@aws-sdk/client-iam 3.296.0 → 3.297.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (194) hide show
  1. package/dist-cjs/protocols/Aws_query.js +159 -783
  2. package/dist-es/protocols/Aws_query.js +159 -783
  3. package/dist-types/IAM.d.ts +162 -2
  4. package/dist-types/IAMClient.d.ts +24 -4
  5. package/dist-types/commands/AddClientIDToOpenIDConnectProviderCommand.d.ts +16 -0
  6. package/dist-types/commands/AddRoleToInstanceProfileCommand.d.ts +20 -4
  7. package/dist-types/commands/AddUserToGroupCommand.d.ts +16 -0
  8. package/dist-types/commands/AttachGroupPolicyCommand.d.ts +16 -0
  9. package/dist-types/commands/AttachRolePolicyCommand.d.ts +20 -4
  10. package/dist-types/commands/AttachUserPolicyCommand.d.ts +16 -0
  11. package/dist-types/commands/ChangePasswordCommand.d.ts +16 -0
  12. package/dist-types/commands/CreateAccessKeyCommand.d.ts +16 -0
  13. package/dist-types/commands/CreateAccountAliasCommand.d.ts +16 -0
  14. package/dist-types/commands/CreateGroupCommand.d.ts +16 -0
  15. package/dist-types/commands/CreateInstanceProfileCommand.d.ts +16 -0
  16. package/dist-types/commands/CreateLoginProfileCommand.d.ts +16 -0
  17. package/dist-types/commands/CreateOpenIDConnectProviderCommand.d.ts +16 -0
  18. package/dist-types/commands/CreatePolicyCommand.d.ts +16 -0
  19. package/dist-types/commands/CreatePolicyVersionCommand.d.ts +16 -0
  20. package/dist-types/commands/CreateRoleCommand.d.ts +16 -0
  21. package/dist-types/commands/CreateSAMLProviderCommand.d.ts +16 -0
  22. package/dist-types/commands/CreateServiceLinkedRoleCommand.d.ts +16 -0
  23. package/dist-types/commands/CreateServiceSpecificCredentialCommand.d.ts +16 -0
  24. package/dist-types/commands/CreateUserCommand.d.ts +16 -0
  25. package/dist-types/commands/CreateVirtualMFADeviceCommand.d.ts +16 -0
  26. package/dist-types/commands/DeactivateMFADeviceCommand.d.ts +16 -0
  27. package/dist-types/commands/DeleteAccessKeyCommand.d.ts +16 -0
  28. package/dist-types/commands/DeleteAccountAliasCommand.d.ts +16 -0
  29. package/dist-types/commands/DeleteAccountPasswordPolicyCommand.d.ts +16 -0
  30. package/dist-types/commands/DeleteGroupCommand.d.ts +16 -0
  31. package/dist-types/commands/DeleteGroupPolicyCommand.d.ts +16 -0
  32. package/dist-types/commands/DeleteInstanceProfileCommand.d.ts +16 -0
  33. package/dist-types/commands/DeleteLoginProfileCommand.d.ts +16 -0
  34. package/dist-types/commands/DeleteOpenIDConnectProviderCommand.d.ts +16 -0
  35. package/dist-types/commands/DeletePolicyCommand.d.ts +16 -0
  36. package/dist-types/commands/DeletePolicyVersionCommand.d.ts +16 -0
  37. package/dist-types/commands/DeleteRoleCommand.d.ts +20 -4
  38. package/dist-types/commands/DeleteRolePermissionsBoundaryCommand.d.ts +22 -5
  39. package/dist-types/commands/DeleteRolePolicyCommand.d.ts +20 -4
  40. package/dist-types/commands/DeleteSAMLProviderCommand.d.ts +16 -0
  41. package/dist-types/commands/DeleteSSHPublicKeyCommand.d.ts +16 -0
  42. package/dist-types/commands/DeleteServerCertificateCommand.d.ts +16 -0
  43. package/dist-types/commands/DeleteServiceLinkedRoleCommand.d.ts +16 -0
  44. package/dist-types/commands/DeleteServiceSpecificCredentialCommand.d.ts +16 -0
  45. package/dist-types/commands/DeleteSigningCertificateCommand.d.ts +16 -0
  46. package/dist-types/commands/DeleteUserCommand.d.ts +16 -0
  47. package/dist-types/commands/DeleteUserPermissionsBoundaryCommand.d.ts +16 -0
  48. package/dist-types/commands/DeleteUserPolicyCommand.d.ts +16 -0
  49. package/dist-types/commands/DeleteVirtualMFADeviceCommand.d.ts +16 -0
  50. package/dist-types/commands/DetachGroupPolicyCommand.d.ts +16 -0
  51. package/dist-types/commands/DetachRolePolicyCommand.d.ts +20 -4
  52. package/dist-types/commands/DetachUserPolicyCommand.d.ts +16 -0
  53. package/dist-types/commands/EnableMFADeviceCommand.d.ts +16 -0
  54. package/dist-types/commands/GenerateCredentialReportCommand.d.ts +16 -0
  55. package/dist-types/commands/GenerateOrganizationsAccessReportCommand.d.ts +16 -0
  56. package/dist-types/commands/GenerateServiceLastAccessedDetailsCommand.d.ts +16 -0
  57. package/dist-types/commands/GetAccessKeyLastUsedCommand.d.ts +16 -0
  58. package/dist-types/commands/GetAccountAuthorizationDetailsCommand.d.ts +16 -0
  59. package/dist-types/commands/GetAccountPasswordPolicyCommand.d.ts +16 -0
  60. package/dist-types/commands/GetAccountSummaryCommand.d.ts +16 -0
  61. package/dist-types/commands/GetContextKeysForCustomPolicyCommand.d.ts +16 -0
  62. package/dist-types/commands/GetContextKeysForPrincipalPolicyCommand.d.ts +16 -0
  63. package/dist-types/commands/GetCredentialReportCommand.d.ts +16 -0
  64. package/dist-types/commands/GetGroupCommand.d.ts +16 -0
  65. package/dist-types/commands/GetGroupPolicyCommand.d.ts +16 -0
  66. package/dist-types/commands/GetInstanceProfileCommand.d.ts +16 -0
  67. package/dist-types/commands/GetLoginProfileCommand.d.ts +16 -0
  68. package/dist-types/commands/GetOpenIDConnectProviderCommand.d.ts +16 -0
  69. package/dist-types/commands/GetOrganizationsAccessReportCommand.d.ts +16 -0
  70. package/dist-types/commands/GetPolicyCommand.d.ts +16 -0
  71. package/dist-types/commands/GetPolicyVersionCommand.d.ts +16 -0
  72. package/dist-types/commands/GetRoleCommand.d.ts +16 -0
  73. package/dist-types/commands/GetRolePolicyCommand.d.ts +16 -0
  74. package/dist-types/commands/GetSAMLProviderCommand.d.ts +16 -0
  75. package/dist-types/commands/GetSSHPublicKeyCommand.d.ts +16 -0
  76. package/dist-types/commands/GetServerCertificateCommand.d.ts +16 -0
  77. package/dist-types/commands/GetServiceLastAccessedDetailsCommand.d.ts +16 -0
  78. package/dist-types/commands/GetServiceLastAccessedDetailsWithEntitiesCommand.d.ts +16 -0
  79. package/dist-types/commands/GetServiceLinkedRoleDeletionStatusCommand.d.ts +16 -0
  80. package/dist-types/commands/GetUserCommand.d.ts +16 -0
  81. package/dist-types/commands/GetUserPolicyCommand.d.ts +16 -0
  82. package/dist-types/commands/ListAccessKeysCommand.d.ts +16 -0
  83. package/dist-types/commands/ListAccountAliasesCommand.d.ts +16 -0
  84. package/dist-types/commands/ListAttachedGroupPoliciesCommand.d.ts +16 -0
  85. package/dist-types/commands/ListAttachedRolePoliciesCommand.d.ts +16 -0
  86. package/dist-types/commands/ListAttachedUserPoliciesCommand.d.ts +16 -0
  87. package/dist-types/commands/ListEntitiesForPolicyCommand.d.ts +16 -0
  88. package/dist-types/commands/ListGroupPoliciesCommand.d.ts +16 -0
  89. package/dist-types/commands/ListGroupsCommand.d.ts +16 -0
  90. package/dist-types/commands/ListGroupsForUserCommand.d.ts +16 -0
  91. package/dist-types/commands/ListInstanceProfileTagsCommand.d.ts +16 -0
  92. package/dist-types/commands/ListInstanceProfilesCommand.d.ts +16 -0
  93. package/dist-types/commands/ListInstanceProfilesForRoleCommand.d.ts +16 -0
  94. package/dist-types/commands/ListMFADeviceTagsCommand.d.ts +16 -0
  95. package/dist-types/commands/ListMFADevicesCommand.d.ts +16 -0
  96. package/dist-types/commands/ListOpenIDConnectProviderTagsCommand.d.ts +16 -0
  97. package/dist-types/commands/ListOpenIDConnectProvidersCommand.d.ts +16 -0
  98. package/dist-types/commands/ListPoliciesCommand.d.ts +16 -0
  99. package/dist-types/commands/ListPoliciesGrantingServiceAccessCommand.d.ts +16 -0
  100. package/dist-types/commands/ListPolicyTagsCommand.d.ts +16 -0
  101. package/dist-types/commands/ListPolicyVersionsCommand.d.ts +16 -0
  102. package/dist-types/commands/ListRolePoliciesCommand.d.ts +16 -0
  103. package/dist-types/commands/ListRoleTagsCommand.d.ts +16 -0
  104. package/dist-types/commands/ListRolesCommand.d.ts +16 -0
  105. package/dist-types/commands/ListSAMLProviderTagsCommand.d.ts +16 -0
  106. package/dist-types/commands/ListSAMLProvidersCommand.d.ts +16 -0
  107. package/dist-types/commands/ListSSHPublicKeysCommand.d.ts +16 -0
  108. package/dist-types/commands/ListServerCertificateTagsCommand.d.ts +16 -0
  109. package/dist-types/commands/ListServerCertificatesCommand.d.ts +16 -0
  110. package/dist-types/commands/ListServiceSpecificCredentialsCommand.d.ts +16 -0
  111. package/dist-types/commands/ListSigningCertificatesCommand.d.ts +16 -0
  112. package/dist-types/commands/ListUserPoliciesCommand.d.ts +16 -0
  113. package/dist-types/commands/ListUserTagsCommand.d.ts +16 -0
  114. package/dist-types/commands/ListUsersCommand.d.ts +16 -0
  115. package/dist-types/commands/ListVirtualMFADevicesCommand.d.ts +16 -0
  116. package/dist-types/commands/PutGroupPolicyCommand.d.ts +16 -0
  117. package/dist-types/commands/PutRolePermissionsBoundaryCommand.d.ts +21 -5
  118. package/dist-types/commands/PutRolePolicyCommand.d.ts +20 -4
  119. package/dist-types/commands/PutUserPermissionsBoundaryCommand.d.ts +16 -0
  120. package/dist-types/commands/PutUserPolicyCommand.d.ts +16 -0
  121. package/dist-types/commands/RemoveClientIDFromOpenIDConnectProviderCommand.d.ts +16 -0
  122. package/dist-types/commands/RemoveRoleFromInstanceProfileCommand.d.ts +20 -4
  123. package/dist-types/commands/RemoveUserFromGroupCommand.d.ts +16 -0
  124. package/dist-types/commands/ResetServiceSpecificCredentialCommand.d.ts +16 -0
  125. package/dist-types/commands/ResyncMFADeviceCommand.d.ts +16 -0
  126. package/dist-types/commands/SetDefaultPolicyVersionCommand.d.ts +16 -0
  127. package/dist-types/commands/SetSecurityTokenServicePreferencesCommand.d.ts +16 -0
  128. package/dist-types/commands/SimulateCustomPolicyCommand.d.ts +16 -0
  129. package/dist-types/commands/SimulatePrincipalPolicyCommand.d.ts +16 -0
  130. package/dist-types/commands/TagInstanceProfileCommand.d.ts +16 -0
  131. package/dist-types/commands/TagMFADeviceCommand.d.ts +16 -0
  132. package/dist-types/commands/TagOpenIDConnectProviderCommand.d.ts +16 -0
  133. package/dist-types/commands/TagPolicyCommand.d.ts +16 -0
  134. package/dist-types/commands/TagRoleCommand.d.ts +16 -0
  135. package/dist-types/commands/TagSAMLProviderCommand.d.ts +16 -0
  136. package/dist-types/commands/TagServerCertificateCommand.d.ts +16 -0
  137. package/dist-types/commands/TagUserCommand.d.ts +16 -0
  138. package/dist-types/commands/UntagInstanceProfileCommand.d.ts +16 -0
  139. package/dist-types/commands/UntagMFADeviceCommand.d.ts +16 -0
  140. package/dist-types/commands/UntagOpenIDConnectProviderCommand.d.ts +16 -0
  141. package/dist-types/commands/UntagPolicyCommand.d.ts +16 -0
  142. package/dist-types/commands/UntagRoleCommand.d.ts +16 -0
  143. package/dist-types/commands/UntagSAMLProviderCommand.d.ts +16 -0
  144. package/dist-types/commands/UntagServerCertificateCommand.d.ts +16 -0
  145. package/dist-types/commands/UntagUserCommand.d.ts +16 -0
  146. package/dist-types/commands/UpdateAccessKeyCommand.d.ts +16 -0
  147. package/dist-types/commands/UpdateAccountPasswordPolicyCommand.d.ts +16 -0
  148. package/dist-types/commands/UpdateAssumeRolePolicyCommand.d.ts +20 -4
  149. package/dist-types/commands/UpdateGroupCommand.d.ts +16 -0
  150. package/dist-types/commands/UpdateLoginProfileCommand.d.ts +16 -0
  151. package/dist-types/commands/UpdateOpenIDConnectProviderThumbprintCommand.d.ts +16 -0
  152. package/dist-types/commands/UpdateRoleCommand.d.ts +20 -4
  153. package/dist-types/commands/UpdateRoleDescriptionCommand.d.ts +20 -4
  154. package/dist-types/commands/UpdateSAMLProviderCommand.d.ts +16 -0
  155. package/dist-types/commands/UpdateSSHPublicKeyCommand.d.ts +16 -0
  156. package/dist-types/commands/UpdateServerCertificateCommand.d.ts +16 -0
  157. package/dist-types/commands/UpdateServiceSpecificCredentialCommand.d.ts +16 -0
  158. package/dist-types/commands/UpdateSigningCertificateCommand.d.ts +16 -0
  159. package/dist-types/commands/UpdateUserCommand.d.ts +16 -0
  160. package/dist-types/commands/UploadSSHPublicKeyCommand.d.ts +16 -0
  161. package/dist-types/commands/UploadServerCertificateCommand.d.ts +16 -0
  162. package/dist-types/commands/UploadSigningCertificateCommand.d.ts +16 -0
  163. package/dist-types/models/IAMServiceException.d.ts +2 -0
  164. package/dist-types/models/models_0.d.ts +649 -7
  165. package/dist-types/models/models_1.d.ts +83 -1
  166. package/dist-types/pagination/GetAccountAuthorizationDetailsPaginator.d.ts +3 -0
  167. package/dist-types/pagination/GetGroupPaginator.d.ts +3 -0
  168. package/dist-types/pagination/Interfaces.d.ts +3 -0
  169. package/dist-types/pagination/ListAccessKeysPaginator.d.ts +3 -0
  170. package/dist-types/pagination/ListAccountAliasesPaginator.d.ts +3 -0
  171. package/dist-types/pagination/ListAttachedGroupPoliciesPaginator.d.ts +3 -0
  172. package/dist-types/pagination/ListAttachedRolePoliciesPaginator.d.ts +3 -0
  173. package/dist-types/pagination/ListAttachedUserPoliciesPaginator.d.ts +3 -0
  174. package/dist-types/pagination/ListEntitiesForPolicyPaginator.d.ts +3 -0
  175. package/dist-types/pagination/ListGroupPoliciesPaginator.d.ts +3 -0
  176. package/dist-types/pagination/ListGroupsForUserPaginator.d.ts +3 -0
  177. package/dist-types/pagination/ListGroupsPaginator.d.ts +3 -0
  178. package/dist-types/pagination/ListInstanceProfilesForRolePaginator.d.ts +3 -0
  179. package/dist-types/pagination/ListInstanceProfilesPaginator.d.ts +3 -0
  180. package/dist-types/pagination/ListMFADevicesPaginator.d.ts +3 -0
  181. package/dist-types/pagination/ListPoliciesPaginator.d.ts +3 -0
  182. package/dist-types/pagination/ListPolicyVersionsPaginator.d.ts +3 -0
  183. package/dist-types/pagination/ListRolePoliciesPaginator.d.ts +3 -0
  184. package/dist-types/pagination/ListRolesPaginator.d.ts +3 -0
  185. package/dist-types/pagination/ListSSHPublicKeysPaginator.d.ts +3 -0
  186. package/dist-types/pagination/ListServerCertificatesPaginator.d.ts +3 -0
  187. package/dist-types/pagination/ListSigningCertificatesPaginator.d.ts +3 -0
  188. package/dist-types/pagination/ListUserPoliciesPaginator.d.ts +3 -0
  189. package/dist-types/pagination/ListUserTagsPaginator.d.ts +3 -0
  190. package/dist-types/pagination/ListUsersPaginator.d.ts +3 -0
  191. package/dist-types/pagination/ListVirtualMFADevicesPaginator.d.ts +3 -0
  192. package/dist-types/pagination/SimulateCustomPolicyPaginator.d.ts +3 -0
  193. package/dist-types/pagination/SimulatePrincipalPolicyPaginator.d.ts +3 -0
  194. package/package.json +3 -3
package/dist-types/IAM.d.ts CHANGED
