@aws-sdk/client-kms 3.278.0 → 3.281.0

package/dist-types/commands/GetPublicKeyCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { GetPublicKeyRequest, GetPublicKeyResponse } from "../models/models_0";
+/**
+ * The input for {@link GetPublicKeyCommand}.
+ */
 export interface GetPublicKeyCommandInput extends GetPublicKeyRequest {
 }
+/**
+ * The output of {@link GetPublicKeyCommand}.
+ */
 export interface GetPublicKeyCommandOutput extends GetPublicKeyResponse, __MetadataBearer {
 }
 /**
@@ -18,7 +24,6 @@ export interface GetPublicKeyCommandOutput extends GetPublicKeyResponse, __Metad
  *       public key within KMS, you benefit from the authentication, authorization, and logging that
  *       are part of every KMS operation. You also reduce of risk of encrypting data that cannot be
  *       decrypted. These features are not effective outside of KMS.</p>
- *
  *          <p>To help you use the public key safely outside of KMS, <code>GetPublicKey</code> returns
  *       important information about the public key in the response, including:</p>
  *          <ul>
@@ -53,7 +58,6 @@ export interface GetPublicKeyCommandOutput extends GetPublicKeyResponse, __Metad
  *             <b>Cross-account use</b>:
  *       Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify
  *   the key ARN or alias ARN in the value of the <code>KeyId</code> parameter.</p>
- *
  *          <p>
  *             <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:GetPublicKey</a> (key policy)</p>
  *          <p>

package/dist-types/commands/ImportKeyMaterialCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { ImportKeyMaterialRequest, ImportKeyMaterialResponse } from "../models/models_0";
+/**
+ * The input for {@link ImportKeyMaterialCommand}.
+ */
 export interface ImportKeyMaterialCommandInput extends ImportKeyMaterialRequest {
 }
+/**
+ * The output of {@link ImportKeyMaterialCommand}.
+ */
 export interface ImportKeyMaterialCommandOutput extends ImportKeyMaterialResponse, __MetadataBearer {
 }
 /**
@@ -55,7 +61,6 @@ export interface ImportKeyMaterialCommandOutput extends ImportKeyMaterialRespons
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key states of KMS keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
  *          <p>
  *             <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
- *
  *          <p>
  *             <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:ImportKeyMaterial</a> (key policy)</p>
  *          <p>

package/dist-types/commands/ListAliasesCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { ListAliasesRequest, ListAliasesResponse } from "../models/models_0";
+/**
+ * The input for {@link ListAliasesCommand}.
+ */
 export interface ListAliasesCommandInput extends ListAliasesRequest {
 }
+/**
+ * The output of {@link ListAliasesCommand}.
+ */
 export interface ListAliasesCommandOutput extends ListAliasesResponse, __MetadataBearer {
 }
 /**
@@ -25,8 +31,6 @@ export interface ListAliasesCommandOutput extends ListAliasesResponse, __Metadat
  *          <p>
  *             <b>Cross-account use</b>: No. <code>ListAliases</code> does not
  *       return aliases in other Amazon Web Services accounts.</p>
- *
- *
  *          <p>
  *             <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:ListAliases</a> (IAM policy)</p>
  *          <p>For details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-alias.html#alias-access">Controlling access to aliases</a> in the

package/dist-types/commands/ListGrantsCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { ListGrantsRequest, ListGrantsResponse } from "../models/models_0";
+/**
+ * The input for {@link ListGrantsCommand}.
+ */
 export interface ListGrantsCommandInput extends ListGrantsRequest {
 }
+/**
+ * The output of {@link ListGrantsCommand}.
+ */
 export interface ListGrantsCommandOutput extends ListGrantsResponse, __MetadataBearer {
 }
 /**
@@ -26,7 +32,6 @@ export interface ListGrantsCommandOutput extends ListGrantsResponse, __MetadataB
  *          <p>
  *             <b>Cross-account use</b>: Yes. To perform this operation on a KMS key in a different Amazon Web Services account, specify the key
  *   ARN in the value of the <code>KeyId</code> parameter.</p>
- *
  *          <p>
  *             <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:ListGrants</a> (key policy)</p>
  *          <p>

