@aws-sdk/client-bedrock-agentcore-control 3.1011.0 → 3.1013.0

package/dist-types/models/models_0.d.ts

@@ -1,5 +1,5 @@
 import { DocumentType as __DocumentType } from "@smithy/types";
-import { AgentManagedRuntimeType, AgentRuntimeEndpointStatus, AgentRuntimeStatus, ApiKeyCredentialLocation, AuthorizerType, BrowserNetworkMode, BrowserProfileStatus, BrowserStatus, ClaimMatchOperatorType, CodeInterpreterNetworkMode, CodeInterpreterStatus, ContentLevel, ContentType, CredentialProviderType, CredentialProviderVendorType, EvaluatorLevel, EvaluatorStatus, EvaluatorType, ExceptionLevel, FilterOperator, GatewayInterceptionPoint, GatewayPolicyEngineMode, GatewayProtocolType, GatewayStatus, InboundTokenClaimValueType, KeyType, MemoryStatus, MemoryStrategyStatus, MemoryStrategyType, MemoryView, NetworkMode, OAuthGrantType, OnlineEvaluationConfigStatus, OnlineEvaluationExecutionStatus, OverrideType, PolicyEngineStatus, PolicyGenerationStatus, ResourceType, RestApiMethod, SearchType, ServerProtocol, TargetStatus } from "./enums";
+import { AgentManagedRuntimeType, AgentRuntimeEndpointStatus, AgentRuntimeStatus, ApiKeyCredentialLocation, AuthorizerType, BrowserEnterprisePolicyType, BrowserNetworkMode, BrowserProfileStatus, BrowserStatus, ClaimMatchOperatorType, CodeInterpreterNetworkMode, CodeInterpreterStatus, ContentLevel, ContentType, CredentialProviderType, CredentialProviderVendorType, EvaluatorLevel, EvaluatorStatus, EvaluatorType, ExceptionLevel, FilterOperator, GatewayInterceptionPoint, GatewayPolicyEngineMode, GatewayProtocolType, GatewayStatus, InboundTokenClaimValueType, KeyType, MemoryStatus, MemoryStrategyStatus, MemoryStrategyType, MemoryView, NetworkMode, OAuthGrantType, OnlineEvaluationConfigStatus, OnlineEvaluationExecutionStatus, OverrideType, PolicyEngineStatus, ResourceType, RestApiMethod, SearchType, ServerProtocol, TargetStatus } from "./enums";
 /**
  * @public
  */
@@ -1678,6 +1678,110 @@ export interface BrowserSigningConfigInput {
      */
     enabled: boolean | undefined;
 }
+/**
+ * <p>The Amazon Web Services Secrets Manager location configuration.</p>
+ * @public
+ */
+export interface SecretsManagerLocation {
+    /**
+     * <p>The ARN of the Amazon Web Services Secrets Manager secret containing the certificate.</p>
+     * @public
+     */
+    secretArn: string | undefined;
+}
+/**
+ * <p>The location from which to retrieve a certificate.</p>
+ * @public
+ */
+export type CertificateLocation = CertificateLocation.SecretsManagerMember | CertificateLocation.$UnknownMember;
+/**
+ * @public
+ */
+export declare namespace CertificateLocation {
+    /**
+     * <p>The Amazon Web Services Secrets Manager location of the certificate.</p>
+     * @public
+     */
+    interface SecretsManagerMember {
+        secretsManager: SecretsManagerLocation;
+        $unknown?: never;
+    }
+    /**
+     * @public
+     */
+    interface $UnknownMember {
+        secretsManager?: never;
+        $unknown: [string, any];
+    }
+    /**
+     * @deprecated unused in schema-serde mode.
+     *
+     */
+    interface Visitor<T> {
+        secretsManager: (value: SecretsManagerLocation) => T;
+        _: (name: string, value: any) => T;
+    }
+}
+/**
+ * <p>A certificate to install in the browser or code interpreter.</p>
+ * @public
+ */
+export interface Certificate {
+    /**
+     * <p>The location of the certificate.</p>
+     * @public
+     */
+    location: CertificateLocation | undefined;
+}
+/**
+ * <p>The location of a resource.</p>
+ * @public
+ */
+export type ResourceLocation = ResourceLocation.S3Member | ResourceLocation.$UnknownMember;
+/**
+ * @public
+ */
+export declare namespace ResourceLocation {
+    /**
+     * <p>The Amazon S3 location for storing data. This structure defines where in Amazon S3 data is stored.</p>
+     * @public
+     */
+    interface S3Member {
+        s3: S3Location;
+        $unknown?: never;
+    }
+    /**
+     * @public
+     */
+    interface $UnknownMember {
+        s3?: never;
+        $unknown: [string, any];
+    }
+    /**
+     * @deprecated unused in schema-serde mode.
+     *
+     */
+    interface Visitor<T> {
+        s3: (value: S3Location) => T;
+        _: (name: string, value: any) => T;
+    }
+}
+/**
+ * <p>Browser enterprise policy configuration.</p>
+ * @public
+ */
+export interface BrowserEnterprisePolicy {
+    /**
+     * <p>The location of the enterprise policy file.</p>
+     * @public
+     */
+    location: ResourceLocation | undefined;
+    /**
