aws-sdk-transfer 1.12.0 → 1.13.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/aws-sdk-transfer.rb +1 -1
- data/lib/aws-sdk-transfer/client.rb +102 -69
- data/lib/aws-sdk-transfer/client_api.rb +3 -1
- data/lib/aws-sdk-transfer/types.rb +119 -76
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA1:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 1ea87342c0472c14fc27069bc7cfc9c5d6aeb55d
|
4
|
+
data.tar.gz: e257eb864adf2fdd0365016bc11b28d449efc241
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: f7dde31138d738f9daf428296ebe60096d185d657b1ac238d75dedcb2320446f14bac64b1ce5d62758a5fc28d080afa035b06da27ed68854dcd1216763709652
|
7
|
+
data.tar.gz: 75130b22d2a57a2a60dbba7292d1f060f9cd380fc47a286709367b95b56ae1f0314fdcc2ad74a87b78eea37f57b3146b5458ce8e567e7742d0b5ed1608ca03ea
|
data/lib/aws-sdk-transfer.rb
CHANGED
@@ -265,45 +265,47 @@ module Aws::Transfer
|
|
265
265
|
# @!group API Operations
|
266
266
|
|
267
267
|
# Instantiates an autoscaling virtual server based on Secure File
|
268
|
-
# Transfer Protocol (SFTP) in AWS.
|
269
|
-
#
|
270
|
-
#
|
271
|
-
# server, or work with users.
|
272
|
-
#
|
273
|
-
# The response returns the `ServerId` value for the newly created
|
274
|
-
# server.
|
268
|
+
# Transfer Protocol (SFTP) in AWS. When you make updates to your server
|
269
|
+
# or when you work with users, use the service-generated `ServerId`
|
270
|
+
# property that is assigned to the newly created server.
|
275
271
|
#
|
276
272
|
# @option params [Types::EndpointDetails] :endpoint_details
|
277
273
|
# The virtual private cloud (VPC) endpoint settings that you want to
|
278
|
-
# configure for your SFTP server.
|
274
|
+
# configure for your SFTP server. This parameter is required when you
|
275
|
+
# specify a value for the `EndpointType` parameter.
|
279
276
|
#
|
280
277
|
# @option params [String] :endpoint_type
|
281
|
-
# The type of VPC endpoint that you want your SFTP server connect to.
|
282
|
-
# you connect to a VPC endpoint, your SFTP server isn't accessible
|
283
|
-
# the public internet.
|
278
|
+
# The type of VPC endpoint that you want your SFTP server to connect to.
|
279
|
+
# If you connect to a VPC endpoint, your SFTP server isn't accessible
|
280
|
+
# over the public internet.
|
284
281
|
#
|
285
282
|
# @option params [String] :host_key
|
286
|
-
# The RSA private key as generated by `ssh-keygen -N "" -f
|
283
|
+
# The RSA private key as generated by the `ssh-keygen -N "" -f
|
287
284
|
# my-new-server-key` command.
|
288
285
|
#
|
289
286
|
# If you aren't planning to migrate existing users from an existing
|
290
287
|
# SFTP server to a new AWS SFTP server, don't update the host key.
|
291
|
-
# Accidentally changing a server's host key can be disruptive.
|
292
|
-
#
|
288
|
+
# Accidentally changing a server's host key can be disruptive.
|
289
|
+
#
|
290
|
+
# For more information, see
|
291
|
+
# "https://docs.aws.amazon.com/transfer/latest/userguide/change-host-key"
|
292
|
+
# in the *AWS SFTP User Guide.*
|
293
293
|
#
|
294
294
|
# @option params [Types::IdentityProviderDetails] :identity_provider_details
|
295
|
-
#
|
296
|
-
#
|
297
|
-
#
|
298
|
-
#
|
295
|
+
# This parameter is required when the `IdentityProviderType` is set to
|
296
|
+
# `API_GATEWAY`. Accepts an array containing all of the information
|
297
|
+
# required to call a customer-supplied authentication API, including the
|
298
|
+
# API Gateway URL. This property is not required when the
|
299
|
+
# `IdentityProviderType` is set to `SERVICE_MANAGED`.
|
299
300
|
#
|
300
301
|
# @option params [String] :identity_provider_type
|
301
|
-
#
|
302
|
-
# is `SERVICE_MANAGED`, which allows you to store and access SFTP
|
303
|
-
# credentials within the service.
|
304
|
-
# `API_GATEWAY`
|
305
|
-
#
|
306
|
-
#
|
302
|
+
# Specifies the mode of authentication for the SFTP server. The default
|
303
|
+
# value is `SERVICE_MANAGED`, which allows you to store and access SFTP
|
304
|
+
# user credentials within the AWS Transfer for SFTP service. Use the
|
305
|
+
# `API_GATEWAY` value to integrate with an identity provider of your
|
306
|
+
# choosing. The `API_GATEWAY` setting requires you to provide an API
|
307
|
+
# Gateway endpoint URL to call for authentication using the
|
308
|
+
# `IdentityProviderDetails` parameter.
|
307
309
|
#
|
308
310
|
# @option params [String] :logging_role
|
309
311
|
# A value that allows the service to write your SFTP users' activity to
|
@@ -351,16 +353,14 @@ module Aws::Transfer
|
|
351
353
|
req.send_request(options)
