@aws-sdk/client-sesv2 3.699.0 → 3.709.0

package/dist-cjs/auth/httpAuthSchemeProvider.js

@@ -2,8 +2,24 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.resolveHttpAuthSchemeConfig = exports.defaultSESv2HttpAuthSchemeProvider = exports.defaultSESv2HttpAuthSchemeParametersProvider = void 0;
 const core_1 = require("@aws-sdk/core");
+const signature_v4_multi_region_1 = require("@aws-sdk/signature-v4-multi-region");
+const middleware_endpoint_1 = require("@smithy/middleware-endpoint");
 const util_middleware_1 = require("@smithy/util-middleware");
-const defaultSESv2HttpAuthSchemeParametersProvider = async (config, context, input) => {
+const endpointResolver_1 = require("../endpoint/endpointResolver");
+const createEndpointRuleSetHttpAuthSchemeParametersProvider = (defaultHttpAuthSchemeParametersProvider) => async (config, context, input) => {
+    if (!input) {
+        throw new Error(`Could not find \`input\` for \`defaultEndpointRuleSetHttpAuthSchemeParametersProvider\``);
+    }
+    const defaultParameters = await defaultHttpAuthSchemeParametersProvider(config, context, input);
+    const instructionsFn = (0, util_middleware_1.getSmithyContext)(context)?.commandInstance?.constructor
+        ?.getEndpointParameterInstructions;
+    if (!instructionsFn) {
+        throw new Error(`getEndpointParameterInstructions() is not defined on \`${context.commandName}\``);
+    }
+    const endpointParameters = await (0, middleware_endpoint_1.resolveParams)(input, { getEndpointParameterInstructions: instructionsFn }, config);
+    return Object.assign(defaultParameters, endpointParameters);
+};
+const _defaultSESv2HttpAuthSchemeParametersProvider = async (config, context, input) => {
     return {
         operation: (0, util_middleware_1.getSmithyContext)(context).operation,
         region: (await (0, util_middleware_1.normalizeProvider)(config.region)()) ||
@@ -12,7 +28,7 @@ const defaultSESv2HttpAuthSchemeParametersProvider = async (config, context, inp
             })(),
     };
 };
-exports.defaultSESv2HttpAuthSchemeParametersProvider = defaultSESv2HttpAuthSchemeParametersProvider;
+exports.defaultSESv2HttpAuthSchemeParametersProvider = createEndpointRuleSetHttpAuthSchemeParametersProvider(_defaultSESv2HttpAuthSchemeParametersProvider);
 function createAwsAuthSigv4HttpAuthOption(authParameters) {
     return {
         schemeId: "aws.auth#sigv4",
@@ -28,20 +44,84 @@ function createAwsAuthSigv4HttpAuthOption(authParameters) {
         }),
     };
 }
-const defaultSESv2HttpAuthSchemeProvider = (authParameters) => {
+function createAwsAuthSigv4aHttpAuthOption(authParameters) {
+    return {
+        schemeId: "aws.auth#sigv4a",
+        signingProperties: {
+            name: "ses",
+            region: authParameters.region,
+        },
+        propertiesExtractor: (config, context) => ({
+            signingProperties: {
+                config,
+                context,
+            },
+        }),
+    };
+}
+const createEndpointRuleSetHttpAuthSchemeProvider = (defaultEndpointResolver, defaultHttpAuthSchemeResolver, createHttpAuthOptionFunctions) => {
+    const endpointRuleSetHttpAuthSchemeProvider = (authParameters) => {
+        const endpoint = defaultEndpointResolver(authParameters);
+        const authSchemes = endpoint.properties?.authSchemes;
+        if (!authSchemes) {
+            return defaultHttpAuthSchemeResolver(authParameters);
+        }
+        const options = [];
+        for (const scheme of authSchemes) {
+            const { name: resolvedName, properties = {}, ...rest } = scheme;
+            const name = resolvedName.toLowerCase();
+            if (resolvedName !== name) {
+                console.warn(`HttpAuthScheme has been normalized with lowercasing: \`${resolvedName}\` to \`${name}\``);
+            }
+            let schemeId;
+            if (name === "sigv4a") {
+                schemeId = "aws.auth#sigv4a";
+                const sigv4Present = authSchemes.find((s) => {
+                    const name = s.name.toLowerCase();
+                    return name !== "sigv4a" && name.startsWith("sigv4");
+                });
+                if (!signature_v4_multi_region_1.signatureV4CrtContainer.CrtSignerV4 && sigv4Present) {
+                    continue;
+                }
+            }
+            else if (name.startsWith("sigv4")) {
+                schemeId = "aws.auth#sigv4";
+            }
+            else {
+                throw new Error(`Unknown HttpAuthScheme found in \`@smithy.rules#endpointRuleSet\`: \`${name}\``);
+            }
+            const createOption = createHttpAuthOptionFunctions[schemeId];
+            if (!createOption) {
+                throw new Error(`Could not find HttpAuthOption create function for \`${schemeId}\``);
+            }
+            const option = createOption(authParameters);
+            option.schemeId = schemeId;
+            option.signingProperties = { ...(option.signingProperties || {}), ...rest, ...properties };
+            options.push(option);
+        }
+        return options;
+    };
+    return endpointRuleSetHttpAuthSchemeProvider;
+};
+const _defaultSESv2HttpAuthSchemeProvider = (authParameters) => {
     const options = [];
     switch (authParameters.operation) {
         default: {
             options.push(createAwsAuthSigv4HttpAuthOption(authParameters));
+            options.push(createAwsAuthSigv4aHttpAuthOption(authParameters));
         }
     }
     return options;
 };
-exports.defaultSESv2HttpAuthSchemeProvider = defaultSESv2HttpAuthSchemeProvider;
+exports.defaultSESv2HttpAuthSchemeProvider = createEndpointRuleSetHttpAuthSchemeProvider(endpointResolver_1.defaultEndpointResolver, _defaultSESv2HttpAuthSchemeProvider, {
+    "aws.auth#sigv4": createAwsAuthSigv4HttpAuthOption,
+    "aws.auth#sigv4a": createAwsAuthSigv4aHttpAuthOption,
+});
 const resolveHttpAuthSchemeConfig = (config) => {
     const config_0 = (0, core_1.resolveAwsSdkSigV4Config)(config);
+    const config_1 = (0, core_1.resolveAwsSdkSigV4AConfig)(config_0);
     return {
-        ...config_0,
+        ...config_1,
     };
 };
 exports.resolveHttpAuthSchemeConfig = resolveHttpAuthSchemeConfig;

