@aws-sdk/client-cognito-identity-provider 3.650.0 → 3.651.0

package/dist-cjs/index.js

@@ -884,6 +884,7 @@ var ChallengeNameType = {
   CUSTOM_CHALLENGE: "CUSTOM_CHALLENGE",
   DEVICE_PASSWORD_VERIFIER: "DEVICE_PASSWORD_VERIFIER",
   DEVICE_SRP_AUTH: "DEVICE_SRP_AUTH",
+  EMAIL_OTP: "EMAIL_OTP",
   MFA_SETUP: "MFA_SETUP",
   NEW_PASSWORD_REQUIRED: "NEW_PASSWORD_REQUIRED",
   PASSWORD_VERIFIER: "PASSWORD_VERIFIER",
@@ -891,6 +892,23 @@ var ChallengeNameType = {
   SMS_MFA: "SMS_MFA",
   SOFTWARE_TOKEN_MFA: "SOFTWARE_TOKEN_MFA"
 };
+var _InvalidEmailRoleAccessPolicyException = class _InvalidEmailRoleAccessPolicyException extends CognitoIdentityProviderServiceException {
+  /**
+   * @internal
+   */
+  constructor(opts) {
+    super({
+      name: "InvalidEmailRoleAccessPolicyException",
+      $fault: "client",
+      ...opts
+    });
+    this.name = "InvalidEmailRoleAccessPolicyException";
+    this.$fault = "client";
+    Object.setPrototypeOf(this, _InvalidEmailRoleAccessPolicyException.prototype);
+  }
+};
+__name(_InvalidEmailRoleAccessPolicyException, "InvalidEmailRoleAccessPolicyException");
+var InvalidEmailRoleAccessPolicyException = _InvalidEmailRoleAccessPolicyException;
 var _MFAMethodNotFoundException = class _MFAMethodNotFoundException extends CognitoIdentityProviderServiceException {
   /**
    * @internal
@@ -993,23 +1011,6 @@ var _UserPoolAddOnNotEnabledException = class _UserPoolAddOnNotEnabledException
 };
 __name(_UserPoolAddOnNotEnabledException, "UserPoolAddOnNotEnabledException");
 var UserPoolAddOnNotEnabledException = _UserPoolAddOnNotEnabledException;
-var _InvalidEmailRoleAccessPolicyException = class _InvalidEmailRoleAccessPolicyException extends CognitoIdentityProviderServiceException {
-  /**
-   * @internal
-   */
-  constructor(opts) {
-    super({
-      name: "InvalidEmailRoleAccessPolicyException",
-      $fault: "client",
-      ...opts
-    });
-    this.name = "InvalidEmailRoleAccessPolicyException";
-    this.$fault = "client";
-    Object.setPrototypeOf(this, _InvalidEmailRoleAccessPolicyException.prototype);
-  }
-};
-__name(_InvalidEmailRoleAccessPolicyException, "InvalidEmailRoleAccessPolicyException");
-var InvalidEmailRoleAccessPolicyException = _InvalidEmailRoleAccessPolicyException;
 var _CodeMismatchException = class _CodeMismatchException extends CognitoIdentityProviderServiceException {
   /**
    * @internal
@@ -1682,19 +1683,6 @@ var RespondToAuthChallengeRequestFilterSensitiveLog = /* @__PURE__ */ __name((ob
   ...obj.ChallengeResponses && { ChallengeResponses: import_smithy_client.SENSITIVE_STRING },
   ...obj.UserContextData && { UserContextData: import_smithy_client.SENSITIVE_STRING }
 }), "RespondToAuthChallengeRequestFilterSensitiveLog");
-var RespondToAuthChallengeResponseFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
-  ...obj,
-  ...obj.Session && { Session: import_smithy_client.SENSITIVE_STRING },
-  ...obj.AuthenticationResult && {
-    AuthenticationResult: AuthenticationResultTypeFilterSensitiveLog(obj.AuthenticationResult)
-  }
-}), "RespondToAuthChallengeResponseFilterSensitiveLog");
-var RevokeTokenRequestFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
-  ...obj,
-  ...obj.Token && { Token: import_smithy_client.SENSITIVE_STRING },
-  ...obj.ClientId && { ClientId: import_smithy_client.SENSITIVE_STRING },
-  ...obj.ClientSecret && { ClientSecret: import_smithy_client.SENSITIVE_STRING }
-}), "RevokeTokenRequestFilterSensitiveLog");
 
