aws-sdk-shield 1.46.0 → 1.49.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 3d6373ad000ef650e2a98a06c6fcd44c468774dbedc8f5f4450bf35f2411e6d0
-  data.tar.gz: 2794b2131ca23284317bbd039e2e609b6397c3c355b414e59d60a9207c373540
+  metadata.gz: d8ad08d26320414bbed3455ef9d1e9337010e71a6f6862478320278669dfc421
+  data.tar.gz: ad4b4161f2fdfff71852e643ca3e9943ea706d644e54b25d34634d83d38bcd56
 SHA512:
-  metadata.gz: ba883b89690540cc2192236a09bd9f788ba90d500b1ca721625a35536d3944b8eec690565078861da0c420e5be33056c3f7f73fde89d3cfa064e24513f708e60
-  data.tar.gz: 3d93922ae49a9117f570d86b80e3d16ace1b744954c9b73e5b1d366630f42370c1b697ad2c9a62667115a7c2edabad5c9e8b8fb8f80fb5849288027fe362c391
+  metadata.gz: a3604323eb8f59f924a20bf2d90cea83bb371b5cc86e55cf575c9deee0fa1c6ad78ed0d7bb3b7fd6e98bb13607edf3cdb6d5c80bb68bfb72259ffb894410225f
+  data.tar.gz: efb5934418bb058ffa6a72e246d396b4656da0d49afd02baa87bc468fec4a6691ca2f5e3b0c92763a2896e1ab78b66687e2809c44eae56c0ff255d721581a8f8

data/CHANGELOG.md

@@ -1,6 +1,21 @@
 Unreleased Changes
 ------------------
 
+1.49.0 (2022-07-29)
+------------------
+
+* Feature - AWS Shield Advanced now supports filtering for ListProtections and ListProtectionGroups.
+
+1.48.0 (2022-02-24)
+------------------
+
+* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
+
+1.47.0 (2022-02-03)
+------------------
+
+* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
+
 1.46.0 (2021-12-21)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.46.0
+1.49.0

data/lib/aws-sdk-shield/client.rb

@@ -27,7 +27,9 @@ require 'aws-sdk-core/plugins/client_metrics_plugin.rb'
 require 'aws-sdk-core/plugins/client_metrics_send_plugin.rb'
 require 'aws-sdk-core/plugins/transfer_encoding.rb'
 require 'aws-sdk-core/plugins/http_checksum.rb'
+require 'aws-sdk-core/plugins/checksum_algorithm.rb'
 require 'aws-sdk-core/plugins/defaults_mode.rb'
+require 'aws-sdk-core/plugins/recursion_detection.rb'
 require 'aws-sdk-core/plugins/signature_v4.rb'
 require 'aws-sdk-core/plugins/protocols/json_rpc.rb'
 
@@ -74,7 +76,9 @@ module Aws::Shield
     add_plugin(Aws::Plugins::ClientMetricsSendPlugin)
     add_plugin(Aws::Plugins::TransferEncoding)
     add_plugin(Aws::Plugins::HttpChecksum)
+    add_plugin(Aws::Plugins::ChecksumAlgorithm)
     add_plugin(Aws::Plugins::DefaultsMode)
+    add_plugin(Aws::Plugins::RecursionDetection)
     add_plugin(Aws::Plugins::SignatureV4)
     add_plugin(Aws::Plugins::Protocols::JsonRpc)
 
@@ -368,8 +372,8 @@ module Aws::Shield
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/premiumsupport/business-support/
-    # [2]: https://docs.aws.amazon.com/premiumsupport/enterprise-support/
+    # [1]: http://aws.amazon.com/premiumsupport/business-support/
+    # [2]: http://aws.amazon.com/premiumsupport/enterprise-support/
     #
     # @option params [required, String] :log_bucket
     #   The Amazon S3 bucket that contains the logs that you want to share.
@@ -429,8 +433,8 @@ module Aws::Shield
     # [2]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_manage-attach-detach.html
     # [3]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_principal.html
     # [4]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_passrole.html
-    # [5]: https://docs.aws.amazon.com/premiumsupport/business-support/
-    # [6]: https://docs.aws.amazon.com/premiumsupport/enterprise-support/
+    # [5]: http://aws.amazon.com/premiumsupport/business-support/
+    # [6]: http://aws.amazon.com/premiumsupport/enterprise-support/
     #
     # @option params [required, String] :role_arn
     #   The Amazon Resource Name (ARN) of the role the SRT will use to access
@@ -559,9 +563,11 @@ module Aws::Shield
     end
 
