npm - @aws-sdk/client-network-firewall - Versions diffs - 3.131.0 → 3.135.0 - Mend

@aws-sdk/client-network-firewall 3.131.0 → 3.135.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/CHANGELOG.md +11 -0
package/dist-cjs/models/models_0.js +35 -3
package/dist-cjs/protocols/Aws_json1_0.js +83 -0
package/dist-es/models/models_0.js +22 -0
package/dist-es/protocols/Aws_json1_0.js +76 -1
package/dist-types/models/models_0.d.ts +96 -0
package/dist-types/ts3.4/models/models_0.d.ts +55 -0
package/package.json +1 -1

package/CHANGELOG.md CHANGED Viewed

@@ -3,6 +3,17 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
+# [3.135.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.134.0...v3.135.0) (2022-07-21)
+### Features
+* **client-network-firewall:** Network Firewall now supports referencing dynamic IP sets from stateful rule groups, for IP sets stored in Amazon VPC prefix lists. ([7fb7490](https://github.com/aws/aws-sdk-js-v3/commit/7fb7490a4c093be17407d16f77151f3fa7c3e03a))
 # [3.131.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.130.0...v3.131.0) (2022-07-15)
 **Note:** Version bump only for package @aws-sdk/client-network-firewall

package/dist-cjs/models/models_0.js CHANGED Viewed

@@ -1,8 +1,8 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.Header = exports.StatefulRuleProtocol = exports.StatefulRuleDirection = exports.StatefulAction = exports.RulesSourceList = exports.TargetType = exports.GeneratedRulesType = exports.CreateFirewallPolicyResponse = exports.FirewallPolicyResponse = exports.ResourceStatus = exports.CreateFirewallPolicyRequest = exports.FirewallPolicy = exports.StatelessRuleGroupReference = exports.CustomAction = exports.StatefulRuleGroupReference = exports.StatefulRuleGroupOverride = exports.OverrideAction = exports.StatefulEngineOptions = exports.RuleOrder = exports.LimitExceededException = exports.CreateFirewallResponse = exports.FirewallStatus = exports.SyncState = exports.PerObjectStatus = exports.PerObjectSyncStatus = exports.FirewallStatusValue = exports.Firewall = exports.CreateFirewallRequest = exports.Tag = exports.EncryptionConfiguration = exports.EncryptionType = exports.ConfigurationSyncState = exports.Attachment = exports.AttachmentStatus = exports.InsufficientCapacityException = exports.AssociateSubnetsResponse = exports.AssociateSubnetsRequest = exports.SubnetMapping = exports.ThrottlingException = exports.ResourceNotFoundException = exports.InvalidTokenException = exports.InvalidRequestException = exports.InvalidOperationException = exports.InternalServerError = exports.AssociateFirewallPolicyResponse = exports.AssociateFirewallPolicyRequest = exports.Address = exports.ActionDefinition = exports.PublishMetricAction = exports.Dimension = void 0;
-exports.FirewallPolicyMetadata = exports.FirewallMetadata = exports.DisassociateSubnetsResponse = exports.DisassociateSubnetsRequest = exports.DescribeRuleGroupMetadataResponse = exports.DescribeRuleGroupMetadataRequest = exports.DescribeRuleGroupResponse = exports.DescribeRuleGroupRequest = exports.DescribeResourcePolicyResponse = exports.DescribeResourcePolicyRequest = exports.DescribeLoggingConfigurationResponse = exports.LoggingConfiguration = exports.LogDestinationConfig = exports.LogType = exports.LogDestinationType = exports.DescribeLoggingConfigurationRequest = exports.DescribeFirewallPolicyResponse = exports.DescribeFirewallPolicyRequest = exports.DescribeFirewallResponse = exports.DescribeFirewallRequest = exports.DeleteRuleGroupResponse = exports.DeleteRuleGroupRequest = exports.InvalidResourcePolicyException = exports.DeleteResourcePolicyResponse = exports.DeleteResourcePolicyRequest = exports.DeleteFirewallPolicyResponse = exports.DeleteFirewallPolicyRequest = exports.UnsupportedOperationException = exports.DeleteFirewallResponse = exports.DeleteFirewallRequest = exports.CreateRuleGroupResponse = exports.RuleGroupResponse = exports.CreateRuleGroupRequest = exports.RuleGroupType = exports.SourceMetadata = exports.RuleGroup = exports.StatefulRuleOptions = exports.RuleVariables = exports.PortSet = exports.IPSet = exports.RulesSource = exports.StatelessRulesAndCustomActions = exports.StatelessRule = exports.RuleDefinition = exports.MatchAttributes = exports.TCPFlagField = exports.TCPFlag = exports.PortRange = exports.StatefulRule = exports.RuleOption = void 0;
