@aws-sdk/client-cognito-identity 3.758.0 → 3.768.0

package/README.md

@@ -16,11 +16,12 @@ application.</p>
 more third-party identity providers (Facebook, Google, or Login with Amazon) or an Amazon
 Cognito user pool, and you can also choose to support unauthenticated access from your app.
 Cognito delivers a unique identifier for each user and acts as an OpenID token provider
-trusted by AWS Security Token Service (STS) to access temporary, limited-privilege AWS
-credentials.</p>
+trusted by Security Token Service (STS) to access temporary, limited-privilege Amazon Web Services credentials.</p>
 <p>For a description of the authentication flow from the Amazon Cognito Developer Guide
-see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html">Authentication Flow</a>.</p>
-<p>For more information see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-identity.html">Amazon Cognito Federated Identities</a>.</p>
+see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html">Authentication
+Flow</a>.</p>
+<p>For more information see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-identity.html">Amazon Cognito Federated
+Identities</a>.</p>
 
 ## Installing
 

package/dist-cjs/index.js

@@ -19,8 +19,8 @@ var __copyProps = (to, from, except, desc) => {
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 
 // src/index.ts
-var src_exports = {};
-__export(src_exports, {
+var index_exports = {};
+__export(index_exports, {
   AmbiguousRoleResolutionType: () => AmbiguousRoleResolutionType,
   CognitoIdentity: () => CognitoIdentity,
   CognitoIdentityClient: () => CognitoIdentityClient,
@@ -74,7 +74,7 @@ __export(src_exports, {
   __Client: () => import_smithy_client.Client,
   paginateListIdentityPools: () => paginateListIdentityPools
 });
-module.exports = __toCommonJS(src_exports);
+module.exports = __toCommonJS(index_exports);
 
 // src/CognitoIdentityClient.ts
 var import_middleware_host_header = require("@aws-sdk/middleware-host-header");
@@ -201,9 +201,9 @@ var CognitoIdentityClient = class extends import_smithy_client.Client {
     this.middlewareStack.use(
       (0, import_core.getHttpAuthSchemeEndpointRuleSetPlugin)(this.config, {
         httpAuthSchemeParametersProvider: import_httpAuthSchemeProvider.defaultCognitoIdentityHttpAuthSchemeParametersProvider,
-        identityProviderConfigProvider: async (config) => new import_core.DefaultIdentityProviderConfig({
+        identityProviderConfigProvider: /* @__PURE__ */ __name(async (config) => new import_core.DefaultIdentityProviderConfig({
           "aws.auth#sigv4": config.credentials
-        })
+        }), "identityProviderConfigProvider")
       })
     );
     this.middlewareStack.use((0, import_core.getHttpSigningPlugin)(this.config));
@@ -1078,14 +1078,14 @@ var de_TooManyRequestsExceptionRes = /* @__PURE__ */ __name(async (parsedOutput,
 var de_Credentials = /* @__PURE__ */ __name((output, context) => {
   return (0, import_smithy_client.take)(output, {
     AccessKeyId: import_smithy_client.expectString,
-    Expiration: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseEpochTimestamp)((0, import_smithy_client.expectNumber)(_))),
+    Expiration: /* @__PURE__ */ __name((_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseEpochTimestamp)((0, import_smithy_client.expectNumber)(_))), "Expiration"),
     SecretKey: import_smithy_client.expectString,
     SessionToken: import_smithy_client.expectString
   });
 }, "de_Credentials");
 var de_GetCredentialsForIdentityResponse = /* @__PURE__ */ __name((output, context) => {
   return (0, import_smithy_client.take)(output, {
-    Credentials: (_) => de_Credentials(_, context),
+    Credentials: /* @__PURE__ */ __name((_) => de_Credentials(_, context), "Credentials"),
     IdentityId: import_smithy_client.expectString
   });
 }, "de_GetCredentialsForIdentityResponse");
@@ -1097,15 +1097,15 @@ var de_IdentitiesList = /* @__PURE__ */ __name((output, context) => {
 }, "de_IdentitiesList");
 var de_IdentityDescription = /* @__PURE__ */ __name((output, context) => {
   return (0, import_smithy_client.take)(output, {
-    CreationDate: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseEpochTimestamp)((0, import_smithy_client.expectNumber)(_))),
+    CreationDate: /* @__PURE__ */ __name((_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseEpochTimestamp)((0, import_smithy_client.expectNumber)(_))), "CreationDate"),
     IdentityId: import_smithy_client.expectString,
-    LastModifiedDate: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseEpochTimestamp)((0, import_smithy_client.expectNumber)(_))),
+    LastModifiedDate: /* @__PURE__ */ __name((_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseEpochTimestamp)((0, import_smithy_client.expectNumber)(_))), "LastModifiedDate"),
     Logins: import_smithy_client._json
   });
 }, "de_IdentityDescription");
 var de_ListIdentitiesResponse = /* @__PURE__ */ __name((output, context) => {
   return (0, import_smithy_client.take)(output, {
-    Identities: (_) => de_IdentitiesList(_, context),
+    Identities: /* @__PURE__ */ __name((_) => de_IdentitiesList(_, context), "Identities"),
     IdentityPoolId: import_smithy_client.expectString,
     NextToken: import_smithy_client.expectString
   });

