npm - @aws-sdk/client-kms - Versions diffs - 3.295.0 → 3.297.0 - Mend

@aws-sdk/client-kms 3.295.0 → 3.297.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (63) hide show

package/dist-types/KMS.d.ts CHANGED Viewed

@@ -51,6 +51,7 @@ import { VerifyCommandInput, VerifyCommandOutput } from "./commands/VerifyComman
 import { VerifyMacCommandInput, VerifyMacCommandOutput } from "./commands/VerifyMacCommand";
 import { KMSClient } from "./KMSClient";
 /**
+ * @public
  * <fullname>Key Management Service</fullname>
  *          <p>Key Management Service (KMS) is an encryption and key management web service. This guide describes
  *       the KMS operations that you can call programmatically. For general information about KMS,
@@ -149,6 +150,7 @@ import { KMSClient } from "./KMSClient";
  */
 export declare class KMS extends KMSClient {
     /**
+     * @public
      * <p>Cancels the deletion of a KMS key. When this operation succeeds, the key state of the KMS
      *       key is <code>Disabled</code>. To enable the KMS key, use <a>EnableKey</a>. </p>
      *          <p>For more information about scheduling and canceling deletion of a KMS key, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/deleting-keys.html">Deleting KMS keys</a> in the
@@ -167,6 +169,7 @@ export declare class KMS extends KMSClient {
     cancelKeyDeletion(args: CancelKeyDeletionCommandInput, cb: (err: any, data?: CancelKeyDeletionCommandOutput) => void): void;
     cancelKeyDeletion(args: CancelKeyDeletionCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CancelKeyDeletionCommandOutput) => void): void;
     /**
+     * @public
      * <p>Connects or reconnects a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/custom-key-store-overview.html">custom key store</a> to its backing key store. For an CloudHSM key
      *       store, <code>ConnectCustomKeyStore</code> connects the key store to its associated CloudHSM
      *       cluster. For an external key store, <code>ConnectCustomKeyStore</code> connects the key store
@@ -259,6 +262,7 @@ export declare class KMS extends KMSClient {
     connectCustomKeyStore(args: ConnectCustomKeyStoreCommandInput, cb: (err: any, data?: ConnectCustomKeyStoreCommandOutput) => void): void;
     connectCustomKeyStore(args: ConnectCustomKeyStoreCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ConnectCustomKeyStoreCommandOutput) => void): void;
     /**
+     * @public
      * <p>Creates a friendly name for a KMS key. </p>
      *          <note>
      *             <p>Adding, deleting, or updating an alias can allow or deny permission to the KMS key. For details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/abac.html">ABAC for KMS</a> in the <i>Key Management Service Developer Guide</i>.</p>
@@ -321,6 +325,7 @@ export declare class KMS extends KMSClient {
     createAlias(args: CreateAliasCommandInput, cb: (err: any, data?: CreateAliasCommandOutput) => void): void;
     createAlias(args: CreateAliasCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateAliasCommandOutput) => void): void;
     /**
+     * @public
      * <p>Creates a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/custom-key-store-overview.html">custom key store</a> backed by a key store that you own and manage. When you use a
      *       KMS key in a custom key store for a cryptographic operation, the cryptographic operation is
      *       actually performed in your key store using your keys. KMS supports <a href="https://docs.aws.amazon.com/kms/latest/developerguide/keystore-cloudhsm.html">CloudHSM key stores</a>
@@ -414,6 +419,7 @@ export declare class KMS extends KMSClient {
     createCustomKeyStore(args: CreateCustomKeyStoreCommandInput, cb: (err: any, data?: CreateCustomKeyStoreCommandOutput) => void): void;
     createCustomKeyStore(args: CreateCustomKeyStoreCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateCustomKeyStoreCommandOutput) => void): void;
     /**
+     * @public
      * <p>Adds a grant to a KMS key. </p>
      *          <p>A <i>grant</i> is a policy instrument that allows Amazon Web Services principals to use
      *       KMS keys in cryptographic operations. It also can allow them to view a KMS key (<a>DescribeKey</a>) and create and manage grants. When authorizing access to a KMS key,
@@ -481,6 +487,7 @@ export declare class KMS extends KMSClient {
     createGrant(args: CreateGrantCommandInput, cb: (err: any, data?: CreateGrantCommandOutput) => void): void;
     createGrant(args: CreateGrantCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateGrantCommandOutput) => void): void;
     /**
+     * @public
      * <p>Creates a unique customer managed <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#kms-keys">KMS key</a> in your Amazon Web Services account and Region.
