aws-sdk-signer 1.22.1 → 1.27.0

data/lib/aws-sdk-signer/errors.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:
@@ -27,10 +29,13 @@ module Aws::Signer
   # ## Error Classes
   # * {AccessDeniedException}
   # * {BadRequestException}
+  # * {ConflictException}
   # * {InternalServiceErrorException}
   # * {NotFoundException}
   # * {ResourceNotFoundException}
+  # * {ServiceLimitExceededException}
   # * {ThrottlingException}
+  # * {TooManyRequestsException}
   # * {ValidationException}
   #
   # Additionally, error classes are dynamically generated for service errors based on the error code
@@ -52,6 +57,11 @@ module Aws::Signer
       def message
         @message || @data[:message]
       end
+
+      # @return [String]
+      def code
+        @code || @data[:code]
+      end
     end
 
     class BadRequestException < ServiceError
@@ -67,6 +77,31 @@ module Aws::Signer
       def message
         @message || @data[:message]
       end
+
+      # @return [String]
+      def code
+        @code || @data[:code]
+      end
+    end
+
+    class ConflictException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::Signer::Types::ConflictException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+
+      # @return [String]
+      def code
+        @code || @data[:code]
+      end
     end
 
     class InternalServiceErrorException < ServiceError
@@ -82,6 +117,11 @@ module Aws::Signer
       def message
         @message || @data[:message]
       end
+
+      # @return [String]
+      def code
+        @code || @data[:code]
+      end
     end
 
     class NotFoundException < ServiceError
@@ -97,6 +137,11 @@ module Aws::Signer
       def message
         @message || @data[:message]
       end
+
+      # @return [String]
+      def code
+        @code || @data[:code]
+      end
     end
 
     class ResourceNotFoundException < ServiceError
@@ -112,6 +157,31 @@ module Aws::Signer
       def message
         @message || @data[:message]
       end
+
+      # @return [String]
+      def code
+        @code || @data[:code]
+      end
+    end
+
+    class ServiceLimitExceededException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::Signer::Types::ServiceLimitExceededException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+
+      # @return [String]
+      def code
+        @code || @data[:code]
+      end
     end
 
     class ThrottlingException < ServiceError
@@ -127,6 +197,31 @@ module Aws::Signer
       def message
         @message || @data[:message]
       end
+
+      # @return [String]
+      def code
+        @code || @data[:code]
+      end
+    end
+
+    class TooManyRequestsException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::Signer::Types::TooManyRequestsException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+
+      # @return [String]
+      def code
+        @code || @data[:code]
+      end
     end
 
     class ValidationException < ServiceError
@@ -142,6 +237,11 @@ module Aws::Signer
       def message
         @message || @data[:message]
       end
+
+      # @return [String]
+      def code
+        @code || @data[:code]
+      end
     end
 
   end

data/lib/aws-sdk-signer/resource.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:

data/lib/aws-sdk-signer/types.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:
@@ -13,10 +15,78 @@ module Aws::Signer
     # @!attribute [rw] message
     #   @return [String]
     #
+    # @!attribute [rw] code
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/AccessDeniedException AWS API Documentation
     #
     class AccessDeniedException < Struct.new(
-      :message)
+      :message,
+      :code)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass AddProfilePermissionRequest
+    #   data as a hash:
+    #
+    #       {
+    #         profile_name: "ProfileName", # required
+    #         profile_version: "ProfileVersion",
+    #         action: "String", # required
+    #         principal: "String", # required
+    #         revision_id: "String",
+    #         statement_id: "String", # required
+    #       }
+    #
+    # @!attribute [rw] profile_name
+    #   The human-readable name of the signing profile.
+    #   @return [String]
+    #
+    # @!attribute [rw] profile_version
+    #   The version of the signing profile.
+    #   @return [String]
+    #
+    # @!attribute [rw] action
+    #   The AWS Signer action permitted as part of cross-account
+    #   permissions.
+    #   @return [String]
+    #
+    # @!attribute [rw] principal
+    #   The AWS principal receiving cross-account permissions. This may be
+    #   an IAM role or another AWS account ID.