@@ -159,6 +159,7 @@ import { UploadSigningCertificateCommandInput, UploadSigningCertificateCommandOu
159
159
  import { UploadSSHPublicKeyCommandInput, UploadSSHPublicKeyCommandOutput } from "./commands/UploadSSHPublicKeyCommand";
160
160
  import { IAMClient } from "./IAMClient";
161
161
  /**
162
+ * @public
162
163
  * <fullname>Identity and Access Management</fullname>
163
164
  * <p>Identity and Access Management (IAM) is a web service for securely controlling
164
165
  * access to Amazon Web Services services. With IAM, you can centrally manage users, security credentials
@@ -167,6 +168,7 @@ import { IAMClient } from "./IAMClient";
167
168
  */
168
169
  export declare class IAM extends IAMClient {
169
170
  /**
171
+ * @public
170
172
  * <p>Adds a new client ID (also known as audience) to the list of client IDs already
171
173
  * registered for the specified IAM OpenID Connect (OIDC) provider resource.</p>
172
174
  * <p>This operation is idempotent; it does not fail or return an error if you add an
@@ -176,6 +178,7 @@ export declare class IAM extends IAMClient {
176
178
  addClientIDToOpenIDConnectProvider(args: AddClientIDToOpenIDConnectProviderCommandInput, cb: (err: any, data?: AddClientIDToOpenIDConnectProviderCommandOutput) => void): void;
177
179
  addClientIDToOpenIDConnectProvider(args: AddClientIDToOpenIDConnectProviderCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: AddClientIDToOpenIDConnectProviderCommandOutput) => void): void;
178
180
  /**
181
+ * @public
179
182
  * <p>Adds the specified IAM role to the specified instance profile. An instance profile
180
183
  * can contain only one role, and this quota cannot be increased. You can remove the
181
184
  * existing role and then add a different role to an instance profile. You must then wait
@@ -194,12 +197,14 @@ export declare class IAM extends IAMClient {
194
197
  addRoleToInstanceProfile(args: AddRoleToInstanceProfileCommandInput, cb: (err: any, data?: AddRoleToInstanceProfileCommandOutput) => void): void;
195
198
  addRoleToInstanceProfile(args: AddRoleToInstanceProfileCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: AddRoleToInstanceProfileCommandOutput) => void): void;
196
199
  /**
200
+ * @public
197
201
  * <p>Adds the specified user to the specified group.</p>
198
202
  */
199
203
  addUserToGroup(args: AddUserToGroupCommandInput, options?: __HttpHandlerOptions): Promise<AddUserToGroupCommandOutput>;
200
204
  addUserToGroup(args: AddUserToGroupCommandInput, cb: (err: any, data?: AddUserToGroupCommandOutput) => void): void;
201
205
  addUserToGroup(args: AddUserToGroupCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: AddUserToGroupCommandOutput) => void): void;
202
206
  /**
207
+ * @public
203
208
  * <p>Attaches the specified managed policy to the specified IAM group.</p>
204
209
  * <p>You use this operation to attach a managed policy to a group. To embed an inline
205
210
  * policy in a group, use <a>PutGroupPolicy</a>.</p>
@@ -213,6 +218,7 @@ export declare class IAM extends IAMClient {
213
218
  attachGroupPolicy(args: AttachGroupPolicyCommandInput, cb: (err: any, data?: AttachGroupPolicyCommandOutput) => void): void;
214
219
  attachGroupPolicy(args: AttachGroupPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: AttachGroupPolicyCommandOutput) => void): void;
215
220
  /**
221
+ * @public
216
222
  * <p>Attaches the specified managed policy to the specified IAM role. When you attach a
217
223
  * managed policy to a role, the managed policy becomes part of the role's permission
218
224
  * (access) policy.</p>
@@ -233,6 +239,7 @@ export declare class IAM extends IAMClient {
233
239
  attachRolePolicy(args: AttachRolePolicyCommandInput, cb: (err: any, data?: AttachRolePolicyCommandOutput) => void): void;
234
240
  attachRolePolicy(args: AttachRolePolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: AttachRolePolicyCommandOutput) => void): void;
235
241
  /**
242
+ * @public
236
243
  * <p>Attaches the specified managed policy to the specified user.</p>
237
244
  * <p>You use this operation to attach a <i>managed</i> policy to a user. To
238
245
  * embed an inline policy in a user, use <a>PutUserPolicy</a>.</p>
@@ -246,6 +253,7 @@ export declare class IAM extends IAMClient {
246
253
  attachUserPolicy(args: AttachUserPolicyCommandInput, cb: (err: any, data?: AttachUserPolicyCommandOutput) => void): void;
247
254
  attachUserPolicy(args: AttachUserPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: AttachUserPolicyCommandOutput) => void): void;
248
255
  /**
256
+ * @public
249
257
  * <p>Changes the password of the IAM user who is calling this operation. This operation
250
258
  * can be performed using the CLI, the Amazon Web Services API, or the <b>My
251
259
  * Security Credentials</b> page in the Amazon Web Services Management Console. The Amazon Web Services account root user password is
@@ -259,6 +267,7 @@ export declare class IAM extends IAMClient {
259
267
  changePassword(args: ChangePasswordCommandInput, cb: (err: any, data?: ChangePasswordCommandOutput) => void): void;
260
268
  changePassword(args: ChangePasswordCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ChangePasswordCommandOutput) => void): void;
261
269
  /**
270
+ * @public
262
271
  * <p> Creates a new Amazon Web Services secret access key and corresponding Amazon Web Services access key ID for the
263
272
  * specified user. The default status for new keys is <code>Active</code>.</p>
264
273
  * <p>If you do not specify a user name, IAM determines the user name implicitly based on
@@ -278,6 +287,7 @@ export declare class IAM extends IAMClient {
278
287
  createAccessKey(args: CreateAccessKeyCommandInput, cb: (err: any, data?: CreateAccessKeyCommandOutput) => void): void;
279
288
  createAccessKey(args: CreateAccessKeyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateAccessKeyCommandOutput) => void): void;
280
289
  /**
290
+ * @public
281
291
  * <p>Creates an alias for your Amazon Web Services account. For information about using an Amazon Web Services account
282
292
  * alias, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/AccountAlias.html">Using an
283
293
  * alias for your Amazon Web Services account ID</a> in the
@@ -287,6 +297,7 @@ export declare class IAM extends IAMClient {
287
297
  createAccountAlias(args: CreateAccountAliasCommandInput, cb: (err: any, data?: CreateAccountAliasCommandOutput) => void): void;
288
298
  createAccountAlias(args: CreateAccountAliasCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateAccountAliasCommandOutput) => void): void;
289
299
  /**
300
+ * @public
290
301
  * <p>Creates a new group.</p>
291
302
  * <p> For information about the number of groups you can create, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html">IAM and STS
292
303
  * quotas</a> in the <i>IAM User Guide</i>.</p>
@@ -295,6 +306,7 @@ export declare class IAM extends IAMClient {
295
306
  createGroup(args: CreateGroupCommandInput, cb: (err: any, data?: CreateGroupCommandOutput) => void): void;
296
307
  createGroup(args: CreateGroupCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateGroupCommandOutput) => void): void;
297
308
  /**
309
+ * @public
298
310
  * <p> Creates a new instance profile. For information about instance profiles, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2.html">Using
299
311
  * roles for applications on Amazon EC2</a> in the
300
312
  * <i>IAM User Guide</i>, and <a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/iam-roles-for-amazon-ec2.html#ec2-instance-profile">Instance profiles</a> in the <i>Amazon EC2 User Guide</i>.</p>
@@ -305,6 +317,7 @@ export declare class IAM extends IAMClient {
305
317
  createInstanceProfile(args: CreateInstanceProfileCommandInput, cb: (err: any, data?: CreateInstanceProfileCommandOutput) => void): void;
306
318
  createInstanceProfile(args: CreateInstanceProfileCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateInstanceProfileCommandOutput) => void): void;
307
319
  /**
320
+ * @public
308
321
  * <p>Creates a password for the specified IAM user. A password allows an IAM user to
309
322
  * access Amazon Web Services services through the Amazon Web Services Management Console.</p>
310
323
  * <p>You can use the CLI, the Amazon Web Services API, or the <b>Users</b>
@@ -316,6 +329,7 @@ export declare class IAM extends IAMClient {
316
329
  createLoginProfile(args: CreateLoginProfileCommandInput, cb: (err: any, data?: CreateLoginProfileCommandOutput) => void): void;
317
330
  createLoginProfile(args: CreateLoginProfileCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateLoginProfileCommandOutput) => void): void;
318
331
  /**
332
+ * @public
319
333
  * <p>Creates an IAM entity to describe an identity provider (IdP) that supports <a href="http://openid.net/connect/">OpenID Connect (OIDC)</a>.</p>
320
334
  * <p>The OIDC provider that you create with this operation can be used as a principal in a
321
335
  * role's trust policy. Such a policy establishes a trust relationship between Amazon Web Services and
@@ -363,6 +377,7 @@ export declare class IAM extends IAMClient {
363
377
  createOpenIDConnectProvider(args: CreateOpenIDConnectProviderCommandInput, cb: (err: any, data?: CreateOpenIDConnectProviderCommandOutput) => void): void;
364
378
  createOpenIDConnectProvider(args: CreateOpenIDConnectProviderCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateOpenIDConnectProviderCommandOutput) => void): void;
365
379
  /**
380
+ * @public
366
381
  * <p>Creates a new managed policy for your Amazon Web Services account.</p>
367
382
  * <p>This operation creates a policy version with a version identifier of <code>v1</code>
368
383
  * and sets v1 as the policy's default version. For more information about policy versions,
@@ -379,6 +394,7 @@ export declare class IAM extends IAMClient {
379
394
  createPolicy(args: CreatePolicyCommandInput, cb: (err: any, data?: CreatePolicyCommandOutput) => void): void;
380
395
  createPolicy(args: CreatePolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreatePolicyCommandOutput) => void): void;
381
396
  /**
397
+ * @public
382
398
  * <p>Creates a new version of the specified managed policy. To update a managed policy, you
383
399
  * create a new policy version. A managed policy can have up to five versions. If the
384
400
  * policy has five versions, you must delete an existing version using <a>DeletePolicyVersion</a> before you create a new version.</p>
@@ -392,6 +408,7 @@ export declare class IAM extends IAMClient {
392
408
  createPolicyVersion(args: CreatePolicyVersionCommandInput, cb: (err: any, data?: CreatePolicyVersionCommandOutput) => void): void;
393
409
  createPolicyVersion(args: CreatePolicyVersionCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreatePolicyVersionCommandOutput) => void): void;
394
410
  /**
411
+ * @public
395
412
  * <p>Creates a new role for your Amazon Web Services account. For more information about roles, see
396
413
  * <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/WorkingWithRoles.html">IAM
397
414
  * roles</a>. For information about quotas for role names and the number of roles
@@ -402,6 +419,7 @@ export declare class IAM extends IAMClient {
402
419
  createRole(args: CreateRoleCommandInput, cb: (err: any, data?: CreateRoleCommandOutput) => void): void;
403
420
  createRole(args: CreateRoleCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateRoleCommandOutput) => void): void;
404
421
  /**
422
+ * @public
405
423
  * <p>Creates an IAM resource that describes an identity provider (IdP) that supports SAML
406
424
  * 2.0.</p>
407
425
  * <p>The SAML provider resource that you create with this operation can be used as a
@@ -425,6 +443,7 @@ export declare class IAM extends IAMClient {
425
443
  createSAMLProvider(args: CreateSAMLProviderCommandInput, cb: (err: any, data?: CreateSAMLProviderCommandOutput) => void): void;
426
444
  createSAMLProvider(args: CreateSAMLProviderCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateSAMLProviderCommandOutput) => void): void;
427
445
  /**
446
+ * @public
428
447
  * <p>Creates an IAM role that is linked to a specific Amazon Web Services service. The service controls
429
448
  * the attached policies and when the role can be deleted. This helps ensure that the
430
449
  * service is not broken by an unexpectedly changed or deleted role, which could put your
@@ -439,6 +458,7 @@ export declare class IAM extends IAMClient {
439
458
  createServiceLinkedRole(args: CreateServiceLinkedRoleCommandInput, cb: (err: any, data?: CreateServiceLinkedRoleCommandOutput) => void): void;
440
459
  createServiceLinkedRole(args: CreateServiceLinkedRoleCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateServiceLinkedRoleCommandOutput) => void): void;
441
460
  /**
461
+ * @public
442
462
  * <p>Generates a set of credentials consisting of a user name and password that can be used
443
463
  * to access the service specified in the request. These credentials are generated by
444
464
  * IAM, and can be used only for the specified service. </p>
@@ -455,6 +475,7 @@ export declare class IAM extends IAMClient {
455
475
  createServiceSpecificCredential(args: CreateServiceSpecificCredentialCommandInput, cb: (err: any, data?: CreateServiceSpecificCredentialCommandOutput) => void): void;
456
476
  createServiceSpecificCredential(args: CreateServiceSpecificCredentialCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateServiceSpecificCredentialCommandOutput) => void): void;
457
477
  /**
478
+ * @public
458
479
  * <p>Creates a new IAM user for your Amazon Web Services account.</p>
459
480
  * <p> For information about quotas for the number of IAM users you can create, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html">IAM and STS
460
481
  * quotas</a> in the <i>IAM User Guide</i>.</p>
@@ -463,6 +484,7 @@ export declare class IAM extends IAMClient {
463
484
  createUser(args: CreateUserCommandInput, cb: (err: any, data?: CreateUserCommandOutput) => void): void;
464
485
  createUser(args: CreateUserCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateUserCommandOutput) => void): void;
465
486
  /**
487
+ * @public
466
488
  * <p>Creates a new virtual MFA device for the Amazon Web Services account. After creating the virtual
467
489
  * MFA, use <a>EnableMFADevice</a> to attach the MFA device to an IAM user.