      *       You can use a KMS key in cryptographic operations, such as encryption and signing. Some Amazon Web Services
      *       services let you use KMS keys that you create and manage to protect your service
@@ -653,6 +660,7 @@ export declare class KMS extends KMSClient {
     createKey(args: CreateKeyCommandInput, cb: (err: any, data?: CreateKeyCommandOutput) => void): void;
     createKey(args: CreateKeyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateKeyCommandOutput) => void): void;
     /**
+     * @public
      * <p>Decrypts ciphertext that was encrypted by a KMS key using any of the following
      *       operations:</p>
      *          <ul>
@@ -746,6 +754,7 @@ export declare class KMS extends KMSClient {
     decrypt(args: DecryptCommandInput, cb: (err: any, data?: DecryptCommandOutput) => void): void;
     decrypt(args: DecryptCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DecryptCommandOutput) => void): void;
     /**
+     * @public
      * <p>Deletes the specified alias. </p>
      *          <note>
      *             <p>Adding, deleting, or updating an alias can allow or deny permission to the KMS key. For details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/abac.html">ABAC for KMS</a> in the <i>Key Management Service Developer Guide</i>.</p>
@@ -799,6 +808,7 @@ export declare class KMS extends KMSClient {
     deleteAlias(args: DeleteAliasCommandInput, cb: (err: any, data?: DeleteAliasCommandOutput) => void): void;
     deleteAlias(args: DeleteAliasCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteAliasCommandOutput) => void): void;
     /**
+     * @public
      * <p>Deletes a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/custom-key-store-overview.html">custom key store</a>. This operation does not affect any backing elements of the
      *       custom key store. It does not delete the CloudHSM cluster that is associated with an CloudHSM key
      *       store, or affect any users or keys in the cluster. For an external key store, it does not
@@ -863,6 +873,7 @@ export declare class KMS extends KMSClient {
     deleteCustomKeyStore(args: DeleteCustomKeyStoreCommandInput, cb: (err: any, data?: DeleteCustomKeyStoreCommandOutput) => void): void;
     deleteCustomKeyStore(args: DeleteCustomKeyStoreCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteCustomKeyStoreCommandOutput) => void): void;
     /**
+     * @public
      * <p>Deletes key material that you previously imported. This operation makes the specified KMS
      *       key unusable. For more information about importing key material into KMS, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html">Importing Key Material</a>
      *       in the <i>Key Management Service Developer Guide</i>. </p>
@@ -897,6 +908,7 @@ export declare class KMS extends KMSClient {
     deleteImportedKeyMaterial(args: DeleteImportedKeyMaterialCommandInput, cb: (err: any, data?: DeleteImportedKeyMaterialCommandOutput) => void): void;
     deleteImportedKeyMaterial(args: DeleteImportedKeyMaterialCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DeleteImportedKeyMaterialCommandOutput) => void): void;
     /**
+     * @public
      * <p>Gets information about <a href="https://docs.aws.amazon.com/kms/latest/developerguide/custom-key-store-overview.html">custom key stores</a> in the account and Region.</p>
      *          <p> This operation is part of the <a href="https://docs.aws.amazon.com/kms/latest/developerguide/custom-key-store-overview.html">custom key stores</a> feature in KMS, which
      * combines the convenience and extensive integration of KMS with the isolation and control of a
@@ -961,6 +973,7 @@ export declare class KMS extends KMSClient {
     describeCustomKeyStores(args: DescribeCustomKeyStoresCommandInput, cb: (err: any, data?: DescribeCustomKeyStoresCommandOutput) => void): void;
     describeCustomKeyStores(args: DescribeCustomKeyStoresCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DescribeCustomKeyStoresCommandOutput) => void): void;
     /**
+     * @public
      * <p>Provides detailed information about a KMS key. You can run <code>DescribeKey</code> on a
      *         <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#customer-cmk">customer managed
      *         key</a> or an <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-managed-cmk">Amazon Web Services managed key</a>.</p>
@@ -1049,6 +1062,7 @@ export declare class KMS extends KMSClient {
     describeKey(args: DescribeKeyCommandInput, cb: (err: any, data?: DescribeKeyCommandOutput) => void): void;
     describeKey(args: DescribeKeyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DescribeKeyCommandOutput) => void): void;
     /**
+     * @public
      * <p>Sets the state of a KMS key to disabled. This change temporarily prevents use of the KMS
      *       key for <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#cryptographic-operations">cryptographic operations</a>. </p>
      *          <p>For more information about how key state affects the use of a KMS key, see
@@ -1069,6 +1083,7 @@ export declare class KMS extends KMSClient {
     disableKey(args: DisableKeyCommandInput, cb: (err: any, data?: DisableKeyCommandOutput) => void): void;
     disableKey(args: DisableKeyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DisableKeyCommandOutput) => void): void;
     /**
+     * @public
      * <p>Disables <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotate-keys.html">automatic
      *         rotation of the key material</a> of the specified symmetric encryption KMS key.</p>
      *          <p>Automatic key rotation is supported only on symmetric encryption KMS keys.
@@ -1107,6 +1122,7 @@ export declare class KMS extends KMSClient {
     disableKeyRotation(args: DisableKeyRotationCommandInput, cb: (err: any, data?: DisableKeyRotationCommandOutput) => void): void;
     disableKeyRotation(args: DisableKeyRotationCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DisableKeyRotationCommandOutput) => void): void;
     /**
+     * @public
      * <p>Disconnects the <a href="https://docs.aws.amazon.com/kms/latest/developerguide/custom-key-store-overview.html">custom key store</a> from its backing key store. This operation disconnects an
      *       CloudHSM key store from its associated CloudHSM cluster or disconnects an external key store from
      *       the external key store proxy that communicates with your external key manager.</p>
@@ -1164,6 +1180,7 @@ export declare class KMS extends KMSClient {
     disconnectCustomKeyStore(args: DisconnectCustomKeyStoreCommandInput, cb: (err: any, data?: DisconnectCustomKeyStoreCommandOutput) => void): void;
     disconnectCustomKeyStore(args: DisconnectCustomKeyStoreCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: DisconnectCustomKeyStoreCommandOutput) => void): void;
