@aws-sdk/client-acm 3.796.0 → 3.798.0

package/dist-cjs/auth/httpAuthSchemeProvider.js

@@ -40,6 +40,8 @@ const defaultACMHttpAuthSchemeProvider = (authParameters) => {
 exports.defaultACMHttpAuthSchemeProvider = defaultACMHttpAuthSchemeProvider;
 const resolveHttpAuthSchemeConfig = (config) => {
     const config_0 = (0, core_1.resolveAwsSdkSigV4Config)(config);
-    return Object.assign(config_0, {});
+    return Object.assign(config_0, {
+        authSchemePreference: (0, util_middleware_1.normalizeProvider)(config.authSchemePreference ?? []),
+    });
 };
 exports.resolveHttpAuthSchemeConfig = resolveHttpAuthSchemeConfig;

package/dist-cjs/index.js

@@ -26,6 +26,7 @@ __export(index_exports, {
   ACMServiceException: () => ACMServiceException,
   AccessDeniedException: () => AccessDeniedException,
   AddTagsToCertificateCommand: () => AddTagsToCertificateCommand,
+  CertificateManagedBy: () => CertificateManagedBy,
   CertificateStatus: () => CertificateStatus,
   CertificateTransparencyLoggingPreference: () => CertificateTransparencyLoggingPreference,
   CertificateType: () => CertificateType,
@@ -402,7 +403,8 @@ var RecordType = {
 };
 var ValidationMethod = {
   DNS: "DNS",
-  EMAIL: "EMAIL"
+  EMAIL: "EMAIL",
+  HTTP: "HTTP"
 };
 var DomainStatus = {
   FAILED: "FAILED",
@@ -464,6 +466,9 @@ var KeyUsageName = {
   KEY_ENCIPHERMENT: "KEY_ENCIPHERMENT",
   NON_REPUDATION: "NON_REPUDIATION"
 };
+var CertificateManagedBy = {
+  CLOUDFRONT: "CLOUDFRONT"
+};
 var CertificateTransparencyLoggingPreference = {
   DISABLED: "DISABLED",
   ENABLED: "ENABLED"
@@ -488,6 +493,7 @@ var RevocationReason = {
   PRIVILEGE_WITHDRAWN: "PRIVILEGE_WITHDRAWN",
   REMOVE_FROM_CRL: "REMOVE_FROM_CRL",
   SUPERCEDED: "SUPERCEDED",
+  SUPERSEDED: "SUPERSEDED",
   UNSPECIFIED: "UNSPECIFIED"
 };
 var CertificateStatus = {
@@ -1170,6 +1176,7 @@ var de_CertificateDetail = /* @__PURE__ */ __name((output, context) => {
     Issuer: import_smithy_client.expectString,
     KeyAlgorithm: import_smithy_client.expectString,
     KeyUsages: import_smithy_client._json,
+    ManagedBy: import_smithy_client.expectString,
     NotAfter: /* @__PURE__ */ __name((_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseEpochTimestamp)((0, import_smithy_client.expectNumber)(_))), "NotAfter"),
     NotBefore: /* @__PURE__ */ __name((_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseEpochTimestamp)((0, import_smithy_client.expectNumber)(_))), "NotBefore"),
     Options: import_smithy_client._json,
@@ -1198,6 +1205,7 @@ var de_CertificateSummary = /* @__PURE__ */ __name((output, context) => {
     IssuedAt: /* @__PURE__ */ __name((_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseEpochTimestamp)((0, import_smithy_client.expectNumber)(_))), "IssuedAt"),
     KeyAlgorithm: import_smithy_client.expectString,
     KeyUsages: import_smithy_client._json,
+    ManagedBy: import_smithy_client.expectString,
     NotAfter: /* @__PURE__ */ __name((_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseEpochTimestamp)((0, import_smithy_client.expectNumber)(_))), "NotAfter"),
     NotBefore: /* @__PURE__ */ __name((_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseEpochTimestamp)((0, import_smithy_client.expectNumber)(_))), "NotBefore"),
     RenewalEligibility: import_smithy_client.expectString,
@@ -1622,6 +1630,7 @@ var waitUntilCertificateValidated = /* @__PURE__ */ __name(async (params, input)
   FailureReason,
   KeyAlgorithm,
   KeyUsageName,
+  CertificateManagedBy,
   CertificateTransparencyLoggingPreference,
   RenewalEligibility,
   RenewalStatus,

