@aws-sdk/client-cloudfront 3.379.1 → 3.382.0

package/dist-types/models/models_0.d.ts

@@ -37,10 +37,12 @@ export declare class AccessDenied extends __BaseException {
  */
 export interface KeyPairIds {
     /**
+     * @public
      * <p>The number of key pair identifiers in the list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A list of CloudFront key pair identifiers.</p>
      */
     Items?: string[];
@@ -52,10 +54,12 @@ export interface KeyPairIds {
  */
 export interface KGKeyPairIds {
     /**
+     * @public
      * <p>The identifier of the key group that contains the public keys.</p>
      */
     KeyGroupId?: string;
     /**
+     * @public
      * <p>A list of CloudFront key pair identifiers.</p>
      */
     KeyPairIds?: KeyPairIds;
@@ -67,16 +71,19 @@ export interface KGKeyPairIds {
  */
 export interface ActiveTrustedKeyGroups {
     /**
+     * @public
      * <p>This field is <code>true</code> if any of the key groups have public keys that CloudFront
      * 			can use to verify the signatures of signed URLs and signed cookies. If not, this field
      * 			is <code>false</code>.</p>
      */
     Enabled: boolean | undefined;
     /**
+     * @public
      * <p>The number of key groups in the list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A list of key groups, including the identifiers of the public keys in each key group
      * 			that CloudFront can use to verify the signatures of signed URLs and signed cookies.</p>
      */
@@ -89,6 +96,7 @@ export interface ActiveTrustedKeyGroups {
  */
 export interface Signer {
     /**
+     * @public
      * <p>An Amazon Web Services account number that contains active CloudFront key pairs that CloudFront can use to
      * 			verify the signatures of signed URLs and signed cookies. If the Amazon Web Services account that owns
      * 			the key pairs is the same account that owns the CloudFront distribution, the value of this
@@ -96,6 +104,7 @@ export interface Signer {
      */
     AwsAccountNumber?: string;
     /**
+     * @public
      * <p>A list of CloudFront key pair identifiers.</p>
      */
     KeyPairIds?: KeyPairIds;
@@ -107,16 +116,18 @@ export interface Signer {
  */
 export interface ActiveTrustedSigners {
     /**
-     * <p>This field is <code>true</code> if any of the Amazon Web Services accounts in the list have active
-     * 			CloudFront key pairs that CloudFront can use to verify the signatures of signed URLs and signed
-     * 			cookies. If not, this field is <code>false</code>.</p>
+     * @public
+     * <p>This field is <code>true</code> if any of the Amazon Web Services accounts in the list are configured as
+     * 			trusted signers. If not, this field is <code>false</code>.</p>
      */
     Enabled: boolean | undefined;
     /**
+     * @public
      * <p>The number of Amazon Web Services accounts in the list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A list of Amazon Web Services accounts and the identifiers of active CloudFront key pairs in each account
      * 			that CloudFront can use to verify the signatures of signed URLs and signed cookies.</p>
      */
@@ -129,11 +140,13 @@ export interface ActiveTrustedSigners {
  */
 export interface Aliases {
     /**
+     * @public
      * <p>The number of CNAME aliases, if any, that you want to associate with this
      * 			distribution.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A complex type that contains the CNAME aliases, if any, that you want to associate
      * 			with this distribution.</p>
      */
@@ -164,10 +177,12 @@ export type ICPRecordalStatus = (typeof ICPRecordalStatus)[keyof typeof ICPRecor
  */
 export interface AliasICPRecordal {
     /**
+     * @public
      * <p>A domain name associated with a distribution.</p>
      */
     CNAME?: string;
     /**
+     * @public
      * <p>The Internet Content Provider (ICP) recordal status for a CNAME. The ICPRecordalStatus
      * 			is set to APPROVED for all CNAMEs (aliases) in regions outside of China.</p>
      *          <p>The status values returned are the following:</p>
@@ -234,6 +249,7 @@ export type Method = (typeof Method)[keyof typeof Method];
  */
 export interface CachedMethods {
     /**
+     * @public
      * <p>The number of HTTP methods for which you want CloudFront to cache responses. Valid values
      * 			are <code>2</code> (for caching responses to <code>GET</code> and <code>HEAD</code>
      * 			requests) and <code>3</code> (for caching responses to <code>GET</code>,
@@ -241,6 +257,7 @@ export interface CachedMethods {
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A complex type that contains the HTTP methods that you want CloudFront to cache responses
      * 			to.</p>
      */
@@ -270,6 +287,7 @@ export interface CachedMethods {
  */
 export interface AllowedMethods {
     /**
+     * @public
      * <p>The number of HTTP methods that you want CloudFront to forward to your origin. Valid values
      * 			are 2 (for <code>GET</code> and <code>HEAD</code> requests), 3 (for <code>GET</code>,
      * 				<code>HEAD</code>, and <code>OPTIONS</code> requests) and 7 (for <code>GET, HEAD,
@@ -277,11 +295,13 @@ export interface AllowedMethods {
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A complex type that contains the HTTP methods that you want CloudFront to process and
      * 			forward to your origin.</p>
      */
     Items: (Method | string)[] | undefined;
     /**
+     * @public
      * <p>A complex type that controls whether CloudFront caches the response to requests using the
      * 			specified HTTP methods. There are two choices:</p>
      *          <ul>
@@ -305,10 +325,12 @@ export interface AllowedMethods {
  */
 export interface AssociateAliasRequest {
     /**
+     * @public
      * <p>The ID of the distribution that you're associating the alias with.</p>
      */
     TargetDistributionId: string | undefined;
     /**
+     * @public
      * <p>The alias (also known as a CNAME) to add to the target distribution.</p>
      */
     Alias: string | undefined;
@@ -397,10 +419,12 @@ export type ItemSelection = (typeof ItemSelection)[keyof typeof ItemSelection];
  */
 export interface CookieNames {
     /**
+     * @public
      * <p>The number of cookie names in the <code>Items</code> list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A list of cookie names.</p>
      */
     Items?: string[];
@@ -421,6 +445,7 @@ export interface CookieNames {
  */
 export interface CookiePreference {
     /**
+     * @public
      * <p>This field is deprecated. We recommend that you use a cache policy or an origin
      * 			request policy instead of this field.</p>
      *          <p>If you want to include cookies in the cache key, use a cache policy. For more
@@ -436,6 +461,7 @@ export interface CookiePreference {
      */
     Forward: ItemSelection | string | undefined;
     /**
+     * @public
      * <p>This field is deprecated. We recommend that you use a cache policy or an origin
      * 			request policy instead of this field.</p>
      *          <p>If you want to include cookies in the cache key, use a cache policy. For more
@@ -464,10 +490,12 @@ export interface CookiePreference {
  */
 export interface Headers {
     /**
+     * @public
      * <p>The number of header names in the <code>Items</code> list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A list of HTTP header names.</p>
      */
     Items?: string[];
@@ -487,11 +515,13 @@ export interface Headers {
  */
 export interface QueryStringCacheKeys {
     /**
+     * @public
      * <p>The number of <code>whitelisted</code> query string parameters for a cache
      * 			behavior.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A list that contains the query string parameters that you want CloudFront to use as a basis
      * 			for caching for a cache behavior. If <code>Quantity</code> is 0, you can omit
      * 				<code>Items</code>.</p>
@@ -512,6 +542,7 @@ export interface QueryStringCacheKeys {
  */
 export interface ForwardedValues {
     /**
+     * @public
      * <p>This field is deprecated. We recommend that you use a cache policy or an origin
      * 			request policy instead of this field.</p>
      *          <p>If you want to include query strings in the cache key, use a cache policy. For more
@@ -540,6 +571,7 @@ export interface ForwardedValues {
      */
     QueryString: boolean | undefined;
     /**
+     * @public
      * <p>This field is deprecated. We recommend that you use a cache policy or an origin
      * 			request policy instead of this field.</p>
      *          <p>If you want to include cookies in the cache key, use a cache policy. For more
@@ -554,6 +586,7 @@ export interface ForwardedValues {
      */
     Cookies: CookiePreference | undefined;
     /**
+     * @public
      * <p>This field is deprecated. We recommend that you use a cache policy or an origin
      * 			request policy instead of this field.</p>
      *          <p>If you want to include headers in the cache key, use a cache policy. For more
@@ -570,6 +603,7 @@ export interface ForwardedValues {
      */
     Headers?: Headers;
     /**
+     * @public
      * <p>This field is deprecated. We recommend that you use a cache policy or an origin
      * 			request policy instead of this field.</p>
      *          <p>If you want to include query strings in the cache key, use a cache policy. For more
@@ -603,10 +637,12 @@ export type EventType = (typeof EventType)[keyof typeof EventType];
  */
 export interface FunctionAssociation {
     /**
+     * @public
      * <p>The Amazon Resource Name (ARN) of the function.</p>
      */
     FunctionARN: string | undefined;
     /**
+     * @public
      * <p>The event type of the function, either <code>viewer-request</code> or
      * 				<code>viewer-response</code>. You cannot use origin-facing event types
      * 				(<code>origin-request</code> and <code>origin-response</code>) with a CloudFront
@@ -622,10 +658,12 @@ export interface FunctionAssociation {
  */
 export interface FunctionAssociations {
     /**
+     * @public
      * <p>The number of CloudFront functions in the list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>The CloudFront functions that are associated with a cache behavior in a CloudFront distribution.
      * 			CloudFront functions must be published to the <code>LIVE</code> stage to associate them with a
      * 			cache behavior.</p>
@@ -638,11 +676,13 @@ export interface FunctionAssociations {
  */
 export interface LambdaFunctionAssociation {
     /**
+     * @public
      * <p>The ARN of the Lambda@Edge function. You must specify the ARN of a function version;
      * 			you can't specify an alias or $LATEST.</p>
      */
     LambdaFunctionARN: string | undefined;
     /**
+     * @public
      * <p>Specifies the event type that triggers a Lambda@Edge function invocation. You can
      * 			specify the following values:</p>
      *          <ul>
@@ -676,6 +716,7 @@ export interface LambdaFunctionAssociation {
      */
     EventType: EventType | string | undefined;
     /**
+     * @public
      * <p>A flag that allows a Lambda@Edge function to have read access to the body content. For
      * 			more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/lambda-include-body-access.html">Accessing the Request Body by Choosing the Include Body Option</a> in the
      * 			Amazon CloudFront Developer Guide.</p>
@@ -698,10 +739,12 @@ export interface LambdaFunctionAssociation {
  */
 export interface LambdaFunctionAssociations {
     /**
+     * @public
      * <p>The number of Lambda@Edge function associations for this cache behavior.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>
      *             <b>Optional</b>: A complex type that contains
      * 				<code>LambdaFunctionAssociation</code> items for this cache behavior. If
@@ -716,16 +759,19 @@ export interface LambdaFunctionAssociations {
  */
 export interface TrustedKeyGroups {
     /**
+     * @public
      * <p>This field is <code>true</code> if any of the key groups in the list have public keys
      * 			that CloudFront can use to verify the signatures of signed URLs and signed cookies. If not,
      * 			this field is <code>false</code>.</p>
      */
     Enabled: boolean | undefined;
     /**
+     * @public
      * <p>The number of key groups in the list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A list of key groups identifiers.</p>
      */
     Items?: string[];
@@ -737,16 +783,18 @@ export interface TrustedKeyGroups {
  */
 export interface TrustedSigners {
     /**
-     * <p>This field is <code>true</code> if any of the Amazon Web Services accounts have public keys that
-     * 			CloudFront can use to verify the signatures of signed URLs and signed cookies. If not, this
-     * 			field is <code>false</code>.</p>
+     * @public
+     * <p>This field is <code>true</code> if any of the Amazon Web Services accounts in the list are configured as
+     * 			trusted signers. If not, this field is <code>false</code>.</p>
      */
     Enabled: boolean | undefined;
     /**
+     * @public
      * <p>The number of Amazon Web Services accounts in the list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A list of Amazon Web Services account identifiers.</p>
      */
     Items?: string[];
@@ -788,6 +836,7 @@ export type ViewerProtocolPolicy = (typeof ViewerProtocolPolicy)[keyof typeof Vi
  */
 export interface CacheBehavior {
     /**
+     * @public
      * <p>The pattern (for example, <code>images/*.jpg</code>) that specifies which requests to
      * 			apply the behavior to. When CloudFront receives a viewer request, the requested path is
      * 			compared with path patterns in the order in which cache behaviors are listed in the
@@ -804,11 +853,13 @@ export interface CacheBehavior {
      */
     PathPattern: string | undefined;
     /**
+     * @public
      * <p>The value of <code>ID</code> for the origin that you want CloudFront to route requests to
      * 			when they match this cache behavior.</p>
      */
     TargetOriginId: string | undefined;
     /**
+     * @public
      * <important>
      *             <p>We recommend using <code>TrustedKeyGroups</code> instead of
      * 					<code>TrustedSigners</code>.</p>
@@ -824,6 +875,7 @@ export interface CacheBehavior {
      */
     TrustedSigners?: TrustedSigners;
     /**
+     * @public
      * <p>A list of key groups that CloudFront can use to validate signed URLs or signed
      * 			cookies.</p>
      *          <p>When a cache behavior contains trusted key groups, CloudFront requires signed URLs or signed
@@ -835,6 +887,7 @@ export interface CacheBehavior {
      */
     TrustedKeyGroups?: TrustedKeyGroups;
     /**
+     * @public
      * <p>The protocol that viewers can use to access the files in the origin specified by
      * 				<code>TargetOriginId</code> when a request matches the path pattern in
      * 				<code>PathPattern</code>. You can specify the following options:</p>
@@ -870,6 +923,7 @@ export interface CacheBehavior {
      */
     ViewerProtocolPolicy: ViewerProtocolPolicy | string | undefined;
     /**
+     * @public
      * <p>A complex type that controls which HTTP methods CloudFront processes and forwards to your
      * 			Amazon S3 bucket or your custom origin. There are three choices:</p>
      *          <ul>
@@ -892,6 +946,7 @@ export interface CacheBehavior {
      */
     AllowedMethods?: AllowedMethods;
     /**
+     * @public
      * <p>Indicates whether you want to distribute media files in the Microsoft Smooth Streaming
      * 			format using the origin that is associated with this cache behavior. If so, specify
      * 				<code>true</code>; if not, specify <code>false</code>. If you specify
@@ -901,34 +956,40 @@ export interface CacheBehavior {
      */
     SmoothStreaming?: boolean;
     /**
+     * @public
      * <p>Whether you want CloudFront to automatically compress certain files for this cache behavior.
