@aws-sdk/client-transfer 3.34.0 → 3.37.0

package/dist/types/ts3.4/models/models_0.d.ts

@@ -1,3311 +0,0 @@
-import { MetadataBearer as $MetadataBearer, SmithyException as __SmithyException } from "@aws-sdk/types";
-/**
- * <p>You do not have sufficient access to perform this action.</p>
- */
-export interface AccessDeniedException extends __SmithyException, $MetadataBearer {
-    name: "AccessDeniedException";
-    $fault: "client";
-    Message?: string;
-}
-export declare namespace AccessDeniedException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: AccessDeniedException) => any;
-}
-/**
- * <p>This exception is thrown when the <code>UpdateServer</code> is called for a file transfer
- *       protocol-enabled server that has VPC as the endpoint type and the server's
- *         <code>VpcEndpointID</code> is not in the available state.</p>
- */
-export interface ConflictException extends __SmithyException, $MetadataBearer {
-    name: "ConflictException";
-    $fault: "client";
-    Message: string | undefined;
-}
-export declare namespace ConflictException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ConflictException) => any;
-}
-/**
- * <p>Specifies the details for the file location for the file being used in the workflow. Only applicable if you are using Amazon EFS for storage.</p>
- *          <p>
- *      You need to provide the file system ID and the pathname.
- *       The pathname can represent either a path or a file.
- *       This is determined by whether or not you end the path value with the forward slash (/) character.
- *       If the final character is "/", then your file is copied to the folder, and its name does not change.
- *       If, rather, the final character is alphanumeric, your uploaded file is renamed to the path value. In this case, if a file with that name already exists, it is overwritten.
- *     </p>
- *          <p>For example, if your path is <code>shared-files/bob/</code>, your uploaded files are copied to the <code>shared-files/bob/</code>, folder.
- *       If your path is <code>shared-files/today</code>, each uploaded file is copied to the <code>shared-files</code> folder and named <code>today</code>:
- *       each upload overwrites the previous version of the <code>bob</code> file.</p>
- */
-export interface EfsFileLocation {
-    /**
-     * <p>The ID of the file system, assigned by Amazon EFS.</p>
-     */
-    FileSystemId?: string;
-    /**
-     * <p>The pathname for the folder being used by a workflow.</p>
-     */
-    Path?: string;
-}
-export declare namespace EfsFileLocation {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: EfsFileLocation) => any;
-}
-/**
- * <p>Specifies the details for the S3 file being copied.</p>
- */
-export interface S3InputFileLocation {
-    /**
-     * <p>Specifies the S3 bucket that contains the file being copied.</p>
-     */
-    Bucket?: string;
-    /**
-     * <p>The name assigned to the file when it was created in S3. You use the object key to retrieve the object.</p>
-     */
-    Key?: string;
-}
-export declare namespace S3InputFileLocation {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: S3InputFileLocation) => any;
-}
-/**
- * <p>Specifies the location for the file being copied. Only applicable for the Copy type of workflow steps.</p>
- */
-export interface InputFileLocation {
-    /**
-     * <p>Specifies the details for the S3 file being copied.</p>
-     */
-    S3FileLocation?: S3InputFileLocation;
-    /**
-     * <p>Specifies the details for the Amazon EFS file being copied.</p>
-     */
-    EfsFileLocation?: EfsFileLocation;
-}
-export declare namespace InputFileLocation {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InputFileLocation) => any;
-}
-export declare enum OverwriteExisting {
-    FALSE = "FALSE",
-    TRUE = "TRUE"
-}
-/**
- * <p>Each step type has its own <code>StepDetails</code> structure.</p>
- */
-export interface CopyStepDetails {
-    /**
-     * <p>The name of the step, used as an identifier.</p>
-     */
-    Name?: string;
-    /**
-     * <p>Specifies the location for the file being copied. Only applicable for the Copy type of workflow steps.</p>
-     */
-    DestinationFileLocation?: InputFileLocation;
-    /**
-     * <p>A flag that indicates whether or not to overwrite an existing file of the same name.
-     *       The default is <code>FALSE</code>.</p>
-     */
-    OverwriteExisting?: OverwriteExisting | string;
-}
-export declare namespace CopyStepDetails {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CopyStepDetails) => any;
-}
-/**
- * <p>Represents an object that contains entries and targets for
- *         <code>HomeDirectoryMappings</code>.</p>
- *          <p>The following is an <code>Entry</code> and <code>Target</code> pair example for <code>chroot</code>.</p>
- *          <p>
- *             <code>[ { "Entry:": "/", "Target": "/bucket_name/home/mydirectory" } ]</code>
- *          </p>
- *
- *          <note>
- *             <p>If the target of a logical directory entry does not exist in Amazon S3 or EFS, the entry is
- *         ignored. As a workaround, you can use the Amazon S3 API or EFS API to create 0 byte objects as place
- *         holders for your directory. If using the CLI, use the <code>s3api</code> or <code>efsapi</code> call instead of
- *         <code>s3</code> or <code>efs</code> so you can use the put-object operation. For example, you use the
- *         following: <code>aws s3api put-object --bucket bucketname --key path/to/folder/</code>. Make
- *         sure that the end of the key name ends in a <code>/</code> for it to be considered a folder.</p>
- *          </note>
- */
-export interface HomeDirectoryMapEntry {
-    /**
-     * <p>Represents an entry for <code>HomeDirectoryMappings</code>.</p>
-     */
-    Entry: string | undefined;
-    /**
-     * <p>Represents the map target that is used in a <code>HomeDirectorymapEntry</code>.</p>
-     */
-    Target: string | undefined;
-}
-export declare namespace HomeDirectoryMapEntry {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: HomeDirectoryMapEntry) => any;
-}
-export declare enum HomeDirectoryType {
-    LOGICAL = "LOGICAL",
-    PATH = "PATH"
-}
-/**
- * <p>The full POSIX identity, including user ID (<code>Uid</code>), group ID
- *       (<code>Gid</code>), and any secondary groups IDs (<code>SecondaryGids</code>), that controls
- *       your users' access to your Amazon EFS file systems. The POSIX permissions that are set on
- *       files and directories in your file system determine the level of access your users get when
- *       transferring files into and out of your Amazon EFS file systems.</p>
- */
-export interface PosixProfile {
-    /**
-     * <p>The POSIX user ID used for all EFS operations by this user.</p>
-     */
-    Uid: number | undefined;
-    /**
-     * <p>The POSIX group ID used for all EFS operations by this user.</p>
-     */
-    Gid: number | undefined;
-    /**
-     * <p>The secondary POSIX group IDs used for all EFS operations by this user.</p>
-     */
-    SecondaryGids?: number[];
-}
-export declare namespace PosixProfile {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: PosixProfile) => any;
-}
-export interface CreateAccessRequest {
-    /**
-     * <p>The landing directory (folder) for a user when they log in to the server using the client.</p>
-     *          <p>A <code>HomeDirectory</code> example is <code>/bucket_name/home/mydirectory</code>.</p>
-     */
-    HomeDirectory?: string;
-    /**
-     * <p>The type of landing directory (folder) you want your users' home directory to be when they log into the server.
-     *     If you set it to <code>PATH</code>, the user will see the absolute Amazon S3 bucket or EFS paths as is in their file transfer protocol clients.
-     *     If you set it <code>LOGICAL</code>, you need to provide mappings in the <code>HomeDirectoryMappings</code> for how you want to make Amazon
-     *     S3 or EFS paths visible to your users.</p>
-     */
-    HomeDirectoryType?: HomeDirectoryType | string;
-    /**
-     * <p>Logical directory mappings that specify what Amazon S3 or Amazon EFS paths and keys should
-     *       be visible to your user and how you want to make them visible. You must specify the
-     *         <code>Entry</code> and <code>Target</code> pair, where <code>Entry</code> shows how the path
-     *       is made visible and <code>Target</code> is the actual Amazon S3 or Amazon EFS path. If you
-     *       only specify a target, it is displayed as is. You also must ensure that your Amazon Web Services Identity
-     *       and Access Management (IAM) role provides access to paths in <code>Target</code>. This value
-     *       can only be set when <code>HomeDirectoryType</code> is set to
-     *       <i>LOGICAL</i>.</p>
-     *          <p>The following is an <code>Entry</code> and <code>Target</code> pair example.</p>
-     *          <p>
-     *             <code>[ { "Entry": "your-personal-report.pdf", "Target": "/bucket3/customized-reports/${transfer:UserName}.pdf" } ]</code>
-     *          </p>
-     *          <p>In most cases, you can use this value instead of the session policy to lock down your
-     *       user to the designated home directory ("<code>chroot</code>"). To do this, you can set
-     *         <code>Entry</code> to <code>/</code> and set <code>Target</code> to the
-     *         <code>HomeDirectory</code> parameter value.</p>
-     *          <p>The following is an <code>Entry</code> and <code>Target</code> pair example for <code>chroot</code>.</p>
-     *          <p>
-     *             <code>[ { "Entry:": "/", "Target": "/bucket_name/home/mydirectory" } ]</code>
-     *          </p>
-     *
-     *          <note>
-     *             <p>If the target of a logical directory entry does not exist in Amazon S3 or EFS, the entry is
-     *         ignored. As a workaround, you can use the Amazon S3 API or EFS API to create 0 byte objects as place
-     *         holders for your directory. If using the CLI, use the <code>s3api</code> or <code>efsapi</code> call instead of
-     *         <code>s3</code> or <code>efs</code> so you can use the put-object operation. For example, you use the
-     *         following: <code>aws s3api put-object --bucket bucketname --key path/to/folder/</code>. Make
-     *         sure that the end of the key name ends in a <code>/</code> for it to be considered a folder.</p>
-     *          </note>
-     */
-    HomeDirectoryMappings?: HomeDirectoryMapEntry[];
-    /**
-     * <p>A session policy for your user so that you can use the same IAM role across multiple users. This policy scopes down user
-     *      access to portions of their Amazon S3 bucket. Variables that you can use inside this policy include <code>${Transfer:UserName}</code>,
-     *      <code>${Transfer:HomeDirectory}</code>, and <code>${Transfer:HomeBucket}</code>.</p>
-     *
-     *          <note>
-     *             <p>This only applies when the domain of <code>ServerId</code> is S3. EFS does not use session policies.</p>
-     *             <p>For session policies, Amazon Web Services Transfer Family stores the policy as a JSON blob, instead
-     *         of the Amazon Resource Name (ARN) of the policy. You save the policy as a JSON blob and pass
-     *         it in the <code>Policy</code> argument.</p>
-     *             <p>For an example of a session policy, see <a href="https://docs.aws.amazon.com/transfer/latest/userguide/session-policy.html">Example
-     *           session policy</a>.</p>
-     *             <p>For more information, see <a href="https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRole.html">AssumeRole</a> in the <i>Amazon Web Services Security Token Service API
-     *           Reference</i>.</p>
-     *          </note>
-     */
-    Policy?: string;
-    /**
-     * <p>The full POSIX identity, including user ID (<code>Uid</code>), group ID
-     *       (<code>Gid</code>), and any secondary groups IDs (<code>SecondaryGids</code>), that controls
-     *       your users' access to your Amazon EFS file systems. The POSIX permissions that are set on
-     *       files and directories in your file system determine the level of access your users get when
-     *       transferring files into and out of your Amazon EFS file systems.</p>
-     */
-    PosixProfile?: PosixProfile;
-    /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the IAM role that controls your users' access to your Amazon S3 bucket or EFS
-     *       file system. The policies attached to this role determine the level of access that you want to provide your users when transferring
-     *       files into and out of your Amazon S3 bucket or EFS file system. The IAM role should also contain a trust relationship that allows the
-     *       server to access your resources when servicing your users' transfer requests.</p>
-     */
-    Role: string | undefined;
-    /**
-     * <p>A system-assigned unique identifier for a server instance. This is the specific server that you added your user to.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>A unique identifier that is required to identify specific groups within your directory.
-     *     The users of the group that you associate have access to your Amazon S3 or Amazon EFS
-     *     resources over the enabled protocols using Amazon Web Services Transfer Family. If you know the group name,
-     *     you can view the SID values by running the following command using Windows PowerShell.</p>
-     *
-     *          <p>
-     *             <code>Get-ADGroup -Filter {samAccountName -like "<i>YourGroupName</i>*"} -Properties * | Select SamAccountName,ObjectSid</code>
-     *          </p>
-     *
-     *          <p>In that command, replace <i>YourGroupName</i> with the name of your Active Directory group.</p>
-     *
-     *          <p>The regex used to validate this parameter is a string of characters consisting of uppercase and lowercase alphanumeric characters with no spaces.