|
352
354
|
end
|
353
355
|
|
354
|
-
#
|
355
|
-
# Protocol (SFTP) server.
|
356
|
-
#
|
357
|
-
#
|
358
|
-
#
|
359
|
-
# assign
|
360
|
-
#
|
361
|
-
#
|
362
|
-
# The response returns the `UserName` and `ServerId` values of the new
|
363
|
-
# user for that server.
|
356
|
+
# Creates a user and associates them with an existing Secure File
|
357
|
+
# Transfer Protocol (SFTP) server. You can only create and associate
|
358
|
+
# users with SFTP servers that have the `IdentityProviderType` set to
|
359
|
+
# `SERVICE_MANAGED`. Using parameters for `CreateUser`, you can specify
|
360
|
+
# the user name, set the home directory, store the user's public key,
|
361
|
+
# and assign the user's AWS Identity and Access Management (IAM) role.
|
362
|
+
# You can also optionally add a scope-down policy, and assign metadata
|
363
|
+
# with tags that can be used to group and search for users.
|
364
364
|
#
|
365
365
|
# @option params [String] :home_directory
|
366
366
|
# The landing directory (folder) for a user when they log in to the
|
@@ -369,9 +369,24 @@ module Aws::Transfer
|
|
369
369
|
# @option params [String] :policy
|
370
370
|
# A scope-down policy for your user so you can use the same IAM role
|
371
371
|
# across multiple users. This policy scopes down user access to portions
|
372
|
-
# of their Amazon S3 bucket. Variables you can use inside this
|
373
|
-
# include `$\{Transfer:UserName\}`,
|
374
|
-
# `$\{Transfer:HomeBucket\}`.
|
372
|
+
# of their Amazon S3 bucket. Variables that you can use inside this
|
373
|
+
# policy include `$\{Transfer:UserName\}`,
|
374
|
+
# `$\{Transfer:HomeDirectory\}`, and `$\{Transfer:HomeBucket\}`.
|
375
|
+
#
|
376
|
+
# <note markdown="1"> For scope-down policies, AWS Transfer for SFTP stores the policy as a
|
377
|
+
# JSON blob, instead of the Amazon Resource Name (ARN) of the policy.
|
378
|
+
# You save the policy as a JSON blob and pass it in the `Policy`
|
379
|
+
# argument.
|
380
|
+
#
|
381
|
+
# For an example of a scope-down policy, see
|
382
|
+
# "https://docs.aws.amazon.com/transfer/latest/userguide/users.html#users-policies-scope-down">Creating
|
383
|
+
# a Scope-Down Policy.
|
384
|
+
#
|
385
|
+
# For more information, see
|
386
|
+
# "https://docs.aws.amazon.com/STS/latest/APIReference/API\_AssumeRole.html"
|
387
|
+
# in the *AWS Security Token Service API Reference*.
|
388
|
+
#
|
389
|
+
# </note>
|
375
390
|
#
|
376
391
|
# @option params [required, String] :role
|
377
392
|
# The IAM role that controls your user's access to your Amazon S3
|
@@ -386,7 +401,7 @@ module Aws::Transfer
|
|
386
401
|
# is the specific SFTP server that you added your user to.
|
387
402
|
#
|
388
403
|
# @option params [String] :ssh_public_key_body
|
389
|
-
# The public portion of the Secure
|
404
|
+
# The public portion of the Secure Shell (SSH) key used to authenticate
|
390
405
|
# the user to the SFTP server.
|
391
406
|
#
|
392
407
|
# @option params [Array<Types::Tag>] :tags
|
@@ -437,11 +452,9 @@ module Aws::Transfer
|
|
437
452
|
end
|
438
453
|
|
439
454
|
# Deletes the Secure File Transfer Protocol (SFTP) server that you
|
440
|
-
# specify.
|
441
|
-
# you need to delete all users associated with this server before
|
442
|
-
# deleting the server itself
|
455
|
+
# specify.
|
443
456
|
#
|
444
|
-
# No response returns from this
|
457
|
+
# No response returns from this operation.
|
445
458
|
#
|
446
459
|
# @option params [required, String] :server_id
|
447
460
|
# A unique system-assigned identifier for an SFTP server instance.
|
@@ -465,7 +478,7 @@ module Aws::Transfer
|
|
465
478
|
|
466
479
|
# Deletes a user's Secure Shell (SSH) public key.
|
467
480
|
#
|
468
|
-
# No response is returned from this
|
481
|
+
# No response is returned from this operation.
|
469
482
|
#
|
470
483
|
# @option params [required, String] :server_id
|
471
484
|
# A system-assigned unique identifier for a Secure File Transfer
|
@@ -499,7 +512,7 @@ module Aws::Transfer
|
|
499
512
|
|
500
513
|
# Deletes the user belonging to the server you specify.
|
501
514
|
#
|
502
|
-
# No response returns from this
|
515
|
+
# No response returns from this operation.
|
503
516
|
#
|
504
517
|
# <note markdown="1"> When you delete a user from a server, the user's information is lost.
|
505
518
|
#
|
@@ -587,8 +600,8 @@ module Aws::Transfer
|
|
587
600
|
#
|
588
601
|
# @option params [required, String] :user_name
|
589
602
|
# The name of the user assigned to one or more servers. User names are
|
590
|
-
# part of the sign-in credentials to use the AWS Transfer
|
591
|
-
# perform file transfer tasks.
|
603
|
+
# part of the sign-in credentials to use the AWS Transfer for SFTP
|
604
|
+
# service and perform file transfer tasks.
|
592
605
|
#
|
593
606
|
# @return [Types::DescribeUserResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
594
607
|
#
|
@@ -680,7 +693,7 @@ module Aws::Transfer
|
|
680
693
|
