@aws-sdk/client-sso-oidc 3.450.0 → 3.454.0

package/dist-types/models/models_0.d.ts

@@ -7,7 +7,17 @@ import { SSOOIDCServiceException as __BaseException } from "./SSOOIDCServiceExce
 export declare class AccessDeniedException extends __BaseException {
     readonly name: "AccessDeniedException";
     readonly $fault: "client";
+    /**
+     * @public
+     * <p>Single error code.
+     *       For this exception the value will be <code>access_denied</code>.</p>
+     */
     error?: string;
+    /**
+     * @public
+     * <p>Human-readable text providing additional information, used to assist the
+     *       client developer in understanding the error that occurred.</p>
+     */
     error_description?: string;
     /**
      * @internal
@@ -22,7 +32,17 @@ export declare class AccessDeniedException extends __BaseException {
 export declare class AuthorizationPendingException extends __BaseException {
     readonly name: "AuthorizationPendingException";
     readonly $fault: "client";
+    /**
+     * @public
+     * <p>Single error code.
+     *       For this exception the value will be <code>authorization_pending</code>.</p>
+     */
     error?: string;
+    /**
+     * @public
+     * <p>Human-readable text providing additional information, used to assist the
+     *       client developer in understanding the error that occurred.</p>
+     */
     error_description?: string;
     /**
      * @internal
@@ -35,7 +55,7 @@ export declare class AuthorizationPendingException extends __BaseException {
 export interface CreateTokenRequest {
     /**
      * @public
-     * <p>The unique identifier string for each client. This value should come from the persisted
+     * <p>The unique identifier string for the client or application. This value comes from the
      *       result of the <a>RegisterClient</a> API.</p>
      */
     clientId: string | undefined;
@@ -47,48 +67,51 @@ export interface CreateTokenRequest {
     clientSecret: string | undefined;
     /**
      * @public
-     * <p>Supports grant types for the authorization code, refresh token, and device code request.
-     *       For device code requests, specify the following value:</p>
-     *          <p>
-     *             <code>urn:ietf:params:oauth:grant-type:<i>device_code</i>
-     *             </code>
+     * <p>Supports the following OAuth grant types: Device Code and Refresh Token.
+     *       Specify either of the following values, depending on the grant type that you want:</p>
+     *          <p>* Device Code - <code>urn:ietf:params:oauth:grant-type:device_code</code>
+     *          </p>
+     *          <p>* Refresh Token - <code>refresh_token</code>
      *          </p>
      *          <p>For information about how to obtain the device code, see the <a>StartDeviceAuthorization</a> topic.</p>
      */
     grantType: string | undefined;
     /**
      * @public
-     * <p>Used only when calling this API for the device code grant type. This short-term code is
-     *       used to identify this authentication attempt. This should come from an in-memory reference to
-     *       the result of the <a>StartDeviceAuthorization</a> API.</p>
+     * <p>Used only when calling this API for the Device Code grant type. This short-term code is
+     *       used to identify this authorization request. This comes from the result of the
+     *       <a>StartDeviceAuthorization</a> API.</p>
      */
     deviceCode?: string;
     /**
      * @public
-     * <p>The authorization code received from the authorization service. This parameter is required
-     *       to perform an authorization grant request to get access to a token.</p>
+     * <p>Used only when calling this API for the Authorization Code grant type. The short-term code is
+     *       used to identify this authorization request. This grant type is currently unsupported for the
+     *       <a>CreateToken</a> API.</p>
      */
     code?: string;
     /**
      * @public
-     * <p>Currently, <code>refreshToken</code> is not yet implemented and is not supported. For more
-     *       information about the features and limitations of the current IAM Identity Center OIDC implementation,
-     *       see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
-     *         OIDC API Reference</a>.</p>
-     *          <p>The token used to obtain an access token in the event that the access token is invalid or
-     *       expired.</p>
+     * <p>Used only when calling this API for the Refresh Token grant type. This token is used to
+     *       refresh short-term tokens, such as the access token, that might expire.</p>