      * 			If so, specify true; if not, specify false. For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/ServingCompressedFiles.html">Serving
      * 				Compressed Files</a> in the <i>Amazon CloudFront Developer Guide</i>.</p>
      */
     Compress?: boolean;
     /**
+     * @public
      * <p>A complex type that contains zero or more Lambda@Edge function associations for a
      * 			cache behavior.</p>
      */
     LambdaFunctionAssociations?: LambdaFunctionAssociations;
     /**
+     * @public
      * <p>A list of CloudFront functions that are associated with this cache behavior. CloudFront functions
      * 			must be published to the <code>LIVE</code> stage to associate them with a cache
      * 			behavior.</p>
      */
     FunctionAssociations?: FunctionAssociations;
     /**
+     * @public
      * <p>The value of <code>ID</code> for the field-level encryption configuration that you
      * 			want CloudFront to use for encrypting specific fields of data for this cache behavior.</p>
      */
     FieldLevelEncryptionId?: string;
     /**
+     * @public
      * <p>The Amazon Resource Name (ARN) of the real-time log configuration that is attached to
      * 			this cache behavior. For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/real-time-logs.html">Real-time logs</a> in the
      * 				<i>Amazon CloudFront Developer Guide</i>.</p>
      */
     RealtimeLogConfigArn?: string;
     /**
+     * @public
      * <p>The unique identifier of the cache policy that is attached to this cache behavior. For
      * 			more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy">Creating cache policies</a> or <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html">Using the managed cache policies</a> in the
      * 				<i>Amazon CloudFront Developer Guide</i>.</p>
@@ -938,16 +999,19 @@ export interface CacheBehavior {
      */
     CachePolicyId?: string;
     /**
+     * @public
      * <p>The unique identifier of the origin request policy that is attached to this cache
      * 			behavior. For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-origin-requests.html#origin-request-create-origin-request-policy">Creating origin request policies</a> or <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-origin-request-policies.html">Using the managed origin request policies</a> in the
      * 				<i>Amazon CloudFront Developer Guide</i>.</p>
      */
     OriginRequestPolicyId?: string;
     /**
+     * @public
      * <p>The identifier for a response headers policy.</p>
      */
     ResponseHeadersPolicyId?: string;
     /**
+     * @public
      * @deprecated
      *
      * <p>This field is deprecated. We recommend that you use a cache policy or an origin
@@ -967,6 +1031,7 @@ export interface CacheBehavior {
      */
     ForwardedValues?: ForwardedValues;
     /**
+     * @public
      * @deprecated
      *
      * <p>This field is deprecated. We recommend that you use the <code>MinTTL</code> field in a
@@ -984,6 +1049,7 @@ export interface CacheBehavior {
      */
     MinTTL?: number;
     /**
+     * @public
      * @deprecated
      *
      * <p>This field is deprecated. We recommend that you use the <code>DefaultTTL</code> field
@@ -998,6 +1064,7 @@ export interface CacheBehavior {
      */
     DefaultTTL?: number;
     /**
+     * @public
      * @deprecated
      *
      * <p>This field is deprecated. We recommend that you use the <code>MaxTTL</code> field in a
@@ -1018,10 +1085,12 @@ export interface CacheBehavior {
  */
 export interface CacheBehaviors {
     /**
+     * @public
      * <p>The number of cache behaviors for this distribution.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>Optional: A complex type that contains cache behaviors for this distribution. If
      * 				<code>Quantity</code> is <code>0</code>, you can omit <code>Items</code>.</p>
      */
@@ -1048,6 +1117,7 @@ export type CachePolicyCookieBehavior = (typeof CachePolicyCookieBehavior)[keyof
  */
 export interface CachePolicyCookiesConfig {
     /**
+     * @public
      * <p>Determines whether any cookies in viewer requests are included in the cache key and in
      * 			requests that CloudFront sends to the origin. Valid values are:</p>
      *          <ul>
@@ -1083,6 +1153,7 @@ export interface CachePolicyCookiesConfig {
      */
     CookieBehavior: CachePolicyCookieBehavior | string | undefined;
     /**
+     * @public
      * <p>Contains a list of cookie names.</p>
      */
     Cookies?: CookieNames;
@@ -1106,6 +1177,7 @@ export type CachePolicyHeaderBehavior = (typeof CachePolicyHeaderBehavior)[keyof
  */
 export interface CachePolicyHeadersConfig {
     /**
+     * @public
      * <p>Determines whether any HTTP headers are included in the cache key and in requests that CloudFront
      * 			sends to the origin. Valid values are:</p>
      *          <ul>
@@ -1126,6 +1198,7 @@ export interface CachePolicyHeadersConfig {
      */
     HeaderBehavior: CachePolicyHeaderBehavior | string | undefined;
     /**
+     * @public
      * <p>Contains a list of HTTP header names.</p>
      */
     Headers?: Headers;
@@ -1150,10 +1223,12 @@ export type CachePolicyQueryStringBehavior = (typeof CachePolicyQueryStringBehav
  */
 export interface QueryStringNames {
     /**
+     * @public
      * <p>The number of query string names in the <code>Items</code> list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A list of query string names.</p>
      */
     Items?: string[];
@@ -1166,6 +1241,7 @@ export interface QueryStringNames {
  */
 export interface CachePolicyQueryStringsConfig {
     /**
+     * @public
      * <p>Determines whether any URL query strings in viewer requests are included in the cache key
      * 			and in requests that CloudFront sends to the origin. Valid values are:</p>
      *          <ul>
@@ -1201,6 +1277,7 @@ export interface CachePolicyQueryStringsConfig {
      */
     QueryStringBehavior: CachePolicyQueryStringBehavior | string | undefined;
     /**
+     * @public
      * <p>Contains the specific query strings in viewer requests that either <i>
      *                <b>are</b>
      *             </i> or <i>
@@ -1232,6 +1309,7 @@ export interface CachePolicyQueryStringsConfig {
  */
 export interface ParametersInCacheKeyAndForwardedToOrigin {
     /**
+     * @public
      * <p>A flag that can affect whether the <code>Accept-Encoding</code> HTTP header is
      * 			included in the cache key and included in requests that CloudFront sends to the origin.</p>
      *          <p>This field is related to the <code>EnableAcceptEncodingBrotli</code> field. If one or
@@ -1266,6 +1344,7 @@ export interface ParametersInCacheKeyAndForwardedToOrigin {
      */
     EnableAcceptEncodingGzip: boolean | undefined;
     /**
+     * @public
      * <p>A flag that can affect whether the <code>Accept-Encoding</code> HTTP header is
      * 			included in the cache key and included in requests that CloudFront sends to the origin.</p>
      *          <p>This field is related to the <code>EnableAcceptEncodingGzip</code> field. If one or
@@ -1300,16 +1379,19 @@ export interface ParametersInCacheKeyAndForwardedToOrigin {
      */
     EnableAcceptEncodingBrotli?: boolean;
     /**
+     * @public
      * <p>An object that determines whether any HTTP headers (and if so, which headers) are included
      * 			in the cache key and in requests that CloudFront sends to the origin.</p>
      */
     HeadersConfig: CachePolicyHeadersConfig | undefined;
     /**
+     * @public
      * <p>An object that determines whether any cookies in viewer requests (and if so, which cookies)
      * 			are included in the cache key and in requests that CloudFront sends to the origin.</p>
      */
     CookiesConfig: CachePolicyCookiesConfig | undefined;
     /**
+     * @public
      * <p>An object that determines whether any URL query strings in viewer requests (and if so, which
      * 			query strings) are included in the cache key and in requests that CloudFront sends to the
      * 			origin.</p>
@@ -1339,15 +1421,18 @@ export interface ParametersInCacheKeyAndForwardedToOrigin {
  */
 export interface CachePolicyConfig {
     /**
+     * @public
      * <p>A comment to describe the cache policy. The comment cannot be longer than 128
      * 			characters.</p>
      */
     Comment?: string;
     /**
+     * @public
      * <p>A unique name to identify the cache policy.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>The default amount of time, in seconds, that you want objects to stay in the CloudFront
      * 			cache before CloudFront sends another request to the origin to see if the object has been
      * 			updated. CloudFront uses this value as the object's time to live (TTL) only when the origin
@@ -1360,6 +1445,7 @@ export interface CachePolicyConfig {
      */
     DefaultTTL?: number;
     /**
+     * @public
      * <p>The maximum amount of time, in seconds, that objects stay in the CloudFront cache before
      * 			CloudFront sends another request to the origin to see if the object has been updated. CloudFront
      * 			uses this value only when the origin sends <code>Cache-Control</code> or
@@ -1372,6 +1458,7 @@ export interface CachePolicyConfig {
      */
     MaxTTL?: number;
     /**
+     * @public
      * <p>The minimum amount of time, in seconds, that you want objects to stay in the CloudFront
      * 			cache before CloudFront sends another request to the origin to see if the object has been
      * 			updated. For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html">Managing How Long Content Stays in an Edge Cache (Expiration)</a> in the
@@ -1379,6 +1466,7 @@ export interface CachePolicyConfig {
      */
     MinTTL: number | undefined;
     /**
+     * @public
      * <p>The HTTP headers, cookies, and URL query strings to include in the cache key. The values
      * 			included in the cache key are also included in requests that CloudFront sends to the
      * 			origin.</p>
@@ -1409,14 +1497,17 @@ export interface CachePolicyConfig {
  */
 export interface CachePolicy {
     /**
+     * @public
      * <p>The unique identifier for the cache policy.</p>
      */
     Id: string | undefined;
     /**
+     * @public
      * <p>The date and time when the cache policy was last modified.</p>
      */
     LastModifiedTime: Date | undefined;
     /**
+     * @public
      * <p>The cache policy configuration.</p>
      */
     CachePolicyConfig: CachePolicyConfig | undefined;
@@ -1467,11 +1558,13 @@ export type CachePolicyType = (typeof CachePolicyType)[keyof typeof CachePolicyT
  */
 export interface CachePolicySummary {
     /**
+     * @public
      * <p>The type of cache policy, either <code>managed</code> (created by Amazon Web Services) or
      * 				<code>custom</code> (created in this Amazon Web Services account).</p>
      */
     Type: CachePolicyType | string | undefined;
     /**
+     * @public
      * <p>The cache policy.</p>
      */
     CachePolicy: CachePolicy | undefined;
@@ -1482,20 +1575,24 @@ export interface CachePolicySummary {
  */
 export interface CachePolicyList {
     /**
+     * @public
      * <p>If there are more items in the list than are in this response, this element is
      * 			present. It contains the value that you should use in the <code>Marker</code> field of a
      * 			subsequent request to continue listing cache policies where you left off.</p>
      */
     NextMarker?: string;
     /**
+     * @public
      * <p>The maximum number of cache policies requested.</p>
      */
     MaxItems: number | undefined;
     /**
+     * @public
      * <p>The total number of cache policies returned in the response.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>Contains the cache policies in the list.</p>
      */
     Items?: CachePolicySummary[];
@@ -1544,28 +1641,41 @@ export declare class CNAMEAlreadyExists extends __BaseException {
  */
 export interface CopyDistributionRequest {
     /**
+     * @public
      * <p>The identifier of the primary distribution whose configuration you are copying. To get
      * 			a distribution ID, use <code>ListDistributions</code>.</p>
      */
     PrimaryDistributionId: string | undefined;
     /**
+     * @public
      * <p>The type of distribution that your primary distribution will be copied to. The only
      * 			valid value is <code>True</code>, indicating that you are copying to a staging
      * 			distribution.</p>
      */
     Staging?: boolean;
     /**
+     * @public
      * <p>The version identifier of the primary distribution whose configuration you are
      * 			copying. This is the <code>ETag</code> value returned in the response to
      * 				<code>GetDistribution</code> and <code>GetDistributionConfig</code>.</p>
      */
     IfMatch?: string;
     /**
+     * @public
      * <p>A value that uniquely identifies a request to create a resource. This helps to prevent
      * 			CloudFront from creating a duplicate resource if you accidentally resubmit an identical
      * 			request.</p>
      */
     CallerReference: string | undefined;
+    /**
+     * @public
+     * <p>A Boolean flag to specify the state of the staging distribution when it's
+     * 			created. When you set this value to <code>True</code>, the staging
+     * 			distribution is enabled. When you set this value to <code>False</code>, the
+     * 			staging distribution is disabled.</p>
+     *          <p>If you omit this field, the default value is <code>True</code>.</p>
+     */
+    Enabled?: boolean;
 }
 /**
  * @public
@@ -1584,11 +1694,13 @@ export interface CopyDistributionRequest {
  */
 export interface CustomErrorResponse {
     /**
+     * @public
      * <p>The HTTP status code for which you want to specify a custom error page and/or a
      * 			caching duration.</p>
      */
     ErrorCode: number | undefined;
     /**
+     * @public
      * <p>The path to the custom error page that you want CloudFront to return to a viewer when your
      * 			origin returns the HTTP status code specified by <code>ErrorCode</code>, for example,
      * 				<code>/4xx-errors/403-forbidden.html</code>. If you want to store your objects and
@@ -1618,6 +1730,7 @@ export interface CustomErrorResponse {
      */
     ResponsePagePath?: string;
     /**
+     * @public
      * <p>The HTTP status code that you want CloudFront to return to the viewer along with the custom
      * 			error page. There are a variety of reasons that you might want CloudFront to return a status
      * 			code different from the status code that your origin returned to CloudFront, for
@@ -1644,6 +1757,7 @@ export interface CustomErrorResponse {
      */
     ResponseCode?: string;
     /**
+     * @public
      * <p>The minimum amount of time, in seconds, that you want CloudFront to cache the HTTP status
      * 			code specified in <code>ErrorCode</code>. When this time period has elapsed, CloudFront
      * 			queries your origin to see whether the problem that caused the error has been resolved
@@ -1670,12 +1784,14 @@ export interface CustomErrorResponse {
  */
 export interface CustomErrorResponses {
     /**
+     * @public
      * <p>The number of HTTP status codes for which you want to specify a custom error page
      * 			and/or a caching duration. If <code>Quantity</code> is <code>0</code>, you can omit
      * 				<code>Items</code>.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A complex type that contains a <code>CustomErrorResponse</code> element for each HTTP
      * 			status code for which you want to specify a custom error page and/or a caching duration.
