@aws-sdk/client-sso-oidc 3.180.0 → 3.182.0

package/CHANGELOG.md

@@ -3,6 +3,26 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
 
+# [3.182.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.181.0...v3.182.0) (2022-09-30)
+
+**Note:** Version bump only for package @aws-sdk/client-sso-oidc
+
+
+
+
+
+# [3.181.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.180.0...v3.181.0) (2022-09-29)
+
+
+### Bug Fixes
+
+* **clients:** make parseErrorBody async ([#3999](https://github.com/aws/aws-sdk-js-v3/issues/3999)) ([2558c93](https://github.com/aws/aws-sdk-js-v3/commit/2558c93c050357ac6dc47aa0452b15b12ebfd676))
+* **clients:** populate message field when parsing errors ([#3995](https://github.com/aws/aws-sdk-js-v3/issues/3995)) ([02e47f1](https://github.com/aws/aws-sdk-js-v3/commit/02e47f14397ae0a5d2e2883350d038b307fdcdb4))
+
+
+
+
+
 # [3.180.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.179.0...v3.180.0) (2022-09-27)
 
 **Note:** Version bump only for package @aws-sdk/client-sso-oidc

package/README.md

@@ -9,24 +9,46 @@
 
 AWS SDK for JavaScript SSOOIDC Client for Node.js, Browser and React Native.
 
-<p>AWS Single Sign-On (SSO) OpenID Connect (OIDC) is a web service that enables a client
-(such as AWS CLI or a native application) to register with AWS SSO. The service also
-enables the client to fetch the user’s access token upon successful authentication and
-authorization with AWS SSO. This service conforms with the OAuth 2.0 based implementation of
-the device authorization grant standard (<a href="https://tools.ietf.org/html/rfc8628">https://tools.ietf.org/html/rfc8628</a>).</p>
-
-<p>For general information about AWS SSO, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html">What is AWS
-Single Sign-On?</a> in the <i>AWS SSO User Guide</i>.</p>
-
-<p>This API reference guide describes the AWS SSO OIDC operations that you can call
-programatically and includes detailed information on data types and errors.</p>
-
+<p>AWS IAM Identity Center (successor to AWS Single Sign-On) OpenID Connect (OIDC) is a web service that enables a client (such as AWS CLI
+or a native application) to register with IAM Identity Center. The service also enables the client to
+fetch the user’s access token upon successful authentication and authorization with
+IAM Identity Center.</p>
 <note>
-<p>AWS provides SDKs that consist of libraries and sample code for various programming
-languages and platforms such as Java, Ruby, .Net, iOS, and Android. The SDKs provide a
-convenient way to create programmatic access to AWS SSO and other AWS services. For more
-information about the AWS SDKs, including how to download and install them, see <a href="http://aws.amazon.com/tools/">Tools for Amazon Web Services</a>.</p>
+<p>Although AWS Single Sign-On was renamed, the <code>sso</code> and
+<code>identitystore</code> API namespaces will continue to retain their original name for
+backward compatibility purposes. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html#renamed">IAM Identity Center rename</a>.</p>
 </note>
+<p>
+<b>Considerations for Using This Guide</b>
+</p>
+<p>Before you begin using this guide, we recommend that you first review the following
+important information about how the IAM Identity Center OIDC service works.</p>
+<ul>
+<li>
+<p>The IAM Identity Center OIDC service currently implements only the portions of the OAuth 2.0
+Device Authorization Grant standard (<a href="https://tools.ietf.org/html/rfc8628">https://tools.ietf.org/html/rfc8628</a>) that are necessary to enable single
+sign-on authentication with the AWS CLI. Support for other OIDC flows frequently needed
+for native applications, such as Authorization Code Flow (+ PKCE), will be addressed in
+future releases.</p>
+</li>
+<li>
+<p>The service emits only OIDC access tokens, such that obtaining a new token (For
+example, token refresh) requires explicit user re-authentication.</p>
+</li>
+<li>
+<p>The access tokens provided by this service grant access to all AWS account
+entitlements assigned to an IAM Identity Center user, not just a particular application.</p>
+</li>
+<li>
+<p>The documentation in this guide does not describe the mechanism to convert the access
+token into AWS Auth (“sigv4”) credentials for use with IAM-protected AWS service
+endpoints. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/PortalAPIReference/API_GetRoleCredentials.html">GetRoleCredentials</a> in the <i>IAM Identity Center Portal API Reference
+Guide</i>.</p>
+</li>
+</ul>
+
+<p>For general information about IAM Identity Center, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html">What is
+IAM Identity Center?</a> in the <i>IAM Identity Center User Guide</i>.</p>
 