-exports.UpdateSubnetChangeProtectionResponse = exports.UpdateSubnetChangeProtectionRequest = exports.UpdateRuleGroupResponse = exports.UpdateRuleGroupRequest = exports.UpdateLoggingConfigurationResponse = exports.UpdateLoggingConfigurationRequest = exports.UpdateFirewallPolicyChangeProtectionResponse = exports.UpdateFirewallPolicyChangeProtectionRequest = exports.UpdateFirewallPolicyResponse = exports.UpdateFirewallPolicyRequest = exports.UpdateFirewallEncryptionConfigurationResponse = exports.UpdateFirewallEncryptionConfigurationRequest = exports.UpdateFirewallDescriptionResponse = exports.UpdateFirewallDescriptionRequest = exports.UpdateFirewallDeleteProtectionResponse = exports.UpdateFirewallDeleteProtectionRequest = exports.ResourceOwnerCheckException = exports.UntagResourceResponse = exports.UntagResourceRequest = exports.TagResourceResponse = exports.TagResourceRequest = exports.PutResourcePolicyResponse = exports.PutResourcePolicyRequest = exports.LogDestinationPermissionException = exports.ListTagsForResourceResponse = exports.ListTagsForResourceRequest = exports.ListRuleGroupsResponse = exports.RuleGroupMetadata = exports.ListRuleGroupsRequest = exports.ResourceManagedStatus = exports.ResourceManagedType = exports.ListFirewallsResponse = exports.ListFirewallsRequest = exports.ListFirewallPoliciesResponse = exports.ListFirewallPoliciesRequest = void 0;
+exports.TargetType = exports.GeneratedRulesType = exports.ReferenceSets = exports.IPSetReference = exports.CreateFirewallPolicyResponse = exports.FirewallPolicyResponse = exports.ResourceStatus = exports.CreateFirewallPolicyRequest = exports.FirewallPolicy = exports.StatelessRuleGroupReference = exports.CustomAction = exports.StatefulRuleGroupReference = exports.StatefulRuleGroupOverride = exports.OverrideAction = exports.StatefulEngineOptions = exports.RuleOrder = exports.LimitExceededException = exports.CreateFirewallResponse = exports.FirewallStatus = exports.SyncState = exports.PerObjectStatus = exports.PerObjectSyncStatus = exports.FirewallStatusValue = exports.Firewall = exports.CreateFirewallRequest = exports.Tag = exports.EncryptionConfiguration = exports.EncryptionType = exports.ConfigurationSyncState = exports.CapacityUsageSummary = exports.CIDRSummary = exports.IPSetMetadata = exports.Attachment = exports.AttachmentStatus = exports.InsufficientCapacityException = exports.AssociateSubnetsResponse = exports.AssociateSubnetsRequest = exports.SubnetMapping = exports.ThrottlingException = exports.ResourceNotFoundException = exports.InvalidTokenException = exports.InvalidRequestException = exports.InvalidOperationException = exports.InternalServerError = exports.AssociateFirewallPolicyResponse = exports.AssociateFirewallPolicyRequest = exports.Address = exports.ActionDefinition = exports.PublishMetricAction = exports.Dimension = void 0;
+exports.DescribeRuleGroupMetadataRequest = exports.DescribeRuleGroupResponse = exports.DescribeRuleGroupRequest = exports.DescribeResourcePolicyResponse = exports.DescribeResourcePolicyRequest = exports.DescribeLoggingConfigurationResponse = exports.LoggingConfiguration = exports.LogDestinationConfig = exports.LogType = exports.LogDestinationType = exports.DescribeLoggingConfigurationRequest = exports.DescribeFirewallPolicyResponse = exports.DescribeFirewallPolicyRequest = exports.DescribeFirewallResponse = exports.DescribeFirewallRequest = exports.DeleteRuleGroupResponse = exports.DeleteRuleGroupRequest = exports.InvalidResourcePolicyException = exports.DeleteResourcePolicyResponse = exports.DeleteResourcePolicyRequest = exports.DeleteFirewallPolicyResponse = exports.DeleteFirewallPolicyRequest = exports.UnsupportedOperationException = exports.DeleteFirewallResponse = exports.DeleteFirewallRequest = exports.CreateRuleGroupResponse = exports.RuleGroupResponse = exports.CreateRuleGroupRequest = exports.RuleGroupType = exports.SourceMetadata = exports.RuleGroup = exports.StatefulRuleOptions = exports.RuleVariables = exports.PortSet = exports.IPSet = exports.RulesSource = exports.StatelessRulesAndCustomActions = exports.StatelessRule = exports.RuleDefinition = exports.MatchAttributes = exports.TCPFlagField = exports.TCPFlag = exports.PortRange = exports.StatefulRule = exports.RuleOption = exports.Header = exports.StatefulRuleProtocol = exports.StatefulRuleDirection = exports.StatefulAction = exports.RulesSourceList = void 0;