-     *     You can also include underscores or any of the following characters: =,.@:/-</p>
-     */
-    ExternalId: string | undefined;
-}
-export declare namespace CreateAccessRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CreateAccessRequest) => any;
-}
-export interface CreateAccessResponse {
-    /**
-     * <p>The ID of the server that the user is attached to.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>The external ID of the group whose users have access to your Amazon S3 or Amazon EFS
-     *       resources over the enabled protocols using Amazon Web Services Transfer Family.</p>
-     */
-    ExternalId: string | undefined;
-}
-export declare namespace CreateAccessResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CreateAccessResponse) => any;
-}
-/**
- * <p>This exception is thrown when an error occurs in the Amazon Web ServicesTransfer Family service.</p>
- */
-export interface InternalServiceError extends __SmithyException, $MetadataBearer {
-    name: "InternalServiceError";
-    $fault: "server";
-    Message: string | undefined;
-}
-export declare namespace InternalServiceError {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InternalServiceError) => any;
-}
-/**
- * <p>This exception is thrown when the client submits a malformed request.</p>
- */
-export interface InvalidRequestException extends __SmithyException, $MetadataBearer {
-    name: "InvalidRequestException";
-    $fault: "client";
-    Message: string | undefined;
-}
-export declare namespace InvalidRequestException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidRequestException) => any;
-}
-/**
- * <p>The requested resource does not exist.</p>
- */
-export interface ResourceExistsException extends __SmithyException, $MetadataBearer {
-    name: "ResourceExistsException";
-    $fault: "client";
-    Message: string | undefined;
-    Resource: string | undefined;
-    ResourceType: string | undefined;
-}
-export declare namespace ResourceExistsException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ResourceExistsException) => any;
-}
-/**
- * <p>This exception is thrown when a resource is not found by the Amazon Web ServicesTransfer Family
- *       service.</p>
- */
-export interface ResourceNotFoundException extends __SmithyException, $MetadataBearer {
-    name: "ResourceNotFoundException";
-    $fault: "client";
-    Message: string | undefined;
-    Resource: string | undefined;
-    ResourceType: string | undefined;
-}
-export declare namespace ResourceNotFoundException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ResourceNotFoundException) => any;
-}
-/**
- * <p>The request has failed because the Amazon Web ServicesTransfer Family service is not available.</p>
- */
-export interface ServiceUnavailableException extends __SmithyException, $MetadataBearer {
-    name: "ServiceUnavailableException";
-    $fault: "server";
-    Message?: string;
-}
-export declare namespace ServiceUnavailableException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ServiceUnavailableException) => any;
-}
-export declare enum Domain {
-    EFS = "EFS",
-    S3 = "S3"
-}
-/**
- * <p>The virtual private cloud (VPC) endpoint settings that are configured for your file
- *       transfer protocol-enabled server. With a VPC endpoint, you can restrict access to your server
- *       and resources only within your VPC. To control incoming internet traffic, invoke the
- *         <code>UpdateServer</code> API and attach an Elastic IP address to your server's
- *       endpoint.</p>
- *          <note>
- *             <p> After May 19, 2021, you won't be able to create a server using
- *           <code>EndpointType=VPC_ENDPOINT</code> in your Amazon Web Servicesaccount if your account hasn't already
- *       done so before May 19, 2021. If you have already created servers with
- *       <code>EndpointType=VPC_ENDPOINT</code> in your Amazon Web Servicesaccount on or before May 19, 2021,
- *         you will not be affected. After this date, use
- *         <code>EndpointType</code>=<code>VPC</code>.</p>
- *
- *             <p>For more information, see
- *         https://docs.aws.amazon.com/transfer/latest/userguide/create-server-in-vpc.html#deprecate-vpc-endpoint.</p>
- *          </note>
- */
-export interface EndpointDetails {
-    /**
-     * <p>A list of address allocation IDs that are required to attach an Elastic IP address to your
-     *       server's endpoint.</p>
-     *
-     *          <note>
-     *
-     *             <p>This property can only be set when <code>EndpointType</code> is set to <code>VPC</code>
-     *         and it is only valid in the <code>UpdateServer</code> API.</p>
-     *          </note>
-     */
-    AddressAllocationIds?: string[];
-    /**
-     * <p>A list of subnet IDs that are required to host your server endpoint in your VPC.</p>
-     *
-     *          <note>
-     *             <p>This property can only be set when <code>EndpointType</code> is set to
-     *         <code>VPC</code>.</p>
-     *          </note>
-     */
-    SubnetIds?: string[];
-    /**
-     * <p>The ID of the VPC endpoint.</p>
-     *
-     *          <note>
-     *             <p>This property can only be set when <code>EndpointType</code> is set to
-     *           <code>VPC_ENDPOINT</code>.</p>
-     *
-     *             <p>For more information, see
-     *         https://docs.aws.amazon.com/transfer/latest/userguide/create-server-in-vpc.html#deprecate-vpc-endpoint.</p>
-     *          </note>
-     */
-    VpcEndpointId?: string;
-    /**
-     * <p>The VPC ID of the VPC in which a server's endpoint will be hosted.</p>
-     *
-     *          <note>
-     *             <p>This property can only be set when <code>EndpointType</code> is set to
-     *         <code>VPC</code>.</p>
-     *          </note>
-     */
-    VpcId?: string;
-    /**
-     * <p>A list of security groups IDs that are available to attach to your server's
-     *       endpoint.</p>
-     *
-     *          <note>
-     *             <p>This property can only be set when <code>EndpointType</code> is set to
-     *         <code>VPC</code>.</p>
-     *
-     *             <p>You can edit the <code>SecurityGroupIds</code> property in the <a href="https://docs.aws.amazon.com/transfer/latest/userguide/API_UpdateServer.html">UpdateServer</a> API only if you are changing the <code>EndpointType</code> from
-     *           <code>PUBLIC</code> or <code>VPC_ENDPOINT</code> to <code>VPC</code>. To change security
-     *         groups associated with your server's VPC endpoint after creation, use the Amazon EC2
-     *           <a href="https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifyVpcEndpoint.html">ModifyVpcEndpoint</a> API.</p>
-     *          </note>
-     */
-    SecurityGroupIds?: string[];
-}
-export declare namespace EndpointDetails {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: EndpointDetails) => any;
-}
-export declare enum EndpointType {
-    PUBLIC = "PUBLIC",
-    VPC = "VPC",
-    VPC_ENDPOINT = "VPC_ENDPOINT"
-}
-/**
- * <p>Returns information related to the type of user authentication that is in use for a file
- *       transfer protocol-enabled server's users. A server can have only one method of
- *       authentication.</p>
- */
-export interface IdentityProviderDetails {
-    /**
-     * <p>Provides the location of the service endpoint used to authenticate users.</p>
-     */
-    Url?: string;
-    /**
-     * <p>Provides the type of <code>InvocationRole</code> used to authenticate the user
-     *       account.</p>
-     */
-    InvocationRole?: string;
-    /**
-     * <p>The identifier of the Amazon Web ServicesDirectory Service directory that you want to stop sharing.</p>
-     */
-    DirectoryId?: string;
-}
-export declare namespace IdentityProviderDetails {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: IdentityProviderDetails) => any;
-}
-export declare enum IdentityProviderType {
-    API_GATEWAY = "API_GATEWAY",
-    AWS_DIRECTORY_SERVICE = "AWS_DIRECTORY_SERVICE",
-    SERVICE_MANAGED = "SERVICE_MANAGED"
-}
-export declare enum Protocol {
-    FTP = "FTP",
-    FTPS = "FTPS",
-    SFTP = "SFTP"
-}
-/**
- * <p>Creates a key-value pair for a specific resource. Tags are metadata that you can use to
- *       search for and group a resource for various purposes. You can apply tags to servers, users,
- *       and roles. A tag key can take more than one value. For example, to group servers for
- *       accounting purposes, you might create a tag called <code>Group</code> and assign the values
- *         <code>Research</code> and <code>Accounting</code> to that group.</p>
- */
-export interface Tag {
-    /**
-     * <p>The name assigned to the tag that you create.</p>
-     */
-    Key: string | undefined;
-    /**
-     * <p>Contains one or more values that you assigned to the key name you create.</p>
-     */
-    Value: string | undefined;
-}
-export declare namespace Tag {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: Tag) => any;
-}
-/**
- * <p>Specifies the workflow ID for the workflow to assign and the execution role used for executing the workflow.</p>
- */
-export interface WorkflowDetail {
-    /**
-     * <p>A unique identifier for the workflow.</p>
-     */
-    WorkflowId: string | undefined;
-    /**
-     * <p>Includes the necessary permissions for S3, EFS, and Lambda operations that Transfer can
-     *       assume, so that all workflow steps can operate on the required resources</p>
-     */
-    ExecutionRole: string | undefined;
-}
-export declare namespace WorkflowDetail {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: WorkflowDetail) => any;
-}
-/**
- * <p>Container for the <code>WorkflowDetail</code> data type.
- *       It is used by actions that trigger a workflow to begin execution.</p>
- */
-export interface WorkflowDetails {
-    /**
-     * <p>A trigger that starts a workflow: the workflow begins to execute after a file is uploaded.</p>
-     */
-    OnUpload: WorkflowDetail[] | undefined;
-}
-export declare namespace WorkflowDetails {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: WorkflowDetails) => any;
-}
-export interface CreateServerRequest {
-    /**
-     * <p>The Amazon Resource Name (ARN) of the Amazon Web Services Certificate Manager (ACM) certificate. Required
-     *       when <code>Protocols</code> is set to <code>FTPS</code>.</p>
-     *
-     *          <p>To request a new public certificate, see <a href="https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-request-public.html">Request a public certificate</a>
-     *       in the <i> Amazon Web Services Certificate Manager User Guide</i>.</p>
-     *
-     *          <p>To import an existing certificate into ACM, see <a href="https://docs.aws.amazon.com/acm/latest/userguide/import-certificate.html">Importing certificates into ACM</a>
-     *       in the <i> Amazon Web Services Certificate Manager User Guide</i>.</p>
-     *
-     *          <p>To request a private certificate to use FTPS through private IP addresses, see <a href="https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-request-private.html">Request a
-     *         private certificate</a> in the <i> Amazon Web Services Certificate Manager User
-     *       Guide</i>.</p>
-     *
-     *          <p>Certificates with the following cryptographic algorithms and key sizes are
-     *       supported:</p>
-     *
-     *          <ul>
-     *             <li>
-     *                <p>2048-bit RSA (RSA_2048)</p>
-     *             </li>
-     *             <li>
-     *                <p>4096-bit RSA (RSA_4096)</p>
-     *             </li>
-     *             <li>
-     *                <p>Elliptic Prime Curve 256 bit (EC_prime256v1)</p>
-     *             </li>
-     *             <li>
-     *                <p>Elliptic Prime Curve 384 bit (EC_secp384r1)</p>
-     *             </li>
-     *             <li>
-     *                <p>Elliptic Prime Curve 521 bit (EC_secp521r1)</p>
-     *             </li>
-     *          </ul>
-     *
-     *          <note>
-     *             <p>The certificate must be a valid SSL/TLS X.509 version 3 certificate with FQDN or IP
-     *         address specified and information about the issuer.</p>
-     *          </note>
-     */
-    Certificate?: string;
-    /**
-     * <p>The domain of the storage system that is used for file transfers. There are two domains
-     *       available: Amazon Simple Storage Service (Amazon S3) and Amazon Elastic File System (Amazon EFS). The
-     *       default value is S3.</p>
-     *
-     *          <note>
-     *             <p>After the server is created, the domain cannot be changed.</p>
-     *          </note>
-     */
-    Domain?: Domain | string;
-    /**
-     * <p>The virtual private cloud (VPC) endpoint settings that are configured for your server.
