@aws-sdk/client-cognito-identity-provider 3.473.0 → 3.476.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +28 -12
- package/dist-cjs/commands/SetRiskConfigurationCommand.js +1 -2
- package/dist-cjs/models/models_0.js +7 -8
- package/dist-cjs/models/models_1.js +6 -1
- package/dist-es/commands/SetRiskConfigurationCommand.js +1 -2
- package/dist-es/models/models_0.js +4 -4
- package/dist-es/models/models_1.js +4 -0
- package/dist-types/CognitoIdentityProvider.d.ts +28 -12
- package/dist-types/CognitoIdentityProviderClient.d.ts +28 -12
- package/dist-types/commands/AdminAddUserToGroupCommand.d.ts +3 -1
- package/dist-types/commands/AdminConfirmSignUpCommand.d.ts +9 -2
- package/dist-types/commands/AdminListGroupsForUserCommand.d.ts +1 -1
- package/dist-types/commands/AdminRespondToAuthChallengeCommand.d.ts +7 -1
- package/dist-types/commands/AdminUserGlobalSignOutCommand.d.ts +24 -8
- package/dist-types/commands/ConfirmSignUpCommand.d.ts +12 -1
- package/dist-types/commands/CreateUserPoolCommand.d.ts +8 -0
- package/dist-types/commands/DescribeUserPoolCommand.d.ts +4 -0
- package/dist-types/commands/GlobalSignOutCommand.d.ts +24 -8
- package/dist-types/commands/ListUserPoolsCommand.d.ts +4 -0
- package/dist-types/commands/RespondToAuthChallengeCommand.d.ts +7 -1
- package/dist-types/commands/SetLogDeliveryConfigurationCommand.d.ts +2 -1
- package/dist-types/commands/SetRiskConfigurationCommand.d.ts +1 -2
- package/dist-types/commands/UpdateUserAttributesCommand.d.ts +5 -1
- package/dist-types/commands/UpdateUserPoolCommand.d.ts +4 -0
- package/dist-types/index.d.ts +28 -12
- package/dist-types/models/models_0.d.ts +421 -230
- package/dist-types/models/models_1.d.ts +96 -6
- package/dist-types/ts3.4/commands/SetLogDeliveryConfigurationCommand.d.ts +2 -4
- package/dist-types/ts3.4/commands/SetRiskConfigurationCommand.d.ts +4 -2
- package/dist-types/ts3.4/models/models_0.d.ts +11 -13
- package/dist-types/ts3.4/models/models_1.d.ts +17 -0
- package/package.json +4 -4
package/README.md
CHANGED
|
@@ -6,20 +6,36 @@
|
|
|
6
6
|
|
|
7
7
|
AWS SDK for JavaScript CognitoIdentityProvider Client for Node.js, Browser and React Native.
|
|
8
8
|
|
|
9
|
-
<p>With the Amazon Cognito user pools API, you can
|
|
10
|
-
authenticate users
|
|
11
|
-
|
|
12
|
-
about the authentication and authorization of federated users in the <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-userpools-server-contract-reference.html">
|
|
9
|
+
<p>With the Amazon Cognito user pools API, you can configure user pools and authenticate users. To
|
|
10
|
+
authenticate users from third-party identity providers (IdPs) in this API, you can
|
|
11
|
+
<a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-identity-federation-consolidate-users.html">link IdP users to native user profiles</a>. Learn more
|
|
12
|
+
about the authentication and authorization of federated users at <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-identity-federation.html">Adding user pool sign-in through a third party</a> and in the <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-userpools-server-contract-reference.html">User pool federation endpoints and hosted UI reference</a>.</p>
|
|
13
13
|
<p>This API reference provides detailed information about API operations and object types
|
|
14
|
-
in Amazon Cognito
|
|
15
|
-
<i>See Also</i>, you can learn how to use it in an Amazon Web Services SDK in the
|
|
16
|
-
language of your choice.</p>
|
|
14
|
+
in Amazon Cognito.</p>
|
|
17
15
|
<p>Along with resource management operations, the Amazon Cognito user pools API includes classes
|
|
18
|
-
of operations and authorization models for client-side and server-side
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
<
|
|
22
|
-
|
|
16
|
+
of operations and authorization models for client-side and server-side authentication of
|
|
17
|
+
users. You can interact with operations in the Amazon Cognito user pools API as any of the
|
|
18
|
+
following subjects.</p>
|
|
19
|
+
<ol>
|
|
20
|
+
<li>
|
|
21
|
+
<p>An administrator who wants to configure user pools, app clients, users,
|
|
22
|
+
groups, or other user pool functions.</p>
|
|
23
|
+
</li>
|
|
24
|
+
<li>
|
|
25
|
+
<p>A server-side app, like a web application, that wants to use its Amazon Web Services
|
|
26
|
+
privileges to manage, authenticate, or authorize a user.</p>
|
|
27
|
+
</li>
|
|
28
|
+
<li>
|
|
29
|
+
<p>A client-side app, like a mobile app, that wants to make unauthenticated
|
|
30
|
+
requests to manage, authenticate, or authorize a user.</p>
|
|
31
|
+
</li>
|
|
32
|
+
</ol>
|
|
33
|
+
<p>For more information, see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/user-pools-API-operations.html">Using the Amazon Cognito user pools API and user pool endpoints</a>
|
|
34
|
+
in the <i>Amazon Cognito Developer Guide</i>.</p>
|
|
35
|
+
<p>With your Amazon Web Services SDK, you can build the logic to support operational flows in every use
|
|
36
|
+
case for this API. You can also make direct REST API requests to <a href="https://docs.aws.amazon.com/general/latest/gr/cognito_identity.html#cognito_identity_your_user_pools_region">Amazon Cognito user pools service endpoints</a>. The following links can get you started
|
|
37
|
+
with the <code>CognitoIdentityProvider</code> client in other supported Amazon Web Services
|
|
38
|
+
SDKs.</p>
|
|
23
39
|
<ul>
|
|
24
40
|
<li>
|
|
25
41
|
<p>
|
|
@@ -7,7 +7,6 @@ const middleware_serde_1 = require("@smithy/middleware-serde");
|
|
|
7
7
|
