@aws-sdk/client-cognito-identity-provider 3.623.0 → 3.625.0

package/dist-types/commands/ResendConfirmationCodeCommand.d.ts

@@ -120,7 +120,7 @@ declare const ResendConfirmationCodeCommand_base: {
  * @throws {@link InvalidSmsRoleTrustRelationshipException} (client fault)
  *  <p>This exception is thrown when the trust relationship is not valid for the role
  *             provided for SMS configuration. This can happen if you don't trust
- *                 <code>cognito-idp.amazonaws.com</code> or the external ID provided in the role does
+ *             <code>cognito-idp.amazonaws.com</code> or the external ID provided in the role does
  *             not match what is provided in the SMS configuration for the user pool.</p>
  *
  * @throws {@link LimitExceededException} (client fault)

package/dist-types/commands/RespondToAuthChallengeCommand.d.ts

@@ -148,7 +148,7 @@ declare const RespondToAuthChallengeCommand_base: {
  * @throws {@link InvalidSmsRoleTrustRelationshipException} (client fault)
  *  <p>This exception is thrown when the trust relationship is not valid for the role
  *             provided for SMS configuration. This can happen if you don't trust
- *                 <code>cognito-idp.amazonaws.com</code> or the external ID provided in the role does
+ *             <code>cognito-idp.amazonaws.com</code> or the external ID provided in the role does
  *             not match what is provided in the SMS configuration for the user pool.</p>
  *
  * @throws {@link InvalidUserPoolConfigurationException} (client fault)
@@ -161,6 +161,10 @@ declare const RespondToAuthChallengeCommand_base: {
  * @throws {@link NotAuthorizedException} (client fault)
  *  <p>This exception is thrown when a user isn't authorized.</p>
  *
+ * @throws {@link PasswordHistoryPolicyViolationException} (client fault)
+ *  <p>The message returned when a user's new password matches a previous password and
+ *             doesn't comply with the password-history policy.</p>
+ *
  * @throws {@link PasswordResetRequiredException} (client fault)
  *  <p>This exception is thrown when a password reset is required.</p>
  *

package/dist-types/commands/SetLogDeliveryConfigurationCommand.d.ts

@@ -1,8 +1,7 @@
 import { Command as $Command } from "@smithy/smithy-client";
 import { MetadataBearer as __MetadataBearer } from "@smithy/types";
 import { CognitoIdentityProviderClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../CognitoIdentityProviderClient";
-import { SetLogDeliveryConfigurationRequest } from "../models/models_0";
-import { SetLogDeliveryConfigurationResponse } from "../models/models_1";
+import { SetLogDeliveryConfigurationRequest, SetLogDeliveryConfigurationResponse } from "../models/models_1";
 /**
  * @public
  */
@@ -28,7 +27,8 @@ declare const SetLogDeliveryConfigurationCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Sets up or modifies the detailed activity logging configuration of a user pool.</p>
+ * <p>Sets up or modifies the logging configuration of a user pool. User pools can export
+ *             user notification logs and advanced security features user activity logs.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -39,11 +39,17 @@ declare const SetLogDeliveryConfigurationCommand_base: {
  *   UserPoolId: "STRING_VALUE", // required
  *   LogConfigurations: [ // LogConfigurationListType // required
  *     { // LogConfigurationType
- *       LogLevel: "ERROR", // required
- *       EventSource: "userNotification", // required
+ *       LogLevel: "ERROR" || "INFO", // required
+ *       EventSource: "userNotification" || "userAuthEvents", // required
  *       CloudWatchLogsConfiguration: { // CloudWatchLogsConfigurationType
  *         LogGroupArn: "STRING_VALUE",
  *       },
+ *       S3Configuration: { // S3ConfigurationType
+ *         BucketArn: "STRING_VALUE",
+ *       },
+ *       FirehoseConfiguration: { // FirehoseConfigurationType
+ *         StreamArn: "STRING_VALUE",
+ *       },
  *     },
  *   ],
  * };
@@ -54,11 +60,17 @@ declare const SetLogDeliveryConfigurationCommand_base: {
  * //     UserPoolId: "STRING_VALUE", // required
  * //     LogConfigurations: [ // LogConfigurationListType // required
  * //       { // LogConfigurationType
- * //         LogLevel: "ERROR", // required
- * //         EventSource: "userNotification", // required
+ * //         LogLevel: "ERROR" || "INFO", // required
+ * //         EventSource: "userNotification" || "userAuthEvents", // required
  * //         CloudWatchLogsConfiguration: { // CloudWatchLogsConfigurationType
  * //           LogGroupArn: "STRING_VALUE",
  * //         },
+ * //         S3Configuration: { // S3ConfigurationType
+ * //           BucketArn: "STRING_VALUE",
+ * //         },
+ * //         FirehoseConfiguration: { // FirehoseConfigurationType
+ * //           StreamArn: "STRING_VALUE",
+ * //         },
  * //       },
  * //     ],
  * //   },