     # Enables Shield Advanced for a specific Amazon Web Services resource.
-    # The resource can be an Amazon CloudFront distribution, Elastic Load
-    # Balancing load balancer, Global Accelerator accelerator, Elastic IP
-    # Address, or an Amazon Route 53 hosted zone.
+    # The resource can be an Amazon CloudFront distribution, Amazon Route 53
+    # hosted zone, Global Accelerator standard accelerator, Elastic IP
+    # Address, Application Load Balancer, or a Classic Load Balancer. You
+    # can protect Amazon EC2 instances and Network Load Balancers by
+    # association with protected Amazon EC2 Elastic IP addresses.
     #
     # You can add protection to only a single resource with each
     # `CreateProtection` request. You can add protection to multiple
@@ -595,7 +601,7 @@ module Aws::Shield
     #   * For an Amazon CloudFront distribution:
     #     `arn:aws:cloudfront::account-id:distribution/distribution-id `
     #
-    #   * For an Global Accelerator accelerator:
+    #   * For an Global Accelerator standard accelerator:
     #     `arn:aws:globalaccelerator::account-id:accelerator/accelerator-id `
     #
     #   * For Amazon Route 53: `arn:aws:route53:::hostedzone/hosted-zone-id `
@@ -713,7 +719,13 @@ module Aws::Shield
 
     # Activates Shield Advanced for an account.
     #
-    # When you initally create a subscription, your subscription is set to
+    # <note markdown="1"> For accounts that are members of an Organizations organization, Shield
+    # Advanced subscriptions are billed against the organization's payer
+    # account, regardless of whether the payer account itself is subscribed.
+    #
+    #  </note>
+    #
+    # When you initially create a subscription, your subscription is set to
     # be automatically renewed at the end of the existing subscription
     # period. You can change this by submitting an `UpdateSubscription`
     # request.
@@ -948,15 +960,14 @@ module Aws::Shield
     # Lists the details of a Protection object.
     #
     # @option params [String] :protection_id
-    #   The unique identifier (ID) for the Protection object that is
-    #   described. When submitting the `DescribeProtection` request you must
-    #   provide either the `ResourceArn` or the `ProtectionID`, but not both.
+    #   The unique identifier (ID) for the Protection object to describe. You
+    #   must provide either the `ResourceArn` of the protected resource or the
+    #   `ProtectionID` of the protection, but not both.
     #
     # @option params [String] :resource_arn
-    #   The ARN (Amazon Resource Name) of the Amazon Web Services resource for
-    #   the Protection object that is described. When submitting the
-    #   `DescribeProtection` request you must provide either the `ResourceArn`
-    #   or the `ProtectionID`, but not both.
+    #   The ARN (Amazon Resource Name) of the protected Amazon Web Services
+    #   resource. You must provide either the `ResourceArn` of the protected
+    #   resource or the `ProtectionID` of the protection, but not both.
     #
     # @return [Types::DescribeProtectionResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -1058,12 +1069,12 @@ module Aws::Shield
     end
 
     # Disable the Shield Advanced automatic application layer DDoS
-    # mitigation feature for the resource. This stops Shield Advanced from
-    # creating, verifying, and applying WAF rules for attacks that it
-    # detects for the resource.
+    # mitigation feature for the protected resource. This stops Shield
+    # Advanced from creating, verifying, and applying WAF rules for attacks
+    # that it detects for the resource.
     #
     # @option params [required, String] :resource_arn
-    #   The ARN (Amazon Resource Name) of the resource.
+    #   The ARN (Amazon Resource Name) of the protected resource.
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
@@ -1175,9 +1186,10 @@ module Aws::Shield
     end
 
     # Enable the Shield Advanced automatic application layer DDoS mitigation
-    # for the resource.
+    # for the protected resource.
     #
-    # <note markdown="1"> This feature is available for Amazon CloudFront distributions only.
+    # <note markdown="1"> This feature is available for Amazon CloudFront distributions and
+    # Application Load Balancers only.
     #
     #  </note>
     #
@@ -1188,19 +1200,21 @@ module Aws::Shield
     # mitigation works and the requirements for using it, see [Shield
     # Advanced automatic application layer DDoS mitigation][1].
     #
-    # Don't use this action to make changes to automatic mitigation
+    # <note markdown="1"> Don't use this action to make changes to automatic mitigation
     # settings when it's already enabled for a resource. Instead, use
     # UpdateApplicationLayerAutomaticResponse.
     #
+    #  </note>
+    #
     # To use this feature, you must associate a web ACL with the protected
     # resource. The web ACL must be created using the latest version of WAF
     # (v2). You can associate the web ACL through the Shield Advanced
     # console at [https://console.aws.amazon.com/wafv2/shieldv2#/][2]. For
-    # more information, see [Getting Started with Shield Advanced][3].
-    #
-    # You can also do this through the WAF console or the WAF API, but you
-    # must manage Shield Advanced automatic mitigation through Shield
-    # Advanced. For information about WAF, see [WAF Developer Guide][4].
+    # more information, see [Getting Started with Shield Advanced][3]. You
+    # can also associate the web ACL to the resource through the WAF console
+    # or the WAF API, but you must manage Shield Advanced automatic
+    # mitigation through Shield Advanced. For information about WAF, see
+    # [WAF Developer Guide][4].
     #
     #
     #
@@ -1210,7 +1224,7 @@ module Aws::Shield
     # [4]: https://docs.aws.amazon.com/waf/latest/developerguide/
     #
     # @option params [required, String] :resource_arn
-    #   The ARN (Amazon Resource Name) of the resource.
+    #   The ARN (Amazon Resource Name) of the protected resource.
     #
     # @option params [required, Types::ResponseAction] :action
     #   Specifies the action setting that Shield Advanced should use in the
@@ -1376,7 +1390,9 @@ module Aws::Shield
       req.send_request(options)
     end
 
