@awboost/cfn-resource-types 0.1.25 → 0.1.27

package/lib/AWS-RDS-DBInstance.js

@@ -1,6 +1,10 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * The AWS::RDS::DBInstance resource creates an Amazon RDS DB instance.
+ * The ``AWS::RDS::DBInstance`` resource creates an Amazon DB instance. The new DB instance can be an RDS DB instance, or it can be a DB instance in an Aurora DB cluster.
+ For more information about creating an RDS DB instance, see [Creating an Amazon RDS DB instance](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_CreateDBInstance.html) in the *Amazon RDS User Guide*.
+ For more information about creating a DB instance in an Aurora DB cluster, see [Creating an Amazon Aurora DB cluster](https://docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/Aurora.CreateInstance.html) in the *Amazon Aurora User Guide*.
+ If you import an existing DB instance, and the template configuration doesn't match the actual configuration of the DB instance, AWS CloudFormation applies the changes in the template during the import operation.
+  If a DB instance is deleted or replaced during an update, AWS CloudFormation deletes all automated snapshots. However, it retains manual DB snapshots. During an
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-rds-dbinstance.html}
  */
 export class RDSDBInstance extends $Resource {

package/lib/AWS-RDS-DBParameterGroup.d.ts

@@ -1,54 +1,80 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * The AWS::RDS::DBParameterGroup resource creates a custom parameter group for an RDS database family
+ * The ``AWS::RDS::DBParameterGroup`` resource creates a custom parameter group for an RDS database family.
+ This type can be declared in a template and referenced in the ``DBParameterGroupName`` property of an ``AWS::RDS::DBInstance`` resource.
+ For information about configuring parameters for Amazon RDS DB instances, see [Working with parameter groups](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_WorkingWithParamGroups.html) in the *Amazon RDS User Guide*.
+ For information about configuring parameters for Amazon Aurora DB instances, see [Working with parameter groups](https://docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/USER_WorkingWithParamGroups.html) in the *Amazon Aurora User Guide*.
+  Applying a parameter group to a DB instance may require the DB instance to reboot, resulting in a database outage for the duration of the reboot.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-rds-dbparametergroup.html}
  */
 export type RDSDBParameterGroupProperties = {
     /**
-     * Specifies the name of the DB parameter group
-     * @pattern `^[a-zA-Z]{1}(?:-?[a-zA-Z0-9])*$`
-     */
+       * The name of the DB parameter group.
+       Constraints:
+        +  Must be 1 to 255 letters, numbers, or hyphens.
+        +  First character must be a letter
+        +  Can't end with a hyphen or contain two consecutive hyphens
+        
+       If you don't specify a value for ``DBParameterGroupName`` property, a name is automatically created for the DB parameter group.
+        This value is stored as a lowercase string.
+       * @pattern `^[a-zA-Z]{1}(?:-?[a-zA-Z0-9])*$`
+       */
     DBParameterGroupName?: string;
     /**
      * Provides the customer-specified description for this DB parameter group.
      */
     Description: string;
     /**
-     * The DB parameter group family name.
-     */
+       * The DB parameter group family name. A DB parameter group can be associated with one and only one DB parameter group family, and can be applied only to a DB instance running a DB engine and engine version compatible with that DB parameter group family.
+        The DB parameter group family can't be changed when updating a DB parameter group.
+        To list all of the available parameter group families, use the following command:
+       ``aws rds describe-db-engine-versions --query "DBEngineVersions[].DBParameterGroupFamily"``
+       The output contains duplicates.
+       For more information, see ``CreateDBParameterGroup``.
+       */
     Family: string;
     /**
-     * An array of parameter names and values for the parameter update.
-     */
+       * An array of parameter names and values for the parameter update. At least one parameter name and value must be supplied. Subsequent arguments are optional.
+       RDS for Db2 requires you to bring your own Db2 license. You must enter your IBM customer ID (``rds.ibm_customer_id``) and site number (``rds.ibm_site_id``) before starting a Db2 instance.
