aws-sdk-verifiedpermissions 1.7.0 → 1.9.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 30ee59d6346493400322c5a71c973af38bb317d75a76c9dea87bebce1ded481f
4
- data.tar.gz: e7ce7b1dfcb3fdce9acabad859e4cc248f08442d9a3c6ac7325033aa39edb42e
3
+ metadata.gz: 83cad55f6bb678338569f4425ca119c344a28f3f263716d2d74b960b9a5c8f4a
4
+ data.tar.gz: 8c24e7cbc36c6a0e9573d7f5454e9013d63da2d1ea4d397c21ecab0dc45b27bc
5
5
  SHA512:
6
- metadata.gz: 778fd02e9a415527b2dbaa23544c2590a8fa380af2271b728f0c1d7f75131935b437d220ca41eb7fc09fff3508c3c8e672fe2c1024cc2a8aeac3b16fe05f0239
7
- data.tar.gz: 05eff64d944b8af82b7a9d38f68028e1e55c6d08326d97874c7582387911fbf644f557840c8a360323808957c17dbd5883a3c4f5d6020eb9cb0a97075e9c2794
6
+ metadata.gz: 07f289382374f7d33fc9a1871fd3e2d2608e9d5c18405f7309c2d4ac1a6663acb41825fc5a709f0dc454622d9f52720f5cc4488b34b5dd1ebb8238aab5829f5d
7
+ data.tar.gz: '08f5808dcc4ea525023c8454b964c63c05288c0d757b36b0eb599bb81a131ca748922d240992a693a2563f04559c5c05445b8364ed1c4cf7bf9f501f51871f76'
data/CHANGELOG.md CHANGED
@@ -1,6 +1,16 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.9.0 (2023-08-24)
5
+ ------------------
6
+
7
+ * Feature - Documentation updates for Amazon Verified Permissions.
8
+
9
+ 1.8.0 (2023-08-22)
10
+ ------------------
11
+
12
+ * Feature - Documentation updates for Amazon Verified Permissions. Increases max results per page for ListPolicyStores, ListPolicies, and ListPolicyTemplates APIs from 20 to 50.
13
+
4
14
  1.7.0 (2023-07-11)
5
15
  ------------------
6
16
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.7.0
1
+ 1.9.0
@@ -432,6 +432,14 @@ module Aws::VerifiedPermissions
432
432
  #
433
433
  # </note>
434
434
  #
435
+ # <note markdown="1"> Verified Permissions is <i> <a
436
+ # href="https://wikipedia.org/wiki/Eventual_consistency">eventually
437
+ # consistent</a> </i>. It can take a few seconds for a new or changed
438
+ # element to be propagate through the service and be visible in the
439
+ # results of other Verified Permissions operations.
440
+ #
441
+ # </note>
442
+ #
435
443
  #
436
444
  #
437
445
  # [1]: https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_IsAuthorizedWithToken.html
@@ -536,6 +544,14 @@ module Aws::VerifiedPermissions
536
544
  #
537
545
  # </note>
538
546
  #
547
+ # <note markdown="1"> Verified Permissions is <i> <a
548
+ # href="https://wikipedia.org/wiki/Eventual_consistency">eventually
549
+ # consistent</a> </i>. It can take a few seconds for a new or changed
550
+ # element to be propagate through the service and be visible in the
551
+ # results of other Verified Permissions operations.
552
+ #
553
+ # </note>
554
+ #
539
555
  # @option params [String] :client_token
540
556
  # Specifies a unique, case-sensitive ID that you provide to ensure the
541
557
  # idempotency of the request. This lets you safely retry the request
@@ -631,6 +647,14 @@ module Aws::VerifiedPermissions
631
647
  #
632
648
  # </note>
633
649
  #
650
+ # <note markdown="1"> Verified Permissions is <i> <a
651
+ # href="https://wikipedia.org/wiki/Eventual_consistency">eventually
652
+ # consistent</a> </i>. It can take a few seconds for a new or changed
653
+ # element to be propagate through the service and be visible in the
654
+ # results of other Verified Permissions operations.
655
+ #
656
+ # </note>
657
+ #
634
658
  #
635
659
  #
636
660
  # [1]: https://docs.cedarpolicy.com/schema.html#namespace
@@ -714,6 +738,14 @@ module Aws::VerifiedPermissions
714
738
  # template. If the template changes, then any policies that are linked
715
739
  # to that template are immediately updated as well.
716
740
  #
741
+ # <note markdown="1"> Verified Permissions is <i> <a
742
+ # href="https://wikipedia.org/wiki/Eventual_consistency">eventually
743
+ # consistent</a> </i>. It can take a few seconds for a new or changed
744
+ # element to be propagate through the service and be visible in the
745
+ # results of other Verified Permissions operations.
746
+ #
747
+ # </note>
748
+ #
717
749
  # @option params [String] :client_token
718
750
  # Specifies a unique, case-sensitive ID that you provide to ensure the
719
751
  # idempotency of the request. This lets you safely retry the request
@@ -1226,17 +1258,36 @@ module Aws::VerifiedPermissions
1226
1258
 