-    # Retrieves the ProtectionGroup objects for the account.
+    # Retrieves ProtectionGroup objects for the account. You can retrieve
+    # all protection groups or you can provide filtering criteria and
+    # retrieve just the subset of protection groups that match the criteria.
     #
     # @option params [String] :next_token
     #   When you request a list of objects from Shield Advanced, if the
@@ -1405,6 +1421,14 @@ module Aws::Shield
     #
     #   The default setting is 20.
     #
+    # @option params [Types::InclusionProtectionGroupFilters] :inclusion_filters
+    #   Narrows the set of protection groups that the call retrieves. You can
+    #   retrieve a single protection group by its name and you can retrieve
+    #   all protection groups that are configured with specific pattern or
+    #   aggregation settings. You can provide up to one criteria per filter
+    #   type. Shield Advanced returns the protection groups that exactly match
+    #   all of the search criteria that you provide.
+    #
     # @return [Types::ListProtectionGroupsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListProtectionGroupsResponse#protection_groups #protection_groups} => Array&lt;Types::ProtectionGroup&gt;
@@ -1417,6 +1441,12 @@ module Aws::Shield
     #   resp = client.list_protection_groups({
     #     next_token: "Token",
     #     max_results: 1,
+    #     inclusion_filters: {
+    #       protection_group_ids: ["ProtectionGroupId"],
+    #       patterns: ["ALL"], # accepts ALL, ARBITRARY, BY_RESOURCE_TYPE
+    #       resource_types: ["CLOUDFRONT_DISTRIBUTION"], # accepts CLOUDFRONT_DISTRIBUTION, ROUTE_53_HOSTED_ZONE, ELASTIC_IP_ALLOCATION, CLASSIC_LOAD_BALANCER, APPLICATION_LOAD_BALANCER, GLOBAL_ACCELERATOR
+    #       aggregations: ["SUM"], # accepts SUM, MEAN, MAX
+    #     },
     #   })
     #
     # @example Response structure
@@ -1440,7 +1470,9 @@ module Aws::Shield
       req.send_request(options)
     end
 
-    # Lists all Protection objects for the account.
+    # Retrieves Protection objects for the account. You can retrieve all
+    # protections or you can provide filtering criteria and retrieve just
+    # the subset of protections that match the criteria.
     #
     # @option params [String] :next_token
     #   When you request a list of objects from Shield Advanced, if the
@@ -1469,6 +1501,14 @@ module Aws::Shield
     #
     #   The default setting is 20.
     #
+    # @option params [Types::InclusionProtectionFilters] :inclusion_filters
+    #   Narrows the set of protections that the call retrieves. You can
+    #   retrieve a single protection by providing its name or the ARN (Amazon
+    #   Resource Name) of its protected resource. You can also retrieve all
+    #   protections for a specific resource type. You can provide up to one
+    #   criteria per filter type. Shield Advanced returns protections that
+    #   exactly match all of the filter criteria that you provide.
+    #
     # @return [Types::ListProtectionsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListProtectionsResponse#protections #protections} => Array&lt;Types::Protection&gt;
@@ -1481,6 +1521,11 @@ module Aws::Shield
     #   resp = client.list_protections({
     #     next_token: "Token",
     #     max_results: 1,
+    #     inclusion_filters: {
+    #       resource_arns: ["ResourceArn"],
+    #       protection_names: ["ProtectionName"],
+    #       resource_types: ["CLOUDFRONT_DISTRIBUTION"], # accepts CLOUDFRONT_DISTRIBUTION, ROUTE_53_HOSTED_ZONE, ELASTIC_IP_ALLOCATION, CLASSIC_LOAD_BALANCER, APPLICATION_LOAD_BALANCER, GLOBAL_ACCELERATOR
+    #     },
     #   })
     #
     # @example Response structure
@@ -1802,6 +1847,12 @@ module Aws::Shield
     # Updates the details of an existing subscription. Only enter values for
     # parameters you want to change. Empty parameters are not updated.
     #
+    # <note markdown="1"> For accounts that are members of an Organizations organization, Shield
+    # Advanced subscriptions are billed against the organization's payer
+    # account, regardless of whether the payer account itself is subscribed.
+    #
+    #  </note>
+    #
     # @option params [String] :auto_renew
     #   When you initally create a subscription, `AutoRenew` is set to
     #   `ENABLED`. If `ENABLED`, the subscription will be automatically
@@ -1840,7 +1891,7 @@ module Aws::Shield
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-shield'
-      context[:gem_version] = '1.46.0'
+      context[:gem_version] = '1.49.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-shield/client_api.rb

