@awboost/cfn-resource-types 0.1.33 → 0.1.35

package/lib/AWS-SQS-Queue.d.ts

@@ -1,73 +1,105 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-builder/template";
 /**
- * Resource Type definition for AWS::SQS::Queue
+ * The ``AWS::SQS::Queue`` resource creates an SQS standard or FIFO queue.
+ Keep the following caveats in mind:
+  +  If you don't specify the ``FifoQueue`` property, SQS creates a standard queue.
+  You can't change the queue type after you create it and you can't convert an existing standard queue into a FIFO queue. You must either create a new FIFO queue for your application or delete your existing standard queue and recreate it as a FIFO queue. For more information, see [Moving from a standard queue to a FIFO queue](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/FIFO-queues-moving.html) in the *Developer Guide*.
+   +  If you don't provide a value for a property, the queue is created with the default value for the property.
+  +  If you delete a queue, you must wait at least 60 seconds before creating a queue with the same name.
+  +  To successfully create a new queue, you must provide a queue name that adheres to the [limits related to queues](https://docs.aw
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-sqs-queue.html}
  */
 export type SQSQueueProperties = {
     /**
-     * For first-in-first-out (FIFO) queues, specifies whether to enable content-based deduplication. During the deduplication interval, Amazon SQS treats messages that are sent with identical content as duplicates and delivers only one copy of the message.
+     * For first-in-first-out (FIFO) queues, specifies whether to enable content-based deduplication. During the deduplication interval, SQS treats messages that are sent with identical content as duplicates and delivers only one copy of the message. For more information, see the ``ContentBasedDeduplication`` attribute for the ``CreateQueue`` action in the *API Reference*.
      */
     ContentBasedDeduplication?: boolean;
     /**
-     * Specifies whether message deduplication occurs at the message group or queue level. Valid values are messageGroup and queue.
-     */
+       * For high throughput for FIFO queues, specifies whether message deduplication occurs at the message group or queue level. Valid values are ``messageGroup`` and ``queue``.
+       To enable high throughput for a FIFO queue, set this attribute to ``messageGroup`` *and* set the ``FifoThroughputLimit`` attribute to ``perMessageGroupId``. If you set these attributes to anything other than these values, normal throughput is in effect and deduplication occurs as specified. For more information, see [High throughput for FIFO queues](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/high-throughput-fifo.html) and [Quotas related to messages](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/quotas-messages.html) in the *Developer Guide*.
+       */
     DeduplicationScope?: string;
     /**
-     * The time in seconds for which the delivery of all messages in the queue is delayed. You can specify an integer value of 0 to 900 (15 minutes). The default value is 0.
+     * The time in seconds for which the delivery of all messages in the queue is delayed. You can specify an integer value of ``0`` to ``900`` (15 minutes). The default value is ``0``.
      */
     DelaySeconds?: number;
     /**
-     * If set to true, creates a FIFO queue. If you don't specify this property, Amazon SQS creates a standard queue.
+     * If set to true, creates a FIFO queue. If you don't specify this property, SQS creates a standard queue. For more information, see [FIFO queues](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/FIFO-queues.html) in the *Developer Guide*.
      */
     FifoQueue?: boolean;
     /**
-     * Specifies whether the FIFO queue throughput quota applies to the entire queue or per message group. Valid values are perQueue and perMessageGroupId. The perMessageGroupId value is allowed only when the value for DeduplicationScope is messageGroup.
-     */
+       * For high throughput for FIFO queues, specifies whether the FIFO queue throughput quota applies to the entire queue or per message group. Valid values are ``perQueue`` and ``perMessageGroupId``.
+       To enable high throughput for a FIFO queue, set this attribute to ``perMessageGroupId`` *and* set the ``DeduplicationScope`` attribute to ``messageGroup``. If you set these attributes to anything other than these values, normal throughput is in effect and deduplication occurs as specified. For more information, see [High throughput for FIFO queues](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/high-throughput-fifo.html) and [Quotas related to messages](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/quotas-messages.html) in the *Developer Guide*.
+       */
     FifoThroughputLimit?: string;
     /**
-     * The length of time in seconds for which Amazon SQS can reuse a data key to encrypt or decrypt messages before calling AWS KMS again. The value must be an integer between 60 (1 minute) and 86,400 (24 hours). The default is 300 (5 minutes).
-     */
+       * The length of time in seconds for which SQS can reuse a data key to encrypt or decrypt messages before calling KMS again. The value must be an integer between 60 (1 minute) and 86,400 (24 hours). The default is 300 (5 minutes).
