@aws-sdk/client-kms 3.35.0 → 3.36.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (421) hide show
  1. package/CHANGELOG.md +14 -0
  2. package/README.md +8 -7
  3. package/dist-cjs/KMS.js +8 -8
  4. package/dist-cjs/KMSClient.js +8 -8
  5. package/dist-cjs/commands/CancelKeyDeletionCommand.js +6 -5
  6. package/dist-cjs/commands/ConnectCustomKeyStoreCommand.js +3 -4
  7. package/dist-cjs/commands/CreateAliasCommand.js +11 -8
  8. package/dist-cjs/commands/CreateCustomKeyStoreCommand.js +0 -1
  9. package/dist-cjs/commands/CreateGrantCommand.js +14 -12
  10. package/dist-cjs/commands/CreateKeyCommand.js +16 -15
  11. package/dist-cjs/commands/DecryptCommand.js +24 -22
  12. package/dist-cjs/commands/DeleteAliasCommand.js +11 -8
  13. package/dist-cjs/commands/DeleteCustomKeyStoreCommand.js +10 -12
  14. package/dist-cjs/commands/DeleteImportedKeyMaterialCommand.js +5 -7
  15. package/dist-cjs/commands/DescribeCustomKeyStoresCommand.js +4 -5
  16. package/dist-cjs/commands/DescribeKeyCommand.js +12 -11
  17. package/dist-cjs/commands/DisableKeyCommand.js +5 -5
  18. package/dist-cjs/commands/DisableKeyRotationCommand.js +2 -2
  19. package/dist-cjs/commands/DisconnectCustomKeyStoreCommand.js +6 -5
  20. package/dist-cjs/commands/EnableKeyCommand.js +4 -3
  21. package/dist-cjs/commands/EnableKeyRotationCommand.js +2 -2
  22. package/dist-cjs/commands/EncryptCommand.js +14 -13
  23. package/dist-cjs/commands/GenerateDataKeyCommand.js +15 -13
  24. package/dist-cjs/commands/GenerateDataKeyPairCommand.js +15 -14
  25. package/dist-cjs/commands/GenerateDataKeyPairWithoutPlaintextCommand.js +16 -14
  26. package/dist-cjs/commands/GenerateDataKeyWithoutPlaintextCommand.js +11 -10
  27. package/dist-cjs/commands/GenerateRandomCommand.js +2 -2
  28. package/dist-cjs/commands/GetKeyPolicyCommand.js +0 -1
  29. package/dist-cjs/commands/GetKeyRotationStatusCommand.js +2 -2
  30. package/dist-cjs/commands/GetParametersForImportCommand.js +7 -9
  31. package/dist-cjs/commands/GetPublicKeyCommand.js +7 -6
  32. package/dist-cjs/commands/ImportKeyMaterialCommand.js +13 -14
  33. package/dist-cjs/commands/ListAliasesCommand.js +13 -11
  34. package/dist-cjs/commands/ListGrantsCommand.js +2 -3
  35. package/dist-cjs/commands/ListKeyPoliciesCommand.js +3 -4
  36. package/dist-cjs/commands/ListKeysCommand.js +1 -3
  37. package/dist-cjs/commands/ListResourceTagsCommand.js +0 -1
  38. package/dist-cjs/commands/ListRetirableGrantsCommand.js +7 -7
  39. package/dist-cjs/commands/PutKeyPolicyCommand.js +0 -1
  40. package/dist-cjs/commands/ReEncryptCommand.js +33 -28
  41. package/dist-cjs/commands/ReplicateKeyCommand.js +5 -6
  42. package/dist-cjs/commands/RetireGrantCommand.js +7 -6
  43. package/dist-cjs/commands/RevokeGrantCommand.js +1 -3
  44. package/dist-cjs/commands/ScheduleKeyDeletionCommand.js +19 -16
  45. package/dist-cjs/commands/SignCommand.js +10 -10
  46. package/dist-cjs/commands/TagResourceCommand.js +6 -5
  47. package/dist-cjs/commands/UntagResourceCommand.js +3 -4
  48. package/dist-cjs/commands/UpdateAliasCommand.js +15 -12
  49. package/dist-cjs/commands/UpdateCustomKeyStoreCommand.js +17 -18
  50. package/dist-cjs/commands/UpdateKeyDescriptionCommand.js +3 -4
  51. package/dist-cjs/commands/UpdatePrimaryRegionCommand.js +1 -2
  52. package/dist-cjs/commands/VerifyCommand.js +5 -6
  53. package/dist-cjs/endpoints.js +0 -1
  54. package/dist-cjs/index.js +0 -1
  55. package/dist-cjs/models/index.js +0 -1
  56. package/dist-cjs/models/models_0.js +0 -1
  57. package/dist-cjs/pagination/Interfaces.js +0 -1
  58. package/dist-cjs/pagination/ListAliasesPaginator.js +0 -1
  59. package/dist-cjs/pagination/ListGrantsPaginator.js +0 -1
  60. package/dist-cjs/pagination/ListKeyPoliciesPaginator.js +0 -1
  61. package/dist-cjs/pagination/ListKeysPaginator.js +0 -1
  62. package/dist-cjs/protocols/Aws_json1_1.js +0 -1
  63. package/dist-cjs/runtimeConfig.browser.js +2 -3
  64. package/dist-cjs/runtimeConfig.js +3 -4
  65. package/dist-cjs/runtimeConfig.native.js +0 -1
  66. package/dist-cjs/runtimeConfig.shared.js +0 -1
  67. package/dist-es/KMS.js +0 -1
  68. package/dist-es/KMSClient.js +0 -1
  69. package/dist-es/commands/CancelKeyDeletionCommand.js +0 -1
  70. package/dist-es/commands/ConnectCustomKeyStoreCommand.js +0 -1
  71. package/dist-es/commands/CreateAliasCommand.js +0 -1
  72. package/dist-es/commands/CreateCustomKeyStoreCommand.js +0 -1
  73. package/dist-es/commands/CreateGrantCommand.js +0 -1
  74. package/dist-es/commands/CreateKeyCommand.js +0 -1
  75. package/dist-es/commands/DecryptCommand.js +0 -1
  76. package/dist-es/commands/DeleteAliasCommand.js +0 -1
  77. package/dist-es/commands/DeleteCustomKeyStoreCommand.js +0 -1
  78. package/dist-es/commands/DeleteImportedKeyMaterialCommand.js +0 -1
  79. package/dist-es/commands/DescribeCustomKeyStoresCommand.js +0 -1
  80. package/dist-es/commands/DescribeKeyCommand.js +0 -1
  81. package/dist-es/commands/DisableKeyCommand.js +0 -1
  82. package/dist-es/commands/DisableKeyRotationCommand.js +0 -1
  83. package/dist-es/commands/DisconnectCustomKeyStoreCommand.js +0 -1
  84. package/dist-es/commands/EnableKeyCommand.js +0 -1
  85. package/dist-es/commands/EnableKeyRotationCommand.js +0 -1
  86. package/dist-es/commands/EncryptCommand.js +0 -1
  87. package/dist-es/commands/GenerateDataKeyCommand.js +0 -1
  88. package/dist-es/commands/GenerateDataKeyPairCommand.js +0 -1
  89. package/dist-es/commands/GenerateDataKeyPairWithoutPlaintextCommand.js +0 -1
  90. package/dist-es/commands/GenerateDataKeyWithoutPlaintextCommand.js +0 -1
  91. package/dist-es/commands/GenerateRandomCommand.js +0 -1
  92. package/dist-es/commands/GetKeyPolicyCommand.js +0 -1
  93. package/dist-es/commands/GetKeyRotationStatusCommand.js +0 -1
  94. package/dist-es/commands/GetParametersForImportCommand.js +0 -1
  95. package/dist-es/commands/GetPublicKeyCommand.js +0 -1
  96. package/dist-es/commands/ImportKeyMaterialCommand.js +0 -1
  97. package/dist-es/commands/ListAliasesCommand.js +0 -1
  98. package/dist-es/commands/ListGrantsCommand.js +0 -1
  99. package/dist-es/commands/ListKeyPoliciesCommand.js +0 -1
  100. package/dist-es/commands/ListKeysCommand.js +0 -1
  101. package/dist-es/commands/ListResourceTagsCommand.js +0 -1
  102. package/dist-es/commands/ListRetirableGrantsCommand.js +0 -1
  103. package/dist-es/commands/PutKeyPolicyCommand.js +0 -1
  104. package/dist-es/commands/ReEncryptCommand.js +0 -1
  105. package/dist-es/commands/ReplicateKeyCommand.js +0 -1
  106. package/dist-es/commands/RetireGrantCommand.js +0 -1
  107. package/dist-es/commands/RevokeGrantCommand.js +0 -1
  108. package/dist-es/commands/ScheduleKeyDeletionCommand.js +0 -1
  109. package/dist-es/commands/SignCommand.js +0 -1
  110. package/dist-es/commands/TagResourceCommand.js +0 -1
  111. package/dist-es/commands/UntagResourceCommand.js +0 -1
  112. package/dist-es/commands/UpdateAliasCommand.js +0 -1
  113. package/dist-es/commands/UpdateCustomKeyStoreCommand.js +0 -1
  114. package/dist-es/commands/UpdateKeyDescriptionCommand.js +0 -1
  115. package/dist-es/commands/UpdatePrimaryRegionCommand.js +0 -1
  116. package/dist-es/commands/VerifyCommand.js +0 -1