-     *       When you host your endpoint within your VPC, you can make it accessible only to resources
-     *       within your VPC, or you can attach Elastic IP addresses and make it accessible to clients over
-     *       the internet. Your VPC's default security groups are automatically assigned to your
-     *       endpoint.</p>
-     */
-    EndpointDetails?: EndpointDetails;
-    /**
-     * <p>The type of endpoint that you want your server to use. You can choose to make your server's endpoint publicly accessible (PUBLIC)
-     *       or host it inside your VPC. With an endpoint that is hosted in a VPC, you can restrict access to your server and
-     *       resources only within your VPC or choose to make it internet facing by attaching Elastic IP addresses directly to it.</p>
-     *          <note>
-     *             <p> After May 19, 2021, you won't be able to create a server using
-     *           <code>EndpointType=VPC_ENDPOINT</code> in your Amazon Web Services account if your account hasn't already
-     *       done so before May 19, 2021. If you have already created servers with
-     *       <code>EndpointType=VPC_ENDPOINT</code> in your Amazon Web Services account on or before May 19, 2021,
-     *         you will not be affected. After this date, use
-     *         <code>EndpointType</code>=<code>VPC</code>.</p>
-     *
-     *             <p>For more information, see
-     *         https://docs.aws.amazon.com/transfer/latest/userguide/create-server-in-vpc.html#deprecate-vpc-endpoint.</p>
-     *             <p>It is recommended that you use <code>VPC</code> as the <code>EndpointType</code>. With
-     *         this endpoint type, you have the option to directly associate up to three Elastic IPv4
-     *         addresses (BYO IP included) with your server's endpoint and use VPC security groups to
-     *         restrict traffic by the client's public IP address. This is not possible with
-     *           <code>EndpointType</code> set to <code>VPC_ENDPOINT</code>.</p>
-     *          </note>
-     */
-    EndpointType?: EndpointType | string;
-    /**
-     * <p>The RSA private key as generated by the <code>ssh-keygen -N "" -m PEM -f
-     *         my-new-server-key</code> command.</p>
-     *
-     *          <important>
-     *             <p>If you aren't planning to migrate existing users from an existing SFTP-enabled
-     *         server to a new server, don't update the host key. Accidentally changing a
-     *         server's host key can be disruptive.</p>
-     *          </important>
-     *
-     *
-     *
-     *          <p>For more information, see <a href="https://docs.aws.amazon.com/transfer/latest/userguide/edit-server-config.html#configuring-servers-change-host-key">Change the host key for your SFTP-enabled server</a> in the <i>Amazon Web Services Transfer
-     *         Family User Guide</i>.</p>
-     */
-    HostKey?: string;
-    /**
-     * <p>Required when <code>IdentityProviderType</code> is set to
-     *         <code>AWS_DIRECTORY_SERVICE</code> or <code>API_GATEWAY</code>. Accepts an array containing
-     *       all of the information required to use a directory in <code>AWS_DIRECTORY_SERVICE</code> or
-     *       invoke a customer-supplied authentication API, including the API Gateway URL. Not required
-     *       when <code>IdentityProviderType</code> is set to <code>SERVICE_MANAGED</code>.</p>
-     */
-    IdentityProviderDetails?: IdentityProviderDetails;
-    /**
-     * <p>Specifies the mode of authentication for a server. The default value is
-     *         <code>SERVICE_MANAGED</code>, which allows you to store and access user credentials within
-     *       the Amazon Web Services Transfer Family service.</p>
-     *          <p>Use <code>AWS_DIRECTORY_SERVICE</code> to provide access to
-     *       Active Directory groups in Amazon Web Services Managed Active Directory or Microsoft Active Directory in your
-     *       on-premises environment or in Amazon Web Services using AD Connectors. This option also requires you to
-     *       provide a Directory ID using the <code>IdentityProviderDetails</code> parameter.</p>
-     *          <p>Use the <code>API_GATEWAY</code> value to integrate with an identity provider of your choosing. The
-     *       <code>API_GATEWAY</code> setting requires you to provide an API Gateway endpoint URL to call
-     *       for authentication using the <code>IdentityProviderDetails</code> parameter.</p>
-     */
-    IdentityProviderType?: IdentityProviderType | string;
-    /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the Amazon Web Services Identity and Access Management (IAM) role that allows a server to turn
-     *       on Amazon CloudWatch logging for Amazon S3 or Amazon EFS events. When set, user activity can be viewed in
-     *       your CloudWatch logs.</p>
-     */
-    LoggingRole?: string;
-    /**
-     * <p>Specifies the file transfer protocol or protocols over which your file transfer protocol
-     *       client can connect to your server's endpoint. The available protocols are:</p>
-     *
-     *          <ul>
-     *             <li>
-     *                <p>
-     *                   <code>SFTP</code> (Secure Shell (SSH) File Transfer Protocol): File transfer over
-     *           SSH</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <code>FTPS</code> (File Transfer Protocol Secure): File transfer with TLS
-     *           encryption</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <code>FTP</code> (File Transfer Protocol): Unencrypted file transfer</p>
-     *             </li>
-     *          </ul>
-     *
-     *          <note>
-     *             <p>If you select <code>FTPS</code>, you must choose a certificate stored in Amazon Web Services Certificate
-     *         Manager (ACM) which is used to identify your server when clients connect to it over
-     *         FTPS.</p>
-     *
-     *             <p>If <code>Protocol</code> includes either <code>FTP</code> or <code>FTPS</code>, then the
-     *           <code>EndpointType</code> must be <code>VPC</code> and the
-     *           <code>IdentityProviderType</code> must be <code>AWS_DIRECTORY_SERVICE</code> or <code>API_GATEWAY</code>.</p>
-     *
-     *             <p>If <code>Protocol</code> includes <code>FTP</code>, then
-     *           <code>AddressAllocationIds</code> cannot be associated.</p>
-     *
-     *             <p>If <code>Protocol</code> is set only to <code>SFTP</code>, the <code>EndpointType</code>
-     *         can be set to <code>PUBLIC</code> and the <code>IdentityProviderType</code> can be set to
-     *           <code>SERVICE_MANAGED</code>.</p>
-     *          </note>
-     */
-    Protocols?: (Protocol | string)[];
-    /**
-     * <p>Specifies the name of the security policy that is attached to the server.</p>
-     */
-    SecurityPolicyName?: string;
-    /**
-     * <p>Key-value pairs that can be used to group and search for servers.</p>
-     */
-    Tags?: Tag[];
-    /**
-     * <p>Specifies the workflow ID for the workflow to assign and the execution role used for executing the workflow.</p>
-     */
-    WorkflowDetails?: WorkflowDetails;
-}
-export declare namespace CreateServerRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CreateServerRequest) => any;
-}
-export interface CreateServerResponse {
-    /**
-     * <p>The service-assigned ID of the server that is created.</p>
-     */
-    ServerId: string | undefined;
-}
-export declare namespace CreateServerResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CreateServerResponse) => any;
-}
-/**
- * <p>The request was denied due to request throttling.</p>
- *
- *          <p> HTTP Status Code: 400</p>
- */
-export interface ThrottlingException extends __SmithyException, $MetadataBearer {
-    name: "ThrottlingException";
-    $fault: "client";
-    RetryAfterSeconds?: string;
-}
-export declare namespace ThrottlingException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ThrottlingException) => any;
-}
-export interface CreateUserRequest {
-    /**
-     * <p>The landing directory (folder) for a user when they log in to the server using the client.</p>
-     *          <p>A <code>HomeDirectory</code> example is <code>/bucket_name/home/mydirectory</code>.</p>
-     */
-    HomeDirectory?: string;
-    /**
-     * <p>The type of landing directory (folder) you want your users' home directory to be when they log into the server.
-     *     If you set it to <code>PATH</code>, the user will see the absolute Amazon S3 bucket or EFS paths as is in their file transfer protocol clients.
-     *     If you set it <code>LOGICAL</code>, you need to provide mappings in the <code>HomeDirectoryMappings</code> for how you want to make Amazon
-     *     S3 or EFS paths visible to your users.</p>
-     */
-    HomeDirectoryType?: HomeDirectoryType | string;
-    /**
-     * <p>Logical directory mappings that specify what Amazon S3 or Amazon EFS paths and keys should
-     *       be visible to your user and how you want to make them visible. You must specify the
-     *         <code>Entry</code> and <code>Target</code> pair, where <code>Entry</code> shows how the path
-     *       is made visible and <code>Target</code> is the actual Amazon S3 or Amazon EFS path. If you
-     *       only specify a target, it is displayed as is. You also must ensure that your Amazon Web Services Identity
-     *       and Access Management (IAM) role provides access to paths in <code>Target</code>. This value
-     *       can only be set when <code>HomeDirectoryType</code> is set to
-     *       <i>LOGICAL</i>.</p>
-     *
-     *          <p>The following is an <code>Entry</code> and <code>Target</code> pair example.</p>
-     *
-     *          <p>
-     *             <code>[ { "Entry": "your-personal-report.pdf", "Target":
-     *         "/bucket3/customized-reports/${transfer:UserName}.pdf" } ]</code>
-     *          </p>
-     *
-     *          <p>In most cases, you can use this value instead of the session policy to lock your user
-     *       down to the designated home directory ("<code>chroot</code>"). To do this, you can set
-     *         <code>Entry</code> to <code>/</code> and set <code>Target</code> to the HomeDirectory
-     *       parameter value.</p>
-     *          <p>The following is an <code>Entry</code> and <code>Target</code> pair example for <code>chroot</code>.</p>
-     *          <p>
-     *             <code>[ { "Entry:": "/", "Target": "/bucket_name/home/mydirectory" } ]</code>
-     *          </p>
-     *
-     *          <note>
-     *             <p>If the target of a logical directory entry does not exist in Amazon S3 or EFS, the entry is
-     *         ignored. As a workaround, you can use the Amazon S3 API or EFS API to create 0 byte objects as place
-     *         holders for your directory. If using the CLI, use the <code>s3api</code> or <code>efsapi</code> call instead of
-     *         <code>s3</code> or <code>efs</code> so you can use the put-object operation. For example, you use the
-     *         following: <code>aws s3api put-object --bucket bucketname --key path/to/folder/</code>. Make
-     *         sure that the end of the key name ends in a <code>/</code> for it to be considered a folder.</p>
-     *          </note>
-     */
-    HomeDirectoryMappings?: HomeDirectoryMapEntry[];
-    /**
-     * <p>A session policy for your user so that you can use the same IAM role across multiple users. This policy scopes down user
-     *      access to portions of their Amazon S3 bucket. Variables that you can use inside this policy include <code>${Transfer:UserName}</code>,
-     *      <code>${Transfer:HomeDirectory}</code>, and <code>${Transfer:HomeBucket}</code>.</p>
-     *
-     *          <note>
-     *             <p>This only applies when the domain of <code>ServerId</code> is S3. EFS does not use session policies.</p>
-     *             <p>For session policies, Amazon Web Services Transfer Family stores the policy as a JSON blob, instead
-     *         of the Amazon Resource Name (ARN) of the policy. You save the policy as a JSON blob and pass
-     *         it in the <code>Policy</code> argument.</p>
-     *
-     *
-     *
-     *             <p>For an example of a session policy, see <a href="https://docs.aws.amazon.com/transfer/latest/userguide/session-policy.html">Example session
-     *         policy</a>.</p>
-     *
-     *
-     *
-     *             <p>For more information, see <a href="https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRole.html">AssumeRole</a> in the <i>Amazon Web Services
-     *           Security Token Service API Reference</i>.</p>
-     *          </note>
-     */
-    Policy?: string;
-    /**
-     * <p>Specifies the full POSIX identity, including user ID (<code>Uid</code>), group ID
-     *         (<code>Gid</code>), and any secondary groups IDs (<code>SecondaryGids</code>), that controls
-     *       your users' access to your Amazon EFS file systems. The POSIX permissions that are set on
-     *       files and directories in Amazon EFS determine the level of access your users get when
-     *       transferring files into and out of your Amazon EFS file systems.</p>
-     */
-    PosixProfile?: PosixProfile;
-    /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the IAM role that controls your users' access to your Amazon S3 bucket or EFS
-     *       file system. The policies attached to this role determine the level of access that you want to provide your users when transferring
-     *       files into and out of your Amazon S3 bucket or EFS file system. The IAM role should also contain a trust relationship that allows the
-     *       server to access your resources when servicing your users' transfer requests.</p>
-     */
-    Role: string | undefined;
-    /**
-     * <p>A system-assigned unique identifier for a server instance. This is the specific server
-     *       that you added your user to.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>The public portion of the Secure Shell (SSH) key used to authenticate the user to the
-     *       server.</p>
-     */
-    SshPublicKeyBody?: string;
-    /**
-     * <p>Key-value pairs that can be used to group and search for users. Tags are metadata attached
-     *       to users for any purpose.</p>
-     */
-    Tags?: Tag[];
-    /**
-     * <p>A unique string that identifies a user and is associated with a <code>ServerId</code>. This user name must be a minimum of 3 and a maximum of 100 characters
-     *       long. The following are valid characters: a-z, A-Z, 0-9, underscore '_', hyphen
-     *       '-', period '.', and at sign '@'. The user name can't start
-     *       with a hyphen, period, or at sign.</p>
-     */
-    UserName: string | undefined;
-}
-export declare namespace CreateUserRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CreateUserRequest) => any;
-}
-export interface CreateUserResponse {
-    /**
-     * <p>The ID of the server that the user is attached to.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>A unique string that identifies a user account associated with a server.</p>
-     */
-    UserName: string | undefined;
-}
-export declare namespace CreateUserResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CreateUserResponse) => any;
-}
-/**
- * <p>Each step type has its own <code>StepDetails</code> structure.</p>
- */
-export interface CustomStepDetails {
-    /**
-     * <p>The name of the step, used as an identifier.</p>
-     */
-    Name?: string;
-    /**
-     * <p>The ARN for the lambda function that is being called.</p>
-     */
-    Target?: string;
-    /**
-     * <p>Timeout, in seconds, for the step.</p>
-     */
-    TimeoutSeconds?: number;
-}
-export declare namespace CustomStepDetails {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CustomStepDetails) => any;
-}
-/**
- * <p>The name of the step, used to identify the step that is being deleted.</p>
- */
-export interface DeleteStepDetails {
-    /**
-     * <p>The name of the step, used as an identifier.</p>
-     */
-    Name?: string;
-}
-export declare namespace DeleteStepDetails {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DeleteStepDetails) => any;
-}
-/**
- * <p>Specifies the key-value pair that are assigned to a file during the execution of a Tagging step.</p>
- */
-export interface S3Tag {
-    /**
-     * <p>The name assigned to the tag that you create.</p>
-     */
-    Key: string | undefined;
-    /**
-     * <p>The value that corresponds to the key.</p>
-     */
-    Value: string | undefined;
-}
-export declare namespace S3Tag {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: S3Tag) => any;
-}
-/**
- * <p>Each step type has its own <code>StepDetails</code> structure.</p>
- *          <p>The key/value pairs used to tag a file during the execution of a workflow step.</p>
- */
-export interface TagStepDetails {
-    /**
-     * <p>The name of the step, used as an identifier.</p>
-     */
-    Name?: string;
-    /**
-     * <p>Array that contains from 1 to 10 key/value pairs.</p>
-     */
-    Tags?: S3Tag[];
-}
-export declare namespace TagStepDetails {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: TagStepDetails) => any;
-}
-export declare enum WorkflowStepType {
-    COPY = "COPY",
-    CUSTOM = "CUSTOM",
-    DELETE = "DELETE",
-    TAG = "TAG"
-}
-/**
- * <p>The basic building block of a workflow.</p>
- */
-export interface WorkflowStep {
-    /**
-     * <p>
-     *         Currently, the following step types are supported.