      * 		</p>
@@ -1691,11 +1807,13 @@ export interface CustomErrorResponses {
  */
 export interface DefaultCacheBehavior {
     /**
+     * @public
      * <p>The value of <code>ID</code> for the origin that you want CloudFront to route requests to
      * 			when they use the default cache behavior.</p>
      */
     TargetOriginId: string | undefined;
     /**
+     * @public
      * <important>
      *             <p>We recommend using <code>TrustedKeyGroups</code> instead of
      * 					<code>TrustedSigners</code>.</p>
@@ -1711,6 +1829,7 @@ export interface DefaultCacheBehavior {
      */
     TrustedSigners?: TrustedSigners;
     /**
+     * @public
      * <p>A list of key groups that CloudFront can use to validate signed URLs or signed
      * 			cookies.</p>
      *          <p>When a cache behavior contains trusted key groups, CloudFront requires signed URLs or signed
@@ -1722,6 +1841,7 @@ export interface DefaultCacheBehavior {
      */
     TrustedKeyGroups?: TrustedKeyGroups;
     /**
+     * @public
      * <p>The protocol that viewers can use to access the files in the origin specified by
      * 				<code>TargetOriginId</code> when a request matches the path pattern in
      * 				<code>PathPattern</code>. You can specify the following options:</p>
@@ -1757,6 +1877,7 @@ export interface DefaultCacheBehavior {
      */
     ViewerProtocolPolicy: ViewerProtocolPolicy | string | undefined;
     /**
+     * @public
      * <p>A complex type that controls which HTTP methods CloudFront processes and forwards to your
      * 			Amazon S3 bucket or your custom origin. There are three choices:</p>
      *          <ul>
@@ -1779,6 +1900,7 @@ export interface DefaultCacheBehavior {
      */
     AllowedMethods?: AllowedMethods;
     /**
+     * @public
      * <p>Indicates whether you want to distribute media files in the Microsoft Smooth Streaming
      * 			format using the origin that is associated with this cache behavior. If so, specify
      * 				<code>true</code>; if not, specify <code>false</code>. If you specify
@@ -1788,6 +1910,7 @@ export interface DefaultCacheBehavior {
      */
     SmoothStreaming?: boolean;
     /**
+     * @public
      * <p>Whether you want CloudFront to automatically compress certain files for this cache behavior.
      * 			If so, specify <code>true</code>; if not, specify <code>false</code>. For more
      * 			information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/ServingCompressedFiles.html">Serving
@@ -1795,29 +1918,34 @@ export interface DefaultCacheBehavior {
      */
     Compress?: boolean;
     /**
+     * @public
      * <p>A complex type that contains zero or more Lambda@Edge function associations for a
      * 			cache behavior.</p>
      */
     LambdaFunctionAssociations?: LambdaFunctionAssociations;
     /**
+     * @public
      * <p>A list of CloudFront functions that are associated with this cache behavior. CloudFront functions
      * 			must be published to the <code>LIVE</code> stage to associate them with a cache
      * 			behavior.</p>
      */
     FunctionAssociations?: FunctionAssociations;
     /**
+     * @public
      * <p>The value of <code>ID</code> for the field-level encryption configuration that you
      * 			want CloudFront to use for encrypting specific fields of data for the default cache
      * 			behavior.</p>
      */
     FieldLevelEncryptionId?: string;
     /**
+     * @public
      * <p>The Amazon Resource Name (ARN) of the real-time log configuration that is attached to
      * 			this cache behavior. For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/real-time-logs.html">Real-time logs</a> in the
      * 				<i>Amazon CloudFront Developer Guide</i>.</p>
      */
     RealtimeLogConfigArn?: string;
     /**
+     * @public
      * <p>The unique identifier of the cache policy that is attached to the default cache
      * 			behavior. For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy">Creating cache policies</a> or <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html">Using the managed cache policies</a> in the
      * 				<i>Amazon CloudFront Developer Guide</i>.</p>
@@ -1827,16 +1955,19 @@ export interface DefaultCacheBehavior {
      */
     CachePolicyId?: string;
     /**
+     * @public
      * <p>The unique identifier of the origin request policy that is attached to the default
      * 			cache behavior. For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-origin-requests.html#origin-request-create-origin-request-policy">Creating origin request policies</a> or <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-origin-request-policies.html">Using the managed origin request policies</a> in the
      * 				<i>Amazon CloudFront Developer Guide</i>.</p>
      */
     OriginRequestPolicyId?: string;
     /**
+     * @public
      * <p>The identifier for a response headers policy.</p>
      */
     ResponseHeadersPolicyId?: string;
     /**
+     * @public
      * @deprecated
      *
      * <p>This field is deprecated. We recommend that you use a cache policy or an origin
@@ -1856,6 +1987,7 @@ export interface DefaultCacheBehavior {
      */
     ForwardedValues?: ForwardedValues;
     /**
+     * @public
      * @deprecated
      *
      * <p>This field is deprecated. We recommend that you use the <code>MinTTL</code> field in a
@@ -1873,6 +2005,7 @@ export interface DefaultCacheBehavior {
      */
     MinTTL?: number;
     /**
+     * @public
      * @deprecated
      *
      * <p>This field is deprecated. We recommend that you use the <code>DefaultTTL</code> field
@@ -1887,6 +2020,7 @@ export interface DefaultCacheBehavior {
      */
     DefaultTTL?: number;
     /**
+     * @public
      * @deprecated
      *
      * <p>This field is deprecated. We recommend that you use the <code>MaxTTL</code> field in a
@@ -1922,6 +2056,7 @@ export type HttpVersion = (typeof HttpVersion)[keyof typeof HttpVersion];
  */
 export interface LoggingConfig {
     /**
+     * @public
      * <p>Specifies whether you want CloudFront to save access logs to an Amazon S3 bucket. If you don't
      * 			want to enable logging when you create a distribution or if you want to disable logging
      * 			for an existing distribution, specify <code>false</code> for <code>Enabled</code>, and
@@ -1932,6 +2067,7 @@ export interface LoggingConfig {
      */
     Enabled: boolean | undefined;
     /**
+     * @public
      * <p>Specifies whether you want CloudFront to include cookies in access logs, specify
      * 				<code>true</code> for <code>IncludeCookies</code>. If you choose to include cookies
      * 			in logs, CloudFront logs all cookies regardless of how you configure the cache behaviors for
@@ -1941,11 +2077,13 @@ export interface LoggingConfig {
      */
     IncludeCookies: boolean | undefined;
     /**
+     * @public
      * <p>The Amazon S3 bucket to store the access logs in, for example,
      * 				<code>myawslogbucket.s3.amazonaws.com</code>.</p>
      */
     Bucket: string | undefined;
     /**
+     * @public
      * <p>An optional string that you want CloudFront to prefix to the access log
      * 				<code>filenames</code> for this distribution, for example, <code>myprefix/</code>.
      * 			If you want to enable logging, but you don't want to specify a prefix, you still must
@@ -1960,10 +2098,12 @@ export interface LoggingConfig {
  */
 export interface StatusCodes {
     /**
+     * @public
      * <p>The number of status codes.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>The items (status codes) for an origin group.</p>
      */
     Items: number[] | undefined;
@@ -1976,6 +2116,7 @@ export interface StatusCodes {
  */
 export interface OriginGroupFailoverCriteria {
     /**
+     * @public
      * <p>The status codes that, when returned from the primary origin, will trigger CloudFront
      * 			to failover to the second origin.</p>
      */
@@ -1987,6 +2128,7 @@ export interface OriginGroupFailoverCriteria {
  */
 export interface OriginGroupMember {
     /**
+     * @public
      * <p>The ID for an origin in an origin group.</p>
      */
     OriginId: string | undefined;
@@ -1997,10 +2139,12 @@ export interface OriginGroupMember {
  */
 export interface OriginGroupMembers {
     /**
+     * @public
      * <p>The number of origins in an origin group.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>Items (origins) in an origin group.</p>
      */
     Items: OriginGroupMember[] | undefined;
@@ -2016,15 +2160,18 @@ export interface OriginGroupMembers {
  */
 export interface OriginGroup {
     /**
+     * @public
      * <p>The origin group's ID.</p>
      */
     Id: string | undefined;
     /**
+     * @public
      * <p>A complex type that contains information about the failover criteria for an origin
      * 			group.</p>
      */
     FailoverCriteria: OriginGroupFailoverCriteria | undefined;
     /**
+     * @public
      * <p>A complex type that contains information about the origins in an origin group.</p>
      */
     Members: OriginGroupMembers | undefined;
@@ -2035,10 +2182,12 @@ export interface OriginGroup {
  */
 export interface OriginGroups {
     /**
+     * @public
      * <p>The number of origin groups.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>The items (origin groups) in a distribution.</p>
      */
     Items?: OriginGroup[];
@@ -2050,6 +2199,7 @@ export interface OriginGroups {
  */
 export interface OriginCustomHeader {
     /**
+     * @public
      * <p>The name of a header that you want CloudFront to send to your origin. For more information,
      * 			see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/forward-custom-headers.html">Adding
      * 				Custom Headers to Origin Requests</a> in the <i>
@@ -2057,6 +2207,7 @@ export interface OriginCustomHeader {
      */
     HeaderName: string | undefined;
     /**
+     * @public
      * <p>The value for the header that you specified in the <code>HeaderName</code>
      * 			field.</p>
      */
@@ -2068,10 +2219,12 @@ export interface OriginCustomHeader {
  */
 export interface CustomHeaders {
     /**
+     * @public
      * <p>The number of custom headers, if any, for this distribution.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>
      *             <b>Optional</b>: A list that contains one
      * 				<code>OriginCustomHeader</code> element for each custom header that you want CloudFront to
@@ -2113,11 +2266,13 @@ export type SslProtocol = (typeof SslProtocol)[keyof typeof SslProtocol];
  */
 export interface OriginSslProtocols {
     /**
+     * @public
      * <p>The number of SSL/TLS protocols that you want to allow CloudFront to use when establishing
      * 			an HTTPS connection with this origin.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A list that contains allowed SSL/TLS protocols for this distribution.</p>
      */
     Items: (SslProtocol | string)[] | undefined;
@@ -2131,16 +2286,19 @@ export interface OriginSslProtocols {
  */
 export interface CustomOriginConfig {
     /**
+     * @public
      * <p>The HTTP port that CloudFront uses to connect to the origin. Specify the HTTP port that the
      * 			origin listens on.</p>
      */
     HTTPPort: number | undefined;
     /**
+     * @public
      * <p>The HTTPS port that CloudFront uses to connect to the origin. Specify the HTTPS port that
      * 			the origin listens on.</p>
      */
     HTTPSPort: number | undefined;
     /**
+     * @public
      * <p>Specifies the protocol (HTTP or HTTPS) that CloudFront uses to connect to the origin. Valid
      * 			values are:</p>
      *          <ul>
@@ -2163,6 +2321,7 @@ export interface CustomOriginConfig {
      */
     OriginProtocolPolicy: OriginProtocolPolicy | string | undefined;
     /**
+     * @public
      * <p>Specifies the minimum SSL/TLS protocol that CloudFront uses when connecting to your origin
      * 			over HTTPS. Valid values include <code>SSLv3</code>, <code>TLSv1</code>,
      * 				<code>TLSv1.1</code>, and <code>TLSv1.2</code>.</p>
@@ -2171,6 +2330,7 @@ export interface CustomOriginConfig {
      */
     OriginSslProtocols?: OriginSslProtocols;
     /**
+     * @public
      * <p>Specifies how long, in seconds, CloudFront waits for a response from the origin. This is
      * 			also known as the <i>origin response timeout</i>. The minimum timeout is 1
      * 			second, the maximum is 60 seconds, and the default (if you don't specify otherwise) is
@@ -2180,6 +2340,7 @@ export interface CustomOriginConfig {
      */
     OriginReadTimeout?: number;
     /**
+     * @public
      * <p>Specifies how long, in seconds, CloudFront persists its connection to the origin. The
      * 			minimum timeout is 1 second, the maximum is 60 seconds, and the default (if you don't
      * 			specify otherwise) is 5 seconds.</p>
@@ -2197,6 +2358,7 @@ export interface CustomOriginConfig {
  */
 export interface OriginShield {
     /**
+     * @public
      * <p>A flag that specifies whether Origin Shield is enabled.</p>
      *          <p>When it's enabled, CloudFront routes all requests through Origin Shield, which can help
      * 			protect your origin. When it's disabled, CloudFront might send requests directly to your
@@ -2204,6 +2366,7 @@ export interface OriginShield {
      */
     Enabled: boolean | undefined;
     /**
+     * @public
      * <p>The Amazon Web Services Region for Origin Shield.</p>
      *          <p>Specify the Amazon Web Services Region that has the lowest latency to your origin. To specify a
      * 			region, use the region code, not the region name. For example, specify the US East
@@ -2223,6 +2386,7 @@ export interface OriginShield {
  */
 export interface S3OriginConfig {
     /**
+     * @public
      * <p>The CloudFront origin access identity to associate with the origin. Use an origin access
      * 			identity to configure the origin so that viewers can <i>only</i> access
      * 			objects in an Amazon S3 bucket through CloudFront. The format of the value is:</p>
@@ -2285,6 +2449,7 @@ export interface S3OriginConfig {
  */
 export interface Origin {
     /**
+     * @public
      * <p>A unique identifier for the origin. This value must be unique within the
      * 			distribution.</p>
      *          <p>Use this value to specify the <code>TargetOriginId</code> in a
@@ -2292,11 +2457,13 @@ export interface Origin {
      */
     Id: string | undefined;
     /**
+     * @public
      * <p>The domain name for the origin.</p>
      *          <p>For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-web-values-specify.html#DownloadDistValuesDomainName">Origin Domain Name</a> in the <i>Amazon CloudFront Developer Guide</i>.</p>
      */
     DomainName: string | undefined;
     /**
+     * @public
      * <p>An optional path that CloudFront appends to the origin domain name when CloudFront requests
      * 			content from the origin.</p>
      *          <p>For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-web-values-specify.html#DownloadDistValuesOriginPath">Origin Path</a> in the
@@ -2304,6 +2471,7 @@ export interface Origin {
      */
     OriginPath?: string;
     /**
+     * @public
      * <p>A list of HTTP header names and values that CloudFront adds to the requests that it sends to
      * 			the origin.</p>
      *          <p>For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/add-origin-custom-headers.html">Adding Custom Headers to Origin Requests</a> in the
@@ -2311,6 +2479,7 @@ export interface Origin {
      */
     CustomHeaders?: CustomHeaders;
     /**
+     * @public
      * <p>Use this type to specify an origin that is an Amazon S3 bucket that is not configured with
      * 			static website hosting. To specify any other type of origin, including an Amazon S3 bucket
      * 			that is configured with static website hosting, use the <code>CustomOriginConfig</code>
@@ -2318,6 +2487,7 @@ export interface Origin {
      */
     S3OriginConfig?: S3OriginConfig;
     /**
+     * @public
      * <p>Use this type to specify an origin that is not an Amazon S3 bucket, with one exception. If
      * 			the Amazon S3 bucket is configured with static website hosting, use this type. If the Amazon S3
      * 			bucket is not configured with static website hosting, use the
@@ -2325,6 +2495,7 @@ export interface Origin {
      */
     CustomOriginConfig?: CustomOriginConfig;
     /**
+     * @public
      * <p>The number of times that CloudFront attempts to connect to the origin. The minimum number is
      * 			1, the maximum is 3, and the default (if you don't specify otherwise) is 3.</p>
      *          <p>For a custom origin (including an Amazon S3 bucket that's configured with static website