@@ -95,6 +95,8 @@ module Aws::Shield
     HealthCheckArn = Shapes::StringShape.new(name: 'HealthCheckArn')
     HealthCheckId = Shapes::StringShape.new(name: 'HealthCheckId')
     HealthCheckIds = Shapes::ListShape.new(name: 'HealthCheckIds')
+    InclusionProtectionFilters = Shapes::StructureShape.new(name: 'InclusionProtectionFilters')
+    InclusionProtectionGroupFilters = Shapes::StructureShape.new(name: 'InclusionProtectionGroupFilters')
     Integer = Shapes::IntegerShape.new(name: 'Integer')
     InternalErrorException = Shapes::StructureShape.new(name: 'InternalErrorException')
     InvalidOperationException = Shapes::StructureShape.new(name: 'InvalidOperationException')
@@ -128,23 +130,29 @@ module Aws::Shield
     PhoneNumber = Shapes::StringShape.new(name: 'PhoneNumber')
     ProactiveEngagementStatus = Shapes::StringShape.new(name: 'ProactiveEngagementStatus')
     ProtectedResourceType = Shapes::StringShape.new(name: 'ProtectedResourceType')
+    ProtectedResourceTypeFilters = Shapes::ListShape.new(name: 'ProtectedResourceTypeFilters')
     Protection = Shapes::StructureShape.new(name: 'Protection')
     ProtectionGroup = Shapes::StructureShape.new(name: 'ProtectionGroup')
     ProtectionGroupAggregation = Shapes::StringShape.new(name: 'ProtectionGroupAggregation')
+    ProtectionGroupAggregationFilters = Shapes::ListShape.new(name: 'ProtectionGroupAggregationFilters')
     ProtectionGroupArbitraryPatternLimits = Shapes::StructureShape.new(name: 'ProtectionGroupArbitraryPatternLimits')
     ProtectionGroupId = Shapes::StringShape.new(name: 'ProtectionGroupId')
+    ProtectionGroupIdFilters = Shapes::ListShape.new(name: 'ProtectionGroupIdFilters')
     ProtectionGroupLimits = Shapes::StructureShape.new(name: 'ProtectionGroupLimits')
     ProtectionGroupMembers = Shapes::ListShape.new(name: 'ProtectionGroupMembers')
     ProtectionGroupPattern = Shapes::StringShape.new(name: 'ProtectionGroupPattern')
+    ProtectionGroupPatternFilters = Shapes::ListShape.new(name: 'ProtectionGroupPatternFilters')
     ProtectionGroupPatternTypeLimits = Shapes::StructureShape.new(name: 'ProtectionGroupPatternTypeLimits')
     ProtectionGroups = Shapes::ListShape.new(name: 'ProtectionGroups')
     ProtectionId = Shapes::StringShape.new(name: 'ProtectionId')
     ProtectionLimits = Shapes::StructureShape.new(name: 'ProtectionLimits')
     ProtectionName = Shapes::StringShape.new(name: 'ProtectionName')
+    ProtectionNameFilters = Shapes::ListShape.new(name: 'ProtectionNameFilters')
     Protections = Shapes::ListShape.new(name: 'Protections')
     ResourceAlreadyExistsException = Shapes::StructureShape.new(name: 'ResourceAlreadyExistsException')
     ResourceArn = Shapes::StringShape.new(name: 'ResourceArn')
     ResourceArnFilterList = Shapes::ListShape.new(name: 'ResourceArnFilterList')
+    ResourceArnFilters = Shapes::ListShape.new(name: 'ResourceArnFilters')
     ResourceArnList = Shapes::ListShape.new(name: 'ResourceArnList')
     ResourceNotFoundException = Shapes::StructureShape.new(name: 'ResourceNotFoundException')
     ResponseAction = Shapes::StructureShape.new(name: 'ResponseAction')
@@ -398,6 +406,17 @@ module Aws::Shield
 
