@aws-sdk/client-acm-pca 3.686.0 → 3.691.0

package/dist-types/models/models_0.d.ts

@@ -32,29 +32,29 @@ export interface ASN1Subject {
      * 			located.</p>
      * @public
      */
-    Country?: string;
+    Country?: string | undefined;
     /**
      * <p>Legal name of the organization with which the certificate subject is affiliated.
      * 		</p>
      * @public
      */
-    Organization?: string;
+    Organization?: string | undefined;
     /**
      * <p>A subdivision or unit of the organization (such as sales or finance) with which the
      * 			certificate subject is affiliated.</p>
      * @public
      */
-    OrganizationalUnit?: string;
+    OrganizationalUnit?: string | undefined;
     /**
      * <p>Disambiguating information for the certificate subject.</p>
      * @public
      */
-    DistinguishedNameQualifier?: string;
+    DistinguishedNameQualifier?: string | undefined;
     /**
      * <p>State in which the subject of the certificate is located.</p>
      * @public
      */
-    State?: string;
+    State?: string | undefined;
     /**
      * <p>For CA and end-entity certificates in a private PKI, the common name (CN) can be any
      * 			string within the length limit. </p>
@@ -62,54 +62,54 @@ export interface ASN1Subject {
      * 			domain name (FQDN) associated with the certificate subject.</p>
      * @public
      */
-    CommonName?: string;
+    CommonName?: string | undefined;
     /**
      * <p>The certificate serial number.</p>
      * @public
      */
-    SerialNumber?: string;
+    SerialNumber?: string | undefined;
     /**
      * <p>The locality (such as a city or town) in which the certificate subject is
      * 			located.</p>
      * @public
      */
-    Locality?: string;
+    Locality?: string | undefined;
     /**
      * <p>A title such as Mr. or Ms., which is pre-pended to the name to refer formally to the
      * 			certificate subject.</p>
      * @public
      */
-    Title?: string;
+    Title?: string | undefined;
     /**
      * <p>Family name. In the US and the UK, for example, the surname of an individual is
      * 			ordered last. In Asian cultures the surname is typically ordered first.</p>
      * @public
      */
-    Surname?: string;
+    Surname?: string | undefined;
     /**
      * <p>First name.</p>
      * @public
      */
-    GivenName?: string;
+    GivenName?: string | undefined;
     /**
      * <p>Concatenation that typically contains the first letter of the <b>GivenName</b>, the first letter of the middle name if one exists, and the
      * 			first letter of the <b>Surname</b>.</p>
      * @public
      */
-    Initials?: string;
+    Initials?: string | undefined;
     /**
      * <p>Typically a shortened version of a longer <b>GivenName</b>.
      * 			For example, Jonathan is often shortened to John. Elizabeth is often shortened to Beth,
      * 			Liz, or Eliza.</p>
      * @public
      */
-    Pseudonym?: string;
+    Pseudonym?: string | undefined;
     /**
      * <p>Typically a qualifier appended to the name of an individual. Examples include Jr. for
      * 			junior, Sr. for senior, and III for third.</p>
      * @public
      */
-    GenerationQualifier?: string;
+    GenerationQualifier?: string | undefined;
     /**
      * <p/>
      *          <p>Contains a sequence of one or more X.500 relative distinguished names (RDNs), each of
@@ -120,7 +120,7 @@ export interface ASN1Subject {
      *          </note>
      * @public
      */
-    CustomAttributes?: CustomAttribute[];
+    CustomAttributes?: CustomAttribute[] | undefined;
 }
 /**
  * <p>Describes an Electronic Data Interchange (EDI) entity as described in as defined in
@@ -138,7 +138,7 @@ export interface EdiPartyName {
      * <p>Specifies the name assigner.</p>
      * @public
      */
-    NameAssigner?: string;
+    NameAssigner?: string | undefined;
 }
 /**
  * <p>Defines a custom ASN.1 X.400 <code>GeneralName</code> using an object identifier (OID)
@@ -170,18 +170,18 @@ export interface GeneralName {
      * <p>Represents <code>GeneralName</code> using an <code>OtherName</code> object.</p>