+       For more information about DB parameters and DB parameter groups for Amazon RDS DB engines, see [Working with DB Parameter Groups](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_WorkingWithParamGroups.html) in the *Amazon RDS User Guide*.
+       For more information about DB cluster and DB instance parameters and parameter groups for Amazon Aurora DB engines, see [Working with DB Parameter Groups and DB Cluster Parameter Groups](https://docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/USER_WorkingWithParamGroups.html) in the *Amazon Aurora User Guide*.
+        AWS CloudFormation doesn't support specifying an apply method for each individual
+       */
     Parameters?: Record<string, any>;
     /**
-     * An array of key-value pairs to apply to this resource.
-     * @maxLength `50`
-     */
+       * An optional array of key-value pairs to apply to this DB parameter group.
+        Currently, this is the only property that supports drift detection.
+       * @maxLength `50`
+       */
     Tags?: Tag[];
 };
 /**
  * Type definition for `AWS::RDS::DBParameterGroup.Tag`.
- * A key-value pair to associate with a resource.
+ * Metadata assigned to an Amazon RDS resource consisting of a key-value pair.
+ For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-rds-dbparametergroup-tag.html}
  */
 export type Tag = {
     /**
-     * The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
+     * A key is the required name of the tag. The string value can be from 1 to 128 Unicode characters in length and can't be prefixed with ``aws:`` or ``rds:``. The string can only contain only the set of Unicode letters, digits, white-space, '_', '.', ':', '/', '=', '+', '-', '@' (Java regex: "^([\\p{L}\\p{Z}\\p{N}_.:/=+\\-@]*)$").
      * @minLength `1`
      * @maxLength `128`
      */
     Key: string;
     /**
-     * The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
+     * A value is the optional value of the tag. The string value can be from 1 to 256 Unicode characters in length and can't be prefixed with ``aws:`` or ``rds:``. The string can only contain only the set of Unicode letters, digits, white-space, '_', '.', ':', '/', '=', '+', '-', '@' (Java regex: "^([\\p{L}\\p{Z}\\p{N}_.:/=+\\-@]*)$").
      * @minLength `0`
      * @maxLength `256`
      */
     Value?: string;
 };
 /**
- * The AWS::RDS::DBParameterGroup resource creates a custom parameter group for an RDS database family
+ * The ``AWS::RDS::DBParameterGroup`` resource creates a custom parameter group for an RDS database family.
+ This type can be declared in a template and referenced in the ``DBParameterGroupName`` property of an ``AWS::RDS::DBInstance`` resource.
+ For information about configuring parameters for Amazon RDS DB instances, see [Working with parameter groups](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_WorkingWithParamGroups.html) in the *Amazon RDS User Guide*.
+ For information about configuring parameters for Amazon Aurora DB instances, see [Working with parameter groups](https://docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/USER_WorkingWithParamGroups.html) in the *Amazon Aurora User Guide*.
+  Applying a parameter group to a DB instance may require the DB instance to reboot, resulting in a database outage for the duration of the reboot.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-rds-dbparametergroup.html}
  */
 export declare class RDSDBParameterGroup extends $Resource<"AWS::RDS::DBParameterGroup", RDSDBParameterGroupProperties, Record<string, never>> {

package/lib/AWS-RDS-DBParameterGroup.js

@@ -1,6 +1,10 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * The AWS::RDS::DBParameterGroup resource creates a custom parameter group for an RDS database family
+ * The ``AWS::RDS::DBParameterGroup`` resource creates a custom parameter group for an RDS database family.
+ This type can be declared in a template and referenced in the ``DBParameterGroupName`` property of an ``AWS::RDS::DBInstance`` resource.
+ For information about configuring parameters for Amazon RDS DB instances, see [Working with parameter groups](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_WorkingWithParamGroups.html) in the *Amazon RDS User Guide*.
+ For information about configuring parameters for Amazon Aurora DB instances, see [Working with parameter groups](https://docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/USER_WorkingWithParamGroups.html) in the *Amazon Aurora User Guide*.
+  Applying a parameter group to a DB instance may require the DB instance to reboot, resulting in a database outage for the duration of the reboot.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-rds-dbparametergroup.html}
  */
 export class RDSDBParameterGroup extends $Resource {