 // src/models/models_1.ts
 
@@ -1770,6 +1758,19 @@ var VerifySoftwareTokenResponseType = {
   ERROR: "ERROR",
   SUCCESS: "SUCCESS"
 };
+var RespondToAuthChallengeResponseFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
+  ...obj,
+  ...obj.Session && { Session: import_smithy_client.SENSITIVE_STRING },
+  ...obj.AuthenticationResult && {
+    AuthenticationResult: AuthenticationResultTypeFilterSensitiveLog(obj.AuthenticationResult)
+  }
+}), "RespondToAuthChallengeResponseFilterSensitiveLog");
+var RevokeTokenRequestFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
+  ...obj,
+  ...obj.Token && { Token: import_smithy_client.SENSITIVE_STRING },
+  ...obj.ClientId && { ClientId: import_smithy_client.SENSITIVE_STRING },
+  ...obj.ClientSecret && { ClientSecret: import_smithy_client.SENSITIVE_STRING }
+}), "RevokeTokenRequestFilterSensitiveLog");
 var SetRiskConfigurationRequestFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
   ...obj.ClientId && { ClientId: import_smithy_client.SENSITIVE_STRING }
@@ -3842,6 +3843,9 @@ var de_CommandError = /* @__PURE__ */ __name(async (output, context) => {
     case "InvalidUserPoolConfigurationException":
     case "com.amazonaws.cognitoidentityprovider#InvalidUserPoolConfigurationException":
       throw await de_InvalidUserPoolConfigurationExceptionRes(parsedOutput, context);
+    case "InvalidEmailRoleAccessPolicyException":
+    case "com.amazonaws.cognitoidentityprovider#InvalidEmailRoleAccessPolicyException":
+      throw await de_InvalidEmailRoleAccessPolicyExceptionRes(parsedOutput, context);
     case "MFAMethodNotFoundException":
     case "com.amazonaws.cognitoidentityprovider#MFAMethodNotFoundException":
       throw await de_MFAMethodNotFoundExceptionRes(parsedOutput, context);
@@ -3854,9 +3858,6 @@ var de_CommandError = /* @__PURE__ */ __name(async (output, context) => {
     case "UserPoolAddOnNotEnabledException":
     case "com.amazonaws.cognitoidentityprovider#UserPoolAddOnNotEnabledException":
       throw await de_UserPoolAddOnNotEnabledExceptionRes(parsedOutput, context);
-    case "InvalidEmailRoleAccessPolicyException":
-    case "com.amazonaws.cognitoidentityprovider#InvalidEmailRoleAccessPolicyException":
-      throw await de_InvalidEmailRoleAccessPolicyExceptionRes(parsedOutput, context);
     case "CodeMismatchException":
     case "com.amazonaws.cognitoidentityprovider#CodeMismatchException":
       throw await de_CodeMismatchExceptionRes(parsedOutput, context);
@@ -6482,6 +6483,7 @@ var paginateListUsers = (0, import_core.createPaginator)(CognitoIdentityProvider
   InvalidUserPoolConfigurationException,
   AuthFlowType,
   ChallengeNameType,
+  InvalidEmailRoleAccessPolicyException,
   MFAMethodNotFoundException,
   PasswordResetRequiredException,
   UserNotConfirmedException,
@@ -6493,7 +6495,6 @@ var paginateListUsers = (0, import_core.createPaginator)(CognitoIdentityProvider
   RiskLevelType,
   EventType,
   UserPoolAddOnNotEnabledException,
-  InvalidEmailRoleAccessPolicyException,
   CodeMismatchException,
   ExpiredCodeException,
   PasswordHistoryPolicyViolationException,
@@ -6603,13 +6604,13 @@ var paginateListUsers = (0, import_core.createPaginator)(CognitoIdentityProvider
   ListUsersInGroupResponseFilterSensitiveLog,
   ResendConfirmationCodeRequestFilterSensitiveLog,
   RespondToAuthChallengeRequestFilterSensitiveLog,
-  RespondToAuthChallengeResponseFilterSensitiveLog,
-  RevokeTokenRequestFilterSensitiveLog,
   UnauthorizedException,
   UnsupportedOperationException,
   UnsupportedTokenTypeException,
   EnableSoftwareTokenMFAException,
   VerifySoftwareTokenResponseType,
+  RespondToAuthChallengeResponseFilterSensitiveLog,
+  RevokeTokenRequestFilterSensitiveLog,
   SetRiskConfigurationRequestFilterSensitiveLog,
   SetRiskConfigurationResponseFilterSensitiveLog,
   SetUICustomizationRequestFilterSensitiveLog,