     HealthCheckIds.member = Shapes::ShapeRef.new(shape: HealthCheckId)
 
+    InclusionProtectionFilters.add_member(:resource_arns, Shapes::ShapeRef.new(shape: ResourceArnFilters, location_name: "ResourceArns"))
+    InclusionProtectionFilters.add_member(:protection_names, Shapes::ShapeRef.new(shape: ProtectionNameFilters, location_name: "ProtectionNames"))
+    InclusionProtectionFilters.add_member(:resource_types, Shapes::ShapeRef.new(shape: ProtectedResourceTypeFilters, location_name: "ResourceTypes"))
+    InclusionProtectionFilters.struct_class = Types::InclusionProtectionFilters
+
+    InclusionProtectionGroupFilters.add_member(:protection_group_ids, Shapes::ShapeRef.new(shape: ProtectionGroupIdFilters, location_name: "ProtectionGroupIds"))
+    InclusionProtectionGroupFilters.add_member(:patterns, Shapes::ShapeRef.new(shape: ProtectionGroupPatternFilters, location_name: "Patterns"))
+    InclusionProtectionGroupFilters.add_member(:resource_types, Shapes::ShapeRef.new(shape: ProtectedResourceTypeFilters, location_name: "ResourceTypes"))
+    InclusionProtectionGroupFilters.add_member(:aggregations, Shapes::ShapeRef.new(shape: ProtectionGroupAggregationFilters, location_name: "Aggregations"))
+    InclusionProtectionGroupFilters.struct_class = Types::InclusionProtectionGroupFilters
+
     InternalErrorException.add_member(:message, Shapes::ShapeRef.new(shape: errorMessage, location_name: "message"))
     InternalErrorException.struct_class = Types::InternalErrorException
 
@@ -439,6 +458,7 @@ module Aws::Shield
 
     ListProtectionGroupsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: Token, location_name: "NextToken"))
     ListProtectionGroupsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: MaxResults, location_name: "MaxResults"))
+    ListProtectionGroupsRequest.add_member(:inclusion_filters, Shapes::ShapeRef.new(shape: InclusionProtectionGroupFilters, location_name: "InclusionFilters"))
     ListProtectionGroupsRequest.struct_class = Types::ListProtectionGroupsRequest
 
     ListProtectionGroupsResponse.add_member(:protection_groups, Shapes::ShapeRef.new(shape: ProtectionGroups, required: true, location_name: "ProtectionGroups"))
@@ -447,6 +467,7 @@ module Aws::Shield
 
     ListProtectionsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: Token, location_name: "NextToken"))
     ListProtectionsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: MaxResults, location_name: "MaxResults"))
+    ListProtectionsRequest.add_member(:inclusion_filters, Shapes::ShapeRef.new(shape: InclusionProtectionFilters, location_name: "InclusionFilters"))
     ListProtectionsRequest.struct_class = Types::ListProtectionsRequest
 
     ListProtectionsResponse.add_member(:protections, Shapes::ShapeRef.new(shape: Protections, location_name: "Protections"))
@@ -484,6 +505,8 @@ module Aws::Shield
     OptimisticLockException.add_member(:message, Shapes::ShapeRef.new(shape: errorMessage, location_name: "message"))
     OptimisticLockException.struct_class = Types::OptimisticLockException
 
+    ProtectedResourceTypeFilters.member = Shapes::ShapeRef.new(shape: ProtectedResourceType)
+
     Protection.add_member(:id, Shapes::ShapeRef.new(shape: ProtectionId, location_name: "Id"))
     Protection.add_member(:name, Shapes::ShapeRef.new(shape: ProtectionName, location_name: "Name"))
     Protection.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "ResourceArn"))
@@ -500,15 +523,21 @@ module Aws::Shield
     ProtectionGroup.add_member(:protection_group_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "ProtectionGroupArn"))
     ProtectionGroup.struct_class = Types::ProtectionGroup
 
+    ProtectionGroupAggregationFilters.member = Shapes::ShapeRef.new(shape: ProtectionGroupAggregation)
+
     ProtectionGroupArbitraryPatternLimits.add_member(:max_members, Shapes::ShapeRef.new(shape: Long, required: true, location_name: "MaxMembers"))
     ProtectionGroupArbitraryPatternLimits.struct_class = Types::ProtectionGroupArbitraryPatternLimits
 