1227
1259
  # Makes an authorization decision about a service request described in
1228
1260
  # the parameters. The principal in this request comes from an external
1229
- # identity source. The information in the parameters can also define
1261
+ # identity source in the form of an identity token formatted as a [JSON
1262
+ # web token (JWT)][1]. The information in the parameters can also define
1230
1263
  # additional context that Verified Permissions can include in the
1231
1264
  # evaluation. The request is evaluated against all matching policies in
1232
1265
  # the specified policy store. The result of the decision is either
1233
1266
  # `Allow` or `Deny`, along with a list of the policies that resulted in
1234
1267
  # the decision.
1235
1268
  #
1269
+ # If you specify the `identityToken` parameter, then this operation
1270
+ # derives the principal from that token. You must not also include that
1271
+ # principal in the `entities` parameter or the operation fails and
1272
+ # reports a conflict between the two entity sources.
1273
+ #
1274
+ # If you provide only an `accessToken`, then you can include the entity
1275
+ # as part of the `entities` parameter to provide additional attributes.
1276
+ #
1277
+ # At this time, Verified Permissions accepts tokens from only Amazon
1278
+ # Cognito.
1279
+ #
1280
+ # Verified Permissions validates each token that is specified in a
1281
+ # request by checking its expiration date and its signature.
1282
+ #
1236
1283
  # If you delete a Amazon Cognito user pool or user, tokens from that
1237
1284
  # deleted pool or that deleted user continue to be usable until they
1238
1285
  # expire.
1239
1286
  #
1287
+ #
1288
+ #
1289
+ # [1]: https://wikipedia.org/wiki/JSON_Web_Token
1290
+ #
1240
1291
  # @option params [required, String] :policy_store_id
1241
1292
  # Specifies the ID of the policy store. Policies in this policy store
1242
1293
  # will be used to make an authorization decision for the input.
@@ -1245,13 +1296,13 @@ module Aws::VerifiedPermissions
1245
1296
  # Specifies an identity token for the principal to be authorized. This
1246
1297
  # token is provided to you by the identity provider (IdP) associated
1247
1298
  # with the specified identity source. You must specify either an
1248
- # `AccessToken` or an `IdentityToken`, but not both.
1299
+ # `AccessToken` or an `IdentityToken`, or both.
1249
1300
  #
1250
1301
  # @option params [String] :access_token
1251
1302
  # Specifies an access token for the principal to be authorized. This
1252
1303
  # token is provided to you by the identity provider (IdP) associated
1253
1304
  # with the specified identity source. You must specify either an
1254
- # `AccessToken` or an `IdentityToken`, but not both.
1305
+ # `AccessToken`, or an `IdentityToken`, or both.
1255
1306
  #
1256
1307
  # @option params [Types::ActionIdentifier] :action
1257
1308
  # Specifies the requested action to be authorized. Is the specified
@@ -1267,13 +1318,18 @@ module Aws::VerifiedPermissions
1267
1318
  # authorization decisions.
1268
1319
  #
1269
1320
  # @option params [Types::EntitiesDefinition] :entities
1270
- # Specifies the list of resources and principals and their associated
1271
- # attributes that Verified Permissions can examine when evaluating the
1272
- # policies.
1321
+ # Specifies the list of resources and their associated attributes that
1322
+ # Verified Permissions can examine when evaluating the policies.
1273
1323
  #
1274
- # <note markdown="1"> You can include only principal and resource entities in this
1275
- # parameter; you can't include actions. You must specify actions in the
1276
- # schema.
1324
+ # <note markdown="1"> You can include only resource and action entities in this parameter;
1325
+ # you can't include principals.
1326
+ #
1327
+ # * The `IsAuthorizedWithToken` operation takes principal attributes
1328
+ # from <b> <i>only</i> </b> the `identityToken` or `accessToken`
1329
+ # passed to the operation.
1330
+ #
1331
+ # * For action entities, you can include only their `Identifier` and
1332
+ # `EntityType`.
1277
1333
  #
1278
1334
  # </note>
1279
1335
  #
@@ -1355,16 +1411,18 @@ module Aws::VerifiedPermissions
1355
1411
  # response to request the next page of results.
1356
1412
  #
1357
1413
  # @option params [Integer] :max_results
1358
- # Specifies the total number of results that you want included on each
1359
- # page of the response. If you do not include this parameter, it
1360
- # defaults to a value that is specific to the operation. If additional
1361
- # items exist beyond the number you specify, the `NextToken` response
1362
- # element is returned with a value (not null). Include the specified
1363
- # value as the `NextToken` request parameter in the next call to the
1364
- # operation to get the next part of the results. Note that the service
1365
- # might return fewer results than the maximum even when there are more
1366
- # results available. You should check `NextToken` after every operation
1367
- # to ensure that you receive all of the results.
1414
+ # Specifies the total number of results that you want included in each
1415
+ # response. If additional items exist beyond the number you specify, the
1416
+ # `NextToken` response element is returned with a value (not null).
1417
+ # Include the specified value as the `NextToken` request parameter in
1418
+ # the next call to the operation to get the next set of results. Note
1419
+ # that the service might return fewer results than the maximum even when
1420
+ # there are more results available. You should check `NextToken` after
1421
+ # every operation to ensure that you receive all of the results.
1422
+ #
1423
+ # If you do not specify this parameter, the operation defaults to 10
1424
+ # identity sources per response. You can specify a maximum of 200
1425
+ # identity sources per response.
1368
1426
  #
1369
1427
  # @option params [Array<Types::IdentitySourceFilter>] :filters
1370
1428
  # Specifies characteristics of an identity source that you can use to
@@ -1428,16 +1486,18 @@ module Aws::VerifiedPermissions
1428
1486
  # response to request the next page of results.
1429
1487
  #
1430
1488
  # @option params [Integer] :max_results
1431
- # Specifies the total number of results that you want included on each
1432
- # page of the response. If you do not include this parameter, it
1433
- # defaults to a value that is specific to the operation. If additional
1434
- # items exist beyond the number you specify, the `NextToken` response
1435
- # element is returned with a value (not null). Include the specified
1436
- # value as the `NextToken` request parameter in the next call to the
1437
- # operation to get the next part of the results. Note that the service
1438
- # might return fewer results than the maximum even when there are more
1439
- # results available. You should check `NextToken` after every operation
1440
- # to ensure that you receive all of the results.
1489
+ # Specifies the total number of results that you want included in each
1490
+ # response. If additional items exist beyond the number you specify, the
1491
+ # `NextToken` response element is returned with a value (not null).
1492
+ # Include the specified value as the `NextToken` request parameter in
1493
+ # the next call to the operation to get the next set of results. Note
1494
+ # that the service might return fewer results than the maximum even when
1495
+ # there are more results available. You should check `NextToken` after
1496
+ # every operation to ensure that you receive all of the results.
1497
+ #
1498