package/dist-es/auth/httpAuthSchemeProvider.js

@@ -35,5 +35,7 @@ export const defaultACMHttpAuthSchemeProvider = (authParameters) => {
 };
 export const resolveHttpAuthSchemeConfig = (config) => {
     const config_0 = resolveAwsSdkSigV4Config(config);
-    return Object.assign(config_0, {});
+    return Object.assign(config_0, {
+        authSchemePreference: normalizeProvider(config.authSchemePreference ?? []),
+    });
 };

package/dist-es/models/models_0.js

@@ -104,6 +104,7 @@ export const RecordType = {
 export const ValidationMethod = {
     DNS: "DNS",
     EMAIL: "EMAIL",
+    HTTP: "HTTP",
 };
 export const DomainStatus = {
     FAILED: "FAILED",
@@ -165,6 +166,9 @@ export const KeyUsageName = {
     KEY_ENCIPHERMENT: "KEY_ENCIPHERMENT",
     NON_REPUDATION: "NON_REPUDIATION",
 };
+export const CertificateManagedBy = {
+    CLOUDFRONT: "CLOUDFRONT",
+};
 export const CertificateTransparencyLoggingPreference = {
     DISABLED: "DISABLED",
     ENABLED: "ENABLED",
@@ -189,6 +193,7 @@ export const RevocationReason = {
     PRIVILEGE_WITHDRAWN: "PRIVILEGE_WITHDRAWN",
     REMOVE_FROM_CRL: "REMOVE_FROM_CRL",
     SUPERCEDED: "SUPERCEDED",
+    SUPERSEDED: "SUPERSEDED",
     UNSPECIFIED: "UNSPECIFIED",
 };
 export const CertificateStatus = {

package/dist-es/protocols/Aws_json1_1.js

@@ -504,6 +504,7 @@ const de_CertificateDetail = (output, context) => {
         Issuer: __expectString,
         KeyAlgorithm: __expectString,
         KeyUsages: _json,
+        ManagedBy: __expectString,
         NotAfter: (_) => __expectNonNull(__parseEpochTimestamp(__expectNumber(_))),
         NotBefore: (_) => __expectNonNull(__parseEpochTimestamp(__expectNumber(_))),
         Options: _json,
@@ -532,6 +533,7 @@ const de_CertificateSummary = (output, context) => {
         IssuedAt: (_) => __expectNonNull(__parseEpochTimestamp(__expectNumber(_))),
         KeyAlgorithm: __expectString,
         KeyUsages: _json,
+        ManagedBy: __expectString,
         NotAfter: (_) => __expectNonNull(__parseEpochTimestamp(__expectNumber(_))),
         NotBefore: (_) => __expectNonNull(__parseEpochTimestamp(__expectNumber(_))),
         RenewalEligibility: __expectString,

package/dist-types/auth/httpAuthSchemeProvider.d.ts

@@ -1,5 +1,5 @@
 import { AwsSdkSigV4AuthInputConfig, AwsSdkSigV4AuthResolvedConfig, AwsSdkSigV4PreviouslyResolved } from "@aws-sdk/core";
-import { HandlerExecutionContext, HttpAuthScheme, HttpAuthSchemeParameters, HttpAuthSchemeParametersProvider, HttpAuthSchemeProvider } from "@smithy/types";
+import { HandlerExecutionContext, HttpAuthScheme, HttpAuthSchemeParameters, HttpAuthSchemeParametersProvider, HttpAuthSchemeProvider, Provider } from "@smithy/types";
 import { ACMClientResolvedConfig } from "../ACMClient";
 /**
  * @internal
@@ -29,6 +29,13 @@ export declare const defaultACMHttpAuthSchemeProvider: ACMHttpAuthSchemeProvider
  * @internal
  */
 export interface HttpAuthSchemeInputConfig extends AwsSdkSigV4AuthInputConfig {
+    /**
+     * A comma-separated list of case-sensitive auth scheme names.
+     * An auth scheme name is a fully qualified auth scheme ID with the namespace prefix trimmed.
+     * For example, the auth scheme with ID aws.auth#sigv4 is named sigv4.
+     * @public
+     */
+    authSchemePreference?: string[] | Provider<string[]>;
     /**
      * Configuration of HttpAuthSchemes for a client which provides default identity providers and signers per auth scheme.
      * @internal
@@ -44,6 +51,13 @@ export interface HttpAuthSchemeInputConfig extends AwsSdkSigV4AuthInputConfig {
  * @internal
  */
 export interface HttpAuthSchemeResolvedConfig extends AwsSdkSigV4AuthResolvedConfig {
+    /**
+     * A comma-separated list of case-sensitive auth scheme names.
+     * An auth scheme name is a fully qualified auth scheme ID with the namespace prefix trimmed.
+     * For example, the auth scheme with ID aws.auth#sigv4 is named sigv4.
+     * @public
+     */
+    readonly authSchemePreference: Provider<string[]>;
     /**
      * Configuration of HttpAuthSchemes for a client which provides default identity providers and signers per auth scheme.
      * @internal