     /**
+     * @public
      * <p>Sets the key state of a KMS key to enabled. This allows you to use the KMS key for
      *       <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#cryptographic-operations">cryptographic operations</a>. </p>
      *          <p>The KMS key that you use for this operation must be in a compatible key state. For
@@ -1180,6 +1197,7 @@ export declare class KMS extends KMSClient {
     enableKey(args: EnableKeyCommandInput, cb: (err: any, data?: EnableKeyCommandOutput) => void): void;
     enableKey(args: EnableKeyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: EnableKeyCommandOutput) => void): void;
     /**
+     * @public
      * <p>Enables <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotate-keys.html">automatic rotation
      *         of the key material</a> of the specified symmetric encryption KMS key. </p>
      *          <p>When you enable automatic rotation of a<a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#customer-cmk">customer managed KMS key</a>, KMS
@@ -1226,6 +1244,7 @@ export declare class KMS extends KMSClient {
     enableKeyRotation(args: EnableKeyRotationCommandInput, cb: (err: any, data?: EnableKeyRotationCommandOutput) => void): void;
     enableKeyRotation(args: EnableKeyRotationCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: EnableKeyRotationCommandOutput) => void): void;
     /**
+     * @public
      * <p>Encrypts plaintext of up to 4,096 bytes using a KMS key. You can use a symmetric or
      *       asymmetric KMS key with a <code>KeyUsage</code> of <code>ENCRYPT_DECRYPT</code>.</p>
      *          <p>You can use this operation to encrypt small amounts of arbitrary data, such as a personal
@@ -1341,6 +1360,7 @@ export declare class KMS extends KMSClient {
     encrypt(args: EncryptCommandInput, cb: (err: any, data?: EncryptCommandOutput) => void): void;
     encrypt(args: EncryptCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: EncryptCommandOutput) => void): void;
     /**
+     * @public
      * <p>Returns a unique symmetric data key for use outside of KMS. This operation returns a
      *       plaintext copy of the data key and a copy that is encrypted under a symmetric encryption KMS
      *       key that you specify. The bytes in the plaintext key are random; they are not related
@@ -1440,6 +1460,7 @@ export declare class KMS extends KMSClient {
     generateDataKey(args: GenerateDataKeyCommandInput, cb: (err: any, data?: GenerateDataKeyCommandOutput) => void): void;
     generateDataKey(args: GenerateDataKeyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GenerateDataKeyCommandOutput) => void): void;
     /**
+     * @public
      * <p>Returns a unique asymmetric data key pair for use outside of KMS. This operation returns
      *       a plaintext public key, a plaintext private key, and a copy of the private key that is
      *       encrypted under the symmetric encryption KMS key you specify. You can use the data key pair to
@@ -1516,6 +1537,7 @@ export declare class KMS extends KMSClient {
     generateDataKeyPair(args: GenerateDataKeyPairCommandInput, cb: (err: any, data?: GenerateDataKeyPairCommandOutput) => void): void;
     generateDataKeyPair(args: GenerateDataKeyPairCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GenerateDataKeyPairCommandOutput) => void): void;
     /**
+     * @public
      * <p>Returns a unique asymmetric data key pair for use outside of KMS. This operation returns
      *       a plaintext public key and a copy of the private key that is encrypted under the symmetric
      *       encryption KMS key you specify. Unlike <a>GenerateDataKeyPair</a>, this operation
@@ -1584,6 +1606,7 @@ export declare class KMS extends KMSClient {
     generateDataKeyPairWithoutPlaintext(args: GenerateDataKeyPairWithoutPlaintextCommandInput, cb: (err: any, data?: GenerateDataKeyPairWithoutPlaintextCommandOutput) => void): void;
     generateDataKeyPairWithoutPlaintext(args: GenerateDataKeyPairWithoutPlaintextCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GenerateDataKeyPairWithoutPlaintextCommandOutput) => void): void;
     /**
+     * @public
      * <p>Returns a unique symmetric data key for use outside of KMS. This operation returns a
      *       data key that is encrypted under a symmetric encryption KMS key that you specify. The bytes in
      *       the key are random; they are not related to the caller or to the KMS key.</p>
@@ -1661,6 +1684,7 @@ export declare class KMS extends KMSClient {
     generateDataKeyWithoutPlaintext(args: GenerateDataKeyWithoutPlaintextCommandInput, cb: (err: any, data?: GenerateDataKeyWithoutPlaintextCommandOutput) => void): void;
     generateDataKeyWithoutPlaintext(args: GenerateDataKeyWithoutPlaintextCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GenerateDataKeyWithoutPlaintextCommandOutput) => void): void;
     /**
+     * @public
      * <p>Generates a hash-based message authentication code (HMAC) for a message using an HMAC KMS key and a MAC algorithm that the key supports.
      *       HMAC KMS keys and the HMAC algorithms that KMS uses conform to industry standards defined in <a href="https://datatracker.ietf.org/doc/html/rfc2104">RFC 2104</a>.</p>
      *          <p>You can use value that GenerateMac returns in the <a>VerifyMac</a> operation to
@@ -1694,6 +1718,7 @@ export declare class KMS extends KMSClient {
     generateMac(args: GenerateMacCommandInput, cb: (err: any, data?: GenerateMacCommandOutput) => void): void;
     generateMac(args: GenerateMacCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GenerateMacCommandOutput) => void): void;
     /**
+     * @public
      * <p>Returns a random byte string that is cryptographically secure.</p>
      *          <p>You must use the <code>NumberOfBytes</code> parameter to specify the length of the random
      *       byte string. There is no default value for string length.</p>
@@ -1714,6 +1739,7 @@ export declare class KMS extends KMSClient {
     generateRandom(args: GenerateRandomCommandInput, cb: (err: any, data?: GenerateRandomCommandOutput) => void): void;
     generateRandom(args: GenerateRandomCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GenerateRandomCommandOutput) => void): void;
     /**
+     * @public
      * <p>Gets a key policy attached to the specified KMS key.</p>
      *          <p>
      *             <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
@@ -1727,6 +1753,7 @@ export declare class KMS extends KMSClient {
     getKeyPolicy(args: GetKeyPolicyCommandInput, cb: (err: any, data?: GetKeyPolicyCommandOutput) => void): void;
     getKeyPolicy(args: GetKeyPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetKeyPolicyCommandOutput) => void): void;
     /**
+     * @public