      * @public
      */
-    OtherName?: OtherName;
+    OtherName?: OtherName | undefined;
     /**
      * <p>Represents <code>GeneralName</code> as an <a href="https://datatracker.ietf.org/doc/html/rfc822">RFC 822</a> email
      * 			address.</p>
      * @public
      */
-    Rfc822Name?: string;
+    Rfc822Name?: string | undefined;
     /**
      * <p>Represents <code>GeneralName</code> as a DNS name.</p>
      * @public
      */
-    DnsName?: string;
+    DnsName?: string | undefined;
     /**
      * <p>Contains information about the certificate subject. The <code>Subject</code> field in
      * 			the certificate identifies the entity that owns or controls the public key in the
@@ -190,27 +190,27 @@ export interface GeneralName {
      * 			distinguished names (RDNs). The RDNs are separated by commas in the certificate.</p>
      * @public
      */
-    DirectoryName?: ASN1Subject;
+    DirectoryName?: ASN1Subject | undefined;
     /**
      * <p>Represents <code>GeneralName</code> as an <code>EdiPartyName</code> object.</p>
      * @public
      */
-    EdiPartyName?: EdiPartyName;
+    EdiPartyName?: EdiPartyName | undefined;
     /**
      * <p>Represents <code>GeneralName</code> as a URI.</p>
      * @public
      */
-    UniformResourceIdentifier?: string;
+    UniformResourceIdentifier?: string | undefined;
     /**
      * <p>Represents <code>GeneralName</code> as an IPv4 or IPv6 address.</p>
      * @public
      */
-    IpAddress?: string;
+    IpAddress?: string | undefined;
     /**
      * <p> Represents <code>GeneralName</code> as an object identifier (OID).</p>
      * @public
      */
-    RegisteredId?: string;
+    RegisteredId?: string | undefined;
 }
 /**
  * @public
@@ -239,12 +239,12 @@ export interface AccessMethod {
      * 				(OID)</a>.</p>
      * @public
      */
-    CustomObjectIdentifier?: string;
+    CustomObjectIdentifier?: string | undefined;
     /**
      * <p>Specifies the <code>AccessMethod</code>.</p>
      * @public
      */
-    AccessMethodType?: AccessMethodType;
+    AccessMethodType?: AccessMethodType | undefined;
 }
 /**
  * <p>Provides access information used by the <code>authorityInfoAccess</code> and
@@ -273,47 +273,47 @@ export interface KeyUsage {
      * <p> Key can be used for digital signing.</p>
      * @public
      */
-    DigitalSignature?: boolean;
+    DigitalSignature?: boolean | undefined;
     /**
      * <p>Key can be used for non-repudiation.</p>
      * @public
      */
-    NonRepudiation?: boolean;
+    NonRepudiation?: boolean | undefined;
     /**
      * <p>Key can be used to encipher data.</p>
      * @public
      */
-    KeyEncipherment?: boolean;
+    KeyEncipherment?: boolean | undefined;
     /**
      * <p>Key can be used to decipher data.</p>
      * @public
      */
-    DataEncipherment?: boolean;
+    DataEncipherment?: boolean | undefined;
     /**
      * <p>Key can be used in a key-agreement protocol.</p>
      * @public
      */
-    KeyAgreement?: boolean;
+    KeyAgreement?: boolean | undefined;
     /**
      * <p>Key can be used to sign certificates.</p>
      * @public
      */
-    KeyCertSign?: boolean;
+    KeyCertSign?: boolean | undefined;
     /**
      * <p>Key can be used to sign CRLs.</p>
      * @public
      */
-    CRLSign?: boolean;
+    CRLSign?: boolean | undefined;
     /**
      * <p>Key can be used only to encipher data.</p>
      * @public
      */
-    EncipherOnly?: boolean;
+    EncipherOnly?: boolean | undefined;
     /**
      * <p>Key can be used only to decipher data.</p>
      * @public
      */
-    DecipherOnly?: boolean;
+    DecipherOnly?: boolean | undefined;
 }
 /**
  * <p>Describes the certificate extensions to be added to the certificate signing request
@@ -326,14 +326,14 @@ export interface CsrExtensions {
      * 			certificate.</p>
      * @public
      */
-    KeyUsage?: KeyUsage;
+    KeyUsage?: KeyUsage | undefined;
     /**
      * <p>For CA certificates, provides a path to additional information pertaining to the CA,
      * 			such as revocation and policy. For more information, see <a href="https://datatracker.ietf.org/doc/html/rfc5280#section-4.2.2.2">Subject