const smithy_client_1 = require("@smithy/smithy-client");
|
|
8
8
|
Object.defineProperty(exports, "$Command", { enumerable: true, get: function () { return smithy_client_1.Command; } });
|
|
9
9
|
const types_1 = require("@smithy/types");
|
|
10
|
-
const models_0_1 = require("../models/models_0");
|
|
11
10
|
const models_1_1 = require("../models/models_1");
|
|
12
11
|
const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
|
|
13
12
|
class SetRiskConfigurationCommand extends smithy_client_1.Command {
|
|
@@ -35,7 +34,7 @@ class SetRiskConfigurationCommand extends smithy_client_1.Command {
|
|
|
35
34
|
logger,
|
|
36
35
|
clientName,
|
|
37
36
|
commandName,
|
|
38
|
-
inputFilterSensitiveLog:
|
|
37
|
+
inputFilterSensitiveLog: models_1_1.SetRiskConfigurationRequestFilterSensitiveLog,
|
|
39
38
|
outputFilterSensitiveLog: models_1_1.SetRiskConfigurationResponseFilterSensitiveLog,
|
|
40
39
|
[types_1.SMITHY_CONTEXT_KEY]: {
|
|
41
40
|
service: "AWSCognitoIdentityProviderService",
|
|
@@ -1,9 +1,9 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
3
|
exports.VerifiedAttributeType = exports.ForbiddenException = exports.ConcurrentModificationException = exports.AliasAttributeType = exports.AdvancedSecurityModeType = exports.DeviceRememberedStatusType = exports.SoftwareTokenMFANotFoundException = exports.ExpiredCodeException = exports.CodeMismatchException = exports.InvalidEmailRoleAccessPolicyException = exports.UserPoolAddOnNotEnabledException = exports.EventType = exports.RiskLevelType = exports.RiskDecisionType = exports.EventResponseType = exports.FeedbackValueType = exports.ChallengeResponse = exports.ChallengeName = exports.UserNotConfirmedException = exports.PasswordResetRequiredException = exports.MFAMethodNotFoundException = exports.ChallengeNameType = exports.AuthFlowType = exports.InvalidUserPoolConfigurationException = exports.AliasExistsException = exports.UsernameExistsException = exports.UnsupportedUserStateException = exports.PreconditionNotMetException = exports.InvalidSmsRoleTrustRelationshipException = exports.InvalidSmsRoleAccessPolicyException = exports.InvalidPasswordException = exports.CodeDeliveryFailureException = exports.UserStatusType = exports.MessageActionType = exports.DeliveryMediumType = exports.UserLambdaValidationException = exports.UnexpectedLambdaException = exports.TooManyFailedAttemptsException = exports.LimitExceededException = exports.InvalidLambdaResponseException = exports.UserNotFoundException = exports.UserImportInProgressException = exports.TooManyRequestsException = exports.ResourceNotFoundException = exports.NotAuthorizedException = exports.InvalidParameterException = exports.InternalErrorException = exports.AttributeDataType = exports.AccountTakeoverEventActionType = exports.RecoveryOptionNameType = void 0;
|
|
4
|
-
exports.
|
|
5
|
-
exports.
|
|
6
|
-
exports.
|
|
4
|
+
exports.AdminListDevicesResponseFilterSensitiveLog = exports.AdminListDevicesRequestFilterSensitiveLog = exports.AdminInitiateAuthResponseFilterSensitiveLog = exports.AuthenticationResultTypeFilterSensitiveLog = exports.AdminInitiateAuthRequestFilterSensitiveLog = exports.AdminGetUserResponseFilterSensitiveLog = exports.AdminGetUserRequestFilterSensitiveLog = exports.AdminGetDeviceResponseFilterSensitiveLog = exports.DeviceTypeFilterSensitiveLog = exports.AdminGetDeviceRequestFilterSensitiveLog = exports.AdminForgetDeviceRequestFilterSensitiveLog = exports.AdminEnableUserRequestFilterSensitiveLog = exports.AdminDisableUserRequestFilterSensitiveLog = exports.AdminDeleteUserAttributesRequestFilterSensitiveLog = exports.AdminDeleteUserRequestFilterSensitiveLog = exports.AdminCreateUserResponseFilterSensitiveLog = exports.UserTypeFilterSensitiveLog = exports.AdminCreateUserRequestFilterSensitiveLog = exports.AttributeTypeFilterSensitiveLog = exports.AdminConfirmSignUpRequestFilterSensitiveLog = exports.AdminAddUserToGroupRequestFilterSensitiveLog = exports.UnsupportedTokenTypeException = exports.UnsupportedOperationException = exports.UnauthorizedException = exports.LogLevel = exports.EventSourceName = exports.DomainStatusType = exports.EventFilterType = exports.CompromisedCredentialsEventActionType = exports.UnsupportedIdentityProviderException = exports.ScopeDoesNotExistException = exports.InvalidOAuthFlowException = exports.TimeUnitsType = exports.PreventUserExistenceErrorTypes = exports.ExplicitAuthFlowsType = exports.OAuthFlowType = exports.UserPoolTaggingException = exports.StatusType = exports.DefaultEmailOptionType = exports.UsernameAttributeType = exports.UserPoolMfaType = exports.PreTokenGenerationLambdaVersionType = exports.CustomSMSSenderLambdaVersionType = exports.CustomEmailSenderLambdaVersionType = exports.EmailSendingAccountType = exports.DeletionProtectionType = exports.UserImportJobStatusType = exports.DuplicateProviderException = exports.IdentityProviderTypeType = exports.GroupExistsException = void 0;
|
|
5
|
+