+ # If you do not specify this parameter, the operation defaults to 10
1499
+ # policies per response. You can specify a maximum of 50 policies per
1500
+ # response.
1441
1501
  #
1442
1502
  # @option params [Types::PolicyFilter] :filter
1443
1503
  # Specifies a filter that limits the response to only policies that
@@ -1517,16 +1577,18 @@ module Aws::VerifiedPermissions
1517
1577
  # response to request the next page of results.
1518
1578
  #
1519
1579
  # @option params [Integer] :max_results
1520
- # Specifies the total number of results that you want included on each
1521
- # page of the response. If you do not include this parameter, it
1522
- # defaults to a value that is specific to the operation. If additional
1523
- # items exist beyond the number you specify, the `NextToken` response
1524
- # element is returned with a value (not null). Include the specified
1525
- # value as the `NextToken` request parameter in the next call to the
1526
- # operation to get the next part of the results. Note that the service
1527
- # might return fewer results than the maximum even when there are more
1528
- # results available. You should check `NextToken` after every operation
1529
- # to ensure that you receive all of the results.
1580
+ # Specifies the total number of results that you want included in each
1581
+ # response. If additional items exist beyond the number you specify, the
1582
+ # `NextToken` response element is returned with a value (not null).
1583
+ # Include the specified value as the `NextToken` request parameter in
1584
+ # the next call to the operation to get the next set of results. Note
1585
+ # that the service might return fewer results than the maximum even when
1586
+ # there are more results available. You should check `NextToken` after
1587
+ # every operation to ensure that you receive all of the results.
1588
+ #
1589
+ # If you do not specify this parameter, the operation defaults to 10
1590
+ # policy stores per response. You can specify a maximum of 50 policy
1591
+ # stores per response.
1530
1592
  #
1531
1593
  # @return [Types::ListPolicyStoresOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1532
1594
  #
@@ -1574,16 +1636,18 @@ module Aws::VerifiedPermissions
1574
1636
  # response to request the next page of results.
1575
1637
  #
1576
1638
  # @option params [Integer] :max_results
1577
- # Specifies the total number of results that you want included on each
1578
- # page of the response. If you do not include this parameter, it
1579
- # defaults to a value that is specific to the operation. If additional
1580
- # items exist beyond the number you specify, the `NextToken` response
1581
- # element is returned with a value (not null). Include the specified
1582
- # value as the `NextToken` request parameter in the next call to the
1583
- # operation to get the next part of the results. Note that the service
1584
- # might return fewer results than the maximum even when there are more
1585
- # results available. You should check `NextToken` after every operation
1586
- # to ensure that you receive all of the results.
1639
+ # Specifies the total number of results that you want included in each
1640
+ # response. If additional items exist beyond the number you specify, the
1641
+ # `NextToken` response element is returned with a value (not null).
1642
+ # Include the specified value as the `NextToken` request parameter in
1643
+ # the next call to the operation to get the next set of results. Note
1644
+ # that the service might return fewer results than the maximum even when
1645
+ # there are more results available. You should check `NextToken` after
1646
+ # every operation to ensure that you receive all of the results.
1647
+ #
1648
+ # If you do not specify this parameter, the operation defaults to 10
1649
+ # policy templates per response. You can specify a maximum of 50 policy
1650
+ # templates per response.
1587
1651
  #
1588
1652
  # @return [Types::ListPolicyTemplatesOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1589
1653
  #
@@ -1627,6 +1691,14 @@ module Aws::VerifiedPermissions
1627
1691
  # schema. If you later update a policy, then it is evaluated against the
1628
1692
  # new schema at that time.
1629
1693
  #
1694
+ # <note markdown="1"> Verified Permissions is <i> <a
1695
+ # href="https://wikipedia.org/wiki/Eventual_consistency">eventually
1696
+ # consistent</a> </i>. It can take a few seconds for a new or changed
1697
+ # element to be propagate through the service and be visible in the
1698
+ # results of other Verified Permissions operations.
1699
+ #
1700
+ # </note>
1701
+ #
1630
1702
  # @option params [required, String] :policy_store_id
1631
1703
  # Specifies the ID of the policy store in which to place the schema.
1632
1704
  #
@@ -1671,6 +1743,14 @@ module Aws::VerifiedPermissions
1671
1743
  # (IdP) source, or to change the mapping of identities from the IdP to a
1672
1744
  # different principal entity type.
1673
1745
  #
1746
+ # <note markdown="1"> Verified Permissions is <i> <a
1747
+ # href="https://wikipedia.org/wiki/Eventual_consistency">eventually
1748
+ # consistent</a> </i>. It can take a few seconds for a new or changed
1749
+ # element to be propagate through the service and be visible in the
1750
+ # results of other Verified Permissions operations.
1751
+ #
1752
+ # </note>
1753
+ #
1674
1754
  # @option params [required, String] :policy_store_id
1675
1755
  # Specifies the ID of the policy store that contains the identity source
1676
1756
  # that you want to update.
@@ -1736,11 +1816,40 @@ module Aws::VerifiedPermissions
1736
1816
  # template-linked policy, you must update the template instead, using
1737
1817
  # [UpdatePolicyTemplate][2].
1738
1818
  #
1739
- # <note markdown="1"> If policy validation is enabled in the policy store, then updating a
1740
- # static policy causes Verified Permissions to validate the policy
1741
- # against the schema in the policy store. If the updated static policy
1742
- # doesn't pass validation, the operation fails and the update isn't
1743
- # stored.
1819
+ # <note markdown="1"> * If policy validation is enabled in the policy store, then updating a
1820
+ # static policy causes Verified Permissions to validate the policy
1821
+ # against the schema in the policy store. If the updated static policy
1822
+ # doesn't pass validation, the operation fails and the update isn't
1823
+ # stored.
1824
+ #
1825
+ # * When you edit a static policy, You can change only certain elements
1826
+ # of a static policy:
1827
+ #
1828
+ # * The action referenced by the policy.
1829
+ #
1830
+ # * A condition clause, such as when and unless.
1831
+ #
1832
+ # You can't change these elements of a static policy:
1833
+ #
1834
+ # * Changing a policy from a static policy to a template-linked
1835
+ # policy.
1836
+ #
1837
+ # * Changing the effect of a static policy from permit or forbid.
1838
+ #
1839
+ # * The principal referenced by a static policy.
1840
+ #
1841
+ # * The resource referenced by a static policy.
1842
+ #
1843
+ # * To update a template-linked policy, you must update the template
1844
+ # instead.
1845
+ #
1846
+ # </note>
1847
+ #
1848
+ # <note markdown="1"> Verified Permissions is <i> <a
1849
+ # href="https://wikipedia.org/wiki/Eventual_consistency">eventually
1850
+ # consistent</a> </i>. It can take a few seconds for a new or changed
1851
+ # element to be propagate through the service and be visible in the
1852
+ # results of other Verified Permissions operations.
1744
1853
  #
1745
1854
  # </note>
1746
1855
  #
@@ -1828,6 +1937,14 @@ module Aws::VerifiedPermissions
1828
1937
 