+exports.UpdateSubnetChangeProtectionResponse = exports.UpdateSubnetChangeProtectionRequest = exports.UpdateRuleGroupResponse = exports.UpdateRuleGroupRequest = exports.UpdateLoggingConfigurationResponse = exports.UpdateLoggingConfigurationRequest = exports.UpdateFirewallPolicyChangeProtectionResponse = exports.UpdateFirewallPolicyChangeProtectionRequest = exports.UpdateFirewallPolicyResponse = exports.UpdateFirewallPolicyRequest = exports.UpdateFirewallEncryptionConfigurationResponse = exports.UpdateFirewallEncryptionConfigurationRequest = exports.UpdateFirewallDescriptionResponse = exports.UpdateFirewallDescriptionRequest = exports.UpdateFirewallDeleteProtectionResponse = exports.UpdateFirewallDeleteProtectionRequest = exports.ResourceOwnerCheckException = exports.UntagResourceResponse = exports.UntagResourceRequest = exports.TagResourceResponse = exports.TagResourceRequest = exports.PutResourcePolicyResponse = exports.PutResourcePolicyRequest = exports.LogDestinationPermissionException = exports.ListTagsForResourceResponse = exports.ListTagsForResourceRequest = exports.ListRuleGroupsResponse = exports.RuleGroupMetadata = exports.ListRuleGroupsRequest = exports.ResourceManagedStatus = exports.ResourceManagedType = exports.ListFirewallsResponse = exports.ListFirewallsRequest = exports.ListFirewallPoliciesResponse = exports.ListFirewallPoliciesRequest = exports.FirewallPolicyMetadata = exports.FirewallMetadata = exports.DisassociateSubnetsResponse = exports.DisassociateSubnetsRequest = exports.DescribeRuleGroupMetadataResponse = void 0;
 const NetworkFirewallServiceException_1 = require("./NetworkFirewallServiceException");
 var Dimension;
 (function (Dimension) {
@@ -169,8 +169,27 @@ var Attachment;
         ...obj,
     });
 })(Attachment = exports.Attachment || (exports.Attachment = {}));
+var IPSetMetadata;
+(function (IPSetMetadata) {
+    IPSetMetadata.filterSensitiveLog = (obj) => ({
+        ...obj,
+    });
+})(IPSetMetadata = exports.IPSetMetadata || (exports.IPSetMetadata = {}));
+var CIDRSummary;
+(function (CIDRSummary) {
+    CIDRSummary.filterSensitiveLog = (obj) => ({
+        ...obj,
+    });
+})(CIDRSummary = exports.CIDRSummary || (exports.CIDRSummary = {}));
+var CapacityUsageSummary;
+(function (CapacityUsageSummary) {
+    CapacityUsageSummary.filterSensitiveLog = (obj) => ({
+        ...obj,
+    });
+})(CapacityUsageSummary = exports.CapacityUsageSummary || (exports.CapacityUsageSummary = {}));
 var ConfigurationSyncState;
 (function (ConfigurationSyncState) {
+    ConfigurationSyncState["CAPACITY_CONSTRAINED"] = "CAPACITY_CONSTRAINED";
     ConfigurationSyncState["IN_SYNC"] = "IN_SYNC";
     ConfigurationSyncState["PENDING"] = "PENDING";
 })(ConfigurationSyncState = exports.ConfigurationSyncState || (exports.ConfigurationSyncState = {}));
@@ -211,6 +230,7 @@ var FirewallStatusValue;
 })(FirewallStatusValue = exports.FirewallStatusValue || (exports.FirewallStatusValue = {}));
 var PerObjectSyncStatus;
 (function (PerObjectSyncStatus) {
+    PerObjectSyncStatus["CAPACITY_CONSTRAINED"] = "CAPACITY_CONSTRAINED";
     PerObjectSyncStatus["IN_SYNC"] = "IN_SYNC";
     PerObjectSyncStatus["PENDING"] = "PENDING";
 })(PerObjectSyncStatus = exports.PerObjectSyncStatus || (exports.PerObjectSyncStatus = {}));
@@ -320,6 +340,18 @@ var CreateFirewallPolicyResponse;
         ...obj,
     });
 })(CreateFirewallPolicyResponse = exports.CreateFirewallPolicyResponse || (exports.CreateFirewallPolicyResponse = {}));
+var IPSetReference;
+(function (IPSetReference) {
+    IPSetReference.filterSensitiveLog = (obj) => ({
+        ...obj,
+    });
+})(IPSetReference = exports.IPSetReference || (exports.IPSetReference = {}));
+var ReferenceSets;
+(function (ReferenceSets) {
+    ReferenceSets.filterSensitiveLog = (obj) => ({
+        ...obj,
+    });
+})(ReferenceSets = exports.ReferenceSets || (exports.ReferenceSets = {}));
 var GeneratedRulesType;
 (function (GeneratedRulesType) {
     GeneratedRulesType["ALLOWLIST"] = "ALLOWLIST";

