@aws-sdk/client-acm-pca 3.743.0 → 3.746.0

package/dist-cjs/index.js

@@ -36,6 +36,7 @@ __export(src_exports, {
   CreateCertificateAuthorityAuditReportCommand: () => CreateCertificateAuthorityAuditReportCommand,
   CreateCertificateAuthorityCommand: () => CreateCertificateAuthorityCommand,
   CreatePermissionCommand: () => CreatePermissionCommand,
+  CrlType: () => CrlType,
   DeleteCertificateAuthorityCommand: () => DeleteCertificateAuthorityCommand,
   DeletePermissionCommand: () => DeletePermissionCommand,
   DeletePolicyCommand: () => DeletePolicyCommand,
@@ -297,6 +298,10 @@ var KeyStorageSecurityStandard = {
   FIPS_140_2_LEVEL_2_OR_HIGHER: "FIPS_140_2_LEVEL_2_OR_HIGHER",
   FIPS_140_2_LEVEL_3_OR_HIGHER: "FIPS_140_2_LEVEL_3_OR_HIGHER"
 };
+var CrlType = {
+  COMPLETE: "COMPLETE",
+  PARTITIONED: "PARTITIONED"
+};
 var S3ObjectAcl = {
   BUCKET_OWNER_FULL_CONTROL: "BUCKET_OWNER_FULL_CONTROL",
   PUBLIC_READ: "PUBLIC_READ"
@@ -2010,6 +2015,7 @@ var waitUntilCertificateIssued = /* @__PURE__ */ __name(async (params, input) =>
   SigningAlgorithm,
   CertificateAuthorityType,
   KeyStorageSecurityStandard,
+  CrlType,
   S3ObjectAcl,
   CertificateAuthorityUsageMode,
   InvalidArgsException,

package/dist-es/models/models_0.js

@@ -29,6 +29,10 @@ export const KeyStorageSecurityStandard = {
     FIPS_140_2_LEVEL_2_OR_HIGHER: "FIPS_140_2_LEVEL_2_OR_HIGHER",
     FIPS_140_2_LEVEL_3_OR_HIGHER: "FIPS_140_2_LEVEL_3_OR_HIGHER",
 };
+export const CrlType = {
+    COMPLETE: "COMPLETE",
+    PARTITIONED: "PARTITIONED",
+};
 export const S3ObjectAcl = {
     BUCKET_OWNER_FULL_CONTROL: "BUCKET_OWNER_FULL_CONTROL",
     PUBLIC_READ: "PUBLIC_READ",

package/dist-types/commands/CreateCertificateAuthorityCommand.d.ts

@@ -149,6 +149,8 @@ declare const CreateCertificateAuthorityCommand_base: {
  *       CrlDistributionPointExtensionConfiguration: { // CrlDistributionPointExtensionConfiguration
  *         OmitExtension: true || false, // required
  *       },
+ *       CrlType: "COMPLETE" || "PARTITIONED",
+ *       CustomPath: "STRING_VALUE",
  *     },
  *     OcspConfiguration: { // OcspConfiguration
  *       Enabled: true || false, // required

package/dist-types/commands/DescribeCertificateAuthorityCommand.d.ts

@@ -185,6 +185,8 @@ declare const DescribeCertificateAuthorityCommand_base: {
  * //         CrlDistributionPointExtensionConfiguration: { // CrlDistributionPointExtensionConfiguration
  * //           OmitExtension: true || false, // required
  * //         },
+ * //         CrlType: "COMPLETE" || "PARTITIONED",
+ * //         CustomPath: "STRING_VALUE",
  * //       },
  * //       OcspConfiguration: { // OcspConfiguration
  * //         Enabled: true || false, // required