# `ListServers` query.
|
681
694
|
#
|
682
695
|
# @option params [String] :next_token
|
683
|
-
# When additional results are obtained from the ListServers command, a
|
696
|
+
# When additional results are obtained from the `ListServers` command, a
|
684
697
|
# `NextToken` parameter is returned in the output. You can then pass the
|
685
698
|
# `NextToken` parameter in a subsequent command to continue listing
|
686
699
|
# additional servers.
|
@@ -732,9 +745,9 @@ module Aws::Transfer
|
|
732
745
|
#
|
733
746
|
# @option params [String] :next_token
|
734
747
|
# When you request additional results from the `ListTagsForResource`
|
735
|
-
#
|
736
|
-
# pass in a subsequent command the `NextToken` parameter to
|
737
|
-
# listing additional tags.
|
748
|
+
# operation, a `NextToken` parameter is returned in the input. You can
|
749
|
+
# then pass in a subsequent command to the `NextToken` parameter to
|
750
|
+
# continue listing additional tags.
|
738
751
|
#
|
739
752
|
# @return [Types::ListTagsForResourceResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
740
753
|
#
|
@@ -777,12 +790,12 @@ module Aws::Transfer
|
|
777
790
|
# @option params [String] :next_token
|
778
791
|
# When you can get additional results from the `ListUsers` call, a
|
779
792
|
# `NextToken` parameter is returned in the output. You can then pass in
|
780
|
-
# a subsequent command the `NextToken` parameter to continue listing
|
793
|
+
# a subsequent command to the `NextToken` parameter to continue listing
|
781
794
|
# additional users.
|
782
795
|
#
|
783
796
|
# @option params [required, String] :server_id
|
784
797
|
# A system-assigned unique identifier for a Secure File Transfer
|
785
|
-
# Protocol (SFTP) server that has users
|
798
|
+
# Protocol (SFTP) server that has users assigned to it.
|
786
799
|
#
|
787
800
|
# @return [Types::ListUsersResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
788
801
|
#
|
@@ -856,7 +869,7 @@ module Aws::Transfer
|
|
856
869
|
# reduce or impact your Secure File Transfer Protocol (SFTP) endpoint
|
857
870
|
# billing.
|
858
871
|
#
|
859
|
-
# The
|
872
|
+
# The state of `STOPPING` indicates that the server is in an
|
860
873
|
# intermediate state, either not fully able to respond, or not fully
|
861
874
|
# offline. The values of `STOP_FAILED` can indicate an error condition.
|
862
875
|
#
|
@@ -923,25 +936,26 @@ module Aws::Transfer
|
|
923
936
|
|
924
937
|
# If the `IdentityProviderType` of the server is `API_Gateway`, tests
|
925
938
|
# whether your API Gateway is set up successfully. We highly recommend
|
926
|
-
# that you call this
|
927
|
-
# as you create your server. By doing so, you can troubleshoot
|
928
|
-
# with the API Gateway integration to ensure that your users can
|
939
|
+
# that you call this operation to test your authentication method as
|
940
|
+
# soon as you create your server. By doing so, you can troubleshoot
|
941
|
+
# issues with the API Gateway integration to ensure that your users can
|
929
942
|
# successfully use the service.
|
930
943
|
#
|
931
944
|
# @option params [required, String] :server_id
|
932
|
-
# A system
|
945
|
+
# A system-assigned identifier for a specific server. That server's
|
933
946
|
# user authentication method is tested with a user name and password.
|
934
947
|
#
|
935
948
|
# @option params [required, String] :user_name
|
936
|
-
# This request parameter is name of the user account to be tested.
|
949
|
+
# This request parameter is the name of the user account to be tested.
|
937
950
|
#
|
938
951
|
# @option params [String] :user_password
|
939
952
|
# The password of the user account to be tested.
|
940
953
|
#
|
941
954
|
# @return [Types::TestIdentityProviderResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
942
955
|
#
|
943
|
-
# * {Types::TestIdentityProviderResponse#
|
956
|
+
# * {Types::TestIdentityProviderResponse#response #response} => String
|
944
957
|
# * {Types::TestIdentityProviderResponse#status_code #status_code} => Integer
|
958
|
+
# * {Types::TestIdentityProviderResponse#message #message} => String
|
945
959
|
# * {Types::TestIdentityProviderResponse#url #url} => String
|
946
960
|
#
|
947
961
|
# @example Request syntax with placeholder values
|
@@ -954,8 +968,9 @@ module Aws::Transfer
|
|
954
968
|
#
|
955
969
|
# @example Response structure
|
956
970
|
#
|
957
|
-
# resp.
|
971
|
+
# resp.response #=> String
|
958
972
|
# resp.status_code #=> Integer
|
973
|
+
# resp.message #=> String
|
959
974
|
# resp.url #=> String
|
960
975
|
#
|
961
976
|
# @see http://docs.aws.amazon.com/goto/WebAPI/transfer-2018-11-05/TestIdentityProvider AWS API Documentation
|
@@ -1023,8 +1038,11 @@ module Aws::Transfer
|
|
1023
1038
|
#
|
1024
1039
|
# If you aren't planning to migrate existing users from an existing
|
1025
1040
|
# SFTP server to a new AWS SFTP server, don't update the host key.
|
1026
|
-