package/dist-types/commands/ListKeyPoliciesCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { ListKeyPoliciesRequest, ListKeyPoliciesResponse } from "../models/models_0";
+/**
+ * The input for {@link ListKeyPoliciesCommand}.
+ */
 export interface ListKeyPoliciesCommandInput extends ListKeyPoliciesRequest {
 }
+/**
+ * The output of {@link ListKeyPoliciesCommand}.
+ */
 export interface ListKeyPoliciesCommandOutput extends ListKeyPoliciesResponse, __MetadataBearer {
 }
 /**
@@ -13,7 +19,6 @@ export interface ListKeyPoliciesCommandOutput extends ListKeyPoliciesResponse, _
  *       However, the only valid policy name is <code>default</code>. </p>
  *          <p>
  *             <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
- *
  *          <p>
  *             <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:ListKeyPolicies</a> (key policy)</p>
  *          <p>

package/dist-types/commands/ListKeysCommand.d.ts

@@ -3,15 +3,20 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { ListKeysRequest, ListKeysResponse } from "../models/models_0";
+/**
+ * The input for {@link ListKeysCommand}.
+ */
 export interface ListKeysCommandInput extends ListKeysRequest {
 }
+/**
+ * The output of {@link ListKeysCommand}.
+ */
 export interface ListKeysCommandOutput extends ListKeysResponse, __MetadataBearer {
 }
 /**
  * <p>Gets a list of all KMS keys in the caller's Amazon Web Services account and Region.</p>
  *          <p>
  *             <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
- *
  *          <p>
  *             <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:ListKeys</a> (IAM policy)</p>
  *          <p>

package/dist-types/commands/ListResourceTagsCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { ListResourceTagsRequest, ListResourceTagsResponse } from "../models/models_0";
+/**
+ * The input for {@link ListResourceTagsCommand}.
+ */
 export interface ListResourceTagsCommandInput extends ListResourceTagsRequest {
 }
+/**
+ * The output of {@link ListResourceTagsCommand}.
+ */
 export interface ListResourceTagsCommandOutput extends ListResourceTagsResponse, __MetadataBearer {
 }
 /**
@@ -15,7 +21,6 @@ export interface ListResourceTagsCommandOutput extends ListResourceTagsResponse,
  *         keys</a>.</p>
  *          <p>
  *             <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
- *
  *          <p>
  *             <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:ListResourceTags</a> (key policy)</p>
  *          <p>

package/dist-types/commands/ListRetirableGrantsCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { ListGrantsResponse, ListRetirableGrantsRequest } from "../models/models_0";
+/**
+ * The input for {@link ListRetirableGrantsCommand}.
+ */
 export interface ListRetirableGrantsCommandInput extends ListRetirableGrantsRequest {
 }
+/**
+ * The output of {@link ListRetirableGrantsCommand}.
+ */
 export interface ListRetirableGrantsCommandOutput extends ListGrantsResponse, __MetadataBearer {
 }
 /**
@@ -23,7 +29,6 @@ export interface ListRetirableGrantsCommandOutput extends ListGrantsResponse, __
  *       Amazon Web Services account. However, this operation can return grants in any Amazon Web Services account. You do not need
  *         <code>kms:ListRetirableGrants</code> permission (or any other additional permission) in any
  *       Amazon Web Services account other than your own.</p>
- *
  *          <p>
  *             <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:ListRetirableGrants</a> (IAM policy) in your
  *       Amazon Web Services account.</p>

package/dist-types/commands/PutKeyPolicyCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { PutKeyPolicyRequest } from "../models/models_0";
+/**
+ * The input for {@link PutKeyPolicyCommand}.
+ */
 export interface PutKeyPolicyCommandInput extends PutKeyPolicyRequest {
 }
+/**
+ * The output of {@link PutKeyPolicyCommand}.
+ */
 export interface PutKeyPolicyCommandOutput extends __MetadataBearer {
 }
 /**
@@ -16,7 +22,6 @@ export interface PutKeyPolicyCommandOutput extends __MetadataBearer {
  *       see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/programming-key-policies.html#put-policy">Setting a key policy</a> in the <i>Key Management Service Developer Guide</i>.</p>
  *          <p>
  *             <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
- *
  *          <p>
  *             <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:PutKeyPolicy</a> (key policy)</p>
  *          <p>

