@aws-sdk/client-acm 3.1019.0 → 3.1021.0

package/dist-types/ACMClient.d.ts

@@ -5,35 +5,36 @@ import { type EndpointInputConfig, type EndpointResolvedConfig } from "@smithy/m
 import { type RetryInputConfig, type RetryResolvedConfig } from "@smithy/middleware-retry";
 import type { HttpHandlerUserInput as __HttpHandlerUserInput } from "@smithy/protocol-http";
 import { type DefaultsMode as __DefaultsMode, type SmithyConfiguration as __SmithyConfiguration, type SmithyResolvedConfiguration as __SmithyResolvedConfiguration, Client as __Client } from "@smithy/smithy-client";
-import { type BodyLengthCalculator as __BodyLengthCalculator, type CheckOptionalClientConfig as __CheckOptionalClientConfig, type ChecksumConstructor as __ChecksumConstructor, type Decoder as __Decoder, type Encoder as __Encoder, type HashConstructor as __HashConstructor, type HttpHandlerOptions as __HttpHandlerOptions, type Logger as __Logger, type Provider as __Provider, type StreamCollector as __StreamCollector, type UrlParser as __UrlParser, AwsCredentialIdentityProvider, Provider, UserAgent as __UserAgent } from "@smithy/types";
+import type { AwsCredentialIdentityProvider, BodyLengthCalculator as __BodyLengthCalculator, CheckOptionalClientConfig as __CheckOptionalClientConfig, ChecksumConstructor as __ChecksumConstructor, Decoder as __Decoder, Encoder as __Encoder, HashConstructor as __HashConstructor, HttpHandlerOptions as __HttpHandlerOptions, Logger as __Logger, Provider as __Provider, StreamCollector as __StreamCollector, UrlParser as __UrlParser, UserAgent as __UserAgent } from "@smithy/types";
 import { type HttpAuthSchemeInputConfig, type HttpAuthSchemeResolvedConfig } from "./auth/httpAuthSchemeProvider";
-import { AddTagsToCertificateCommandInput, AddTagsToCertificateCommandOutput } from "./commands/AddTagsToCertificateCommand";
-import { DeleteCertificateCommandInput, DeleteCertificateCommandOutput } from "./commands/DeleteCertificateCommand";
-import { DescribeCertificateCommandInput, DescribeCertificateCommandOutput } from "./commands/DescribeCertificateCommand";
-import { ExportCertificateCommandInput, ExportCertificateCommandOutput } from "./commands/ExportCertificateCommand";
-import { GetAccountConfigurationCommandInput, GetAccountConfigurationCommandOutput } from "./commands/GetAccountConfigurationCommand";
-import { GetCertificateCommandInput, GetCertificateCommandOutput } from "./commands/GetCertificateCommand";
-import { ImportCertificateCommandInput, ImportCertificateCommandOutput } from "./commands/ImportCertificateCommand";
-import { ListCertificatesCommandInput, ListCertificatesCommandOutput } from "./commands/ListCertificatesCommand";
-import { ListTagsForCertificateCommandInput, ListTagsForCertificateCommandOutput } from "./commands/ListTagsForCertificateCommand";
-import { PutAccountConfigurationCommandInput, PutAccountConfigurationCommandOutput } from "./commands/PutAccountConfigurationCommand";
-import { RemoveTagsFromCertificateCommandInput, RemoveTagsFromCertificateCommandOutput } from "./commands/RemoveTagsFromCertificateCommand";
-import { RenewCertificateCommandInput, RenewCertificateCommandOutput } from "./commands/RenewCertificateCommand";
-import { RequestCertificateCommandInput, RequestCertificateCommandOutput } from "./commands/RequestCertificateCommand";
-import { ResendValidationEmailCommandInput, ResendValidationEmailCommandOutput } from "./commands/ResendValidationEmailCommand";
-import { RevokeCertificateCommandInput, RevokeCertificateCommandOutput } from "./commands/RevokeCertificateCommand";
-import { UpdateCertificateOptionsCommandInput, UpdateCertificateOptionsCommandOutput } from "./commands/UpdateCertificateOptionsCommand";
-import { ClientInputEndpointParameters, ClientResolvedEndpointParameters, EndpointParameters } from "./endpoint/EndpointParameters";
+import type { AddTagsToCertificateCommandInput, AddTagsToCertificateCommandOutput } from "./commands/AddTagsToCertificateCommand";
+import type { DeleteCertificateCommandInput, DeleteCertificateCommandOutput } from "./commands/DeleteCertificateCommand";
+import type { DescribeCertificateCommandInput, DescribeCertificateCommandOutput } from "./commands/DescribeCertificateCommand";
+import type { ExportCertificateCommandInput, ExportCertificateCommandOutput } from "./commands/ExportCertificateCommand";
+import type { GetAccountConfigurationCommandInput, GetAccountConfigurationCommandOutput } from "./commands/GetAccountConfigurationCommand";
+import type { GetCertificateCommandInput, GetCertificateCommandOutput } from "./commands/GetCertificateCommand";
