@aws-sdk/client-s3-control 3.863.0 → 3.870.0

package/dist-cjs/index.js

@@ -29,6 +29,8 @@ __export(index_exports, {
   BucketCannedACL: () => BucketCannedACL,
   BucketLocationConstraint: () => BucketLocationConstraint,
   BucketVersioningStatus: () => BucketVersioningStatus,
+  ComputeObjectChecksumAlgorithm: () => ComputeObjectChecksumAlgorithm,
+  ComputeObjectChecksumType: () => ComputeObjectChecksumType,
   CreateAccessGrantCommand: () => CreateAccessGrantCommand,
   CreateAccessGrantsInstanceCommand: () => CreateAccessGrantsInstanceCommand,
   CreateAccessGrantsLocationCommand: () => CreateAccessGrantsLocationCommand,
@@ -551,6 +553,18 @@ var JobManifestGenerator;
     return visitor._(value.$unknown[0], value.$unknown[1]);
   }, "visit");
 })(JobManifestGenerator || (JobManifestGenerator = {}));
+var ComputeObjectChecksumAlgorithm = {
+  CRC32: "CRC32",
+  CRC32C: "CRC32C",
+  CRC64NVME: "CRC64NVME",
+  MD5: "MD5",
+  SHA1: "SHA1",
+  SHA256: "SHA256"
+};
+var ComputeObjectChecksumType = {
+  COMPOSITE: "COMPOSITE",
+  FULL_OBJECT: "FULL_OBJECT"
+};
 var S3GlacierJobTier = {
   BULK: "BULK",
   STANDARD: "STANDARD"
@@ -842,17 +856,6 @@ var InvalidRequestException = class _InvalidRequestException extends S3ControlSe
     this.Message = opts.Message;
   }
 };
-var OperationName = {
-  LambdaInvoke: "LambdaInvoke",
-  S3DeleteObjectTagging: "S3DeleteObjectTagging",
-  S3InitiateRestoreObject: "S3InitiateRestoreObject",
-  S3PutObjectAcl: "S3PutObjectAcl",
-  S3PutObjectCopy: "S3PutObjectCopy",
-  S3PutObjectLegalHold: "S3PutObjectLegalHold",
-  S3PutObjectRetention: "S3PutObjectRetention",
-  S3PutObjectTagging: "S3PutObjectTagging",
-  S3ReplicateObject: "S3ReplicateObject"
-};
 var CredentialsFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
   ...obj.AccessKeyId && { AccessKeyId: import_smithy_client.SENSITIVE_STRING },
@@ -865,6 +868,18 @@ var GetDataAccessResultFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
 }), "GetDataAccessResultFilterSensitiveLog");
 
