@aws-sdk/client-fms 3.316.0 → 3.318.0

package/dist-es/protocols/Aws_json1_1.js

@@ -74,6 +74,12 @@ export const se_GetAdminAccountCommand = async (input, context) => {
     body = JSON.stringify(_json(input));
     return buildHttpRpcRequest(context, headers, "/", undefined, body);
 };
+export const se_GetAdminScopeCommand = async (input, context) => {
+    const headers = sharedHeaders("GetAdminScope");
+    let body;
+    body = JSON.stringify(_json(input));
+    return buildHttpRpcRequest(context, headers, "/", undefined, body);
+};
 export const se_GetAppsListCommand = async (input, context) => {
     const headers = sharedHeaders("GetAppsList");
     let body;
@@ -128,6 +134,18 @@ export const se_GetViolationDetailsCommand = async (input, context) => {
     body = JSON.stringify(_json(input));
     return buildHttpRpcRequest(context, headers, "/", undefined, body);
 };
+export const se_ListAdminAccountsForOrganizationCommand = async (input, context) => {
+    const headers = sharedHeaders("ListAdminAccountsForOrganization");
+    let body;
+    body = JSON.stringify(_json(input));
+    return buildHttpRpcRequest(context, headers, "/", undefined, body);
+};
+export const se_ListAdminsManagingAccountCommand = async (input, context) => {
+    const headers = sharedHeaders("ListAdminsManagingAccount");
+    let body;
+    body = JSON.stringify(_json(input));
+    return buildHttpRpcRequest(context, headers, "/", undefined, body);
+};
 export const se_ListAppsListsCommand = async (input, context) => {
     const headers = sharedHeaders("ListAppsLists");
     let body;
@@ -188,6 +206,12 @@ export const se_ListThirdPartyFirewallFirewallPoliciesCommand = async (input, co
     body = JSON.stringify(_json(input));
     return buildHttpRpcRequest(context, headers, "/", undefined, body);
 };
+export const se_PutAdminAccountCommand = async (input, context) => {
+    const headers = sharedHeaders("PutAdminAccount");
+    let body;
+    body = JSON.stringify(_json(input));
+    return buildHttpRpcRequest(context, headers, "/", undefined, body);
+};
 export const se_PutAppsListCommand = async (input, context) => {
     const headers = sharedHeaders("PutAppsList");
     let body;
@@ -695,6 +719,47 @@ const de_GetAdminAccountCommandError = async (output, context) => {
             });
     }
 };
+export const de_GetAdminScopeCommand = async (output, context) => {
+    if (output.statusCode >= 300) {
+        return de_GetAdminScopeCommandError(output, context);
+    }
+    const data = await parseBody(output.body, context);
+    let contents = {};
+    contents = _json(data);
+    const response = {
+        $metadata: deserializeMetadata(output),
+        ...contents,
+    };
+    return response;
+};
+const de_GetAdminScopeCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "InternalErrorException":
+        case "com.amazonaws.fms#InternalErrorException":
+            throw await de_InternalErrorExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.fms#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "InvalidOperationException":
+        case "com.amazonaws.fms#InvalidOperationException":
+            throw await de_InvalidOperationExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.fms#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 export const de_GetAppsListCommand = async (output, context) => {
     if (output.statusCode >= 300) {
         return de_GetAppsListCommandError(output, context);
@@ -1049,6 +1114,82 @@ const de_GetViolationDetailsCommandError = async (output, context) => {
             });
     }
 };
+export const de_ListAdminAccountsForOrganizationCommand = async (output, context) => {
+    if (output.statusCode >= 300) {
+        return de_ListAdminAccountsForOrganizationCommandError(output, context);
+    }
+    const data = await parseBody(output.body, context);
+    let contents = {};
+    contents = _json(data);
+    const response = {
+        $metadata: deserializeMetadata(output),
+        ...contents,
+    };
+    return response;
+};
+const de_ListAdminAccountsForOrganizationCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "InternalErrorException":
+        case "com.amazonaws.fms#InternalErrorException":