package/dist-types/CognitoIdentity.d.ts

@@ -173,11 +173,12 @@ export interface CognitoIdentity {
  *          more third-party identity providers (Facebook, Google, or Login with Amazon) or an Amazon
  *          Cognito user pool, and you can also choose to support unauthenticated access from your app.
  *          Cognito delivers a unique identifier for each user and acts as an OpenID token provider
- *          trusted by AWS Security Token Service (STS) to access temporary, limited-privilege AWS
- *          credentials.</p>
+ *          trusted by Security Token Service (STS) to access temporary, limited-privilege Amazon Web Services credentials.</p>
  *          <p>For a description of the authentication flow from the Amazon Cognito Developer Guide
- *          see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html">Authentication Flow</a>.</p>
- *          <p>For more information see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-identity.html">Amazon Cognito Federated Identities</a>.</p>
+ *          see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html">Authentication
+ *          Flow</a>.</p>
+ *          <p>For more information see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-identity.html">Amazon Cognito Federated
+ *             Identities</a>.</p>
  * @public
  */
 export declare class CognitoIdentity extends CognitoIdentityClient implements CognitoIdentity {

package/dist-types/CognitoIdentityClient.d.ts

@@ -201,11 +201,12 @@ export interface CognitoIdentityClientResolvedConfig extends CognitoIdentityClie
  *          more third-party identity providers (Facebook, Google, or Login with Amazon) or an Amazon
  *          Cognito user pool, and you can also choose to support unauthenticated access from your app.
  *          Cognito delivers a unique identifier for each user and acts as an OpenID token provider
- *          trusted by AWS Security Token Service (STS) to access temporary, limited-privilege AWS
- *          credentials.</p>
+ *          trusted by Security Token Service (STS) to access temporary, limited-privilege Amazon Web Services credentials.</p>
  *          <p>For a description of the authentication flow from the Amazon Cognito Developer Guide
- *          see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html">Authentication Flow</a>.</p>
- *          <p>For more information see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-identity.html">Amazon Cognito Federated Identities</a>.</p>
+ *          see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html">Authentication
+ *          Flow</a>.</p>
+ *          <p>For more information see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-identity.html">Amazon Cognito Federated
+ *             Identities</a>.</p>
  * @public
  */
 export declare class CognitoIdentityClient extends __Client<__HttpHandlerOptions, ServiceInputTypes, ServiceOutputTypes, CognitoIdentityClientResolvedConfig> {

package/dist-types/commands/CreateIdentityPoolCommand.d.ts

@@ -28,8 +28,8 @@ declare const CreateIdentityPoolCommand_base: {
 };
 /**
  * <p>Creates a new identity pool. The identity pool is a store of user identity
- *          information that is specific to your AWS account. The keys for <code>SupportedLoginProviders</code> are as follows:</p>
- *
+ *          information that is specific to your Amazon Web Services account. The keys for
+ *             <code>SupportedLoginProviders</code> are as follows:</p>
  *          <ul>
  *             <li>
  *                <p>Facebook: <code>graph.facebook.com</code>
@@ -40,6 +40,10 @@ declare const CreateIdentityPoolCommand_base: {
  *                </p>
  *             </li>
  *             <li>
+ *                <p>Sign in With Apple: <code>appleid.apple.com</code>
+ *                </p>
+ *             </li>
+ *             <li>
  *                <p>Amazon: <code>www.amazon.com</code>
  *                </p>
  *             </li>
@@ -52,8 +56,12 @@ declare const CreateIdentityPoolCommand_base: {
  *                </p>
  *             </li>
  *          </ul>
- *
- *          <p>You must use AWS Developer credentials to call this API.</p>
+ *          <important>
+ *             <p>If you don't provide a value for a parameter, Amazon Cognito sets it to its default value.
+ *       </p>
+ *          </important>
+ *          <p>You must use Amazon Web Services developer credentials to call this
+ *          operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/DeleteIdentitiesCommand.d.ts

