@aws-sdk/client-cognito-identity-provider 3.1070.0 → 3.1072.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
package/dist-cjs/index.js CHANGED
@@ -2044,6 +2044,11 @@ const TimeUnitsType = {
2044
2044
  MINUTES: "minutes",
2045
2045
  SECONDS: "seconds",
2046
2046
  };
2047
+ const SecurityPolicyType = {
2048
+ TLS_V1: "TLS_V1",
2049
+ TLS_V1_2_2021: "TLS_V1_2_2021",
2050
+ TLS_V1_3_2025: "TLS_V1_3_2025",
2051
+ };
2047
2052
  const ReplicaRoleType = {
2048
2053
  PRIMARY: "PRIMARY",
2049
2054
  SECONDARY: "SECONDARY",
@@ -2240,6 +2245,7 @@ exports.RespondToAuthChallengeCommand = RespondToAuthChallengeCommand;
2240
2245
  exports.RevokeTokenCommand = RevokeTokenCommand;
2241
2246
  exports.RiskDecisionType = RiskDecisionType;
2242
2247
  exports.RiskLevelType = RiskLevelType;
2248
+ exports.SecurityPolicyType = SecurityPolicyType;
2243
2249
  exports.SetLogDeliveryConfigurationCommand = SetLogDeliveryConfigurationCommand;
2244
2250
  exports.SetRiskConfigurationCommand = SetRiskConfigurationCommand;
2245
2251
  exports.SetUICustomizationCommand = SetUICustomizationCommand;
@@ -722,6 +722,7 @@ const _SMSMST = "SMSMfaSettingsType";
722
722
  const _SN = "ServerName";
723
723
  const _SNc = "ScopeName";
724
724
  const _SP = "ServerPath";
725
+ const _SPe = "SecurityPolicy";
725
726
  const _SR = "SecondaryRegion";
726
727
  const _SRC = "SetRiskConfiguration";
727
728
  const _SRCR = "SetRiskConfigurationRequest";
@@ -1984,8 +1985,8 @@ const CreateUserPoolResponse$ = [3, n0, _CUPRr,
1984
1985
  exports.CreateUserPoolResponse$ = CreateUserPoolResponse$;
1985
1986
  const CustomDomainConfigType$ = [3, n0, _CDCT,
1986
1987
  0,
1987
- [_CAe],
1988
- [0], 1
1988
+ [_CAe, _SPe],
1989
+ [0, 0], 1
1989
1990
  ];
1990
1991
  exports.CustomDomainConfigType$ = CustomDomainConfigType$;
1991
1992
  const CustomEmailLambdaVersionConfigType$ = [3, n0, _CELVCT,
@@ -258,6 +258,11 @@ export const TimeUnitsType = {
258
258
  MINUTES: "minutes",
259
259
  SECONDS: "seconds",
260
260
  };
261
+ export const SecurityPolicyType = {
262
+ TLS_V1: "TLS_V1",
263
+ TLS_V1_2_2021: "TLS_V1_2_2021",
264
+ TLS_V1_3_2025: "TLS_V1_3_2025",
265
+ };
261
266
  export const ReplicaRoleType = {
262
267
  PRIMARY: "PRIMARY",
263
268
  SECONDARY: "SECONDARY",
@@ -722,6 +722,7 @@ const _SMSMST = "SMSMfaSettingsType";
722
722
  const _SN = "ServerName";
723
723
  const _SNc = "ScopeName";
724
724
  const _SP = "ServerPath";
725
+ const _SPe = "SecurityPolicy";
725
726
  const _SR = "SecondaryRegion";
726
727
  const _SRC = "SetRiskConfiguration";
727
728
  const _SRCR = "SetRiskConfigurationRequest";
@@ -1822,8 +1823,8 @@ export var CreateUserPoolResponse$ = [3, n0, _CUPRr,
1822
1823
  ];
1823
1824
  export var CustomDomainConfigType$ = [3, n0, _CDCT,
1824
1825
  0,
1825
- [_CAe],
1826
- [0], 1
1826
+ [_CAe, _SPe],
1827
+ [0, 0], 1
1827
1828
  ];
1828
1829
  export var CustomEmailLambdaVersionConfigType$ = [3, n0, _CELVCT,
1829
1830
  0,
@@ -73,6 +73,7 @@ declare const CreateUserPoolDomainCommand_base: {
73
73
  * ManagedLoginVersion: Number("int"),
74
74
  * CustomDomainConfig: { // CustomDomainConfigType
75
75
  * CertificateArn: "STRING_VALUE", // required
76
+ * SecurityPolicy: "TLS_V1" || "TLS_V1_2_2021" || "TLS_V1_3_2025",
76
77
  * },
77
78
  * Routing: { // RoutingType
78
79
  * Failover: { // FailoverType
@@ -75,6 +75,7 @@ declare const DescribeUserPoolDomainCommand_base: {
75
75
  * // Status: "CREATING" || "DELETING" || "UPDATING" || "ACTIVE" || "FAILED",
76
76
  * // CustomDomainConfig: { // CustomDomainConfigType
77
77
  * // CertificateArn: "STRING_VALUE", // required
78
+ * // SecurityPolicy: "TLS_V1" || "TLS_V1_2_2021" || "TLS_V1_3_2025",
78
79
  * // },
79
80
  * // ManagedLoginVersion: Number("int"),