+            throw await de_InternalErrorExceptionRes(parsedOutput, context);
+        case "InvalidOperationException":
+        case "com.amazonaws.fms#InvalidOperationException":
+            throw await de_InvalidOperationExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.fms#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
+export const de_ListAdminsManagingAccountCommand = async (output, context) => {
+    if (output.statusCode >= 300) {
+        return de_ListAdminsManagingAccountCommandError(output, context);
+    }
+    const data = await parseBody(output.body, context);
+    let contents = {};
+    contents = _json(data);
+    const response = {
+        $metadata: deserializeMetadata(output),
+        ...contents,
+    };
+    return response;
+};
+const de_ListAdminsManagingAccountCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "InternalErrorException":
+        case "com.amazonaws.fms#InternalErrorException":
+            throw await de_InternalErrorExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.fms#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "ResourceNotFoundException":
+        case "com.amazonaws.fms#ResourceNotFoundException":
+            throw await de_ResourceNotFoundExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 export const de_ListAppsListsCommand = async (output, context) => {
     if (output.statusCode >= 300) {
         return de_ListAppsListsCommandError(output, context);
@@ -1438,6 +1579,44 @@ const de_ListThirdPartyFirewallFirewallPoliciesCommandError = async (output, con
             });
     }
 };
+export const de_PutAdminAccountCommand = async (output, context) => {
+    if (output.statusCode >= 300) {
+        return de_PutAdminAccountCommandError(output, context);
+    }
+    await collectBody(output.body, context);
+    const response = {
+        $metadata: deserializeMetadata(output),
+    };
+    return response;
+};
+const de_PutAdminAccountCommandError = async (output, context) => {
+    const parsedOutput = {
+        ...output,
+        body: await parseErrorBody(output.body, context),
+    };
+    const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
+    switch (errorCode) {
+        case "InternalErrorException":
+        case "com.amazonaws.fms#InternalErrorException":
+            throw await de_InternalErrorExceptionRes(parsedOutput, context);
+        case "InvalidInputException":
+        case "com.amazonaws.fms#InvalidInputException":
+            throw await de_InvalidInputExceptionRes(parsedOutput, context);
+        case "InvalidOperationException":
+        case "com.amazonaws.fms#InvalidOperationException":
+            throw await de_InvalidOperationExceptionRes(parsedOutput, context);
+        case "LimitExceededException":
+        case "com.amazonaws.fms#LimitExceededException":
+            throw await de_LimitExceededExceptionRes(parsedOutput, context);
+        default:
+            const parsedBody = parsedOutput.body;
+            return throwDefaultError({
+                output,
+                parsedBody,
+                errorCode,
+            });
+    }
+};
 export const de_PutAppsListCommand = async (output, context) => {
     if (output.statusCode >= 300) {
         return de_PutAppsListCommandError(output, context);
@@ -1844,6 +2023,7 @@ const se_ResourceSet = (input, context) => {
         Id: [],
         LastUpdateTime: (_) => Math.round(_.getTime() / 1000),
         Name: [],
+        ResourceSetStatus: [],
         ResourceTypeList: _json,
         UpdateToken: [],
     });
@@ -1964,6 +2144,7 @@ const de_ResourceSet = (output, context) => {
         Id: __expectString,
         LastUpdateTime: (_) => __expectNonNull(__parseEpochTimestamp(__expectNumber(_))),
         Name: __expectString,
+        ResourceSetStatus: __expectString,
         ResourceTypeList: _json,
         UpdateToken: __expectString,
     });
@@ -1974,6 +2155,7 @@ const de_ResourceSetSummary = (output, context) => {
         Id: __expectString,
         LastUpdateTime: (_) => __expectNonNull(__parseEpochTimestamp(__expectNumber(_))),
         Name: __expectString,
+        ResourceSetStatus: __expectString,
     });
 };
 const de_ResourceSetSummaryList = (output, context) => {

