@awboost/cfn-resource-types 0.1.22 → 0.1.24

package/lib/AWS-ACMPCA-Certificate.d.ts

@@ -50,12 +50,13 @@ export type ACMPCACertificateAttributes = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.ApiPassthrough`.
- * Contains information about the certificate subject. The Subject field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The Subject must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate.
+ * Contains X.509 certificate information to be placed in an issued certificate. An ``APIPassthrough`` or ``APICSRPassthrough`` template variant must be selected, or else this parameter is ignored.
+ If conflicting or duplicate certificate information is supplied from other sources, AWS Private CA applies [order of operation rules](https://docs.aws.amazon.com/privateca/latest/userguide/UsingTemplates.html#template-order-of-operations) to determine what information is used.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-apipassthrough.html}
  */
 export type ApiPassthrough = {
     /**
-     * Defines one or more purposes for which the key contained in the certificate can be used. Default value for each option is false.
+     * Specifies X.509 extension information for a certificate.
      */
     Extensions?: Extensions;
     /**
@@ -65,67 +66,100 @@ export type ApiPassthrough = {
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.CustomAttribute`.
+ * Defines the X.500 relative distinguished name (RDN).
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-customattribute.html}
  */
 export type CustomAttribute = {
     /**
-     * String that contains X.509 ObjectIdentifier information.
+     * Specifies the object identifier (OID) of the attribute type of the relative distinguished name (RDN).
      */
     ObjectIdentifier: string;
+    /**
+     * Specifies the attribute value of relative distinguished name (RDN).
+     */
     Value: string;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.CustomExtension`.
+ * Specifies the X.509 extension information for a certificate.
+ Extensions present in ``CustomExtensions`` follow the ``ApiPassthrough`` [template rules](https://docs.aws.amazon.com/privateca/latest/userguide/UsingTemplates.html#template-order-of-operations).
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-customextension.html}
  */
 export type CustomExtension = {
+    /**
+     * Specifies the critical flag of the X.509 extension.
+     */
     Critical?: boolean;
     /**
-     * String that contains X.509 ObjectIdentifier information.
+     * Specifies the object identifier (OID) of the X.509 extension. For more information, see the [Global OID reference database.](https://docs.aws.amazon.com/https://oidref.com/2.5.29)
      */
     ObjectIdentifier: string;
+    /**
+     * Specifies the base64-encoded value of the X.509 extension.
+     */
     Value: string;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.EdiPartyName`.
+ * Describes an Electronic Data Interchange (EDI) entity as described in as defined in [Subject Alternative Name](https://docs.aws.amazon.com/https://datatracker.ietf.org/doc/html/rfc5280) in RFC 5280.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-edipartyname.html}
  */
 export type EdiPartyName = {
+    /**
+     * Specifies the name assigner.
+     */
     NameAssigner: string;
+    /**
+     * Specifies the party name.
+     */
     PartyName: string;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.ExtendedKeyUsage`.
+ * Specifies additional purposes for which the certified public key may be used other than basic purposes indicated in the ``KeyUsage`` extension.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-extendedkeyusage.html}
  */
 export type ExtendedKeyUsage = {
     /**
-     * String that contains X.509 ObjectIdentifier information.
+     * Specifies a custom ``ExtendedKeyUsage`` with an object identifier (OID).
      */
     ExtendedKeyUsageObjectIdentifier?: string;
+    /**
+     * Specifies a standard ``ExtendedKeyUsage`` as defined as in [RFC 5280](https://docs.aws.amazon.com/https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.12).
+     */
     ExtendedKeyUsageType?: string;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.Extensions`.
- * Defines one or more purposes for which the key contained in the certificate can be used. Default value for each option is false.
+ * Contains X.509 extension information for a certificate.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-extensions.html}