exports.ResendConfirmationCodeRequestFilterSensitiveLog = exports.ListUsersInGroupResponseFilterSensitiveLog = exports.ListUsersResponseFilterSensitiveLog = exports.ListUserPoolClientsResponseFilterSensitiveLog = exports.UserPoolClientDescriptionFilterSensitiveLog = exports.ListDevicesResponseFilterSensitiveLog = exports.ListDevicesRequestFilterSensitiveLog = exports.InitiateAuthResponseFilterSensitiveLog = exports.InitiateAuthRequestFilterSensitiveLog = exports.GlobalSignOutRequestFilterSensitiveLog = exports.GetUserAttributeVerificationCodeRequestFilterSensitiveLog = exports.GetUserResponseFilterSensitiveLog = exports.GetUserRequestFilterSensitiveLog = exports.GetUICustomizationResponseFilterSensitiveLog = exports.UICustomizationTypeFilterSensitiveLog = exports.GetUICustomizationRequestFilterSensitiveLog = exports.GetDeviceResponseFilterSensitiveLog = exports.GetDeviceRequestFilterSensitiveLog = exports.ForgotPasswordRequestFilterSensitiveLog = exports.ForgetDeviceRequestFilterSensitiveLog = exports.DescribeUserPoolClientResponseFilterSensitiveLog = exports.DescribeUserPoolClientRequestFilterSensitiveLog = exports.DescribeRiskConfigurationResponseFilterSensitiveLog = exports.RiskConfigurationTypeFilterSensitiveLog = exports.DescribeRiskConfigurationRequestFilterSensitiveLog = exports.DeleteUserPoolClientRequestFilterSensitiveLog = exports.DeleteUserAttributesRequestFilterSensitiveLog = exports.DeleteUserRequestFilterSensitiveLog = exports.CreateUserPoolClientResponseFilterSensitiveLog = exports.UserPoolClientTypeFilterSensitiveLog = exports.ConfirmSignUpRequestFilterSensitiveLog = exports.ConfirmForgotPasswordRequestFilterSensitiveLog = exports.UserContextDataTypeFilterSensitiveLog = exports.ConfirmDeviceRequestFilterSensitiveLog = exports.ChangePasswordRequestFilterSensitiveLog = exports.AssociateSoftwareTokenResponseFilterSensitiveLog = exports.AssociateSoftwareTokenRequestFilterSensitiveLog = exports.AdminUserGlobalSignOutRequestFilterSensitiveLog = exports.AdminUpdateUserAttributesRequestFilterSensitiveLog = exports.AdminUpdateDeviceStatusRequestFilterSensitiveLog = exports.AdminUpdateAuthEventFeedbackRequestFilterSensitiveLog = exports.AdminSetUserSettingsRequestFilterSensitiveLog = exports.AdminSetUserPasswordRequestFilterSensitiveLog = exports.AdminSetUserMFAPreferenceRequestFilterSensitiveLog = exports.AdminRespondToAuthChallengeResponseFilterSensitiveLog = exports.AdminRespondToAuthChallengeRequestFilterSensitiveLog = exports.AdminResetUserPasswordRequestFilterSensitiveLog = exports.AdminRemoveUserFromGroupRequestFilterSensitiveLog = exports.AdminListUserAuthEventsRequestFilterSensitiveLog = exports.AdminListGroupsForUserRequestFilterSensitiveLog = void 0;
|
|
6
|
+
exports.RevokeTokenRequestFilterSensitiveLog = exports.RespondToAuthChallengeResponseFilterSensitiveLog = exports.RespondToAuthChallengeRequestFilterSensitiveLog = void 0;
|
|
7
7
|
const smithy_client_1 = require("@smithy/smithy-client");
|
|
8
8
|
const CognitoIdentityProviderServiceException_1 = require("./CognitoIdentityProviderServiceException");
|
|
9
9
|
exports.RecoveryOptionNameType = {
|
|
@@ -574,6 +574,10 @@ exports.CustomEmailSenderLambdaVersionType = {
|
|
|
574
574
|
exports.CustomSMSSenderLambdaVersionType = {
|
|
575
575
|
V1_0: "V1_0",
|
|
576
576
|
};
|
|
577
|
+
exports.PreTokenGenerationLambdaVersionType = {
|
|
578
|
+
V1_0: "V1_0",
|
|
579
|
+
V2_0: "V2_0",
|
|
580
|
+
};
|
|
577
581
|
exports.UserPoolMfaType = {
|
|
578
582
|
OFF: "OFF",
|
|
579
583
|
ON: "ON",
|
|
@@ -1160,8 +1164,3 @@ const RevokeTokenRequestFilterSensitiveLog = (obj) => ({
|
|
|
1160
1164
|
...(obj.ClientSecret && { ClientSecret: smithy_client_1.SENSITIVE_STRING }),
|
|
1161
1165
|
});
|
|
1162
1166
|
exports.RevokeTokenRequestFilterSensitiveLog = RevokeTokenRequestFilterSensitiveLog;
|
|
1163
|
-
const SetRiskConfigurationRequestFilterSensitiveLog = (obj) => ({
|
|
1164
|
-
...obj,
|
|
1165
|
-
...(obj.ClientId && { ClientId: smithy_client_1.SENSITIVE_STRING }),
|
|
1166
|
-
});
|
|
1167
|
-
exports.SetRiskConfigurationRequestFilterSensitiveLog = SetRiskConfigurationRequestFilterSensitiveLog;
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.VerifyUserAttributeRequestFilterSensitiveLog = exports.VerifySoftwareTokenResponseFilterSensitiveLog = exports.VerifySoftwareTokenRequestFilterSensitiveLog = exports.UpdateUserPoolClientResponseFilterSensitiveLog = exports.UpdateUserPoolClientRequestFilterSensitiveLog = exports.UpdateUserAttributesRequestFilterSensitiveLog = exports.UpdateDeviceStatusRequestFilterSensitiveLog = exports.UpdateAuthEventFeedbackRequestFilterSensitiveLog = exports.SignUpRequestFilterSensitiveLog = exports.SetUserSettingsRequestFilterSensitiveLog = exports.SetUserMFAPreferenceRequestFilterSensitiveLog = exports.SetUICustomizationResponseFilterSensitiveLog = exports.SetUICustomizationRequestFilterSensitiveLog = exports.SetRiskConfigurationResponseFilterSensitiveLog = exports.VerifySoftwareTokenResponseType = exports.EnableSoftwareTokenMFAException = void 0;
|
|
3
|
+
exports.VerifyUserAttributeRequestFilterSensitiveLog = exports.VerifySoftwareTokenResponseFilterSensitiveLog = exports.VerifySoftwareTokenRequestFilterSensitiveLog = exports.UpdateUserPoolClientResponseFilterSensitiveLog = exports.UpdateUserPoolClientRequestFilterSensitiveLog = exports.UpdateUserAttributesRequestFilterSensitiveLog = exports.UpdateDeviceStatusRequestFilterSensitiveLog = exports.UpdateAuthEventFeedbackRequestFilterSensitiveLog = exports.SignUpRequestFilterSensitiveLog = exports.SetUserSettingsRequestFilterSensitiveLog = exports.SetUserMFAPreferenceRequestFilterSensitiveLog = exports.SetUICustomizationResponseFilterSensitiveLog = exports.SetUICustomizationRequestFilterSensitiveLog = exports.SetRiskConfigurationResponseFilterSensitiveLog = exports.SetRiskConfigurationRequestFilterSensitiveLog = exports.VerifySoftwareTokenResponseType = exports.EnableSoftwareTokenMFAException = void 0;
|
|
4
4
|
const smithy_client_1 = require("@smithy/smithy-client");
|
|
5
5
|