package/lib/AWS-RDS-DBSubnetGroup.d.ts

@@ -1,43 +1,55 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * The AWS::RDS::DBSubnetGroup resource creates a database subnet group. Subnet groups must contain at least two subnets in two different Availability Zones in the same region.
+ * The ``AWS::RDS::DBSubnetGroup`` resource creates a database subnet group. Subnet groups must contain at least two subnets in two different Availability Zones in the same region.
+ For more information, see [Working with DB subnet groups](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_VPC.WorkingWithRDSInstanceinaVPC.html#USER_VPC.Subnets) in the *Amazon RDS User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-rds-dbsubnetgroup.html}
  */
 export type RDSDBSubnetGroupProperties = {
-    DBSubnetGroupDescription: string;
     /**
-     * @pattern `^(?!default$)[a-zA-Z]{1}[a-zA-Z0-9-_\.\s]{0,254}$`
+     * The description for the DB subnet group.
      */
+    DBSubnetGroupDescription: string;
+    /**
+       * The name for the DB subnet group. This value is stored as a lowercase string.
+       Constraints: Must contain no more than 255 lowercase alphanumeric characters or hyphens. Must not be "Default".
+       Example: ``mysubnetgroup``
+       * @pattern `^(?!default$)[a-zA-Z]{1}[a-zA-Z0-9-_\.\s]{0,254}$`
+       */
     DBSubnetGroupName?: string;
+    /**
+     * The EC2 Subnet IDs for the DB subnet group.
+     */
     SubnetIds: string[];
     /**
-     * An array of key-value pairs to apply to this resource.
+     * An optional array of key-value pairs to apply to this DB subnet group.
      * @maxLength `50`
      */
     Tags?: Tag[];
 };
 /**
  * Type definition for `AWS::RDS::DBSubnetGroup.Tag`.
- * A key-value pair to associate with a resource.
+ * Metadata assigned to an Amazon RDS resource consisting of a key-value pair.
+ For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-rds-dbsubnetgroup-tag.html}
  */
 export type Tag = {
     /**
-     * The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
+     * A key is the required name of the tag. The string value can be from 1 to 128 Unicode characters in length and can't be prefixed with ``aws:`` or ``rds:``. The string can only contain only the set of Unicode letters, digits, white-space, '_', '.', ':', '/', '=', '+', '-', '@' (Java regex: "^([\\p{L}\\p{Z}\\p{N}_.:/=+\\-@]*)$").
      * @minLength `1`
      * @maxLength `128`
      */
     Key: string;
     /**
-     * The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
+     * A value is the optional value of the tag. The string value can be from 1 to 256 Unicode characters in length and can't be prefixed with ``aws:`` or ``rds:``. The string can only contain only the set of Unicode letters, digits, white-space, '_', '.', ':', '/', '=', '+', '-', '@' (Java regex: "^([\\p{L}\\p{Z}\\p{N}_.:/=+\\-@]*)$").
      * @minLength `0`
      * @maxLength `256`
      */
     Value?: string;
 };
 /**
- * The AWS::RDS::DBSubnetGroup resource creates a database subnet group. Subnet groups must contain at least two subnets in two different Availability Zones in the same region.
+ * The ``AWS::RDS::DBSubnetGroup`` resource creates a database subnet group. Subnet groups must contain at least two subnets in two different Availability Zones in the same region.
+ For more information, see [Working with DB subnet groups](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_VPC.WorkingWithRDSInstanceinaVPC.html#USER_VPC.Subnets) in the *Amazon RDS User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-rds-dbsubnetgroup.html}
  */
 export declare class RDSDBSubnetGroup extends $Resource<"AWS::RDS::DBSubnetGroup", RDSDBSubnetGroupProperties, Record<string, never>> {