# Accidentally changing a server's host key can be disruptive.
|
1027
|
-
#
|
1041
|
+
# Accidentally changing a server's host key can be disruptive.
|
1042
|
+
#
|
1043
|
+
# For more information, see
|
1044
|
+
# "https://docs.aws.amazon.com/transfer/latest/userguide/configuring-servers.html#change-host-key"
|
1045
|
+
# in the *AWS SFTP User Guide.*
|
1028
1046
|
#
|
1029
1047
|
# @option params [Types::IdentityProviderDetails] :identity_provider_details
|
1030
1048
|
# This response parameter is an array containing all of the information
|
@@ -1080,18 +1098,33 @@ module Aws::Transfer
|
|
1080
1098
|
# user.
|
1081
1099
|
#
|
1082
1100
|
# @option params [String] :home_directory
|
1083
|
-
#
|
1084
|
-
#
|
1085
|
-
#
|
1101
|
+
# A parameter that specifies the landing directory (folder) for a user
|
1102
|
+
# when they log in to the server using their client. An example is
|
1103
|
+
# `/home/username `.
|
1086
1104
|
#
|
1087
1105
|
# @option params [String] :policy
|
1088
1106
|
# Allows you to supply a scope-down policy for your user so you can use
|
1089
1107
|
# the same AWS Identity and Access Management (IAM) role across multiple
|
1090
|
-
# users. The policy scopes down
|
1108
|
+
# users. The policy scopes down user access to portions of your Amazon
|
1091
1109
|
# S3 bucket. Variables you can use inside this policy include
|
1092
1110
|
# `$\{Transfer:UserName\}`, `$\{Transfer:HomeDirectory\}`, and
|
1093
1111
|
# `$\{Transfer:HomeBucket\}`.
|
1094
1112
|
#
|
1113
|
+
# <note markdown="1"> For scope-down policies, AWS Transfer for SFTP stores the policy as a
|
1114
|
+
# JSON blob, instead of the Amazon Resource Name (ARN) of the policy.
|
1115
|
+
# You save the policy as a JSON blob and pass it in the `Policy`
|
1116
|
+
# argument.
|
1117
|
+
#
|
1118
|
+
# For an example of a scope-down policy, see
|
1119
|
+
# "https://docs.aws.amazon.com/transfer/latest/userguide/users.html#users-policies-scope-down">Creating
|
1120
|
+
# a Scope-Down Policy.
|
1121
|
+
#
|
1122
|
+
# For more information, see
|
1123
|
+
# "https://docs.aws.amazon.com/STS/latest/APIReference/API\_AssumeRole.html"
|
1124
|
+
# in the *AWS Security Token Service API Reference*.
|
1125
|
+
#
|
1126
|
+
# </note>
|
1127
|
+
#
|
1095
1128
|
# @option params [String] :role
|
1096
1129
|
# The IAM role that controls your user's access to your Amazon S3
|
1097
1130
|
# bucket. The policies attached to this role will determine the level of
|
@@ -1107,8 +1140,8 @@ module Aws::Transfer
|
|
1107
1140
|
#
|
1108
1141
|
# @option params [required, String] :user_name
|
1109
1142
|
# A unique string that identifies a user and is associated with a server
|
1110
|
-
# as specified by the ServerId
|
1111
|
-
# your user when they log in to your SFTP server. This user name is a
|
1143
|
+
# as specified by the `ServerId`. This is the string that will be used
|
1144
|
+
# by your user when they log in to your SFTP server. This user name is a
|
1112
1145
|
# minimum of 3 and a maximum of 32 characters long. The following are
|
1113
1146
|
# valid characters: a-z, A-Z, 0-9, underscore, and hyphen. The user name
|
1114
1147
|
# can't start with a hyphen.
|
@@ -1155,7 +1188,7 @@ module Aws::Transfer
|
|
1155
1188
|
params: params,
|
1156
1189
|
config: config)
|
1157
1190
|
context[:gem_name] = 'aws-sdk-transfer'
|
1158
|
-
context[:gem_version] = '1.
|
1191
|
+
context[:gem_version] = '1.13.0'
|
1159
1192
|
Seahorse::Client::Request.new(handlers, context)
|
1160
1193
|
end
|
1161
1194
|
|
@@ -57,6 +57,7 @@ module Aws::Transfer
|
|
57
57
|
ResourceExistsException = Shapes::StructureShape.new(name: 'ResourceExistsException')
|
58
58
|
ResourceNotFoundException = Shapes::StructureShape.new(name: 'ResourceNotFoundException')
|
59
59
|
ResourceType = Shapes::StringShape.new(name: 'ResourceType')
|
60
|
+
Response = Shapes::StringShape.new(name: 'Response')
|
60
61
|
Role = Shapes::StringShape.new(name: 'Role')
|
61
62
|
ServerId = Shapes::StringShape.new(name: 'ServerId')
|
62
63
|
ServiceErrorMessage = Shapes::StringShape.new(name: 'ServiceErrorMessage')
|
@@ -279,8 +280,9 @@ module Aws::Transfer
|
|
279
280
|
TestIdentityProviderRequest.add_member(:user_password, Shapes::ShapeRef.new(shape: UserPassword, location_name: "UserPassword"))
|
280
281
|
TestIdentityProviderRequest.struct_class = Types::TestIdentityProviderRequest
|
281
282
|
|
282
|
-
TestIdentityProviderResponse.add_member(:
|
283
|
+
TestIdentityProviderResponse.add_member(:response, Shapes::ShapeRef.new(shape: Response, location_name: "Response"))
|
283
284
|
TestIdentityProviderResponse.add_member(:status_code, Shapes::ShapeRef.new(shape: StatusCode, required: true, location_name: "StatusCode"))
|
285
|
+
TestIdentityProviderResponse.add_member(:message, Shapes::ShapeRef.new(shape: Message, location_name: "Message"))
|
284
286
|
TestIdentityProviderResponse.add_member(:url, Shapes::ShapeRef.new(shape: Url, required: true, location_name: "Url"))