package/dist-types/commands/SetUserPoolMfaConfigCommand.d.ts

@@ -109,7 +109,7 @@ declare const SetUserPoolMfaConfigCommand_base: {
  * @throws {@link InvalidSmsRoleTrustRelationshipException} (client fault)
  *  <p>This exception is thrown when the trust relationship is not valid for the role
  *             provided for SMS configuration. This can happen if you don't trust
- *                 <code>cognito-idp.amazonaws.com</code> or the external ID provided in the role does
+ *             <code>cognito-idp.amazonaws.com</code> or the external ID provided in the role does
  *             not match what is provided in the SMS configuration for the user pool.</p>
  *
  * @throws {@link NotAuthorizedException} (client fault)

package/dist-types/commands/SignUpCommand.d.ts

@@ -138,7 +138,7 @@ declare const SignUpCommand_base: {
  * @throws {@link InvalidSmsRoleTrustRelationshipException} (client fault)
  *  <p>This exception is thrown when the trust relationship is not valid for the role
  *             provided for SMS configuration. This can happen if you don't trust
- *                 <code>cognito-idp.amazonaws.com</code> or the external ID provided in the role does
+ *             <code>cognito-idp.amazonaws.com</code> or the external ID provided in the role does
  *             not match what is provided in the SMS configuration for the user pool.</p>
  *
  * @throws {@link LimitExceededException} (client fault)

package/dist-types/commands/UpdateUserAttributesCommand.d.ts

@@ -137,7 +137,7 @@ declare const UpdateUserAttributesCommand_base: {
  * @throws {@link InvalidSmsRoleTrustRelationshipException} (client fault)
  *  <p>This exception is thrown when the trust relationship is not valid for the role
  *             provided for SMS configuration. This can happen if you don't trust
- *                 <code>cognito-idp.amazonaws.com</code> or the external ID provided in the role does
+ *             <code>cognito-idp.amazonaws.com</code> or the external ID provided in the role does
  *             not match what is provided in the SMS configuration for the user pool.</p>
  *
  * @throws {@link NotAuthorizedException} (client fault)

package/dist-types/commands/UpdateUserPoolCommand.d.ts

@@ -84,6 +84,7 @@ declare const UpdateUserPoolCommand_base: {
  *       RequireLowercase: true || false,
  *       RequireNumbers: true || false,
  *       RequireSymbols: true || false,
+ *       PasswordHistorySize: Number("int"),
  *       TemporaryPasswordValidityDays: Number("int"),
  *     },
  *   },
@@ -208,7 +209,7 @@ declare const UpdateUserPoolCommand_base: {
  * @throws {@link InvalidSmsRoleTrustRelationshipException} (client fault)
  *  <p>This exception is thrown when the trust relationship is not valid for the role
  *             provided for SMS configuration. This can happen if you don't trust
- *                 <code>cognito-idp.amazonaws.com</code> or the external ID provided in the role does
+ *             <code>cognito-idp.amazonaws.com</code> or the external ID provided in the role does
  *             not match what is provided in the SMS configuration for the user pool.</p>
  *
  * @throws {@link NotAuthorizedException} (client fault)