package/dist-es/commands/RespondToAuthChallengeCommand.js

@@ -2,7 +2,8 @@ import { getEndpointPlugin } from "@smithy/middleware-endpoint";
 import { getSerdePlugin } from "@smithy/middleware-serde";
 import { Command as $Command } from "@smithy/smithy-client";
 import { commonParams } from "../endpoint/EndpointParameters";
-import { RespondToAuthChallengeRequestFilterSensitiveLog, RespondToAuthChallengeResponseFilterSensitiveLog, } from "../models/models_0";
+import { RespondToAuthChallengeRequestFilterSensitiveLog } from "../models/models_0";
+import { RespondToAuthChallengeResponseFilterSensitiveLog } from "../models/models_1";
 import { de_RespondToAuthChallengeCommand, se_RespondToAuthChallengeCommand } from "../protocols/Aws_json1_1";
 export { $Command };
 export class RespondToAuthChallengeCommand extends $Command

package/dist-es/commands/RevokeTokenCommand.js

@@ -2,7 +2,7 @@ import { getEndpointPlugin } from "@smithy/middleware-endpoint";
 import { getSerdePlugin } from "@smithy/middleware-serde";
 import { Command as $Command } from "@smithy/smithy-client";
 import { commonParams } from "../endpoint/EndpointParameters";
-import { RevokeTokenRequestFilterSensitiveLog } from "../models/models_0";
+import { RevokeTokenRequestFilterSensitiveLog } from "../models/models_1";
 import { de_RevokeTokenCommand, se_RevokeTokenCommand } from "../protocols/Aws_json1_1";
 export { $Command };
 export class RevokeTokenCommand extends $Command

package/dist-es/models/models_0.js

@@ -301,6 +301,7 @@ export const ChallengeNameType = {
     CUSTOM_CHALLENGE: "CUSTOM_CHALLENGE",
     DEVICE_PASSWORD_VERIFIER: "DEVICE_PASSWORD_VERIFIER",
     DEVICE_SRP_AUTH: "DEVICE_SRP_AUTH",
+    EMAIL_OTP: "EMAIL_OTP",
     MFA_SETUP: "MFA_SETUP",
     NEW_PASSWORD_REQUIRED: "NEW_PASSWORD_REQUIRED",
     PASSWORD_VERIFIER: "PASSWORD_VERIFIER",
@@ -308,6 +309,18 @@ export const ChallengeNameType = {
     SMS_MFA: "SMS_MFA",
     SOFTWARE_TOKEN_MFA: "SOFTWARE_TOKEN_MFA",
 };
+export class InvalidEmailRoleAccessPolicyException extends __BaseException {
+    constructor(opts) {
+        super({
+            name: "InvalidEmailRoleAccessPolicyException",
+            $fault: "client",
+            ...opts,
+        });
+        this.name = "InvalidEmailRoleAccessPolicyException";
+        this.$fault = "client";
+        Object.setPrototypeOf(this, InvalidEmailRoleAccessPolicyException.prototype);
+    }
+}
 export class MFAMethodNotFoundException extends __BaseException {
     constructor(opts) {
         super({
@@ -390,18 +403,6 @@ export class UserPoolAddOnNotEnabledException extends __BaseException {
         Object.setPrototypeOf(this, UserPoolAddOnNotEnabledException.prototype);
     }
 }
-export class InvalidEmailRoleAccessPolicyException extends __BaseException {
-    constructor(opts) {
-        super({
-            name: "InvalidEmailRoleAccessPolicyException",
-            $fault: "client",
-            ...opts,
-        });
-        this.name = "InvalidEmailRoleAccessPolicyException";
-        this.$fault = "client";
-        Object.setPrototypeOf(this, InvalidEmailRoleAccessPolicyException.prototype);
-    }
-}
 export class CodeMismatchException extends __BaseException {
     constructor(opts) {
         super({
@@ -1014,16 +1015,3 @@ export const RespondToAuthChallengeRequestFilterSensitiveLog = (obj) => ({
     ...(obj.ChallengeResponses && { ChallengeResponses: SENSITIVE_STRING }),
     ...(obj.UserContextData && { UserContextData: SENSITIVE_STRING }),
 });
-export const RespondToAuthChallengeResponseFilterSensitiveLog = (obj) => ({
-    ...obj,
-    ...(obj.Session && { Session: SENSITIVE_STRING }),
-    ...(obj.AuthenticationResult && {
-        AuthenticationResult: AuthenticationResultTypeFilterSensitiveLog(obj.AuthenticationResult),
-    }),
-});
-export const RevokeTokenRequestFilterSensitiveLog = (obj) => ({
-    ...obj,
-    ...(obj.Token && { Token: SENSITIVE_STRING }),
-    ...(obj.ClientId && { ClientId: SENSITIVE_STRING }),
-    ...(obj.ClientSecret && { ClientSecret: SENSITIVE_STRING }),
-});