468
490
  * For more information about creating and working with virtual MFA devices, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_VirtualMFA.html">Using a virtual MFA
@@ -481,6 +503,7 @@ export declare class IAM extends IAMClient {
481
503
  createVirtualMFADevice(args: CreateVirtualMFADeviceCommandInput, cb: (err: any, data?: CreateVirtualMFADeviceCommandOutput) => void): void;
482
504
  createVirtualMFADevice(args: CreateVirtualMFADeviceCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateVirtualMFADeviceCommandOutput) => void): void;
483
505
  /**
506
+ * @public
484
507
  * <p>Deactivates the specified MFA device and removes it from association with the user
485
508
  * name for which it was originally enabled.</p>
486
509
  * <p>For more information about creating and working with virtual MFA devices, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_VirtualMFA.html">Enabling a virtual
@@ -491,6 +514,7 @@ export declare class IAM extends IAMClient {
491
514
  deactivateMFADevice(args: DeactivateMFADeviceCommandInput, cb: (err: any, data?: DeactivateMFADeviceCommandOutput) => void): void;
492
515
  deactivateMFADevice(args: DeactivateMFADeviceCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeactivateMFADeviceCommandOutput) => void): void;
493
516
  /**
517
+ * @public
494
518
  * <p>Deletes the access key pair associated with the specified IAM user.</p>
495
519
  * <p>If you do not specify a user name, IAM determines the user name implicitly based on
496
520
  * the Amazon Web Services access key ID signing the request. This operation works for access keys under
@@ -501,6 +525,7 @@ export declare class IAM extends IAMClient {
501
525
  deleteAccessKey(args: DeleteAccessKeyCommandInput, cb: (err: any, data?: DeleteAccessKeyCommandOutput) => void): void;
502
526
  deleteAccessKey(args: DeleteAccessKeyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteAccessKeyCommandOutput) => void): void;
503
527
  /**
528
+ * @public
504
529
  * <p> Deletes the specified Amazon Web Services account alias. For information about using an Amazon Web Services
505
530
  * account alias, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/AccountAlias.html">Using an alias for your Amazon Web Services account ID</a> in the
506
531
  * <i>IAM User Guide</i>.</p>
@@ -509,12 +534,14 @@ export declare class IAM extends IAMClient {
509
534
  deleteAccountAlias(args: DeleteAccountAliasCommandInput, cb: (err: any, data?: DeleteAccountAliasCommandOutput) => void): void;
510
535
  deleteAccountAlias(args: DeleteAccountAliasCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteAccountAliasCommandOutput) => void): void;
511
536
  /**
537
+ * @public
512
538
  * <p>Deletes the password policy for the Amazon Web Services account. There are no parameters.</p>
513
539
  */
514
540
  deleteAccountPasswordPolicy(args: DeleteAccountPasswordPolicyCommandInput, options?: __HttpHandlerOptions): Promise<DeleteAccountPasswordPolicyCommandOutput>;
515
541
  deleteAccountPasswordPolicy(args: DeleteAccountPasswordPolicyCommandInput, cb: (err: any, data?: DeleteAccountPasswordPolicyCommandOutput) => void): void;
516
542
  deleteAccountPasswordPolicy(args: DeleteAccountPasswordPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteAccountPasswordPolicyCommandOutput) => void): void;
517
543
  /**
544
+ * @public
518
545
  * <p>Deletes the specified IAM group. The group must not contain any users or have any
519
546
  * attached policies.</p>
520
547
  */
@@ -522,6 +549,7 @@ export declare class IAM extends IAMClient {
522
549
  deleteGroup(args: DeleteGroupCommandInput, cb: (err: any, data?: DeleteGroupCommandOutput) => void): void;
523
550
  deleteGroup(args: DeleteGroupCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteGroupCommandOutput) => void): void;
524
551
  /**
552
+ * @public
525
553
  * <p>Deletes the specified inline policy that is embedded in the specified IAM
526
554
  * group.</p>
527
555
  * <p>A group can also have managed policies attached to it. To detach a managed policy from
@@ -533,6 +561,7 @@ export declare class IAM extends IAMClient {
533
561
  deleteGroupPolicy(args: DeleteGroupPolicyCommandInput, cb: (err: any, data?: DeleteGroupPolicyCommandOutput) => void): void;
534
562
  deleteGroupPolicy(args: DeleteGroupPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteGroupPolicyCommandOutput) => void): void;
535
563
  /**
564
+ * @public
536
565
  * <p>Deletes the specified instance profile. The instance profile must not have an
537
566
  * associated role.</p>
538
567
  * <important>
@@ -548,6 +577,7 @@ export declare class IAM extends IAMClient {
548
577
  deleteInstanceProfile(args: DeleteInstanceProfileCommandInput, cb: (err: any, data?: DeleteInstanceProfileCommandOutput) => void): void;
549
578
  deleteInstanceProfile(args: DeleteInstanceProfileCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteInstanceProfileCommandOutput) => void): void;
550
579
  /**
580
+ * @public
551
581
  * <p>Deletes the password for the specified IAM user, For more information, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_passwords_admin-change-user.html">Managing
552
582
  * passwords for IAM users</a>.</p>
553
583
  * <p>You can use the CLI, the Amazon Web Services API, or the <b>Users</b>
@@ -566,6 +596,7 @@ export declare class IAM extends IAMClient {
566
596
  deleteLoginProfile(args: DeleteLoginProfileCommandInput, cb: (err: any, data?: DeleteLoginProfileCommandOutput) => void): void;
567
597
  deleteLoginProfile(args: DeleteLoginProfileCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteLoginProfileCommandOutput) => void): void;
568
598
  /**
599
+ * @public
569
600
  * <p>Deletes an OpenID Connect identity provider (IdP) resource object in IAM.</p>
570
601
  * <p>Deleting an IAM OIDC provider resource does not update any roles that reference the
571
602
  * provider as a principal in their trust policies. Any attempt to assume a role that
@@ -577,6 +608,7 @@ export declare class IAM extends IAMClient {
577
608
  deleteOpenIDConnectProvider(args: DeleteOpenIDConnectProviderCommandInput, cb: (err: any, data?: DeleteOpenIDConnectProviderCommandOutput) => void): void;
578
609
  deleteOpenIDConnectProvider(args: DeleteOpenIDConnectProviderCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteOpenIDConnectProviderCommandOutput) => void): void;
579
610
  /**
611
+ * @public
580
612
  * <p>Deletes the specified managed policy.</p>
581
613
  * <p>Before you can delete a managed policy, you must first detach the policy from all
582
614
  * users, groups, and roles that it is attached to. In addition, you must delete all the
@@ -607,6 +639,7 @@ export declare class IAM extends IAMClient {
607
639
  deletePolicy(args: DeletePolicyCommandInput, cb: (err: any, data?: DeletePolicyCommandOutput) => void): void;
608
640
  deletePolicy(args: DeletePolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeletePolicyCommandOutput) => void): void;
609
641
  /**
642
+ * @public
610
643
  * <p>Deletes the specified version from the specified managed policy.</p>
611
644
  * <p>You cannot delete the default version from a policy using this operation. To delete
612
645
  * the default version from a policy, use <a>DeletePolicy</a>. To find out which
@@ -618,6 +651,7 @@ export declare class IAM extends IAMClient {
618
651
  deletePolicyVersion(args: DeletePolicyVersionCommandInput, cb: (err: any, data?: DeletePolicyVersionCommandOutput) => void): void;
619
652
  deletePolicyVersion(args: DeletePolicyVersionCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeletePolicyVersionCommandOutput) => void): void;
620
653
  /**
654
+ * @public
621
655
  * <p>Deletes the specified role. Unlike the Amazon Web Services Management Console, when you delete a role
622
656
  * programmatically, you must delete the items attached to the role manually, or the
623
657
  * deletion fails. For more information, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_manage_delete.html#roles-managingrole-deleting-cli">Deleting an IAM role</a>. Before attempting to delete a role, remove the
@@ -647,17 +681,20 @@ export declare class IAM extends IAMClient {
647
681
  deleteRole(args: DeleteRoleCommandInput, cb: (err: any, data?: DeleteRoleCommandOutput) => void): void;
648
682
  deleteRole(args: DeleteRoleCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteRoleCommandOutput) => void): void;
649
683
  /**
684
+ * @public
650
685
  * <p>Deletes the permissions boundary for the specified IAM role. </p>
686
+ * <p>You cannot set the boundary for a service-linked role.</p>
651
687
  * <important>
652
688
  * <p>Deleting the permissions boundary for a role might increase its permissions. For
653
689
  * example, it might allow anyone who assumes the role to perform all the actions
654
- * granted in its permissions policies. </p>
690
+ * granted in its permissions policies.</p>
655
691
  * </important>
656
692
  */
657
693
  deleteRolePermissionsBoundary(args: DeleteRolePermissionsBoundaryCommandInput, options?: __HttpHandlerOptions): Promise<DeleteRolePermissionsBoundaryCommandOutput>;
658
694
  deleteRolePermissionsBoundary(args: DeleteRolePermissionsBoundaryCommandInput, cb: (err: any, data?: DeleteRolePermissionsBoundaryCommandOutput) => void): void;
659
695
  deleteRolePermissionsBoundary(args: DeleteRolePermissionsBoundaryCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteRolePermissionsBoundaryCommandOutput) => void): void;
660
696
  /**
697
+ * @public
661
698
  * <p>Deletes the specified inline policy that is embedded in the specified IAM
662
699
  * role.</p>
663
700
  * <p>A role can also have managed policies attached to it. To detach a managed policy from
@@ -669,6 +706,7 @@ export declare class IAM extends IAMClient {
669
706
  deleteRolePolicy(args: DeleteRolePolicyCommandInput, cb: (err: any, data?: DeleteRolePolicyCommandOutput) => void): void;
670
707
  deleteRolePolicy(args: DeleteRolePolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteRolePolicyCommandOutput) => void): void;
671
708
  /**
709
+ * @public
672
710
  * <p>Deletes a SAML provider resource in IAM.</p>
673
711
  * <p>Deleting the provider resource from IAM does not update any roles that reference the
674
712
  * SAML provider resource's ARN as a principal in their trust policies. Any attempt to
@@ -681,6 +719,7 @@ export declare class IAM extends IAMClient {
681
719
  deleteSAMLProvider(args: DeleteSAMLProviderCommandInput, cb: (err: any, data?: DeleteSAMLProviderCommandOutput) => void): void;
682
720
  deleteSAMLProvider(args: DeleteSAMLProviderCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteSAMLProviderCommandOutput) => void): void;
683
721
  /**
722
+ * @public
684
723
  * <p>Deletes the specified server certificate.</p>
685
724
  * <p>For more information about working with server certificates, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html">Working
686
725
  * with server certificates</a> in the <i>IAM User Guide</i>. This
@@ -701,6 +740,7 @@ export declare class IAM extends IAMClient {
701
740
  deleteServerCertificate(args: DeleteServerCertificateCommandInput, cb: (err: any, data?: DeleteServerCertificateCommandOutput) => void): void;
702
741
  deleteServerCertificate(args: DeleteServerCertificateCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteServerCertificateCommandOutput) => void): void;
703
742
  /**
743
+ * @public
704
744
  * <p>Submits a service-linked role deletion request and returns a
705
745
  * <code>DeletionTaskId</code>, which you can use to check the status of the deletion.
