@aws-sdk/client-sso-admin 3.160.0 → 3.161.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +8 -0
- package/README.md +11 -11
- package/dist-cjs/endpoints.js +1 -0
- package/dist-es/endpoints.js +1 -0
- package/dist-types/SSOAdmin.d.ts +40 -40
- package/dist-types/SSOAdminClient.d.ts +11 -11
- package/dist-types/commands/AttachManagedPolicyToPermissionSetCommand.d.ts +1 -1
- package/dist-types/commands/CreateAccountAssignmentCommand.d.ts +3 -3
- package/dist-types/commands/CreateInstanceAccessControlAttributeConfigurationCommand.d.ts +2 -2
- package/dist-types/commands/CreatePermissionSetCommand.d.ts +2 -2
- package/dist-types/commands/DeleteAccountAssignmentCommand.d.ts +1 -1
- package/dist-types/commands/DeleteInstanceAccessControlAttributeConfigurationCommand.d.ts +2 -2
- package/dist-types/commands/DescribeInstanceAccessControlAttributeConfigurationCommand.d.ts +3 -3
- package/dist-types/commands/DetachManagedPolicyFromPermissionSetCommand.d.ts +1 -1
- package/dist-types/commands/ListAccountAssignmentCreationStatusCommand.d.ts +1 -1
- package/dist-types/commands/ListAccountAssignmentDeletionStatusCommand.d.ts +1 -1
- package/dist-types/commands/ListAccountAssignmentsCommand.d.ts +1 -1
- package/dist-types/commands/ListAccountsForProvisionedPermissionSetCommand.d.ts +1 -1
- package/dist-types/commands/ListInstancesCommand.d.ts +1 -1
- package/dist-types/commands/ListManagedPoliciesInPermissionSetCommand.d.ts +1 -1
- package/dist-types/commands/ListPermissionSetProvisioningStatusCommand.d.ts +1 -1
- package/dist-types/commands/ListPermissionSetsCommand.d.ts +1 -1
- package/dist-types/commands/ListPermissionSetsProvisionedToAccountCommand.d.ts +1 -1
- package/dist-types/commands/PutPermissionsBoundaryToPermissionSetCommand.d.ts +1 -1
- package/dist-types/commands/UpdateInstanceAccessControlAttributeConfigurationCommand.d.ts +4 -4
- package/dist-types/models/models_0.d.ts +122 -124
- package/package.json +6 -6
|
@@ -3,26 +3,26 @@ import { SSOAdminServiceException as __BaseException } from "./SSOAdminServiceEx
|
|
|
3
3
|
/**
|
|
4
4
|
* <p>The value used for mapping a specified attribute to an identity source. For more
|
|
5
5
|
* information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/attributemappingsconcept.html">Attribute mappings</a>
|
|
6
|
-
* in the <i>
|
|
6
|
+
* in the <i>IAM Identity Center User Guide</i>.</p>
|
|
7
7
|
*/
|
|
8
8
|
export interface AccessControlAttributeValue {
|
|
9
9
|
/**
|
|
10
|
-
* <p>The identity source to use when mapping a specified attribute to
|
|
10
|
+
* <p>The identity source to use when mapping a specified attribute to IAM Identity Center.</p>
|
|
11
11
|
*/
|
|
12
12
|
Source: string[] | undefined;
|
|
13
13
|
}
|
|
14
14
|
/**
|
|
15
|
-
* <p>These are
|
|
15
|
+
* <p>These are IAM Identity Center identity store attributes that you can configure for use in
|
|
16
16
|
* attributes-based access control (ABAC). You can create permissions policies that determine who
|
|
17
|
-
* can access your
|
|
18
|
-
* ABAC and specify <code>AccessControlAttributes</code>,
|
|
17
|
+
* can access your AWS resources based upon the configured attribute values. When you enable
|
|
18
|
+
* ABAC and specify <code>AccessControlAttributes</code>, IAM Identity Center passes the attribute values of
|
|
19
19
|
* the authenticated user into IAM for use in policy evaluation.</p>
|
|
20
20
|
*/
|
|
21
21
|
export interface AccessControlAttribute {
|
|
22
22
|
/**
|
|
23
23
|
* <p>The name of the attribute associated with your identities in your identity source. This is
|
|
24
24
|
* used to map a specified attribute in your identity source with an attribute in
|
|
25
|
-
*
|
|
25
|
+
* IAM Identity Center.</p>
|
|
26
26
|
*/
|
|
27
27
|
Key: string | undefined;
|
|
28
28
|
/**
|
|
@@ -47,21 +47,21 @@ export declare enum PrincipalType {
|
|
|
47
47
|
USER = "USER"
|
|
48
48
|
}
|
|
49
49
|
/**
|
|
50
|
-
* <p>The assignment that indicates a principal's limited access to a specified
|
|
50
|
+
* <p>The assignment that indicates a principal's limited access to a specified AWS account
|
|
51
51
|
* with a specified permission set.</p>
|
|
52
52
|
* <note>
|
|
53
53
|
* <p>The term <i>principal</i> here refers to a user or group that is defined
|
|
54
|
-
* in
|
|
54
|
+
* in IAM Identity Center.</p>
|
|
55
55
|
* </note>
|
|
56
56
|
*/
|
|
57
57
|
export interface AccountAssignment {
|
|
58
58
|
/**
|
|
59
|
-
* <p>The identifier of the
|
|
59
|
+
* <p>The identifier of the AWS account.</p>
|
|
60
60
|
*/
|
|
61
61
|
AccountId?: string;
|
|
62
62
|
/**
|
|
63
63
|
* <p>The ARN of the permission set. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
64
|
-
* Names (ARNs) and
|
|
64