+     *          <p>For more information about the features and limitations of the current IAM Identity Center OIDC
+     *       implementation, see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
+     *       OIDC API Reference</a>.</p>
      */
     refreshToken?: string;
     /**
      * @public
-     * <p>The list of scopes that is defined by the client. Upon authorization, this list is used to
-     *       restrict permissions when granting an access token.</p>
+     * <p>The list of scopes for which authorization is requested. The access token that is issued
+     *       is limited to the scopes that are granted. If this value is not specified, IAM Identity Center authorizes
+     *       all scopes that are configured for the client during the call to
+     *       <a>RegisterClient</a>.</p>
      */
     scope?: string[];
     /**
      * @public
-     * <p>The location of the application that will receive the authorization code. Users authorize
-     *       the service to send the request to this location.</p>
+     * <p>Used only when calling this API for the Authorization Code grant type. This value specifies
+     *       the location of the client or application that has registered to receive the authorization
+     *         code.</p>
      */
     redirectUri?: string;
 }
@@ -98,13 +121,13 @@ export interface CreateTokenRequest {
 export interface CreateTokenResponse {
     /**
      * @public
-     * <p>An opaque token to access IAM Identity Center resources assigned to a user.</p>
+     * <p>A bearer token to access AWS accounts and applications assigned to a user.</p>
      */
     accessToken?: string;
     /**
      * @public
-     * <p>Used to notify the client that the returned token is an access token. The supported type
-     *       is <code>BearerToken</code>.</p>
+     * <p>Used to notify the client that the returned token is an access token. The supported token
+     *       type is <code>Bearer</code>.</p>
      */
     tokenType?: string;
     /**
@@ -114,21 +137,22 @@ export interface CreateTokenResponse {
     expiresIn?: number;
     /**
      * @public
-     * <p>Currently, <code>refreshToken</code> is not yet implemented and is not supported. For more
+     * <p>A token that, if present, can be used to refresh a previously issued access token that
+     *       might have expired.</p>
+     *          <p>For more
      *       information about the features and limitations of the current IAM Identity Center OIDC implementation,
      *       see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
      *         OIDC API Reference</a>.</p>
-     *          <p>A token that, if present, can be used to refresh a previously issued access token that
-     *       might have expired.</p>
      */
     refreshToken?: string;
     /**
      * @public
-     * <p>Currently, <code>idToken</code> is not yet implemented and is not supported. For more
-     *       information about the features and limitations of the current IAM Identity Center OIDC implementation,
-     *       see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
-     *         OIDC API Reference</a>.</p>
-     *          <p>The identifier of the user that associated with the access token, if present.</p>
+     * <p>The <code>idToken</code> is not implemented or supported. For more information about the
+     *       features and limitations of the current IAM Identity Center OIDC implementation, see <i>Considerations
+     *       for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
+     *       OIDC API Reference</a>.</p>
+     *          <p>A JSON Web Token (JWT) that identifies who is associated with the issued access token.
+     *       </p>
      */
     idToken?: string;
 }
@@ -139,7 +163,17 @@ export interface CreateTokenResponse {
 export declare class ExpiredTokenException extends __BaseException {
     readonly name: "ExpiredTokenException";
     readonly $fault: "client";
+    /**
+     * @public
+     * <p>Single error code.
+     *       For this exception the value will be <code>expired_token</code>.</p>
+     */
     error?: string;
+    /**
+     * @public
+     * <p>Human-readable text providing additional information, used to assist the
+     *       client developer in understanding the error that occurred.</p>
+     */
     error_description?: string;
     /**
      * @internal
@@ -154,7 +188,17 @@ export declare class ExpiredTokenException extends __BaseException {
 export declare class InternalServerException extends __BaseException {
     readonly name: "InternalServerException";
     readonly $fault: "server";
+    /**
+     * @public
+     * <p>Single error code.