@@ -29,7 +29,8 @@ declare const DeleteIdentitiesCommand_base: {
 /**
  * <p>Deletes identities from an identity pool. You can specify a list of 1-60 identities
  *          that you want to delete.</p>
- *          <p>You must use AWS Developer credentials to call this API.</p>
+ *          <p>You must use Amazon Web Services developer credentials to call this
+ *          operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/DeleteIdentityPoolCommand.d.ts

@@ -29,7 +29,8 @@ declare const DeleteIdentityPoolCommand_base: {
 /**
  * <p>Deletes an identity pool. Once a pool is deleted, users will not be able to
  *          authenticate with the pool.</p>
- *          <p>You must use AWS Developer credentials to call this API.</p>
+ *          <p>You must use Amazon Web Services developer credentials to call this
+ *          operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/DescribeIdentityCommand.d.ts

@@ -29,7 +29,8 @@ declare const DescribeIdentityCommand_base: {
 /**
  * <p>Returns metadata related to the given identity, including when the identity was
  *          created and any associated linked logins.</p>
- *          <p>You must use AWS Developer credentials to call this API.</p>
+ *          <p>You must use Amazon Web Services developer credentials to call this
+ *          operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/DescribeIdentityPoolCommand.d.ts

@@ -29,7 +29,8 @@ declare const DescribeIdentityPoolCommand_base: {
 /**
  * <p>Gets details about a particular identity pool, including the pool name, ID
  *          description, creation date, and current number of users.</p>
- *          <p>You must use AWS Developer credentials to call this API.</p>
+ *          <p>You must use Amazon Web Services developer credentials to call this
+ *          operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/GetCredentialsForIdentityCommand.d.ts

@@ -29,8 +29,7 @@ declare const GetCredentialsForIdentityCommand_base: {
 /**
  * <p>Returns credentials for the provided identity ID. Any provided logins will be
  *          validated against supported login providers. If the token is for
- *          cognito-identity.amazonaws.com, it will be passed through to AWS Security Token Service
- *          with the appropriate role for the token.</p>
+ *             <code>cognito-identity.amazonaws.com</code>, it will be passed through to Security Token Service with the appropriate role for the token.</p>
  *          <p>This is a public API. You do not need any credentials to call this API.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
@@ -73,8 +72,13 @@ declare const GetCredentialsForIdentityCommand_base: {
  *  <p>Thrown when the service encounters an error during processing the request.</p>
  *
  * @throws {@link InvalidIdentityPoolConfigurationException} (client fault)
- *  <p>Thrown if the identity pool has no role associated for the given auth type
- *          (auth/unauth) or if the AssumeRole fails.</p>
+ *  <p>If you provided authentication information in the request, the identity pool has no
+ *          authenticated role configured, or STS returned an error response to the
+ *          request to assume the authenticated role from the identity pool. If you provided no
+ *          authentication information in the request, the identity pool has no unauthenticated role
+ *          configured, or STS returned an error response to the request to assume the
+ *          unauthenticated role from the identity pool.</p>
+ *          <p>Your role trust policy must grant <code>AssumeRoleWithWebIdentity</code> permissions to <code>cognito-identity.amazonaws.com</code>.</p>
  *
  * @throws {@link InvalidParameterException} (client fault)
  *  <p>Thrown for missing or bad input parameter(s).</p>

package/dist-types/commands/GetIdCommand.d.ts

@@ -27,7 +27,7 @@ declare const GetIdCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Generates (or retrieves) a Cognito ID. Supplying multiple logins will create an
+ * <p>Generates (or retrieves) IdentityID. Supplying multiple logins will create an
  *          implicit linked account.</p>
  *          <p>This is a public API. You do not need any credentials to call this API.</p>
  * @example

package/dist-types/commands/GetIdentityPoolRolesCommand.d.ts

@@ -28,7 +28,8 @@ declare const GetIdentityPoolRolesCommand_base: {
 };
 /**
  * <p>Gets the roles for an identity pool.</p>
- *          <p>You must use AWS Developer credentials to call this API.</p>
+ *          <p>You must use Amazon Web Services developer credentials to call this
+ *          operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/GetOpenIdTokenForDeveloperIdentityCommand.d.ts

