@aws-sdk/client-iam 3.296.0 → 3.297.0

package/dist-types/models/models_0.d.ts

@@ -1,10 +1,14 @@
 import { ExceptionOptionType as __ExceptionOptionType } from "@aws-sdk/smithy-client";
 import { IAMServiceException as __BaseException } from "./IAMServiceException";
+/**
+ * @public
+ */
 export declare enum AccessAdvisorUsageGranularityType {
     ACTION_LEVEL = "ACTION_LEVEL",
     SERVICE_LEVEL = "SERVICE_LEVEL"
 }
 /**
+ * @public
  * <p>An object that contains details about when a principal in the reported Organizations entity
  *          last attempted to access an Amazon Web Services service. A principal can be an IAM user, an IAM role,
  *          or the Amazon Web Services account root user within the reported Organizations entity.</p>
@@ -53,11 +57,15 @@ export interface AccessDetail {
      */
     TotalAuthenticatedEntities?: number;
 }
+/**
+ * @public
+ */
 export declare enum StatusType {
     Active = "Active",
     Inactive = "Inactive"
 }
 /**
+ * @public
  * <p>Contains information about an Amazon Web Services access key.</p>
  *          <p> This data type is used as a response element in the <a>CreateAccessKey</a>
  *          and <a>ListAccessKeys</a> operations. </p>
@@ -91,6 +99,7 @@ export interface AccessKey {
     CreateDate?: Date;
 }
 /**
+ * @public
  * <p>Contains information about the last time an Amazon Web Services access key was used since IAM began
  *          tracking this information on April 22, 2015.</p>
  *          <p>This data type is used as a response element in the <a>GetAccessKeyLastUsed</a> operation.</p>
@@ -152,6 +161,7 @@ export interface AccessKeyLastUsed {
     Region: string | undefined;
 }
 /**
+ * @public
  * <p>Contains information about an Amazon Web Services access key, without its secret key.</p>
  *          <p>This data type is used as a response element in the <a>ListAccessKeys</a>
  *          operation.</p>
@@ -175,6 +185,9 @@ export interface AccessKeyMetadata {
      */
     CreateDate?: Date;
 }
+/**
+ * @public
+ */
 export interface AddClientIDToOpenIDConnectProviderRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of the IAM OpenID Connect (OIDC) provider resource to
@@ -188,6 +201,7 @@ export interface AddClientIDToOpenIDConnectProviderRequest {
     ClientID: string | undefined;
 }
 /**
+ * @public
  * <p>The request was rejected because an invalid or out-of-range value was supplied for an
  *       input parameter.</p>
  */
@@ -200,6 +214,7 @@ export declare class InvalidInputException extends __BaseException {
     constructor(opts: __ExceptionOptionType<InvalidInputException, __BaseException>);
 }
 /**
+ * @public
  * <p>The request was rejected because it attempted to create resources beyond the current
  *       Amazon Web Services account limits. The error message describes the limit exceeded.</p>
  */
@@ -212,6 +227,7 @@ export declare class LimitExceededException extends __BaseException {
     constructor(opts: __ExceptionOptionType<LimitExceededException, __BaseException>);
 }
 /**
+ * @public
  * <p>The request was rejected because it referenced a resource entity that does not exist. The
  *       error message describes the resource.</p>
  */
@@ -224,6 +240,7 @@ export declare class NoSuchEntityException extends __BaseException {
     constructor(opts: __ExceptionOptionType<NoSuchEntityException, __BaseException>);
 }
 /**
+ * @public
  * <p>The request processing has failed because of an unknown error, exception or
  *       failure.</p>
  */
@@ -235,6 +252,9 @@ export declare class ServiceFailureException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<ServiceFailureException, __BaseException>);
 }
+/**
+ * @public
+ */
 export interface AddRoleToInstanceProfileRequest {
     /**
      * <p>The name of the instance profile to update.</p>
@@ -250,6 +270,7 @@ export interface AddRoleToInstanceProfileRequest {
     RoleName: string | undefined;
 }
 /**
+ * @public
  * <p>The request was rejected because it attempted to create a resource that already
  *       exists.</p>
  */
@@ -262,10 +283,11 @@ export declare class EntityAlreadyExistsException extends __BaseException {
     constructor(opts: __ExceptionOptionType<EntityAlreadyExistsException, __BaseException>);
 }
 /**
- * <p>The request was rejected because only the service that depends on the service-linked role
- *       can modify or delete the role on your behalf. The error message includes the name of the
- *       service that depends on this service-linked role. You must request the change through that
- *       service.</p>
+ * @public
+ * <p>The request was rejected because service-linked roles are protected Amazon Web Services resources. Only
+ *       the service that depends on the service-linked role can modify or delete the role on your
+ *       behalf. The error message includes the name of the service that depends on this service-linked
+ *       role. You must request the change through that service.</p>
  */
 export declare class UnmodifiableEntityException extends __BaseException {
     readonly name: "UnmodifiableEntityException";
@@ -275,6 +297,9 @@ export declare class UnmodifiableEntityException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<UnmodifiableEntityException, __BaseException>);
 }
+/**
+ * @public
+ */
 export interface AddUserToGroupRequest {
     /**
      * <p>The name of the group to update.</p>
@@ -289,15 +314,22 @@ export interface AddUserToGroupRequest {
      */
     UserName: string | undefined;
 }
+/**
+ * @public
+ */
 export declare enum AssignmentStatusType {
     Any = "Any",
     Assigned = "Assigned",
     Unassigned = "Unassigned"
 }
+/**
+ * @public
+ */
 export declare enum PermissionsBoundaryAttachmentType {
     Policy = "PermissionsBoundaryPolicy"
 }
 /**
+ * @public
  * <p>Contains information about an attached permissions boundary.</p>
  *          <p>An attached permissions boundary is a managed policy that has been attached to a user or
  *          role to set the permissions boundary.</p>
@@ -317,6 +349,7 @@ export interface AttachedPermissionsBoundary {
     PermissionsBoundaryArn?: string;
 }
 /**
+ * @public
  * <p>Contains information about an attached policy.</p>
  *          <p>An attached policy is a managed policy that has been attached to a user, group, or role.
  *          This data type is used as a response element in the <a>ListAttachedGroupPolicies</a>, <a>ListAttachedRolePolicies</a>, <a>ListAttachedUserPolicies</a>, and <a>GetAccountAuthorizationDetails</a> operations. </p>
@@ -335,6 +368,9 @@ export interface AttachedPolicy {
      */
     PolicyArn?: string;
 }
+/**
+ * @public
+ */
 export interface AttachGroupPolicyRequest {
     /**
      * <p>The name (friendly name, not ARN) of the group to attach the policy to.</p>
@@ -349,6 +385,7 @@ export interface AttachGroupPolicyRequest {
     PolicyArn: string | undefined;
 }
 /**
+ * @public
  * <p>The request failed because Amazon Web Services service role policies can only be attached to the
  *       service-linked role for that service.</p>
  */
@@ -360,6 +397,9 @@ export declare class PolicyNotAttachableException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<PolicyNotAttachableException, __BaseException>);
 }
+/**
+ * @public
+ */
 export interface AttachRolePolicyRequest {
     /**
      * <p>The name (friendly name, not ARN) of the role to attach the policy to.</p>
@@ -373,6 +413,9 @@ export interface AttachRolePolicyRequest {
      */
     PolicyArn: string | undefined;
 }
+/**
+ * @public
+ */
 export interface AttachUserPolicyRequest {
     /**
      * <p>The name (friendly name, not ARN) of the IAM user to attach the policy to.</p>
@@ -386,6 +429,9 @@ export interface AttachUserPolicyRequest {
      */
     PolicyArn: string | undefined;
 }
+/**
+ * @public
+ */
 export interface ChangePasswordRequest {
     /**
      * <p>The IAM user's current password.</p>
@@ -405,6 +451,7 @@ export interface ChangePasswordRequest {
     NewPassword: string | undefined;
 }
 /**
+ * @public
  * <p>The request was rejected because it referenced an entity that is temporarily unmodifiable,
  *       such as a user name that was deleted and then recreated. The error indicates that the request
  *       is likely to succeed if you try again after waiting several minutes. The error message
@@ -419,6 +466,7 @@ export declare class EntityTemporarilyUnmodifiableException extends __BaseExcept
     constructor(opts: __ExceptionOptionType<EntityTemporarilyUnmodifiableException, __BaseException>);
 }
 /**
+ * @public
  * <p>The request was rejected because the type of user for the transaction was
  *       incorrect.</p>
  */
@@ -431,6 +479,7 @@ export declare class InvalidUserTypeException extends __BaseException {
     constructor(opts: __ExceptionOptionType<InvalidUserTypeException, __BaseException>);
 }
 /**
+ * @public
  * <p>The request was rejected because the provided password did not meet the requirements
  *       imposed by the account password policy.</p>
  */
@@ -442,6 +491,9 @@ export declare class PasswordPolicyViolationException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<PasswordPolicyViolationException, __BaseException>);
 }
+/**
+ * @public
+ */
 export interface CreateAccessKeyRequest {
     /**
      * <p>The name of the IAM user that the new key will belong to.</p>
@@ -451,6 +503,7 @@ export interface CreateAccessKeyRequest {
     UserName?: string;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>CreateAccessKey</a> request.