  */
 export type Extensions = {
+    /**
+       * Contains a sequence of one or more policy information terms, each of which consists of an object identifier (OID) and optional qualifiers. For more information, see NIST's definition of [Object Identifier (OID)](https://docs.aws.amazon.com/https://csrc.nist.gov/glossary/term/Object_Identifier).
+       In an end-entity certificate, these terms indicate the policy under which the certificate was issued and the purposes for which it may be used. In a CA certificate, these terms limit the set of policies for certification paths that include this certificate.
+       */
     CertificatePolicies?: PolicyInformation[];
     /**
-     * Array of X.509 extensions for a certificate.
+     * Contains a sequence of one or more X.509 extensions, each of which consists of an object identifier (OID), a base64-encoded value, and the critical flag. For more information, see the [Global OID reference database.](https://docs.aws.amazon.com/https://oidref.com/2.5.29)
      */
     CustomExtensions?: CustomExtension[];
+    /**
+     * Specifies additional purposes for which the certified public key may be used other than basic purposes indicated in the ``KeyUsage`` extension.
+     */
     ExtendedKeyUsage?: ExtendedKeyUsage[];
     /**
      * Defines one or more purposes for which the key contained in the certificate can be used. Default value for each option is false.
      */
     KeyUsage?: KeyUsage;
+    /**
+     * The subject alternative name extension allows identities to be bound to the subject of the certificate. These identities may be included in addition to or in place of the identity in the subject field of the certificate.
+     */
     SubjectAlternativeNames?: GeneralName[];
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.GeneralName`.
- * Contains information about the certificate subject. The certificate can be one issued by your private certificate authority (CA) or it can be your private CA certificate. The Subject field in the certificate identifies the entity that owns or controls the public key in the certificate. The entity can be a user, computer, device, or service. The Subject must contain an X.500 distinguished name (DN). A DN is a sequence of relative distinguished names (RDNs). The RDNs are separated by commas in the certificate. The DN must be unique for each entity, but your private CA can issue more than one certificate with the same DN to the same entity.
+ * Describes an ASN.1 X.400 ``GeneralName`` as defined in [RFC 5280](https://docs.aws.amazon.com/https://datatracker.ietf.org/doc/html/rfc5280). Only one of the following naming options should be provided. Providing more than one option results in an ``InvalidArgsException`` error.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-generalname.html}
  */
 export type GeneralName = {
@@ -134,78 +168,131 @@ export type GeneralName = {
      */
     DirectoryName?: Subject;
     /**
-     * String that contains X.509 DnsName information.
+     * Represents ``GeneralName`` as a DNS name.
      */
     DnsName?: string;
+    /**
+     * Represents ``GeneralName`` as an ``EdiPartyName`` object.
+     */
     EdiPartyName?: EdiPartyName;
     /**
-     * String that contains X.509 IpAddress information.
+     * Represents ``GeneralName`` as an IPv4 or IPv6 address.
      */
     IpAddress?: string;
+    /**
+     * Represents ``GeneralName`` using an ``OtherName`` object.
+     */
     OtherName?: OtherName;
     /**
-     * String that contains X.509 ObjectIdentifier information.
+     * Represents ``GeneralName`` as an object identifier (OID).
      */
     RegisteredId?: string;
     /**
-     * String that contains X.509 Rfc822Name information.
+     * Represents ``GeneralName`` as an [RFC 822](https://docs.aws.amazon.com/https://datatracker.ietf.org/doc/html/rfc822) email address.
      */
     Rfc822Name?: string;
     /**
-     * String that contains X.509 UniformResourceIdentifier information.
+     * Represents ``GeneralName`` as a URI.
      */
     UniformResourceIdentifier?: string;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.KeyUsage`.
+ * Defines one or more purposes for which the key contained in the certificate can be used. Default value for each option is false.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-keyusage.html}
  */
 export type KeyUsage = {
+    /**
+     * Key can be used to sign CRLs.