 ## Installing
 

package/dist-cjs/protocols/Aws_restJson1.js

@@ -108,7 +108,7 @@ exports.deserializeAws_restJson1CreateTokenCommand = deserializeAws_restJson1Cre
 const deserializeAws_restJson1CreateTokenCommandError = async (output, context) => {
     const parsedOutput = {
         ...output,
-        body: await parseBody(output.body, context),
+        body: await parseErrorBody(output.body, context),
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
@@ -187,7 +187,7 @@ exports.deserializeAws_restJson1RegisterClientCommand = deserializeAws_restJson1
 const deserializeAws_restJson1RegisterClientCommandError = async (output, context) => {
     const parsedOutput = {
         ...output,
-        body: await parseBody(output.body, context),
+        body: await parseErrorBody(output.body, context),
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
@@ -245,7 +245,7 @@ exports.deserializeAws_restJson1StartDeviceAuthorizationCommand = deserializeAws
 const deserializeAws_restJson1StartDeviceAuthorizationCommandError = async (output, context) => {
     const parsedOutput = {
         ...output,
-        body: await parseBody(output.body, context),
+        body: await parseErrorBody(output.body, context),
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
@@ -489,6 +489,12 @@ const parseBody = (streamBody, context) => collectBodyString(streamBody, context
     }
     return {};
 });
+const parseErrorBody = async (errorBody, context) => {
+    var _a;
+    const value = await parseBody(errorBody, context);
+    value.message = (_a = value.message) !== null && _a !== void 0 ? _a : value.Message;
+    return value;
+};
 const loadRestJsonErrorCode = (output, data) => {
     const findKey = (object, key) => Object.keys(object).find((k) => k.toLowerCase() === key.toLowerCase());
     const sanitizeErrorCode = (rawValue) => {

package/dist-es/protocols/Aws_restJson1.js

@@ -118,7 +118,7 @@ var deserializeAws_restJson1CreateTokenCommandError = function (output, context)
             case 0:
                 _a = [__assign({}, output)];
                 _c = {};
-                return [4, parseBody(output.body, context)];
+                return [4, parseErrorBody(output.body, context)];
             case 1:
                 parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
                 errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -229,7 +229,7 @@ var deserializeAws_restJson1RegisterClientCommandError = function (output, conte
             case 0:
                 _a = [__assign({}, output)];
                 _c = {};
-                return [4, parseBody(output.body, context)];
+                return [4, parseErrorBody(output.body, context)];
             case 1:
                 parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
                 errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -312,7 +312,7 @@ var deserializeAws_restJson1StartDeviceAuthorizationCommandError = function (out
             case 0:
                 _a = [__assign({}, output)];
                 _c = {};
-                return [4, parseBody(output.body, context)];
+                return [4, parseErrorBody(output.body, context)];
             case 1:
                 parsedOutput = __assign.apply(void 0, _a.concat([(_c.body = _d.sent(), _c)]));
                 errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
@@ -575,6 +575,19 @@ var parseBody = function (streamBody, context) {
         return {};
     });
 };
+var parseErrorBody = function (errorBody, context) { return __awaiter(void 0, void 0, void 0, function () {
+    var value;
+    var _a;
+    return __generator(this, function (_b) {
+        switch (_b.label) {
+            case 0: return [4, parseBody(errorBody, context)];
+            case 1:
+                value = _b.sent();
+                value.message = (_a = value.message) !== null && _a !== void 0 ? _a : value.Message;
+                return [2, value];
+        }
+    });
+}); };
 var loadRestJsonErrorCode = function (output, data) {
     var findKey = function (object, key) { return Object.keys(object).find(function (k) { return k.toLowerCase() === key.toLowerCase(); }); };
     var sanitizeErrorCode = function (rawValue) {