  *     </p>
  */
@@ -460,6 +513,9 @@ export interface CreateAccessKeyResponse {
      */
     AccessKey: AccessKey | undefined;
 }
+/**
+ * @public
+ */
 export interface CreateAccountAliasRequest {
     /**
      * <p>The account alias to create.</p>
@@ -469,6 +525,9 @@ export interface CreateAccountAliasRequest {
      */
     AccountAlias: string | undefined;
 }
+/**
+ * @public
+ */
 export interface CreateGroupRequest {
     /**
      * <p> The path to the group. For more information about paths, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html">IAM
@@ -489,6 +548,7 @@ export interface CreateGroupRequest {
     GroupName: string | undefined;
 }
 /**
+ * @public
  * <p>Contains information about an IAM group entity.</p>
  *          <p>This data type is used as a response element in the following operations:</p>
  *          <ul>
@@ -538,6 +598,7 @@ export interface Group {
     CreateDate: Date | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>CreateGroup</a> request. </p>
  */
 export interface CreateGroupResponse {
@@ -547,6 +608,7 @@ export interface CreateGroupResponse {
     Group: Group | undefined;
 }
 /**
+ * @public
  * <p>The request was rejected because multiple requests to change this object were submitted
  *       simultaneously. Wait a few minutes and submit your request again.</p>
  */
@@ -559,6 +621,7 @@ export declare class ConcurrentModificationException extends __BaseException {
     constructor(opts: __ExceptionOptionType<ConcurrentModificationException, __BaseException>);
 }
 /**
+ * @public
  * <p>A structure that represents user-provided metadata that can be associated with an IAM
  *       resource. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
  *       <i>IAM User Guide</i>.</p>
@@ -584,6 +647,9 @@ export interface Tag {
      */
     Value: string | undefined;
 }
+/**
+ * @public
+ */
 export interface CreateInstanceProfileRequest {
     /**
      * <p>The name of the instance profile to create.</p>
@@ -613,6 +679,7 @@ export interface CreateInstanceProfileRequest {
     Tags?: Tag[];
 }
 /**
+ * @public
  * <p>Contains information about the last time that an IAM role was used. This includes the
  *          date and time and the Region in which the role was last used. Activity is only reported for
  *          the trailing 400 days. This period can be shorter if your Region began supporting these
@@ -637,6 +704,7 @@ export interface RoleLastUsed {
     Region?: string;
 }
 /**
+ * @public
  * <p>Contains information about an IAM role. This structure is returned as a response
  *          element in several API operations that interact with roles.</p>
  */
@@ -704,6 +772,7 @@ export interface Role {
     RoleLastUsed?: RoleLastUsed;
 }
 /**
+ * @public
  * <p>Contains information about an instance profile.</p>
  *          <p>This data type is used as a response element in the following operations:</p>
  *          <ul>
@@ -765,6 +834,7 @@ export interface InstanceProfile {
     Tags?: Tag[];
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>CreateInstanceProfile</a> request.
  *     </p>
  */
@@ -774,6 +844,9 @@ export interface CreateInstanceProfileResponse {
      */
     InstanceProfile: InstanceProfile | undefined;
 }
+/**
+ * @public
+ */
 export interface CreateLoginProfileRequest {
     /**
      * <p>The name of the IAM user to create a password for. The user must already
@@ -799,6 +872,7 @@ export interface CreateLoginProfileRequest {
     PasswordResetRequired?: boolean;
 }
 /**
+ * @public
  * <p>Contains the user name and password create date for a user.</p>
  *          <p> This data type is used as a response element in the <a>CreateLoginProfile</a> and <a>GetLoginProfile</a> operations. </p>
  */
@@ -817,6 +891,7 @@ export interface LoginProfile {
     PasswordResetRequired?: boolean;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>CreateLoginProfile</a> request.
  *     </p>
  */
@@ -826,6 +901,9 @@ export interface CreateLoginProfileResponse {
      */
     LoginProfile: LoginProfile | undefined;
 }
+/**
+ * @public
+ */
 export interface CreateOpenIDConnectProviderRequest {
     /**
      * <p>The URL of the identity provider. The URL must begin with <code>https://</code> and
@@ -883,6 +961,7 @@ export interface CreateOpenIDConnectProviderRequest {
     Tags?: Tag[];
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>CreateOpenIDConnectProvider</a>
  *       request. </p>
  */
@@ -900,6 +979,9 @@ export interface CreateOpenIDConnectProviderResponse {
      */
     Tags?: Tag[];
 }
+/**
+ * @public
+ */
 export interface CreatePolicyRequest {
     /**
      * <p>The friendly name of the policy.</p>
@@ -970,6 +1052,7 @@ export interface CreatePolicyRequest {
     Tags?: Tag[];
 }
 /**
+ * @public
  * <p>Contains information about a managed policy.</p>
  *          <p>This data type is used as a response element in the <a>CreatePolicy</a>,
  *             <a>GetPolicy</a>, and <a>ListPolicies</a> operations. </p>
@@ -1044,6 +1127,7 @@ export interface Policy {
     Tags?: Tag[];
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>CreatePolicy</a> request.
  *     </p>
  */
@@ -1054,6 +1138,7 @@ export interface CreatePolicyResponse {
     Policy?: Policy;
 }
 /**
+ * @public
  * <p>The request was rejected because the policy document was malformed. The error message
  *       describes the specific error.</p>
  */
@@ -1065,6 +1150,9 @@ export declare class MalformedPolicyDocumentException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<MalformedPolicyDocumentException, __BaseException>);
 }
+/**
+ * @public
+ */
 export interface CreatePolicyVersionRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of the IAM policy to which you want to add a new
@@ -1109,6 +1197,7 @@ export interface CreatePolicyVersionRequest {
     SetAsDefault?: boolean;
 }
 /**
+ * @public
  * <p>Contains information about a version of a managed policy.</p>
  *          <p>This data type is used as a response element in the <a>CreatePolicyVersion</a>, <a>GetPolicyVersion</a>, <a>ListPolicyVersions</a>, and <a>GetAccountAuthorizationDetails</a> operations. </p>
  *          <p>For more information about managed policies, refer to <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html">Managed policies and inline
@@ -1142,6 +1231,7 @@ export interface PolicyVersion {
     CreateDate?: Date;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>CreatePolicyVersion</a> request.
  *     </p>
  */
@@ -1151,6 +1241,9 @@ export interface CreatePolicyVersionResponse {
      */
     PolicyVersion?: PolicyVersion;
 }
+/**
+ * @public
+ */
 export interface CreateRoleRequest {
     /**
      * <p> The path to the role. For more information about paths, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html">IAM
@@ -1241,6 +1334,7 @@ export interface CreateRoleRequest {
     Tags?: Tag[];
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>CreateRole</a> request. </p>
  */
 export interface CreateRoleResponse {
@@ -1249,6 +1343,9 @@ export interface CreateRoleResponse {
      */
     Role: Role | undefined;
 }
+/**
+ * @public
+ */
 export interface CreateSAMLProviderRequest {
     /**
      * <p>An XML document generated by an identity provider (IdP) that supports SAML 2.0. The
@@ -1279,6 +1376,7 @@ export interface CreateSAMLProviderRequest {
     Tags?: Tag[];
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>CreateSAMLProvider</a> request.
  *     </p>
  */
@@ -1294,6 +1392,9 @@ export interface CreateSAMLProviderResponse {
      */
     Tags?: Tag[];
 }
+/**
+ * @public
+ */
 export interface CreateServiceLinkedRoleRequest {
     /**
      * <p>The service principal for the Amazon Web Services service to which this role is attached. You use a
@@ -1323,6 +1424,9 @@ export interface CreateServiceLinkedRoleRequest {
      */
     CustomSuffix?: string;
 }
+/**
+ * @public
+ */
 export interface CreateServiceLinkedRoleResponse {
     /**
      * <p>A <a>Role</a> object that contains details about the newly created
@@ -1330,6 +1434,9 @@ export interface CreateServiceLinkedRoleResponse {
      */
     Role?: Role;
 }
+/**
+ * @public
+ */
 export interface CreateServiceSpecificCredentialRequest {
     /**
      * <p>The name of the IAM user that is to be associated with the credentials. The new
@@ -1347,6 +1454,7 @@ export interface CreateServiceSpecificCredentialRequest {
     ServiceName: string | undefined;
 }
 /**
+ * @public
  * <p>Contains the details of a service-specific credential.</p>
  */
 export interface ServiceSpecificCredential {
@@ -1384,6 +1492,9 @@ export interface ServiceSpecificCredential {
      */
     Status: StatusType | string | undefined;
 }
+/**
+ * @public
+ */
 export interface CreateServiceSpecificCredentialResponse {
     /**
      * <p>A structure that contains information about the newly created service-specific
@@ -1396,6 +1507,7 @@ export interface CreateServiceSpecificCredentialResponse {
     ServiceSpecificCredential?: ServiceSpecificCredential;
 }
 /**
+ * @public
  * <p>The specified service does not support service-specific credentials.</p>
  */
 export declare class ServiceNotSupportedException extends __BaseException {
@@ -1406,6 +1518,9 @@ export declare class ServiceNotSupportedException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<ServiceNotSupportedException, __BaseException>);
 }
+/**
+ * @public
+ */
 export interface CreateUserRequest {
     /**
      * <p> The path for the user name. For more information about paths, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html">IAM
@@ -1448,6 +1563,7 @@ export interface CreateUserRequest {
     Tags?: Tag[];
 }
 /**
+ * @public
  * <p>Contains information about an IAM user entity.</p>
  *          <p>This data type is used as a response element in the following operations:</p>
  *          <ul>
@@ -1531,6 +1647,7 @@ export interface User {
     Tags?: Tag[];
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>CreateUser</a> request. </p>
  */
 export interface CreateUserResponse {
@@ -1539,6 +1656,9 @@ export interface CreateUserResponse {
      */
     User?: User;
 }
+/**
+ * @public
+ */
 export interface CreateVirtualMFADeviceRequest {
     /**
      * <p> The path for the virtual MFA device. For more information about paths, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html">IAM
@@ -1551,8 +1671,8 @@ export interface CreateVirtualMFADeviceRequest {
      */
     Path?: string;
     /**
-     * <p>The name of the virtual MFA device, which must be unique. Use with path to uniquely identify a virtual MFA
-     *             device.</p>
+     * <p>The name of the virtual MFA device, which must be unique. Use with path to uniquely
+     *             identify a virtual MFA device.</p>
      *          <p>This parameter allows (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters consisting of upper and lowercase alphanumeric
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      */
@@ -1569,6 +1689,7 @@ export interface CreateVirtualMFADeviceRequest {
     Tags?: Tag[];
 }
 /**
+ * @public
  * <p>Contains information about a virtual MFA device.</p>
  */
 export interface VirtualMFADevice {
@@ -1604,6 +1725,7 @@ export interface VirtualMFADevice {
     Tags?: Tag[];
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>CreateVirtualMFADevice</a> request.
