, tag-key, tag-value, primary-region, all
-    #             values: ["FilterValueStringType"],
-    #           },
-    #         ],
-    #         sort_order: "asc", # accepts asc, desc
-    #       }
-    #
     # @!attribute [rw] max_results
     #   The number of results to include in the response.
     #
@@ -1166,7 +1048,7 @@ module Aws::SecretsManager
     #   @return [Array<Types::Filter>]
     #
     # @!attribute [rw] sort_order
-    #   Lists secrets in the requested order.
+    #   Secrets are listed by `CreatedDate`.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/secretsmanager-2017-10-17/ListSecretsRequest AWS API Documentation
@@ -1242,15 +1124,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass PutResourcePolicyRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #         resource_policy: "NonEmptyResourcePolicyType", # required
-    #         block_public_policy: false,
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret to attach the resource-based policy.
     #
@@ -1304,17 +1177,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass PutSecretValueRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #         client_request_token: "ClientRequestTokenType",
-    #         secret_binary: "data",
-    #         secret_string: "SecretStringType",
-    #         version_stages: ["SecretVersionStageType"],
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret to add a new version to.
     #
@@ -1448,14 +1310,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass RemoveRegionsFromReplicationRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #         remove_replica_regions: ["RegionType"], # required
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret.
     #   @return [String]
@@ -1493,14 +1347,6 @@ module Aws::SecretsManager
     # A custom type that specifies a `Region` and the `KmsKeyId` for a
     # replica secret.
     #
-    # @note When making an API call, you may pass ReplicaRegionType
-    #   data as a hash:
-    #
-    #       {
-    #         region: "RegionType",
-    #         kms_key_id: "KmsKeyIdType",
-    #       }
-    #
     # @!attribute [rw] region
     #   A Region code. For a list of Region codes, see [Name and code of
     #   Regions][1].
@@ -1525,20 +1371,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass ReplicateSecretToRegionsRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #         add_replica_regions: [ # required
-    #           {
-    #             region: "RegionType",
-    #             kms_key_id: "KmsKeyIdType",
-    #           },
-    #         ],
-    #         force_overwrite_replica_secret: false,
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret to replicate.
     #   @return [String]
@@ -1642,13 +1474,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass RestoreSecretRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret to restore.
     #
@@ -1685,21 +1510,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass RotateSecretRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #         client_request_token: "ClientRequestTokenType",
-    #         rotation_lambda_arn: "RotationLambdaARNType",
-    #         rotation_rules: {
-    #           automatically_after_days: 1,
-    #           duration: "DurationType",
-    #           schedule_expression: "ScheduleExpressionType",
-    #         },
-    #         rotate_immediately: false,
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret to rotate.
     #
@@ -1742,7 +1552,16 @@ module Aws::SecretsManager
     #   @return [String]
     #
     # @!attribute [rw] rotation_lambda_arn
-    #   The ARN of the Lambda rotation function that can rotate the secret.
+    #   For secrets that use a Lambda rotation function to rotate, the ARN
+    #   of the Lambda rotation function.
+    #
+    #   For secrets that use *managed rotation*, omit this field. For more
+    #   information, see [Managed rotation][1] in the *Secrets Manager User
+    #   Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotate-secrets_managed.html
     #   @return [String]
     #
     # @!attribute [rw] rotation_rules
@@ -1754,10 +1573,11 @@ module Aws::SecretsManager
     #   next scheduled rotation window. The rotation schedule is defined in
     #   RotateSecretRequest$RotationRules.
     #
-    #   If you don't immediately rotate the secret, Secrets Manager tests
-    #   the rotation configuration by running the [ `testSecret` step][1] of
-    #   the Lambda rotation function. The test creates an `AWSPENDING`
-    #   version of the secret and then removes it.
+    #   For secrets that use a Lambda rotation function to rotate, if you
+    #   don't immediately rotate the secret, Secrets Manager tests the
+    #   rotation configuration by running the [ `testSecret` step][1] of the
+    #   Lambda rotation function. The test creates an `AWSPENDING` version
+    #   of the secret and then removes it.
     #
     #   If you don't specify this value, then by default, Secrets Manager
     #   rotates the secret immediately.
@@ -1803,15 +1623,6 @@ module Aws::SecretsManager
 
