@aws-sdk/client-sso-oidc 3.734.0 → 3.735.0

package/README.md

@@ -6,15 +6,16 @@
 
 AWS SDK for JavaScript SSOOIDC Client for Node.js, Browser and React Native.
 
-<p>IAM Identity Center OpenID Connect (OIDC) is a web service that enables a client (such as CLI
-or a native application) to register with IAM Identity Center. The service also enables the client to
-fetch the user’s access token upon successful authentication and authorization with
-IAM Identity Center.</p>
-<note>
-<p>IAM Identity Center uses the <code>sso</code> and <code>identitystore</code> API namespaces.</p>
-</note>
+<p>IAM Identity Center OpenID Connect (OIDC) is a web service that enables a client (such as CLI or a
+native application) to register with IAM Identity Center. The service also enables the client to fetch the
+user’s access token upon successful authentication and authorization with IAM Identity Center.</p>
 <p>
-<b>Considerations for Using This Guide</b>
+<b>API namespaces</b>
+</p>
+<p>IAM Identity Center uses the <code>sso</code> and <code>identitystore</code> API namespaces. IAM Identity Center
+OpenID Connect uses the <code>sso-oidc</code> namespace.</p>
+<p>
+<b>Considerations for using this guide</b>
 </p>
 <p>Before you begin using this guide, we recommend that you first review the following
 important information about how the IAM Identity Center OIDC service works.</p>
@@ -28,8 +29,8 @@ sign-on authentication with the CLI. </p>
 <p>With older versions of the CLI, the service only emits OIDC access tokens, so to
 obtain a new token, users must explicitly re-authenticate. To access the OIDC flow that
 supports token refresh and doesn’t require re-authentication, update to the latest CLI
-version (1.27.10 for CLI V1 and 2.9.0 for CLI V2) with support for OIDC token refresh and
-configurable IAM Identity Center session durations. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/configure-user-session.html">Configure Amazon Web Services access portal session duration </a>. </p>
+version (1.27.10 for CLI V1 and 2.9.0 for CLI V2) with support for OIDC token refresh
+and configurable IAM Identity Center session durations. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/configure-user-session.html">Configure Amazon Web Services access portal session duration </a>. </p>
 </li>
 <li>
 <p>The access tokens provided by this service grant access to all Amazon Web Services account