  *     </p>
  */
@@ -1613,6 +1735,9 @@ export interface CreateVirtualMFADeviceResponse {
      */
     VirtualMFADevice: VirtualMFADevice | undefined;
 }
+/**
+ * @public
+ */
 export interface DeactivateMFADeviceRequest {
     /**
      * <p>The name of the user whose MFA device you want to deactivate.</p>
@@ -1629,6 +1754,9 @@ export interface DeactivateMFADeviceRequest {
      */
     SerialNumber: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteAccessKeyRequest {
     /**
      * <p>The name of the user whose access key pair you want to delete.</p>
@@ -1644,6 +1772,9 @@ export interface DeleteAccessKeyRequest {
      */
     AccessKeyId: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteAccountAliasRequest {
     /**
      * <p>The name of the account alias to delete.</p>
@@ -1654,6 +1785,7 @@ export interface DeleteAccountAliasRequest {
     AccountAlias: string | undefined;
 }
 /**
+ * @public
  * <p>The request was rejected because it attempted to delete a resource that has attached
  *       subordinate entities. The error message describes these entities.</p>
  */
@@ -1665,6 +1797,9 @@ export declare class DeleteConflictException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<DeleteConflictException, __BaseException>);
 }
+/**
+ * @public
+ */
 export interface DeleteGroupRequest {
     /**
      * <p>The name of the IAM group to delete.</p>
@@ -1673,6 +1808,9 @@ export interface DeleteGroupRequest {
      */
     GroupName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteGroupPolicyRequest {
     /**
      * <p>The name (friendly name, not ARN) identifying the group that the policy is embedded
@@ -1688,6 +1826,9 @@ export interface DeleteGroupPolicyRequest {
      */
     PolicyName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteInstanceProfileRequest {
     /**
      * <p>The name of the instance profile to delete.</p>
@@ -1696,6 +1837,9 @@ export interface DeleteInstanceProfileRequest {
      */
     InstanceProfileName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteLoginProfileRequest {
     /**
      * <p>The name of the user whose password you want to delete.</p>
@@ -1704,6 +1848,9 @@ export interface DeleteLoginProfileRequest {
      */
     UserName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteOpenIDConnectProviderRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of the IAM OpenID Connect provider resource object to
@@ -1711,6 +1858,9 @@ export interface DeleteOpenIDConnectProviderRequest {
      */
     OpenIDConnectProviderArn: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeletePolicyRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of the IAM policy you want to delete.</p>
@@ -1718,6 +1868,9 @@ export interface DeletePolicyRequest {
      */
     PolicyArn: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeletePolicyVersionRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of the IAM policy from which you want to delete a
@@ -1735,6 +1888,9 @@ export interface DeletePolicyVersionRequest {
      */
     VersionId: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteRoleRequest {
     /**
      * <p>The name of the role to delete.</p>
@@ -1743,6 +1899,9 @@ export interface DeleteRoleRequest {
      */
     RoleName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteRolePermissionsBoundaryRequest {
     /**
      * <p>The name (friendly name, not ARN) of the IAM role from which you want to remove the
@@ -1750,6 +1909,9 @@ export interface DeleteRolePermissionsBoundaryRequest {
      */
     RoleName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteRolePolicyRequest {
     /**
      * <p>The name (friendly name, not ARN) identifying the role that the policy is embedded
@@ -1765,12 +1927,18 @@ export interface DeleteRolePolicyRequest {
      */
     PolicyName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteSAMLProviderRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of the SAML provider to delete.</p>
      */
     SAMLProviderArn: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteServerCertificateRequest {
     /**
      * <p>The name of the server certificate you want to delete.</p>
@@ -1779,12 +1947,18 @@ export interface DeleteServerCertificateRequest {
      */
     ServerCertificateName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteServiceLinkedRoleRequest {
     /**
      * <p>The name of the service-linked role to be deleted.</p>
      */
     RoleName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteServiceLinkedRoleResponse {
     /**
      * <p>The deletion task identifier that you can use to check the status of the deletion.
@@ -1793,6 +1967,9 @@ export interface DeleteServiceLinkedRoleResponse {
      */
     DeletionTaskId: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteServiceSpecificCredentialRequest {
     /**
      * <p>The name of the IAM user associated with the service-specific credential. If this
@@ -1810,6 +1987,9 @@ export interface DeleteServiceSpecificCredentialRequest {
      */
     ServiceSpecificCredentialId: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteSigningCertificateRequest {
     /**
      * <p>The name of the user the signing certificate belongs to.</p>
@@ -1824,6 +2004,9 @@ export interface DeleteSigningCertificateRequest {
      */
     CertificateId: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteSSHPublicKeyRequest {
     /**
      * <p>The name of the IAM user associated with the SSH public key.</p>
@@ -1838,6 +2021,9 @@ export interface DeleteSSHPublicKeyRequest {
      */
     SSHPublicKeyId: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteUserRequest {
     /**
      * <p>The name of the user to delete.</p>
@@ -1846,6 +2032,9 @@ export interface DeleteUserRequest {
      */
     UserName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteUserPermissionsBoundaryRequest {
     /**
      * <p>The name (friendly name, not ARN) of the IAM user from which you want to remove the
@@ -1853,6 +2042,9 @@ export interface DeleteUserPermissionsBoundaryRequest {
      */
     UserName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteUserPolicyRequest {
     /**
      * <p>The name (friendly name, not ARN) identifying the user that the policy is embedded
@@ -1868,6 +2060,9 @@ export interface DeleteUserPolicyRequest {
      */
     PolicyName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DeleteVirtualMFADeviceRequest {
     /**
      * <p>The serial number that uniquely identifies the MFA device. For virtual MFA devices,
@@ -1878,6 +2073,9 @@ export interface DeleteVirtualMFADeviceRequest {
      */
     SerialNumber: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DetachGroupPolicyRequest {
     /**
      * <p>The name (friendly name, not ARN) of the IAM group to detach the policy from.</p>
@@ -1891,6 +2089,9 @@ export interface DetachGroupPolicyRequest {
      */
     PolicyArn: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DetachRolePolicyRequest {
     /**
      * <p>The name (friendly name, not ARN) of the IAM role to detach the policy from.</p>
@@ -1904,6 +2105,9 @@ export interface DetachRolePolicyRequest {
      */
     PolicyArn: string | undefined;
 }
+/**
+ * @public
+ */
 export interface DetachUserPolicyRequest {
     /**
      * <p>The name (friendly name, not ARN) of the IAM user to detach the policy from.</p>
@@ -1917,6 +2121,9 @@ export interface DetachUserPolicyRequest {
      */
     PolicyArn: string | undefined;
 }
+/**
+ * @public
+ */
 export interface EnableMFADeviceRequest {
     /**
      * <p>The name of the IAM user for whom you want to enable the MFA device.</p>
@@ -1960,6 +2167,7 @@ export interface EnableMFADeviceRequest {
     AuthenticationCode2: string | undefined;
 }
 /**
+ * @public
  * <p>The request was rejected because the authentication code was not recognized. The error
  *       message describes the specific error.</p>
  */
@@ -1971,12 +2179,16 @@ export declare class InvalidAuthenticationCodeException extends __BaseException
      */
     constructor(opts: __ExceptionOptionType<InvalidAuthenticationCodeException, __BaseException>);
 }
+/**
+ * @public
+ */
 export declare enum ReportStateType {
     COMPLETE = "COMPLETE",
     INPROGRESS = "INPROGRESS",
     STARTED = "STARTED"
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GenerateCredentialReport</a>
  *       request. </p>
  */
@@ -1990,6 +2202,9 @@ export interface GenerateCredentialReportResponse {
      */
     Description?: string;
 }
+/**
+ * @public
+ */
 export interface GenerateOrganizationsAccessReportRequest {
     /**
      * <p>The path of the Organizations entity (root, OU, or account). You can build an entity path
@@ -2008,6 +2223,9 @@ export interface GenerateOrganizationsAccessReportRequest {
      */
     OrganizationsPolicyId?: string;
 }
+/**
+ * @public
+ */
 export interface GenerateOrganizationsAccessReportResponse {
     /**
      * <p>The job identifier that you can use in the <a>GetOrganizationsAccessReport</a> operation.</p>
@@ -2015,6 +2233,7 @@ export interface GenerateOrganizationsAccessReportResponse {
     JobId?: string;
 }
 /**
+ * @public
  * <p>The request failed because the maximum number of concurrent requests for this account are
  *       already running.</p>
  */
@@ -2026,6 +2245,9 @@ export declare class ReportGenerationLimitExceededException extends __BaseExcept
      */
     constructor(opts: __ExceptionOptionType<ReportGenerationLimitExceededException, __BaseException>);
 }
+/**
+ * @public
+ */
 export interface GenerateServiceLastAccessedDetailsRequest {
     /**
      * <p>The ARN of the IAM resource (user, group, role, or managed policy) used to generate
@@ -2042,6 +2264,9 @@ export interface GenerateServiceLastAccessedDetailsRequest {
      */
     Granularity?: AccessAdvisorUsageGranularityType | string;
 }
+/**
+ * @public
+ */
 export interface GenerateServiceLastAccessedDetailsResponse {
     /**
      * <p>The <code>JobId</code> that you can use in the <a>GetServiceLastAccessedDetails</a> or <a>GetServiceLastAccessedDetailsWithEntities</a> operations. The
@@ -2051,6 +2276,9 @@ export interface GenerateServiceLastAccessedDetailsResponse {
      */
     JobId?: string;
 }
+/**
+ * @public
+ */
 export interface GetAccessKeyLastUsedRequest {
     /**
      * <p>The identifier of an access key.</p>
@@ -2060,6 +2288,7 @@ export interface GetAccessKeyLastUsedRequest {
     AccessKeyId: string | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetAccessKeyLastUsed</a> request.