80
81
  * // Routing: { // RoutingType
@@ -80,6 +80,7 @@ declare const UpdateUserPoolDomainCommand_base: {
80
80
  * ManagedLoginVersion: Number("int"),
81
81
  * CustomDomainConfig: { // CustomDomainConfigType
82
82
  * CertificateArn: "STRING_VALUE", // required
83
+ * SecurityPolicy: "TLS_V1" || "TLS_V1_2_2021" || "TLS_V1_3_2025",
83
84
  * },
84
85
  * Routing: { // RoutingType
85
86
  * Failover: { // FailoverType
@@ -626,6 +626,19 @@ export declare const TimeUnitsType: {
626
626
  * @public
627
627
  */
628
628
  export type TimeUnitsType = (typeof TimeUnitsType)[keyof typeof TimeUnitsType];
629
+ /**
630
+ * @public
631
+ * @enum
632
+ */
633
+ export declare const SecurityPolicyType: {
634
+ readonly TLS_V1: "TLS_V1";
635
+ readonly TLS_V1_2_2021: "TLS_V1_2_2021";
636
+ readonly TLS_V1_3_2025: "TLS_V1_3_2025";
637
+ };
638
+ /**
639
+ * @public
640
+ */
641
+ export type SecurityPolicyType = (typeof SecurityPolicyType)[keyof typeof SecurityPolicyType];
629
642
  /**
630
643
  * @public
631
644
  * @enum
@@ -1,5 +1,5 @@
1
1
  import type { DocumentType as __DocumentType } from "@smithy/types";
2
- import type { AccountTakeoverEventActionType, AdvancedSecurityEnabledModeType, AdvancedSecurityModeType, AliasAttributeType, AssetCategoryType, AssetExtensionType, AttributeDataType, AuthFactorType, AuthFlowType, ChallengeName, ChallengeNameType, ChallengeResponse, ColorSchemeModeType, CompromisedCredentialsEventActionType, CustomEmailSenderLambdaVersionType, CustomSMSSenderLambdaVersionType, DefaultEmailOptionType, DeletionProtectionType, DeliveryMediumType, DeviceRememberedStatusType, DomainStatusType, EmailSendingAccountType, EncryptionKeyType, EventFilterType, EventResponseType, EventSourceName, EventType, ExplicitAuthFlowsType, FeatureType, FeedbackValueType, IdentityProviderTypeType, InboundFederationLambdaVersionType, IssuerType, LogLevel, MessageActionType, OAuthFlowType, PreTokenGenerationLambdaVersionType, PreventUserExistenceErrorTypes, RecoveryOptionNameType, ReplicaRoleType, ReplicaStatusType, RiskDecisionType, RiskLevelType, StatusType, TermsEnforcementType, TermsSourceType, TimeUnitsType, UserImportJobStatusType, UsernameAttributeType, UserPoolMfaType, UserPoolTierType, UserStatusType, UserVerificationType, VerifiedAttributeType, WebAuthnFactorConfigurationType } from "./enums";
2
+ import type { AccountTakeoverEventActionType, AdvancedSecurityEnabledModeType, AdvancedSecurityModeType, AliasAttributeType, AssetCategoryType, AssetExtensionType, AttributeDataType, AuthFactorType, AuthFlowType, ChallengeName, ChallengeNameType, ChallengeResponse, ColorSchemeModeType, CompromisedCredentialsEventActionType, CustomEmailSenderLambdaVersionType, CustomSMSSenderLambdaVersionType, DefaultEmailOptionType, DeletionProtectionType, DeliveryMediumType, DeviceRememberedStatusType, DomainStatusType, EmailSendingAccountType, EncryptionKeyType, EventFilterType, EventResponseType, EventSourceName, EventType, ExplicitAuthFlowsType, FeatureType, FeedbackValueType, IdentityProviderTypeType, InboundFederationLambdaVersionType, IssuerType, LogLevel, MessageActionType, OAuthFlowType, PreTokenGenerationLambdaVersionType, PreventUserExistenceErrorTypes, RecoveryOptionNameType, ReplicaRoleType, ReplicaStatusType, RiskDecisionType, RiskLevelType, SecurityPolicyType, StatusType, TermsEnforcementType, TermsSourceType, TimeUnitsType, UserImportJobStatusType, UsernameAttributeType, UserPoolMfaType, UserPoolTierType, UserStatusType, UserVerificationType, VerifiedAttributeType, WebAuthnFactorConfigurationType } from "./enums";
3
3
  /**
4
4
  * <p>A recovery option for a user. The <code>AccountRecoverySettingType</code> data type is
5
5