@@ -2335,6 +2506,7 @@ export interface Origin {
      */
     ConnectionAttempts?: number;
     /**
+     * @public
      * <p>The number of seconds that CloudFront waits when trying to establish a connection to the
      * 			origin. The minimum timeout is 1 second, the maximum is 10 seconds, and the default (if
      * 			you don't specify otherwise) is 10 seconds.</p>
@@ -2343,12 +2515,14 @@ export interface Origin {
      */
     ConnectionTimeout?: number;
     /**
+     * @public
      * <p>CloudFront Origin Shield. Using Origin Shield can help reduce the load on your
      * 			origin.</p>
      *          <p>For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/origin-shield.html">Using Origin Shield</a> in the <i>Amazon CloudFront Developer Guide</i>.</p>
      */
     OriginShield?: OriginShield;
     /**
+     * @public
      * <p>The unique identifier of an origin access control for this origin.</p>
      *          <p>For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/private-content-restricting-access-to-s3.html">Restricting access to an Amazon S3 origin</a> in the
      * 				<i>Amazon CloudFront Developer Guide</i>.</p>
@@ -2361,10 +2535,12 @@ export interface Origin {
  */
 export interface Origins {
     /**
+     * @public
      * <p>The number of origins for this distribution.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A list of origins.</p>
      */
     Items: Origin[] | undefined;
@@ -2403,6 +2579,7 @@ export type GeoRestrictionType = (typeof GeoRestrictionType)[keyof typeof GeoRes
  */
 export interface GeoRestriction {
     /**
+     * @public
      * <p>The method that you want to use to restrict distribution of your content by
      * 			country:</p>
      *          <ul>
@@ -2425,12 +2602,14 @@ export interface GeoRestriction {
      */
     RestrictionType: GeoRestrictionType | string | undefined;
     /**
+     * @public
      * <p>When geo restriction is <code>enabled</code>, this is the number of countries in your
      * 				<code>whitelist</code> or <code>blacklist</code>. Otherwise, when it is not enabled,
      * 				<code>Quantity</code> is <code>0</code>, and you can omit <code>Items</code>.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A complex type that contains a <code>Location</code> element for each country in
      * 			which you want CloudFront either to distribute your content (<code>whitelist</code>) or not
      * 			distribute your content (<code>blacklist</code>).</p>
@@ -2453,6 +2632,7 @@ export interface GeoRestriction {
  */
 export interface Restrictions {
     /**
+     * @public
      * <p>A complex type that controls the countries in which your content is distributed. CloudFront
      * 			determines the location of your users using <code>MaxMind</code> GeoIP databases.</p>
      */
@@ -2552,6 +2732,7 @@ export type SSLSupportMethod = (typeof SSLSupportMethod)[keyof typeof SSLSupport
  */
 export interface ViewerCertificate {
     /**
+     * @public
      * <p>If the distribution uses the CloudFront domain name such as
      * 				<code>d111111abcdef8.cloudfront.net</code>, set this field to
      * 			<code>true</code>.</p>
@@ -2577,6 +2758,7 @@ export interface ViewerCertificate {
      */
     CloudFrontDefaultCertificate?: boolean;
     /**
+     * @public
      * <p>If the distribution uses <code>Aliases</code> (alternate domain names or CNAMEs) and
      * 			the SSL/TLS certificate is stored in <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html">Identity and Access Management (IAM)</a>, provide the ID of the IAM certificate.</p>
      *          <p>If you specify an IAM certificate ID, you must also specify values for
@@ -2584,6 +2766,7 @@ export interface ViewerCertificate {
      */
     IAMCertificateId?: string;
     /**
+     * @public
      * <p>If the distribution uses <code>Aliases</code> (alternate domain names or CNAMEs) and
      * 			the SSL/TLS certificate is stored in <a href="https://docs.aws.amazon.com/acm/latest/userguide/acm-overview.html">Certificate Manager (ACM)</a>, provide the Amazon Resource Name
      * 			(ARN) of the ACM certificate. CloudFront only supports ACM certificates in the US East
@@ -2593,6 +2776,7 @@ export interface ViewerCertificate {
      */
     ACMCertificateArn?: string;
     /**
+     * @public
      * <p>If the distribution uses <code>Aliases</code> (alternate domain names or CNAMEs),
      * 			specify which viewers the distribution accepts HTTPS connections from.</p>
      *          <ul>
@@ -2622,6 +2806,7 @@ export interface ViewerCertificate {
      */
     SSLSupportMethod?: SSLSupportMethod | string;
     /**
+     * @public
      * <p>If the distribution uses <code>Aliases</code> (alternate domain names or CNAMEs),
      * 			specify the security policy that you want CloudFront to use for HTTPS connections with
      * 			viewers. The security policy determines two settings:</p>
@@ -2651,6 +2836,7 @@ export interface ViewerCertificate {
      */
     MinimumProtocolVersion?: MinimumProtocolVersion | string;
     /**
+     * @public
      * @deprecated
      *
      * <p>This field is deprecated. Use one of the following fields instead:</p>
@@ -2674,6 +2860,7 @@ export interface ViewerCertificate {
      */
     Certificate?: string;
     /**
+     * @public
      * @deprecated
      *
      * <p>This field is deprecated. Use one of the following fields instead:</p>
@@ -2703,6 +2890,7 @@ export interface ViewerCertificate {
  */
 export interface DistributionConfig {
     /**
+     * @public
      * <p>A unique value (for example, a date-time stamp) that ensures that the request can't be
      * 			replayed.</p>
      *          <p>If the value of <code>CallerReference</code> is new (regardless of the content of the
@@ -2713,11 +2901,13 @@ export interface DistributionConfig {
      */
     CallerReference: string | undefined;
     /**
+     * @public
      * <p>A complex type that contains information about CNAMEs (alternate domain names), if
      * 			any, for this distribution.</p>
      */
     Aliases?: Aliases;
     /**
+     * @public
      * <p>The object that you want CloudFront to request from your origin (for example,
      * 				<code>index.html</code>) when a viewer requests the root URL for your distribution
      * 				(<code>https://www.example.com</code>) instead of an object in your distribution
@@ -2737,15 +2927,18 @@ export interface DistributionConfig {
      */
     DefaultRootObject?: string;
     /**
+     * @public
      * <p>A complex type that contains information about origins for this distribution.</p>
      */
     Origins: Origins | undefined;
     /**
+     * @public
      * <p>A complex type that contains information about origin groups for this
      * 			distribution.</p>
      */
     OriginGroups?: OriginGroups;
     /**
+     * @public
      * <p>A complex type that describes the default cache behavior if you don't specify a
      * 				<code>CacheBehavior</code> element or if files don't match any of the values of
      * 				<code>PathPattern</code> in <code>CacheBehavior</code> elements. You must create
@@ -2753,10 +2946,12 @@ export interface DistributionConfig {
      */
     DefaultCacheBehavior: DefaultCacheBehavior | undefined;
     /**
+     * @public
      * <p>A complex type that contains zero or more <code>CacheBehavior</code> elements.</p>
      */
     CacheBehaviors?: CacheBehaviors;
     /**
+     * @public
      * <p>A complex type that controls the following:</p>
      *          <ul>
      *             <li>
@@ -2772,11 +2967,13 @@ export interface DistributionConfig {
      */
     CustomErrorResponses?: CustomErrorResponses;
     /**
+     * @public
      * <p>A comment to describe the distribution. The comment cannot be longer than
      * 			128 characters.</p>
      */
     Comment: string | undefined;
     /**
+     * @public
      * <p>A complex type that controls whether access logs are written for the
      * 			distribution.</p>
      *          <p>For more information about logging, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/AccessLogs.html">Access Logs</a> in
@@ -2784,6 +2981,7 @@ export interface DistributionConfig {
      */
     Logging?: LoggingConfig;
     /**
+     * @public
      * <p>The price class that corresponds with the maximum price that you want to pay for CloudFront
      * 			service. If you specify <code>PriceClass_All</code>, CloudFront responds to requests for your
      * 			objects from all CloudFront edge locations.</p>
@@ -2799,20 +2997,24 @@ export interface DistributionConfig {
      */
     PriceClass?: PriceClass | string;
     /**
+     * @public
      * <p>From this field, you can enable or disable the selected distribution.</p>
      */
     Enabled: boolean | undefined;
     /**
+     * @public
      * <p>A complex type that determines the distribution's SSL/TLS configuration for
      * 			communicating with viewers.</p>
      */
     ViewerCertificate?: ViewerCertificate;
     /**
+     * @public
      * <p>A complex type that identifies ways in which you want to restrict distribution of your
      * 			content.</p>
      */
     Restrictions?: Restrictions;
     /**
+     * @public
      * <p>A unique identifier that specifies the WAF web ACL, if any, to associate with this
      * 			distribution. To specify a web ACL created using the latest version of WAF, use the
      * 			ACL ARN, for example
@@ -2829,6 +3031,7 @@ export interface DistributionConfig {
      */
     WebACLId?: string;
     /**
+     * @public
      * <p>(Optional) Specify the maximum HTTP version(s) that you want viewers to use to
      * 			communicate with CloudFront. The default value for new web distributions is
      * 			<code>http2</code>. Viewers that don't support HTTP/2 automatically use an earlier HTTP
@@ -2843,6 +3046,7 @@ export interface DistributionConfig {
      */
     HttpVersion?: HttpVersion | string;
     /**
+     * @public
      * <p>If you want CloudFront to respond to IPv6 DNS requests with an IPv6 address for your
      * 			distribution, specify <code>true</code>. If you specify <code>false</code>, CloudFront
      * 			responds to IPv6 DNS requests with the DNS response code <code>NOERROR</code> and with
@@ -2876,11 +3080,13 @@ export interface DistributionConfig {
      */
     IsIPV6Enabled?: boolean;
     /**
+     * @public
      * <p>The identifier of a continuous deployment policy. For more information, see
      * 				<code>CreateContinuousDeploymentPolicy</code>.</p>
      */
     ContinuousDeploymentPolicyId?: string;
     /**
+     * @public
      * <p>A Boolean that indicates whether this is a staging distribution. When this value is
      * 				<code>true</code>, this is a staging distribution. When this value is
      * 				<code>false</code>, this is not a staging distribution.</p>
@@ -2894,32 +3100,39 @@ export interface DistributionConfig {
  */
 export interface Distribution {
     /**
+     * @public
      * <p>The distribution's identifier. For example: <code>E1U5RQF7T870K0</code>.</p>
      */
     Id: string | undefined;
     /**
+     * @public
      * <p>The distribution's Amazon Resource Name (ARN).</p>
      */
     ARN: string | undefined;
     /**
+     * @public
      * <p>The distribution's status. When the status is <code>Deployed</code>, the
      * 			distribution's information is fully propagated to all CloudFront edge locations.</p>
      */
     Status: string | undefined;
     /**
+     * @public
      * <p>The date and time when the distribution was last modified.</p>
      */
     LastModifiedTime: Date | undefined;
     /**
+     * @public
      * <p>The number of invalidation batches currently in progress.</p>
      */
     InProgressInvalidationBatches: number | undefined;
     /**
+     * @public
      * <p>The distribution's CloudFront domain name. For example:
      * 			<code>d111111abcdef8.cloudfront.net</code>.</p>
      */
     DomainName: string | undefined;
     /**
+     * @public
      * <important>
      *             <p>We recommend using <code>TrustedKeyGroups</code> instead of
      * 					<code>TrustedSigners</code>.</p>
@@ -2930,15 +3143,18 @@ export interface Distribution {
      */
     ActiveTrustedSigners?: ActiveTrustedSigners;
     /**
+     * @public
      * <p>This field contains a list of key groups and the public keys in each key group that
      * 			CloudFront can use to verify the signatures of signed URLs or signed cookies.</p>
      */
     ActiveTrustedKeyGroups?: ActiveTrustedKeyGroups;
     /**
+     * @public
      * <p>The distribution's configuration.</p>
      */
     DistributionConfig: DistributionConfig | undefined;
     /**
+     * @public
      * <p>Amazon Web Services services in China customers must file for an Internet Content Provider (ICP)
      * 			recordal if they want to serve content publicly on an alternate domain name, also known
      * 			as a CNAME, that they've added to CloudFront. AliasICPRecordal provides the ICP recordal
@@ -2953,15 +3169,18 @@ export interface Distribution {
  */
 export interface CopyDistributionResult {
     /**
+     * @public
      * <p>A distribution tells CloudFront where you want content to be delivered from, and the details
      * 			about how to track and manage content delivery.</p>
      */
     Distribution?: Distribution;
     /**
+     * @public
      * <p>The URL of the staging distribution.</p>
      */
     Location?: string;
     /**
+     * @public
      * <p>The version identifier for the current version of the staging distribution.</p>
      */
     ETag?: string;
@@ -3534,6 +3753,22 @@ export declare class TooManyDistributionsAssociatedToKeyGroup extends __BaseExce
      */
     constructor(opts: __ExceptionOptionType<TooManyDistributionsAssociatedToKeyGroup, __BaseException>);
 }
+/**
+ * @public
+ * <p>The maximum number of distributions have been associated with the specified origin
+ * 			access control.</p>
+ *          <p>For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/cloudfront-limits.html">Quotas</a> (formerly known as limits) in the
+ * 				<i>Amazon CloudFront Developer Guide</i>.</p>
+ */
+export declare class TooManyDistributionsAssociatedToOriginAccessControl extends __BaseException {
+    readonly name: "TooManyDistributionsAssociatedToOriginAccessControl";
+    readonly $fault: "client";
+    Message?: string;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<TooManyDistributionsAssociatedToOriginAccessControl, __BaseException>);
+}
 /**
  * @public
  * <p>The maximum number of distributions have been associated with the specified origin
@@ -3762,6 +3997,7 @@ export declare class TrustedSignerDoesNotExist extends __BaseException {
  */
 export interface CreateCachePolicyRequest {
     /**
+     * @public
      * <p>A cache policy configuration.</p>
      */
     CachePolicyConfig: CachePolicyConfig | undefined;
@@ -3771,14 +4007,17 @@ export interface CreateCachePolicyRequest {
  */
 export interface CreateCachePolicyResult {
     /**
+     * @public
      * <p>A cache policy.</p>
      */
     CachePolicy?: CachePolicy;
     /**
+     * @public
      * <p>The fully qualified URI of the cache policy just created.</p>
      */
     Location?: string;
     /**
+     * @public
      * <p>The current version of the cache policy.</p>
      */
     ETag?: string;
@@ -3868,6 +4107,7 @@ export declare class CloudFrontOriginAccessIdentityAlreadyExists extends __BaseE
  */
 export interface CloudFrontOriginAccessIdentityConfig {
     /**
+     * @public
      * <p>A unique value (for example, a date-time stamp) that ensures that the request can't be
      * 			replayed.</p>
      *          <p>If the value of <code>CallerReference</code> is new (regardless of the content of the
@@ -3885,6 +4125,7 @@ export interface CloudFrontOriginAccessIdentityConfig {
      */
     CallerReference: string | undefined;
     /**
+     * @public
      * <p>A comment to describe the origin access identity. The comment cannot be longer than
      * 			128 characters.</p>
      */
@@ -3899,6 +4140,7 @@ export interface CloudFrontOriginAccessIdentityConfig {
  */
 export interface CreateCloudFrontOriginAccessIdentityRequest {
     /**
+     * @public
      * <p>The current configuration information for the identity.</p>
      */
     CloudFrontOriginAccessIdentityConfig: CloudFrontOriginAccessIdentityConfig | undefined;
@@ -3909,16 +4151,19 @@ export interface CreateCloudFrontOriginAccessIdentityRequest {
  */
 export interface CloudFrontOriginAccessIdentity {
     /**
+     * @public
      * <p>The ID for the origin access identity, for example, <code>E74FTE3AJFJ256A</code>.