  117. package/dist-es/endpoints.js +0 -1
  118. package/dist-es/index.js +0 -1
  119. package/dist-es/models/index.js +0 -1
  120. package/dist-es/models/models_0.js +0 -1
  121. package/dist-es/pagination/Interfaces.js +0 -1
  122. package/dist-es/pagination/ListAliasesPaginator.js +0 -1
  123. package/dist-es/pagination/ListGrantsPaginator.js +0 -1
  124. package/dist-es/pagination/ListKeyPoliciesPaginator.js +0 -1
  125. package/dist-es/pagination/ListKeysPaginator.js +0 -1
  126. package/dist-es/protocols/Aws_json1_1.js +0 -1
  127. package/dist-es/runtimeConfig.browser.js +1 -2
  128. package/dist-es/runtimeConfig.js +2 -3
  129. package/dist-es/runtimeConfig.native.js +0 -1
  130. package/dist-es/runtimeConfig.shared.js +0 -1
  131. package/dist-types/KMS.d.ts +396 -334
  132. package/dist-types/KMSClient.d.ts +8 -7
  133. package/dist-types/commands/CancelKeyDeletionCommand.d.ts +6 -4
  134. package/dist-types/commands/ConnectCustomKeyStoreCommand.d.ts +3 -3
  135. package/dist-types/commands/CreateAliasCommand.d.ts +11 -7
  136. package/dist-types/commands/CreateGrantCommand.d.ts +14 -11
  137. package/dist-types/commands/CreateKeyCommand.d.ts +16 -14
  138. package/dist-types/commands/DecryptCommand.d.ts +24 -21
  139. package/dist-types/commands/DeleteAliasCommand.d.ts +11 -7
  140. package/dist-types/commands/DeleteCustomKeyStoreCommand.d.ts +10 -11
  141. package/dist-types/commands/DeleteImportedKeyMaterialCommand.d.ts +5 -6
  142. package/dist-types/commands/DescribeCustomKeyStoresCommand.d.ts +4 -4
  143. package/dist-types/commands/DescribeKeyCommand.d.ts +12 -10
  144. package/dist-types/commands/DisableKeyCommand.d.ts +5 -4
  145. package/dist-types/commands/DisableKeyRotationCommand.d.ts +2 -1
  146. package/dist-types/commands/DisconnectCustomKeyStoreCommand.d.ts +6 -4
  147. package/dist-types/commands/EnableKeyCommand.d.ts +4 -2
  148. package/dist-types/commands/EnableKeyRotationCommand.d.ts +2 -1
  149. package/dist-types/commands/EncryptCommand.d.ts +14 -12
  150. package/dist-types/commands/GenerateDataKeyCommand.d.ts +15 -12
  151. package/dist-types/commands/GenerateDataKeyPairCommand.d.ts +15 -13
  152. package/dist-types/commands/GenerateDataKeyPairWithoutPlaintextCommand.d.ts +16 -13
  153. package/dist-types/commands/GenerateDataKeyWithoutPlaintextCommand.d.ts +11 -9
  154. package/dist-types/commands/GenerateRandomCommand.d.ts +2 -1
  155. package/dist-types/commands/GetKeyRotationStatusCommand.d.ts +2 -1
  156. package/dist-types/commands/GetParametersForImportCommand.d.ts +7 -8
  157. package/dist-types/commands/GetPublicKeyCommand.d.ts +7 -5
  158. package/dist-types/commands/ImportKeyMaterialCommand.d.ts +13 -13
  159. package/dist-types/commands/ListAliasesCommand.d.ts +13 -10
  160. package/dist-types/commands/ListGrantsCommand.d.ts +2 -2
  161. package/dist-types/commands/ListKeyPoliciesCommand.d.ts +3 -3
  162. package/dist-types/commands/ListKeysCommand.d.ts +1 -2
  163. package/dist-types/commands/ListRetirableGrantsCommand.d.ts +7 -6
  164. package/dist-types/commands/ReEncryptCommand.d.ts +33 -27
  165. package/dist-types/commands/ReplicateKeyCommand.d.ts +5 -5
  166. package/dist-types/commands/RetireGrantCommand.d.ts +7 -5
  167. package/dist-types/commands/RevokeGrantCommand.d.ts +1 -2
  168. package/dist-types/commands/ScheduleKeyDeletionCommand.d.ts +19 -15
  169. package/dist-types/commands/SignCommand.d.ts +10 -9
  170. package/dist-types/commands/TagResourceCommand.d.ts +6 -4
  171. package/dist-types/commands/UntagResourceCommand.d.ts +3 -3
  172. package/dist-types/commands/UpdateAliasCommand.d.ts +15 -11
  173. package/dist-types/commands/UpdateCustomKeyStoreCommand.d.ts +17 -17
  174. package/dist-types/commands/UpdateKeyDescriptionCommand.d.ts +3 -3
  175. package/dist-types/commands/UpdatePrimaryRegionCommand.d.ts +1 -1
  176. package/dist-types/commands/VerifyCommand.d.ts +5 -5
  177. package/dist-types/models/models_0.d.ts +296 -249
  178. package/dist-types/ts3.4/KMS.d.ts +396 -334
  179. package/dist-types/ts3.4/KMSClient.d.ts +8 -7
  180. package/dist-types/ts3.4/commands/CancelKeyDeletionCommand.d.ts +6 -4
  181. package/dist-types/ts3.4/commands/ConnectCustomKeyStoreCommand.d.ts +3 -3
  182. package/dist-types/ts3.4/commands/CreateAliasCommand.d.ts +11 -7
  183. package/dist-types/ts3.4/commands/CreateGrantCommand.d.ts +14 -11
  184. package/dist-types/ts3.4/commands/CreateKeyCommand.d.ts +16 -14
  185. package/dist-types/ts3.4/commands/DecryptCommand.d.ts +24 -21
  186. package/dist-types/ts3.4/commands/DeleteAliasCommand.d.ts +11 -7
  187. package/dist-types/ts3.4/commands/DeleteCustomKeyStoreCommand.d.ts +10 -11
  188. package/dist-types/ts3.4/commands/DeleteImportedKeyMaterialCommand.d.ts +5 -6
  189. package/dist-types/ts3.4/commands/DescribeCustomKeyStoresCommand.d.ts +4 -4
  190. package/dist-types/ts3.4/commands/DescribeKeyCommand.d.ts +12 -10
  191. package/dist-types/ts3.4/commands/DisableKeyCommand.d.ts +5 -4
  192. package/dist-types/ts3.4/commands/DisableKeyRotationCommand.d.ts +2 -1
  193. package/dist-types/ts3.4/commands/DisconnectCustomKeyStoreCommand.d.ts +6 -4
  194. package/dist-types/ts3.4/commands/EnableKeyCommand.d.ts +4 -2
  195. package/dist-types/ts3.4/commands/EnableKeyRotationCommand.d.ts +2 -1
  196. package/dist-types/ts3.4/commands/EncryptCommand.d.ts +14 -12
  197. package/dist-types/ts3.4/commands/GenerateDataKeyCommand.d.ts +15 -12
  198. package/dist-types/ts3.4/commands/GenerateDataKeyPairCommand.d.ts +15 -13
  199. package/dist-types/ts3.4/commands/GenerateDataKeyPairWithoutPlaintextCommand.d.ts +16 -13
  200. package/dist-types/ts3.4/commands/GenerateDataKeyWithoutPlaintextCommand.d.ts +11 -9
  201. package/dist-types/ts3.4/commands/GenerateRandomCommand.d.ts +2 -1
  202. package/dist-types/ts3.4/commands/GetKeyRotationStatusCommand.d.ts +2 -1
  203. package/dist-types/ts3.4/commands/GetParametersForImportCommand.d.ts +7 -8
  204. package/dist-types/ts3.4/commands/GetPublicKeyCommand.d.ts +7 -5
  205. package/dist-types/ts3.4/commands/ImportKeyMaterialCommand.d.ts +13 -13
  206. package/dist-types/ts3.4/commands/ListAliasesCommand.d.ts +13 -10
  207. package/dist-types/ts3.4/commands/ListGrantsCommand.d.ts +2 -2
  208. package/dist-types/ts3.4/commands/ListKeyPoliciesCommand.d.ts +3 -3
  209. package/dist-types/ts3.4/commands/ListKeysCommand.d.ts +1 -2
  210. package/dist-types/ts3.4/commands/ListRetirableGrantsCommand.d.ts +7 -6
  211. package/dist-types/ts3.4/commands/ReEncryptCommand.d.ts +33 -27
  212. package/dist-types/ts3.4/commands/ReplicateKeyCommand.d.ts +5 -5
  213. package/dist-types/ts3.4/commands/RetireGrantCommand.d.ts +7 -5
  214. package/dist-types/ts3.4/commands/RevokeGrantCommand.d.ts +1 -2
  215. package/dist-types/ts3.4/commands/ScheduleKeyDeletionCommand.d.ts +19 -15
  216. package/dist-types/ts3.4/commands/SignCommand.d.ts +10 -9
  217. package/dist-types/ts3.4/commands/TagResourceCommand.d.ts +6 -4
  218. package/dist-types/ts3.4/commands/UntagResourceCommand.d.ts +3 -3
  219. package/dist-types/ts3.4/commands/UpdateAliasCommand.d.ts +15 -11
  220. package/dist-types/ts3.4/commands/UpdateCustomKeyStoreCommand.d.ts +17 -17