+    ProtectionGroupIdFilters.member = Shapes::ShapeRef.new(shape: ProtectionGroupId)
+
     ProtectionGroupLimits.add_member(:max_protection_groups, Shapes::ShapeRef.new(shape: Long, required: true, location_name: "MaxProtectionGroups"))
     ProtectionGroupLimits.add_member(:pattern_type_limits, Shapes::ShapeRef.new(shape: ProtectionGroupPatternTypeLimits, required: true, location_name: "PatternTypeLimits"))
     ProtectionGroupLimits.struct_class = Types::ProtectionGroupLimits
 
     ProtectionGroupMembers.member = Shapes::ShapeRef.new(shape: ResourceArn)
 
+    ProtectionGroupPatternFilters.member = Shapes::ShapeRef.new(shape: ProtectionGroupPattern)
+
     ProtectionGroupPatternTypeLimits.add_member(:arbitrary_pattern_limits, Shapes::ShapeRef.new(shape: ProtectionGroupArbitraryPatternLimits, required: true, location_name: "ArbitraryPatternLimits"))
     ProtectionGroupPatternTypeLimits.struct_class = Types::ProtectionGroupPatternTypeLimits
 
@@ -517,6 +546,8 @@ module Aws::Shield
     ProtectionLimits.add_member(:protected_resource_type_limits, Shapes::ShapeRef.new(shape: Limits, required: true, location_name: "ProtectedResourceTypeLimits"))
     ProtectionLimits.struct_class = Types::ProtectionLimits
 
+    ProtectionNameFilters.member = Shapes::ShapeRef.new(shape: ProtectionName)
+
     Protections.member = Shapes::ShapeRef.new(shape: Protection)
 
     ResourceAlreadyExistsException.add_member(:message, Shapes::ShapeRef.new(shape: errorMessage, location_name: "message"))
@@ -525,6 +556,8 @@ module Aws::Shield
 
     ResourceArnFilterList.member = Shapes::ShapeRef.new(shape: ResourceArn)
 
+    ResourceArnFilters.member = Shapes::ShapeRef.new(shape: ResourceArn)
+
     ResourceArnList.member = Shapes::ShapeRef.new(shape: ResourceArn)
 
     ResourceNotFoundException.add_member(:message, Shapes::ShapeRef.new(shape: errorMessage, location_name: "message"))

data/lib/aws-sdk-shield/types.rb

@@ -636,7 +636,7 @@ module Aws::Shield
     #   * For an Amazon CloudFront distribution:
     #     `arn:aws:cloudfront::account-id:distribution/distribution-id `
     #
-    #   * For an Global Accelerator accelerator:
+    #   * For an Global Accelerator standard accelerator:
     #     `arn:aws:globalaccelerator::account-id:accelerator/accelerator-id
     #     `
     #
@@ -763,7 +763,7 @@ module Aws::Shield
     end
 
     # @!attribute [rw] attack
-    #   The attack that is described.
+    #   The attack that you requested.
     #   @return [Types::AttackDetail]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/DescribeAttackResponse AWS API Documentation
@@ -781,7 +781,7 @@ module Aws::Shield
     class DescribeAttackStatisticsRequest < Aws::EmptyStructure; end
 
     # @!attribute [rw] time_range
-    #   The time range.
+    #   The time range of the attack.
     #   @return [Types::TimeRange]
     #
     # @!attribute [rw] data_items
@@ -886,17 +886,15 @@ module Aws::Shield
     #       }
     #
     # @!attribute [rw] protection_id
-    #   The unique identifier (ID) for the Protection object that is
-    #   described. When submitting the `DescribeProtection` request you must
-    #   provide either the `ResourceArn` or the `ProtectionID`, but not
-    #   both.
+    #   The unique identifier (ID) for the Protection object to describe.
+    #   You must provide either the `ResourceArn` of the protected resource
+    #   or the `ProtectionID` of the protection, but not both.
     #   @return [String]
     #
     # @!attribute [rw] resource_arn
-    #   The ARN (Amazon Resource Name) of the Amazon Web Services resource
-    #   for the Protection object that is described. When submitting the
-    #   `DescribeProtection` request you must provide either the
-    #   `ResourceArn` or the `ProtectionID`, but not both.
+    #   The ARN (Amazon Resource Name) of the protected Amazon Web Services
+    #   resource. You must provide either the `ResourceArn` of the protected
+    #   resource or the `ProtectionID` of the protection, but not both.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/DescribeProtectionRequest AWS API Documentation
@@ -909,7 +907,7 @@ module Aws::Shield
     end
 
