@aws-sdk/client-iam 3.289.0 → 3.291.0

package/dist-types/commands/DeleteSAMLProviderCommand.d.ts

@@ -35,6 +35,23 @@ export interface DeleteSAMLProviderCommandOutput extends __MetadataBearer {
  * @see {@link DeleteSAMLProviderCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because an invalid or out-of-range value was supplied for an
+ *       input parameter.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current
+ *       Amazon Web Services account limits. The error message describes the limit exceeded.</p>
+ *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  */
 export declare class DeleteSAMLProviderCommand extends $Command<DeleteSAMLProviderCommandInput, DeleteSAMLProviderCommandOutput, IAMClientResolvedConfig> {
     readonly input: DeleteSAMLProviderCommandInput;

package/dist-types/commands/DeleteSSHPublicKeyCommand.d.ts

@@ -33,6 +33,11 @@ export interface DeleteSSHPublicKeyCommandOutput extends __MetadataBearer {
  * @see {@link DeleteSSHPublicKeyCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ *
  */
 export declare class DeleteSSHPublicKeyCommand extends $Command<DeleteSSHPublicKeyCommandInput, DeleteSSHPublicKeyCommandOutput, IAMClientResolvedConfig> {
     readonly input: DeleteSSHPublicKeyCommandInput;

package/dist-types/commands/DeleteServerCertificateCommand.d.ts

@@ -43,6 +43,23 @@ export interface DeleteServerCertificateCommandOutput extends __MetadataBearer {
  * @see {@link DeleteServerCertificateCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link DeleteConflictException} (client fault)
+ *  <p>The request was rejected because it attempted to delete a resource that has attached
+ *       subordinate entities. The error message describes these entities.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current
+ *       Amazon Web Services account limits. The error message describes the limit exceeded.</p>
+ *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  */
 export declare class DeleteServerCertificateCommand extends $Command<DeleteServerCertificateCommandInput, DeleteServerCertificateCommandOutput, IAMClientResolvedConfig> {
     readonly input: DeleteServerCertificateCommandInput;

package/dist-types/commands/DeleteServiceLinkedRoleCommand.d.ts

@@ -45,6 +45,19 @@ export interface DeleteServiceLinkedRoleCommandOutput extends DeleteServiceLinke
  * @see {@link DeleteServiceLinkedRoleCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current
+ *       Amazon Web Services account limits. The error message describes the limit exceeded.</p>
+ *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  */
 export declare class DeleteServiceLinkedRoleCommand extends $Command<DeleteServiceLinkedRoleCommandInput, DeleteServiceLinkedRoleCommandOutput, IAMClientResolvedConfig> {
     readonly input: DeleteServiceLinkedRoleCommandInput;

package/dist-types/commands/DeleteServiceSpecificCredentialCommand.d.ts

@@ -29,6 +29,11 @@ export interface DeleteServiceSpecificCredentialCommandOutput extends __Metadata
  * @see {@link DeleteServiceSpecificCredentialCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ *
  */
 export declare class DeleteServiceSpecificCredentialCommand extends $Command<DeleteServiceSpecificCredentialCommandInput, DeleteServiceSpecificCredentialCommandOutput, IAMClientResolvedConfig> {
     readonly input: DeleteServiceSpecificCredentialCommandInput;

package/dist-types/commands/DeleteSigningCertificateCommand.d.ts

@@ -33,6 +33,19 @@ export interface DeleteSigningCertificateCommandOutput extends __MetadataBearer
  * @see {@link DeleteSigningCertificateCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current
+ *       Amazon Web Services account limits. The error message describes the limit exceeded.</p>
+ *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  * @example To delete a signing certificate for an IAM user
  * ```javascript
  * // The following command deletes the specified signing certificate for the IAM user named Anika.

package/dist-types/commands/DeleteUserCommand.d.ts

@@ -61,6 +61,27 @@ export interface DeleteUserCommandOutput extends __MetadataBearer {
  * @see {@link DeleteUserCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link ConcurrentModificationException} (client fault)
+ *  <p>The request was rejected because multiple requests to change this object were submitted
+ *       simultaneously. Wait a few minutes and submit your request again.</p>
+ *
+ * @throws {@link DeleteConflictException} (client fault)
+ *  <p>The request was rejected because it attempted to delete a resource that has attached
+ *       subordinate entities. The error message describes these entities.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current
+ *       Amazon Web Services account limits. The error message describes the limit exceeded.</p>
+ *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  * @example To delete an IAM user
  * ```javascript
  * // The following command removes the IAM user named Bob from the current account.