+     */
     CRLSign?: boolean;
+    /**
+     * Key can be used to decipher data.
+     */
     DataEncipherment?: boolean;
+    /**
+     * Key can be used only to decipher data.
+     */
     DecipherOnly?: boolean;
+    /**
+     * Key can be used for digital signing.
+     */
     DigitalSignature?: boolean;
+    /**
+     * Key can be used only to encipher data.
+     */
     EncipherOnly?: boolean;
+    /**
+     * Key can be used in a key-agreement protocol.
+     */
     KeyAgreement?: boolean;
+    /**
+     * Key can be used to sign certificates.
+     */
     KeyCertSign?: boolean;
+    /**
+     * Key can be used to encipher data.
+     */
     KeyEncipherment?: boolean;
+    /**
+     * Key can be used for non-repudiation.
+     */
     NonRepudiation?: boolean;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.OtherName`.
+ * Defines a custom ASN.1 X.400 ``GeneralName`` using an object identifier (OID) and value. The OID must satisfy the regular expression shown below. For more information, see NIST's definition of [Object Identifier (OID)](https://docs.aws.amazon.com/https://csrc.nist.gov/glossary/term/Object_Identifier).
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-othername.html}
  */
 export type OtherName = {
     /**
-     * String that contains X.509 ObjectIdentifier information.
+     * Specifies an OID.
      */
     TypeId: string;
+    /**
+     * Specifies an OID value.
+     */
     Value: string;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.PolicyInformation`.
+ * Defines the X.509 ``CertificatePolicies`` extension.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-policyinformation.html}
  */
 export type PolicyInformation = {
     /**
-     * String that contains X.509 ObjectIdentifier information.
+     * Specifies the object identifier (OID) of the certificate policy under which the certificate was issued. For more information, see NIST's definition of [Object Identifier (OID)](https://docs.aws.amazon.com/https://csrc.nist.gov/glossary/term/Object_Identifier).
      */
     CertPolicyId: string;
+    /**
+     * Modifies the given ``CertPolicyId`` with a qualifier. AWS Private CA supports the certification practice statement (CPS) qualifier.
+     */
     PolicyQualifiers?: PolicyQualifierInfo[];
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.PolicyQualifierInfo`.
+ * Modifies the ``CertPolicyId`` of a ``PolicyInformation`` object with a qualifier. AWS Private CA supports the certification practice statement (CPS) qualifier.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-policyqualifierinfo.html}
  */
 export type PolicyQualifierInfo = {
+    /**
+     * Identifies the qualifier modifying a ``CertPolicyId``.
+     */
     PolicyQualifierId: string;
+    /**
+     * Defines the qualifier type. AWS Private CA supports the use of a URI for a CPS qualifier in this field.
+     */
     Qualifier: Qualifier;
 };
 /**
  * Type definition for `AWS::ACMPCA::Certificate.Qualifier`.
+ * Defines a ``PolicyInformation`` qualifier. AWS Private CA supports the [certification practice statement (CPS) qualifier](https://docs.aws.amazon.com/https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.1.4) defined in RFC 5280.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-acmpca-certificate-qualifier.html}
  */
 export type Qualifier = {
+    /**
+     * Contains a pointer to a certification practice statement (CPS) published by the CA.
+     */
     CpsUri: string;
 };
 /**
@@ -224,8 +311,9 @@ export type Subject = {
      */
     Country?: string;
     /**
-     * Array of X.500 attribute type and value. CustomAttributes cannot be used along with pre-defined attributes.
-     */
+       * Contains a sequence of one or more X.500 relative distinguished names (RDNs), each of which consists of an object identifier (OID) and a value. For more information, see NIST’s definition of [Object Identifier (OID)](https://docs.aws.amazon.com/https://csrc.nist.gov/glossary/term/Object_Identifier).
+        Custom attributes cannot be used in combination with standard attributes.
+       */
     CustomAttributes?: CustomAttribute[];
     /**
      * Disambiguating information for the certificate subject.
@@ -287,7 +375,7 @@ export type Validity = {
      */
     Type: string;
     /**
-     * Time period.
+     * A long integer interpreted according to the value of ``Type``, below.
      */
     Value: number;
 };