package/dist-types/commands/DescribeCertificateCommand.d.ts

@@ -48,6 +48,7 @@ declare const DescribeCertificateCommand_base: {
  * //     SubjectAlternativeNames: [ // DomainList
  * //       "STRING_VALUE",
  * //     ],
+ * //     ManagedBy: "CLOUDFRONT",
  * //     DomainValidationOptions: [ // DomainValidationList
  * //       { // DomainValidation
  * //         DomainName: "STRING_VALUE", // required
@@ -61,7 +62,11 @@ declare const DescribeCertificateCommand_base: {
  * //           Type: "CNAME", // required
  * //           Value: "STRING_VALUE", // required
  * //         },
- * //         ValidationMethod: "EMAIL" || "DNS",
+ * //         HttpRedirect: { // HttpRedirect
+ * //           RedirectFrom: "STRING_VALUE",
+ * //           RedirectTo: "STRING_VALUE",
+ * //         },
+ * //         ValidationMethod: "EMAIL" || "DNS" || "HTTP",
  * //       },
  * //     ],
  * //     Serial: "STRING_VALUE",
@@ -72,7 +77,7 @@ declare const DescribeCertificateCommand_base: {
  * //     ImportedAt: new Date("TIMESTAMP"),
  * //     Status: "PENDING_VALIDATION" || "ISSUED" || "INACTIVE" || "EXPIRED" || "VALIDATION_TIMED_OUT" || "REVOKED" || "FAILED",
  * //     RevokedAt: new Date("TIMESTAMP"),
- * //     RevocationReason: "UNSPECIFIED" || "KEY_COMPROMISE" || "CA_COMPROMISE" || "AFFILIATION_CHANGED" || "SUPERCEDED" || "CESSATION_OF_OPERATION" || "CERTIFICATE_HOLD" || "REMOVE_FROM_CRL" || "PRIVILEGE_WITHDRAWN" || "A_A_COMPROMISE",
+ * //     RevocationReason: "UNSPECIFIED" || "KEY_COMPROMISE" || "CA_COMPROMISE" || "AFFILIATION_CHANGED" || "SUPERCEDED" || "SUPERSEDED" || "CESSATION_OF_OPERATION" || "CERTIFICATE_HOLD" || "REMOVE_FROM_CRL" || "PRIVILEGE_WITHDRAWN" || "A_A_COMPROMISE",
  * //     NotBefore: new Date("TIMESTAMP"),
  * //     NotAfter: new Date("TIMESTAMP"),
  * //     KeyAlgorithm: "RSA_1024" || "RSA_2048" || "RSA_3072" || "RSA_4096" || "EC_prime256v1" || "EC_secp384r1" || "EC_secp521r1",
@@ -97,7 +102,11 @@ declare const DescribeCertificateCommand_base: {
  * //             Type: "CNAME", // required
  * //             Value: "STRING_VALUE", // required
  * //           },
- * //           ValidationMethod: "EMAIL" || "DNS",
+ * //           HttpRedirect: {
+ * //             RedirectFrom: "STRING_VALUE",
+ * //             RedirectTo: "STRING_VALUE",
+ * //           },
+ * //           ValidationMethod: "EMAIL" || "DNS" || "HTTP",
  * //         },
  * //       ],
  * //       RenewalStatusReason: "NO_AVAILABLE_CONTACTS" || "ADDITIONAL_VERIFICATION_REQUIRED" || "DOMAIN_NOT_ALLOWED" || "INVALID_PUBLIC_DOMAIN" || "DOMAIN_VALIDATION_DENIED" || "CAA_ERROR" || "PCA_LIMIT_EXCEEDED" || "PCA_INVALID_ARN" || "PCA_INVALID_STATE" || "PCA_REQUEST_FAILED" || "PCA_NAME_CONSTRAINTS_VALIDATION" || "PCA_RESOURCE_NOT_FOUND" || "PCA_INVALID_ARGS" || "PCA_INVALID_DURATION" || "PCA_ACCESS_DENIED" || "SLR_NOT_FOUND" || "OTHER",