+    #   @return [String]
+    #
+    # @!attribute [rw] revision_id
+    #   A unique identifier for the current profile revision.
+    #   @return [String]
+    #
+    # @!attribute [rw] statement_id
+    #   A unique identifier for the cross-account permission statement.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/AddProfilePermissionRequest AWS API Documentation
+    #
+    class AddProfilePermissionRequest < Struct.new(
+      :profile_name,
+      :profile_version,
+      :action,
+      :principal,
+      :revision_id,
+      :statement_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] revision_id
+    #   A unique identifier for the current profile revision.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/AddProfilePermissionResponse AWS API Documentation
+    #
+    class AddProfilePermissionResponse < Struct.new(
+      :revision_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -27,10 +97,15 @@ module Aws::Signer
     # @!attribute [rw] message
     #   @return [String]
     #
+    # @!attribute [rw] code
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/BadRequestException AWS API Documentation
     #
     class BadRequestException < Struct.new(
-      :message)
+      :message,
+      :code)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -49,6 +124,24 @@ module Aws::Signer
     #
     class CancelSigningProfileRequest < Struct.new(
       :profile_name)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # The resource encountered a conflicting state.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @!attribute [rw] code
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/ConflictException AWS API Documentation
+    #
+    class ConflictException < Struct.new(
+      :message,
+      :code)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -67,6 +160,7 @@ module Aws::Signer
     #
     class DescribeSigningJobRequest < Struct.new(
       :job_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -88,10 +182,19 @@ module Aws::Signer
     #   distributed.
     #   @return [String]
     #
+    # @!attribute [rw] platform_display_name
+    #   A human-readable name for the signing platform associated with the
+    #   signing job.
+    #   @return [String]
+    #
     # @!attribute [rw] profile_name
     #   The name of the profile that initiated the signing operation.
     #   @return [String]
     #
+    # @!attribute [rw] profile_version
+    #   The version of the signing profile used to initiate the signing job.
+    #   @return [String]
+    #
     # @!attribute [rw] overrides
     #   A list of any overrides that were applied to the signing operation.
     #   @return [Types::SigningPlatformOverrides]
@@ -110,6 +213,11 @@ module Aws::Signer
     #   Date and time that the signing job was completed.
     #   @return [Time]
     #
+    # @!attribute [rw] signature_expires_at
+    #   Thr expiration timestamp for the signature generated by the signing
+    #   job.
+    #   @return [Time]
+    #
     # @!attribute [rw] requested_by
     #   The IAM principal that requested the signing job.
     #   @return [String]
@@ -122,11 +230,25 @@ module Aws::Signer
     #   String value that contains the status reason.
     #   @return [String]
     #
+    # @!attribute [rw] revocation_record
+    #   A revocation record if the signature generated by the signing job
+    #   has been revoked. Contains a timestamp and the ID of the IAM entity
+    #   that revoked the signature.
+    #   @return [Types::SigningJobRevocationRecord]
+    #
     # @!attribute [rw] signed_object
     #   Name of the S3 bucket where the signed code image is saved by code
     #   signing.
     #   @return [Types::SignedObject]
     #
+    # @!attribute [rw] job_owner
+    #   The AWS account ID of the job owner.
+    #   @return [String]
+    #
+    # @!attribute [rw] job_invoker
+    #   The IAM entity that initiated the signing job.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/DescribeSigningJobResponse AWS API Documentation
     #
     class DescribeSigningJobResponse < Struct.new(
@@ -134,15 +256,22 @@ module Aws::Signer
       :source,
       :signing_material,
       :platform_id,
+      :platform_display_name,
       :profile_name,
+      :profile_version,
       :overrides,
       :signing_parameters,
       :created_at,
       :completed_at,
+      :signature_expires_at,
       :requested_by,
       :status,
       :status_reason,
-      :signed_object)
+      :revocation_record,
+      :signed_object,
+      :job_owner,
+      :job_invoker)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -167,6 +296,7 @@ module Aws::Signer
     #
     class Destination < Struct.new(
       :s3)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -187,6 +317,7 @@ module Aws::Signer
     class EncryptionAlgorithmOptions < Struct.new(
       :allowed_values,
       :default_value)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -205,6 +336,7 @@ module Aws::Signer
     #
     class GetSigningPlatformRequest < Struct.new(
       :platform_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -241,6 +373,11 @@ module Aws::Signer
     #   target platform.
     #   @return [Integer]
     #
+    # @!attribute [rw] revocation_supported
+    #   A flag indicating whether signatures generated for the signing
+    #   platform can be revoked.