+        A shorter time period provides better security, but results in more calls to KMS, which might incur charges after Free Tier. For more information, see [Encryption at rest](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/sqs-server-side-encryption.html#sqs-how-does-the-data-key-reuse-period-work) in the *Developer Guide*.
+       */
     KmsDataKeyReusePeriodSeconds?: number;
     /**
-     * The ID of an AWS managed customer master key (CMK) for Amazon SQS or a custom CMK. To use the AWS managed CMK for Amazon SQS, specify the (default) alias alias/aws/sqs.
-     */
+       * The ID of an AWS Key Management Service (KMS) for SQS, or a custom KMS. To use the AWS managed KMS for SQS, specify a (default) alias ARN, alias name (e.g. ``alias/aws/sqs``), key ARN, or key ID. For more information, see the following:
+        +   [Encryption at rest](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/sqs-server-side-encryption.html) in the *Developer Guide*
+        +   [CreateQueue](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/APIReference/API_CreateQueue.html) in the *API Reference*
+        +   [Request Parameters](https://docs.aws.amazon.com/kms/latest/APIReference/API_DescribeKey.html#API_DescribeKey_RequestParameters) in the *Key Management Service API Reference*
+        +   The Key Management Service (KMS) section of the [Best Practices](https://docs.aws.amazon.com/https://d0.awsstatic.com/whitepapers/aws-kms-best-practices.pdf) whitepaper
+       */
     KmsMasterKeyId?: string;
     /**
-     * The limit of how many bytes that a message can contain before Amazon SQS rejects it. You can specify an integer value from 1,024 bytes (1 KiB) to 262,144 bytes (256 KiB). The default value is 262,144 (256 KiB).
+     * The limit of how many bytes that a message can contain before SQS rejects it. You can specify an integer value from ``1,024`` bytes (1 KiB) to ``262,144`` bytes (256 KiB). The default value is ``262,144`` (256 KiB).
      */
     MaximumMessageSize?: number;
     /**
-     * The number of seconds that Amazon SQS retains a message. You can specify an integer value from 60 seconds (1 minute) to 1,209,600 seconds (14 days). The default value is 345,600 seconds (4 days).
+     * The number of seconds that SQS retains a message. You can specify an integer value from ``60`` seconds (1 minute) to ``1,209,600`` seconds (14 days). The default value is ``345,600`` seconds (4 days).
      */
     MessageRetentionPeriod?: number;
     /**
-     * A name for the queue. To create a FIFO queue, the name of your FIFO queue must end with the .fifo suffix.
-     */
+       * A name for the queue. To create a FIFO queue, the name of your FIFO queue must end with the ``.fifo`` suffix. For more information, see [FIFO queues](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/FIFO-queues.html) in the *Developer Guide*.
+       If you don't specify a name, CFN generates a unique physical ID and uses that ID for the queue name. For more information, see [Name type](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-name.html) in the *User Guide*.
+        If you specify a name, you can't perform updates that require replacement of this resource. You can perform updates that require no or some interruption. If you must replace the resource, specify a new name.
+       */
     QueueName?: string;
     /**
-     * Specifies the duration, in seconds, that the ReceiveMessage action call waits until a message is in the queue in order to include it in the response, rather than returning an empty response if a message isn't yet available. You can specify an integer from 1 to 20. Short polling is used as the default or when you specify 0 for this property.
+     * Specifies the duration, in seconds, that the ReceiveMessage action call waits until a message is in the queue in order to include it in the response, rather than returning an empty response if a message isn't yet available. You can specify an integer from 1 to 20. Short polling is used as the default or when you specify 0 for this property. For more information, see [Consuming messages using long polling](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/sqs-short-and-long-polling.html#sqs-long-polling) in the *Developer Guide*.
      */
     ReceiveMessageWaitTimeSeconds?: number;
     /**
-     * The string that includes the parameters for the permissions for the dead-letter queue redrive permission and which source queues can specify dead-letter queues as a JSON object.
-     */
+       * The string that includes the parameters for the permissions for the dead-letter queue redrive permission and which source queues can specify dead-letter queues as a JSON object. The parameters are as follows:
+        +  ``redrivePermission``: The permission type that defines which source queues can specify the current queue as the dead-letter queue. Valid values are:
+        +  ``allowAll``: (Default) Any source queues in this AWS account in the same Region can specify this queue as the dead-letter queue.
+        +  ``denyAll``: No source queues can specify this queue as the dead-letter queue.