 // src/models/models_1.ts
+var OperationName = {
+  LambdaInvoke: "LambdaInvoke",
+  S3ComputeObjectChecksum: "S3ComputeObjectChecksum",
+  S3DeleteObjectTagging: "S3DeleteObjectTagging",
+  S3InitiateRestoreObject: "S3InitiateRestoreObject",
+  S3PutObjectAcl: "S3PutObjectAcl",
+  S3PutObjectCopy: "S3PutObjectCopy",
+  S3PutObjectLegalHold: "S3PutObjectLegalHold",
+  S3PutObjectRetention: "S3PutObjectRetention",
+  S3PutObjectTagging: "S3PutObjectTagging",
+  S3ReplicateObject: "S3ReplicateObject"
+};
 var MFADelete = {
   Disabled: "Disabled",
   Enabled: "Enabled"
@@ -4266,6 +4281,9 @@ var se_JobOperation = /* @__PURE__ */ __name((input, context) => {
   if (input[_SRO] != null) {
     bn.c(se_S3ReplicateObjectOperation(input[_SRO], context).n(_SRO));
   }
+  if (input[_SCOC] != null) {
+    bn.c(se_S3ComputeObjectChecksumOperation(input[_SCOC], context).n(_SCOC));
+  }
   return bn;
 }, "se_JobOperation");
 var se_JobReport = /* @__PURE__ */ __name((input, context) => {
@@ -4285,6 +4303,9 @@ var se_JobReport = /* @__PURE__ */ __name((input, context) => {
   if (input[_RS] != null) {
     bn.c(import_xml_builder.XmlNode.of(_JRS, input[_RS]).n(_RS));
   }
+  if (input[_EBO] != null) {
+    bn.c(import_xml_builder.XmlNode.of(_AI, input[_EBO]).n(_EBO));
+  }
   return bn;
 }, "se_JobReport");
 var se_KeyNameConstraint = /* @__PURE__ */ __name((input, context) => {
@@ -4744,6 +4765,16 @@ var se_S3BucketDestination = /* @__PURE__ */ __name((input, context) => {
   }
   return bn;
 }, "se_S3BucketDestination");
+var se_S3ComputeObjectChecksumOperation = /* @__PURE__ */ __name((input, context) => {
+  const bn = new import_xml_builder.XmlNode(_SCOCO);
+  if (input[_CAh] != null) {
+    bn.c(import_xml_builder.XmlNode.of(_COCA, input[_CAh]).n(_CAh));
+  }
+  if (input[_CTh] != null) {
+    bn.c(import_xml_builder.XmlNode.of(_COCT, input[_CTh]).n(_CTh));
+  }
+  return bn;
+}, "se_S3ComputeObjectChecksumOperation");
 var se_S3CopyObjectOperation = /* @__PURE__ */ __name((input, context) => {
   const bn = new import_xml_builder.XmlNode(_SCOO);
   if (input[_TR] != null) {
@@ -5885,6 +5916,9 @@ var de_JobOperation = /* @__PURE__ */ __name((output, context) => {
   if (output[_SRO] != null) {
     contents[_SRO] = de_S3ReplicateObjectOperation(output[_SRO], context);
   }
+  if (output[_SCOC] != null) {
+    contents[_SCOC] = de_S3ComputeObjectChecksumOperation(output[_SCOC], context);
+  }
   return contents;
 }, "de_JobOperation");
 var de_JobProgressSummary = /* @__PURE__ */ __name((output, context) => {
@@ -5920,6 +5954,9 @@ var de_JobReport = /* @__PURE__ */ __name((output, context) => {
   if (output[_RS] != null) {
     contents[_RS] = (0, import_smithy_client.expectString)(output[_RS]);
   }
+  if (output[_EBO] != null) {
+    contents[_EBO] = (0, import_smithy_client.expectString)(output[_EBO]);
+  }
   return contents;
 }, "de_JobReport");
 var de_JobTimers = /* @__PURE__ */ __name((output, context) => {
@@ -6680,6 +6717,16 @@ var de_S3BucketDestination = /* @__PURE__ */ __name((output, context) => {
   }
   return contents;
 }, "de_S3BucketDestination");
+var de_S3ComputeObjectChecksumOperation = /* @__PURE__ */ __name((output, context) => {
+  const contents = {};
+  if (output[_CAh] != null) {
+    contents[_CAh] = (0, import_smithy_client.expectString)(output[_CAh]);
+  }
+  if (output[_CTh] != null) {
+    contents[_CTh] = (0, import_smithy_client.expectString)(output[_CTh]);
+  }
+  return contents;
+}, "de_S3ComputeObjectChecksumOperation");
 var de_S3CopyObjectOperation = /* @__PURE__ */ __name((output, context) => {
   const contents = {};
   if (output[_TR] != null) {
@@ -7381,11 +7428,14 @@ var _CLo = "ContentLength";
 var _CMD = "ContentMD5";
 var _CMRAPI = "CreateMultiRegionAccessPointInput";
 var _CMRAPR = "CreateMultiRegionAccessPointRequest";
+var _COCA = "ComputeObjectChecksumAlgorithm";
+var _COCT = "ComputeObjectChecksumType";
 var _CR = "ConfirmationRequired";
 var _CRSBA = "ConfirmRemoveSelfBucketAccess";
 var _CRT = "ClientRequestToken";
 var _CSLGR = "CreateStorageLensGroupRequest";
 var _CT = "ClientToken";
+var _CTh = "ChecksumType";
 var _CTo = "ContentTransformation";
 var _CTon = "ContentType";
 var _CTr = "CreationTime";
@@ -7665,6 +7715,8 @@ var _SC = "StorageClass";
 var _SCA = "S3ChecksumAlgorithm";
 var _SCACL = "S3CannedAccessControlList";
 var _SCL = "S3ContentLength";
+var _SCOC = "S3ComputeObjectChecksum";
+var _SCOCO = "S3ComputeObjectChecksumOperation";
 var _SCOO = "S3CopyObjectOperation";
 var _SCe = "SelectionCriteria";
 var _SCu = "SuspendedCause";
@@ -10254,6 +10306,8 @@ var paginateListStorageLensGroups = (0, import_core.createPaginator)(S3ControlCl
   ReplicationStatus,
   GeneratedManifestFormat,
   JobManifestGenerator,
+  ComputeObjectChecksumAlgorithm,
+  ComputeObjectChecksumType,
   S3GlacierJobTier,
   S3GranteeTypeIdentifier,
   S3Permission,
@@ -10290,9 +10344,9 @@ var paginateListStorageLensGroups = (0, import_core.createPaginator)(S3ControlCl
   OutputSchemaVersion,
   InvalidNextTokenException,
   InvalidRequestException,
-  OperationName,
   CredentialsFilterSensitiveLog,
   GetDataAccessResultFilterSensitiveLog,
+  OperationName,
   MFADelete,
   TooManyTagsException,
   JobStatusException,