package/dist-types/commands/ReEncryptCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { ReEncryptRequest, ReEncryptResponse } from "../models/models_0";
+/**
+ * The input for {@link ReEncryptCommand}.
+ */
 export interface ReEncryptCommandInput extends ReEncryptRequest {
 }
+/**
+ * The output of {@link ReEncryptCommand}.
+ */
 export interface ReEncryptCommandOutput extends ReEncryptResponse, __MetadataBearer {
 }
 /**
@@ -47,7 +53,6 @@ export interface ReEncryptCommandOutput extends ReEncryptResponse, __MetadataBea
  *           specify the KMS key that re-encrypts the data after it is decrypted. If the destination
  *           KMS key is an asymmetric KMS key, you must also provide the encryption algorithm. The
  *           algorithm that you choose must be compatible with the KMS key.</p>
- *
  *                <important>
  *                   <p>When you use an asymmetric KMS key to encrypt or reencrypt data, be sure to record the KMS key and encryption algorithm that you choose. You will be required to provide the same KMS key and encryption algorithm when you decrypt the data. If the KMS key and algorithm do not match the values used to encrypt the data, the decrypt operation fails.</p>
  *                   <p>You are not required to supply the key ID and encryption algorithm when you decrypt with symmetric encryption KMS keys because KMS stores this information in the ciphertext blob. KMS cannot store metadata in ciphertext generated with asymmetric keys. The standard format for asymmetric key ciphertext does not include configurable fields.</p>
@@ -61,7 +66,6 @@ export interface ReEncryptCommandOutput extends ReEncryptResponse, __MetadataBea
  *       destination KMS key can be in different Amazon Web Services accounts. Either or both KMS keys can be in a
  *       different account than the caller. To specify a KMS key in a different account, you must use
  *       its key ARN or alias ARN.</p>
- *
  *          <p>
  *             <b>Required permissions</b>:</p>
  *          <ul>
@@ -80,7 +84,6 @@ export interface ReEncryptCommandOutput extends ReEncryptResponse, __MetadataBea
  *       permission in your <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-policies.html">key policy</a>. This permission is
  *       automatically included in the key policy when you use the console to create a KMS key. But you
  *       must include it manually when you create a KMS key programmatically or when you use the <a>PutKeyPolicy</a> operation to set a key policy.</p>
- *
  *          <p>
  *             <b>Related operations:</b>
  *          </p>

package/dist-types/commands/ReplicateKeyCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { ReplicateKeyRequest, ReplicateKeyResponse } from "../models/models_0";
+/**
+ * The input for {@link ReplicateKeyCommand}.
+ */
 export interface ReplicateKeyCommandInput extends ReplicateKeyRequest {
 }
+/**
+ * The output of {@link ReplicateKeyCommand}.
+ */
 export interface ReplicateKeyCommandOutput extends ReplicateKeyResponse, __MetadataBearer {
 }
 /**

package/dist-types/commands/RetireGrantCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { RetireGrantRequest } from "../models/models_0";
+/**
+ * The input for {@link RetireGrantCommand}.
+ */
 export interface RetireGrantCommandInput extends RetireGrantRequest {
 }
+/**
+ * The output of {@link RetireGrantCommand}.
+ */
 export interface RetireGrantCommandOutput extends __MetadataBearer {
 }
 /**

package/dist-types/commands/RevokeGrantCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { RevokeGrantRequest } from "../models/models_0";
+/**
+ * The input for {@link RevokeGrantCommand}.
+ */
 export interface RevokeGrantCommandInput extends RevokeGrantRequest {
 }
+/**
+ * The output of {@link RevokeGrantCommand}.
+ */
 export interface RevokeGrantCommandOutput extends __MetadataBearer {
 }
 /**

package/dist-types/commands/ScheduleKeyDeletionCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { ScheduleKeyDeletionRequest, ScheduleKeyDeletionResponse } from "../models/models_0";
+/**
+ * The input for {@link ScheduleKeyDeletionCommand}.
+ */
 export interface ScheduleKeyDeletionCommandInput extends ScheduleKeyDeletionRequest {
 }
+/**
+ * The output of {@link ScheduleKeyDeletionCommand}.
+ */
 export interface ScheduleKeyDeletionCommandOutput extends ScheduleKeyDeletionResponse, __MetadataBearer {
 }
 /**
@@ -46,8 +52,6 @@ export interface ScheduleKeyDeletionCommandOutput extends ScheduleKeyDeletionRes
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key states of KMS keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
  *          <p>
  *             <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
- *
- *
  *          <p>
  *             <b>Required permissions</b>: kms:ScheduleKeyDeletion (key
  *       policy)</p>