package/dist-types/SSOOIDC.d.ts

@@ -4,24 +4,46 @@ import { RegisterClientCommandInput, RegisterClientCommandOutput } from "./comma
 import { StartDeviceAuthorizationCommandInput, StartDeviceAuthorizationCommandOutput } from "./commands/StartDeviceAuthorizationCommand";
 import { SSOOIDCClient } from "./SSOOIDCClient";
 /**
- * <p>AWS Single Sign-On (SSO) OpenID Connect (OIDC) is a web service that enables a client
- *       (such as AWS CLI or a native application) to register with AWS SSO. The service also
- *       enables the client to fetch the user’s access token upon successful authentication and
- *       authorization with AWS SSO. This service conforms with the OAuth 2.0 based implementation of
- *       the device authorization grant standard (<a href="https://tools.ietf.org/html/rfc8628">https://tools.ietf.org/html/rfc8628</a>).</p>
- *
- *          <p>For general information about AWS SSO, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html">What is AWS
- *         Single Sign-On?</a> in the <i>AWS SSO User Guide</i>.</p>
- *
- *          <p>This API reference guide describes the AWS SSO OIDC operations that you can call
- *       programatically and includes detailed information on data types and errors.</p>
- *
+ * <p>AWS IAM Identity Center (successor to AWS Single Sign-On) OpenID Connect (OIDC) is a web service that enables a client (such as AWS CLI
+ *       or a native application) to register with IAM Identity Center. The service also enables the client to
+ *       fetch the user’s access token upon successful authentication and authorization with
+ *       IAM Identity Center.</p>
  *          <note>
- *             <p>AWS provides SDKs that consist of libraries and sample code for various programming
- *         languages and platforms such as Java, Ruby, .Net, iOS, and Android. The SDKs provide a
- *         convenient way to create programmatic access to AWS SSO and other AWS services. For more
- *         information about the AWS SDKs, including how to download and install them, see <a href="http://aws.amazon.com/tools/">Tools for Amazon Web Services</a>.</p>
+ *             <p>Although AWS Single Sign-On was renamed, the <code>sso</code> and
+ *         <code>identitystore</code> API namespaces will continue to retain their original name for
+ *         backward compatibility purposes. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html#renamed">IAM Identity Center rename</a>.</p>
  *          </note>
+ *          <p>
+ *             <b>Considerations for Using This Guide</b>
+ *          </p>
+ *          <p>Before you begin using this guide, we recommend that you first review the following
+ *       important information about how the IAM Identity Center OIDC service works.</p>
+ *          <ul>
+ *             <li>
+ *                <p>The IAM Identity Center OIDC service currently implements only the portions of the OAuth 2.0
+ *           Device Authorization Grant standard (<a href="https://tools.ietf.org/html/rfc8628">https://tools.ietf.org/html/rfc8628</a>) that are necessary to enable single
+ *           sign-on authentication with the AWS CLI. Support for other OIDC flows frequently needed
+ *           for native applications, such as Authorization Code Flow (+ PKCE), will be addressed in
+ *           future releases.</p>
+ *             </li>
+ *             <li>
+ *                <p>The service emits only OIDC access tokens, such that obtaining a new token (For
+ *           example, token refresh) requires explicit user re-authentication.</p>
+ *             </li>
+ *             <li>
+ *                <p>The access tokens provided by this service grant access to all AWS account
+ *           entitlements assigned to an IAM Identity Center user, not just a particular application.</p>
+ *             </li>
+ *             <li>
+ *                <p>The documentation in this guide does not describe the mechanism to convert the access
+ *           token into AWS Auth (“sigv4”) credentials for use with IAM-protected AWS service
+ *           endpoints. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/PortalAPIReference/API_GetRoleCredentials.html">GetRoleCredentials</a> in the <i>IAM Identity Center Portal API Reference
+ *             Guide</i>.</p>
+ *             </li>
+ *          </ul>
+ *
+ *          <p>For general information about IAM Identity Center, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html">What is
+ *         IAM Identity Center?</a> in the <i>IAM Identity Center User Guide</i>.</p>
  */
 export declare class SSOOIDC extends SSOOIDCClient {
     /**
@@ -33,14 +55,15 @@ export declare class SSOOIDC extends SSOOIDCClient {
     createToken(args: CreateTokenCommandInput, cb: (err: any, data?: CreateTokenCommandOutput) => void): void;
     createToken(args: CreateTokenCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: CreateTokenCommandOutput) => void): void;
     /**
-     * <p>Registers a client with AWS SSO. This allows clients to initiate device authorization.
+     * <p>Registers a client with IAM Identity Center. This allows clients to initiate device authorization.
      *       The output should be persisted for reuse through many authentication requests.</p>
      */
     registerClient(args: RegisterClientCommandInput, options?: __HttpHandlerOptions): Promise<RegisterClientCommandOutput>;
     registerClient(args: RegisterClientCommandInput, cb: (err: any, data?: RegisterClientCommandOutput) => void): void;
     registerClient(args: RegisterClientCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: RegisterClientCommandOutput) => void): void;
     /**
-     * <p>Initiates device authorization by requesting a pair of verification codes from the authorization service.</p>
+     * <p>Initiates device authorization by requesting a pair of verification codes from the
+     *       authorization service.</p>
      */
     startDeviceAuthorization(args: StartDeviceAuthorizationCommandInput, options?: __HttpHandlerOptions): Promise<StartDeviceAuthorizationCommandOutput>;
     startDeviceAuthorization(args: StartDeviceAuthorizationCommandInput, cb: (err: any, data?: StartDeviceAuthorizationCommandOutput) => void): void;