package/dist-types/commands/DeleteUserPermissionsBoundaryCommand.d.ts

@@ -34,6 +34,15 @@ export interface DeleteUserPermissionsBoundaryCommandOutput extends __MetadataBe
  * @see {@link DeleteUserPermissionsBoundaryCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  */
 export declare class DeleteUserPermissionsBoundaryCommand extends $Command<DeleteUserPermissionsBoundaryCommandInput, DeleteUserPermissionsBoundaryCommandOutput, IAMClientResolvedConfig> {
     readonly input: DeleteUserPermissionsBoundaryCommandInput;

package/dist-types/commands/DeleteUserPolicyCommand.d.ts

@@ -34,6 +34,19 @@ export interface DeleteUserPolicyCommandOutput extends __MetadataBearer {
  * @see {@link DeleteUserPolicyCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current
+ *       Amazon Web Services account limits. The error message describes the limit exceeded.</p>
+ *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  * @example To remove a policy from an IAM user
  * ```javascript
  * // The following delete-user-policy command removes the specified policy from the IAM user named Juan:

package/dist-types/commands/DeleteVirtualMFADeviceCommand.d.ts

@@ -33,6 +33,23 @@ export interface DeleteVirtualMFADeviceCommandOutput extends __MetadataBearer {
  * @see {@link DeleteVirtualMFADeviceCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link DeleteConflictException} (client fault)
+ *  <p>The request was rejected because it attempted to delete a resource that has attached
+ *       subordinate entities. The error message describes these entities.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current
+ *       Amazon Web Services account limits. The error message describes the limit exceeded.</p>
+ *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  * @example To remove a virtual MFA device
  * ```javascript
  * // The following delete-virtual-mfa-device command removes the specified MFA device from the current AWS account.

package/dist-types/commands/DetachGroupPolicyCommand.d.ts

@@ -33,6 +33,23 @@ export interface DetachGroupPolicyCommandOutput extends __MetadataBearer {
  * @see {@link DetachGroupPolicyCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because an invalid or out-of-range value was supplied for an
+ *       input parameter.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current
+ *       Amazon Web Services account limits. The error message describes the limit exceeded.</p>
+ *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  */
 export declare class DetachGroupPolicyCommand extends $Command<DetachGroupPolicyCommandInput, DetachGroupPolicyCommandOutput, IAMClientResolvedConfig> {
     readonly input: DetachGroupPolicyCommandInput;

package/dist-types/commands/DetachRolePolicyCommand.d.ts

@@ -33,6 +33,29 @@ export interface DetachRolePolicyCommandOutput extends __MetadataBearer {
  * @see {@link DetachRolePolicyCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because an invalid or out-of-range value was supplied for an
+ *       input parameter.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current
+ *       Amazon Web Services account limits. The error message describes the limit exceeded.</p>
+ *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ * @throws {@link UnmodifiableEntityException} (client fault)
+ *  <p>The request was rejected because only the service that depends on the service-linked role
+ *       can modify or delete the role on your behalf. The error message includes the name of the
+ *       service that depends on this service-linked role. You must request the change through that
+ *       service.</p>
+ *
+ *
  */
 export declare class DetachRolePolicyCommand extends $Command<DetachRolePolicyCommandInput, DetachRolePolicyCommandOutput, IAMClientResolvedConfig> {
     readonly input: DetachRolePolicyCommandInput;

package/dist-types/commands/DetachUserPolicyCommand.d.ts

@@ -33,6 +33,23 @@ export interface DetachUserPolicyCommandOutput extends __MetadataBearer {
  * @see {@link DetachUserPolicyCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because an invalid or out-of-range value was supplied for an
+ *       input parameter.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current
+ *       Amazon Web Services account limits. The error message describes the limit exceeded.</p>
+ *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  */
 export declare class DetachUserPolicyCommand extends $Command<DetachUserPolicyCommandInput, DetachUserPolicyCommandOutput, IAMClientResolvedConfig> {
     readonly input: DetachUserPolicyCommandInput;