package/dist-cjs/index.js

@@ -320,7 +320,8 @@ var _SESv2Client = class _SESv2Client extends import_smithy_client.Client {
       (0, import_core.getHttpAuthSchemeEndpointRuleSetPlugin)(this.config, {
         httpAuthSchemeParametersProvider: import_httpAuthSchemeProvider.defaultSESv2HttpAuthSchemeParametersProvider,
         identityProviderConfigProvider: async (config) => new import_core.DefaultIdentityProviderConfig({
-          "aws.auth#sigv4": config.credentials
+          "aws.auth#sigv4": config.credentials,
+          "aws.auth#sigv4a": config.credentials
         })
       })
     );
@@ -686,14 +687,36 @@ var _SendingPausedException = class _SendingPausedException extends SESv2Service
 };
 __name(_SendingPausedException, "SendingPausedException");
 var SendingPausedException = _SendingPausedException;
-var DkimSigningKeyLength = {
-  RSA_1024_BIT: "RSA_1024_BIT",
-  RSA_2048_BIT: "RSA_2048_BIT"
-};
 var DkimSigningAttributesOrigin = {
   AWS_SES: "AWS_SES",
+  AWS_SES_AF_SOUTH_1: "AWS_SES_AF_SOUTH_1",
+  AWS_SES_AP_NORTHEAST_1: "AWS_SES_AP_NORTHEAST_1",
+  AWS_SES_AP_NORTHEAST_2: "AWS_SES_AP_NORTHEAST_2",
+  AWS_SES_AP_NORTHEAST_3: "AWS_SES_AP_NORTHEAST_3",
+  AWS_SES_AP_SOUTHEAST_1: "AWS_SES_AP_SOUTHEAST_1",
+  AWS_SES_AP_SOUTHEAST_2: "AWS_SES_AP_SOUTHEAST_2",
+  AWS_SES_AP_SOUTHEAST_3: "AWS_SES_AP_SOUTHEAST_3",
+  AWS_SES_AP_SOUTH_1: "AWS_SES_AP_SOUTH_1",
+  AWS_SES_CA_CENTRAL_1: "AWS_SES_CA_CENTRAL_1",
+  AWS_SES_EU_CENTRAL_1: "AWS_SES_EU_CENTRAL_1",
+  AWS_SES_EU_NORTH_1: "AWS_SES_EU_NORTH_1",
+  AWS_SES_EU_SOUTH_1: "AWS_SES_EU_SOUTH_1",
+  AWS_SES_EU_WEST_1: "AWS_SES_EU_WEST_1",
+  AWS_SES_EU_WEST_2: "AWS_SES_EU_WEST_2",
+  AWS_SES_EU_WEST_3: "AWS_SES_EU_WEST_3",
+  AWS_SES_IL_CENTRAL_1: "AWS_SES_IL_CENTRAL_1",
+  AWS_SES_ME_SOUTH_1: "AWS_SES_ME_SOUTH_1",
+  AWS_SES_SA_EAST_1: "AWS_SES_SA_EAST_1",
+  AWS_SES_US_EAST_1: "AWS_SES_US_EAST_1",
+  AWS_SES_US_EAST_2: "AWS_SES_US_EAST_2",
+  AWS_SES_US_WEST_1: "AWS_SES_US_WEST_1",
+  AWS_SES_US_WEST_2: "AWS_SES_US_WEST_2",
   EXTERNAL: "EXTERNAL"
 };
+var DkimSigningKeyLength = {
+  RSA_1024_BIT: "RSA_1024_BIT",
+  RSA_2048_BIT: "RSA_2048_BIT"
+};
 var DkimStatus = {
   FAILED: "FAILED",
   NOT_STARTED: "NOT_STARTED",
@@ -760,6 +783,11 @@ var VerificationError = {
   DNS_SERVER_ERROR: "DNS_SERVER_ERROR",
   HOST_NOT_FOUND: "HOST_NOT_FOUND",
   INVALID_VALUE: "INVALID_VALUE",
+  REPLICATION_ACCESS_DENIED: "REPLICATION_ACCESS_DENIED",
+  REPLICATION_PRIMARY_BYO_DKIM_NOT_SUPPORTED: "REPLICATION_PRIMARY_BYO_DKIM_NOT_SUPPORTED",
+  REPLICATION_PRIMARY_INVALID_REGION: "REPLICATION_PRIMARY_INVALID_REGION",
+  REPLICATION_PRIMARY_NOT_FOUND: "REPLICATION_PRIMARY_NOT_FOUND",
+  REPLICATION_REPLICA_AS_PRIMARY_NOT_SUPPORTED: "REPLICATION_REPLICA_AS_PRIMARY_NOT_SUPPORTED",
   SERVICE_ERROR: "SERVICE_ERROR",
   TYPE_NOT_FOUND: "TYPE_NOT_FOUND"
 };
@@ -5584,8 +5612,8 @@ var paginateListSuppressedDestinations = (0, import_core.createPaginator)(SESv2C
   MailFromDomainNotVerifiedException,
   MessageRejected,
   SendingPausedException,
-  DkimSigningKeyLength,
   DkimSigningAttributesOrigin,
+  DkimSigningKeyLength,
   DkimStatus,
   IdentityType,
   DeliveryEventType,