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
65
65
|
*/
|
|
66
66
|
PermissionSetArn?: string;
|
|
67
67
|
/**
|
|
@@ -69,7 +69,7 @@ export interface AccountAssignment {
|
|
|
69
69
|
*/
|
|
70
70
|
PrincipalType?: PrincipalType | string;
|
|
71
71
|
/**
|
|
72
|
-
* <p>An identifier for an object in
|
|
72
|
+
* <p>An identifier for an object in IAM Identity Center, such as a user or group. PrincipalIds are GUIDs (For example, f81d4fae-7dec-11d0-a765-00a0c91e6bf6). For more information about PrincipalIds in IAM Identity Center, see the <a href="/singlesignon/latest/IdentityStoreAPIReference/welcome.html">IAM Identity Center Identity Store API Reference</a>.</p>
|
|
73
73
|
*/
|
|
74
74
|
PrincipalId?: string;
|
|
75
75
|
}
|
|
@@ -100,7 +100,7 @@ export interface AccountAssignmentOperationStatus {
|
|
|
100
100
|
*/
|
|
101
101
|
FailureReason?: string;
|
|
102
102
|
/**
|
|
103
|
-
* <p>TargetID is an
|
|
103
|
+
* <p>TargetID is an AWS account identifier, typically a 10-12 digit string (For example, 123456789012).</p>
|
|
104
104
|
*/
|
|
105
105
|
TargetId?: string;
|
|
106
106
|
/**
|
|
@@ -109,7 +109,7 @@ export interface AccountAssignmentOperationStatus {
|
|
|
109
109
|
TargetType?: TargetType | string;
|
|
110
110
|
/**
|
|
111
111
|
* <p>The ARN of the permission set. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
112
|
-
* Names (ARNs) and
|
|
112
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
113
113
|
*/
|
|
114
114
|
PermissionSetArn?: string;
|
|
115
115
|
/**
|
|
@@ -117,7 +117,7 @@ export interface AccountAssignmentOperationStatus {
|
|
|
117
117
|
*/
|
|
118
118
|
PrincipalType?: PrincipalType | string;
|
|
119
119
|
/**
|
|
120
|
-
* <p>An identifier for an object in
|
|
120
|
+
* <p>An identifier for an object in IAM Identity Center, such as a user or group. PrincipalIds are GUIDs (For example, f81d4fae-7dec-11d0-a765-00a0c91e6bf6). For more information about PrincipalIds in IAM Identity Center, see the <a href="/singlesignon/latest/IdentityStoreAPIReference/welcome.html">IAM Identity Center Identity Store API Reference</a>.</p>
|
|
121
121
|
*/
|
|
122
122
|
PrincipalId?: string;
|
|
123
123
|
/**
|
|
@@ -145,7 +145,7 @@ export interface AccountAssignmentOperationStatusMetadata {
|
|
|
145
145
|
CreatedDate?: Date;
|
|
146
146
|
}
|
|
147
147
|
/**
|
|
148
|
-
* <p>Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each
|
|
148
|
+
* <p>Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.</p>
|
|
149
149
|
*/
|
|
150
150
|
export interface CustomerManagedPolicyReference {
|
|
151
151
|
/**
|
|
@@ -154,14 +154,13 @@ export interface CustomerManagedPolicyReference {
|
|
|
154
154
|
Name: string | undefined;
|
|
155
155
|
/**
|
|
156
156
|
* <p>The path to the IAM policy that you have configured in each account where you want to deploy your permission set. The default is <code>/</code>. For more information, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_identifiers.html#identifiers-friendly-names">Friendly
|
|
157
|
-
*
|
|
158
|
-
* Guide</i>.</p>
|
|
157
|
+
* names and paths</a> in the <i>IAM User Guide</i>.</p>
|
|
159
158
|
*/
|
|
160
159
|
Path?: string;
|
|
161
160
|
}
|
|
162
161
|
export interface AttachCustomerManagedPolicyReferenceToPermissionSetRequest {
|
|
163
162
|
/**
|
|
164
|
-
* <p>The ARN of the
|
|
163
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. </p>
|
|
165
164
|
*/
|
|
166
165
|
InstanceArn: string | undefined;
|
|
167
166
|
/**
|
|
@@ -169,7 +168,7 @@ export interface AttachCustomerManagedPolicyReferenceToPermissionSetRequest {
|
|
|
169
168
|
*/
|
|
170
169
|
PermissionSetArn: string | undefined;
|
|
171
170
|
/**
|
|
172
|
-
* <p>Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each
|
|
171
|
+
* <p>Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.</p>
|
|
173
172
|
*/
|
|
174
173
|
CustomerManagedPolicyReference: CustomerManagedPolicyReference | undefined;
|
|
175
174
|
}
|
|
@@ -254,23 +253,23 @@ export declare class ValidationException extends __BaseException {
|
|
|
254
253
|
constructor(opts: __ExceptionOptionType<ValidationException, __BaseException>);
|
|
255
254
|
}
|
|
256
255
|
/**
|
|
257
|
-
* <p>A structure that stores the details of the
|
|
256
|
+
* <p>A structure that stores the details of the AWS managed policy.</p>
|
|
258
257
|
*/
|
|
259
258
|
export interface AttachedManagedPolicy {
|
|
260
259
|
/**
|
|
261
|
-
* <p>The name of the
|
|
260
|
+
* <p>The name of the AWS managed policy.</p>
|
|
262
261
|
*/
|
|
263
262
|
Name?: string;
|
|
264
263
|
/**
|
|
265
|
-
* <p>The ARN of the
|
|
266
|
-
* Names (ARNs) and
|
|
264
|
+
* <p>The ARN of the AWS managed policy. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
265