package/lib/AWS-RDS-DBSubnetGroup.js

@@ -1,6 +1,7 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * The AWS::RDS::DBSubnetGroup resource creates a database subnet group. Subnet groups must contain at least two subnets in two different Availability Zones in the same region.
+ * The ``AWS::RDS::DBSubnetGroup`` resource creates a database subnet group. Subnet groups must contain at least two subnets in two different Availability Zones in the same region.
+ For more information, see [Working with DB subnet groups](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_VPC.WorkingWithRDSInstanceinaVPC.html#USER_VPC.Subnets) in the *Amazon RDS User Guide*.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-rds-dbsubnetgroup.html}
  */
 export class RDSDBSubnetGroup extends $Resource {

package/lib/AWS-SSM-PatchBaseline.d.ts

@@ -47,7 +47,7 @@ export type SSMPatchBaselineProperties = {
     /**
      * Defines the operating system the patch baseline applies to. The Default value is WINDOWS.
      */
-    OperatingSystem?: "WINDOWS" | "AMAZON_LINUX" | "AMAZON_LINUX_2" | "AMAZON_LINUX_2022" | "AMAZON_LINUX_2023" | "UBUNTU" | "REDHAT_ENTERPRISE_LINUX" | "SUSE" | "CENTOS" | "ORACLE_LINUX" | "DEBIAN" | "MACOS" | "RASPBIAN" | "ROCKY_LINUX";
+    OperatingSystem?: "WINDOWS" | "AMAZON_LINUX" | "AMAZON_LINUX_2" | "AMAZON_LINUX_2022" | "AMAZON_LINUX_2023" | "UBUNTU" | "REDHAT_ENTERPRISE_LINUX" | "SUSE" | "CENTOS" | "ORACLE_LINUX" | "DEBIAN" | "MACOS" | "RASPBIAN" | "ROCKY_LINUX" | "ALMA_LINUX";
     /**
      * PatchGroups is used to associate instances with a specific patch baseline
      */

package/lib/AWS-SageMaker-FeatureGroup.d.ts

@@ -43,6 +43,10 @@ export type SageMakerFeatureGroupProperties = {
         EnableOnlineStore?: boolean;
         SecurityConfig?: OnlineStoreSecurityConfig;
         StorageType?: StorageType;
+        /**
+         * TTL configuration of the feature group
+         */
+        TtlDuration?: TtlDuration;
     };
     /**
      * The Record Identifier Feature Name.
@@ -185,6 +189,27 @@ export type ThroughputConfig = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-featuregroup-throughputmode.html}
  */
 export type ThroughputMode = "OnDemand" | "Provisioned";
+/**
+ * Type definition for `AWS::SageMaker::FeatureGroup.TtlDuration`.
+ * TTL configuration of the feature group
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-featuregroup-ttlduration.html}
+ */
+export type TtlDuration = {
+    /**
+     * Unit of ttl configuration
+     */
+    Unit?: Unit;
+    /**
+     * Value of ttl configuration
+     */
+    Value?: number;
+};
+/**
+ * Type definition for `AWS::SageMaker::FeatureGroup.Unit`.
+ * Unit of ttl configuration
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-featuregroup-unit.html}
+ */
+export type Unit = "Seconds" | "Minutes" | "Hours" | "Days" | "Weeks";
 /**
  * Resource Type definition for AWS::SageMaker::FeatureGroup
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-sagemaker-featuregroup.html}