package/dist-cjs/runtimeConfig.js

@@ -41,6 +41,7 @@ const getRuntimeConfig = (config) => {
                 default: async () => (await defaultConfigProvider()).retryMode || util_retry_1.DEFAULT_RETRY_MODE,
             }),
         sha256: config?.sha256 ?? hash_node_1.Hash.bind(null, "sha256"),
+        sigv4aSigningRegionSet: config?.sigv4aSigningRegionSet ?? (0, node_config_provider_1.loadConfig)(core_1.NODE_SIGV4A_CONFIG_OPTIONS),
         streamCollector: config?.streamCollector ?? node_http_handler_1.streamCollector,
         useDualstackEndpoint: config?.useDualstackEndpoint ?? (0, node_config_provider_1.loadConfig)(config_resolver_1.NODE_USE_DUALSTACK_ENDPOINT_CONFIG_OPTIONS),
         useFipsEndpoint: config?.useFipsEndpoint ?? (0, node_config_provider_1.loadConfig)(config_resolver_1.NODE_USE_FIPS_ENDPOINT_CONFIG_OPTIONS),

package/dist-cjs/runtimeConfig.shared.js

@@ -2,6 +2,7 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getRuntimeConfig = void 0;
 const core_1 = require("@aws-sdk/core");
+const signature_v4_multi_region_1 = require("@aws-sdk/signature-v4-multi-region");
 const smithy_client_1 = require("@smithy/smithy-client");
 const url_parser_1 = require("@smithy/url-parser");
 const util_base64_1 = require("@smithy/util-base64");
@@ -23,9 +24,15 @@ const getRuntimeConfig = (config) => {
                 identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4"),
                 signer: new core_1.AwsSdkSigV4Signer(),
             },
+            {
+                schemeId: "aws.auth#sigv4a",
+                identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4a"),
+                signer: new core_1.AwsSdkSigV4ASigner(),
+            },
         ],
         logger: config?.logger ?? new smithy_client_1.NoOpLogger(),
         serviceId: config?.serviceId ?? "SESv2",
+        signerConstructor: config?.signerConstructor ?? signature_v4_multi_region_1.SignatureV4MultiRegion,
         urlParser: config?.urlParser ?? url_parser_1.parseUrl,
         utf8Decoder: config?.utf8Decoder ?? util_utf8_1.fromUtf8,
         utf8Encoder: config?.utf8Encoder ?? util_utf8_1.toUtf8,

package/dist-es/SESv2Client.js

@@ -36,6 +36,7 @@ export class SESv2Client extends __Client {
             httpAuthSchemeParametersProvider: defaultSESv2HttpAuthSchemeParametersProvider,
             identityProviderConfigProvider: async (config) => new DefaultIdentityProviderConfig({
                 "aws.auth#sigv4": config.credentials,
+                "aws.auth#sigv4a": config.credentials,
             }),
         }));
         this.middlewareStack.use(getHttpSigningPlugin(this.config));