package/dist-types/index.d.ts

@@ -1,7 +1,7 @@
 /**
  * <p>With the Amazon Cognito user pools API, you can configure user pools and authenticate users. To
  *             authenticate users from third-party identity providers (IdPs) in this API, you can
- *                 <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-identity-federation-consolidate-users.html">link IdP users to native user profiles</a>. Learn more
+ *             <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-identity-federation-consolidate-users.html">link IdP users to native user profiles</a>. Learn more
  *             about the authentication and authorization of federated users at <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-identity-federation.html">Adding user pool sign-in through a third party</a> and in the <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-userpools-server-contract-reference.html">User pool federation endpoints and hosted UI reference</a>.</p>
  *          <p>This API reference provides detailed information about API operations and object types
  *             in Amazon Cognito.</p>
@@ -33,7 +33,7 @@
  *             <li>
  *                <p>
  *                   <a href="https://docs.aws.amazon.com/cli/latest/reference/cognito-idp/index.html#cli-aws-cognito-idp">Amazon Web Services
- *                         Command Line Interface</a>
+ *                     Command Line Interface</a>
  *                </p>
  *             </li>
  *             <li>
@@ -59,13 +59,13 @@
  *             <li>
  *                <p>
  *                   <a href="https://docs.aws.amazon.com/AWSJavaScriptSDK/latest/AWS/CognitoIdentityServiceProvider.html">Amazon Web Services
- *                         SDK for JavaScript</a>
+ *                     SDK for JavaScript</a>
  *                </p>
  *             </li>
  *             <li>
  *                <p>
  *                   <a href="https://docs.aws.amazon.com/aws-sdk-php/v3/api/api-cognito-idp-2016-04-18.html">Amazon Web Services SDK for PHP
- *                         V3</a>
+ *                     V3</a>
  *                </p>
  *             </li>
  *             <li>
@@ -76,7 +76,7 @@
  *             <li>
  *                <p>
  *                   <a href="https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/CognitoIdentityProvider/Client.html">Amazon Web Services SDK
- *                         for Ruby V3</a>
+ *                     for Ruby V3</a>
  *                </p>
  *             </li>
  *          </ul>