  221. package/dist-types/ts3.4/commands/UpdateKeyDescriptionCommand.d.ts +3 -3
  222. package/dist-types/ts3.4/commands/UpdatePrimaryRegionCommand.d.ts +1 -1
  223. package/dist-types/ts3.4/commands/VerifyCommand.d.ts +5 -5
  224. package/dist-types/ts3.4/models/models_0.d.ts +296 -249
  225. package/package.json +33 -30
  226. package/dist-cjs/KMS.js.map +0 -1
  227. package/dist-cjs/KMSClient.js.map +0 -1
  228. package/dist-cjs/commands/CancelKeyDeletionCommand.js.map +0 -1
  229. package/dist-cjs/commands/ConnectCustomKeyStoreCommand.js.map +0 -1
  230. package/dist-cjs/commands/CreateAliasCommand.js.map +0 -1
  231. package/dist-cjs/commands/CreateCustomKeyStoreCommand.js.map +0 -1
  232. package/dist-cjs/commands/CreateGrantCommand.js.map +0 -1
  233. package/dist-cjs/commands/CreateKeyCommand.js.map +0 -1
  234. package/dist-cjs/commands/DecryptCommand.js.map +0 -1
  235. package/dist-cjs/commands/DeleteAliasCommand.js.map +0 -1
  236. package/dist-cjs/commands/DeleteCustomKeyStoreCommand.js.map +0 -1
  237. package/dist-cjs/commands/DeleteImportedKeyMaterialCommand.js.map +0 -1
  238. package/dist-cjs/commands/DescribeCustomKeyStoresCommand.js.map +0 -1
  239. package/dist-cjs/commands/DescribeKeyCommand.js.map +0 -1
  240. package/dist-cjs/commands/DisableKeyCommand.js.map +0 -1
  241. package/dist-cjs/commands/DisableKeyRotationCommand.js.map +0 -1
  242. package/dist-cjs/commands/DisconnectCustomKeyStoreCommand.js.map +0 -1
  243. package/dist-cjs/commands/EnableKeyCommand.js.map +0 -1
  244. package/dist-cjs/commands/EnableKeyRotationCommand.js.map +0 -1
  245. package/dist-cjs/commands/EncryptCommand.js.map +0 -1
  246. package/dist-cjs/commands/GenerateDataKeyCommand.js.map +0 -1
  247. package/dist-cjs/commands/GenerateDataKeyPairCommand.js.map +0 -1
  248. package/dist-cjs/commands/GenerateDataKeyPairWithoutPlaintextCommand.js.map +0 -1
  249. package/dist-cjs/commands/GenerateDataKeyWithoutPlaintextCommand.js.map +0 -1
  250. package/dist-cjs/commands/GenerateRandomCommand.js.map +0 -1
  251. package/dist-cjs/commands/GetKeyPolicyCommand.js.map +0 -1
  252. package/dist-cjs/commands/GetKeyRotationStatusCommand.js.map +0 -1
  253. package/dist-cjs/commands/GetParametersForImportCommand.js.map +0 -1
  254. package/dist-cjs/commands/GetPublicKeyCommand.js.map +0 -1
  255. package/dist-cjs/commands/ImportKeyMaterialCommand.js.map +0 -1
  256. package/dist-cjs/commands/ListAliasesCommand.js.map +0 -1
  257. package/dist-cjs/commands/ListGrantsCommand.js.map +0 -1
  258. package/dist-cjs/commands/ListKeyPoliciesCommand.js.map +0 -1
  259. package/dist-cjs/commands/ListKeysCommand.js.map +0 -1
  260. package/dist-cjs/commands/ListResourceTagsCommand.js.map +0 -1
  261. package/dist-cjs/commands/ListRetirableGrantsCommand.js.map +0 -1
  262. package/dist-cjs/commands/PutKeyPolicyCommand.js.map +0 -1
  263. package/dist-cjs/commands/ReEncryptCommand.js.map +0 -1
  264. package/dist-cjs/commands/ReplicateKeyCommand.js.map +0 -1
  265. package/dist-cjs/commands/RetireGrantCommand.js.map +0 -1
  266. package/dist-cjs/commands/RevokeGrantCommand.js.map +0 -1
  267. package/dist-cjs/commands/ScheduleKeyDeletionCommand.js.map +0 -1
  268. package/dist-cjs/commands/SignCommand.js.map +0 -1
  269. package/dist-cjs/commands/TagResourceCommand.js.map +0 -1
  270. package/dist-cjs/commands/UntagResourceCommand.js.map +0 -1
  271. package/dist-cjs/commands/UpdateAliasCommand.js.map +0 -1
  272. package/dist-cjs/commands/UpdateCustomKeyStoreCommand.js.map +0 -1
  273. package/dist-cjs/commands/UpdateKeyDescriptionCommand.js.map +0 -1
  274. package/dist-cjs/commands/UpdatePrimaryRegionCommand.js.map +0 -1
  275. package/dist-cjs/commands/VerifyCommand.js.map +0 -1
  276. package/dist-cjs/endpoints.js.map +0 -1
  277. package/dist-cjs/index.js.map +0 -1
  278. package/dist-cjs/models/index.js.map +0 -1
  279. package/dist-cjs/models/models_0.js.map +0 -1
  280. package/dist-cjs/pagination/Interfaces.js.map +0 -1
  281. package/dist-cjs/pagination/ListAliasesPaginator.js.map +0 -1
  282. package/dist-cjs/pagination/ListGrantsPaginator.js.map +0 -1
  283. package/dist-cjs/pagination/ListKeyPoliciesPaginator.js.map +0 -1
  284. package/dist-cjs/pagination/ListKeysPaginator.js.map +0 -1
  285. package/dist-cjs/protocols/Aws_json1_1.js.map +0 -1
  286. package/dist-cjs/runtimeConfig.browser.js.map +0 -1
  287. package/dist-cjs/runtimeConfig.js.map +0 -1
  288. package/dist-cjs/runtimeConfig.native.js.map +0 -1
  289. package/dist-cjs/runtimeConfig.shared.js.map +0 -1
  290. package/dist-es/KMS.js.map +0 -1
  291. package/dist-es/KMSClient.js.map +0 -1
  292. package/dist-es/commands/CancelKeyDeletionCommand.js.map +0 -1
  293. package/dist-es/commands/ConnectCustomKeyStoreCommand.js.map +0 -1
  294. package/dist-es/commands/CreateAliasCommand.js.map +0 -1
  295. package/dist-es/commands/CreateCustomKeyStoreCommand.js.map +0 -1
  296. package/dist-es/commands/CreateGrantCommand.js.map +0 -1
  297. package/dist-es/commands/CreateKeyCommand.js.map +0 -1
  298. package/dist-es/commands/DecryptCommand.js.map +0 -1
  299. package/dist-es/commands/DeleteAliasCommand.js.map +0 -1
  300. package/dist-es/commands/DeleteCustomKeyStoreCommand.js.map +0 -1
  301. package/dist-es/commands/DeleteImportedKeyMaterialCommand.js.map +0 -1
  302. package/dist-es/commands/DescribeCustomKeyStoresCommand.js.map +0 -1
  303. package/dist-es/commands/DescribeKeyCommand.js.map +0 -1
  304. package/dist-es/commands/DisableKeyCommand.js.map +0 -1
  305. package/dist-es/commands/DisableKeyRotationCommand.js.map +0 -1
  306. package/dist-es/commands/DisconnectCustomKeyStoreCommand.js.map +0 -1
  307. package/dist-es/commands/EnableKeyCommand.js.map +0 -1
  308. package/dist-es/commands/EnableKeyRotationCommand.js.map +0 -1
  309. package/dist-es/commands/EncryptCommand.js.map +0 -1
  310. package/dist-es/commands/GenerateDataKeyCommand.js.map +0 -1
  311. package/dist-es/commands/GenerateDataKeyPairCommand.js.map +0 -1
  312. package/dist-es/commands/GenerateDataKeyPairWithoutPlaintextCommand.js.map +0 -1
  313. package/dist-es/commands/GenerateDataKeyWithoutPlaintextCommand.js.map +0 -1
  314. package/dist-es/commands/GenerateRandomCommand.js.map +0 -1
  315. package/dist-es/commands/GetKeyPolicyCommand.js.map +0 -1
  316. package/dist-es/commands/GetKeyRotationStatusCommand.js.map +0 -1
  317. package/dist-es/commands/GetParametersForImportCommand.js.map +0 -1
  318. package/dist-es/commands/GetPublicKeyCommand.js.map +0 -1
  319. package/dist-es/commands/ImportKeyMaterialCommand.js.map +0 -1
  320. package/dist-es/commands/ListAliasesCommand.js.map +0 -1
  321. package/dist-es/commands/ListGrantsCommand.js.map +0 -1
  322. package/dist-es/commands/ListKeyPoliciesCommand.js.map +0 -1
  323. package/dist-es/commands/ListKeysCommand.js.map +0 -1
  324. package/dist-es/commands/ListResourceTagsCommand.js.map +0 -1
  325. package/dist-es/commands/ListRetirableGrantsCommand.js.map +0 -1
  326. package/dist-es/commands/PutKeyPolicyCommand.js.map +0 -1
  327. package/dist-es/commands/ReEncryptCommand.js.map +0 -1
  328. package/dist-es/commands/ReplicateKeyCommand.js.map +0 -1
  329. package/dist-es/commands/RetireGrantCommand.js.map +0 -1