package/dist-es/auth/httpAuthSchemeProvider.js

@@ -1,6 +1,22 @@
-import { resolveAwsSdkSigV4Config, } from "@aws-sdk/core";
+import { resolveAwsSdkSigV4AConfig, resolveAwsSdkSigV4Config, } from "@aws-sdk/core";
+import { signatureV4CrtContainer } from "@aws-sdk/signature-v4-multi-region";
+import { resolveParams } from "@smithy/middleware-endpoint";
 import { getSmithyContext, normalizeProvider } from "@smithy/util-middleware";
-export const defaultSESv2HttpAuthSchemeParametersProvider = async (config, context, input) => {
+import { defaultEndpointResolver } from "../endpoint/endpointResolver";
+const createEndpointRuleSetHttpAuthSchemeParametersProvider = (defaultHttpAuthSchemeParametersProvider) => async (config, context, input) => {
+    if (!input) {
+        throw new Error(`Could not find \`input\` for \`defaultEndpointRuleSetHttpAuthSchemeParametersProvider\``);
+    }
+    const defaultParameters = await defaultHttpAuthSchemeParametersProvider(config, context, input);
+    const instructionsFn = getSmithyContext(context)?.commandInstance?.constructor
+        ?.getEndpointParameterInstructions;
+    if (!instructionsFn) {
+        throw new Error(`getEndpointParameterInstructions() is not defined on \`${context.commandName}\``);
+    }
+    const endpointParameters = await resolveParams(input, { getEndpointParameterInstructions: instructionsFn }, config);
+    return Object.assign(defaultParameters, endpointParameters);
+};
+const _defaultSESv2HttpAuthSchemeParametersProvider = async (config, context, input) => {
     return {
         operation: getSmithyContext(context).operation,
         region: (await normalizeProvider(config.region)()) ||
@@ -9,6 +25,7 @@ export const defaultSESv2HttpAuthSchemeParametersProvider = async (config, conte
             })(),
     };
 };
+export const defaultSESv2HttpAuthSchemeParametersProvider = createEndpointRuleSetHttpAuthSchemeParametersProvider(_defaultSESv2HttpAuthSchemeParametersProvider);
 function createAwsAuthSigv4HttpAuthOption(authParameters) {
     return {
         schemeId: "aws.auth#sigv4",
@@ -24,18 +41,83 @@ function createAwsAuthSigv4HttpAuthOption(authParameters) {
         }),
     };
 }
-export const defaultSESv2HttpAuthSchemeProvider = (authParameters) => {
+function createAwsAuthSigv4aHttpAuthOption(authParameters) {
+    return {
+        schemeId: "aws.auth#sigv4a",
+        signingProperties: {
+            name: "ses",
+            region: authParameters.region,
+        },
+        propertiesExtractor: (config, context) => ({
+            signingProperties: {
+                config,
+                context,
+            },
+        }),
+    };
+}
+const createEndpointRuleSetHttpAuthSchemeProvider = (defaultEndpointResolver, defaultHttpAuthSchemeResolver, createHttpAuthOptionFunctions) => {
+    const endpointRuleSetHttpAuthSchemeProvider = (authParameters) => {
+        const endpoint = defaultEndpointResolver(authParameters);
+        const authSchemes = endpoint.properties?.authSchemes;
+        if (!authSchemes) {
+            return defaultHttpAuthSchemeResolver(authParameters);
+        }
+        const options = [];
+        for (const scheme of authSchemes) {
+            const { name: resolvedName, properties = {}, ...rest } = scheme;
+            const name = resolvedName.toLowerCase();
+            if (resolvedName !== name) {
+                console.warn(`HttpAuthScheme has been normalized with lowercasing: \`${resolvedName}\` to \`${name}\``);
+            }
+            let schemeId;
+            if (name === "sigv4a") {
+                schemeId = "aws.auth#sigv4a";
+                const sigv4Present = authSchemes.find((s) => {
+                    const name = s.name.toLowerCase();
+                    return name !== "sigv4a" && name.startsWith("sigv4");
+                });
+                if (!signatureV4CrtContainer.CrtSignerV4 && sigv4Present) {
+                    continue;
+                }
+            }
+            else if (name.startsWith("sigv4")) {
+                schemeId = "aws.auth#sigv4";
+            }
+            else {
+                throw new Error(`Unknown HttpAuthScheme found in \`@smithy.rules#endpointRuleSet\`: \`${name}\``);
+            }
+            const createOption = createHttpAuthOptionFunctions[schemeId];
+            if (!createOption) {
+                throw new Error(`Could not find HttpAuthOption create function for \`${schemeId}\``);
+            }
+            const option = createOption(authParameters);
+            option.schemeId = schemeId;
+            option.signingProperties = { ...(option.signingProperties || {}), ...rest, ...properties };
+            options.push(option);
+        }
+        return options;
+    };
+    return endpointRuleSetHttpAuthSchemeProvider;
+};
+const _defaultSESv2HttpAuthSchemeProvider = (authParameters) => {
     const options = [];
     switch (authParameters.operation) {
         default: {
             options.push(createAwsAuthSigv4HttpAuthOption(authParameters));
+            options.push(createAwsAuthSigv4aHttpAuthOption(authParameters));
         }
     }
     return options;
 };
+export const defaultSESv2HttpAuthSchemeProvider = createEndpointRuleSetHttpAuthSchemeProvider(defaultEndpointResolver, _defaultSESv2HttpAuthSchemeProvider, {
+    "aws.auth#sigv4": createAwsAuthSigv4HttpAuthOption,
+    "aws.auth#sigv4a": createAwsAuthSigv4aHttpAuthOption,
+});
 export const resolveHttpAuthSchemeConfig = (config) => {
     const config_0 = resolveAwsSdkSigV4Config(config);
+    const config_1 = resolveAwsSdkSigV4AConfig(config_0);
     return {
-        ...config_0,
+        ...config_1,
     };
 };