-     *       </p>
-     *          <ul>
-     *             <li>
-     *                <p>
-     *                   <i>Copy</i>: copy the file to another location</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <i>Custom</i>: custom step with a lambda target</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <i>Delete</i>: delete the file</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <i>Tag</i>: add a tag to the file</p>
-     *             </li>
-     *          </ul>
-     */
-    Type?: WorkflowStepType | string;
-    /**
-     * <p>Details for a step that performs a file copy.</p>
-     *          <p>
-     *         Consists of the following values:
-     *       </p>
-     *          <ul>
-     *             <li>
-     *                <p>A description</p>
-     *             </li>
-     *             <li>
-     *                <p>An S3 or EFS location for the destination of the file copy.</p>
-     *             </li>
-     *             <li>
-     *                <p>A flag that indicates whether or not to overwrite an existing file of the same name.
-     *         The default is <code>FALSE</code>.</p>
-     *             </li>
-     *          </ul>
-     */
-    CopyStepDetails?: CopyStepDetails;
-    /**
-     * <p>Details for a step that invokes a lambda function.</p>
-     *          <p>
-     *         Consists of the lambda function name, target, and timeout (in seconds).
-     *       </p>
-     */
-    CustomStepDetails?: CustomStepDetails;
-    /**
-     * <p>You need to specify the name of the file to be deleted.</p>
-     */
-    DeleteStepDetails?: DeleteStepDetails;
-    /**
-     * <p>Details for a step that creates one or more tags.</p>
-     *          <p>You specify one or more tags: each tag contains a key/value pair.</p>
-     */
-    TagStepDetails?: TagStepDetails;
-}
-export declare namespace WorkflowStep {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: WorkflowStep) => any;
-}
-export interface CreateWorkflowRequest {
-    /**
-     * <p>A textual description for the workflow.</p>
-     */
-    Description?: string;
-    /**
-     * <p>Specifies the details for the steps that are in the specified workflow.</p>
-     *          <p>
-     *       The <code>TYPE</code> specifies which of the following actions is being taken for this step.
-     *     </p>
-     *          <ul>
-     *             <li>
-     *                <p>
-     *                   <i>Copy</i>: copy the file to another location</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <i>Custom</i>: custom step with a lambda target</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <i>Delete</i>: delete the file</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <i>Tag</i>: add a tag to the file</p>
-     *             </li>
-     *          </ul>
-     *          <p>
-     *       For file location, you specify either the S3 bucket and key, or the EFS filesystem ID and path.
-     *     </p>
-     */
-    Steps: WorkflowStep[] | undefined;
-    /**
-     * <p>Specifies the steps (actions) to take if any errors are encountered during execution of the workflow.</p>
-     */
-    OnExceptionSteps?: WorkflowStep[];
-    /**
-     * <p>Key-value pairs that can be used to group and search for workflows. Tags are metadata attached
-     *       to workflows for any purpose.</p>
-     */
-    Tags?: Tag[];
-}
-export declare namespace CreateWorkflowRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CreateWorkflowRequest) => any;
-}
-export interface CreateWorkflowResponse {
-    /**
-     * <p>A unique identifier for the workflow.</p>
-     */
-    WorkflowId: string | undefined;
-}
-export declare namespace CreateWorkflowResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: CreateWorkflowResponse) => any;
-}
-export declare enum CustomStepStatus {
-    FAILURE = "FAILURE",
-    SUCCESS = "SUCCESS"
-}
-export interface DeleteAccessRequest {
-    /**
-     * <p>A system-assigned unique identifier for a server that has this user assigned.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>A unique identifier that is required to identify specific groups within your directory.
-     *     The users of the group that you associate have access to your Amazon S3 or Amazon EFS
-     *     resources over the enabled protocols using Amazon Web Services Transfer Family. If you know the group name,
-     *     you can view the SID values by running the following command using Windows PowerShell.</p>
-     *
-     *          <p>
-     *             <code>Get-ADGroup -Filter {samAccountName -like "<i>YourGroupName</i>*"} -Properties * | Select SamAccountName,ObjectSid</code>
-     *          </p>
-     *
-     *          <p>In that command, replace <i>YourGroupName</i> with the name of your Active Directory group.</p>
-     *
-     *          <p>The regex used to validate this parameter is a string of characters consisting of uppercase and lowercase alphanumeric characters with no spaces.
-     *     You can also include underscores or any of the following characters: =,.@:/-</p>
-     */
-    ExternalId: string | undefined;
-}
-export declare namespace DeleteAccessRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DeleteAccessRequest) => any;
-}
-export interface DeleteServerRequest {
-    /**
-     * <p>A unique system-assigned identifier for a server instance.</p>
-     */
-    ServerId: string | undefined;
-}
-export declare namespace DeleteServerRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DeleteServerRequest) => any;
-}
-export interface DeleteSshPublicKeyRequest {
-    /**
-     * <p>A system-assigned unique identifier for a file transfer protocol-enabled server instance
-     *       that has the user assigned to it.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>A unique identifier used to reference your user's specific SSH key.</p>
-     */
-    SshPublicKeyId: string | undefined;
-    /**
-     * <p>A unique string that identifies a user whose public key is being deleted.</p>
-     */
-    UserName: string | undefined;
-}
-export declare namespace DeleteSshPublicKeyRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DeleteSshPublicKeyRequest) => any;
-}
-export interface DeleteUserRequest {
-    /**
-     * <p>A system-assigned unique identifier for a server instance that has the user assigned to
-     *       it.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>A unique string that identifies a user that is being deleted from a server.</p>
-     */
-    UserName: string | undefined;
-}
-export declare namespace DeleteUserRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DeleteUserRequest) => any;
-}
-export interface DeleteWorkflowRequest {
-    /**
-     * <p>A unique identifier for the workflow.</p>
-     */
-    WorkflowId: string | undefined;
-}
-export declare namespace DeleteWorkflowRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DeleteWorkflowRequest) => any;
-}
-export interface DescribeAccessRequest {
-    /**
-     * <p>A system-assigned unique identifier for a server that has this access assigned.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>A unique identifier that is required to identify specific groups within your directory.
-     *     The users of the group that you associate have access to your Amazon S3 or Amazon EFS
-     *     resources over the enabled protocols using Amazon Web Services Transfer Family. If you know the group name,
-     *     you can view the SID values by running the following command using Windows PowerShell.</p>
-     *
-     *          <p>
-     *             <code>Get-ADGroup -Filter {samAccountName -like "<i>YourGroupName</i>*"} -Properties * | Select SamAccountName,ObjectSid</code>
-     *          </p>
-     *
-     *          <p>In that command, replace <i>YourGroupName</i> with the name of your Active Directory group.</p>
-     *
-     *          <p>The regex used to validate this parameter is a string of characters consisting of uppercase and lowercase alphanumeric characters with no spaces.
-     *     You can also include underscores or any of the following characters: =,.@:/-</p>
-     */
-    ExternalId: string | undefined;
-}
-export declare namespace DescribeAccessRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeAccessRequest) => any;
-}
-/**
- * <p>Describes the properties of the access that was specified.</p>
- */
-export interface DescribedAccess {
-    /**
-     * <p>The landing directory (folder) for a user when they log in to the server using the client.</p>
-     *          <p>A <code>HomeDirectory</code> example is <code>/bucket_name/home/mydirectory</code>.</p>
-     */
-    HomeDirectory?: string;
-    /**
-     * <p>Logical directory mappings that specify what Amazon S3 or Amazon EFS paths and keys should
-     *       be visible to your user and how you want to make them visible. You must specify the
-     *         <code>Entry</code> and <code>Target</code> pair, where <code>Entry</code> shows how the path
-     *       is made visible and <code>Target</code> is the actual Amazon S3 or Amazon EFS path. If you
-     *       only specify a target, it is displayed as is. You also must ensure that your Amazon Web Services Identity
-     *       and Access Management (IAM) role provides access to paths in <code>Target</code>. This value
-     *       can only be set when <code>HomeDirectoryType</code> is set to
-     *       <i>LOGICAL</i>.</p>
-     *
-     *          <p>In most cases, you can use this value instead of the session policy to lock down the
-     *       associated access to the designated home directory ("<code>chroot</code>"). To do this, you
-     *       can set <code>Entry</code> to '/' and set <code>Target</code> to the
-     *         <code>HomeDirectory</code> parameter value.</p>
-     */
-    HomeDirectoryMappings?: HomeDirectoryMapEntry[];
-    /**
-     * <p>The type of landing directory (folder) you want your users' home directory to be when they log into the server.
-     *     If you set it to <code>PATH</code>, the user will see the absolute Amazon S3 bucket or EFS paths as is in their file transfer protocol clients.
-     *     If you set it <code>LOGICAL</code>, you need to provide mappings in the <code>HomeDirectoryMappings</code> for how you want to make Amazon
-     *     S3 or EFS paths visible to your users.</p>
-     */
-    HomeDirectoryType?: HomeDirectoryType | string;
-    /**
-     * <p>A session policy for your user so that you can use the same IAM role across multiple users. This policy scopes down user
-     *      access to portions of their Amazon S3 bucket. Variables that you can use inside this policy include <code>${Transfer:UserName}</code>,
-     *      <code>${Transfer:HomeDirectory}</code>, and <code>${Transfer:HomeBucket}</code>.</p>
-     */
-    Policy?: string;
-    /**
-     * <p>The full POSIX identity, including user ID (<code>Uid</code>), group ID
-     *       (<code>Gid</code>), and any secondary groups IDs (<code>SecondaryGids</code>), that controls
-     *       your users' access to your Amazon EFS file systems. The POSIX permissions that are set on
-     *       files and directories in your file system determine the level of access your users get when
-     *       transferring files into and out of your Amazon EFS file systems.</p>
-     */
-    PosixProfile?: PosixProfile;
-    /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the IAM role that controls your users' access to your Amazon S3 bucket or EFS
-     *       file system. The policies attached to this role determine the level of access that you want to provide your users when transferring
-     *       files into and out of your Amazon S3 bucket or EFS file system. The IAM role should also contain a trust relationship that allows the
-     *       server to access your resources when servicing your users' transfer requests.</p>
-     */
-    Role?: string;
-    /**
-     * <p>A unique identifier that is required to identify specific groups within your directory.