+        +  ``byQueue``: Only queues specified by the ``sourceQueueArns`` parameter can specify this queue as the dead-letter queue.
+        
+        +  ``sourceQueueArns``: The Amazon Resource Names (ARN)s of the source queues that can specify this queue as the dead-letter queue and redrive messages. You can specify this parameter only when the ``redrivePermission`` parameter is set to ``byQueue``. You can specify up to 10 source q
+       */
     RedriveAllowPolicy?: Record<string, any> | string;
     /**
-     * A string that includes the parameters for the dead-letter queue functionality (redrive policy) of the source queue.
-     */
+       * The string that includes the parameters for the dead-letter queue functionality of the source queue as a JSON object. The parameters are as follows:
+        +  ``deadLetterTargetArn``: The Amazon Resource Name (ARN) of the dead-letter queue to which SQS moves messages after the value of ``maxReceiveCount`` is exceeded.
+        +  ``maxReceiveCount``: The number of times a message is delivered to the source queue before being moved to the dead-letter queue. When the ``ReceiveCount`` for a message exceeds the ``maxReceiveCount`` for a queue, SQS moves the message to the dead-letter-queue.
+        
+        The dead-letter queue of a FIFO queue must also be a FIFO queue. Similarly, the dead-letter queue of a standard queue must also be a standard queue.
+         *JSON*
+        ``{ "deadLetterTargetArn" : String, "maxReceiveCount" : Integer }``
+        *YAML*
+        ``deadLetterTargetArn : String``
+        ``maxReceiveCount : Integer``
+       */
     RedrivePolicy?: Record<string, any> | string;
     /**
-     * Enables server-side queue encryption using SQS owned encryption keys. Only one server-side encryption option is supported per queue (e.g. SSE-KMS or SSE-SQS ).
+     * Enables server-side queue encryption using SQS owned encryption keys. Only one server-side encryption option is supported per queue (for example, [SSE-KMS](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/sqs-configure-sse-existing-queue.html) or [SSE-SQS](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/sqs-configure-sqs-sse-queue.html)). When ``SqsManagedSseEnabled`` is not defined, ``SSE-SQS`` encryption is enabled by default.
      */
     SqsManagedSseEnabled?: boolean;
     /**
-     * The tags that you attach to this queue.
+     * The tags that you attach to this queue. For more information, see [Resource tag](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-resource-tags.html) in the *User Guide*.
      */
     Tags?: Tag[];
     /**
-     * The length of time during which a message will be unavailable after a message is delivered from the queue. This blocks other components from receiving the same message and gives the initial component time to process and delete the message from the queue. Values must be from 0 to 43,200 seconds (12 hours). If you don't specify a value, AWS CloudFormation uses the default value of 30 seconds.
-     */
+       * The length of time during which a message will be unavailable after a message is delivered from the queue. This blocks other components from receiving the same message and gives the initial component time to process and delete the message from the queue.
+       Values must be from 0 to 43,200 seconds (12 hours). If you don't specify a value, AWS CloudFormation uses the default value of 30 seconds.
+       For more information about SQS queue visibility timeouts, see [Visibility timeout](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/sqs-visibility-timeout.html) in the *Developer Guide*.
+       */
     VisibilityTimeout?: number;
 };
 /**
@@ -75,13 +107,7 @@ export type SQSQueueProperties = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-sqs-queue.html#aws-resource-sqs-queue-return-values}
  */
 export type SQSQueueAttributes = {
-    /**
-     * Amazon Resource Name (ARN) of the queue.
-     */
     Arn: string;
-    /**
-     * URL of the source queue.
-     */
     QueueUrl: string;
 };
 /**
@@ -99,7 +125,13 @@ export type Tag = {
     Value: string;
 };
 /**
- * Resource Type definition for AWS::SQS::Queue
+ * The ``AWS::SQS::Queue`` resource creates an SQS standard or FIFO queue.
+ Keep the following caveats in mind:
+  +  If you don't specify the ``FifoQueue`` property, SQS creates a standard queue.
+  You can't change the queue type after you create it and you can't convert an existing standard queue into a FIFO queue. You must either create a new FIFO queue for your application or delete your existing standard queue and recreate it as a FIFO queue. For more information, see [Moving from a standard queue to a FIFO queue](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/FIFO-queues-moving.html) in the *Developer Guide*.
+   +  If you don't provide a value for a property, the queue is created with the default value for the property.
+  +  If you delete a queue, you must wait at least 60 seconds before creating a queue with the same name.
+  +  To successfully create a new queue, you must provide a queue name that adheres to the [limits related to queues](https://docs.aw
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-sqs-queue.html}
  */
 export declare class SQSQueue extends $Resource<"AWS::SQS::Queue", SQSQueueProperties, SQSQueueAttributes> {