package/dist-types/commands/EnableMFADeviceCommand.d.ts

@@ -31,6 +31,33 @@ export interface EnableMFADeviceCommandOutput extends __MetadataBearer {
  * @see {@link EnableMFADeviceCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link EntityAlreadyExistsException} (client fault)
+ *  <p>The request was rejected because it attempted to create a resource that already
+ *       exists.</p>
+ *
+ * @throws {@link EntityTemporarilyUnmodifiableException} (client fault)
+ *  <p>The request was rejected because it referenced an entity that is temporarily unmodifiable,
+ *       such as a user name that was deleted and then recreated. The error indicates that the request
+ *       is likely to succeed if you try again after waiting several minutes. The error message
+ *       describes the entity.</p>
+ *
+ * @throws {@link InvalidAuthenticationCodeException} (client fault)
+ *  <p>The request was rejected because the authentication code was not recognized. The error
+ *       message describes the specific error.</p>
+ *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current
+ *       Amazon Web Services account limits. The error message describes the limit exceeded.</p>
+ *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  */
 export declare class EnableMFADeviceCommand extends $Command<EnableMFADeviceCommandInput, EnableMFADeviceCommandOutput, IAMClientResolvedConfig> {
     readonly input: EnableMFADeviceCommandInput;

package/dist-types/commands/GenerateCredentialReportCommand.d.ts

@@ -31,6 +31,15 @@ export interface GenerateCredentialReportCommandOutput extends GenerateCredentia
  * @see {@link GenerateCredentialReportCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link LimitExceededException} (client fault)
+ *  <p>The request was rejected because it attempted to create resources beyond the current
+ *       Amazon Web Services account limits. The error message describes the limit exceeded.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  */
 export declare class GenerateCredentialReportCommand extends $Command<GenerateCredentialReportCommandInput, GenerateCredentialReportCommandOutput, IAMClientResolvedConfig> {
     readonly input: GenerateCredentialReportCommandInput;

package/dist-types/commands/GenerateOrganizationsAccessReportCommand.d.ts

@@ -18,12 +18,11 @@ export interface GenerateOrganizationsAccessReportCommandOutput extends Generate
  *             report for any entities (organization root, organizational unit, or account) or policies
  *             in your organization.</p>
  *          <p>To call this operation, you must be signed in using your Organizations management account
- *             credentials. You can use your long-term IAM user or root user credentials, or
- *             temporary credentials from assuming an IAM role. SCPs must be enabled for your
- *             organization root. You must have the required IAM and Organizations permissions. For more
- *             information, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html">Refining permissions using
- *                 service last accessed data</a> in the
- *             <i>IAM User Guide</i>.</p>
+ *             credentials. You can use your long-term IAM user or root user credentials, or temporary
+ *             credentials from assuming an IAM role. SCPs must be enabled for your organization
+ *             root. You must have the required IAM and Organizations permissions. For more information, see
+ *                 <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html">Refining permissions using service last accessed data</a> in the
+ *                 <i>IAM User Guide</i>.</p>
  *          <p>You can generate a service last accessed data report for entities by specifying only
  *             the entity's path. This data includes a list of services that are allowed by any service
  *             control policies (SCPs) that apply to the entity.</p>
@@ -160,6 +159,11 @@ export interface GenerateOrganizationsAccessReportCommandOutput extends Generate
  * @see {@link GenerateOrganizationsAccessReportCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link ReportGenerationLimitExceededException} (client fault)
+ *  <p>The request failed because the maximum number of concurrent requests for this account are
+ *       already running.</p>
+ *
+ *
  * @example To generate a service last accessed data report for an organizational unit
  * ```javascript
  * // The following operation generates a report for the organizational unit ou-rge0-awexample

package/dist-types/commands/GenerateServiceLastAccessedDetailsCommand.d.ts

@@ -82,6 +82,15 @@ export interface GenerateServiceLastAccessedDetailsCommandOutput extends Generat
  * @see {@link GenerateServiceLastAccessedDetailsCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because an invalid or out-of-range value was supplied for an
+ *       input parameter.</p>
+ *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ *
  * @example To generate a service last accessed data report for a policy
  * ```javascript
  * // The following operation generates a report for the policy: ExamplePolicy1