+    #   @return [Boolean]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/GetSigningPlatformResponse AWS API Documentation
     #
     class GetSigningPlatformResponse < Struct.new(
@@ -251,7 +388,9 @@ module Aws::Signer
       :category,
       :signing_configuration,
       :signing_image_format,
-      :max_size_in_mb)
+      :max_size_in_mb,
+      :revocation_supported)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -260,16 +399,23 @@ module Aws::Signer
     #
     #       {
     #         profile_name: "ProfileName", # required
+    #         profile_owner: "AccountId",
     #       }
     #
     # @!attribute [rw] profile_name
     #   The name of the target signing profile.
     #   @return [String]
     #
+    # @!attribute [rw] profile_owner
+    #   The AWS account ID of the profile owner.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/GetSigningProfileRequest AWS API Documentation
     #
     class GetSigningProfileRequest < Struct.new(
-      :profile_name)
+      :profile_name,
+      :profile_owner)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -277,6 +423,18 @@ module Aws::Signer
     #   The name of the target signing profile.
     #   @return [String]
     #
+    # @!attribute [rw] profile_version
+    #   The current version of the signing profile.
+    #   @return [String]
+    #
+    # @!attribute [rw] profile_version_arn
+    #   The signing profile ARN, including the profile version.
+    #   @return [String]
+    #
+    # @!attribute [rw] revocation_record
+    #   Revocation information for a signing profile.
+    #   @return [Types::SigningProfileRevocationRecord]
+    #
     # @!attribute [rw] signing_material
     #   The ARN of the certificate that the target profile uses for signing
     #   operations.
@@ -286,6 +444,15 @@ module Aws::Signer
     #   The ID of the platform that is used by the target signing profile.
     #   @return [String]
     #
+    # @!attribute [rw] platform_display_name
+    #   A human-readable name for the signing platform associated with the
+    #   signing profile.
+    #   @return [String]
+    #
+    # @!attribute [rw] signature_validity_period
+    #   The validity period for a signing job.
+    #   @return [Types::SignatureValidityPeriod]
+    #
     # @!attribute [rw] overrides
     #   A list of overrides applied by the target signing profile for
     #   signing operations.
@@ -300,6 +467,10 @@ module Aws::Signer
     #   The status of the target signing profile.
     #   @return [String]
     #
+    # @!attribute [rw] status_reason
+    #   Reason for the status of the target signing profile.
+    #   @return [String]
+    #
     # @!attribute [rw] arn
     #   The Amazon Resource Name (ARN) for the signing profile.
     #   @return [String]
@@ -312,13 +483,20 @@ module Aws::Signer
     #
     class GetSigningProfileResponse < Struct.new(
       :profile_name,
+      :profile_version,
+      :profile_version_arn,
+      :revocation_record,
       :signing_material,
       :platform_id,
+      :platform_display_name,
+      :signature_validity_period,
       :overrides,
       :signing_parameters,
       :status,
+      :status_reason,
       :arn,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -337,6 +515,7 @@ module Aws::Signer
     class HashAlgorithmOptions < Struct.new(
       :allowed_values,
       :default_value)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -345,10 +524,69 @@ module Aws::Signer
     # @!attribute [rw] message
     #   @return [String]
     #
+    # @!attribute [rw] code
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/InternalServiceErrorException AWS API Documentation
     #
     class InternalServiceErrorException < Struct.new(
-      :message)
+      :message,
+      :code)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass ListProfilePermissionsRequest
+    #   data as a hash:
+    #
+    #       {
+    #         profile_name: "ProfileName", # required
+    #         next_token: "String",
+    #       }
+    #
+    # @!attribute [rw] profile_name
+    #   Name of the signing profile containing the cross-account
+    #   permissions.