package/lib/AWS-AppSync-ApiCache.d.ts

@@ -8,6 +8,7 @@ export type AppSyncApiCacheProperties = {
     ApiCachingBehavior: string;
     ApiId: string;
     AtRestEncryptionEnabled?: boolean;
+    HealthMetricsConfig?: string;
     TransitEncryptionEnabled?: boolean;
     Ttl: number;
     Type: string;

package/lib/AWS-AppSync-DataSource.d.ts

@@ -12,6 +12,7 @@ export type AppSyncDataSourceProperties = {
     EventBridgeConfig?: EventBridgeConfig;
     HttpConfig?: HttpConfig;
     LambdaConfig?: LambdaConfig;
+    MetricsConfig?: string;
     Name: string;
     OpenSearchServiceConfig?: OpenSearchServiceConfig;
     RelationalDatabaseConfig?: RelationalDatabaseConfig;

package/lib/AWS-AppSync-GraphQLApi.d.ts

@@ -8,6 +8,7 @@ export type AppSyncGraphQLApiProperties = {
     AdditionalAuthenticationProviders?: AdditionalAuthenticationProvider[];
     ApiType?: string;
     AuthenticationType: string;
+    EnhancedMetricsConfig?: EnhancedMetricsConfig;
     EnvironmentVariables?: Record<string, any>;
     IntrospectionConfig?: string;
     LambdaAuthorizerConfig?: LambdaAuthorizerConfig;
@@ -56,6 +57,15 @@ export type CognitoUserPoolConfig = {
     AwsRegion?: string;
     UserPoolId?: string;
 };
+/**
+ * Type definition for `AWS::AppSync::GraphQLApi.EnhancedMetricsConfig`.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-appsync-graphqlapi-enhancedmetricsconfig.html}
+ */
+export type EnhancedMetricsConfig = {
+    DataSourceLevelMetricsBehavior: string;
+    OperationLevelMetricsConfig: string;
+    ResolverLevelMetricsBehavior: string;
+};
 /**
  * Type definition for `AWS::AppSync::GraphQLApi.LambdaAuthorizerConfig`.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-appsync-graphqlapi-lambdaauthorizerconfig.html}

package/lib/AWS-AppSync-Resolver.d.ts

@@ -41,6 +41,7 @@ export type AppSyncResolverProperties = {
      * The maximum number of resolver request inputs that will be sent to a single LAMlong function in a ``BatchInvoke`` operation.
      */
     MaxBatchSize?: number;
+    MetricsConfig?: "ENABLED" | "DISABLED";
     /**
      * Functions linked with the pipeline resolver.
      */

package/lib/AWS-Batch-JobDefinition.d.ts

@@ -53,6 +53,7 @@ export type ContainerProperties = {
     NetworkConfiguration?: NetworkConfiguration;
     Privileged?: boolean;
     ReadonlyRootFilesystem?: boolean;
+    RepositoryCredentials?: RepositoryCredentials;
     ResourceRequirements?: ResourceRequirement[];
     RuntimePlatform?: RuntimePlatform;
     Secrets?: Secret[];
@@ -277,6 +278,13 @@ export type PodProperties = {
     ServiceAccountName?: string;
     Volumes?: EksVolume[];
 };
+/**
+ * Type definition for `AWS::Batch::JobDefinition.RepositoryCredentials`.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-batch-jobdefinition-repositorycredentials.html}
+ */
+export type RepositoryCredentials = {
+    CredentialsParameter: string;
+};
 /**
  * Type definition for `AWS::Batch::JobDefinition.ResourceRequirement`.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-batch-jobdefinition-resourcerequirement.html}