      * <p>Gets a Boolean value that indicates whether <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotate-keys.html">automatic rotation of the key material</a> is
      *       enabled for the specified KMS key.</p>
      *          <p>When you enable automatic rotation for <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#customer-cmk">customer managed KMS keys</a>, KMS
@@ -1785,6 +1812,7 @@ export declare class KMS extends KMSClient {
     getKeyRotationStatus(args: GetKeyRotationStatusCommandInput, cb: (err: any, data?: GetKeyRotationStatusCommandOutput) => void): void;
     getKeyRotationStatus(args: GetKeyRotationStatusCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetKeyRotationStatusCommandOutput) => void): void;
     /**
+     * @public
      * <p>Returns the items you need to import key material into a symmetric encryption KMS key. For
      *       more information about importing key material into KMS, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html">Importing key material</a> in the
      *       <i>Key Management Service Developer Guide</i>.</p>
@@ -1824,6 +1852,7 @@ export declare class KMS extends KMSClient {
     getParametersForImport(args: GetParametersForImportCommandInput, cb: (err: any, data?: GetParametersForImportCommandOutput) => void): void;
     getParametersForImport(args: GetParametersForImportCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetParametersForImportCommandOutput) => void): void;
     /**
+     * @public
      * <p>Returns the public key of an asymmetric KMS key. Unlike the private key of a asymmetric
      *       KMS key, which never leaves KMS unencrypted, callers with <code>kms:GetPublicKey</code>
      *       permission can download the public key of an asymmetric KMS key. You can share the public key
@@ -1878,6 +1907,7 @@ export declare class KMS extends KMSClient {
     getPublicKey(args: GetPublicKeyCommandInput, cb: (err: any, data?: GetPublicKeyCommandOutput) => void): void;
     getPublicKey(args: GetPublicKeyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetPublicKeyCommandOutput) => void): void;
     /**
+     * @public
      * <p>Imports key material into an existing symmetric encryption KMS key that was created
      *       without key material. After you successfully import key material into a KMS key, you can
      *         <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html#reimport-key-material">reimport the same key material</a> into that KMS key, but you cannot import different
@@ -1947,6 +1977,7 @@ export declare class KMS extends KMSClient {
     importKeyMaterial(args: ImportKeyMaterialCommandInput, cb: (err: any, data?: ImportKeyMaterialCommandOutput) => void): void;
     importKeyMaterial(args: ImportKeyMaterialCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ImportKeyMaterialCommandOutput) => void): void;
     /**
+     * @public
      * <p>Gets a list of aliases in the caller's Amazon Web Services account and region. For more information
      *       about aliases, see <a>CreateAlias</a>.</p>
      *          <p>By default, the <code>ListAliases</code> operation returns all aliases in the account and
@@ -1993,6 +2024,7 @@ export declare class KMS extends KMSClient {
     listAliases(args: ListAliasesCommandInput, cb: (err: any, data?: ListAliasesCommandOutput) => void): void;
     listAliases(args: ListAliasesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListAliasesCommandOutput) => void): void;
     /**
+     * @public
      * <p>Gets a list of all grants for the specified KMS key. </p>
      *          <p>You must specify the KMS key in all requests. You can filter the grant list by grant ID or
      *       grantee principal.</p>
@@ -2043,6 +2075,7 @@ export declare class KMS extends KMSClient {
     listGrants(args: ListGrantsCommandInput, cb: (err: any, data?: ListGrantsCommandOutput) => void): void;
     listGrants(args: ListGrantsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListGrantsCommandOutput) => void): void;
     /**
+     * @public
      * <p>Gets the names of the key policies that are attached to a KMS key. This operation is
      *       designed to get policy names that you can use in a <a>GetKeyPolicy</a> operation.
      *       However, the only valid policy name is <code>default</code>. </p>
@@ -2070,6 +2103,7 @@ export declare class KMS extends KMSClient {
     listKeyPolicies(args: ListKeyPoliciesCommandInput, cb: (err: any, data?: ListKeyPoliciesCommandOutput) => void): void;
     listKeyPolicies(args: ListKeyPoliciesCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListKeyPoliciesCommandOutput) => void): void;
     /**
+     * @public
      * <p>Gets a list of all KMS keys in the caller's Amazon Web Services account and Region.</p>
      *          <p>
      *             <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
@@ -2105,6 +2139,7 @@ export declare class KMS extends KMSClient {
     listKeys(args: ListKeysCommandInput, cb: (err: any, data?: ListKeysCommandOutput) => void): void;
     listKeys(args: ListKeysCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListKeysCommandOutput) => void): void;
     /**
+     * @public
      * <p>Returns all tags on the specified KMS key.</p>
      *          <p>For general information about tags, including the format and syntax, see <a href="https://docs.aws.amazon.com/general/latest/gr/aws_tagging.html">Tagging Amazon Web Services resources</a> in
      *       the <i>Amazon Web Services General Reference</i>. For information about using
@@ -2144,6 +2179,7 @@ export declare class KMS extends KMSClient {
     listResourceTags(args: ListResourceTagsCommandInput, cb: (err: any, data?: ListResourceTagsCommandOutput) => void): void;
     listResourceTags(args: ListResourceTagsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListResourceTagsCommandOutput) => void): void;
     /**
+     * @public
      * <p>Returns information about all grants in the Amazon Web Services account and Region that have the
      *       specified retiring principal. </p>
      *          <p>You can specify any principal in your Amazon Web Services account. The grants that are returned include
@@ -2192,6 +2228,7 @@ export declare class KMS extends KMSClient {
     listRetirableGrants(args: ListRetirableGrantsCommandInput, cb: (err: any, data?: ListRetirableGrantsCommandOutput) => void): void;
     listRetirableGrants(args: ListRetirableGrantsCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ListRetirableGrantsCommandOutput) => void): void;
     /**
+     * @public
      * <p>Attaches a key policy to the specified KMS key. </p>
      *          <p>For more information about key policies, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-policies.html">Key Policies</a> in the <i>Key Management Service Developer Guide</i>.