package/dist-types/SSOOIDCClient.d.ts

@@ -123,24 +123,46 @@ declare type SSOOIDCClientResolvedConfigType = __SmithyResolvedConfiguration<__H
 export interface SSOOIDCClientResolvedConfig extends SSOOIDCClientResolvedConfigType {
 }
 /**
- * <p>AWS Single Sign-On (SSO) OpenID Connect (OIDC) is a web service that enables a client
- *       (such as AWS CLI or a native application) to register with AWS SSO. The service also
- *       enables the client to fetch the user’s access token upon successful authentication and
- *       authorization with AWS SSO. This service conforms with the OAuth 2.0 based implementation of
- *       the device authorization grant standard (<a href="https://tools.ietf.org/html/rfc8628">https://tools.ietf.org/html/rfc8628</a>).</p>
- *
- *          <p>For general information about AWS SSO, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html">What is AWS
- *         Single Sign-On?</a> in the <i>AWS SSO User Guide</i>.</p>
- *
- *          <p>This API reference guide describes the AWS SSO OIDC operations that you can call
- *       programatically and includes detailed information on data types and errors.</p>
- *
+ * <p>AWS IAM Identity Center (successor to AWS Single Sign-On) OpenID Connect (OIDC) is a web service that enables a client (such as AWS CLI
+ *       or a native application) to register with IAM Identity Center. The service also enables the client to
+ *       fetch the user’s access token upon successful authentication and authorization with
+ *       IAM Identity Center.</p>
  *          <note>
- *             <p>AWS provides SDKs that consist of libraries and sample code for various programming
- *         languages and platforms such as Java, Ruby, .Net, iOS, and Android. The SDKs provide a
- *         convenient way to create programmatic access to AWS SSO and other AWS services. For more
- *         information about the AWS SDKs, including how to download and install them, see <a href="http://aws.amazon.com/tools/">Tools for Amazon Web Services</a>.</p>
+ *             <p>Although AWS Single Sign-On was renamed, the <code>sso</code> and
+ *         <code>identitystore</code> API namespaces will continue to retain their original name for
+ *         backward compatibility purposes. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html#renamed">IAM Identity Center rename</a>.</p>
  *          </note>
+ *          <p>
+ *             <b>Considerations for Using This Guide</b>
+ *          </p>
+ *          <p>Before you begin using this guide, we recommend that you first review the following
+ *       important information about how the IAM Identity Center OIDC service works.</p>
+ *          <ul>
+ *             <li>
+ *                <p>The IAM Identity Center OIDC service currently implements only the portions of the OAuth 2.0
+ *           Device Authorization Grant standard (<a href="https://tools.ietf.org/html/rfc8628">https://tools.ietf.org/html/rfc8628</a>) that are necessary to enable single
+ *           sign-on authentication with the AWS CLI. Support for other OIDC flows frequently needed
+ *           for native applications, such as Authorization Code Flow (+ PKCE), will be addressed in
+ *           future releases.</p>
+ *             </li>
+ *             <li>
+ *                <p>The service emits only OIDC access tokens, such that obtaining a new token (For
+ *           example, token refresh) requires explicit user re-authentication.</p>
+ *             </li>
+ *             <li>
+ *                <p>The access tokens provided by this service grant access to all AWS account
+ *           entitlements assigned to an IAM Identity Center user, not just a particular application.</p>
+ *             </li>
+ *             <li>
+ *                <p>The documentation in this guide does not describe the mechanism to convert the access
+ *           token into AWS Auth (“sigv4”) credentials for use with IAM-protected AWS service
+ *           endpoints. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/PortalAPIReference/API_GetRoleCredentials.html">GetRoleCredentials</a> in the <i>IAM Identity Center Portal API Reference
+ *             Guide</i>.</p>
+ *             </li>
+ *          </ul>
+ *
+ *          <p>For general information about IAM Identity Center, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html">What is
+ *         IAM Identity Center?</a> in the <i>IAM Identity Center User Guide</i>.</p>
  */
 export declare class SSOOIDCClient extends __Client<__HttpHandlerOptions, ServiceInputTypes, ServiceOutputTypes, SSOOIDCClientResolvedConfig> {
     /**