package/dist-es/models/models_0.js

@@ -152,6 +152,18 @@ export var JobManifestGenerator;
         return visitor._(value.$unknown[0], value.$unknown[1]);
     };
 })(JobManifestGenerator || (JobManifestGenerator = {}));
+export const ComputeObjectChecksumAlgorithm = {
+    CRC32: "CRC32",
+    CRC32C: "CRC32C",
+    CRC64NVME: "CRC64NVME",
+    MD5: "MD5",
+    SHA1: "SHA1",
+    SHA256: "SHA256",
+};
+export const ComputeObjectChecksumType = {
+    COMPOSITE: "COMPOSITE",
+    FULL_OBJECT: "FULL_OBJECT",
+};
 export const S3GlacierJobTier = {
     BULK: "BULK",
     STANDARD: "STANDARD",
@@ -401,17 +413,6 @@ export class InvalidRequestException extends __BaseException {
         this.Message = opts.Message;
     }
 }
-export const OperationName = {
-    LambdaInvoke: "LambdaInvoke",
-    S3DeleteObjectTagging: "S3DeleteObjectTagging",
-    S3InitiateRestoreObject: "S3InitiateRestoreObject",
-    S3PutObjectAcl: "S3PutObjectAcl",
-    S3PutObjectCopy: "S3PutObjectCopy",
-    S3PutObjectLegalHold: "S3PutObjectLegalHold",
-    S3PutObjectRetention: "S3PutObjectRetention",
-    S3PutObjectTagging: "S3PutObjectTagging",
-    S3ReplicateObject: "S3ReplicateObject",
-};
 export const CredentialsFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.AccessKeyId && { AccessKeyId: SENSITIVE_STRING }),

package/dist-es/models/models_1.js

@@ -1,4 +1,16 @@
 import { S3ControlServiceException as __BaseException } from "./S3ControlServiceException";
+export const OperationName = {
+    LambdaInvoke: "LambdaInvoke",
+    S3ComputeObjectChecksum: "S3ComputeObjectChecksum",
+    S3DeleteObjectTagging: "S3DeleteObjectTagging",
+    S3InitiateRestoreObject: "S3InitiateRestoreObject",
+    S3PutObjectAcl: "S3PutObjectAcl",
+    S3PutObjectCopy: "S3PutObjectCopy",
+    S3PutObjectLegalHold: "S3PutObjectLegalHold",
+    S3PutObjectRetention: "S3PutObjectRetention",
+    S3PutObjectTagging: "S3PutObjectTagging",
+    S3ReplicateObject: "S3ReplicateObject",
+};
 export const MFADelete = {
     Disabled: "Disabled",
     Enabled: "Enabled",