const CognitoIdentityProviderServiceException_1 = require("./CognitoIdentityProviderServiceException");
|
|
6
6
|
const models_0_1 = require("./models_0");
|
|
@@ -21,6 +21,11 @@ exports.VerifySoftwareTokenResponseType = {
|
|
|
21
21
|
ERROR: "ERROR",
|
|
22
22
|
SUCCESS: "SUCCESS",
|
|
23
23
|
};
|
|
24
|
+
const SetRiskConfigurationRequestFilterSensitiveLog = (obj) => ({
|
|
25
|
+
...obj,
|
|
26
|
+
...(obj.ClientId && { ClientId: smithy_client_1.SENSITIVE_STRING }),
|
|
27
|
+
});
|
|
28
|
+
exports.SetRiskConfigurationRequestFilterSensitiveLog = SetRiskConfigurationRequestFilterSensitiveLog;
|
|
24
29
|
const SetRiskConfigurationResponseFilterSensitiveLog = (obj) => ({
|
|
25
30
|
...obj,
|
|
26
31
|
...(obj.RiskConfiguration && { RiskConfiguration: (0, models_0_1.RiskConfigurationTypeFilterSensitiveLog)(obj.RiskConfiguration) }),
|
|
@@ -3,8 +3,7 @@ import { getEndpointPlugin } from "@smithy/middleware-endpoint";
|
|
|
3
3
|
import { getSerdePlugin } from "@smithy/middleware-serde";
|
|
4
4
|
import { Command as $Command } from "@smithy/smithy-client";
|
|
5
5
|
import { SMITHY_CONTEXT_KEY, } from "@smithy/types";
|
|
6
|
-
import { SetRiskConfigurationRequestFilterSensitiveLog } from "../models/
|
|
7
|
-
import { SetRiskConfigurationResponseFilterSensitiveLog } from "../models/models_1";
|
|
6
|
+
import { SetRiskConfigurationRequestFilterSensitiveLog, SetRiskConfigurationResponseFilterSensitiveLog, } from "../models/models_1";
|
|
8
7
|
import { de_SetRiskConfigurationCommand, se_SetRiskConfigurationCommand } from "../protocols/Aws_json1_1";
|
|
9
8
|
export { $Command };
|
|
10
9
|
export class SetRiskConfigurationCommand extends $Command {
|
|
@@ -535,6 +535,10 @@ export const CustomEmailSenderLambdaVersionType = {
|
|
|
535
535
|
export const CustomSMSSenderLambdaVersionType = {
|
|
536
536
|
V1_0: "V1_0",
|
|
537
537
|
};
|
|
538
|
+
export const PreTokenGenerationLambdaVersionType = {
|
|
539
|
+
V1_0: "V1_0",
|
|
540
|
+
V2_0: "V2_0",
|
|
541
|
+
};
|
|
538
542
|
export const UserPoolMfaType = {
|
|
539
543
|
OFF: "OFF",
|
|
540
544
|
ON: "ON",
|
|
@@ -1040,7 +1044,3 @@ export const RevokeTokenRequestFilterSensitiveLog = (obj) => ({
|
|
|
1040
1044
|
...(obj.ClientId && { ClientId: SENSITIVE_STRING }),
|
|
1041
1045
|
...(obj.ClientSecret && { ClientSecret: SENSITIVE_STRING }),
|
|
1042
1046
|
});
|
|
1043
|
-
export const SetRiskConfigurationRequestFilterSensitiveLog = (obj) => ({
|
|
1044
|
-
...obj,
|
|
1045
|
-
...(obj.ClientId && { ClientId: SENSITIVE_STRING }),
|
|
1046
|
-
});
|
|
@@ -17,6 +17,10 @@ export const VerifySoftwareTokenResponseType = {
|
|
|
17
17
|
ERROR: "ERROR",
|
|
18
18
|
SUCCESS: "SUCCESS",
|
|
19
19
|
};
|
|
20
|
+
export const SetRiskConfigurationRequestFilterSensitiveLog = (obj) => ({
|
|
21
|
+
...obj,
|
|
22
|
+
...(obj.ClientId && { ClientId: SENSITIVE_STRING }),
|
|
23
|
+
});
|
|
20
24
|
export const SetRiskConfigurationResponseFilterSensitiveLog = (obj) => ({
|
|
21
25
|
...obj,
|
|
22
26
|
...(obj.RiskConfiguration && { RiskConfiguration: RiskConfigurationTypeFilterSensitiveLog(obj.RiskConfiguration) }),
|
|
@@ -725,20 +725,36 @@ export interface CognitoIdentityProvider {
|
|
|
725
725
|
}
|
|
726
726
|
/**
|
|
727
727
|
* @public
|
|
728
|
-
* <p>With the Amazon Cognito user pools API, you can
|
|
729
|
-
* authenticate users
|
|
730
|
-
*
|
|
731
|
-
* about the authentication and authorization of federated users in the <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-userpools-server-contract-reference.html">
|
|
728
|
+
* <p>With the Amazon Cognito user pools API, you can configure user pools and authenticate users. To
|
|
729
|
+
* authenticate users from third-party identity providers (IdPs) in this API, you can
|
|
730
|
+
* <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-identity-federation-consolidate-users.html">link IdP users to native user profiles</a>. Learn more
|
|
731
|
+
* about the authentication and authorization of federated users at <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-identity-federation.html">Adding user pool sign-in through a third party</a> and in the <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-userpools-server-contract-reference.html">User pool federation endpoints and hosted UI reference</a>.</p>
|
|
732
732
|
* <p>This API reference provides detailed information about API operations and object types
|
|
733
|
-
* in Amazon Cognito
|
|
734
|
-
* <i>See Also</i>, you can learn how to use it in an Amazon Web Services SDK in the
|
|
735
|
-
* language of your choice.</p>
|
|
733
|
+
* in Amazon Cognito.</p>
|
|
736
734
|
* <p>Along with resource management operations, the Amazon Cognito user pools API includes classes
|
|
737
|
-
* of operations and authorization models for client-side and server-side
|
|
738
|
-
*
|
|
739
|
-
*
|
|
740
|
-
* <
|
|
741
|
-
*
|
|
735
|
+
* of operations and authorization models for client-side and server-side authentication of
|
|
736
|
+
* users. You can interact with operations in the Amazon Cognito user pools API as any of the
|
|
737
|
+
* following subjects.</p>
|
|
738
|
+
* <ol>
|
|
739
|
+
* <li>
|
|
740
|
+
* <p>An administrator who wants to configure user pools, app clients, users,
|
|
741
|
+
* groups, or other user pool functions.</p>
|
|
742
|
+
* </li>
|
|
743
|
+
* <li>
|
|
744
|
+
* <p>A server-side app, like a web application, that wants to use its Amazon Web Services
|
|
745
|
+
* privileges to manage, authenticate, or authorize a user.</p>
|
|
746
|
+
* </li>
|
|
747
|
+
* <li>
|
|
748
|