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
267
266
|
*/
|
|
268
267
|
Arn?: string;
|
|
269
268
|
}
|
|
270
269
|
export interface AttachManagedPolicyToPermissionSetRequest {
|
|
271
270
|
/**
|
|
272
|
-
* <p>The ARN of the
|
|
273
|
-
* Names (ARNs) and
|
|
271
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
272
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
274
273
|
*/
|
|
275
274
|
InstanceArn: string | undefined;
|
|
276
275
|
/**
|
|
@@ -279,7 +278,7 @@ export interface AttachManagedPolicyToPermissionSetRequest {
|
|
|
279
278
|
*/
|
|
280
279
|
PermissionSetArn: string | undefined;
|
|
281
280
|
/**
|
|
282
|
-
* <p>The
|
|
281
|
+
* <p>The AWS managed policy ARN to be attached to a permission set.</p>
|
|
283
282
|
*/
|
|
284
283
|
ManagedPolicyArn: string | undefined;
|
|
285
284
|
}
|
|
@@ -287,12 +286,12 @@ export interface AttachManagedPolicyToPermissionSetResponse {
|
|
|
287
286
|
}
|
|
288
287
|
export interface CreateAccountAssignmentRequest {
|
|
289
288
|
/**
|
|
290
|
-
* <p>The ARN of the
|
|
291
|
-
* Names (ARNs) and
|
|
289
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
290
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
292
291
|
*/
|
|
293
292
|
InstanceArn: string | undefined;
|
|
294
293
|
/**
|
|
295
|
-
* <p>TargetID is an
|
|
294
|
+
* <p>TargetID is an AWS account identifier, typically a 10-12 digit string (For example, 123456789012).</p>
|
|
296
295
|
*/
|
|
297
296
|
TargetId: string | undefined;
|
|
298
297
|
/**
|
|
@@ -309,7 +308,7 @@ export interface CreateAccountAssignmentRequest {
|
|
|
309
308
|
*/
|
|
310
309
|
PrincipalType: PrincipalType | string | undefined;
|
|
311
310
|
/**
|
|
312
|
-
* <p>An identifier for an object in
|
|
311
|
+
* <p>An identifier for an object in IAM Identity Center, such as a user or group. PrincipalIds are GUIDs (For example, f81d4fae-7dec-11d0-a765-00a0c91e6bf6). For more information about PrincipalIds in IAM Identity Center, see the <a href="/singlesignon/latest/IdentityStoreAPIReference/welcome.html">IAM Identity Center Identity Store API Reference</a>.</p>
|
|
313
312
|
*/
|
|
314
313
|
PrincipalId: string | undefined;
|
|
315
314
|
}
|
|
@@ -325,22 +324,22 @@ export interface CreateAccountAssignmentResponse {
|
|
|
325
324
|
*/
|
|
326
325
|
export interface InstanceAccessControlAttributeConfiguration {
|
|
327
326
|
/**
|
|
328
|
-
* <p>Lists the attributes that are configured for ABAC in the specified
|
|
327
|
+
* <p>Lists the attributes that are configured for ABAC in the specified IAM Identity Center
|
|
329
328
|
* instance.</p>
|
|
330
329
|
*/
|
|
331
330
|
AccessControlAttributes: AccessControlAttribute[] | undefined;
|
|
332
331
|
}
|
|
333
332
|
export interface CreateInstanceAccessControlAttributeConfigurationRequest {
|
|
334
333
|
/**
|
|
335
|
-
* <p>The ARN of the
|
|
334
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed.</p>
|
|
336
335
|
*/
|
|
337
336
|
InstanceArn: string | undefined;
|
|
338
337
|
/**
|
|
339
|
-
* <p>Specifies the
|
|
338
|
+
* <p>Specifies the IAM Identity Center identity store attributes to add to your ABAC configuration. When
|
|
340
339
|
* using an external identity provider as an identity source, you can pass attributes through the
|
|
341
|
-
* SAML assertion. Doing so provides an alternative to configuring attributes from the
|
|
342
|
-
* identity store. If a SAML assertion passes any of these attributes,
|
|
343
|
-
* attribute value with the value from the
|
|
340
|
+
* SAML assertion. Doing so provides an alternative to configuring attributes from the IAM Identity Center
|
|
341
|
+
* identity store. If a SAML assertion passes any of these attributes, IAM Identity Center will replace the
|
|
342
|
+
* attribute value with the value from the IAM Identity Center identity store.</p>
|
|
344
343
|
*/
|
|
345
344
|
InstanceAccessControlAttributeConfiguration: InstanceAccessControlAttributeConfiguration | undefined;
|
|
346
345
|
}
|
|
@@ -348,7 +347,7 @@ export interface CreateInstanceAccessControlAttributeConfigurationResponse {
|
|
|
348
347
|
}
|
|
349
348
|
/**
|
|
350
349
|
* <p>A set of key-value pairs that are used to manage the resource. Tags can only be applied to
|
|
351
|
-
* permission sets and cannot be applied to corresponding roles that
|
|
350
|
+
* permission sets and cannot be applied to corresponding roles that IAM Identity Center creates in AWS
|
|
352
351
|
* accounts.</p>
|
|
353
352
|
*/
|
|
354
353
|
export interface Tag {
|
|
@@ -371,8 +370,8 @@ export interface CreatePermissionSetRequest {
|
|
|
371
370
|
*/
|
|
372
371
|
Description?: string;
|
|
373
372
|
/**
|
|
374
|
-
* <p>The ARN of the
|
|
375
|
-
* Names (ARNs) and
|
|
373