  * an array of this object. Each <code>RecoveryOptionType</code> has a priority property
@@ -6771,7 +6771,8 @@ export interface CreateUserPoolClientResponse {
6771
6771
  UserPoolClient?: UserPoolClientType | undefined;
6772
6772
  }
6773
6773
  /**
6774
- * <p>The configuration for a hosted UI custom domain.</p>
6774
+ * <p>The configuration for a custom domain, including the SSL certificate and TLS security
6775
+ * policy.</p>
6775
6776
  * @public
6776
6777
  */
6777
6778
  export interface CustomDomainConfigType {
@@ -6781,6 +6782,30 @@ export interface CustomDomainConfigType {
6781
6782
  * @public
6782
6783
  */
6783
6784
  CertificateArn: string | undefined;
6785
+ /**
6786
+ * <p>The security policy for the custom domain. Defines the minimum TLS version and cipher
6787
+ * suites that CloudFront uses when communicating with viewers (clients). Valid values are
6788
+ * as follows:</p>
6789
+ * <ul>
6790
+ * <li>
6791
+ * <p>
6792
+ * <code>TLS_V1</code>: Supports TLS 1.0 and later. Provides the broadest client
6793
+ * compatibility.</p>
6794
+ * </li>
6795
+ * <li>
6796
+ * <p>
6797
+ * <code>TLS_V1_2_2021</code>: Supports TLS 1.2 and later with 2021 cipher
6798
+ * suites. Recommended minimum for most use cases.</p>
6799
+ * </li>
6800
+ * <li>
6801
+ * <p>
6802
+ * <code>TLS_V1_3_2025</code>: Supports TLS 1.3 and later with 2025 cipher
6803
+ * suites. Provides the strongest security posture.</p>
6804
+ * </li>
6805
+ * </ul>
6806
+ * @public
6807
+ */
6808
+ SecurityPolicy?: SecurityPolicyType | undefined;
6784
6809
  }
6785
6810
  /**
6786
6811
  * <p>Specifies failover configuration for multi-region user pool domains. Contains settings for the secondary region and health check configuration.</p>
@@ -341,6 +341,13 @@ export declare const TimeUnitsType: {
341
341
  readonly SECONDS: "seconds";
342
342
  };
343
343
  export type TimeUnitsType = (typeof TimeUnitsType)[keyof typeof TimeUnitsType];
344
+ export declare const SecurityPolicyType: {
345
+ readonly TLS_V1: "TLS_V1";
346
+ readonly TLS_V1_2_2021: "TLS_V1_2_2021";
347
+ readonly TLS_V1_3_2025: "TLS_V1_3_2025";
348
+ };
349
+ export type SecurityPolicyType =
350
+ (typeof SecurityPolicyType)[keyof typeof SecurityPolicyType];
344
351
  export declare const ReplicaRoleType: {
345
352
  readonly PRIMARY: "PRIMARY";
346
353
  readonly SECONDARY: "SECONDARY";
@@ -43,6 +43,7 @@ import {
43
43
  ReplicaStatusType,
44
44
  RiskDecisionType,
45
45
  RiskLevelType,
46
+ SecurityPolicyType,
46
47
  StatusType,
47
48
  TermsEnforcementType,
48
49
  TermsSourceType,
@@ -873,6 +874,7 @@ export interface CreateUserPoolClientResponse {
873
874
  }
874
875
  export interface CustomDomainConfigType {
875
876
  CertificateArn: string | undefined;
877
+ SecurityPolicy?: SecurityPolicyType | undefined;
876
878
  }
877
879
  export interface FailoverType {
878
880
  SecondaryRegion: string | undefined;
package/package.json CHANGED
@@ -1,7 +1,7 @@
1
1
  {
2
2
  "name": "@aws-sdk/client-cognito-identity-provider",
3
3
  "description": "AWS SDK for JavaScript Cognito Identity Provider Client for Node.js, Browser and React Native",
4
- "version": "3.1070.0",
4
+ "version": "3.1072.0",
5
5
  "scripts": {
6
6
  "build": "concurrently 'yarn:build:types' 'yarn:build:es' && yarn build:cjs",
7
7
  "build:cjs": "node ../../scripts/compilation/inline",
@@ -21,8 +21,8 @@
21
21
  "dependencies": {
22
22
  "@aws-crypto/sha256-browser": "5.2.0",
23
23
  "@aws-crypto/sha256-js": "5.2.0",
24
- "@aws-sdk/core": "^3.974.21",
25
- "@aws-sdk/credential-provider-node": "^3.972.56",
24
+ "@aws-sdk/core": "^3.974.22",
25
+ "@aws-sdk/credential-provider-node": "^3.972.57",
26
26
  "@aws-sdk/types": "^3.973.13",
27
27
  "@smithy/core": "^3.24.6",
28
28
  "@smithy/fetch-http-handler": "^5.4.6",