+     *       For this exception the value will be <code>server_error</code>.</p>
+     */
     error?: string;
+    /**
+     * @public
+     * <p>Human-readable text providing additional information, used to assist the
+     *       client developer in understanding the error that occurred.</p>
+     */
     error_description?: string;
     /**
      * @internal
@@ -170,7 +214,17 @@ export declare class InternalServerException extends __BaseException {
 export declare class InvalidClientException extends __BaseException {
     readonly name: "InvalidClientException";
     readonly $fault: "client";
+    /**
+     * @public
+     * <p>Single error code.
+     *       For this exception the value will be <code>invalid_client</code>.</p>
+     */
     error?: string;
+    /**
+     * @public
+     * <p>Human-readable text providing additional information, used to assist the
+     *       client developer in understanding the error that occurred.</p>
+     */
     error_description?: string;
     /**
      * @internal
@@ -185,7 +239,17 @@ export declare class InvalidClientException extends __BaseException {
 export declare class InvalidGrantException extends __BaseException {
     readonly name: "InvalidGrantException";
     readonly $fault: "client";
+    /**
+     * @public
+     * <p>Single error code.
+     *       For this exception the value will be <code>invalid_grant</code>.</p>
+     */
     error?: string;
+    /**
+     * @public
+     * <p>Human-readable text providing additional information, used to assist the
+     *       client developer in understanding the error that occurred.</p>
+     */
     error_description?: string;
     /**
      * @internal
@@ -200,7 +264,17 @@ export declare class InvalidGrantException extends __BaseException {
 export declare class InvalidRequestException extends __BaseException {
     readonly name: "InvalidRequestException";
     readonly $fault: "client";
+    /**
+     * @public
+     * <p>Single error code.
+     *       For this exception the value will be <code>invalid_request</code>.</p>
+     */
     error?: string;
+    /**
+     * @public
+     * <p>Human-readable text providing additional information, used to assist the
+     *       client developer in understanding the error that occurred.</p>
+     */
     error_description?: string;
     /**
      * @internal
@@ -214,7 +288,17 @@ export declare class InvalidRequestException extends __BaseException {
 export declare class InvalidScopeException extends __BaseException {
     readonly name: "InvalidScopeException";
     readonly $fault: "client";
+    /**
+     * @public
+     * <p>Single error code.
+     *       For this exception the value will be <code>invalid_scope</code>.</p>
+     */
     error?: string;
+    /**
+     * @public
+     * <p>Human-readable text providing additional information, used to assist the
+     *       client developer in understanding the error that occurred.</p>
+     */
     error_description?: string;
     /**
      * @internal
@@ -229,7 +313,17 @@ export declare class InvalidScopeException extends __BaseException {
 export declare class SlowDownException extends __BaseException {
     readonly name: "SlowDownException";
     readonly $fault: "client";
+    /**
+     * @public
+     * <p>Single error code.
+     *       For this exception the value will be <code>slow_down</code>.</p>
+     */
     error?: string;
+    /**
+     * @public
+     * <p>Human-readable text providing additional information, used to assist the
+     *       client developer in understanding the error that occurred.</p>
+     */
     error_description?: string;
     /**
      * @internal
@@ -244,7 +338,17 @@ export declare class SlowDownException extends __BaseException {
 export declare class UnauthorizedClientException extends __BaseException {
     readonly name: "UnauthorizedClientException";
     readonly $fault: "client";
+    /**
+     * @public
+     * <p>Single error code.
+     *       For this exception the value will be <code>unauthorized_client</code>.</p>
+     */
     error?: string;
+    /**
+     * @public
+     * <p>Human-readable text providing additional information, used to assist the
+     *       client developer in understanding the error that occurred.</p>
+     */
     error_description?: string;
     /**
      * @internal
@@ -258,13 +362,203 @@ export declare class UnauthorizedClientException extends __BaseException {
 export declare class UnsupportedGrantTypeException extends __BaseException {
     readonly name: "UnsupportedGrantTypeException";
     readonly $fault: "client";
+    /**
+     * @public
+     * <p>Single error code.