+import type { ImportCertificateCommandInput, ImportCertificateCommandOutput } from "./commands/ImportCertificateCommand";
+import type { ListCertificatesCommandInput, ListCertificatesCommandOutput } from "./commands/ListCertificatesCommand";
+import type { ListTagsForCertificateCommandInput, ListTagsForCertificateCommandOutput } from "./commands/ListTagsForCertificateCommand";
+import type { PutAccountConfigurationCommandInput, PutAccountConfigurationCommandOutput } from "./commands/PutAccountConfigurationCommand";
+import type { RemoveTagsFromCertificateCommandInput, RemoveTagsFromCertificateCommandOutput } from "./commands/RemoveTagsFromCertificateCommand";
+import type { RenewCertificateCommandInput, RenewCertificateCommandOutput } from "./commands/RenewCertificateCommand";
+import type { RequestCertificateCommandInput, RequestCertificateCommandOutput } from "./commands/RequestCertificateCommand";
+import type { ResendValidationEmailCommandInput, ResendValidationEmailCommandOutput } from "./commands/ResendValidationEmailCommand";
+import type { RevokeCertificateCommandInput, RevokeCertificateCommandOutput } from "./commands/RevokeCertificateCommand";
+import type { SearchCertificatesCommandInput, SearchCertificatesCommandOutput } from "./commands/SearchCertificatesCommand";
+import type { UpdateCertificateOptionsCommandInput, UpdateCertificateOptionsCommandOutput } from "./commands/UpdateCertificateOptionsCommand";
+import { type ClientInputEndpointParameters, type ClientResolvedEndpointParameters, type EndpointParameters } from "./endpoint/EndpointParameters";
 import { type RuntimeExtension, type RuntimeExtensionsConfig } from "./runtimeExtensions";
 export { __Client };
 /**
  * @public
  */
-export type ServiceInputTypes = AddTagsToCertificateCommandInput | DeleteCertificateCommandInput | DescribeCertificateCommandInput | ExportCertificateCommandInput | GetAccountConfigurationCommandInput | GetCertificateCommandInput | ImportCertificateCommandInput | ListCertificatesCommandInput | ListTagsForCertificateCommandInput | PutAccountConfigurationCommandInput | RemoveTagsFromCertificateCommandInput | RenewCertificateCommandInput | RequestCertificateCommandInput | ResendValidationEmailCommandInput | RevokeCertificateCommandInput | UpdateCertificateOptionsCommandInput;
+export type ServiceInputTypes = AddTagsToCertificateCommandInput | DeleteCertificateCommandInput | DescribeCertificateCommandInput | ExportCertificateCommandInput | GetAccountConfigurationCommandInput | GetCertificateCommandInput | ImportCertificateCommandInput | ListCertificatesCommandInput | ListTagsForCertificateCommandInput | PutAccountConfigurationCommandInput | RemoveTagsFromCertificateCommandInput | RenewCertificateCommandInput | RequestCertificateCommandInput | ResendValidationEmailCommandInput | RevokeCertificateCommandInput | SearchCertificatesCommandInput | UpdateCertificateOptionsCommandInput;
 /**
  * @public
  */
-export type ServiceOutputTypes = AddTagsToCertificateCommandOutput | DeleteCertificateCommandOutput | DescribeCertificateCommandOutput | ExportCertificateCommandOutput | GetAccountConfigurationCommandOutput | GetCertificateCommandOutput | ImportCertificateCommandOutput | ListCertificatesCommandOutput | ListTagsForCertificateCommandOutput | PutAccountConfigurationCommandOutput | RemoveTagsFromCertificateCommandOutput | RenewCertificateCommandOutput | RequestCertificateCommandOutput | ResendValidationEmailCommandOutput | RevokeCertificateCommandOutput | UpdateCertificateOptionsCommandOutput;
+export type ServiceOutputTypes = AddTagsToCertificateCommandOutput | DeleteCertificateCommandOutput | DescribeCertificateCommandOutput | ExportCertificateCommandOutput | GetAccountConfigurationCommandOutput | GetCertificateCommandOutput | ImportCertificateCommandOutput | ListCertificatesCommandOutput | ListTagsForCertificateCommandOutput | PutAccountConfigurationCommandOutput | RemoveTagsFromCertificateCommandOutput | RenewCertificateCommandOutput | RequestCertificateCommandOutput | ResendValidationEmailCommandOutput | RevokeCertificateCommandOutput | SearchCertificatesCommandOutput | UpdateCertificateOptionsCommandOutput;
 /**
  * @public
  */
@@ -132,7 +133,7 @@ export interface ClientDefaults extends Partial<__SmithyConfiguration<__HttpHand
      * The provider populating default tracking information to be sent with `user-agent`, `x-amz-user-agent` header
      * @internal
      */
-    defaultUserAgentProvider?: Provider<__UserAgent>;
+    defaultUserAgentProvider?: __Provider<__UserAgent>;
     /**
      * Default credentials provider; Not available in browser runtime.
      * @deprecated