      * 		</p>
      */
     Id: string | undefined;
     /**
+     * @public
      * <p>The Amazon S3 canonical user ID for the origin access identity, used when giving the origin
      * 			access identity read permission to an object in Amazon S3.</p>
      */
     S3CanonicalUserId: string | undefined;
     /**
+     * @public
      * <p>The current configuration information for the identity.</p>
      */
     CloudFrontOriginAccessIdentityConfig?: CloudFrontOriginAccessIdentityConfig;
@@ -3929,14 +4174,17 @@ export interface CloudFrontOriginAccessIdentity {
  */
 export interface CreateCloudFrontOriginAccessIdentityResult {
     /**
+     * @public
      * <p>The origin access identity's information.</p>
      */
     CloudFrontOriginAccessIdentity?: CloudFrontOriginAccessIdentity;
     /**
+     * @public
      * <p>The fully qualified URI of the new origin access identity just created.</p>
      */
     Location?: string;
     /**
+     * @public
      * <p>The current version of the origin access identity created.</p>
      */
     ETag?: string;
@@ -3974,10 +4222,12 @@ export declare class ContinuousDeploymentPolicyAlreadyExists extends __BaseExcep
  */
 export interface StagingDistributionDnsNames {
     /**
+     * @public
      * <p>The number of CloudFront domain names in your staging distribution.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>The CloudFront domain name of the staging distribution.</p>
      */
     Items?: string[];
@@ -3991,11 +4241,13 @@ export interface StagingDistributionDnsNames {
  */
 export interface ContinuousDeploymentSingleHeaderConfig {
     /**
+     * @public
      * <p>The request header name that you want CloudFront to send to your staging
      * 			distribution. The header must contain the prefix <code>aws-cf-cd-</code>.</p>
      */
     Header: string | undefined;
     /**
+     * @public
      * <p>The request header value.</p>
      */
     Value: string | undefined;
@@ -4009,12 +4261,14 @@ export interface ContinuousDeploymentSingleHeaderConfig {
  */
 export interface SessionStickinessConfig {
     /**
+     * @public
      * <p>The amount of time after which you want sessions to cease if no requests are
      * 			received. Allowed values are 300–3600 seconds (5–60 minutes).</p>
      *          <p>The value must be less than or equal to <code>MaximumTTL</code>.</p>
      */
     IdleTTL: number | undefined;
     /**
+     * @public
      * <p>The maximum amount of time to consider requests from the viewer as being part of the
      * 			same session. Allowed values are 300–3600 seconds (5–60 minutes).</p>
      *          <p>The value must be less than or equal to <code>IdleTTL</code>.</p>
@@ -4027,11 +4281,13 @@ export interface SessionStickinessConfig {
  */
 export interface ContinuousDeploymentSingleWeightConfig {
     /**
+     * @public
      * <p>The percentage of traffic to send to a staging distribution, expressed as a decimal
      * 			number between 0 and .15.</p>
      */
     Weight: number | undefined;
     /**
+     * @public
      * <p>Session stickiness provides the ability to define multiple requests from a single
      * 			viewer as a single session. This prevents the potentially inconsistent experience of
      * 			sending some of a given user's requests to your staging distribution, while others are
@@ -4057,14 +4313,17 @@ export type ContinuousDeploymentPolicyType = (typeof ContinuousDeploymentPolicyT
  */
 export interface TrafficConfig {
     /**
+     * @public
      * <p>Contains the percentage of traffic to send to the staging distribution.</p>
      */
     SingleWeightConfig?: ContinuousDeploymentSingleWeightConfig;
     /**
+     * @public
      * <p>Determines which HTTP requests are sent to the staging distribution.</p>
      */
     SingleHeaderConfig?: ContinuousDeploymentSingleHeaderConfig;
     /**
+     * @public
      * <p>The type of traffic configuration.</p>
      */
     Type: ContinuousDeploymentPolicyType | string | undefined;
@@ -4075,11 +4334,13 @@ export interface TrafficConfig {
  */
 export interface ContinuousDeploymentPolicyConfig {
     /**
+     * @public
      * <p>The CloudFront domain name of the staging distribution. For example:
      * 				<code>d111111abcdef8.cloudfront.net</code>.</p>
      */
     StagingDistributionDnsNames: StagingDistributionDnsNames | undefined;
     /**
+     * @public
      * <p>A Boolean that indicates whether this continuous deployment policy is enabled (in
      * 			effect). When this value is <code>true</code>, this policy is enabled and in effect.
      * 			When this value is <code>false</code>, this policy is not enabled and has no
@@ -4087,6 +4348,7 @@ export interface ContinuousDeploymentPolicyConfig {
      */
     Enabled: boolean | undefined;
     /**
+     * @public
      * <p>Contains the parameters for routing production traffic from your primary to staging
      * 			distributions.</p>
      */
@@ -4097,6 +4359,7 @@ export interface ContinuousDeploymentPolicyConfig {
  */
 export interface CreateContinuousDeploymentPolicyRequest {
     /**
+     * @public
      * <p>Contains the configuration for a continuous deployment policy.</p>
      */
     ContinuousDeploymentPolicyConfig: ContinuousDeploymentPolicyConfig | undefined;
@@ -4107,14 +4370,17 @@ export interface CreateContinuousDeploymentPolicyRequest {
  */
 export interface ContinuousDeploymentPolicy {
     /**
+     * @public
      * <p>The identifier of the continuous deployment policy.</p>
      */
     Id: string | undefined;
     /**
+     * @public
      * <p>The date and time the continuous deployment policy was last modified.</p>
      */
     LastModifiedTime: Date | undefined;
     /**
+     * @public
      * <p>Contains the configuration for a continuous deployment policy.</p>
      */
     ContinuousDeploymentPolicyConfig: ContinuousDeploymentPolicyConfig | undefined;
@@ -4124,14 +4390,17 @@ export interface ContinuousDeploymentPolicy {
  */
 export interface CreateContinuousDeploymentPolicyResult {
     /**
+     * @public
      * <p>A continuous deployment policy.</p>
      */
     ContinuousDeploymentPolicy?: ContinuousDeploymentPolicy;
     /**
+     * @public
      * <p>The location of the continuous deployment policy.</p>
      */
     Location?: string;
     /**
+     * @public
      * <p>The version identifier for the current version of the continuous deployment
      * 			policy.</p>
      */
@@ -4184,6 +4453,7 @@ export declare class ContinuousDeploymentPolicyInUse extends __BaseException {
  */
 export interface CreateDistributionRequest {
     /**
+     * @public
      * <p>The distribution's configuration information.</p>
      */
     DistributionConfig: DistributionConfig | undefined;
@@ -4194,14 +4464,17 @@ export interface CreateDistributionRequest {
  */
 export interface CreateDistributionResult {
     /**
+     * @public
      * <p>The distribution's information.</p>
      */
     Distribution?: Distribution;
     /**
+     * @public
      * <p>The fully qualified URI of the new distribution resource just created.</p>
      */
     Location?: string;
     /**
+     * @public
      * <p>The current version of the distribution created.</p>
      */
     ETag?: string;
@@ -4247,28 +4520,13 @@ export declare class NoSuchContinuousDeploymentPolicy extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<NoSuchContinuousDeploymentPolicy, __BaseException>);
 }
-/**
- * @public
- * <p>The maximum number of distributions have been associated with the specified origin
- * 			access control.</p>
- *          <p>For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/cloudfront-limits.html">Quotas</a> (formerly known as limits) in the
- * 				<i>Amazon CloudFront Developer Guide</i>.</p>
- */
-export declare class TooManyDistributionsAssociatedToOriginAccessControl extends __BaseException {
-    readonly name: "TooManyDistributionsAssociatedToOriginAccessControl";
-    readonly $fault: "client";
-    Message?: string;
-    /**
-     * @internal
-     */
-    constructor(opts: __ExceptionOptionType<TooManyDistributionsAssociatedToOriginAccessControl, __BaseException>);
-}
 /**
  * @public
  * <p>A complex type that contains <code>Tag</code> key and <code>Tag</code> value.</p>
  */
 export interface Tag {
     /**
+     * @public
      * <p>A string that contains <code>Tag</code> key.</p>
      *          <p>The string length should be between 1 and 128 characters. Valid characters include
      * 				<code>a-z</code>, <code>A-Z</code>, <code>0-9</code>, space, and the special
@@ -4276,6 +4534,7 @@ export interface Tag {
      */
     Key: string | undefined;
     /**
+     * @public
      * <p>A string that contains an optional <code>Tag</code> value.</p>
      *          <p>The string length should be between 0 and 256 characters. Valid characters include
      * 				<code>a-z</code>, <code>A-Z</code>, <code>0-9</code>, space, and the special
@@ -4289,6 +4548,7 @@ export interface Tag {
  */
 export interface Tags {
     /**
+     * @public
      * <p>A complex type that contains <code>Tag</code> elements.</p>
      */
     Items?: Tag[];
@@ -4300,10 +4560,12 @@ export interface Tags {
  */
 export interface DistributionConfigWithTags {
     /**
+     * @public
      * <p>A distribution configuration.</p>
      */
     DistributionConfig: DistributionConfig | undefined;
     /**
+     * @public
      * <p>A complex type that contains zero or more <code>Tag</code> elements.</p>
      */
     Tags: Tags | undefined;
@@ -4314,6 +4576,7 @@ export interface DistributionConfigWithTags {
  */
 export interface CreateDistributionWithTagsRequest {
     /**
+     * @public
      * <p>The distribution's configuration information.</p>
      */
     DistributionConfigWithTags: DistributionConfigWithTags | undefined;
@@ -4324,14 +4587,17 @@ export interface CreateDistributionWithTagsRequest {
  */
 export interface CreateDistributionWithTagsResult {
     /**
+     * @public
      * <p>The distribution's information.</p>
      */
     Distribution?: Distribution;
     /**
+     * @public
      * <p>The fully qualified URI of the new distribution resource just created.</p>
      */
     Location?: string;
     /**
+     * @public
      * <p>The current version of the distribution created.</p>
      */
     ETag?: string;
@@ -4366,14 +4632,17 @@ export type Format = (typeof Format)[keyof typeof Format];
  */
 export interface ContentTypeProfile {
     /**
+     * @public
      * <p>The format for a field-level encryption content type-profile mapping.</p>
      */
     Format: Format | string | undefined;
     /**
+     * @public
      * <p>The profile ID for a field-level encryption content type-profile mapping.</p>
      */
     ProfileId?: string;
     /**
+     * @public
      * <p>The content type for a field-level encryption content type-profile mapping.</p>
      */
     ContentType: string | undefined;
@@ -4384,10 +4653,12 @@ export interface ContentTypeProfile {
  */
 export interface ContentTypeProfiles {
     /**
+     * @public
      * <p>The number of field-level encryption content type-profile mappings.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>Items in a field-level encryption content type-profile mapping.</p>
      */
     Items?: ContentTypeProfile[];
@@ -4398,6 +4669,7 @@ export interface ContentTypeProfiles {
  */
 export interface ContentTypeProfileConfig {
     /**
+     * @public
      * <p>The setting in a field-level encryption content type-profile mapping that specifies
      * 			what to do when an unknown content type is provided for the profile. If true, content is
      * 			forwarded without being encrypted when the content type is unknown. If false (the
@@ -4405,6 +4677,7 @@ export interface ContentTypeProfileConfig {
      */
     ForwardWhenContentTypeIsUnknown: boolean | undefined;
     /**
+     * @public
      * <p>The configuration for a field-level encryption content type-profile.</p>
      */
     ContentTypeProfiles?: ContentTypeProfiles;
@@ -4415,10 +4688,12 @@ export interface ContentTypeProfileConfig {
  */
 export interface QueryArgProfile {
     /**
+     * @public
      * <p>Query argument for field-level encryption query argument-profile mapping.</p>
      */
     QueryArg: string | undefined;
     /**
+     * @public
      * <p>ID of profile to use for field-level encryption query argument-profile mapping</p>
      */
     ProfileId: string | undefined;
@@ -4429,11 +4704,13 @@ export interface QueryArgProfile {
  */
 export interface QueryArgProfiles {
     /**
+     * @public
      * <p>Number of profiles for query argument-profile mapping for field-level
      * 			encryption.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>Number of items for query argument-profile mapping for field-level encryption.</p>
      */
     Items?: QueryArgProfile[];
@@ -4444,11 +4721,13 @@ export interface QueryArgProfiles {
  */
 export interface QueryArgProfileConfig {
     /**
+     * @public
      * <p>Flag to set if you want a request to be forwarded to the origin even if the profile
      * 			specified by the field-level encryption query argument, fle-profile, is unknown.</p>
      */
     ForwardWhenQueryArgProfileIsUnknown: boolean | undefined;
     /**
+     * @public
      * <p>Profiles specified for query argument-profile mapping for field-level
      * 			encryption.</p>
      */
@@ -4461,20 +4740,24 @@ export interface QueryArgProfileConfig {
  */
 export interface FieldLevelEncryptionConfig {
     /**
+     * @public
      * <p>A unique number that ensures the request can't be replayed.</p>
      */
     CallerReference: string | undefined;
     /**
+     * @public
      * <p>An optional comment about the configuration. The comment cannot be longer than 128
      * 			characters.</p>
      */
     Comment?: string;
     /**
+     * @public
      * <p>A complex data type that specifies when to forward content if a profile isn't found
      * 			and the profile that can be provided as a query argument in a request.</p>
      */
     QueryArgProfileConfig?: QueryArgProfileConfig;
     /**
+     * @public
      * <p>A complex data type that specifies when to forward content if a content type isn't
      * 			recognized and profiles to use as by default in a request if a query argument doesn't
      * 			specify a profile to use.</p>
@@ -4486,6 +4769,7 @@ export interface FieldLevelEncryptionConfig {
  */
 export interface CreateFieldLevelEncryptionConfigRequest {
     /**
+     * @public
      * <p>The request to create a new field-level encryption configuration.</p>
      */
     FieldLevelEncryptionConfig: FieldLevelEncryptionConfig | undefined;
@@ -4497,16 +4781,19 @@ export interface CreateFieldLevelEncryptionConfigRequest {
  */
 export interface FieldLevelEncryption {
     /**
+     * @public
      * <p>The configuration ID for a field-level encryption configuration which includes a set
      * 			of profiles that specify certain selected data fields to be encrypted by specific public
      * 			keys.</p>
      */
     Id: string | undefined;
     /**
+     * @public
      * <p>The last time the field-level encryption configuration was changed.</p>
      */
     LastModifiedTime: Date | undefined;
     /**
+     * @public
      * <p>A complex data type that includes the profile configurations specified for field-level
      * 			encryption.</p>
      */
@@ -4517,14 +4804,17 @@ export interface FieldLevelEncryption {
  */
 export interface CreateFieldLevelEncryptionConfigResult {
     /**
+     * @public
      * <p>Returned when you create a new field-level encryption configuration.</p>
      */
     FieldLevelEncryption?: FieldLevelEncryption;
     /**
+     * @public
      * <p>The fully qualified URI of the new configuration resource just created.</p>
      */
     Location?: string;
     /**
+     * @public
      * <p>The current version of the field level encryption configuration. For example:
      * 				<code>E2QWRUHAPOMQZL</code>.</p>
      */
@@ -4618,10 +4908,12 @@ export declare class TooManyFieldLevelEncryptionQueryArgProfiles extends __BaseE
  */
 export interface FieldPatterns {
     /**
+     * @public
      * <p>The number of field-level encryption field patterns.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>An array of the field-level encryption field patterns.</p>
      */
     Items?: string[];
@@ -4633,17 +4925,20 @@ export interface FieldPatterns {
  */
 export interface EncryptionEntity {
     /**
+     * @public
      * <p>The public key associated with a set of field-level encryption patterns, to be used
      * 			when encrypting the fields that match the patterns.</p>
      */
     PublicKeyId: string | undefined;
     /**
+     * @public
      * <p>The provider associated with the public key being used for encryption. This value must
      * 			also be provided with the private key for applications to be able to decrypt
      * 			data.</p>
      */
     ProviderId: string | undefined;
     /**
+     * @public
      * <p>Field patterns in a field-level encryption content type profile specify the fields
      * 			that you want to be encrypted. You can provide the full field name, or any beginning
      * 			characters followed by a wildcard (*). You can't overlap field patterns. For example,
@@ -4658,11 +4953,13 @@ export interface EncryptionEntity {
  */
 export interface EncryptionEntities {
     /**
+     * @public
      * <p>Number of field pattern items in a field-level encryption content type-profile
      * 			mapping.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>An array of field patterns in a field-level encryption content type-profile mapping.