package/lib/AWS-ControlTower-EnabledBaseline.d.ts

@@ -0,0 +1,80 @@
+import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
+import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
+/**
+ * Definition of AWS::ControlTower::EnabledBaseline Resource Type
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-controltower-enabledbaseline.html}
+ */
+export type ControlTowerEnabledBaselineProperties = {
+    /**
+     * @minLength `20`
+     * @maxLength `2048`
+     * @pattern `^arn:aws[0-9a-zA-Z_\-:\/]+$`
+     */
+    BaselineIdentifier: string;
+    /**
+     * @pattern `^\d+(?:\.\d+){0,2}$`
+     */
+    BaselineVersion: string;
+    Parameters?: Parameter[];
+    Tags?: Tag[];
+    /**
+     * @minLength `20`
+     * @maxLength `2048`
+     * @pattern `^arn:aws[0-9a-zA-Z_\-:\/]+$`
+     */
+    TargetIdentifier: string;
+};
+/**
+ * Attribute type definition for `AWS::ControlTower::EnabledBaseline`.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-controltower-enabledbaseline.html#aws-resource-controltower-enabledbaseline-return-values}
+ */
+export type ControlTowerEnabledBaselineAttributes = {
+    /**
+     * @minLength `20`
+     * @maxLength `2048`
+     * @pattern `^arn:aws[0-9a-zA-Z_\-:\/]+$`
+     */
+    EnabledBaselineIdentifier: string;
+};
+/**
+ * Type definition for `AWS::ControlTower::EnabledBaseline.AnyType`.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-controltower-enabledbaseline-anytype.html}
+ */
+export type AnyType = string | Record<string, any> | number | (boolean | number | Record<string, any> | string)[] | boolean;
+/**
+ * Type definition for `AWS::ControlTower::EnabledBaseline.Parameter`.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-controltower-enabledbaseline-parameter.html}
+ */
+export type Parameter = {
+    /**
+     * @minLength `1`
+     * @maxLength `256`
+     */
+    Key?: string;
+    Value?: AnyType;
+};
+/**
+ * Type definition for `AWS::ControlTower::EnabledBaseline.Tag`.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-controltower-enabledbaseline-tag.html}
+ */
+export type Tag = {
+    /**
+     * @minLength `1`
+     * @maxLength `256`
+     */
+    Key?: string;
+    /**
+     * @minLength `0`
+     * @maxLength `256`
+     */
+    Value?: string;
+};
+/**
+ * Definition of AWS::ControlTower::EnabledBaseline Resource Type
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-controltower-enabledbaseline.html}
+ */
+export declare class ControlTowerEnabledBaseline extends $Resource<"AWS::ControlTower::EnabledBaseline", ControlTowerEnabledBaselineProperties, ControlTowerEnabledBaselineAttributes> {
+    static readonly Type = "AWS::ControlTower::EnabledBaseline";
+    constructor(logicalId: string, properties: ControlTowerEnabledBaselineProperties, options?: $ResourceOptions);
+}
+//# sourceMappingURL=AWS-ControlTower-EnabledBaseline.d.ts.map

package/lib/AWS-ControlTower-EnabledBaseline.js

@@ -0,0 +1,12 @@
+import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
+/**
+ * Definition of AWS::ControlTower::EnabledBaseline Resource Type
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-controltower-enabledbaseline.html}
+ */
+export class ControlTowerEnabledBaseline extends $Resource {
+    static Type = "AWS::ControlTower::EnabledBaseline";
+    constructor(logicalId, properties, options) {
+        super(logicalId, ControlTowerEnabledBaseline.Type, properties, options);
+    }
+}
+//# sourceMappingURL=AWS-ControlTower-EnabledBaseline.js.map

package/lib/AWS-DMS-DataProvider.d.ts

@@ -26,7 +26,7 @@ export type DMSDataProviderProperties = {
     /**
      * The property describes a data engine for the data provider.
      */
-    Engine: "postgresql" | "mysql" | "oracle" | "sqlserver" | "aurora" | "aurora_postgresql";
+    Engine: "postgres" | "mysql" | "oracle" | "sqlserver" | "aurora" | "aurora_postgresql";
     /**
      * The property describes the exact settings which can be modified
      */