  *       It is also returned as a member of the <a>AccessKeyMetaData</a> structure returned
  *       by the <a>ListAccessKeys</a> action.</p>
@@ -2075,6 +2304,9 @@ export interface GetAccessKeyLastUsedResponse {
      */
     AccessKeyLastUsed?: AccessKeyLastUsed;
 }
+/**
+ * @public
+ */
 export declare enum EntityType {
     AWSManagedPolicy = "AWSManagedPolicy",
     Group = "Group",
@@ -2082,6 +2314,9 @@ export declare enum EntityType {
     Role = "Role",
     User = "User"
 }
+/**
+ * @public
+ */
 export interface GetAccountAuthorizationDetailsRequest {
     /**
      * <p>A list of entity types used to filter the results. Only the entities that match the
@@ -2111,6 +2346,7 @@ export interface GetAccountAuthorizationDetailsRequest {
     Marker?: string;
 }
 /**
+ * @public
  * <p>Contains information about an IAM policy, including the policy document.</p>
  *          <p>This data type is used as a response element in the <a>GetAccountAuthorizationDetails</a> operation.</p>
  */
@@ -2125,6 +2361,7 @@ export interface PolicyDetail {
     PolicyDocument?: string;
 }
 /**
+ * @public
  * <p>Contains information about an IAM group, including all of the group's policies.</p>
  *          <p>This data type is used as a response element in the <a>GetAccountAuthorizationDetails</a> operation.</p>
  */
@@ -2165,6 +2402,7 @@ export interface GroupDetail {
     AttachedManagedPolicies?: AttachedPolicy[];
 }
 /**
+ * @public
  * <p>Contains information about a managed policy, including the policy's ARN, versions, and
  *          the number of principal entities (users, groups, and roles) that the policy is attached
  *          to.</p>
@@ -2241,6 +2479,7 @@ export interface ManagedPolicyDetail {
     PolicyVersionList?: PolicyVersion[];
 }
 /**
+ * @public
  * <p>Contains information about an IAM role, including all of the role's policies.</p>
  *          <p>This data type is used as a response element in the <a>GetAccountAuthorizationDetails</a> operation.</p>
  */
@@ -2310,6 +2549,7 @@ export interface RoleDetail {
     RoleLastUsed?: RoleLastUsed;
 }
 /**
+ * @public
  * <p>Contains information about an IAM user, including all the user's policies and all the
  *          IAM groups the user is in.</p>
  *          <p>This data type is used as a response element in the <a>GetAccountAuthorizationDetails</a> operation.</p>
@@ -2366,6 +2606,7 @@ export interface UserDetail {
     Tags?: Tag[];
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetAccountAuthorizationDetails</a>
  *       request. </p>
  */
@@ -2403,6 +2644,7 @@ export interface GetAccountAuthorizationDetailsResponse {
     Marker?: string;
 }
 /**
+ * @public
  * <p>Contains information about the account password policy.</p>
  *          <p> This data type is used as a response element in the <a>GetAccountPasswordPolicy</a> operation. </p>
  */
@@ -2414,7 +2656,7 @@ export interface PasswordPolicy {
     /**
      * <p>Specifies whether IAM user passwords must contain at least one of the following
      *          symbols:</p>
-     *          <p>! @ # $ % ^ & * ( ) _ + - = [ ] { } | '</p>
+     *          <p>! @ # $ % ^ & * ( ) _ + - = [ ] \{ \} | '</p>
      */
     RequireSymbols?: boolean;
     /**
@@ -2465,6 +2707,7 @@ export interface PasswordPolicy {
     HardExpiry?: boolean;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetAccountPasswordPolicy</a>
  *       request. </p>
  */
@@ -2474,6 +2717,9 @@ export interface GetAccountPasswordPolicyResponse {
      */
     PasswordPolicy: PasswordPolicy | undefined;
 }
+/**
+ * @public
+ */
 export declare enum SummaryKeyType {
     AccessKeysPerUserQuota = "AccessKeysPerUserQuota",
     AccountAccessKeysPresent = "AccountAccessKeysPresent",
@@ -2503,6 +2749,7 @@ export declare enum SummaryKeyType {
     VersionsPerPolicyQuota = "VersionsPerPolicyQuota"
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetAccountSummary</a> request.
  *     </p>
  */
@@ -2513,6 +2760,9 @@ export interface GetAccountSummaryResponse {
      */
     SummaryMap?: Record<string, number>;
 }
+/**
+ * @public
+ */
 export interface GetContextKeysForCustomPolicyRequest {
     /**
      * <p>A list of policies for which you want the list of context keys referenced in those
@@ -2538,6 +2788,7 @@ export interface GetContextKeysForCustomPolicyRequest {
     PolicyInputList: string[] | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetContextKeysForPrincipalPolicy</a> or <a>GetContextKeysForCustomPolicy</a> request. </p>
  */
 export interface GetContextKeysForPolicyResponse {
@@ -2546,6 +2797,9 @@ export interface GetContextKeysForPolicyResponse {
      */
     ContextKeyNames?: string[];
 }
+/**
+ * @public
+ */
 export interface GetContextKeysForPrincipalPolicyRequest {
     /**
      * <p>The ARN of a user, group, or role whose policies contain the context keys that you
@@ -2581,6 +2835,7 @@ export interface GetContextKeysForPrincipalPolicyRequest {
     PolicyInputList?: string[];
 }
 /**
+ * @public
  * <p>The request was rejected because the most recent credential report has expired. To
  *       generate a new credential report, use <a>GenerateCredentialReport</a>. For more
  *       information about credential report expiration, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/credential-reports.html">Getting credential reports</a> in the
@@ -2595,6 +2850,7 @@ export declare class CredentialReportExpiredException extends __BaseException {
     constructor(opts: __ExceptionOptionType<CredentialReportExpiredException, __BaseException>);
 }
 /**
+ * @public
  * <p>The request was rejected because the credential report does not exist. To generate a
  *       credential report, use <a>GenerateCredentialReport</a>.</p>
  */
@@ -2607,6 +2863,7 @@ export declare class CredentialReportNotPresentException extends __BaseException
     constructor(opts: __ExceptionOptionType<CredentialReportNotPresentException, __BaseException>);
 }
 /**
+ * @public
  * <p>The request was rejected because the credential report is still being generated.</p>
  */
 export declare class CredentialReportNotReadyException extends __BaseException {
@@ -2617,10 +2874,14 @@ export declare class CredentialReportNotReadyException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<CredentialReportNotReadyException, __BaseException>);
 }
+/**
+ * @public
+ */
 export declare enum ReportFormatType {
     text_csv = "text/csv"
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetCredentialReport</a> request.
  *     </p>
  */
@@ -2638,6 +2899,9 @@ export interface GetCredentialReportResponse {
      */
     GeneratedTime?: Date;
 }
+/**
+ * @public
+ */
 export interface GetGroupRequest {
     /**
      * <p>The name of the group.</p>
@@ -2665,6 +2929,7 @@ export interface GetGroupRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetGroup</a> request. </p>
  */
 export interface GetGroupResponse {
@@ -2692,6 +2957,9 @@ export interface GetGroupResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface GetGroupPolicyRequest {
     /**
      * <p>The name of the group the policy is associated with.</p>
@@ -2707,6 +2975,7 @@ export interface GetGroupPolicyRequest {
     PolicyName: string | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetGroupPolicy</a> request.
  *     </p>
  */
@@ -2727,6 +2996,9 @@ export interface GetGroupPolicyResponse {
      */
     PolicyDocument: string | undefined;
 }
+/**
+ * @public
+ */
 export interface GetInstanceProfileRequest {
     /**
      * <p>The name of the instance profile to get information about.</p>
@@ -2736,6 +3008,7 @@ export interface GetInstanceProfileRequest {
     InstanceProfileName: string | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetInstanceProfile</a> request.
  *     </p>
  */
@@ -2745,6 +3018,9 @@ export interface GetInstanceProfileResponse {
      */
     InstanceProfile: InstanceProfile | undefined;
 }
+/**
+ * @public
+ */
 export interface GetLoginProfileRequest {
     /**
      * <p>The name of the user whose login profile you want to retrieve.</p>
@@ -2754,6 +3030,7 @@ export interface GetLoginProfileRequest {
     UserName: string | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetLoginProfile</a> request.
  *     </p>
  */
@@ -2764,6 +3041,9 @@ export interface GetLoginProfileResponse {
      */
     LoginProfile: LoginProfile | undefined;
 }
+/**
+ * @public
+ */
 export interface GetOpenIDConnectProviderRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of the OIDC provider resource object in IAM to get
@@ -2773,6 +3053,7 @@ export interface GetOpenIDConnectProviderRequest {
     OpenIDConnectProviderArn: string | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetOpenIDConnectProvider</a>
  *       request. </p>
  */
@@ -2804,12 +3085,18 @@ export interface GetOpenIDConnectProviderResponse {
      */
     Tags?: Tag[];
 }
+/**
+ * @public
+ */
 export declare enum SortKeyType {
     LAST_AUTHENTICATED_TIME_ASCENDING = "LAST_AUTHENTICATED_TIME_ASCENDING",
     LAST_AUTHENTICATED_TIME_DESCENDING = "LAST_AUTHENTICATED_TIME_DESCENDING",
     SERVICE_NAMESPACE_ASCENDING = "SERVICE_NAMESPACE_ASCENDING",
     SERVICE_NAMESPACE_DESCENDING = "SERVICE_NAMESPACE_DESCENDING"
 }
+/**
+ * @public
+ */
 export interface GetOrganizationsAccessReportRequest {
     /**
      * <p>The identifier of the request generated by the <a>GenerateOrganizationsAccessReport</a> operation.</p>
@@ -2841,6 +3128,7 @@ export interface GetOrganizationsAccessReportRequest {
     SortKey?: SortKeyType | string;
 }
 /**
+ * @public
  * <p>Contains information about the reason that the operation failed.</p>
  *          <p>This data type is used as a response element in the <a>GetOrganizationsAccessReport</a>, <a>GetServiceLastAccessedDetails</a>, and <a>GetServiceLastAccessedDetailsWithEntities</a> operations.</p>
  */
@@ -2854,11 +3142,17 @@ export interface ErrorDetails {
      */
     Code: string | undefined;
 }
+/**
+ * @public
+ */
 export declare enum JobStatusType {
     COMPLETED = "COMPLETED",
     FAILED = "FAILED",
     IN_PROGRESS = "IN_PROGRESS"
 }
+/**
+ * @public
+ */
 export interface GetOrganizationsAccessReportResponse {
     /**
      * <p>The status of the job.</p>
@@ -2912,6 +3206,9 @@ export interface GetOrganizationsAccessReportResponse {
      */
     ErrorDetails?: ErrorDetails;
 }
+/**
+ * @public
+ */
 export interface GetPolicyRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of the managed policy that you want information
@@ -2921,6 +3218,7 @@ export interface GetPolicyRequest {
     PolicyArn: string | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetPolicy</a> request. </p>
  */
 export interface GetPolicyResponse {
@@ -2929,6 +3227,9 @@ export interface GetPolicyResponse {
      */
     Policy?: Policy;
 }
+/**
+ * @public
+ */
 export interface GetPolicyVersionRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of the managed policy that you want information
@@ -2945,6 +3246,7 @@ export interface GetPolicyVersionRequest {
     VersionId: string | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetPolicyVersion</a> request.