package/dist-types/commands/ListCertificateAuthoritiesCommand.d.ts

@@ -149,6 +149,8 @@ declare const ListCertificateAuthoritiesCommand_base: {
  * //           CrlDistributionPointExtensionConfiguration: { // CrlDistributionPointExtensionConfiguration
  * //             OmitExtension: true || false, // required
  * //           },
+ * //           CrlType: "COMPLETE" || "PARTITIONED",
+ * //           CustomPath: "STRING_VALUE",
  * //         },
  * //         OcspConfiguration: { // OcspConfiguration
  * //           Enabled: true || false, // required

package/dist-types/commands/UpdateCertificateAuthorityCommand.d.ts

@@ -56,6 +56,8 @@ declare const UpdateCertificateAuthorityCommand_base: {
  *       CrlDistributionPointExtensionConfiguration: { // CrlDistributionPointExtensionConfiguration
  *         OmitExtension: true || false, // required
  *       },
+ *       CrlType: "COMPLETE" || "PARTITIONED",
+ *       CustomPath: "STRING_VALUE",
  *     },
  *     OcspConfiguration: { // OcspConfiguration
  *       Enabled: true || false, // required

package/dist-types/models/models_0.d.ts

@@ -446,6 +446,18 @@ export interface CrlDistributionPointExtensionConfiguration {
      */
     OmitExtension: boolean | undefined;
 }
+/**
+ * @public
+ * @enum
+ */
+export declare const CrlType: {
+    readonly COMPLETE: "COMPLETE";
+    readonly PARTITIONED: "PARTITIONED";
+};
+/**
+ * @public
+ */
+export type CrlType = (typeof CrlType)[keyof typeof CrlType];
 /**
  * @public
  * @enum
@@ -639,6 +651,29 @@ export interface CrlConfiguration {
      * @public
      */
     CrlDistributionPointExtensionConfiguration?: CrlDistributionPointExtensionConfiguration | undefined;
+    /**
+     * <p>Choose whether to use a partitioned or complete CRL. Your choice determines the maximum number of certificates that the certificate authority can issue and revoke, as described in the <a href="https://docs.aws.amazon.com/general/latest/gr/pca.html#limits_pca-connector-ad">Amazon Web Services Private CA quotas</a>.</p>
+     *          <ul>
+     *             <li>
+     *                <p>
+     *                   <code>PARTITIONED</code> - The default setting. Partitioned CRLs are an especially good option for devices that have limited processing power or storage capacity, such as certain IoT devices. Compared to complete CRLs, partitioned CRLs dramatically increase the number of certificates your private CA can issue. Each certificate that Amazon Web Services Private CA issues is bound to a specific CRL partition through the CRL distribution point (CDP) defined in <a href="https://datatracker.ietf.org/doc/html/rfc5280">RFC 5280</a>.</p>
+     *                <important>
+     *                   <p>To make sure that your client fetches the CRL from a valid endpoint, we recommend that you programmatically validate that the CRL's issuing distribution point (IDP) URI matches the certificate's CDP URI. Amazon Web Services Private CA marks the IDP extension as critical, which your client must be able to process.</p>
+     *                </important>
+     *             </li>
+     *             <li>
+     *                <p>
+     *                   <code>COMPLETE</code> - Amazon Web Services Private CA maintains a single CRL file for all unexpired certificates issued by a CA that have been revoked for any reason.</p>
+     *             </li>
+     *          </ul>
+     * @public
+     */
+    CrlType?: CrlType | undefined;
+    /**
+     * <p>Designates a custom file path in S3 for CRL(s). For example, <code>http://&lt;CustomName&gt;/&lt;CustomPath&gt;/&lt;CrlPartition_GUID&gt;.crl</code>. You can change the custom path up to five times.</p>
+     * @public
+     */
+    CustomPath?: string | undefined;
 }
 /**
  * <p>Contains information to enable and configure Online Certificate Status Protocol (OCSP)