package/dist-types/commands/SignCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { SignRequest, SignResponse } from "../models/models_0";
+/**
+ * The input for {@link SignCommand}.
+ */
 export interface SignCommandInput extends SignRequest {
 }
+/**
+ * The output of {@link SignCommand}.
+ */
 export interface SignCommandOutput extends SignResponse, __MetadataBearer {
 }
 /**
@@ -55,7 +61,6 @@ export interface SignCommandOutput extends SignResponse, __MetadataBearer {
  *          <p>
  *             <b>Cross-account use</b>: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify
  *   the key ARN or alias ARN in the value of the <code>KeyId</code> parameter.</p>
- *
  *          <p>
  *             <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:Sign</a> (key policy)</p>
  *          <p>

package/dist-types/commands/TagResourceCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { TagResourceRequest } from "../models/models_0";
+/**
+ * The input for {@link TagResourceCommand}.
+ */
 export interface TagResourceCommandInput extends TagResourceRequest {
 }
+/**
+ * The output of {@link TagResourceCommand}.
+ */
 export interface TagResourceCommandOutput extends __MetadataBearer {
 }
 /**
@@ -28,7 +34,6 @@ export interface TagResourceCommandOutput extends __MetadataBearer {
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key states of KMS keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
  *          <p>
  *             <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account. </p>
- *
  *          <p>
  *             <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:TagResource</a> (key policy)</p>
  *          <p>

package/dist-types/commands/UntagResourceCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { UntagResourceRequest } from "../models/models_0";
+/**
+ * The input for {@link UntagResourceCommand}.
+ */
 export interface UntagResourceCommandInput extends UntagResourceRequest {
 }
+/**
+ * The output of {@link UntagResourceCommand}.
+ */
 export interface UntagResourceCommandOutput extends __MetadataBearer {
 }
 /**
@@ -16,7 +22,6 @@ export interface UntagResourceCommandOutput extends __MetadataBearer {
  *          <p>When it succeeds, the <code>UntagResource</code> operation doesn't return any output.
  *       Also, if the specified tag key isn't found on the KMS key, it doesn't throw an exception or
  *       return a response. To confirm that the operation worked, use the <a>ListResourceTags</a> operation.</p>
- *
  *          <p>For information about using tags in KMS, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/tagging-keys.html">Tagging keys</a>. For general information about
  *       tags, including the format and syntax, see <a href="https://docs.aws.amazon.com/general/latest/gr/aws_tagging.html">Tagging Amazon Web Services resources</a> in the <i>Amazon
  *         Web Services General Reference</i>. </p>
@@ -24,7 +29,6 @@ export interface UntagResourceCommandOutput extends __MetadataBearer {
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key states of KMS keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
  *          <p>
  *             <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
- *
  *          <p>
  *             <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:UntagResource</a> (key policy)</p>
  *          <p>

package/dist-types/commands/UpdateAliasCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { UpdateAliasRequest } from "../models/models_0";
+/**
+ * The input for {@link UpdateAliasCommand}.
+ */
 export interface UpdateAliasCommandInput extends UpdateAliasRequest {
 }
+/**
+ * The output of {@link UpdateAliasCommand}.
+ */
 export interface UpdateAliasCommandOutput extends __MetadataBearer {
 }
 /**

package/dist-types/commands/UpdateCustomKeyStoreCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { UpdateCustomKeyStoreRequest, UpdateCustomKeyStoreResponse } from "../models/models_0";
+/**
+ * The input for {@link UpdateCustomKeyStoreCommand}.
+ */
 export interface UpdateCustomKeyStoreCommandInput extends UpdateCustomKeyStoreRequest {
 }
+/**
+ * The output of {@link UpdateCustomKeyStoreCommand}.
+ */
 export interface UpdateCustomKeyStoreCommandOutput extends UpdateCustomKeyStoreResponse, __MetadataBearer {
 }
 /**