package/dist-es/models/models_0.js

@@ -257,14 +257,36 @@ export class SendingPausedException extends __BaseException {
         Object.setPrototypeOf(this, SendingPausedException.prototype);
     }
 }
-export const DkimSigningKeyLength = {
-    RSA_1024_BIT: "RSA_1024_BIT",
-    RSA_2048_BIT: "RSA_2048_BIT",
-};
 export const DkimSigningAttributesOrigin = {
     AWS_SES: "AWS_SES",
+    AWS_SES_AF_SOUTH_1: "AWS_SES_AF_SOUTH_1",
+    AWS_SES_AP_NORTHEAST_1: "AWS_SES_AP_NORTHEAST_1",
+    AWS_SES_AP_NORTHEAST_2: "AWS_SES_AP_NORTHEAST_2",
+    AWS_SES_AP_NORTHEAST_3: "AWS_SES_AP_NORTHEAST_3",
+    AWS_SES_AP_SOUTHEAST_1: "AWS_SES_AP_SOUTHEAST_1",
+    AWS_SES_AP_SOUTHEAST_2: "AWS_SES_AP_SOUTHEAST_2",
+    AWS_SES_AP_SOUTHEAST_3: "AWS_SES_AP_SOUTHEAST_3",
+    AWS_SES_AP_SOUTH_1: "AWS_SES_AP_SOUTH_1",
+    AWS_SES_CA_CENTRAL_1: "AWS_SES_CA_CENTRAL_1",
+    AWS_SES_EU_CENTRAL_1: "AWS_SES_EU_CENTRAL_1",
+    AWS_SES_EU_NORTH_1: "AWS_SES_EU_NORTH_1",
+    AWS_SES_EU_SOUTH_1: "AWS_SES_EU_SOUTH_1",
+    AWS_SES_EU_WEST_1: "AWS_SES_EU_WEST_1",
+    AWS_SES_EU_WEST_2: "AWS_SES_EU_WEST_2",
+    AWS_SES_EU_WEST_3: "AWS_SES_EU_WEST_3",
+    AWS_SES_IL_CENTRAL_1: "AWS_SES_IL_CENTRAL_1",
+    AWS_SES_ME_SOUTH_1: "AWS_SES_ME_SOUTH_1",
+    AWS_SES_SA_EAST_1: "AWS_SES_SA_EAST_1",
+    AWS_SES_US_EAST_1: "AWS_SES_US_EAST_1",
+    AWS_SES_US_EAST_2: "AWS_SES_US_EAST_2",
+    AWS_SES_US_WEST_1: "AWS_SES_US_WEST_1",
+    AWS_SES_US_WEST_2: "AWS_SES_US_WEST_2",
     EXTERNAL: "EXTERNAL",
 };
+export const DkimSigningKeyLength = {
+    RSA_1024_BIT: "RSA_1024_BIT",
+    RSA_2048_BIT: "RSA_2048_BIT",
+};
 export const DkimStatus = {
     FAILED: "FAILED",
     NOT_STARTED: "NOT_STARTED",
@@ -331,6 +353,11 @@ export const VerificationError = {
     DNS_SERVER_ERROR: "DNS_SERVER_ERROR",
     HOST_NOT_FOUND: "HOST_NOT_FOUND",
     INVALID_VALUE: "INVALID_VALUE",
+    REPLICATION_ACCESS_DENIED: "REPLICATION_ACCESS_DENIED",
+    REPLICATION_PRIMARY_BYO_DKIM_NOT_SUPPORTED: "REPLICATION_PRIMARY_BYO_DKIM_NOT_SUPPORTED",
+    REPLICATION_PRIMARY_INVALID_REGION: "REPLICATION_PRIMARY_INVALID_REGION",
+    REPLICATION_PRIMARY_NOT_FOUND: "REPLICATION_PRIMARY_NOT_FOUND",
+    REPLICATION_REPLICA_AS_PRIMARY_NOT_SUPPORTED: "REPLICATION_REPLICA_AS_PRIMARY_NOT_SUPPORTED",
     SERVICE_ERROR: "SERVICE_ERROR",
     TYPE_NOT_FOUND: "TYPE_NOT_FOUND",
 };

package/dist-es/runtimeConfig.js

@@ -1,5 +1,5 @@
 import packageInfo from "../package.json";
-import { emitWarningIfUnsupportedVersion as awsCheckVersion } from "@aws-sdk/core";
+import { NODE_SIGV4A_CONFIG_OPTIONS, emitWarningIfUnsupportedVersion as awsCheckVersion } from "@aws-sdk/core";
 import { defaultProvider as credentialDefaultProvider } from "@aws-sdk/credential-provider-node";
 import { NODE_APP_ID_CONFIG_OPTIONS, createDefaultUserAgentProvider } from "@aws-sdk/util-user-agent-node";
 import { NODE_REGION_CONFIG_FILE_OPTIONS, NODE_REGION_CONFIG_OPTIONS, NODE_USE_DUALSTACK_ENDPOINT_CONFIG_OPTIONS, NODE_USE_FIPS_ENDPOINT_CONFIG_OPTIONS, } from "@smithy/config-resolver";
@@ -37,6 +37,7 @@ export const getRuntimeConfig = (config) => {
                 default: async () => (await defaultConfigProvider()).retryMode || DEFAULT_RETRY_MODE,
             }),
         sha256: config?.sha256 ?? Hash.bind(null, "sha256"),
+        sigv4aSigningRegionSet: config?.sigv4aSigningRegionSet ?? loadNodeConfig(NODE_SIGV4A_CONFIG_OPTIONS),
         streamCollector: config?.streamCollector ?? streamCollector,
         useDualstackEndpoint: config?.useDualstackEndpoint ?? loadNodeConfig(NODE_USE_DUALSTACK_ENDPOINT_CONFIG_OPTIONS),
         useFipsEndpoint: config?.useFipsEndpoint ?? loadNodeConfig(NODE_USE_FIPS_ENDPOINT_CONFIG_OPTIONS),