706
746
  * Before you call this operation, confirm that the role has no active sessions and that
@@ -723,12 +763,14 @@ export declare class IAM extends IAMClient {
723
763
  deleteServiceLinkedRole(args: DeleteServiceLinkedRoleCommandInput, cb: (err: any, data?: DeleteServiceLinkedRoleCommandOutput) => void): void;
724
764
  deleteServiceLinkedRole(args: DeleteServiceLinkedRoleCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteServiceLinkedRoleCommandOutput) => void): void;
725
765
  /**
766
+ * @public
726
767
  * <p>Deletes the specified service-specific credential.</p>
727
768
  */
728
769
  deleteServiceSpecificCredential(args: DeleteServiceSpecificCredentialCommandInput, options?: __HttpHandlerOptions): Promise<DeleteServiceSpecificCredentialCommandOutput>;
729
770
  deleteServiceSpecificCredential(args: DeleteServiceSpecificCredentialCommandInput, cb: (err: any, data?: DeleteServiceSpecificCredentialCommandOutput) => void): void;
730
771
  deleteServiceSpecificCredential(args: DeleteServiceSpecificCredentialCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteServiceSpecificCredentialCommandOutput) => void): void;
731
772
  /**
773
+ * @public
732
774
  * <p>Deletes a signing certificate associated with the specified IAM user.</p>
733
775
  * <p>If you do not specify a user name, IAM determines the user name implicitly based on
734
776
  * the Amazon Web Services access key ID signing the request. This operation works for access keys under
@@ -739,6 +781,7 @@ export declare class IAM extends IAMClient {
739
781
  deleteSigningCertificate(args: DeleteSigningCertificateCommandInput, cb: (err: any, data?: DeleteSigningCertificateCommandOutput) => void): void;
740
782
  deleteSigningCertificate(args: DeleteSigningCertificateCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteSigningCertificateCommandOutput) => void): void;
741
783
  /**
784
+ * @public
742
785
  * <p>Deletes the specified SSH public key.</p>
743
786
  * <p>The SSH public key deleted by this operation is used only for authenticating the
744
787
  * associated IAM user to an CodeCommit repository. For more information about using SSH keys
@@ -749,6 +792,7 @@ export declare class IAM extends IAMClient {
749
792
  deleteSSHPublicKey(args: DeleteSSHPublicKeyCommandInput, cb: (err: any, data?: DeleteSSHPublicKeyCommandOutput) => void): void;
750
793
  deleteSSHPublicKey(args: DeleteSSHPublicKeyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteSSHPublicKeyCommandOutput) => void): void;
751
794
  /**
795
+ * @public
752
796
  * <p>Deletes the specified IAM user. Unlike the Amazon Web Services Management Console, when you delete a user
753
797
  * programmatically, you must delete the items attached to the user manually, or the
754
798
  * deletion fails. For more information, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users_manage.html#id_users_deleting_cli">Deleting an IAM
@@ -787,6 +831,7 @@ export declare class IAM extends IAMClient {
787
831
  deleteUser(args: DeleteUserCommandInput, cb: (err: any, data?: DeleteUserCommandOutput) => void): void;
788
832
  deleteUser(args: DeleteUserCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteUserCommandOutput) => void): void;
789
833
  /**
834
+ * @public
790
835
  * <p>Deletes the permissions boundary for the specified IAM user.</p>
791
836
  * <important>
792
837
  * <p>Deleting the permissions boundary for a user might increase its permissions by
@@ -798,6 +843,7 @@ export declare class IAM extends IAMClient {
798
843
  deleteUserPermissionsBoundary(args: DeleteUserPermissionsBoundaryCommandInput, cb: (err: any, data?: DeleteUserPermissionsBoundaryCommandOutput) => void): void;
799
844
  deleteUserPermissionsBoundary(args: DeleteUserPermissionsBoundaryCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteUserPermissionsBoundaryCommandOutput) => void): void;
800
845
  /**
846
+ * @public
801
847
  * <p>Deletes the specified inline policy that is embedded in the specified IAM
802
848
  * user.</p>
803
849
  * <p>A user can also have managed policies attached to it. To detach a managed policy from
@@ -809,6 +855,7 @@ export declare class IAM extends IAMClient {
809
855
  deleteUserPolicy(args: DeleteUserPolicyCommandInput, cb: (err: any, data?: DeleteUserPolicyCommandOutput) => void): void;
810
856
  deleteUserPolicy(args: DeleteUserPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteUserPolicyCommandOutput) => void): void;
811
857
  /**
858
+ * @public
812
859
  * <p>Deletes a virtual MFA device.</p>
813
860
  * <note>
814
861
  * <p> You must deactivate a user's virtual MFA device before you can delete it. For
@@ -819,6 +866,7 @@ export declare class IAM extends IAMClient {
819
866
  deleteVirtualMFADevice(args: DeleteVirtualMFADeviceCommandInput, cb: (err: any, data?: DeleteVirtualMFADeviceCommandOutput) => void): void;
820
867
  deleteVirtualMFADevice(args: DeleteVirtualMFADeviceCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteVirtualMFADeviceCommandOutput) => void): void;
821
868
  /**
869
+ * @public
822
870
  * <p>Removes the specified managed policy from the specified IAM group.</p>
823
871
  * <p>A group can also have inline policies embedded with it. To delete an inline policy,
824
872
  * use <a>DeleteGroupPolicy</a>. For information about policies, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html">Managed
@@ -829,6 +877,7 @@ export declare class IAM extends IAMClient {
829
877
  detachGroupPolicy(args: DetachGroupPolicyCommandInput, cb: (err: any, data?: DetachGroupPolicyCommandOutput) => void): void;
830
878
  detachGroupPolicy(args: DetachGroupPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DetachGroupPolicyCommandOutput) => void): void;
831
879
  /**
880
+ * @public
832
881
  * <p>Removes the specified managed policy from the specified role.</p>
833
882
  * <p>A role can also have inline policies embedded with it. To delete an inline policy, use
834
883
  * <a>DeleteRolePolicy</a>. For information about policies, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html">Managed
@@ -839,6 +888,7 @@ export declare class IAM extends IAMClient {
839
888
  detachRolePolicy(args: DetachRolePolicyCommandInput, cb: (err: any, data?: DetachRolePolicyCommandOutput) => void): void;
840
889
  detachRolePolicy(args: DetachRolePolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DetachRolePolicyCommandOutput) => void): void;
841
890
  /**
891
+ * @public
842
892
  * <p>Removes the specified managed policy from the specified user.</p>
843
893
  * <p>A user can also have inline policies embedded with it. To delete an inline policy, use
844
894
  * <a>DeleteUserPolicy</a>. For information about policies, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html">Managed
@@ -849,6 +899,7 @@ export declare class IAM extends IAMClient {
849
899
  detachUserPolicy(args: DetachUserPolicyCommandInput, cb: (err: any, data?: DetachUserPolicyCommandOutput) => void): void;
850
900
  detachUserPolicy(args: DetachUserPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DetachUserPolicyCommandOutput) => void): void;
851
901
  /**
902
+ * @public
852
903
  * <p>Enables the specified MFA device and associates it with the specified IAM user. When
853
904
  * enabled, the MFA device is required for every subsequent login by the IAM user
854
905
  * associated with the device.</p>
@@ -857,6 +908,7 @@ export declare class IAM extends IAMClient {
857
908
  enableMFADevice(args: EnableMFADeviceCommandInput, cb: (err: any, data?: EnableMFADeviceCommandOutput) => void): void;
858
909
  enableMFADevice(args: EnableMFADeviceCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: EnableMFADeviceCommandOutput) => void): void;
859
910
  /**
911
+ * @public
860
912
  * <p> Generates a credential report for the Amazon Web Services account. For more information about the
861
913
  * credential report, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/credential-reports.html">Getting credential reports</a> in
862
914
  * the <i>IAM User Guide</i>.</p>
@@ -865,6 +917,7 @@ export declare class IAM extends IAMClient {
865
917
  generateCredentialReport(args: GenerateCredentialReportCommandInput, cb: (err: any, data?: GenerateCredentialReportCommandOutput) => void): void;
866
918
  generateCredentialReport(args: GenerateCredentialReportCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GenerateCredentialReportCommandOutput) => void): void;
867
919
  /**
920
+ * @public
868
921
  * <p>Generates a report for service last accessed data for Organizations. You can generate a
869
922
  * report for any entities (organization root, organizational unit, or account) or policies
870
923
  * in your organization.</p>
@@ -1001,6 +1054,7 @@ export declare class IAM extends IAMClient {
1001
1054
  generateOrganizationsAccessReport(args: GenerateOrganizationsAccessReportCommandInput, cb: (err: any, data?: GenerateOrganizationsAccessReportCommandOutput) => void): void;
1002
1055
  generateOrganizationsAccessReport(args: GenerateOrganizationsAccessReportCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GenerateOrganizationsAccessReportCommandOutput) => void): void;
1003
1056
  /**
1057
+ * @public
1004
1058
  * <p>Generates a report that includes details about when an IAM resource (user, group,
1005
1059
  * role, or policy) was last used in an attempt to access Amazon Web Services services. Recent activity
1006
1060
  * usually appears within four hours. IAM reports activity for at least the last 400
@@ -1060,6 +1114,7 @@ export declare class IAM extends IAMClient {
1060
1114
  generateServiceLastAccessedDetails(args: GenerateServiceLastAccessedDetailsCommandInput, cb: (err: any, data?: GenerateServiceLastAccessedDetailsCommandOutput) => void): void;
1061
1115
  generateServiceLastAccessedDetails(args: GenerateServiceLastAccessedDetailsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GenerateServiceLastAccessedDetailsCommandOutput) => void): void;
1062
1116
  /**
1117
+ * @public
1063
1118
  * <p>Retrieves information about when the specified access key was last used. The
1064
1119
  * information includes the date and time of last use, along with the Amazon Web Services service and
1065
1120
  * Region that were specified in the last request made with that key.</p>
@@ -1068,6 +1123,7 @@ export declare class IAM extends IAMClient {
1068
1123
  getAccessKeyLastUsed(args: GetAccessKeyLastUsedCommandInput, cb: (err: any, data?: GetAccessKeyLastUsedCommandOutput) => void): void;
1069
1124
  getAccessKeyLastUsed(args: GetAccessKeyLastUsedCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetAccessKeyLastUsedCommandOutput) => void): void;
1070
1125
  /**
1126
+ * @public
1071
1127
  * <p>Retrieves information about all IAM users, groups, roles, and policies in your Amazon Web Services
1072
1128
  * account, including their relationships to one another. Use this operation to obtain a
1073
1129
  * snapshot of the configuration of IAM permissions (users, groups, roles, and policies)
@@ -1087,6 +1143,7 @@ export declare class IAM extends IAMClient {
1087
1143
  getAccountAuthorizationDetails(args: GetAccountAuthorizationDetailsCommandInput, cb: (err: any, data?: GetAccountAuthorizationDetailsCommandOutput) => void): void;
1088
1144
  getAccountAuthorizationDetails(args: GetAccountAuthorizationDetailsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetAccountAuthorizationDetailsCommandOutput) => void): void;
1089
1145
  /**
1146
+ * @public
1090
1147
  * <p>Retrieves the password policy for the Amazon Web Services account. This tells you the complexity
1091
1148
  * requirements and mandatory rotation periods for the IAM user passwords in your account.
1092
1149
  * For more information about using a password policy, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingPasswordPolicies.html">Managing an IAM password
@@ -1096,6 +1153,7 @@ export declare class IAM extends IAMClient {
1096
1153
  getAccountPasswordPolicy(args: GetAccountPasswordPolicyCommandInput, cb: (err: any, data?: GetAccountPasswordPolicyCommandOutput) => void): void;
1097
1154
  getAccountPasswordPolicy(args: GetAccountPasswordPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetAccountPasswordPolicyCommandOutput) => void): void;
1098
1155
  /**
1156
+ * @public
1099
1157
  * <p>Retrieves information about IAM entity usage and IAM quotas in the Amazon Web Services
1100
1158
  * account.</p>
1101
1159
  * <p> For information about IAM quotas, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html">IAM and STS quotas</a> in the
@@ -1105,6 +1163,7 @@ export declare class IAM extends IAMClient {
1105
1163
  getAccountSummary(args: GetAccountSummaryCommandInput, cb: (err: any, data?: GetAccountSummaryCommandOutput) => void): void;
1106
1164
  getAccountSummary(args: GetAccountSummaryCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetAccountSummaryCommandOutput) => void): void;
1107
1165
  /**
1166
+ * @public
1108
1167
  * <p>Gets a list of all of the context keys referenced in the input policies. The policies
1109
1168
  * are supplied as a list of one or more strings. To get the context keys from policies
1110
1169
  * associated with an IAM user, group, or role, use <a>GetContextKeysForPrincipalPolicy</a>.</p>
@@ -1120,6 +1179,7 @@ export declare class IAM extends IAMClient {
1120
1179
  getContextKeysForCustomPolicy(args: GetContextKeysForCustomPolicyCommandInput, cb: (err: any, data?: GetContextKeysForCustomPolicyCommandOutput) => void): void;
1121
1180
  getContextKeysForCustomPolicy(args: GetContextKeysForCustomPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetContextKeysForCustomPolicyCommandOutput) => void): void;
1122
1181
  /**
1182
+ * @public
1123
1183
  * <p>Gets a list of all of the context keys referenced in all the IAM policies that are
1124
1184
  * attached to the specified IAM entity. The entity can be an IAM user, group, or role.
1125
1185
  * If you specify a user, then the request also includes all of the policies attached to
@@ -1139,6 +1199,7 @@ export declare class IAM extends IAMClient {
1139
1199
  getContextKeysForPrincipalPolicy(args: GetContextKeysForPrincipalPolicyCommandInput, cb: (err: any, data?: GetContextKeysForPrincipalPolicyCommandOutput) => void): void;
1140
1200
  getContextKeysForPrincipalPolicy(args: GetContextKeysForPrincipalPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetContextKeysForPrincipalPolicyCommandOutput) => void): void;
1141
1201
  /**
1202
+ * @public
1142
1203
  * <p> Retrieves a credential report for the Amazon Web Services account. For more information about the
1143
1204
  * credential report, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/credential-reports.html">Getting credential reports</a> in
1144
1205
  * the <i>IAM User Guide</i>.</p>
@@ -1147,6 +1208,7 @@ export declare class IAM extends IAMClient {
1147
1208
  getCredentialReport(args: GetCredentialReportCommandInput, cb: (err: any, data?: GetCredentialReportCommandOutput) => void): void;
1148
1209
  getCredentialReport(args: GetCredentialReportCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetCredentialReportCommandOutput) => void): void;
1149
1210
  /**
1211
+ * @public
1150
1212
  * <p> Returns a list of IAM users that are in the specified IAM group. You can paginate
1151
1213
  * the results using the <code>MaxItems</code> and <code>Marker</code> parameters.</p>
1152
1214
  */
@@ -1154,6 +1216,7 @@ export declare class IAM extends IAMClient {
1154
1216
  getGroup(args: GetGroupCommandInput, cb: (err: any, data?: GetGroupCommandOutput) => void): void;
1155
1217
  getGroup(args: GetGroupCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetGroupCommandOutput) => void): void;
1156
1218
  /**
1219
+ * @public
1157
1220
  * <p>Retrieves the specified inline policy document that is embedded in the specified IAM
1158
1221
  * group.</p>
1159
1222
  * <note>
@@ -1174,6 +1237,7 @@ export declare class IAM extends IAMClient {
1174
1237
  getGroupPolicy(args: GetGroupPolicyCommandInput, cb: (err: any, data?: GetGroupPolicyCommandOutput) => void): void;
1175
1238
  getGroupPolicy(args: GetGroupPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetGroupPolicyCommandOutput) => void): void;
1176
1239
  /**
1240
+ * @public
1177
1241
  * <p> Retrieves information about the specified instance profile, including the instance
1178
1242
  * profile's path, GUID, ARN, and role. For more information about instance profiles, see
1179
1243
  * <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/AboutInstanceProfiles.html">About
@@ -1183,6 +1247,7 @@ export declare class IAM extends IAMClient {
1183
1247
  getInstanceProfile(args: GetInstanceProfileCommandInput, cb: (err: any, data?: GetInstanceProfileCommandOutput) => void): void;
1184
1248
  getInstanceProfile(args: GetInstanceProfileCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetInstanceProfileCommandOutput) => void): void;
1185
1249
  /**
1250
+ * @public
1186
1251
  * <p>Retrieves the user name for the specified IAM user. A login profile is created when
1187
1252