      * 				Information Access</a> in RFC 5280.</p>
      * @public
      */
-    SubjectInformationAccess?: AccessDescription[];
+    SubjectInformationAccess?: AccessDescription[] | undefined;
 }
 /**
  * @public
@@ -401,7 +401,7 @@ export interface CertificateAuthorityConfiguration {
      * 			request (CSR).</p>
      * @public
      */
-    CsrExtensions?: CsrExtensions;
+    CsrExtensions?: CsrExtensions | undefined;
 }
 /**
  * @public
@@ -588,7 +588,7 @@ export interface CrlConfiguration {
      * <p>Validity period of the CRL in days.</p>
      * @public
      */
-    ExpirationInDays?: number;
+    ExpirationInDays?: number | undefined;
     /**
      * <p>Name inserted into the certificate <b>CRL Distribution
      * 				Points</b> extension that enables the use of an alias for the CRL
@@ -601,7 +601,7 @@ export interface CrlConfiguration {
      *          </note>
      * @public
      */
-    CustomCname?: string;
+    CustomCname?: string | undefined;
     /**
      * <p>Name of the S3 bucket that contains the CRL. If you do not provide a value for the
      * 				<b>CustomCname</b> argument, the name of your S3 bucket
@@ -614,7 +614,7 @@ export interface CrlConfiguration {
      *          </note>
      * @public
      */
-    S3BucketName?: string;
+    S3BucketName?: string | undefined;
     /**
      * <p>Determines whether the CRL will be publicly readable or privately held in the CRL
      * 			Amazon S3 bucket. If you choose PUBLIC_READ, the CRL will be accessible over the public
@@ -633,12 +633,12 @@ export interface CrlConfiguration {
      * 				bucket</a>.</p>
      * @public
      */
-    S3ObjectAcl?: S3ObjectAcl;
+    S3ObjectAcl?: S3ObjectAcl | undefined;
     /**
      * <p>Configures the behavior of the CRL Distribution Point extension for certificates issued by your certificate authority. If this field is not provided, then the CRl Distribution Point Extension will be present and contain the default CRL URL.</p>
      * @public
      */
-    CrlDistributionPointExtensionConfiguration?: CrlDistributionPointExtensionConfiguration;
+    CrlDistributionPointExtensionConfiguration?: CrlDistributionPointExtensionConfiguration | undefined;
 }
 /**
  * <p>Contains information to enable and configure Online Certificate Status Protocol (OCSP)
@@ -667,7 +667,7 @@ export interface OcspConfiguration {
      * 				(OCSP) </a> in the <i>Amazon Web Services Private Certificate Authority User Guide</i>.</p>
      * @public
      */
-    OcspCustomCname?: string;
+    OcspCustomCname?: string | undefined;
 }
 /**
  * <p>Certificate revocation information used by the <a href="https://docs.aws.amazon.com/privateca/latest/APIReference/API_CreateCertificateAuthority.html">CreateCertificateAuthority</a> and <a href="https://docs.aws.amazon.com/privateca/latest/APIReference/API_UpdateCertificateAuthority.html">UpdateCertificateAuthority</a> actions. Your private certificate authority (CA)
@@ -687,14 +687,14 @@ export interface RevocationConfiguration {
      * 	every 15 minutes.</p>
      * @public
      */
-    CrlConfiguration?: CrlConfiguration;
+    CrlConfiguration?: CrlConfiguration | undefined;
     /**
      * <p>Configuration of Online Certificate Status Protocol (OCSP) support, if any, maintained
      * 			by your private CA. When you revoke a certificate, OCSP responses may take up to 60 minutes
      * 	to reflect the new status.</p>
      * @public
      */
-    OcspConfiguration?: OcspConfiguration;
+    OcspConfiguration?: OcspConfiguration | undefined;
 }
 /**
  * <p>Tags are labels that you can use to identify and organize your private CAs. Each tag
@@ -713,7 +713,7 @@ export interface Tag {
      * <p>Value of the tag.</p>
      * @public
      */
-    Value?: string;
+    Value?: string | undefined;
 }
 /**
  * @public
@@ -765,7 +765,7 @@ export interface CreateCertificateAuthorityRequest {
      * 			types.</p>
      * @public
      */
-    RevocationConfiguration?: RevocationConfiguration;
+    RevocationConfiguration?: RevocationConfiguration | undefined;
     /**