package/lib/AWS-DynamoDB-Table.d.ts

@@ -16,6 +16,7 @@ export type DynamoDBTableProperties = {
     LocalSecondaryIndexes?: LocalSecondaryIndex[];
     PointInTimeRecoverySpecification?: PointInTimeRecoverySpecification;
     ProvisionedThroughput?: ProvisionedThroughput;
+    ResourcePolicy?: ResourcePolicy;
     SSESpecification?: SSESpecification;
     StreamSpecification?: StreamSpecification;
     TableClass?: string;
@@ -130,6 +131,13 @@ export type ProvisionedThroughput = {
     ReadCapacityUnits: number;
     WriteCapacityUnits: number;
 };
+/**
+ * Type definition for `AWS::DynamoDB::Table.ResourcePolicy`.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-dynamodb-table-resourcepolicy.html}
+ */
+export type ResourcePolicy = {
+    PolicyDocument: Record<string, any>;
+};
 /**
  * Type definition for `AWS::DynamoDB::Table.S3BucketSource`.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-dynamodb-table-s3bucketsource.html}
@@ -153,6 +161,7 @@ export type SSESpecification = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-dynamodb-table-streamspecification.html}
  */
 export type StreamSpecification = {
+    ResourcePolicy?: ResourcePolicy;
     StreamViewType: string;
 };
 /**

package/lib/AWS-EC2-InstanceConnectEndpoint.d.ts

@@ -10,7 +10,7 @@ export type EC2InstanceConnectEndpointProperties = {
      */
     ClientToken?: string;
     /**
-     * If true, the address of the loki client is preserved when connecting to the end resource
+     * If true, the address of the instance connect endpoint client is preserved when connecting to the end resource
      */
     PreserveClientIp?: boolean;
     /**