package/dist-cjs/index.js

@@ -228,14 +228,13 @@ var AccessDeniedException = class _AccessDeniedException extends SSOOIDCServiceE
   name = "AccessDeniedException";
   $fault = "client";
   /**
-   * <p>Single error code.
-   *       For this exception the value will be <code>access_denied</code>.</p>
+   * <p>Single error code. For this exception the value will be <code>access_denied</code>.</p>
    * @public
    */
   error;
   /**
-   * <p>Human-readable text providing additional information, used to assist the
-   *       client developer in understanding the error that occurred.</p>
+   * <p>Human-readable text providing additional information, used to assist the client developer
+   *       in understanding the error that occurred.</p>
    * @public
    */
   error_description;
@@ -260,14 +259,14 @@ var AuthorizationPendingException = class _AuthorizationPendingException extends
   name = "AuthorizationPendingException";
   $fault = "client";
   /**
-   * <p>Single error code.
-   *       For this exception the value will be <code>authorization_pending</code>.</p>
+   * <p>Single error code. For this exception the value will be
+   *       <code>authorization_pending</code>.</p>
    * @public
    */
   error;
   /**
-   * <p>Human-readable text providing additional information, used to assist the
-   *       client developer in understanding the error that occurred.</p>
+   * <p>Human-readable text providing additional information, used to assist the client developer
+   *       in understanding the error that occurred.</p>
    * @public
    */
   error_description;
@@ -292,14 +291,13 @@ var ExpiredTokenException = class _ExpiredTokenException extends SSOOIDCServiceE
   name = "ExpiredTokenException";
   $fault = "client";
   /**
-   * <p>Single error code.
-   *       For this exception the value will be <code>expired_token</code>.</p>
+   * <p>Single error code. For this exception the value will be <code>expired_token</code>.</p>
    * @public
    */
   error;
   /**
-   * <p>Human-readable text providing additional information, used to assist the
-   *       client developer in understanding the error that occurred.</p>
+   * <p>Human-readable text providing additional information, used to assist the client developer
+   *       in understanding the error that occurred.</p>
    * @public
    */
   error_description;
@@ -324,14 +322,13 @@ var InternalServerException = class _InternalServerException extends SSOOIDCServ
   name = "InternalServerException";
   $fault = "server";
   /**
-   * <p>Single error code.
-   *       For this exception the value will be <code>server_error</code>.</p>
+   * <p>Single error code. For this exception the value will be <code>server_error</code>.</p>
    * @public
    */
   error;
   /**
-   * <p>Human-readable text providing additional information, used to assist the
-   *       client developer in understanding the error that occurred.</p>
+   * <p>Human-readable text providing additional information, used to assist the client developer
+   *       in understanding the error that occurred.</p>
    * @public
    */
   error_description;
@@ -356,14 +353,14 @@ var InvalidClientException = class _InvalidClientException extends SSOOIDCServic
   name = "InvalidClientException";
   $fault = "client";
   /**
-   * <p>Single error code.
-   *       For this exception the value will be <code>invalid_client</code>.</p>
+   * <p>Single error code. For this exception the value will be
+   *       <code>invalid_client</code>.</p>
    * @public
    */
   error;
   /**
-   * <p>Human-readable text providing additional information, used to assist the
-   *       client developer in understanding the error that occurred.</p>
+   * <p>Human-readable text providing additional information, used to assist the client developer
+   *       in understanding the error that occurred.</p>
    * @public
    */
   error_description;
@@ -388,14 +385,13 @@ var InvalidGrantException = class _InvalidGrantException extends SSOOIDCServiceE
   name = "InvalidGrantException";
   $fault = "client";
   /**
-   * <p>Single error code.
-   *       For this exception the value will be <code>invalid_grant</code>.</p>
+   * <p>Single error code. For this exception the value will be <code>invalid_grant</code>.</p>
    * @public
    */
   error;
   /**
-   * <p>Human-readable text providing additional information, used to assist the
-   *       client developer in understanding the error that occurred.</p>
+   * <p>Human-readable text providing additional information, used to assist the client developer
+   *       in understanding the error that occurred.</p>
    * @public
    */
   error_description;
@@ -420,14 +416,14 @@ var InvalidRequestException = class _InvalidRequestException extends SSOOIDCServ
   name = "InvalidRequestException";
   $fault = "client";
   /**
-   * <p>Single error code.
-   *       For this exception the value will be <code>invalid_request</code>.</p>
+   * <p>Single error code. For this exception the value will be
+   *       <code>invalid_request</code>.</p>
    * @public
    */
   error;
   /**
-   * <p>Human-readable text providing additional information, used to assist the
-   *       client developer in understanding the error that occurred.</p>
+   * <p>Human-readable text providing additional information, used to assist the client developer
+   *       in understanding the error that occurred.</p>
    * @public
    */
   error_description;
@@ -452,14 +448,13 @@ var InvalidScopeException = class _InvalidScopeException extends SSOOIDCServiceE
   name = "InvalidScopeException";
   $fault = "client";
   /**
-   * <p>Single error code.
-   *       For this exception the value will be <code>invalid_scope</code>.</p>
+   * <p>Single error code. For this exception the value will be <code>invalid_scope</code>.</p>
    * @public
    */
   error;
   /**
-   * <p>Human-readable text providing additional information, used to assist the
-   *       client developer in understanding the error that occurred.</p>
+   * <p>Human-readable text providing additional information, used to assist the client developer
+   *       in understanding the error that occurred.</p>
    * @public
    */
   error_description;
@@ -484,14 +479,13 @@ var SlowDownException = class _SlowDownException extends SSOOIDCServiceException
   name = "SlowDownException";
   $fault = "client";
   /**
-   * <p>Single error code.
-   *       For this exception the value will be <code>slow_down</code>.</p>
+   * <p>Single error code. For this exception the value will be <code>slow_down</code>.</p>
    * @public
    */
   error;
   /**
-   * <p>Human-readable text providing additional information, used to assist the
-   *       client developer in understanding the error that occurred.</p>
+   * <p>Human-readable text providing additional information, used to assist the client developer
+   *       in understanding the error that occurred.</p>
    * @public
    */
   error_description;
@@ -516,14 +510,14 @@ var UnauthorizedClientException = class _UnauthorizedClientException extends SSO
   name = "UnauthorizedClientException";
   $fault = "client";
   /**
-   * <p>Single error code.
-   *       For this exception the value will be <code>unauthorized_client</code>.</p>
+   * <p>Single error code. For this exception the value will be
+   *       <code>unauthorized_client</code>.</p>
    * @public
    */
   error;
   /**
-   * <p>Human-readable text providing additional information, used to assist the
-   *       client developer in understanding the error that occurred.</p>
+   * <p>Human-readable text providing additional information, used to assist the client developer
+   *       in understanding the error that occurred.</p>
    * @public
    */
   error_description;
@@ -548,14 +542,14 @@ var UnsupportedGrantTypeException = class _UnsupportedGrantTypeException extends
   name = "UnsupportedGrantTypeException";
   $fault = "client";
   /**
-   * <p>Single error code.
-   *       For this exception the value will be <code>unsupported_grant_type</code>.</p>
+   * <p>Single error code. For this exception the value will be
+   *         <code>unsupported_grant_type</code>.</p>
    * @public
    */
   error;
   /**
-   * <p>Human-readable text providing additional information, used to assist the
-   *       client developer in understanding the error that occurred.</p>
+   * <p>Human-readable text providing additional information, used to assist the client developer
+   *       in understanding the error that occurred.</p>
    * @public
    */
   error_description;
@@ -580,14 +574,14 @@ var InvalidRequestRegionException = class _InvalidRequestRegionException extends
   name = "InvalidRequestRegionException";
   $fault = "client";
   /**
-   * <p>Single error code.
-   *       For this exception the value will be <code>invalid_request</code>.</p>
+   * <p>Single error code. For this exception the value will be
+   *       <code>invalid_request</code>.</p>
    * @public
    */
   error;
   /**
-   * <p>Human-readable text providing additional information, used to assist the
-   *       client developer in understanding the error that occurred.</p>
+   * <p>Human-readable text providing additional information, used to assist the client developer
+   *       in understanding the error that occurred.</p>
    * @public
    */
   error_description;
@@ -624,14 +618,14 @@ var InvalidClientMetadataException = class _InvalidClientMetadataException exten
   name = "InvalidClientMetadataException";
   $fault = "client";
   /**
-   * <p>Single error code.
-   *       For this exception the value will be <code>invalid_client_metadata</code>.</p>
+   * <p>Single error code. For this exception the value will be
+   *         <code>invalid_client_metadata</code>.</p>
    * @public
    */
   error;
   /**
-   * <p>Human-readable text providing additional information, used to assist the
-   *       client developer in understanding the error that occurred.</p>
+   * <p>Human-readable text providing additional information, used to assist the client developer
+   *       in understanding the error that occurred.</p>
    * @public
    */
   error_description;
@@ -656,14 +650,14 @@ var InvalidRedirectUriException = class _InvalidRedirectUriException extends SSO
   name = "InvalidRedirectUriException";
   $fault = "client";
   /**
-   * <p>Single error code.
-   *       For this exception the value will be <code>invalid_redirect_uri</code>.</p>
+   * <p>Single error code. For this exception the value will be
+   *       <code>invalid_redirect_uri</code>.</p>
    * @public
    */
   error;
   /**
-   * <p>Human-readable text providing additional information, used to assist the
-   *       client developer in understanding the error that occurred.</p>
+   * <p>Human-readable text providing additional information, used to assist the client developer
+   *       in understanding the error that occurred.</p>
    * @public
    */
   error_description;