      * 		</p>
      */
@@ -4674,19 +4971,23 @@ export interface EncryptionEntities {
  */
 export interface FieldLevelEncryptionProfileConfig {
     /**
+     * @public
      * <p>Profile name for the field-level encryption profile.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>A unique number that ensures that the request can't be replayed.</p>
      */
     CallerReference: string | undefined;
     /**
+     * @public
      * <p>An optional comment for the field-level encryption profile. The comment cannot be
      * 			longer than 128 characters.</p>
      */
     Comment?: string;
     /**
+     * @public
      * <p>A complex data type of encryption entities for the field-level encryption profile that
      * 			include the public key ID, provider, and field patterns for specifying which fields to
      * 			encrypt with this key.</p>
@@ -4698,6 +4999,7 @@ export interface FieldLevelEncryptionProfileConfig {
  */
 export interface CreateFieldLevelEncryptionProfileRequest {
     /**
+     * @public
      * <p>The request to create a field-level encryption profile.</p>
      */
     FieldLevelEncryptionProfileConfig: FieldLevelEncryptionProfileConfig | undefined;
@@ -4708,16 +5010,19 @@ export interface CreateFieldLevelEncryptionProfileRequest {
  */
 export interface FieldLevelEncryptionProfile {
     /**
+     * @public
      * <p>The ID for a field-level encryption profile configuration which includes a set of
      * 			profiles that specify certain selected data fields to be encrypted by specific public
      * 			keys.</p>
      */
     Id: string | undefined;
     /**
+     * @public
      * <p>The last time the field-level encryption profile was updated.</p>
      */
     LastModifiedTime: Date | undefined;
     /**
+     * @public
      * <p>A complex data type that includes the profile name and the encryption entities for the
      * 			field-level encryption profile.</p>
      */
@@ -4728,14 +5033,17 @@ export interface FieldLevelEncryptionProfile {
  */
 export interface CreateFieldLevelEncryptionProfileResult {
     /**
+     * @public
      * <p>Returned when you create a new field-level encryption profile.</p>
      */
     FieldLevelEncryptionProfile?: FieldLevelEncryptionProfile;
     /**
+     * @public
      * <p>The fully qualified URI of the new profile resource just created.</p>
      */
     Location?: string;
     /**
+     * @public
      * <p>The current version of the field level encryption profile. For example:
      * 				<code>E2QWRUHAPOMQZL</code>.</p>
      */
@@ -4827,6 +5135,7 @@ export declare class TooManyFieldLevelEncryptionProfiles extends __BaseException
  */
 export declare const FunctionRuntime: {
     readonly cloudfront_js_1_0: "cloudfront-js-1.0";
+    readonly cloudfront_js_2_0: "cloudfront-js-2.0";
 };
 /**
  * @public
@@ -4838,12 +5147,13 @@ export type FunctionRuntime = (typeof FunctionRuntime)[keyof typeof FunctionRunt
  */
 export interface FunctionConfig {
     /**
+     * @public
      * <p>A comment to describe the function.</p>
      */
     Comment: string | undefined;
     /**
-     * <p>The function's runtime environment. The only valid value is
-     * 				<code>cloudfront-js-1.0</code>.</p>
+     * @public
+     * <p>The function's runtime environment verion.</p>
      */
     Runtime: FunctionRuntime | string | undefined;
 }
@@ -4852,15 +5162,18 @@ export interface FunctionConfig {
  */
 export interface CreateFunctionRequest {
     /**
+     * @public
      * <p>A name to identify the function.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>Configuration information about the function, including an optional comment and the
      * 			function's runtime.</p>
      */
     FunctionConfig: FunctionConfig | undefined;
     /**
+     * @public
      * <p>The function code. For more information about writing a CloudFront function, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/writing-function-code.html">Writing
      * 				function code for CloudFront Functions</a> in the
      * 			<i>Amazon CloudFront Developer Guide</i>.</p>
@@ -4885,11 +5198,13 @@ export type FunctionStage = (typeof FunctionStage)[keyof typeof FunctionStage];
  */
 export interface FunctionMetadata {
     /**
+     * @public
      * <p>The Amazon Resource Name (ARN) of the function. The ARN uniquely identifies the
      * 			function.</p>
      */
     FunctionARN: string | undefined;
     /**
+     * @public
      * <p>The stage that the function is in, either <code>DEVELOPMENT</code> or
      * 				<code>LIVE</code>.</p>
      *          <p>When a function is in the <code>DEVELOPMENT</code> stage, you can test the function
@@ -4899,10 +5214,12 @@ export interface FunctionMetadata {
      */
     Stage?: FunctionStage | string;
     /**
+     * @public
      * <p>The date and time when the function was created.</p>
      */
     CreatedTime?: Date;
     /**
+     * @public
      * <p>The date and time when the function was most recently updated.</p>
      */
     LastModifiedTime: Date | undefined;
@@ -4913,18 +5230,22 @@ export interface FunctionMetadata {
  */
 export interface FunctionSummary {
     /**
+     * @public
      * <p>The name of the CloudFront function.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>The status of the CloudFront function.</p>
      */
     Status?: string;
     /**
+     * @public
      * <p>Contains configuration information about a CloudFront function.</p>
      */
     FunctionConfig: FunctionConfig | undefined;
     /**
+     * @public
      * <p>Contains metadata about a CloudFront function.</p>
      */
     FunctionMetadata: FunctionMetadata | undefined;
@@ -4934,15 +5255,18 @@ export interface FunctionSummary {
  */
 export interface CreateFunctionResult {
     /**
+     * @public
      * <p>Contains configuration information and metadata about a CloudFront function.</p>
      */
     FunctionSummary?: FunctionSummary;
     /**
+     * @public
      * <p>The URL of the CloudFront function. Use the URL to manage the function with the CloudFront
      * 			API.</p>
      */
     Location?: string;
     /**
+     * @public
      * <p>The version identifier for the current version of the CloudFront function.</p>
      */
     ETag?: string;
@@ -5012,11 +5336,13 @@ export declare class UnsupportedOperation extends __BaseException {
  */
 export interface Paths {
     /**
+     * @public
      * <p>The number of invalidation paths specified for the objects that you want to
      * 			invalidate.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>A complex type that contains a list of the paths that you want to invalidate.</p>
      */
     Items?: string[];
@@ -5027,12 +5353,14 @@ export interface Paths {
  */
 export interface InvalidationBatch {
     /**
+     * @public
      * <p>A complex type that contains information about the objects that you want to
      * 			invalidate. For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Invalidation.html#invalidation-specifying-objects">Specifying the Objects to Invalidate</a> in the
      * 				<i>Amazon CloudFront Developer Guide</i>.</p>
      */
     Paths: Paths | undefined;
     /**
+     * @public
      * <p>A value that you specify to uniquely identify an invalidation request. CloudFront uses the
      * 			value to prevent you from accidentally resubmitting an identical request. Whenever you
      * 			create a new invalidation request, you must specify a new value for
@@ -5056,10 +5384,12 @@ export interface InvalidationBatch {
  */
 export interface CreateInvalidationRequest {
     /**
+     * @public
      * <p>The distribution's id.</p>
      */
     DistributionId: string | undefined;
     /**
+     * @public
      * <p>The batch information for the invalidation.</p>
      */
     InvalidationBatch: InvalidationBatch | undefined;
@@ -5070,20 +5400,24 @@ export interface CreateInvalidationRequest {
  */
 export interface Invalidation {
     /**
+     * @public
      * <p>The identifier for the invalidation request. For example:
      * 			<code>IDFDVBD632BHDS5</code>.</p>
      */
     Id: string | undefined;
     /**
+     * @public
      * <p>The status of the invalidation request. When the invalidation batch is finished, the
      * 			status is <code>Completed</code>.</p>
      */
     Status: string | undefined;
     /**
+     * @public
      * <p>The date and time the invalidation request was first made.</p>
      */
     CreateTime: Date | undefined;
     /**
+     * @public
      * <p>The current invalidation information for the batch request.</p>
      */
     InvalidationBatch: InvalidationBatch | undefined;
@@ -5094,11 +5428,13 @@ export interface Invalidation {
  */
 export interface CreateInvalidationResult {
     /**
+     * @public
      * <p>The fully qualified URI of the distribution and invalidation batch request, including
      * 			the <code>Invalidation ID</code>.</p>
      */
     Location?: string;
     /**
+     * @public
      * <p>The invalidation's information.</p>
      */
     Invalidation?: Invalidation;
@@ -5124,14 +5460,17 @@ export declare class TooManyInvalidationsInProgress extends __BaseException {
  */
 export interface KeyGroupConfig {
     /**
+     * @public
      * <p>A name to identify the key group.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>A list of the identifiers of the public keys in the key group.</p>
      */
     Items: string[] | undefined;
     /**
+     * @public
      * <p>A comment to describe the key group. The comment cannot be longer than 128
      * 			characters.</p>
      */
@@ -5142,6 +5481,7 @@ export interface KeyGroupConfig {
  */
 export interface CreateKeyGroupRequest {
     /**
+     * @public
      * <p>A key group configuration.</p>
      */
     KeyGroupConfig: KeyGroupConfig | undefined;
@@ -5153,14 +5493,17 @@ export interface CreateKeyGroupRequest {
  */
 export interface KeyGroup {
     /**
+     * @public
      * <p>The identifier for the key group.</p>
      */
     Id: string | undefined;
     /**
+     * @public
      * <p>The date and time when the key group was last modified.</p>
      */
     LastModifiedTime: Date | undefined;
     /**
+     * @public
      * <p>The key group configuration.</p>
      */
     KeyGroupConfig: KeyGroupConfig | undefined;
@@ -5170,14 +5513,17 @@ export interface KeyGroup {
  */
 export interface CreateKeyGroupResult {
     /**
+     * @public
      * <p>The key group that was just created.</p>
      */
     KeyGroup?: KeyGroup;
     /**
+     * @public
      * <p>The URL of the key group.</p>
      */
     Location?: string;
     /**
+     * @public
      * <p>The identifier for this version of the key group.</p>
      */
     ETag?: string;
@@ -5244,6 +5590,7 @@ export type RealtimeMetricsSubscriptionStatus = (typeof RealtimeMetricsSubscript
  */
 export interface RealtimeMetricsSubscriptionConfig {
     /**
+     * @public
      * <p>A flag that indicates whether additional CloudWatch metrics are enabled for a given
      * 			CloudFront distribution.</p>
      */
@@ -5256,6 +5603,7 @@ export interface RealtimeMetricsSubscriptionConfig {
  */
 export interface MonitoringSubscription {
     /**
+     * @public
      * <p>A subscription configuration for additional CloudWatch metrics.</p>
      */
     RealtimeMetricsSubscriptionConfig?: RealtimeMetricsSubscriptionConfig;
@@ -5265,10 +5613,12 @@ export interface MonitoringSubscription {
  */
 export interface CreateMonitoringSubscriptionRequest {
     /**
+     * @public
      * <p>The ID of the distribution that you are enabling metrics for.</p>
      */
     DistributionId: string | undefined;
     /**
+     * @public
      * <p>A monitoring subscription. This structure contains information about whether
      * 			additional CloudWatch metrics are enabled for a given CloudFront distribution.</p>
      */
@@ -5279,6 +5629,7 @@ export interface CreateMonitoringSubscriptionRequest {
  */
 export interface CreateMonitoringSubscriptionResult {
     /**
+     * @public
      * <p>A monitoring subscription. This structure contains information about whether
      * 			additional CloudWatch metrics are enabled for a given CloudFront distribution.</p>
      */
@@ -5339,19 +5690,23 @@ export type OriginAccessControlSigningProtocols = (typeof OriginAccessControlSig
  */
 export interface OriginAccessControlConfig {
     /**
+     * @public
      * <p>A name to identify the origin access control.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>A description of the origin access control.</p>
      */
     Description?: string;
     /**
+     * @public
      * <p>The signing protocol of the origin access control, which determines how CloudFront signs
      * 			(authenticates) requests. The only valid value is <code>sigv4</code>.</p>
      */
     SigningProtocol: OriginAccessControlSigningProtocols | string | undefined;
     /**
+     * @public
      * <p>Specifies which requests CloudFront signs (adds authentication information to). Specify
      * 				<code>always</code> for the most common use case. For more information, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/private-content-restricting-access-to-s3.html#oac-advanced-settings">origin access control advanced settings</a> in the
      * 				<i>Amazon CloudFront Developer Guide</i>.</p>
@@ -5385,6 +5740,7 @@ export interface OriginAccessControlConfig {
      */
     SigningBehavior: OriginAccessControlSigningBehaviors | string | undefined;
     /**
+     * @public
      * <p>The type of origin that this origin access control is for.</p>
      */
     OriginAccessControlOriginType: OriginAccessControlOriginTypes | string | undefined;
@@ -5394,6 +5750,7 @@ export interface OriginAccessControlConfig {
  */
 export interface CreateOriginAccessControlRequest {
     /**
+     * @public
      * <p>Contains the origin access control.</p>
      */
     OriginAccessControlConfig: OriginAccessControlConfig | undefined;
@@ -5404,10 +5761,12 @@ export interface CreateOriginAccessControlRequest {
  */
 export interface OriginAccessControl {
     /**
+     * @public
      * <p>The unique identifier of the origin access control.</p>
      */
     Id: string | undefined;
     /**
+     * @public
      * <p>The origin access control.</p>
      */