package/dist-types/commands/GetAccessKeyLastUsedCommand.d.ts

@@ -31,6 +31,11 @@ export interface GetAccessKeyLastUsedCommandOutput extends GetAccessKeyLastUsedR
  * @see {@link GetAccessKeyLastUsedCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ *
  */
 export declare class GetAccessKeyLastUsedCommand extends $Command<GetAccessKeyLastUsedCommandInput, GetAccessKeyLastUsedCommandOutput, IAMClientResolvedConfig> {
     readonly input: GetAccessKeyLastUsedCommandInput;

package/dist-types/commands/GetAccountAuthorizationDetailsCommand.d.ts

@@ -42,6 +42,11 @@ export interface GetAccountAuthorizationDetailsCommandOutput extends GetAccountA
  * @see {@link GetAccountAuthorizationDetailsCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  */
 export declare class GetAccountAuthorizationDetailsCommand extends $Command<GetAccountAuthorizationDetailsCommandInput, GetAccountAuthorizationDetailsCommandOutput, IAMClientResolvedConfig> {
     readonly input: GetAccountAuthorizationDetailsCommandInput;

package/dist-types/commands/GetAccountPasswordPolicyCommand.d.ts

@@ -32,6 +32,15 @@ export interface GetAccountPasswordPolicyCommandOutput extends GetAccountPasswor
  * @see {@link GetAccountPasswordPolicyCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  * @example To see the current account password policy
  * ```javascript
  * // The following command displays details about the password policy for the current AWS account.

package/dist-types/commands/GetAccountSummaryCommand.d.ts

@@ -32,6 +32,11 @@ export interface GetAccountSummaryCommandOutput extends GetAccountSummaryRespons
  * @see {@link GetAccountSummaryCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  * @example To get information about IAM entity quotas and usage in the current account
  * ```javascript
  * // The following command returns information about the IAM entity quotas and usage in the current AWS account.

package/dist-types/commands/GetContextKeysForCustomPolicyCommand.d.ts

@@ -38,6 +38,11 @@ export interface GetContextKeysForCustomPolicyCommandOutput extends GetContextKe
  * @see {@link GetContextKeysForCustomPolicyCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because an invalid or out-of-range value was supplied for an
+ *       input parameter.</p>
+ *
+ *
  */
 export declare class GetContextKeysForCustomPolicyCommand extends $Command<GetContextKeysForCustomPolicyCommandInput, GetContextKeysForCustomPolicyCommandOutput, IAMClientResolvedConfig> {
     readonly input: GetContextKeysForCustomPolicyCommandInput;

package/dist-types/commands/GetContextKeysForPrincipalPolicyCommand.d.ts

@@ -42,6 +42,15 @@ export interface GetContextKeysForPrincipalPolicyCommandOutput extends GetContex
  * @see {@link GetContextKeysForPrincipalPolicyCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because an invalid or out-of-range value was supplied for an
+ *       input parameter.</p>
+ *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ *
  */
 export declare class GetContextKeysForPrincipalPolicyCommand extends $Command<GetContextKeysForPrincipalPolicyCommandInput, GetContextKeysForPrincipalPolicyCommandOutput, IAMClientResolvedConfig> {
     readonly input: GetContextKeysForPrincipalPolicyCommandInput;

package/dist-types/commands/GetCredentialReportCommand.d.ts

@@ -31,6 +31,24 @@ export interface GetCredentialReportCommandOutput extends GetCredentialReportRes
  * @see {@link GetCredentialReportCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link CredentialReportExpiredException} (client fault)
+ *  <p>The request was rejected because the most recent credential report has expired. To
+ *       generate a new credential report, use <a>GenerateCredentialReport</a>. For more
+ *       information about credential report expiration, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/credential-reports.html">Getting credential reports</a> in the
+ *         <i>IAM User Guide</i>.</p>
+ *
+ * @throws {@link CredentialReportNotPresentException} (client fault)
+ *  <p>The request was rejected because the credential report does not exist. To generate a
+ *       credential report, use <a>GenerateCredentialReport</a>.</p>
+ *
+ * @throws {@link CredentialReportNotReadyException} (client fault)
+ *  <p>The request was rejected because the credential report is still being generated.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  */
 export declare class GetCredentialReportCommand extends $Command<GetCredentialReportCommandInput, GetCredentialReportCommandOutput, IAMClientResolvedConfig> {
     readonly input: GetCredentialReportCommandInput;