  * you create a password for the user to access the Amazon Web Services Management Console. If the user does not exist
1188
1253
  * or does not have a password, the operation returns a 404 (<code>NoSuchEntity</code>)
@@ -1198,6 +1263,7 @@ export declare class IAM extends IAMClient {
1198
1263
  getLoginProfile(args: GetLoginProfileCommandInput, cb: (err: any, data?: GetLoginProfileCommandOutput) => void): void;
1199
1264
  getLoginProfile(args: GetLoginProfileCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetLoginProfileCommandOutput) => void): void;
1200
1265
  /**
1266
+ * @public
1201
1267
  * <p>Returns information about the specified OpenID Connect (OIDC) provider resource object
1202
1268
  * in IAM.</p>
1203
1269
  */
@@ -1205,6 +1271,7 @@ export declare class IAM extends IAMClient {
1205
1271
  getOpenIDConnectProvider(args: GetOpenIDConnectProviderCommandInput, cb: (err: any, data?: GetOpenIDConnectProviderCommandOutput) => void): void;
1206
1272
  getOpenIDConnectProvider(args: GetOpenIDConnectProviderCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetOpenIDConnectProviderCommandOutput) => void): void;
1207
1273
  /**
1274
+ * @public
1208
1275
  * <p>Retrieves the service last accessed data report for Organizations that was previously
1209
1276
  * generated using the <code>
1210
1277
  * <a>GenerateOrganizationsAccessReport</a>
@@ -1229,6 +1296,7 @@ export declare class IAM extends IAMClient {
1229
1296
  getOrganizationsAccessReport(args: GetOrganizationsAccessReportCommandInput, cb: (err: any, data?: GetOrganizationsAccessReportCommandOutput) => void): void;
1230
1297
  getOrganizationsAccessReport(args: GetOrganizationsAccessReportCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetOrganizationsAccessReportCommandOutput) => void): void;
1231
1298
  /**
1299
+ * @public
1232
1300
  * <p>Retrieves information about the specified managed policy, including the policy's
1233
1301
  * default version and the total number of IAM users, groups, and roles to which the
1234
1302
  * policy is attached. To retrieve the list of the specific users, groups, and roles that
@@ -1244,6 +1312,7 @@ export declare class IAM extends IAMClient {
1244
1312
  getPolicy(args: GetPolicyCommandInput, cb: (err: any, data?: GetPolicyCommandOutput) => void): void;
1245
1313
  getPolicy(args: GetPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetPolicyCommandOutput) => void): void;
1246
1314
  /**
1315
+ * @public
1247
1316
  * <p>Retrieves information about the specified version of the specified managed policy,
1248
1317
  * including the policy document.</p>
1249
1318
  * <note>
@@ -1265,6 +1334,7 @@ export declare class IAM extends IAMClient {
1265
1334
  getPolicyVersion(args: GetPolicyVersionCommandInput, cb: (err: any, data?: GetPolicyVersionCommandOutput) => void): void;
1266
1335
  getPolicyVersion(args: GetPolicyVersionCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetPolicyVersionCommandOutput) => void): void;
1267
1336
  /**
1337
+ * @public
1268
1338
  * <p>Retrieves information about the specified role, including the role's path, GUID, ARN,
1269
1339
  * and the role's trust policy that grants permission to assume the role. For more
1270
1340
  * information about roles, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/WorkingWithRoles.html">Working with roles</a>.</p>
@@ -1280,6 +1350,7 @@ export declare class IAM extends IAMClient {
1280
1350
  getRole(args: GetRoleCommandInput, cb: (err: any, data?: GetRoleCommandOutput) => void): void;
1281
1351
  getRole(args: GetRoleCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetRoleCommandOutput) => void): void;
1282
1352
  /**
1353
+ * @public
1283
1354
  * <p>Retrieves the specified inline policy document that is embedded with the specified
1284
1355
  * IAM role.</p>
1285
1356
  * <note>
@@ -1302,6 +1373,7 @@ export declare class IAM extends IAMClient {
1302
1373
  getRolePolicy(args: GetRolePolicyCommandInput, cb: (err: any, data?: GetRolePolicyCommandOutput) => void): void;
1303
1374
  getRolePolicy(args: GetRolePolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetRolePolicyCommandOutput) => void): void;
1304
1375
  /**
1376
+ * @public
1305
1377
  * <p>Returns the SAML provider metadocument that was uploaded when the IAM SAML provider
1306
1378
  * resource object was created or updated.</p>
1307
1379
  * <note>
@@ -1312,6 +1384,7 @@ export declare class IAM extends IAMClient {
1312
1384
  getSAMLProvider(args: GetSAMLProviderCommandInput, cb: (err: any, data?: GetSAMLProviderCommandOutput) => void): void;
1313
1385
  getSAMLProvider(args: GetSAMLProviderCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetSAMLProviderCommandOutput) => void): void;
1314
1386
  /**
1387
+ * @public
1315
1388
  * <p>Retrieves information about the specified server certificate stored in IAM.</p>
1316
1389
  * <p>For more information about working with server certificates, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html">Working
1317
1390
  * with server certificates</a> in the <i>IAM User Guide</i>. This
@@ -1322,6 +1395,7 @@ export declare class IAM extends IAMClient {
1322
1395
  getServerCertificate(args: GetServerCertificateCommandInput, cb: (err: any, data?: GetServerCertificateCommandOutput) => void): void;
1323
1396
  getServerCertificate(args: GetServerCertificateCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetServerCertificateCommandOutput) => void): void;
1324
1397
  /**
1398
+ * @public
1325
1399
  * <p>Retrieves a service last accessed report that was created using the
1326
1400
  * <code>GenerateServiceLastAccessedDetails</code> operation. You can use the
1327
1401
  * <code>JobId</code> parameter in <code>GetServiceLastAccessedDetails</code> to
@@ -1379,6 +1453,7 @@ export declare class IAM extends IAMClient {
1379
1453
  getServiceLastAccessedDetails(args: GetServiceLastAccessedDetailsCommandInput, cb: (err: any, data?: GetServiceLastAccessedDetailsCommandOutput) => void): void;
1380
1454
  getServiceLastAccessedDetails(args: GetServiceLastAccessedDetailsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetServiceLastAccessedDetailsCommandOutput) => void): void;
1381
1455
  /**
1456
+ * @public
1382
1457
  * <p>After you generate a group or policy report using the
1383
1458
  * <code>GenerateServiceLastAccessedDetails</code> operation, you can use the
1384
1459
  * <code>JobId</code> parameter in
@@ -1410,6 +1485,7 @@ export declare class IAM extends IAMClient {
1410
1485
  getServiceLastAccessedDetailsWithEntities(args: GetServiceLastAccessedDetailsWithEntitiesCommandInput, cb: (err: any, data?: GetServiceLastAccessedDetailsWithEntitiesCommandOutput) => void): void;
1411
1486
  getServiceLastAccessedDetailsWithEntities(args: GetServiceLastAccessedDetailsWithEntitiesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetServiceLastAccessedDetailsWithEntitiesCommandOutput) => void): void;
1412
1487
  /**
1488
+ * @public
1413
1489
  * <p>Retrieves the status of your service-linked role deletion. After you use <a>DeleteServiceLinkedRole</a> to submit a service-linked role for deletion,
1414
1490
  * you can use the <code>DeletionTaskId</code> parameter in
1415
1491
  * <code>GetServiceLinkedRoleDeletionStatus</code> to check the status of the deletion.
@@ -1420,6 +1496,7 @@ export declare class IAM extends IAMClient {
1420
1496
  getServiceLinkedRoleDeletionStatus(args: GetServiceLinkedRoleDeletionStatusCommandInput, cb: (err: any, data?: GetServiceLinkedRoleDeletionStatusCommandOutput) => void): void;
1421
1497
  getServiceLinkedRoleDeletionStatus(args: GetServiceLinkedRoleDeletionStatusCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetServiceLinkedRoleDeletionStatusCommandOutput) => void): void;
1422
1498
  /**
1499
+ * @public
1423
1500
  * <p>Retrieves the specified SSH public key, including metadata about the key.</p>
1424
1501
  * <p>The SSH public key retrieved by this operation is used only for authenticating the
1425
1502
  * associated IAM user to an CodeCommit repository. For more information about using SSH keys
@@ -1430,6 +1507,7 @@ export declare class IAM extends IAMClient {
1430
1507
  getSSHPublicKey(args: GetSSHPublicKeyCommandInput, cb: (err: any, data?: GetSSHPublicKeyCommandOutput) => void): void;
1431
1508
  getSSHPublicKey(args: GetSSHPublicKeyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetSSHPublicKeyCommandOutput) => void): void;
1432
1509
  /**
1510
+ * @public
1433
1511
  * <p>Retrieves information about the specified IAM user, including the user's creation
1434
1512
  * date, path, unique ID, and ARN.</p>
1435
1513
  * <p>If you do not specify a user name, IAM determines the user name implicitly based on
@@ -1439,6 +1517,7 @@ export declare class IAM extends IAMClient {
1439
1517
  getUser(args: GetUserCommandInput, cb: (err: any, data?: GetUserCommandOutput) => void): void;
1440
1518
  getUser(args: GetUserCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetUserCommandOutput) => void): void;
1441
1519
  /**
1520
+ * @public
1442
1521
  * <p>Retrieves the specified inline policy document that is embedded in the specified IAM
1443
1522
  * user.</p>
1444
1523
  * <note>
@@ -1459,6 +1538,7 @@ export declare class IAM extends IAMClient {
1459
1538
  getUserPolicy(args: GetUserPolicyCommandInput, cb: (err: any, data?: GetUserPolicyCommandOutput) => void): void;
1460
1539
  getUserPolicy(args: GetUserPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetUserPolicyCommandOutput) => void): void;
1461
1540
  /**
1541
+ * @public
1462
1542
  * <p>Returns information about the access key IDs associated with the specified IAM user.
1463
1543
  * If there is none, the operation returns an empty list.</p>
1464
1544
  * <p>Although each user is limited to a small number of keys, you can still paginate the
@@ -1478,6 +1558,7 @@ export declare class IAM extends IAMClient {
1478
1558
  listAccessKeys(args: ListAccessKeysCommandInput, cb: (err: any, data?: ListAccessKeysCommandOutput) => void): void;
1479
1559
  listAccessKeys(args: ListAccessKeysCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListAccessKeysCommandOutput) => void): void;
1480
1560
  /**
1561
+ * @public
1481
1562
  * <p>Lists the account alias associated with the Amazon Web Services account (Note: you can have only
1482
1563
  * one). For information about using an Amazon Web Services account alias, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/AccountAlias.html">Using an alias for your
1483
1564
  * Amazon Web Services account ID</a> in the <i>IAM User Guide</i>.</p>
@@ -1486,6 +1567,7 @@ export declare class IAM extends IAMClient {
1486
1567
  listAccountAliases(args: ListAccountAliasesCommandInput, cb: (err: any, data?: ListAccountAliasesCommandOutput) => void): void;
1487
1568
  listAccountAliases(args: ListAccountAliasesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListAccountAliasesCommandOutput) => void): void;
1488
1569
  /**
1570
+ * @public
1489
1571
  * <p>Lists all managed policies that are attached to the specified IAM group.</p>
1490
1572
  * <p>An IAM group can also have inline policies embedded with it. To list the inline
1491
1573
  * policies for a group, use <a>ListGroupPolicies</a>. For information about
@@ -1501,6 +1583,7 @@ export declare class IAM extends IAMClient {
1501
1583
  listAttachedGroupPolicies(args: ListAttachedGroupPoliciesCommandInput, cb: (err: any, data?: ListAttachedGroupPoliciesCommandOutput) => void): void;
1502
1584
  listAttachedGroupPolicies(args: ListAttachedGroupPoliciesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListAttachedGroupPoliciesCommandOutput) => void): void;
1503
1585
  /**
1586
+ * @public
1504
1587
  * <p>Lists all managed policies that are attached to the specified IAM role.</p>
1505
1588
  * <p>An IAM role can also have inline policies embedded with it. To list the inline
1506
1589
  * policies for a role, use <a>ListRolePolicies</a>. For information about
@@ -1516,6 +1599,7 @@ export declare class IAM extends IAMClient {
1516
1599
  listAttachedRolePolicies(args: ListAttachedRolePoliciesCommandInput, cb: (err: any, data?: ListAttachedRolePoliciesCommandOutput) => void): void;
1517
1600
  listAttachedRolePolicies(args: ListAttachedRolePoliciesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListAttachedRolePoliciesCommandOutput) => void): void;
1518
1601
  /**
1602
+ * @public
1519
1603
  * <p>Lists all managed policies that are attached to the specified IAM user.</p>
1520
1604
  * <p>An IAM user can also have inline policies embedded with it. To list the inline
1521
1605
  * policies for a user, use <a>ListUserPolicies</a>. For information about
@@ -1531,6 +1615,7 @@ export declare class IAM extends IAMClient {
1531
1615
  listAttachedUserPolicies(args: ListAttachedUserPoliciesCommandInput, cb: (err: any, data?: ListAttachedUserPoliciesCommandOutput) => void): void;
1532
1616
  listAttachedUserPolicies(args: ListAttachedUserPoliciesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListAttachedUserPoliciesCommandOutput) => void): void;
1533
1617
  /**
1618
+ * @public
1534
1619
  * <p>Lists all IAM users, groups, and roles that the specified managed policy is attached
1535
1620
  * to.</p>
1536
1621
  * <p>You can use the optional <code>EntityFilter</code> parameter to limit the results to a
@@ -1544,6 +1629,7 @@ export declare class IAM extends IAMClient {
1544
1629
  listEntitiesForPolicy(args: ListEntitiesForPolicyCommandInput, cb: (err: any, data?: ListEntitiesForPolicyCommandOutput) => void): void;
1545
1630
  listEntitiesForPolicy(args: ListEntitiesForPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListEntitiesForPolicyCommandOutput) => void): void;
1546
1631
  /**
1632
+ * @public
1547
1633
  * <p>Lists the names of the inline policies that are embedded in the specified IAM
1548
1634
  * group.</p>
1549
1635
  * <p>An IAM group can also have managed policies attached to it. To list the managed
@@ -1558,6 +1644,7 @@ export declare class IAM extends IAMClient {
1558
1644
  listGroupPolicies(args: ListGroupPoliciesCommandInput, cb: (err: any, data?: ListGroupPoliciesCommandOutput) => void): void;
1559
1645
  listGroupPolicies(args: ListGroupPoliciesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListGroupPoliciesCommandOutput) => void): void;
1560
1646
  /**
1647
+ * @public
1561
1648
  * <p>Lists the IAM groups that have the specified path prefix.</p>
1562
1649
  * <p> You can paginate the results using the <code>MaxItems</code> and <code>Marker</code>
1563
1650
  * parameters.</p>
@@ -1566,6 +1653,7 @@ export declare class IAM extends IAMClient {
1566
1653
  listGroups(args: ListGroupsCommandInput, cb: (err: any, data?: ListGroupsCommandOutput) => void): void;
1567
1654
  listGroups(args: ListGroupsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListGroupsCommandOutput) => void): void;
1568
1655
  /**
1656
+ * @public
1569
1657
  * <p>Lists the IAM groups that the specified IAM user belongs to.</p>
1570
1658
  * <p>You can paginate the results using the <code>MaxItems</code> and <code>Marker</code>
1571
1659
  * parameters.</p>
@@ -1574,6 +1662,7 @@ export declare class IAM extends IAMClient {
1574
1662
  listGroupsForUser(args: ListGroupsForUserCommandInput, cb: (err: any, data?: ListGroupsForUserCommandOutput) => void): void;
1575
1663
  listGroupsForUser(args: ListGroupsForUserCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListGroupsForUserCommandOutput) => void): void;
1576
1664
  /**
1665
+ * @public
1577
1666
  * <p>Lists the instance profiles that have the specified path prefix. If there are none,
1578
1667
  * the operation returns an empty list. For more information about instance profiles, see
1579
1668
  * <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/AboutInstanceProfiles.html">About
@@ -1589,6 +1678,7 @@ export declare class IAM extends IAMClient {
1589
1678
  listInstanceProfiles(args: ListInstanceProfilesCommandInput, cb: (err: any, data?: ListInstanceProfilesCommandOutput) => void): void;
1590
1679
  listInstanceProfiles(args: ListInstanceProfilesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListInstanceProfilesCommandOutput) => void): void;
1591
1680
  /**
1681
+ * @public
1592
1682
  * <p>Lists the instance profiles that have the specified associated IAM role. If there
1593
1683
  * are none, the operation returns an empty list. For more information about instance
1594
1684
  * profiles, go to <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/AboutInstanceProfiles.html">About instance
@@ -1600,6 +1690,7 @@ export declare class IAM extends IAMClient {
1600
1690
  listInstanceProfilesForRole(args: ListInstanceProfilesForRoleCommandInput, cb: (err: any, data?: ListInstanceProfilesForRoleCommandOutput) => void): void;
1601
1691
  listInstanceProfilesForRole(args: ListInstanceProfilesForRoleCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListInstanceProfilesForRoleCommandOutput) => void): void;
1602
1692
  /**
1693
+ * @public
1603
1694
  * <p>Lists the tags that are attached to the specified IAM instance profile. The returned list of tags is sorted by tag key.