@@ -39,7 +39,8 @@ declare const GetOpenIdTokenForDeveloperIdentityCommand_base: {
  *          existing authenticated/unauthenticated identity, you can do so by providing the existing
  *             <code>IdentityId</code>. This API will create the identity in the specified
  *             <code>IdentityPoolId</code>.</p>
- *          <p>You must use AWS Developer credentials to call this API.</p>
+ *          <p>You must use Amazon Web Services developer credentials to call this
+ *          operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/GetPrincipalTagAttributeMapCommand.d.ts

@@ -24,10 +24,11 @@ export interface GetPrincipalTagAttributeMapCommandOutput extends GetPrincipalTa
 declare const GetPrincipalTagAttributeMapCommand_base: {
     new (input: GetPrincipalTagAttributeMapCommandInput): import("@smithy/smithy-client").CommandImpl<GetPrincipalTagAttributeMapCommandInput, GetPrincipalTagAttributeMapCommandOutput, CognitoIdentityClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes>;
     new (__0_0: GetPrincipalTagAttributeMapCommandInput): import("@smithy/smithy-client").CommandImpl<GetPrincipalTagAttributeMapCommandInput, GetPrincipalTagAttributeMapCommandOutput, CognitoIdentityClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes>;
-    getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
+    getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions; /** @internal type navigation helper, not in runtime. */
 };
 /**
- * <p>Use <code>GetPrincipalTagAttributeMap</code> to list all mappings between <code>PrincipalTags</code> and user attributes.</p>
+ * <p>Use <code>GetPrincipalTagAttributeMap</code> to list all mappings between
+ *             <code>PrincipalTags</code> and user attributes.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/ListIdentitiesCommand.d.ts

@@ -28,7 +28,8 @@ declare const ListIdentitiesCommand_base: {
 };
 /**
  * <p>Lists the identities in an identity pool.</p>
- *          <p>You must use AWS Developer credentials to call this API.</p>
+ *          <p>You must use Amazon Web Services developer credentials to call this
+ *          operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/ListIdentityPoolsCommand.d.ts

@@ -28,7 +28,8 @@ declare const ListIdentityPoolsCommand_base: {
 };
 /**
  * <p>Lists all of the Cognito identity pools registered for your account.</p>
- *          <p>You must use AWS Developer credentials to call this API.</p>
+ *          <p>You must use Amazon Web Services developer credentials to call this
+ *          operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/LookupDeveloperIdentityCommand.d.ts

@@ -35,7 +35,7 @@ declare const LookupDeveloperIdentityCommand_base: {
  *          returned as a part of the response. If you supply both,
  *             <code>DeveloperUserIdentifier</code> will be matched against <code>IdentityID</code>. If
  *          the values are verified against the database, the response returns both values and is the
- *          same as the request. Otherwise a <code>ResourceConflictException</code> is
+ *          same as the request. Otherwise, a <code>ResourceConflictException</code> is
  *          thrown.</p>
  *          <p>
  *             <code>LookupDeveloperIdentity</code> is intended for low-throughput control plane
@@ -43,7 +43,8 @@ declare const LookupDeveloperIdentityCommand_base: {
  *          If you are using it for higher-volume operations such as user authentication, your requests
  *          are likely to be throttled. <a>GetOpenIdTokenForDeveloperIdentity</a> is a
  *          better option for higher-volume operations for user authentication.</p>
- *          <p>You must use AWS Developer credentials to call this API.</p>
+ *          <p>You must use Amazon Web Services developer credentials to call this
+ *          operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/MergeDeveloperIdentitiesCommand.d.ts

@@ -37,9 +37,10 @@ declare const MergeDeveloperIdentitiesCommand_base: {
  *          thrown.</p>
  *          <p>The number of linked logins is limited to 20. So, the number of linked logins for the
  *          source user, <code>SourceUserIdentifier</code>, and the destination user,
- *          <code>DestinationUserIdentifier</code>, together should not be larger than 20.
+ *             <code>DestinationUserIdentifier</code>, together should not be larger than 20.
  *          Otherwise, an exception will be thrown.</p>
- *          <p>You must use AWS Developer credentials to call this API.</p>
+ *          <p>You must use Amazon Web Services developer credentials to call this
+ *          operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/SetIdentityPoolRolesCommand.d.ts