package/dist-types/models/models_0.d.ts

@@ -933,7 +933,7 @@ export declare class InvalidSmsRoleAccessPolicyException extends __BaseException
 /**
  * <p>This exception is thrown when the trust relationship is not valid for the role
  *             provided for SMS configuration. This can happen if you don't trust
- *                 <code>cognito-idp.amazonaws.com</code> or the external ID provided in the role does
+ *             <code>cognito-idp.amazonaws.com</code> or the external ID provided in the role does
  *             not match what is provided in the SMS configuration for the user pool.</p>
  * @public
  */
@@ -2775,6 +2775,19 @@ export declare class ExpiredCodeException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<ExpiredCodeException, __BaseException>);
 }
+/**
+ * <p>The message returned when a user's new password matches a previous password and
+ *             doesn't comply with the password-history policy.</p>
+ * @public
+ */
+export declare class PasswordHistoryPolicyViolationException extends __BaseException {
+    readonly name: "PasswordHistoryPolicyViolationException";
+    readonly $fault: "client";
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<PasswordHistoryPolicyViolationException, __BaseException>);
+}
 /**
  * <p>This exception is thrown when the software token time-based one-time password (TOTP)
  *             multi-factor authentication (MFA) isn't activated for the user pool.</p>
@@ -4645,6 +4658,16 @@ export interface PasswordPolicyType {
      * @public
      */
     RequireSymbols?: boolean;
+    /**
+     * <p>The number of previous passwords that you want Amazon Cognito to restrict each user from
+     *             reusing. Users can't set a password that matches any of <code>n</code> previous
+     *             passwords, where <code>n</code> is the value of <code>PasswordHistorySize</code>.</p>
+     *          <p>Password history isn't enforced and isn't displayed in <a href="https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_DescribeUserPool.html">DescribeUserPool</a> responses when you set this value to
+     *                 <code>0</code> or don't provide it. To activate this setting, <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pool-settings-advanced-security.html">
+     *                      advanced security features</a> must be active in your user pool.</p>
+     * @public
+     */
+    PasswordHistorySize?: number;
     /**
      * <p>The number of days a temporary password is valid in the password policy. If the user
      *             doesn't sign in during this time, an administrator must reset their password. Defaults
@@ -5725,6 +5748,7 @@ export interface CreateUserPoolClientRequest {
      *                     existence related errors aren't prevented.</p>
      *             </li>
      *          </ul>
+     *          <p>Defaults to <code>LEGACY</code> when you don't provide a value.</p>
      * @public
      */
     PreventUserExistenceErrors?: PreventUserExistenceErrorTypes;
@@ -6074,10 +6098,11 @@ export interface UserPoolClientType {
      *             </li>
      *             <li>
      *                <p>
-     *                   <code>LEGACY</code> - This represents the old behavior of Amazon Cognito where user
+     *                   <code>LEGACY</code> - This represents the early behavior of Amazon Cognito where user
      *                     existence related errors aren't prevented.</p>
      *             </li>
      *          </ul>
+     *          <p>Defaults to <code>LEGACY</code> when you don't provide a value.</p>
      * @public
      */
     PreventUserExistenceErrors?: PreventUserExistenceErrorTypes;
@@ -6941,15 +6966,15 @@ export interface GetIdentityProviderByIdentifierResponse {
  */
 export interface GetLogDeliveryConfigurationRequest {
     /**
-     * <p>The ID of the user pool where you want to view detailed activity logging
-     *             configuration.</p>
+     * <p>The ID of the user pool that has the logging configuration that you want to
+     *             view.</p>
      * @public
      */
     UserPoolId: string | undefined;
 }
 /**
- * <p>The CloudWatch logging destination of a user pool detailed activity logging
- *             configuration.</p>
+ * <p>Configuration for the CloudWatch log group destination of user pool detailed activity
+ *             logging, or of user activity log export with advanced security features.</p>
  * @public
  */
 export interface CloudWatchLogsConfigurationType {
@@ -6970,23 +6995,51 @@ export interface CloudWatchLogsConfigurationType {
  * @enum
  */
 export declare const EventSourceName: {
+    readonly USER_AUTH_EVENTS: "userAuthEvents";
     readonly USER_NOTIFICATION: "userNotification";
 };
 /**
  * @public
  */
 export type EventSourceName = (typeof EventSourceName)[keyof typeof EventSourceName];
+/**
+ * <p>Configuration for the Amazon Data Firehose stream destination of user activity log export with
+ *             advanced security features.</p>
+ * @public
+ */
+export interface FirehoseConfigurationType {
+    /**
+     * <p>The ARN of an Amazon Data Firehose stream that's the destination for advanced security
+     *             features log export.</p>
+     * @public
+     */
+    StreamArn?: string;
+}
 /**
  * @public
  * @enum
  */
 export declare const LogLevel: {
     readonly ERROR: "ERROR";
+    readonly INFO: "INFO";
 };
 /**
  * @public
  */
 export type LogLevel = (typeof LogLevel)[keyof typeof LogLevel];
+/**
+ * <p>Configuration for the Amazon S3 bucket destination of user activity log export with
+ *             advanced security features.</p>
+ * @public
+ */
+export interface S3ConfigurationType {