+    #   @return [String]
+    #
+    # @!attribute [rw] next_token
+    #   String for specifying the next set of paginated results.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/ListProfilePermissionsRequest AWS API Documentation
+    #
+    class ListProfilePermissionsRequest < Struct.new(
+      :profile_name,
+      :next_token)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] revision_id
+    #   The identifier for the current revision of profile permissions.
+    #   @return [String]
+    #
+    # @!attribute [rw] policy_size_bytes
+    #   Total size of the policy associated with the Signing Profile in
+    #   bytes.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] permissions
+    #   List of permissions associated with the Signing Profile.
+    #   @return [Array<Types::Permission>]
+    #
+    # @!attribute [rw] next_token
+    #   String for specifying the next set of paginated results.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/ListProfilePermissionsResponse AWS API Documentation
+    #
+    class ListProfilePermissionsResponse < Struct.new(
+      :revision_id,
+      :policy_size_bytes,
+      :permissions,
+      :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -361,6 +599,10 @@ module Aws::Signer
     #         requested_by: "RequestedBy",
     #         max_results: 1,
     #         next_token: "NextToken",
+    #         is_revoked: false,
+    #         signature_expires_before: Time.now,
+    #         signature_expires_after: Time.now,
+    #         job_invoker: "AccountId",
     #       }
     #
     # @!attribute [rw] status
@@ -391,6 +633,25 @@ module Aws::Signer
     #   `nextToken` from the response that you just received.
     #   @return [String]
     #
+    # @!attribute [rw] is_revoked
+    #   Filters results to return only signing jobs with revoked signatures.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] signature_expires_before
+    #   Filters results to return only signing jobs with signatures expiring
+    #   before a specified timestamp.
+    #   @return [Time]
+    #
+    # @!attribute [rw] signature_expires_after
+    #   Filters results to return only signing jobs with signatures expiring
+    #   after a specified timestamp.
+    #   @return [Time]
+    #
+    # @!attribute [rw] job_invoker
+    #   Filters results to return only signing jobs initiated by a specified
+    #   IAM entity.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/ListSigningJobsRequest AWS API Documentation
     #
     class ListSigningJobsRequest < Struct.new(
@@ -398,7 +659,12 @@ module Aws::Signer
       :platform_id,
       :requested_by,
       :max_results,
-      :next_token)
+      :next_token,
+      :is_revoked,
+      :signature_expires_before,
+      :signature_expires_after,
+      :job_invoker)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -415,6 +681,7 @@ module Aws::Signer
     class ListSigningJobsResponse < Struct.new(
       :jobs,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -460,6 +727,7 @@ module Aws::Signer
       :target,
       :max_results,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -476,6 +744,7 @@ module Aws::Signer
     class ListSigningPlatformsResponse < Struct.new(
       :platforms,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -486,6 +755,8 @@ module Aws::Signer
     #         include_canceled: false,
     #         max_results: 1,
     #         next_token: "NextToken",
+    #         platform_id: "PlatformId",
+    #         statuses: ["Active"], # accepts Active, Canceled, Revoked
     #       }
     #
     # @!attribute [rw] include_canceled
@@ -504,12 +775,25 @@ module Aws::Signer
     #   `nextToken` from the response that you just received.
     #   @return [String]
     #
+    # @!attribute [rw] platform_id
+    #   Filters results to return only signing jobs initiated for a
+    #   specified signing platform.
+    #   @return [String]
+    #
+    # @!attribute [rw] statuses
+    #   Filters results to return only signing jobs with statuses in the
+    #   specified list.