+     *       For this exception the value will be <code>unsupported_grant_type</code>.</p>
+     */
     error?: string;
+    /**
+     * @public
+     * <p>Human-readable text providing additional information, used to assist the
+     *       client developer in understanding the error that occurred.</p>
+     */
     error_description?: string;
     /**
      * @internal
      */
     constructor(opts: __ExceptionOptionType<UnsupportedGrantTypeException, __BaseException>);
 }
+/**
+ * @public
+ */
+export interface CreateTokenWithIAMRequest {
+    /**
+     * @public
+     * <p>The unique identifier string for the client or application. This value is an application
+     *       ARN that has OAuth grants configured.</p>
+     */
+    clientId: string | undefined;
+    /**
+     * @public
+     * <p>Supports the following OAuth grant types: Authorization Code, Refresh Token, JWT Bearer,
+     *       and Token Exchange. Specify one of the following values, depending on the grant type that you
+     *       want:</p>
+     *          <p>* Authorization Code - <code>authorization_code</code>
+     *          </p>
+     *          <p>* Refresh Token - <code>refresh_token</code>
+     *          </p>
+     *          <p>* JWT Bearer - <code>urn:ietf:params:oauth:grant-type:jwt-bearer</code>
+     *          </p>
+     *          <p>* Token Exchange - <code>urn:ietf:params:oauth:grant-type:token-exchange</code>
+     *          </p>
+     */
+    grantType: string | undefined;
+    /**
+     * @public
+     * <p>Used only when calling this API for the Authorization Code grant type. This short-term
+     *         code is used to identify this authorization request. The code is obtained through a redirect
+     *         from IAM Identity Center to a redirect URI persisted in the Authorization Code GrantOptions for the
+     *         application.</p>
+     */
+    code?: string;
+    /**
+     * @public
+     * <p>Used only when calling this API for the Refresh Token grant type. This token is used to
+     *       refresh short-term tokens, such as the access token, that might expire.</p>
+     *          <p>For more information about the features and limitations of the current IAM Identity Center OIDC
+     *       implementation, see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
+     *       OIDC API Reference</a>.</p>
+     */
+    refreshToken?: string;
+    /**
+     * @public
+     * <p>Used only when calling this API for the JWT Bearer grant type. This value specifies the JSON
+     *       Web Token (JWT) issued by a trusted token issuer. To authorize a trusted token issuer,
+     *       configure the JWT Bearer GrantOptions for the application.</p>
+     */
+    assertion?: string;
+    /**
+     * @public
+     * <p>The list of scopes for which authorization is requested. The access token that is issued
+     *       is limited to the scopes that are granted. If the value is not specified, IAM Identity Center authorizes all
+     *       scopes configured for the application, including the following default scopes:
+     *       <code>openid</code>, <code>aws</code>, <code>sts:identity_context</code>.</p>
+     */
+    scope?: string[];
+    /**
+     * @public
+     * <p>Used only when calling this API for the Authorization Code grant type. This value specifies
+     *       the location of the client or application that has registered to receive the authorization code.