package/dist-types/FMS.d.ts

@@ -11,6 +11,7 @@ import { DeleteResourceSetCommandInput, DeleteResourceSetCommandOutput } from ".
 import { DisassociateAdminAccountCommandInput, DisassociateAdminAccountCommandOutput } from "./commands/DisassociateAdminAccountCommand";
 import { DisassociateThirdPartyFirewallCommandInput, DisassociateThirdPartyFirewallCommandOutput } from "./commands/DisassociateThirdPartyFirewallCommand";
 import { GetAdminAccountCommandInput, GetAdminAccountCommandOutput } from "./commands/GetAdminAccountCommand";
+import { GetAdminScopeCommandInput, GetAdminScopeCommandOutput } from "./commands/GetAdminScopeCommand";
 import { GetAppsListCommandInput, GetAppsListCommandOutput } from "./commands/GetAppsListCommand";
 import { GetComplianceDetailCommandInput, GetComplianceDetailCommandOutput } from "./commands/GetComplianceDetailCommand";
 import { GetNotificationChannelCommandInput, GetNotificationChannelCommandOutput } from "./commands/GetNotificationChannelCommand";
@@ -20,6 +21,8 @@ import { GetProtocolsListCommandInput, GetProtocolsListCommandOutput } from "./c
 import { GetResourceSetCommandInput, GetResourceSetCommandOutput } from "./commands/GetResourceSetCommand";
 import { GetThirdPartyFirewallAssociationStatusCommandInput, GetThirdPartyFirewallAssociationStatusCommandOutput } from "./commands/GetThirdPartyFirewallAssociationStatusCommand";
 import { GetViolationDetailsCommandInput, GetViolationDetailsCommandOutput } from "./commands/GetViolationDetailsCommand";
+import { ListAdminAccountsForOrganizationCommandInput, ListAdminAccountsForOrganizationCommandOutput } from "./commands/ListAdminAccountsForOrganizationCommand";
+import { ListAdminsManagingAccountCommandInput, ListAdminsManagingAccountCommandOutput } from "./commands/ListAdminsManagingAccountCommand";
 import { ListAppsListsCommandInput, ListAppsListsCommandOutput } from "./commands/ListAppsListsCommand";
 import { ListComplianceStatusCommandInput, ListComplianceStatusCommandOutput } from "./commands/ListComplianceStatusCommand";
 import { ListDiscoveredResourcesCommandInput, ListDiscoveredResourcesCommandOutput } from "./commands/ListDiscoveredResourcesCommand";
@@ -30,6 +33,7 @@ import { ListResourceSetResourcesCommandInput, ListResourceSetResourcesCommandOu
 import { ListResourceSetsCommandInput, ListResourceSetsCommandOutput } from "./commands/ListResourceSetsCommand";
 import { ListTagsForResourceCommandInput, ListTagsForResourceCommandOutput } from "./commands/ListTagsForResourceCommand";
 import { ListThirdPartyFirewallFirewallPoliciesCommandInput, ListThirdPartyFirewallFirewallPoliciesCommandOutput } from "./commands/ListThirdPartyFirewallFirewallPoliciesCommand";
+import { PutAdminAccountCommandInput, PutAdminAccountCommandOutput } from "./commands/PutAdminAccountCommand";
 import { PutAppsListCommandInput, PutAppsListCommandOutput } from "./commands/PutAppsListCommand";
 import { PutNotificationChannelCommandInput, PutNotificationChannelCommandOutput } from "./commands/PutNotificationChannelCommand";
 import { PutPolicyCommandInput, PutPolicyCommandOutput } from "./commands/PutPolicyCommand";
@@ -111,6 +115,12 @@ export interface FMS {
     getAdminAccount(args: GetAdminAccountCommandInput, options?: __HttpHandlerOptions): Promise<GetAdminAccountCommandOutput>;
     getAdminAccount(args: GetAdminAccountCommandInput, cb: (err: any, data?: GetAdminAccountCommandOutput) => void): void;
     getAdminAccount(args: GetAdminAccountCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetAdminAccountCommandOutput) => void): void;
+    /**
+     * @see {@link GetAdminScopeCommand}
+     */
+    getAdminScope(args: GetAdminScopeCommandInput, options?: __HttpHandlerOptions): Promise<GetAdminScopeCommandOutput>;
+    getAdminScope(args: GetAdminScopeCommandInput, cb: (err: any, data?: GetAdminScopeCommandOutput) => void): void;