|
285
287
|
TestIdentityProviderResponse.struct_class = Types::TestIdentityProviderResponse
|
286
288
|
|
@@ -33,39 +33,45 @@ module Aws::Transfer
|
|
33
33
|
#
|
34
34
|
# @!attribute [rw] endpoint_details
|
35
35
|
# The virtual private cloud (VPC) endpoint settings that you want to
|
36
|
-
# configure for your SFTP server.
|
36
|
+
# configure for your SFTP server. This parameter is required when you
|
37
|
+
# specify a value for the `EndpointType` parameter.
|
37
38
|
# @return [Types::EndpointDetails]
|
38
39
|
#
|
39
40
|
# @!attribute [rw] endpoint_type
|
40
|
-
# The type of VPC endpoint that you want your SFTP server connect
|
41
|
-
# If you connect to a VPC endpoint, your SFTP server isn't
|
42
|
-
# over the public internet.
|
41
|
+
# The type of VPC endpoint that you want your SFTP server to connect
|
42
|
+
# to. If you connect to a VPC endpoint, your SFTP server isn't
|
43
|
+
# accessible over the public internet.
|
43
44
|
# @return [String]
|
44
45
|
#
|
45
46
|
# @!attribute [rw] host_key
|
46
|
-
# The RSA private key as generated by `ssh-keygen -N "" -f
|
47
|
+
# The RSA private key as generated by the `ssh-keygen -N "" -f
|
47
48
|
# my-new-server-key` command.
|
48
49
|
#
|
49
50
|
# If you aren't planning to migrate existing users from an existing
|
50
51
|
# SFTP server to a new AWS SFTP server, don't update the host key.
|
51
|
-
# Accidentally changing a server's host key can be disruptive.
|
52
|
-
#
|
52
|
+
# Accidentally changing a server's host key can be disruptive.
|
53
|
+
#
|
54
|
+
# For more information, see
|
55
|
+
# "https://docs.aws.amazon.com/transfer/latest/userguide/change-host-key"
|
56
|
+
# in the *AWS SFTP User Guide.*
|
53
57
|
# @return [String]
|
54
58
|
#
|
55
59
|
# @!attribute [rw] identity_provider_details
|
56
|
-
#
|
57
|
-
#
|
58
|
-
#
|
59
|
-
# the
|
60
|
+
# This parameter is required when the `IdentityProviderType` is set to
|
61
|
+
# `API_GATEWAY`. Accepts an array containing all of the information
|
62
|
+
# required to call a customer-supplied authentication API, including
|
63
|
+
# the API Gateway URL. This property is not required when the
|
64
|
+
# `IdentityProviderType` is set to `SERVICE_MANAGED`.
|
60
65
|
# @return [Types::IdentityProviderDetails]
|
61
66
|
#
|
62
67
|
# @!attribute [rw] identity_provider_type
|
63
|
-
#
|
64
|
-
# value is `SERVICE_MANAGED`, which allows you to store and
|
65
|
-
# SFTP user credentials within the
|
66
|
-
#
|
67
|
-
#
|
68
|
-
#
|
68
|
+
# Specifies the mode of authentication for the SFTP server. The
|
69
|
+
# default value is `SERVICE_MANAGED`, which allows you to store and
|
70
|
+
# access SFTP user credentials within the AWS Transfer for SFTP
|
71
|
+
# service. Use the `API_GATEWAY` value to integrate with an identity
|
72
|
+
# provider of your choosing. The `API_GATEWAY` setting requires you to
|
73
|
+
# provide an API Gateway endpoint URL to call for authentication using
|
74
|
+
# the `IdentityProviderDetails` parameter.
|
69
75
|
# @return [String]
|
70
76
|
#
|
71
77
|
# @!attribute [rw] logging_role
|
@@ -127,9 +133,24 @@ module Aws::Transfer
|
|
127
133
|
# @!attribute [rw] policy
|
128
134
|
# A scope-down policy for your user so you can use the same IAM role
|
129
135
|
# across multiple users. This policy scopes down user access to
|
130
|
-
# portions of their Amazon S3 bucket. Variables you can use
|
131
|
-
# this policy include `$\{Transfer:UserName\}`,
|
136
|
+
# portions of their Amazon S3 bucket. Variables that you can use
|
137
|
+
# inside this policy include `$\{Transfer:UserName\}`,
|
132
138
|
# `$\{Transfer:HomeDirectory\}`, and `$\{Transfer:HomeBucket\}`.
|
139
|
+
#
|
140
|
+
# <note markdown="1"> For scope-down policies, AWS Transfer for SFTP stores the policy as
|
141
|
+
# a JSON blob, instead of the Amazon Resource Name (ARN) of the
|
142
|
+
# policy. You save the policy as a JSON blob and pass it in the
|
143
|
+
# `Policy` argument.
|
144
|
+
#
|
145
|
+
# For an example of a scope-down policy, see
|
146
|
+
# "https://docs.aws.amazon.com/transfer/latest/userguide/users.html#users-policies-scope-down">Creating
|
147
|
+
# a Scope-Down Policy.
|
148
|
+
#
|
149
|
+
# For more information, see
|
150
|
+
# "https://docs.aws.amazon.com/STS/latest/APIReference/API\_AssumeRole.html"
|
151
|
+
# in the *AWS Security Token Service API Reference*.
|
152
|
+
#
|
153
|
+
# </note>
|
133
154
|
# @return [String]
|
134
155
|
#
|
135
156
|
# @!attribute [rw] role
|
@@ -148,7 +169,7 @@ module Aws::Transfer
|
|
148
169
|
# @return [String]
|
149
170
|
#
|
150
171
|
# @!attribute [rw] ssh_public_key_body
|
151
|
-
# The public portion of the Secure
|
172
|
+
# The public portion of the Secure Shell (SSH) key used to
|
152
173
|
# authenticate the user to the SFTP server.
|
153
174
|
# @return [String]
|
154
175
|
#
|
@@ -316,8 +337,8 @@ module Aws::Transfer
|
|
316
337
|
#
|
317
338
|
# @!attribute [rw] user_name
|
318
339
|
# The name of the user assigned to one or more servers. User names are
|
319
|
-
# part of the sign-in credentials to use the AWS Transfer
|
320
|
-
# perform file transfer tasks.
|
340
|
+
# part of the sign-in credentials to use the AWS Transfer for SFTP
|
341
|
+
# service and perform file transfer tasks.
|
321
342
|
# @return [String]
|
322
343
|
#
|
323
344
|
# @see http://docs.aws.amazon.com/goto/WebAPI/transfer-2018-11-05/DescribeUserRequest AWS API Documentation
|
@@ -346,10 +367,10 @@ module Aws::Transfer
|
|
346
367
|
include Aws::Structure
|
347
368
|
end
|
348
369
|
|
349
|
-
#
|
350
|
-
# returned includes: the server Amazon Resource Name
|