      * <p>The type of the certificate authority.</p>
      * @public
@@ -781,7 +781,7 @@ export interface CreateCertificateAuthorityRequest {
      * 			authorities.</p>
      * @public
      */
-    IdempotencyToken?: string;
+    IdempotencyToken?: string | undefined;
     /**
      * <p>Specifies a cryptographic key management compliance standard used for handling CA
      * 			keys.</p>
@@ -797,14 +797,14 @@ export interface CreateCertificateAuthorityRequest {
      *          </note>
      * @public
      */
-    KeyStorageSecurityStandard?: KeyStorageSecurityStandard;
+    KeyStorageSecurityStandard?: KeyStorageSecurityStandard | undefined;
     /**
      * <p>Key-value pairs that will be attached to the new private CA. You can associate up to
      * 			50 tags with a private CA. For information using tags with IAM to manage permissions,
      * 			see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_iam-tags.html">Controlling Access Using IAM Tags</a>.</p>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
     /**
      * <p>Specifies whether the CA issues general-purpose certificates that typically require a
      * 			revocation mechanism, or short-lived certificates that may optionally omit revocation
@@ -813,7 +813,7 @@ export interface CreateCertificateAuthorityRequest {
      *          <p>The default value is GENERAL_PURPOSE.</p>
      * @public
      */
-    UsageMode?: CertificateAuthorityUsageMode;
+    UsageMode?: CertificateAuthorityUsageMode | undefined;
 }
 /**
  * @public
@@ -828,7 +828,7 @@ export interface CreateCertificateAuthorityResponse {
      * 		</p>
      * @public
      */
-    CertificateAuthorityArn?: string;
+    CertificateAuthorityArn?: string | undefined;
 }
 /**
  * <p>One or more of the specified arguments was not valid.</p>
@@ -924,13 +924,13 @@ export interface CreateCertificateAuthorityAuditReportResponse {
      * <p>An alphanumeric string that contains a report identifier.</p>
      * @public
      */
-    AuditReportId?: string;
+    AuditReportId?: string | undefined;
     /**
      * <p>The <b>key</b> that uniquely identifies the report file in
      * 			your S3 bucket.</p>
      * @public
      */
-    S3Key?: string;
+    S3Key?: string | undefined;
 }
 /**
  * <p>The requested Amazon Resource Name (ARN) does not refer to an existing
@@ -1031,7 +1031,7 @@ export interface CreatePermissionRequest {
      * <p>The ID of the calling account.</p>
      * @public
      */
-    SourceAccount?: string;
+    SourceAccount?: string | undefined;
     /**
      * <p>The actions that the specified Amazon Web Services service principal can use. These include
      * 				<code>IssueCertificate</code>, <code>GetCertificate</code>, and
@@ -1082,7 +1082,7 @@ export interface DeleteCertificateAuthorityRequest {
      * 			anywhere from 7 to 30 days, with 30 being the default.</p>
      * @public
      */
-    PermanentDeletionTimeInDays?: number;
+    PermanentDeletionTimeInDays?: number | undefined;
 }
 /**
  * @public
@@ -1109,7 +1109,7 @@ export interface DeletePermissionRequest {
      * <p>The Amazon Web Services account that calls this action.</p>
      * @public
      */
-    SourceAccount?: string;
+    SourceAccount?: string | undefined;
 }
 /**
  * @public
@@ -1202,69 +1202,69 @@ export interface CertificateAuthority {
      *             </code>.</p>
      * @public
      */
-    Arn?: string;
+    Arn?: string | undefined;
     /**
      * <p>The Amazon Web Services account ID that owns the certificate authority.</p>
      * @public
      */
-    OwnerAccount?: string;
+    OwnerAccount?: string | undefined;
     /**
      * <p>Date and time at which your private CA was created.</p>
      * @public
      */
-    CreatedAt?: Date;
+    CreatedAt?: Date | undefined;
     /**
      * <p>Date and time at which your private CA was last updated.</p>
      * @public
      */
-    LastStateChangeAt?: Date;
+    LastStateChangeAt?: Date | undefined;
     /**
      * <p>Type of your private CA.</p>
      * @public
      */
-    Type?: CertificateAuthorityType;
+    Type?: CertificateAuthorityType | undefined;
     /**