package/dist-types/ts3.4/models/models_0.d.ts

@@ -110,6 +110,11 @@ export type KeyStorageSecurityStandard =
 export interface CrlDistributionPointExtensionConfiguration {
   OmitExtension: boolean | undefined;
 }
+export declare const CrlType: {
+  readonly COMPLETE: "COMPLETE";
+  readonly PARTITIONED: "PARTITIONED";
+};
+export type CrlType = (typeof CrlType)[keyof typeof CrlType];
 export declare const S3ObjectAcl: {
   readonly BUCKET_OWNER_FULL_CONTROL: "BUCKET_OWNER_FULL_CONTROL";
   readonly PUBLIC_READ: "PUBLIC_READ";
@@ -124,6 +129,8 @@ export interface CrlConfiguration {
   CrlDistributionPointExtensionConfiguration?:
     | CrlDistributionPointExtensionConfiguration
     | undefined;
+  CrlType?: CrlType | undefined;
+  CustomPath?: string | undefined;
 }
 export interface OcspConfiguration {
   Enabled: boolean | undefined;

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-acm-pca",
   "description": "AWS SDK for JavaScript Acm Pca Client for Node.js, Browser and React Native",
-  "version": "3.743.0",
+  "version": "3.746.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-acm-pca",
@@ -20,38 +20,38 @@
   "dependencies": {
     "@aws-crypto/sha256-browser": "5.2.0",
     "@aws-crypto/sha256-js": "5.2.0",
-    "@aws-sdk/core": "3.734.0",
-    "@aws-sdk/credential-provider-node": "3.743.0",
+    "@aws-sdk/core": "3.744.0",
+    "@aws-sdk/credential-provider-node": "3.744.0",
     "@aws-sdk/middleware-host-header": "3.734.0",
     "@aws-sdk/middleware-logger": "3.734.0",
     "@aws-sdk/middleware-recursion-detection": "3.734.0",
-    "@aws-sdk/middleware-user-agent": "3.743.0",
+    "@aws-sdk/middleware-user-agent": "3.744.0",
     "@aws-sdk/region-config-resolver": "3.734.0",
     "@aws-sdk/types": "3.734.0",
     "@aws-sdk/util-endpoints": "3.743.0",
     "@aws-sdk/util-user-agent-browser": "3.734.0",
-    "@aws-sdk/util-user-agent-node": "3.743.0",
+    "@aws-sdk/util-user-agent-node": "3.744.0",
     "@smithy/config-resolver": "^4.0.1",
-    "@smithy/core": "^3.1.1",
+    "@smithy/core": "^3.1.2",
     "@smithy/fetch-http-handler": "^5.0.1",
     "@smithy/hash-node": "^4.0.1",
     "@smithy/invalid-dependency": "^4.0.1",
     "@smithy/middleware-content-length": "^4.0.1",
-    "@smithy/middleware-endpoint": "^4.0.2",
-    "@smithy/middleware-retry": "^4.0.3",
-    "@smithy/middleware-serde": "^4.0.1",
+    "@smithy/middleware-endpoint": "^4.0.3",
+    "@smithy/middleware-retry": "^4.0.4",
+    "@smithy/middleware-serde": "^4.0.2",
     "@smithy/middleware-stack": "^4.0.1",
     "@smithy/node-config-provider": "^4.0.1",
     "@smithy/node-http-handler": "^4.0.2",
     "@smithy/protocol-http": "^5.0.1",
-    "@smithy/smithy-client": "^4.1.2",
+    "@smithy/smithy-client": "^4.1.3",
     "@smithy/types": "^4.1.0",
     "@smithy/url-parser": "^4.0.1",
     "@smithy/util-base64": "^4.0.0",
     "@smithy/util-body-length-browser": "^4.0.0",
     "@smithy/util-body-length-node": "^4.0.0",
-    "@smithy/util-defaults-mode-browser": "^4.0.3",
-    "@smithy/util-defaults-mode-node": "^4.0.3",
+    "@smithy/util-defaults-mode-browser": "^4.0.4",
+    "@smithy/util-defaults-mode-node": "^4.0.4",
     "@smithy/util-endpoints": "^3.0.1",
     "@smithy/util-middleware": "^4.0.1",
     "@smithy/util-retry": "^4.0.1",