+     * <p>The type of browser enterprise policy. Available values are <code>MANAGED</code> and <code>RECOMMENDED</code>.</p>
+     * @public
+     */
+    type?: BrowserEnterprisePolicyType | undefined;
+}
 /**
  * <p>The network configuration for a browser. This structure defines how the browser connects to the network.</p>
  * @public
@@ -1744,6 +1848,16 @@ export interface CreateBrowserRequest {
      * @public
      */
     browserSigning?: BrowserSigningConfigInput | undefined;
+    /**
+     * <p>A list of enterprise policy files for the browser.</p>
+     * @public
+     */
+    enterprisePolicies?: BrowserEnterprisePolicy[] | undefined;
+    /**
+     * <p>A list of certificates to install in the browser.</p>
+     * @public
+     */
+    certificates?: Certificate[] | undefined;
     /**
      * <p>A unique, case-sensitive identifier to ensure that the operation completes no more than one time. If this token matches a previous request, Amazon Bedrock AgentCore ignores the request but does not return an error.</p>
      * @public
@@ -1880,6 +1994,16 @@ export interface GetBrowserResponse {
      * @public
      */
     browserSigning?: BrowserSigningConfigOutput | undefined;
+    /**
+     * <p>The list of enterprise policy files configured for the browser.</p>
+     * @public
+     */
+    enterprisePolicies?: BrowserEnterprisePolicy[] | undefined;
+    /**
+     * <p>The list of certificates configured for the browser.</p>
+     * @public
+     */
+    certificates?: Certificate[] | undefined;
     /**
      * <p>The current status of the browser.</p>
      * @public
@@ -2017,6 +2141,11 @@ export interface CreateCodeInterpreterRequest {
      * @public
      */
     networkConfiguration: CodeInterpreterNetworkConfiguration | undefined;
+    /**
+     * <p>A list of certificates to install in the code interpreter.</p>
+     * @public
+     */
+    certificates?: Certificate[] | undefined;
     /**
      * <p>A unique, case-sensitive identifier to ensure that the operation completes no more than one time. If this token matches a previous request, Amazon Bedrock AgentCore ignores the request but does not return an error.</p>
      * @public
@@ -2137,6 +2266,11 @@ export interface GetCodeInterpreterResponse {
      * @public
      */
     status: CodeInterpreterStatus | undefined;
+    /**
+     * <p>The list of certificates configured for the code interpreter.</p>
+     * @public
+     */
+    certificates?: Certificate[] | undefined;
     /**
      * <p>The reason for failure if the code interpreter is in a failed state.</p>
      * @public
@@ -8065,143 +8199,3 @@ export interface GetPolicyGenerationRequest {
      */
     policyEngineId: string | undefined;
 }
-/**
- * <p>Represents a resource within the AgentCore Policy system. Resources are the targets of policy evaluation. Currently, only AgentCore Gateways are supported as resources for policy enforcement.</p>
- * @public
- */
-export type Resource = Resource.ArnMember | Resource.$UnknownMember;
-/**
- * @public
- */
-export declare namespace Resource {
-    /**
-     * <p>The Amazon Resource Name (ARN) of the resource. This globally unique identifier specifies the exact resource that policies will be evaluated against for access control decisions. </p>
-     * @public
-     */
-    interface ArnMember {
-        arn: string;
-        $unknown?: never;
-    }
-    /**
-     * @public
-     */
-    interface $UnknownMember {
-        arn?: never;
-        $unknown: [string, any];
-    }
-    /**
-     * @deprecated unused in schema-serde mode.
-     *
-     */
-    interface Visitor<T> {
-        arn: (value: string) => T;
-        _: (name: string, value: any) => T;
-    }
-}
-/**
- * @public
- */
-export interface GetPolicyGenerationResponse {
-    /**
-     * <p>The identifier of the policy engine associated with this policy generation. This confirms the policy engine context for the generation operation.</p>
-     * @public
-     */
-    policyEngineId: string | undefined;
-    /**
-     * <p>The unique identifier of the policy generation request. This matches the generation ID provided in the request and serves as the tracking identifier.</p>
-     * @public
-     */
-    policyGenerationId: string | undefined;
-    /**
-     * <p>The customer-assigned name for the policy generation request. This helps identify and track generation operations across multiple requests.</p>
-     * @public
-     */
-    name: string | undefined;
-    /**