      * <p>Serial number of your private CA.</p>
      * @public
      */
-    Serial?: string;
+    Serial?: string | undefined;
     /**
      * <p>Status of your private CA.</p>
      * @public
      */
-    Status?: CertificateAuthorityStatus;
+    Status?: CertificateAuthorityStatus | undefined;
     /**
      * <p>Date and time before which your private CA certificate is not valid.</p>
      * @public
      */
-    NotBefore?: Date;
+    NotBefore?: Date | undefined;
     /**
      * <p>Date and time after which your private CA certificate is not valid.</p>
      * @public
      */
-    NotAfter?: Date;
+    NotAfter?: Date | undefined;
     /**
      * <p>Reason the request to create your private CA failed.</p>
      * @public
      */
-    FailureReason?: FailureReason;
+    FailureReason?: FailureReason | undefined;
     /**
      * <p>Your private CA configuration.</p>
      * @public
      */
-    CertificateAuthorityConfiguration?: CertificateAuthorityConfiguration;
+    CertificateAuthorityConfiguration?: CertificateAuthorityConfiguration | undefined;
     /**
      * <p>Information about the Online Certificate Status Protocol (OCSP) configuration or
      * 			certificate revocation list (CRL) created and maintained by your private CA. </p>
      * @public
      */
-    RevocationConfiguration?: RevocationConfiguration;
+    RevocationConfiguration?: RevocationConfiguration | undefined;
     /**
      * <p>The period during which a deleted CA can be restored. For more information, see the
      * 				<code>PermanentDeletionTimeInDays</code> parameter of the <a href="https://docs.aws.amazon.com/privateca/latest/APIReference/API_DeleteCertificateAuthorityRequest.html">DeleteCertificateAuthorityRequest</a> action. </p>
      * @public
      */
-    RestorableUntil?: Date;
+    RestorableUntil?: Date | undefined;
     /**
      * <p>Defines a cryptographic key management compliance standard used for handling CA keys. </p>
      *          <p>Default: FIPS_140_2_LEVEL_3_OR_HIGHER</p>
@@ -1275,7 +1275,7 @@ export interface CertificateAuthority {
      * 			be created in this region with the specified security standard."</p>
      * @public
      */
-    KeyStorageSecurityStandard?: KeyStorageSecurityStandard;
+    KeyStorageSecurityStandard?: KeyStorageSecurityStandard | undefined;
     /**
      * <p>Specifies whether the CA issues general-purpose certificates that typically require a
      * 			revocation mechanism, or short-lived certificates that may optionally omit revocation
@@ -1284,7 +1284,7 @@ export interface CertificateAuthority {
      *          <p>The default value is GENERAL_PURPOSE.</p>
      * @public
      */
-    UsageMode?: CertificateAuthorityUsageMode;
+    UsageMode?: CertificateAuthorityUsageMode | undefined;
 }
 /**
  * @public
@@ -1295,7 +1295,7 @@ export interface DescribeCertificateAuthorityResponse {
      * 			CA.</p>
      * @public
      */
-    CertificateAuthority?: CertificateAuthority;
+    CertificateAuthority?: CertificateAuthority | undefined;
 }
 /**
  * @public
@@ -1337,23 +1337,23 @@ export interface DescribeCertificateAuthorityAuditReportResponse {
      * <p>Specifies whether report creation is in progress, has succeeded, or has failed.</p>
      * @public
      */
-    AuditReportStatus?: AuditReportStatus;
+    AuditReportStatus?: AuditReportStatus | undefined;
     /**
      * <p>Name of the S3 bucket that contains the report.</p>
      * @public
      */
-    S3BucketName?: string;
+    S3BucketName?: string | undefined;
     /**
      * <p>S3 <b>key</b> that uniquely identifies the report file in
      * 			your S3 bucket.</p>
      * @public
      */
-    S3Key?: string;
+    S3Key?: string | undefined;
     /**
      * <p>The date and time at which the report was created.</p>
      * @public
      */
-    CreatedAt?: Date;
+    CreatedAt?: Date | undefined;
 }
 /**
  * @public
@@ -1388,13 +1388,13 @@ export interface GetCertificateResponse {
      * 			parameter.</p>
      * @public
      */
-    Certificate?: string;
+    Certificate?: string | undefined;
     /**