     # @!attribute [rw] protection
-    #   The Protection object that is described.
+    #   The Protection that you requested.
     #   @return [Types::Protection]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/DescribeProtectionResponse AWS API Documentation
@@ -946,7 +944,7 @@ module Aws::Shield
     #       }
     #
     # @!attribute [rw] resource_arn
-    #   The ARN (Amazon Resource Name) of the resource.
+    #   The ARN (Amazon Resource Name) of the protected resource.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/DisableApplicationLayerAutomaticResponseRequest AWS API Documentation
@@ -1084,7 +1082,7 @@ module Aws::Shield
     #       }
     #
     # @!attribute [rw] resource_arn
-    #   The ARN (Amazon Resource Name) of the resource.
+    #   The ARN (Amazon Resource Name) of the protected resource.
     #   @return [String]
     #
     # @!attribute [rw] action
@@ -1139,6 +1137,95 @@ module Aws::Shield
       include Aws::Structure
     end
 
+    # Narrows the set of protections that the call retrieves. You can
+    # retrieve a single protection by providing its name or the ARN (Amazon
+    # Resource Name) of its protected resource. You can also retrieve all
+    # protections for a specific resource type. You can provide up to one
+    # criteria per filter type. Shield Advanced returns protections that
+    # exactly match all of the filter criteria that you provide.
+    #
+    # @note When making an API call, you may pass InclusionProtectionFilters
+    #   data as a hash:
+    #
+    #       {
+    #         resource_arns: ["ResourceArn"],
+    #         protection_names: ["ProtectionName"],
+    #         resource_types: ["CLOUDFRONT_DISTRIBUTION"], # accepts CLOUDFRONT_DISTRIBUTION, ROUTE_53_HOSTED_ZONE, ELASTIC_IP_ALLOCATION, CLASSIC_LOAD_BALANCER, APPLICATION_LOAD_BALANCER, GLOBAL_ACCELERATOR
+    #       }
+    #
+    # @!attribute [rw] resource_arns
+    #   The ARN (Amazon Resource Name) of the resource whose protection you
+    #   want to retrieve.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] protection_names
+    #   The name of the protection that you want to retrieve.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] resource_types
+    #   The type of protected resource whose protections you want to
+    #   retrieve.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/InclusionProtectionFilters AWS API Documentation
+    #
+    class InclusionProtectionFilters < Struct.new(
+      :resource_arns,
+      :protection_names,
+      :resource_types)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Narrows the set of protection groups that the call retrieves. You can
+    # retrieve a single protection group by its name and you can retrieve
+    # all protection groups that are configured with a specific pattern,
+    # aggregation, or resource type. You can provide up to one criteria per
+    # filter type. Shield Advanced returns the protection groups that
+    # exactly match all of the search criteria that you provide.
+    #
+    # @note When making an API call, you may pass InclusionProtectionGroupFilters
+    #   data as a hash:
+    #
+    #       {
+    #         protection_group_ids: ["ProtectionGroupId"],
+    #         patterns: ["ALL"], # accepts ALL, ARBITRARY, BY_RESOURCE_TYPE
+    #         resource_types: ["CLOUDFRONT_DISTRIBUTION"], # accepts CLOUDFRONT_DISTRIBUTION, ROUTE_53_HOSTED_ZONE, ELASTIC_IP_ALLOCATION, CLASSIC_LOAD_BALANCER, APPLICATION_LOAD_BALANCER, GLOBAL_ACCELERATOR
+    #         aggregations: ["SUM"], # accepts SUM, MEAN, MAX
+    #       }
+    #
+    # @!attribute [rw] protection_group_ids
+    #   The ID of the protection group that you want to retrieve.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] patterns
+    #   The pattern specification of the protection groups that you want to
+    #   retrieve.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] resource_types
+    #   The resource type configuration of the protection groups that you
+    #   want to retrieve. In the protection group configuration, you specify
+    #   the resource type when you set the group's `Pattern` to
+    #   `BY_RESOURCE_TYPE`.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] aggregations
+    #   The aggregation setting of the protection groups that you want to
+    #   retrieve.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/InclusionProtectionGroupFilters AWS API Documentation
+    #
+    class InclusionProtectionGroupFilters < Struct.new(
+      :protection_group_ids,
+      :patterns,
+      :resource_types,
+      :aggregations)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Exception that indicates that a problem occurred with the service
     # infrastructure. You can retry the request.
     #
@@ -1386,6 +1473,12 @@ module Aws::Shield
     #       {
     #         next_token: "Token",
     #         max_results: 1,
+    #         inclusion_filters: {
+    #           protection_group_ids: ["ProtectionGroupId"],
+    #           patterns: ["ALL"], # accepts ALL, ARBITRARY, BY_RESOURCE_TYPE
+    #           resource_types: ["CLOUDFRONT_DISTRIBUTION"], # accepts CLOUDFRONT_DISTRIBUTION, ROUTE_53_HOSTED_ZONE, ELASTIC_IP_ALLOCATION, CLASSIC_LOAD_BALANCER, APPLICATION_LOAD_BALANCER, GLOBAL_ACCELERATOR
+    #           aggregations: ["SUM"], # accepts SUM, MEAN, MAX
+    #         },
     #       }
     #
     # @!attribute [rw] next_token
@@ -1417,11 +1510,21 @@ module Aws::Shield
     #   The default setting is 20.
     #   @return [Integer]
     #
+    # @!attribute [rw] inclusion_filters
+    #   Narrows the set of protection groups that the call retrieves. You
+    #   can retrieve a single protection group by its name and you can
+    #   retrieve all protection groups that are configured with specific
+    #   pattern or aggregation settings. You can provide up to one criteria
+    #   per filter type. Shield Advanced returns the protection groups that
+    #   exactly match all of the search criteria that you provide.
+    #   @return [Types::InclusionProtectionGroupFilters]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/ListProtectionGroupsRequest AWS API Documentation
     #
     class ListProtectionGroupsRequest < Struct.new(
       :next_token,
-      :max_results)
+      :max_results,
+      :inclusion_filters)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -1461,6 +1564,11 @@ module Aws::Shield
     #       {
     #         next_token: "Token",
     #         max_results: 1,
+    #         inclusion_filters: {
+    #           resource_arns: ["ResourceArn"],
+    #           protection_names: ["ProtectionName"],
+    #           resource_types: ["CLOUDFRONT_DISTRIBUTION"], # accepts CLOUDFRONT_DISTRIBUTION, ROUTE_53_HOSTED_ZONE, ELASTIC_IP_ALLOCATION, CLASSIC_LOAD_BALANCER, APPLICATION_LOAD_BALANCER, GLOBAL_ACCELERATOR
+    #         },
     #       }
     #
     # @!attribute [rw] next_token
@@ -1492,11 +1600,22 @@ module Aws::Shield
     #   The default setting is 20.
     #   @return [Integer]
     #
+    # @!attribute [rw] inclusion_filters
+    #   Narrows the set of protections that the call retrieves. You can
+    #   retrieve a single protection by providing its name or the ARN
+    #   (Amazon Resource Name) of its protected resource. You can also
+    #   retrieve all protections for a specific resource type. You can
+    #   provide up to one criteria per filter type. Shield Advanced returns
+    #   protections that exactly match all of the filter criteria that you
+    #   provide.
+    #   @return [Types::InclusionProtectionFilters]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/shield-2016-06-02/ListProtectionsRequest AWS API Documentation
     #
     class ListProtectionsRequest < Struct.new(
       :next_token,
-      :max_results)
+      :max_results,
+      :inclusion_filters)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -1678,7 +1797,7 @@ module Aws::Shield
       include Aws::Structure
     end
 