+    #   @return [Array<String>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/ListSigningProfilesRequest AWS API Documentation
     #
     class ListSigningProfilesRequest < Struct.new(
       :include_canceled,
       :max_results,
-      :next_token)
+      :next_token,
+      :platform_id,
+      :statuses)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -528,6 +812,7 @@ module Aws::Signer
     class ListSigningProfilesResponse < Struct.new(
       :profiles,
       :next_token)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -546,6 +831,7 @@ module Aws::Signer
     #
     class ListTagsForResourceRequest < Struct.new(
       :resource_arn)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -557,6 +843,7 @@ module Aws::Signer
     #
     class ListTagsForResourceResponse < Struct.new(
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -565,10 +852,44 @@ module Aws::Signer
     # @!attribute [rw] message
     #   @return [String]
     #
+    # @!attribute [rw] code
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/NotFoundException AWS API Documentation
     #
     class NotFoundException < Struct.new(
-      :message)
+      :message,
+      :code)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # A cross-account permission for a signing profile.
+    #
+    # @!attribute [rw] action
+    #   An AWS Signer action permitted as part of cross-account permissions.
+    #   @return [String]
+    #
+    # @!attribute [rw] principal
+    #   The AWS principal that has been granted a cross-account permission.
+    #   @return [String]
+    #
+    # @!attribute [rw] statement_id
+    #   A unique identifier for a cross-account permission statement.
+    #   @return [String]
+    #
+    # @!attribute [rw] profile_version
+    #   The signing profile version that a permission applies to.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/Permission AWS API Documentation
+    #
+    class Permission < Struct.new(
+      :action,
+      :principal,
+      :statement_id,
+      :profile_version)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -577,9 +898,13 @@ module Aws::Signer
     #
     #       {
     #         profile_name: "ProfileName", # required
-    #         signing_material: { # required
+    #         signing_material: {
     #           certificate_arn: "CertificateArn", # required
     #         },
+    #         signature_validity_period: {
+    #           value: 1,
+    #           type: "DAYS", # accepts DAYS, MONTHS, YEARS
+    #         },
     #         platform_id: "PlatformId", # required
     #         overrides: {
     #           signing_configuration: {
@@ -605,6 +930,12 @@ module Aws::Signer
     #   code with the new signing profile.
     #   @return [Types::SigningMaterial]
     #
+    # @!attribute [rw] signature_validity_period
+    #   The default validity period override for any signature generated
+    #   using this signing profile. If unspecified, the default is 135
+    #   months.
+    #   @return [Types::SignatureValidityPeriod]
+    #
     # @!attribute [rw] platform_id
     #   The ID of the signing platform to be created.
     #   @return [String]
@@ -630,10 +961,12 @@ module Aws::Signer
     class PutSigningProfileRequest < Struct.new(
       :profile_name,
       :signing_material,
+      :signature_validity_period,
       :platform_id,
       :overrides,
       :signing_parameters,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -641,10 +974,66 @@ module Aws::Signer
     #   The Amazon Resource Name (ARN) of the signing profile created.
     #   @return [String]
     #
+    # @!attribute [rw] profile_version
+    #   The version of the signing profile being created.
+    #   @return [String]
+    #
+    # @!attribute [rw] profile_version_arn
+    #   The signing profile ARN, including the profile version.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/PutSigningProfileResponse AWS API Documentation
     #
     class PutSigningProfileResponse < Struct.new(
-      :arn)
+      :arn,
+      :profile_version,
+      :profile_version_arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass RemoveProfilePermissionRequest
+    #   data as a hash:
+    #
+    #       {
+    #         profile_name: "ProfileName", # required
+    #         revision_id: "String", # required
+    #         statement_id: "String", # required
+    #       }
+    #
+    # @!attribute [rw] profile_name
+    #   A human-readable name for the signing profile with permissions to be
+    #   removed.
+    #   @return [String]
+    #
+    # @!attribute [rw] revision_id
+    #   An identifier for the current revision of the signing profile
+    #   permissions.