-     *     The users of the group that you associate have access to your Amazon S3 or Amazon EFS
-     *     resources over the enabled protocols using Amazon Web Services Transfer Family. If you know the group name,
-     *     you can view the SID values by running the following command using Windows PowerShell.</p>
-     *
-     *          <p>
-     *             <code>Get-ADGroup -Filter {samAccountName -like "<i>YourGroupName</i>*"} -Properties * | Select SamAccountName,ObjectSid</code>
-     *          </p>
-     *
-     *          <p>In that command, replace <i>YourGroupName</i> with the name of your Active Directory group.</p>
-     *
-     *          <p>The regex used to validate this parameter is a string of characters consisting of uppercase and lowercase alphanumeric characters with no spaces.
-     *     You can also include underscores or any of the following characters: =,.@:/-</p>
-     */
-    ExternalId?: string;
-}
-export declare namespace DescribedAccess {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribedAccess) => any;
-}
-export interface DescribeAccessResponse {
-    /**
-     * <p>A system-assigned unique identifier for a server that has this access assigned.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>The external ID of the server that the access is attached to.</p>
-     */
-    Access: DescribedAccess | undefined;
-}
-export declare namespace DescribeAccessResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeAccessResponse) => any;
-}
-/**
- * <p>Specifies the details for the file location for the file being used in the workflow. Only applicable if you are using S3 storage.</p>
- *          <p>
- *       You need to provide the bucket and key.
- *       The key can represent either a path or a file.
- *       This is determined by whether or not you end the key value with the forward slash (/) character.
- *       If the final character is "/", then your file is copied to the folder, and its name does not change.
- *       If, rather, the final character is alphanumeric, your uploaded file is renamed to the path value. In this case, if a file with that name already exists, it is overwritten.
- *     </p>
- *          <p>For example, if your path is <code>shared-files/bob/</code>, your uploaded files are copied to the <code>shared-files/bob/</code>, folder.
- *       If your path is <code>shared-files/today</code>, each uploaded file is copied to the <code>shared-files</code> folder and named <code>today</code>:
- *       each upload overwrites the previous version of the <i>bob</i> file.</p>
- */
-export interface S3FileLocation {
-    /**
-     * <p>Specifies the S3 bucket that contains the file being used.</p>
-     */
-    Bucket?: string;
-    /**
-     * <p>The name assigned to the file when it was created in S3. You use the object key to retrieve the object.</p>
-     */
-    Key?: string;
-    /**
-     * <p>Specifies the file version.</p>
-     */
-    VersionId?: string;
-    /**
-     * <p>The entity tag is a hash of the object. The ETag reflects changes only to the contents of an object, not its metadata.</p>
-     */
-    Etag?: string;
-}
-export declare namespace S3FileLocation {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: S3FileLocation) => any;
-}
-/**
- * <p>Specifies the Amazon S3 or EFS file details to be used in the step.</p>
- */
-export interface FileLocation {
-    /**
-     * <p>Specifies the S3 details for the file being used, such as bucket, Etag, and so forth.</p>
-     */
-    S3FileLocation?: S3FileLocation;
-    /**
-     * <p>Specifies the Amazon EFS ID and the path for the file being used.</p>
-     */
-    EfsFileLocation?: EfsFileLocation;
-}
-export declare namespace FileLocation {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: FileLocation) => any;
-}
-/**
- * <p>Consists of the logging role and the log group name.</p>
- */
-export interface LoggingConfiguration {
-    /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the Amazon Web Services Identity and Access Management (IAM) role that allows a server to turn
-     *       on Amazon CloudWatch logging for Amazon S3 or Amazon EFS events. When set, user activity can be viewed in
-     *       your CloudWatch logs.</p>
-     */
-    LoggingRole?: string;
-    /**
-     * <p>The name of the CloudWatch logging group for the Amazon Web Services Transfer server to which this workflow belongs.</p>
-     */
-    LogGroupName?: string;
-}
-export declare namespace LoggingConfiguration {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: LoggingConfiguration) => any;
-}
-export declare enum ExecutionErrorType {
-    PERMISSION_DENIED = "PERMISSION_DENIED"
-}
-/**
- * <p>Specifies the error message and type, for an error that occurs during the execution of the workflow.</p>
- */
-export interface ExecutionError {
-    /**
-     * <p>Specifies the error type: currently, the only valid value is <code>PERMISSION_DENIED</code>, which occurs
-     *     if your policy does not contain the correct permissions to complete one or more of the steps in the workflow.</p>
-     */
-    Type: ExecutionErrorType | string | undefined;
-    /**
-     * <p>Specifies the descriptive message that corresponds to the <code>ErrorType</code>.</p>
-     */
-    Message: string | undefined;
-}
-export declare namespace ExecutionError {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ExecutionError) => any;
-}
-/**
- * <p>Specifies the following details for the step: error (if any), outputs (if any), and the step type.</p>
- */
-export interface ExecutionStepResult {
-    /**
-     * <p>One of the available step types.</p>
-     *          <ul>
-     *             <li>
-     *                <p>
-     *                   <i>Copy</i>: copy the file to another location</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <i>Custom</i>: custom step with a lambda target</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <i>Delete</i>: delete the file</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <i>Tag</i>: add a tag to the file</p>
-     *             </li>
-     *          </ul>
-     */
-    StepType?: WorkflowStepType | string;
-    /**
-     * <p>The values for the key/value pair applied as a tag to the file. Only applicable if the step type is <code>TAG</code>.</p>
-     */
-    Outputs?: string;
-    /**
-     * <p>Specifies the details for an error, if it occurred during execution of the specified workfow step.</p>
-     */
-    Error?: ExecutionError;
-}
-export declare namespace ExecutionStepResult {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ExecutionStepResult) => any;
-}
-/**
- * <p>Specifies the steps in the workflow, as well as the steps to execute in case of any errors during workflow execution.</p>
- */
-export interface ExecutionResults {
-    /**
-     * <p>Specifies the details for the steps that are in the specified workflow.</p>
-     */
-    Steps?: ExecutionStepResult[];
-    /**
-     * <p>Specifies the steps (actions) to take if any errors are encountered during execution of the workflow.</p>
-     */
-    OnExceptionSteps?: ExecutionStepResult[];
-}
-export declare namespace ExecutionResults {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ExecutionResults) => any;
-}
-/**
- * <p>Specifies the user name, server ID, and session ID for a workflow.</p>
- */
-export interface UserDetails {
-    /**
-     * <p>A unique string that identifies a user account associated with a server.</p>
-     */
-    UserName: string | undefined;
-    /**
-     * <p>The system-assigned unique identifier for a Transfer server instance. </p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>The system-assigned unique identifier for a session that corresponds to the workflow.</p>
-     */
-    SessionId?: string;
-}
-export declare namespace UserDetails {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UserDetails) => any;
-}
-/**
- * <p>A container object for the session details associated with a workflow.</p>
- */
-export interface ServiceMetadata {
-    /**
-     * <p>The Server ID (<code>ServerId</code>), Session ID (<code>SessionId</code>) and user (<code>UserName</code>) make up the <code>UserDetails</code>.</p>
-     */
-    UserDetails: UserDetails | undefined;
-}
-export declare namespace ServiceMetadata {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ServiceMetadata) => any;
-}
-export declare enum ExecutionStatus {
-    COMPLETED = "COMPLETED",
-    EXCEPTION = "EXCEPTION",
-    HANDLING_EXCEPTION = "HANDLING_EXCEPTION",
-    IN_PROGRESS = "IN_PROGRESS"
-}
-/**
- * <p>The details for an execution object.</p>
- */
-export interface DescribedExecution {
-    /**
-     * <p>A unique identifier for the execution of a workflow.</p>
-     */
-    ExecutionId?: string;
-    /**
-     * <p>A structure that describes the Amazon S3 or EFS file location.
-     *       This is the file location when the execution begins: if the file is being copied,
-     *     this is the initial (as opposed to destination) file location.</p>
-     */
-    InitialFileLocation?: FileLocation;
-    /**
-     * <p>A container object for the session details associated with a workflow.</p>
-     */
-    ServiceMetadata?: ServiceMetadata;
-    /**
-     * <p>The IAM role associated with the execution.</p>
-     */
-    ExecutionRole?: string;
-    /**
-     * <p>The IAM logging role associated with the execution.</p>
-     */
-    LoggingConfiguration?: LoggingConfiguration;
-    /**
-     * <p>The full POSIX identity, including user ID (<code>Uid</code>), group ID
-     *       (<code>Gid</code>), and any secondary groups IDs (<code>SecondaryGids</code>), that controls
-     *       your users' access to your Amazon EFS file systems. The POSIX permissions that are set on
-     *       files and directories in your file system determine the level of access your users get when
-     *       transferring files into and out of your Amazon EFS file systems.</p>
-     */
-    PosixProfile?: PosixProfile;
-    /**
-     * <p>The status is one of the execution. Can be in progress, completed, exception encountered, or handling the exception.
-     *       </p>
-     */
-    Status?: ExecutionStatus | string;
-    /**
-     * <p>A structure that describes the execution results. This includes a list of the steps along with the details of each step,
-     *     error type and message (if any), and the <code>OnExceptionSteps</code> structure.</p>
-     */
-    Results?: ExecutionResults;
-}
-export declare namespace DescribedExecution {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribedExecution) => any;
-}
-/**
- * <p>Describes the properties of a security policy that was specified. For more information
- *       about security policies, see <a href="https://docs.aws.amazon.com/transfer/latest/userguide/security-policies.html">Working with security
- *         policies</a>.</p>
- */
-export interface DescribedSecurityPolicy {
-    /**
-     * <p>Specifies whether this policy enables Federal Information Processing Standards
-     *       (FIPS).</p>
-     */
-    Fips?: boolean;
-    /**
-     * <p>Specifies the name of the security policy that is attached to the server.</p>
-     */
-    SecurityPolicyName: string | undefined;
-    /**
-     * <p>Specifies the enabled Secure Shell (SSH) cipher encryption algorithms in the security
-     *       policy that is attached to the server.</p>
-     */
-    SshCiphers?: string[];
-    /**
-     * <p>Specifies the enabled SSH key exchange (KEX) encryption algorithms in the security policy
-     *       that is attached to the server.</p>
-     */
-    SshKexs?: string[];
-    /**
-     * <p>Specifies the enabled SSH message authentication code (MAC) encryption algorithms in the
-     *       security policy that is attached to the server.</p>
-     */
-    SshMacs?: string[];
-    /**
-     * <p>Specifies the enabled Transport Layer Security (TLS) cipher encryption algorithms in the
-     *       security policy that is attached to the server.</p>
-     */
-    TlsCiphers?: string[];
-}
-export declare namespace DescribedSecurityPolicy {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribedSecurityPolicy) => any;
-}
-/**
- * <p>
- *       The protocol settings that are configured for your server.
- *     </p>
- *          <note>
- *             <p>
- *         This type is only valid in the <code>UpdateServer</code> API.
- *       </p>
- *          </note>
- */
-export interface ProtocolDetails {
-    /**
-     * <p>
-     *       Indicates passive mode, for FTP and FTPS protocols.
-     *       Enter a single dotted-quad IPv4 address, such as the external IP address of a firewall, router, or load balancer.
-     *       For example:
-     *     </p>
-     *          <p>
-     *             <code>
-     *         aws transfer update-server --protocol-details PassiveIp=<i>0.0.0.0</i>
-     *             </code>
-     *          </p>
-     *          <p>Replace <code>
-     *                <i>0.0.0.0</i>
-     *             </code> in the example above with the actual IP address you want to use.</p>
-     *          <note>
-     *             <p>
-     *         If you change the <code>PassiveIp</code> value, you must stop and then restart your Transfer server for the change to take effect. For details on using Passive IP (PASV) in a NAT environment, see <a href="http://aws.amazon.com/blogs/storage/configuring-your-ftps-server-behind-a-firewall-or-nat-with-aws-transfer-family/">Configuring your FTPS server behind a firewall or NAT with Amazon Web Services Transfer Family</a>.