package/dist-types/commands/RegisterClientCommand.d.ts

@@ -7,7 +7,7 @@ export interface RegisterClientCommandInput extends RegisterClientRequest {
 export interface RegisterClientCommandOutput extends RegisterClientResponse, __MetadataBearer {
 }
 /**
- * <p>Registers a client with AWS SSO. This allows clients to initiate device authorization.
+ * <p>Registers a client with IAM Identity Center. This allows clients to initiate device authorization.
  *       The output should be persisted for reuse through many authentication requests.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.

package/dist-types/commands/StartDeviceAuthorizationCommand.d.ts

@@ -7,7 +7,8 @@ export interface StartDeviceAuthorizationCommandInput extends StartDeviceAuthori
 export interface StartDeviceAuthorizationCommandOutput extends StartDeviceAuthorizationResponse, __MetadataBearer {
 }
 /**
- * <p>Initiates device authorization by requesting a pair of verification codes from the authorization service.</p>
+ * <p>Initiates device authorization by requesting a pair of verification codes from the
+ *       authorization service.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/models/models_0.d.ts

@@ -14,7 +14,8 @@ export declare class AccessDeniedException extends __BaseException {
     constructor(opts: __ExceptionOptionType<AccessDeniedException, __BaseException>);
 }
 /**
- * <p>Indicates that a request to authorize a client with an access user session token is pending.</p>
+ * <p>Indicates that a request to authorize a client with an access user session token is
+ *       pending.</p>
  */
 export declare class AuthorizationPendingException extends __BaseException {
     readonly name: "AuthorizationPendingException";
@@ -28,15 +29,25 @@ export declare class AuthorizationPendingException extends __BaseException {
 }
 export interface CreateTokenRequest {
     /**
-     * <p>The unique identifier string for each client. This value should come from the persisted result of the <a>RegisterClient</a> API.</p>
+     * <p>The unique identifier string for each client. This value should come from the persisted
+     *       result of the <a>RegisterClient</a> API.</p>
      */
     clientId: string | undefined;
     /**
-     * <p>A secret string generated for the client. This value should come from the persisted result of the <a>RegisterClient</a> API.</p>
+     * <p>A secret string generated for the client. This value should come from the persisted result
+     *       of the <a>RegisterClient</a> API.</p>
      */
     clientSecret: string | undefined;
     /**
-     * <p>Supports grant types for authorization code, refresh token, and device code request.</p>
+     * <p>Supports grant types for the authorization code, refresh token, and device code request.
+     *       For device code requests, specify the following value:</p>
+     *
+     *          <p>
+     *             <code>urn:ietf:params:oauth:grant-type:<i>device_code</i>
+     *             </code>
+     *          </p>
+     *
+     *          <p>For information about how to obtain the device code, see the <a>StartDeviceAuthorization</a> topic.</p>
      */
     grantType: string | undefined;
     /**
@@ -46,11 +57,17 @@ export interface CreateTokenRequest {
      */
     deviceCode?: string;
     /**
-     * <p>The authorization code received from the authorization service. This parameter is required to perform an authorization grant request to get access to a token.</p>
+     * <p>The authorization code received from the authorization service. This parameter is required
+     *       to perform an authorization grant request to get access to a token.</p>
      */
     code?: string;
     /**
-     * <p>The token used to obtain an access token in the event that the access token is invalid or expired. This token is not issued by the service.</p>