package/dist-types/SSOOIDC.d.ts

@@ -31,15 +31,16 @@ export interface SSOOIDC {
     startDeviceAuthorization(args: StartDeviceAuthorizationCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: StartDeviceAuthorizationCommandOutput) => void): void;
 }
 /**
- * <p>IAM Identity Center OpenID Connect (OIDC) is a web service that enables a client (such as CLI
- *       or a native application) to register with IAM Identity Center. The service also enables the client to
- *       fetch the user’s access token upon successful authentication and authorization with
- *       IAM Identity Center.</p>
- *          <note>
- *             <p>IAM Identity Center uses the <code>sso</code> and <code>identitystore</code> API namespaces.</p>
- *          </note>
+ * <p>IAM Identity Center OpenID Connect (OIDC) is a web service that enables a client (such as CLI or a
+ *       native application) to register with IAM Identity Center. The service also enables the client to fetch the
+ *       user’s access token upon successful authentication and authorization with IAM Identity Center.</p>
  *          <p>
- *             <b>Considerations for Using This Guide</b>
+ *             <b>API namespaces</b>
+ *          </p>
+ *          <p>IAM Identity Center uses the <code>sso</code> and <code>identitystore</code> API namespaces. IAM Identity Center
+ *       OpenID Connect uses the <code>sso-oidc</code> namespace.</p>
+ *          <p>
+ *             <b>Considerations for using this guide</b>
  *          </p>
  *          <p>Before you begin using this guide, we recommend that you first review the following
  *       important information about how the IAM Identity Center OIDC service works.</p>
@@ -53,8 +54,8 @@ export interface SSOOIDC {
  *                <p>With older versions of the CLI, the service only emits OIDC access tokens, so to
  *           obtain a new token, users must explicitly re-authenticate. To access the OIDC flow that
  *           supports token refresh and doesn’t require re-authentication, update to the latest CLI
- *           version (1.27.10 for CLI V1 and 2.9.0 for CLI V2) with support for OIDC token refresh and
- *           configurable IAM Identity Center session durations. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/configure-user-session.html">Configure Amazon Web Services access portal session duration </a>. </p>
+ *           version (1.27.10 for CLI V1 and 2.9.0 for CLI V2) with support for OIDC token refresh
+ *           and configurable IAM Identity Center session durations. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/configure-user-session.html">Configure Amazon Web Services access portal session duration </a>. </p>
  *             </li>
  *             <li>
  *                <p>The access tokens provided by this service grant access to all Amazon Web Services account
@@ -64,7 +65,7 @@ export interface SSOOIDC {
  *                <p>The documentation in this guide does not describe the mechanism to convert the access
  *           token into Amazon Web Services Auth (“sigv4”) credentials for use with IAM-protected Amazon Web Services service
  *           endpoints. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/PortalAPIReference/API_GetRoleCredentials.html">GetRoleCredentials</a> in the <i>IAM Identity Center Portal API Reference
- *             Guide</i>.</p>
+ *           Guide</i>.</p>
  *             </li>
  *          </ul>
  *          <p>For general information about IAM Identity Center, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html">What is

package/dist-types/SSOOIDCClient.d.ts

@@ -173,15 +173,16 @@ export type SSOOIDCClientResolvedConfigType = __SmithyResolvedConfiguration<__Ht
 export interface SSOOIDCClientResolvedConfig extends SSOOIDCClientResolvedConfigType {
 }
 /**
- * <p>IAM Identity Center OpenID Connect (OIDC) is a web service that enables a client (such as CLI
- *       or a native application) to register with IAM Identity Center. The service also enables the client to
- *       fetch the user’s access token upon successful authentication and authorization with
- *       IAM Identity Center.</p>
- *          <note>
- *             <p>IAM Identity Center uses the <code>sso</code> and <code>identitystore</code> API namespaces.</p>
- *          </note>
+ * <p>IAM Identity Center OpenID Connect (OIDC) is a web service that enables a client (such as CLI or a
+ *       native application) to register with IAM Identity Center. The service also enables the client to fetch the
+ *       user’s access token upon successful authentication and authorization with IAM Identity Center.</p>
  *          <p>
- *             <b>Considerations for Using This Guide</b>
+ *             <b>API namespaces</b>
+ *          </p>
+ *          <p>IAM Identity Center uses the <code>sso</code> and <code>identitystore</code> API namespaces. IAM Identity Center
+ *       OpenID Connect uses the <code>sso-oidc</code> namespace.</p>
+ *          <p>
+ *             <b>Considerations for using this guide</b>
  *          </p>
  *          <p>Before you begin using this guide, we recommend that you first review the following
  *       important information about how the IAM Identity Center OIDC service works.</p>
@@ -195,8 +196,8 @@ export interface SSOOIDCClientResolvedConfig extends SSOOIDCClientResolvedConfig
  *                <p>With older versions of the CLI, the service only emits OIDC access tokens, so to
  *           obtain a new token, users must explicitly re-authenticate. To access the OIDC flow that
  *           supports token refresh and doesn’t require re-authentication, update to the latest CLI
- *           version (1.27.10 for CLI V1 and 2.9.0 for CLI V2) with support for OIDC token refresh and
- *           configurable IAM Identity Center session durations. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/configure-user-session.html">Configure Amazon Web Services access portal session duration </a>. </p>
+ *           version (1.27.10 for CLI V1 and 2.9.0 for CLI V2) with support for OIDC token refresh
+ *           and configurable IAM Identity Center session durations. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/configure-user-session.html">Configure Amazon Web Services access portal session duration </a>. </p>
  *             </li>
  *             <li>
  *                <p>The access tokens provided by this service grant access to all Amazon Web Services account
@@ -206,7 +207,7 @@ export interface SSOOIDCClientResolvedConfig extends SSOOIDCClientResolvedConfig
  *                <p>The documentation in this guide does not describe the mechanism to convert the access
  *           token into Amazon Web Services Auth (“sigv4”) credentials for use with IAM-protected Amazon Web Services service
  *           endpoints. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/PortalAPIReference/API_GetRoleCredentials.html">GetRoleCredentials</a> in the <i>IAM Identity Center Portal API Reference
- *             Guide</i>.</p>
+ *           Guide</i>.</p>
  *             </li>
  *          </ul>
  *          <p>For general information about IAM Identity Center, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html">What is