-     * <p>The Amazon Resource Name (ARN) of the policy generation. This globally unique identifier can be used for tracking, auditing, and cross-service references.</p>
-     * @public
-     */
-    policyGenerationArn: string | undefined;
-    /**
-     * <p>The resource information associated with the policy generation. This provides context about the target resources for which the policies are being generated.</p>
-     * @public
-     */
-    resource: Resource | undefined;
-    /**
-     * <p>The timestamp when the policy generation request was created. This is used for tracking and auditing generation operations and their lifecycle.</p>
-     * @public
-     */
-    createdAt: Date | undefined;
-    /**
-     * <p>The timestamp when the policy generation was last updated. This tracks the progress of the generation process and any status changes.</p>
-     * @public
-     */
-    updatedAt: Date | undefined;
-    /**
-     * <p>The current status of the policy generation. This indicates whether the generation is in progress, completed successfully, or failed during processing.</p>
-     * @public
-     */
-    status: PolicyGenerationStatus | undefined;
-    /**
-     * <p>Additional information about the generation status. This provides details about any failures, warnings, or the current state of the generation process.</p>
-     * @public
-     */
-    statusReasons: string[] | undefined;
-    /**
-     * <p>The findings and results from the policy generation process. This includes any issues, recommendations, validation results, or insights from the generated policies.</p>
-     * @public
-     */
-    findings?: string | undefined;
-}
-/**
- * @public
- */
-export interface ListPolicyGenerationAssetsRequest {
-    /**
-     * <p>The unique identifier of the policy generation request whose assets are to be retrieved. This must be a valid generation ID from a previous <a href="https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_StartPolicyGeneration.html">StartPolicyGeneration</a> call that has completed processing.</p>
-     * @public
-     */
-    policyGenerationId: string | undefined;
-    /**
-     * <p>The unique identifier of the policy engine associated with the policy generation request. This provides the context for the generation operation and ensures assets are retrieved from the correct policy engine.</p>
-     * @public
-     */
-    policyEngineId: string | undefined;
-    /**
-     * <p>A pagination token returned from a previous <a href="https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_ListPolicyGenerationAssets.html">ListPolicyGenerationAssets</a> call. Use this token to retrieve the next page of assets when the response is paginated due to large numbers of generated policy options.</p>
-     * @public
-     */
-    nextToken?: string | undefined;
-    /**
-     * <p>The maximum number of policy generation assets to return in a single response. If not specified, the default is 10 assets per page, with a maximum of 100 per page. This helps control response size when dealing with policy generations that produce many alternative policy options.</p>
-     * @public
-     */
-    maxResults?: number | undefined;
-}
-/**
- * <p>Represents a Cedar policy statement within the AgentCore Policy system. Cedar is a policy language designed for authorization that provides human-readable, analyzable, and high-performance policy evaluation for controlling agent behavior and access decisions. </p>
- * @public
- */
-export interface CedarPolicy {
-    /**
-     * <p>The Cedar policy statement that defines the authorization logic. This statement follows Cedar syntax and specifies principals, actions, resources, and conditions that determine when access should be allowed or denied.</p>
-     * @public
-     */
-    statement: string | undefined;
-}
-/**
- * <p>Represents the information identifying a generated policy asset from the AI-powered policy generation process within the AgentCore Policy system. Each asset contains a Cedar policy statement generated from natural language input, along with associated metadata and analysis findings to help users evaluate and select the most appropriate policy option.</p>
- * @public
- */
-export interface PolicyGenerationDetails {
-    /**
-     * <p>The unique identifier for this policy generation request.</p>
-     * @public
-     */
-    policyGenerationId: string | undefined;
-    /**
-     * <p>The unique identifier for this generated policy asset within the policy generation request.</p>
-     * @public
-     */
-    policyGenerationAssetId: string | undefined;
-}