  *     </p>
  */
@@ -2954,6 +3256,9 @@ export interface GetPolicyVersionResponse {
      */
     PolicyVersion?: PolicyVersion;
 }
+/**
+ * @public
+ */
 export interface GetRoleRequest {
     /**
      * <p>The name of the IAM role to get information about.</p>
@@ -2963,6 +3268,7 @@ export interface GetRoleRequest {
     RoleName: string | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetRole</a> request. </p>
  */
 export interface GetRoleResponse {
@@ -2971,6 +3277,9 @@ export interface GetRoleResponse {
      */
     Role: Role | undefined;
 }
+/**
+ * @public
+ */
 export interface GetRolePolicyRequest {
     /**
      * <p>The name of the role associated with the policy.</p>
@@ -2986,6 +3295,7 @@ export interface GetRolePolicyRequest {
     PolicyName: string | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetRolePolicy</a> request.
  *     </p>
  */
@@ -3006,6 +3316,9 @@ export interface GetRolePolicyResponse {
      */
     PolicyDocument: string | undefined;
 }
+/**
+ * @public
+ */
 export interface GetSAMLProviderRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of the SAML provider resource object in IAM to get
@@ -3015,6 +3328,7 @@ export interface GetSAMLProviderRequest {
     SAMLProviderArn: string | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetSAMLProvider</a> request.
  *     </p>
  */
@@ -3038,6 +3352,9 @@ export interface GetSAMLProviderResponse {
      */
     Tags?: Tag[];
 }
+/**
+ * @public
+ */
 export interface GetServerCertificateRequest {
     /**
      * <p>The name of the server certificate you want to retrieve information about.</p>
@@ -3047,6 +3364,7 @@ export interface GetServerCertificateRequest {
     ServerCertificateName: string | undefined;
 }
 /**
+ * @public
  * <p>Contains information about a server certificate without its certificate body,
  *          certificate chain, and private key.</p>
  *          <p> This data type is used as a response element in the <a>UploadServerCertificate</a> and <a>ListServerCertificates</a>
@@ -3083,6 +3401,7 @@ export interface ServerCertificateMetadata {
     Expiration?: Date;
 }
 /**
+ * @public
  * <p>Contains information about a server certificate.</p>
  *          <p> This data type is used as a response element in the <a>GetServerCertificate</a> operation. </p>
  */
@@ -3107,6 +3426,7 @@ export interface ServerCertificate {
     Tags?: Tag[];
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetServerCertificate</a> request.
  *     </p>
  */
@@ -3116,6 +3436,9 @@ export interface GetServerCertificateResponse {
      */
     ServerCertificate: ServerCertificate | undefined;
 }
+/**
+ * @public
+ */
 export interface GetServiceLastAccessedDetailsRequest {
     /**
      * <p>The ID of the request generated by the <a>GenerateServiceLastAccessedDetails</a> operation. The <code>JobId</code>
@@ -3144,6 +3467,7 @@ export interface GetServiceLastAccessedDetailsRequest {
     Marker?: string;
 }
 /**
+ * @public
  * <p>Contains details about the most recent attempt to access an action within the
  *          service.</p>
  *          <p>This data type is used as a response element in the <a>GetServiceLastAccessedDetails</a> operation.</p>
@@ -3177,6 +3501,7 @@ export interface TrackedActionLastAccessed {
     LastAccessedRegion?: string;
 }
 /**
+ * @public
  * <p>Contains details about the most recent attempt to access the service.</p>
  *          <p>This data type is used as a response element in the <a>GetServiceLastAccessedDetails</a> operation.</p>
  */
@@ -3233,6 +3558,9 @@ export interface ServiceLastAccessed {
      */
     TrackedActionsLastAccessed?: TrackedActionLastAccessed[];
 }
+/**
+ * @public
+ */
 export interface GetServiceLastAccessedDetailsResponse {
     /**
      * <p>The status of the job.</p>
@@ -3281,6 +3609,9 @@ export interface GetServiceLastAccessedDetailsResponse {
      */
     Error?: ErrorDetails;
 }
+/**
+ * @public
+ */
 export interface GetServiceLastAccessedDetailsWithEntitiesRequest {
     /**
      * <p>The ID of the request generated by the <code>GenerateServiceLastAccessedDetails</code>
@@ -3317,12 +3648,16 @@ export interface GetServiceLastAccessedDetailsWithEntitiesRequest {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export declare enum PolicyOwnerEntityType {
     GROUP = "GROUP",
     ROLE = "ROLE",
     USER = "USER"
 }
 /**
+ * @public
  * <p>Contains details about the specified entity (user or role).</p>
  *          <p>This data type is an element of the <a>EntityDetails</a> object.</p>
  */
@@ -3352,6 +3687,7 @@ export interface EntityInfo {
     Path?: string;
 }
 /**
+ * @public
  * <p>An object that contains details about when the IAM entities (users or roles) were last
  *          used in an attempt to access the specified Amazon Web Services service.</p>
  *          <p>This data type is a response element in the <a>GetServiceLastAccessedDetailsWithEntities</a> operation.</p>
@@ -3371,6 +3707,9 @@ export interface EntityDetails {
      */
     LastAuthenticated?: Date;
 }
+/**
+ * @public
+ */
 export interface GetServiceLastAccessedDetailsWithEntitiesResponse {
     /**
      * <p>The status of the job.</p>
@@ -3414,6 +3753,9 @@ export interface GetServiceLastAccessedDetailsWithEntitiesResponse {
      */
     Error?: ErrorDetails;
 }
+/**
+ * @public
+ */
 export interface GetServiceLinkedRoleDeletionStatusRequest {
     /**
      * <p>The deletion task identifier. This identifier is returned by the <a>DeleteServiceLinkedRole</a> operation in the format
@@ -3422,6 +3764,7 @@ export interface GetServiceLinkedRoleDeletionStatusRequest {
     DeletionTaskId: string | undefined;
 }
 /**
+ * @public
  * <p>An object that contains details about how a service-linked role is used, if that
  *          information is returned by the service.</p>
  *          <p>This data type is used as a response element in the <a>GetServiceLinkedRoleDeletionStatus</a> operation.</p>
@@ -3437,6 +3780,7 @@ export interface RoleUsageType {
     Resources?: string[];
 }
 /**
+ * @public
  * <p>The reason that the service-linked role deletion failed.</p>
  *          <p>This data type is used as a response element in the <a>GetServiceLinkedRoleDeletionStatus</a> operation.</p>
  */
@@ -3455,12 +3799,18 @@ export interface DeletionTaskFailureReasonType {
      */
     RoleUsageList?: RoleUsageType[];
 }
+/**
+ * @public
+ */
 export declare enum DeletionTaskStatusType {
     FAILED = "FAILED",
     IN_PROGRESS = "IN_PROGRESS",
     NOT_STARTED = "NOT_STARTED",
     SUCCEEDED = "SUCCEEDED"
 }
+/**
+ * @public
+ */
 export interface GetServiceLinkedRoleDeletionStatusResponse {
     /**
      * <p>The status of the deletion.</p>
@@ -3471,10 +3821,16 @@ export interface GetServiceLinkedRoleDeletionStatusResponse {
      */
     Reason?: DeletionTaskFailureReasonType;
 }
+/**
+ * @public
+ */
 export declare enum EncodingType {
     PEM = "PEM",
     SSH = "SSH"
 }
+/**
+ * @public
+ */
 export interface GetSSHPublicKeyRequest {
     /**
      * <p>The name of the IAM user associated with the SSH public key.</p>
@@ -3496,6 +3852,7 @@ export interface GetSSHPublicKeyRequest {
     Encoding: EncodingType | string | undefined;
 }
 /**
+ * @public
  * <p>Contains information about an SSH public key.</p>
  *          <p>This data type is used as a response element in the <a>GetSSHPublicKey</a>
  *          and <a>UploadSSHPublicKey</a> operations. </p>
@@ -3530,6 +3887,7 @@ export interface SSHPublicKey {
     UploadDate?: Date;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetSSHPublicKey</a>
  *       request.</p>
  */
@@ -3540,6 +3898,7 @@ export interface GetSSHPublicKeyResponse {
     SSHPublicKey?: SSHPublicKey;
 }
 /**
+ * @public
  * <p>The request was rejected because the public key encoding format is unsupported or
  *       unrecognized.</p>
  */
@@ -3551,6 +3910,9 @@ export declare class UnrecognizedPublicKeyEncodingException extends __BaseExcept
      */
     constructor(opts: __ExceptionOptionType<UnrecognizedPublicKeyEncodingException, __BaseException>);
 }
+/**
+ * @public
+ */
 export interface GetUserRequest {
     /**
      * <p>The name of the user to get information about.</p>
@@ -3561,6 +3923,7 @@ export interface GetUserRequest {
     UserName?: string;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetUser</a> request. </p>
  */
 export interface GetUserResponse {
@@ -3584,6 +3947,9 @@ export interface GetUserResponse {
      */
     User: User | undefined;
 }
+/**
+ * @public
+ */
 export interface GetUserPolicyRequest {
     /**
      * <p>The name of the user who the policy is associated with.</p>
@@ -3599,6 +3965,7 @@ export interface GetUserPolicyRequest {
     PolicyName: string | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>GetUserPolicy</a> request.