-     *       </p>
-     *          </note>
-     */
-    PassiveIp?: string;
-}
-export declare namespace ProtocolDetails {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ProtocolDetails) => any;
-}
-export declare enum State {
-    OFFLINE = "OFFLINE",
-    ONLINE = "ONLINE",
-    STARTING = "STARTING",
-    START_FAILED = "START_FAILED",
-    STOPPING = "STOPPING",
-    STOP_FAILED = "STOP_FAILED"
-}
-/**
- * <p>Describes the properties of a file transfer protocol-enabled server that was
- *       specified.</p>
- */
-export interface DescribedServer {
-    /**
-     * <p>Specifies the unique Amazon Resource Name (ARN) of the server.</p>
-     */
-    Arn: string | undefined;
-    /**
-     * <p>Specifies the ARN of the Amazon Web ServicesCertificate Manager (ACM) certificate. Required when
-     *         <code>Protocols</code> is set to <code>FTPS</code>.</p>
-     */
-    Certificate?: string;
-    /**
-     * <p>
-     *       The protocol settings that are configured for your server.
-     *     </p>
-     *          <p>
-     *       Use the <code>PassiveIp</code> parameter to indicate passive mode.
-     *       Enter a single dotted-quad IPv4 address, such as the external IP address of a firewall, router, or load balancer.
-     *     </p>
-     */
-    ProtocolDetails?: ProtocolDetails;
-    /**
-     * <p>Specifies the domain of the storage system that is used for file transfers.</p>
-     */
-    Domain?: Domain | string;
-    /**
-     * <p>The virtual private cloud (VPC) endpoint settings that are configured for your server.
-     *       When you host your endpoint within your VPC, you can make it accessible only to resources
-     *       within your VPC, or you can attach Elastic IP addresses and make it accessible to clients over
-     *       the internet. Your VPC's default security groups are automatically assigned to your
-     *       endpoint.</p>
-     */
-    EndpointDetails?: EndpointDetails;
-    /**
-     * <p>Defines the type of endpoint that your server is connected to. If your server is connected
-     *       to a VPC endpoint, your server isn't accessible over the public internet.</p>
-     */
-    EndpointType?: EndpointType | string;
-    /**
-     * <p>Specifies the Base64-encoded SHA256 fingerprint of the server's host key. This value
-     *       is equivalent to the output of the <code>ssh-keygen -l -f my-new-server-key</code>
-     *       command.</p>
-     */
-    HostKeyFingerprint?: string;
-    /**
-     * <p>Specifies information to call a customer-supplied authentication API. This field is not
-     *       populated when the <code>IdentityProviderType</code> of a server is
-     *       <code>AWS_DIRECTORY_SERVICE</code> or <code>SERVICE_MANAGED</code>.</p>
-     */
-    IdentityProviderDetails?: IdentityProviderDetails;
-    /**
-     * <p>Specifies the mode of authentication for a server. The default value is
-     *         <code>SERVICE_MANAGED</code>, which allows you to store and access user credentials within
-     *       the Amazon Web Services Transfer Family service.</p>
-     *          <p>Use <code>AWS_DIRECTORY_SERVICE</code> to provide access to
-     *       Active Directory groups in Amazon Web Services Managed Active Directory or Microsoft Active Directory in your
-     *       on-premises environment or in Amazon Web Services using AD Connectors. This option also requires you to
-     *       provide a Directory ID using the <code>IdentityProviderDetails</code> parameter.</p>
-     *          <p>Use the <code>API_GATEWAY</code> value to integrate with an identity provider of your choosing. The
-     *       <code>API_GATEWAY</code> setting requires you to provide an API Gateway endpoint URL to call
-     *       for authentication using the <code>IdentityProviderDetails</code> parameter.</p>
-     */
-    IdentityProviderType?: IdentityProviderType | string;
-    /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the Amazon Web Services Identity and Access Management (IAM) role that allows a server to turn
-     *       on Amazon CloudWatch logging for Amazon S3 or Amazon EFS events. When set, user activity can be viewed in
-     *       your CloudWatch logs.</p>
-     */
-    LoggingRole?: string;
-    /**
-     * <p>Specifies the file transfer protocol or protocols over which your file transfer protocol
-     *       client can connect to your server's endpoint. The available protocols are:</p>
-     *
-     *          <ul>
-     *             <li>
-     *                <p>
-     *                   <code>SFTP</code> (Secure Shell (SSH) File Transfer Protocol): File transfer over
-     *           SSH</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <code>FTPS</code> (File Transfer Protocol Secure): File transfer with TLS
-     *           encryption</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <code>FTP</code> (File Transfer Protocol): Unencrypted file transfer</p>
-     *             </li>
-     *          </ul>
-     */
-    Protocols?: (Protocol | string)[];
-    /**
-     * <p>Specifies the name of the security policy that is attached to the server.</p>
-     */
-    SecurityPolicyName?: string;
-    /**
-     * <p>Specifies the unique system-assigned identifier for a server that you instantiate.</p>
-     */
-    ServerId?: string;
-    /**
-     * <p>Specifies the condition of a server for the server that was described. A value of
-     *         <code>ONLINE</code> indicates that the server can accept jobs and transfer files. A
-     *         <code>State</code> value of <code>OFFLINE</code> means that the server cannot perform file
-     *       transfer operations.</p>
-     *
-     *          <p>The states of <code>STARTING</code> and <code>STOPPING</code> indicate that the server is
-     *       in an intermediate state, either not fully able to respond, or not fully offline. The values
-     *       of <code>START_FAILED</code> or <code>STOP_FAILED</code> can indicate an error
-     *       condition.</p>
-     */
-    State?: State | string;
-    /**
-     * <p>Specifies the key-value pairs that you can use to search for and group servers that were
-     *       assigned to the server that was described.</p>
-     */
-    Tags?: Tag[];
-    /**
-     * <p>Specifies the number of users that are assigned to a server you specified with the
-     *         <code>ServerId</code>.</p>
-     */
-    UserCount?: number;
-    /**
-     * <p>Specifies the workflow ID for the workflow to assign and the execution role used for executing the workflow.</p>
-     */
-    WorkflowDetails?: WorkflowDetails;
-}
-export declare namespace DescribedServer {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribedServer) => any;
-}
-/**
- * <p>Provides information about the public Secure Shell (SSH) key that is associated with a
- *       user account for the specific file transfer protocol-enabled server (as identified by
- *         <code>ServerId</code>). The information returned includes the date the key was imported, the
- *       public key contents, and the public key ID. A user can store more than one SSH public key
- *       associated with their user name on a specific server.</p>
- */
-export interface SshPublicKey {
-    /**
-     * <p>Specifies the date that the public key was added to the user account.</p>
-     */
-    DateImported: Date | undefined;
-    /**
-     * <p>Specifies the content of the SSH public key as specified by the
-     *       <code>PublicKeyId</code>.</p>
-     */
-    SshPublicKeyBody: string | undefined;
-    /**
-     * <p>Specifies the <code>SshPublicKeyId</code> parameter contains the identifier of the public
-     *       key.</p>
-     */
-    SshPublicKeyId: string | undefined;
-}
-export declare namespace SshPublicKey {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: SshPublicKey) => any;
-}
-/**
- * <p>Describes the properties of a user that was specified.</p>
- */
-export interface DescribedUser {
-    /**
-     * <p>Specifies the unique Amazon Resource Name (ARN) for the user that was requested to be
-     *       described.</p>
-     */
-    Arn: string | undefined;
-    /**
-     * <p>The landing directory (folder) for a user when they log in to the server using the client.</p>
-     *          <p>A <code>HomeDirectory</code> example is <code>/bucket_name/home/mydirectory</code>.</p>
-     */
-    HomeDirectory?: string;
-    /**
-     * <p>Logical directory mappings that specify what Amazon S3 or Amazon EFS paths and keys should
-     *       be visible to your user and how you want to make them visible. You must specify the
-     *         <code>Entry</code> and <code>Target</code> pair, where <code>Entry</code> shows how the path
-     *       is made visible and <code>Target</code> is the actual Amazon S3 or Amazon EFS path. If you
-     *       only specify a target, it is displayed as is. You also must ensure that your Amazon Web Services Identity
-     *       and Access Management (IAM) role provides access to paths in <code>Target</code>. This value
-     *       can only be set when <code>HomeDirectoryType</code> is set to
-     *       <i>LOGICAL</i>.</p>
-     *
-     *          <p>In most cases, you can use this value instead of the session policy to lock your user
-     *       down to the designated home directory ("<code>chroot</code>"). To do this, you can set
-     *         <code>Entry</code> to '/' and set <code>Target</code> to the HomeDirectory
-     *       parameter value.</p>
-     */
-    HomeDirectoryMappings?: HomeDirectoryMapEntry[];
-    /**
-     * <p>The type of landing directory (folder) you want your users' home directory to be when they log into the server.
-     *     If you set it to <code>PATH</code>, the user will see the absolute Amazon S3 bucket or EFS paths as is in their file transfer protocol clients.
-     *     If you set it <code>LOGICAL</code>, you need to provide mappings in the <code>HomeDirectoryMappings</code> for how you want to make Amazon
-     *     S3 or EFS paths visible to your users.</p>
-     */
-    HomeDirectoryType?: HomeDirectoryType | string;
-    /**
-     * <p>A session policy for your user so that you can use the same IAM role across multiple users. This policy scopes down user
-     *      access to portions of their Amazon S3 bucket. Variables that you can use inside this policy include <code>${Transfer:UserName}</code>,
-     *      <code>${Transfer:HomeDirectory}</code>, and <code>${Transfer:HomeBucket}</code>.</p>
-     */
-    Policy?: string;
-    /**
-     * <p>Specifies the full POSIX identity, including user ID (<code>Uid</code>), group ID
-     *         (<code>Gid</code>), and any secondary groups IDs (<code>SecondaryGids</code>), that controls
-     *       your users' access to your Amazon Elastic File System (Amazon EFS) file systems. The POSIX
-     *       permissions that are set on files and directories in your file system determine the level of
-     *       access your users get when transferring files into and out of your Amazon EFS file
-     *       systems.</p>
-     */
-    PosixProfile?: PosixProfile;
-    /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the IAM role that controls your users' access to your Amazon S3 bucket or EFS
-     *       file system. The policies attached to this role determine the level of access that you want to provide your users when transferring
-     *       files into and out of your Amazon S3 bucket or EFS file system. The IAM role should also contain a trust relationship that allows the
-     *       server to access your resources when servicing your users' transfer requests.</p>
-     */
-    Role?: string;
-    /**
-     * <p>Specifies the public key portion of the Secure Shell (SSH) keys stored for the described
-     *       user.</p>
-     */
-    SshPublicKeys?: SshPublicKey[];
-    /**
-     * <p>Specifies the key-value pairs for the user requested. Tag can be used to search for and
-     *       group users for a variety of purposes.</p>
-     */
-    Tags?: Tag[];
-    /**
-     * <p>Specifies the name of the user that was requested to be described. User names are used for
-     *       authentication purposes. This is the string that will be used by your user when they log in to
-     *       your server.</p>
-     */
-    UserName?: string;
-}
-export declare namespace DescribedUser {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribedUser) => any;
-}
-/**
- * <p>Describes the properties of the specified workflow</p>
- */
-export interface DescribedWorkflow {
-    /**
-     * <p>Specifies the unique Amazon Resource Name (ARN) for the workflow.</p>
-     */
-    Arn: string | undefined;
-    /**
-     * <p>Specifies the text description for the workflow.</p>
-     */
-    Description?: string;
-    /**
-     * <p>Specifies the details for the steps that are in the specified workflow.</p>
-     */
-    Steps?: WorkflowStep[];
-    /**
-     * <p>Specifies the steps (actions) to take if any errors are encountered during execution of the workflow.</p>
-     */
-    OnExceptionSteps?: WorkflowStep[];
-    /**
-     * <p>A unique identifier for the workflow.</p>
-     */
-    WorkflowId?: string;
-    /**
-     * <p>Key-value pairs that can be used to group and search for workflows. Tags are metadata attached to workflows for any purpose.</p>
-     */
-    Tags?: Tag[];
-}
-export declare namespace DescribedWorkflow {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribedWorkflow) => any;
-}
-export interface DescribeExecutionRequest {
-    /**
-     * <p>A unique identifier for the execution of a workflow.</p>
-     */
-    ExecutionId: string | undefined;
-    /**
-     * <p>A unique identifier for the workflow.</p>
-     */
-    WorkflowId: string | undefined;
-}
-export declare namespace DescribeExecutionRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeExecutionRequest) => any;
-}
-export interface DescribeExecutionResponse {
-    /**
-     * <p>A unique identifier for the workflow.</p>
-     */
-    WorkflowId: string | undefined;
-    /**
-     * <p>The structure that contains the details of the workflow' execution.</p>
-     */
-    Execution: DescribedExecution | undefined;
-}
-export declare namespace DescribeExecutionResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeExecutionResponse) => any;
-}
-export interface DescribeSecurityPolicyRequest {
-    /**
-     * <p>Specifies the name of the security policy that is attached to the server.</p>
-     */
-    SecurityPolicyName: string | undefined;
-}
-export declare namespace DescribeSecurityPolicyRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeSecurityPolicyRequest) => any;
-}
-export interface DescribeSecurityPolicyResponse {