package/dist-types/commands/ListCertificatesCommand.d.ts

@@ -27,8 +27,10 @@ declare const ListCertificatesCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Retrieves a list of certificate ARNs and domain names. By default, the API returns RSA_2048 certificates. To return all certificates in the account, include the <code>keyType</code> filter with the values <code>[RSA_1024, RSA_2048, RSA_3072, RSA_4096, EC_prime256v1, EC_secp384r1, EC_secp521r1]</code>.</p>
- *          <p>In addition to <code>keyType</code>, you can also filter by the <code>CertificateStatuses</code>, <code>keyUsage</code>, and <code>extendedKeyUsage</code> attributes on the certificate. For more information, see <a>Filters</a>.</p>
+ * <p>Retrieves a list of certificate ARNs and domain names. You can request that only
+ *       certificates that match a specific status be listed. You can also filter by specific
+ *       attributes of the certificate. Default filtering returns only <code>RSA_2048</code>
+ *       certificates. For more information, see <a>Filters</a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -49,6 +51,7 @@ declare const ListCertificatesCommand_base: {
  *     keyTypes: [ // KeyAlgorithmList
  *       "RSA_1024" || "RSA_2048" || "RSA_3072" || "RSA_4096" || "EC_prime256v1" || "EC_secp384r1" || "EC_secp521r1",
  *     ],
+ *     managedBy: "CLOUDFRONT",
  *   },
  *   NextToken: "STRING_VALUE",
  *   MaxItems: Number("int"),
@@ -85,6 +88,7 @@ declare const ListCertificatesCommand_base: {
  * //       IssuedAt: new Date("TIMESTAMP"),
  * //       ImportedAt: new Date("TIMESTAMP"),
  * //       RevokedAt: new Date("TIMESTAMP"),
+ * //       ManagedBy: "CLOUDFRONT",
  * //     },
  * //   ],
  * // };

package/dist-types/commands/RenewCertificateCommand.d.ts

@@ -56,6 +56,10 @@ declare const RenewCertificateCommand_base: {
  * @throws {@link InvalidArnException} (client fault)
  *  <p>The requested Amazon Resource Name (ARN) does not refer to an existing resource.</p>
  *
+ * @throws {@link RequestInProgressException} (client fault)
+ *  <p>The certificate request is in process and the certificate in your account has not yet been
+ *       issued.</p>
+ *
  * @throws {@link ResourceNotFoundException} (client fault)
  *  <p>The specified certificate cannot be found in the caller's account or the caller's account
  *       cannot be found.</p>

package/dist-types/commands/RequestCertificateCommand.d.ts

@@ -51,7 +51,7 @@ declare const RequestCertificateCommand_base: {
  * const client = new ACMClient(config);
  * const input = { // RequestCertificateRequest
  *   DomainName: "STRING_VALUE", // required
- *   ValidationMethod: "EMAIL" || "DNS",
+ *   ValidationMethod: "EMAIL" || "DNS" || "HTTP",
  *   SubjectAlternativeNames: [ // DomainList
  *     "STRING_VALUE",
  *   ],
@@ -73,6 +73,7 @@ declare const RequestCertificateCommand_base: {
  *     },
  *   ],
  *   KeyAlgorithm: "RSA_1024" || "RSA_2048" || "RSA_3072" || "RSA_4096" || "EC_prime256v1" || "EC_secp384r1" || "EC_secp521r1",
+ *   ManagedBy: "CLOUDFRONT",
  * };
  * const command = new RequestCertificateCommand(input);
  * const response = await client.send(command);