package/dist-types/models/models_1.d.ts

@@ -1,5 +1,145 @@
 import { FindingType, PolicyGenerationStatus, PolicyStatus, PolicyValidationMode, SchemaType, TargetStatus } from "./enums";
-import { type KmsConfiguration, type MetadataConfiguration, type Resource, type UpdatedDescription, ApiGatewayTargetConfiguration, ApiSchemaConfiguration, CedarPolicy, CredentialProviderConfiguration, McpServerTargetConfiguration, PolicyGenerationDetails, S3Configuration } from "./models_0";
+import { type KmsConfiguration, type MetadataConfiguration, type UpdatedDescription, ApiGatewayTargetConfiguration, ApiSchemaConfiguration, CredentialProviderConfiguration, McpServerTargetConfiguration, S3Configuration } from "./models_0";
+/**
+ * <p>Represents a resource within the AgentCore Policy system. Resources are the targets of policy evaluation. Currently, only AgentCore Gateways are supported as resources for policy enforcement.</p>
+ * @public
+ */
+export type Resource = Resource.ArnMember | Resource.$UnknownMember;
+/**
+ * @public
+ */
+export declare namespace Resource {
+    /**
+     * <p>The Amazon Resource Name (ARN) of the resource. This globally unique identifier specifies the exact resource that policies will be evaluated against for access control decisions. </p>
+     * @public
+     */
+    interface ArnMember {
+        arn: string;
+        $unknown?: never;
+    }
+    /**
+     * @public
+     */
+    interface $UnknownMember {
+        arn?: never;
+        $unknown: [string, any];
+    }
+    /**
+     * @deprecated unused in schema-serde mode.
+     *
+     */
+    interface Visitor<T> {
+        arn: (value: string) => T;
+        _: (name: string, value: any) => T;
+    }
+}
+/**
+ * @public
+ */
+export interface GetPolicyGenerationResponse {
+    /**
+     * <p>The identifier of the policy engine associated with this policy generation. This confirms the policy engine context for the generation operation.</p>
+     * @public
+     */
+    policyEngineId: string | undefined;
+    /**
+     * <p>The unique identifier of the policy generation request. This matches the generation ID provided in the request and serves as the tracking identifier.</p>
+     * @public
+     */
+    policyGenerationId: string | undefined;
+    /**
+     * <p>The customer-assigned name for the policy generation request. This helps identify and track generation operations across multiple requests.</p>
+     * @public
+     */
+    name: string | undefined;
+    /**
+     * <p>The Amazon Resource Name (ARN) of the policy generation. This globally unique identifier can be used for tracking, auditing, and cross-service references.</p>
+     * @public
+     */
+    policyGenerationArn: string | undefined;
+    /**
+     * <p>The resource information associated with the policy generation. This provides context about the target resources for which the policies are being generated.</p>
+     * @public
+     */
+    resource: Resource | undefined;
+    /**
+     * <p>The timestamp when the policy generation request was created. This is used for tracking and auditing generation operations and their lifecycle.</p>
+     * @public
+     */
+    createdAt: Date | undefined;
+    /**
+     * <p>The timestamp when the policy generation was last updated. This tracks the progress of the generation process and any status changes.</p>
+     * @public
+     */
+    updatedAt: Date | undefined;
+    /**
+     * <p>The current status of the policy generation. This indicates whether the generation is in progress, completed successfully, or failed during processing.</p>
+     * @public
+     */
+    status: PolicyGenerationStatus | undefined;
+    /**