  330. package/dist-es/commands/RevokeGrantCommand.js.map +0 -1
  331. package/dist-es/commands/ScheduleKeyDeletionCommand.js.map +0 -1
  332. package/dist-es/commands/SignCommand.js.map +0 -1
  333. package/dist-es/commands/TagResourceCommand.js.map +0 -1
  334. package/dist-es/commands/UntagResourceCommand.js.map +0 -1
  335. package/dist-es/commands/UpdateAliasCommand.js.map +0 -1
  336. package/dist-es/commands/UpdateCustomKeyStoreCommand.js.map +0 -1
  337. package/dist-es/commands/UpdateKeyDescriptionCommand.js.map +0 -1
  338. package/dist-es/commands/UpdatePrimaryRegionCommand.js.map +0 -1
  339. package/dist-es/commands/VerifyCommand.js.map +0 -1
  340. package/dist-es/endpoints.js.map +0 -1
  341. package/dist-es/index.js.map +0 -1
  342. package/dist-es/models/index.js.map +0 -1
  343. package/dist-es/models/models_0.js.map +0 -1
  344. package/dist-es/pagination/Interfaces.js.map +0 -1
  345. package/dist-es/pagination/ListAliasesPaginator.js.map +0 -1
  346. package/dist-es/pagination/ListGrantsPaginator.js.map +0 -1
  347. package/dist-es/pagination/ListKeyPoliciesPaginator.js.map +0 -1
  348. package/dist-es/pagination/ListKeysPaginator.js.map +0 -1
  349. package/dist-es/protocols/Aws_json1_1.js.map +0 -1
  350. package/dist-es/runtimeConfig.browser.js.map +0 -1
  351. package/dist-es/runtimeConfig.js.map +0 -1
  352. package/dist-es/runtimeConfig.native.js.map +0 -1
  353. package/dist-es/runtimeConfig.shared.js.map +0 -1
  354. package/jest.config.js +0 -4
  355. package/src/KMS.ts +0 -4019
  356. package/src/KMSClient.ts +0 -516
  357. package/src/commands/CancelKeyDeletionCommand.ts +0 -106
  358. package/src/commands/ConnectCustomKeyStoreCommand.ts +0 -156
  359. package/src/commands/CreateAliasCommand.ts +0 -148
  360. package/src/commands/CreateCustomKeyStoreCommand.ts +0 -144
  361. package/src/commands/CreateGrantCommand.ts +0 -154
  362. package/src/commands/CreateKeyCommand.ts +0 -210
  363. package/src/commands/DecryptCommand.ts +0 -173
  364. package/src/commands/DeleteAliasCommand.ts +0 -138
  365. package/src/commands/DeleteCustomKeyStoreCommand.ts +0 -150
  366. package/src/commands/DeleteImportedKeyMaterialCommand.ts +0 -128
  367. package/src/commands/DescribeCustomKeyStoresCommand.ts +0 -148
  368. package/src/commands/DescribeKeyCommand.ts +0 -172
  369. package/src/commands/DisableKeyCommand.ts +0 -109
  370. package/src/commands/DisableKeyRotationCommand.ts +0 -119
  371. package/src/commands/DisconnectCustomKeyStoreCommand.ts +0 -145
  372. package/src/commands/EnableKeyCommand.ts +0 -98
  373. package/src/commands/EnableKeyRotationCommand.ts +0 -119
  374. package/src/commands/EncryptCommand.ts +0 -210
  375. package/src/commands/GenerateDataKeyCommand.ts +0 -189
  376. package/src/commands/GenerateDataKeyPairCommand.ts +0 -169
  377. package/src/commands/GenerateDataKeyPairWithoutPlaintextCommand.ts +0 -169
  378. package/src/commands/GenerateDataKeyWithoutPlaintextCommand.ts +0 -172
  379. package/src/commands/GenerateRandomCommand.ts +0 -103
  380. package/src/commands/GetKeyPolicyCommand.ts +0 -103
  381. package/src/commands/GetKeyRotationStatusCommand.ts +0 -131
  382. package/src/commands/GetParametersForImportCommand.ts +0 -130
  383. package/src/commands/GetPublicKeyCommand.ts +0 -139
  384. package/src/commands/ImportKeyMaterialCommand.ts +0 -158
  385. package/src/commands/ListAliasesCommand.ts +0 -134
  386. package/src/commands/ListGrantsCommand.ts +0 -140
  387. package/src/commands/ListKeyPoliciesCommand.ts +0 -117
  388. package/src/commands/ListKeysCommand.ts +0 -119
  389. package/src/commands/ListResourceTagsCommand.ts +0 -129
  390. package/src/commands/ListRetirableGrantsCommand.ts +0 -137
  391. package/src/commands/PutKeyPolicyCommand.ts +0 -108
  392. package/src/commands/ReEncryptCommand.ts +0 -180
  393. package/src/commands/ReplicateKeyCommand.ts +0 -172
  394. package/src/commands/RetireGrantCommand.ts +0 -139
  395. package/src/commands/RevokeGrantCommand.ts +0 -139
  396. package/src/commands/ScheduleKeyDeletionCommand.ts +0 -145
  397. package/src/commands/SignCommand.ts +0 -132
  398. package/src/commands/TagResourceCommand.ts +0 -140
  399. package/src/commands/UntagResourceCommand.ts +0 -138
  400. package/src/commands/UpdateAliasCommand.ts +0 -153
  401. package/src/commands/UpdateCustomKeyStoreCommand.ts +0 -167
  402. package/src/commands/UpdateKeyDescriptionCommand.ts +0 -118
  403. package/src/commands/UpdatePrimaryRegionCommand.ts +0 -160
  404. package/src/commands/VerifyCommand.ts +0 -118
  405. package/src/endpoints.ts +0 -62
  406. package/src/index.ts +0 -56
  407. package/src/models/index.ts +0 -1
  408. package/src/models/models_0.ts +0 -4742
  409. package/src/pagination/Interfaces.ts +0 -8
  410. package/src/pagination/ListAliasesPaginator.ts +0 -55
  411. package/src/pagination/ListGrantsPaginator.ts +0 -55
  412. package/src/pagination/ListKeyPoliciesPaginator.ts +0 -59
  413. package/src/pagination/ListKeysPaginator.ts +0 -55
  414. package/src/protocols/Aws_json1_1.ts +0 -7632
  415. package/src/runtimeConfig.browser.ts +0 -41
  416. package/src/runtimeConfig.native.ts +0 -17
  417. package/src/runtimeConfig.shared.ts +0 -17
  418. package/src/runtimeConfig.ts +0 -46
  419. package/tsconfig.es.json +0 -10
  420. package/tsconfig.json +0 -33
  421. package/tsconfig.types.json +0 -9
@@ -6,12 +6,12 @@ const smithy_client_1 = require("@aws-sdk/smithy-client");
6
6
  const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
- * <p>Imports key material into an existing symmetric KMS KMS key that was
10
- * created without key material. After you successfully import key material into a KMS key, you can
11
- * <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html#reimport-key-material">reimport the same key material</a> into that KMS key, but you cannot import different key
9
+ * <p>Imports key material into an existing symmetric KMS KMS key that was created without key
10
+ * material. After you successfully import key material into a KMS key, you can <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html#reimport-key-material">reimport
11
+ * the same key material</a> into that KMS key, but you cannot import different key
12
12
  * material. </p>
13
- * <p>You cannot perform this operation on an asymmetric KMS key or on any KMS key in a different Amazon Web Services account. For more information about creating KMS keys with no key material and
14
- * then importing key material, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html">Importing Key Material</a> in the
13
+ * <p>You cannot perform this operation on an asymmetric KMS key or on any KMS key in a different Amazon Web Services account. For more information about creating KMS keys with no key material
14
+ * and then importing key material, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html">Importing Key Material</a> in the
15
15
  * <i>Key Management Service Developer Guide</i>.</p>
16
16
  * <p>Before using this operation, call <a>GetParametersForImport</a>. Its response
17
17
  * includes a public key and an import token. Use the public key to encrypt the key material.