package/dist-es/protocols/Aws_restXml.js

@@ -3375,6 +3375,9 @@ const se_JobOperation = (input, context) => {
     if (input[_SRO] != null) {
         bn.c(se_S3ReplicateObjectOperation(input[_SRO], context).n(_SRO));
     }
+    if (input[_SCOC] != null) {
+        bn.c(se_S3ComputeObjectChecksumOperation(input[_SCOC], context).n(_SCOC));
+    }
     return bn;
 };
 const se_JobReport = (input, context) => {
@@ -3394,6 +3397,9 @@ const se_JobReport = (input, context) => {
     if (input[_RS] != null) {
         bn.c(__XmlNode.of(_JRS, input[_RS]).n(_RS));
     }
+    if (input[_EBO] != null) {
+        bn.c(__XmlNode.of(_AI, input[_EBO]).n(_EBO));
+    }
     return bn;
 };
 const se_KeyNameConstraint = (input, context) => {
@@ -3863,6 +3869,16 @@ const se_S3BucketDestination = (input, context) => {
     }
     return bn;
 };
+const se_S3ComputeObjectChecksumOperation = (input, context) => {
+    const bn = new __XmlNode(_SCOCO);
+    if (input[_CAh] != null) {
+        bn.c(__XmlNode.of(_COCA, input[_CAh]).n(_CAh));
+    }
+    if (input[_CTh] != null) {
+        bn.c(__XmlNode.of(_COCT, input[_CTh]).n(_CTh));
+    }
+    return bn;
+};
 const se_S3CopyObjectOperation = (input, context) => {
     const bn = new __XmlNode(_SCOO);
     if (input[_TR] != null) {
@@ -5054,6 +5070,9 @@ const de_JobOperation = (output, context) => {
     if (output[_SRO] != null) {
         contents[_SRO] = de_S3ReplicateObjectOperation(output[_SRO], context);
     }
+    if (output[_SCOC] != null) {
+        contents[_SCOC] = de_S3ComputeObjectChecksumOperation(output[_SCOC], context);
+    }
     return contents;
 };
 const de_JobProgressSummary = (output, context) => {
@@ -5089,6 +5108,9 @@ const de_JobReport = (output, context) => {
     if (output[_RS] != null) {
         contents[_RS] = __expectString(output[_RS]);
     }
+    if (output[_EBO] != null) {
+        contents[_EBO] = __expectString(output[_EBO]);
+    }
     return contents;
 };
 const de_JobTimers = (output, context) => {
@@ -5902,6 +5924,16 @@ const de_S3BucketDestination = (output, context) => {
     }
     return contents;
 };
+const de_S3ComputeObjectChecksumOperation = (output, context) => {
+    const contents = {};
+    if (output[_CAh] != null) {
+        contents[_CAh] = __expectString(output[_CAh]);
+    }
+    if (output[_CTh] != null) {
+        contents[_CTh] = __expectString(output[_CTh]);
+    }
+    return contents;
+};
 const de_S3CopyObjectOperation = (output, context) => {
     const contents = {};
     if (output[_TR] != null) {
@@ -6643,11 +6675,14 @@ const _CLo = "ContentLength";
 const _CMD = "ContentMD5";
 const _CMRAPI = "CreateMultiRegionAccessPointInput";
 const _CMRAPR = "CreateMultiRegionAccessPointRequest";
+const _COCA = "ComputeObjectChecksumAlgorithm";
+const _COCT = "ComputeObjectChecksumType";
 const _CR = "ConfirmationRequired";
 const _CRSBA = "ConfirmRemoveSelfBucketAccess";
 const _CRT = "ClientRequestToken";
 const _CSLGR = "CreateStorageLensGroupRequest";
 const _CT = "ClientToken";
+const _CTh = "ChecksumType";
 const _CTo = "ContentTransformation";
 const _CTon = "ContentType";
 const _CTr = "CreationTime";
@@ -6927,6 +6962,8 @@ const _SC = "StorageClass";
 const _SCA = "S3ChecksumAlgorithm";
 const _SCACL = "S3CannedAccessControlList";
 const _SCL = "S3ContentLength";
+const _SCOC = "S3ComputeObjectChecksum";
+const _SCOCO = "S3ComputeObjectChecksumOperation";
 const _SCOO = "S3CopyObjectOperation";
 const _SCe = "SelectionCriteria";
 const _SCu = "SuspendedCause";