+     * <p>Additional information about the generation status. This provides details about any failures, warnings, or the current state of the generation process.</p>
+     * @public
+     */
+    statusReasons: string[] | undefined;
+    /**
+     * <p>The findings and results from the policy generation process. This includes any issues, recommendations, validation results, or insights from the generated policies.</p>
+     * @public
+     */
+    findings?: string | undefined;
+}
+/**
+ * @public
+ */
+export interface ListPolicyGenerationAssetsRequest {
+    /**
+     * <p>The unique identifier of the policy generation request whose assets are to be retrieved. This must be a valid generation ID from a previous <a href="https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_StartPolicyGeneration.html">StartPolicyGeneration</a> call that has completed processing.</p>
+     * @public
+     */
+    policyGenerationId: string | undefined;
+    /**
+     * <p>The unique identifier of the policy engine associated with the policy generation request. This provides the context for the generation operation and ensures assets are retrieved from the correct policy engine.</p>
+     * @public
+     */
+    policyEngineId: string | undefined;
+    /**
+     * <p>A pagination token returned from a previous <a href="https://docs.aws.amazon.com/bedrock-agentcore-control/latest/APIReference/API_ListPolicyGenerationAssets.html">ListPolicyGenerationAssets</a> call. Use this token to retrieve the next page of assets when the response is paginated due to large numbers of generated policy options.</p>
+     * @public
+     */
+    nextToken?: string | undefined;
+    /**
+     * <p>The maximum number of policy generation assets to return in a single response. If not specified, the default is 10 assets per page, with a maximum of 100 per page. This helps control response size when dealing with policy generations that produce many alternative policy options.</p>
+     * @public
+     */
+    maxResults?: number | undefined;
+}
+/**
+ * <p>Represents a Cedar policy statement within the AgentCore Policy system. Cedar is a policy language designed for authorization that provides human-readable, analyzable, and high-performance policy evaluation for controlling agent behavior and access decisions. </p>
+ * @public
+ */
+export interface CedarPolicy {
+    /**
+     * <p>The Cedar policy statement that defines the authorization logic. This statement follows Cedar syntax and specifies principals, actions, resources, and conditions that determine when access should be allowed or denied.</p>
+     * @public
+     */
+    statement: string | undefined;
+}
+/**
+ * <p>Represents the information identifying a generated policy asset from the AI-powered policy generation process within the AgentCore Policy system. Each asset contains a Cedar policy statement generated from natural language input, along with associated metadata and analysis findings to help users evaluate and select the most appropriate policy option.</p>
+ * @public
+ */
+export interface PolicyGenerationDetails {
+    /**
+     * <p>The unique identifier for this policy generation request.</p>
+     * @public
+     */
+    policyGenerationId: string | undefined;
+    /**
+     * <p>The unique identifier for this generated policy asset within the policy generation request.</p>
+     * @public
+     */
+    policyGenerationAssetId: string | undefined;
+}
 /**
  * <p>Represents the definition structure for policies within the AgentCore Policy system. This structure encapsulates different policy formats and languages that can be used to define access control rules.</p>
  * @public