package/dist-types/auth/httpAuthExtensionConfiguration.d.ts

@@ -1,4 +1,4 @@
-import { type HttpAuthScheme, AwsCredentialIdentity, AwsCredentialIdentityProvider } from "@smithy/types";
+import type { AwsCredentialIdentity, AwsCredentialIdentityProvider, HttpAuthScheme } from "@smithy/types";
 import type { ACMHttpAuthSchemeProvider } from "./httpAuthSchemeProvider";
 /**
  * @internal

package/dist-types/commands/DeleteCertificateCommand.d.ts

@@ -27,7 +27,7 @@ declare const DeleteCertificateCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Deletes a certificate and its associated private key. If this action succeeds, the certificate no longer appears in the list that can be displayed by calling the <a>ListCertificates</a> action or be retrieved by calling the <a>GetCertificate</a> action. The certificate will not be available for use by Amazon Web Services services integrated with ACM. </p> <note> <p>You cannot delete an ACM certificate that is being used by another Amazon Web Services service. To delete a certificate that is in use, the certificate association must first be removed.</p> </note>
+ * <p>Deletes a certificate and its associated private key. If this action succeeds, the certificate is not available for use by Amazon Web Services services integrated with ACM. Deleting a certificate is eventually consistent. The may be a short delay before the certificate no longer appears in the list that can be displayed by calling the <a>ListCertificates</a> action or be retrieved by calling the <a>GetCertificate</a> action.</p> <note> <p>You cannot delete an ACM certificate that is being used by another Amazon Web Services service. To delete a certificate that is in use, you must first remove the certificate association using the console or the CLI for the associated service.</p> <p>Deleting a certificate issued by a private certificate authority (CA) has no effect on the CA. You will continue to be charged for the CA until it is deleted. For more information, see <a href="https://docs.aws.amazon.com/privateca/latest/userguide/PCADeleteCA.html"> Deleting Your Private CA</a> in the <i>Private Certificate Authority User Guide</i>.</p> </note> <p>Deleting a certificate issued by a private certificate authority (CA) has no effect on the CA. You will continue to be charged for the CA until it is deleted. For more information, see <a href="https://docs.aws.amazon.com/privateca/latest/userguide/PCADeleteCA.html">Deleting your private CA</a> in the <i>Amazon Web Services Private Certificate Authority User Guide</i>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/ExportCertificateCommand.d.ts