+
* <p>A client-side app, like a mobile app, that wants to make unauthenticated
|
|
749
|
+
* requests to manage, authenticate, or authorize a user.</p>
|
|
750
|
+
* </li>
|
|
751
|
+
* </ol>
|
|
752
|
+
* <p>For more information, see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/user-pools-API-operations.html">Using the Amazon Cognito user pools API and user pool endpoints</a>
|
|
753
|
+
* in the <i>Amazon Cognito Developer Guide</i>.</p>
|
|
754
|
+
* <p>With your Amazon Web Services SDK, you can build the logic to support operational flows in every use
|
|
755
|
+
* case for this API. You can also make direct REST API requests to <a href="https://docs.aws.amazon.com/general/latest/gr/cognito_identity.html#cognito_identity_your_user_pools_region">Amazon Cognito user pools service endpoints</a>. The following links can get you started
|
|
756
|
+
* with the <code>CognitoIdentityProvider</code> client in other supported Amazon Web Services
|
|
757
|
+
* SDKs.</p>
|
|
742
758
|
* <ul>
|
|
743
759
|
* <li>
|
|
744
760
|
* <p>
|
|
@@ -255,20 +255,36 @@ export interface CognitoIdentityProviderClientResolvedConfig extends CognitoIden
|
|
|
255
255
|
}
|
|
256
256
|
/**
|
|
257
257
|
* @public
|
|
258
|
-
* <p>With the Amazon Cognito user pools API, you can
|
|
259
|
-
* authenticate users
|
|
260
|
-
*
|
|
261
|
-
* about the authentication and authorization of federated users in the <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-userpools-server-contract-reference.html">
|
|
258
|
+
* <p>With the Amazon Cognito user pools API, you can configure user pools and authenticate users. To
|
|
259
|
+
* authenticate users from third-party identity providers (IdPs) in this API, you can
|
|
260
|
+
* <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-identity-federation-consolidate-users.html">link IdP users to native user profiles</a>. Learn more
|
|
261
|
+
* about the authentication and authorization of federated users at <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-identity-federation.html">Adding user pool sign-in through a third party</a> and in the <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-userpools-server-contract-reference.html">User pool federation endpoints and hosted UI reference</a>.</p>
|
|
262
262
|
* <p>This API reference provides detailed information about API operations and object types
|
|
263
|
-
* in Amazon Cognito
|
|
264
|
-
* <i>See Also</i>, you can learn how to use it in an Amazon Web Services SDK in the
|
|
265
|
-
* language of your choice.</p>
|
|
263
|
+
* in Amazon Cognito.</p>
|
|
266
264
|
* <p>Along with resource management operations, the Amazon Cognito user pools API includes classes
|
|
267
|
-
* of operations and authorization models for client-side and server-side
|
|
268
|
-
*
|
|
269
|
-
*
|
|
270
|
-
* <
|
|
271
|
-
*
|
|
265
|
+
* of operations and authorization models for client-side and server-side authentication of
|
|
266
|
+
* users. You can interact with operations in the Amazon Cognito user pools API as any of the
|
|
267
|
+
* following subjects.</p>
|
|
268
|
+
* <ol>
|
|
269
|
+
* <li>
|
|
270
|
+
* <p>An administrator who wants to configure user pools, app clients, users,
|
|
271
|
+
* groups, or other user pool functions.</p>
|
|
272
|
+
* </li>
|
|
273
|
+
* <li>
|
|
274
|
+
* <p>A server-side app, like a web application, that wants to use its Amazon Web Services
|
|
275
|
+
* privileges to manage, authenticate, or authorize a user.</p>
|
|
276
|
+
* </li>
|
|
277
|
+
* <li>
|
|
278
|
+
* <p>A client-side app, like a mobile app, that wants to make unauthenticated
|
|
279
|
+
* requests to manage, authenticate, or authorize a user.</p>
|
|
280
|
+
* </li>
|
|
281
|
+
* </ol>
|
|
282
|
+
* <p>For more information, see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/user-pools-API-operations.html">Using the Amazon Cognito user pools API and user pool endpoints</a>
|
|
283
|
+
* in the <i>Amazon Cognito Developer Guide</i>.</p>
|
|
284
|
+
* <p>With your Amazon Web Services SDK, you can build the logic to support operational flows in every use
|
|
285
|
+
* case for this API. You can also make direct REST API requests to <a href="https://docs.aws.amazon.com/general/latest/gr/cognito_identity.html#cognito_identity_your_user_pools_region">Amazon Cognito user pools service endpoints</a>. The following links can get you started
|
|
286
|
+
* with the <code>CognitoIdentityProvider</code> client in other supported Amazon Web Services
|
|
287
|
+
* SDKs.</p>
|
|
272
288
|
* <ul>
|
|
273
289
|
* <li>
|
|
274
290
|
* <p>
|
|
@@ -23,7 +23,9 @@ export interface AdminAddUserToGroupCommandOutput extends __MetadataBearer {
|
|
|
23
23
|
}
|
|
24
24
|
/**
|
|
25
25
|
* @public
|
|
26
|
-
* <p>Adds
|
|
26
|
+
* <p>Adds a user to a group. A user who is in a group can present a preferred-role claim to
|
|
27
|
+
* an identity pool, and populates a <code>cognito:groups</code> claim to their access and
|
|
28
|
+
* identity tokens.</p>
|
|
27
29
|
* <note>
|
|
28
30
|
* <p>Amazon Cognito evaluates Identity and Access Management (IAM) policies in requests for this API operation. For
|
|
29
31
|
* this operation, you must use IAM credentials to authorize requests, and you must
|
|
@@ -23,8 +23,15 @@ export interface AdminConfirmSignUpCommandOutput extends AdminConfirmSignUpRespo
|
|
|
23
23
|
}
|
|
24
24
|
/**
|
|
25
25
|
* @public
|
|
26
|
-
* <p>
|
|
27
|
-
* user
|
|
26
|
+
* <p>This IAM-authenticated API operation provides a code that Amazon Cognito sent to your user