-    /**
-     * <p>An array containing the properties of the security policy.</p>
-     */
-    SecurityPolicy: DescribedSecurityPolicy | undefined;
-}
-export declare namespace DescribeSecurityPolicyResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeSecurityPolicyResponse) => any;
-}
-export interface DescribeServerRequest {
-    /**
-     * <p>A system-assigned unique identifier for a server.</p>
-     */
-    ServerId: string | undefined;
-}
-export declare namespace DescribeServerRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeServerRequest) => any;
-}
-export interface DescribeServerResponse {
-    /**
-     * <p>An array containing the properties of a server with the <code>ServerID</code> you
-     *       specified.</p>
-     */
-    Server: DescribedServer | undefined;
-}
-export declare namespace DescribeServerResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeServerResponse) => any;
-}
-export interface DescribeUserRequest {
-    /**
-     * <p>A system-assigned unique identifier for a server that has this user assigned.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>The name of the user assigned to one or more servers. User names are part of the sign-in
-     *       credentials to use the Amazon Web Services Transfer Family service and perform file transfer tasks.</p>
-     */
-    UserName: string | undefined;
-}
-export declare namespace DescribeUserRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeUserRequest) => any;
-}
-export interface DescribeUserResponse {
-    /**
-     * <p>A system-assigned unique identifier for a server that has this user assigned.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>An array containing the properties of the user account for the <code>ServerID</code> value
-     *       that you specified.</p>
-     */
-    User: DescribedUser | undefined;
-}
-export declare namespace DescribeUserResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeUserResponse) => any;
-}
-export interface DescribeWorkflowRequest {
-    /**
-     * <p>A unique identifier for the workflow.</p>
-     */
-    WorkflowId: string | undefined;
-}
-export declare namespace DescribeWorkflowRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeWorkflowRequest) => any;
-}
-export interface DescribeWorkflowResponse {
-    /**
-     * <p>The structure that contains the details of the workflow.</p>
-     */
-    Workflow: DescribedWorkflow | undefined;
-}
-export declare namespace DescribeWorkflowResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: DescribeWorkflowResponse) => any;
-}
-export interface ImportSshPublicKeyRequest {
-    /**
-     * <p>A system-assigned unique identifier for a server.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>The public key portion of an SSH key pair.</p>
-     */
-    SshPublicKeyBody: string | undefined;
-    /**
-     * <p>The name of the user account that is assigned to one or more servers.</p>
-     */
-    UserName: string | undefined;
-}
-export declare namespace ImportSshPublicKeyRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ImportSshPublicKeyRequest) => any;
-}
-/**
- * <p>Identifies the user, the server they belong to, and the identifier of the SSH public key
- *       associated with that user. A user can have more than one key on each server that they are
- *       associated with.</p>
- */
-export interface ImportSshPublicKeyResponse {
-    /**
-     * <p>A system-assigned unique identifier for a server.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>The name given to a public key by the system that was imported.</p>
-     */
-    SshPublicKeyId: string | undefined;
-    /**
-     * <p>A user name assigned to the <code>ServerID</code> value that you specified.</p>
-     */
-    UserName: string | undefined;
-}
-export declare namespace ImportSshPublicKeyResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ImportSshPublicKeyResponse) => any;
-}
-/**
- * <p>The <code>NextToken</code> parameter that was passed is invalid.</p>
- */
-export interface InvalidNextTokenException extends __SmithyException, $MetadataBearer {
-    name: "InvalidNextTokenException";
-    $fault: "client";
-    Message: string | undefined;
-}
-export declare namespace InvalidNextTokenException {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: InvalidNextTokenException) => any;
-}
-export interface ListAccessesRequest {
-    /**
-     * <p>Specifies the maximum number of access SIDs to return.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>When you can get additional results from the <code>ListAccesses</code> call, a
-     *         <code>NextToken</code> parameter is returned in the output. You can then pass in a
-     *       subsequent command to the <code>NextToken</code> parameter to continue listing additional
-     *       accesses.</p>
-     */
-    NextToken?: string;
-    /**
-     * <p>A system-assigned unique identifier for a server that has users assigned to it.</p>
-     */
-    ServerId: string | undefined;
-}
-export declare namespace ListAccessesRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListAccessesRequest) => any;
-}
-/**
- * <p>Lists the properties for one or more specified associated accesses.</p>
- */
-export interface ListedAccess {
-    /**
-     * <p>The landing directory (folder) for a user when they log in to the server using the client.</p>
-     *          <p>A <code>HomeDirectory</code> example is <code>/bucket_name/home/mydirectory</code>.</p>
-     */
-    HomeDirectory?: string;
-    /**
-     * <p>The type of landing directory (folder) you want your users' home directory to be when they log into the server.
-     *     If you set it to <code>PATH</code>, the user will see the absolute Amazon S3 bucket or EFS paths as is in their file transfer protocol clients.
-     *     If you set it <code>LOGICAL</code>, you need to provide mappings in the <code>HomeDirectoryMappings</code> for how you want to make Amazon
-     *     S3 or EFS paths visible to your users.</p>
-     */
-    HomeDirectoryType?: HomeDirectoryType | string;
-    /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the IAM role that controls your users' access to your Amazon S3 bucket or EFS
-     *       file system. The policies attached to this role determine the level of access that you want to provide your users when transferring
-     *       files into and out of your Amazon S3 bucket or EFS file system. The IAM role should also contain a trust relationship that allows the
-     *       server to access your resources when servicing your users' transfer requests.</p>
-     */
-    Role?: string;
-    /**
-     * <p>A unique identifier that is required to identify specific groups within your directory.
-     *     The users of the group that you associate have access to your Amazon S3 or Amazon EFS
-     *     resources over the enabled protocols using Amazon Web Services Transfer Family. If you know the group name,
-     *     you can view the SID values by running the following command using Windows PowerShell.</p>
-     *
-     *          <p>
-     *             <code>Get-ADGroup -Filter {samAccountName -like "<i>YourGroupName</i>*"} -Properties * | Select SamAccountName,ObjectSid</code>
-     *          </p>
-     *
-     *          <p>In that command, replace <i>YourGroupName</i> with the name of your Active Directory group.</p>
-     *
-     *          <p>The regex used to validate this parameter is a string of characters consisting of uppercase and lowercase alphanumeric characters with no spaces.
-     *     You can also include underscores or any of the following characters: =,.@:/-</p>
-     */
-    ExternalId?: string;
-}
-export declare namespace ListedAccess {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListedAccess) => any;
-}
-export interface ListAccessesResponse {
-    /**
-     * <p>When you can get additional results from the <code>ListAccesses</code> call, a
-     *         <code>NextToken</code> parameter is returned in the output. You can then pass in a
-     *       subsequent command to the <code>NextToken</code> parameter to continue listing additional
-     *       accesses.</p>
-     */
-    NextToken?: string;
-    /**
-     * <p>A system-assigned unique identifier for a server that has users assigned to it.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>Returns the accesses and their properties for the <code>ServerId</code> value that you
-     *       specify.</p>
-     */
-    Accesses: ListedAccess[] | undefined;
-}
-export declare namespace ListAccessesResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListAccessesResponse) => any;
-}
-/**
- * <p>Returns properties of the execution that is specified.</p>
- */
-export interface ListedExecution {
-    /**
-     * <p>A unique identifier for the execution of a workflow.</p>
-     */
-    ExecutionId?: string;
-    /**
-     * <p>A structure that describes the Amazon S3 or EFS file location.
-     *       This is the file location when the execution begins: if the file is being copied,
-     *       this is the initial (as opposed to destination) file location.</p>
-     */
-    InitialFileLocation?: FileLocation;
-    /**
-     * <p>A container object for the session details associated with a workflow.</p>
-     */
-    ServiceMetadata?: ServiceMetadata;
-    /**
-     * <p>The status is one of the execution. Can be in progress, completed, exception encountered, or handling the exception.</p>
-     */
-    Status?: ExecutionStatus | string;
-}
-export declare namespace ListedExecution {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListedExecution) => any;
-}
-/**
- * <p>Returns properties of a file transfer protocol-enabled server that was specified.</p>
- */
-export interface ListedServer {
-    /**
-     * <p>Specifies the unique Amazon Resource Name (ARN) for a server to be listed.</p>
-     */
-    Arn: string | undefined;
-    /**
-     * <p>Specifies the domain of the storage system that is used for file transfers.</p>
-     */
-    Domain?: Domain | string;
-    /**
-     * <p>Specifies the mode of authentication for a server. The default value is
-     *         <code>SERVICE_MANAGED</code>, which allows you to store and access user credentials within
-     *       the Amazon Web Services Transfer Family service.</p>
-     *          <p>Use <code>AWS_DIRECTORY_SERVICE</code> to provide access to
-     *       Active Directory groups in Amazon Web Services Managed Active Directory or Microsoft Active Directory in your
-     *       on-premises environment or in Amazon Web Services using AD Connectors. This option also requires you to
-     *       provide a Directory ID using the <code>IdentityProviderDetails</code> parameter.</p>
-     *          <p>Use the <code>API_GATEWAY</code> value to integrate with an identity provider of your choosing. The
-     *       <code>API_GATEWAY</code> setting requires you to provide an API Gateway endpoint URL to call
-     *       for authentication using the <code>IdentityProviderDetails</code> parameter.</p>
-     */
-    IdentityProviderType?: IdentityProviderType | string;
-    /**
-     * <p>Specifies the type of VPC endpoint that your server is connected to. If your server is
-     *       connected to a VPC endpoint, your server isn't accessible over the public internet.</p>
-     */
-    EndpointType?: EndpointType | string;
-    /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the Amazon Web Services Identity and Access Management (IAM) role that allows a server to turn
-     *       on Amazon CloudWatch logging for Amazon S3 or Amazon EFS events. When set, user activity can be viewed in
-     *       your CloudWatch logs.</p>
-     */
-    LoggingRole?: string;
-    /**
-     * <p>Specifies the unique system assigned identifier for the servers that were listed.</p>
-     */
-    ServerId?: string;
-    /**
-     * <p>Specifies the condition of a server for the server that was described. A value of
-     *         <code>ONLINE</code> indicates that the server can accept jobs and transfer files. A
-     *         <code>State</code> value of <code>OFFLINE</code> means that the server cannot perform file
-     *       transfer operations.</p>
-     *
-     *          <p>The states of <code>STARTING</code> and <code>STOPPING</code> indicate that the server is
-     *       in an intermediate state, either not fully able to respond, or not fully offline. The values
-     *       of <code>START_FAILED</code> or <code>STOP_FAILED</code> can indicate an error
-     *       condition.</p>
-     */
-    State?: State | string;
-    /**
-     * <p>Specifies the number of users that are assigned to a server you specified with the
-     *         <code>ServerId</code>.</p>
-     */
-    UserCount?: number;
-}
-export declare namespace ListedServer {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListedServer) => any;
-}
-/**
- * <p>Returns properties of the user that you specify.</p>
- */
-export interface ListedUser {
-    /**
-     * <p>Provides the unique Amazon Resource Name (ARN) for the user that you want to learn
-     *       about.</p>
-     */
-    Arn: string | undefined;
-    /**
-     * <p>The landing directory (folder) for a user when they log in to the server using the client.</p>
-     *          <p>A <code>HomeDirectory</code> example is <code>/bucket_name/home/mydirectory</code>.</p>
-     */
-    HomeDirectory?: string;
-    /**
-     * <p>The type of landing directory (folder) you want your users' home directory to be when they log into the server.
-     *     If you set it to <code>PATH</code>, the user will see the absolute Amazon S3 bucket or EFS paths as is in their file transfer protocol clients.
-     *     If you set it <code>LOGICAL</code>, you need to provide mappings in the <code>HomeDirectoryMappings</code> for how you want to make Amazon
-     *     S3 or EFS paths visible to your users.</p>
-     */
-    HomeDirectoryType?: HomeDirectoryType | string;
-    /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the IAM role that controls your users' access to your Amazon S3 bucket or EFS
-     *       file system. The policies attached to this role determine the level of access that you want to provide your users when transferring
-     *       files into and out of your Amazon S3 bucket or EFS file system. The IAM role should also contain a trust relationship that allows the
-     *       server to access your resources when servicing your users' transfer requests.</p>
-     *          <note>
-     *
-     *             <p>The IAM role that controls your users' access to your Amazon S3 bucket for servers with <code>Domain=S3</code>, or your EFS file system for servers with <code>Domain=EFS</code>.