  *     </p>
  */
@@ -3619,6 +3986,9 @@ export interface GetUserPolicyResponse {
      */
     PolicyDocument: string | undefined;
 }
+/**
+ * @public
+ */
 export interface ListAccessKeysRequest {
     /**
      * <p>The name of the user.</p>
@@ -3646,6 +4016,7 @@ export interface ListAccessKeysRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListAccessKeys</a> request.
  *     </p>
  */
@@ -3670,6 +4041,9 @@ export interface ListAccessKeysResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListAccountAliasesRequest {
     /**
      * <p>Use this parameter only when paginating results and only after
@@ -3691,6 +4065,7 @@ export interface ListAccountAliasesRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListAccountAliases</a> request.
  *     </p>
  */
@@ -3716,6 +4091,9 @@ export interface ListAccountAliasesResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListAttachedGroupPoliciesRequest {
     /**
      * <p>The name (friendly name, not ARN) of the group to list attached policies for.</p>
@@ -3752,6 +4130,7 @@ export interface ListAttachedGroupPoliciesRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListAttachedGroupPolicies</a>
  *       request. </p>
  */
@@ -3776,6 +4155,9 @@ export interface ListAttachedGroupPoliciesResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListAttachedRolePoliciesRequest {
     /**
      * <p>The name (friendly name, not ARN) of the role to list attached policies for.</p>
@@ -3812,6 +4194,7 @@ export interface ListAttachedRolePoliciesRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListAttachedRolePolicies</a>
  *       request. </p>
  */
@@ -3836,6 +4219,9 @@ export interface ListAttachedRolePoliciesResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListAttachedUserPoliciesRequest {
     /**
      * <p>The name (friendly name, not ARN) of the user to list attached policies for.</p>
@@ -3872,6 +4258,7 @@ export interface ListAttachedUserPoliciesRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListAttachedUserPolicies</a>
  *       request. </p>
  */
@@ -3896,10 +4283,16 @@ export interface ListAttachedUserPoliciesResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export declare enum PolicyUsageType {
     PermissionsBoundary = "PermissionsBoundary",
     PermissionsPolicy = "PermissionsPolicy"
 }
+/**
+ * @public
+ */
 export interface ListEntitiesForPolicyRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of the IAM policy for which you want the
@@ -3953,6 +4346,7 @@ export interface ListEntitiesForPolicyRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains information about a group that a managed policy is attached to.</p>
  *          <p>This data type is used as a response element in the <a>ListEntitiesForPolicy</a> operation. </p>
  *          <p>For more information about managed policies, refer to <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html">Managed policies and inline
@@ -3971,6 +4365,7 @@ export interface PolicyGroup {
     GroupId?: string;
 }
 /**
+ * @public
  * <p>Contains information about a role that a managed policy is attached to.</p>
  *          <p>This data type is used as a response element in the <a>ListEntitiesForPolicy</a> operation. </p>
  *          <p>For more information about managed policies, refer to <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html">Managed policies and inline
@@ -3989,6 +4384,7 @@ export interface PolicyRole {
     RoleId?: string;
 }
 /**
+ * @public
  * <p>Contains information about a user that a managed policy is attached to.</p>
  *          <p>This data type is used as a response element in the <a>ListEntitiesForPolicy</a> operation. </p>
  *          <p>For more information about managed policies, refer to <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html">Managed policies and inline
@@ -4007,6 +4403,7 @@ export interface PolicyUser {
     UserId?: string;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListEntitiesForPolicy</a> request.
  *     </p>
  */
@@ -4039,6 +4436,9 @@ export interface ListEntitiesForPolicyResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListGroupPoliciesRequest {
     /**
      * <p>The name of the group to list policies for.</p>
@@ -4066,6 +4466,7 @@ export interface ListGroupPoliciesRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListGroupPolicies</a> request.
  *     </p>
  */
@@ -4092,6 +4493,9 @@ export interface ListGroupPoliciesResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListGroupsRequest {
     /**
      * <p> The path prefix for filtering the results. For example, the prefix
@@ -4124,6 +4528,7 @@ export interface ListGroupsRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListGroups</a> request. </p>
  */
 export interface ListGroupsResponse {
@@ -4147,6 +4552,9 @@ export interface ListGroupsResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListGroupsForUserRequest {
     /**
      * <p>The name of the user to list groups for.</p>
@@ -4174,6 +4582,7 @@ export interface ListGroupsForUserRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListGroupsForUser</a> request.
  *     </p>
  */
@@ -4198,6 +4607,9 @@ export interface ListGroupsForUserResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListInstanceProfilesRequest {
     /**
      * <p> The path prefix for filtering the results. For example, the prefix
@@ -4230,6 +4642,7 @@ export interface ListInstanceProfilesRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListInstanceProfiles</a> request.
  *     </p>
  */
@@ -4254,6 +4667,9 @@ export interface ListInstanceProfilesResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListInstanceProfilesForRoleRequest {
     /**
      * <p>The name of the role to list instance profiles for.</p>
@@ -4281,6 +4697,7 @@ export interface ListInstanceProfilesForRoleRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListInstanceProfilesForRole</a>
  *       request. </p>
  */
@@ -4305,6 +4722,9 @@ export interface ListInstanceProfilesForRoleResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListInstanceProfileTagsRequest {
     /**
      * <p>The name of the IAM instance profile whose tags you want to see.</p>
@@ -4331,6 +4751,9 @@ export interface ListInstanceProfileTagsRequest {
      */
     MaxItems?: number;
 }
+/**
+ * @public
+ */
 export interface ListInstanceProfileTagsResponse {
     /**
      * <p>The list of tags that are currently attached to the IAM instance profile. Each tag consists of a key name and an associated value. If no tags are attached to the specified resource, the response contains an empty list.</p>
@@ -4352,6 +4775,9 @@ export interface ListInstanceProfileTagsResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListMFADevicesRequest {
     /**
      * <p>The name of the user whose MFA devices you want to list.</p>
@@ -4379,6 +4805,7 @@ export interface ListMFADevicesRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains information about an MFA device.</p>
  *          <p>This data type is used as a response element in the <a>ListMFADevices</a>
  *          operation.</p>
@@ -4399,6 +4826,7 @@ export interface MFADevice {
     EnableDate: Date | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListMFADevices</a> request.
  *     </p>
  */
@@ -4423,6 +4851,9 @@ export interface ListMFADevicesResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListMFADeviceTagsRequest {
     /**
      * <p>The unique identifier for the IAM virtual MFA device whose tags you want to see.
@@ -4450,6 +4881,9 @@ export interface ListMFADeviceTagsRequest {
      */
     MaxItems?: number;
 }
+/**
+ * @public
+ */
 export interface ListMFADeviceTagsResponse {
     /**
      * <p>The list of tags that are currently attached to the virtual MFA device. Each tag consists of a key name and an associated value. If no tags are attached to the specified resource, the response contains an empty list.</p>
@@ -4471,9 +4905,13 @@ export interface ListMFADeviceTagsResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListOpenIDConnectProvidersRequest {
 }
 /**
+ * @public
  * <p>Contains the Amazon Resource Name (ARN) for an IAM OpenID Connect provider.</p>
  */
 export interface OpenIDConnectProviderListEntry {
@@ -4485,6 +4923,7 @@ export interface OpenIDConnectProviderListEntry {
     Arn?: string;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListOpenIDConnectProviders</a>
  *       request. </p>
  */
@@ -4494,6 +4933,9 @@ export interface ListOpenIDConnectProvidersResponse {
      */
     OpenIDConnectProviderList?: OpenIDConnectProviderListEntry[];
 }
+/**
+ * @public
+ */
 export interface ListOpenIDConnectProviderTagsRequest {
     /**
      * <p>The ARN of the OpenID Connect (OIDC) identity provider whose tags you want to
@@ -4521,6 +4963,9 @@ export interface ListOpenIDConnectProviderTagsRequest {
      */
     MaxItems?: number;
 }
+/**
+ * @public
+ */
 export interface ListOpenIDConnectProviderTagsResponse {
     /**
      * <p>The list of tags that are currently attached to the OpenID Connect (OIDC) identity
@@ -4543,11 +4988,17 @@ export interface ListOpenIDConnectProviderTagsResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export declare enum PolicyScopeType {
     AWS = "AWS",
     All = "All",
     Local = "Local"
 }
+/**
+ * @public
+ */
 export interface ListPoliciesRequest {
     /**
      * <p>The scope to use for filtering the results.</p>
@@ -4603,6 +5054,7 @@ export interface ListPoliciesRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListPolicies</a> request.