|
|
27
|
+
* when they signed up in your user pool. After your user enters their code, they confirm
|
|
28
|
+
* ownership of the email address or phone number that they provided, and their user
|
|
29
|
+
* account becomes active. Depending on your user pool configuration, your users will
|
|
30
|
+
* receive their confirmation code in an email or SMS message.</p>
|
|
31
|
+
* <p>Local users who signed up in your user pool are the only type of user who can confirm
|
|
32
|
+
* sign-up with a code. Users who federate through an external identity provider (IdP) have
|
|
33
|
+
* already been confirmed by their IdP. Administrator-created users confirm their accounts
|
|
34
|
+
* when they respond to their invitation email message and choose a password.</p>
|
|
28
35
|
* <note>
|
|
29
36
|
* <p>Amazon Cognito evaluates Identity and Access Management (IAM) policies in requests for this API operation. For
|
|
30
37
|
* this operation, you must use IAM credentials to authorize requests, and you must
|
|
@@ -23,7 +23,7 @@ export interface AdminListGroupsForUserCommandOutput extends AdminListGroupsForU
|
|
|
23
23
|
}
|
|
24
24
|
/**
|
|
25
25
|
* @public
|
|
26
|
-
* <p>Lists the groups that
|
|
26
|
+
* <p>Lists the groups that a user belongs to.</p>
|
|
27
27
|
* <note>
|
|
28
28
|
* <p>Amazon Cognito evaluates Identity and Access Management (IAM) policies in requests for this API operation. For
|
|
29
29
|
* this operation, you must use IAM credentials to authorize requests, and you must
|
|
@@ -23,7 +23,13 @@ export interface AdminRespondToAuthChallengeCommandOutput extends AdminRespondTo
|
|
|
23
23
|
}
|
|
24
24
|
/**
|
|
25
25
|
* @public
|
|
26
|
-
* <p>
|
|
26
|
+
* <p>Some API operations in a user pool generate a challenge, like a prompt for an MFA
|
|
27
|
+
* code, for device authentication that bypasses MFA, or for a custom authentication
|
|
28
|
+
* challenge. An <code>AdminRespondToAuthChallenge</code> API request provides the answer
|
|
29
|
+
* to that challenge, like a code or a secure remote password (SRP). The parameters of a
|
|
30
|
+
* response to an authentication challenge vary with the type of challenge.</p>
|
|
31
|
+
* <p>For more information about custom authentication challenges, see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-lambda-challenge.html">Custom
|
|
32
|
+
* authentication challenge Lambda triggers</a>.</p>
|
|
27
33
|
* <note>
|
|
28
34
|
* <p>This action might generate an SMS text message. Starting June 1, 2021, US telecom carriers
|
|
29
35
|
* require you to register an origination phone number before you can send SMS messages
|
|
@@ -23,14 +23,30 @@ export interface AdminUserGlobalSignOutCommandOutput extends AdminUserGlobalSign
|
|
|
23
23
|
}
|
|
24
24
|
/**
|
|
25
25
|
* @public
|
|
26
|
-
* <p>
|
|
27
|
-
*
|
|
28
|
-
*
|
|
29
|
-
*
|
|
30
|
-
*
|
|
31
|
-
*
|
|
32
|
-
*
|
|
33
|
-
*
|
|
26
|
+
* <p>Invalidates the identity, access, and refresh tokens that Amazon Cognito issued to a user. Call
|
|
27
|
+
* this operation with your administrative credentials when your user signs out of your
|
|
28
|
+
* app. This results in the following behavior. </p>
|
|
29
|
+
* <ul>
|
|
30
|
+
* <li>
|
|
31
|
+
* <p>Amazon Cognito no longer accepts <i>token-authorized</i> user operations
|
|
32
|
+
* that you authorize with a signed-out user's access tokens. For more information,
|
|
33
|
+
* see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/user-pools-API-operations.html">Using the Amazon Cognito user pools API and user pool
|
|
34
|
+
* endpoints</a>.</p>
|
|
35
|
+
* <p>Amazon Cognito returns an <code>Access Token has been revoked</code> error when your
|
|
36
|
+
* app attempts to authorize a user pools API request with a revoked access token
|
|
37
|
+
* that contains the scope <code>aws.cognito.signin.user.admin</code>.</p>
|
|
38
|
+
* </li>
|
|
39
|
+
* <li>
|
|
40
|
+
* <p>Amazon Cognito no longer accepts a signed-out user's ID token in a <a href="https://docs.aws.amazon.com/cognitoidentity/latest/APIReference/API_GetId.html">GetId </a> request to an identity pool with
|
|
41
|
+
* <code>ServerSideTokenCheck</code> enabled for its user pool IdP
|
|
42
|
+
* configuration in <a href="https://docs.aws.amazon.com/cognitoidentity/latest/APIReference/API_CognitoIdentityProvider.html">CognitoIdentityProvider</a>.</p>
|
|
43
|
+
* </li>
|
|
44
|
+
* <li>
|
|
45
|
+
* <p>Amazon Cognito no longer accepts a signed-out user's refresh tokens in refresh
|
|
46
|
+
* requests.</p>
|
|
47
|
+
* </li>
|
|
48
|
+
* </ul>
|
|
49
|
+
* <p>Other requests might be valid until your user's token expires.</p>
|
|
34
50
|
* <note>
|
|
35
51
|
* <p>Amazon Cognito evaluates Identity and Access Management (IAM) policies in requests for this API operation. For
|
|
36
52
|
* this operation, you must use IAM credentials to authorize requests, and you must
|
|
@@ -23,7 +23,18 @@ export interface ConfirmSignUpCommandOutput extends ConfirmSignUpResponse, __Met
|
|
|
23
23
|
}
|
|
24
24
|
/**
|
|
25
25
|
* @public
|
|
26
|
-
* <p>
|
|
26
|
+
* <p>This public API operation provides a code that Amazon Cognito sent to your user when they
|
|
27
|
+
* signed up in your user pool via the <a href="https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_SignUp.html">SignUp</a>
|
|
28
|
+
* API operation. After your user enters their code, they confirm ownership of the email
|
|
29
|
+
* address or phone number that they provided, and their user account becomes active.