@@ -20,8 +20,8 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
20
20
  * <p>When calling this operation, you must specify the following values:</p>
21
21
  * <ul>
22
22
  * <li>
23
- * <p>The key ID or key ARN of a KMS key with no key material. Its <code>Origin</code> must be
24
- * <code>EXTERNAL</code>.</p>
23
+ * <p>The key ID or key ARN of a KMS key with no key material. Its <code>Origin</code> must
24
+ * be <code>EXTERNAL</code>.</p>
25
25
  * <p>To create a KMS key with no key material, call <a>CreateKey</a> and set the
26
26
  * value of its <code>Origin</code> parameter to <code>EXTERNAL</code>. To get the
27
27
  * <code>Origin</code> of a KMS key, call <a>DescribeKey</a>.)</p>
@@ -36,17 +36,17 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
36
36
  * </li>
37
37
  * <li>
38
38
  * <p>Whether the key material expires and if so, when. If you set an expiration date, KMS
39
- * deletes the key material from the KMS key on the specified date, and the KMS key becomes unusable.
40
- * To use the KMS key again, you must reimport the same key material. The only way to change an
41
- * expiration date is by reimporting the same key material and specifying a new expiration
42
- * date. </p>
39
+ * deletes the key material from the KMS key on the specified date, and the KMS key becomes
40
+ * unusable. To use the KMS key again, you must reimport the same key material. The only way
41
+ * to change an expiration date is by reimporting the same key material and specifying a new
42
+ * expiration date. </p>
43
43
  * </li>
44
44
  * </ul>
45
45
  * <p>When this operation is successful, the key state of the KMS key changes from
46
46
  * <code>PendingImport</code> to <code>Enabled</code>, and you can use the KMS key.</p>
47
47
  * <p>If this operation fails, use the exception to help determine the problem. If the error is
48
- * related to the key material, the import token, or wrapping key, use <a>GetParametersForImport</a> to get a new public key and import token for the KMS key and
49
- * repeat the import procedure. For help, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html#importing-keys-overview">How To Import Key
48
+ * related to the key material, the import token, or wrapping key, use <a>GetParametersForImport</a> to get a new public key and import token for the KMS key
49
+ * and repeat the import procedure. For help, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/importing-keys.html#importing-keys-overview">How To Import Key
50
50
  * Material</a> in the <i>Key Management Service Developer Guide</i>.</p>
51
51
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
52
52
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
@@ -121,4 +121,3 @@ class ImportKeyMaterialCommand extends smithy_client_1.Command {
121
121
  }
122
122
  }
123
123
  exports.ImportKeyMaterialCommand = ImportKeyMaterialCommand;
124
- //# sourceMappingURL=ImportKeyMaterialCommand.js.map
@@ -6,26 +6,29 @@ const smithy_client_1 = require("@aws-sdk/smithy-client");
6
6
  const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
- * <p>Gets a list of aliases in the caller's Amazon Web Services account and region. For more information about
10
- * aliases, see <a>CreateAlias</a>.</p>
9
+ * <p>Gets a list of aliases in the caller's Amazon Web Services account and region. For more information
10
+ * about aliases, see <a>CreateAlias</a>.</p>
11
11
  * <p>By default, the <code>ListAliases</code> operation returns all aliases in the account and
12
- * region. To get only the aliases associated with a particular KMS key, use
13
- * the <code>KeyId</code> parameter.</p>
12
+ * region. To get only the aliases associated with a particular KMS key, use the
13
+ * <code>KeyId</code> parameter.</p>
14
14
  * <p>The <code>ListAliases</code> response can include aliases that you created and associated
15
- * with your customer managed keys, and aliases that Amazon Web Services created and associated with Amazon Web Services managed keys in your account. You can recognize Amazon Web Services aliases because their names have the format
16
- * <code>aws/<service-name></code>, such as <code>aws/dynamodb</code>.</p>
15
+ * with your customer managed keys, and aliases that Amazon Web Services created and associated with Amazon Web Services
16
+ * managed keys in your account. You can recognize Amazon Web Services aliases because their names have the
17
+ * format <code>aws/<service-name></code>, such as <code>aws/dynamodb</code>.</p>
17
18
  * <p>The response might also include aliases that have no <code>TargetKeyId</code> field. These
18
- * are predefined aliases that Amazon Web Services has created but has not yet associated with a KMS key. Aliases
19
- * that Amazon Web Services creates in your account, including predefined aliases, do not count against your
20
- * <a href="https://docs.aws.amazon.com/kms/latest/developerguide/limits.html#aliases-limit">KMS aliases
19
+ * are predefined aliases that Amazon Web Services has created but has not yet associated with a KMS key.
20
+ * Aliases that Amazon Web Services creates in your account, including predefined aliases, do not count against
21
+ * your <a href="https://docs.aws.amazon.com/kms/latest/developerguide/limits.html#aliases-limit">KMS aliases
21
22
  * quota</a>.</p>
22
23
  * <p>
23
24
  * <b>Cross-account use</b>: No. <code>ListAliases</code> does not
24
25
  * return aliases in other Amazon Web Services accounts.</p>
25
26
  *
27
+ *
26
28
  * <p>
27
29
  * <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:ListAliases</a> (IAM policy)</p>
28
- * <p>For details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-alias.html#alias-access">Controlling access to aliases</a> in the <i>Key Management Service Developer Guide</i>.</p>
30
+ * <p>For details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-alias.html#alias-access">Controlling access to aliases</a> in the
31
+ * <i>Key Management Service Developer Guide</i>.</p>
29
32
  * <p>
30
33
  * <b>Related operations:</b>
31
34
  * </p>
@@ -97,4 +100,3 @@ class ListAliasesCommand extends smithy_client_1.Command {
97
100
  }
98
101
  }
99
102
  exports.ListAliasesCommand = ListAliasesCommand;
100
- //# sourceMappingURL=ListAliasesCommand.js.map
@@ -7,8 +7,8 @@ const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
9
  * <p>Gets a list of all grants for the specified KMS key. </p>
10
- * <p>You must specify the KMS key in all requests. You can filter the grant list by grant ID
11
- * or grantee principal.</p>
10
+ * <p>You must specify the KMS key in all requests. You can filter the grant list by grant ID or
11
+ * grantee principal.</p>
12
12
  * <p>For detailed information about grants, including grant terminology, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/grants.html">Using grants</a> in the
13
13
  * <i>
14
14
  * <i>Key Management Service Developer Guide</i>
@@ -103,4 +103,3 @@ class ListGrantsCommand extends smithy_client_1.Command {
103
103
  }
104
104
  }
105
105
  exports.ListGrantsCommand = ListGrantsCommand;
106
- //# sourceMappingURL=ListGrantsCommand.js.map
@@ -6,9 +6,9 @@ const smithy_client_1 = require("@aws-sdk/smithy-client");
6
6
  const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
- * <p>Gets the names of the key policies that are attached to a KMS key. This
10
- * operation is designed to get policy names that you can use in a <a>GetKeyPolicy</a>
11
- * operation. However, the only valid policy name is <code>default</code>. </p>
9
+ * <p>Gets the names of the key policies that are attached to a KMS key. This operation is
10
+ * designed to get policy names that you can use in a <a>GetKeyPolicy</a> operation.