@@ -28,7 +28,8 @@ declare const SetIdentityPoolRolesCommand_base: {
 };
 /**
  * <p>Sets the roles for an identity pool. These roles are used when making calls to <a>GetCredentialsForIdentity</a> action.</p>
- *          <p>You must use AWS Developer credentials to call this API.</p>
+ *          <p>You must use Amazon Web Services developer credentials to call this
+ *          operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/SetPrincipalTagAttributeMapCommand.d.ts

@@ -27,7 +27,8 @@ declare const SetPrincipalTagAttributeMapCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>You can use this operation to use default (username and clientID) attribute or custom attribute mappings.</p>
+ * <p>You can use this operation to use default (username and clientID) attribute or custom
+ *          attribute mappings.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/TagResourceCommand.d.ts

@@ -38,8 +38,8 @@ declare const TagResourceCommand_base: {
  *          other.</p>
  *          <p>Tags are useful for cost tracking and access control. You can activate your tags so that
  *          they appear on the Billing and Cost Management console, where you can track the costs
- *          associated with your identity pools. In an IAM policy, you can constrain permissions for
- *          identity pools based on specific tags or tag values.</p>
+ *          associated with your identity pools. In an IAM policy, you can constrain
+ *          permissions for identity pools based on specific tags or tag values.</p>
  *          <p>You can use this action up to 5 times per second, per account. An identity pool can have
  *          as many as 50 tags.</p>
  * @example

package/dist-types/commands/UnlinkDeveloperIdentityCommand.d.ts

@@ -31,7 +31,8 @@ declare const UnlinkDeveloperIdentityCommand_base: {
  *          developer users will be considered new identities next time they are seen. If, for a given
  *          Cognito identity, you remove all federated identities as well as the developer user
  *          identifier, the Cognito identity becomes inaccessible.</p>
- *          <p>You must use AWS Developer credentials to call this API.</p>
+ *          <p>You must use Amazon Web Services developer credentials to call this
+ *          operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/UpdateIdentityPoolCommand.d.ts

@@ -27,8 +27,13 @@ declare const UpdateIdentityPoolCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Updates an identity pool.</p>
- *          <p>You must use AWS Developer credentials to call this API.</p>
+ * <p>Updates the configuration of an identity pool.</p>
+ *          <important>
+ *             <p>If you don't provide a value for a parameter, Amazon Cognito sets it to its default value.
+ *       </p>
+ *          </important>
+ *          <p>You must use Amazon Web Services developer credentials to call this
+ *          operation.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/index.d.ts

@@ -8,11 +8,12 @@
  *          more third-party identity providers (Facebook, Google, or Login with Amazon) or an Amazon
  *          Cognito user pool, and you can also choose to support unauthenticated access from your app.
  *          Cognito delivers a unique identifier for each user and acts as an OpenID token provider
- *          trusted by AWS Security Token Service (STS) to access temporary, limited-privilege AWS
- *          credentials.</p>
+ *          trusted by Security Token Service (STS) to access temporary, limited-privilege Amazon Web Services credentials.</p>
  *          <p>For a description of the authentication flow from the Amazon Cognito Developer Guide
- *          see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html">Authentication Flow</a>.</p>
- *          <p>For more information see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-identity.html">Amazon Cognito Federated Identities</a>.</p>
+ *          see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html">Authentication
+ *          Flow</a>.</p>
+ *          <p>For more information see <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-identity.html">Amazon Cognito Federated
+ *             Identities</a>.</p>
  *
  * @packageDocumentation
  */