package/dist-types/models/models_0.d.ts

@@ -135,6 +135,23 @@ export declare class TooManyTagsException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<TooManyTagsException, __BaseException>);
 }
+/**
+ * <p>Contains information for HTTP-based domain validation of certificates requested through CloudFront and issued by ACM.
+ *       This field exists only when the certificate type is <code>AMAZON_ISSUED</code> and the validation method is <code>HTTP</code>.</p>
+ * @public
+ */
+export interface HttpRedirect {
+    /**
+     * <p>The URL including the domain to be validated. The certificate authority sends <code>GET</code> requests here during validation.</p>
+     * @public
+     */
+    RedirectFrom?: string | undefined;
+    /**
+     * <p>The URL hosting the validation token. <code>RedirectFrom</code> must return this content or redirect here.</p>
+     * @public
+     */
+    RedirectTo?: string | undefined;
+}
 /**
  * @public
  * @enum
@@ -176,6 +193,7 @@ export interface ResourceRecord {
 export declare const ValidationMethod: {
     readonly DNS: "DNS";
     readonly EMAIL: "EMAIL";
+    readonly HTTP: "HTTP";
 };
 /**
  * @public
@@ -225,13 +243,11 @@ export interface DomainValidation {
      *             </li>
      *             <li>
      *                <p>
-     *                   <code>SUCCESS</code>
-     *                </p>
+     *                   <code/>SUCCESS</p>
      *             </li>
      *             <li>
      *                <p>
-     *                   <code>FAILED</code>
-     *                </p>
+     *                   <code/>FAILED</p>
      *             </li>
      *          </ul>
      * @public
@@ -241,14 +257,18 @@ export interface DomainValidation {
      * <p>Contains the CNAME record that you add to your DNS database for domain validation. For
      *       more information, see <a href="https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-validate-dns.html">Use DNS to Validate Domain Ownership</a>.</p>
      *          <p>Note: The CNAME information that you need does not include the name of your domain. If you
-     *       include
-   your domain name in the DNS database CNAME record, validation fails.
-   For example, if
+     *       include your domain name in the DNS database CNAME record, validation fails. For example, if
      *       the name is "_a79865eb4cd1a6ab990a45779b4e0b96.yourdomain.com", only
      *       "_a79865eb4cd1a6ab990a45779b4e0b96" must be used.</p>
      * @public
      */
     ResourceRecord?: ResourceRecord | undefined;
+    /**
+     * <p>Contains information for HTTP-based domain validation of certificates requested through CloudFront and issued by ACM.
+     *       This field exists only when the certificate type is <code>AMAZON_ISSUED</code> and the validation method is <code>HTTP</code>.</p>
+     * @public
+     */
+    HttpRedirect?: HttpRedirect | undefined;
     /**
      * <p>Specifies the domain validation method.</p>
      * @public
@@ -420,6 +440,17 @@ export interface KeyUsage {
      */
     Name?: KeyUsageName | undefined;
 }
+/**
+ * @public
+ * @enum
+ */
+export declare const CertificateManagedBy: {
+    readonly CLOUDFRONT: "CLOUDFRONT";
+};
+/**
+ * @public
+ */
+export type CertificateManagedBy = (typeof CertificateManagedBy)[keyof typeof CertificateManagedBy];
 /**
  * @public
  * @enum
@@ -521,6 +552,7 @@ export declare const RevocationReason: {
     readonly PRIVILEGE_WITHDRAWN: "PRIVILEGE_WITHDRAWN";
     readonly REMOVE_FROM_CRL: "REMOVE_FROM_CRL";
     readonly SUPERCEDED: "SUPERCEDED";
+    readonly SUPERSEDED: "SUPERSEDED";
     readonly UNSPECIFIED: "UNSPECIFIED";
 };
 /**
@@ -585,6 +617,11 @@ export interface CertificateDetail {
      * @public
      */
     SubjectAlternativeNames?: string[] | undefined;
+    /**
+     * <p>Identifies the Amazon Web Services service that manages the certificate issued by ACM.</p>
+     * @public
+     */
+    ManagedBy?: CertificateManagedBy | undefined;
     /**
      * <p>Contains information about the initial validation of each domain name that occurs as a
      *       result of the <a>RequestCertificate</a> request. This field exists only when the
@@ -1012,6 +1049,11 @@ export interface Filters {
      * @public
      */
     keyTypes?: KeyAlgorithm[] | undefined;
+    /**
+     * <p>Identifies the Amazon Web Services service that manages the certificate issued by ACM.</p>
+     * @public
+     */
+    managedBy?: CertificateManagedBy | undefined;
 }
 /**
  * @public
@@ -1106,18 +1148,18 @@ export interface CertificateSummary {
      *       list contains the domain names that are bound to the public key that is contained in the
      *       certificate. The subject alternative names include the canonical domain name (CN) of the
      *       certificate and additional domain names that can be used to connect to the website. </p>
-     *          <p>When called by <a>ListCertificates</a>, this parameter will only return the first 100 subject alternative
+     *          <p>When called by <a href="https://docs.aws.amazon.com/acm/latestAPIReference/API_ListCertificates.html">ListCertificates</a>, this parameter will only return the first 100 subject alternative
      *       names included in the certificate. To display the full list of subject alternative names, use
-     *       <a>DescribeCertificate</a>.</p>
+     *         <a href="https://docs.aws.amazon.com/acm/latestAPIReference/API_DescribeCertificate.html">DescribeCertificate</a>.</p>
      * @public
      */
     SubjectAlternativeNameSummaries?: string[] | undefined;
     /**
-     * <p>When called by <a>ListCertificates</a>, indicates whether the full list of subject alternative names has
+     * <p>When called by <a href="https://docs.aws.amazon.com/acm/latestAPIReference/API_ListCertificates.html">ListCertificates</a>, indicates whether the full list of subject alternative names has
      *       been included in the response. If false, the response includes all of the subject alternative
      *       names included in the certificate. If true, the response only includes the first 100 subject
      *       alternative names included in the certificate. To display the full list of subject alternative
-     *       names, use <a>DescribeCertificate</a>.</p>
+     *       names, use <a href="https://docs.aws.amazon.com/acm/latestAPIReference/API_DescribeCertificate.html">DescribeCertificate</a>.</p>
      * @public
      */
     HasAdditionalSubjectAlternativeNames?: boolean | undefined;
@@ -1211,6 +1253,11 @@ export interface CertificateSummary {
      * @public
      */
     RevokedAt?: Date | undefined;
+    /**
+     * <p>Identifies the Amazon Web Services service that manages the certificate issued by ACM.</p>
+     * @public
+     */
+    ManagedBy?: CertificateManagedBy | undefined;
 }
 /**
  * @public
@@ -1505,6 +1552,11 @@ export interface RequestCertificateRequest {
      * @public
      */
     KeyAlgorithm?: KeyAlgorithm | undefined;
+    /**
+     * <p>Identifies the Amazon Web Services service that manages the certificate issued by ACM.</p>
+     * @public
+     */
+    ManagedBy?: CertificateManagedBy | undefined;
 }
 /**
  * @public