package/dist-es/runtimeConfig.shared.js

@@ -1,4 +1,5 @@
-import { AwsSdkSigV4Signer } from "@aws-sdk/core";
+import { AwsSdkSigV4ASigner, AwsSdkSigV4Signer } from "@aws-sdk/core";
+import { SignatureV4MultiRegion } from "@aws-sdk/signature-v4-multi-region";
 import { NoOpLogger } from "@smithy/smithy-client";
 import { parseUrl } from "@smithy/url-parser";
 import { fromBase64, toBase64 } from "@smithy/util-base64";
@@ -20,9 +21,15 @@ export const getRuntimeConfig = (config) => {
                 identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4"),
                 signer: new AwsSdkSigV4Signer(),
             },
+            {
+                schemeId: "aws.auth#sigv4a",
+                identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4a"),
+                signer: new AwsSdkSigV4ASigner(),
+            },
         ],
         logger: config?.logger ?? new NoOpLogger(),
         serviceId: config?.serviceId ?? "SESv2",
+        signerConstructor: config?.signerConstructor ?? SignatureV4MultiRegion,
         urlParser: config?.urlParser ?? parseUrl,
         utf8Decoder: config?.utf8Decoder ?? fromUtf8,
         utf8Encoder: config?.utf8Encoder ?? toUtf8,

package/dist-types/auth/httpAuthSchemeProvider.d.ts

@@ -1,10 +1,17 @@
-import { AwsSdkSigV4AuthInputConfig, AwsSdkSigV4AuthResolvedConfig, AwsSdkSigV4PreviouslyResolved } from "@aws-sdk/core";
+import { AwsSdkSigV4AAuthInputConfig, AwsSdkSigV4AAuthResolvedConfig, AwsSdkSigV4APreviouslyResolved, AwsSdkSigV4AuthInputConfig, AwsSdkSigV4AuthResolvedConfig, AwsSdkSigV4PreviouslyResolved } from "@aws-sdk/core";
 import { HandlerExecutionContext, HttpAuthScheme, HttpAuthSchemeParameters, HttpAuthSchemeParametersProvider, HttpAuthSchemeProvider } from "@smithy/types";
+import { EndpointParameters } from "../endpoint/EndpointParameters";
 import { SESv2ClientResolvedConfig } from "../SESv2Client";
 /**
  * @internal
  */
-export interface SESv2HttpAuthSchemeParameters extends HttpAuthSchemeParameters {
+interface _SESv2HttpAuthSchemeParameters extends HttpAuthSchemeParameters {
+    region?: string;
+}
+/**
+ * @internal
+ */
+export interface SESv2HttpAuthSchemeParameters extends _SESv2HttpAuthSchemeParameters, EndpointParameters {
     region?: string;
 }
 /**
@@ -15,7 +22,7 @@ export interface SESv2HttpAuthSchemeParametersProvider extends HttpAuthSchemePar
 /**
  * @internal
  */
-export declare const defaultSESv2HttpAuthSchemeParametersProvider: (config: SESv2ClientResolvedConfig, context: HandlerExecutionContext, input: object) => Promise<SESv2HttpAuthSchemeParameters>;
+export declare const defaultSESv2HttpAuthSchemeParametersProvider: SESv2HttpAuthSchemeParametersProvider;
 /**
  * @internal
  */
@@ -28,7 +35,7 @@ export declare const defaultSESv2HttpAuthSchemeProvider: SESv2HttpAuthSchemeProv
 /**
  * @internal
  */
-export interface HttpAuthSchemeInputConfig extends AwsSdkSigV4AuthInputConfig {
+export interface HttpAuthSchemeInputConfig extends AwsSdkSigV4AuthInputConfig, AwsSdkSigV4AAuthInputConfig {
     /**
      * Configuration of HttpAuthSchemes for a client which provides default identity providers and signers per auth scheme.
      * @internal
@@ -43,7 +50,7 @@ export interface HttpAuthSchemeInputConfig extends AwsSdkSigV4AuthInputConfig {
 /**
  * @internal
  */
-export interface HttpAuthSchemeResolvedConfig extends AwsSdkSigV4AuthResolvedConfig {
+export interface HttpAuthSchemeResolvedConfig extends AwsSdkSigV4AuthResolvedConfig, AwsSdkSigV4AAuthResolvedConfig {
     /**
      * Configuration of HttpAuthSchemes for a client which provides default identity providers and signers per auth scheme.
      * @internal
@@ -58,4 +65,5 @@ export interface HttpAuthSchemeResolvedConfig extends AwsSdkSigV4AuthResolvedCon
 /**
  * @internal
  */
-export declare const resolveHttpAuthSchemeConfig: <T>(config: T & HttpAuthSchemeInputConfig & AwsSdkSigV4PreviouslyResolved) => T & HttpAuthSchemeResolvedConfig;
+export declare const resolveHttpAuthSchemeConfig: <T>(config: T & HttpAuthSchemeInputConfig & AwsSdkSigV4PreviouslyResolved & AwsSdkSigV4APreviouslyResolved) => T & HttpAuthSchemeResolvedConfig;
+export {};