package/dist-cjs/protocols/Aws_json1_0.js CHANGED Viewed

@@ -2199,6 +2199,22 @@ const serializeAws_json1_0IPSet = (input, context) => {
         }),
     };
 };
+const serializeAws_json1_0IPSetReference = (input, context) => {
+    return {
+        ...(input.ReferenceArn != null && { ReferenceArn: input.ReferenceArn }),
+    };
+};
+const serializeAws_json1_0IPSetReferenceMap = (input, context) => {
+    return Object.entries(input).reduce((acc, [key, value]) => {
+        if (value === null) {
+            return acc;
+        }
+        return {
+            ...acc,
+            [key]: serializeAws_json1_0IPSetReference(value, context),
+        };
+    }, {});
+};
 const serializeAws_json1_0IPSets = (input, context) => {
     return Object.entries(input).reduce((acc, [key, value]) => {
         if (value === null) {
@@ -2343,6 +2359,13 @@ const serializeAws_json1_0PutResourcePolicyRequest = (input, context) => {
         ...(input.ResourceArn != null && { ResourceArn: input.ResourceArn }),
     };
 };
+const serializeAws_json1_0ReferenceSets = (input, context) => {
+    return {
+        ...(input.IPSetReferences != null && {
+            IPSetReferences: serializeAws_json1_0IPSetReferenceMap(input.IPSetReferences, context),
+        }),
+    };
+};
 const serializeAws_json1_0RuleDefinition = (input, context) => {
     return {
         ...(input.Actions != null && { Actions: serializeAws_json1_0StatelessActions(input.Actions, context) }),
@@ -2353,6 +2376,9 @@ const serializeAws_json1_0RuleDefinition = (input, context) => {
 };
 const serializeAws_json1_0RuleGroup = (input, context) => {
     return {
+        ...(input.ReferenceSets != null && {
+            ReferenceSets: serializeAws_json1_0ReferenceSets(input.ReferenceSets, context),
+        }),
         ...(input.RuleVariables != null && {
             RuleVariables: serializeAws_json1_0RuleVariables(input.RuleVariables, context),
         }),
@@ -2775,6 +2801,20 @@ const deserializeAws_json1_0Attachment = (output, context) => {
         SubnetId: (0, smithy_client_1.expectString)(output.SubnetId),
     };
 };
+const deserializeAws_json1_0CapacityUsageSummary = (output, context) => {
+    return {
+        CIDRs: output.CIDRs != null ? deserializeAws_json1_0CIDRSummary(output.CIDRs, context) : undefined,
+    };
+};
+const deserializeAws_json1_0CIDRSummary = (output, context) => {
+    return {
+        AvailableCIDRCount: (0, smithy_client_1.expectInt32)(output.AvailableCIDRCount),
+        IPSetReferences: output.IPSetReferences != null
+            ? deserializeAws_json1_0IPSetMetadataMap(output.IPSetReferences, context)
+            : undefined,
+        UtilizedCIDRCount: (0, smithy_client_1.expectInt32)(output.UtilizedCIDRCount),
+    };
+};
 const deserializeAws_json1_0CreateFirewallPolicyResponse = (output, context) => {
     return {
         FirewallPolicyResponse: output.FirewallPolicyResponse != null
@@ -3020,6 +3060,9 @@ const deserializeAws_json1_0Firewalls = (output, context) => {
 };
 const deserializeAws_json1_0FirewallStatus = (output, context) => {
     return {
+        CapacityUsageSummary: output.CapacityUsageSummary != null
+            ? deserializeAws_json1_0CapacityUsageSummary(output.CapacityUsageSummary, context)
+            : undefined,
         ConfigurationSyncStateSummary: (0, smithy_client_1.expectString)(output.ConfigurationSyncStateSummary),
         Status: (0, smithy_client_1.expectString)(output.Status),
         SyncStates: output.SyncStates != null ? deserializeAws_json1_0SyncStates(output.SyncStates, context) : undefined,
@@ -3081,6 +3124,38 @@ const deserializeAws_json1_0IPSet = (output, context) => {
         Definition: output.Definition != null ? deserializeAws_json1_0VariableDefinitionList(output.Definition, context) : undefined,
     };
 };
+const deserializeAws_json1_0IPSetMetadata = (output, context) => {
+    return {
+        ResolvedCIDRCount: (0, smithy_client_1.expectInt32)(output.ResolvedCIDRCount),
+    };
+};
+const deserializeAws_json1_0IPSetMetadataMap = (output, context) => {
+    return Object.entries(output).reduce((acc, [key, value]) => {
+        if (value === null) {
+            return acc;
+        }
+        return {
+            ...acc,
+            [key]: deserializeAws_json1_0IPSetMetadata(value, context),
+        };
+    }, {});
+};
+const deserializeAws_json1_0IPSetReference = (output, context) => {
+    return {
+        ReferenceArn: (0, smithy_client_1.expectString)(output.ReferenceArn),
+    };
+};
+const deserializeAws_json1_0IPSetReferenceMap = (output, context) => {
+    return Object.entries(output).reduce((acc, [key, value]) => {
+        if (value === null) {
+            return acc;
+        }
+        return {
+            ...acc,
+            [key]: deserializeAws_json1_0IPSetReference(value, context),
+        };
+    }, {});
+};
 const deserializeAws_json1_0IPSets = (output, context) => {
     return Object.entries(output).reduce((acc, [key, value]) => {
         if (value === null) {
@@ -3234,6 +3309,13 @@ const deserializeAws_json1_0PublishMetricAction = (output, context) => {
 const deserializeAws_json1_0PutResourcePolicyResponse = (output, context) => {
     return {};
 };
+const deserializeAws_json1_0ReferenceSets = (output, context) => {
+    return {
+        IPSetReferences: output.IPSetReferences != null
+            ? deserializeAws_json1_0IPSetReferenceMap(output.IPSetReferences, context)
+            : undefined,
+    };
+};
 const deserializeAws_json1_0ResourceNotFoundException = (output, context) => {
     return {
         Message: (0, smithy_client_1.expectString)(output.Message),
@@ -3254,6 +3336,7 @@ const deserializeAws_json1_0RuleDefinition = (output, context) => {
 };
 const deserializeAws_json1_0RuleGroup = (output, context) => {
     return {
+        ReferenceSets: output.ReferenceSets != null ? deserializeAws_json1_0ReferenceSets(output.ReferenceSets, context) : undefined,
         RuleVariables: output.RuleVariables != null ? deserializeAws_json1_0RuleVariables(output.RuleVariables, context) : undefined,
         RulesSource: output.RulesSource != null ? deserializeAws_json1_0RulesSource(output.RulesSource, context) : undefined,
         StatefulRuleOptions: output.StatefulRuleOptions != null