package/dist-types/commands/AssociateAccessGrantsIdentityCenterCommand.d.ts

@@ -27,17 +27,27 @@ declare const AssociateAccessGrantsIdentityCenterCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Associate your S3 Access Grants instance with an Amazon Web Services IAM Identity Center instance. Use this action if you want to create access grants for users or groups from your corporate identity directory. First, you must add your corporate identity directory to Amazon Web Services IAM Identity Center. Then, you can associate this IAM Identity Center instance with your S3 Access Grants instance.</p>
+ * <p>Associate your S3 Access Grants instance with an Amazon Web Services IAM Identity Center instance. Use this
+ *          action if you want to create access grants for users or groups from your corporate identity
+ *          directory. First, you must add your corporate identity directory to Amazon Web Services IAM Identity
+ *          Center. Then, you can associate this IAM Identity Center instance with your S3 Access Grants
+ *          instance.</p>
  *          <dl>
  *             <dt>Permissions</dt>
  *             <dd>
- *                <p>You must have the <code>s3:AssociateAccessGrantsIdentityCenter</code> permission to use this operation. </p>
+ *                <p>You must have the <code>s3:AssociateAccessGrantsIdentityCenter</code>
+ *                   permission to use this operation. </p>
  *             </dd>
  *             <dt>Additional Permissions</dt>
  *             <dd>
- *                <p>You must also have the following permissions: <code>sso:CreateApplication</code>, <code>sso:PutApplicationGrant</code>, and <code>sso:PutApplicationAuthenticationMethod</code>. </p>
+ *                <p>You must also have the following permissions:
+ *                      <code>sso:CreateApplication</code>, <code>sso:PutApplicationGrant</code>, and
+ *                      <code>sso:PutApplicationAuthenticationMethod</code>. </p>
  *             </dd>
  *          </dl>
+ *          <important>
+ *             <p>You must URL encode any signed header values that contain spaces. For example, if your header value is <code>my  file.txt</code>, containing two spaces after <code>my</code>, you must URL encode this value to <code>my%20%20file.txt</code>.</p>
+ *          </important>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/CreateAccessGrantCommand.d.ts

@@ -27,15 +27,21 @@ declare const CreateAccessGrantCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Creates an access grant that gives a grantee access to your S3 data. The grantee can be an IAM user or role or a directory user, or group. Before you can create a grant, you must have an S3 Access Grants instance in the same Region as the S3 data. You can create an S3 Access Grants instance using the <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_CreateAccessGrantsInstance.html">CreateAccessGrantsInstance</a>. You must also have registered at least one S3 data location in your S3 Access Grants instance using <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_CreateAccessGrantsLocation.html">CreateAccessGrantsLocation</a>.  </p>
+ * <p>Creates an access grant that gives a grantee access to your S3 data. The grantee can be
+ *          an IAM user or role or a directory user, or group. Before you can create a grant, you
+ *          must have an S3 Access Grants instance in the same Region as the S3 data. You can create an S3 Access Grants
+ *          instance using the <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_CreateAccessGrantsInstance.html">CreateAccessGrantsInstance</a>. You must also have registered at least one S3 data
+ *          location in your S3 Access Grants instance using <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_CreateAccessGrantsLocation.html">CreateAccessGrantsLocation</a>. </p>
  *          <dl>
  *             <dt>Permissions</dt>
  *             <dd>
- *                <p>You must have the <code>s3:CreateAccessGrant</code> permission to use this operation. </p>
+ *                <p>You must have the <code>s3:CreateAccessGrant</code> permission to use this
+ *                   operation. </p>
  *             </dd>
  *             <dt>Additional Permissions</dt>
  *             <dd>
- *                <p>For any directory identity - <code>sso:DescribeInstance</code> and <code>sso:DescribeApplication</code>
+ *                <p>For any directory identity - <code>sso:DescribeInstance</code> and
+ *                      <code>sso:DescribeApplication</code>
  *                </p>
  *                <p>For directory users - <code>identitystore:DescribeUser</code>
  *                </p>
@@ -43,6 +49,9 @@ declare const CreateAccessGrantCommand_base: {
  *                </p>
  *             </dd>
  *          </dl>
+ *          <important>
+ *             <p>You must URL encode any signed header values that contain spaces. For example, if your header value is <code>my  file.txt</code>, containing two spaces after <code>my</code>, you must URL encode this value to <code>my%20%20file.txt</code>.</p>
+ *          </important>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/CreateAccessGrantsInstanceCommand.d.ts

@@ -27,17 +27,25 @@ declare const CreateAccessGrantsInstanceCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Creates an S3 Access Grants instance, which serves as a logical grouping for access grants. You can create one S3 Access Grants instance per Region per account. </p>
+ * <p>Creates an S3 Access Grants instance, which serves as a logical grouping for access grants. You
+ *          can create one S3 Access Grants instance per Region per account. </p>
  *          <dl>
  *             <dt>Permissions</dt>
  *             <dd>
- *                <p>You must have the <code>s3:CreateAccessGrantsInstance</code> permission to use this operation. </p>
+ *                <p>You must have the <code>s3:CreateAccessGrantsInstance</code> permission to use
+ *                   this operation. </p>
  *             </dd>
  *             <dt>Additional Permissions</dt>
  *             <dd>
- *                <p>To associate an IAM Identity Center instance with your S3 Access Grants instance, you must also have the <code>sso:DescribeInstance</code>, <code>sso:CreateApplication</code>, <code>sso:PutApplicationGrant</code>, and <code>sso:PutApplicationAuthenticationMethod</code> permissions. </p>
+ *                <p>To associate an IAM Identity Center instance with your S3 Access Grants instance, you
+ *                   must also have the <code>sso:DescribeInstance</code>,
+ *                      <code>sso:CreateApplication</code>, <code>sso:PutApplicationGrant</code>, and
+ *                      <code>sso:PutApplicationAuthenticationMethod</code> permissions. </p>
  *             </dd>
  *          </dl>
+ *          <important>
+ *             <p>You must URL encode any signed header values that contain spaces. For example, if your header value is <code>my  file.txt</code>, containing two spaces after <code>my</code>, you must URL encode this value to <code>my%20%20file.txt</code>.</p>
+ *          </important>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/CreateAccessGrantsLocationCommand.d.ts