package/dist-types/commands/CreateEmailIdentityCommand.d.ts

@@ -71,6 +71,7 @@ declare const CreateEmailIdentityCommand_base: {
  *     DomainSigningSelector: "STRING_VALUE",
  *     DomainSigningPrivateKey: "STRING_VALUE",
  *     NextSigningKeyLength: "RSA_1024_BIT" || "RSA_2048_BIT",
+ *     DomainSigningAttributesOrigin: "AWS_SES" || "EXTERNAL" || "AWS_SES_AF_SOUTH_1" || "AWS_SES_EU_NORTH_1" || "AWS_SES_AP_SOUTH_1" || "AWS_SES_EU_WEST_3" || "AWS_SES_EU_WEST_2" || "AWS_SES_EU_SOUTH_1" || "AWS_SES_EU_WEST_1" || "AWS_SES_AP_NORTHEAST_3" || "AWS_SES_AP_NORTHEAST_2" || "AWS_SES_ME_SOUTH_1" || "AWS_SES_AP_NORTHEAST_1" || "AWS_SES_IL_CENTRAL_1" || "AWS_SES_SA_EAST_1" || "AWS_SES_CA_CENTRAL_1" || "AWS_SES_AP_SOUTHEAST_1" || "AWS_SES_AP_SOUTHEAST_2" || "AWS_SES_AP_SOUTHEAST_3" || "AWS_SES_EU_CENTRAL_1" || "AWS_SES_US_EAST_1" || "AWS_SES_US_EAST_2" || "AWS_SES_US_WEST_1" || "AWS_SES_US_WEST_2",
  *   },
  *   ConfigurationSetName: "STRING_VALUE",
  * };
@@ -85,7 +86,7 @@ declare const CreateEmailIdentityCommand_base: {
  * //     Tokens: [ // DnsTokenList
  * //       "STRING_VALUE",
  * //     ],
- * //     SigningAttributesOrigin: "AWS_SES" || "EXTERNAL",
+ * //     SigningAttributesOrigin: "AWS_SES" || "EXTERNAL" || "AWS_SES_AF_SOUTH_1" || "AWS_SES_EU_NORTH_1" || "AWS_SES_AP_SOUTH_1" || "AWS_SES_EU_WEST_3" || "AWS_SES_EU_WEST_2" || "AWS_SES_EU_SOUTH_1" || "AWS_SES_EU_WEST_1" || "AWS_SES_AP_NORTHEAST_3" || "AWS_SES_AP_NORTHEAST_2" || "AWS_SES_ME_SOUTH_1" || "AWS_SES_AP_NORTHEAST_1" || "AWS_SES_IL_CENTRAL_1" || "AWS_SES_SA_EAST_1" || "AWS_SES_CA_CENTRAL_1" || "AWS_SES_AP_SOUTHEAST_1" || "AWS_SES_AP_SOUTHEAST_2" || "AWS_SES_AP_SOUTHEAST_3" || "AWS_SES_EU_CENTRAL_1" || "AWS_SES_US_EAST_1" || "AWS_SES_US_EAST_2" || "AWS_SES_US_WEST_1" || "AWS_SES_US_WEST_2",
  * //     NextSigningKeyLength: "RSA_1024_BIT" || "RSA_2048_BIT",
  * //     CurrentSigningKeyLength: "RSA_1024_BIT" || "RSA_2048_BIT",
  * //     LastKeyGenerationTimestamp: new Date("TIMESTAMP"),