      * <p>The base64 PEM-encoded certificate chain that chains up to the root CA certificate
      * 			that you used to sign your private CA certificate. </p>
      * @public
      */
-    CertificateChain?: string;
+    CertificateChain?: string | undefined;
 }
 /**
  * @public
@@ -1418,7 +1418,7 @@ export interface GetCertificateAuthorityCertificateResponse {
      * <p>Base64-encoded certificate authority (CA) certificate.</p>
      * @public
      */
-    Certificate?: string;
+    Certificate?: string | undefined;
     /**
      * <p>Base64-encoded certificate chain that includes any intermediate certificates and
      * 			chains up to root certificate that you used to sign your private CA certificate. The
@@ -1426,7 +1426,7 @@ export interface GetCertificateAuthorityCertificateResponse {
      * 			be null.</p>
      * @public
      */
-    CertificateChain?: string;
+    CertificateChain?: string | undefined;
 }
 /**
  * @public
@@ -1451,7 +1451,7 @@ export interface GetCertificateAuthorityCsrResponse {
      * 			certificate.</p>
      * @public
      */
-    Csr?: string;
+    Csr?: string | undefined;
 }
 /**
  * @public
@@ -1474,7 +1474,7 @@ export interface GetPolicyResponse {
      * <p>The policy attached to the private CA as a JSON document.</p>
      * @public
      */
-    Policy?: string;
+    Policy?: string | undefined;
 }
 /**
  * <p>The certificate authority certificate you are importing does not comply with
@@ -1517,7 +1517,7 @@ export interface ImportCertificateAuthorityCertificateRequest {
      * 			root CA, there is no chain.</p>
      * @public
      */
-    CertificateChain?: Uint8Array;
+    CertificateChain?: Uint8Array | undefined;
 }
 /**
  * <p>The request action cannot be performed or is prohibited.</p>
@@ -1603,7 +1603,7 @@ export interface PolicyInformation {
      * 			certification practice statement (CPS) qualifier.</p>
      * @public
      */
-    PolicyQualifiers?: PolicyQualifierInfo[];
+    PolicyQualifiers?: PolicyQualifierInfo[] | undefined;
 }
 /**
  * <p/>
@@ -1634,7 +1634,7 @@ export interface CustomExtension {
      *          <p>Specifies the critical flag of the X.509 extension.</p>
      * @public
      */
-    Critical?: boolean;
+    Critical?: boolean | undefined;
 }
 /**
  * @public
@@ -1666,13 +1666,13 @@ export interface ExtendedKeyUsage {
      * 				5280</a>.</p>
      * @public
      */
-    ExtendedKeyUsageType?: ExtendedKeyUsageType;
+    ExtendedKeyUsageType?: ExtendedKeyUsageType | undefined;
     /**
      * <p>Specifies a custom <code>ExtendedKeyUsage</code> with an object identifier
      * 			(OID).</p>
      * @public
      */
-    ExtendedKeyUsageObjectIdentifier?: string;
+    ExtendedKeyUsageObjectIdentifier?: string | undefined;
 }
 /**
  * <p>Contains X.509 extension information for a certificate.</p>
@@ -1690,26 +1690,26 @@ export interface Extensions {
      * 			certificate.</p>
      * @public
      */
-    CertificatePolicies?: PolicyInformation[];
+    CertificatePolicies?: PolicyInformation[] | undefined;
     /**
      * <p>Specifies additional purposes for which the certified public key may be used other
      * 			than basic purposes indicated in the <code>KeyUsage</code> extension.</p>
      * @public
      */
-    ExtendedKeyUsage?: ExtendedKeyUsage[];
+    ExtendedKeyUsage?: ExtendedKeyUsage[] | undefined;
     /**
      * <p>Defines one or more purposes for which the key contained in the certificate can be
      * 			used. Default value for each option is false.</p>
      * @public
      */
-    KeyUsage?: KeyUsage;
+    KeyUsage?: KeyUsage | undefined;
     /**
      * <p>The subject alternative name extension allows identities to be bound to the subject of
      * 			the certificate. These identities may be included in addition to or in place of the
      * 			identity in the subject field of the certificate.</p>
      * @public
      */
-    SubjectAlternativeNames?: GeneralName[];
+    SubjectAlternativeNames?: GeneralName[] | undefined;
     /**
      * <p/>
      *          <p>Contains a sequence of one or more X.509 extensions, each of which consists of an
@@ -1719,7 +1719,7 @@ export interface Extensions {