@@ -27,7 +27,7 @@ declare const ExportCertificateCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Exports a private certificate issued by a private certificate authority (CA) or public certificate for use anywhere. The exported file contains the certificate, the certificate chain, and the encrypted private key associated with the public key that is embedded in the certificate. For security, you must assign a passphrase for the private key when exporting it. </p> <p>For information about exporting and formatting a certificate using the ACM console or CLI, see <a href="https://docs.aws.amazon.com/acm/latest/userguide/export-private.html">Export a private certificate</a> and <a href="https://docs.aws.amazon.com/acm/latest/userguide/export-public-certificate">Export a public certificate</a>.</p>
+ * <p>Exports a private certificate issued by a private certificate authority (CA) or a public certificate for use anywhere. The exported file contains the certificate, the certificate chain, and the encrypted private key associated with the public key that is embedded in the certificate. For security, you must assign a passphrase for the private key when exporting it. </p> <p>For information about exporting and formatting a certificate using the ACM console or CLI, see <a href="https://docs.aws.amazon.com/acm/latest/userguide/export-private.html">Export a private certificate</a> and <a href="https://docs.aws.amazon.com/acm/latest/userguide/export-public-certificate">Export a public certificate</a>.</p> <note> <p>ACM public certificates created prior to June 17, 2025 cannot be exported.</p> </note>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -65,6 +65,9 @@ declare const ExportCertificateCommand_base: {
  * @throws {@link ResourceNotFoundException} (client fault)
  *  <p>The specified certificate cannot be found in the caller's account or the caller's account cannot be found.</p>
  *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>The request was denied because it exceeded a quota.</p>
+ *
  * @throws {@link ACMServiceException}
  * <p>Base exception class for all service exceptions from ACM service.</p>
  *

package/dist-types/commands/ImportCertificateCommand.d.ts

@@ -62,6 +62,9 @@ declare const ImportCertificateCommand_base: {
  * @see {@link ImportCertificateCommandOutput} for command's `response` shape.
  * @see {@link ACMClientResolvedConfig | config} for ACMClient's `config` shape.
  *
+ * @throws {@link ConflictException} (client fault)
+ *  <p>You are trying to update a resource or configuration that is already being created or updated. Wait for the previous operation to finish and try again.</p>
+ *
  * @throws {@link InvalidArnException} (client fault)
  *  <p>The requested Amazon Resource Name (ARN) does not refer to an existing resource.</p>
  *

package/dist-types/commands/RenewCertificateCommand.d.ts

@@ -27,7 +27,7 @@ declare const RenewCertificateCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Renews an <a href="https://docs.aws.amazon.com/acm/latest/userguide/managed-renewal.html">eligible ACM certificate</a>. In order to renew your Amazon Web Services Private CA certificates with ACM, you must first <a href="https://docs.aws.amazon.com/privateca/latest/userguide/PcaPermissions.html">grant the ACM service principal permission to do so</a>. For more information, see <a href="https://docs.aws.amazon.com/acm/latest/userguide/manual-renewal.html">Testing Managed Renewal</a> in the ACM User Guide.</p>
+ * <p>Renews an <a href="https://docs.aws.amazon.com/acm/latest/userguide/managed-renewal.html">eligible ACM certificate</a>. In order to renew your Amazon Web Services Private CA certificates with ACM, you must first <a href="https://docs.aws.amazon.com/privateca/latest/userguide/assign-permissions.html#PcaPermissions">grant the ACM service principal permission to do so</a>. For more information, see <a href="https://docs.aws.amazon.com/acm/latest/userguide/managed-renewal.html">Testing Managed Renewal</a> in the ACM User Guide.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/RevokeCertificateCommand.d.ts

@@ -27,7 +27,7 @@ declare const RevokeCertificateCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Revokes a public ACM certificate. You can only revoke certificates that have been previously exported.</p>
+ * <p>Revokes a public ACM certificate. You can only revoke certificates that have been previously exported.</p> <important> <p>Once a certificate is revoked, you cannot reuse the certificate. Revoking a certificate is permanent.</p> </important>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/SearchCertificatesCommand.d.ts