1604
1695
  * For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
1605
1696
  * <i>IAM User Guide</i>.</p>
@@ -1608,6 +1699,7 @@ export declare class IAM extends IAMClient {
1608
1699
  listInstanceProfileTags(args: ListInstanceProfileTagsCommandInput, cb: (err: any, data?: ListInstanceProfileTagsCommandOutput) => void): void;
1609
1700
  listInstanceProfileTags(args: ListInstanceProfileTagsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListInstanceProfileTagsCommandOutput) => void): void;
1610
1701
  /**
1702
+ * @public
1611
1703
  * <p>Lists the MFA devices for an IAM user. If the request includes a IAM user name,
1612
1704
  * then this operation lists all the MFA devices associated with the specified user. If you
1613
1705
  * do not specify a user name, IAM determines the user name implicitly based on the Amazon Web Services
@@ -1619,6 +1711,7 @@ export declare class IAM extends IAMClient {
1619
1711
  listMFADevices(args: ListMFADevicesCommandInput, cb: (err: any, data?: ListMFADevicesCommandOutput) => void): void;
1620
1712
  listMFADevices(args: ListMFADevicesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListMFADevicesCommandOutput) => void): void;
1621
1713
  /**
1714
+ * @public
1622
1715
  * <p>Lists the tags that are attached to the specified IAM virtual multi-factor authentication (MFA) device. The returned list of tags is
1623
1716
  * sorted by tag key. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
1624
1717
  * <i>IAM User Guide</i>.</p>
@@ -1627,6 +1720,7 @@ export declare class IAM extends IAMClient {
1627
1720
  listMFADeviceTags(args: ListMFADeviceTagsCommandInput, cb: (err: any, data?: ListMFADeviceTagsCommandOutput) => void): void;
1628
1721
  listMFADeviceTags(args: ListMFADeviceTagsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListMFADeviceTagsCommandOutput) => void): void;
1629
1722
  /**
1723
+ * @public
1630
1724
  * <p>Lists information about the IAM OpenID Connect (OIDC) provider resource objects
1631
1725
  * defined in the Amazon Web Services account.</p>
1632
1726
  * <note>
@@ -1638,6 +1732,7 @@ export declare class IAM extends IAMClient {
1638
1732
  listOpenIDConnectProviders(args: ListOpenIDConnectProvidersCommandInput, cb: (err: any, data?: ListOpenIDConnectProvidersCommandOutput) => void): void;
1639
1733
  listOpenIDConnectProviders(args: ListOpenIDConnectProvidersCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListOpenIDConnectProvidersCommandOutput) => void): void;
1640
1734
  /**
1735
+ * @public
1641
1736
  * <p>Lists the tags that are attached to the specified OpenID Connect (OIDC)-compatible
1642
1737
  * identity provider. The returned list of tags is sorted by tag key. For more information, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_oidc.html">About web identity
1643
1738
  * federation</a>.</p>
@@ -1648,6 +1743,7 @@ export declare class IAM extends IAMClient {
1648
1743
  listOpenIDConnectProviderTags(args: ListOpenIDConnectProviderTagsCommandInput, cb: (err: any, data?: ListOpenIDConnectProviderTagsCommandOutput) => void): void;
1649
1744
  listOpenIDConnectProviderTags(args: ListOpenIDConnectProviderTagsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListOpenIDConnectProviderTagsCommandOutput) => void): void;
1650
1745
  /**
1746
+ * @public
1651
1747
  * <p>Lists all the managed policies that are available in your Amazon Web Services account, including
1652
1748
  * your own customer-defined managed policies and all Amazon Web Services managed policies.</p>
1653
1749
  * <p>You can filter the list of policies that is returned using the optional
@@ -1669,6 +1765,7 @@ export declare class IAM extends IAMClient {
1669
1765
  listPolicies(args: ListPoliciesCommandInput, cb: (err: any, data?: ListPoliciesCommandOutput) => void): void;
1670
1766
  listPolicies(args: ListPoliciesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListPoliciesCommandOutput) => void): void;
1671
1767
  /**
1768
+ * @public
1672
1769
  * <p>Retrieves a list of policies that the IAM identity (user, group, or role) can use to
1673
1770
  * access each specified service.</p>
1674
1771
  * <note>
@@ -1714,6 +1811,7 @@ export declare class IAM extends IAMClient {
1714
1811
  listPoliciesGrantingServiceAccess(args: ListPoliciesGrantingServiceAccessCommandInput, cb: (err: any, data?: ListPoliciesGrantingServiceAccessCommandOutput) => void): void;
1715
1812
  listPoliciesGrantingServiceAccess(args: ListPoliciesGrantingServiceAccessCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListPoliciesGrantingServiceAccessCommandOutput) => void): void;
1716
1813
  /**
1814
+ * @public
1717
1815
  * <p>Lists the tags that are attached to the specified IAM customer managed policy.
1718
1816
  * The returned list of tags is sorted by tag key. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
1719
1817
  * <i>IAM User Guide</i>.</p>
@@ -1722,6 +1820,7 @@ export declare class IAM extends IAMClient {
1722
1820
  listPolicyTags(args: ListPolicyTagsCommandInput, cb: (err: any, data?: ListPolicyTagsCommandOutput) => void): void;
1723
1821
  listPolicyTags(args: ListPolicyTagsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListPolicyTagsCommandOutput) => void): void;
1724
1822
  /**
1823
+ * @public
1725
1824
  * <p>Lists information about the versions of the specified managed policy, including the
1726
1825
  * version that is currently set as the policy's default version.</p>
1727
1826
  * <p>For more information about managed policies, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html">Managed policies and inline
@@ -1731,6 +1830,7 @@ export declare class IAM extends IAMClient {
1731
1830
  listPolicyVersions(args: ListPolicyVersionsCommandInput, cb: (err: any, data?: ListPolicyVersionsCommandOutput) => void): void;
1732
1831
  listPolicyVersions(args: ListPolicyVersionsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListPolicyVersionsCommandOutput) => void): void;
1733
1832
  /**
1833
+ * @public
1734
1834
  * <p>Lists the names of the inline policies that are embedded in the specified IAM
1735
1835
  * role.</p>
1736
1836
  * <p>An IAM role can also have managed policies attached to it. To list the managed
@@ -1745,6 +1845,7 @@ export declare class IAM extends IAMClient {
1745
1845
  listRolePolicies(args: ListRolePoliciesCommandInput, cb: (err: any, data?: ListRolePoliciesCommandOutput) => void): void;
1746
1846
  listRolePolicies(args: ListRolePoliciesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListRolePoliciesCommandOutput) => void): void;
1747
1847
  /**
1848
+ * @public
1748
1849
  * <p>Lists the IAM roles that have the specified path prefix. If there are none, the
1749
1850
  * operation returns an empty list. For more information about roles, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/WorkingWithRoles.html">Working with
1750
1851
  * roles</a>.</p>
@@ -1759,6 +1860,7 @@ export declare class IAM extends IAMClient {
1759
1860
  listRoles(args: ListRolesCommandInput, cb: (err: any, data?: ListRolesCommandOutput) => void): void;
1760
1861
  listRoles(args: ListRolesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListRolesCommandOutput) => void): void;
1761
1862
  /**
1863
+ * @public
1762
1864
  * <p>Lists the tags that are attached to the specified role. The returned list of tags is
1763
1865
  * sorted by tag key. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
1764
1866
  * <i>IAM User Guide</i>.</p>
@@ -1767,6 +1869,7 @@ export declare class IAM extends IAMClient {
1767
1869
  listRoleTags(args: ListRoleTagsCommandInput, cb: (err: any, data?: ListRoleTagsCommandOutput) => void): void;
1768
1870
  listRoleTags(args: ListRoleTagsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListRoleTagsCommandOutput) => void): void;
1769
1871
  /**
1872
+ * @public
1770
1873
  * <p>Lists the SAML provider resource objects defined in IAM in the account.
1771
1874
  * IAM resource-listing operations return a subset of the available
1772
1875
  * attributes for the resource. For example, this operation does not return tags, even though they are an attribute of the returned object. To view all of the information for a SAML provider, see <a>GetSAMLProvider</a>.</p>
@@ -1778,6 +1881,7 @@ export declare class IAM extends IAMClient {
1778
1881
  listSAMLProviders(args: ListSAMLProvidersCommandInput, cb: (err: any, data?: ListSAMLProvidersCommandOutput) => void): void;
1779
1882
  listSAMLProviders(args: ListSAMLProvidersCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListSAMLProvidersCommandOutput) => void): void;
1780
1883
  /**
1884
+ * @public
1781
1885
  * <p>Lists the tags that are attached to the specified Security Assertion Markup Language
1782
1886
  * (SAML) identity provider. The returned list of tags is sorted by tag key. For more information, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html">About SAML 2.0-based
1783
1887
  * federation</a>.</p>
@@ -1788,6 +1892,7 @@ export declare class IAM extends IAMClient {
1788
1892
  listSAMLProviderTags(args: ListSAMLProviderTagsCommandInput, cb: (err: any, data?: ListSAMLProviderTagsCommandOutput) => void): void;
1789
1893
  listSAMLProviderTags(args: ListSAMLProviderTagsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListSAMLProviderTagsCommandOutput) => void): void;
1790
1894
  /**
1895
+ * @public
1791
1896
  * <p>Lists the server certificates stored in IAM that have the specified path prefix. If
1792
1897
  * none exist, the operation returns an empty list.</p>
1793
1898
  * <p> You can paginate the results using the <code>MaxItems</code> and <code>Marker</code>
@@ -1805,6 +1910,7 @@ export declare class IAM extends IAMClient {
1805
1910
  listServerCertificates(args: ListServerCertificatesCommandInput, cb: (err: any, data?: ListServerCertificatesCommandOutput) => void): void;
1806
1911
  listServerCertificates(args: ListServerCertificatesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListServerCertificatesCommandOutput) => void): void;
1807
1912
  /**
1913
+ * @public
1808
1914
  * <p>Lists the tags that are attached to the specified IAM server certificate. The
1809
1915
  * returned list of tags is sorted by tag key. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
1810
1916
  * <i>IAM User Guide</i>.</p>
@@ -1820,6 +1926,7 @@ export declare class IAM extends IAMClient {
1820
1926
  listServerCertificateTags(args: ListServerCertificateTagsCommandInput, cb: (err: any, data?: ListServerCertificateTagsCommandOutput) => void): void;
1821
1927
  listServerCertificateTags(args: ListServerCertificateTagsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListServerCertificateTagsCommandOutput) => void): void;
1822
1928
  /**
1929
+ * @public
1823
1930
  * <p>Returns information about the service-specific credentials associated with the
1824
1931
  * specified IAM user. If none exists, the operation returns an empty list. The
1825
1932
  * service-specific credentials returned by this operation are used only for authenticating
@@ -1831,6 +1938,7 @@ export declare class IAM extends IAMClient {
1831
1938
  listServiceSpecificCredentials(args: ListServiceSpecificCredentialsCommandInput, cb: (err: any, data?: ListServiceSpecificCredentialsCommandOutput) => void): void;
1832
1939
  listServiceSpecificCredentials(args: ListServiceSpecificCredentialsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListServiceSpecificCredentialsCommandOutput) => void): void;
1833
1940
  /**
1941
+ * @public
1834
1942
  * <p>Returns information about the signing certificates associated with the specified IAM
1835
1943
  * user. If none exists, the operation returns an empty list.</p>
1836
1944
  * <p>Although each user is limited to a small number of signing certificates, you can still
@@ -1846,6 +1954,7 @@ export declare class IAM extends IAMClient {
1846
1954
  listSigningCertificates(args: ListSigningCertificatesCommandInput, cb: (err: any, data?: ListSigningCertificatesCommandOutput) => void): void;
1847
1955
  listSigningCertificates(args: ListSigningCertificatesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListSigningCertificatesCommandOutput) => void): void;
1848
1956
  /**
1957
+ * @public
1849
1958
  * <p>Returns information about the SSH public keys associated with the specified IAM
1850
1959
  * user. If none exists, the operation returns an empty list.</p>
1851
1960
  * <p>The SSH public keys returned by this operation are used only for authenticating the
@@ -1859,6 +1968,7 @@ export declare class IAM extends IAMClient {
1859
1968
  listSSHPublicKeys(args: ListSSHPublicKeysCommandInput, cb: (err: any, data?: ListSSHPublicKeysCommandOutput) => void): void;
1860
1969
  listSSHPublicKeys(args: ListSSHPublicKeysCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListSSHPublicKeysCommandOutput) => void): void;
1861
1970
  /**
1971
+ * @public
1862
1972
  * <p>Lists the names of the inline policies embedded in the specified IAM user.</p>
1863
1973
  * <p>An IAM user can also have managed policies attached to it. To list the managed
1864
1974
  * policies that are attached to a user, use <a>ListAttachedUserPolicies</a>.
@@ -1872,6 +1982,7 @@ export declare class IAM extends IAMClient {
1872
1982
  listUserPolicies(args: ListUserPoliciesCommandInput, cb: (err: any, data?: ListUserPoliciesCommandOutput) => void): void;
1873
1983
  listUserPolicies(args: ListUserPoliciesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListUserPoliciesCommandOutput) => void): void;
1874
1984
  /**
1985
+ * @public
1875
1986
  * <p>Lists the IAM users that have the specified path prefix. If no path prefix is
1876
1987
  * specified, the operation returns all users in the Amazon Web Services account. If there are none, the
1877
1988
  * operation returns an empty list.</p>
@@ -1886,6 +1997,7 @@ export declare class IAM extends IAMClient {
1886
1997
  listUsers(args: ListUsersCommandInput, cb: (err: any, data?: ListUsersCommandOutput) => void): void;
1887
1998
  listUsers(args: ListUsersCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListUsersCommandOutput) => void): void;
1888
1999
  /**
2000
+ * @public
1889
2001
  * <p>Lists the tags that are attached to the specified IAM user. The returned list of tags is sorted by tag key. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
1890
2002
  * <i>IAM User Guide</i>.</p>
1891
2003
  */
@@ -1893,6 +2005,7 @@ export declare class IAM extends IAMClient {
1893
2005
  listUserTags(args: ListUserTagsCommandInput, cb: (err: any, data?: ListUserTagsCommandOutput) => void): void;
1894
2006
  listUserTags(args: ListUserTagsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListUserTagsCommandOutput) => void): void;
1895
2007
  /**
2008
+ * @public
1896
2009
  * <p>Lists the virtual MFA devices defined in the Amazon Web Services account by assignment status. If
1897
2010
  * you do not specify an assignment status, the operation returns a list of all virtual MFA
1898
2011
  * devices. Assignment status can be <code>Assigned</code>, <code>Unassigned</code>, or
@@ -1908,6 +2021,7 @@ export declare class IAM extends IAMClient {
1908
2021
  listVirtualMFADevices(args: ListVirtualMFADevicesCommandInput, cb: (err: any, data?: ListVirtualMFADevicesCommandOutput) => void): void;
1909
2022
  listVirtualMFADevices(args: ListVirtualMFADevicesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListVirtualMFADevicesCommandOutput) => void): void;
1910
2023
  /**
2024
+ * @public
1911
2025
  * <p>Adds or updates an inline policy document that is embedded in the specified IAM
1912
2026
  * group.</p>
1913
2027
  * <p>A user can also have managed policies attached to it. To attach a managed policy to a
@@ -1928,12 +2042,13 @@ export declare class IAM extends IAMClient {
1928
2042
  putGroupPolicy(args: PutGroupPolicyCommandInput, cb: (err: any, data?: PutGroupPolicyCommandOutput) => void): void;
1929
2043
  putGroupPolicy(args: PutGroupPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: PutGroupPolicyCommandOutput) => void): void;
1930
2044
  /**
2045
+ * @public
1931
2046
  * <p>Adds or updates the policy that is specified as the IAM role's permissions boundary.