+     *       </p>
+     */
+    redirectUri?: string;
+    /**
+     * @public
+     * <p>Used only when calling this API for the Token Exchange grant type. This value specifies
+     *       the subject of the exchange. The value of the subject token must be an access token issued by
+     *       IAM Identity Center to a different client or application. The access token must have authorized scopes
+     *       that indicate the requested application as a target audience.</p>
+     */
+    subjectToken?: string;
+    /**
+     * @public
+     * <p>Used only when calling this API for the Token Exchange grant type. This value specifies
+     *       the type of token that is passed as the subject of the exchange. The following value is
+     *       supported:</p>
+     *          <p>* Access Token - <code>urn:ietf:params:oauth:token-type:access_token</code>
+     *          </p>
+     */
+    subjectTokenType?: string;
+    /**
+     * @public
+     * <p>Used only when calling this API for the Token Exchange grant type. This value specifies
+     *       the type of token that the requester can receive. The following values are supported:</p>
+     *          <p>* Access Token - <code>urn:ietf:params:oauth:token-type:access_token</code>
+     *          </p>
+     *          <p>* Refresh Token - <code>urn:ietf:params:oauth:token-type:refresh_token</code>
+     *          </p>
+     */
+    requestedTokenType?: string;
+}
+/**
+ * @public
+ */
+export interface CreateTokenWithIAMResponse {
+    /**
+     * @public
+     * <p>A bearer token to access AWS accounts and applications assigned to a user.</p>
+     */
+    accessToken?: string;
+    /**
+     * @public
+     * <p>Used to notify the requester that the returned token is an access token. The supported
+     *       token type is <code>Bearer</code>.</p>
+     */
+    tokenType?: string;
+    /**
+     * @public
+     * <p>Indicates the time in seconds when an access token will expire.</p>
+     */
+    expiresIn?: number;
+    /**
+     * @public
+     * <p>A token that, if present, can be used to refresh a previously issued access token that
+     *       might have expired.</p>
+     *          <p>For more
+     *       information about the features and limitations of the current IAM Identity Center OIDC implementation,
+     *       see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
+     *         OIDC API Reference</a>.</p>
+     */
+    refreshToken?: string;
+    /**
+     * @public
+     * <p>A JSON Web Token (JWT) that identifies the user associated with the issued access token.
+     *       </p>
+     */
+    idToken?: string;
+    /**
+     * @public
+     * <p>Indicates the type of tokens that are issued by IAM Identity Center. The following values are supported:
+     *       </p>
+     *          <p>* Access Token - <code>urn:ietf:params:oauth:token-type:access_token</code>
+     *          </p>
+     *          <p>* Refresh Token - <code>urn:ietf:params:oauth:token-type:refresh_token</code>
+     *          </p>
+     */
+    issuedTokenType?: string;
+    /**
+     * @public
+     * <p>The list of scopes for which authorization is granted. The access token that is issued
+     *       is limited to the scopes that are granted.</p>
+     */
+    scope?: string[];
+}
+/**
+ * @public
+ * <p>Indicates that a token provided as input to the request was issued by and is only usable
+ *       by calling IAM Identity Center endpoints in another region.</p>
+ */
+export declare class InvalidRequestRegionException extends __BaseException {
+    readonly name: "InvalidRequestRegionException";
+    readonly $fault: "client";
+    /**
+     * @public
+     * <p>Single error code.
+     *       For this exception the value will be <code>invalid_request</code>.</p>
+     */
+    error?: string;
+    /**
+     * @public
+     * <p>Human-readable text providing additional information, used to assist the
+     *       client developer in understanding the error that occurred.</p>
+     */
+    error_description?: string;
+    /**
+     * @public
+     * <p>Indicates the IAM Identity Center endpoint which the requester may call with this token.</p>
+     */
+    endpoint?: string;
+    /**
+     * @public
+     * <p>Indicates the region which the requester may call with this token.</p>
+     */
+    region?: string;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<InvalidRequestRegionException, __BaseException>);
+}
 /**
  * @public
  * <p>Indicates that the client information sent in the request during registration is
@@ -273,7 +567,17 @@ export declare class UnsupportedGrantTypeException extends __BaseException {
 export declare class InvalidClientMetadataException extends __BaseException {
     readonly name: "InvalidClientMetadataException";
     readonly $fault: "client";
+    /**
+     * @public
+     * <p>Single error code.