1829
1938
  # Modifies the validation setting for a policy store.
1830
1939
  #
1940
+ # <note markdown="1"> Verified Permissions is <i> <a
1941
+ # href="https://wikipedia.org/wiki/Eventual_consistency">eventually
1942
+ # consistent</a> </i>. It can take a few seconds for a new or changed
1943
+ # element to be propagate through the service and be visible in the
1944
+ # results of other Verified Permissions operations.
1945
+ #
1946
+ # </note>
1947
+ #
1831
1948
  # @option params [required, String] :policy_store_id
1832
1949
  # Specifies the ID of the policy store that you want to update
1833
1950
  #
@@ -1874,6 +1991,14 @@ module Aws::VerifiedPermissions
1874
1991
  # reflected in authorization decisions that involve all template-linked
1875
1992
  # policies instantiated from this template.
1876
1993
  #
1994
+ # <note markdown="1"> Verified Permissions is <i> <a
1995
+ # href="https://wikipedia.org/wiki/Eventual_consistency">eventually
1996
+ # consistent</a> </i>. It can take a few seconds for a new or changed
1997
+ # element to be propagate through the service and be visible in the
1998
+ # results of other Verified Permissions operations.
1999
+ #
2000
+ # </note>
2001
+ #
1877
2002
  #
1878
2003
  #
1879
2004
  # [1]: https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_UpdatePolicyTemplate.html#amazonverifiedpermissions-UpdatePolicyTemplate-request-policyBody
@@ -1951,7 +2076,7 @@ module Aws::VerifiedPermissions
1951
2076
  params: params,
1952
2077
  config: config)
1953
2078
  context[:gem_name] = 'aws-sdk-verifiedpermissions'
1954
- context[:gem_version] = '1.7.0'
2079
+ context[:gem_version] = '1.9.0'
1955
2080
  Seahorse::Client::Request.new(handlers, context)
1956
2081
  end
1957
2082
 