      *          </p>
      * @public
      */
-    CustomExtensions?: CustomExtension[];
+    CustomExtensions?: CustomExtension[] | undefined;
 }
 /**
  * <p>Contains X.509 certificate information to be placed in an issued certificate. An
@@ -1735,7 +1735,7 @@ export interface ApiPassthrough {
      * <p>Specifies X.509 extension information for a certificate.</p>
      * @public
      */
-    Extensions?: Extensions;
+    Extensions?: Extensions | undefined;
     /**
      * <p>Contains information about the certificate subject. The <code>Subject</code> field in
      * 			the certificate identifies the entity that owns or controls the public key in the
@@ -1744,7 +1744,7 @@ export interface ApiPassthrough {
      * 			distinguished names (RDNs). The RDNs are separated by commas in the certificate.</p>
      * @public
      */
-    Subject?: ASN1Subject;
+    Subject?: ASN1Subject | undefined;
 }
 /**
  * @public
@@ -1843,7 +1843,7 @@ export interface IssueCertificateRequest {
      * 				operation rules</a> to determine what information is used.</p>
      * @public
      */
-    ApiPassthrough?: ApiPassthrough;
+    ApiPassthrough?: ApiPassthrough | undefined;
     /**
      * <p>The Amazon Resource Name (ARN) that was returned when you called <a href="https://docs.aws.amazon.com/privateca/latest/APIReference/API_CreateCertificateAuthority.html">CreateCertificateAuthority</a>. This must be of the form:</p>
      *          <p>
@@ -1900,7 +1900,7 @@ export interface IssueCertificateRequest {
      * 				Templates</a>.</p>
      * @public
      */
-    TemplateArn?: string;
+    TemplateArn?: string | undefined;
     /**
      * <p>Information describing the end of the validity period of the certificate. This
      * 			parameter sets the “Not After” date for the certificate.</p>
@@ -1934,7 +1934,7 @@ export interface IssueCertificateRequest {
      * 			in RFC 5280.</p>
      * @public
      */
-    ValidityNotBefore?: Validity;
+    ValidityNotBefore?: Validity | undefined;
     /**
      * <p>Alphanumeric string that can be used to distinguish between calls to the <b>IssueCertificate</b> action. Idempotency tokens for <b>IssueCertificate</b> time out after five  minutes. Therefore, if
      * 			you call <b>IssueCertificate</b> multiple times with the same
@@ -1943,7 +1943,7 @@ export interface IssueCertificateRequest {
      * 			each call, Amazon Web Services Private CA recognizes that you are requesting multiple certificates.</p>
      * @public
      */
-    IdempotencyToken?: string;
+    IdempotencyToken?: string | undefined;
 }
 /**
  * @public
@@ -1958,7 +1958,7 @@ export interface IssueCertificateResponse {
      *          </p>
      * @public
      */
-    CertificateArn?: string;
+    CertificateArn?: string | undefined;
 }
 /**
  * <p>The certificate signing request is invalid.</p>
@@ -2010,20 +2010,20 @@ export interface ListCertificateAuthoritiesRequest {
      *          <p>Although the maximum value is 1000, the action only returns a maximum of 100 items.</p>
      * @public
      */
-    MaxResults?: number;
+    MaxResults?: number | undefined;
     /**
      * <p>Use this parameter when paginating results in a subsequent request after you receive a
      * 			response with truncated results. Set it to the value of the <code>NextToken</code>
      * 			parameter from the response you just received.</p>
      * @public
      */
-    NextToken?: string;
+    NextToken?: string | undefined;
     /**
      * <p>Use this parameter to filter the returned set of certificate authorities based on
      * 			their owner. The default is SELF.</p>
      * @public
      */
-    ResourceOwner?: ResourceOwner;
+    ResourceOwner?: ResourceOwner | undefined;
 }
 /**
  * @public
@@ -2034,12 +2034,12 @@ export interface ListCertificateAuthoritiesResponse {
      * 				<code>NextToken</code> parameter in a subsequent pagination request.</p>
      * @public
      */
-    NextToken?: string;
+    NextToken?: string | undefined;
     /**
      * <p>Summary information about each certificate authority you have created.</p>
      * @public