package/dist-types/commands/CreateTokenCommand.d.ts

@@ -28,7 +28,7 @@ declare const CreateTokenCommand_base: {
 };
 /**
  * <p>Creates and returns access and refresh tokens for clients that are authenticated using
- *       client secrets. The access token can be used to fetch short-term credentials for the assigned
+ *       client secrets. The access token can be used to fetch short-lived credentials for the assigned
  *       AWS accounts or to access application APIs using <code>bearer</code> authentication.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.

package/dist-types/commands/CreateTokenWithIAMCommand.d.ts

@@ -28,9 +28,9 @@ declare const CreateTokenWithIAMCommand_base: {
 };
 /**
  * <p>Creates and returns access and refresh tokens for clients and applications that are
- *       authenticated using IAM entities. The access token can be used to fetch short-term credentials
- *       for the assigned Amazon Web Services accounts or to access application APIs using <code>bearer</code>
- *       authentication.</p>
+ *       authenticated using IAM entities. The access token can be used to fetch short-lived
+ *       credentials for the assigned Amazon Web Services accounts or to access application APIs using
+ *         <code>bearer</code> authentication.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/RegisterClientCommand.d.ts

@@ -27,8 +27,9 @@ declare const RegisterClientCommand_base: {
     getEndpointParameterInstructions(): import("@smithy/middleware-endpoint").EndpointParameterInstructions;
 };
 /**
- * <p>Registers a client with IAM Identity Center. This allows clients to initiate device authorization.
- *       The output should be persisted for reuse through many authentication requests.</p>
+ * <p>Registers a public client with IAM Identity Center. This allows clients to perform authorization using
+ *       the authorization code grant with Proof Key for Code Exchange (PKCE) or the device
+ *       code grant.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -78,7 +79,8 @@ declare const RegisterClientCommand_base: {
  *       invalid.</p>
  *
  * @throws {@link InvalidRedirectUriException} (client fault)
- *  <p>Indicates that one or more redirect URI in the request is not supported for this operation.</p>
+ *  <p>Indicates that one or more redirect URI in the request is not supported for this
+ *       operation.</p>
  *
  * @throws {@link InvalidRequestException} (client fault)
  *  <p>Indicates that something is wrong with the input to the request. For example, a required

package/dist-types/index.d.ts

@@ -1,13 +1,14 @@
 /**
- * <p>IAM Identity Center OpenID Connect (OIDC) is a web service that enables a client (such as CLI
- *       or a native application) to register with IAM Identity Center. The service also enables the client to
- *       fetch the user’s access token upon successful authentication and authorization with
- *       IAM Identity Center.</p>
- *          <note>
- *             <p>IAM Identity Center uses the <code>sso</code> and <code>identitystore</code> API namespaces.</p>
- *          </note>
+ * <p>IAM Identity Center OpenID Connect (OIDC) is a web service that enables a client (such as CLI or a
+ *       native application) to register with IAM Identity Center. The service also enables the client to fetch the
+ *       user’s access token upon successful authentication and authorization with IAM Identity Center.</p>
  *          <p>
- *             <b>Considerations for Using This Guide</b>
+ *             <b>API namespaces</b>
+ *          </p>
+ *          <p>IAM Identity Center uses the <code>sso</code> and <code>identitystore</code> API namespaces. IAM Identity Center
+ *       OpenID Connect uses the <code>sso-oidc</code> namespace.</p>
+ *          <p>
+ *             <b>Considerations for using this guide</b>
  *          </p>
  *          <p>Before you begin using this guide, we recommend that you first review the following
  *       important information about how the IAM Identity Center OIDC service works.</p>
@@ -21,8 +22,8 @@
  *                <p>With older versions of the CLI, the service only emits OIDC access tokens, so to
  *           obtain a new token, users must explicitly re-authenticate. To access the OIDC flow that
  *           supports token refresh and doesn’t require re-authentication, update to the latest CLI
- *           version (1.27.10 for CLI V1 and 2.9.0 for CLI V2) with support for OIDC token refresh and
- *           configurable IAM Identity Center session durations. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/configure-user-session.html">Configure Amazon Web Services access portal session duration </a>. </p>
+ *           version (1.27.10 for CLI V1 and 2.9.0 for CLI V2) with support for OIDC token refresh
+ *           and configurable IAM Identity Center session durations. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/configure-user-session.html">Configure Amazon Web Services access portal session duration </a>. </p>
  *             </li>
  *             <li>
  *                <p>The access tokens provided by this service grant access to all Amazon Web Services account
@@ -32,7 +33,7 @@
  *                <p>The documentation in this guide does not describe the mechanism to convert the access
  *           token into Amazon Web Services Auth (“sigv4”) credentials for use with IAM-protected Amazon Web Services service
  *           endpoints. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/PortalAPIReference/API_GetRoleCredentials.html">GetRoleCredentials</a> in the <i>IAM Identity Center Portal API Reference
- *             Guide</i>.</p>
+ *           Guide</i>.</p>
  *             </li>
  *          </ul>
  *          <p>For general information about IAM Identity Center, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html">What is