@@ -49,7 +49,7 @@ module Aws::VerifiedPermissions
49
49
  class ActionIdentifier < Struct.new(
50
50
  :action_type,
51
51
  :action_id)
52
- SENSITIVE = []
52
+ SENSITIVE = [:action_type, :action_id]
53
53
  include Aws::Structure
54
54
  end
55
55
 
@@ -141,7 +141,7 @@ module Aws::VerifiedPermissions
141
141
  :set,
142
142
  :record,
143
143
  :unknown)
144
- SENSITIVE = []
144
+ SENSITIVE = [:boolean, :long, :string]
145
145
  include Aws::Structure
146
146
  include Aws::Structure::Union
147
147
 
@@ -356,7 +356,7 @@ module Aws::VerifiedPermissions
356
356
  :policy_store_id,
357
357
  :configuration,
358
358
  :principal_entity_type)
359
- SENSITIVE = []
359
+ SENSITIVE = [:principal_entity_type]
360
360
  include Aws::Structure
361
361
  end
362
362
 
@@ -597,7 +597,7 @@ module Aws::VerifiedPermissions
597
597
  :policy_store_id,
598
598
  :description,
599
599
  :statement)
600
- SENSITIVE = []
600
+ SENSITIVE = [:description, :statement]
601
601
  include Aws::Structure
602
602
  end
603
603
 
@@ -804,7 +804,7 @@ module Aws::VerifiedPermissions
804
804
  class EntityIdentifier < Struct.new(
805
805
  :entity_type,
806
806
  :entity_id)
807
- SENSITIVE = []
807
+ SENSITIVE = [:entity_type, :entity_id]
808
808
  include Aws::Structure
809
809
  end
810
810
 
@@ -814,9 +814,9 @@ module Aws::VerifiedPermissions
814
814
  # This data type is used as one of the fields in the
815
815
  # [EntitiesDefinition][1] structure.
816
816
  #
817
- # `\{ "id": \{ "entityType": "Photo", "entityId": "VacationPhoto94.jpg"
818
- # \}, "Attributes": \{\}, "Parents": [ \{ "entityType": "Album",
819
- # "entityId": "alice_folder" \} ] \}`
817
+ # `\{ "identifier": \{ "entityType": "Photo", "entityId":
818
+ # "VacationPhoto94.jpg" \}, "attributes": \{\}, "parents": [ \{
819
+ # "entityType": "Album", "entityId": "alice_folder" \} ] \}`
820
820
  #
821
821
  #
822
822
  #
@@ -958,7 +958,7 @@ module Aws::VerifiedPermissions
958
958
  :last_updated_date,
959
959
  :policy_store_id,
960
960
  :principal_entity_type)
961
- SENSITIVE = []
961
+ SENSITIVE = [:principal_entity_type]
962
962
  include Aws::Structure
963
963
  end
964
964
 