     # A structure that defines the rotation configuration for the secret.
     #
-    # @note When making an API call, you may pass RotationRulesType
-    #   data as a hash:
-    #
-    #       {
-    #         automatically_after_days: 1,
-    #         duration: "DurationType",
-    #         schedule_expression: "ScheduleExpressionType",
-    #       }
-    #
     # @!attribute [rw] automatically_after_days
     #   The number of days between automatic scheduled rotations of the
     #   secret. You can use this value to check that your secret meets your
@@ -1821,16 +1632,20 @@ module Aws::SecretsManager
     #   the rotation schedule after every successful rotation. In
     #   `RotateSecret`, you can set the rotation schedule in `RotationRules`
     #   with `AutomaticallyAfterDays` or `ScheduleExpression`, but not both.
+    #   To set a rotation schedule in hours, use `ScheduleExpression`.
     #   @return [Integer]
     #
     # @!attribute [rw] duration
     #   The length of the rotation window in hours, for example `3h` for a
     #   three hour window. Secrets Manager rotates your secret at any time
-    #   during this window. The window must not go into the next UTC day. If
-    #   you don't specify this value, the window automatically ends at the
-    #   end of the UTC day. The window begins according to the
-    #   `ScheduleExpression`. For more information, including examples, see
-    #   [Schedule expressions in Secrets Manager rotation][1].
+    #   during this window. The window must not extend into the next
+    #   rotation window or the next UTC day. The window starts according to
+    #   the `ScheduleExpression`. If you don't specify a `Duration`, for a
+    #   `ScheduleExpression` in hours, the window automatically closes after
+    #   one hour. For a `ScheduleExpression` in days, the window
+    #   automatically closes at the end of the UTC day. For more
+    #   information, including examples, see [Schedule expressions in
+    #   Secrets Manager rotation][1] in the *Secrets Manager Users Guide*.
     #
     #
     #
@@ -1840,24 +1655,29 @@ module Aws::SecretsManager
     # @!attribute [rw] schedule_expression
     #   A `cron()` or `rate()` expression that defines the schedule for
     #   rotating your secret. Secrets Manager rotation schedules use UTC
-    #   time zone.
-    #
-    #   Secrets Manager `rate()` expressions represent the interval in days
-    #   that you want to rotate your secret, for example `rate(10 days)`. If
-    #   you use a `rate()` expression, the rotation window opens at
-    #   midnight, and Secrets Manager rotates your secret any time that day
-    #   after midnight. You can set a `Duration` to shorten the rotation
-    #   window.
-    #
-    #   You can use a `cron()` expression to create rotation schedules that
-    #   are more detailed than a rotation interval. For more information,
+    #   time zone. Secrets Manager rotates your secret any time during a
+    #   rotation window.
+    #
+    #   Secrets Manager `rate()` expressions represent the interval in hours
+    #   or days that you want to rotate your secret, for example `rate(12
+    #   hours)` or `rate(10 days)`. You can rotate a secret as often as
+    #   every four hours. If you use a `rate()` expression, the rotation
+    #   window starts at midnight. For a rate in hours, the default rotation
+    #   window closes after one hour. For a rate in days, the default
+    #   rotation window closes at the end of the day. You can set the
+    #   `Duration` to change the rotation window. The rotation window must
+    #   not extend into the next UTC day or into the next rotation window.
+    #
+    #   You can use a `cron()` expression to create a rotation schedule that
+    #   is more detailed than a rotation interval. For more information,
     #   including examples, see [Schedule expressions in Secrets Manager
-    #   rotation][1]. If you use a `cron()` expression, Secrets Manager
-    #   rotates your secret any time during that day after the window opens.
-    #   For example, `cron(0 8 1 * ? *)` represents a rotation window that
-    #   occurs on the first day of every month beginning at 8:00 AM UTC.
-    #   Secrets Manager rotates the secret any time that day after 8:00 AM.
-    #   You can set a `Duration` to shorten the rotation window.
+    #   rotation][1] in the *Secrets Manager Users Guide*. For a cron
+    #   expression that represents a schedule in hours, the default rotation
+    #   window closes after one hour. For a cron expression that represents
+    #   a schedule in days, the default rotation window closes at the end of
+    #   the day. You can set the `Duration` to change the rotation window.
+    #   The rotation window must not extend into the next UTC day or into
+    #   the next rotation window.
     #
     #
     #
@@ -2045,13 +1865,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass StopReplicationToReplicaRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN of the primary secret.
     #   @return [String]
@@ -2079,14 +1892,6 @@ module Aws::SecretsManager
 
     # A structure that contains information about a tag.
     #
-    # @note When making an API call, you may pass Tag
-    #   data as a hash:
-    #
-    #       {
-    #         key: "TagKeyType",
-    #         value: "TagValueType",
-    #       }
-    #
     # @!attribute [rw] key
     #   The key identifier, or name, of the tag.
     #   @return [String]
@@ -2104,19 +1909,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass TagResourceRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #         tags: [ # required
-    #           {
-    #             key: "TagKeyType",
-    #             value: "TagValueType",
-    #           },
-    #         ],
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The identifier for the secret to attach tags to. You can specify
     #   either the Amazon Resource Name (ARN) or the friendly name of the
@@ -2153,14 +1945,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass UntagResourceRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #         tag_keys: ["TagKeyType"], # required
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret.
     #
@@ -2198,18 +1982,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass UpdateSecretRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #         client_request_token: "ClientRequestTokenType",
-    #         description: "DescriptionType",
-    #         kms_key_id: "KmsKeyIdType",
-    #         secret_binary: "data",
-    #         secret_string: "SecretStringType",
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or name of the secret.
     #
@@ -2337,16 +2109,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass UpdateSecretVersionStageRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType", # required
-    #         version_stage: "SecretVersionStageType", # required
-    #         remove_from_version_id: "SecretVersionIdType",
-    #         move_to_version_id: "SecretVersionIdType",
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   The ARN or the name of the secret with the version and staging
     #   labelsto modify.
@@ -2410,14 +2172,6 @@ module Aws::SecretsManager
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass ValidateResourcePolicyRequest
-    #   data as a hash:
-    #
-    #       {
-    #         secret_id: "SecretIdType",
-    #         resource_policy: "NonEmptyResourcePolicyType", # required
-    #       }
-    #
     # @!attribute [rw] secret_id
     #   This field is reserved for internal use.
     #   @return [String]

data/lib/aws-sdk-secretsmanager.rb

@@ -52,6 +52,6 @@ require_relative 'aws-sdk-secretsmanager/customizations'
 # @!group service
 module Aws::SecretsManager
 
-  GEM_VERSION = '1.67.0'
+  GEM_VERSION = '1.69.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-secretsmanager
 version: !ruby/object:Gem::Version
-  version: 1.67.0
+  version: 1.69.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-10-25 00:00:00.000000000 Z
+date: 2022-12-22 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core