package/dist-es/models/models_0.js CHANGED Viewed

@@ -138,8 +138,21 @@ export var Attachment;
 (function (Attachment) {
     Attachment.filterSensitiveLog = function (obj) { return (__assign({}, obj)); };
 })(Attachment || (Attachment = {}));
+export var IPSetMetadata;
+(function (IPSetMetadata) {
+    IPSetMetadata.filterSensitiveLog = function (obj) { return (__assign({}, obj)); };
+})(IPSetMetadata || (IPSetMetadata = {}));
+export var CIDRSummary;
+(function (CIDRSummary) {
+    CIDRSummary.filterSensitiveLog = function (obj) { return (__assign({}, obj)); };
+})(CIDRSummary || (CIDRSummary = {}));
+export var CapacityUsageSummary;
+(function (CapacityUsageSummary) {
+    CapacityUsageSummary.filterSensitiveLog = function (obj) { return (__assign({}, obj)); };
+})(CapacityUsageSummary || (CapacityUsageSummary = {}));
 export var ConfigurationSyncState;
 (function (ConfigurationSyncState) {
+    ConfigurationSyncState["CAPACITY_CONSTRAINED"] = "CAPACITY_CONSTRAINED";
     ConfigurationSyncState["IN_SYNC"] = "IN_SYNC";
     ConfigurationSyncState["PENDING"] = "PENDING";
 })(ConfigurationSyncState || (ConfigurationSyncState = {}));
@@ -172,6 +185,7 @@ export var FirewallStatusValue;
 })(FirewallStatusValue || (FirewallStatusValue = {}));
 export var PerObjectSyncStatus;
 (function (PerObjectSyncStatus) {
+    PerObjectSyncStatus["CAPACITY_CONSTRAINED"] = "CAPACITY_CONSTRAINED";
     PerObjectSyncStatus["IN_SYNC"] = "IN_SYNC";
     PerObjectSyncStatus["PENDING"] = "PENDING";
 })(PerObjectSyncStatus || (PerObjectSyncStatus = {}));
@@ -254,6 +268,14 @@ export var CreateFirewallPolicyResponse;
 (function (CreateFirewallPolicyResponse) {
     CreateFirewallPolicyResponse.filterSensitiveLog = function (obj) { return (__assign({}, obj)); };
 })(CreateFirewallPolicyResponse || (CreateFirewallPolicyResponse = {}));
+export var IPSetReference;
+(function (IPSetReference) {
+    IPSetReference.filterSensitiveLog = function (obj) { return (__assign({}, obj)); };
+})(IPSetReference || (IPSetReference = {}));
+export var ReferenceSets;
+(function (ReferenceSets) {
+    ReferenceSets.filterSensitiveLog = function (obj) { return (__assign({}, obj)); };
+})(ReferenceSets || (ReferenceSets = {}));
 export var GeneratedRulesType;
 (function (GeneratedRulesType) {
     GeneratedRulesType["ALLOWLIST"] = "ALLOWLIST";