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
374
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
376
375
|
*/
|
|
377
376
|
InstanceArn: string | undefined;
|
|
378
377
|
/**
|
|
@@ -400,7 +399,7 @@ export interface PermissionSet {
|
|
|
400
399
|
Name?: string;
|
|
401
400
|
/**
|
|
402
401
|
* <p>The ARN of the permission set. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
403
|
-
* Names (ARNs) and
|
|
402
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
404
403
|
*/
|
|
405
404
|
PermissionSetArn?: string;
|
|
406
405
|
/**
|
|
@@ -424,18 +423,18 @@ export interface PermissionSet {
|
|
|
424
423
|
}
|
|
425
424
|
export interface CreatePermissionSetResponse {
|
|
426
425
|
/**
|
|
427
|
-
* <p>Defines the level of access on an
|
|
426
|
+
* <p>Defines the level of access on an AWS account.</p>
|
|
428
427
|
*/
|
|
429
428
|
PermissionSet?: PermissionSet;
|
|
430
429
|
}
|
|
431
430
|
export interface DeleteAccountAssignmentRequest {
|
|
432
431
|
/**
|
|
433
|
-
* <p>The ARN of the
|
|
434
|
-
* Names (ARNs) and
|
|
432
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
433
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
435
434
|
*/
|
|
436
435
|
InstanceArn: string | undefined;
|
|
437
436
|
/**
|
|
438
|
-
* <p>TargetID is an
|
|
437
|
+
* <p>TargetID is an AWS account identifier, typically a 10-12 digit string (For example, 123456789012).</p>
|
|
439
438
|
*/
|
|
440
439
|
TargetId: string | undefined;
|
|
441
440
|
/**
|
|
@@ -451,7 +450,7 @@ export interface DeleteAccountAssignmentRequest {
|
|
|
451
450
|
*/
|
|
452
451
|
PrincipalType: PrincipalType | string | undefined;
|
|
453
452
|
/**
|
|
454
|
-
* <p>An identifier for an object in
|
|
453
|
+
* <p>An identifier for an object in IAM Identity Center, such as a user or group. PrincipalIds are GUIDs (For example, f81d4fae-7dec-11d0-a765-00a0c91e6bf6). For more information about PrincipalIds in IAM Identity Center, see the <a href="/singlesignon/latest/IdentityStoreAPIReference/welcome.html">IAM Identity Center Identity Store API Reference</a>.</p>
|
|
455
454
|
*/
|
|
456
455
|
PrincipalId: string | undefined;
|
|
457
456
|
}
|
|
@@ -463,8 +462,8 @@ export interface DeleteAccountAssignmentResponse {
|
|
|
463
462
|
}
|
|
464
463
|
export interface DeleteInlinePolicyFromPermissionSetRequest {
|
|
465
464
|
/**
|
|
466
|
-
* <p>The ARN of the
|
|
467
|
-
* Names (ARNs) and
|
|
465
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
466
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
468
467
|
*/
|
|
469
468
|
InstanceArn: string | undefined;
|
|
470
469
|
/**
|
|
@@ -476,7 +475,7 @@ export interface DeleteInlinePolicyFromPermissionSetResponse {
|
|
|
476
475
|
}
|
|
477
476
|
export interface DeleteInstanceAccessControlAttributeConfigurationRequest {
|
|
478
477
|
/**
|
|
479
|
-
* <p>The ARN of the
|
|
478
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed.</p>
|
|
480
479
|
*/
|
|
481
480
|
InstanceArn: string | undefined;
|
|
482
481
|
}
|
|
@@ -484,7 +483,7 @@ export interface DeleteInstanceAccessControlAttributeConfigurationResponse {
|
|
|
484
483
|
}
|
|
485
484
|
export interface DeletePermissionsBoundaryFromPermissionSetRequest {
|
|
486
485
|
/**
|
|
487
|
-
* <p>The ARN of the
|
|
486
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. </p>
|
|
488
487
|
*/
|
|
489
488
|
InstanceArn: string | undefined;
|
|
490
489
|
/**
|
|
@@ -496,8 +495,8 @@ export interface DeletePermissionsBoundaryFromPermissionSetResponse {
|
|
|
496
495
|
}
|
|
497
496
|
export interface DeletePermissionSetRequest {
|
|
498
497
|
/**
|
|
499
|
-
* <p>The ARN of the
|
|
500
|
-
* Names (ARNs) and
|
|
498
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
499
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
501
500
|
*/
|
|
502
501
|
InstanceArn: string | undefined;
|
|
503
502
|
/**
|
|
@@ -509,8 +508,8 @@ export interface DeletePermissionSetResponse {
|
|
|
509
508
|
}
|
|
510
509
|
export interface DescribeAccountAssignmentCreationStatusRequest {
|
|
511
510
|
/**
|
|
512
|
-
* <p>The ARN of the
|
|
513
|
-
* Names (ARNs) and
|
|
511
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
512
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
514
513
|
*/
|
|
515
514
|
InstanceArn: string | undefined;
|
|
516
515
|
/**
|
|
@@ -526,8 +525,8 @@ export interface DescribeAccountAssignmentCreationStatusResponse {
|
|
|
526
525
|
}
|
|
527
526
|
export interface DescribeAccountAssignmentDeletionStatusRequest {
|
|
528
527
|
/**
|
|
529
|
-
* <p>The ARN of the
|
|
530
|
-
* Names (ARNs) and
|
|
528
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
529
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
531
530
|
*/
|
|
532
531
|
InstanceArn: string | undefined;