package/lib/AWS-SQS-Queue.js

@@ -1,6 +1,12 @@
 import { Resource as $Resource } from "@awboost/cfn-template-builder/template/resource";
 /**
- * Resource Type definition for AWS::SQS::Queue
+ * The ``AWS::SQS::Queue`` resource creates an SQS standard or FIFO queue.
+ Keep the following caveats in mind:
+  +  If you don't specify the ``FifoQueue`` property, SQS creates a standard queue.
+  You can't change the queue type after you create it and you can't convert an existing standard queue into a FIFO queue. You must either create a new FIFO queue for your application or delete your existing standard queue and recreate it as a FIFO queue. For more information, see [Moving from a standard queue to a FIFO queue](https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/FIFO-queues-moving.html) in the *Developer Guide*.
+   +  If you don't provide a value for a property, the queue is created with the default value for the property.
+  +  If you delete a queue, you must wait at least 60 seconds before creating a queue with the same name.
+  +  To successfully create a new queue, you must provide a queue name that adheres to the [limits related to queues](https://docs.aw
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-sqs-queue.html}
  */
 export class SQSQueue extends $Resource {

package/lib/AWS-SSM-Parameter.d.ts

@@ -9,7 +9,7 @@ import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-
  */
 export type SSMParameterProperties = {
     /**
-     * A regular expression used to validate the parameter value. For example, for String types with values restricted to numbers, you can specify the following: ``AllowedPattern=^\d+$``
+     * A regular expression used to validate the parameter value. For example, for ``String`` types with values restricted to numbers, you can specify the following: ``AllowedPattern=^\d+$``
      */
     AllowedPattern?: string;
     /**