@@ -0,0 +1,303 @@
+import { Command as $Command } from "@smithy/smithy-client";
+import type { MetadataBearer as __MetadataBearer } from "@smithy/types";
+import type { ACMClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../ACMClient";
+import type { SearchCertificatesRequest, SearchCertificatesResponse } from "../models/models_0";
+/**
+ * @public
+ */
+export type { __MetadataBearer };
+export { $Command };
+/**
+ * @public
+ *
+ * The input for {@link SearchCertificatesCommand}.
+ */
+export interface SearchCertificatesCommandInput extends SearchCertificatesRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link SearchCertificatesCommand}.
+ */
+export interface SearchCertificatesCommandOutput extends SearchCertificatesResponse, __MetadataBearer {
+}
+declare const SearchCertificatesCommand_base: {
+    new (input: SearchCertificatesCommandInput): import("@smithy/smithy-client").CommandImpl<SearchCertificatesCommandInput, SearchCertificatesCommandOutput, ACMClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes>;
+    new (...[input]: [] | [SearchCertificatesCommandInput]): import("@smithy/smithy-client").CommandImpl<SearchCertificatesCommandInput, SearchCertificatesCommandOutput, ACMClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes>;
+    getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
+};
+/**
+ * <p>Retrieves a list of certificates matching search criteria. You can filter certificates by X.509 attributes and ACM specific properties like certificate status, type and renewal eligibility. This operation provides more flexible filtering than <a>ListCertificates</a> by supporting complex filter statements.</p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { ACMClient, SearchCertificatesCommand } from "@aws-sdk/client-acm"; // ES Modules import
+ * // const { ACMClient, SearchCertificatesCommand } = require("@aws-sdk/client-acm"); // CommonJS import
+ * // import type { ACMClientConfig } from "@aws-sdk/client-acm";
+ * const config = {}; // type is ACMClientConfig
+ * const client = new ACMClient(config);
+ * const input = { // SearchCertificatesRequest
+ *   FilterStatement: { // CertificateFilterStatement Union: only one key present
+ *     And: [ // CertificateFilterStatementList
+ *       {//  Union: only one key present
+ *         And: [
+ *           "<CertificateFilterStatement>",
+ *         ],
+ *         Or: [
+ *           "<CertificateFilterStatement>",
+ *         ],
+ *         Not: "<CertificateFilterStatement>",
+ *         Filter: { // CertificateFilter Union: only one key present
+ *           CertificateArn: "STRING_VALUE",
+ *           X509AttributeFilter: { // X509AttributeFilter Union: only one key present
+ *             Subject: { // SubjectFilter Union: only one key present
+ *               CommonName: { // CommonNameFilter
+ *                 Value: "STRING_VALUE", // required
+ *                 ComparisonOperator: "CONTAINS" || "EQUALS", // required
+ *               },
+ *             },
+ *             SubjectAlternativeName: { // SubjectAlternativeNameFilter Union: only one key present
+ *               DnsName: { // DnsNameFilter
+ *                 Value: "STRING_VALUE", // required
+ *                 ComparisonOperator: "CONTAINS" || "EQUALS", // required
+ *               },
+ *             },
+ *             ExtendedKeyUsage: "TLS_WEB_SERVER_AUTHENTICATION" || "TLS_WEB_CLIENT_AUTHENTICATION" || "CODE_SIGNING" || "EMAIL_PROTECTION" || "TIME_STAMPING" || "OCSP_SIGNING" || "IPSEC_END_SYSTEM" || "IPSEC_TUNNEL" || "IPSEC_USER" || "ANY" || "NONE" || "CUSTOM",
+ *             KeyUsage: "DIGITAL_SIGNATURE" || "NON_REPUDIATION" || "KEY_ENCIPHERMENT" || "DATA_ENCIPHERMENT" || "KEY_AGREEMENT" || "CERTIFICATE_SIGNING" || "CRL_SIGNING" || "ENCIPHER_ONLY" || "DECIPHER_ONLY" || "ANY" || "CUSTOM",
+ *             KeyAlgorithm: "RSA_1024" || "RSA_2048" || "RSA_3072" || "RSA_4096" || "EC_prime256v1" || "EC_secp384r1" || "EC_secp521r1",
+ *             SerialNumber: "STRING_VALUE",