|
|
533
532
|
/**
|
|
@@ -543,7 +542,7 @@ export interface DescribeAccountAssignmentDeletionStatusResponse {
|
|
|
543
542
|
}
|
|
544
543
|
export interface DescribeInstanceAccessControlAttributeConfigurationRequest {
|
|
545
544
|
/**
|
|
546
|
-
* <p>The ARN of the
|
|
545
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed.</p>
|
|
547
546
|
*/
|
|
548
547
|
InstanceArn: string | undefined;
|
|
549
548
|
}
|
|
@@ -562,15 +561,15 @@ export interface DescribeInstanceAccessControlAttributeConfigurationResponse {
|
|
|
562
561
|
*/
|
|
563
562
|
StatusReason?: string;
|
|
564
563
|
/**
|
|
565
|
-
* <p>Gets the list of
|
|
564
|
+
* <p>Gets the list of IAM Identity Center identity store attributes that have been added to your ABAC
|
|
566
565
|
* configuration.</p>
|
|
567
566
|
*/
|
|
568
567
|
InstanceAccessControlAttributeConfiguration?: InstanceAccessControlAttributeConfiguration;
|
|
569
568
|
}
|
|
570
569
|
export interface DescribePermissionSetRequest {
|
|
571
570
|
/**
|
|
572
|
-
* <p>The ARN of the
|
|
573
|
-
* Names (ARNs) and
|
|
571
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
572
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
574
573
|
*/
|
|
575
574
|
InstanceArn: string | undefined;
|
|
576
575
|
/**
|
|
@@ -580,14 +579,14 @@ export interface DescribePermissionSetRequest {
|
|
|
580
579
|
}
|
|
581
580
|
export interface DescribePermissionSetResponse {
|
|
582
581
|
/**
|
|
583
|
-
* <p>Describes the level of access on an
|
|
582
|
+
* <p>Describes the level of access on an AWS account.</p>
|
|
584
583
|
*/
|
|
585
584
|
PermissionSet?: PermissionSet;
|
|
586
585
|
}
|
|
587
586
|
export interface DescribePermissionSetProvisioningStatusRequest {
|
|
588
587
|
/**
|
|
589
|
-
* <p>The ARN of the
|
|
590
|
-
* Names (ARNs) and
|
|
588
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
589
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
591
590
|
*/
|
|
592
591
|
InstanceArn: string | undefined;
|
|
593
592
|
/**
|
|
@@ -611,12 +610,12 @@ export interface PermissionSetProvisioningStatus {
|
|
|
611
610
|
*/
|
|
612
611
|
RequestId?: string;
|
|
613
612
|
/**
|
|
614
|
-
* <p>The identifier of the
|
|
613
|
+
* <p>The identifier of the AWS account from which to list the assignments.</p>
|
|
615
614
|
*/
|
|
616
615
|
AccountId?: string;
|
|
617
616
|
/**
|
|
618
617
|
* <p>The ARN of the permission set that is being provisioned. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
619
|
-
* Names (ARNs) and
|
|
618
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
620
619
|
*/
|
|
621
620
|
PermissionSetArn?: string;
|
|
622
621
|
/**
|
|
@@ -636,7 +635,7 @@ export interface DescribePermissionSetProvisioningStatusResponse {
|
|
|
636
635
|
}
|
|
637
636
|
export interface DetachCustomerManagedPolicyReferenceFromPermissionSetRequest {
|
|
638
637
|
/**
|
|
639
|
-
* <p>The ARN of the
|
|
638
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. </p>
|
|
640
639
|
*/
|
|
641
640
|
InstanceArn: string | undefined;
|
|
642
641
|
/**
|
|
@@ -644,7 +643,7 @@ export interface DetachCustomerManagedPolicyReferenceFromPermissionSetRequest {
|
|
|
644
643
|
*/
|
|
645
644
|
PermissionSetArn: string | undefined;
|
|
646
645
|
/**
|
|
647
|
-
* <p>Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each
|
|
646
|
+
* <p>Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.</p>
|
|
648
647
|
*/
|
|
649
648
|
CustomerManagedPolicyReference: CustomerManagedPolicyReference | undefined;
|
|
650
649
|
}
|
|
@@ -652,8 +651,8 @@ export interface DetachCustomerManagedPolicyReferenceFromPermissionSetResponse {
|
|
|
652
651
|
}
|
|
653
652
|
export interface DetachManagedPolicyFromPermissionSetRequest {
|
|
654
653
|
/**
|
|
655
|
-
* <p>The ARN of the
|
|
656
|
-
* Names (ARNs) and
|
|
654
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
655
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
657
656
|
*/
|
|
658
657
|
InstanceArn: string | undefined;
|
|
659
658
|
/**
|
|
@@ -662,7 +661,7 @@ export interface DetachManagedPolicyFromPermissionSetRequest {
|
|
|
662
661
|
*/
|
|
663
662
|
PermissionSetArn: string | undefined;
|
|
664
663
|
/**
|
|
665
|
-
* <p>The
|
|
664
|
+
* <p>The AWS managed policy ARN to be detached from a permission set.</p>
|
|
666
665
|
*/
|
|
667
666
|
ManagedPolicyArn: string | undefined;
|
|
668
667
|
}
|
|
@@ -670,8 +669,8 @@ export interface DetachManagedPolicyFromPermissionSetResponse {
|
|
|
670
669
|
}
|
|
671
670
|
export interface GetInlinePolicyForPermissionSetRequest {
|
|
672
671
|
/**
|
|
673
|
-
* <p>The ARN of the
|
|
674
|
-
* Names (ARNs) and
|
|
672
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
673
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
675
674
|
*/
|
|
676
675
|
InstanceArn: string | undefined;
|
|
677
676
|
/**
|
|
@@ -687,7 +686,7 @@ export interface GetInlinePolicyForPermissionSetResponse {
|
|
|
687
686
|
}
|
|
688
687
|
export interface GetPermissionsBoundaryForPermissionSetRequest {
|
|
689
688
|
/**
|
|
690
|
-
* <p>The ARN of the
|
|
689
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. </p>
|
|
691
690
|
*/
|
|
692
691
|
InstanceArn: string | undefined;
|
|
693
692
|
/**
|
|
@@ -696,27 +695,26 @@ export interface GetPermissionsBoundaryForPermissionSetRequest {
|
|
|
696
695
|
PermissionSetArn: string | undefined;
|
|
697
696
|
}
|
|
698
697
|
/**
|
|
699
|
-
* <p>Specifies the configuration of the
|
|
698
|
+
* <p>Specifies the configuration of the AWS managed or customer managed policy that you want
|
|
700
699
|
* to set as a permissions boundary. Specify either <code>CustomerManagedPolicyReference</code>
|
|
701
700
|
* to use the name and path of a customer managed policy, or <code>ManagedPolicyArn</code> to use
|
|
702
|
-
* the ARN of an
|
|
701
|
+
* the ARN of an AWS managed policy. A permissions boundary represents the maximum permissions
|
|
703
702
|
* that any policy can grant your role. For more information, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html">Permissions boundaries for IAM
|
|
704
|
-
* entities</a> in the <i>
|
|
703
|
+
* entities</a> in the <i>IAM User Guide</i>.</p>
|
|
705
704
|
* <important>
|
|
706
705
|
* <p>Policies used as permissions boundaries don't provide permissions. You must also attach
|
|
707
706
|
* an IAM policy to the role. To learn how the effective permissions for a role are
|
|
708
707
|
* evaluated, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html">IAM JSON policy
|
|
709
|
-
* evaluation logic</a> in the <i>
|
|
710
|
-
* Guide</i>.</p>
|
|
708
|
+
* evaluation logic</a> in the <i>IAM User Guide</i>.</p>
|
|
711
709
|
* </important>
|
|
712
710
|
*/
|
|
713
711
|
export interface PermissionsBoundary {
|
|
714
712
|
/**
|
|
715
|
-
* <p>Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each
|
|
713
|
+
* <p>Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.</p>
|
|
716
714
|
*/
|
|
717
715
|
CustomerManagedPolicyReference?: CustomerManagedPolicyReference;
|
|
718
716
|
/**
|
|
719
|
-
* <p>The
|
|
717
|
+
* <p>The AWS managed policy ARN that you want to attach to a permission set as a permissions
|
|
720
718
|
* boundary.</p>
|
|
721
719
|
*/
|
|
722
720
|
ManagedPolicyArn?: string;
|
|
@@ -728,16 +726,16 @@ export interface GetPermissionsBoundaryForPermissionSetResponse {
|
|
|
728
726
|
PermissionsBoundary?: PermissionsBoundary;
|
|
729
727
|
}
|
|
730
728
|
/**
|
|
731
|
-
* <p>Provides information about the
|
|
729
|
+
* <p>Provides information about the IAM Identity Center instance.</p>
|
|
732
730
|
*/
|
|
733
731
|
export interface InstanceMetadata {
|
|
734
732
|
/**
|
|
735
|
-
* <p>The ARN of the
|
|
736
|
-
* Names (ARNs) and
|
|
733
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
734
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
737
735
|
*/
|
|
738
736
|
InstanceArn?: string;
|
|
739
737
|
/**
|
|
740
|
-
* <p>The identifier of the identity store that is connected to the
|
|
738
|
+
* <p>The identifier of the identity store that is connected to the IAM Identity Center instance.</p>
|
|
741
739
|
*/
|
|
742
740
|
IdentityStoreId?: string;
|
|
743
741
|
}
|
|
@@ -752,8 +750,8 @@ export interface OperationStatusFilter {
|
|
|
752
750
|
}
|
|
753
751
|
export interface ListAccountAssignmentCreationStatusRequest {
|
|
754
752
|
/**
|
|
755
|
-
* <p>The ARN of the
|
|
756
|
-
* Names (ARNs) and
|
|
753
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
754
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
757
755
|
*/
|
|
758
756
|
InstanceArn: string | undefined;
|
|
759
757
|
/**
|
|
@@ -781,8 +779,8 @@ export interface ListAccountAssignmentCreationStatusResponse {
|
|
|
781
779
|
}
|
|
782
780
|
export interface ListAccountAssignmentDeletionStatusRequest {
|
|
783
781
|
/**
|
|
784
|
-
* <p>The ARN of the
|
|
785
|
-
* Names (ARNs) and
|
|
782
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
783
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
786
784
|
*/
|
|
787
785
|
InstanceArn: string | undefined;
|
|
788
786
|
/**
|
|
@@ -810,12 +808,12 @@ export interface ListAccountAssignmentDeletionStatusResponse {
|
|
|
810
808
|
}
|
|
811
809
|
export interface ListAccountAssignmentsRequest {
|
|
812
810
|
/**
|
|
813
|
-
* <p>The ARN of the
|
|
814
|
-
* Names (ARNs) and
|
|
811
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
812
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
815
813
|
*/
|
|
816
814
|
InstanceArn: string | undefined;
|
|
817
815
|
/**
|
|
818
|
-
* <p>The identifier of the
|
|
816
|
+
* <p>The identifier of the AWS account from which to list the assignments.</p>
|
|
819
817
|
*/
|
|
820
818
|
AccountId: string | undefined;
|
|
821
819
|
/**
|
|
@@ -833,7 +831,7 @@ export interface ListAccountAssignmentsRequest {
|
|
|
833
831
|
}
|
|
834
832
|
export interface ListAccountAssignmentsResponse {
|
|
835
833
|
/**
|
|
836
|
-
* <p>The list of assignments that match the input
|
|
834
|
+
* <p>The list of assignments that match the input AWS account and permission set.</p>
|
|
837
835
|
*/
|
|
838
836
|
AccountAssignments?: AccountAssignment[];
|
|
839
837
|
/**
|
|
@@ -847,17 +845,17 @@ export declare enum ProvisioningStatus {
|
|
|
847
845
|
}
|
|
848
846
|
export interface ListAccountsForProvisionedPermissionSetRequest {
|
|
849
847
|
/**
|
|
850
|
-
* <p>The ARN of the
|
|
851
|
-
* Names (ARNs) and
|
|
848
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
849
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
852
850
|
*/
|
|
853
851
|
InstanceArn: string | undefined;
|
|
854
852
|
/**
|
|
855
|
-
* <p>The ARN of the <a>PermissionSet</a> from which the associated
|
|
853
|
+
* <p>The ARN of the <a>PermissionSet</a> from which the associated AWS accounts
|
|
856
854
|
* will be listed.</p>
|
|
857
855
|
*/
|
|
858
856
|
PermissionSetArn: string | undefined;
|
|
859
857
|
/**
|
|
860
|
-
* <p>The permission set provisioning status for an
|
|
858
|
+
* <p>The permission set provisioning status for an AWS account.</p>
|
|
861
859
|
*/
|
|
862
860
|
ProvisioningStatus?: ProvisioningStatus | string;
|
|
863
861
|
/**
|
|
@@ -871,7 +869,7 @@ export interface ListAccountsForProvisionedPermissionSetRequest {
|
|
|
871
869
|
}
|
|
872
870
|
export interface ListAccountsForProvisionedPermissionSetResponse {
|
|
873
871
|
/**
|
|
874
|
-
* <p>The list of
|
|
872
|
+
* <p>The list of AWS <code>AccountIds</code>.</p>
|
|
875
873
|
*/
|
|
876
874
|
AccountIds?: string[];
|
|
877
875
|
/**
|
|
@@ -881,7 +879,7 @@ export interface ListAccountsForProvisionedPermissionSetResponse {
|
|
|
881
879
|
}
|
|
882
880
|
export interface ListCustomerManagedPolicyReferencesInPermissionSetRequest {
|
|
883
881
|
/**
|
|
884
|
-
* <p>The ARN of the
|
|
882
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. </p>
|
|
885
883
|
*/
|
|
886
884
|
InstanceArn: string | undefined;
|
|
887
885
|
/**
|
|
@@ -922,7 +920,7 @@ export interface ListInstancesRequest {
|
|
|
922
920
|
}
|
|
923
921
|
export interface ListInstancesResponse {
|
|
924
922
|
/**
|
|
925
|
-
* <p>Lists the
|
|
923
|
+
* <p>Lists the IAM Identity Center instances that the caller has access to.</p>
|
|
926
924
|
*/
|
|
927
925
|
Instances?: InstanceMetadata[];
|
|
928
926
|
/**
|
|
@@ -932,8 +930,8 @@ export interface ListInstancesResponse {
|
|
|
932
930
|
}
|
|
933
931
|
export interface ListManagedPoliciesInPermissionSetRequest {
|
|
934
932
|
/**
|
|
935
|
-
* <p>The ARN of the
|
|
936
|
-
* Names (ARNs) and
|
|
933
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
934
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
937
935
|
*/
|
|
938
936
|
InstanceArn: string | undefined;
|
|
939
937
|
/**
|
|
@@ -962,8 +960,8 @@ export interface ListManagedPoliciesInPermissionSetResponse {
|
|
|
962
960
|
}
|
|
963
961
|
export interface ListPermissionSetProvisioningStatusRequest {
|
|
964
962
|
/**
|
|
965
|
-
* <p>The ARN of the
|
|
966
|
-
* Names (ARNs) and
|
|
963
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
964
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
967
965
|
*/
|
|
968
966
|
InstanceArn: string | undefined;
|
|
969
967
|
/**
|
|
@@ -1009,8 +1007,8 @@ export interface ListPermissionSetProvisioningStatusResponse {
|
|
|
1009
1007
|
}
|
|
1010
1008
|
export interface ListPermissionSetsRequest {
|
|
1011
1009
|
/**
|
|
1012
|
-
* <p>The ARN of the
|
|
1013
|
-
* Names (ARNs) and
|
|
1010
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
1011
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
1014
1012
|
*/
|
|
1015
1013
|
InstanceArn: string | undefined;
|
|
1016
1014
|
/**
|
|
@@ -1024,7 +1022,7 @@ export interface ListPermissionSetsRequest {
|
|
|
1024
1022
|
}
|
|
1025
1023
|
export interface ListPermissionSetsResponse {
|
|
1026
1024
|
/**
|
|
1027
|
-
* <p>Defines the level of access on an
|
|
1025
|
+
* <p>Defines the level of access on an AWS account.</p>
|
|
1028
1026
|
*/
|
|
1029
1027
|
PermissionSets?: string[];
|
|
1030
1028
|
/**
|
|
@@ -1034,12 +1032,12 @@ export interface ListPermissionSetsResponse {
|
|
|
1034
1032
|
}
|
|
1035
1033
|
export interface ListPermissionSetsProvisionedToAccountRequest {
|
|
1036
1034
|
/**
|
|
1037
|
-
* <p>The ARN of the
|
|
1038
|
-
* Names (ARNs) and
|
|
1035
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
1036
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
1039
1037
|
*/
|
|
1040
1038
|
InstanceArn: string | undefined;
|
|
1041
1039
|
/**
|
|
1042
|
-
* <p>The identifier of the
|
|
1040
|
+
* <p>The identifier of the AWS account from which to list the assignments.</p>
|
|
1043
1041
|
*/
|
|
1044
1042
|
AccountId: string | undefined;
|
|
1045
1043
|
/**
|
|
@@ -1061,14 +1059,14 @@ export interface ListPermissionSetsProvisionedToAccountResponse {
|
|
|
1061
1059
|
*/
|
|
1062
1060
|
NextToken?: string;
|
|
1063
1061
|
/**
|
|
1064
|
-
* <p>Defines the level of access that an
|
|
1062
|
+
* <p>Defines the level of access that an AWS account has.</p>
|
|
1065
1063
|
*/
|
|
1066
1064
|
PermissionSets?: string[];
|
|
1067
1065
|
}
|
|
1068
1066
|
export interface ListTagsForResourceRequest {
|
|
1069
1067
|
/**
|
|
1070
|
-
* <p>The ARN of the
|
|
1071
|
-
* Names (ARNs) and
|
|
1068
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
1069
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
1072
1070
|
*/
|
|
1073
1071
|
InstanceArn: string | undefined;
|
|
1074
1072
|
/**
|
|
@@ -1096,8 +1094,8 @@ export declare enum ProvisionTargetType {
|
|
|
1096
1094
|
}
|
|
1097
1095
|
export interface ProvisionPermissionSetRequest {
|
|
1098
1096
|
/**
|
|
1099
|
-
* <p>The ARN of the
|
|
1100
|
-
* Names (ARNs) and
|
|
1097
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
1098
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
1101
1099
|
*/
|
|
1102
1100
|
InstanceArn: string | undefined;
|
|
1103
1101
|
/**
|
|
@@ -1105,7 +1103,7 @@ export interface ProvisionPermissionSetRequest {
|
|
|
1105
1103
|
*/
|
|
1106
1104
|
PermissionSetArn: string | undefined;
|
|
1107
1105
|
/**
|
|
1108
|
-
* <p>TargetID is an
|
|
1106
|
+
* <p>TargetID is an AWS account identifier, typically a 10-12 digit string (For example, 123456789012).</p>
|
|
1109
1107
|
*/
|
|
1110
1108
|
TargetId?: string;
|
|
1111
1109
|
/**
|
|
@@ -1121,8 +1119,8 @@ export interface ProvisionPermissionSetResponse {
|
|
|
1121
1119
|
}
|
|
1122
1120
|
export interface PutInlinePolicyToPermissionSetRequest {
|
|
1123
1121
|
/**
|
|
1124
|
-
* <p>The ARN of the
|
|
1125
|
-
* Names (ARNs) and
|
|
1122
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
1123
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
1126
1124
|
*/
|
|
1127
1125
|
InstanceArn: string | undefined;
|
|
1128
1126
|
/**
|
|
@@ -1138,7 +1136,7 @@ export interface PutInlinePolicyToPermissionSetResponse {
|
|
|
1138
1136
|
}
|
|
1139
1137
|
export interface PutPermissionsBoundaryToPermissionSetRequest {
|
|
1140
1138
|
/**
|
|
1141
|
-
* <p>The ARN of the
|
|
1139
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. </p>
|
|
1142
1140
|
*/
|
|
1143
1141
|
InstanceArn: string | undefined;
|
|
1144
1142
|
/**
|
|
@@ -1154,8 +1152,8 @@ export interface PutPermissionsBoundaryToPermissionSetResponse {
|
|
|
1154
1152
|
}
|
|
1155
1153
|
export interface TagResourceRequest {
|
|
1156
1154
|
/**
|
|
1157
|
-
* <p>The ARN of the
|
|
1158
|
-
* Names (ARNs) and
|
|
1155
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
1156
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
1159
1157
|
*/
|
|
1160
1158
|
InstanceArn: string | undefined;
|
|
1161
1159
|
/**
|
|
@@ -1171,8 +1169,8 @@ export interface TagResourceResponse {
|
|
|
1171
1169
|
}
|
|
1172
1170
|
export interface UntagResourceRequest {
|
|
1173
1171
|
/**
|
|
1174
|
-
* <p>The ARN of the
|
|
1175
|
-
* Names (ARNs) and
|
|
1172
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
1173
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
1176
1174
|
*/
|
|
1177
1175
|
InstanceArn: string | undefined;
|
|
1178
1176
|
/**
|
|
@@ -1188,7 +1186,7 @@ export interface UntagResourceResponse {
|
|
|
1188
1186
|
}
|
|
1189
1187
|
export interface UpdateInstanceAccessControlAttributeConfigurationRequest {
|
|
1190
1188
|
/**
|
|
1191
|
-
* <p>The ARN of the
|
|
1189
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed.</p>
|
|
1192
1190
|
*/
|
|
1193
1191
|
InstanceArn: string | undefined;
|
|
1194
1192
|
/**
|
|
@@ -1200,8 +1198,8 @@ export interface UpdateInstanceAccessControlAttributeConfigurationResponse {
|
|
|
1200
1198
|
}
|
|
1201
1199
|
export interface UpdatePermissionSetRequest {
|
|
1202
1200
|
/**
|
|
1203
|
-
* <p>The ARN of the
|
|
1204
|
-
* Names (ARNs) and
|
|
1201
|
+
* <p>The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
|
|
1202
|
+
* Names (ARNs) and AWS Service Namespaces</a> in the <i>AWS General Reference</i>.</p>
|
|
1205
1203
|
*/
|
|
1206
1204
|
InstanceArn: string | undefined;
|
|
1207
1205
|
/**
|