@@ -1131,7 +1131,7 @@ module Aws::VerifiedPermissions
1131
1131
  :statement,
1132
1132
  :created_date,
1133
1133
  :last_updated_date)
1134
- SENSITIVE = []
1134
+ SENSITIVE = [:description, :statement]
1135
1135
  include Aws::Structure
1136
1136
  end
1137
1137
 
@@ -1170,7 +1170,7 @@ module Aws::VerifiedPermissions
1170
1170
  :schema,
1171
1171
  :created_date,
1172
1172
  :last_updated_date)
1173
- SENSITIVE = []
1173
+ SENSITIVE = [:schema]
1174
1174
  include Aws::Structure
1175
1175
  end
1176
1176
 
@@ -1245,7 +1245,7 @@ module Aws::VerifiedPermissions
1245
1245
  #
1246
1246
  class IdentitySourceFilter < Struct.new(
1247
1247
  :principal_entity_type)
1248
- SENSITIVE = []
1248
+ SENSITIVE = [:principal_entity_type]
1249
1249
  include Aws::Structure
1250
1250
  end
1251
1251
 
@@ -1294,7 +1294,7 @@ module Aws::VerifiedPermissions
1294
1294
  :last_updated_date,
1295
1295
  :policy_store_id,
1296
1296
  :principal_entity_type)
1297
- SENSITIVE = []
1297
+ SENSITIVE = [:principal_entity_type]
1298
1298
  include Aws::Structure
1299
1299
  end
1300
1300
 
@@ -1449,14 +1449,14 @@ module Aws::VerifiedPermissions
1449
1449
  # Specifies an identity token for the principal to be authorized. This
1450
1450
  # token is provided to you by the identity provider (IdP) associated
1451
1451
  # with the specified identity source. You must specify either an
1452
- # `AccessToken` or an `IdentityToken`, but not both.
1452
+ # `AccessToken` or an `IdentityToken`, or both.
1453
1453
  # @return [String]
1454
1454
  #
1455
1455
  # @!attribute [rw] access_token
1456
1456
  # Specifies an access token for the principal to be authorized. This
1457
1457
  # token is provided to you by the identity provider (IdP) associated
1458
1458
  # with the specified identity source. You must specify either an
1459
- # `AccessToken` or an `IdentityToken`, but not both.
1459
+ # `AccessToken`, or an `IdentityToken`, or both.
1460
1460
  # @return [String]
1461
1461
  #
1462
1462
  # @!attribute [rw] action
@@ -1477,13 +1477,18 @@ module Aws::VerifiedPermissions
1477
1477
  # @return [Types::ContextDefinition]
1478
1478
  #
1479
1479
  # @!attribute [rw] entities
1480
- # Specifies the list of resources and principals and their associated
1481
- # attributes that Verified Permissions can examine when evaluating the
1482
- # policies.
1480
+ # Specifies the list of resources and their associated attributes that
1481
+ # Verified Permissions can examine when evaluating the policies.
1483
1482
  #
1484
- # <note markdown="1"> You can include only principal and resource entities in this
1485
- # parameter; you can't include actions. You must specify actions in
1486
- # the schema.
1483
+ # <note markdown="1"> You can include only resource and action entities in this parameter;
1484
+ # you can't include principals.
1485
+ #
1486
+ # * The `IsAuthorizedWithToken` operation takes principal attributes
1487
+ # from <b> <i>only</i> </b> the `identityToken` or `accessToken`
1488
+ # passed to the operation.
1489
+ #
1490
+ # * For action entities, you can include only their `Identifier` and
1491
+ # `EntityType`.
1487
1492
  #
1488
1493
  # </note>
1489
1494
  # @return [Types::EntitiesDefinition]
@@ -1498,7 +1503,7 @@ module Aws::VerifiedPermissions
1498
1503
  :resource,
1499
1504
  :context,
1500
1505
  :entities)
1501
- SENSITIVE = []
1506
+ SENSITIVE = [:identity_token, :access_token]
1502
1507
  include Aws::Structure
1503
1508
  end
1504
1509
 