+     * <p>Currently, <code>refreshToken</code> is not yet implemented and is not supported. For more
+     *       information about the features and limitations of the current IAM Identity Center OIDC implementation,
+     *       see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
+     *         OIDC API Reference</a>.</p>
+     *          <p>The token used to obtain an access token in the event that the access token is invalid or
+     *       expired.</p>
      */
     refreshToken?: string;
     /**
@@ -66,7 +83,7 @@ export interface CreateTokenRequest {
 }
 export interface CreateTokenResponse {
     /**
-     * <p>An opaque token to access AWS SSO resources assigned to a user.</p>
+     * <p>An opaque token to access IAM Identity Center resources assigned to a user.</p>
      */
     accessToken?: string;
     /**
@@ -79,12 +96,20 @@ export interface CreateTokenResponse {
      */
     expiresIn?: number;
     /**
-     * <p>A token that, if present, can be used to refresh a previously issued access token that
+     * <p>Currently, <code>refreshToken</code> is not yet implemented and is not supported. For more
+     *       information about the features and limitations of the current IAM Identity Center OIDC implementation,
+     *       see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
+     *         OIDC API Reference</a>.</p>
+     *          <p>A token that, if present, can be used to refresh a previously issued access token that
      *       might have expired.</p>
      */
     refreshToken?: string;
     /**
-     * <p>The identifier of the user that associated with the access token, if present.</p>
+     * <p>Currently, <code>idToken</code> is not yet implemented and is not supported. For more
+     *       information about the features and limitations of the current IAM Identity Center OIDC implementation,
+     *       see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
+     *         OIDC API Reference</a>.</p>
+     *          <p>The identifier of the user that associated with the access token, if present.</p>
      */
     idToken?: string;
 }
@@ -102,7 +127,8 @@ export declare class ExpiredTokenException extends __BaseException {
     constructor(opts: __ExceptionOptionType<ExpiredTokenException, __BaseException>);
 }
 /**
- * <p>Indicates that an error from the service occurred while trying to process a request.</p>
+ * <p>Indicates that an error from the service occurred while trying to process a
+ *       request.</p>
  */
 export declare class InternalServerException extends __BaseException {
     readonly name: "InternalServerException";
@@ -130,7 +156,8 @@ export declare class InvalidClientException extends __BaseException {
     constructor(opts: __ExceptionOptionType<InvalidClientException, __BaseException>);
 }
 /**
- * <p>Indicates that a request contains an invalid grant. This can occur if a client makes a <a>CreateToken</a> request with an invalid grant type.</p>
+ * <p>Indicates that a request contains an invalid grant. This can occur if a client makes a
+ *         <a>CreateToken</a> request with an invalid grant type.</p>
  */
 export declare class InvalidGrantException extends __BaseException {
     readonly name: "InvalidGrantException";
@@ -170,7 +197,8 @@ export declare class InvalidScopeException extends __BaseException {
     constructor(opts: __ExceptionOptionType<InvalidScopeException, __BaseException>);
 }
 /**
- * <p>Indicates that the client is making the request too frequently and is more than the service can handle. </p>
+ * <p>Indicates that the client is making the request too frequently and is more than the
+ *       service can handle. </p>
  */
 export declare class SlowDownException extends __BaseException {
     readonly name: "SlowDownException";
@@ -210,7 +238,8 @@ export declare class UnsupportedGrantTypeException extends __BaseException {