package/dist-types/models/models_0.d.ts

@@ -8,14 +8,13 @@ export declare class AccessDeniedException extends __BaseException {
     readonly name: "AccessDeniedException";
     readonly $fault: "client";
     /**
-     * <p>Single error code.
-     *       For this exception the value will be <code>access_denied</code>.</p>
+     * <p>Single error code. For this exception the value will be <code>access_denied</code>.</p>
      * @public
      */
     error?: string | undefined;
     /**
-     * <p>Human-readable text providing additional information, used to assist the
-     *       client developer in understanding the error that occurred.</p>
+     * <p>Human-readable text providing additional information, used to assist the client developer
+     *       in understanding the error that occurred.</p>
      * @public
      */
     error_description?: string | undefined;
@@ -33,14 +32,14 @@ export declare class AuthorizationPendingException extends __BaseException {
     readonly name: "AuthorizationPendingException";
     readonly $fault: "client";
     /**
-     * <p>Single error code.
-     *       For this exception the value will be <code>authorization_pending</code>.</p>
+     * <p>Single error code. For this exception the value will be
+     *       <code>authorization_pending</code>.</p>
      * @public
      */
     error?: string | undefined;
     /**
-     * <p>Human-readable text providing additional information, used to assist the
-     *       client developer in understanding the error that occurred.</p>
+     * <p>Human-readable text providing additional information, used to assist the client developer
+     *       in understanding the error that occurred.</p>
      * @public
      */
     error_description?: string | undefined;
@@ -66,58 +65,56 @@ export interface CreateTokenRequest {
      */
     clientSecret: string | undefined;
     /**
-     * <p>Supports the following OAuth grant types: Device Code and Refresh Token.
-     *       Specify either of the following values, depending on the grant type that you want:</p>
+     * <p>Supports the following OAuth grant types: Authorization Code, Device Code, and Refresh
+     *       Token. Specify one of the following values, depending on the grant type that you want:</p>
+     *          <p>* Authorization Code - <code>authorization_code</code>
+     *          </p>
      *          <p>* Device Code - <code>urn:ietf:params:oauth:grant-type:device_code</code>
      *          </p>
      *          <p>* Refresh Token - <code>refresh_token</code>
      *          </p>
-     *          <p>For information about how to obtain the device code, see the <a>StartDeviceAuthorization</a> topic.</p>
      * @public
      */
     grantType: string | undefined;
     /**
-     * <p>Used only when calling this API for the Device Code grant type. This short-term code is
-     *       used to identify this authorization request. This comes from the result of the
-     *       <a>StartDeviceAuthorization</a> API.</p>
+     * <p>Used only when calling this API for the Device Code grant type. This short-lived code is
+     *       used to identify this authorization request. This comes from the result of the <a>StartDeviceAuthorization</a> API.</p>
      * @public
      */
     deviceCode?: string | undefined;
     /**
-     * <p>Used only when calling this API for the Authorization Code grant type. The short-term code is
-     *       used to identify this authorization request. This grant type is currently unsupported for the
-     *       <a>CreateToken</a> API.</p>
+     * <p>Used only when calling this API for the Authorization Code grant type. The short-lived
+     *       code is used to identify this authorization request.</p>
      * @public
      */
     code?: string | undefined;
     /**
      * <p>Used only when calling this API for the Refresh Token grant type. This token is used to
-     *       refresh short-term tokens, such as the access token, that might expire.</p>
+     *       refresh short-lived tokens, such as the access token, that might expire.</p>
      *          <p>For more information about the features and limitations of the current IAM Identity Center OIDC
      *       implementation, see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
-     *       OIDC API Reference</a>.</p>
+     *         OIDC API Reference</a>.</p>
      * @public
      */
     refreshToken?: string | undefined;
     /**
      * <p>The list of scopes for which authorization is requested. The access token that is issued
      *       is limited to the scopes that are granted. If this value is not specified, IAM Identity Center authorizes
-     *       all scopes that are configured for the client during the call to
-     *       <a>RegisterClient</a>.</p>
+     *       all scopes that are configured for the client during the call to <a>RegisterClient</a>.</p>
      * @public
      */
     scope?: string[] | undefined;
     /**
-     * <p>Used only when calling this API for the Authorization Code grant type. This value specifies
-     *       the location of the client or application that has registered to receive the authorization
-     *         code.</p>
+     * <p>Used only when calling this API for the Authorization Code grant type. This value
+     *       specifies the location of the client or application that has registered to receive the
+     *       authorization code.</p>
      * @public
      */
     redirectUri?: string | undefined;
     /**
-     * <p>Used only when calling this API for the Authorization Code grant type. This value is generated
-     *       by the client and presented to validate the original code challenge value the client passed at
-     *       authorization time.</p>
+     * <p>Used only when calling this API for the Authorization Code grant type. This value is
+     *       generated by the client and presented to validate the original code challenge value the client
+     *       passed at authorization time.</p>
      * @public
      */
     codeVerifier?: string | undefined;
@@ -145,20 +142,19 @@ export interface CreateTokenResponse {
     /**
      * <p>A token that, if present, can be used to refresh a previously issued access token that
      *       might have expired.</p>
-     *          <p>For more
-     *       information about the features and limitations of the current IAM Identity Center OIDC implementation,
-     *       see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
+     *          <p>For more information about the features and limitations of the current IAM Identity Center OIDC
+     *       implementation, see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
      *         OIDC API Reference</a>.</p>
      * @public
      */
     refreshToken?: string | undefined;
     /**
      * <p>The <code>idToken</code> is not implemented or supported. For more information about the