+    getAdminScope(args: GetAdminScopeCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetAdminScopeCommandOutput) => void): void;
     /**
      * @see {@link GetAppsListCommand}
      */
@@ -165,6 +175,18 @@ export interface FMS {
     getViolationDetails(args: GetViolationDetailsCommandInput, options?: __HttpHandlerOptions): Promise<GetViolationDetailsCommandOutput>;
     getViolationDetails(args: GetViolationDetailsCommandInput, cb: (err: any, data?: GetViolationDetailsCommandOutput) => void): void;
     getViolationDetails(args: GetViolationDetailsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetViolationDetailsCommandOutput) => void): void;
+    /**
+     * @see {@link ListAdminAccountsForOrganizationCommand}
+     */
+    listAdminAccountsForOrganization(args: ListAdminAccountsForOrganizationCommandInput, options?: __HttpHandlerOptions): Promise<ListAdminAccountsForOrganizationCommandOutput>;
+    listAdminAccountsForOrganization(args: ListAdminAccountsForOrganizationCommandInput, cb: (err: any, data?: ListAdminAccountsForOrganizationCommandOutput) => void): void;
+    listAdminAccountsForOrganization(args: ListAdminAccountsForOrganizationCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListAdminAccountsForOrganizationCommandOutput) => void): void;
+    /**
+     * @see {@link ListAdminsManagingAccountCommand}
+     */
+    listAdminsManagingAccount(args: ListAdminsManagingAccountCommandInput, options?: __HttpHandlerOptions): Promise<ListAdminsManagingAccountCommandOutput>;
+    listAdminsManagingAccount(args: ListAdminsManagingAccountCommandInput, cb: (err: any, data?: ListAdminsManagingAccountCommandOutput) => void): void;
+    listAdminsManagingAccount(args: ListAdminsManagingAccountCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListAdminsManagingAccountCommandOutput) => void): void;
     /**
      * @see {@link ListAppsListsCommand}
      */
@@ -225,6 +247,12 @@ export interface FMS {
     listThirdPartyFirewallFirewallPolicies(args: ListThirdPartyFirewallFirewallPoliciesCommandInput, options?: __HttpHandlerOptions): Promise<ListThirdPartyFirewallFirewallPoliciesCommandOutput>;
     listThirdPartyFirewallFirewallPolicies(args: ListThirdPartyFirewallFirewallPoliciesCommandInput, cb: (err: any, data?: ListThirdPartyFirewallFirewallPoliciesCommandOutput) => void): void;
     listThirdPartyFirewallFirewallPolicies(args: ListThirdPartyFirewallFirewallPoliciesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListThirdPartyFirewallFirewallPoliciesCommandOutput) => void): void;
+    /**
+     * @see {@link PutAdminAccountCommand}
+     */
+    putAdminAccount(args: PutAdminAccountCommandInput, options?: __HttpHandlerOptions): Promise<PutAdminAccountCommandOutput>;
+    putAdminAccount(args: PutAdminAccountCommandInput, cb: (err: any, data?: PutAdminAccountCommandOutput) => void): void;
+    putAdminAccount(args: PutAdminAccountCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: PutAdminAccountCommandOutput) => void): void;
     /**
      * @see {@link PutAppsListCommand}
      */
@@ -275,7 +303,7 @@ export interface FMS {
  *       types, and errors. For detailed information about Firewall Manager features, see the
  *         <a href="https://docs.aws.amazon.com/waf/latest/developerguide/fms-chapter.html">Firewall Manager Developer Guide</a>.</p>
  *          <p>Some API actions require explicit resource permissions. For information, see the developer guide topic
- *         <a href="https://docs.aws.amazon.com/waf/latest/developerguide/fms-api-permissions-ref.html">Firewall Manager required permissions for API actions</a>.
+ *         <a href="https://docs.aws.amazon.com/waf/latest/developerguide/fms-security_iam_service-with-iam.html#fms-security_iam_service-with-iam-roles-service">Service roles for Firewall Manager</a>.
  * </p>
  */
 export declare class FMS extends FMSClient implements FMS {