package/dist-es/models/models_1.js

@@ -1,6 +1,6 @@
 import { SENSITIVE_STRING } from "@smithy/smithy-client";
 import { CognitoIdentityProviderServiceException as __BaseException } from "./CognitoIdentityProviderServiceException";
-import { AttributeTypeFilterSensitiveLog, RiskConfigurationTypeFilterSensitiveLog, UICustomizationTypeFilterSensitiveLog, UserPoolClientTypeFilterSensitiveLog, } from "./models_0";
+import { AttributeTypeFilterSensitiveLog, AuthenticationResultTypeFilterSensitiveLog, RiskConfigurationTypeFilterSensitiveLog, UICustomizationTypeFilterSensitiveLog, UserPoolClientTypeFilterSensitiveLog, } from "./models_0";
 export class UnauthorizedException extends __BaseException {
     constructor(opts) {
         super({
@@ -53,6 +53,19 @@ export const VerifySoftwareTokenResponseType = {
     ERROR: "ERROR",
     SUCCESS: "SUCCESS",
 };
+export const RespondToAuthChallengeResponseFilterSensitiveLog = (obj) => ({
+    ...obj,
+    ...(obj.Session && { Session: SENSITIVE_STRING }),
+    ...(obj.AuthenticationResult && {
+        AuthenticationResult: AuthenticationResultTypeFilterSensitiveLog(obj.AuthenticationResult),
+    }),
+});
+export const RevokeTokenRequestFilterSensitiveLog = (obj) => ({
+    ...obj,
+    ...(obj.Token && { Token: SENSITIVE_STRING }),
+    ...(obj.ClientId && { ClientId: SENSITIVE_STRING }),
+    ...(obj.ClientSecret && { ClientSecret: SENSITIVE_STRING }),
+});
 export const SetRiskConfigurationRequestFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.ClientId && { ClientId: SENSITIVE_STRING }),

package/dist-es/protocols/Aws_json1_1.js

@@ -1998,6 +1998,9 @@ const de_CommandError = async (output, context) => {
         case "InvalidUserPoolConfigurationException":
         case "com.amazonaws.cognitoidentityprovider#InvalidUserPoolConfigurationException":
             throw await de_InvalidUserPoolConfigurationExceptionRes(parsedOutput, context);
+        case "InvalidEmailRoleAccessPolicyException":
+        case "com.amazonaws.cognitoidentityprovider#InvalidEmailRoleAccessPolicyException":
+            throw await de_InvalidEmailRoleAccessPolicyExceptionRes(parsedOutput, context);
         case "MFAMethodNotFoundException":
         case "com.amazonaws.cognitoidentityprovider#MFAMethodNotFoundException":
             throw await de_MFAMethodNotFoundExceptionRes(parsedOutput, context);
@@ -2010,9 +2013,6 @@ const de_CommandError = async (output, context) => {
         case "UserPoolAddOnNotEnabledException":
         case "com.amazonaws.cognitoidentityprovider#UserPoolAddOnNotEnabledException":
             throw await de_UserPoolAddOnNotEnabledExceptionRes(parsedOutput, context);
-        case "InvalidEmailRoleAccessPolicyException":
-        case "com.amazonaws.cognitoidentityprovider#InvalidEmailRoleAccessPolicyException":
-            throw await de_InvalidEmailRoleAccessPolicyExceptionRes(parsedOutput, context);
         case "CodeMismatchException":
         case "com.amazonaws.cognitoidentityprovider#CodeMismatchException":
             throw await de_CodeMismatchExceptionRes(parsedOutput, context);

package/dist-types/commands/AdminCreateUserCommand.d.ts

@@ -38,7 +38,7 @@ declare const AdminCreateUserCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>