+    #   @return [String]
+    #
+    # @!attribute [rw] statement_id
+    #   A unique identifier for the cross-account permissions statement.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/RemoveProfilePermissionRequest AWS API Documentation
+    #
+    class RemoveProfilePermissionRequest < Struct.new(
+      :profile_name,
+      :revision_id,
+      :statement_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] revision_id
+    #   An identifier for the current revision of the profile permissions.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/RemoveProfilePermissionResponse AWS API Documentation
+    #
+    class RemoveProfilePermissionResponse < Struct.new(
+      :revision_id)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -653,10 +1042,85 @@ module Aws::Signer
     # @!attribute [rw] message
     #   @return [String]
     #
+    # @!attribute [rw] code
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/ResourceNotFoundException AWS API Documentation
     #
     class ResourceNotFoundException < Struct.new(
-      :message)
+      :message,
+      :code)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass RevokeSignatureRequest
+    #   data as a hash:
+    #
+    #       {
+    #         job_id: "JobId", # required
+    #         job_owner: "AccountId",
+    #         reason: "RevocationReasonString", # required
+    #       }
+    #
+    # @!attribute [rw] job_id
+    #   ID of the signing job to be revoked.
+    #   @return [String]
+    #
+    # @!attribute [rw] job_owner
+    #   AWS account ID of the job owner.
+    #   @return [String]
+    #
+    # @!attribute [rw] reason
+    #   The reason for revoking the signing job.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/RevokeSignatureRequest AWS API Documentation
+    #
+    class RevokeSignatureRequest < Struct.new(
+      :job_id,
+      :job_owner,
+      :reason)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass RevokeSigningProfileRequest
+    #   data as a hash:
+    #
+    #       {
+    #         profile_name: "ProfileName", # required
+    #         profile_version: "ProfileVersion", # required
+    #         reason: "RevocationReasonString", # required
+    #         effective_time: Time.now, # required
+    #       }
+    #
+    # @!attribute [rw] profile_name
+    #   The name of the signing profile to be revoked.
+    #   @return [String]
+    #
+    # @!attribute [rw] profile_version
+    #   The version of the signing profile to be revoked.
+    #   @return [String]
+    #
+    # @!attribute [rw] reason
+    #   The reason for revoking a signing profile.
+    #   @return [String]
+    #
+    # @!attribute [rw] effective_time
+    #   A timestamp for when revocation of a Signing Profile should become
+    #   effective. Signatures generated using the signing profile after this
+    #   timestamp are not trusted.
+    #   @return [Time]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/RevokeSigningProfileRequest AWS API Documentation
+    #
+    class RevokeSigningProfileRequest < Struct.new(
+      :profile_name,
+      :profile_version,
+      :reason,
+      :effective_time)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -685,6 +1149,7 @@ module Aws::Signer
     class S3Destination < Struct.new(
       :bucket_name,
       :prefix)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -705,6 +1170,7 @@ module Aws::Signer
     class S3SignedObject < Struct.new(
       :bucket_name,
       :key)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -737,6 +1203,51 @@ module Aws::Signer
       :bucket_name,
       :key,
       :version)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # The client is making a request that exceeds service limits.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @!attribute [rw] code
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/ServiceLimitExceededException AWS API Documentation
+    #
+    class ServiceLimitExceededException < Struct.new(
+      :message,
+      :code)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # The validity period for a signing job.
+    #
+    # @note When making an API call, you may pass SignatureValidityPeriod
+    #   data as a hash:
+    #
+    #       {
+    #         value: 1,
+    #         type: "DAYS", # accepts DAYS, MONTHS, YEARS
+    #       }
+    #
+    # @!attribute [rw] value
+    #   The numerical value of the time unit for signature validity.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] type
+    #   The time unit for signature validity.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/SignatureValidityPeriod AWS API Documentation
+    #
+    class SignatureValidityPeriod < Struct.new(
+      :value,
+      :type)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -751,6 +1262,7 @@ module Aws::Signer
     #
     class SignedObject < Struct.new(
       :s3)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -771,6 +1283,7 @@ module Aws::Signer
     class SigningConfiguration < Struct.new(
       :encryption_algorithm_options,
       :hash_algorithm_options)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -800,6 +1313,7 @@ module Aws::Signer
     class SigningConfigurationOverrides < Struct.new(
       :encryption_algorithm,
       :hash_algorithm)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -818,6 +1332,7 @@ module Aws::Signer
     class SigningImageFormat < Struct.new(
       :supported_formats,
       :default_format)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -850,6 +1365,38 @@ module Aws::Signer
     #   The status of the signing job.
     #   @return [String]
     #
+    # @!attribute [rw] is_revoked
+    #   Indicates whether the signing job is revoked.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] profile_name
+    #   The name of the signing profile that created a signing job.