1932
2047
  * You can use an Amazon Web Services managed policy or a customer managed policy to set the boundary for
1933
2048
  * a role. Use the boundary to control the maximum permissions that the role can have.
1934
2049
  * Setting a permissions boundary is an advanced feature that can affect the permissions
1935
2050
  * for the role.</p>
1936
- * <p>You cannot set the boundary for a service-linked role. </p>
2051
+ * <p>You cannot set the boundary for a service-linked role.</p>
1937
2052
  * <important>
1938
2053
  * <p>Policies used as permissions boundaries do not provide permissions. You must also
1939
2054
  * attach a permissions policy to the role. To learn how the effective permissions for
@@ -1945,6 +2060,7 @@ export declare class IAM extends IAMClient {
1945
2060
  putRolePermissionsBoundary(args: PutRolePermissionsBoundaryCommandInput, cb: (err: any, data?: PutRolePermissionsBoundaryCommandOutput) => void): void;
1946
2061
  putRolePermissionsBoundary(args: PutRolePermissionsBoundaryCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: PutRolePermissionsBoundaryCommandOutput) => void): void;
1947
2062
  /**
2063
+ * @public
1948
2064
  * <p>Adds or updates an inline policy document that is embedded in the specified IAM
1949
2065
  * role.</p>
1950
2066
  * <p>When you embed an inline policy in a role, the inline policy is used as part of the
@@ -1970,6 +2086,7 @@ export declare class IAM extends IAMClient {
1970
2086
  putRolePolicy(args: PutRolePolicyCommandInput, cb: (err: any, data?: PutRolePolicyCommandOutput) => void): void;
1971
2087
  putRolePolicy(args: PutRolePolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: PutRolePolicyCommandOutput) => void): void;
1972
2088
  /**
2089
+ * @public
1973
2090
  * <p>Adds or updates the policy that is specified as the IAM user's permissions
1974
2091
  * boundary. You can use an Amazon Web Services managed policy or a customer managed policy to set the
1975
2092
  * boundary for a user. Use the boundary to control the maximum permissions that the user
@@ -1986,6 +2103,7 @@ export declare class IAM extends IAMClient {
1986
2103
  putUserPermissionsBoundary(args: PutUserPermissionsBoundaryCommandInput, cb: (err: any, data?: PutUserPermissionsBoundaryCommandOutput) => void): void;
1987
2104
  putUserPermissionsBoundary(args: PutUserPermissionsBoundaryCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: PutUserPermissionsBoundaryCommandOutput) => void): void;
1988
2105
  /**
2106
+ * @public
1989
2107
  * <p>Adds or updates an inline policy document that is embedded in the specified IAM
1990
2108
  * user.</p>
1991
2109
  * <p>An IAM user can also have a managed policy attached to it. To attach a managed
@@ -2006,6 +2124,7 @@ export declare class IAM extends IAMClient {
2006
2124
  putUserPolicy(args: PutUserPolicyCommandInput, cb: (err: any, data?: PutUserPolicyCommandOutput) => void): void;
2007
2125
  putUserPolicy(args: PutUserPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: PutUserPolicyCommandOutput) => void): void;
2008
2126
  /**
2127
+ * @public
2009
2128
  * <p>Removes the specified client ID (also known as audience) from the list of client IDs
2010
2129
  * registered for the specified IAM OpenID Connect (OIDC) provider resource
2011
2130
  * object.</p>
@@ -2016,6 +2135,7 @@ export declare class IAM extends IAMClient {
2016
2135
  removeClientIDFromOpenIDConnectProvider(args: RemoveClientIDFromOpenIDConnectProviderCommandInput, cb: (err: any, data?: RemoveClientIDFromOpenIDConnectProviderCommandOutput) => void): void;
2017
2136
  removeClientIDFromOpenIDConnectProvider(args: RemoveClientIDFromOpenIDConnectProviderCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: RemoveClientIDFromOpenIDConnectProviderCommandOutput) => void): void;
2018
2137
  /**
2138
+ * @public
2019
2139
  * <p>Removes the specified IAM role from the specified EC2 instance profile.</p>
2020
2140
  * <important>
2021
2141
  * <p>Make sure that you do not have any Amazon EC2 instances running with the role you
@@ -2031,12 +2151,14 @@ export declare class IAM extends IAMClient {
2031
2151
  removeRoleFromInstanceProfile(args: RemoveRoleFromInstanceProfileCommandInput, cb: (err: any, data?: RemoveRoleFromInstanceProfileCommandOutput) => void): void;
2032
2152
  removeRoleFromInstanceProfile(args: RemoveRoleFromInstanceProfileCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: RemoveRoleFromInstanceProfileCommandOutput) => void): void;
2033
2153
  /**
2154
+ * @public
2034
2155
  * <p>Removes the specified user from the specified group.</p>
2035
2156
  */
2036
2157
  removeUserFromGroup(args: RemoveUserFromGroupCommandInput, options?: __HttpHandlerOptions): Promise<RemoveUserFromGroupCommandOutput>;
2037
2158
  removeUserFromGroup(args: RemoveUserFromGroupCommandInput, cb: (err: any, data?: RemoveUserFromGroupCommandOutput) => void): void;
2038
2159
  removeUserFromGroup(args: RemoveUserFromGroupCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: RemoveUserFromGroupCommandOutput) => void): void;
2039
2160
  /**
2161
+ * @public
2040
2162
  * <p>Resets the password for a service-specific credential. The new password is Amazon Web Services
2041
2163
  * generated and cryptographically strong. It cannot be configured by the user. Resetting
2042
2164
  * the password immediately invalidates the previous password associated with this
@@ -2046,6 +2168,7 @@ export declare class IAM extends IAMClient {
2046
2168
  resetServiceSpecificCredential(args: ResetServiceSpecificCredentialCommandInput, cb: (err: any, data?: ResetServiceSpecificCredentialCommandOutput) => void): void;
2047
2169
  resetServiceSpecificCredential(args: ResetServiceSpecificCredentialCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ResetServiceSpecificCredentialCommandOutput) => void): void;
2048
2170
  /**
2171
+ * @public
2049
2172
  * <p>Synchronizes the specified MFA device with its IAM resource object on the Amazon Web Services
2050
2173
  * servers.</p>
2051
2174
  * <p>For more information about creating and working with virtual MFA devices, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_VirtualMFA.html">Using a virtual MFA
@@ -2055,6 +2178,7 @@ export declare class IAM extends IAMClient {
2055
2178
  resyncMFADevice(args: ResyncMFADeviceCommandInput, cb: (err: any, data?: ResyncMFADeviceCommandOutput) => void): void;
2056
2179
  resyncMFADevice(args: ResyncMFADeviceCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ResyncMFADeviceCommandOutput) => void): void;
2057
2180
  /**
2181
+ * @public
2058
2182
  * <p>Sets the specified version of the specified policy as the policy's default (operative)
2059
2183
  * version.</p>
2060
2184
  * <p>This operation affects all users, groups, and roles that the policy is attached to. To
@@ -2066,6 +2190,7 @@ export declare class IAM extends IAMClient {
2066
2190
  setDefaultPolicyVersion(args: SetDefaultPolicyVersionCommandInput, cb: (err: any, data?: SetDefaultPolicyVersionCommandOutput) => void): void;
2067
2191
  setDefaultPolicyVersion(args: SetDefaultPolicyVersionCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: SetDefaultPolicyVersionCommandOutput) => void): void;
2068
2192
  /**
2193
+ * @public
2069
2194
  * <p>Sets the specified version of the global endpoint token as the token version used for
2070
2195
  * the Amazon Web Services account.</p>
2071
2196
  * <p>By default, Security Token Service (STS) is available as a global service, and all STS requests
@@ -2090,6 +2215,7 @@ export declare class IAM extends IAMClient {
2090
2215
  setSecurityTokenServicePreferences(args: SetSecurityTokenServicePreferencesCommandInput, cb: (err: any, data?: SetSecurityTokenServicePreferencesCommandOutput) => void): void;
2091
2216
  setSecurityTokenServicePreferences(args: SetSecurityTokenServicePreferencesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: SetSecurityTokenServicePreferencesCommandOutput) => void): void;
2092
2217
  /**
2218
+ * @public
2093
2219
  * <p>Simulate how a set of IAM policies and optionally a resource-based policy works with
2094
2220
  * a list of API operations and Amazon Web Services resources to determine the policies' effective
2095
2221
  * permissions. The policies are provided as strings.</p>
@@ -2119,6 +2245,7 @@ export declare class IAM extends IAMClient {
2119
2245
  simulateCustomPolicy(args: SimulateCustomPolicyCommandInput, cb: (err: any, data?: SimulateCustomPolicyCommandOutput) => void): void;
2120
2246
  simulateCustomPolicy(args: SimulateCustomPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: SimulateCustomPolicyCommandOutput) => void): void;
2121
2247
  /**
2248
+ * @public
2122
2249
  * <p>Simulate how a set of IAM policies attached to an IAM entity works with a list of
2123
2250
  * API operations and Amazon Web Services resources to determine the policies' effective permissions. The
2124
2251
  * entity can be an IAM user, group, or role. If you specify a user, then the simulation
@@ -2157,6 +2284,7 @@ export declare class IAM extends IAMClient {
2157
2284
  simulatePrincipalPolicy(args: SimulatePrincipalPolicyCommandInput, cb: (err: any, data?: SimulatePrincipalPolicyCommandOutput) => void): void;
2158
2285
  simulatePrincipalPolicy(args: SimulatePrincipalPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: SimulatePrincipalPolicyCommandOutput) => void): void;
2159
2286
  /**
2287
+ * @public
2160
2288
  * <p>Adds one or more tags to an IAM instance profile. If a tag with the same key name
2161
2289
  * already exists, then that tag is overwritten with the new value.</p>
2162
2290
  * <p>Each tag consists of a key name and an associated value. By assigning tags to your resources, you can do the
@@ -2198,6 +2326,7 @@ export declare class IAM extends IAMClient {
2198
2326
  tagInstanceProfile(args: TagInstanceProfileCommandInput, cb: (err: any, data?: TagInstanceProfileCommandOutput) => void): void;
2199
2327
  tagInstanceProfile(args: TagInstanceProfileCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: TagInstanceProfileCommandOutput) => void): void;
2200
2328
  /**
2329
+ * @public
2201
2330
  * <p>Adds one or more tags to an IAM virtual multi-factor authentication (MFA) device. If
2202
2331
  * a tag with the same key name already exists, then that tag is overwritten with the new
2203
2332
  * value.</p>
@@ -2240,6 +2369,7 @@ export declare class IAM extends IAMClient {
2240
2369
  tagMFADevice(args: TagMFADeviceCommandInput, cb: (err: any, data?: TagMFADeviceCommandOutput) => void): void;
2241
2370
  tagMFADevice(args: TagMFADeviceCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: TagMFADeviceCommandOutput) => void): void;
2242
2371
  /**
2372
+ * @public
2243
2373
  * <p>Adds one or more tags to an OpenID Connect (OIDC)-compatible identity provider. For
2244
2374
  * more information about these providers, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_oidc.html">About web identity federation</a>. If
2245
2375
  * a tag with the same key name already exists, then that tag is overwritten with the new
@@ -2283,6 +2413,7 @@ export declare class IAM extends IAMClient {
2283
2413
  tagOpenIDConnectProvider(args: TagOpenIDConnectProviderCommandInput, cb: (err: any, data?: TagOpenIDConnectProviderCommandOutput) => void): void;
2284
2414
  tagOpenIDConnectProvider(args: TagOpenIDConnectProviderCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: TagOpenIDConnectProviderCommandOutput) => void): void;
2285
2415
  /**
2416
+ * @public
2286
2417
  * <p>Adds one or more tags to an IAM customer managed policy. If a tag with the same key
2287
2418
  * name already exists, then that tag is overwritten with the new value.</p>
2288
2419
  * <p>A tag consists of a key name and an associated value. By assigning tags to your
@@ -2324,6 +2455,7 @@ export declare class IAM extends IAMClient {
2324
2455
  tagPolicy(args: TagPolicyCommandInput, cb: (err: any, data?: TagPolicyCommandOutput) => void): void;
2325
2456
  tagPolicy(args: TagPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: TagPolicyCommandOutput) => void): void;
2326
2457
  /**
2458
+ * @public
2327
2459
  * <p>Adds one or more tags to an IAM role. The role can be a regular role or a
2328
2460
  * service-linked role. If a tag with the same key name already exists, then that tag is
2329
2461
  * overwritten with the new value.</p>
@@ -2374,6 +2506,7 @@ export declare class IAM extends IAMClient {
2374
2506
  tagRole(args: TagRoleCommandInput, cb: (err: any, data?: TagRoleCommandOutput) => void): void;
2375
2507
  tagRole(args: TagRoleCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: TagRoleCommandOutput) => void): void;
2376
2508
  /**
2509
+ * @public
2377
2510
  * <p>Adds one or more tags to a Security Assertion Markup Language (SAML) identity provider.
2378
2511
  * For more information about these providers, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html">About SAML 2.0-based federation </a>.
2379
2512
  * If a tag with the same key name already exists, then that tag is overwritten with the new
@@ -2417,6 +2550,7 @@ export declare class IAM extends IAMClient {
2417
2550
  tagSAMLProvider(args: TagSAMLProviderCommandInput, cb: (err: any, data?: TagSAMLProviderCommandOutput) => void): void;
2418
2551
  tagSAMLProvider(args: TagSAMLProviderCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: TagSAMLProviderCommandOutput) => void): void;
2419
2552
  /**
2553
+ * @public
2420
2554
  * <p>Adds one or more tags to an IAM server certificate. If a tag with the same key name
2421
2555
  * already exists, then that tag is overwritten with the new value.</p>
2422
2556
  * <note>
@@ -2470,6 +2604,7 @@ export declare class IAM extends IAMClient {
2470
2604
  tagServerCertificate(args: TagServerCertificateCommandInput, cb: (err: any, data?: TagServerCertificateCommandOutput) => void): void;
2471
2605
  tagServerCertificate(args: TagServerCertificateCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: TagServerCertificateCommandOutput) => void): void;
2472
2606
  /**
2607
+ * @public
2473
2608
  * <p>Adds one or more tags to an IAM user. If a tag with the same key name already exists,
2474
2609
  * then that tag is overwritten with the new value.</p>
2475
2610
  * <p>A tag consists of a key name and an associated value. By assigning tags to your
@@ -2519,6 +2654,7 @@ export declare class IAM extends IAMClient {
2519
2654
  tagUser(args: TagUserCommandInput, cb: (err: any, data?: TagUserCommandOutput) => void): void;
2520
2655
  tagUser(args: TagUserCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: TagUserCommandOutput) => void): void;
2521
2656
  /**
2657
+ * @public
2522
2658
  * <p>Removes the specified tags from the IAM instance profile. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
2523
2659
  * <i>IAM User Guide</i>.</p>
2524
2660
  */
@@ -2526,6 +2662,7 @@ export declare class IAM extends IAMClient {
2526
2662
  untagInstanceProfile(args: UntagInstanceProfileCommandInput, cb: (err: any, data?: UntagInstanceProfileCommandOutput) => void): void;
2527
2663
  untagInstanceProfile(args: UntagInstanceProfileCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UntagInstanceProfileCommandOutput) => void): void;
2528
2664
  /**
2665
+ * @public
2529
2666
  * <p>Removes the specified tags from the IAM virtual multi-factor authentication (MFA)
2530
2667
  * device. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
2531
2668
  * <i>IAM User Guide</i>.</p>
@@ -2534,6 +2671,7 @@ export declare class IAM extends IAMClient {
2534
2671
  untagMFADevice(args: UntagMFADeviceCommandInput, cb: (err: any, data?: UntagMFADeviceCommandOutput) => void): void;
2535
2672
  untagMFADevice(args: UntagMFADeviceCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UntagMFADeviceCommandOutput) => void): void;
2536
2673
  /**
2674
+ * @public
2537
2675
  * <p>Removes the specified tags from the specified OpenID Connect (OIDC)-compatible identity
2538
2676
  * provider in IAM. For more information about OIDC providers, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_oidc.html">About web identity federation</a>.