package/lib/AWS-EC2-NatGateway.d.ts

@@ -1,21 +1,52 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * Resource Type definition for AWS::EC2::NatGateway
+ * Resource type definition for `AWS::EC2::NatGateway`.
+ * Specifies a network address translation (NAT) gateway in the specified subnet. You can create either a public NAT gateway or a private NAT gateway. The default is a public NAT gateway. If you create a public NAT gateway, you must specify an elastic IP address.
+ With a NAT gateway, instances in a private subnet can connect to the internet, other AWS services, or an on-premises network using the IP address of the NAT gateway. For more information, see [NAT gateways](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat-gateway.html) in the *Amazon VPC User Guide*.
+ If you add a default route (``AWS::EC2::Route`` resource) that points to a NAT gateway, specify the NAT gateway ID for the route's ``NatGatewayId`` property.
+ When you associate an Elastic IP address or secondary Elastic IP address with a public NAT gateway, the network border group of the Elastic IP address must match the network border group of the Availability Zone (AZ) that the public NAT gateway is in. Otherwise, the N
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-natgateway.html}
  */
 export type EC2NatGatewayProperties = {
+    /**
+     * [Public NAT gateway only] The allocation ID of the Elastic IP address that's associated with the NAT gateway. This property is required for a public NAT gateway and cannot be specified with a private NAT gateway.
+     */
     AllocationId?: string;
+    /**
+     * Indicates whether the NAT gateway supports public or private connectivity. The default is public connectivity.
+     */
     ConnectivityType?: string;
+    /**
+     * The maximum amount of time to wait (in seconds) before forcibly releasing the IP addresses if connections are still in progress. Default value is 350 seconds.
+     */
     MaxDrainDurationSeconds?: number;
+    /**
+     * The private IPv4 address to assign to the NAT gateway. If you don't provide an address, a private IPv4 address will be automatically assigned.
+     */
     PrivateIpAddress?: string;
-    SecondaryAllocationIds?: string[];
     /**
-     * @min `1`
+     * Secondary EIP allocation IDs. For more information, see [Create a NAT gateway](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat-gateway.html#nat-gateway-creating) in the *Amazon VPC User Guide*.
      */
+    SecondaryAllocationIds?: string[];
+    /**
+       * [Private NAT gateway only] The number of secondary private IPv4 addresses you want to assign to the NAT gateway. For more information about secondary addresses, see [Create a NAT gateway](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat-gateway.html#nat-gateway-creating) in the *Amazon Virtual Private Cloud User Guide*.
+       ``SecondaryPrivateIpAddressCount`` and ``SecondaryPrivateIpAddresses`` cannot be set at the same time.
+       * @min `1`
+       */
     SecondaryPrivateIpAddressCount?: number;
+    /**
+       * Secondary private IPv4 addresses. For more information about secondary addresses, see [Create a NAT gateway](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat-gateway.html#nat-gateway-creating) in the *Amazon Virtual Private Cloud User Guide*.
+       ``SecondaryPrivateIpAddressCount`` and ``SecondaryPrivateIpAddresses`` cannot be set at the same time.
+       */
     SecondaryPrivateIpAddresses?: string[];
+    /**
+     * The ID of the subnet in which the NAT gateway is located.
+     */
     SubnetId: string;
+    /**
+     * The tags for the NAT gateway.
+     */
     Tags?: Tag[];
 };
 /**
@@ -27,14 +58,25 @@ export type EC2NatGatewayAttributes = {
 };
 /**
  * Type definition for `AWS::EC2::NatGateway.Tag`.
+ * Specifies a tag. For more information, see [Add tags to a resource](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Using_Tags.html#cloudformation-add-tag-specifications).
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-natgateway-tag.html}
  */
 export type Tag = {
+    /**
+     * The tag key.
+     */
     Key: string;
+    /**
+     * The tag value.
+     */
     Value: string;
 };
 /**
- * Resource Type definition for AWS::EC2::NatGateway
+ * Resource type definition for `AWS::EC2::NatGateway`.
+ * Specifies a network address translation (NAT) gateway in the specified subnet. You can create either a public NAT gateway or a private NAT gateway. The default is a public NAT gateway. If you create a public NAT gateway, you must specify an elastic IP address.
+ With a NAT gateway, instances in a private subnet can connect to the internet, other AWS services, or an on-premises network using the IP address of the NAT gateway. For more information, see [NAT gateways](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat-gateway.html) in the *Amazon VPC User Guide*.
+ If you add a default route (``AWS::EC2::Route`` resource) that points to a NAT gateway, specify the NAT gateway ID for the route's ``NatGatewayId`` property.
+ When you associate an Elastic IP address or secondary Elastic IP address with a public NAT gateway, the network border group of the Elastic IP address must match the network border group of the Availability Zone (AZ) that the public NAT gateway is in. Otherwise, the N
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-natgateway.html}
  */
 export declare class EC2NatGateway extends $Resource<"AWS::EC2::NatGateway", EC2NatGatewayProperties, EC2NatGatewayAttributes> {

package/lib/AWS-EC2-NatGateway.js

@@ -1,6 +1,10 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * Resource Type definition for AWS::EC2::NatGateway
+ * Resource type definition for `AWS::EC2::NatGateway`.
+ * Specifies a network address translation (NAT) gateway in the specified subnet. You can create either a public NAT gateway or a private NAT gateway. The default is a public NAT gateway. If you create a public NAT gateway, you must specify an elastic IP address.
+ With a NAT gateway, instances in a private subnet can connect to the internet, other AWS services, or an on-premises network using the IP address of the NAT gateway. For more information, see [NAT gateways](https://docs.aws.amazon.com/vpc/latest/userguide/vpc-nat-gateway.html) in the *Amazon VPC User Guide*.
+ If you add a default route (``AWS::EC2::Route`` resource) that points to a NAT gateway, specify the NAT gateway ID for the route's ``NatGatewayId`` property.
+ When you associate an Elastic IP address or secondary Elastic IP address with a public NAT gateway, the network border group of the Elastic IP address must match the network border group of the Availability Zone (AZ) that the public NAT gateway is in. Otherwise, the N
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-natgateway.html}
  */
 export class EC2NatGateway extends $Resource {