      *       For help writing and formatting a JSON policy document, see the <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies.html">IAM JSON Policy Reference</a> in the <i>
@@ -2210,6 +2247,7 @@ export declare class KMS extends KMSClient {
     putKeyPolicy(args: PutKeyPolicyCommandInput, cb: (err: any, data?: PutKeyPolicyCommandOutput) => void): void;
     putKeyPolicy(args: PutKeyPolicyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: PutKeyPolicyCommandOutput) => void): void;
     /**
+     * @public
      * <p>Decrypts ciphertext and then reencrypts it entirely within KMS. You can use this
      *       operation to change the KMS key under which data is encrypted, such as when you <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotate-keys.html#rotate-keys-manually">manually
      *         rotate</a> a KMS key or change the KMS key that protects a ciphertext. You can also use
@@ -2310,6 +2348,7 @@ export declare class KMS extends KMSClient {
     reEncrypt(args: ReEncryptCommandInput, cb: (err: any, data?: ReEncryptCommandOutput) => void): void;
     reEncrypt(args: ReEncryptCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ReEncryptCommandOutput) => void): void;
     /**
+     * @public
      * <p>Replicates a multi-Region key into the specified Region. This operation creates a
      *       multi-Region replica key based on a multi-Region primary key in a different Region of the same
      *       Amazon Web Services partition. You can create multiple replicas of a primary key, but each must be in a
@@ -2398,6 +2437,7 @@ export declare class KMS extends KMSClient {
     replicateKey(args: ReplicateKeyCommandInput, cb: (err: any, data?: ReplicateKeyCommandOutput) => void): void;
     replicateKey(args: ReplicateKeyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ReplicateKeyCommandOutput) => void): void;
     /**
+     * @public
      * <p>Deletes a grant. Typically, you retire a grant when you no longer need its permissions. To
      *       identify the grant to retire, use a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/grants.html#grant_token">grant token</a>, or both the grant ID and a
      *       key identifier (key ID or key ARN) of the KMS key. The <a>CreateGrant</a> operation
@@ -2449,6 +2489,7 @@ export declare class KMS extends KMSClient {
     retireGrant(args: RetireGrantCommandInput, cb: (err: any, data?: RetireGrantCommandOutput) => void): void;
     retireGrant(args: RetireGrantCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: RetireGrantCommandOutput) => void): void;
     /**
+     * @public
      * <p>Deletes the specified grant. You revoke a grant to terminate the permissions that the
      *       grant allows. For more information, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/managing-grants.html#grant-delete">Retiring and revoking grants</a> in
      *       the <i>
@@ -2498,6 +2539,7 @@ export declare class KMS extends KMSClient {
     revokeGrant(args: RevokeGrantCommandInput, cb: (err: any, data?: RevokeGrantCommandOutput) => void): void;
     revokeGrant(args: RevokeGrantCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: RevokeGrantCommandOutput) => void): void;
     /**
+     * @public
      * <p>Schedules the deletion of a KMS key. By default, KMS applies a waiting period of 30
      *       days, but you can specify a waiting period of 7-30 days. When this operation is successful,
      *       the key state of the KMS key changes to <code>PendingDeletion</code> and the key can't be used
@@ -2559,6 +2601,7 @@ export declare class KMS extends KMSClient {
     scheduleKeyDeletion(args: ScheduleKeyDeletionCommandInput, cb: (err: any, data?: ScheduleKeyDeletionCommandOutput) => void): void;
     scheduleKeyDeletion(args: ScheduleKeyDeletionCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: ScheduleKeyDeletionCommandOutput) => void): void;
     /**
+     * @public
      * <p>Creates a <a href="https://en.wikipedia.org/wiki/Digital_signature">digital
      *         signature</a> for a message or message digest by using the private key in an asymmetric
      *       signing KMS key. To verify the signature, use the <a>Verify</a> operation, or use
@@ -2616,6 +2659,7 @@ export declare class KMS extends KMSClient {
     sign(args: SignCommandInput, cb: (err: any, data?: SignCommandOutput) => void): void;
     sign(args: SignCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: SignCommandOutput) => void): void;
     /**
+     * @public
      * <p>Adds or edits tags on a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#customer-cmk">customer managed key</a>.</p>
      *          <note>
      *             <p>Tagging or untagging a KMS key can allow or deny permission to the KMS key. For details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/abac.html">ABAC for KMS</a> in the <i>Key Management Service Developer Guide</i>.</p>
@@ -2668,6 +2712,7 @@ export declare class KMS extends KMSClient {
     tagResource(args: TagResourceCommandInput, cb: (err: any, data?: TagResourceCommandOutput) => void): void;
     tagResource(args: TagResourceCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: TagResourceCommandOutput) => void): void;
     /**
+     * @public
      * <p>Deletes tags from a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#customer-cmk">customer managed key</a>. To delete a tag,
      *       specify the tag key and the KMS key.</p>
      *          <note>
@@ -2715,6 +2760,7 @@ export declare class KMS extends KMSClient {
     untagResource(args: UntagResourceCommandInput, cb: (err: any, data?: UntagResourceCommandOutput) => void): void;
     untagResource(args: UntagResourceCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UntagResourceCommandOutput) => void): void;
     /**
+     * @public
      * <p>Associates an existing KMS alias with a different KMS key. Each alias is associated with
      *       only one KMS key at a time, although a KMS key can have multiple aliases. The alias and the
      *       KMS key must be in the same Amazon Web Services account and Region.</p>
@@ -2783,6 +2829,7 @@ export declare class KMS extends KMSClient {
     updateAlias(args: UpdateAliasCommandInput, cb: (err: any, data?: UpdateAliasCommandOutput) => void): void;
     updateAlias(args: UpdateAliasCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateAliasCommandOutput) => void): void;
     /**
+     * @public
      * <p>Changes the properties of a custom key store. You can use this operation to change the
      *       properties of an CloudHSM key store or an external key store.</p>
      *          <p>Use the required <code>CustomKeyStoreId</code> parameter to identify the custom key store.