+ *             NotAfter: { // TimestampRange
+ *               Start: new Date("TIMESTAMP"),
+ *               End: new Date("TIMESTAMP"),
+ *             },
+ *             NotBefore: {
+ *               Start: new Date("TIMESTAMP"),
+ *               End: new Date("TIMESTAMP"),
+ *             },
+ *           },
+ *           AcmCertificateMetadataFilter: { // AcmCertificateMetadataFilter Union: only one key present
+ *             Status: "PENDING_VALIDATION" || "ISSUED" || "INACTIVE" || "EXPIRED" || "VALIDATION_TIMED_OUT" || "REVOKED" || "FAILED",
+ *             RenewalStatus: "PENDING_AUTO_RENEWAL" || "PENDING_VALIDATION" || "SUCCESS" || "FAILED",
+ *             Type: "IMPORTED" || "AMAZON_ISSUED" || "PRIVATE",
+ *             InUse: true || false,
+ *             Exported: true || false,
+ *             ExportOption: "ENABLED" || "DISABLED",
+ *             ManagedBy: "CLOUDFRONT",
+ *             ValidationMethod: "EMAIL" || "DNS" || "HTTP",
+ *           },
+ *         },
+ *       },
+ *     ],
+ *     Or: [
+ *       "<CertificateFilterStatement>",
+ *     ],
+ *     Not: "<CertificateFilterStatement>",
+ *     Filter: {//  Union: only one key present
+ *       CertificateArn: "STRING_VALUE",
+ *       X509AttributeFilter: {//  Union: only one key present
+ *         Subject: {//  Union: only one key present
+ *           CommonName: {
+ *             Value: "STRING_VALUE", // required
+ *             ComparisonOperator: "CONTAINS" || "EQUALS", // required
+ *           },
+ *         },
+ *         SubjectAlternativeName: {//  Union: only one key present
+ *           DnsName: {
+ *             Value: "STRING_VALUE", // required
+ *             ComparisonOperator: "CONTAINS" || "EQUALS", // required
+ *           },
+ *         },
+ *         ExtendedKeyUsage: "TLS_WEB_SERVER_AUTHENTICATION" || "TLS_WEB_CLIENT_AUTHENTICATION" || "CODE_SIGNING" || "EMAIL_PROTECTION" || "TIME_STAMPING" || "OCSP_SIGNING" || "IPSEC_END_SYSTEM" || "IPSEC_TUNNEL" || "IPSEC_USER" || "ANY" || "NONE" || "CUSTOM",
+ *         KeyUsage: "DIGITAL_SIGNATURE" || "NON_REPUDIATION" || "KEY_ENCIPHERMENT" || "DATA_ENCIPHERMENT" || "KEY_AGREEMENT" || "CERTIFICATE_SIGNING" || "CRL_SIGNING" || "ENCIPHER_ONLY" || "DECIPHER_ONLY" || "ANY" || "CUSTOM",
+ *         KeyAlgorithm: "RSA_1024" || "RSA_2048" || "RSA_3072" || "RSA_4096" || "EC_prime256v1" || "EC_secp384r1" || "EC_secp521r1",
+ *         SerialNumber: "STRING_VALUE",
+ *         NotAfter: {
+ *           Start: new Date("TIMESTAMP"),
+ *           End: new Date("TIMESTAMP"),
+ *         },
+ *         NotBefore: {
+ *           Start: new Date("TIMESTAMP"),
+ *           End: new Date("TIMESTAMP"),
+ *         },
+ *       },
+ *       AcmCertificateMetadataFilter: {//  Union: only one key present
+ *         Status: "PENDING_VALIDATION" || "ISSUED" || "INACTIVE" || "EXPIRED" || "VALIDATION_TIMED_OUT" || "REVOKED" || "FAILED",
+ *         RenewalStatus: "PENDING_AUTO_RENEWAL" || "PENDING_VALIDATION" || "SUCCESS" || "FAILED",
+ *         Type: "IMPORTED" || "AMAZON_ISSUED" || "PRIVATE",
+ *         InUse: true || false,
+ *         Exported: true || false,
+ *         ExportOption: "ENABLED" || "DISABLED",
+ *         ManagedBy: "CLOUDFRONT",
+ *         ValidationMethod: "EMAIL" || "DNS" || "HTTP",
+ *       },
+ *     },
+ *   },
+ *   MaxResults: Number("int"),
+ *   NextToken: "STRING_VALUE",
+ *   SortBy: "CREATED_AT" || "NOT_AFTER" || "STATUS" || "RENEWAL_STATUS" || "EXPORTED" || "IN_USE" || "NOT_BEFORE" || "KEY_ALGORITHM" || "TYPE" || "CERTIFICATE_ARN" || "COMMON_NAME" || "REVOKED_AT" || "RENEWAL_ELIGIBILITY" || "ISSUED_AT" || "MANAGED_BY" || "EXPORT_OPTION" || "VALIDATION_METHOD" || "IMPORTED_AT",
+ *   SortOrder: "ASCENDING" || "DESCENDING",
+ * };
+ * const command = new SearchCertificatesCommand(input);
+ * const response = await client.send(command);
+ * // { // SearchCertificatesResponse
+ * //   Results: [ // CertificateSearchResultList