11
+ * However, the only valid policy name is <code>default</code>. </p>
12
12
  * <p>
13
13
  * <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
14
14
  *
@@ -80,4 +80,3 @@ class ListKeyPoliciesCommand extends smithy_client_1.Command {
80
80
  }
81
81
  }
82
82
  exports.ListKeyPoliciesCommand = ListKeyPoliciesCommand;
83
- //# sourceMappingURL=ListKeyPoliciesCommand.js.map
@@ -6,8 +6,7 @@ const smithy_client_1 = require("@aws-sdk/smithy-client");
6
6
  const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
- * <p>Gets a list of all KMS keys in the caller's Amazon Web Services account and
10
- * Region.</p>
9
+ * <p>Gets a list of all KMS keys in the caller's Amazon Web Services account and Region.</p>
11
10
  * <p>
12
11
  * <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
13
12
  *
@@ -89,4 +88,3 @@ class ListKeysCommand extends smithy_client_1.Command {
89
88
  }
90
89
  }
91
90
  exports.ListKeysCommand = ListKeysCommand;
92
- //# sourceMappingURL=ListKeysCommand.js.map
@@ -92,4 +92,3 @@ class ListResourceTagsCommand extends smithy_client_1.Command {
92
92
  }
93
93
  }
94
94
  exports.ListResourceTagsCommand = ListResourceTagsCommand;
95
- //# sourceMappingURL=ListResourceTagsCommand.js.map
@@ -6,11 +6,11 @@ const smithy_client_1 = require("@aws-sdk/smithy-client");
6
6
  const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
- * <p>Returns information about all grants in the Amazon Web Services account and Region that have the specified
10
- * retiring principal. </p>
9
+ * <p>Returns information about all grants in the Amazon Web Services account and Region that have the
10
+ * specified retiring principal. </p>
11
11
  * <p>You can specify any principal in your Amazon Web Services account. The grants that are returned include
12
- * grants for KMS keys in your Amazon Web Services account and other Amazon Web Services accounts. You might use this operation to
13
- * determine which grants you may retire. To retire a grant, use the <a>RetireGrant</a> operation.</p>
12
+ * grants for KMS keys in your Amazon Web Services account and other Amazon Web Services accounts. You might use this
13
+ * operation to determine which grants you may retire. To retire a grant, use the <a>RetireGrant</a> operation.</p>
14
14
  * <p>For detailed information about grants, including grant terminology, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/grants.html">Using grants</a> in the
15
15
  * <i>
16
16
  * <i>Key Management Service Developer Guide</i>
@@ -19,11 +19,12 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
19
19
  * <p>
20
20
  * <b>Cross-account use</b>: You must specify a principal in your
21
21
  * Amazon Web Services account. However, this operation can return grants in any Amazon Web Services account. You do not need
22
- * <code>kms:ListRetirableGrants</code> permission (or any other additional permission) in any
22
+ * <code>kms:ListRetirableGrants</code> permission (or any other additional permission) in any
23
23
  * Amazon Web Services account other than your own.</p>
24
24
  *
25
25
  * <p>
26
- * <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:ListRetirableGrants</a> (IAM policy) in your Amazon Web Services account.</p>
26
+ * <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:ListRetirableGrants</a> (IAM policy) in your
27
+ * Amazon Web Services account.</p>
27
28
  * <p>
28
29
  * <b>Related operations:</b>
29
30
  * </p>
@@ -100,4 +101,3 @@ class ListRetirableGrantsCommand extends smithy_client_1.Command {
100
101
  }
101
102
  }
102
103
  exports.ListRetirableGrantsCommand = ListRetirableGrantsCommand;
103
- //# sourceMappingURL=ListRetirableGrantsCommand.js.map
@@ -71,4 +71,3 @@ class PutKeyPolicyCommand extends smithy_client_1.Command {
71
71
  }
72
72
  }
73
73
  exports.PutKeyPolicyCommand = PutKeyPolicyCommand;
74
- //# sourceMappingURL=PutKeyPolicyCommand.js.map
@@ -7,39 +7,45 @@ const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
9
  * <p>Decrypts ciphertext and then reencrypts it entirely within KMS. You can use this
10
- * operation to change the KMS key under which data is encrypted, such as when
11
- * you <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotate-keys.html#rotate-keys-manually">manually rotate</a> a KMS key or change the KMS key that protects a ciphertext. You can also
12
- * use it to reencrypt ciphertext under the same KMS key, such as to change the <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#encrypt_context">encryption
10
+ * operation to change the KMS key under which data is encrypted, such as when you <a href="https://docs.aws.amazon.com/kms/latest/developerguide/rotate-keys.html#rotate-keys-manually">manually
11
+ * rotate</a> a KMS key or change the KMS key that protects a ciphertext. You can also use
12
+ * it to reencrypt ciphertext under the same KMS key, such as to change the <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#encrypt_context">encryption
13
13
  * context</a> of a ciphertext.</p>
14
14
  * <p>The <code>ReEncrypt</code> operation can decrypt ciphertext that was encrypted by using an
15
15
  * KMS KMS key in an KMS operation, such as <a>Encrypt</a> or <a>GenerateDataKey</a>. It can also decrypt ciphertext that was encrypted by using the
16
- * public key of an <a href="https://docs.aws.amazon.com/kms/latest/developerguide/symm-asymm-concepts.html#asymmetric-cmks">asymmetric KMS key</a> outside of KMS. However, it cannot decrypt ciphertext
17
- * produced by other libraries, such as the <a href="https://docs.aws.amazon.com/encryption-sdk/latest/developer-guide/">Amazon Web Services Encryption SDK</a> or <a href="https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingClientSideEncryption.html">Amazon S3 client-side encryption</a>.
18
- * These libraries return a ciphertext format that is incompatible with KMS.</p>
16
+ * public key of an <a href="https://docs.aws.amazon.com/kms/latest/developerguide/symm-asymm-concepts.html#asymmetric-cmks">asymmetric KMS key</a>
17
+ * outside of KMS. However, it cannot decrypt ciphertext produced by other libraries, such as
18
+ * the <a href="https://docs.aws.amazon.com/encryption-sdk/latest/developer-guide/">Amazon Web Services Encryption SDK</a> or
19
+ * <a href="https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingClientSideEncryption.html">Amazon S3
20
+ * client-side encryption</a>. These libraries return a ciphertext format that is
21
+ * incompatible with KMS.</p>
19
22
  * <p>When you use the <code>ReEncrypt</code> operation, you need to provide information for the
20
23
  * decrypt operation and the subsequent encrypt operation.</p>
21
24
  * <ul>
22
25
  * <li>
23
26
  * <p>If your ciphertext was encrypted under an asymmetric KMS key, you must use the
24
- * <code>SourceKeyId</code> parameter to identify the KMS key that encrypted the ciphertext.
25
- * You must also supply the encryption algorithm that was used. This information is required
26
- * to decrypt the data.</p>
27
+ * <code>SourceKeyId</code> parameter to identify the KMS key that encrypted the
28
+ * ciphertext. You must also supply the encryption algorithm that was used. This information
29
+ * is required to decrypt the data.</p>
27
30
  * </li>
28
31
  * <li>
29
- * <p>If your ciphertext was encrypted under a symmetric KMS key, the <code>SourceKeyId</code>
30
- * parameter is optional. KMS can get this information from metadata that it adds to the
31
- * symmetric ciphertext blob. This feature adds durability to your implementation by ensuring
32
- * that authorized users can decrypt ciphertext decades after it was encrypted, even if
33
- * they've lost track of the key ID. However, specifying the source KMS key is always recommended
34
- * as a best practice. When you use the <code>SourceKeyId</code> parameter to specify a KMS key,
35
- * KMS uses only the KMS key you specify. If the ciphertext was encrypted under a different KMS key, the <code>ReEncrypt</code> operation fails. This practice ensures that you use the KMS key that you intend.</p>
32
+ * <p>If your ciphertext was encrypted under a symmetric KMS key, the
33
+ * <code>SourceKeyId</code> parameter is optional. KMS can get this information from
34
+ * metadata that it adds to the symmetric ciphertext blob. This feature adds durability to
35
+ * your implementation by ensuring that authorized users can decrypt ciphertext decades after
36
+ * it was encrypted, even if they've lost track of the key ID. However, specifying the source
37
+ * KMS key is always recommended as a best practice. When you use the
38
+ * <code>SourceKeyId</code> parameter to specify a KMS key, KMS uses only the KMS key you
39
+ * specify. If the ciphertext was encrypted under a different KMS key, the
40
+ * <code>ReEncrypt</code> operation fails. This practice ensures that you use the KMS key
41
+ * that you intend.</p>
36
42
  * </li>
37
43
  * <li>
38
44
  * <p>To reencrypt the data, you must use the <code>DestinationKeyId</code> parameter
39
45
  * specify the KMS key that re-encrypts the data after it is decrypted. You can select a
40
- * symmetric or asymmetric KMS key. If the destination KMS key is an asymmetric KMS key, you must also
41
- * provide the encryption algorithm. The algorithm that you choose must be compatible with
42
- * the KMS key.</p>
46
+ * symmetric or asymmetric KMS key. If the destination KMS key is an asymmetric KMS key, you
47
+ * must also provide the encryption algorithm. The algorithm that you choose must be
48
+ * compatible with the KMS key.</p>
43
49
  *
44
50
  * <important>
45
51
  * <p>When you use an asymmetric KMS key to encrypt or reencrypt data, be sure to record the KMS key and encryption algorithm that you choose. You will be required to provide the same KMS key and encryption algorithm when you decrypt the data. If the KMS key and algorithm do not match the values used to encrypt the data, the decrypt operation fails.</p>
@@ -47,26 +53,26 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
47
53
  * </important>
48
54
  * </li>
49
55
  * </ul>
50
- *
51
- *
52
- *
53
56
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
54
57
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
55
58
  * <p>
56
- * <b>Cross-account use</b>: Yes. The source KMS key and destination KMS key can be in different Amazon Web Services accounts. Either or both KMS keys can be in a different account than
57
- * the caller. To specify a KMS key in a different account, you must use its key ARN or alias
58
- * ARN.</p>
59
+ * <b>Cross-account use</b>: Yes.