|
|
30
|
+
* Depending on your user pool configuration, your users will receive their confirmation
|
|
31
|
+
* code in an email or SMS message.</p>
|
|
32
|
+
* <p>Local users who signed up in your user pool are the only type of user who can confirm
|
|
33
|
+
* sign-up with a code. Users who federate through an external identity provider (IdP) have
|
|
34
|
+
* already been confirmed by their IdP. Administrator-created users, users created with the
|
|
35
|
+
* <a href="https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_AdminCreateUser.html">AdminCreateUser</a> API operation, confirm their accounts when they respond to
|
|
36
|
+
* their invitation email message and choose a password. They do not receive a confirmation
|
|
37
|
+
* code. Instead, they receive a temporary password.</p>
|
|
27
38
|
* <note>
|
|
28
39
|
* <p>Amazon Cognito doesn't evaluate Identity and Access Management (IAM) policies in requests for this API operation. For
|
|
29
40
|
* this operation, you can't use IAM credentials to authorize requests, and you can't
|
|
@@ -94,6 +94,10 @@ export interface CreateUserPoolCommandOutput extends CreateUserPoolResponse, __M
|
|
|
94
94
|
* CreateAuthChallenge: "STRING_VALUE",
|
|
95
95
|
* VerifyAuthChallengeResponse: "STRING_VALUE",
|
|
96
96
|
* PreTokenGeneration: "STRING_VALUE",
|
|
97
|
+
* PreTokenGenerationConfig: { // PreTokenGenerationVersionConfigType
|
|
98
|
+
* LambdaVersion: "V1_0" || "V2_0", // required
|
|
99
|
+
* LambdaArn: "STRING_VALUE", // required
|
|
100
|
+
* },
|
|
97
101
|
* UserMigration: "STRING_VALUE",
|
|
98
102
|
* CustomSMSSender: { // CustomSMSLambdaVersionConfigType
|
|
99
103
|
* LambdaVersion: "V1_0", // required
|
|
@@ -219,6 +223,10 @@ export interface CreateUserPoolCommandOutput extends CreateUserPoolResponse, __M
|
|
|
219
223
|
* // CreateAuthChallenge: "STRING_VALUE",
|
|
220
224
|
* // VerifyAuthChallengeResponse: "STRING_VALUE",
|
|
221
225
|
* // PreTokenGeneration: "STRING_VALUE",
|
|
226
|
+
* // PreTokenGenerationConfig: { // PreTokenGenerationVersionConfigType
|
|
227
|
+
* // LambdaVersion: "V1_0" || "V2_0", // required
|
|
228
|
+
* // LambdaArn: "STRING_VALUE", // required
|
|
229
|
+
* // },
|
|
222
230
|
* // UserMigration: "STRING_VALUE",
|
|
223
231
|
* // CustomSMSSender: { // CustomSMSLambdaVersionConfigType
|
|
224
232
|
* // LambdaVersion: "V1_0", // required
|
|
@@ -80,6 +80,10 @@ export interface DescribeUserPoolCommandOutput extends DescribeUserPoolResponse,
|
|
|
80
80
|
* // CreateAuthChallenge: "STRING_VALUE",
|
|
81
81
|
* // VerifyAuthChallengeResponse: "STRING_VALUE",
|
|
82
82
|
* // PreTokenGeneration: "STRING_VALUE",
|
|
83
|
+
* // PreTokenGenerationConfig: { // PreTokenGenerationVersionConfigType
|
|
84
|
+
* // LambdaVersion: "V1_0" || "V2_0", // required
|
|
85
|
+
* // LambdaArn: "STRING_VALUE", // required
|
|
86
|
+
* // },
|
|
83
87
|
* // UserMigration: "STRING_VALUE",
|
|
84
88
|
* // CustomSMSSender: { // CustomSMSLambdaVersionConfigType
|
|
85
89
|
* // LambdaVersion: "V1_0", // required
|
|
@@ -23,14 +23,30 @@ export interface GlobalSignOutCommandOutput extends GlobalSignOutResponse, __Met
|
|
|
23
23
|
}
|
|
24
24
|
/**
|
|
25
25
|
* @public
|
|
26
|
-
* <p>
|
|
27
|
-
*
|
|
28
|
-
*
|
|
29
|
-
*
|
|
30
|
-
*
|
|
31
|
-
*
|
|
32
|
-
*
|
|
33
|
-
*
|
|
26
|
+
* <p>Invalidates the identity, access, and refresh tokens that Amazon Cognito issued to a user. Call
|
|
27
|
+
* this operation when your user signs out of your app. This results in the following
|
|
28
|
+
* behavior. </p>
|
|
29
|
+
* <ul>
|
|
30
|
+
* <li>
|
|
31
|
+
* <p>Amazon Cognito no longer accepts <i>token-authorized</i> user operations
|
|
32
|
+
* that you authorize with a signed-out user's access tokens. For more information,
|
|
33
|
+
* see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/user-pools-API-operations.html">Using the Amazon Cognito user pools API and user pool
|
|
34
|
+
* endpoints</a>.</p>
|
|
35
|
+
* <p>Amazon Cognito returns an <code>Access Token has been revoked</code> error when your
|
|
36
|
+
* app attempts to authorize a user pools API request with a revoked access token
|
|
37
|
+
* that contains the scope <code>aws.cognito.signin.user.admin</code>.</p>
|
|
38
|
+
* </li>
|
|
39
|
+
* <li>
|
|
40
|
+
* <p>Amazon Cognito no longer accepts a signed-out user's ID token in a <a href="https://docs.aws.amazon.com/cognitoidentity/latest/APIReference/API_GetId.html">GetId </a> request to an identity pool with
|
|
41
|
+
* <code>ServerSideTokenCheck</code> enabled for its user pool IdP
|
|
42
|
+
* configuration in <a href="https://docs.aws.amazon.com/cognitoidentity/latest/APIReference/API_CognitoIdentityProvider.html">CognitoIdentityProvider</a>.</p>
|
|
43
|
+
* </li>
|
|
44
|
+
* <li>
|
|
45
|
+
* <p>Amazon Cognito no longer accepts a signed-out user's refresh tokens in refresh
|
|
46
|
+
* requests.</p>
|
|
47
|
+
* </li>
|
|
48
|
+
* </ul>
|
|
49