@@ -2881,6 +2928,7 @@ export declare class KMS extends KMSClient {
     updateCustomKeyStore(args: UpdateCustomKeyStoreCommandInput, cb: (err: any, data?: UpdateCustomKeyStoreCommandOutput) => void): void;
     updateCustomKeyStore(args: UpdateCustomKeyStoreCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateCustomKeyStoreCommandOutput) => void): void;
     /**
+     * @public
      * <p>Updates the description of a KMS key. To see the description of a KMS key, use <a>DescribeKey</a>. </p>
      *          <p>The KMS key that you use for this operation must be in a compatible key state. For
      * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key states of KMS keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
@@ -2908,6 +2956,7 @@ export declare class KMS extends KMSClient {
     updateKeyDescription(args: UpdateKeyDescriptionCommandInput, cb: (err: any, data?: UpdateKeyDescriptionCommandOutput) => void): void;
     updateKeyDescription(args: UpdateKeyDescriptionCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdateKeyDescriptionCommandOutput) => void): void;
     /**
+     * @public
      * <p>Changes the primary key of a multi-Region key. </p>
      *          <p>This operation changes the replica key in the specified Region to a primary key and
      *       changes the former primary key to a replica key. For example, suppose you have a primary key
@@ -2978,6 +3027,7 @@ export declare class KMS extends KMSClient {
     updatePrimaryRegion(args: UpdatePrimaryRegionCommandInput, cb: (err: any, data?: UpdatePrimaryRegionCommandOutput) => void): void;
     updatePrimaryRegion(args: UpdatePrimaryRegionCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: UpdatePrimaryRegionCommandOutput) => void): void;
     /**
+     * @public
      * <p>Verifies a digital signature that was generated by the <a>Sign</a> operation. </p>
      *          <p></p>
      *          <p>Verification confirms that an authorized user signed the message with the specified KMS
@@ -3019,6 +3069,7 @@ export declare class KMS extends KMSClient {
     verify(args: VerifyCommandInput, cb: (err: any, data?: VerifyCommandOutput) => void): void;
     verify(args: VerifyCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: VerifyCommandOutput) => void): void;
     /**
+     * @public
      * <p>Verifies the hash-based message authentication code (HMAC) for a specified message, HMAC
      *       KMS key, and MAC algorithm. To verify the HMAC, <code>VerifyMac</code> computes an HMAC using
      *       the message, HMAC KMS key, and MAC algorithm that you specify, and compares the computed HMAC

package/dist-types/KMSClient.d.ts CHANGED Viewed

@@ -58,15 +58,24 @@ import { UpdatePrimaryRegionCommandInput, UpdatePrimaryRegionCommandOutput } fro
 import { VerifyCommandInput, VerifyCommandOutput } from "./commands/VerifyCommand";
 import { VerifyMacCommandInput, VerifyMacCommandOutput } from "./commands/VerifyMacCommand";
 import { ClientInputEndpointParameters, ClientResolvedEndpointParameters, EndpointParameters } from "./endpoint/EndpointParameters";
+/**
+ * @public
+ */
 export type ServiceInputTypes = CancelKeyDeletionCommandInput | ConnectCustomKeyStoreCommandInput | CreateAliasCommandInput | CreateCustomKeyStoreCommandInput | CreateGrantCommandInput | CreateKeyCommandInput | DecryptCommandInput | DeleteAliasCommandInput | DeleteCustomKeyStoreCommandInput | DeleteImportedKeyMaterialCommandInput | DescribeCustomKeyStoresCommandInput | DescribeKeyCommandInput | DisableKeyCommandInput | DisableKeyRotationCommandInput | DisconnectCustomKeyStoreCommandInput | EnableKeyCommandInput | EnableKeyRotationCommandInput | EncryptCommandInput | GenerateDataKeyCommandInput | GenerateDataKeyPairCommandInput | GenerateDataKeyPairWithoutPlaintextCommandInput | GenerateDataKeyWithoutPlaintextCommandInput | GenerateMacCommandInput | GenerateRandomCommandInput | GetKeyPolicyCommandInput | GetKeyRotationStatusCommandInput | GetParametersForImportCommandInput | GetPublicKeyCommandInput | ImportKeyMaterialCommandInput | ListAliasesCommandInput | ListGrantsCommandInput | ListKeyPoliciesCommandInput | ListKeysCommandInput | ListResourceTagsCommandInput | ListRetirableGrantsCommandInput | PutKeyPolicyCommandInput | ReEncryptCommandInput | ReplicateKeyCommandInput | RetireGrantCommandInput | RevokeGrantCommandInput | ScheduleKeyDeletionCommandInput | SignCommandInput | TagResourceCommandInput | UntagResourceCommandInput | UpdateAliasCommandInput | UpdateCustomKeyStoreCommandInput | UpdateKeyDescriptionCommandInput | UpdatePrimaryRegionCommandInput | VerifyCommandInput | VerifyMacCommandInput;
+/**
+ * @public
+ */
 export type ServiceOutputTypes = CancelKeyDeletionCommandOutput | ConnectCustomKeyStoreCommandOutput | CreateAliasCommandOutput | CreateCustomKeyStoreCommandOutput | CreateGrantCommandOutput | CreateKeyCommandOutput | DecryptCommandOutput | DeleteAliasCommandOutput | DeleteCustomKeyStoreCommandOutput | DeleteImportedKeyMaterialCommandOutput | DescribeCustomKeyStoresCommandOutput | DescribeKeyCommandOutput | DisableKeyCommandOutput | DisableKeyRotationCommandOutput | DisconnectCustomKeyStoreCommandOutput | EnableKeyCommandOutput | EnableKeyRotationCommandOutput | EncryptCommandOutput | GenerateDataKeyCommandOutput | GenerateDataKeyPairCommandOutput | GenerateDataKeyPairWithoutPlaintextCommandOutput | GenerateDataKeyWithoutPlaintextCommandOutput | GenerateMacCommandOutput | GenerateRandomCommandOutput | GetKeyPolicyCommandOutput | GetKeyRotationStatusCommandOutput | GetParametersForImportCommandOutput | GetPublicKeyCommandOutput | ImportKeyMaterialCommandOutput | ListAliasesCommandOutput | ListGrantsCommandOutput | ListKeyPoliciesCommandOutput | ListKeysCommandOutput | ListResourceTagsCommandOutput | ListRetirableGrantsCommandOutput | PutKeyPolicyCommandOutput | ReEncryptCommandOutput | ReplicateKeyCommandOutput | RetireGrantCommandOutput | RevokeGrantCommandOutput | ScheduleKeyDeletionCommandOutput | SignCommandOutput | TagResourceCommandOutput | UntagResourceCommandOutput | UpdateAliasCommandOutput | UpdateCustomKeyStoreCommandOutput | UpdateKeyDescriptionCommandOutput | UpdatePrimaryRegionCommandOutput | VerifyCommandOutput | VerifyMacCommandOutput;
+/**
+ * @public
+ */
 export interface ClientDefaults extends Partial<__SmithyResolvedConfiguration<__HttpHandlerOptions>> {
     /**
      * The HTTP handler to use. Fetch in browser and Https in Nodejs.