351
|
-
# authentication configuration and type, the logging role,
|
352
|
-
# state, and assigned tags or metadata.
|
370
|
+
# Describes the properties of the server that was specified. Information
|
371
|
+
# returned includes the following: the server Amazon Resource Name
|
372
|
+
# (ARN), the authentication configuration and type, the logging role,
|
373
|
+
# the server ID and state, and assigned tags or metadata.
|
353
374
|
#
|
354
375
|
# @!attribute [rw] arn
|
355
376
|
# Specifies the unique Amazon Resource Name (ARN) for the server to be
|
@@ -368,8 +389,8 @@ module Aws::Transfer
|
|
368
389
|
# @return [String]
|
369
390
|
#
|
370
391
|
# @!attribute [rw] host_key_fingerprint
|
371
|
-
# This value contains the
|
372
|
-
# server's host key. This value is equivalent to the output of
|
392
|
+
# This value contains the message-digest algorithm (MD5) hash of the
|
393
|
+
# server's host key. This value is equivalent to the output of the
|
373
394
|
# `ssh-keygen -l -E md5 -f my-new-server-key` command.
|
374
395
|
# @return [String]
|
375
396
|
#
|
@@ -381,8 +402,8 @@ module Aws::Transfer
|
|
381
402
|
#
|
382
403
|
# @!attribute [rw] identity_provider_type
|
383
404
|
# This property defines the mode of authentication method enabled for
|
384
|
-
# this service. A value of `SERVICE_MANAGED
|
385
|
-
# this
|
405
|
+
# this service. A value of `SERVICE_MANAGED` means that you are using
|
406
|
+
# this server to store and access SFTP user credentials within the
|
386
407
|
# service. A value of `API_GATEWAY` indicates that you have integrated
|
387
408
|
# an API Gateway endpoint that will be invoked for authenticating your
|
388
409
|
# user into the service.
|
@@ -391,12 +412,12 @@ module Aws::Transfer
|
|
391
412
|
# @!attribute [rw] logging_role
|
392
413
|
# This property is an AWS Identity and Access Management (IAM) entity
|
393
414
|
# that allows the server to turn on Amazon CloudWatch logging for
|
394
|
-
# Amazon S3 events. When set, user activity can be
|
415
|
+
# Amazon S3 events. When set, user activity can be viewed in your
|
395
416
|
# CloudWatch logs.
|
396
417
|
# @return [String]
|
397
418
|
#
|
398
419
|
# @!attribute [rw] server_id
|
399
|
-
# This property is a unique system
|
420
|
+
# This property is a unique system-assigned identifier for the SFTP
|
400
421
|
# server that you instantiate.
|
401
422
|
# @return [String]
|
402
423
|
#
|
@@ -406,7 +427,7 @@ module Aws::Transfer
|
|
406
427
|
# transfer files. A `State` value of `OFFLINE` means that the server
|
407
428
|
# cannot perform file transfer operations.
|
408
429
|
#
|
409
|
-
# The states of `STARTING` and `STOPPING`
|
430
|
+
# The states of `STARTING` and `STOPPING` indicate that the server is
|
410
431
|
# in an intermediate state, either not fully able to respond, or not
|
411
432
|
# fully offline. The values of `START_FAILED` or `STOP_FAILED` can
|
412
433
|
# indicate an error condition.
|
@@ -440,7 +461,7 @@ module Aws::Transfer
|
|
440
461
|
include Aws::Structure
|
441
462
|
end
|
442
463
|
|
443
|
-
# Returns properties of the user that you
|
464
|
+
# Returns properties of the user that you want to describe.
|
444
465
|
#
|
445
466
|
# @!attribute [rw] arn
|
446
467
|
# This property contains the unique Amazon Resource Name (ARN) for the
|
@@ -448,9 +469,9 @@ module Aws::Transfer
|
|
448
469
|
# @return [String]
|
449
470
|
#
|
450
471
|
# @!attribute [rw] home_directory
|
451
|
-
# This property specifies the landing directory (or folder) which is
|
472
|
+
# This property specifies the landing directory (or folder), which is
|
452
473
|
# the location that files are written to or read from in an Amazon S3
|
453
|
-
# bucket for the described user. An example
|
474
|
+
# bucket for the described user. An example is
|
454
475
|
# `/bucket_name/home/username `.
|
455
476
|
# @return [String]
|
456
477
|
#
|
@@ -521,7 +542,7 @@ module Aws::Transfer
|
|
521
542
|
end
|
522
543
|
|
523
544
|
# Returns information related to the type of user authentication that is
|
524
|
-
# in use for a server's users. A server can only
|
545
|
+
# in use for a server's users. A server can have only one method of
|
525
546
|
# authentication.
|
526
547
|
#
|
527
548
|
# @note When making an API call, you may pass IdentityProviderDetails
|
@@ -533,13 +554,13 @@ module Aws::Transfer
|
|
533
554
|
# }
|
534
555
|
#
|
535
556
|
# @!attribute [rw] url
|
536
|
-
# The `
|
537
|
-
#
|
557
|
+
# The `Url` parameter provides contains the location of the service
|
558
|
+
# endpoint used to authenticate users.
|
538
559
|
# @return [String]
|
539
560
|
#
|
540
561
|
# @!attribute [rw] invocation_role
|
541
|
-
# The `
|
542
|
-
# authenticate the user account.
|
562
|
+
# The `InvocationRole` parameter provides the type of `InvocationRole`
|
563
|
+
# used to authenticate the user account.
|
543
564
|
# @return [String]
|
544
565
|
#
|
545
566
|
# @see http://docs.aws.amazon.com/goto/WebAPI/transfer-2018-11-05/IdentityProviderDetails AWS API Documentation
|
@@ -581,9 +602,9 @@ module Aws::Transfer
|
|
581
602
|
include Aws::Structure
|
582
603
|
end
|
583
604
|
|
584
|
-
# This response identifies the user, server they belong to, and the
|
605
|
+
# This response identifies the user, the server they belong to, and the
|
585
606
|
# identifier of the SSH public key associated with that user. A user can
|
586
|
-
# have more than one key on each server that they are
|
607
|
+
# have more than one key on each server that they are associated with.
|
587
608
|
#
|
588
609
|
# @!attribute [rw] server_id
|