package/dist-types/runtimeConfig.browser.d.ts

@@ -38,6 +38,7 @@ export declare const getRuntimeConfig: (config: ACMClientConfig) => {
     }) => import("@smithy/types").EndpointV2;
     tls?: boolean | undefined;
     serviceConfiguredEndpoint?: undefined;
+    authSchemePreference?: string[] | import("@smithy/types").Provider<string[]> | undefined;
     httpAuthSchemes: import("@smithy/types").HttpAuthScheme[];
     httpAuthSchemeProvider: import("./auth/httpAuthSchemeProvider").ACMHttpAuthSchemeProvider;
     credentials?: import("@smithy/types").AwsCredentialIdentity | import("@smithy/types").AwsCredentialIdentityProvider | undefined;

package/dist-types/runtimeConfig.d.ts

@@ -38,6 +38,7 @@ export declare const getRuntimeConfig: (config: ACMClientConfig) => {
     }) => import("@smithy/types").EndpointV2;
     tls?: boolean | undefined;
     serviceConfiguredEndpoint?: undefined;
+    authSchemePreference?: string[] | import("@smithy/types").Provider<string[]> | undefined;
     httpAuthSchemes: import("@smithy/types").HttpAuthScheme[];
     httpAuthSchemeProvider: import("./auth/httpAuthSchemeProvider").ACMHttpAuthSchemeProvider;
     credentials?: import("@smithy/types").AwsCredentialIdentity | import("@smithy/types").AwsCredentialIdentityProvider | undefined;

package/dist-types/runtimeConfig.native.d.ts

@@ -37,6 +37,7 @@ export declare const getRuntimeConfig: (config: ACMClientConfig) => {
     }) => import("@smithy/types").EndpointV2;
     tls?: boolean | undefined;
     serviceConfiguredEndpoint?: undefined;
+    authSchemePreference?: string[] | import("@smithy/types").Provider<string[]> | undefined;
     httpAuthSchemes: import("@smithy/types").HttpAuthScheme[];
     httpAuthSchemeProvider: import("./auth/httpAuthSchemeProvider").ACMHttpAuthSchemeProvider;
     credentials?: import("@smithy/types").AwsCredentialIdentity | import("@smithy/types").AwsCredentialIdentityProvider | undefined;

package/dist-types/ts3.4/auth/httpAuthSchemeProvider.d.ts

@@ -9,6 +9,7 @@ import {
   HttpAuthSchemeParameters,
   HttpAuthSchemeParametersProvider,
   HttpAuthSchemeProvider,
+  Provider,
 } from "@smithy/types";
 import { ACMClientResolvedConfig } from "../ACMClient";
 export interface ACMHttpAuthSchemeParameters extends HttpAuthSchemeParameters {
@@ -30,11 +31,13 @@ export interface ACMHttpAuthSchemeProvider
   extends HttpAuthSchemeProvider<ACMHttpAuthSchemeParameters> {}
 export declare const defaultACMHttpAuthSchemeProvider: ACMHttpAuthSchemeProvider;
 export interface HttpAuthSchemeInputConfig extends AwsSdkSigV4AuthInputConfig {
+  authSchemePreference?: string[] | Provider<string[]>;
   httpAuthSchemes?: HttpAuthScheme[];
   httpAuthSchemeProvider?: ACMHttpAuthSchemeProvider;
 }
 export interface HttpAuthSchemeResolvedConfig
   extends AwsSdkSigV4AuthResolvedConfig {
+  readonly authSchemePreference: Provider<string[]>;
   readonly httpAuthSchemes: HttpAuthScheme[];
   readonly httpAuthSchemeProvider: ACMHttpAuthSchemeProvider;
 }