      */
     requestHandler?: __HttpHandler;
     /**
-     * A constructor for a class implementing the {@link __Checksum} interface
+     * A constructor for a class implementing the {@link @aws-sdk/types#ChecksumConstructor} interface
      * that computes the SHA-256 HMAC or checksum of a string or binary buffer.
      * @internal
      */
@@ -156,23 +165,34 @@ export interface ClientDefaults extends Partial<__SmithyResolvedConfiguration<__
      */
     logger?: __Logger;
     /**
-     * The {@link __DefaultsMode} that will be used to determine how certain default configuration options are resolved in the SDK.
+     * The {@link @aws-sdk/smithy-client#DefaultsMode} that will be used to determine how certain default configuration options are resolved in the SDK.
      */
     defaultsMode?: __DefaultsMode | __Provider<__DefaultsMode>;
 }
+/**
+ * @public
+ */
 type KMSClientConfigType = Partial<__SmithyConfiguration<__HttpHandlerOptions>> & ClientDefaults & RegionInputConfig & EndpointInputConfig<EndpointParameters> & RetryInputConfig & HostHeaderInputConfig & AwsAuthInputConfig & UserAgentInputConfig & ClientInputEndpointParameters;
 /**
- * The configuration interface of KMSClient class constructor that set the region, credentials and other options.
+ * @public
+ *
+ *  The configuration interface of KMSClient class constructor that set the region, credentials and other options.
  */
 export interface KMSClientConfig extends KMSClientConfigType {
 }
+/**
+ * @public
+ */
 type KMSClientResolvedConfigType = __SmithyResolvedConfiguration<__HttpHandlerOptions> & Required<ClientDefaults> & RegionResolvedConfig & EndpointResolvedConfig<EndpointParameters> & RetryResolvedConfig & HostHeaderResolvedConfig & AwsAuthResolvedConfig & UserAgentResolvedConfig & ClientResolvedEndpointParameters;
 /**
- * The resolved configuration interface of KMSClient class. This is resolved and normalized from the {@link KMSClientConfig | constructor configuration interface}.
+ * @public
+ *
+ *  The resolved configuration interface of KMSClient class. This is resolved and normalized from the {@link KMSClientConfig | constructor configuration interface}.
  */
 export interface KMSClientResolvedConfig extends KMSClientResolvedConfigType {
 }
 /**
+ * @public
  * <fullname>Key Management Service</fullname>
  *          <p>Key Management Service (KMS) is an encryption and key management web service. This guide describes
  *       the KMS operations that you can call programmatically. For general information about KMS,

package/dist-types/commands/CancelKeyDeletionCommand.d.ts CHANGED Viewed

@@ -4,16 +4,21 @@ import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { CancelKeyDeletionRequest, CancelKeyDeletionResponse } from "../models/models_0";
 /**
+ * @public
+ *
  * The input for {@link CancelKeyDeletionCommand}.
  */
 export interface CancelKeyDeletionCommandInput extends CancelKeyDeletionRequest {
 }
 /**
+ * @public
+ *
  * The output of {@link CancelKeyDeletionCommand}.
  */
 export interface CancelKeyDeletionCommandOutput extends CancelKeyDeletionResponse, __MetadataBearer {
 }
 /**
+ * @public
  * <p>Cancels the deletion of a KMS key. When this operation succeeds, the key state of the KMS
  *       key is <code>Disabled</code>. To enable the KMS key, use <a>EnableKey</a>. </p>
  *          <p>For more information about scheduling and canceling deletion of a KMS key, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/deleting-keys.html">Deleting KMS keys</a> in the
@@ -37,6 +42,8 @@ export interface CancelKeyDeletionCommandOutput extends CancelKeyDeletionRespons
  * const response = await client.send(command);
  * ```
  *
+ * @param CancelKeyDeletionCommandInput - {@link CancelKeyDeletionCommandInput}
+ * @returns {@link CancelKeyDeletionCommandOutput}
  * @see {@link CancelKeyDeletionCommandInput} for command's `input` shape.
  * @see {@link CancelKeyDeletionCommandOutput} for command's `response` shape.