-    # The ARN of the role that you specifed does not exist.
+    # The ARN of the role that you specified does not exist.
     #
     # @!attribute [rw] message
     #   @return [String]
@@ -1783,7 +1902,7 @@ module Aws::Shield
     # @!attribute [rw] pattern
     #   The criteria to use to choose the protected resources for inclusion
     #   in the group. You can include all resources that have protections,
-    #   provide a list of resource Amazon Resource Names (ARNs), or include
+    #   provide a list of resource ARNs (Amazon Resource Names), or include
     #   all resources of a specified resource type.
     #   @return [String]
     #
@@ -1795,7 +1914,7 @@ module Aws::Shield
     #   @return [String]
     #
     # @!attribute [rw] members
-    #   The Amazon Resource Names (ARNs) of the resources to include in the
+    #   The ARNs (Amazon Resource Names) of the resources to include in the
     #   protection group. You must set this when you set `Pattern` to
     #   `ARBITRARY` and you must not set it for any other `Pattern` setting.
     #   @return [Array<String>]

data/lib/aws-sdk-shield.rb

@@ -48,6 +48,6 @@ require_relative 'aws-sdk-shield/customizations'
 # @!group service
 module Aws::Shield
 
-  GEM_VERSION = '1.46.0'
+  GEM_VERSION = '1.49.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-shield
 version: !ruby/object:Gem::Version
-  version: 1.46.0
+  version: 1.49.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-12-21 00:00:00.000000000 Z
+date: 2022-07-29 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core
@@ -19,7 +19,7 @@ dependencies:
         version: '3'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.125.0
+        version: 3.127.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
@@ -29,7 +29,7 @@ dependencies:
         version: '3'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.125.0
+        version: 3.127.0
 - !ruby/object:Gem::Dependency
   name: aws-sigv4
   requirement: !ruby/object:Gem::Requirement