package/dist-types/models/models_0.d.ts

@@ -33,8 +33,8 @@ export interface CognitoIdentityProvider {
      *          token.</p>
      *          <p>Once you set <code>ServerSideTokenCheck</code> to TRUE for an identity pool, that
      *          identity pool will check with the integrated user pools to make sure that the user has not
-     *          been globally signed out or deleted before the identity pool provides an OIDC token or AWS
-     *          credentials for the user.</p>
+     *          been globally signed out or deleted before the identity pool provides an OIDC token or
+     *             Amazon Web Services credentials for the user.</p>
      *          <p>If the user is signed out or deleted, the identity pool will return a 400 Not
      *          Authorized error.</p>
      * @public
@@ -58,7 +58,8 @@ export interface CreateIdentityPoolInput {
     AllowUnauthenticatedIdentities: boolean | undefined;
     /**
      * <p>Enables or disables the Basic (Classic) authentication flow. For more information, see
-     *       <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html">Identity Pools (Federated Identities) Authentication Flow</a> in the <i>Amazon Cognito Developer Guide</i>.</p>
+     *             <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html">Identity Pools (Federated Identities) Authentication Flow</a> in the
+     *             <i>Amazon Cognito Developer Guide</i>.</p>
      * @public
      */
     AllowClassicFlow?: boolean | undefined;
@@ -124,7 +125,8 @@ export interface IdentityPool {
     AllowUnauthenticatedIdentities: boolean | undefined;
     /**
      * <p>Enables or disables the Basic (Classic) authentication flow. For more information, see
-     *       <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html">Identity Pools (Federated Identities) Authentication Flow</a> in the <i>Amazon Cognito Developer Guide</i>.</p>
+     *             <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html">Identity Pools (Federated Identities) Authentication Flow</a> in the
+     *             <i>Amazon Cognito Developer Guide</i>.</p>
      * @public
      */
     AllowClassicFlow?: boolean | undefined;
@@ -391,8 +393,8 @@ export interface GetCredentialsForIdentityInput {
      *          identity.</p>
      *          <p>The Logins parameter is required when using identities associated with external
      *          identity providers such as Facebook. For examples of <code>Logins</code> maps, see the code
-     *          examples in the <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/external-identity-providers.html">External Identity Providers</a> section of the Amazon Cognito Developer
-     *          Guide.</p>
+     *          examples in the <a href="https://docs.aws.amazon.com/cognito/latest/developerguide/external-identity-providers.html">External Identity
+     *             Providers</a> section of the Amazon Cognito Developer Guide.</p>
      * @public
      */
     Logins?: Record<string, string> | undefined;
@@ -449,8 +451,13 @@ export interface GetCredentialsForIdentityResponse {
     Credentials?: Credentials | undefined;
 }
 /**
- * <p>Thrown if the identity pool has no role associated for the given auth type
- *          (auth/unauth) or if the AssumeRole fails.</p>
+ * <p>If you provided authentication information in the request, the identity pool has no
+ *          authenticated role configured, or STS returned an error response to the
+ *          request to assume the authenticated role from the identity pool. If you provided no
+ *          authentication information in the request, the identity pool has no unauthenticated role
+ *          configured, or STS returned an error response to the request to assume the
+ *          unauthenticated role from the identity pool.</p>
+ *          <p>Your role trust policy must grant <code>AssumeRoleWithWebIdentity</code> permissions to <code>cognito-identity.amazonaws.com</code>.</p>
  * @public
  */
 export declare class InvalidIdentityPoolConfigurationException extends __BaseException {
@@ -467,7 +474,7 @@ export declare class InvalidIdentityPoolConfigurationException extends __BaseExc
  */
 export interface GetIdInput {
     /**
-     * <p>A standard AWS account ID (9+ digits).</p>
+     * <p>A standard Amazon Web Services account ID (9+ digits).</p>
      * @public
      */
     AccountId?: string | undefined;
@@ -651,8 +658,8 @@ export interface GetIdentityPoolRolesResponse {
     /**
      * <p>How users for a specific identity provider are to mapped to roles. This is a
      *             String-to-<a>RoleMapping</a> object map. The string identifies the identity
-     *          provider, for example, "graph.facebook.com" or
-     *          "cognito-idp.us-east-1.amazonaws.com/us-east-1_abcdefghi:app_client_id".</p>
+     *          provider, for example, <code>graph.facebook.com</code> or
+     *             <code>cognito-idp.us-east-1.amazonaws.com/us-east-1_abcdefghi:app_client_id</code>.</p>
      * @public
      */
     RoleMappings?: Record<string, RoleMapping> | undefined;
@@ -741,13 +748,14 @@ export interface GetOpenIdTokenForDeveloperIdentityInput {
     /**
      * <p>The expiration time of the token, in seconds. You can specify a custom expiration