  * @see {@link KMSClientResolvedConfig | config} for KMSClient's `config` shape.
@@ -96,11 +103,20 @@ export interface CancelKeyDeletionCommandOutput extends CancelKeyDeletionRespons
 export declare class CancelKeyDeletionCommand extends $Command<CancelKeyDeletionCommandInput, CancelKeyDeletionCommandOutput, KMSClientResolvedConfig> {
     readonly input: CancelKeyDeletionCommandInput;
     static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
     constructor(input: CancelKeyDeletionCommandInput);
     /**
      * @internal
      */
     resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: KMSClientResolvedConfig, options?: __HttpHandlerOptions): Handler<CancelKeyDeletionCommandInput, CancelKeyDeletionCommandOutput>;
+    /**
+     * @internal
+     */
     private serialize;
+    /**
+     * @internal
+     */
     private deserialize;
 }

package/dist-types/commands/ConnectCustomKeyStoreCommand.d.ts CHANGED Viewed

@@ -4,16 +4,21 @@ import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { ConnectCustomKeyStoreRequest, ConnectCustomKeyStoreResponse } from "../models/models_0";
 /**
+ * @public
+ *
  * The input for {@link ConnectCustomKeyStoreCommand}.
  */
 export interface ConnectCustomKeyStoreCommandInput extends ConnectCustomKeyStoreRequest {
 }
 /**
+ * @public
+ *
  * The output of {@link ConnectCustomKeyStoreCommand}.
  */
 export interface ConnectCustomKeyStoreCommandOutput extends ConnectCustomKeyStoreResponse, __MetadataBearer {
 }
 /**
+ * @public
  * <p>Connects or reconnects a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/custom-key-store-overview.html">custom key store</a> to its backing key store. For an CloudHSM key
  *       store, <code>ConnectCustomKeyStore</code> connects the key store to its associated CloudHSM
  *       cluster. For an external key store, <code>ConnectCustomKeyStore</code> connects the key store
@@ -111,6 +116,8 @@ export interface ConnectCustomKeyStoreCommandOutput extends ConnectCustomKeyStor
  * const response = await client.send(command);
  * ```
  *
+ * @param ConnectCustomKeyStoreCommandInput - {@link ConnectCustomKeyStoreCommandInput}
+ * @returns {@link ConnectCustomKeyStoreCommandOutput}
  * @see {@link ConnectCustomKeyStoreCommandInput} for command's `input` shape.
  * @see {@link ConnectCustomKeyStoreCommandOutput} for command's `response` shape.
  * @see {@link KMSClientResolvedConfig | config} for KMSClient's `config` shape.
@@ -215,11 +222,20 @@ export interface ConnectCustomKeyStoreCommandOutput extends ConnectCustomKeyStor
 export declare class ConnectCustomKeyStoreCommand extends $Command<ConnectCustomKeyStoreCommandInput, ConnectCustomKeyStoreCommandOutput, KMSClientResolvedConfig> {
     readonly input: ConnectCustomKeyStoreCommandInput;
     static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
     constructor(input: ConnectCustomKeyStoreCommandInput);
     /**
      * @internal
      */
     resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: KMSClientResolvedConfig, options?: __HttpHandlerOptions): Handler<ConnectCustomKeyStoreCommandInput, ConnectCustomKeyStoreCommandOutput>;
+    /**
+     * @internal
+     */
     private serialize;
+    /**
+     * @internal
+     */
     private deserialize;
 }

package/dist-types/commands/CreateAliasCommand.d.ts CHANGED Viewed

@@ -4,16 +4,21 @@ import { Handler, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as
 import { KMSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../KMSClient";
 import { CreateAliasRequest } from "../models/models_0";
 /**
+ * @public
+ *
  * The input for {@link CreateAliasCommand}.
  */
 export interface CreateAliasCommandInput extends CreateAliasRequest {
 }
 /**
+ * @public
+ *
  * The output of {@link CreateAliasCommand}.
  */
 export interface CreateAliasCommandOutput extends __MetadataBearer {
 }
 /**
+ * @public
  * <p>Creates a friendly name for a KMS key. </p>
  *          <note>
  *             <p>Adding, deleting, or updating an alias can allow or deny permission to the KMS key. For details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/abac.html">ABAC for KMS</a> in the <i>Key Management Service Developer Guide</i>.</p>
@@ -81,6 +86,8 @@ export interface CreateAliasCommandOutput extends __MetadataBearer {
  * const response = await client.send(command);
  * ```
  *
+ * @param CreateAliasCommandInput - {@link CreateAliasCommandInput}
+ * @returns {@link CreateAliasCommandOutput}
  * @see {@link CreateAliasCommandInput} for command's `input` shape.
  * @see {@link CreateAliasCommandOutput} for command's `response` shape.
  * @see {@link KMSClientResolvedConfig | config} for KMSClient's `config` shape.
@@ -143,11 +150,20 @@ export interface CreateAliasCommandOutput extends __MetadataBearer {
 export declare class CreateAliasCommand extends $Command<CreateAliasCommandInput, CreateAliasCommandOutput, KMSClientResolvedConfig> {
     readonly input: CreateAliasCommandInput;
     static getEndpointParameterInstructions(): EndpointParameterInstructions;
+    /**
+     * @public
+     */
     constructor(input: CreateAliasCommandInput);
     /**
      * @internal
      */
     resolveMiddleware(clientStack: MiddlewareStack<ServiceInputTypes, ServiceOutputTypes>, configuration: KMSClientResolvedConfig, options?: __HttpHandlerOptions): Handler<CreateAliasCommandInput, CreateAliasCommandOutput>;
+    /**
+     * @internal
+     */
     private serialize;
+    /**
+     * @internal
+     */
     private deserialize;
 }