+     *       For this exception the value will be <code>invalid_client_metadata</code>.</p>
+     */
     error?: string;
+    /**
+     * @public
+     * <p>Human-readable text providing additional information, used to assist the
+     *       client developer in understanding the error that occurred.</p>
+     */
     error_description?: string;
     /**
      * @internal
@@ -332,12 +636,12 @@ export interface RegisterClientResponse {
     clientSecretExpiresAt?: number;
     /**
      * @public
-     * <p>The endpoint where the client can request authorization.</p>
+     * <p>An endpoint that the client can use to request authorization.</p>
      */
     authorizationEndpoint?: string;
     /**
      * @public
-     * <p>The endpoint where the client can get an access token.</p>
+     * <p>An endpoint that the client can use to create tokens.</p>
      */
     tokenEndpoint?: string;
 }
@@ -360,8 +664,8 @@ export interface StartDeviceAuthorizationRequest {
     clientSecret: string | undefined;
     /**
      * @public
-     * <p>The URL for the AWS access portal. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/using-the-portal.html">Using
-     *       the AWS access portal</a> in the <i>IAM Identity Center User Guide</i>.</p>
+     * <p>The URL for the Amazon Web Services access portal. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/using-the-portal.html">Using
+     *       the Amazon Web Services access portal</a> in the <i>IAM Identity Center User Guide</i>.</p>
      */
     startUrl: string | undefined;
 }
@@ -404,3 +708,27 @@ export interface StartDeviceAuthorizationResponse {
      */
     interval?: number;
 }
+/**
+ * @internal
+ */
+export declare const CreateTokenRequestFilterSensitiveLog: (obj: CreateTokenRequest) => any;
+/**
+ * @internal
+ */
+export declare const CreateTokenResponseFilterSensitiveLog: (obj: CreateTokenResponse) => any;
+/**
+ * @internal
+ */
+export declare const CreateTokenWithIAMRequestFilterSensitiveLog: (obj: CreateTokenWithIAMRequest) => any;
+/**
+ * @internal
+ */
+export declare const CreateTokenWithIAMResponseFilterSensitiveLog: (obj: CreateTokenWithIAMResponse) => any;
+/**
+ * @internal
+ */
+export declare const RegisterClientResponseFilterSensitiveLog: (obj: RegisterClientResponse) => any;
+/**
+ * @internal
+ */
+export declare const StartDeviceAuthorizationRequestFilterSensitiveLog: (obj: StartDeviceAuthorizationRequest) => any;

package/dist-types/protocols/Aws_restJson1.d.ts

@@ -1,12 +1,17 @@
 import { HttpRequest as __HttpRequest, HttpResponse as __HttpResponse } from "@smithy/protocol-http";
 import { SerdeContext as __SerdeContext } from "@smithy/types";
 import { CreateTokenCommandInput, CreateTokenCommandOutput } from "../commands/CreateTokenCommand";
+import { CreateTokenWithIAMCommandInput, CreateTokenWithIAMCommandOutput } from "../commands/CreateTokenWithIAMCommand";
 import { RegisterClientCommandInput, RegisterClientCommandOutput } from "../commands/RegisterClientCommand";
 import { StartDeviceAuthorizationCommandInput, StartDeviceAuthorizationCommandOutput } from "../commands/StartDeviceAuthorizationCommand";
 /**
  * serializeAws_restJson1CreateTokenCommand
  */
 export declare const se_CreateTokenCommand: (input: CreateTokenCommandInput, context: __SerdeContext) => Promise<__HttpRequest>;
+/**
+ * serializeAws_restJson1CreateTokenWithIAMCommand
+ */
+export declare const se_CreateTokenWithIAMCommand: (input: CreateTokenWithIAMCommandInput, context: __SerdeContext) => Promise<__HttpRequest>;
 /**
  * serializeAws_restJson1RegisterClientCommand
  */
@@ -19,6 +24,10 @@ export declare const se_StartDeviceAuthorizationCommand: (input: StartDeviceAuth
  * deserializeAws_restJson1CreateTokenCommand
  */