+    /**
+     * <p>The ARN of an Amazon S3 bucket that's the destination for advanced security features
+     *             log export.</p>
+     * @public
+     */
+    BucketArn?: string;
+}
 /**
  * <p>The logging parameters of a user pool.</p>
  * @public
@@ -6994,33 +7047,57 @@ export type LogLevel = (typeof LogLevel)[keyof typeof LogLevel];
 export interface LogConfigurationType {
     /**
      * <p>The <code>errorlevel</code> selection of logs that a user pool sends for detailed
-     *             activity logging.</p>
+     *             activity logging. To send <code>userNotification</code> activity with <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/tracking-quotas-and-usage-in-cloud-watch-logs.html">information about message delivery</a>, choose <code>ERROR</code> with
+     *                 <code>CloudWatchLogsConfiguration</code>. To send <code>userAuthEvents</code>
+     *             activity with user logs from advanced security features, choose <code>INFO</code> with
+     *             one of <code>CloudWatchLogsConfiguration</code>, <code>FirehoseConfiguration</code>, or
+     *                 <code>S3Configuration</code>.</p>
      * @public
      */
     LogLevel: LogLevel | undefined;
     /**
-     * <p>The source of events that your user pool sends for detailed activity logging.</p>
+     * <p>The source of events that your user pool sends for logging. To send error-level logs
+     *             about user notification activity, set to <code>userNotification</code>. To send
+     *             info-level logs about advanced security features user activity, set to
+     *                 <code>userAuthEvents</code>.</p>
      * @public
      */
     EventSource: EventSourceName | undefined;
     /**
-     * <p>The CloudWatch logging destination of a user pool.</p>
+     * <p>The CloudWatch log group destination of user pool detailed activity logs, or of user
+     *             activity log export with advanced security features.</p>
      * @public
      */
     CloudWatchLogsConfiguration?: CloudWatchLogsConfigurationType;
+    /**
+     * <p>The Amazon S3 bucket destination of user activity log export with advanced security
+     *             features. To activate this setting, <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pool-settings-advanced-security.html">
+     *                      advanced security features</a> must be active in your user pool.</p>
+     * @public
+     */
+    S3Configuration?: S3ConfigurationType;
+    /**
+     * <p>The Amazon Data Firehose stream destination of user activity log export with advanced security
+     *             features. To activate this setting, <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pool-settings-advanced-security.html">
+     *                      advanced security features</a> must be active in your user pool.</p>
+     * @public
+     */
+    FirehoseConfiguration?: FirehoseConfigurationType;
 }
 /**
- * <p>The logging parameters of a user pool.</p>
+ * <p>The logging parameters of a user pool returned in response to
+ *                 <code>GetLogDeliveryConfiguration</code>.</p>
  * @public
  */
 export interface LogDeliveryConfigurationType {
     /**
-     * <p>The ID of the user pool where you configured detailed activity logging.</p>
+     * <p>The ID of the user pool where you configured logging.</p>
      * @public
      */
     UserPoolId: string | undefined;
     /**
-     * <p>The detailed activity logging destination of a user pool.</p>
+     * <p>A logging destination of a user pool. User pools can have multiple logging
+     *             destinations for message-delivery and user-activity logs.</p>
      * @public
      */
     LogConfigurations: LogConfigurationType[] | undefined;
@@ -7030,7 +7107,7 @@ export interface LogDeliveryConfigurationType {
  */
 export interface GetLogDeliveryConfigurationResponse {
     /**
-     * <p>The detailed activity logging configuration of the requested user pool.</p>
+     * <p>The logging configuration of the requested user pool.</p>
      * @public
      */
     LogDeliveryConfiguration?: LogDeliveryConfigurationType;
@@ -8530,47 +8607,6 @@ export declare class UnauthorizedException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<UnauthorizedException, __BaseException>);
 }
-/**
- * <p>Exception that is thrown when you attempt to perform an operation that isn't enabled
- *             for the user pool client.</p>
- * @public
- */
-export declare class UnsupportedOperationException extends __BaseException {
-    readonly name: "UnsupportedOperationException";
-    readonly $fault: "client";
-    /**
-     * @internal
-     */
-    constructor(opts: __ExceptionOptionType<UnsupportedOperationException, __BaseException>);
-}
-/**
- * <p>Exception that is thrown when an unsupported token is passed to an operation.</p>
- * @public
- */
-export declare class UnsupportedTokenTypeException extends __BaseException {
-    readonly name: "UnsupportedTokenTypeException";
-    readonly $fault: "client";
-    /**
-     * @internal
-     */
-    constructor(opts: __ExceptionOptionType<UnsupportedTokenTypeException, __BaseException>);
-}
-/**
- * @public
- */
-export interface SetLogDeliveryConfigurationRequest {
-    /**
-     * <p>The ID of the user pool where you want to configure detailed activity logging .</p>
-     * @public
-     */
-    UserPoolId: string | undefined;
-    /**
-     * <p>A collection of all of the detailed activity logging configurations for a user
-     *             pool.</p>
-     * @public
-     */
-    LogConfigurations: LogConfigurationType[] | undefined;
-}
 /**
  * @internal
  */

package/dist-types/models/models_1.d.ts

@@ -1,6 +1,46 @@
 import { ExceptionOptionType as __ExceptionOptionType } from "@smithy/smithy-client";
 import { CognitoIdentityProviderServiceException as __BaseException } from "./CognitoIdentityProviderServiceException";
-import { AccountRecoverySettingType, AccountTakeoverRiskConfigurationType, AdminCreateUserConfigType, AnalyticsConfigurationType, AnalyticsMetadataType, AttributeType, CodeDeliveryDetailsType, CompromisedCredentialsRiskConfigurationType, CustomDomainConfigType, DeletionProtectionType, DeviceConfigurationType, DeviceRememberedStatusType, EmailConfigurationType, ExplicitAuthFlowsType, FeedbackValueType, GroupType, IdentityProviderType, LambdaConfigType, LogDeliveryConfigurationType, MFAOptionType, OAuthFlowType, PreventUserExistenceErrorTypes, ResourceServerScopeType, ResourceServerType, RiskConfigurationType, RiskExceptionConfigurationType, SmsConfigurationType, SmsMfaConfigType, SMSMfaSettingsType, SoftwareTokenMfaConfigType, SoftwareTokenMfaSettingsType, TokenValidityUnitsType, UICustomizationType, UserAttributeUpdateSettingsType, UserContextDataType, UserImportJobType, UserPoolAddOnsType, UserPoolClientType, UserPoolMfaType, UserPoolPolicyType, VerificationMessageTemplateType, VerifiedAttributeType } from "./models_0";
+import { AccountRecoverySettingType, AccountTakeoverRiskConfigurationType, AdminCreateUserConfigType, AnalyticsConfigurationType, AnalyticsMetadataType, AttributeType, CodeDeliveryDetailsType, CompromisedCredentialsRiskConfigurationType, CustomDomainConfigType, DeletionProtectionType, DeviceConfigurationType, DeviceRememberedStatusType, EmailConfigurationType, ExplicitAuthFlowsType, FeedbackValueType, GroupType, IdentityProviderType, LambdaConfigType, LogConfigurationType, LogDeliveryConfigurationType, MFAOptionType, OAuthFlowType, PreventUserExistenceErrorTypes, ResourceServerScopeType, ResourceServerType, RiskConfigurationType, RiskExceptionConfigurationType, SmsConfigurationType, SmsMfaConfigType, SMSMfaSettingsType, SoftwareTokenMfaConfigType, SoftwareTokenMfaSettingsType, TokenValidityUnitsType, UICustomizationType, UserAttributeUpdateSettingsType, UserContextDataType, UserImportJobType, UserPoolAddOnsType, UserPoolClientType, UserPoolMfaType, UserPoolPolicyType, VerificationMessageTemplateType, VerifiedAttributeType } from "./models_0";
+/**
+ * <p>Exception that is thrown when you attempt to perform an operation that isn't enabled
+ *             for the user pool client.</p>
+ * @public
+ */
+export declare class UnsupportedOperationException extends __BaseException {
+    readonly name: "UnsupportedOperationException";
+    readonly $fault: "client";
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<UnsupportedOperationException, __BaseException>);
+}
+/**
+ * <p>Exception that is thrown when an unsupported token is passed to an operation.</p>
+ * @public
+ */
+export declare class UnsupportedTokenTypeException extends __BaseException {
+    readonly name: "UnsupportedTokenTypeException";
+    readonly $fault: "client";
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<UnsupportedTokenTypeException, __BaseException>);
+}
+/**
+ * @public
+ */
+export interface SetLogDeliveryConfigurationRequest {
+    /**
+     * <p>The ID of the user pool where you want to configure logging.</p>
+     * @public
+     */
+    UserPoolId: string | undefined;
+    /**
+     * <p>A collection of the logging configurations for a user pool.</p>
+     * @public
+     */
+    LogConfigurations: LogConfigurationType[] | undefined;
+}
 /**
  * @public
  */
@@ -334,7 +374,7 @@ export interface SignUpResponse {
      */
     CodeDeliveryDetails?: CodeDeliveryDetailsType;
     /**
-     * <p>The UUID of the authenticated user. This isn't the same as
+     * <p>The 128-bit ID of the authenticated user. This isn't the same as
      *             <code>username</code>.</p>
      * @public
      */
@@ -1288,6 +1328,7 @@ export interface UpdateUserPoolClientRequest {
      *                     existence related errors aren't prevented.</p>
      *             </li>
      *          </ul>
+     *          <p>Defaults to <code>LEGACY</code> when you don't provide a value.</p>
      * @public
      */
     PreventUserExistenceErrors?: PreventUserExistenceErrorTypes;

package/dist-types/ts3.4/commands/SetLogDeliveryConfigurationCommand.d.ts

@@ -5,8 +5,10 @@ import {
   ServiceInputTypes,
   ServiceOutputTypes,
 } from "../CognitoIdentityProviderClient";
-import { SetLogDeliveryConfigurationRequest } from "../models/models_0";
-import { SetLogDeliveryConfigurationResponse } from "../models/models_1";
+import {
+  SetLogDeliveryConfigurationRequest,
+  SetLogDeliveryConfigurationResponse,
+} from "../models/models_1";
 export { __MetadataBearer };
 export { $Command };
 export interface SetLogDeliveryConfigurationCommandInput

package/dist-types/ts3.4/models/models_0.d.ts

@@ -643,6 +643,16 @@ export declare class ExpiredCodeException extends __BaseException {
     opts: __ExceptionOptionType<ExpiredCodeException, __BaseException>
   );
 }
+export declare class PasswordHistoryPolicyViolationException extends __BaseException {
+  readonly name: "PasswordHistoryPolicyViolationException";
+  readonly $fault: "client";
+  constructor(
+    opts: __ExceptionOptionType<
+      PasswordHistoryPolicyViolationException,
+      __BaseException
+    >
+  );
+}
 export declare class SoftwareTokenMFANotFoundException extends __BaseException {
   readonly name: "SoftwareTokenMFANotFoundException";
   readonly $fault: "client";
@@ -997,6 +1007,7 @@ export interface PasswordPolicyType {
   RequireLowercase?: boolean;
   RequireNumbers?: boolean;
   RequireSymbols?: boolean;
+  PasswordHistorySize?: number;
   TemporaryPasswordValidityDays?: number;
 }
 export interface UserPoolPolicyType {
@@ -1421,18 +1432,28 @@ export interface CloudWatchLogsConfigurationType {
   LogGroupArn?: string;
 }
 export declare const EventSourceName: {
+  readonly USER_AUTH_EVENTS: "userAuthEvents";
   readonly USER_NOTIFICATION: "userNotification";
 };
 export type EventSourceName =
   (typeof EventSourceName)[keyof typeof EventSourceName];
+export interface FirehoseConfigurationType {
+  StreamArn?: string;
+}
 export declare const LogLevel: {
   readonly ERROR: "ERROR";
+  readonly INFO: "INFO";
 };
 export type LogLevel = (typeof LogLevel)[keyof typeof LogLevel];
+export interface S3ConfigurationType {
+  BucketArn?: string;
+}
 export interface LogConfigurationType {
   LogLevel: LogLevel | undefined;
   EventSource: EventSourceName | undefined;
   CloudWatchLogsConfiguration?: CloudWatchLogsConfigurationType;
+  S3Configuration?: S3ConfigurationType;
+  FirehoseConfiguration?: FirehoseConfigurationType;
 }
 export interface LogDeliveryConfigurationType {
   UserPoolId: string | undefined;
@@ -1661,24 +1682,6 @@ export declare class UnauthorizedException extends __BaseException {
     opts: __ExceptionOptionType<UnauthorizedException, __BaseException>
   );
 }
-export declare class UnsupportedOperationException extends __BaseException {
-  readonly name: "UnsupportedOperationException";
-  readonly $fault: "client";
-  constructor(
-    opts: __ExceptionOptionType<UnsupportedOperationException, __BaseException>
-  );
-}
-export declare class UnsupportedTokenTypeException extends __BaseException {
-  readonly name: "UnsupportedTokenTypeException";
-  readonly $fault: "client";
-  constructor(
-    opts: __ExceptionOptionType<UnsupportedTokenTypeException, __BaseException>
-  );
-}
-export interface SetLogDeliveryConfigurationRequest {
-  UserPoolId: string | undefined;
-  LogConfigurations: LogConfigurationType[] | undefined;
-}
 export declare const AdminAddUserToGroupRequestFilterSensitiveLog: (
   obj: AdminAddUserToGroupRequest
 ) => any;