+ * //     { // CertificateSearchResult
+ * //       CertificateArn: "STRING_VALUE",
+ * //       X509Attributes: { // X509Attributes
+ * //         Issuer: { // DistinguishedName
+ * //           CommonName: "STRING_VALUE",
+ * //           DomainComponents: [ // DomainComponentList
+ * //             "STRING_VALUE",
+ * //           ],
+ * //           Country: "STRING_VALUE",
+ * //           CustomAttributes: [ // CustomAttributeList
+ * //             { // CustomAttribute
+ * //               ObjectIdentifier: "STRING_VALUE",
+ * //               Value: "STRING_VALUE",
+ * //             },
+ * //           ],
+ * //           DistinguishedNameQualifier: "STRING_VALUE",
+ * //           GenerationQualifier: "STRING_VALUE",
+ * //           GivenName: "STRING_VALUE",
+ * //           Initials: "STRING_VALUE",
+ * //           Locality: "STRING_VALUE",
+ * //           Organization: "STRING_VALUE",
+ * //           OrganizationalUnit: "STRING_VALUE",
+ * //           Pseudonym: "STRING_VALUE",
+ * //           SerialNumber: "STRING_VALUE",
+ * //           State: "STRING_VALUE",
+ * //           Surname: "STRING_VALUE",
+ * //           Title: "STRING_VALUE",
+ * //         },
+ * //         Subject: {
+ * //           CommonName: "STRING_VALUE",
+ * //           DomainComponents: [
+ * //             "STRING_VALUE",
+ * //           ],
+ * //           Country: "STRING_VALUE",
+ * //           CustomAttributes: [
+ * //             {
+ * //               ObjectIdentifier: "STRING_VALUE",
+ * //               Value: "STRING_VALUE",
+ * //             },
+ * //           ],
+ * //           DistinguishedNameQualifier: "STRING_VALUE",
+ * //           GenerationQualifier: "STRING_VALUE",
+ * //           GivenName: "STRING_VALUE",
+ * //           Initials: "STRING_VALUE",
+ * //           Locality: "STRING_VALUE",
+ * //           Organization: "STRING_VALUE",
+ * //           OrganizationalUnit: "STRING_VALUE",
+ * //           Pseudonym: "STRING_VALUE",
+ * //           SerialNumber: "STRING_VALUE",
+ * //           State: "STRING_VALUE",
+ * //           Surname: "STRING_VALUE",
+ * //           Title: "STRING_VALUE",
+ * //         },
+ * //         SubjectAlternativeNames: [ // GeneralNameList
+ * //           { // GeneralName Union: only one key present
+ * //             DirectoryName: {
+ * //               CommonName: "STRING_VALUE",
+ * //               DomainComponents: [
+ * //                 "STRING_VALUE",
+ * //               ],
+ * //               Country: "STRING_VALUE",
+ * //               CustomAttributes: [
+ * //                 {
+ * //                   ObjectIdentifier: "STRING_VALUE",
+ * //                   Value: "STRING_VALUE",
+ * //                 },
+ * //               ],
+ * //               DistinguishedNameQualifier: "STRING_VALUE",
+ * //               GenerationQualifier: "STRING_VALUE",
+ * //               GivenName: "STRING_VALUE",
+ * //               Initials: "STRING_VALUE",
+ * //               Locality: "STRING_VALUE",
+ * //               Organization: "STRING_VALUE",
+ * //               OrganizationalUnit: "STRING_VALUE",
+ * //               Pseudonym: "STRING_VALUE",
+ * //               SerialNumber: "STRING_VALUE",
+ * //               State: "STRING_VALUE",
+ * //               Surname: "STRING_VALUE",
+ * //               Title: "STRING_VALUE",
+ * //             },
+ * //             DnsName: "STRING_VALUE",
+ * //             IpAddress: "STRING_VALUE",
+ * //             OtherName: { // OtherName
+ * //               ObjectIdentifier: "STRING_VALUE",
+ * //               Value: "STRING_VALUE",
+ * //             },
+ * //             RegisteredId: "STRING_VALUE",
+ * //             Rfc822Name: "STRING_VALUE",
+ * //             UniformResourceIdentifier: "STRING_VALUE",
+ * //           },
+ * //         ],
+ * //         ExtendedKeyUsages: [ // ExtendedKeyUsageNames