package/dist-types/FMSClient.d.ts

@@ -19,6 +19,7 @@ import { DeleteResourceSetCommandInput, DeleteResourceSetCommandOutput } from ".
 import { DisassociateAdminAccountCommandInput, DisassociateAdminAccountCommandOutput } from "./commands/DisassociateAdminAccountCommand";
 import { DisassociateThirdPartyFirewallCommandInput, DisassociateThirdPartyFirewallCommandOutput } from "./commands/DisassociateThirdPartyFirewallCommand";
 import { GetAdminAccountCommandInput, GetAdminAccountCommandOutput } from "./commands/GetAdminAccountCommand";
+import { GetAdminScopeCommandInput, GetAdminScopeCommandOutput } from "./commands/GetAdminScopeCommand";
 import { GetAppsListCommandInput, GetAppsListCommandOutput } from "./commands/GetAppsListCommand";
 import { GetComplianceDetailCommandInput, GetComplianceDetailCommandOutput } from "./commands/GetComplianceDetailCommand";
 import { GetNotificationChannelCommandInput, GetNotificationChannelCommandOutput } from "./commands/GetNotificationChannelCommand";
@@ -28,6 +29,8 @@ import { GetProtocolsListCommandInput, GetProtocolsListCommandOutput } from "./c
 import { GetResourceSetCommandInput, GetResourceSetCommandOutput } from "./commands/GetResourceSetCommand";
 import { GetThirdPartyFirewallAssociationStatusCommandInput, GetThirdPartyFirewallAssociationStatusCommandOutput } from "./commands/GetThirdPartyFirewallAssociationStatusCommand";
 import { GetViolationDetailsCommandInput, GetViolationDetailsCommandOutput } from "./commands/GetViolationDetailsCommand";
+import { ListAdminAccountsForOrganizationCommandInput, ListAdminAccountsForOrganizationCommandOutput } from "./commands/ListAdminAccountsForOrganizationCommand";
+import { ListAdminsManagingAccountCommandInput, ListAdminsManagingAccountCommandOutput } from "./commands/ListAdminsManagingAccountCommand";
 import { ListAppsListsCommandInput, ListAppsListsCommandOutput } from "./commands/ListAppsListsCommand";
 import { ListComplianceStatusCommandInput, ListComplianceStatusCommandOutput } from "./commands/ListComplianceStatusCommand";
 import { ListDiscoveredResourcesCommandInput, ListDiscoveredResourcesCommandOutput } from "./commands/ListDiscoveredResourcesCommand";
@@ -38,6 +41,7 @@ import { ListResourceSetResourcesCommandInput, ListResourceSetResourcesCommandOu
 import { ListResourceSetsCommandInput, ListResourceSetsCommandOutput } from "./commands/ListResourceSetsCommand";
 import { ListTagsForResourceCommandInput, ListTagsForResourceCommandOutput } from "./commands/ListTagsForResourceCommand";
 import { ListThirdPartyFirewallFirewallPoliciesCommandInput, ListThirdPartyFirewallFirewallPoliciesCommandOutput } from "./commands/ListThirdPartyFirewallFirewallPoliciesCommand";
+import { PutAdminAccountCommandInput, PutAdminAccountCommandOutput } from "./commands/PutAdminAccountCommand";
 import { PutAppsListCommandInput, PutAppsListCommandOutput } from "./commands/PutAppsListCommand";
 import { PutNotificationChannelCommandInput, PutNotificationChannelCommandOutput } from "./commands/PutNotificationChannelCommand";
 import { PutPolicyCommandInput, PutPolicyCommandOutput } from "./commands/PutPolicyCommand";
@@ -49,11 +53,11 @@ import { ClientInputEndpointParameters, ClientResolvedEndpointParameters, Endpoi
 /**
  * @public
  */
-export type ServiceInputTypes = AssociateAdminAccountCommandInput | AssociateThirdPartyFirewallCommandInput | BatchAssociateResourceCommandInput | BatchDisassociateResourceCommandInput | DeleteAppsListCommandInput | DeleteNotificationChannelCommandInput | DeletePolicyCommandInput | DeleteProtocolsListCommandInput | DeleteResourceSetCommandInput | DisassociateAdminAccountCommandInput | DisassociateThirdPartyFirewallCommandInput | GetAdminAccountCommandInput | GetAppsListCommandInput | GetComplianceDetailCommandInput | GetNotificationChannelCommandInput | GetPolicyCommandInput | GetProtectionStatusCommandInput | GetProtocolsListCommandInput | GetResourceSetCommandInput | GetThirdPartyFirewallAssociationStatusCommandInput | GetViolationDetailsCommandInput | ListAppsListsCommandInput | ListComplianceStatusCommandInput | ListDiscoveredResourcesCommandInput | ListMemberAccountsCommandInput | ListPoliciesCommandInput | ListProtocolsListsCommandInput | ListResourceSetResourcesCommandInput | ListResourceSetsCommandInput | ListTagsForResourceCommandInput | ListThirdPartyFirewallFirewallPoliciesCommandInput | PutAppsListCommandInput | PutNotificationChannelCommandInput | PutPolicyCommandInput | PutProtocolsListCommandInput | PutResourceSetCommandInput | TagResourceCommandInput | UntagResourceCommandInput;