60
+ * The source KMS key and destination KMS key can be in different Amazon Web Services accounts. Either or both
61
+ * KMS keys can be in a different account than the caller. To specify a KMS key in a different
62
+ * account, you must use its key ARN or alias ARN.</p>
59
63
  *
60
64
  * <p>
61
65
  * <b>Required permissions</b>:</p>
62
66
  * <ul>
63
67
  * <li>
64
68
  * <p>
65
- * <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:ReEncryptFrom</a> permission on the source KMS key (key policy)</p>
69
+ * <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:ReEncryptFrom</a>
70
+ * permission on the source KMS key (key policy)</p>
66
71
  * </li>
67
72
  * <li>
68
73
  * <p>
69
- * <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:ReEncryptTo</a> permission on the destination KMS key (key policy)</p>
74
+ * <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:ReEncryptTo</a>
75
+ * permission on the destination KMS key (key policy)</p>
70
76
  * </li>
71
77
  * </ul>
72
78
  * <p>To permit reencryption from or to a KMS key, include the <code>"kms:ReEncrypt*"</code>
@@ -150,4 +156,3 @@ class ReEncryptCommand extends smithy_client_1.Command {
150
156
  }
151
157
  }
152
158
  exports.ReEncryptCommand = ReEncryptCommand;
153
- //# sourceMappingURL=ReEncryptCommand.js.map
@@ -37,7 +37,7 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
37
37
  * details about the <code>Creating</code> key state, see <a href="kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the
38
38
  * <i>Key Management Service Developer Guide</i>.</p>
39
39
  * <p>The CloudTrail log of a <code>ReplicateKey</code> operation records a
40
- * <code>ReplicateKey</code> operation in the primary key's Region and a <a>CreateKey</a> operation in the replica key's Region.</p>
40
+ * <code>ReplicateKey</code> operation in the primary key's Region and a <a>CreateKey</a> operation in the replica key's Region.</p>
41
41
  * <p>If you replicate a multi-Region primary key with imported key material, the replica key is
42
42
  * created with no key material. You must import the same key material that you imported into the
43
43
  * primary key. For details, see <a href="kms/latest/developerguide/multi-region-keys-import.html">Importing key material into multi-Region keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
@@ -45,8 +45,8 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
45
45
  * operation.</p>
46
46
  * <note>
47
47
  * <p>
48
- * <code>ReplicateKey</code> uses different default values for the <code>KeyPolicy</code> and
49
- * <code>Tags</code> parameters than those used in the KMS console. For details, see the
48
+ * <code>ReplicateKey</code> uses different default values for the <code>KeyPolicy</code>
49
+ * and <code>Tags</code> parameters than those used in the KMS console. For details, see the
50
50
  * parameter descriptions.</p>
51
51
  * </note>
52
52
  * <p>
@@ -57,8 +57,8 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
57
57
  * <ul>
58
58
  * <li>
59
59
  * <p>
60
- * <code>kms:ReplicateKey</code> on the primary key (in the primary key's Region). Include this
61
- * permission in the primary key's key policy.</p>
60
+ * <code>kms:ReplicateKey</code> on the primary key (in the primary key's Region).
61
+ * Include this permission in the primary key's key policy.</p>
62
62
  * </li>
63
63
  * <li>
64
64
  * <p>
@@ -135,4 +135,3 @@ class ReplicateKeyCommand extends smithy_client_1.Command {
135
135
  }
136
136
  }
137
137
  exports.ReplicateKeyCommand = ReplicateKeyCommand;
138
- //# sourceMappingURL=ReplicateKeyCommand.js.map
@@ -8,12 +8,13 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
9
  * <p>Deletes a grant. Typically, you retire a grant when you no longer need its permissions. To
10
10
  * identify the grant to retire, use a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/grants.html#grant_token">grant token</a>, or both the grant ID and a
11
- * key identifier (key ID or key ARN) of the KMS key. The <a>CreateGrant</a> operation returns both values.</p>
11
+ * key identifier (key ID or key ARN) of the KMS key. The <a>CreateGrant</a> operation
12
+ * returns both values.</p>
12
13
  * <p>This operation can be called by the <i>retiring principal</i> for a grant,
13
14
  * by the <i>grantee principal</i> if the grant allows the <code>RetireGrant</code>
14
15
  * operation, and by the Amazon Web Services account (root user) in which the grant is created. It can also be
15
16
  * called by principals to whom permission for retiring a grant is delegated. For details, see
16
- * <a href="https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#grant-delete">Retiring and
17
+ * <a href="https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#grant-delete">Retiring and
17
18
  * revoking grants</a> in the <i>Key Management Service Developer Guide</i>.</p>
18
19
  * <p>For detailed information about grants, including grant terminology, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/grants.html">Using grants</a> in the
19
20
  * <i>
@@ -21,11 +22,12 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
21
22
  * </i>. For examples of working with grants in several
22
23
  * programming languages, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/programming-grants.html">Programming grants</a>. </p>
23
24
  * <p>
24
- * <b>Cross-account use</b>: Yes. You can retire a grant on a KMS key
25
- * in a different Amazon Web Services account.</p>
25
+ * <b>Cross-account use</b>: Yes. You can retire a grant on a KMS
26
+ * key in a different Amazon Web Services account.</p>
26
27
  * <p>
27
28
  * <b>Required permissions:</b>:Permission to retire a grant is
28
- * determined primarily by the grant. For details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#grant-delete">Retiring and revoking grants</a> in the <i>Key Management Service Developer Guide</i>.</p>
29
+ * determined primarily by the grant. For details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/grant-manage.html#grant-delete">Retiring and revoking grants</a> in
30
+ * the <i>Key Management Service Developer Guide</i>.</p>
29
31
  * <p>
30
32
  * <b>Related operations:</b>
31
33
  * </p>
@@ -102,4 +104,3 @@ class RetireGrantCommand extends smithy_client_1.Command {
102
104
  }
103
105
  }
104
106
  exports.RetireGrantCommand = RetireGrantCommand;
105
- //# sourceMappingURL=RetireGrantCommand.js.map
@@ -7,8 +7,7 @@ const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
9
  * <p>Deletes the specified grant. You revoke a grant to terminate the permissions that the
10
- * grant allows. For more
11
- * information, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/managing-grants.html#grant-delete">Retiring and revoking grants</a> in
10
+ * grant allows. For more information, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/managing-grants.html#grant-delete">Retiring and revoking grants</a> in
12
11
  * the <i>
13
12
  * <i>Key Management Service Developer Guide</i>
14
13
  * </i>.</p>
@@ -102,4 +101,3 @@ class RevokeGrantCommand extends smithy_client_1.Command {
102
101
  }
103
102
  }
104
103
  exports.RevokeGrantCommand = RevokeGrantCommand;
105
- //# sourceMappingURL=RevokeGrantCommand.js.map
@@ -6,22 +6,24 @@ const smithy_client_1 = require("@aws-sdk/smithy-client");
6
6
  const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
- * <p>Schedules the deletion of a KMS key. By default, KMS applies a waiting
10
- * period of 30 days, but you can specify a waiting period of 7-30 days. When this operation is
11
- * successful, the key state of the KMS key changes to <code>PendingDeletion</code> and the key can't
12
- * be used in any cryptographic operations. It remains in this state for the duration of the
13
- * waiting period. Before the waiting period ends, you can use <a>CancelKeyDeletion</a> to cancel the deletion of the KMS key. After the waiting period ends, KMS deletes the KMS key,
9
+ * <p>Schedules the deletion of a KMS key. By default, KMS applies a waiting period of 30
10
+ * days, but you can specify a waiting period of 7-30 days. When this operation is successful,
11
+ * the key state of the KMS key changes to <code>PendingDeletion</code> and the key can't be used
12
+ * in any cryptographic operations. It remains in this state for the duration of the waiting
13
+ * period. Before the waiting period ends, you can use <a>CancelKeyDeletion</a> to
14
+ * cancel the deletion of the KMS key. After the waiting period ends, KMS deletes the KMS key,
14
15
  * its key material, and all KMS data associated with it, including all aliases that refer to
15
16
  * it.</p>
16
17
  * <important>
17
- * <p>Deleting a KMS key is a destructive and potentially dangerous operation. When a KMS key is
18
- * deleted, all data that was encrypted under the KMS key is unrecoverable. (The only exception is
19
- * a multi-Region replica key.) To prevent the use of a KMS key without deleting it, use <a>DisableKey</a>. </p>
18
+ * <p>Deleting a KMS key is a destructive and potentially dangerous operation. When a KMS key
19
+ * is deleted, all data that was encrypted under the KMS key is unrecoverable. (The only
20
+ * exception is a multi-Region replica key.) To prevent the use of a KMS key without deleting
21
+ * it, use <a>DisableKey</a>. </p>
20
22
  * </important>
21
23
  * <p>If you schedule deletion of a KMS key from a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/custom-key-store-overview.html">custom key store</a>, when the waiting period
22
- * expires, <code>ScheduleKeyDeletion</code> deletes the KMS key from KMS. Then KMS makes a best
23
- * effort to delete the key material from the associated CloudHSM cluster. However, you might need
24
- * to manually <a href="https://docs.aws.amazon.com/kms/latest/developerguide/fix-keystore.html#fix-keystore-orphaned-key">delete the orphaned key
24
+ * expires, <code>ScheduleKeyDeletion</code> deletes the KMS key from KMS. Then KMS makes a
25
+ * best effort to delete the key material from the associated CloudHSM cluster. However, you might
26
+ * need to manually <a href="https://docs.aws.amazon.com/kms/latest/developerguide/fix-keystore.html#fix-keystore-orphaned-key">delete the orphaned key