package/dist-es/protocols/Aws_json1_0.js CHANGED Viewed

@@ -2679,6 +2679,19 @@ var serializeAws_json1_0IPSet = function (input, context) {
         Definition: serializeAws_json1_0VariableDefinitionList(input.Definition, context),
     }));
 };
+var serializeAws_json1_0IPSetReference = function (input, context) {
+    return __assign({}, (input.ReferenceArn != null && { ReferenceArn: input.ReferenceArn }));
+};
+var serializeAws_json1_0IPSetReferenceMap = function (input, context) {
+    return Object.entries(input).reduce(function (acc, _a) {
+        var _b;
+        var _c = __read(_a, 2), key = _c[0], value = _c[1];
+        if (value === null) {
+            return acc;
+        }
+        return __assign(__assign({}, acc), (_b = {}, _b[key] = serializeAws_json1_0IPSetReference(value, context), _b));
+    }, {});
+};
 var serializeAws_json1_0IPSets = function (input, context) {
     return Object.entries(input).reduce(function (acc, _a) {
         var _b;
@@ -2780,13 +2793,20 @@ var serializeAws_json1_0PublishMetricAction = function (input, context) {
 var serializeAws_json1_0PutResourcePolicyRequest = function (input, context) {
     return __assign(__assign({}, (input.Policy != null && { Policy: input.Policy })), (input.ResourceArn != null && { ResourceArn: input.ResourceArn }));
 };
+var serializeAws_json1_0ReferenceSets = function (input, context) {
+    return __assign({}, (input.IPSetReferences != null && {
+        IPSetReferences: serializeAws_json1_0IPSetReferenceMap(input.IPSetReferences, context),
+    }));
+};
 var serializeAws_json1_0RuleDefinition = function (input, context) {
     return __assign(__assign({}, (input.Actions != null && { Actions: serializeAws_json1_0StatelessActions(input.Actions, context) })), (input.MatchAttributes != null && {
         MatchAttributes: serializeAws_json1_0MatchAttributes(input.MatchAttributes, context),
     }));
 };
 var serializeAws_json1_0RuleGroup = function (input, context) {
-    return __assign(__assign(__assign({}, (input.RuleVariables != null && {
+    return __assign(__assign(__assign(__assign({}, (input.ReferenceSets != null && {
+        ReferenceSets: serializeAws_json1_0ReferenceSets(input.ReferenceSets, context),
+    })), (input.RuleVariables != null && {
         RuleVariables: serializeAws_json1_0RuleVariables(input.RuleVariables, context),
     })), (input.RulesSource != null && { RulesSource: serializeAws_json1_0RulesSource(input.RulesSource, context) })), (input.StatefulRuleOptions != null && {
         StatefulRuleOptions: serializeAws_json1_0StatefulRuleOptions(input.StatefulRuleOptions, context),
@@ -3102,6 +3122,20 @@ var deserializeAws_json1_0Attachment = function (output, context) {
         SubnetId: __expectString(output.SubnetId),
     };
 };
+var deserializeAws_json1_0CapacityUsageSummary = function (output, context) {
+    return {
+        CIDRs: output.CIDRs != null ? deserializeAws_json1_0CIDRSummary(output.CIDRs, context) : undefined,
+    };
+};
+var deserializeAws_json1_0CIDRSummary = function (output, context) {
+    return {
+        AvailableCIDRCount: __expectInt32(output.AvailableCIDRCount),
+        IPSetReferences: output.IPSetReferences != null
+            ? deserializeAws_json1_0IPSetMetadataMap(output.IPSetReferences, context)
+            : undefined,
+        UtilizedCIDRCount: __expectInt32(output.UtilizedCIDRCount),
+    };
+};
 var deserializeAws_json1_0CreateFirewallPolicyResponse = function (output, context) {
     return {
         FirewallPolicyResponse: output.FirewallPolicyResponse != null
@@ -3347,6 +3381,9 @@ var deserializeAws_json1_0Firewalls = function (output, context) {
 };
 var deserializeAws_json1_0FirewallStatus = function (output, context) {
     return {
+        CapacityUsageSummary: output.CapacityUsageSummary != null
+            ? deserializeAws_json1_0CapacityUsageSummary(output.CapacityUsageSummary, context)
+            : undefined,
         ConfigurationSyncStateSummary: __expectString(output.ConfigurationSyncStateSummary),
         Status: __expectString(output.Status),
         SyncStates: output.SyncStates != null ? deserializeAws_json1_0SyncStates(output.SyncStates, context) : undefined,
@@ -3408,6 +3445,36 @@ var deserializeAws_json1_0IPSet = function (output, context) {
         Definition: output.Definition != null ? deserializeAws_json1_0VariableDefinitionList(output.Definition, context) : undefined,
     };
 };
+var deserializeAws_json1_0IPSetMetadata = function (output, context) {
+    return {
+        ResolvedCIDRCount: __expectInt32(output.ResolvedCIDRCount),
+    };
+};
+var deserializeAws_json1_0IPSetMetadataMap = function (output, context) {
+    return Object.entries(output).reduce(function (acc, _a) {
+        var _b;
+        var _c = __read(_a, 2), key = _c[0], value = _c[1];
+        if (value === null) {
+            return acc;
+        }
+        return __assign(__assign({}, acc), (_b = {}, _b[key] = deserializeAws_json1_0IPSetMetadata(value, context), _b));
+    }, {});
+};
+var deserializeAws_json1_0IPSetReference = function (output, context) {
+    return {
+        ReferenceArn: __expectString(output.ReferenceArn),
+    };
+};
+var deserializeAws_json1_0IPSetReferenceMap = function (output, context) {
+    return Object.entries(output).reduce(function (acc, _a) {
+        var _b;
+        var _c = __read(_a, 2), key = _c[0], value = _c[1];
+        if (value === null) {
+            return acc;
+        }
+        return __assign(__assign({}, acc), (_b = {}, _b[key] = deserializeAws_json1_0IPSetReference(value, context), _b));
+    }, {});
+};
 var deserializeAws_json1_0IPSets = function (output, context) {
     return Object.entries(output).reduce(function (acc, _a) {
         var _b;
@@ -3558,6 +3625,13 @@ var deserializeAws_json1_0PublishMetricAction = function (output, context) {
 var deserializeAws_json1_0PutResourcePolicyResponse = function (output, context) {
     return {};
 };
+var deserializeAws_json1_0ReferenceSets = function (output, context) {
+    return {
+        IPSetReferences: output.IPSetReferences != null
+            ? deserializeAws_json1_0IPSetReferenceMap(output.IPSetReferences, context)
+            : undefined,
+    };
+};
 var deserializeAws_json1_0ResourceNotFoundException = function (output, context) {
     return {
         Message: __expectString(output.Message),
@@ -3578,6 +3652,7 @@ var deserializeAws_json1_0RuleDefinition = function (output, context) {
 };
 var deserializeAws_json1_0RuleGroup = function (output, context) {
     return {
+        ReferenceSets: output.ReferenceSets != null ? deserializeAws_json1_0ReferenceSets(output.ReferenceSets, context) : undefined,
         RuleVariables: output.RuleVariables != null ? deserializeAws_json1_0RuleVariables(output.RuleVariables, context) : undefined,
         RulesSource: output.RulesSource != null ? deserializeAws_json1_0RulesSource(output.RulesSource, context) : undefined,
         StatefulRuleOptions: output.StatefulRuleOptions != null