package/dist-types/ts3.4/models/models_1.d.ts

@@ -19,6 +19,7 @@ import {
   GroupType,
   IdentityProviderType,
   LambdaConfigType,
+  LogConfigurationType,
   LogDeliveryConfigurationType,
   MFAOptionType,
   OAuthFlowType,
@@ -44,6 +45,24 @@ import {
   VerificationMessageTemplateType,
   VerifiedAttributeType,
 } from "./models_0";
+export declare class UnsupportedOperationException extends __BaseException {
+  readonly name: "UnsupportedOperationException";
+  readonly $fault: "client";
+  constructor(
+    opts: __ExceptionOptionType<UnsupportedOperationException, __BaseException>
+  );
+}
+export declare class UnsupportedTokenTypeException extends __BaseException {
+  readonly name: "UnsupportedTokenTypeException";
+  readonly $fault: "client";
+  constructor(
+    opts: __ExceptionOptionType<UnsupportedTokenTypeException, __BaseException>
+  );
+}
+export interface SetLogDeliveryConfigurationRequest {
+  UserPoolId: string | undefined;
+  LogConfigurations: LogConfigurationType[] | undefined;
+}
 export interface SetLogDeliveryConfigurationResponse {
   LogDeliveryConfiguration?: LogDeliveryConfigurationType;
 }

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-cognito-identity-provider",
   "description": "AWS SDK for JavaScript Cognito Identity Provider Client for Node.js, Browser and React Native",
-  "version": "3.623.0",
+  "version": "3.625.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-cognito-identity-provider",
@@ -20,10 +20,10 @@
   "dependencies": {
     "@aws-crypto/sha256-browser": "5.2.0",
     "@aws-crypto/sha256-js": "5.2.0",
-    "@aws-sdk/client-sso-oidc": "3.623.0",
-    "@aws-sdk/client-sts": "3.623.0",
-    "@aws-sdk/core": "3.623.0",
-    "@aws-sdk/credential-provider-node": "3.623.0",
+    "@aws-sdk/client-sso-oidc": "3.624.0",
+    "@aws-sdk/client-sts": "3.624.0",
+    "@aws-sdk/core": "3.624.0",
+    "@aws-sdk/credential-provider-node": "3.624.0",
     "@aws-sdk/middleware-host-header": "3.620.0",
     "@aws-sdk/middleware-logger": "3.609.0",
     "@aws-sdk/middleware-recursion-detection": "3.620.0",