-     *       features and limitations of the current IAM Identity Center OIDC implementation, see <i>Considerations
-     *       for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
-     *       OIDC API Reference</a>.</p>
+     *       features and limitations of the current IAM Identity Center OIDC implementation, see
+     *         <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
+     *         OIDC API Reference</a>.</p>
      *          <p>A JSON Web Token (JWT) that identifies who is associated with the issued access token.
-     *       </p>
+     *     </p>
      * @public
      */
     idToken?: string | undefined;
@@ -171,14 +167,13 @@ export declare class ExpiredTokenException extends __BaseException {
     readonly name: "ExpiredTokenException";
     readonly $fault: "client";
     /**
-     * <p>Single error code.
-     *       For this exception the value will be <code>expired_token</code>.</p>
+     * <p>Single error code. For this exception the value will be <code>expired_token</code>.</p>
      * @public
      */
     error?: string | undefined;
     /**
-     * <p>Human-readable text providing additional information, used to assist the
-     *       client developer in understanding the error that occurred.</p>
+     * <p>Human-readable text providing additional information, used to assist the client developer
+     *       in understanding the error that occurred.</p>
      * @public
      */
     error_description?: string | undefined;
@@ -196,14 +191,13 @@ export declare class InternalServerException extends __BaseException {
     readonly name: "InternalServerException";
     readonly $fault: "server";
     /**
-     * <p>Single error code.
-     *       For this exception the value will be <code>server_error</code>.</p>
+     * <p>Single error code. For this exception the value will be <code>server_error</code>.</p>
      * @public
      */
     error?: string | undefined;
     /**
-     * <p>Human-readable text providing additional information, used to assist the
-     *       client developer in understanding the error that occurred.</p>
+     * <p>Human-readable text providing additional information, used to assist the client developer
+     *       in understanding the error that occurred.</p>
      * @public
      */
     error_description?: string | undefined;
@@ -222,14 +216,14 @@ export declare class InvalidClientException extends __BaseException {
     readonly name: "InvalidClientException";
     readonly $fault: "client";
     /**
-     * <p>Single error code.
-     *       For this exception the value will be <code>invalid_client</code>.</p>
+     * <p>Single error code. For this exception the value will be
+     *       <code>invalid_client</code>.</p>
      * @public
      */
     error?: string | undefined;
     /**
-     * <p>Human-readable text providing additional information, used to assist the
-     *       client developer in understanding the error that occurred.</p>
+     * <p>Human-readable text providing additional information, used to assist the client developer
+     *       in understanding the error that occurred.</p>
      * @public
      */
     error_description?: string | undefined;
@@ -247,14 +241,13 @@ export declare class InvalidGrantException extends __BaseException {
     readonly name: "InvalidGrantException";
     readonly $fault: "client";
     /**
-     * <p>Single error code.
-     *       For this exception the value will be <code>invalid_grant</code>.</p>
+     * <p>Single error code. For this exception the value will be <code>invalid_grant</code>.</p>
      * @public
      */
     error?: string | undefined;
     /**
-     * <p>Human-readable text providing additional information, used to assist the
-     *       client developer in understanding the error that occurred.</p>
+     * <p>Human-readable text providing additional information, used to assist the client developer
+     *       in understanding the error that occurred.</p>
      * @public
      */
     error_description?: string | undefined;
@@ -272,14 +265,14 @@ export declare class InvalidRequestException extends __BaseException {
     readonly name: "InvalidRequestException";
     readonly $fault: "client";
     /**
-     * <p>Single error code.
-     *       For this exception the value will be <code>invalid_request</code>.</p>
+     * <p>Single error code. For this exception the value will be
+     *       <code>invalid_request</code>.</p>
      * @public
      */
     error?: string | undefined;
     /**
-     * <p>Human-readable text providing additional information, used to assist the
-     *       client developer in understanding the error that occurred.</p>
+     * <p>Human-readable text providing additional information, used to assist the client developer
+     *       in understanding the error that occurred.</p>
      * @public
      */
     error_description?: string | undefined;
@@ -296,14 +289,13 @@ export declare class InvalidScopeException extends __BaseException {
     readonly name: "InvalidScopeException";
     readonly $fault: "client";
     /**
-     * <p>Single error code.
-     *       For this exception the value will be <code>invalid_scope</code>.</p>
+     * <p>Single error code. For this exception the value will be <code>invalid_scope</code>.</p>
      * @public
      */
     error?: string | undefined;
     /**
-     * <p>Human-readable text providing additional information, used to assist the
-     *       client developer in understanding the error that occurred.</p>
+     * <p>Human-readable text providing additional information, used to assist the client developer
+     *       in understanding the error that occurred.</p>
      * @public
      */
     error_description?: string | undefined;
@@ -321,14 +313,13 @@ export declare class SlowDownException extends __BaseException {
     readonly name: "SlowDownException";
     readonly $fault: "client";
     /**
-     * <p>Single error code.
-     *       For this exception the value will be <code>slow_down</code>.</p>
+     * <p>Single error code. For this exception the value will be <code>slow_down</code>.</p>
      * @public
      */
     error?: string | undefined;
     /**
-     * <p>Human-readable text providing additional information, used to assist the
-     *       client developer in understanding the error that occurred.</p>
+     * <p>Human-readable text providing additional information, used to assist the client developer
+     *       in understanding the error that occurred.</p>
      * @public
      */
     error_description?: string | undefined;
@@ -346,14 +337,14 @@ export declare class UnauthorizedClientException extends __BaseException {
     readonly name: "UnauthorizedClientException";
     readonly $fault: "client";
     /**
-     * <p>Single error code.
-     *       For this exception the value will be <code>unauthorized_client</code>.</p>
+     * <p>Single error code. For this exception the value will be