package/lib/AWS-SecretsManager-Secret.d.ts

@@ -6,7 +6,8 @@ import type { ResourceOptions as $ResourceOptions } from "@awboost/cfn-template-
  For RDS master user credentials, see [AWS::RDS::DBCluster MasterUserSecret](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-rds-dbcluster-masterusersecret.html).
  To retrieve a secret in a CFNshort template, use a *dynamic reference*. For more information, see [Retrieve a secret in an resource](https://docs.aws.amazon.com/secretsmanager/latest/userguide/cfn-example_reference-secret.html).
  A common scenario is to first create a secret with ``GenerateSecretString``, which generates a password, and then use a dynamic reference to retrieve the username and password from the secret to use as credentials for a new database. See the example *Creating a Redshift cluster and a secret for the admin credentials*.
- For information about creating a secret in the c
+ For information about creating a secret in the console, see [Create a secret](https://docs.aws.amazon.com/secretsmanager/latest/userguide/manage_create-basic-secret.html). For information about creating a secret using the CLI or SDK, see [CreateSecret](https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_CreateSecret.html).
+ For information about retrieving a secret in code, see [Retrieve secrets from Secrets Manager](https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieving-secrets.html).
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-secretsmanager-secret.html}
  */
 export type SecretsManagerSecretProperties = {
@@ -45,7 +46,15 @@ export type SecretsManagerSecretProperties = {
         ``[{"Key":"CostCenter","Value":"12345"},{"Key":"environment","Value":"production"}]``
        Secrets Manager tag key names are case sensitive. A tag with the key "ABC" is a different tag from one with key "abc".
        Stack-level tags, tags you apply to the CloudFormation stack, are also attached to the secret.
-       If you check tags in permissions policies as part of your security strategy, then adding or removing a tag can change permissions. If the completion of this operation would result in you losing your permissions for this secret, then Secrets Manager blocks the operation and returns an ``Access Denied`` error. For more information, see [Control access to secrets using tags](https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access_examples.html#tag-secrets-abac) and [Limit access to identities with tags that match secrets' tags](https://docs.aws.amazo
+       If you check tags in permissions policies as part of your security strategy, then adding or removing a tag can change permissions. If the completion of this operation would result in you losing your permissions for this secret, then Secrets Manager blocks the operation and returns an ``Access Denied`` error. For more information, see [Control access to secrets using tags](https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access_examples.html#tag-secrets-abac) and [Limit access to identities with tags that match secrets' tags](https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and-access_examples.html#auth-and-access_tags2).
+       For information about how to format a JSON parameter for the various command line tool environments, see [Using JSON for Parameters](https://docs.aws.amazon.com/cli/latest/userguide/cli-using-param.html#cli-using-param-json). If your command-line tool or SDK requires quotation marks around the parameter, you should use single quotes to avoid confusion with the double quotes required in the JSON text.
+       The following restrictions apply to tags:
+        +  Maximum number of tags per secret: 50
+        +  Maximum key length: 127 Unicode characters in UTF-8
+        +  Maximum value length: 255 Unicode characters in UTF-8
+        +  Tag keys and values are case sensitive.
+        +  Do not use the ``aws:`` prefix in your tag names or values because AWS reserves it for AWS use. You can't edit or delete tag names or values with this prefix. Tags with this prefix do not count against your tags per secret limit.
+        +  If you use your tagging schema across multiple services and resources, other services might have restrictions on allowed characters. Generally allowed characters: letters, spaces, and numbers representable in UTF-8, plus the following special characters: + - = . _ : / @.
        */
     Tags?: Tag[];
 };
@@ -140,7 +149,8 @@ export type Tag = {
  For RDS master user credentials, see [AWS::RDS::DBCluster MasterUserSecret](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-rds-dbcluster-masterusersecret.html).
  To retrieve a secret in a CFNshort template, use a *dynamic reference*. For more information, see [Retrieve a secret in an resource](https://docs.aws.amazon.com/secretsmanager/latest/userguide/cfn-example_reference-secret.html).
  A common scenario is to first create a secret with ``GenerateSecretString``, which generates a password, and then use a dynamic reference to retrieve the username and password from the secret to use as credentials for a new database. See the example *Creating a Redshift cluster and a secret for the admin credentials*.
- For information about creating a secret in the c
+ For information about creating a secret in the console, see [Create a secret](https://docs.aws.amazon.com/secretsmanager/latest/userguide/manage_create-basic-secret.html). For information about creating a secret using the CLI or SDK, see [CreateSecret](https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_CreateSecret.html).
+ For information about retrieving a secret in code, see [Retrieve secrets from Secrets Manager](https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieving-secrets.html).
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-secretsmanager-secret.html}
  */
 export declare class SecretsManagerSecret extends $Resource<"AWS::SecretsManager::Secret", SecretsManagerSecretProperties, SecretsManagerSecretAttributes> {