+export type ServiceInputTypes = AssociateAdminAccountCommandInput | AssociateThirdPartyFirewallCommandInput | BatchAssociateResourceCommandInput | BatchDisassociateResourceCommandInput | DeleteAppsListCommandInput | DeleteNotificationChannelCommandInput | DeletePolicyCommandInput | DeleteProtocolsListCommandInput | DeleteResourceSetCommandInput | DisassociateAdminAccountCommandInput | DisassociateThirdPartyFirewallCommandInput | GetAdminAccountCommandInput | GetAdminScopeCommandInput | GetAppsListCommandInput | GetComplianceDetailCommandInput | GetNotificationChannelCommandInput | GetPolicyCommandInput | GetProtectionStatusCommandInput | GetProtocolsListCommandInput | GetResourceSetCommandInput | GetThirdPartyFirewallAssociationStatusCommandInput | GetViolationDetailsCommandInput | ListAdminAccountsForOrganizationCommandInput | ListAdminsManagingAccountCommandInput | ListAppsListsCommandInput | ListComplianceStatusCommandInput | ListDiscoveredResourcesCommandInput | ListMemberAccountsCommandInput | ListPoliciesCommandInput | ListProtocolsListsCommandInput | ListResourceSetResourcesCommandInput | ListResourceSetsCommandInput | ListTagsForResourceCommandInput | ListThirdPartyFirewallFirewallPoliciesCommandInput | PutAdminAccountCommandInput | PutAppsListCommandInput | PutNotificationChannelCommandInput | PutPolicyCommandInput | PutProtocolsListCommandInput | PutResourceSetCommandInput | TagResourceCommandInput | UntagResourceCommandInput;
 /**
  * @public
  */
-export type ServiceOutputTypes = AssociateAdminAccountCommandOutput | AssociateThirdPartyFirewallCommandOutput | BatchAssociateResourceCommandOutput | BatchDisassociateResourceCommandOutput | DeleteAppsListCommandOutput | DeleteNotificationChannelCommandOutput | DeletePolicyCommandOutput | DeleteProtocolsListCommandOutput | DeleteResourceSetCommandOutput | DisassociateAdminAccountCommandOutput | DisassociateThirdPartyFirewallCommandOutput | GetAdminAccountCommandOutput | GetAppsListCommandOutput | GetComplianceDetailCommandOutput | GetNotificationChannelCommandOutput | GetPolicyCommandOutput | GetProtectionStatusCommandOutput | GetProtocolsListCommandOutput | GetResourceSetCommandOutput | GetThirdPartyFirewallAssociationStatusCommandOutput | GetViolationDetailsCommandOutput | ListAppsListsCommandOutput | ListComplianceStatusCommandOutput | ListDiscoveredResourcesCommandOutput | ListMemberAccountsCommandOutput | ListPoliciesCommandOutput | ListProtocolsListsCommandOutput | ListResourceSetResourcesCommandOutput | ListResourceSetsCommandOutput | ListTagsForResourceCommandOutput | ListThirdPartyFirewallFirewallPoliciesCommandOutput | PutAppsListCommandOutput | PutNotificationChannelCommandOutput | PutPolicyCommandOutput | PutProtocolsListCommandOutput | PutResourceSetCommandOutput | TagResourceCommandOutput | UntagResourceCommandOutput;
+export type ServiceOutputTypes = AssociateAdminAccountCommandOutput | AssociateThirdPartyFirewallCommandOutput | BatchAssociateResourceCommandOutput | BatchDisassociateResourceCommandOutput | DeleteAppsListCommandOutput | DeleteNotificationChannelCommandOutput | DeletePolicyCommandOutput | DeleteProtocolsListCommandOutput | DeleteResourceSetCommandOutput | DisassociateAdminAccountCommandOutput | DisassociateThirdPartyFirewallCommandOutput | GetAdminAccountCommandOutput | GetAdminScopeCommandOutput | GetAppsListCommandOutput | GetComplianceDetailCommandOutput | GetNotificationChannelCommandOutput | GetPolicyCommandOutput | GetProtectionStatusCommandOutput | GetProtocolsListCommandOutput | GetResourceSetCommandOutput | GetThirdPartyFirewallAssociationStatusCommandOutput | GetViolationDetailsCommandOutput | ListAdminAccountsForOrganizationCommandOutput | ListAdminsManagingAccountCommandOutput | ListAppsListsCommandOutput | ListComplianceStatusCommandOutput | ListDiscoveredResourcesCommandOutput | ListMemberAccountsCommandOutput | ListPoliciesCommandOutput | ListProtocolsListsCommandOutput | ListResourceSetResourcesCommandOutput | ListResourceSetsCommandOutput | ListTagsForResourceCommandOutput | ListThirdPartyFirewallFirewallPoliciesCommandOutput | PutAdminAccountCommandOutput | PutAppsListCommandOutput | PutNotificationChannelCommandOutput | PutPolicyCommandOutput | PutProtocolsListCommandOutput | PutResourceSetCommandOutput | TagResourceCommandOutput | UntagResourceCommandOutput;
 /**
  * @public
  */
@@ -186,7 +190,7 @@ export interface FMSClientResolvedConfig extends FMSClientResolvedConfigType {
  *       types, and errors. For detailed information about Firewall Manager features, see the
  *         <a href="https://docs.aws.amazon.com/waf/latest/developerguide/fms-chapter.html">Firewall Manager Developer Guide</a>.</p>
  *          <p>Some API actions require explicit resource permissions. For information, see the developer guide topic
- *         <a href="https://docs.aws.amazon.com/waf/latest/developerguide/fms-api-permissions-ref.html">Firewall Manager required permissions for API actions</a>.
+ *         <a href="https://docs.aws.amazon.com/waf/latest/developerguide/fms-security_iam_service-with-iam.html#fms-security_iam_service-with-iam-roles-service">Service roles for Firewall Manager</a>.
  * </p>
  */
 export declare class FMSClient extends __Client<__HttpHandlerOptions, ServiceInputTypes, ServiceOutputTypes, FMSClientResolvedConfig> {