      *          time for the token so that you can cache it. If you don't provide an expiration time, the
-     *          token is valid for 15 minutes. You can exchange the token with Amazon STS for temporary AWS
-     *          credentials, which are valid for a maximum of one hour. The maximum token duration you can
-     *          set is 24 hours. You should take care in setting the expiration time for a token, as there
-     *          are significant security implications: an attacker could use a leaked token to access your
-     *          AWS resources for the token's duration.</p>
+     *          token is valid for 15 minutes. You can exchange the token with Amazon STS for temporary
+     *             Amazon Web Services credentials, which are valid for a maximum of one hour. The maximum
+     *          token duration you can set is 24 hours. You should take care in setting the expiration time
+     *          for a token, as there are significant security implications: an attacker could use a leaked
+     *          token to access your Amazon Web Services resources for the token's duration.</p>
      *          <note>
-     *             <p>Please provide for a small grace period, usually no more than 5 minutes, to account for clock skew.</p>
+     *             <p>Please provide for a small grace period, usually no more than 5 minutes, to
+     *             account for clock skew.</p>
      *          </note>
      * @public
      */
@@ -775,7 +783,8 @@ export interface GetOpenIdTokenForDeveloperIdentityResponse {
  */
 export interface GetPrincipalTagAttributeMapInput {
     /**
-     * <p>You can use this operation to get the ID of the Identity Pool you setup attribute mappings for.</p>
+     * <p>You can use this operation to get the ID of the Identity Pool you setup attribute
+     *          mappings for.</p>
      * @public
      */
     IdentityPoolId: string | undefined;
@@ -790,7 +799,8 @@ export interface GetPrincipalTagAttributeMapInput {
  */
 export interface GetPrincipalTagAttributeMapResponse {
     /**
-     * <p>You can use this operation to get the ID of the Identity Pool you setup attribute mappings for.</p>
+     * <p>You can use this operation to get the ID of the Identity Pool you setup attribute
+     *          mappings for.</p>
      * @public
      */
     IdentityPoolId?: string | undefined;
@@ -805,7 +815,9 @@ export interface GetPrincipalTagAttributeMapResponse {
      */
     UseDefaults?: boolean | undefined;
     /**
-     * <p>You can use this operation to add principal tags. The <code>PrincipalTags</code>operation enables you to reference user attributes in your IAM permissions policy.</p>
+     * <p>You can use this operation to add principal tags. The
+     *          <code>PrincipalTags</code>operation enables you to reference user attributes in your
+     *             IAM permissions policy.</p>
      * @public
      */
     PrincipalTags?: Record<string, string> | undefined;
@@ -1069,8 +1081,8 @@ export interface SetIdentityPoolRolesInput {
     /**
      * <p>How users for a specific identity provider are to mapped to roles. This is a string
      *          to <a>RoleMapping</a> object map. The string identifies the identity provider,
-     *          for example, "graph.facebook.com" or
-     *          "cognito-idp.us-east-1.amazonaws.com/us-east-1_abcdefghi:app_client_id".</p>
+     *          for example, <code>graph.facebook.com</code> or
+     *             <code>cognito-idp.us-east-1.amazonaws.com/us-east-1_abcdefghi:app_client_id</code>.</p>
      *          <p>Up to 25 rules can be specified per identity provider.</p>
      * @public
      */
@@ -1091,7 +1103,8 @@ export interface SetPrincipalTagAttributeMapInput {
      */
     IdentityProviderName: string | undefined;
     /**
-     * <p>You can use this operation to use default (username and clientID) attribute mappings.</p>
+     * <p>You can use this operation to use default (username and clientID) attribute
+     *          mappings.</p>
      * @public
      */
     UseDefaults?: boolean | undefined;
@@ -1116,12 +1129,15 @@ export interface SetPrincipalTagAttributeMapResponse {
      */
     IdentityProviderName?: string | undefined;
     /**
-     * <p>You can use this operation to select default (username and clientID) attribute mappings.</p>
+     * <p>You can use this operation to select default (username and clientID) attribute
+     *          mappings.</p>
      * @public
      */
     UseDefaults?: boolean | undefined;
     /**
-     * <p>You can use this operation to add principal tags. The <code>PrincipalTags</code>operation enables you to reference user attributes in your IAM permissions policy.</p>
+     * <p>You can use this operation to add principal tags. The
+     *          <code>PrincipalTags</code>operation enables you to reference user attributes in your
+     *             IAM permissions policy.</p>
      * @public
      */
     PrincipalTags?: Record<string, string> | undefined;

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-cognito-identity",
   "description": "AWS SDK for JavaScript Cognito Identity Client for Node.js, Browser and React Native",
-  "version": "3.758.0",
+  "version": "3.768.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-cognito-identity",