package/lib/AWS-SecretsManager-Secret.d.ts

@@ -1,37 +1,52 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * Resource Type definition for AWS::SecretsManager::Secret
+ * Resource type definition for `AWS::SecretsManager::Secret`.
+ * Creates a new secret. A *secret* can be a password, a set of credentials such as a user name and password, an OAuth token, or other secret information that you store in an encrypted form in Secrets Manager.
+ For RDS master user credentials, see [AWS::RDS::DBCluster MasterUserSecret](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-rds-dbcluster-masterusersecret.html).
+ To retrieve a secret in a CFNshort template, use a *dynamic reference*. For more information, see [Retrieve a secret in an resource](https://docs.aws.amazon.com/secretsmanager/latest/userguide/cfn-example_reference-secret.html).
+ A common scenario is to first create a secret with ``GenerateSecretString``, which generates a password, and then use a dynamic reference to retrieve the username and password from the secret to use as credentials for a new database. See the example *Creating a Redshift cluster and a secret for the admin credentials*.
+ For information about creating a secret in the c
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-secretsmanager-secret.html}
  */
 export type SecretsManagerSecretProperties = {
     /**
-     * (Optional) Specifies a user-provided description of the secret.
+     * The description of the secret.
      */
     Description?: string;
     /**
-     * (Optional) Specifies text data that you want to encrypt and store in this new version of the secret.
-     */
+       * A structure that specifies how to generate a password to encrypt and store in the secret. To include a specific string in the secret, use ``SecretString`` instead. If you omit both ``GenerateSecretString`` and ``SecretString``, you create an empty secret. When you make a change to this property, a new secret version is created.
+       We recommend that you specify the maximum length and include every character type that the system you are generating a password for can support.
+       */
     GenerateSecretString?: GenerateSecretString;
     /**
-     * (Optional) Specifies the ARN, Key ID, or alias of the AWS KMS customer master key (CMK) used to encrypt the SecretString.
-     */
+       * The ARN, key ID, or alias of the KMS key that Secrets Manager uses to encrypt the secret value in the secret. An alias is always prefixed by ``alias/``, for example ``alias/aws/secretsmanager``. For more information, see [About aliases](https://docs.aws.amazon.com/kms/latest/developerguide/alias-about.html).
+       To use a KMS key in a different account, use the key ARN or the alias ARN.
+       If you don't specify this value, then Secrets Manager uses the key ``aws/secretsmanager``. If that key doesn't yet exist, then Secrets Manager creates it for you automatically the first time it encrypts the secret value.
+       If the secret is in a different AWS account from the credentials calling the API, then you can't use ``aws/secretsmanager`` to encrypt the secret, and you must create and use a customer managed KMS key.
+       */
     KmsKeyId?: string;
     /**
-     * The friendly name of the secret. You can use forward slashes in the name to represent a path hierarchy.
-     */
+       * The name of the new secret.
+       The secret name can contain ASCII letters, numbers, and the following characters: /_+=.@-
+       Do not end your secret name with a hyphen followed by six characters. If you do so, you risk confusion and unexpected results when searching for a secret by partial ARN. Secrets Manager automatically adds a hyphen and six random characters after the secret name at the end of the ARN.
+       */
     Name?: string;
     /**
-     * (Optional) A list of ReplicaRegion objects. The ReplicaRegion type consists of a Region (required) and the KmsKeyId which can be an ARN, Key ID, or Alias.
+     * A custom type that specifies a ``Region`` and the ``KmsKeyId`` for a replica secret.
      */
     ReplicaRegions?: ReplicaRegion[];
     /**
-     * (Optional) Specifies text data that you want to encrypt and store in this new version of the secret.
+     * The text to encrypt and store in the secret. We recommend you use a JSON structure of key/value pairs for your secret value. To generate a random password, use ``GenerateSecretString`` instead. If you omit both ``GenerateSecretString`` and ``SecretString``, you create an empty secret. When you make a change to this property, a new secret version is created.
      */
     SecretString?: string;
     /**
-     * The list of user-defined tags associated with the secret. Use tags to manage your AWS resources. For additional information about tags, see TagResource.
-     */
+       * A list of tags to attach to the secret. Each tag is a key and value pair of strings in a JSON text string, for example:
+        ``[{"Key":"CostCenter","Value":"12345"},{"Key":"environment","Value":"production"}]``
+       Secrets Manager tag key names are case sensitive. A tag with the key "ABC" is a different tag from one with key "abc".
+       Stack-level tags, tags you apply to the CloudFormation stack, are also attached to the secret.
+       If you check tags in permissions policies as part of your security strategy, then adding or removing a tag can change permissions. If the completion of this operation would result in you losing your permissions for this secret, then Secrets Manager blocks the operation and returns an ``Access Denied`` error. For more information, see [Control access to secrets using tags](https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access_examples.html#tag-secrets-abac) and [Limit access to identities with tags that match secrets' tags](https://docs.aws.amazo
+       */
     Tags?: Tag[];
 };
 /**
@@ -39,89 +54,93 @@ export type SecretsManagerSecretProperties = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-secretsmanager-secret.html#aws-resource-secretsmanager-secret-return-values}
  */
 export type SecretsManagerSecretAttributes = {
-    /**
-     * secret Id, the Arn of the resource.
-     */
     Id: string;
 };
 /**
  * Type definition for `AWS::SecretsManager::Secret.GenerateSecretString`.
+ * Generates a random password. We recommend that you specify the maximum length and include every character type that the system you are generating a password for can support.
+ *Required permissions:* ``secretsmanager:GetRandomPassword``. For more information, see [IAM policy actions for Secrets Manager](https://docs.aws.amazon.com/service-authorization/latest/reference/list_awssecretsmanager.html#awssecretsmanager-actions-as-permissions) and [Authentication and access control in Secrets Manager](https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access.html).
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-secretsmanager-secret-generatesecretstring.html}
  */
 export type GenerateSecretString = {
     /**