25
27
  * material</a> from the cluster and its backups.</p>
26
28
  * <p>You can schedule the deletion of a multi-Region primary key and its replica keys at any
27
29
  * time. However, KMS will not delete a multi-Region primary key with existing replica keys. If
@@ -30,18 +32,20 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
30
32
  * operations. This status can continue indefinitely. When the last of its replicas keys is
31
33
  * deleted (not just scheduled), the key state of the primary key changes to
32
34
  * <code>PendingDeletion</code> and its waiting period (<code>PendingWindowInDays</code>)
33
- * begins. For details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-delete.html">Deleting multi-Region keys</a> in the <i>Key Management Service Developer Guide</i>. </p>
35
+ * begins. For details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-delete.html">Deleting multi-Region keys</a> in the
36
+ * <i>Key Management Service Developer Guide</i>. </p>
34
37
  * <p>For more information about scheduling a KMS key for deletion, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/deleting-keys.html">Deleting KMS keys</a> in the
35
38
  * <i>Key Management Service Developer Guide</i>.</p>
36
39
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
37
40
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
38
- *
39
41
  * <p>
40
- * <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
42
+ * <b>Cross-account
43
+ * use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
41
44
  *
42
45
  *
43
46
  * <p>
44
- * <b>Required permissions</b>: kms:ScheduleKeyDeletion (key policy)</p>
47
+ * <b>Required permissions</b>: kms:ScheduleKeyDeletion (key
48
+ * policy)</p>
45
49
  * <p>
46
50
  * <b>Related operations</b>
47
51
  * </p>
@@ -108,4 +112,3 @@ class ScheduleKeyDeletionCommand extends smithy_client_1.Command {
108
112
  }
109
113
  }
110
114
  exports.ScheduleKeyDeletionCommand = ScheduleKeyDeletionCommand;
111
- //# sourceMappingURL=ScheduleKeyDeletionCommand.js.map
@@ -7,20 +7,21 @@ const models_0_1 = require("../models/models_0");
7
7
  const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
8
8
  /**
9
9
  * <p>Creates a <a href="https://en.wikipedia.org/wiki/Digital_signature">digital
10
- * signature</a> for a message or message digest by using the private key in an asymmetric KMS key. To verify the signature, use the <a>Verify</a> operation, or use the public
11
- * key in the same asymmetric KMS key outside of KMS. For information about symmetric and asymmetric KMS keys, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/symmetric-asymmetric.html">Using Symmetric and Asymmetric KMS keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
10
+ * signature</a> for a message or message digest by using the private key in an asymmetric
11
+ * KMS key. To verify the signature, use the <a>Verify</a> operation, or use the
12
+ * public key in the same asymmetric KMS key outside of KMS. For information about symmetric and asymmetric KMS keys, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/symmetric-asymmetric.html">Using Symmetric and Asymmetric KMS keys</a> in the <i>Key Management Service Developer Guide</i>.</p>
12
13
  * <p>Digital signatures are generated and verified by using asymmetric key pair, such as an RSA
13
- * or ECC pair that is represented by an asymmetric KMS key. The key owner (or
14
- * an authorized user) uses their private key to sign a message. Anyone with the public key can
15
- * verify that the message was signed with that particular private key and that the message
16
- * hasn't changed since it was signed. </p>
14
+ * or ECC pair that is represented by an asymmetric KMS key. The key owner (or an authorized
15
+ * user) uses their private key to sign a message. Anyone with the public key can verify that the
16
+ * message was signed with that particular private key and that the message hasn't changed since
17
+ * it was signed. </p>
17
18
  * <p>To use the <code>Sign</code> operation, provide the following information:</p>
18
19
  * <ul>
19
20
  * <li>
20
21
  * <p>Use the <code>KeyId</code> parameter to identify an asymmetric KMS key with a
21
22
  * <code>KeyUsage</code> value of <code>SIGN_VERIFY</code>. To get the
22
- * <code>KeyUsage</code> value of a KMS key, use the <a>DescribeKey</a> operation.
23
- * The caller must have <code>kms:Sign</code> permission on the KMS key.</p>
23
+ * <code>KeyUsage</code> value of a KMS key, use the <a>DescribeKey</a>
24
+ * operation. The caller must have <code>kms:Sign</code> permission on the KMS key.</p>
24
25
  * </li>
25
26
  * <li>
26
27
  * <p>Use the <code>Message</code> parameter to specify the message or message digest to
@@ -42,7 +43,7 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
42
43
  * then use the public key to verify the signature outside of KMS. </p>
43
44
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
44
45
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
45
- * <p>
46
+ * <p>
46
47
  * <b>Cross-account use</b>: Yes. To perform this operation with a KMS key in a different Amazon Web Services account, specify
47
48
  * the key ARN or alias ARN in the value of the <code>KeyId</code> parameter.</p>
48
49
  *
@@ -102,4 +103,3 @@ class SignCommand extends smithy_client_1.Command {
102
103
  }
103
104
  }
104
105
  exports.SignCommand = SignCommand;
105
- //# sourceMappingURL=SignCommand.js.map
@@ -14,16 +14,18 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
14
14
  * The tag value can be an empty (null) string. To add a tag, specify a new tag key and a tag
15
15
  * value. To edit a tag, specify an existing tag key and a new tag value.</p>
16
16
  * <p>You can use this operation to tag a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#customer-cmk">customer managed key</a>, but you cannot
17
- * tag an <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-managed-cmk">Amazon Web Services managed key</a>, an <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-owned-cmk">Amazon Web Services owned key</a>, a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#keystore-concept">custom key store</a>, or
18
- * an <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#alias-concept">alias</a>.</p>
19
- * <p>You can also add tags to a KMS key while creating it (<a>CreateKey</a>) or replicating it (<a>ReplicateKey</a>).</p>
17
+ * tag an <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-managed-cmk">Amazon Web Services
18
+ * managed key</a>, an <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-owned-cmk">Amazon Web Services owned key</a>, a <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#keystore-concept">custom key
19
+ * store</a>, or an <a href="https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#alias-concept">alias</a>.</p>
20
+ * <p>You can also add tags to a KMS key while creating it (<a>CreateKey</a>) or
21
+ * replicating it (<a>ReplicateKey</a>).</p>
20
22
  * <p>For information about using tags in KMS, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/tagging-keys.html">Tagging keys</a>. For general information about
21
23
  * tags, including the format and syntax, see <a href="https://docs.aws.amazon.com/general/latest/gr/aws_tagging.html">Tagging Amazon Web Services resources</a> in the <i>Amazon
22
24
  * Web Services General Reference</i>. </p>
23
25
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
24
26
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
25
27
  * <p>
26
- * <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account. </p>
28
+ * <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account. </p>
27
29
  *
28
30
  * <p>
29
31
  * <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:TagResource</a> (key policy)</p>
@@ -103,4 +105,3 @@ class TagResourceCommand extends smithy_client_1.Command {
103
105
  }
104
106
  }
105
107
  exports.TagResourceCommand = TagResourceCommand;
106
- //# sourceMappingURL=TagResourceCommand.js.map
@@ -12,8 +12,8 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
12
12
  * <p>Tagging or untagging a KMS key can allow or deny permission to the KMS key. For details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/abac.html">Using ABAC in KMS</a> in the <i>Key Management Service Developer Guide</i>.</p>
13
13
  * </note>
14
14
  * <p>When it succeeds, the <code>UntagResource</code> operation doesn't return any output.
15
- * Also, if the specified tag key isn't found on the KMS key, it doesn't throw an exception or return
16
- * a response. To confirm that the operation worked, use the <a>ListResourceTags</a> operation.</p>
15
+ * Also, if the specified tag key isn't found on the KMS key, it doesn't throw an exception or
16
+ * return a response. To confirm that the operation worked, use the <a>ListResourceTags</a> operation.</p>
17
17
  *
18
18
  * <p>For information about using tags in KMS, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/tagging-keys.html">Tagging keys</a>. For general information about
19
19
  * tags, including the format and syntax, see <a href="https://docs.aws.amazon.com/general/latest/gr/aws_tagging.html">Tagging Amazon Web Services resources</a> in the <i>Amazon
@@ -21,7 +21,7 @@ const Aws_json1_1_1 = require("../protocols/Aws_json1_1");
21
21
  * <p>The KMS key that you use for this operation must be in a compatible key state. For
22
22
  * details, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key state: Effect on your KMS key</a> in the <i>Key Management Service Developer Guide</i>.</p>
23
23
  * <p>
24
- * <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
24
+ * <b>Cross-account use</b>: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.</p>
25
25
  *
26
26
  * <p>
27
27
  * <b>Required permissions</b>: <a href="https://docs.aws.amazon.com/kms/latest/developerguide/kms-api-permissions-reference.html">kms:UntagResource</a> (key policy)</p>
@@ -101,4 +101,3 @@ class UntagResourceCommand extends smithy_client_1.Command {
101
101
  }
102
102
  }
103
103
  exports.UntagResourceCommand = UntagResourceCommand;
104
- //# sourceMappingURL=UntagResourceCommand.js.map