+    #   @return [String]
+    #
+    # @!attribute [rw] profile_version
+    #   The version of the signing profile that created a signing job.
+    #   @return [String]
+    #
+    # @!attribute [rw] platform_id
+    #   The unique identifier for a signing platform.
+    #   @return [String]
+    #
+    # @!attribute [rw] platform_display_name
+    #   The name of a signing platform.
+    #   @return [String]
+    #
+    # @!attribute [rw] signature_expires_at
+    #   The time when the signature of a signing job expires.
+    #   @return [Time]
+    #
+    # @!attribute [rw] job_owner
+    #   The AWS account ID of the job owner.
+    #   @return [String]
+    #
+    # @!attribute [rw] job_invoker
+    #   The AWS account ID of the job invoker.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/SigningJob AWS API Documentation
     #
     class SigningJob < Struct.new(
@@ -858,7 +1405,40 @@ module Aws::Signer
       :signed_object,
       :signing_material,
       :created_at,
-      :status)
+      :status,
+      :is_revoked,
+      :profile_name,
+      :profile_version,
+      :platform_id,
+      :platform_display_name,
+      :signature_expires_at,
+      :job_owner,
+      :job_invoker)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Revocation information for a signing job.
+    #
+    # @!attribute [rw] reason
+    #   A caller-supplied reason for revocation.
+    #   @return [String]
+    #
+    # @!attribute [rw] revoked_at
+    #   The time of revocation.
+    #   @return [Time]
+    #
+    # @!attribute [rw] revoked_by
+    #   The identity of the revoker.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/SigningJobRevocationRecord AWS API Documentation
+    #
+    class SigningJobRevocationRecord < Struct.new(
+      :reason,
+      :revoked_at,
+      :revoked_by)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -880,6 +1460,7 @@ module Aws::Signer
     #
     class SigningMaterial < Struct.new(
       :certificate_arn)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -921,6 +1502,10 @@ module Aws::Signer
     #   signing platform.
     #   @return [Integer]
     #
+    # @!attribute [rw] revocation_supported
+    #   Indicates whether revocation is supported for the platform.
+    #   @return [Boolean]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/SigningPlatform AWS API Documentation
     #
     class SigningPlatform < Struct.new(
@@ -931,7 +1516,9 @@ module Aws::Signer
       :category,
       :signing_configuration,
       :signing_image_format,
-      :max_size_in_mb)
+      :max_size_in_mb,
+      :revocation_supported)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -968,6 +1555,7 @@ module Aws::Signer
     class SigningPlatformOverrides < Struct.new(
       :signing_configuration,
       :signing_image_format)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -979,14 +1567,31 @@ module Aws::Signer
     #   The name of the signing profile.
     #   @return [String]
     #
+    # @!attribute [rw] profile_version
+    #   The version of a signing profile.
+    #   @return [String]
+    #
+    # @!attribute [rw] profile_version_arn
+    #   The ARN of a signing profile, including the profile version.
+    #   @return [String]
+    #
     # @!attribute [rw] signing_material
     #   The ACM certificate that is available for use by a signing profile.
     #   @return [Types::SigningMaterial]
     #
+    # @!attribute [rw] signature_validity_period
+    #   The validity period for a signing job created using this signing
+    #   profile.
+    #   @return [Types::SignatureValidityPeriod]
+    #
     # @!attribute [rw] platform_id
     #   The ID of a platform that is available for use by a signing profile.
     #   @return [String]
     #
+    # @!attribute [rw] platform_display_name
+    #   The name of the signing platform.