-     * A string that excludes characters in the generated password. By default, all characters from the included sets can be used. The string can be a minimum length of 0 characters and a maximum length of 7168 characters.
+     * A string of the characters that you don't want in the password.
      */
     ExcludeCharacters?: string;
     /**
-     * Specifies the generated password should not include lowercase letters. By default, ecrets Manager disables this parameter, and the generated password can include lowercase False, and the generated password can include lowercase letters.
+     * Specifies whether to exclude lowercase letters from the password. If you don't include this switch, the password can contain lowercase letters.
      */
     ExcludeLowercase?: boolean;
     /**
-     * Specifies that the generated password should exclude digits. By default, Secrets Manager does not enable the parameter, False, and the generated password can include digits.
+     * Specifies whether to exclude numbers from the password. If you don't include this switch, the password can contain numbers.
      */
     ExcludeNumbers?: boolean;
     /**
-     * Specifies that the generated password should not include punctuation characters. The default if you do not include this switch parameter is that punctuation characters can be included.
+     * Specifies whether to exclude the following punctuation characters from the password: ``! " # $ % & ' ( ) * + , - . / : ; < = > ? @ [ \ ] ^ _ ` { | } ~``. If you don't include this switch, the password can contain punctuation.
      */
     ExcludePunctuation?: boolean;
     /**
-     * Specifies that the generated password should not include uppercase letters. The default behavior is False, and the generated password can include uppercase letters.
+     * Specifies whether to exclude uppercase letters from the password. If you don't include this switch, the password can contain uppercase letters.
      */
     ExcludeUppercase?: boolean;
     /**
-     * The JSON key name used to add the generated password to the JSON structure specified by the SecretStringTemplate parameter. If you specify this parameter, then you must also specify SecretStringTemplate.
+     * The JSON key name for the key/value pair, where the value is the generated password. This pair is added to the JSON structure specified by the ``SecretStringTemplate`` parameter. If you specify this parameter, then you must also specify ``SecretStringTemplate``.
      */
     GenerateStringKey?: string;
     /**
-     * Specifies that the generated password can include the space character. By default, Secrets Manager disables this parameter, and the generated password doesn't include space
+     * Specifies whether to include the space character. If you include this switch, the password can contain space characters.
      */
     IncludeSpace?: boolean;
     /**
-     * The desired length of the generated password. The default value if you do not include this parameter is 32 characters.
+     * The length of the password. If you don't include this parameter, the default length is 32 characters.
      */
     PasswordLength?: number;
     /**
-     * Specifies whether the generated password must include at least one of every allowed character type. By default, Secrets Manager enables this parameter, and the generated password includes at least one of every character type.
+     * Specifies whether to include at least one upper and lowercase letter, one number, and one punctuation. If you don't include this switch, the password contains at least one of every character type.
      */
     RequireEachIncludedType?: boolean;
     /**
-     * A properly structured JSON string that the generated password can be added to. If you specify this parameter, then you must also specify GenerateStringKey.
+     * A template that the generated string must match. When you make a change to this property, a new secret version is created.
      */
     SecretStringTemplate?: string;
 };
 /**
  * Type definition for `AWS::SecretsManager::Secret.ReplicaRegion`.
- * A custom type that specifies a Region and the KmsKeyId for a replica secret.
+ * Specifies a ``Region`` and the ``KmsKeyId`` for a replica secret.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-secretsmanager-secret-replicaregion.html}
  */
 export type ReplicaRegion = {
     /**
-     * The ARN, key ID, or alias of the KMS key to encrypt the secret. If you don't include this field, Secrets Manager uses aws/secretsmanager.
+     * The ARN, key ID, or alias of the KMS key to encrypt the secret. If you don't include this field, Secrets Manager uses ``aws/secretsmanager``.
      */
     KmsKeyId?: string;
     /**
-     * (Optional) A string that represents a Region, for example "us-east-1".
+     * A string that represents a ``Region``, for example "us-east-1".
      */
     Region: string;
 };
 /**
  * Type definition for `AWS::SecretsManager::Secret.Tag`.
- * A list of tags to attach to the secret. Each tag is a key and value pair of strings in a JSON text string.
+ * A structure that contains information about a tag.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-secretsmanager-secret-tag.html}
  */
 export type Tag = {
     /**
-     * The value for the tag. You can specify a value that's 1 to 256 characters in length.
+     * The key identifier, or name, of the tag.
      */
     Key: string;
     /**
-     * The key name of the tag. You can specify a value that's 1 to 128 Unicode characters in length and can't be prefixed with aws.
+     * The string value associated with the key of the tag.
      */
     Value: string;
 };
 /**
- * Resource Type definition for AWS::SecretsManager::Secret
+ * Resource type definition for `AWS::SecretsManager::Secret`.
+ * Creates a new secret. A *secret* can be a password, a set of credentials such as a user name and password, an OAuth token, or other secret information that you store in an encrypted form in Secrets Manager.
+ For RDS master user credentials, see [AWS::RDS::DBCluster MasterUserSecret](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-rds-dbcluster-masterusersecret.html).
+ To retrieve a secret in a CFNshort template, use a *dynamic reference*. For more information, see [Retrieve a secret in an resource](https://docs.aws.amazon.com/secretsmanager/latest/userguide/cfn-example_reference-secret.html).
+ A common scenario is to first create a secret with ``GenerateSecretString``, which generates a password, and then use a dynamic reference to retrieve the username and password from the secret to use as credentials for a new database. See the example *Creating a Redshift cluster and a secret for the admin credentials*.
+ For information about creating a secret in the c
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-secretsmanager-secret.html}
  */
 export declare class SecretsManagerSecret extends $Resource<"AWS::SecretsManager::Secret", SecretsManagerSecretProperties, SecretsManagerSecretAttributes> {