@@ -1547,16 +1552,19 @@ module Aws::VerifiedPermissions
1547
1552
  # @return [String]
1548
1553
  #
1549
1554
  # @!attribute [rw] max_results
1550
- # Specifies the total number of results that you want included on each
1551
- # page of the response. If you do not include this parameter, it
1552
- # defaults to a value that is specific to the operation. If additional
1553
- # items exist beyond the number you specify, the `NextToken` response
1554
- # element is returned with a value (not null). Include the specified
1555
- # value as the `NextToken` request parameter in the next call to the
1556
- # operation to get the next part of the results. Note that the service
1557
- # might return fewer results than the maximum even when there are more
1558
- # results available. You should check `NextToken` after every
1559
- # operation to ensure that you receive all of the results.
1555
+ # Specifies the total number of results that you want included in each
1556
+ # response. If additional items exist beyond the number you specify,
1557
+ # the `NextToken` response element is returned with a value (not
1558
+ # null). Include the specified value as the `NextToken` request
1559
+ # parameter in the next call to the operation to get the next set of
1560
+ # results. Note that the service might return fewer results than the
1561
+ # maximum even when there are more results available. You should check
1562
+ # `NextToken` after every operation to ensure that you receive all of
1563
+ # the results.
1564
+ #
1565
+ # If you do not specify this parameter, the operation defaults to 10
1566
+ # identity sources per response. You can specify a maximum of 200
1567
+ # identity sources per response.
1560
1568
  # @return [Integer]
1561
1569
  #
1562
1570
  # @!attribute [rw] filters
@@ -1610,16 +1618,19 @@ module Aws::VerifiedPermissions
1610
1618
  # @return [String]
1611
1619
  #
1612
1620
  # @!attribute [rw] max_results
1613
- # Specifies the total number of results that you want included on each
1614
- # page of the response. If you do not include this parameter, it
1615
- # defaults to a value that is specific to the operation. If additional
1616
- # items exist beyond the number you specify, the `NextToken` response
1617
- # element is returned with a value (not null). Include the specified
1618
- # value as the `NextToken` request parameter in the next call to the
1619
- # operation to get the next part of the results. Note that the service
1620
- # might return fewer results than the maximum even when there are more
1621
- # results available. You should check `NextToken` after every
1622
- # operation to ensure that you receive all of the results.
1621
+ # Specifies the total number of results that you want included in each
1622
+ # response. If additional items exist beyond the number you specify,
1623
+ # the `NextToken` response element is returned with a value (not
1624
+ # null). Include the specified value as the `NextToken` request
1625
+ # parameter in the next call to the operation to get the next set of
1626
+ # results. Note that the service might return fewer results than the
1627
+ # maximum even when there are more results available. You should check
1628
+ # `NextToken` after every operation to ensure that you receive all of
1629
+ # the results.
1630
+ #
1631
+ # If you do not specify this parameter, the operation defaults to 10
1632
+ # policies per response. You can specify a maximum of 50 policies per
1633
+ # response.
1623
1634
  # @return [Integer]
1624
1635
  #
1625
1636
  # @!attribute [rw] filter
@@ -1670,16 +1681,19 @@ module Aws::VerifiedPermissions
1670
1681
  # @return [String]
1671
1682
  #
1672
1683
  # @!attribute [rw] max_results
1673
- # Specifies the total number of results that you want included on each
1674
- # page of the response. If you do not include this parameter, it
1675
- # defaults to a value that is specific to the operation. If additional
1676
- # items exist beyond the number you specify, the `NextToken` response
1677
- # element is returned with a value (not null). Include the specified
1678
- # value as the `NextToken` request parameter in the next call to the
1679
- # operation to get the next part of the results. Note that the service
1680
- # might return fewer results than the maximum even when there are more
1681
- # results available. You should check `NextToken` after every
1682
- # operation to ensure that you receive all of the results.
1684
+ # Specifies the total number of results that you want included in each
1685
+ # response. If additional items exist beyond the number you specify,
1686
+ # the `NextToken` response element is returned with a value (not
1687
+ # null). Include the specified value as the `NextToken` request
1688
+ # parameter in the next call to the operation to get the next set of
1689
+ # results. Note that the service might return fewer results than the
1690
+ # maximum even when there are more results available. You should check
1691
+ # `NextToken` after every operation to ensure that you receive all of
1692
+ # the results.
1693
+ #
1694
+ # If you do not specify this parameter, the operation defaults to 10
1695
+ # policy stores per response. You can specify a maximum of 50 policy
1696
+ # stores per response.
1683
1697
  # @return [Integer]
1684
1698
  #
1685
1699
  # @see http://docs.aws.amazon.com/goto/WebAPI/verifiedpermissions-2021-12-01/ListPolicyStoresInput AWS API Documentation
@@ -1727,16 +1741,19 @@ module Aws::VerifiedPermissions
1727
1741
  # @return [String]
1728
1742
  #
1729
1743
  # @!attribute [rw] max_results
1730
- # Specifies the total number of results that you want included on each
1731
- # page of the response. If you do not include this parameter, it
1732
- # defaults to a value that is specific to the operation. If additional
1733
- # items exist beyond the number you specify, the `NextToken` response
1734
- # element is returned with a value (not null). Include the specified
1735
- # value as the `NextToken` request parameter in the next call to the
1736
- # operation to get the next part of the results. Note that the service
1737
- # might return fewer results than the maximum even when there are more
1738
- # results available. You should check `NextToken` after every
1739
- # operation to ensure that you receive all of the results.
1744
+ # Specifies the total number of results that you want included in each
1745
+ # response. If additional items exist beyond the number you specify,
1746
+ # the `NextToken` response element is returned with a value (not
1747
+ # null). Include the specified value as the `NextToken` request
1748
+ # parameter in the next call to the operation to get the next set of
1749
+ # results. Note that the service might return fewer results than the
1750
+ # maximum even when there are more results available. You should check
1751
+ # `NextToken` after every operation to ensure that you receive all of
1752
+ # the results.
1753
+ #
1754
+ # If you do not specify this parameter, the operation defaults to 10
1755
+ # policy templates per response. You can specify a maximum of 50
1756
+ # policy templates per response.
1740
1757
  # @return [Integer]
1741
1758
  #
1742
1759
  # @see http://docs.aws.amazon.com/goto/WebAPI/verifiedpermissions-2021-12-01/ListPolicyTemplatesInput AWS API Documentation
@@ -2064,7 +2081,7 @@ module Aws::VerifiedPermissions
2064
2081
  :description,
2065
2082
  :created_date,
2066
2083
  :last_updated_date)
2067
- SENSITIVE = []
2084
+ SENSITIVE = [:description]
2068
2085
  include Aws::Structure
2069
2086
  end
2070
2087
 