package/dist-types/commands/UpdateKeyDescriptionCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { UpdateKeyDescriptionRequest } from "../models/models_0";
+/**
+ * The input for {@link UpdateKeyDescriptionCommand}.
+ */
 export interface UpdateKeyDescriptionCommandInput extends UpdateKeyDescriptionRequest {
 }
+/**
+ * The output of {@link UpdateKeyDescriptionCommand}.
+ */
 export interface UpdateKeyDescriptionCommandOutput extends __MetadataBearer {
 }
 /**
@@ -13,7 +19,6 @@ export interface UpdateKeyDescriptionCommandOutput extends __MetadataBearer {
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key states of KMS keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
  *          <p>
  *             <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account. </p>
- *
  *          <p>
  *             <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:UpdateKeyDescription</a> (key policy)</p>
  *          <p>

package/dist-types/commands/UpdatePrimaryRegionCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { UpdatePrimaryRegionRequest } from "../models/models_0";
+/**
+ * The input for {@link UpdatePrimaryRegionCommand}.
+ */
 export interface UpdatePrimaryRegionCommandInput extends UpdatePrimaryRegionRequest {
 }
+/**
+ * The output of {@link UpdatePrimaryRegionCommand}.
+ */
 export interface UpdatePrimaryRegionCommandOutput extends __MetadataBearer {
 }
 /**

package/dist-types/commands/VerifyCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { VerifyRequest, VerifyResponse } from "../models/models_0";
+/**
+ * The input for {@link VerifyCommand}.
+ */
 export interface VerifyCommandInput extends VerifyRequest {
 }
+/**
+ * The output of {@link VerifyCommand}.
+ */
 export interface VerifyCommandOutput extends VerifyResponse, __MetadataBearer {
 }
 /**
@@ -18,9 +24,11 @@ export interface VerifyCommandOutput extends VerifyResponse, __MetadataBearer {
  *          <p>A digital signature is generated by using the private key in an asymmetric KMS key. The
  *       signature is verified by using the public key in the same asymmetric KMS key.
  *       For information about asymmetric KMS keys, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/symmetric-asymmetric.html">Asymmetric KMS keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
- *          <p>To verify a digital signature, you can use the <code>Verify</code> operation. Specify the
+ *          <p>To use the <code>Verify</code> operation, specify the
  *       same asymmetric KMS key, message, and signing algorithm that were used to produce the
- *       signature.</p>
+ *       signature. The message type does not need to be the same as the one used for signing, but it must
+ *       indicate whether the value of the <code>Message</code> parameter should be
+ *       hashed as part of the verification process.</p>
  *          <p>You can also verify the digital signature by using the public key of the KMS key outside
  *       of KMS. Use the <a>GetPublicKey</a> operation to download the public key in the
  *       asymmetric KMS key and then use the public key to verify the signature outside of KMS. The

package/dist-types/commands/VerifyMacCommand.d.ts

@@ -3,8 +3,14 @@ import { Command as $Command } from "@aws-sdk/smithy-client";
 import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, MiddlewareStack } from "@aws-sdk/types";
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { VerifyMacRequest, VerifyMacResponse } from "../models/models_0";
+/**
+ * The input for {@link VerifyMacCommand}.
+ */
 export interface VerifyMacCommandInput extends VerifyMacRequest {
 }
+/**
+ * The output of {@link VerifyMacCommand}.
+ */
 export interface VerifyMacCommandOutput extends VerifyMacResponse, __MetadataBearer {
 }
 /**
@@ -24,7 +30,6 @@ export interface VerifyMacCommandOutput extends VerifyMacResponse, __MetadataBea
  *          <p>
  *             <b>Cross-account use</b>: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify
  *   the key ARN or alias ARN in the value of the <code>KeyId</code> parameter. </p>
- *
  *          <p>
  *             <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:VerifyMac</a> (key policy)</p>
  *          <p>

package/dist-types/endpoint/EndpointParameters.d.ts

@@ -12,7 +12,7 @@ export declare const resolveClientEndpointParameters: <T>(options: T & ClientInp
     defaultSigningName: string;
 };
 export interface EndpointParameters extends __EndpointParameters {
-    Region: string;
+    Region?: string;
     UseDualStack?: boolean;
     UseFIPS?: boolean;
     Endpoint?: string;