package/dist-types/commands/AdminInitiateAuthCommand.d.ts

@@ -36,7 +36,7 @@ declare const AdminInitiateAuthCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>
@@ -100,7 +100,7 @@ declare const AdminInitiateAuthCommand_base: {
  * const command = new AdminInitiateAuthCommand(input);
  * const response = await client.send(command);
  * // { // AdminInitiateAuthResponse
- * //   ChallengeName: "SMS_MFA" || "SOFTWARE_TOKEN_MFA" || "SELECT_MFA_TYPE" || "MFA_SETUP" || "PASSWORD_VERIFIER" || "CUSTOM_CHALLENGE" || "DEVICE_SRP_AUTH" || "DEVICE_PASSWORD_VERIFIER" || "ADMIN_NO_SRP_AUTH" || "NEW_PASSWORD_REQUIRED",
+ * //   ChallengeName: "SMS_MFA" || "EMAIL_OTP" || "SOFTWARE_TOKEN_MFA" || "SELECT_MFA_TYPE" || "MFA_SETUP" || "PASSWORD_VERIFIER" || "CUSTOM_CHALLENGE" || "DEVICE_SRP_AUTH" || "DEVICE_PASSWORD_VERIFIER" || "ADMIN_NO_SRP_AUTH" || "NEW_PASSWORD_REQUIRED",
  * //   Session: "STRING_VALUE",
  * //   ChallengeParameters: { // ChallengeParametersType
  * //     "<keys>": "STRING_VALUE",
@@ -129,6 +129,10 @@ declare const AdminInitiateAuthCommand_base: {
  * @throws {@link InternalErrorException} (server fault)
  *  <p>This exception is thrown when Amazon Cognito encounters an internal error.</p>
  *
+ * @throws {@link InvalidEmailRoleAccessPolicyException} (client fault)
+ *  <p>This exception is thrown when Amazon Cognito isn't allowed to use your email identity. HTTP
+ *             status code: 400.</p>
+ *
  * @throws {@link InvalidLambdaResponseException} (client fault)
  *  <p>This exception is thrown when Amazon Cognito encounters an invalid Lambda response.</p>
  *

package/dist-types/commands/AdminResetUserPasswordCommand.d.ts

@@ -39,7 +39,7 @@ declare const AdminResetUserPasswordCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>

package/dist-types/commands/AdminRespondToAuthChallengeCommand.d.ts

@@ -42,7 +42,7 @@ declare const AdminRespondToAuthChallengeCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>
@@ -80,7 +80,7 @@ declare const AdminRespondToAuthChallengeCommand_base: {
  * const input = { // AdminRespondToAuthChallengeRequest
  *   UserPoolId: "STRING_VALUE", // required
  *   ClientId: "STRING_VALUE", // required
- *   ChallengeName: "SMS_MFA" || "SOFTWARE_TOKEN_MFA" || "SELECT_MFA_TYPE" || "MFA_SETUP" || "PASSWORD_VERIFIER" || "CUSTOM_CHALLENGE" || "DEVICE_SRP_AUTH" || "DEVICE_PASSWORD_VERIFIER" || "ADMIN_NO_SRP_AUTH" || "NEW_PASSWORD_REQUIRED", // required
+ *   ChallengeName: "SMS_MFA" || "EMAIL_OTP" || "SOFTWARE_TOKEN_MFA" || "SELECT_MFA_TYPE" || "MFA_SETUP" || "PASSWORD_VERIFIER" || "CUSTOM_CHALLENGE" || "DEVICE_SRP_AUTH" || "DEVICE_PASSWORD_VERIFIER" || "ADMIN_NO_SRP_AUTH" || "NEW_PASSWORD_REQUIRED", // required
  *   ChallengeResponses: { // ChallengeResponsesType
  *     "<keys>": "STRING_VALUE",
  *   },
@@ -107,7 +107,7 @@ declare const AdminRespondToAuthChallengeCommand_base: {
  * const command = new AdminRespondToAuthChallengeCommand(input);
  * const response = await client.send(command);
  * // { // AdminRespondToAuthChallengeResponse
- * //   ChallengeName: "SMS_MFA" || "SOFTWARE_TOKEN_MFA" || "SELECT_MFA_TYPE" || "MFA_SETUP" || "PASSWORD_VERIFIER" || "CUSTOM_CHALLENGE" || "DEVICE_SRP_AUTH" || "DEVICE_PASSWORD_VERIFIER" || "ADMIN_NO_SRP_AUTH" || "NEW_PASSWORD_REQUIRED",
+ * //   ChallengeName: "SMS_MFA" || "EMAIL_OTP" || "SOFTWARE_TOKEN_MFA" || "SELECT_MFA_TYPE" || "MFA_SETUP" || "PASSWORD_VERIFIER" || "CUSTOM_CHALLENGE" || "DEVICE_SRP_AUTH" || "DEVICE_PASSWORD_VERIFIER" || "ADMIN_NO_SRP_AUTH" || "NEW_PASSWORD_REQUIRED",
  * //   Session: "STRING_VALUE",
  * //   ChallengeParameters: { // ChallengeParametersType
  * //     "<keys>": "STRING_VALUE",
@@ -150,6 +150,10 @@ declare const AdminRespondToAuthChallengeCommand_base: {
  * @throws {@link InternalErrorException} (server fault)
  *  <p>This exception is thrown when Amazon Cognito encounters an internal error.</p>
  *
+ * @throws {@link InvalidEmailRoleAccessPolicyException} (client fault)
+ *  <p>This exception is thrown when Amazon Cognito isn't allowed to use your email identity. HTTP
+ *             status code: 400.</p>
+ *
  * @throws {@link InvalidLambdaResponseException} (client fault)
  *  <p>This exception is thrown when Amazon Cognito encounters an invalid Lambda response.</p>
  *