+    #   @return [String]
+    #
     # @!attribute [rw] signing_parameters
     #   The parameters that are available for use by a code signing user.
     #   @return [Hash<String,String>]
@@ -1007,12 +1612,41 @@ module Aws::Signer
     #
     class SigningProfile < Struct.new(
       :profile_name,
+      :profile_version,
+      :profile_version_arn,
       :signing_material,
+      :signature_validity_period,
       :platform_id,
+      :platform_display_name,
       :signing_parameters,
       :status,
       :arn,
       :tags)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Revocation information for a signing profile.
+    #
+    # @!attribute [rw] revocation_effective_from
+    #   The time when revocation becomes effective.
+    #   @return [Time]
+    #
+    # @!attribute [rw] revoked_at
+    #   The time when the signing profile was revoked.
+    #   @return [Time]
+    #
+    # @!attribute [rw] revoked_by
+    #   The identity of the revoker.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/SigningProfileRevocationRecord AWS API Documentation
+    #
+    class SigningProfileRevocationRecord < Struct.new(
+      :revocation_effective_from,
+      :revoked_at,
+      :revoked_by)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1038,6 +1672,7 @@ module Aws::Signer
     #
     class Source < Struct.new(
       :s3)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1058,8 +1693,9 @@ module Aws::Signer
     #             prefix: "Prefix",
     #           },
     #         },
-    #         profile_name: "ProfileName",
+    #         profile_name: "ProfileName", # required
     #         client_request_token: "ClientRequestToken", # required
+    #         profile_owner: "AccountId",
     #       }
     #
     # @!attribute [rw] source
@@ -1085,13 +1721,19 @@ module Aws::Signer
     #   not need to pass this option.
     #   @return [String]
     #
+    # @!attribute [rw] profile_owner
+    #   The AWS account ID of the signing profile owner.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/StartSigningJobRequest AWS API Documentation
     #
     class StartSigningJobRequest < Struct.new(
       :source,
       :destination,
       :profile_name,
-      :client_request_token)
+      :client_request_token,
+      :profile_owner)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1099,10 +1741,16 @@ module Aws::Signer
     #   The ID of your signing job.
     #   @return [String]
     #
+    # @!attribute [rw] job_owner
+    #   The AWS account ID of the signing job owner.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/StartSigningJobResponse AWS API Documentation
     #
     class StartSigningJobResponse < Struct.new(
-      :job_id)
+      :job_id,
+      :job_owner)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1129,6 +1777,7 @@ module Aws::Signer
     class TagResourceRequest < Struct.new(
       :resource_arn,
       :tags)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1136,15 +1785,41 @@ module Aws::Signer
     #
     class TagResourceResponse < Aws::EmptyStructure; end
 
-    # The signing job has been throttled.
+    # The request was denied due to request throttling.
+    #
+    # Instead of this error, `TooManyRequestsException` should be used.
     #
     # @!attribute [rw] message
     #   @return [String]
     #
+    # @!attribute [rw] code
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/ThrottlingException AWS API Documentation
     #
     class ThrottlingException < Struct.new(
-      :message)
+      :message,
+      :code)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # The allowed number of job-signing requests has been exceeded.
+    #
+    # This error supersedes the error `ThrottlingException`.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @!attribute [rw] code
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/TooManyRequestsException AWS API Documentation
+    #
+    class TooManyRequestsException < Struct.new(
+      :message,
+      :code)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1169,6 +1844,7 @@ module Aws::Signer
     class UntagResourceRequest < Struct.new(
       :resource_arn,
       :tag_keys)
+      SENSITIVE = []
       include Aws::Structure
     end
 
@@ -1181,10 +1857,15 @@ module Aws::Signer
     # @!attribute [rw] message
     #   @return [String]
     #
+    # @!attribute [rw] code
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/signer-2017-08-25/ValidationException AWS API Documentation
     #
     class ValidationException < Struct.new(
-      :message)
+      :message,
+      :code)
+      SENSITIVE = []
       include Aws::Structure
     end