package/dist-types/commands/AssociateAdminAccountCommand.d.ts

@@ -19,10 +19,8 @@ export interface AssociateAdminAccountCommandOutput extends __MetadataBearer {
 }
 /**
  * @public
- * <p>Sets the Firewall Manager administrator account. The account must be
- *       a member of the organization in Organizations whose resources you want to protect.
- *           Firewall Manager sets the permissions that allow the account to administer your Firewall Manager policies.</p>
- *          <p>The account that you associate with Firewall Manager is called the Firewall Manager administrator account. </p>
+ * <p>Sets a Firewall Manager default administrator account. The Firewall Manager default administrator account can manage third-party firewalls and has full administrative scope that allows administration of all policy types, accounts, organizational units, and Regions. This account must be a member account of the organization in Organizations whose resources you want to protect.</p>
+ *          <p>For information about working with Firewall Manager administrator accounts, see <a href="https://docs.aws.amazon.com/organizations/latest/userguide/fms-administrators.html">Managing Firewall Manager administrators</a> in the <i>Firewall Manager Developer Guide</i>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/DisassociateAdminAccountCommand.d.ts

@@ -19,9 +19,8 @@ export interface DisassociateAdminAccountCommandOutput extends __MetadataBearer
 }
 /**
  * @public
- * <p>Disassociates the account that has been set as the Firewall Manager administrator
- *       account. To set a different account as the administrator account, you must submit an
- *         <code>AssociateAdminAccount</code> request.</p>
+ * <p>Disassociates an Firewall Manager administrator account. To set a different account as an Firewall Manager administrator, submit a <a>PutAdminAccount</a> request. To set an account as a default administrator account, you must submit an <a>AssociateAdminAccount</a> request.</p>
+ *          <p>Disassociation of the default administrator account follows the first in, last out principle. If you are the default administrator, all Firewall Manager administrators within the organization must first disassociate their accounts before you can disassociate your account.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/GetAdminAccountCommand.d.ts

@@ -20,7 +20,7 @@ export interface GetAdminAccountCommandOutput extends GetAdminAccountResponse, _
 /**
  * @public
  * <p>Returns the Organizations account that is associated with Firewall Manager
- *       as the Firewall Manager administrator.</p>
+ *       as the Firewall Manager default administrator.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/GetAdminScopeCommand.d.ts

@@ -0,0 +1,80 @@
+import { EndpointParameterInstructions } from "@aws-sdk/middleware-endpoint";
+import { Command as $Command } from "@aws-sdk/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
+import { FMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../FMSClient";
+import { GetAdminScopeRequest, GetAdminScopeResponse } from "../models/models_0";
+/**
+ * @public
+ *
+ * The input for {@link GetAdminScopeCommand}.
+ */
+export interface GetAdminScopeCommandInput extends GetAdminScopeRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link GetAdminScopeCommand}.
+ */
+export interface GetAdminScopeCommandOutput extends GetAdminScopeResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Returns information about the specified account's administrative scope. The admistrative scope defines the resources that an Firewall Manager administrator can manage.</p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { FMSClient, GetAdminScopeCommand } from "@aws-sdk/client-fms"; // ES Modules import
+ * // const { FMSClient, GetAdminScopeCommand } = require("@aws-sdk/client-fms"); // CommonJS import
+ * const client = new FMSClient(config);
+ * const input = { // GetAdminScopeRequest
+ *   AdminAccount: "STRING_VALUE", // required
+ * };
+ * const command = new GetAdminScopeCommand(input);
+ * const response = await client.send(command);
+ * ```
+ *
+ * @param GetAdminScopeCommandInput - {@link GetAdminScopeCommandInput}
+ * @returns {@link GetAdminScopeCommandOutput}
+ * @see {@link GetAdminScopeCommandInput} for command's `input` shape.
+ * @see {@link GetAdminScopeCommandOutput} for command's `response` shape.
+ * @see {@link FMSClientResolvedConfig | config} for FMSClient's `config` shape.
+ *
+ * @throws {@link InternalErrorException} (client fault)
+ *  <p>The operation failed because of a system problem, even though the request was valid. Retry
+ *       your request.</p>
+ *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The parameters of the request were invalid.</p>
+ *
+ * @throws {@link InvalidOperationException} (client fault)
+ *  <p>The operation failed because there was nothing to do or the operation wasn't possible. For example, you might have
+ *         submitted an <code>AssociateAdminAccount</code> request for an account ID that
+ *             was already set as the Firewall Manager administrator. Or you might have tried to access a Region
+ *   that's disabled by default, and that you need to enable for the Firewall Manager
+ *   administrator account and for Organizations before you can access it.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The specified resource was not found.</p>
+ *
+ *
+ */
+export declare class GetAdminScopeCommand extends $Command<GetAdminScopeCommandInput, GetAdminScopeCommandOutput, FMSClientResolvedConfig> {
+    readonly input: GetAdminScopeCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: GetAdminScopeCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: FMSClientResolvedConfig, options?: __HttpHandlerOptions): Handler<GetAdminScopeCommandInput, GetAdminScopeCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}