package/dist-types/ts3.4/models/models_0.d.ts

@@ -63,6 +63,10 @@ export declare class TooManyTagsException extends __BaseException {
     opts: __ExceptionOptionType<TooManyTagsException, __BaseException>
   );
 }
+export interface HttpRedirect {
+  RedirectFrom?: string | undefined;
+  RedirectTo?: string | undefined;
+}
 export declare const RecordType: {
   readonly CNAME: "CNAME";
 };
@@ -75,6 +79,7 @@ export interface ResourceRecord {
 export declare const ValidationMethod: {
   readonly DNS: "DNS";
   readonly EMAIL: "EMAIL";
+  readonly HTTP: "HTTP";
 };
 export type ValidationMethod =
   (typeof ValidationMethod)[keyof typeof ValidationMethod];
@@ -90,6 +95,7 @@ export interface DomainValidation {
   ValidationDomain?: string | undefined;
   ValidationStatus?: DomainStatus | undefined;
   ResourceRecord?: ResourceRecord | undefined;
+  HttpRedirect?: HttpRedirect | undefined;
   ValidationMethod?: ValidationMethod | undefined;
 }
 export declare const ExtendedKeyUsageName: {
@@ -159,6 +165,11 @@ export type KeyUsageName = (typeof KeyUsageName)[keyof typeof KeyUsageName];
 export interface KeyUsage {
   Name?: KeyUsageName | undefined;
 }
+export declare const CertificateManagedBy: {
+  readonly CLOUDFRONT: "CLOUDFRONT";
+};
+export type CertificateManagedBy =
+  (typeof CertificateManagedBy)[keyof typeof CertificateManagedBy];
 export declare const CertificateTransparencyLoggingPreference: {
   readonly DISABLED: "DISABLED";
   readonly ENABLED: "ENABLED";
@@ -199,6 +210,7 @@ export declare const RevocationReason: {
   readonly PRIVILEGE_WITHDRAWN: "PRIVILEGE_WITHDRAWN";
   readonly REMOVE_FROM_CRL: "REMOVE_FROM_CRL";
   readonly SUPERCEDED: "SUPERCEDED";
+  readonly SUPERSEDED: "SUPERSEDED";
   readonly UNSPECIFIED: "UNSPECIFIED";
 };
 export type RevocationReason =
@@ -225,6 +237,7 @@ export interface CertificateDetail {
   CertificateArn?: string | undefined;
   DomainName?: string | undefined;
   SubjectAlternativeNames?: string[] | undefined;
+  ManagedBy?: CertificateManagedBy | undefined;
   DomainValidationOptions?: DomainValidation[] | undefined;
   Serial?: string | undefined;
   Subject?: string | undefined;
@@ -327,6 +340,7 @@ export interface Filters {
   extendedKeyUsage?: ExtendedKeyUsageName[] | undefined;
   keyUsage?: KeyUsageName[] | undefined;
   keyTypes?: KeyAlgorithm[] | undefined;
+  managedBy?: CertificateManagedBy | undefined;
 }
 export declare const SortBy: {
   readonly CREATED_AT: "CREATED_AT";
@@ -364,6 +378,7 @@ export interface CertificateSummary {
   IssuedAt?: Date | undefined;
   ImportedAt?: Date | undefined;
   RevokedAt?: Date | undefined;
+  ManagedBy?: CertificateManagedBy | undefined;
 }
 export interface ListCertificatesResponse {
   NextToken?: string | undefined;
@@ -417,6 +432,7 @@ export interface RequestCertificateRequest {
   CertificateAuthorityArn?: string | undefined;
   Tags?: Tag[] | undefined;
   KeyAlgorithm?: KeyAlgorithm | undefined;
+  ManagedBy?: CertificateManagedBy | undefined;
 }
 export interface RequestCertificateResponse {
   CertificateArn?: string | undefined;

package/dist-types/ts3.4/runtimeConfig.browser.d.ts

@@ -72,6 +72,10 @@ export declare const getRuntimeConfig: (config: ACMClientConfig) => {
   ) => import("@smithy/types").EndpointV2;
   tls?: boolean | undefined;
   serviceConfiguredEndpoint?: undefined;
+  authSchemePreference?:
+    | string[]
+    | import("@smithy/types").Provider<string[]>
+    | undefined;
   httpAuthSchemes: import("@smithy/types").HttpAuthScheme[];
   httpAuthSchemeProvider: import("./auth/httpAuthSchemeProvider").ACMHttpAuthSchemeProvider;
   credentials?:

package/dist-types/ts3.4/runtimeConfig.d.ts

@@ -73,6 +73,10 @@ export declare const getRuntimeConfig: (config: ACMClientConfig) => {
   ) => import("@smithy/types").EndpointV2;
   tls?: boolean | undefined;
   serviceConfiguredEndpoint?: undefined;
+  authSchemePreference?:
+    | string[]
+    | import("@smithy/types").Provider<string[]>
+    | undefined;
   httpAuthSchemes: import("@smithy/types").HttpAuthScheme[];
   httpAuthSchemeProvider: import("./auth/httpAuthSchemeProvider").ACMHttpAuthSchemeProvider;
   credentials?:

package/dist-types/ts3.4/runtimeConfig.native.d.ts

@@ -76,6 +76,10 @@ export declare const getRuntimeConfig: (config: ACMClientConfig) => {
   ) => import("@smithy/types").EndpointV2;
   tls?: boolean | undefined;
   serviceConfiguredEndpoint?: undefined;
+  authSchemePreference?:
+    | string[]
+    | import("@smithy/types").Provider<string[]>
+    | undefined;
   httpAuthSchemes: import("@smithy/types").HttpAuthScheme[];
   httpAuthSchemeProvider: import("./auth/httpAuthSchemeProvider").ACMHttpAuthSchemeProvider;
   credentials?:

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-acm",
   "description": "AWS SDK for JavaScript Acm Client for Node.js, Browser and React Native",
-  "version": "3.796.0",
+  "version": "3.798.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-acm",
@@ -20,38 +20,38 @@
   "dependencies": {
     "@aws-crypto/sha256-browser": "5.2.0",
     "@aws-crypto/sha256-js": "5.2.0",
-    "@aws-sdk/core": "3.796.0",
-    "@aws-sdk/credential-provider-node": "3.796.0",
+    "@aws-sdk/core": "3.798.0",
+    "@aws-sdk/credential-provider-node": "3.798.0",
     "@aws-sdk/middleware-host-header": "3.775.0",
     "@aws-sdk/middleware-logger": "3.775.0",
     "@aws-sdk/middleware-recursion-detection": "3.775.0",
-    "@aws-sdk/middleware-user-agent": "3.796.0",
+    "@aws-sdk/middleware-user-agent": "3.798.0",
     "@aws-sdk/region-config-resolver": "3.775.0",
     "@aws-sdk/types": "3.775.0",
     "@aws-sdk/util-endpoints": "3.787.0",
     "@aws-sdk/util-user-agent-browser": "3.775.0",
-    "@aws-sdk/util-user-agent-node": "3.796.0",
+    "@aws-sdk/util-user-agent-node": "3.798.0",
     "@smithy/config-resolver": "^4.1.0",
-    "@smithy/core": "^3.2.0",
+    "@smithy/core": "^3.3.0",
     "@smithy/fetch-http-handler": "^5.0.2",
     "@smithy/hash-node": "^4.0.2",
     "@smithy/invalid-dependency": "^4.0.2",
     "@smithy/middleware-content-length": "^4.0.2",
-    "@smithy/middleware-endpoint": "^4.1.0",
-    "@smithy/middleware-retry": "^4.1.0",
+    "@smithy/middleware-endpoint": "^4.1.1",
+    "@smithy/middleware-retry": "^4.1.1",
     "@smithy/middleware-serde": "^4.0.3",
     "@smithy/middleware-stack": "^4.0.2",
     "@smithy/node-config-provider": "^4.0.2",
     "@smithy/node-http-handler": "^4.0.4",
     "@smithy/protocol-http": "^5.1.0",
-    "@smithy/smithy-client": "^4.2.0",
+    "@smithy/smithy-client": "^4.2.1",
     "@smithy/types": "^4.2.0",
     "@smithy/url-parser": "^4.0.2",
     "@smithy/util-base64": "^4.0.0",
     "@smithy/util-body-length-browser": "^4.0.0",
     "@smithy/util-body-length-node": "^4.0.0",
-    "@smithy/util-defaults-mode-browser": "^4.0.8",
-    "@smithy/util-defaults-mode-node": "^4.0.8",
+    "@smithy/util-defaults-mode-browser": "^4.0.9",
+    "@smithy/util-defaults-mode-node": "^4.0.9",
     "@smithy/util-endpoints": "^3.0.2",
     "@smithy/util-middleware": "^4.0.2",
     "@smithy/util-retry": "^4.0.2",