package/dist-types/commands/GetEmailIdentityCommand.d.ts

@@ -51,7 +51,7 @@ declare const GetEmailIdentityCommand_base: {
  * //     Tokens: [ // DnsTokenList
  * //       "STRING_VALUE",
  * //     ],
- * //     SigningAttributesOrigin: "AWS_SES" || "EXTERNAL",
+ * //     SigningAttributesOrigin: "AWS_SES" || "EXTERNAL" || "AWS_SES_AF_SOUTH_1" || "AWS_SES_EU_NORTH_1" || "AWS_SES_AP_SOUTH_1" || "AWS_SES_EU_WEST_3" || "AWS_SES_EU_WEST_2" || "AWS_SES_EU_SOUTH_1" || "AWS_SES_EU_WEST_1" || "AWS_SES_AP_NORTHEAST_3" || "AWS_SES_AP_NORTHEAST_2" || "AWS_SES_ME_SOUTH_1" || "AWS_SES_AP_NORTHEAST_1" || "AWS_SES_IL_CENTRAL_1" || "AWS_SES_SA_EAST_1" || "AWS_SES_CA_CENTRAL_1" || "AWS_SES_AP_SOUTHEAST_1" || "AWS_SES_AP_SOUTHEAST_2" || "AWS_SES_AP_SOUTHEAST_3" || "AWS_SES_EU_CENTRAL_1" || "AWS_SES_US_EAST_1" || "AWS_SES_US_EAST_2" || "AWS_SES_US_WEST_1" || "AWS_SES_US_WEST_2",
  * //     NextSigningKeyLength: "RSA_1024_BIT" || "RSA_2048_BIT",
  * //     CurrentSigningKeyLength: "RSA_1024_BIT" || "RSA_2048_BIT",
  * //     LastKeyGenerationTimestamp: new Date("TIMESTAMP"),
@@ -75,7 +75,7 @@ declare const GetEmailIdentityCommand_base: {
  * //   VerificationInfo: { // VerificationInfo
  * //     LastCheckedTimestamp: new Date("TIMESTAMP"),
  * //     LastSuccessTimestamp: new Date("TIMESTAMP"),
- * //     ErrorType: "SERVICE_ERROR" || "DNS_SERVER_ERROR" || "HOST_NOT_FOUND" || "TYPE_NOT_FOUND" || "INVALID_VALUE",
+ * //     ErrorType: "SERVICE_ERROR" || "DNS_SERVER_ERROR" || "HOST_NOT_FOUND" || "TYPE_NOT_FOUND" || "INVALID_VALUE" || "REPLICATION_ACCESS_DENIED" || "REPLICATION_PRIMARY_NOT_FOUND" || "REPLICATION_PRIMARY_BYO_DKIM_NOT_SUPPORTED" || "REPLICATION_REPLICA_AS_PRIMARY_NOT_SUPPORTED" || "REPLICATION_PRIMARY_INVALID_REGION",
  * //     SOARecord: { // SOARecord
  * //       PrimaryNameServer: "STRING_VALUE",
  * //       AdminEmail: "STRING_VALUE",

package/dist-types/commands/PutEmailIdentityDkimSigningAttributesCommand.d.ts

@@ -59,11 +59,12 @@ declare const PutEmailIdentityDkimSigningAttributesCommand_base: {
  * const client = new SESv2Client(config);
  * const input = { // PutEmailIdentityDkimSigningAttributesRequest
  *   EmailIdentity: "STRING_VALUE", // required
- *   SigningAttributesOrigin: "AWS_SES" || "EXTERNAL", // required
+ *   SigningAttributesOrigin: "AWS_SES" || "EXTERNAL" || "AWS_SES_AF_SOUTH_1" || "AWS_SES_EU_NORTH_1" || "AWS_SES_AP_SOUTH_1" || "AWS_SES_EU_WEST_3" || "AWS_SES_EU_WEST_2" || "AWS_SES_EU_SOUTH_1" || "AWS_SES_EU_WEST_1" || "AWS_SES_AP_NORTHEAST_3" || "AWS_SES_AP_NORTHEAST_2" || "AWS_SES_ME_SOUTH_1" || "AWS_SES_AP_NORTHEAST_1" || "AWS_SES_IL_CENTRAL_1" || "AWS_SES_SA_EAST_1" || "AWS_SES_CA_CENTRAL_1" || "AWS_SES_AP_SOUTHEAST_1" || "AWS_SES_AP_SOUTHEAST_2" || "AWS_SES_AP_SOUTHEAST_3" || "AWS_SES_EU_CENTRAL_1" || "AWS_SES_US_EAST_1" || "AWS_SES_US_EAST_2" || "AWS_SES_US_WEST_1" || "AWS_SES_US_WEST_2", // required
  *   SigningAttributes: { // DkimSigningAttributes
  *     DomainSigningSelector: "STRING_VALUE",
  *     DomainSigningPrivateKey: "STRING_VALUE",
  *     NextSigningKeyLength: "RSA_1024_BIT" || "RSA_2048_BIT",
+ *     DomainSigningAttributesOrigin: "AWS_SES" || "EXTERNAL" || "AWS_SES_AF_SOUTH_1" || "AWS_SES_EU_NORTH_1" || "AWS_SES_AP_SOUTH_1" || "AWS_SES_EU_WEST_3" || "AWS_SES_EU_WEST_2" || "AWS_SES_EU_SOUTH_1" || "AWS_SES_EU_WEST_1" || "AWS_SES_AP_NORTHEAST_3" || "AWS_SES_AP_NORTHEAST_2" || "AWS_SES_ME_SOUTH_1" || "AWS_SES_AP_NORTHEAST_1" || "AWS_SES_IL_CENTRAL_1" || "AWS_SES_SA_EAST_1" || "AWS_SES_CA_CENTRAL_1" || "AWS_SES_AP_SOUTHEAST_1" || "AWS_SES_AP_SOUTHEAST_2" || "AWS_SES_AP_SOUTHEAST_3" || "AWS_SES_EU_CENTRAL_1" || "AWS_SES_US_EAST_1" || "AWS_SES_US_EAST_2" || "AWS_SES_US_WEST_1" || "AWS_SES_US_WEST_2",
  *   },
  * };
  * const command = new PutEmailIdentityDkimSigningAttributesCommand(input);