+ * //           "TLS_WEB_SERVER_AUTHENTICATION" || "TLS_WEB_CLIENT_AUTHENTICATION" || "CODE_SIGNING" || "EMAIL_PROTECTION" || "TIME_STAMPING" || "OCSP_SIGNING" || "IPSEC_END_SYSTEM" || "IPSEC_TUNNEL" || "IPSEC_USER" || "ANY" || "NONE" || "CUSTOM",
+ * //         ],
+ * //         KeyAlgorithm: "RSA_1024" || "RSA_2048" || "RSA_3072" || "RSA_4096" || "EC_prime256v1" || "EC_secp384r1" || "EC_secp521r1",
+ * //         KeyUsages: [ // KeyUsageNames
+ * //           "DIGITAL_SIGNATURE" || "NON_REPUDIATION" || "KEY_ENCIPHERMENT" || "DATA_ENCIPHERMENT" || "KEY_AGREEMENT" || "CERTIFICATE_SIGNING" || "CRL_SIGNING" || "ENCIPHER_ONLY" || "DECIPHER_ONLY" || "ANY" || "CUSTOM",
+ * //         ],
+ * //         SerialNumber: "STRING_VALUE",
+ * //         NotAfter: new Date("TIMESTAMP"),
+ * //         NotBefore: new Date("TIMESTAMP"),
+ * //       },
+ * //       CertificateMetadata: { // CertificateMetadata Union: only one key present
+ * //         AcmCertificateMetadata: { // AcmCertificateMetadata
+ * //           CreatedAt: new Date("TIMESTAMP"),
+ * //           Exported: true || false,
+ * //           ImportedAt: new Date("TIMESTAMP"),
+ * //           InUse: true || false,
+ * //           IssuedAt: new Date("TIMESTAMP"),
+ * //           RenewalEligibility: "ELIGIBLE" || "INELIGIBLE",
+ * //           RevokedAt: new Date("TIMESTAMP"),
+ * //           Status: "PENDING_VALIDATION" || "ISSUED" || "INACTIVE" || "EXPIRED" || "VALIDATION_TIMED_OUT" || "REVOKED" || "FAILED",
+ * //           RenewalStatus: "PENDING_AUTO_RENEWAL" || "PENDING_VALIDATION" || "SUCCESS" || "FAILED",
+ * //           Type: "IMPORTED" || "AMAZON_ISSUED" || "PRIVATE",
+ * //           ExportOption: "ENABLED" || "DISABLED",
+ * //           ManagedBy: "CLOUDFRONT",
+ * //           ValidationMethod: "EMAIL" || "DNS" || "HTTP",
+ * //         },
+ * //       },
+ * //     },
+ * //   ],
+ * //   NextToken: "STRING_VALUE",
+ * // };
+ *
+ * ```
+ *
+ * @param SearchCertificatesCommandInput - {@link SearchCertificatesCommandInput}
+ * @returns {@link SearchCertificatesCommandOutput}
+ * @see {@link SearchCertificatesCommandInput} for command's `input` shape.
+ * @see {@link SearchCertificatesCommandOutput} for command's `response` shape.
+ * @see {@link ACMClientResolvedConfig | config} for ACMClient's `config` shape.
+ *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>You do not have access required to perform this action.</p>
+ *
+ * @throws {@link ThrottlingException} (client fault)
+ *  <p>The request was denied because it exceeded a quota.</p>
+ *
+ * @throws {@link ValidationException} (client fault)
+ *  <p>The supplied input failed to satisfy constraints of an Amazon Web Services service.</p>
+ *
+ * @throws {@link ACMServiceException}
+ * <p>Base exception class for all service exceptions from ACM service.</p>
+ *
+ *
+ * @public
+ */
+export declare class SearchCertificatesCommand extends SearchCertificatesCommand_base {
+    /** @internal type navigation helper, not in runtime. */
+    protected static __types: {
+        api: {
+            input: SearchCertificatesRequest;
+            output: SearchCertificatesResponse;
+        };
+        sdk: {
+            input: SearchCertificatesCommandInput;
+            output: SearchCertificatesCommandOutput;
+        };
+    };
+}

package/dist-types/commands/index.d.ts

@@ -13,4 +13,5 @@ export * from "./RenewCertificateCommand";
 export * from "./RequestCertificateCommand";
 export * from "./ResendValidationEmailCommand";
 export * from "./RevokeCertificateCommand";
+export * from "./SearchCertificatesCommand";
 export * from "./UpdateCertificateOptionsCommand";

package/dist-types/index.d.ts

@@ -5,7 +5,7 @@
  */
 export * from "./ACMClient";
 export * from "./ACM";
-export { ClientInputEndpointParameters } from "./endpoint/EndpointParameters";
+export type { ClientInputEndpointParameters } from "./endpoint/EndpointParameters";
 export type { RuntimeExtension } from "./runtimeExtensions";
 export type { ACMExtensionConfiguration } from "./extensionConfiguration";
 export * from "./commands";