589
610
|
# A system-assigned unique identifier for an SFTP server.
|
@@ -658,8 +679,8 @@ module Aws::Transfer
|
|
658
679
|
# @return [Integer]
|
659
680
|
#
|
660
681
|
# @!attribute [rw] next_token
|
661
|
-
# When additional results are obtained from the ListServers command,
|
662
|
-
# `NextToken` parameter is returned in the output. You can then pass
|
682
|
+
# When additional results are obtained from the `ListServers` command,
|
683
|
+
# a `NextToken` parameter is returned in the output. You can then pass
|
663
684
|
# the `NextToken` parameter in a subsequent command to continue
|
664
685
|
# listing additional servers.
|
665
686
|
# @return [String]
|
@@ -713,9 +734,9 @@ module Aws::Transfer
|
|
713
734
|
#
|
714
735
|
# @!attribute [rw] next_token
|
715
736
|
# When you request additional results from the `ListTagsForResource`
|
716
|
-
#
|
717
|
-
# pass in a subsequent command the `NextToken` parameter to
|
718
|
-
# listing additional tags.
|
737
|
+
# operation, a `NextToken` parameter is returned in the input. You can
|
738
|
+
# then pass in a subsequent command to the `NextToken` parameter to
|
739
|
+
# continue listing additional tags.
|
719
740
|
# @return [String]
|
720
741
|
#
|
721
742
|
# @see http://docs.aws.amazon.com/goto/WebAPI/transfer-2018-11-05/ListTagsForResourceRequest AWS API Documentation
|
@@ -734,14 +755,14 @@ module Aws::Transfer
|
|
734
755
|
# @!attribute [rw] next_token
|
735
756
|
# When you can get additional results from the `ListTagsForResource`
|
736
757
|
# call, a `NextToken` parameter is returned in the output. You can
|
737
|
-
# then pass in a subsequent command the `NextToken` parameter to
|
758
|
+
# then pass in a subsequent command to the `NextToken` parameter to
|
738
759
|
# continue listing additional tags.
|
739
760
|
# @return [String]
|
740
761
|
#
|
741
762
|
# @!attribute [rw] tags
|
742
763
|
# Key-value pairs that are assigned to a resource, usually for the
|
743
764
|
# purpose of grouping and searching for items. Tags are metadata that
|
744
|
-
# you define
|
765
|
+
# you define.
|
745
766
|
# @return [Array<Types::Tag>]
|
746
767
|
#
|
747
768
|
# @see http://docs.aws.amazon.com/goto/WebAPI/transfer-2018-11-05/ListTagsForResourceResponse AWS API Documentation
|
@@ -770,13 +791,13 @@ module Aws::Transfer
|
|
770
791
|
# @!attribute [rw] next_token
|
771
792
|
# When you can get additional results from the `ListUsers` call, a
|
772
793
|
# `NextToken` parameter is returned in the output. You can then pass
|
773
|
-
# in a subsequent command the `NextToken` parameter to continue
|
794
|
+
# in a subsequent command to the `NextToken` parameter to continue
|
774
795
|
# listing additional users.
|
775
796
|
# @return [String]
|
776
797
|
#
|
777
798
|
# @!attribute [rw] server_id
|
778
799
|
# A system-assigned unique identifier for a Secure File Transfer
|
779
|
-
# Protocol (SFTP) server that has users
|
800
|
+
# Protocol (SFTP) server that has users assigned to it.
|
780
801
|
# @return [String]
|
781
802
|
#
|
782
803
|
# @see http://docs.aws.amazon.com/goto/WebAPI/transfer-2018-11-05/ListUsersRequest AWS API Documentation
|
@@ -791,7 +812,7 @@ module Aws::Transfer
|
|
791
812
|
# @!attribute [rw] next_token
|
792
813
|
# When you can get additional results from the `ListUsers` call, a
|
793
814
|
# `NextToken` parameter is returned in the output. You can then pass
|
794
|
-
# in a subsequent command the `NextToken` parameter to continue
|
815
|
+
# in a subsequent command to the `NextToken` parameter to continue
|
795
816
|
# listing additional users.
|
796
817
|
# @return [String]
|
797
818
|
#
|
@@ -822,10 +843,9 @@ module Aws::Transfer
|
|
822
843
|
#
|
823
844
|
# @!attribute [rw] identity_provider_type
|
824
845
|
# The authentication method used to validate a user for the server
|
825
|
-
# that was specified.
|
826
|
-
#
|
827
|
-
#
|
828
|
-
# `API_GATEWAY`.
|
846
|
+
# that was specified. This can include Secure Shell (SSH), user name
|
847
|
+
# and password combinations, or your own custom authentication method.
|
848
|
+
# Valid values include `SERVICE_MANAGED` or `API_GATEWAY`.
|
829
849
|
# @return [String]
|
830
850
|
#
|
831
851
|
# @!attribute [rw] endpoint_type
|
@@ -851,7 +871,7 @@ module Aws::Transfer
|
|
851
871
|
# `OFFLINE` means that the server cannot perform file transfer
|
852
872
|
# operations.
|
853
873
|
#
|
854
|
-
# The states of `STARTING` and `STOPPING`
|
874
|
+
# The states of `STARTING` and `STOPPING` indicate that the server is
|
855
875
|
# in an intermediate state, either not fully able to respond, or not
|
856
876
|
# fully offline. The values of `START_FAILED` or `STOP_FAILED` can
|
857
877
|
# indicate an error condition.
|
@@ -880,7 +900,7 @@ module Aws::Transfer
|
|
880
900
|
#
|
881
901
|
# @!attribute [rw] arn
|
882
902
|
# This property is the unique Amazon Resource Name (ARN) for the user
|
883
|
-
# that you
|
903
|
+
# that you want to learn about.
|
884
904
|
# @return [String]
|
885
905
|
#
|
886
906
|
# @!attribute [rw] home_directory
|
@@ -890,10 +910,10 @@ module Aws::Transfer
|
|
890
910
|
#
|
891
911
|
# @!attribute [rw] role
|
892
912
|
# The role in use by this user. A *role* is an AWS Identity and Access
|
893
|
-
# Management (IAM) entity that in this case allows the SFTP server
|
894
|
-
# act on a user's behalf. It allows the server to inherit the
|
895
|
-
# relationship that enables that user to perform file operations
|
896
|
-
# their Amazon S3 bucket.
|
913
|
+
# Management (IAM) entity that, in this case, allows the SFTP server
|
914
|
+