     OriginAccessControlConfig?: OriginAccessControlConfig;
@@ -5417,14 +5776,17 @@ export interface OriginAccessControl {
  */
 export interface CreateOriginAccessControlResult {
     /**
+     * @public
      * <p>Contains an origin access control.</p>
      */
     OriginAccessControl?: OriginAccessControl;
     /**
+     * @public
      * <p>The URL of the origin access control.</p>
      */
     Location?: string;
     /**
+     * @public
      * <p>The version identifier for the current version of the origin access control.</p>
      */
     ETag?: string;
@@ -5479,6 +5841,7 @@ export type OriginRequestPolicyCookieBehavior = (typeof OriginRequestPolicyCooki
  */
 export interface OriginRequestPolicyCookiesConfig {
     /**
+     * @public
      * <p>Determines whether cookies in viewer requests are included in requests that CloudFront sends
      * 			to the origin. Valid values are:</p>
      *          <ul>
@@ -5513,6 +5876,7 @@ export interface OriginRequestPolicyCookiesConfig {
      */
     CookieBehavior: OriginRequestPolicyCookieBehavior | string | undefined;
     /**
+     * @public
      * <p>Contains a list of cookie names.</p>
      */
     Cookies?: CookieNames;
@@ -5539,6 +5903,7 @@ export type OriginRequestPolicyHeaderBehavior = (typeof OriginRequestPolicyHeade
  */
 export interface OriginRequestPolicyHeadersConfig {
     /**
+     * @public
      * <p>Determines whether any HTTP headers are included in requests that CloudFront sends to the
      * 			origin. Valid values are:</p>
      *          <ul>
@@ -5579,6 +5944,7 @@ export interface OriginRequestPolicyHeadersConfig {
      */
     HeaderBehavior: OriginRequestPolicyHeaderBehavior | string | undefined;
     /**
+     * @public
      * <p>Contains a list of HTTP header names.</p>
      */
     Headers?: Headers;
@@ -5604,6 +5970,7 @@ export type OriginRequestPolicyQueryStringBehavior = (typeof OriginRequestPolicy
  */
 export interface OriginRequestPolicyQueryStringsConfig {
     /**
+     * @public
      * <p>Determines whether any URL query strings in viewer requests are included in requests
      * 			that CloudFront sends to the origin. Valid values are:</p>
      *          <ul>
@@ -5638,6 +6005,7 @@ export interface OriginRequestPolicyQueryStringsConfig {
      */
     QueryStringBehavior: OriginRequestPolicyQueryStringBehavior | string | undefined;
     /**
+     * @public
      * <p>Contains the specific query strings in viewer requests that either <i>
      *                <b>are</b>
      *             </i> or <i>
@@ -5684,24 +6052,29 @@ export interface OriginRequestPolicyQueryStringsConfig {
  */
 export interface OriginRequestPolicyConfig {
     /**
+     * @public
      * <p>A comment to describe the origin request policy. The comment cannot be longer than 128
      * 			characters.</p>
      */
     Comment?: string;
     /**
+     * @public
      * <p>A unique name to identify the origin request policy.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>The HTTP headers to include in origin requests. These can include headers from viewer
      * 			requests and additional headers added by CloudFront.</p>
      */
     HeadersConfig: OriginRequestPolicyHeadersConfig | undefined;
     /**
+     * @public
      * <p>The cookies from viewer requests to include in origin requests.</p>
      */
     CookiesConfig: OriginRequestPolicyCookiesConfig | undefined;
     /**
+     * @public
      * <p>The URL query strings from viewer requests to include in origin requests.</p>
      */
     QueryStringsConfig: OriginRequestPolicyQueryStringsConfig | undefined;
@@ -5711,6 +6084,7 @@ export interface OriginRequestPolicyConfig {
  */
 export interface CreateOriginRequestPolicyRequest {
     /**
+     * @public
      * <p>An origin request policy configuration.</p>
      */
     OriginRequestPolicyConfig: OriginRequestPolicyConfig | undefined;
@@ -5744,14 +6118,17 @@ export interface CreateOriginRequestPolicyRequest {
  */
 export interface OriginRequestPolicy {
     /**
+     * @public
      * <p>The unique identifier for the origin request policy.</p>
      */
     Id: string | undefined;
     /**
+     * @public
      * <p>The date and time when the origin request policy was last modified.</p>
      */
     LastModifiedTime: Date | undefined;
     /**
+     * @public
      * <p>The origin request policy configuration.</p>
      */
     OriginRequestPolicyConfig: OriginRequestPolicyConfig | undefined;
@@ -5761,14 +6138,17 @@ export interface OriginRequestPolicy {
  */
 export interface CreateOriginRequestPolicyResult {
     /**
+     * @public
      * <p>An origin request policy.</p>
      */
     OriginRequestPolicy?: OriginRequestPolicy;
     /**
+     * @public
      * <p>The fully qualified URI of the origin request policy just created.</p>
      */
     Location?: string;
     /**
+     * @public
      * <p>The current version of the origin request policy.</p>
      */
     ETag?: string;
@@ -5854,19 +6234,23 @@ export declare class TooManyQueryStringsInOriginRequestPolicy extends __BaseExce
  */
 export interface PublicKeyConfig {
     /**
+     * @public
      * <p>A string included in the request to help make sure that the request can't be
      * 			replayed.</p>
      */
     CallerReference: string | undefined;
     /**
+     * @public
      * <p>A name to help identify the public key.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>The public key that you can use with <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/PrivateContent.html">signed URLs and signed cookies</a>, or with <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/field-level-encryption.html">field-level encryption</a>.</p>
      */
     EncodedKey: string | undefined;
     /**
+     * @public
      * <p>A comment to describe the public key. The comment cannot be longer than 128
      * 			characters.</p>
      */
@@ -5877,6 +6261,7 @@ export interface PublicKeyConfig {
  */
 export interface CreatePublicKeyRequest {
     /**
+     * @public
      * <p>A CloudFront public key configuration.</p>
      */
     PublicKeyConfig: PublicKeyConfig | undefined;
@@ -5887,14 +6272,17 @@ export interface CreatePublicKeyRequest {
  */
 export interface PublicKey {
     /**
+     * @public
      * <p>The identifier of the public key.</p>
      */
     Id: string | undefined;
     /**
+     * @public
      * <p>The date and time when the public key was uploaded.</p>
      */
     CreatedTime: Date | undefined;
     /**
+     * @public
      * <p>Configuration information about a public key that you can use with <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/PrivateContent.html">signed URLs and signed cookies</a>, or with <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/field-level-encryption.html">field-level encryption</a>.</p>
      */
     PublicKeyConfig: PublicKeyConfig | undefined;
@@ -5904,14 +6292,17 @@ export interface PublicKey {
  */
 export interface CreatePublicKeyResult {
     /**
+     * @public
      * <p>The public key.</p>
      */
     PublicKey?: PublicKey;
     /**
+     * @public
      * <p>The URL of the public key.</p>
      */
     Location?: string;
     /**
+     * @public
      * <p>The identifier for this version of the public key.</p>
      */
     ETag?: string;
@@ -5950,6 +6341,7 @@ export declare class TooManyPublicKeys extends __BaseException {
  */
 export interface KinesisStreamConfig {
     /**
+     * @public
      * <p>The Amazon Resource Name (ARN) of an Identity and Access Management (IAM) role that CloudFront can use to
      * 			send real-time log data to your Kinesis data stream.</p>
      *          <p>For more information the IAM role, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/real-time-logs.html#understand-real-time-log-config-iam-role">Real-time log configuration IAM role</a> in the
@@ -5957,6 +6349,7 @@ export interface KinesisStreamConfig {
      */
     RoleARN: string | undefined;
     /**
+     * @public
      * <p>The Amazon Resource Name (ARN) of the Kinesis data stream where you are sending
      * 			real-time log data.</p>
      */
@@ -5969,11 +6362,13 @@ export interface KinesisStreamConfig {
  */
 export interface EndPoint {
     /**
+     * @public
      * <p>The type of data stream where you are sending real-time log data. The only valid value
      * 			is <code>Kinesis</code>.</p>
      */
     StreamType: string | undefined;
     /**
+     * @public
      * <p>Contains information about the Amazon Kinesis data stream where you are sending real-time
      * 			log data.</p>
      */
@@ -5984,21 +6379,25 @@ export interface EndPoint {
  */
 export interface CreateRealtimeLogConfigRequest {
     /**
+     * @public
      * <p>Contains information about the Amazon Kinesis data stream where you are sending real-time
      * 			log data.</p>
      */
     EndPoints: EndPoint[] | undefined;
     /**
+     * @public
      * <p>A list of fields to include in each real-time log record.</p>
      *          <p>For more information about fields, see <a href="https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/real-time-logs.html#understand-real-time-log-config-fields">Real-time log configuration fields</a> in the
      * 				<i>Amazon CloudFront Developer Guide</i>.</p>
      */
     Fields: string[] | undefined;
     /**
+     * @public
      * <p>A unique name to identify this real-time log configuration.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>The sampling rate for this real-time log configuration. The sampling rate determines
      * 			the percentage of viewer requests that are represented in the real-time log data. You
      * 			must provide an integer between 1 and 100, inclusive.</p>
@@ -6011,25 +6410,30 @@ export interface CreateRealtimeLogConfigRequest {
  */
 export interface RealtimeLogConfig {
     /**
+     * @public
      * <p>The Amazon Resource Name (ARN) of this real-time log configuration.</p>
      */
     ARN: string | undefined;
     /**
+     * @public
      * <p>The unique name of this real-time log configuration.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>The sampling rate for this real-time log configuration. The sampling rate determines
      * 			the percentage of viewer requests that are represented in the real-time log data. The
      * 			sampling rate is an integer between 1 and 100, inclusive.</p>
      */
     SamplingRate: number | undefined;
     /**
+     * @public
      * <p>Contains information about the Amazon Kinesis data stream where you are sending real-time
      * 			log data for this real-time log configuration.</p>
      */
     EndPoints: EndPoint[] | undefined;
     /**
+     * @public
      * <p>A list of fields that are included in each real-time log record. In an API response,
      * 			the fields are provided in the same order in which they are sent to the Amazon Kinesis data
      * 			stream.</p>
@@ -6043,6 +6447,7 @@ export interface RealtimeLogConfig {
  */
 export interface CreateRealtimeLogConfigResult {
     /**
+     * @public
      * <p>A real-time log configuration.</p>
      */
     RealtimeLogConfig?: RealtimeLogConfig;
@@ -6086,10 +6491,12 @@ export declare class TooManyRealtimeLogConfigs extends __BaseException {
  */
 export interface ResponseHeadersPolicyAccessControlAllowHeaders {
     /**
+     * @public
      * <p>The number of HTTP header names in the list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>The list of HTTP header names. You can specify <code>*</code> to allow all
      * 			headers.</p>
      */
@@ -6104,10 +6511,12 @@ export interface ResponseHeadersPolicyAccessControlAllowHeaders {
  */
 export interface ResponseHeadersPolicyAccessControlAllowMethods {
     /**
+     * @public
      * <p>The number of HTTP methods in the list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>The list of HTTP methods. Valid values are:</p>
      *          <ul>
      *             <li>
@@ -6166,10 +6575,12 @@ export interface ResponseHeadersPolicyAccessControlAllowMethods {
  */
 export interface ResponseHeadersPolicyAccessControlAllowOrigins {
     /**
+     * @public
      * <p>The number of origins in the list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>The list of origins (domain names). You can specify <code>*</code> to allow all
      * 			origins.</p>
      */
@@ -6184,10 +6595,12 @@ export interface ResponseHeadersPolicyAccessControlAllowOrigins {
  */
 export interface ResponseHeadersPolicyAccessControlExposeHeaders {
     /**
+     * @public
      * <p>The number of HTTP headers in the list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>The list of HTTP headers. You can specify <code>*</code> to expose all headers.</p>
      */
     Items?: string[];
@@ -6203,6 +6616,7 @@ export interface ResponseHeadersPolicyAccessControlExposeHeaders {
  */
 export interface ResponseHeadersPolicyCorsConfig {
     /**
+     * @public
      * <p>A list of origins (domain names) that CloudFront can use as the value for the
      * 				<code>Access-Control-Allow-Origin</code> HTTP response header.</p>
      *          <p>For more information about the <code>Access-Control-Allow-Origin</code> HTTP response
@@ -6210,6 +6624,7 @@ export interface ResponseHeadersPolicyCorsConfig {
      */
     AccessControlAllowOrigins: ResponseHeadersPolicyAccessControlAllowOrigins | undefined;
     /**
+     * @public
      * <p>A list of HTTP header names that CloudFront includes as values for the
      * 				<code>Access-Control-Allow-Headers</code> HTTP response header.</p>
      *          <p>For more information about the <code>Access-Control-Allow-Headers</code> HTTP response
@@ -6217,6 +6632,7 @@ export interface ResponseHeadersPolicyCorsConfig {
      */
     AccessControlAllowHeaders: ResponseHeadersPolicyAccessControlAllowHeaders | undefined;
     /**
+     * @public
      * <p>A list of HTTP methods that CloudFront includes as values for the
      * 				<code>Access-Control-Allow-Methods</code> HTTP response header.</p>
      *          <p>For more information about the <code>Access-Control-Allow-Methods</code> HTTP response
@@ -6224,6 +6640,7 @@ export interface ResponseHeadersPolicyCorsConfig {
      */
     AccessControlAllowMethods: ResponseHeadersPolicyAccessControlAllowMethods | undefined;