  *     </p>
  */
@@ -4627,6 +5079,9 @@ export interface ListPoliciesResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListPoliciesGrantingServiceAccessRequest {
     /**
      * <p>Use this parameter only when paginating results and only after
@@ -4651,11 +5106,15 @@ export interface ListPoliciesGrantingServiceAccessRequest {
      */
     ServiceNamespaces: string[] | undefined;
 }
+/**
+ * @public
+ */
 export declare enum PolicyType {
     INLINE = "INLINE",
     MANAGED = "MANAGED"
 }
 /**
+ * @public
  * <p>Contains details about the permissions policies that are attached to the specified
  *          identity (user, group, or role).</p>
  *          <p>This data type is an element of the <a>ListPoliciesGrantingServiceAccessEntry</a> object.</p>
@@ -4694,6 +5153,7 @@ export interface PolicyGrantingServiceAccess {
     EntityName?: string;
 }
 /**
+ * @public
  * <p>Contains details about the permissions policies that are attached to the specified
  *          identity (user, group, or role).</p>
  *          <p>This data type is used as a response element in the <a>ListPoliciesGrantingServiceAccess</a> operation.</p>
@@ -4715,6 +5175,9 @@ export interface ListPoliciesGrantingServiceAccessEntry {
      */
     Policies?: PolicyGrantingServiceAccess[];
 }
+/**
+ * @public
+ */
 export interface ListPoliciesGrantingServiceAccessResponse {
     /**
      * <p>A <code>ListPoliciesGrantingServiceAccess</code> object that contains details about
@@ -4737,6 +5200,9 @@ export interface ListPoliciesGrantingServiceAccessResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListPolicyTagsRequest {
     /**
      * <p>The ARN of the IAM customer managed policy whose tags you want to see.</p>
@@ -4763,6 +5229,9 @@ export interface ListPolicyTagsRequest {
      */
     MaxItems?: number;
 }
+/**
+ * @public
+ */
 export interface ListPolicyTagsResponse {
     /**
      * <p>The list of tags that are currently attached to the IAM customer managed policy.
@@ -4785,6 +5254,9 @@ export interface ListPolicyTagsResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListPolicyVersionsRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of the IAM policy for which you want the
@@ -4812,6 +5284,7 @@ export interface ListPolicyVersionsRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListPolicyVersions</a> request.
  *     </p>
  */
@@ -4838,6 +5311,9 @@ export interface ListPolicyVersionsResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListRolePoliciesRequest {
     /**
      * <p>The name of the role to list policies for.</p>
@@ -4865,6 +5341,7 @@ export interface ListRolePoliciesRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListRolePolicies</a> request.
  *     </p>
  */
@@ -4889,6 +5366,9 @@ export interface ListRolePoliciesResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListRolesRequest {
     /**
      * <p> The path prefix for filtering the results. For example, the prefix
@@ -4921,6 +5401,7 @@ export interface ListRolesRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListRoles</a> request. </p>
  */
 export interface ListRolesResponse {
@@ -4944,6 +5425,9 @@ export interface ListRolesResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListRoleTagsRequest {
     /**
      * <p>The name of the IAM role for which you want to see the list of tags.</p>
@@ -4970,6 +5454,9 @@ export interface ListRoleTagsRequest {
      */
     MaxItems?: number;
 }
+/**
+ * @public
+ */
 export interface ListRoleTagsResponse {
     /**
      * <p>The list of tags that are currently attached to the role. Each tag consists of a key name and an associated value. If no tags are attached to the specified resource, the response contains an empty list.</p>
@@ -4991,9 +5478,13 @@ export interface ListRoleTagsResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListSAMLProvidersRequest {
 }
 /**
+ * @public
  * <p>Contains the list of SAML providers for this account.</p>
  */
 export interface SAMLProviderListEntry {
@@ -5011,6 +5502,7 @@ export interface SAMLProviderListEntry {
     CreateDate?: Date;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListSAMLProviders</a> request.
  *     </p>
  */
@@ -5021,6 +5513,9 @@ export interface ListSAMLProvidersResponse {
      */
     SAMLProviderList?: SAMLProviderListEntry[];
 }
+/**
+ * @public
+ */
 export interface ListSAMLProviderTagsRequest {
     /**
      * <p>The ARN of the Security Assertion Markup Language (SAML) identity provider whose tags
@@ -5048,6 +5543,9 @@ export interface ListSAMLProviderTagsRequest {
      */
     MaxItems?: number;
 }
+/**
+ * @public
+ */
 export interface ListSAMLProviderTagsResponse {
     /**
      * <p>The list of tags that are currently attached to the Security Assertion Markup Language
@@ -5070,6 +5568,9 @@ export interface ListSAMLProviderTagsResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListServerCertificatesRequest {
     /**
      * <p> The path prefix for filtering the results. For example:
@@ -5102,6 +5603,7 @@ export interface ListServerCertificatesRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListServerCertificates</a> request.
  *     </p>
  */
@@ -5126,6 +5628,9 @@ export interface ListServerCertificatesResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListServerCertificateTagsRequest {
     /**
      * <p>The name of the IAM server certificate whose tags you want to see.</p>
@@ -5152,6 +5657,9 @@ export interface ListServerCertificateTagsRequest {
      */
     MaxItems?: number;
 }
+/**
+ * @public
+ */
 export interface ListServerCertificateTagsResponse {
     /**
      * <p>The list of tags that are currently attached to the IAM server certificate.
@@ -5174,6 +5682,9 @@ export interface ListServerCertificateTagsResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListServiceSpecificCredentialsRequest {
     /**
      * <p>The name of the user whose service-specific credentials you want information about. If
@@ -5190,6 +5701,7 @@ export interface ListServiceSpecificCredentialsRequest {
     ServiceName?: string;
 }
 /**
+ * @public
  * <p>Contains additional details about a service-specific credential.</p>
  */
 export interface ServiceSpecificCredentialMetadata {
@@ -5220,6 +5732,9 @@ export interface ServiceSpecificCredentialMetadata {
      */
     ServiceName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface ListServiceSpecificCredentialsResponse {
     /**
      * <p>A list of structures that each contain details about a service-specific
@@ -5227,6 +5742,9 @@ export interface ListServiceSpecificCredentialsResponse {
      */
     ServiceSpecificCredentials?: ServiceSpecificCredentialMetadata[];
 }
+/**
+ * @public
+ */
 export interface ListSigningCertificatesRequest {
     /**
      * <p>The name of the IAM user whose signing certificates you want to examine.</p>
@@ -5254,6 +5772,7 @@ export interface ListSigningCertificatesRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains information about an X.509 signing certificate.</p>
  *          <p>This data type is used as a response element in the <a>UploadSigningCertificate</a> and <a>ListSigningCertificates</a>
  *          operations. </p>
@@ -5282,6 +5801,7 @@ export interface SigningCertificate {
     UploadDate?: Date;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListSigningCertificates</a>
  *       request. </p>
  */
@@ -5306,6 +5826,9 @@ export interface ListSigningCertificatesResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListSSHPublicKeysRequest {
     /**
      * <p>The name of the IAM user to list SSH public keys for. If none is specified, the
@@ -5335,6 +5858,7 @@ export interface ListSSHPublicKeysRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains information about an SSH public key, without the key's body or
  *          fingerprint.</p>
  *          <p>This data type is used as a response element in the <a>ListSSHPublicKeys</a>
@@ -5362,6 +5886,7 @@ export interface SSHPublicKeyMetadata {
     UploadDate: Date | undefined;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListSSHPublicKeys</a>
  *       request.</p>
  */
@@ -5386,6 +5911,9 @@ export interface ListSSHPublicKeysResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListUserPoliciesRequest {
     /**
      * <p>The name of the user to list policies for.</p>
@@ -5413,6 +5941,7 @@ export interface ListUserPoliciesRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListUserPolicies</a> request.
  *     </p>
  */
@@ -5437,6 +5966,9 @@ export interface ListUserPoliciesResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListUsersRequest {
     /**
      * <p> The path prefix for filtering the results. For example:
@@ -5469,6 +6001,7 @@ export interface ListUsersRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListUsers</a> request. </p>
  */
 export interface ListUsersResponse {
@@ -5492,6 +6025,9 @@ export interface ListUsersResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListUserTagsRequest {
     /**
      * <p>The name of the IAM user whose tags you want to see.</p>
@@ -5518,6 +6054,9 @@ export interface ListUserTagsRequest {
      */
     MaxItems?: number;
 }
+/**
+ * @public
+ */
 export interface ListUserTagsResponse {
     /**
      * <p>The list of tags that are currently attached to the user. Each tag consists of a key name and an associated value. If no tags are attached to the specified resource, the response contains an empty list.</p>
@@ -5539,6 +6078,9 @@ export interface ListUserTagsResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface ListVirtualMFADevicesRequest {
     /**
      * <p> The status (<code>Unassigned</code> or <code>Assigned</code>) of the devices to list.
@@ -5567,6 +6109,7 @@ export interface ListVirtualMFADevicesRequest {
     MaxItems?: number;
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>ListVirtualMFADevices</a> request.