package/dist-types/schemas/schemas_0.d.ts

@@ -32,6 +32,7 @@ export declare var AtlassianOauth2ProviderConfigInput$: StaticStructureSchema;
 export declare var AtlassianOauth2ProviderConfigOutput$: StaticStructureSchema;
 export declare var AuthorizingClaimMatchValueType$: StaticStructureSchema;
 export declare var BedrockEvaluatorModelConfig$: StaticStructureSchema;
+export declare var BrowserEnterprisePolicy$: StaticStructureSchema;
 export declare var BrowserNetworkConfiguration$: StaticStructureSchema;
 export declare var BrowserProfileSummary$: StaticStructureSchema;
 export declare var BrowserSigningConfigInput$: StaticStructureSchema;
@@ -39,6 +40,7 @@ export declare var BrowserSigningConfigOutput$: StaticStructureSchema;
 export declare var BrowserSummary$: StaticStructureSchema;
 export declare var CategoricalScaleDefinition$: StaticStructureSchema;
 export declare var CedarPolicy$: StaticStructureSchema;
+export declare var Certificate$: StaticStructureSchema;
 export declare var CloudWatchLogsInputConfig$: StaticStructureSchema;
 export declare var CloudWatchOutputConfig$: StaticStructureSchema;
 export declare var CodeConfiguration$: StaticStructureSchema;
@@ -265,6 +267,7 @@ export declare var SalesforceOauth2ProviderConfigOutput$: StaticStructureSchema;
 export declare var SamplingConfig$: StaticStructureSchema;
 export declare var SchemaDefinition$: StaticStructureSchema;
 export declare var Secret$: StaticStructureSchema;
+export declare var SecretsManagerLocation$: StaticStructureSchema;
 export declare var SelfManagedConfiguration$: StaticStructureSchema;
 export declare var SelfManagedConfigurationInput$: StaticStructureSchema;
 export declare var SemanticConsolidationOverride$: StaticStructureSchema;
@@ -336,6 +339,7 @@ export declare var WorkloadIdentityType$: StaticStructureSchema;
 export declare var AgentRuntimeArtifact$: StaticUnionSchema;
 export declare var ApiSchemaConfiguration$: StaticUnionSchema;
 export declare var AuthorizerConfiguration$: StaticUnionSchema;
+export declare var CertificateLocation$: StaticUnionSchema;
 export declare var ClaimMatchValueType$: StaticUnionSchema;
 export declare var Code$: StaticUnionSchema;
 export declare var ConsolidationConfiguration$: StaticUnionSchema;
@@ -369,6 +373,7 @@ export declare var RatingScale$: StaticUnionSchema;
 export declare var ReflectionConfiguration$: StaticUnionSchema;
 export declare var RequestHeaderConfiguration$: StaticUnionSchema;
 export declare var Resource$: StaticUnionSchema;
+export declare var ResourceLocation$: StaticUnionSchema;
 export declare var StreamDeliveryResource$: StaticUnionSchema;
 export declare var TargetConfiguration$: StaticUnionSchema;
 export declare var ToolSchema$: StaticUnionSchema;

package/dist-types/ts3.4/commands/GetPolicyGenerationCommand.d.ts

@@ -5,10 +5,8 @@ import {
   ServiceInputTypes,
   ServiceOutputTypes,
 } from "../BedrockAgentCoreControlClient";
-import {
-  GetPolicyGenerationRequest,
-  GetPolicyGenerationResponse,
-} from "../models/models_0";
+import { GetPolicyGenerationRequest } from "../models/models_0";
+import { GetPolicyGenerationResponse } from "../models/models_1";
 export { __MetadataBearer };
 export { $Command };
 export interface GetPolicyGenerationCommandInput

package/dist-types/ts3.4/commands/ListPolicyGenerationAssetsCommand.d.ts

@@ -5,8 +5,10 @@ import {
   ServiceInputTypes,
   ServiceOutputTypes,
 } from "../BedrockAgentCoreControlClient";
-import { ListPolicyGenerationAssetsRequest } from "../models/models_0";
-import { ListPolicyGenerationAssetsResponse } from "../models/models_1";
+import {
+  ListPolicyGenerationAssetsRequest,
+  ListPolicyGenerationAssetsResponse,
+} from "../models/models_1";
 export { __MetadataBearer };
 export { $Command };
 export interface ListPolicyGenerationAssetsCommandInput

package/dist-types/ts3.4/models/enums.d.ts

@@ -70,6 +70,12 @@ export declare const BrowserProfileStatus: {
 };
 export type BrowserProfileStatus =
   (typeof BrowserProfileStatus)[keyof typeof BrowserProfileStatus];
+export declare const BrowserEnterprisePolicyType: {
+  readonly MANAGED: "MANAGED";
+  readonly RECOMMENDED: "RECOMMENDED";
+};
+export type BrowserEnterprisePolicyType =
+  (typeof BrowserEnterprisePolicyType)[keyof typeof BrowserEnterprisePolicyType];
 export declare const BrowserNetworkMode: {
   readonly PUBLIC: "PUBLIC";
   readonly VPC: "VPC";