      */
-    CertificateAuthorities?: CertificateAuthority[];
+    CertificateAuthorities?: CertificateAuthority[] | undefined;
 }
 /**
  * @public
@@ -2053,13 +2053,13 @@ export interface ListPermissionsRequest {
      * 			additional items.</p>
      * @public
      */
-    MaxResults?: number;
+    MaxResults?: number | undefined;
     /**
      * <p>When paginating results, use this parameter in a subsequent request after you receive
      * 			a response with truncated results. Set it to the value of <b>NextToken</b> from the response you just received.</p>
      * @public
      */
-    NextToken?: string;
+    NextToken?: string | undefined;
     /**
      * <p>The Amazon Resource Number (ARN) of the private CA to inspect. You can find the ARN by
      * 			calling the <a href="https://docs.aws.amazon.com/privateca/latest/APIReference/API_ListCertificateAuthorities.html">ListCertificateAuthorities</a> action. This must be of the form:
@@ -2085,33 +2085,33 @@ export interface Permission {
      * 			issued.</p>
      * @public
      */
-    CertificateAuthorityArn?: string;
+    CertificateAuthorityArn?: string | undefined;
     /**
      * <p>The time at which the permission was created.</p>
      * @public
      */
-    CreatedAt?: Date;
+    CreatedAt?: Date | undefined;
     /**
      * <p>The Amazon Web Services service or entity that holds the permission. At this time, the only valid
      * 			principal is <code>acm.amazonaws.com</code>.</p>
      * @public
      */
-    Principal?: string;
+    Principal?: string | undefined;
     /**
      * <p>The ID of the account that assigned the permission.</p>
      * @public
      */
-    SourceAccount?: string;
+    SourceAccount?: string | undefined;
     /**
      * <p>The private CA actions that can be performed by the designated Amazon Web Services service.</p>
      * @public
      */
-    Actions?: ActionType[];
+    Actions?: ActionType[] | undefined;
     /**
      * <p>The name of the policy that is associated with the permission.</p>
      * @public
      */
-    Policy?: string;
+    Policy?: string | undefined;
 }
 /**
  * @public
@@ -2122,13 +2122,13 @@ export interface ListPermissionsResponse {
      * 		</p>
      * @public
      */
-    NextToken?: string;
+    NextToken?: string | undefined;
     /**
      * <p>Summary information about each permission assigned by the specified private CA,
      * 			including the action enabled, the policy provided, and the time of creation.</p>
      * @public
      */
-    Permissions?: Permission[];
+    Permissions?: Permission[] | undefined;
 }
 /**
  * @public
@@ -2142,13 +2142,13 @@ export interface ListTagsRequest {
      * 			additional items.</p>
      * @public
      */
-    MaxResults?: number;
+    MaxResults?: number | undefined;
     /**
      * <p>Use this parameter when paginating results in a subsequent request after you receive a
      * 			response with truncated results. Set it to the value of <b>NextToken</b> from the response you just received.</p>
      * @public
      */
-    NextToken?: string;
+    NextToken?: string | undefined;
     /**
      * <p>The Amazon Resource Name (ARN) that was returned when you called the <a href="https://docs.aws.amazon.com/privateca/latest/APIReference/API_CreateCertificateAuthority.html">CreateCertificateAuthority</a> action. This must be of the form: </p>
      *          <p>
@@ -2168,12 +2168,12 @@ export interface ListTagsResponse {
      * 		</p>
      * @public
      */
-    NextToken?: string;
+    NextToken?: string | undefined;
     /**
      * <p>The tags associated with your private CA.</p>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * @public
@@ -2370,10 +2370,10 @@ export interface UpdateCertificateAuthorityRequest {
      *          </important>
      * @public
      */
-    RevocationConfiguration?: RevocationConfiguration;
+    RevocationConfiguration?: RevocationConfiguration | undefined;
     /**
      * <p>Status of your private CA.</p>
      * @public
      */
-    Status?: CertificateAuthorityStatus;
+    Status?: CertificateAuthorityStatus | undefined;
 }