package/dist-types/commands/GetGroupCommand.d.ts

@@ -30,6 +30,15 @@ export interface GetGroupCommandOutput extends GetGroupResponse, __MetadataBeare
  * @see {@link GetGroupCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  */
 export declare class GetGroupCommand extends $Command<GetGroupCommandInput, GetGroupCommandOutput, IAMClientResolvedConfig> {
     readonly input: GetGroupCommandInput;

package/dist-types/commands/GetGroupPolicyCommand.d.ts

@@ -43,6 +43,15 @@ export interface GetGroupPolicyCommandOutput extends GetGroupPolicyResponse, __M
  * @see {@link GetGroupPolicyCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  */
 export declare class GetGroupPolicyCommand extends $Command<GetGroupPolicyCommandInput, GetGroupPolicyCommandOutput, IAMClientResolvedConfig> {
     readonly input: GetGroupPolicyCommandInput;

package/dist-types/commands/GetInstanceProfileCommand.d.ts

@@ -32,6 +32,15 @@ export interface GetInstanceProfileCommandOutput extends GetInstanceProfileRespo
  * @see {@link GetInstanceProfileCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  * @example To get information about an instance profile
  * ```javascript
  * // The following command gets information about the instance profile named ExampleInstanceProfile.

package/dist-types/commands/GetLoginProfileCommand.d.ts

@@ -38,6 +38,15 @@ export interface GetLoginProfileCommandOutput extends GetLoginProfileResponse, _
  * @see {@link GetLoginProfileCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  * @example To get password information for an IAM user
  * ```javascript
  * // The following command gets information about the password for the IAM user named Anika.

package/dist-types/commands/GetOpenIDConnectProviderCommand.d.ts

@@ -30,6 +30,19 @@ export interface GetOpenIDConnectProviderCommandOutput extends GetOpenIDConnectP
  * @see {@link GetOpenIDConnectProviderCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link InvalidInputException} (client fault)
+ *  <p>The request was rejected because an invalid or out-of-range value was supplied for an
+ *       input parameter.</p>
+ *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ * @throws {@link ServiceFailureException} (server fault)
+ *  <p>The request processing has failed because of an unknown error, exception or
+ *       failure.</p>
+ *
+ *
  */
 export declare class GetOpenIDConnectProviderCommand extends $Command<GetOpenIDConnectProviderCommandInput, GetOpenIDConnectProviderCommandOutput, IAMClientResolvedConfig> {
     readonly input: GetOpenIDConnectProviderCommandInput;

package/dist-types/commands/GetOrganizationsAccessReportCommand.d.ts

@@ -27,11 +27,11 @@ export interface GetOrganizationsAccessReportCommandOutput extends GetOrganizati
  *             to perform this operation. For more information, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html">Refining permissions using
  *                 service last accessed data</a> in the
  *             <i>IAM User Guide</i>.</p>
- *          <p>For each service that principals in an account (root users, IAM users, or IAM
- *             roles) could access using SCPs, the operation returns details about the most recent
- *             access attempt. If there was no attempt, the service is listed without details about the
- *             most recent attempt to access the service. If the operation fails, it returns the reason
- *             that it failed.</p>
+ *          <p>For each service that principals in an account (root user, IAM users, or IAM roles)
+ *             could access using SCPs, the operation returns details about the most recent access
+ *             attempt. If there was no attempt, the service is listed without details about the most
+ *             recent attempt to access the service. If the operation fails, it returns the reason that
+ *             it failed.</p>
  *          <p>By default, the list is sorted by service namespace.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
@@ -47,6 +47,11 @@ export interface GetOrganizationsAccessReportCommandOutput extends GetOrganizati
  * @see {@link GetOrganizationsAccessReportCommandOutput} for command's `response` shape.
  * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
  *
+ * @throws {@link NoSuchEntityException} (client fault)
+ *  <p>The request was rejected because it referenced a resource entity that does not exist. The
+ *       error message describes the resource.</p>
+ *
+ *
  * @example To get details from a previously generated organizational unit report
  * ```javascript
  * // The following operation gets details about the report with the job ID: examplea-1234-b567-cde8-90fg123abcd4