package/dist-types/commands/AdminSetUserMFAPreferenceCommand.d.ts

@@ -27,11 +27,11 @@ declare const AdminSetUserMFAPreferenceCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>The user's multi-factor authentication (MFA) preference, including which MFA options
- *             are activated, and if any are preferred. Only one factor can be set as preferred. The
- *             preferred MFA factor will be used to authenticate a user if multiple factors are
- *             activated. If multiple options are activated and no preference is set, a challenge to
- *             choose an MFA option will be returned during sign-in.</p>
+ * <p>Sets the user's multi-factor authentication (MFA) preference, including which MFA
+ *             options are activated, and if any are preferred. Only one factor can be set as
+ *             preferred. The preferred MFA factor will be used to authenticate a user if multiple
+ *             factors are activated. If multiple options are activated and no preference is set, a
+ *             challenge to choose an MFA option will be returned during sign-in.</p>
  *          <note>
  *             <p>Amazon Cognito evaluates Identity and Access Management (IAM) policies in requests for this API operation. For
  *     this operation, you must use IAM credentials to authorize requests, and you must
@@ -67,6 +67,10 @@ declare const AdminSetUserMFAPreferenceCommand_base: {
  *     Enabled: true || false,
  *     PreferredMfa: true || false,
  *   },
+ *   EmailMfaSettings: { // EmailMfaSettingsType
+ *     Enabled: true || false,
+ *     PreferredMfa: true || false,
+ *   },
  *   Username: "STRING_VALUE", // required
  *   UserPoolId: "STRING_VALUE", // required
  * };

package/dist-types/commands/AdminUpdateUserAttributesCommand.d.ts

@@ -35,7 +35,7 @@ declare const AdminUpdateUserAttributesCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>

package/dist-types/commands/CreateUserPoolCommand.d.ts

@@ -35,7 +35,7 @@ declare const CreateUserPoolCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>

package/dist-types/commands/ForgotPasswordCommand.d.ts

@@ -53,7 +53,7 @@ declare const ForgotPasswordCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>

package/dist-types/commands/GetUserAttributeVerificationCodeCommand.d.ts

@@ -45,7 +45,7 @@ declare const GetUserAttributeVerificationCodeCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>

package/dist-types/commands/GetUserPoolMfaConfigCommand.d.ts

@@ -51,6 +51,10 @@ declare const GetUserPoolMfaConfigCommand_base: {
  * //   SoftwareTokenMfaConfiguration: { // SoftwareTokenMfaConfigType
  * //     Enabled: true || false,
  * //   },
+ * //   EmailMfaConfiguration: { // EmailMfaConfigType
+ * //     Message: "STRING_VALUE",
+ * //     Subject: "STRING_VALUE",
+ * //   },
  * //   MfaConfiguration: "OFF" || "ON" || "OPTIONAL",
  * // };
  *