@@ -27,7 +27,9 @@ declare const CreateAccessGrantsLocationCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>The S3 data location that you would like to register in your S3 Access Grants instance. Your S3 data must be in the same Region as your S3 Access Grants instance. The location can be one of the following: </p>
+ * <p>The S3 data location that you would like to register in your S3 Access Grants instance. Your S3
+ *          data must be in the same Region as your S3 Access Grants instance. The location can be one of the
+ *          following: </p>
  *          <ul>
  *             <li>
  *                <p>The default S3 location <code>s3://</code>
@@ -42,18 +44,26 @@ declare const CreateAccessGrantsLocationCommand_base: {
  *                </p>
  *             </li>
  *          </ul>
- *          <p>When you register a location, you must include the IAM role that has permission to manage the S3 location that you are registering. Give S3 Access Grants permission to assume this role <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-grants-location.html">using a policy</a>. S3 Access Grants assumes this role to manage access to the location and to vend temporary credentials to grantees or client applications. </p>
+ *          <p>When you register a location, you must include the IAM role that has permission to
+ *          manage the S3 location that you are registering. Give S3 Access Grants permission to assume this role
+ *             <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-grants-location.html">using a policy</a>. S3 Access Grants assumes this role to manage access to the location and
+ *          to vend temporary credentials to grantees or client applications. </p>
  *          <dl>
  *             <dt>Permissions</dt>
  *             <dd>
- *                <p>You must have the <code>s3:CreateAccessGrantsLocation</code> permission to use this operation. </p>
+ *                <p>You must have the <code>s3:CreateAccessGrantsLocation</code> permission to use
+ *                   this operation. </p>
  *             </dd>
  *             <dt>Additional Permissions</dt>
  *             <dd>
- *                <p>You must also have the following permission for the specified IAM role: <code>iam:PassRole</code>
+ *                <p>You must also have the following permission for the specified IAM role:
+ *                      <code>iam:PassRole</code>
  *                </p>
  *             </dd>
  *          </dl>
+ *          <important>
+ *             <p>You must URL encode any signed header values that contain spaces. For example, if your header value is <code>my  file.txt</code>, containing two spaces after <code>my</code>, you must URL encode this value to <code>my%20%20file.txt</code>.</p>
+ *          </important>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/CreateAccessPointCommand.d.ts

@@ -66,6 +66,9 @@ declare const CreateAccessPointCommand_base: {
  *                </p>
  *             </li>
  *          </ul>
+ *          <important>
+ *             <p>You must URL encode any signed header values that contain spaces. For example, if your header value is <code>my  file.txt</code>, containing two spaces after <code>my</code>, you must URL encode this value to <code>my%20%20file.txt</code>.</p>
+ *          </important>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/CreateAccessPointForObjectLambdaCommand.d.ts

@@ -51,6 +51,9 @@ declare const CreateAccessPointForObjectLambdaCommand_base: {
  *                </p>
  *             </li>
  *          </ul>
+ *          <important>
+ *             <p>You must URL encode any signed header values that contain spaces. For example, if your header value is <code>my  file.txt</code>, containing two spaces after <code>my</code>, you must URL encode this value to <code>my%20%20file.txt</code>.</p>
+ *          </important>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/CreateJobCommand.d.ts