|
+
* <p>Other requests might be valid until your user's token expires.</p>
|
|
34
50
|
* <note>
|
|
35
51
|
* <p>Amazon Cognito doesn't evaluate Identity and Access Management (IAM) policies in requests for this API operation. For
|
|
36
52
|
* this operation, you can't use IAM credentials to authorize requests, and you can't
|
|
@@ -71,6 +71,10 @@ export interface ListUserPoolsCommandOutput extends ListUserPoolsResponse, __Met
|
|
|
71
71
|
* // CreateAuthChallenge: "STRING_VALUE",
|
|
72
72
|
* // VerifyAuthChallengeResponse: "STRING_VALUE",
|
|
73
73
|
* // PreTokenGeneration: "STRING_VALUE",
|
|
74
|
+
* // PreTokenGenerationConfig: { // PreTokenGenerationVersionConfigType
|
|
75
|
+
* // LambdaVersion: "V1_0" || "V2_0", // required
|
|
76
|
+
* // LambdaArn: "STRING_VALUE", // required
|
|
77
|
+
* // },
|
|
74
78
|
* // UserMigration: "STRING_VALUE",
|
|
75
79
|
* // CustomSMSSender: { // CustomSMSLambdaVersionConfigType
|
|
76
80
|
* // LambdaVersion: "V1_0", // required
|
|
@@ -23,7 +23,13 @@ export interface RespondToAuthChallengeCommandOutput extends RespondToAuthChalle
|
|
|
23
23
|
}
|
|
24
24
|
/**
|
|
25
25
|
* @public
|
|
26
|
-
* <p>
|
|
26
|
+
* <p>Some API operations in a user pool generate a challenge, like a prompt for an MFA
|
|
27
|
+
* code, for device authentication that bypasses MFA, or for a custom authentication
|
|
28
|
+
* challenge. A <code>RespondToAuthChallenge</code> API request provides the answer to that
|
|
29
|
+
* challenge, like a code or a secure remote password (SRP). The parameters of a response
|
|
30
|
+
* to an authentication challenge vary with the type of challenge.</p>
|
|
31
|
+
* <p>For more information about custom authentication challenges, see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-lambda-challenge.html">Custom
|
|
32
|
+
* authentication challenge Lambda triggers</a>.</p>
|
|
27
33
|
* <note>
|
|
28
34
|
* <p>Amazon Cognito doesn't evaluate Identity and Access Management (IAM) policies in requests for this API operation. For
|
|
29
35
|
* this operation, you can't use IAM credentials to authorize requests, and you can't
|
|
@@ -2,7 +2,8 @@ import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
|
|
|
2
2
|
import { Command as $Command } from "@smithy/smithy-client";
|
|
3
3
|
import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@smithy/types";
|
|
4
4
|
import { CognitoIdentityProviderClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../CognitoIdentityProviderClient";
|
|
5
|
-
import { SetLogDeliveryConfigurationRequest
|
|
5
|
+
import { SetLogDeliveryConfigurationRequest } from "../models/models_0";
|
|
6
|
+
import { SetLogDeliveryConfigurationResponse } from "../models/models_1";
|
|
6
7
|
/**
|
|
7
8
|
* @public
|
|
8
9
|
*/
|
|
@@ -2,8 +2,7 @@ import { EndpointParameterInstructions } from "@smithy/middleware-endpoint";
|
|
|
2
2
|
import { Command as $Command } from "@smithy/smithy-client";
|
|
3
3
|
import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@smithy/types";
|
|
4
4
|
import { CognitoIdentityProviderClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../CognitoIdentityProviderClient";
|
|
5
|
-
import { SetRiskConfigurationRequest } from "../models/
|
|
6
|
-
import { SetRiskConfigurationResponse } from "../models/models_1";
|
|
5
|
+
import { SetRiskConfigurationRequest, SetRiskConfigurationResponse } from "../models/models_1";
|
|
7
6
|
/**
|
|
8
7
|
* @public
|
|
9
8
|
*/
|
|
@@ -23,7 +23,11 @@ export interface UpdateUserAttributesCommandOutput extends UpdateUserAttributesR
|
|
|
23
23
|
}
|
|
24
24
|
/**
|
|
25
25
|
* @public
|
|
26
|
-
* <p>
|
|
26
|
+
* <p>With this operation, your users can update one or more of their attributes with their
|
|
27
|
+
* own credentials. You authorize this API request with the user's access token. To delete
|
|
28
|
+
* an attribute from your user, submit the attribute in your API request with a blank
|
|
29
|
+
* value. Custom attribute values in this request must include the <code>custom:</code>
|
|
30
|
+
* prefix.</p>
|
|
27
31
|
* <note>
|
|
28
32
|
* <p>Amazon Cognito doesn't evaluate Identity and Access Management (IAM) policies in requests for this API operation. For
|
|
29
33
|
* this operation, you can't use IAM credentials to authorize requests, and you can't
|
|
@@ -94,6 +94,10 @@ export interface UpdateUserPoolCommandOutput extends UpdateUserPoolResponse, __M
|
|
|
94
94
|
* CreateAuthChallenge: "STRING_VALUE",
|
|
95
95
|
* VerifyAuthChallengeResponse: "STRING_VALUE",
|
|
96
96
|
* PreTokenGeneration: "STRING_VALUE",
|
|
97
|
+
* PreTokenGenerationConfig: { // PreTokenGenerationVersionConfigType
|
|
98
|
+
* LambdaVersion: "V1_0" || "V2_0", // required
|
|
99
|
+
* LambdaArn: "STRING_VALUE", // required
|
|
100
|
+
* },
|
|
97
101
|
* UserMigration: "STRING_VALUE",
|
|
98
102
|
* CustomSMSSender: { // CustomSMSLambdaVersionConfigType
|
|
99
103
|
* LambdaVersion: "V1_0", // required
|