+     *       <code>unauthorized_client</code>.</p>
      * @public
      */
     error?: string | undefined;
     /**
-     * <p>Human-readable text providing additional information, used to assist the
-     *       client developer in understanding the error that occurred.</p>
+     * <p>Human-readable text providing additional information, used to assist the client developer
+     *       in understanding the error that occurred.</p>
      * @public
      */
     error_description?: string | undefined;
@@ -370,14 +361,14 @@ export declare class UnsupportedGrantTypeException extends __BaseException {
     readonly name: "UnsupportedGrantTypeException";
     readonly $fault: "client";
     /**
-     * <p>Single error code.
-     *       For this exception the value will be <code>unsupported_grant_type</code>.</p>
+     * <p>Single error code. For this exception the value will be
+     *         <code>unsupported_grant_type</code>.</p>
      * @public
      */
     error?: string | undefined;
     /**
-     * <p>Human-readable text providing additional information, used to assist the
-     *       client developer in understanding the error that occurred.</p>
+     * <p>Human-readable text providing additional information, used to assist the client developer
+     *       in understanding the error that occurred.</p>
      * @public
      */
     error_description?: string | undefined;
@@ -412,25 +403,25 @@ export interface CreateTokenWithIAMRequest {
      */
     grantType: string | undefined;
     /**
-     * <p>Used only when calling this API for the Authorization Code grant type. This short-term
-     *         code is used to identify this authorization request. The code is obtained through a redirect
-     *         from IAM Identity Center to a redirect URI persisted in the Authorization Code GrantOptions for the
-     *         application.</p>
+     * <p>Used only when calling this API for the Authorization Code grant type. This short-lived
+     *       code is used to identify this authorization request. The code is obtained through a redirect
+     *       from IAM Identity Center to a redirect URI persisted in the Authorization Code GrantOptions for the
+     *       application.</p>
      * @public
      */
     code?: string | undefined;
     /**
      * <p>Used only when calling this API for the Refresh Token grant type. This token is used to
-     *       refresh short-term tokens, such as the access token, that might expire.</p>
+     *       refresh short-lived tokens, such as the access token, that might expire.</p>
      *          <p>For more information about the features and limitations of the current IAM Identity Center OIDC
      *       implementation, see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
-     *       OIDC API Reference</a>.</p>
+     *         OIDC API Reference</a>.</p>
      * @public
      */
     refreshToken?: string | undefined;
     /**
-     * <p>Used only when calling this API for the JWT Bearer grant type. This value specifies the JSON
-     *       Web Token (JWT) issued by a trusted token issuer. To authorize a trusted token issuer,
+     * <p>Used only when calling this API for the JWT Bearer grant type. This value specifies the
+     *       JSON Web Token (JWT) issued by a trusted token issuer. To authorize a trusted token issuer,
      *       configure the JWT Bearer GrantOptions for the application.</p>
      * @public
      */
@@ -439,22 +430,22 @@ export interface CreateTokenWithIAMRequest {
      * <p>The list of scopes for which authorization is requested. The access token that is issued
      *       is limited to the scopes that are granted. If the value is not specified, IAM Identity Center authorizes all
      *       scopes configured for the application, including the following default scopes:
-     *       <code>openid</code>, <code>aws</code>, <code>sts:identity_context</code>.</p>
+     *         <code>openid</code>, <code>aws</code>, <code>sts:identity_context</code>.</p>
      * @public
      */
     scope?: string[] | undefined;
     /**
-     * <p>Used only when calling this API for the Authorization Code grant type. This value specifies
-     *       the location of the client or application that has registered to receive the authorization code.
-     *       </p>
+     * <p>Used only when calling this API for the Authorization Code grant type. This value
+     *       specifies the location of the client or application that has registered to receive the
+     *       authorization code. </p>
      * @public
      */
     redirectUri?: string | undefined;
     /**
      * <p>Used only when calling this API for the Token Exchange grant type. This value specifies
      *       the subject of the exchange. The value of the subject token must be an access token issued by
-     *       IAM Identity Center to a different client or application. The access token must have authorized scopes
-     *       that indicate the requested application as a target audience.</p>
+     *       IAM Identity Center to a different client or application. The access token must have authorized scopes that
+     *       indicate the requested application as a target audience.</p>
      * @public
      */
     subjectToken?: string | undefined;
@@ -478,9 +469,9 @@ export interface CreateTokenWithIAMRequest {
      */
     requestedTokenType?: string | undefined;
     /**
-     * <p>Used only when calling this API for the Authorization Code grant type. This value is generated
-     *       by the client and presented to validate the original code challenge value the client passed at
-     *       authorization time.</p>
+     * <p>Used only when calling this API for the Authorization Code grant type. This value is
+     *       generated by the client and presented to validate the original code challenge value the client
+     *       passed at authorization time.</p>
      * @public
      */
     codeVerifier?: string | undefined;
@@ -508,22 +499,20 @@ export interface CreateTokenWithIAMResponse {
     /**
      * <p>A token that, if present, can be used to refresh a previously issued access token that
      *       might have expired.</p>
-     *          <p>For more
-     *       information about the features and limitations of the current IAM Identity Center OIDC implementation,
-     *       see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
+     *          <p>For more information about the features and limitations of the current IAM Identity Center OIDC
+     *       implementation, see <i>Considerations for Using this Guide</i> in the <a href="https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/Welcome.html">IAM Identity Center
      *         OIDC API Reference</a>.</p>
      * @public
      */
     refreshToken?: string | undefined;
     /**
      * <p>A JSON Web Token (JWT) that identifies the user associated with the issued access token.