  *     </p>
  */
@@ -5592,6 +6135,9 @@ export interface ListVirtualMFADevicesResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface PutGroupPolicyRequest {
     /**
      * <p>The name of the group to associate the policy with.</p>
@@ -5629,6 +6175,9 @@ export interface PutGroupPolicyRequest {
      */
     PolicyDocument: string | undefined;
 }
+/**
+ * @public
+ */
 export interface PutRolePermissionsBoundaryRequest {
     /**
      * <p>The name (friendly name, not ARN) of the IAM role for which you want to set the
@@ -5648,6 +6197,9 @@ export interface PutRolePermissionsBoundaryRequest {
      */
     PermissionsBoundary: string | undefined;
 }
+/**
+ * @public
+ */
 export interface PutRolePolicyRequest {
     /**
      * <p>The name of the role to associate the policy with.</p>
@@ -5685,6 +6237,9 @@ export interface PutRolePolicyRequest {
      */
     PolicyDocument: string | undefined;
 }
+/**
+ * @public
+ */
 export interface PutUserPermissionsBoundaryRequest {
     /**
      * <p>The name (friendly name, not ARN) of the IAM user for which you want to set the
@@ -5704,6 +6259,9 @@ export interface PutUserPermissionsBoundaryRequest {
      */
     PermissionsBoundary: string | undefined;
 }
+/**
+ * @public
+ */
 export interface PutUserPolicyRequest {
     /**
      * <p>The name of the user to associate the policy with.</p>
@@ -5741,6 +6299,9 @@ export interface PutUserPolicyRequest {
      */
     PolicyDocument: string | undefined;
 }
+/**
+ * @public
+ */
 export interface RemoveClientIDFromOpenIDConnectProviderRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of the IAM OIDC provider resource to remove the
@@ -5754,6 +6315,9 @@ export interface RemoveClientIDFromOpenIDConnectProviderRequest {
      */
     ClientID: string | undefined;
 }
+/**
+ * @public
+ */
 export interface RemoveRoleFromInstanceProfileRequest {
     /**
      * <p>The name of the instance profile to update.</p>
@@ -5768,6 +6332,9 @@ export interface RemoveRoleFromInstanceProfileRequest {
      */
     RoleName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface RemoveUserFromGroupRequest {
     /**
      * <p>The name of the group to update.</p>
@@ -5782,6 +6349,9 @@ export interface RemoveUserFromGroupRequest {
      */
     UserName: string | undefined;
 }
+/**
+ * @public
+ */
 export interface ResetServiceSpecificCredentialRequest {
     /**
      * <p>The name of the IAM user associated with the service-specific credential. If this
@@ -5798,6 +6368,9 @@ export interface ResetServiceSpecificCredentialRequest {
      */
     ServiceSpecificCredentialId: string | undefined;
 }
+/**
+ * @public
+ */
 export interface ResetServiceSpecificCredentialResponse {
     /**
      * <p>A structure with details about the updated service-specific credential, including the
@@ -5809,6 +6382,9 @@ export interface ResetServiceSpecificCredentialResponse {
      */
     ServiceSpecificCredential?: ServiceSpecificCredential;
 }
+/**
+ * @public
+ */
 export interface ResyncMFADeviceRequest {
     /**
      * <p>The name of the user whose MFA device you want to resynchronize.</p>
@@ -5833,6 +6409,9 @@ export interface ResyncMFADeviceRequest {
      */
     AuthenticationCode2: string | undefined;
 }
+/**
+ * @public
+ */
 export interface SetDefaultPolicyVersionRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of the IAM policy whose default version you want to
@@ -5847,10 +6426,16 @@ export interface SetDefaultPolicyVersionRequest {
      */
     VersionId: string | undefined;
 }
+/**
+ * @public
+ */
 export declare enum GlobalEndpointTokenVersion {
     v1Token = "v1Token",
     v2Token = "v2Token"
 }
+/**
+ * @public
+ */
 export interface SetSecurityTokenServicePreferencesRequest {
     /**
      * <p>The version of the global endpoint token. Version 1 tokens are valid only in Amazon Web Services Regions that are available by default. These tokens do not work in
@@ -5864,6 +6449,7 @@ export interface SetSecurityTokenServicePreferencesRequest {
     GlobalEndpointTokenVersion: GlobalEndpointTokenVersion | string | undefined;
 }
 /**
+ * @public
  * <p>The request failed because a provided policy could not be successfully evaluated. An
  *       additional detailed message indicates the source of the failure.</p>
  */
@@ -5875,6 +6461,9 @@ export declare class PolicyEvaluationException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<PolicyEvaluationException, __BaseException>);
 }
+/**
+ * @public
+ */
 export declare enum ContextKeyTypeEnum {
     BINARY = "binary",
     BINARY_LIST = "binaryList",
@@ -5890,6 +6479,7 @@ export declare enum ContextKeyTypeEnum {
     STRING_LIST = "stringList"
 }
 /**
+ * @public
  * <p>Contains information about a condition context key. It includes the name of the key and
  *          specifies the value (or values, if the context key supports multiple values) to use in the
  *          simulation. This information is used when evaluating the <code>Condition</code> elements of
@@ -5915,6 +6505,9 @@ export interface ContextEntry {
      */
     ContextKeyType?: ContextKeyTypeEnum | string;
 }
+/**
+ * @public
+ */
 export interface SimulateCustomPolicyRequest {
     /**
      * <p>A list of policy documents to include in the simulation. Each document is specified as
@@ -6116,12 +6709,16 @@ export interface SimulateCustomPolicyRequest {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export declare enum PolicyEvaluationDecisionType {
     ALLOWED = "allowed",
     EXPLICIT_DENY = "explicitDeny",
     IMPLICIT_DENY = "implicitDeny"
 }
 /**
+ * @public
  * <p>Contains the row and column of a location of a <code>Statement</code> element in a
  *          policy document.</p>
  *          <p>This data type is used as a member of the <code>
@@ -6138,6 +6735,9 @@ export interface Position {
      */
     Column?: number;
 }
+/**
+ * @public
+ */
 export declare enum PolicySourceType {
     AWS_MANAGED = "aws-managed",
     GROUP = "group",
@@ -6148,6 +6748,7 @@ export declare enum PolicySourceType {
     USER_MANAGED = "user-managed"
 }
 /**
+ * @public
  * <p>Contains a reference to a <code>Statement</code> element in a policy document that
  *          determines the result of the simulation.</p>
  *          <p>This data type is used by the <code>MatchedStatements</code> member of the <code>
@@ -6174,6 +6775,7 @@ export interface Statement {
     EndPosition?: Position;
 }
 /**
+ * @public
  * <p>Contains information about the effect that Organizations has on a policy simulation.</p>
  */
 export interface OrganizationsDecisionDetail {
@@ -6184,6 +6786,7 @@ export interface OrganizationsDecisionDetail {
     AllowedByOrganizations?: boolean;
 }
 /**
+ * @public
  * <p>Contains information about the effect that a permissions boundary has on a policy
  *          simulation when the boundary is applied to an IAM entity.</p>
  */
@@ -6201,6 +6804,7 @@ export interface PermissionsBoundaryDecisionDetail {
     AllowedByPermissionsBoundary?: boolean;
 }
 /**
+ * @public
  * <p>Contains the result of the simulation of a single API operation call on a single
  *          resource.</p>
  *          <p>This data type is used by a member of the <a>EvaluationResult</a> data
@@ -6248,6 +6852,7 @@ export interface ResourceSpecificResult {
     PermissionsBoundaryDecisionDetail?: PermissionsBoundaryDecisionDetail;
 }
 /**
+ * @public
  * <p>Contains the results of a simulation.</p>
  *          <p>This data type is used by the return parameter of <code>
  *                <a>SimulateCustomPolicy</a>
@@ -6318,6 +6923,7 @@ export interface EvaluationResult {
     ResourceSpecificResults?: ResourceSpecificResult[];
 }
 /**
+ * @public
  * <p>Contains the response to a successful <a>SimulatePrincipalPolicy</a> or
  *       <a>SimulateCustomPolicy</a> request.</p>
  */
@@ -6342,6 +6948,9 @@ export interface SimulatePolicyResponse {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface SimulatePrincipalPolicyRequest {
     /**
      * <p>The Amazon Resource Name (ARN) of a user, group, or role whose policies you want to
@@ -6553,6 +7162,9 @@ export interface SimulatePrincipalPolicyRequest {
      */
     Marker?: string;
 }
+/**
+ * @public
+ */
 export interface TagInstanceProfileRequest {
     /**
      * <p>The name of the IAM instance profile to which you want to add tags.</p>
@@ -6566,6 +7178,9 @@ export interface TagInstanceProfileRequest {
      */
     Tags: Tag[] | undefined;
 }
+/**
+ * @public
+ */
 export interface TagMFADeviceRequest {
     /**
      * <p>The unique identifier for the IAM virtual MFA device to which you want to add tags.
@@ -6580,6 +7195,9 @@ export interface TagMFADeviceRequest {
      */
     Tags: Tag[] | undefined;
 }
+/**
+ * @public
+ */
 export interface TagOpenIDConnectProviderRequest {
     /**
      * <p>The ARN of the OIDC identity provider in IAM to which you want to add tags.</p>
@@ -6593,6 +7211,9 @@ export interface TagOpenIDConnectProviderRequest {
      */
     Tags: Tag[] | undefined;
 }
+/**
+ * @public
+ */
 export interface TagPolicyRequest {
     /**
      * <p>The ARN of the IAM customer managed policy to which you want to add tags.</p>
@@ -6606,6 +7227,9 @@ export interface TagPolicyRequest {
      */
     Tags: Tag[] | undefined;
 }
+/**
+ * @public
+ */
 export interface TagRoleRequest {
     /**
      * <p>The name of the IAM role to which you want to add tags.</p>
@@ -6618,6 +7242,9 @@ export interface TagRoleRequest {
      */
     Tags: Tag[] | undefined;
 }
+/**
+ * @public
+ */
 export interface TagSAMLProviderRequest {
     /**
      * <p>The ARN of the SAML identity provider in IAM to which you want to add tags.</p>
@@ -6631,6 +7258,9 @@ export interface TagSAMLProviderRequest {
      */
     Tags: Tag[] | undefined;
 }
+/**
+ * @public
+ */
 export interface TagServerCertificateRequest {
     /**
      * <p>The name of the IAM server certificate to which you want to add tags.</p>
@@ -6644,6 +7274,9 @@ export interface TagServerCertificateRequest {
      */
     Tags: Tag[] | undefined;
 }
+/**
+ * @public
+ */
 export interface TagUserRequest {
     /**
      * <p>The name of the IAM user to which you want to add tags.</p>
@@ -6656,6 +7289,9 @@ export interface TagUserRequest {
      */
     Tags: Tag[] | undefined;
 }
+/**
+ * @public
+ */
 export interface UntagInstanceProfileRequest {
     /**
      * <p>The name of the IAM instance profile from which you want to remove tags.</p>
@@ -6669,6 +7305,9 @@ export interface UntagInstanceProfileRequest {
      */
     TagKeys: string[] | undefined;
 }
+/**
+ * @public
+ */
 export interface UntagMFADeviceRequest {
     /**
      * <p>The unique identifier for the IAM virtual MFA device from which you want to remove
@@ -6683,6 +7322,9 @@ export interface UntagMFADeviceRequest {
      */
     TagKeys: string[] | undefined;
 }
+/**
+ * @public
+ */
 export interface UntagOpenIDConnectProviderRequest {
     /**
      * <p>The ARN of the OIDC provider in IAM from which you want to remove tags.</p>