 export declare const de_CreateTokenCommand: (output: __HttpResponse, context: __SerdeContext) => Promise<CreateTokenCommandOutput>;
+/**
+ * deserializeAws_restJson1CreateTokenWithIAMCommand
+ */
+export declare const de_CreateTokenWithIAMCommand: (output: __HttpResponse, context: __SerdeContext) => Promise<CreateTokenWithIAMCommandOutput>;
 /**
  * deserializeAws_restJson1RegisterClientCommand
  */

package/dist-types/runtimeConfig.browser.d.ts

@@ -7,6 +7,7 @@ export declare const getRuntimeConfig: (config: SSOOIDCClientConfig) => {
     runtime: string;
     defaultsMode: import("@smithy/types").Provider<import("@smithy/smithy-client").ResolvedDefaultsMode>;
     bodyLengthChecker: import("@smithy/types").BodyLengthCalculator;
+    credentialDefaultProvider: (input: any) => import("@smithy/types").Provider<import("@aws-sdk/types").Credentials>;
     defaultUserAgentProvider: import("@smithy/types").Provider<import("@smithy/types").UserAgent>;
     maxAttempts: number | import("@smithy/types").Provider<number>;
     region: string | import("@smithy/types").Provider<any>;
@@ -35,5 +36,11 @@ export declare const getRuntimeConfig: (config: SSOOIDCClientConfig) => {
     }) => import("@smithy/types").EndpointV2;
     tls?: boolean | undefined;
     retryStrategy?: import("@smithy/types").RetryStrategy | import("@smithy/types").RetryStrategyV2 | undefined;
+    credentials?: import("@smithy/types").AwsCredentialIdentity | import("@smithy/types").Provider<import("@smithy/types").AwsCredentialIdentity> | undefined;
+    signer?: import("@smithy/types").RequestSigner | ((authScheme?: import("@smithy/types").AuthScheme | undefined) => Promise<import("@smithy/types").RequestSigner>) | undefined;
+    signingEscapePath?: boolean | undefined;
+    systemClockOffset?: number | undefined;
+    signingRegion?: string | undefined;
+    signerConstructor?: (new (options: import("@smithy/signature-v4").SignatureV4Init & import("@smithy/signature-v4").SignatureV4CryptoInit) => import("@smithy/types").RequestSigner) | undefined;
     customUserAgent?: string | import("@smithy/types").UserAgent | undefined;
 };

package/dist-types/runtimeConfig.d.ts

@@ -7,6 +7,7 @@ export declare const getRuntimeConfig: (config: SSOOIDCClientConfig) => {
     runtime: string;
     defaultsMode: import("@smithy/types").Provider<import("@smithy/smithy-client").ResolvedDefaultsMode>;
     bodyLengthChecker: import("@smithy/types").BodyLengthCalculator;
+    credentialDefaultProvider: (input: any) => import("@smithy/types").Provider<import("@aws-sdk/types").Credentials>;
     defaultUserAgentProvider: import("@smithy/types").Provider<import("@smithy/types").UserAgent>;
     maxAttempts: number | import("@smithy/types").Provider<number>;
     region: string | import("@smithy/types").Provider<string>;
@@ -35,5 +36,11 @@ export declare const getRuntimeConfig: (config: SSOOIDCClientConfig) => {
     }) => import("@smithy/types").EndpointV2;
     tls?: boolean | undefined;
     retryStrategy?: import("@smithy/types").RetryStrategy | import("@smithy/types").RetryStrategyV2 | undefined;
+    credentials?: import("@smithy/types").AwsCredentialIdentity | import("@smithy/types").Provider<import("@smithy/types").AwsCredentialIdentity> | undefined;
+    signer?: import("@smithy/types").RequestSigner | ((authScheme?: import("@smithy/types").AuthScheme | undefined) => Promise<import("@smithy/types").RequestSigner>) | undefined;
+    signingEscapePath?: boolean | undefined;
+    systemClockOffset?: number | undefined;
+    signingRegion?: string | undefined;
+    signerConstructor?: (new (options: import("@smithy/signature-v4").SignatureV4Init & import("@smithy/signature-v4").SignatureV4CryptoInit) => import("@smithy/types").RequestSigner) | undefined;
     customUserAgent?: string | import("@smithy/types").UserAgent | undefined;
 };