-     *       </p>
+     *     </p>
      * @public
      */
     idToken?: string | undefined;
     /**
-     * <p>Indicates the type of tokens that are issued by IAM Identity Center. The following values are supported:
-     *       </p>
+     * <p>Indicates the type of tokens that are issued by IAM Identity Center. The following values are supported: </p>
      *          <p>* Access Token - <code>urn:ietf:params:oauth:token-type:access_token</code>
      *          </p>
      *          <p>* Refresh Token - <code>urn:ietf:params:oauth:token-type:refresh_token</code>
@@ -532,8 +521,8 @@ export interface CreateTokenWithIAMResponse {
      */
     issuedTokenType?: string | undefined;
     /**
-     * <p>The list of scopes for which authorization is granted. The access token that is issued
-     *       is limited to the scopes that are granted.</p>
+     * <p>The list of scopes for which authorization is granted. The access token that is issued is
+     *       limited to the scopes that are granted.</p>
      * @public
      */
     scope?: string[] | undefined;
@@ -547,14 +536,14 @@ export declare class InvalidRequestRegionException extends __BaseException {
     readonly name: "InvalidRequestRegionException";
     readonly $fault: "client";
     /**
-     * <p>Single error code.
-     *       For this exception the value will be <code>invalid_request</code>.</p>
+     * <p>Single error code. For this exception the value will be
+     *       <code>invalid_request</code>.</p>
      * @public
      */
     error?: string | undefined;
     /**
-     * <p>Human-readable text providing additional information, used to assist the
-     *       client developer in understanding the error that occurred.</p>
+     * <p>Human-readable text providing additional information, used to assist the client developer
+     *       in understanding the error that occurred.</p>
      * @public
      */
     error_description?: string | undefined;
@@ -582,14 +571,14 @@ export declare class InvalidClientMetadataException extends __BaseException {
     readonly name: "InvalidClientMetadataException";
     readonly $fault: "client";
     /**
-     * <p>Single error code.
-     *       For this exception the value will be <code>invalid_client_metadata</code>.</p>
+     * <p>Single error code. For this exception the value will be
+     *         <code>invalid_client_metadata</code>.</p>
      * @public
      */
     error?: string | undefined;
     /**
-     * <p>Human-readable text providing additional information, used to assist the
-     *       client developer in understanding the error that occurred.</p>
+     * <p>Human-readable text providing additional information, used to assist the client developer
+     *       in understanding the error that occurred.</p>
      * @public
      */
     error_description?: string | undefined;
@@ -599,21 +588,22 @@ export declare class InvalidClientMetadataException extends __BaseException {
     constructor(opts: __ExceptionOptionType<InvalidClientMetadataException, __BaseException>);
 }
 /**
- * <p>Indicates that one or more redirect URI in the request is not supported for this operation.</p>
+ * <p>Indicates that one or more redirect URI in the request is not supported for this
+ *       operation.</p>
  * @public
  */
 export declare class InvalidRedirectUriException extends __BaseException {
     readonly name: "InvalidRedirectUriException";
     readonly $fault: "client";
     /**
-     * <p>Single error code.
-     *       For this exception the value will be <code>invalid_redirect_uri</code>.</p>
+     * <p>Single error code. For this exception the value will be
+     *       <code>invalid_redirect_uri</code>.</p>
      * @public
      */
     error?: string | undefined;
     /**
-     * <p>Human-readable text providing additional information, used to assist the
-     *       client developer in understanding the error that occurred.</p>
+     * <p>Human-readable text providing additional information, used to assist the client developer
+     *       in understanding the error that occurred.</p>
      * @public
      */
     error_description?: string | undefined;
@@ -651,18 +641,27 @@ export interface RegisterClientRequest {
     redirectUris?: string[] | undefined;
     /**
      * <p>The list of OAuth 2.0 grant types that are defined by the client. This list is used to
-     *       restrict the token granting flows available to the client.</p>
+     *       restrict the token granting flows available to the client. Supports the following OAuth 2.0
+     *       grant types: Authorization Code, Device Code, and Refresh Token. </p>
+     *          <p>* Authorization Code - <code>authorization_code</code>
+     *          </p>
+     *          <p>* Device Code - <code>urn:ietf:params:oauth:grant-type:device_code</code>
+     *          </p>
+     *          <p>* Refresh Token - <code>refresh_token</code>
+     *          </p>
      * @public
      */
     grantTypes?: string[] | undefined;
     /**
-     * <p>The IAM Identity Center Issuer URL associated with an instance of IAM Identity Center. This value is needed for user access to resources through the client.</p>
+     * <p>The IAM Identity Center Issuer URL associated with an instance of IAM Identity Center. This value is needed for user
+     *       access to resources through the client.</p>
      * @public
      */
     issuerUrl?: string | undefined;
     /**
-     * <p>This IAM Identity Center application ARN is used to define administrator-managed configuration for public client access to resources. At
-     *       authorization, the scopes, grants, and redirect URI available to this client will be restricted by this application resource.</p>
+     * <p>This IAM Identity Center application ARN is used to define administrator-managed configuration for
+     *       public client access to resources. At authorization, the scopes, grants, and redirect URI
+     *       available to this client will be restricted by this application resource.</p>
      * @public
      */
     entitledApplicationArn?: string | undefined;
@@ -725,7 +724,7 @@ export interface StartDeviceAuthorizationRequest {
     clientSecret: string | undefined;
     /**
      * <p>The URL for the Amazon Web Services access portal. For more information, see <a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/using-the-portal.html">Using
-     *       the Amazon Web Services access portal</a> in the <i>IAM Identity Center User Guide</i>.</p>
+     *         the Amazon Web Services access portal</a> in the <i>IAM Identity Center User Guide</i>.</p>
      * @public
      */
     startUrl: string | undefined;

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-sso-oidc",
   "description": "AWS SDK for JavaScript Sso Oidc Client for Node.js, Browser and React Native",
-  "version": "3.734.0",
+  "version": "3.735.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-sso-oidc",