2539
2677
  * For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
@@ -2543,6 +2681,7 @@ export declare class IAM extends IAMClient {
2543
2681
  untagOpenIDConnectProvider(args: UntagOpenIDConnectProviderCommandInput, cb: (err: any, data?: UntagOpenIDConnectProviderCommandOutput) => void): void;
2544
2682
  untagOpenIDConnectProvider(args: UntagOpenIDConnectProviderCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UntagOpenIDConnectProviderCommandOutput) => void): void;
2545
2683
  /**
2684
+ * @public
2546
2685
  * <p>Removes the specified tags from the customer managed policy. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
2547
2686
  * <i>IAM User Guide</i>.</p>
2548
2687
  */
@@ -2550,6 +2689,7 @@ export declare class IAM extends IAMClient {
2550
2689
  untagPolicy(args: UntagPolicyCommandInput, cb: (err: any, data?: UntagPolicyCommandOutput) => void): void;
2551
2690
  untagPolicy(args: UntagPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UntagPolicyCommandOutput) => void): void;
2552
2691
  /**
2692
+ * @public
2553
2693
  * <p>Removes the specified tags from the role. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
2554
2694
  * <i>IAM User Guide</i>.</p>
2555
2695
  */
@@ -2557,6 +2697,7 @@ export declare class IAM extends IAMClient {
2557
2697
  untagRole(args: UntagRoleCommandInput, cb: (err: any, data?: UntagRoleCommandOutput) => void): void;
2558
2698
  untagRole(args: UntagRoleCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UntagRoleCommandOutput) => void): void;
2559
2699
  /**
2700
+ * @public
2560
2701
  * <p>Removes the specified tags from the specified Security Assertion Markup Language (SAML)
2561
2702
  * identity provider in IAM. For more information about these providers, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_oidc.html">About web identity
2562
2703
  * federation</a>. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
@@ -2566,6 +2707,7 @@ export declare class IAM extends IAMClient {
2566
2707
  untagSAMLProvider(args: UntagSAMLProviderCommandInput, cb: (err: any, data?: UntagSAMLProviderCommandOutput) => void): void;
2567
2708
  untagSAMLProvider(args: UntagSAMLProviderCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UntagSAMLProviderCommandOutput) => void): void;
2568
2709
  /**
2710
+ * @public
2569
2711
  * <p>Removes the specified tags from the IAM server certificate.
2570
2712
  * For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
2571
2713
  * <i>IAM User Guide</i>.</p>
@@ -2581,6 +2723,7 @@ export declare class IAM extends IAMClient {
2581
2723
  untagServerCertificate(args: UntagServerCertificateCommandInput, cb: (err: any, data?: UntagServerCertificateCommandOutput) => void): void;
2582
2724
  untagServerCertificate(args: UntagServerCertificateCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UntagServerCertificateCommandOutput) => void): void;
2583
2725
  /**
2726
+ * @public
2584
2727
  * <p>Removes the specified tags from the user. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
2585
2728
  * <i>IAM User Guide</i>.</p>
2586
2729
  */
@@ -2588,6 +2731,7 @@ export declare class IAM extends IAMClient {
2588
2731
  untagUser(args: UntagUserCommandInput, cb: (err: any, data?: UntagUserCommandOutput) => void): void;
2589
2732
  untagUser(args: UntagUserCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UntagUserCommandOutput) => void): void;
2590
2733
  /**
2734
+ * @public
2591
2735
  * <p>Changes the status of the specified access key from Active to Inactive, or vice versa.
2592
2736
  * This operation can be used to disable a user's key as part of a key rotation
2593
2737
  * workflow.</p>
@@ -2604,6 +2748,7 @@ export declare class IAM extends IAMClient {
2604
2748
  updateAccessKey(args: UpdateAccessKeyCommandInput, cb: (err: any, data?: UpdateAccessKeyCommandOutput) => void): void;
2605
2749
  updateAccessKey(args: UpdateAccessKeyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateAccessKeyCommandOutput) => void): void;
2606
2750
  /**
2751
+ * @public
2607
2752
  * <p>Updates the password policy settings for the Amazon Web Services account.</p>
2608
2753
  * <note>
2609
2754
  * <p>This operation does not support partial updates. No parameters are required, but
@@ -2620,6 +2765,7 @@ export declare class IAM extends IAMClient {
2620
2765
  updateAccountPasswordPolicy(args: UpdateAccountPasswordPolicyCommandInput, cb: (err: any, data?: UpdateAccountPasswordPolicyCommandOutput) => void): void;
2621
2766
  updateAccountPasswordPolicy(args: UpdateAccountPasswordPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateAccountPasswordPolicyCommandOutput) => void): void;
2622
2767
  /**
2768
+ * @public
2623
2769
  * <p>Updates the policy that grants an IAM entity permission to assume a role. This is
2624
2770
  * typically referred to as the "role trust policy". For more information about roles, see
2625
2771
  * <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/roles-toplevel.html">Using roles to
@@ -2629,6 +2775,7 @@ export declare class IAM extends IAMClient {
2629
2775
  updateAssumeRolePolicy(args: UpdateAssumeRolePolicyCommandInput, cb: (err: any, data?: UpdateAssumeRolePolicyCommandOutput) => void): void;
2630
2776
  updateAssumeRolePolicy(args: UpdateAssumeRolePolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateAssumeRolePolicyCommandOutput) => void): void;
2631
2777
  /**
2778
+ * @public
2632
2779
  * <p>Updates the name and/or the path of the specified IAM group.</p>
2633
2780
  * <important>
2634
2781
  * <p> You should understand the implications of changing a group's path or name. For
@@ -2649,6 +2796,7 @@ export declare class IAM extends IAMClient {
2649
2796
  updateGroup(args: UpdateGroupCommandInput, cb: (err: any, data?: UpdateGroupCommandOutput) => void): void;
2650
2797
  updateGroup(args: UpdateGroupCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateGroupCommandOutput) => void): void;
2651
2798
  /**
2799
+ * @public
2652
2800
  * <p>Changes the password for the specified IAM user. You can use the CLI, the Amazon Web Services
2653
2801
  * API, or the <b>Users</b> page in the IAM console to change
2654
2802
  * the password for any IAM user. Use <a>ChangePassword</a> to change your own
@@ -2661,6 +2809,7 @@ export declare class IAM extends IAMClient {
2661
2809
  updateLoginProfile(args: UpdateLoginProfileCommandInput, cb: (err: any, data?: UpdateLoginProfileCommandOutput) => void): void;
2662
2810
  updateLoginProfile(args: UpdateLoginProfileCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateLoginProfileCommandOutput) => void): void;
2663
2811
  /**
2812
+ * @public
2664
2813
  * <p>Replaces the existing list of server certificate thumbprints associated with an OpenID
2665
2814
  * Connect (OIDC) provider resource object with a new list of thumbprints.</p>
2666
2815
  * <p>The list that you pass with this operation completely replaces the existing list of
@@ -2689,12 +2838,14 @@ export declare class IAM extends IAMClient {
2689
2838
  updateOpenIDConnectProviderThumbprint(args: UpdateOpenIDConnectProviderThumbprintCommandInput, cb: (err: any, data?: UpdateOpenIDConnectProviderThumbprintCommandOutput) => void): void;
2690
2839
  updateOpenIDConnectProviderThumbprint(args: UpdateOpenIDConnectProviderThumbprintCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateOpenIDConnectProviderThumbprintCommandOutput) => void): void;
2691
2840
  /**
2841
+ * @public
2692
2842
  * <p>Updates the description or maximum session duration setting of a role.</p>
2693
2843
  */
2694
2844
  updateRole(args: UpdateRoleCommandInput, options?: __HttpHandlerOptions): Promise<UpdateRoleCommandOutput>;
2695
2845
  updateRole(args: UpdateRoleCommandInput, cb: (err: any, data?: UpdateRoleCommandOutput) => void): void;
2696
2846
  updateRole(args: UpdateRoleCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateRoleCommandOutput) => void): void;
2697
2847
  /**
2848
+ * @public
2698
2849
  * <p>Use <a>UpdateRole</a> instead.</p>
2699
2850
  * <p>Modifies only the description of a role. This operation performs the same function as
2700
2851
  * the <code>Description</code> parameter in the <code>UpdateRole</code> operation.</p>
@@ -2703,6 +2854,7 @@ export declare class IAM extends IAMClient {
2703
2854
  updateRoleDescription(args: UpdateRoleDescriptionCommandInput, cb: (err: any, data?: UpdateRoleDescriptionCommandOutput) => void): void;
2704
2855
  updateRoleDescription(args: UpdateRoleDescriptionCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateRoleDescriptionCommandOutput) => void): void;
2705
2856
  /**
2857
+ * @public
2706
2858
  * <p>Updates the metadata document for an existing SAML provider resource object.</p>
2707
2859
  * <note>
2708
2860
  * <p>This operation requires <a href="https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html">Signature Version 4</a>.</p>
@@ -2712,6 +2864,7 @@ export declare class IAM extends IAMClient {
2712
2864
  updateSAMLProvider(args: UpdateSAMLProviderCommandInput, cb: (err: any, data?: UpdateSAMLProviderCommandOutput) => void): void;
2713
2865
  updateSAMLProvider(args: UpdateSAMLProviderCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateSAMLProviderCommandOutput) => void): void;
2714
2866
  /**
2867
+ * @public
2715
2868
  * <p>Updates the name and/or the path of the specified server certificate stored in
2716
2869
  * IAM.</p>
2717
2870
  * <p>For more information about working with server certificates, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html">Working
@@ -2737,6 +2890,7 @@ export declare class IAM extends IAMClient {
2737
2890
  updateServerCertificate(args: UpdateServerCertificateCommandInput, cb: (err: any, data?: UpdateServerCertificateCommandOutput) => void): void;
2738
2891
  updateServerCertificate(args: UpdateServerCertificateCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateServerCertificateCommandOutput) => void): void;
2739
2892
  /**
2893
+ * @public
2740
2894
  * <p>Sets the status of a service-specific credential to <code>Active</code> or
2741
2895
  * <code>Inactive</code>. Service-specific credentials that are inactive cannot be used
2742
2896
  * for authentication to the service. This operation can be used to disable a user's
@@ -2746,6 +2900,7 @@ export declare class IAM extends IAMClient {
2746
2900
  updateServiceSpecificCredential(args: UpdateServiceSpecificCredentialCommandInput, cb: (err: any, data?: UpdateServiceSpecificCredentialCommandOutput) => void): void;
2747
2901
  updateServiceSpecificCredential(args: UpdateServiceSpecificCredentialCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateServiceSpecificCredentialCommandOutput) => void): void;
2748
2902
  /**
2903
+ * @public
2749
2904
  * <p>Changes the status of the specified user signing certificate from active to disabled,
2750
2905
  * or vice versa. This operation can be used to disable an IAM user's signing
2751
2906
  * certificate as part of a certificate rotation work flow.</p>
@@ -2759,6 +2914,7 @@ export declare class IAM extends IAMClient {
2759
2914
  updateSigningCertificate(args: UpdateSigningCertificateCommandInput, cb: (err: any, data?: UpdateSigningCertificateCommandOutput) => void): void;
2760
2915
  updateSigningCertificate(args: UpdateSigningCertificateCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateSigningCertificateCommandOutput) => void): void;
2761
2916
  /**
2917
+ * @public
2762
2918
  * <p>Sets the status of an IAM user's SSH public key to active or inactive. SSH public
2763
2919
  * keys that are inactive cannot be used for authentication. This operation can be used to
2764
2920
  * disable a user's SSH public key as part of a key rotation work flow.</p>
@@ -2771,6 +2927,7 @@ export declare class IAM extends IAMClient {
2771
2927
  updateSSHPublicKey(args: UpdateSSHPublicKeyCommandInput, cb: (err: any, data?: UpdateSSHPublicKeyCommandOutput) => void): void;
2772
2928
  updateSSHPublicKey(args: UpdateSSHPublicKeyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateSSHPublicKeyCommandOutput) => void): void;
2773
2929
  /**
2930
+ * @public
2774
2931
  * <p>Updates the name and/or the path of the specified IAM user.</p>
2775
2932
  * <important>
2776
2933
  * <p> You should understand the implications of changing an IAM user's path or
@@ -2789,6 +2946,7 @@ export declare class IAM extends IAMClient {
2789
2946
  updateUser(args: UpdateUserCommandInput, cb: (err: any, data?: UpdateUserCommandOutput) => void): void;
2790
2947
  updateUser(args: UpdateUserCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateUserCommandOutput) => void): void;
2791
2948
  /**
2949
+ * @public
2792
2950
  * <p>Uploads a server certificate entity for the Amazon Web Services account. The server certificate
2793
2951
  * entity includes a public key certificate, a private key, and an optional certificate
2794
2952
  * chain, which should all be PEM-encoded.</p>
@@ -2818,6 +2976,7 @@ export declare class IAM extends IAMClient {
2818
2976
  uploadServerCertificate(args: UploadServerCertificateCommandInput, cb: (err: any, data?: UploadServerCertificateCommandOutput) => void): void;
2819
2977
  uploadServerCertificate(args: UploadServerCertificateCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UploadServerCertificateCommandOutput) => void): void;
2820
2978
  /**
2979
+ * @public
2821
2980
  * <p>Uploads an X.509 signing certificate and associates it with the specified IAM user.
2822
2981
  * Some Amazon Web Services services require you to use certificates to validate requests that are signed
2823
2982
  * with a corresponding private key. When you upload the certificate, its default status is
@@ -2843,6 +3002,7 @@ export declare class IAM extends IAMClient {
2843
3002
  uploadSigningCertificate(args: UploadSigningCertificateCommandInput, cb: (err: any, data?: UploadSigningCertificateCommandOutput) => void): void;
2844
3003
  uploadSigningCertificate(args: UploadSigningCertificateCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UploadSigningCertificateCommandOutput) => void): void;
2845
3004
  /**
3005
+ * @public
2846
3006
  * <p>Uploads an SSH public key and associates it with the specified IAM user.</p>
2847
3007
  * <p>The SSH public key uploaded by this operation can be used only for authenticating the
2848
3008
  * associated IAM user to an CodeCommit repository. For more information about using SSH keys