@@ -2179,7 +2196,7 @@ module Aws::VerifiedPermissions
2179
2196
  class SchemaDefinition < Struct.new(
2180
2197
  :cedar_json,
2181
2198
  :unknown)
2182
- SENSITIVE = []
2199
+ SENSITIVE = [:cedar_json]
2183
2200
  include Aws::Structure
2184
2201
  include Aws::Structure::Union
2185
2202
 
@@ -2245,7 +2262,7 @@ module Aws::VerifiedPermissions
2245
2262
  class StaticPolicyDefinition < Struct.new(
2246
2263
  :description,
2247
2264
  :statement)
2248
- SENSITIVE = []
2265
+ SENSITIVE = [:description, :statement]
2249
2266
  include Aws::Structure
2250
2267
  end
2251
2268
 
@@ -2274,7 +2291,7 @@ module Aws::VerifiedPermissions
2274
2291
  class StaticPolicyDefinitionDetail < Struct.new(
2275
2292
  :description,
2276
2293
  :statement)
2277
- SENSITIVE = []
2294
+ SENSITIVE = [:description, :statement]
2278
2295
  include Aws::Structure
2279
2296
  end
2280
2297
 
@@ -2297,7 +2314,7 @@ module Aws::VerifiedPermissions
2297
2314
  #
2298
2315
  class StaticPolicyDefinitionItem < Struct.new(
2299
2316
  :description)
2300
- SENSITIVE = []
2317
+ SENSITIVE = [:description]
2301
2318
  include Aws::Structure
2302
2319
  end
2303
2320
 
@@ -2516,7 +2533,7 @@ module Aws::VerifiedPermissions
2516
2533
  :identity_source_id,
2517
2534
  :update_configuration,
2518
2535
  :principal_entity_type)
2519
- SENSITIVE = []
2536
+ SENSITIVE = [:principal_entity_type]
2520
2537
  include Aws::Structure
2521
2538
  end
2522
2539
 
@@ -2760,7 +2777,7 @@ module Aws::VerifiedPermissions
2760
2777
  :policy_template_id,
2761
2778
  :description,
2762
2779
  :statement)
2763
- SENSITIVE = []
2780
+ SENSITIVE = [:description, :statement]
2764
2781
  include Aws::Structure
2765
2782
  end
2766
2783
 
@@ -2827,7 +2844,7 @@ module Aws::VerifiedPermissions
2827
2844
  class UpdateStaticPolicyDefinition < Struct.new(
2828
2845
  :description,
2829
2846
  :statement)
2830
- SENSITIVE = []
2847
+ SENSITIVE = [:description, :statement]
2831
2848
  include Aws::Structure
2832
2849
  end
2833
2850
 
@@ -53,6 +53,6 @@ require_relative 'aws-sdk-verifiedpermissions/customizations'
53
53
  # @!group service
54
54
  module Aws::VerifiedPermissions
55
55
 
56
- GEM_VERSION = '1.7.0'
56
+ GEM_VERSION = '1.9.0'
57
57
 
58
58
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-verifiedpermissions
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.7.0
4
+ version: 1.9.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-07-11 00:00:00.000000000 Z
11
+ date: 2023-08-24 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-core