@aws-sdk/client-sso-admin 3.34.0 → 3.37.0

package/dist/types/ts3.4/models/models_0.d.ts

@@ -1,1541 +0,0 @@
-import { MetadataBearer as $MetadataBearer, SmithyException as __SmithyException } from "@aws-sdk/types";
-/**
- * <p>The value used for mapping a specified attribute to an identity source.</p>
- */
-export interface AccessControlAttributeValue {
-    /**
-     * <p>The identity source to use when mapping a specified attribute to Amazon Web Services SSO.</p>
-     */
-    Source: string[] | undefined;
-}
-export declare namespace AccessControlAttributeValue {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: AccessControlAttributeValue) => any;
-}
-/**
- * <p>These are Amazon Web Services SSO identity store attributes that you can configure for use in
- *       attributes-based access control (ABAC). You can create permissions policies that determine who
- *       can access your Amazon Web Services resources based upon the configured attribute values. When you enable
- *       ABAC and specify <code>AccessControlAttributes</code>, Amazon Web Services SSO passes the attribute values
- *       of the authenticated user into IAM for use in policy evaluation.</p>
- */
-export interface AccessControlAttribute {
-    /**
-     * <p>The name of the attribute associated with your identities in your identity source. This is
-     *       used to map a specified attribute in your identity source with an attribute in Amazon Web Services
-     *       SSO.</p>
-     */
-    Key: string | undefined;
-    /**
-     * <p>The value used for mapping a specified attribute to an identity source.</p>
-     */
-    Value: AccessControlAttributeValue | undefined;
-}
-export declare namespace AccessControlAttribute {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: AccessControlAttribute) => any;
-}
-/**
- * <p>You do not have sufficient access to perform this action.</p>
- */
-export interface AccessDeniedException extends __SmithyException, $MetadataBearer {
-    name: "AccessDeniedException";
-    $fault: "client";
-    Message?: string;
-}
-export declare namespace AccessDeniedException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: AccessDeniedException) => any;
-}
-export declare enum PrincipalType {
-    GROUP = "GROUP",
-    USER = "USER"
-}
-/**
- * <p>The assignment that indicates a principal's limited access to a specified Amazon Web Services account
- *       with a specified permission set.</p>
- *          <note>
- *             <p>The term <i>principal</i> here refers to a user or group that is defined
- *         in Amazon Web Services SSO.</p>
- *          </note>
- */
-export interface AccountAssignment {
-    /**
-     * <p>The identifier of the Amazon Web Services account.</p>
-     */
-    AccountId?: string;
-    /**
-     * <p>The ARN of the permission set. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    PermissionSetArn?: string;
-    /**
-     * <p>The entity type for which the assignment will be created.</p>
-     */
-    PrincipalType?: PrincipalType | string;
-    /**
-     * <p>An identifier for an object in Amazon Web Services SSO, such as a user or group. PrincipalIds are GUIDs (For example, f81d4fae-7dec-11d0-a765-00a0c91e6bf6). For more information about PrincipalIds in Amazon Web Services SSO, see the <a href="/singlesignon/latest/IdentityStoreAPIReference/welcome.html">Amazon Web Services SSO Identity Store API Reference</a>.</p>
-     */
-    PrincipalId?: string;
-}
-export declare namespace AccountAssignment {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: AccountAssignment) => any;
-}
-export declare enum StatusValues {
-    FAILED = "FAILED",
-    IN_PROGRESS = "IN_PROGRESS",
-    SUCCEEDED = "SUCCEEDED"
-}
-export declare enum TargetType {
-    AWS_ACCOUNT = "AWS_ACCOUNT"
-}
-/**
- * <p>The status of the creation or deletion operation of an assignment that a principal needs
- *       to access an account.</p>
- */
-export interface AccountAssignmentOperationStatus {
-    /**
-     * <p>The status of the permission set provisioning process.</p>
-     */
-    Status?: StatusValues | string;
-    /**
-     * <p>The identifier for tracking the request operation that is generated by the universally
-     *       unique identifier (UUID) workflow.</p>
-     */
-    RequestId?: string;
-    /**
-     * <p>The message that contains an error or exception in case of an operation failure.</p>
-     */
-    FailureReason?: string;
-    /**
-     * <p>TargetID is an Amazon Web Services account identifier, typically a 10-12 digit string (For example, 123456789012).</p>
-     */
-    TargetId?: string;
-    /**
-     * <p>The entity type for which the assignment will be created.</p>
-     */
-    TargetType?: TargetType | string;
-    /**
-     * <p>The ARN of the permission set. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    PermissionSetArn?: string;
-    /**
-     * <p>The entity type for which the assignment will be created.</p>
-     */
-    PrincipalType?: PrincipalType | string;
-    /**
-     * <p>An identifier for an object in Amazon Web Services SSO, such as a user or group. PrincipalIds are GUIDs (For example, f81d4fae-7dec-11d0-a765-00a0c91e6bf6). For more information about PrincipalIds in Amazon Web Services SSO, see the <a href="/singlesignon/latest/IdentityStoreAPIReference/welcome.html">Amazon Web Services SSO Identity Store API Reference</a>.</p>
-     */
-    PrincipalId?: string;
-    /**
-     * <p>The date that the permission set was created.</p>
-     */
-    CreatedDate?: Date;
-}
-export declare namespace AccountAssignmentOperationStatus {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: AccountAssignmentOperationStatus) => any;
-}
-/**
- * <p>Provides information about the <a>AccountAssignment</a> creation
- *       request.</p>
- */
-export interface AccountAssignmentOperationStatusMetadata {
-    /**
-     * <p>The status of the permission set provisioning process.</p>
-     */
-    Status?: StatusValues | string;
-    /**
-     * <p>The identifier for tracking the request operation that is generated by the universally
-     *       unique identifier (UUID) workflow.</p>
-     */
-    RequestId?: string;
-    /**
-     * <p>The date that the permission set was created.</p>
-     */
-    CreatedDate?: Date;
-}
-export declare namespace AccountAssignmentOperationStatusMetadata {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: AccountAssignmentOperationStatusMetadata) => any;
-}
-/**
- * <p>A structure that stores the details of the IAM managed policy.</p>
- */
-export interface AttachedManagedPolicy {
-    /**
-     * <p>The name of the IAM managed policy.</p>
-     */
-    Name?: string;
-    /**
-     * <p>The ARN of the IAM managed policy. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    Arn?: string;
-}
-export declare namespace AttachedManagedPolicy {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: AttachedManagedPolicy) => any;
-}
-export interface AttachManagedPolicyToPermissionSetRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The ARN of the <a>PermissionSet</a> that the managed policy should be attached
-     *       to.</p>
-     */
-    PermissionSetArn: string | undefined;
-    /**
-     * <p>The IAM managed policy ARN to be attached to a permission set.</p>
-     */
-    ManagedPolicyArn: string | undefined;
-}
-export declare namespace AttachManagedPolicyToPermissionSetRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: AttachManagedPolicyToPermissionSetRequest) => any;
-}
-export interface AttachManagedPolicyToPermissionSetResponse {
-}
-export declare namespace AttachManagedPolicyToPermissionSetResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: AttachManagedPolicyToPermissionSetResponse) => any;
-}
-/**
- * <p>Occurs when a conflict with a previous successful write is detected. This generally occurs
- *       when the previous write did not have time to propagate to the host serving the current
- *       request. A retry (with appropriate backoff logic) is the recommended response to this
- *       exception.</p>
- */
-export interface ConflictException extends __SmithyException, $MetadataBearer {
-    name: "ConflictException";
-    $fault: "client";
-    Message?: string;
-}
-export declare namespace ConflictException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ConflictException) => any;
-}
-/**
- * <p>The request processing has failed because of an unknown error, exception, or failure with
- *       an internal server.</p>
- */
-export interface InternalServerException extends __SmithyException, $MetadataBearer {
-    name: "InternalServerException";
-    $fault: "server";
-    Message?: string;
-}
-export declare namespace InternalServerException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InternalServerException) => any;
-}
-/**
- * <p>Indicates that a requested resource is not found.</p>
- */
-export interface ResourceNotFoundException extends __SmithyException, $MetadataBearer {
-    name: "ResourceNotFoundException";
-    $fault: "client";
-    Message?: string;
-}
-export declare namespace ResourceNotFoundException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ResourceNotFoundException) => any;
-}
-/**
- * <p>Indicates that the principal has crossed the permitted number of resources that can be
- *       created.</p>
- */
-export interface ServiceQuotaExceededException extends __SmithyException, $MetadataBearer {
-    name: "ServiceQuotaExceededException";
-    $fault: "client";
-    Message?: string;
-}
-export declare namespace ServiceQuotaExceededException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ServiceQuotaExceededException) => any;
-}
-/**
- * <p>Indicates that the principal has crossed the throttling limits of the API
- *       operations.</p>
- */
-export interface ThrottlingException extends __SmithyException, $MetadataBearer {
-    name: "ThrottlingException";
-    $fault: "client";
-    Message?: string;
-}
-export declare namespace ThrottlingException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ThrottlingException) => any;
-}
-/**
- * <p>The request failed because it contains a syntax error.</p>
- */
-export interface ValidationException extends __SmithyException, $MetadataBearer {
-    name: "ValidationException";
-    $fault: "client";
-    Message?: string;
-}
-export declare namespace ValidationException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ValidationException) => any;
-}
-export interface CreateAccountAssignmentRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>TargetID is an Amazon Web Services account identifier, typically a 10-12 digit string (For example, 123456789012).</p>
-     */
-    TargetId: string | undefined;
-    /**
-     * <p>The entity type for which the assignment will be created.</p>
-     */
-    TargetType: TargetType | string | undefined;
-    /**
-     * <p>The ARN of the permission set that the admin wants to grant the principal access
-     *       to.</p>
-     */
-    PermissionSetArn: string | undefined;
-    /**
-     * <p>The entity type for which the assignment will be created.</p>
-     */
-    PrincipalType: PrincipalType | string | undefined;
-    /**
-     * <p>An identifier for an object in Amazon Web Services SSO, such as a user or group. PrincipalIds are GUIDs (For example, f81d4fae-7dec-11d0-a765-00a0c91e6bf6). For more information about PrincipalIds in Amazon Web Services SSO, see the <a href="/singlesignon/latest/IdentityStoreAPIReference/welcome.html">Amazon Web Services SSO Identity Store API Reference</a>.</p>
-     */
-    PrincipalId: string | undefined;
-}
-export declare namespace CreateAccountAssignmentRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CreateAccountAssignmentRequest) => any;
-}
-export interface CreateAccountAssignmentResponse {
-    /**
-     * <p>The status object for the account assignment creation operation.</p>
-     */
-    AccountAssignmentCreationStatus?: AccountAssignmentOperationStatus;
-}
-export declare namespace CreateAccountAssignmentResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CreateAccountAssignmentResponse) => any;
-}
-/**
- * <p>Specifies the attributes to add to your attribute-based access control (ABAC)
- *       configuration.</p>
- */
-export interface InstanceAccessControlAttributeConfiguration {
-    /**
-     * <p>Lists the attributes that are configured for ABAC in the specified Amazon Web Services SSO
-     *       instance.</p>
-     */
-    AccessControlAttributes: AccessControlAttribute[] | undefined;
-}
-export declare namespace InstanceAccessControlAttributeConfiguration {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InstanceAccessControlAttributeConfiguration) => any;
-}
-export interface CreateInstanceAccessControlAttributeConfigurationRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>Specifies the Amazon Web Services SSO identity store attributes to add to your ABAC configuration.
-     *       When using an external identity provider as an identity source, you can pass attributes
-     *       through the SAML assertion. Doing so provides an alternative to configuring attributes from
-     *       the Amazon Web Services SSO identity store. If a SAML assertion passes any of these attributes, Amazon Web Services
-     *       SSO will replace the attribute value with the value from the Amazon Web Services SSO identity
-     *       store.</p>
-     */
-    InstanceAccessControlAttributeConfiguration: InstanceAccessControlAttributeConfiguration | undefined;
-}
-export declare namespace CreateInstanceAccessControlAttributeConfigurationRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CreateInstanceAccessControlAttributeConfigurationRequest) => any;
-}
-export interface CreateInstanceAccessControlAttributeConfigurationResponse {
-}
-export declare namespace CreateInstanceAccessControlAttributeConfigurationResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CreateInstanceAccessControlAttributeConfigurationResponse) => any;
-}
-/**
- * <p>A set of key-value pairs that are used to manage the resource. Tags can only be applied to
- *       permission sets and cannot be applied to corresponding roles that Amazon Web Services SSO creates in Amazon Web Services
- *       accounts.</p>
- */
-export interface Tag {
-    /**
-     * <p>The key for the tag.</p>
-     */
-    Key?: string;
-    /**
-     * <p>The value of the tag.</p>
-     */
-    Value?: string;
-}
-export declare namespace Tag {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: Tag) => any;
-}
-export interface CreatePermissionSetRequest {
-    /**
-     * <p>The name of the <a>PermissionSet</a>.</p>
-     */
-    Name: string | undefined;
-    /**
-     * <p>The description of the <a>PermissionSet</a>.</p>
-     */
-    Description?: string;
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The length of time that the application user sessions are valid in the ISO-8601
-     *       standard.</p>
-     */
-    SessionDuration?: string;
-    /**
-     * <p>Used to redirect users within the application during the federation authentication
-     *       process.</p>
-     */
-    RelayState?: string;
-    /**
-     * <p>The tags to attach to the new <a>PermissionSet</a>.</p>
-     */
-    Tags?: Tag[];
-}
-export declare namespace CreatePermissionSetRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CreatePermissionSetRequest) => any;
-}
-/**
- * <p>An entity that contains IAM policies.</p>
- */
-export interface PermissionSet {
-    /**
-     * <p>The name of the permission set.</p>
-     */
-    Name?: string;
-    /**
-     * <p>The ARN of the permission set. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    PermissionSetArn?: string;
-    /**
-     * <p>The description of the <a>PermissionSet</a>.</p>
-     */
-    Description?: string;
-    /**
-     * <p>The date that the permission set was created.</p>
-     */
-    CreatedDate?: Date;
-    /**
-     * <p>The length of time that the application user sessions are valid for in the ISO-8601
-     *       standard.</p>
-     */
-    SessionDuration?: string;
-    /**
-     * <p>Used to redirect users within the application during the federation authentication
-     *       process.</p>
-     */
-    RelayState?: string;
-}
-export declare namespace PermissionSet {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: PermissionSet) => any;
-}
-export interface CreatePermissionSetResponse {
-    /**
-     * <p>Defines the level of access on an Amazon Web Services account.</p>
-     */
-    PermissionSet?: PermissionSet;
-}
-export declare namespace CreatePermissionSetResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CreatePermissionSetResponse) => any;
-}
-export interface DeleteAccountAssignmentRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>TargetID is an Amazon Web Services account identifier, typically a 10-12 digit string (For example, 123456789012).</p>
-     */
-    TargetId: string | undefined;
-    /**
-     * <p>The entity type for which the assignment will be deleted.</p>
-     */
-    TargetType: TargetType | string | undefined;
-    /**
-     * <p>The ARN of the permission set that will be used to remove access.</p>
-     */
-    PermissionSetArn: string | undefined;
-    /**
-     * <p>The entity type for which the assignment will be deleted.</p>
-     */
-    PrincipalType: PrincipalType | string | undefined;
-    /**
-     * <p>An identifier for an object in Amazon Web Services SSO, such as a user or group. PrincipalIds are GUIDs (For example, f81d4fae-7dec-11d0-a765-00a0c91e6bf6). For more information about PrincipalIds in Amazon Web Services SSO, see the <a href="/singlesignon/latest/IdentityStoreAPIReference/welcome.html">Amazon Web Services SSO Identity Store API Reference</a>.</p>
-     */
-    PrincipalId: string | undefined;
-}
-export declare namespace DeleteAccountAssignmentRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DeleteAccountAssignmentRequest) => any;
-}
-export interface DeleteAccountAssignmentResponse {
-    /**
-     * <p>The status object for the account assignment deletion operation.</p>
-     */
-    AccountAssignmentDeletionStatus?: AccountAssignmentOperationStatus;
-}
-export declare namespace DeleteAccountAssignmentResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DeleteAccountAssignmentResponse) => any;
-}
-export interface DeleteInlinePolicyFromPermissionSetRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The ARN of the permission set that will be used to remove access.</p>
-     */
-    PermissionSetArn: string | undefined;
-}
-export declare namespace DeleteInlinePolicyFromPermissionSetRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DeleteInlinePolicyFromPermissionSetRequest) => any;
-}
-export interface DeleteInlinePolicyFromPermissionSetResponse {
-}
-export declare namespace DeleteInlinePolicyFromPermissionSetResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DeleteInlinePolicyFromPermissionSetResponse) => any;
-}
-export interface DeleteInstanceAccessControlAttributeConfigurationRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed.</p>
-     */
-    InstanceArn: string | undefined;
-}
-export declare namespace DeleteInstanceAccessControlAttributeConfigurationRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DeleteInstanceAccessControlAttributeConfigurationRequest) => any;
-}
-export interface DeleteInstanceAccessControlAttributeConfigurationResponse {
-}
-export declare namespace DeleteInstanceAccessControlAttributeConfigurationResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DeleteInstanceAccessControlAttributeConfigurationResponse) => any;
-}
-export interface DeletePermissionSetRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The ARN of the permission set that should be deleted.</p>
-     */
-    PermissionSetArn: string | undefined;
-}
-export declare namespace DeletePermissionSetRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DeletePermissionSetRequest) => any;
-}
-export interface DeletePermissionSetResponse {
-}
-export declare namespace DeletePermissionSetResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DeletePermissionSetResponse) => any;
-}
-export interface DescribeAccountAssignmentCreationStatusRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The identifier that is used to track the request operation progress.</p>
-     */
-    AccountAssignmentCreationRequestId: string | undefined;
-}
-export declare namespace DescribeAccountAssignmentCreationStatusRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeAccountAssignmentCreationStatusRequest) => any;
-}
-export interface DescribeAccountAssignmentCreationStatusResponse {
-    /**
-     * <p>The status object for the account assignment creation operation.</p>
-     */
-    AccountAssignmentCreationStatus?: AccountAssignmentOperationStatus;
-}
-export declare namespace DescribeAccountAssignmentCreationStatusResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeAccountAssignmentCreationStatusResponse) => any;
-}
-export interface DescribeAccountAssignmentDeletionStatusRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The identifier that is used to track the request operation progress.</p>
-     */
-    AccountAssignmentDeletionRequestId: string | undefined;
-}
-export declare namespace DescribeAccountAssignmentDeletionStatusRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeAccountAssignmentDeletionStatusRequest) => any;
-}
-export interface DescribeAccountAssignmentDeletionStatusResponse {
-    /**
-     * <p>The status object for the account assignment deletion operation.</p>
-     */
-    AccountAssignmentDeletionStatus?: AccountAssignmentOperationStatus;
-}
-export declare namespace DescribeAccountAssignmentDeletionStatusResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeAccountAssignmentDeletionStatusResponse) => any;
-}
-export interface DescribeInstanceAccessControlAttributeConfigurationRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed.</p>
-     */
-    InstanceArn: string | undefined;
-}
-export declare namespace DescribeInstanceAccessControlAttributeConfigurationRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeInstanceAccessControlAttributeConfigurationRequest) => any;
-}
-export declare enum InstanceAccessControlAttributeConfigurationStatus {
-    CREATION_FAILED = "CREATION_FAILED",
-    CREATION_IN_PROGRESS = "CREATION_IN_PROGRESS",
-    ENABLED = "ENABLED"
-}
-export interface DescribeInstanceAccessControlAttributeConfigurationResponse {
-    /**
-     * <p>The status of the attribute configuration process.</p>
-     */
-    Status?: InstanceAccessControlAttributeConfigurationStatus | string;
-    /**
-     * <p>Provides more details about the current status of the specified attribute.</p>
-     */
-    StatusReason?: string;
-    /**
-     * <p>Gets the list of Amazon Web Services SSO identity store attributes that have been added to your ABAC
-     *       configuration.</p>
-     */
-    InstanceAccessControlAttributeConfiguration?: InstanceAccessControlAttributeConfiguration;
-}
-export declare namespace DescribeInstanceAccessControlAttributeConfigurationResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeInstanceAccessControlAttributeConfigurationResponse) => any;
-}
-export interface DescribePermissionSetRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The ARN of the permission set.</p>
-     */
-    PermissionSetArn: string | undefined;
-}
-export declare namespace DescribePermissionSetRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribePermissionSetRequest) => any;
-}
-export interface DescribePermissionSetResponse {
-    /**
-     * <p>Describes the level of access on an Amazon Web Services account.</p>
-     */
-    PermissionSet?: PermissionSet;
-}
-export declare namespace DescribePermissionSetResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribePermissionSetResponse) => any;
-}
-export interface DescribePermissionSetProvisioningStatusRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The identifier that is provided by the <a>ProvisionPermissionSet</a> call to
-     *       retrieve the current status of the provisioning workflow.</p>
-     */
-    ProvisionPermissionSetRequestId: string | undefined;
-}
-export declare namespace DescribePermissionSetProvisioningStatusRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribePermissionSetProvisioningStatusRequest) => any;
-}
-/**
- * <p>A structure that is used to provide the status of the provisioning operation for a
- *       specified permission set.</p>
- */
-export interface PermissionSetProvisioningStatus {
-    /**
-     * <p>The status of the permission set provisioning process.</p>
-     */
-    Status?: StatusValues | string;
-    /**
-     * <p>The identifier for tracking the request operation that is generated by the universally
-     *       unique identifier (UUID) workflow.</p>
-     */
-    RequestId?: string;
-    /**
-     * <p>The identifier of the Amazon Web Services account from which to list the assignments.</p>
-     */
-    AccountId?: string;
-    /**
-     * <p>The ARN of the permission set that is being provisioned. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    PermissionSetArn?: string;
-    /**
-     * <p>The message that contains an error or exception in case of an operation failure.</p>
-     */
-    FailureReason?: string;
-    /**
-     * <p>The date that the permission set was created.</p>
-     */
-    CreatedDate?: Date;
-}
-export declare namespace PermissionSetProvisioningStatus {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: PermissionSetProvisioningStatus) => any;
-}
-export interface DescribePermissionSetProvisioningStatusResponse {
-    /**
-     * <p>The status object for the permission set provisioning operation.</p>
-     */
-    PermissionSetProvisioningStatus?: PermissionSetProvisioningStatus;
-}
-export declare namespace DescribePermissionSetProvisioningStatusResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribePermissionSetProvisioningStatusResponse) => any;
-}
-export interface DetachManagedPolicyFromPermissionSetRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The ARN of the <a>PermissionSet</a> from which the policy should be
-     *       detached.</p>
-     */
-    PermissionSetArn: string | undefined;
-    /**
-     * <p>The IAM managed policy ARN to be attached to a permission set.</p>
-     */
-    ManagedPolicyArn: string | undefined;
-}
-export declare namespace DetachManagedPolicyFromPermissionSetRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DetachManagedPolicyFromPermissionSetRequest) => any;
-}
-export interface DetachManagedPolicyFromPermissionSetResponse {
-}
-export declare namespace DetachManagedPolicyFromPermissionSetResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DetachManagedPolicyFromPermissionSetResponse) => any;
-}
-export interface GetInlinePolicyForPermissionSetRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The ARN of the permission set.</p>
-     */
-    PermissionSetArn: string | undefined;
-}
-export declare namespace GetInlinePolicyForPermissionSetRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: GetInlinePolicyForPermissionSetRequest) => any;
-}
-export interface GetInlinePolicyForPermissionSetResponse {
-    /**
-     * <p>The IAM inline policy that is attached to the permission set.</p>
-     */
-    InlinePolicy?: string;
-}
-export declare namespace GetInlinePolicyForPermissionSetResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: GetInlinePolicyForPermissionSetResponse) => any;
-}
-/**
- * <p>Provides information about the SSO instance.</p>
- */
-export interface InstanceMetadata {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn?: string;
-    /**
-     * <p>The identifier of the identity store that is connected to the SSO instance.</p>
-     */
-    IdentityStoreId?: string;
-}
-export declare namespace InstanceMetadata {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InstanceMetadata) => any;
-}
-/**
- * <p>Filters he operation status list based on the passed attribute value.</p>
- */
-export interface OperationStatusFilter {
-    /**
-     * <p>Filters the list operations result based on the status attribute.</p>
-     */
-    Status?: StatusValues | string;
-}
-export declare namespace OperationStatusFilter {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: OperationStatusFilter) => any;
-}
-export interface ListAccountAssignmentCreationStatusRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The maximum number of results to display for the assignment.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-    /**
-     * <p>Filters results based on the passed attribute value.</p>
-     */
-    Filter?: OperationStatusFilter;
-}
-export declare namespace ListAccountAssignmentCreationStatusRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListAccountAssignmentCreationStatusRequest) => any;
-}
-export interface ListAccountAssignmentCreationStatusResponse {
-    /**
-     * <p>The status object for the account assignment creation operation.</p>
-     */
-    AccountAssignmentsCreationStatus?: AccountAssignmentOperationStatusMetadata[];
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListAccountAssignmentCreationStatusResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListAccountAssignmentCreationStatusResponse) => any;
-}
-export interface ListAccountAssignmentDeletionStatusRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The maximum number of results to display for the assignment.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-    /**
-     * <p>Filters results based on the passed attribute value.</p>
-     */
-    Filter?: OperationStatusFilter;
-}
-export declare namespace ListAccountAssignmentDeletionStatusRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListAccountAssignmentDeletionStatusRequest) => any;
-}
-export interface ListAccountAssignmentDeletionStatusResponse {
-    /**
-     * <p>The status object for the account assignment deletion operation.</p>
-     */
-    AccountAssignmentsDeletionStatus?: AccountAssignmentOperationStatusMetadata[];
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListAccountAssignmentDeletionStatusResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListAccountAssignmentDeletionStatusResponse) => any;
-}
-export interface ListAccountAssignmentsRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The identifier of the Amazon Web Services account from which to list the assignments.</p>
-     */
-    AccountId: string | undefined;
-    /**
-     * <p>The ARN of the permission set from which to list assignments.</p>
-     */
-    PermissionSetArn: string | undefined;
-    /**
-     * <p>The maximum number of results to display for the assignment.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListAccountAssignmentsRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListAccountAssignmentsRequest) => any;
-}
-export interface ListAccountAssignmentsResponse {
-    /**
-     * <p>The list of assignments that match the input Amazon Web Services account and permission set.</p>
-     */
-    AccountAssignments?: AccountAssignment[];
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListAccountAssignmentsResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListAccountAssignmentsResponse) => any;
-}
-export declare enum ProvisioningStatus {
-    LATEST_PERMISSION_SET_NOT_PROVISIONED = "LATEST_PERMISSION_SET_NOT_PROVISIONED",
-    LATEST_PERMISSION_SET_PROVISIONED = "LATEST_PERMISSION_SET_PROVISIONED"
-}
-export interface ListAccountsForProvisionedPermissionSetRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The ARN of the <a>PermissionSet</a> from which the associated Amazon Web Services accounts
-     *       will be listed.</p>
-     */
-    PermissionSetArn: string | undefined;
-    /**
-     * <p>The permission set provisioning status for an Amazon Web Services account.</p>
-     */
-    ProvisioningStatus?: ProvisioningStatus | string;
-    /**
-     * <p>The maximum number of results to display for the <a>PermissionSet</a>.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListAccountsForProvisionedPermissionSetRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListAccountsForProvisionedPermissionSetRequest) => any;
-}
-export interface ListAccountsForProvisionedPermissionSetResponse {
-    /**
-     * <p>The list of Amazon Web Services <code>AccountIds</code>.</p>
-     */
-    AccountIds?: string[];
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListAccountsForProvisionedPermissionSetResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListAccountsForProvisionedPermissionSetResponse) => any;
-}
-export interface ListInstancesRequest {
-    /**
-     * <p>The maximum number of results to display for the instance.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListInstancesRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListInstancesRequest) => any;
-}
-export interface ListInstancesResponse {
-    /**
-     * <p>Lists the SSO instances that the caller has access to.</p>
-     */
-    Instances?: InstanceMetadata[];
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListInstancesResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListInstancesResponse) => any;
-}
-export interface ListManagedPoliciesInPermissionSetRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The ARN of the <a>PermissionSet</a> whose managed policies will be
-     *       listed.</p>
-     */
-    PermissionSetArn: string | undefined;
-    /**
-     * <p>The maximum number of results to display for the <a>PermissionSet</a>.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListManagedPoliciesInPermissionSetRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListManagedPoliciesInPermissionSetRequest) => any;
-}
-export interface ListManagedPoliciesInPermissionSetResponse {
-    /**
-     * <p>The array of the <a>AttachedManagedPolicy</a> data type object.</p>
-     */
-    AttachedManagedPolicies?: AttachedManagedPolicy[];
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListManagedPoliciesInPermissionSetResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListManagedPoliciesInPermissionSetResponse) => any;
-}
-export interface ListPermissionSetProvisioningStatusRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The maximum number of results to display for the assignment.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-    /**
-     * <p>Filters results based on the passed attribute value.</p>
-     */
-    Filter?: OperationStatusFilter;
-}
-export declare namespace ListPermissionSetProvisioningStatusRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListPermissionSetProvisioningStatusRequest) => any;
-}
-/**
- * <p>Provides information about the permission set provisioning status.</p>
- */
-export interface PermissionSetProvisioningStatusMetadata {
-    /**
-     * <p>The status of the permission set provisioning process.</p>
-     */
-    Status?: StatusValues | string;
-    /**
-     * <p>The identifier for tracking the request operation that is generated by the universally
-     *       unique identifier (UUID) workflow.</p>
-     */
-    RequestId?: string;
-    /**
-     * <p>The date that the permission set was created.</p>
-     */
-    CreatedDate?: Date;
-}
-export declare namespace PermissionSetProvisioningStatusMetadata {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: PermissionSetProvisioningStatusMetadata) => any;
-}
-export interface ListPermissionSetProvisioningStatusResponse {
-    /**
-     * <p>The status object for the permission set provisioning operation.</p>
-     */
-    PermissionSetsProvisioningStatus?: PermissionSetProvisioningStatusMetadata[];
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListPermissionSetProvisioningStatusResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListPermissionSetProvisioningStatusResponse) => any;
-}
-export interface ListPermissionSetsRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-    /**
-     * <p>The maximum number of results to display for the assignment.</p>
-     */
-    MaxResults?: number;
-}
-export declare namespace ListPermissionSetsRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListPermissionSetsRequest) => any;
-}
-export interface ListPermissionSetsResponse {
-    /**
-     * <p>Defines the level of access on an Amazon Web Services account.</p>
-     */
-    PermissionSets?: string[];
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListPermissionSetsResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListPermissionSetsResponse) => any;
-}
-export interface ListPermissionSetsProvisionedToAccountRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The identifier of the Amazon Web Services account from which to list the assignments.</p>
-     */
-    AccountId: string | undefined;
-    /**
-     * <p>The status object for the permission set provisioning operation.</p>
-     */
-    ProvisioningStatus?: ProvisioningStatus | string;
-    /**
-     * <p>The maximum number of results to display for the assignment.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListPermissionSetsProvisionedToAccountRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListPermissionSetsProvisionedToAccountRequest) => any;
-}
-export interface ListPermissionSetsProvisionedToAccountResponse {
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-    /**
-     * <p>Defines the level of access that an Amazon Web Services account has.</p>
-     */
-    PermissionSets?: string[];
-}
-export declare namespace ListPermissionSetsProvisionedToAccountResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListPermissionSetsProvisionedToAccountResponse) => any;
-}
-export interface ListTagsForResourceRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The ARN of the resource with the tags to be listed.</p>
-     */
-    ResourceArn: string | undefined;
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListTagsForResourceRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListTagsForResourceRequest) => any;
-}
-export interface ListTagsForResourceResponse {
-    /**
-     * <p>A set of key-value pairs that are used to manage the resource.</p>
-     */
-    Tags?: Tag[];
-    /**
-     * <p>The pagination token for the list API. Initially the value is null. Use the output of previous API calls to make subsequent calls.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListTagsForResourceResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListTagsForResourceResponse) => any;
-}
-export declare enum ProvisionTargetType {
-    ALL_PROVISIONED_ACCOUNTS = "ALL_PROVISIONED_ACCOUNTS",
-    AWS_ACCOUNT = "AWS_ACCOUNT"
-}
-export interface ProvisionPermissionSetRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The ARN of the permission set.</p>
-     */
-    PermissionSetArn: string | undefined;
-    /**
-     * <p>TargetID is an Amazon Web Services account identifier, typically a 10-12 digit string (For example, 123456789012).</p>
-     */
-    TargetId?: string;
-    /**
-     * <p>The entity type for which the assignment will be created.</p>
-     */
-    TargetType: ProvisionTargetType | string | undefined;
-}
-export declare namespace ProvisionPermissionSetRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ProvisionPermissionSetRequest) => any;
-}
-export interface ProvisionPermissionSetResponse {
-    /**
-     * <p>The status object for the permission set provisioning operation.</p>
-     */
-    PermissionSetProvisioningStatus?: PermissionSetProvisioningStatus;
-}
-export declare namespace ProvisionPermissionSetResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ProvisionPermissionSetResponse) => any;
-}
-export interface PutInlinePolicyToPermissionSetRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The ARN of the permission set.</p>
-     */
-    PermissionSetArn: string | undefined;
-    /**
-     * <p>The IAM inline policy to attach to a <a>PermissionSet</a>.</p>
-     */
-    InlinePolicy: string | undefined;
-}
-export declare namespace PutInlinePolicyToPermissionSetRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: PutInlinePolicyToPermissionSetRequest) => any;
-}
-export interface PutInlinePolicyToPermissionSetResponse {
-}
-export declare namespace PutInlinePolicyToPermissionSetResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: PutInlinePolicyToPermissionSetResponse) => any;
-}
-export interface TagResourceRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The ARN of the resource with the tags to be listed.</p>
-     */
-    ResourceArn: string | undefined;
-    /**
-     * <p>A set of key-value pairs that are used to manage the resource.</p>
-     */
-    Tags: Tag[] | undefined;
-}
-export declare namespace TagResourceRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: TagResourceRequest) => any;
-}
-export interface TagResourceResponse {
-}
-export declare namespace TagResourceResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: TagResourceResponse) => any;
-}
-export interface UntagResourceRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The ARN of the resource with the tags to be listed.</p>
-     */
-    ResourceArn: string | undefined;
-    /**
-     * <p>The keys of tags that are attached to the resource.</p>
-     */
-    TagKeys: string[] | undefined;
-}
-export declare namespace UntagResourceRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UntagResourceRequest) => any;
-}
-export interface UntagResourceResponse {
-}
-export declare namespace UntagResourceResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UntagResourceResponse) => any;
-}
-export interface UpdateInstanceAccessControlAttributeConfigurationRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>Updates the attributes for your ABAC configuration.</p>
-     */
-    InstanceAccessControlAttributeConfiguration: InstanceAccessControlAttributeConfiguration | undefined;
-}
-export declare namespace UpdateInstanceAccessControlAttributeConfigurationRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UpdateInstanceAccessControlAttributeConfigurationRequest) => any;
-}
-export interface UpdateInstanceAccessControlAttributeConfigurationResponse {
-}
-export declare namespace UpdateInstanceAccessControlAttributeConfigurationResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UpdateInstanceAccessControlAttributeConfigurationResponse) => any;
-}
-export interface UpdatePermissionSetRequest {
-    /**
-     * <p>The ARN of the SSO instance under which the operation will be executed. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource
-     * Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     */
-    InstanceArn: string | undefined;
-    /**
-     * <p>The ARN of the permission set.</p>
-     */
-    PermissionSetArn: string | undefined;
-    /**
-     * <p>The description of the <a>PermissionSet</a>.</p>
-     */
-    Description?: string;
-    /**
-     * <p>The length of time that the application user sessions are valid for in the ISO-8601
-     *       standard.</p>
-     */
-    SessionDuration?: string;
-    /**
-     * <p>Used to redirect users within the application during the federation authentication
-     *       process.</p>
-     */
-    RelayState?: string;
-}
-export declare namespace UpdatePermissionSetRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UpdatePermissionSetRequest) => any;
-}
-export interface UpdatePermissionSetResponse {
-}
-export declare namespace UpdatePermissionSetResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UpdatePermissionSetResponse) => any;
-}