     constructor(opts: __ExceptionOptionType<UnsupportedGrantTypeException, __BaseException>);
 }
 /**
- * <p>Indicates that the client information sent in the request during registration is invalid.</p>
+ * <p>Indicates that the client information sent in the request during registration is
+ *       invalid.</p>
  */
 export declare class InvalidClientMetadataException extends __BaseException {
     readonly name: "InvalidClientMetadataException";
@@ -228,7 +257,8 @@ export interface RegisterClientRequest {
      */
     clientName: string | undefined;
     /**
-     * <p>The type of client. The service supports only <code>public</code> as a client type. Anything other than public will be rejected by the service.</p>
+     * <p>The type of client. The service supports only <code>public</code> as a client type.
+     *       Anything other than public will be rejected by the service.</p>
      */
     clientType: string | undefined;
     /**
@@ -249,11 +279,13 @@ export interface RegisterClientResponse {
      */
     clientSecret?: string;
     /**
-     * <p>Indicates the time at which the <code>clientId</code> and <code>clientSecret</code> were issued.</p>
+     * <p>Indicates the time at which the <code>clientId</code> and <code>clientSecret</code> were
+     *       issued.</p>
      */
     clientIdIssuedAt?: number;
     /**
-     * <p>Indicates the time at which the <code>clientId</code> and <code>clientSecret</code> will become invalid.</p>
+     * <p>Indicates the time at which the <code>clientId</code> and <code>clientSecret</code> will
+     *       become invalid.</p>
      */
     clientSecretExpiresAt?: number;
     /**
@@ -267,7 +299,7 @@ export interface RegisterClientResponse {
 }
 export interface StartDeviceAuthorizationRequest {
     /**
-     * <p>The unique identifier string for the client that is registered with AWS SSO. This value
+     * <p>The unique identifier string for the client that is registered with IAM Identity Center. This value
      *       should come from the persisted result of the <a>RegisterClient</a> API
      *       operation.</p>
      */
@@ -278,8 +310,8 @@ export interface StartDeviceAuthorizationRequest {
      */
     clientSecret: string | undefined;
     /**
-     * <p>The URL for the AWS SSO user portal. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/using-the-portal.html">Using
-     *         the User Portal</a> in the <i>AWS Single Sign-On User Guide</i>.</p>
+     * <p>The URL for the AWS access portal. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/using-the-portal.html">Using
+     *       the AWS access portal</a> in the <i>IAM Identity Center User Guide</i>.</p>
      */
     startUrl: string | undefined;
 }
@@ -293,7 +325,8 @@ export interface StartDeviceAuthorizationResponse {
      */
     userCode?: string;
     /**
-     * <p>The URI of the verification page that takes the <code>userCode</code> to authorize the device.</p>
+     * <p>The URI of the verification page that takes the <code>userCode</code> to authorize the
+     *       device.</p>
      */
     verificationUri?: string;
     /**
@@ -307,7 +340,8 @@ export interface StartDeviceAuthorizationResponse {
      */
     expiresIn?: number;
     /**
-     * <p>Indicates the number of seconds the client must wait between attempts when polling for a session.</p>
+     * <p>Indicates the number of seconds the client must wait between attempts when polling for a
+     *       session.</p>
      */
     interval?: number;
 }

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-sso-oidc",
   "description": "AWS SDK for JavaScript Sso Oidc Client for Node.js, Browser and React Native",
-  "version": "3.180.0",
+  "version": "3.182.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "tsc -p tsconfig.cjs.json",