package/dist-types/commands/InitiateAuthCommand.d.ts

@@ -43,7 +43,7 @@ declare const InitiateAuthCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>
@@ -78,7 +78,7 @@ declare const InitiateAuthCommand_base: {
  * const command = new InitiateAuthCommand(input);
  * const response = await client.send(command);
  * // { // InitiateAuthResponse
- * //   ChallengeName: "SMS_MFA" || "SOFTWARE_TOKEN_MFA" || "SELECT_MFA_TYPE" || "MFA_SETUP" || "PASSWORD_VERIFIER" || "CUSTOM_CHALLENGE" || "DEVICE_SRP_AUTH" || "DEVICE_PASSWORD_VERIFIER" || "ADMIN_NO_SRP_AUTH" || "NEW_PASSWORD_REQUIRED",
+ * //   ChallengeName: "SMS_MFA" || "EMAIL_OTP" || "SOFTWARE_TOKEN_MFA" || "SELECT_MFA_TYPE" || "MFA_SETUP" || "PASSWORD_VERIFIER" || "CUSTOM_CHALLENGE" || "DEVICE_SRP_AUTH" || "DEVICE_PASSWORD_VERIFIER" || "ADMIN_NO_SRP_AUTH" || "NEW_PASSWORD_REQUIRED",
  * //   Session: "STRING_VALUE",
  * //   ChallengeParameters: { // ChallengeParametersType
  * //     "<keys>": "STRING_VALUE",
@@ -111,6 +111,10 @@ declare const InitiateAuthCommand_base: {
  * @throws {@link InternalErrorException} (server fault)
  *  <p>This exception is thrown when Amazon Cognito encounters an internal error.</p>
  *
+ * @throws {@link InvalidEmailRoleAccessPolicyException} (client fault)
+ *  <p>This exception is thrown when Amazon Cognito isn't allowed to use your email identity. HTTP
+ *             status code: 400.</p>
+ *
  * @throws {@link InvalidLambdaResponseException} (client fault)
  *  <p>This exception is thrown when Amazon Cognito encounters an invalid Lambda response.</p>
  *

package/dist-types/commands/ResendConfirmationCodeCommand.d.ts

@@ -43,7 +43,7 @@ declare const ResendConfirmationCodeCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>

package/dist-types/commands/RespondToAuthChallengeCommand.d.ts

@@ -1,7 +1,8 @@
 import { Command as $Command } from "@smithy/smithy-client";
 import { MetadataBearer as __MetadataBearer } from "@smithy/types";
 import { CognitoIdentityProviderClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../CognitoIdentityProviderClient";
-import { RespondToAuthChallengeRequest, RespondToAuthChallengeResponse } from "../models/models_0";
+import { RespondToAuthChallengeRequest } from "../models/models_0";
+import { RespondToAuthChallengeResponse } from "../models/models_1";
 /**
  * @public
  */
@@ -48,7 +49,7 @@ declare const RespondToAuthChallengeCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>
@@ -65,7 +66,7 @@ declare const RespondToAuthChallengeCommand_base: {
  * const client = new CognitoIdentityProviderClient(config);
  * const input = { // RespondToAuthChallengeRequest
  *   ClientId: "STRING_VALUE", // required
- *   ChallengeName: "SMS_MFA" || "SOFTWARE_TOKEN_MFA" || "SELECT_MFA_TYPE" || "MFA_SETUP" || "PASSWORD_VERIFIER" || "CUSTOM_CHALLENGE" || "DEVICE_SRP_AUTH" || "DEVICE_PASSWORD_VERIFIER" || "ADMIN_NO_SRP_AUTH" || "NEW_PASSWORD_REQUIRED", // required
+ *   ChallengeName: "SMS_MFA" || "EMAIL_OTP" || "SOFTWARE_TOKEN_MFA" || "SELECT_MFA_TYPE" || "MFA_SETUP" || "PASSWORD_VERIFIER" || "CUSTOM_CHALLENGE" || "DEVICE_SRP_AUTH" || "DEVICE_PASSWORD_VERIFIER" || "ADMIN_NO_SRP_AUTH" || "NEW_PASSWORD_REQUIRED", // required
  *   Session: "STRING_VALUE",
  *   ChallengeResponses: { // ChallengeResponsesType
  *     "<keys>": "STRING_VALUE",
@@ -84,7 +85,7 @@ declare const RespondToAuthChallengeCommand_base: {
  * const command = new RespondToAuthChallengeCommand(input);
  * const response = await client.send(command);
  * // { // RespondToAuthChallengeResponse
- * //   ChallengeName: "SMS_MFA" || "SOFTWARE_TOKEN_MFA" || "SELECT_MFA_TYPE" || "MFA_SETUP" || "PASSWORD_VERIFIER" || "CUSTOM_CHALLENGE" || "DEVICE_SRP_AUTH" || "DEVICE_PASSWORD_VERIFIER" || "ADMIN_NO_SRP_AUTH" || "NEW_PASSWORD_REQUIRED",
+ * //   ChallengeName: "SMS_MFA" || "EMAIL_OTP" || "SOFTWARE_TOKEN_MFA" || "SELECT_MFA_TYPE" || "MFA_SETUP" || "PASSWORD_VERIFIER" || "CUSTOM_CHALLENGE" || "DEVICE_SRP_AUTH" || "DEVICE_PASSWORD_VERIFIER" || "ADMIN_NO_SRP_AUTH" || "NEW_PASSWORD_REQUIRED",
  * //   Session: "STRING_VALUE",
  * //   ChallengeParameters: { // ChallengeParametersType
  * //     "<keys>": "STRING_VALUE",
@@ -131,6 +132,10 @@ declare const RespondToAuthChallengeCommand_base: {
  * @throws {@link InternalErrorException} (server fault)
  *  <p>This exception is thrown when Amazon Cognito encounters an internal error.</p>
  *
+ * @throws {@link InvalidEmailRoleAccessPolicyException} (client fault)
+ *  <p>This exception is thrown when Amazon Cognito isn't allowed to use your email identity. HTTP
+ *             status code: 400.</p>
+ *
  * @throws {@link InvalidLambdaResponseException} (client fault)
  *  <p>This exception is thrown when Amazon Cognito encounters an invalid Lambda response.</p>
  *