package/dist-types/models/models_0.d.ts CHANGED Viewed

@@ -349,7 +349,61 @@ export declare namespace Attachment {
      */
     const filterSensitiveLog: (obj: Attachment) => any;
 }
+/**
+ * <p>General information about the IP set.</p>
+ */
+export interface IPSetMetadata {
+    /**
+     * <p>Describes the total number of CIDR blocks currently in use by the IP set references in a firewall. To determine how many CIDR blocks are available for you to use in a firewall, you can call <code>AvailableCIDRCount</code>.</p>
+     */
+    ResolvedCIDRCount?: number;
+}
+export declare namespace IPSetMetadata {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: IPSetMetadata) => any;
+}
+/**
+ * <p>Summarizes the CIDR blocks used by the IP set references in a firewall. Network Firewall calculates the number of CIDRs by taking an aggregated count of all CIDRs used by the IP sets you are referencing.</p>
+ */
+export interface CIDRSummary {
+    /**
+     * <p>The number of CIDR blocks available for use by the IP set references in a firewall.</p>
+     */
+    AvailableCIDRCount?: number;
+    /**
+     * <p>The number of CIDR blocks used by the IP set references in a firewall.</p>
+     */
+    UtilizedCIDRCount?: number;
+    /**
+     * <p>The list of the IP set references used by a firewall.</p>
+     */
+    IPSetReferences?: Record<string, IPSetMetadata>;
+}
+export declare namespace CIDRSummary {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: CIDRSummary) => any;
+}
+/**
+ * <p>The capacity usage summary of the resources used by the <a>ReferenceSets</a> in a firewall.</p>
+ */
+export interface CapacityUsageSummary {
+    /**
+     * <p>Describes the capacity usage of the CIDR blocks used by the IP set references in a firewall.</p>
+     */
+    CIDRs?: CIDRSummary;
+}
+export declare namespace CapacityUsageSummary {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: CapacityUsageSummary) => any;
+}
 export declare enum ConfigurationSyncState {
+    CAPACITY_CONSTRAINED = "CAPACITY_CONSTRAINED",
     IN_SYNC = "IN_SYNC",
     PENDING = "PENDING"
 }
@@ -537,6 +591,7 @@ export declare enum FirewallStatusValue {
     READY = "READY"
 }
 export declare enum PerObjectSyncStatus {
+    CAPACITY_CONSTRAINED = "CAPACITY_CONSTRAINED",
     IN_SYNC = "IN_SYNC",
     PENDING = "PENDING"
 }
@@ -635,6 +690,10 @@ export interface FirewallStatus {
      *          and configuration object. </p>
      */
     SyncStates?: Record<string, SyncState>;
+    /**
+     * <p>Describes the capacity usage of the resources contained in a firewall's reference sets. Network Firewall calclulates the capacity usage by taking an aggregated count of all of the resources used by all of the reference sets in a firewall.</p>
+     */
+    CapacityUsageSummary?: CapacityUsageSummary;
 }
 export declare namespace FirewallStatus {
     /**
@@ -1010,6 +1069,39 @@ export declare namespace CreateFirewallPolicyResponse {
      */
     const filterSensitiveLog: (obj: CreateFirewallPolicyResponse) => any;
 }
+/**
+ * <p>Configures one or more IP set references for a Suricata-compatible rule group. This is used in <a>CreateRuleGroup</a> or <a>UpdateRuleGroup</a>. An IP set reference is a rule variable that references a resource that you create and manage in another Amazon Web Services service, such as an Amazon VPC prefix list. Network Firewall IP set references enable you to dynamically update the contents of your rules. When you create, update, or delete the IP set you are referencing in your rule, Network Firewall automatically updates the rule's content with the changes. For more information about IP set references in Network Firewall, see <a href="https://docs.aws.amazon.com/network-firewall/latest/developerguide/rule-groups-ip-set-references">Using IP set references</a> in the <i>Network Firewall Developer Guide</i>.</p>
+ *          <p>
+ *         Network Firewall currently supports only <a href="https://docs.aws.amazon.com/vpc/latest/userguide/managed-prefix-lists.html">Amazon VPC prefix lists</a> as IP set references.
+ *       </p>
+ */
+export interface IPSetReference {
+    /**
+     * <p>The Amazon Resource Name (ARN) of the resource that you are referencing in your rule group.</p>
+     */
+    ReferenceArn?: string;
+}
+export declare namespace IPSetReference {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: IPSetReference) => any;
+}
+/**
+ * <p>Contains a set of IP set references.</p>
+ */
+export interface ReferenceSets {
+    /**
+     * <p>The list of IP set references.</p>
+     */
+    IPSetReferences?: Record<string, IPSetReference>;
+}
+export declare namespace ReferenceSets {
+    /**
+     * @internal
+     */
+    const filterSensitiveLog: (obj: ReferenceSets) => any;
+}
 export declare enum GeneratedRulesType {
     ALLOWLIST = "ALLOWLIST",
     DENYLIST = "DENYLIST"
@@ -1565,6 +1657,10 @@ export interface RuleGroup {
      *          these for stateful rule groups. </p>
      */
     RuleVariables?: RuleVariables;
+    /**
+     * <p>The list of a rule group's reference sets.</p>
+     */
+    ReferenceSets?: ReferenceSets;
     /**
      * <p>The stateful rules or stateless rules for the rule group. </p>
      */