package/lib/AWS-SecretsManager-Secret.js

@@ -1,6 +1,11 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * Resource Type definition for AWS::SecretsManager::Secret
+ * Resource type definition for `AWS::SecretsManager::Secret`.
+ * Creates a new secret. A *secret* can be a password, a set of credentials such as a user name and password, an OAuth token, or other secret information that you store in an encrypted form in Secrets Manager.
+ For RDS master user credentials, see [AWS::RDS::DBCluster MasterUserSecret](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-rds-dbcluster-masterusersecret.html).
+ To retrieve a secret in a CFNshort template, use a *dynamic reference*. For more information, see [Retrieve a secret in an resource](https://docs.aws.amazon.com/secretsmanager/latest/userguide/cfn-example_reference-secret.html).
+ A common scenario is to first create a secret with ``GenerateSecretString``, which generates a password, and then use a dynamic reference to retrieve the username and password from the secret to use as credentials for a new database. See the example *Creating a Redshift cluster and a secret for the admin credentials*.
+ For information about creating a secret in the c
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-secretsmanager-secret.html}
  */
 export class SecretsManagerSecret extends $Resource {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@awboost/cfn-resource-types",
-  "version": "0.1.25",
+  "version": "0.1.27",
   "publishConfig": {
     "access": "public"
   },