     /**
+     * @public
      * <p>A Boolean that CloudFront uses as the value for the
      * 				<code>Access-Control-Allow-Credentials</code> HTTP response header.</p>
      *          <p>For more information about the <code>Access-Control-Allow-Credentials</code> HTTP
@@ -6231,6 +6648,7 @@ export interface ResponseHeadersPolicyCorsConfig {
      */
     AccessControlAllowCredentials: boolean | undefined;
     /**
+     * @public
      * <p>A list of HTTP headers that CloudFront includes as values for the
      * 				<code>Access-Control-Expose-Headers</code> HTTP response header.</p>
      *          <p>For more information about the <code>Access-Control-Expose-Headers</code> HTTP
@@ -6238,6 +6656,7 @@ export interface ResponseHeadersPolicyCorsConfig {
      */
     AccessControlExposeHeaders?: ResponseHeadersPolicyAccessControlExposeHeaders;
     /**
+     * @public
      * <p>A number that CloudFront uses as the value for the <code>Access-Control-Max-Age</code> HTTP
      * 			response header.</p>
      *          <p>For more information about the <code>Access-Control-Max-Age</code> HTTP response
@@ -6245,6 +6664,7 @@ export interface ResponseHeadersPolicyCorsConfig {
      */
     AccessControlMaxAgeSec?: number;
     /**
+     * @public
      * <p>A Boolean that determines whether CloudFront overrides HTTP response headers received from
      * 			the origin with the ones specified in this response headers policy.</p>
      */
@@ -6258,14 +6678,17 @@ export interface ResponseHeadersPolicyCorsConfig {
  */
 export interface ResponseHeadersPolicyCustomHeader {
     /**
+     * @public
      * <p>The HTTP response header name.</p>
      */
     Header: string | undefined;
     /**
+     * @public
      * <p>The value for the HTTP response header.</p>
      */
     Value: string | undefined;
     /**
+     * @public
      * <p>A Boolean that determines whether CloudFront overrides a response header with the same name
      * 			received from the origin with the header specified here.</p>
      */
@@ -6279,10 +6702,12 @@ export interface ResponseHeadersPolicyCustomHeader {
  */
 export interface ResponseHeadersPolicyCustomHeadersConfig {
     /**
+     * @public
      * <p>The number of HTTP response headers in the list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>The list of HTTP response headers and their values.</p>
      */
     Items?: ResponseHeadersPolicyCustomHeader[];
@@ -6294,6 +6719,7 @@ export interface ResponseHeadersPolicyCustomHeadersConfig {
  */
 export interface ResponseHeadersPolicyRemoveHeader {
     /**
+     * @public
      * <p>The HTTP header name.</p>
      */
     Header: string | undefined;
@@ -6305,10 +6731,12 @@ export interface ResponseHeadersPolicyRemoveHeader {
  */
 export interface ResponseHeadersPolicyRemoveHeadersConfig {
     /**
+     * @public
      * <p>The number of HTTP header names in the list.</p>
      */
     Quantity: number | undefined;
     /**
+     * @public
      * <p>The list of HTTP header names.</p>
      */
     Items?: ResponseHeadersPolicyRemoveHeader[];
@@ -6322,12 +6750,14 @@ export interface ResponseHeadersPolicyRemoveHeadersConfig {
  */
 export interface ResponseHeadersPolicyContentSecurityPolicy {
     /**
+     * @public
      * <p>A Boolean that determines whether CloudFront overrides the
      * 				<code>Content-Security-Policy</code> HTTP response header received from the origin
      * 			with the one specified in this response headers policy.</p>
      */
     Override: boolean | undefined;
     /**
+     * @public
      * <p>The policy directives and their values that CloudFront includes as values for the
      * 				<code>Content-Security-Policy</code> HTTP response header.</p>
      */
@@ -6342,6 +6772,7 @@ export interface ResponseHeadersPolicyContentSecurityPolicy {
  */
 export interface ResponseHeadersPolicyContentTypeOptions {
     /**
+     * @public
      * <p>A Boolean that determines whether CloudFront overrides the
      * 				<code>X-Content-Type-Options</code> HTTP response header received from the origin
      * 			with the one specified in this response headers policy.</p>
@@ -6369,12 +6800,14 @@ export type FrameOptionsList = (typeof FrameOptionsList)[keyof typeof FrameOptio
  */
 export interface ResponseHeadersPolicyFrameOptions {
     /**
+     * @public
      * <p>A Boolean that determines whether CloudFront overrides the <code>X-Frame-Options</code> HTTP
      * 			response header received from the origin with the one specified in this response headers
      * 			policy.</p>
      */
     Override: boolean | undefined;
     /**
+     * @public
      * <p>The value of the <code>X-Frame-Options</code> HTTP response header. Valid values are
      * 				<code>DENY</code> and <code>SAMEORIGIN</code>.</p>
      *          <p>For more information about these values, see <a href="https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options">X-Frame-Options</a> in the MDN Web Docs.</p>
@@ -6408,12 +6841,14 @@ export type ReferrerPolicyList = (typeof ReferrerPolicyList)[keyof typeof Referr
  */
 export interface ResponseHeadersPolicyReferrerPolicy {
     /**
+     * @public
      * <p>A Boolean that determines whether CloudFront overrides the <code>Referrer-Policy</code> HTTP
      * 			response header received from the origin with the one specified in this response headers
      * 			policy.</p>
      */
     Override: boolean | undefined;
     /**
+     * @public
      * <p>The value of the <code>Referrer-Policy</code> HTTP response header. Valid values
      * 			are:</p>
      *          <ul>
@@ -6471,22 +6906,26 @@ export interface ResponseHeadersPolicyReferrerPolicy {
  */
 export interface ResponseHeadersPolicyStrictTransportSecurity {
     /**
+     * @public
      * <p>A Boolean that determines whether CloudFront overrides the
      * 				<code>Strict-Transport-Security</code> HTTP response header received from the origin
      * 			with the one specified in this response headers policy.</p>
      */
     Override: boolean | undefined;
     /**
+     * @public
      * <p>A Boolean that determines whether CloudFront includes the <code>includeSubDomains</code>
      * 			directive in the <code>Strict-Transport-Security</code> HTTP response header.</p>
      */
     IncludeSubdomains?: boolean;
     /**
+     * @public
      * <p>A Boolean that determines whether CloudFront includes the <code>preload</code> directive in
      * 			the <code>Strict-Transport-Security</code> HTTP response header.</p>
      */
     Preload?: boolean;
     /**
+     * @public
      * <p>A number that CloudFront uses as the value for the <code>max-age</code> directive in the
      * 				<code>Strict-Transport-Security</code> HTTP response header.</p>
      */
@@ -6501,12 +6940,14 @@ export interface ResponseHeadersPolicyStrictTransportSecurity {
  */
 export interface ResponseHeadersPolicyXSSProtection {
     /**
+     * @public
      * <p>A Boolean that determines whether CloudFront overrides the <code>X-XSS-Protection</code>
      * 			HTTP response header received from the origin with the one specified in this response
      * 			headers policy.</p>
      */
     Override: boolean | undefined;
     /**
+     * @public
      * <p>A Boolean that determines the value of the <code>X-XSS-Protection</code> HTTP response
      * 			header. When this setting is <code>true</code>, the value of the
      * 				<code>X-XSS-Protection</code> header is <code>1</code>. When this setting is
@@ -6516,12 +6957,14 @@ export interface ResponseHeadersPolicyXSSProtection {
      */
     Protection: boolean | undefined;
     /**
+     * @public
      * <p>A Boolean that determines whether CloudFront includes the <code>mode=block</code> directive
      * 			in the <code>X-XSS-Protection</code> header.</p>
      *          <p>For more information about this directive, see <a href="https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection">X-XSS-Protection</a> in the MDN Web Docs.</p>
      */
     ModeBlock?: boolean;
     /**
+     * @public
      * <p>A reporting URI, which CloudFront uses as the value of the <code>report</code> directive in
      * 			the <code>X-XSS-Protection</code> header.</p>
      *          <p>You cannot specify a <code>ReportUri</code> when <code>ModeBlock</code> is
@@ -6538,6 +6981,7 @@ export interface ResponseHeadersPolicyXSSProtection {
  */
 export interface ResponseHeadersPolicySecurityHeadersConfig {
     /**
+     * @public
      * <p>Determines whether CloudFront includes the <code>X-XSS-Protection</code> HTTP response
      * 			header and the header's value.</p>
      *          <p>For more information about the <code>X-XSS-Protection</code> HTTP response header, see
@@ -6545,6 +6989,7 @@ export interface ResponseHeadersPolicySecurityHeadersConfig {
      */
     XSSProtection?: ResponseHeadersPolicyXSSProtection;
     /**
+     * @public
      * <p>Determines whether CloudFront includes the <code>X-Frame-Options</code> HTTP response header
      * 			and the header's value.</p>
      *          <p>For more information about the <code>X-Frame-Options</code> HTTP response header, see
@@ -6552,6 +6997,7 @@ export interface ResponseHeadersPolicySecurityHeadersConfig {
      */
     FrameOptions?: ResponseHeadersPolicyFrameOptions;
     /**
+     * @public
      * <p>Determines whether CloudFront includes the <code>Referrer-Policy</code> HTTP response header
      * 			and the header's value.</p>
      *          <p>For more information about the <code>Referrer-Policy</code> HTTP response header, see
@@ -6559,6 +7005,7 @@ export interface ResponseHeadersPolicySecurityHeadersConfig {
      */
     ReferrerPolicy?: ResponseHeadersPolicyReferrerPolicy;
     /**
+     * @public
      * <p>The policy directives and their values that CloudFront includes as values for the
      * 				<code>Content-Security-Policy</code> HTTP response header.</p>
      *          <p>For more information about the <code>Content-Security-Policy</code> HTTP response
@@ -6566,6 +7013,7 @@ export interface ResponseHeadersPolicySecurityHeadersConfig {
      */
     ContentSecurityPolicy?: ResponseHeadersPolicyContentSecurityPolicy;
     /**
+     * @public
      * <p>Determines whether CloudFront includes the <code>X-Content-Type-Options</code> HTTP response
      * 			header with its value set to <code>nosniff</code>.</p>
      *          <p>For more information about the <code>X-Content-Type-Options</code> HTTP response
@@ -6573,6 +7021,7 @@ export interface ResponseHeadersPolicySecurityHeadersConfig {
      */
     ContentTypeOptions?: ResponseHeadersPolicyContentTypeOptions;
     /**
+     * @public
      * <p>Determines whether CloudFront includes the <code>Strict-Transport-Security</code> HTTP
      * 			response header and the header's value.</p>
      *          <p>For more information about the <code>Strict-Transport-Security</code> HTTP response
@@ -6596,12 +7045,14 @@ export interface ResponseHeadersPolicySecurityHeadersConfig {
  */
 export interface ResponseHeadersPolicyServerTimingHeadersConfig {
     /**
+     * @public
      * <p>A Boolean that determines whether CloudFront adds the <code>Server-Timing</code> header to
      * 			HTTP responses that it sends in response to requests that match a cache behavior that's
      * 			associated with this response headers policy.</p>
      */
     Enabled: boolean | undefined;
     /**
+     * @public
      * <p>A number 0–100 (inclusive) that specifies the percentage of responses that you want
      * 			CloudFront to add the <code>Server-Timing</code> header to. When you set the sampling rate to
      * 			100, CloudFront adds the <code>Server-Timing</code> header to the HTTP response for every
@@ -6620,34 +7071,41 @@ export interface ResponseHeadersPolicyServerTimingHeadersConfig {
  */
 export interface ResponseHeadersPolicyConfig {
     /**
+     * @public
      * <p>A comment to describe the response headers policy.</p>
      *          <p>The comment cannot be longer than 128 characters.</p>
      */
     Comment?: string;
     /**
+     * @public
      * <p>A name to identify the response headers policy.</p>
      *          <p>The name must be unique for response headers policies in this Amazon Web Services account.</p>
      */
     Name: string | undefined;
     /**
+     * @public
      * <p>A configuration for a set of HTTP response headers that are used for cross-origin
      * 			resource sharing (CORS).</p>
      */
     CorsConfig?: ResponseHeadersPolicyCorsConfig;
     /**
+     * @public
      * <p>A configuration for a set of security-related HTTP response headers.</p>
      */
     SecurityHeadersConfig?: ResponseHeadersPolicySecurityHeadersConfig;
     /**
+     * @public
      * <p>A configuration for enabling the <code>Server-Timing</code> header in HTTP responses
      * 			sent from CloudFront.</p>
      */
     ServerTimingHeadersConfig?: ResponseHeadersPolicyServerTimingHeadersConfig;
     /**
+     * @public
      * <p>A configuration for a set of custom HTTP response headers.</p>
      */
     CustomHeadersConfig?: ResponseHeadersPolicyCustomHeadersConfig;
     /**
+     * @public
      * <p>A configuration for a set of HTTP headers to remove from the HTTP response.</p>
      */
     RemoveHeadersConfig?: ResponseHeadersPolicyRemoveHeadersConfig;
@@ -6657,6 +7115,7 @@ export interface ResponseHeadersPolicyConfig {
  */
 export interface CreateResponseHeadersPolicyRequest {
     /**
+     * @public
      * <p>Contains metadata about the response headers policy, and a set of configurations that
      * 			specify the HTTP headers.</p>
      */
@@ -6676,14 +7135,17 @@ export interface CreateResponseHeadersPolicyRequest {
  */
 export interface ResponseHeadersPolicy {
     /**
+     * @public
      * <p>The identifier for the response headers policy.</p>
      */
     Id: string | undefined;
     /**
+     * @public
      * <p>The date and time when the response headers policy was last modified.</p>
      */
     LastModifiedTime: Date | undefined;
     /**
+     * @public
      * <p>A response headers policy configuration.</p>
      */
     ResponseHeadersPolicyConfig: ResponseHeadersPolicyConfig | undefined;