package/lib/AWS-SecretsManager-Secret.js

@@ -5,7 +5,8 @@ import { Resource as $Resource } from "@awboost/cfn-template-builder/template/re
  For RDS master user credentials, see [AWS::RDS::DBCluster MasterUserSecret](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-rds-dbcluster-masterusersecret.html).
  To retrieve a secret in a CFNshort template, use a *dynamic reference*. For more information, see [Retrieve a secret in an resource](https://docs.aws.amazon.com/secretsmanager/latest/userguide/cfn-example_reference-secret.html).
  A common scenario is to first create a secret with ``GenerateSecretString``, which generates a password, and then use a dynamic reference to retrieve the username and password from the secret to use as credentials for a new database. See the example *Creating a Redshift cluster and a secret for the admin credentials*.
- For information about creating a secret in the c
+ For information about creating a secret in the console, see [Create a secret](https://docs.aws.amazon.com/secretsmanager/latest/userguide/manage_create-basic-secret.html). For information about creating a secret using the CLI or SDK, see [CreateSecret](https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_CreateSecret.html).
+ For information about retrieving a secret in code, see [Retrieve secrets from Secrets Manager](https://docs.aws.amazon.com/secretsmanager/latest/userguide/retrieving-secrets.html).
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-secretsmanager-secret.html}
  */
 export class SecretsManagerSecret extends $Resource {

package/lib/AWS-WAFv2-RuleGroup.d.ts

@@ -212,7 +212,7 @@ export type CookieMatchPattern = {
 };
 /**
  * Type definition for `AWS::WAFv2::RuleGroup.Cookies`.
- * Includes headers of a web request.
+ * Includes cookies of a web request.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-cookies.html}
  */
 export type Cookies = {
@@ -332,13 +332,17 @@ export type FieldToMatch = {
      */
     Body?: Body;
     /**
-     * Includes headers of a web request.
+     * Includes cookies of a web request.
      */
     Cookies?: Cookies;
     /**
      * Includes headers of a web request.
      */
     Headers?: Headers;
+    /**
+     * Includes the JA3 fingerprint of a web request.
+     */
+    JA3Fingerprint?: JA3Fingerprint;
     /**
      * Inspect the request body as JSON. The request body immediately follows the request headers.
      */
@@ -460,6 +464,14 @@ export type IPSetReferenceStatement = {
     Arn: string;
     IPSetForwardedIPConfig?: IPSetForwardedIPConfiguration;
 };
+/**
+ * Type definition for `AWS::WAFv2::RuleGroup.JA3Fingerprint`.
+ * Includes the JA3 fingerprint of a web request.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-ja3fingerprint.html}
+ */
+export type JA3Fingerprint = {
+    FallbackBehavior: "MATCH" | "NO_MATCH";
+};
 /**
  * Type definition for `AWS::WAFv2::RuleGroup.JsonBody`.
  * Inspect the request body as JSON. The request body immediately follows the request headers.

package/lib/AWS-WAFv2-WebACL.d.ts

@@ -266,7 +266,7 @@ export type CookieMatchPattern = {
 };
 /**
  * Type definition for `AWS::WAFv2::WebACL.Cookies`.
- * Includes headers of a web request.
+ * Includes cookies of a web request.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-cookies.html}
  */
 export type Cookies = {
@@ -425,13 +425,17 @@ export type FieldToMatch = {
      */
     Body?: Body;
     /**
-     * Includes headers of a web request.
+     * Includes cookies of a web request.
      */
     Cookies?: Cookies;
     /**
      * Includes headers of a web request.
      */
     Headers?: Headers;
+    /**
+     * Includes the JA3 fingerprint of a web request.
+     */
+    JA3Fingerprint?: JA3Fingerprint;
     /**
      * Inspect the request body as JSON. The request body immediately follows the request headers.
      */
@@ -553,6 +557,14 @@ export type IPSetReferenceStatement = {
     Arn: string;
     IPSetForwardedIPConfig?: IPSetForwardedIPConfiguration;
 };
+/**
+ * Type definition for `AWS::WAFv2::WebACL.JA3Fingerprint`.
+ * Includes the JA3 fingerprint of a web request.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-ja3fingerprint.html}
+ */
+export type JA3Fingerprint = {
+    FallbackBehavior: "MATCH" | "NO_MATCH";
+};
 /**
  * Type definition for `AWS::WAFv2::WebACL.JsonBody`.
  * Inspect the request body as JSON. The request body immediately follows the request headers.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@awboost/cfn-resource-types",
-  "version": "0.1.33",
+  "version": "0.1.35",
   "publishConfig": {
     "access": "public"
   },