# to act on a user's behalf. It allows the server to inherit the
|
915
|
+
# trust relationship that enables that user to perform file operations
|
916
|
+
# to their Amazon S3 bucket.
|
897
917
|
# @return [String]
|
898
918
|
#
|
899
919
|
# @!attribute [rw] ssh_public_key_count
|
@@ -1112,12 +1132,12 @@ module Aws::Transfer
|
|
1112
1132
|
# }
|
1113
1133
|
#
|
1114
1134
|
# @!attribute [rw] server_id
|
1115
|
-
# A system
|
1135
|
+
# A system-assigned identifier for a specific server. That server's
|
1116
1136
|
# user authentication method is tested with a user name and password.
|
1117
1137
|
# @return [String]
|
1118
1138
|
#
|
1119
1139
|
# @!attribute [rw] user_name
|
1120
|
-
# This request parameter is name of the user account to be tested.
|
1140
|
+
# This request parameter is the name of the user account to be tested.
|
1121
1141
|
# @return [String]
|
1122
1142
|
#
|
1123
1143
|
# @!attribute [rw] user_password
|
@@ -1133,14 +1153,18 @@ module Aws::Transfer
|
|
1133
1153
|
include Aws::Structure
|
1134
1154
|
end
|
1135
1155
|
|
1136
|
-
# @!attribute [rw]
|
1137
|
-
# The
|
1156
|
+
# @!attribute [rw] response
|
1157
|
+
# The response that is returned from your API Gateway.
|
1138
1158
|
# @return [String]
|
1139
1159
|
#
|
1140
1160
|
# @!attribute [rw] status_code
|
1141
1161
|
# The HTTP status code that is the response from your API Gateway.
|
1142
1162
|
# @return [Integer]
|
1143
1163
|
#
|
1164
|
+
# @!attribute [rw] message
|
1165
|
+
# A message that indicates whether the test was successful or not.
|
1166
|
+
# @return [String]
|
1167
|
+
#
|
1144
1168
|
# @!attribute [rw] url
|
1145
1169
|
# The endpoint of the service used to authenticate a user.
|
1146
1170
|
# @return [String]
|
@@ -1148,8 +1172,9 @@ module Aws::Transfer
|
|
1148
1172
|
# @see http://docs.aws.amazon.com/goto/WebAPI/transfer-2018-11-05/TestIdentityProviderResponse AWS API Documentation
|
1149
1173
|
#
|
1150
1174
|
class TestIdentityProviderResponse < Struct.new(
|
1151
|
-
:
|
1175
|
+
:response,
|
1152
1176
|
:status_code,
|
1177
|
+
:message,
|
1153
1178
|
:url)
|
1154
1179
|
include Aws::Structure
|
1155
1180
|
end
|
@@ -1218,8 +1243,11 @@ module Aws::Transfer
|
|
1218
1243
|
#
|
1219
1244
|
# If you aren't planning to migrate existing users from an existing
|
1220
1245
|
# SFTP server to a new AWS SFTP server, don't update the host key.
|
1221
|
-
# Accidentally changing a server's host key can be disruptive.
|
1222
|
-
#
|
1246
|
+
# Accidentally changing a server's host key can be disruptive.
|
1247
|
+
#
|
1248
|
+
# For more information, see
|
1249
|
+
# "https://docs.aws.amazon.com/transfer/latest/userguide/configuring-servers.html#change-host-key"
|
1250
|
+
# in the *AWS SFTP User Guide.*
|
1223
1251
|
# @return [String]
|
1224
1252
|
#
|
1225
1253
|
# @!attribute [rw] identity_provider_details
|
@@ -1275,18 +1303,33 @@ module Aws::Transfer
|
|
1275
1303
|
# }
|
1276
1304
|
#
|
1277
1305
|
# @!attribute [rw] home_directory
|
1278
|
-
#
|
1279
|
-
#
|
1280
|
-
#
|
1306
|
+
# A parameter that specifies the landing directory (folder) for a user
|
1307
|
+
# when they log in to the server using their client. An example is
|
1308
|
+
# `/home/username `.
|
1281
1309
|
# @return [String]
|
1282
1310
|
#
|
1283
1311
|
# @!attribute [rw] policy
|
1284
1312
|
# Allows you to supply a scope-down policy for your user so you can
|
1285
1313
|
# use the same AWS Identity and Access Management (IAM) role across
|
1286
|
-
# multiple users. The policy scopes down
|
1314
|
+
# multiple users. The policy scopes down user access to portions of
|
1287
1315
|
# your Amazon S3 bucket. Variables you can use inside this policy
|
1288
1316
|
# include `$\{Transfer:UserName\}`, `$\{Transfer:HomeDirectory\}`, and
|
1289
1317
|
# `$\{Transfer:HomeBucket\}`.
|
1318
|
+
#
|
1319
|
+
# <note markdown="1"> For scope-down policies, AWS Transfer for SFTP stores the policy as
|
1320
|
+
# a JSON blob, instead of the Amazon Resource Name (ARN) of the
|
1321
|
+
# policy. You save the policy as a JSON blob and pass it in the
|
1322
|
+
# `Policy` argument.
|
1323
|
+
#
|
1324
|
+
# For an example of a scope-down policy, see
|
1325
|
+
# "https://docs.aws.amazon.com/transfer/latest/userguide/users.html#users-policies-scope-down">Creating
|
1326
|
+
# a Scope-Down Policy.
|
1327
|
+
#
|
1328
|
+
# For more information, see
|
1329
|
+
# "https://docs.aws.amazon.com/STS/latest/APIReference/API\_AssumeRole.html"
|
1330
|
+
# in the *AWS Security Token Service API Reference*.
|
1331
|
+
#
|
1332
|
+
# </note>
|
1290
1333
|
# @return [String]
|
1291
1334
|
#
|
1292
1335
|
# @!attribute [rw] role
|
@@ -1306,8 +1349,8 @@ module Aws::Transfer
|
|
1306
1349
|
#
|
1307
1350
|
# @!attribute [rw] user_name
|
1308
1351
|
# A unique string that identifies a user and is associated with a
|
1309
|
-
# server as specified by the ServerId
|
1310
|
-
# used by your user when they log in to your SFTP server. This user
|
1352
|
+
# server as specified by the `ServerId`. This is the string that will
|
1353
|
+
# be used by your user when they log in to your SFTP server. This user
|
1311
1354
|
# name is a minimum of 3 and a maximum of 32 characters long. The
|
1312
1355
|
# following are valid characters: a-z, A-Z, 0-9, underscore, and
|
1313
1356
|
# hyphen. The user name can't start with a hyphen.
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-transfer
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.13.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2019-
|
11
|
+
date: 2019-08-20 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|