@@ -34,8 +34,9 @@ declare const CreateJobCommand_base: {
  *          <dl>
  *             <dt>Permissions</dt>
  *             <dd>
- *                <p>For information about permissions required to use the Batch Operations, see <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/batch-ops-iam-role-policies.html">Granting permissions for S3 Batch Operations</a> in the <i>Amazon S3
- *                      User Guide</i>.</p>
+ *                <p>For information about permissions required to use the Batch Operations, see <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/batch-ops-iam-role-policies.html">Granting
+ *                      permissions for S3 Batch Operations</a> in the <i>Amazon S3 User
+ *                      Guide</i>.</p>
  *             </dd>
  *          </dl>
  *          <p></p>
@@ -67,6 +68,9 @@ declare const CreateJobCommand_base: {
  *                </p>
  *             </li>
  *          </ul>
+ *          <important>
+ *             <p>You must URL encode any signed header values that contain spaces. For example, if your header value is <code>my  file.txt</code>, containing two spaces after <code>my</code>, you must URL encode this value to <code>my%20%20file.txt</code>.</p>
+ *          </important>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -179,6 +183,10 @@ declare const CreateJobCommand_base: {
  *       },
  *     },
  *     S3ReplicateObject: {},
+ *     S3ComputeObjectChecksum: { // S3ComputeObjectChecksumOperation
+ *       ChecksumAlgorithm: "CRC32" || "CRC32C" || "CRC64NVME" || "MD5" || "SHA1" || "SHA256",
+ *       ChecksumType: "FULL_OBJECT" || "COMPOSITE",
+ *     },
  *   },
  *   Report: { // JobReport
  *     Bucket: "STRING_VALUE",
@@ -186,6 +194,7 @@ declare const CreateJobCommand_base: {
  *     Enabled: true || false, // required
  *     Prefix: "STRING_VALUE",
  *     ReportScope: "AllTasks" || "FailedTasksOnly",
+ *     ExpectedBucketOwner: "STRING_VALUE",
  *   },
  *   ClientRequestToken: "STRING_VALUE", // required
  *   Manifest: { // JobManifest

package/dist-types/commands/CreateMultiRegionAccessPointCommand.d.ts

@@ -31,7 +31,8 @@ declare const CreateMultiRegionAccessPointCommand_base: {
  *             <p>This operation is not supported by directory buckets.</p>
  *          </note>
  *          <p>Creates a Multi-Region Access Point and associates it with the specified buckets. For more information
- *          about creating Multi-Region Access Points, see <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/CreatingMultiRegionAccessPoints.html">Creating Multi-Region Access Points</a> in the <i>Amazon S3 User Guide</i>.</p>
+ *          about creating Multi-Region Access Points, see <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/CreatingMultiRegionAccessPoints.html">Creating
+ *             Multi-Region Access Points</a> in the <i>Amazon S3 User Guide</i>.</p>
  *          <p>This action will always be routed to the US West (Oregon) Region. For more information
  *          about the restrictions around working with Multi-Region Access Points, see <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/MultiRegionAccessPointRestrictions.html">Multi-Region Access Point
  *             restrictions and limitations</a> in the <i>Amazon S3 User Guide</i>.</p>
@@ -62,6 +63,9 @@ declare const CreateMultiRegionAccessPointCommand_base: {
  *                </p>
  *             </li>
  *          </ul>
+ *          <important>
+ *             <p>You must URL encode any signed header values that contain spaces. For example, if your header value is <code>my  file.txt</code>, containing two spaces after <code>my</code>, you must URL encode this value to <code>my%20%20file.txt</code>.</p>
+ *          </important>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/CreateStorageLensGroupCommand.d.ts

@@ -40,6 +40,9 @@ declare const CreateStorageLensGroupCommand_base: {
  *          Groups permissions, see <a href="https://docs.aws.amazon.com/AmazonS3/latest/userguide/storage_lens_iam_permissions.html#storage_lens_groups_permissions">Setting account permissions to use S3 Storage Lens groups</a>.</p>
  *          <p>For information about Storage Lens groups errors, see <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/ErrorResponses.html#S3LensErrorCodeList">List of Amazon S3 Storage
  *             Lens error codes</a>.</p>
+ *          <important>
+ *             <p>You must URL encode any signed header values that contain spaces. For example, if your header value is <code>my  file.txt</code>, containing two spaces after <code>my</code>, you must URL encode this value to <code>my%20%20file.txt</code>.</p>
+ *          </important>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/DeleteAccessGrantCommand.d.ts