package/dist-types/commands/GetComplianceDetailCommand.d.ts

@@ -23,23 +23,23 @@ export interface GetComplianceDetailCommandOutput extends GetComplianceDetailRes
  *       include resources that are in and out of compliance with the specified policy. </p>
  *          <ul>
  *             <li>
- *               <p>Resources are
+ *                <p>Resources are
  *               considered noncompliant for WAF and Shield Advanced policies if the specified policy has
  *               not been applied to them.</p>
  *             </li>
  *             <li>
- *               <p>Resources are considered noncompliant for security group policies if
+ *                <p>Resources are considered noncompliant for security group policies if
  *               they are in scope of the policy, they violate one or more of the policy rules, and remediation
  *               is disabled or not possible.</p>
  *             </li>
  *             <li>
- *               <p>Resources are considered noncompliant for Network Firewall policies
+ *                <p>Resources are considered noncompliant for Network Firewall policies
  *                 if a firewall is missing in the VPC, if the firewall endpoint isn't set up in an expected Availability Zone and subnet,
  *                 if a subnet created by the Firewall Manager doesn't have the expected route table,
  *                 and for modifications to a firewall policy that violate the Firewall Manager policy's rules.</p>
  *             </li>
  *             <li>
- *               <p>Resources are considered noncompliant for DNS Firewall policies
+ *                <p>Resources are considered noncompliant for DNS Firewall policies
  *               if a DNS Firewall rule group is missing from the rule group associations for the VPC. </p>
  *             </li>
  *          </ul>

package/dist-types/commands/ListAdminAccountsForOrganizationCommand.d.ts

@@ -0,0 +1,79 @@
+import { EndpointParameterInstructions } from "@aws-sdk/middleware-endpoint";
+import { Command as $Command } from "@aws-sdk/smithy-client";
+import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
+import { FMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../FMSClient";
+import { ListAdminAccountsForOrganizationRequest, ListAdminAccountsForOrganizationResponse } from "../models/models_0";
+/**
+ * @public
+ *
+ * The input for {@link ListAdminAccountsForOrganizationCommand}.
+ */
+export interface ListAdminAccountsForOrganizationCommandInput extends ListAdminAccountsForOrganizationRequest {
+}
+/**
+ * @public
+ *
+ * The output of {@link ListAdminAccountsForOrganizationCommand}.
+ */
+export interface ListAdminAccountsForOrganizationCommandOutput extends ListAdminAccountsForOrganizationResponse, __MetadataBearer {
+}
+/**
+ * @public
+ * <p>Returns a <code>AdminAccounts</code> object that lists the Firewall Manager administrators within the organization that are onboarded to Firewall Manager by <a>AssociateAdminAccount</a>.</p>
+ *          <p>This operation can be called only from the organization's management account.</p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { FMSClient, ListAdminAccountsForOrganizationCommand } from "@aws-sdk/client-fms"; // ES Modules import
+ * // const { FMSClient, ListAdminAccountsForOrganizationCommand } = require("@aws-sdk/client-fms"); // CommonJS import
+ * const client = new FMSClient(config);
+ * const input = { // ListAdminAccountsForOrganizationRequest
+ *   NextToken: "STRING_VALUE",
+ *   MaxResults: Number("int"),
+ * };
+ * const command = new ListAdminAccountsForOrganizationCommand(input);
+ * const response = await client.send(command);
+ * ```
+ *
+ * @param ListAdminAccountsForOrganizationCommandInput - {@link ListAdminAccountsForOrganizationCommandInput}
+ * @returns {@link ListAdminAccountsForOrganizationCommandOutput}
+ * @see {@link ListAdminAccountsForOrganizationCommandInput} for command's `input` shape.
+ * @see {@link ListAdminAccountsForOrganizationCommandOutput} for command's `response` shape.
+ * @see {@link FMSClientResolvedConfig | config} for FMSClient's `config` shape.
+ *
+ * @throws {@link InternalErrorException} (client fault)
+ *  <p>The operation failed because of a system problem, even though the request was valid. Retry
+ *       your request.</p>
+ *
+ * @throws {@link InvalidOperationException} (client fault)
+ *  <p>The operation failed because there was nothing to do or the operation wasn't possible. For example, you might have
+ *         submitted an <code>AssociateAdminAccount</code> request for an account ID that
+ *             was already set as the Firewall Manager administrator. Or you might have tried to access a Region
+ *   that's disabled by default, and that you need to enable for the Firewall Manager
+ *   administrator account and for Organizations before you can access it.</p>
+ *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>The specified resource was not found.</p>
+ *
+ *
+ */
+export declare class ListAdminAccountsForOrganizationCommand extends $Command<ListAdminAccountsForOrganizationCommandInput, ListAdminAccountsForOrganizationCommandOutput, FMSClientResolvedConfig> {
+    readonly input: ListAdminAccountsForOrganizationCommandInput;
+    static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
+    constructor(input: ListAdminAccountsForOrganizationCommandInput);
+    /**
+     * @internal
+     */
+    resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: FMSClientResolvedConfig, options?: __HttpHandlerOptions): Handler<ListAdminAccountsForOrganizationCommandInput, ListAdminAccountsForOrganizationCommandOutput>;
+    /**
+     * @internal
+     */
+    private serialize;
+    /**
+     * @internal
+     */
+    private deserialize;
+}