package/dist-types/commands/RevokeTokenCommand.d.ts

@@ -1,8 +1,7 @@
 import { Command as $Command } from "@smithy/smithy-client";
 import { MetadataBearer as __MetadataBearer } from "@smithy/types";
 import { CognitoIdentityProviderClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../CognitoIdentityProviderClient";
-import { RevokeTokenRequest } from "../models/models_0";
-import { RevokeTokenResponse } from "../models/models_1";
+import { RevokeTokenRequest, RevokeTokenResponse } from "../models/models_1";
 /**
  * @public
  */

package/dist-types/commands/SetUserMFAPreferenceCommand.d.ts

@@ -58,6 +58,10 @@ declare const SetUserMFAPreferenceCommand_base: {
  *     Enabled: true || false,
  *     PreferredMfa: true || false,
  *   },
+ *   EmailMfaSettings: { // EmailMfaSettingsType
+ *     Enabled: true || false,
+ *     PreferredMfa: true || false,
+ *   },
  *   AccessToken: "STRING_VALUE", // required
  * };
  * const command = new SetUserMFAPreferenceCommand(input);

package/dist-types/commands/SetUserPoolMfaConfigCommand.d.ts

@@ -36,7 +36,7 @@ declare const SetUserPoolMfaConfigCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>
@@ -64,6 +64,10 @@ declare const SetUserPoolMfaConfigCommand_base: {
  *   SoftwareTokenMfaConfiguration: { // SoftwareTokenMfaConfigType
  *     Enabled: true || false,
  *   },
+ *   EmailMfaConfiguration: { // EmailMfaConfigType
+ *     Message: "STRING_VALUE",
+ *     Subject: "STRING_VALUE",
+ *   },
  *   MfaConfiguration: "OFF" || "ON" || "OPTIONAL",
  * };
  * const command = new SetUserPoolMfaConfigCommand(input);
@@ -80,6 +84,10 @@ declare const SetUserPoolMfaConfigCommand_base: {
  * //   SoftwareTokenMfaConfiguration: { // SoftwareTokenMfaConfigType
  * //     Enabled: true || false,
  * //   },
+ * //   EmailMfaConfiguration: { // EmailMfaConfigType
+ * //     Message: "STRING_VALUE",
+ * //     Subject: "STRING_VALUE",
+ * //   },
  * //   MfaConfiguration: "OFF" || "ON" || "OPTIONAL",
  * // };
  *

package/dist-types/commands/SignUpCommand.d.ts

@@ -43,7 +43,7 @@ declare const SignUpCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>

package/dist-types/commands/UpdateUserAttributesCommand.d.ts

@@ -47,7 +47,7 @@ declare const UpdateUserAttributesCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>

package/dist-types/commands/UpdateUserPoolCommand.d.ts

@@ -35,7 +35,7 @@ declare const UpdateUserPoolCommand_base: {
  *             Amazon Cognito uses the registered number automatically. Otherwise, Amazon Cognito users who must
  *             receive SMS messages might not be able to sign up, activate their accounts, or sign
  *             in.</p>
- *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Services service,
+ *             <p>If you have never used SMS text messages with Amazon Cognito or any other Amazon Web Servicesservice,
  *             Amazon Simple Notification Service might place your account in the SMS sandbox. In <i>
  *                   <a href="https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox.html">sandbox
  *                     mode</a>