package/dist-types/ts3.4/models/models_0.d.ts CHANGED Viewed

@@ -176,7 +176,39 @@ export declare namespace Attachment {
     const filterSensitiveLog: (obj: Attachment) => any;
 }
+export interface IPSetMetadata {
+    ResolvedCIDRCount?: number;
+}
+export declare namespace IPSetMetadata {
+    const filterSensitiveLog: (obj: IPSetMetadata) => any;
+}
+export interface CIDRSummary {
+    AvailableCIDRCount?: number;
+    UtilizedCIDRCount?: number;
+    IPSetReferences?: Record<string, IPSetMetadata>;
+}
+export declare namespace CIDRSummary {
+    const filterSensitiveLog: (obj: CIDRSummary) => any;
+}
+export interface CapacityUsageSummary {
+    CIDRs?: CIDRSummary;
+}
+export declare namespace CapacityUsageSummary {
+    const filterSensitiveLog: (obj: CapacityUsageSummary) => any;
+}
 export declare enum ConfigurationSyncState {
+    CAPACITY_CONSTRAINED = "CAPACITY_CONSTRAINED",
     IN_SYNC = "IN_SYNC",
     PENDING = "PENDING"
 }
@@ -269,6 +301,7 @@ export declare enum FirewallStatusValue {
     READY = "READY"
 }
 export declare enum PerObjectSyncStatus {
+    CAPACITY_CONSTRAINED = "CAPACITY_CONSTRAINED",
     IN_SYNC = "IN_SYNC",
     PENDING = "PENDING"
 }
@@ -302,6 +335,8 @@ export interface FirewallStatus {
     ConfigurationSyncStateSummary: ConfigurationSyncState | string | undefined;
     SyncStates?: Record<string, SyncState>;
+    CapacityUsageSummary?: CapacityUsageSummary;
 }
 export declare namespace FirewallStatus {
@@ -467,6 +502,24 @@ export declare namespace CreateFirewallPolicyResponse {
     const filterSensitiveLog: (obj: CreateFirewallPolicyResponse) => any;
 }
+export interface IPSetReference {
+    ReferenceArn?: string;
+}
+export declare namespace IPSetReference {
+    const filterSensitiveLog: (obj: IPSetReference) => any;
+}
+export interface ReferenceSets {
+    IPSetReferences?: Record<string, IPSetReference>;
+}
+export declare namespace ReferenceSets {
+    const filterSensitiveLog: (obj: ReferenceSets) => any;
+}
 export declare enum GeneratedRulesType {
     ALLOWLIST = "ALLOWLIST",
     DENYLIST = "DENYLIST"
@@ -703,6 +756,8 @@ export interface RuleGroup {
     RuleVariables?: RuleVariables;
+    ReferenceSets?: ReferenceSets;
     RulesSource: RulesSource | undefined;
     StatefulRuleOptions?: StatefulRuleOptions;

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-network-firewall",
   "description": "AWS SDK for JavaScript Network Firewall Client for Node.js, Browser and React Native",
-  "version": "3.131.0",
+  "version": "3.135.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "tsc -p tsconfig.cjs.json",