@@ -27,13 +27,18 @@ declare const DeleteAccessGrantCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Deletes the access grant from the S3 Access Grants instance. You cannot undo an access grant deletion and the grantee will no longer have access to the S3 data.</p>
+ * <p>Deletes the access grant from the S3 Access Grants instance. You cannot undo an access grant
+ *          deletion and the grantee will no longer have access to the S3 data.</p>
  *          <dl>
  *             <dt>Permissions</dt>
  *             <dd>
- *                <p>You must have the <code>s3:DeleteAccessGrant</code> permission to use this operation. </p>
+ *                <p>You must have the <code>s3:DeleteAccessGrant</code> permission to use this
+ *                   operation. </p>
  *             </dd>
  *          </dl>
+ *          <important>
+ *             <p>You must URL encode any signed header values that contain spaces. For example, if your header value is <code>my  file.txt</code>, containing two spaces after <code>my</code>, you must URL encode this value to <code>my%20%20file.txt</code>.</p>
+ *          </important>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/DeleteAccessGrantsInstanceCommand.d.ts

@@ -27,13 +27,21 @@ declare const DeleteAccessGrantsInstanceCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Deletes your S3 Access Grants instance. You must first delete the access grants and locations before S3 Access Grants can delete the instance. See <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_DeleteAccessGrant.html">DeleteAccessGrant</a> and <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_DeleteAccessGrantsLocation.html">DeleteAccessGrantsLocation</a>. If you have associated an IAM Identity Center instance with your S3 Access Grants instance, you must first dissassociate the Identity Center instance from the S3 Access Grants instance before you can delete the S3 Access Grants instance. See <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_AssociateAccessGrantsIdentityCenter.html">AssociateAccessGrantsIdentityCenter</a> and <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_DissociateAccessGrantsIdentityCenter.html">DissociateAccessGrantsIdentityCenter</a>.</p>
+ * <p>Deletes your S3 Access Grants instance. You must first delete the access grants and locations
+ *          before S3 Access Grants can delete the instance. See <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_DeleteAccessGrant.html">DeleteAccessGrant</a>
+ *          and <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_DeleteAccessGrantsLocation.html">DeleteAccessGrantsLocation</a>. If you have associated an IAM Identity Center
+ *          instance with your S3 Access Grants instance, you must first dissassociate the Identity Center
+ *          instance from the S3 Access Grants instance before you can delete the S3 Access Grants instance. See <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_AssociateAccessGrantsIdentityCenter.html">AssociateAccessGrantsIdentityCenter</a> and <a href="https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_DissociateAccessGrantsIdentityCenter.html">DissociateAccessGrantsIdentityCenter</a>.</p>
  *          <dl>
  *             <dt>Permissions</dt>
  *             <dd>
- *                <p>You must have the <code>s3:DeleteAccessGrantsInstance</code> permission to use this operation. </p>
+ *                <p>You must have the <code>s3:DeleteAccessGrantsInstance</code> permission to use
+ *                   this operation. </p>
  *             </dd>
  *          </dl>
+ *          <important>
+ *             <p>You must URL encode any signed header values that contain spaces. For example, if your header value is <code>my  file.txt</code>, containing two spaces after <code>my</code>, you must URL encode this value to <code>my%20%20file.txt</code>.</p>
+ *          </important>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/DeleteAccessGrantsInstanceResourcePolicyCommand.d.ts

@@ -27,13 +27,19 @@ declare const DeleteAccessGrantsInstanceResourcePolicyCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Deletes the resource policy of the S3 Access Grants instance. The resource policy is used to manage cross-account access to your S3 Access Grants instance. By deleting the resource policy, you delete any cross-account permissions to your S3 Access Grants instance. </p>
+ * <p>Deletes the resource policy of the S3 Access Grants instance. The resource policy is used to
+ *          manage cross-account access to your S3 Access Grants instance. By deleting the resource policy, you
+ *          delete any cross-account permissions to your S3 Access Grants instance. </p>
  *          <dl>
  *             <dt>Permissions</dt>
  *             <dd>
- *                <p>You must have the <code>s3:DeleteAccessGrantsInstanceResourcePolicy</code> permission to use this operation. </p>
+ *                <p>You must have the <code>s3:DeleteAccessGrantsInstanceResourcePolicy</code>
+ *                   permission to use this operation. </p>
  *             </dd>
  *          </dl>
+ *          <important>
+ *             <p>You must URL encode any signed header values that contain spaces. For example, if your header value is <code>my  file.txt</code>, containing two spaces after <code>my</code>, you must URL encode this value to <code>my%20%20file.txt</code>.</p>
+ *          </important>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript