@aws-sdk/client-sso-admin 3.894.0 → 3.896.0

package/dist-cjs/index.js

@@ -22,6 +22,7 @@ var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: tru
 var index_exports = {};
 __export(index_exports, {
   AccessDeniedException: () => AccessDeniedException,
+  AccessDeniedExceptionReason: () => AccessDeniedExceptionReason,
   ApplicationStatus: () => ApplicationStatus,
   ApplicationVisibility: () => ApplicationVisibility,
   AttachCustomerManagedPolicyReferenceToPermissionSetCommand: () => AttachCustomerManagedPolicyReferenceToPermissionSetCommand,
@@ -74,6 +75,8 @@ __export(index_exports, {
   InstanceStatus: () => InstanceStatus,
   InternalServerException: () => InternalServerException,
   JwksRetrievalOption: () => JwksRetrievalOption,
+  KmsKeyStatus: () => KmsKeyStatus,
+  KmsKeyType: () => KmsKeyType,
   ListAccountAssignmentCreationStatusCommand: () => ListAccountAssignmentCreationStatusCommand,
   ListAccountAssignmentDeletionStatusCommand: () => ListAccountAssignmentDeletionStatusCommand,
   ListAccountAssignmentsCommand: () => ListAccountAssignmentsCommand,
@@ -106,6 +109,7 @@ __export(index_exports, {
   PutInlinePolicyToPermissionSetCommand: () => PutInlinePolicyToPermissionSetCommand,
   PutPermissionsBoundaryToPermissionSetCommand: () => PutPermissionsBoundaryToPermissionSetCommand,
   ResourceNotFoundException: () => ResourceNotFoundException,
+  ResourceNotFoundExceptionReason: () => ResourceNotFoundExceptionReason,
   SSOAdmin: () => SSOAdmin,
   SSOAdminClient: () => SSOAdminClient,
   SSOAdminServiceException: () => SSOAdminServiceException,
@@ -115,6 +119,7 @@ __export(index_exports, {
   TagResourceCommand: () => TagResourceCommand,
   TargetType: () => TargetType,
   ThrottlingException: () => ThrottlingException,
+  ThrottlingExceptionReason: () => ThrottlingExceptionReason,
   TrustedTokenIssuerConfiguration: () => TrustedTokenIssuerConfiguration,
   TrustedTokenIssuerType: () => TrustedTokenIssuerType,
   TrustedTokenIssuerUpdateConfiguration: () => TrustedTokenIssuerUpdateConfiguration,
@@ -126,6 +131,7 @@ __export(index_exports, {
   UpdateTrustedTokenIssuerCommand: () => UpdateTrustedTokenIssuerCommand,
   UserBackgroundSessionApplicationStatus: () => UserBackgroundSessionApplicationStatus,
   ValidationException: () => ValidationException,
+  ValidationExceptionReason: () => ValidationExceptionReason,
   __Client: () => import_smithy_client.Client,
   paginateListAccountAssignmentCreationStatus: () => paginateListAccountAssignmentCreationStatus,
   paginateListAccountAssignmentDeletionStatus: () => paginateListAccountAssignmentDeletionStatus,
@@ -303,7 +309,7 @@ var import_middleware_serde = require("@smithy/middleware-serde");
 var import_core2 = require("@aws-sdk/core");
 
 
-var import_uuid = require("uuid");
+var import_uuid = require("@smithy/uuid");
 
 // src/models/SSOAdminServiceException.ts
 
@@ -321,6 +327,9 @@ var SSOAdminServiceException = class _SSOAdminServiceException extends import_sm
 };
 
 // src/models/models_0.ts
+var AccessDeniedExceptionReason = {
+  KMS_ACCESS_DENIED_EXCEPTION: "KMS_AccessDeniedException"
+};
 var AccessDeniedException = class _AccessDeniedException extends SSOAdminServiceException {
   static {
     __name(this, "AccessDeniedException");
@@ -328,6 +337,11 @@ var AccessDeniedException = class _AccessDeniedException extends SSOAdminService
   name = "AccessDeniedException";
   $fault = "client";
   Message;
+  /**
+   * <p>The reason for the access denied exception.</p>
+   * @public
+   */
+  Reason;
   /**
    * @internal
    */
@@ -339,6 +353,7 @@ var AccessDeniedException = class _AccessDeniedException extends SSOAdminService
     });
     Object.setPrototypeOf(this, _AccessDeniedException.prototype);
     this.Message = opts.Message;
+    this.Reason = opts.Reason;
   }
 };
 var PrincipalType = {
@@ -405,6 +420,9 @@ var InternalServerException = class _InternalServerException extends SSOAdminSer
     this.Message = opts.Message;
   }
 };
+var ResourceNotFoundExceptionReason = {
+  KMS_NOT_FOUND_EXCEPTION: "KMS_NotFoundException"
+};
 var ResourceNotFoundException = class _ResourceNotFoundException extends SSOAdminServiceException {
   static {
     __name(this, "ResourceNotFoundException");
@@ -412,6 +430,11 @@ var ResourceNotFoundException = class _ResourceNotFoundException extends SSOAdmi
   name = "ResourceNotFoundException";
   $fault = "client";
   Message;
+  /**
+   * <p>The reason for the resource not found exception.</p>
+   * @public
+   */
+  Reason;
   /**
    * @internal
    */
@@ -423,8 +446,12 @@ var ResourceNotFoundException = class _ResourceNotFoundException extends SSOAdmi
     });
     Object.setPrototypeOf(this, _ResourceNotFoundException.prototype);
     this.Message = opts.Message;
+    this.Reason = opts.Reason;
   }
 };
+var ThrottlingExceptionReason = {
+  KMS_THROTTLING_EXCEPTION: "KMS_ThrottlingException"
+};
 var ThrottlingException = class _ThrottlingException extends SSOAdminServiceException {
   static {
     __name(this, "ThrottlingException");
@@ -432,6 +459,11 @@ var ThrottlingException = class _ThrottlingException extends SSOAdminServiceExce
   name = "ThrottlingException";
   $fault = "client";
   Message;
+  /**
+   * <p>The reason for the throttling exception.</p>
+   * @public
+   */
+  Reason;
   /**
    * @internal
    */
@@ -443,8 +475,14 @@ var ThrottlingException = class _ThrottlingException extends SSOAdminServiceExce
     });
     Object.setPrototypeOf(this, _ThrottlingException.prototype);
     this.Message = opts.Message;
+    this.Reason = opts.Reason;
   }
 };
+var ValidationExceptionReason = {
+  KMS_DISABLED_EXCEPTION: "KMS_DisabledException",
+  KMS_INVALID_KEY_USAGE_EXCEPTION: "KMS_InvalidKeyUsageException",
+  KMS_INVALID_STATE_EXCEPTION: "KMS_InvalidStateException"
+};
 var ValidationException = class _ValidationException extends SSOAdminServiceException {
   static {
     __name(this, "ValidationException");
@@ -452,6 +490,11 @@ var ValidationException = class _ValidationException extends SSOAdminServiceExce
   name = "ValidationException";
   $fault = "client";
   Message;
+  /**
+   * <p>The reason for the validation exception.</p>
+   * @public
+   */
+  Reason;
   /**
    * @internal
    */
@@ -463,6 +506,7 @@ var ValidationException = class _ValidationException extends SSOAdminServiceExce
     });
     Object.setPrototypeOf(this, _ValidationException.prototype);
     this.Message = opts.Message;
+    this.Reason = opts.Reason;
   }
 };
 var AuthenticationMethodType = {
@@ -528,8 +572,18 @@ var TrustedTokenIssuerConfiguration;
 var TrustedTokenIssuerType = {
   OIDC_JWT: "OIDC_JWT"
 };
+var KmsKeyStatus = {
+  ENABLED: "ENABLED",
+  UPDATE_FAILED: "UPDATE_FAILED",
+  UPDATING: "UPDATING"
+};
+var KmsKeyType = {
+  AWS_OWNED_KMS_KEY: "AWS_OWNED_KMS_KEY",
+  CUSTOMER_MANAGED_KEY: "CUSTOMER_MANAGED_KEY"
+};
 var InstanceStatus = {
   ACTIVE: "ACTIVE",
+  CREATE_FAILED: "CREATE_FAILED",
   CREATE_IN_PROGRESS: "CREATE_IN_PROGRESS",
   DELETE_IN_PROGRESS: "DELETE_IN_PROGRESS"
 };
@@ -2225,11 +2279,13 @@ var de_DescribeApplicationResponse = /* @__PURE__ */ __name((output, context) =>
 var de_DescribeInstanceResponse = /* @__PURE__ */ __name((output, context) => {
   return (0, import_smithy_client.take)(output, {
     CreatedDate: /* @__PURE__ */ __name((_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseEpochTimestamp)((0, import_smithy_client.expectNumber)(_))), "CreatedDate"),
+    EncryptionConfigurationDetails: import_smithy_client._json,
     IdentityStoreId: import_smithy_client.expectString,
     InstanceArn: import_smithy_client.expectString,
     Name: import_smithy_client.expectString,
     OwnerAccountId: import_smithy_client.expectString,
-    Status: import_smithy_client.expectString
+    Status: import_smithy_client.expectString,
+    StatusReason: import_smithy_client.expectString
   });
 }, "de_DescribeInstanceResponse");
 var de_DescribePermissionSetProvisioningStatusResponse = /* @__PURE__ */ __name((output, context) => {
@@ -2265,7 +2321,8 @@ var de_InstanceMetadata = /* @__PURE__ */ __name((output, context) => {
     InstanceArn: import_smithy_client.expectString,
     Name: import_smithy_client.expectString,
     OwnerAccountId: import_smithy_client.expectString,
-    Status: import_smithy_client.expectString
+    Status: import_smithy_client.expectString,
+    StatusReason: import_smithy_client.expectString
   });
 }, "de_InstanceMetadata");
 var de_ListAccountAssignmentCreationStatusResponse = /* @__PURE__ */ __name((output, context) => {
@@ -3764,6 +3821,7 @@ var paginateListTrustedTokenIssuers = (0, import_core.createPaginator)(SSOAdminC
   paginateListPermissionSetsProvisionedToAccount,
   paginateListTagsForResource,
   paginateListTrustedTokenIssuers,
+  AccessDeniedExceptionReason,
   AccessDeniedException,
   PrincipalType,
   StatusValues,
@@ -3773,8 +3831,11 @@ var paginateListTrustedTokenIssuers = (0, import_core.createPaginator)(SSOAdminC
   ApplicationStatus,
   ConflictException,
   InternalServerException,
+  ResourceNotFoundExceptionReason,
   ResourceNotFoundException,
+  ThrottlingExceptionReason,
   ThrottlingException,
+  ValidationExceptionReason,
   ValidationException,
   AuthenticationMethodType,
   AuthenticationMethod,
@@ -3785,6 +3846,8 @@ var paginateListTrustedTokenIssuers = (0, import_core.createPaginator)(SSOAdminC
   JwksRetrievalOption,
   TrustedTokenIssuerConfiguration,
   TrustedTokenIssuerType,
+  KmsKeyStatus,
+  KmsKeyType,
   InstanceStatus,
   InstanceAccessControlAttributeConfigurationStatus,
   UserBackgroundSessionApplicationStatus,

package/dist-es/models/models_0.js

@@ -1,8 +1,12 @@
 import { SSOAdminServiceException as __BaseException } from "./SSOAdminServiceException";
+export const AccessDeniedExceptionReason = {
+    KMS_ACCESS_DENIED_EXCEPTION: "KMS_AccessDeniedException",
+};
 export class AccessDeniedException extends __BaseException {
     name = "AccessDeniedException";
     $fault = "client";
     Message;
+    Reason;
     constructor(opts) {
         super({
             name: "AccessDeniedException",
@@ -11,6 +15,7 @@ export class AccessDeniedException extends __BaseException {
         });
         Object.setPrototypeOf(this, AccessDeniedException.prototype);
         this.Message = opts.Message;
+        this.Reason = opts.Reason;
     }
 }
 export const PrincipalType = {
@@ -65,10 +70,14 @@ export class InternalServerException extends __BaseException {
         this.Message = opts.Message;
     }
 }
+export const ResourceNotFoundExceptionReason = {
+    KMS_NOT_FOUND_EXCEPTION: "KMS_NotFoundException",
+};
 export class ResourceNotFoundException extends __BaseException {
     name = "ResourceNotFoundException";
     $fault = "client";
     Message;
+    Reason;
     constructor(opts) {
         super({
             name: "ResourceNotFoundException",
@@ -77,12 +86,17 @@ export class ResourceNotFoundException extends __BaseException {
         });
         Object.setPrototypeOf(this, ResourceNotFoundException.prototype);
         this.Message = opts.Message;
+        this.Reason = opts.Reason;
     }
 }
+export const ThrottlingExceptionReason = {
+    KMS_THROTTLING_EXCEPTION: "KMS_ThrottlingException",
+};
 export class ThrottlingException extends __BaseException {
     name = "ThrottlingException";
     $fault = "client";
     Message;
+    Reason;
     constructor(opts) {
         super({
             name: "ThrottlingException",
@@ -91,12 +105,19 @@ export class ThrottlingException extends __BaseException {
         });
         Object.setPrototypeOf(this, ThrottlingException.prototype);
         this.Message = opts.Message;
+        this.Reason = opts.Reason;
     }
 }
+export const ValidationExceptionReason = {
+    KMS_DISABLED_EXCEPTION: "KMS_DisabledException",
+    KMS_INVALID_KEY_USAGE_EXCEPTION: "KMS_InvalidKeyUsageException",
+    KMS_INVALID_STATE_EXCEPTION: "KMS_InvalidStateException",
+};
 export class ValidationException extends __BaseException {
     name = "ValidationException";
     $fault = "client";
     Message;
+    Reason;
     constructor(opts) {
         super({
             name: "ValidationException",
@@ -105,6 +126,7 @@ export class ValidationException extends __BaseException {
         });
         Object.setPrototypeOf(this, ValidationException.prototype);
         this.Message = opts.Message;
+        this.Reason = opts.Reason;
     }
 }
 export const AuthenticationMethodType = {
@@ -170,8 +192,18 @@ export var TrustedTokenIssuerConfiguration;
 export const TrustedTokenIssuerType = {
     OIDC_JWT: "OIDC_JWT",
 };
+export const KmsKeyStatus = {
+    ENABLED: "ENABLED",
+    UPDATE_FAILED: "UPDATE_FAILED",
+    UPDATING: "UPDATING",
+};
+export const KmsKeyType = {
+    AWS_OWNED_KMS_KEY: "AWS_OWNED_KMS_KEY",
+    CUSTOMER_MANAGED_KEY: "CUSTOMER_MANAGED_KEY",
+};
 export const InstanceStatus = {
     ACTIVE: "ACTIVE",
+    CREATE_FAILED: "CREATE_FAILED",
     CREATE_IN_PROGRESS: "CREATE_IN_PROGRESS",
     DELETE_IN_PROGRESS: "DELETE_IN_PROGRESS",
 };

package/dist-es/protocols/Aws_json1_1.js

@@ -1,7 +1,7 @@
 import { awsExpectUnion as __expectUnion, loadRestJsonErrorCode, parseJsonBody as parseBody, parseJsonErrorBody as parseErrorBody, } from "@aws-sdk/core";
 import { HttpRequest as __HttpRequest } from "@smithy/protocol-http";
 import { _json, collectBody, decorateServiceException as __decorateServiceException, expectNonNull as __expectNonNull, expectNumber as __expectNumber, expectString as __expectString, parseEpochTimestamp as __parseEpochTimestamp, take, withBaseException, } from "@smithy/smithy-client";
-import { v4 as generateIdempotencyToken } from "uuid";
+import { v4 as generateIdempotencyToken } from "@smithy/uuid";
 import { AccessDeniedException, AuthenticationMethod, ConflictException, InternalServerException, ResourceNotFoundException, ServiceQuotaExceededException, ThrottlingException, ValidationException, } from "../models/models_0";
 import { SSOAdminServiceException as __BaseException } from "../models/SSOAdminServiceException";
 export const se_AttachCustomerManagedPolicyReferenceToPermissionSetCommand = async (input, context) => {
@@ -1676,11 +1676,13 @@ const de_DescribeApplicationResponse = (output, context) => {
 const de_DescribeInstanceResponse = (output, context) => {
     return take(output, {
         CreatedDate: (_) => __expectNonNull(__parseEpochTimestamp(__expectNumber(_))),
+        EncryptionConfigurationDetails: _json,
         IdentityStoreId: __expectString,
         InstanceArn: __expectString,
         Name: __expectString,
         OwnerAccountId: __expectString,
         Status: __expectString,
+        StatusReason: __expectString,
     });
 };
 const de_DescribePermissionSetProvisioningStatusResponse = (output, context) => {
@@ -1719,6 +1721,7 @@ const de_InstanceMetadata = (output, context) => {
         Name: __expectString,
         OwnerAccountId: __expectString,
         Status: __expectString,
+        StatusReason: __expectString,
     });
 };
 const de_ListAccountAssignmentCreationStatusResponse = (output, context) => {

package/dist-types/commands/DescribeInstanceCommand.d.ts

@@ -47,7 +47,14 @@ declare const DescribeInstanceCommand_base: {
  * //   OwnerAccountId: "STRING_VALUE",
  * //   Name: "STRING_VALUE",
  * //   CreatedDate: new Date("TIMESTAMP"),
- * //   Status: "CREATE_IN_PROGRESS" || "DELETE_IN_PROGRESS" || "ACTIVE",
+ * //   Status: "CREATE_IN_PROGRESS" || "CREATE_FAILED" || "DELETE_IN_PROGRESS" || "ACTIVE",
+ * //   StatusReason: "STRING_VALUE",
+ * //   EncryptionConfigurationDetails: { // EncryptionConfigurationDetails
+ * //     KeyType: "AWS_OWNED_KMS_KEY" || "CUSTOMER_MANAGED_KEY",
+ * //     KmsKeyArn: "STRING_VALUE",
+ * //     EncryptionStatus: "UPDATING" || "ENABLED" || "UPDATE_FAILED",
+ * //     EncryptionStatusReason: "STRING_VALUE",
+ * //   },
  * // };
  *
  * ```

package/dist-types/commands/ListInstancesCommand.d.ts

@@ -50,7 +50,8 @@ declare const ListInstancesCommand_base: {
  * //       OwnerAccountId: "STRING_VALUE",
  * //       Name: "STRING_VALUE",
  * //       CreatedDate: new Date("TIMESTAMP"),
- * //       Status: "CREATE_IN_PROGRESS" || "DELETE_IN_PROGRESS" || "ACTIVE",
+ * //       Status: "CREATE_IN_PROGRESS" || "CREATE_FAILED" || "DELETE_IN_PROGRESS" || "ACTIVE",
+ * //       StatusReason: "STRING_VALUE",
  * //     },
  * //   ],
  * //   NextToken: "STRING_VALUE",

package/dist-types/commands/UpdateInstanceCommand.d.ts

@@ -37,8 +37,12 @@ declare const UpdateInstanceCommand_base: {
  * const config = {}; // type is SSOAdminClientConfig
  * const client = new SSOAdminClient(config);
  * const input = { // UpdateInstanceRequest
- *   Name: "STRING_VALUE", // required
+ *   Name: "STRING_VALUE",
  *   InstanceArn: "STRING_VALUE", // required
+ *   EncryptionConfiguration: { // EncryptionConfiguration
+ *     KeyType: "AWS_OWNED_KMS_KEY" || "CUSTOMER_MANAGED_KEY", // required
+ *     KmsKeyArn: "STRING_VALUE",
+ *   },
  * };
  * const command = new UpdateInstanceCommand(input);
  * const response = await client.send(command);
@@ -61,6 +65,9 @@ declare const UpdateInstanceCommand_base: {
  * @throws {@link InternalServerException} (server fault)
  *  <p>The request processing has failed because of an unknown error, exception, or failure with an internal server.</p>
  *
+ * @throws {@link ResourceNotFoundException} (client fault)
+ *  <p>Indicates that a requested resource is not found.</p>
+ *
  * @throws {@link ThrottlingException} (client fault)
  *  <p>Indicates that the principal has crossed the throttling limits of the API operations.</p>
  *

package/dist-types/models/models_0.d.ts

@@ -28,6 +28,17 @@ export interface AccessControlAttribute {
      */
     Value: AccessControlAttributeValue | undefined;
 }
+/**
+ * @public
+ * @enum
+ */
+export declare const AccessDeniedExceptionReason: {
+    readonly KMS_ACCESS_DENIED_EXCEPTION: "KMS_AccessDeniedException";
+};
+/**
+ * @public
+ */
+export type AccessDeniedExceptionReason = (typeof AccessDeniedExceptionReason)[keyof typeof AccessDeniedExceptionReason];
 /**
  * <p>You do not have sufficient access to perform this action.</p>
  * @public
@@ -36,6 +47,11 @@ export declare class AccessDeniedException extends __BaseException {
     readonly name: "AccessDeniedException";
     readonly $fault: "client";
     Message?: string | undefined;
+    /**
+     * <p>The reason for the access denied exception.</p>
+     * @public
+     */
+    Reason?: AccessDeniedExceptionReason | undefined;
     /**
      * @internal
      */
@@ -361,6 +377,17 @@ export declare class InternalServerException extends __BaseException {
      */
     constructor(opts: __ExceptionOptionType<InternalServerException, __BaseException>);
 }
+/**
+ * @public
+ * @enum
+ */
+export declare const ResourceNotFoundExceptionReason: {
+    readonly KMS_NOT_FOUND_EXCEPTION: "KMS_NotFoundException";
+};
+/**
+ * @public
+ */
+export type ResourceNotFoundExceptionReason = (typeof ResourceNotFoundExceptionReason)[keyof typeof ResourceNotFoundExceptionReason];
 /**
  * <p>Indicates that a requested resource is not found.</p>
  * @public
@@ -369,11 +396,27 @@ export declare class ResourceNotFoundException extends __BaseException {
     readonly name: "ResourceNotFoundException";
     readonly $fault: "client";
     Message?: string | undefined;
+    /**
+     * <p>The reason for the resource not found exception.</p>
+     * @public
+     */
+    Reason?: ResourceNotFoundExceptionReason | undefined;
     /**
      * @internal
      */
     constructor(opts: __ExceptionOptionType<ResourceNotFoundException, __BaseException>);
 }
+/**
+ * @public
+ * @enum
+ */
+export declare const ThrottlingExceptionReason: {
+    readonly KMS_THROTTLING_EXCEPTION: "KMS_ThrottlingException";
+};
+/**
+ * @public
+ */
+export type ThrottlingExceptionReason = (typeof ThrottlingExceptionReason)[keyof typeof ThrottlingExceptionReason];
 /**
  * <p>Indicates that the principal has crossed the throttling limits of the API operations.</p>
  * @public
@@ -382,11 +425,29 @@ export declare class ThrottlingException extends __BaseException {
     readonly name: "ThrottlingException";
     readonly $fault: "client";
     Message?: string | undefined;
+    /**
+     * <p>The reason for the throttling exception.</p>
+     * @public
+     */
+    Reason?: ThrottlingExceptionReason | undefined;
     /**
      * @internal
      */
     constructor(opts: __ExceptionOptionType<ThrottlingException, __BaseException>);
 }
+/**
+ * @public
+ * @enum
+ */
+export declare const ValidationExceptionReason: {
+    readonly KMS_DISABLED_EXCEPTION: "KMS_DisabledException";
+    readonly KMS_INVALID_KEY_USAGE_EXCEPTION: "KMS_InvalidKeyUsageException";
+    readonly KMS_INVALID_STATE_EXCEPTION: "KMS_InvalidStateException";
+};
+/**
+ * @public
+ */
+export type ValidationExceptionReason = (typeof ValidationExceptionReason)[keyof typeof ValidationExceptionReason];
 /**
  * <p>The request failed because it contains a syntax error.</p>
  * @public
@@ -395,6 +456,11 @@ export declare class ValidationException extends __BaseException {
     readonly name: "ValidationException";
     readonly $fault: "client";
     Message?: string | undefined;
+    /**
+     * <p>The reason for the validation exception.</p>
+     * @public
+     */
+    Reason?: ValidationExceptionReason | undefined;
     /**
      * @internal
      */
@@ -1915,12 +1981,64 @@ export interface DescribeInstanceRequest {
      */
     InstanceArn: string | undefined;
 }
+/**
+ * @public
+ * @enum
+ */
+export declare const KmsKeyStatus: {
+    readonly ENABLED: "ENABLED";
+    readonly UPDATE_FAILED: "UPDATE_FAILED";
+    readonly UPDATING: "UPDATING";
+};
+/**
+ * @public
+ */
+export type KmsKeyStatus = (typeof KmsKeyStatus)[keyof typeof KmsKeyStatus];
+/**
+ * @public
+ * @enum
+ */
+export declare const KmsKeyType: {
+    readonly AWS_OWNED_KMS_KEY: "AWS_OWNED_KMS_KEY";
+    readonly CUSTOMER_MANAGED_KEY: "CUSTOMER_MANAGED_KEY";
+};
+/**
+ * @public
+ */
+export type KmsKeyType = (typeof KmsKeyType)[keyof typeof KmsKeyType];
+/**
+ * <p>The encryption configuration of your IAM Identity Center instance, including the key type, KMS key ARN, and current encryption status. </p>
+ * @public
+ */
+export interface EncryptionConfigurationDetails {
+    /**
+     * <p>The type of KMS key used for encryption.</p>
+     * @public
+     */
+    KeyType?: KmsKeyType | undefined;
+    /**
+     * <p>The ARN of the KMS key currently used to encrypt data in your IAM Identity Center instance. </p>
+     * @public
+     */
+    KmsKeyArn?: string | undefined;
+    /**
+     * <p>The current status of encryption configuration.</p>
+     * @public
+     */
+    EncryptionStatus?: KmsKeyStatus | undefined;
+    /**
+     * <p>Provides additional context about the current encryption status. This field is particularly useful when the encryption status is UPDATE_FAILED. When encryption configuration update fails, this field contains information about the cause, which may include KMS key access issues, key not found errors, invalid key configuration, key in an invalid state, or a disabled key. </p>
+     * @public
+     */
+    EncryptionStatusReason?: string | undefined;
+}
 /**
  * @public
  * @enum
  */
 export declare const InstanceStatus: {
     readonly ACTIVE: "ACTIVE";
+    readonly CREATE_FAILED: "CREATE_FAILED";
     readonly CREATE_IN_PROGRESS: "CREATE_IN_PROGRESS";
     readonly DELETE_IN_PROGRESS: "DELETE_IN_PROGRESS";
 };
@@ -1962,6 +2080,16 @@ export interface DescribeInstanceResponse {
      * @public
      */
     Status?: InstanceStatus | undefined;
+    /**
+     * <p>Provides additional context about the current status of the IAM Identity Center instance. This field is particularly useful when an instance is in a non-ACTIVE state, such as CREATE_FAILED. When an instance fails to create or update, this field contains information about the cause, which may include issues with KMS key configuration, permission problems with the specified KMS key, or service-related errors. </p>
+     * @public
+     */
+    StatusReason?: string | undefined;
+    /**
+     * <p>Contains the encryption configuration for your IAM Identity Center instance, including the encryption status, KMS key type, and KMS key ARN.</p>
+     * @public
+     */
+    EncryptionConfigurationDetails?: EncryptionConfigurationDetails | undefined;
 }
 /**
  * @public
@@ -2177,6 +2305,22 @@ export interface DetachManagedPolicyFromPermissionSetRequest {
  */
 export interface DetachManagedPolicyFromPermissionSetResponse {
 }
+/**
+ * <p> A structure that specifies the KMS key type and KMS key ARN used to encrypt data in your IAM Identity Center instance.</p>
+ * @public
+ */
+export interface EncryptionConfiguration {
+    /**
+     * <p>The type of KMS key used for encryption.</p>
+     * @public
+     */
+    KeyType: KmsKeyType | undefined;
+    /**
+     * <p>The ARN of the KMS key used to encrypt data. Required when KeyType is CUSTOMER_MANAGED_KEY. Cannot be specified when KeyType is AWS_OWNED_KMS_KEY.</p>
+     * @public
+     */
+    KmsKeyArn?: string | undefined;
+}
 /**
  * @public
  */
@@ -2330,6 +2474,11 @@ export interface InstanceMetadata {
      * @public
      */
     Status?: InstanceStatus | undefined;
+    /**
+     * <p>Provides additional context about the current status of the IAM Identity Center instance. This field is particularly useful when an instance is in a non-ACTIVE state, such as CREATE_FAILED. When an instance creation fails, this field contains information about the cause, which may include issues with KMS key configuration or insufficient permissions. </p>
+     * @public
+     */
+    StatusReason?: string | undefined;
 }
 /**
  * <p>Filters the operation status list based on the passed attribute value.</p>
@@ -3371,12 +3520,17 @@ export interface UpdateInstanceRequest {
      * <p>Updates the instance name.</p>
      * @public
      */
-    Name: string | undefined;
+    Name?: string | undefined;
     /**
      * <p>The ARN of the instance of IAM Identity Center under which the operation will run. For more information about ARNs, see <a href="/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
      * @public
      */
     InstanceArn: string | undefined;
+    /**
+     * <p>Specifies the encryption configuration for your IAM Identity Center instance. You can use this to configure customer managed KMS keys (CMK) or Amazon Web Services owned KMS keys for encrypting your instance data.</p>
+     * @public
+     */
+    EncryptionConfiguration?: EncryptionConfiguration | undefined;
 }
 /**
  * @public

package/dist-types/ts3.4/models/models_0.d.ts

@@ -8,10 +8,16 @@ export interface AccessControlAttribute {
   Key: string | undefined;
   Value: AccessControlAttributeValue | undefined;
 }
+export declare const AccessDeniedExceptionReason: {
+  readonly KMS_ACCESS_DENIED_EXCEPTION: "KMS_AccessDeniedException";
+};
+export type AccessDeniedExceptionReason =
+  (typeof AccessDeniedExceptionReason)[keyof typeof AccessDeniedExceptionReason];
 export declare class AccessDeniedException extends __BaseException {
   readonly name: "AccessDeniedException";
   readonly $fault: "client";
   Message?: string | undefined;
+  Reason?: AccessDeniedExceptionReason | undefined;
   constructor(
     opts: __ExceptionOptionType<AccessDeniedException, __BaseException>
   );
@@ -113,26 +119,46 @@ export declare class InternalServerException extends __BaseException {
     opts: __ExceptionOptionType<InternalServerException, __BaseException>
   );
 }
+export declare const ResourceNotFoundExceptionReason: {
+  readonly KMS_NOT_FOUND_EXCEPTION: "KMS_NotFoundException";
+};
+export type ResourceNotFoundExceptionReason =
+  (typeof ResourceNotFoundExceptionReason)[keyof typeof ResourceNotFoundExceptionReason];
 export declare class ResourceNotFoundException extends __BaseException {
   readonly name: "ResourceNotFoundException";
   readonly $fault: "client";
   Message?: string | undefined;
+  Reason?: ResourceNotFoundExceptionReason | undefined;
   constructor(
     opts: __ExceptionOptionType<ResourceNotFoundException, __BaseException>
   );
 }
+export declare const ThrottlingExceptionReason: {
+  readonly KMS_THROTTLING_EXCEPTION: "KMS_ThrottlingException";
+};
+export type ThrottlingExceptionReason =
+  (typeof ThrottlingExceptionReason)[keyof typeof ThrottlingExceptionReason];
 export declare class ThrottlingException extends __BaseException {
   readonly name: "ThrottlingException";
   readonly $fault: "client";
   Message?: string | undefined;
+  Reason?: ThrottlingExceptionReason | undefined;
   constructor(
     opts: __ExceptionOptionType<ThrottlingException, __BaseException>
   );
 }
+export declare const ValidationExceptionReason: {
+  readonly KMS_DISABLED_EXCEPTION: "KMS_DisabledException";
+  readonly KMS_INVALID_KEY_USAGE_EXCEPTION: "KMS_InvalidKeyUsageException";
+  readonly KMS_INVALID_STATE_EXCEPTION: "KMS_InvalidStateException";
+};
+export type ValidationExceptionReason =
+  (typeof ValidationExceptionReason)[keyof typeof ValidationExceptionReason];
 export declare class ValidationException extends __BaseException {
   readonly name: "ValidationException";
   readonly $fault: "client";
   Message?: string | undefined;
+  Reason?: ValidationExceptionReason | undefined;
   constructor(
     opts: __ExceptionOptionType<ValidationException, __BaseException>
   );
@@ -602,8 +628,26 @@ export interface DescribeApplicationProviderResponse {
 export interface DescribeInstanceRequest {
   InstanceArn: string | undefined;
 }
+export declare const KmsKeyStatus: {
+  readonly ENABLED: "ENABLED";
+  readonly UPDATE_FAILED: "UPDATE_FAILED";
+  readonly UPDATING: "UPDATING";
+};
+export type KmsKeyStatus = (typeof KmsKeyStatus)[keyof typeof KmsKeyStatus];
+export declare const KmsKeyType: {
+  readonly AWS_OWNED_KMS_KEY: "AWS_OWNED_KMS_KEY";
+  readonly CUSTOMER_MANAGED_KEY: "CUSTOMER_MANAGED_KEY";
+};
+export type KmsKeyType = (typeof KmsKeyType)[keyof typeof KmsKeyType];
+export interface EncryptionConfigurationDetails {
+  KeyType?: KmsKeyType | undefined;
+  KmsKeyArn?: string | undefined;
+  EncryptionStatus?: KmsKeyStatus | undefined;
+  EncryptionStatusReason?: string | undefined;
+}
 export declare const InstanceStatus: {
   readonly ACTIVE: "ACTIVE";
+  readonly CREATE_FAILED: "CREATE_FAILED";
   readonly CREATE_IN_PROGRESS: "CREATE_IN_PROGRESS";
   readonly DELETE_IN_PROGRESS: "DELETE_IN_PROGRESS";
 };
@@ -616,6 +660,8 @@ export interface DescribeInstanceResponse {
   Name?: string | undefined;
   CreatedDate?: Date | undefined;
   Status?: InstanceStatus | undefined;
+  StatusReason?: string | undefined;
+  EncryptionConfigurationDetails?: EncryptionConfigurationDetails | undefined;
 }
 export interface DescribeInstanceAccessControlAttributeConfigurationRequest {
   InstanceArn: string | undefined;
@@ -677,6 +723,10 @@ export interface DetachManagedPolicyFromPermissionSetRequest {
   ManagedPolicyArn: string | undefined;
 }
 export interface DetachManagedPolicyFromPermissionSetResponse {}
+export interface EncryptionConfiguration {
+  KeyType: KmsKeyType | undefined;
+  KmsKeyArn?: string | undefined;
+}
 export interface GetApplicationAssignmentConfigurationRequest {
   ApplicationArn: string | undefined;
 }
@@ -722,6 +772,7 @@ export interface InstanceMetadata {
   Name?: string | undefined;
   CreatedDate?: Date | undefined;
   Status?: InstanceStatus | undefined;
+  StatusReason?: string | undefined;
 }
 export interface OperationStatusFilter {
   Status?: StatusValues | undefined;
@@ -997,8 +1048,9 @@ export interface UpdateApplicationRequest {
 }
 export interface UpdateApplicationResponse {}
 export interface UpdateInstanceRequest {
-  Name: string | undefined;
+  Name?: string | undefined;
   InstanceArn: string | undefined;
+  EncryptionConfiguration?: EncryptionConfiguration | undefined;
 }
 export interface UpdateInstanceResponse {}
 export interface UpdateInstanceAccessControlAttributeConfigurationRequest {

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-sso-admin",
   "description": "AWS SDK for JavaScript Sso Admin Client for Node.js, Browser and React Native",
-  "version": "3.894.0",
+  "version": "3.896.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-sso-admin",
@@ -20,45 +20,44 @@
   "dependencies": {
     "@aws-crypto/sha256-browser": "5.2.0",
     "@aws-crypto/sha256-js": "5.2.0",
-    "@aws-sdk/core": "3.894.0",
-    "@aws-sdk/credential-provider-node": "3.894.0",
+    "@aws-sdk/core": "3.896.0",
+    "@aws-sdk/credential-provider-node": "3.896.0",
     "@aws-sdk/middleware-host-header": "3.893.0",
     "@aws-sdk/middleware-logger": "3.893.0",
     "@aws-sdk/middleware-recursion-detection": "3.893.0",
-    "@aws-sdk/middleware-user-agent": "3.894.0",
+    "@aws-sdk/middleware-user-agent": "3.896.0",
     "@aws-sdk/region-config-resolver": "3.893.0",
     "@aws-sdk/types": "3.893.0",
-    "@aws-sdk/util-endpoints": "3.893.0",
+    "@aws-sdk/util-endpoints": "3.895.0",
     "@aws-sdk/util-user-agent-browser": "3.893.0",
-    "@aws-sdk/util-user-agent-node": "3.894.0",
+    "@aws-sdk/util-user-agent-node": "3.896.0",
     "@smithy/config-resolver": "^4.2.2",
-    "@smithy/core": "^3.11.1",
+    "@smithy/core": "^3.12.0",
     "@smithy/fetch-http-handler": "^5.2.1",
     "@smithy/hash-node": "^4.1.1",
     "@smithy/invalid-dependency": "^4.1.1",
     "@smithy/middleware-content-length": "^4.1.1",
-    "@smithy/middleware-endpoint": "^4.2.3",
-    "@smithy/middleware-retry": "^4.2.4",
+    "@smithy/middleware-endpoint": "^4.2.4",
+    "@smithy/middleware-retry": "^4.3.0",
     "@smithy/middleware-serde": "^4.1.1",
     "@smithy/middleware-stack": "^4.1.1",
     "@smithy/node-config-provider": "^4.2.2",
     "@smithy/node-http-handler": "^4.2.1",
     "@smithy/protocol-http": "^5.2.1",
-    "@smithy/smithy-client": "^4.6.3",
+    "@smithy/smithy-client": "^4.6.4",
     "@smithy/types": "^4.5.0",
     "@smithy/url-parser": "^4.1.1",
     "@smithy/util-base64": "^4.1.0",
     "@smithy/util-body-length-browser": "^4.1.0",
     "@smithy/util-body-length-node": "^4.1.0",
-    "@smithy/util-defaults-mode-browser": "^4.1.3",
-    "@smithy/util-defaults-mode-node": "^4.1.3",
+    "@smithy/util-defaults-mode-browser": "^4.1.4",
+    "@smithy/util-defaults-mode-node": "^4.1.4",
     "@smithy/util-endpoints": "^3.1.2",
     "@smithy/util-middleware": "^4.1.1",
     "@smithy/util-retry": "^4.1.2",
     "@smithy/util-utf8": "^4.1.0",
-    "@types/uuid": "^9.0.1",
-    "tslib": "^2.6.2",
-    "uuid": "^9.0.1"
+    "@smithy/uuid": "^1.0.0",
+    "tslib": "^2.6.2"
   },
   "devDependencies": {
     "@tsconfig/node18": "18.2.4",