-     *         </p>
-     *             <p>The policies attached to this role determine the level of access you want to provide your users when
-     *         transferring files into and out of your S3 buckets or EFS file systems.</p>
-     *
-     *          </note>
-     */
-    Role?: string;
-    /**
-     * <p>Specifies the number of SSH public keys stored for the user you specified.</p>
-     */
-    SshPublicKeyCount?: number;
-    /**
-     * <p>Specifies the name of the user whose ARN was specified. User names are used for
-     *       authentication purposes.</p>
-     */
-    UserName?: string;
-}
-export declare namespace ListedUser {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListedUser) => any;
-}
-/**
- * <p>Contains the ID, text description, and Amazon Resource Name (ARN) for the workflow.</p>
- */
-export interface ListedWorkflow {
-    /**
-     * <p>A unique identifier for the workflow.</p>
-     */
-    WorkflowId?: string;
-    /**
-     * <p>Specifies the text description for the workflow.</p>
-     */
-    Description?: string;
-    /**
-     * <p>Specifies the unique Amazon Resource Name (ARN) for the workflow.</p>
-     */
-    Arn?: string;
-}
-export declare namespace ListedWorkflow {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListedWorkflow) => any;
-}
-export interface ListExecutionsRequest {
-    /**
-     * <p>Specifies the aximum number of executions to return.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>
-     *             <code>ListExecutions</code> returns the <code>NextToken</code> parameter in the output.
-     *       You can then pass the <code>NextToken</code> parameter in a subsequent command to
-     *       continue listing additional executions.</p>
-     *          <p>
-     *       This is useful for pagination, for instance.
-     *       If you have 100 executions for a workflow, you might only want to list first 10. If so, callthe API by specifing the <code>max-results</code>:
-     *     </p>
-     *          <p>
-     *             <code>aws transfer list-executions --max-results 10</code>
-     *          </p>
-     *          <p>
-     *       This returns details for the first 10 executions, as well as the pointer (<code>NextToken</code>) to the eleventh execution.
-     *       You can now call the API again, suppling the <code>NextToken</code> value you received:
-     *     </p>
-     *          <p>
-     *             <code>aws transfer list-executions --max-results 10 --next-token $somePointerReturnedFromPreviousListResult</code>
-     *          </p>
-     *          <p>
-     *       This call returns the next 10 executions, the 11th through the 20th. You can then repeat the call until the details
-     *       for all 100 executions have been returned.
-     *     </p>
-     */
-    NextToken?: string;
-    /**
-     * <p>A unique identifier for the workflow.</p>
-     */
-    WorkflowId: string | undefined;
-}
-export declare namespace ListExecutionsRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListExecutionsRequest) => any;
-}
-export interface ListExecutionsResponse {
-    /**
-     * <p>
-     *             <code>ListExecutions</code> returns the <code>NextToken</code> parameter in the output.
-     *       You can then pass the <code>NextToken</code> parameter in a subsequent command to
-     *       continue listing additional executions.</p>
-     */
-    NextToken?: string;
-    /**
-     * <p>A unique identifier for the workflow.</p>
-     */
-    WorkflowId: string | undefined;
-    /**
-     * <p>Returns the details for each execution.</p>
-     *          <ul>
-     *             <li>
-     *                <p>
-     *                   <b>NextToken</b>: returned from a call to several APIs,
-     *       you can use pass it to a subsequent command to continue listing additional executions.</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <b>StartTime</b>: timestamp indicating when the execution began.</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <b>Executions</b>: details of the execution, including the execution ID, initial file location,
-     *       and Service metadata.</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <b>Status</b>: one of the following values:
-     *         <code>IN_PROGRESS</code>, <code>COMPLETED</code>, <code>EXCEPTION</code>, <code>HANDLING_EXEPTION</code>.
-     *       </p>
-     *             </li>
-     *          </ul>
-     */
-    Executions: ListedExecution[] | undefined;
-}
-export declare namespace ListExecutionsResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListExecutionsResponse) => any;
-}
-export interface ListSecurityPoliciesRequest {
-    /**
-     * <p>Specifies the number of security policies to return as a response to the
-     *         <code>ListSecurityPolicies</code> query.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>When additional results are obtained from the <code>ListSecurityPolicies</code> command, a
-     *         <code>NextToken</code> parameter is returned in the output. You can then pass the
-     *         <code>NextToken</code> parameter in a subsequent command to continue listing additional
-     *       security policies.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListSecurityPoliciesRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListSecurityPoliciesRequest) => any;
-}
-export interface ListSecurityPoliciesResponse {
-    /**
-     * <p>When you can get additional results from the <code>ListSecurityPolicies</code> operation,
-     *       a <code>NextToken</code> parameter is returned in the output. In a following command, you can
-     *       pass in the <code>NextToken</code> parameter to continue listing security policies.</p>
-     */
-    NextToken?: string;
-    /**
-     * <p>An array of security policies that were listed.</p>
-     */
-    SecurityPolicyNames: string[] | undefined;
-}
-export declare namespace ListSecurityPoliciesResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListSecurityPoliciesResponse) => any;
-}
-export interface ListServersRequest {
-    /**
-     * <p>Specifies the number of servers to return as a response to the <code>ListServers</code>
-     *       query.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>When additional results are obtained from the <code>ListServers</code> command, a
-     *         <code>NextToken</code> parameter is returned in the output. You can then pass the
-     *         <code>NextToken</code> parameter in a subsequent command to continue listing additional
-     *       servers.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListServersRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListServersRequest) => any;
-}
-export interface ListServersResponse {
-    /**
-     * <p>When you can get additional results from the <code>ListServers</code> operation, a
-     *         <code>NextToken</code> parameter is returned in the output. In a following command, you can
-     *       pass in the <code>NextToken</code> parameter to continue listing additional servers.</p>
-     */
-    NextToken?: string;
-    /**
-     * <p>An array of servers that were listed.</p>
-     */
-    Servers: ListedServer[] | undefined;
-}
-export declare namespace ListServersResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListServersResponse) => any;
-}
-export interface ListTagsForResourceRequest {
-    /**
-     * <p>Requests the tags associated with a particular Amazon Resource Name (ARN). An ARN is an
-     *       identifier for a specific Amazon Web Services resource, such as a server, user, or role.</p>
-     */
-    Arn: string | undefined;
-    /**
-     * <p>Specifies the number of tags to return as a response to the
-     *         <code>ListTagsForResource</code> request.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>When you request additional results from the <code>ListTagsForResource</code> operation, a
-     *         <code>NextToken</code> parameter is returned in the input. You can then pass in a subsequent
-     *       command to the <code>NextToken</code> parameter to continue listing additional tags.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListTagsForResourceRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListTagsForResourceRequest) => any;
-}
-export interface ListTagsForResourceResponse {
-    /**
-     * <p>The ARN you specified to list the tags of.</p>
-     */
-    Arn?: string;
-    /**
-     * <p>When you can get additional results from the <code>ListTagsForResource</code> call, a
-     *         <code>NextToken</code> parameter is returned in the output. You can then pass in a
-     *       subsequent command to the <code>NextToken</code> parameter to continue listing additional
-     *       tags.</p>
-     */
-    NextToken?: string;
-    /**
-     * <p>Key-value pairs that are assigned to a resource, usually for the purpose of grouping and
-     *       searching for items. Tags are metadata that you define.</p>
-     */
-    Tags?: Tag[];
-}
-export declare namespace ListTagsForResourceResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListTagsForResourceResponse) => any;
-}
-export interface ListUsersRequest {
-    /**
-     * <p>Specifies the number of users to return as a response to the <code>ListUsers</code>
-     *       request.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>When you can get additional results from the <code>ListUsers</code> call, a
-     *         <code>NextToken</code> parameter is returned in the output. You can then pass in a
-     *       subsequent command to the <code>NextToken</code> parameter to continue listing additional
-     *       users.</p>
-     */
-    NextToken?: string;
-    /**
-     * <p>A system-assigned unique identifier for a server that has users assigned to it.</p>
-     */
-    ServerId: string | undefined;
-}
-export declare namespace ListUsersRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListUsersRequest) => any;
-}
-export interface ListUsersResponse {
-    /**
-     * <p>When you can get additional results from the <code>ListUsers</code> call, a
-     *         <code>NextToken</code> parameter is returned in the output. You can then pass in a
-     *       subsequent command to the <code>NextToken</code> parameter to continue listing additional
-     *       users.</p>
-     */
-    NextToken?: string;
-    /**
-     * <p>A system-assigned unique identifier for a server that the users are assigned to.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>Returns the user accounts and their properties for the <code>ServerId</code> value that
-     *       you specify.</p>
-     */
-    Users: ListedUser[] | undefined;
-}
-export declare namespace ListUsersResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListUsersResponse) => any;
-}
-export interface ListWorkflowsRequest {
-    /**
-     * <p>Specifies the maximum number of workflows to return.</p>
-     */
-    MaxResults?: number;
-    /**
-     * <p>
-     *             <code>ListWorkflows</code> returns the <code>NextToken</code> parameter in the output.
-     *       You can then pass the <code>NextToken</code> parameter in a subsequent command to
-     *       continue listing additional workflows.</p>
-     */
-    NextToken?: string;
-}
-export declare namespace ListWorkflowsRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListWorkflowsRequest) => any;
-}
-export interface ListWorkflowsResponse {
-    /**
-     * <p>
-     *             <code>ListWorkflows</code> returns the <code>NextToken</code> parameter in the output.
-     *       You can then pass the <code>NextToken</code> parameter in a subsequent command to
-     *       continue listing additional workflows.</p>
-     */
-    NextToken?: string;
-    /**
-     * <p>Returns the <code>Arn</code>, <code>WorkflowId</code>, and <code>Description</code> for each workflow.</p>
-     */
-    Workflows: ListedWorkflow[] | undefined;
-}
-export declare namespace ListWorkflowsResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: ListWorkflowsResponse) => any;
-}
-export interface SendWorkflowStepStateRequest {
-    /**
-     * <p>A unique identifier for the workflow.</p>
-     */
-    WorkflowId: string | undefined;
-    /**
-     * <p>A unique identifier for the execution of a workflow.</p>
-     */
-    ExecutionId: string | undefined;
-    /**
-     * <p>Used to distinguish between multiple callbacks for multiple Lambda steps within the same execution.</p>
-     */
-    Token: string | undefined;
-    /**
-     * <p>Indicates whether the specified step succeeded or failed.</p>
-     */
-    Status: CustomStepStatus | string | undefined;
-}
-export declare namespace SendWorkflowStepStateRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: SendWorkflowStepStateRequest) => any;
-}
-export interface SendWorkflowStepStateResponse {
-}
-export declare namespace SendWorkflowStepStateResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: SendWorkflowStepStateResponse) => any;
-}
-export interface StartServerRequest {
-    /**
-     * <p>A system-assigned unique identifier for a server that you start.</p>
-     */
-    ServerId: string | undefined;
-}
-export declare namespace StartServerRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: StartServerRequest) => any;
-}
-export interface StopServerRequest {
-    /**
-     * <p>A system-assigned unique identifier for a server that you stopped.</p>
-     */
-    ServerId: string | undefined;
-}
-export declare namespace StopServerRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: StopServerRequest) => any;
-}
-export interface TagResourceRequest {
-    /**
-     * <p>An Amazon Resource Name (ARN) for a specific Amazon Web Services resource, such as a server, user, or
-     *       role.</p>
-     */
-    Arn: string | undefined;
-    /**
-     * <p>Key-value pairs assigned to ARNs that you can use to group and search for resources by
-     *       type. You can attach this metadata to user accounts for any purpose.</p>
-     */
-    Tags: Tag[] | undefined;
-}
-export declare namespace TagResourceRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: TagResourceRequest) => any;
-}
-export interface TestIdentityProviderRequest {
-    /**
-     * <p>A system-assigned identifier for a specific server. That server's user authentication
-     *       method is tested with a user name and password.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>The type of file transfer protocol to be tested.</p>
-     *
-     *          <p>The available protocols are:</p>
-     *
-     *          <ul>
-     *             <li>
-     *                <p>Secure Shell (SSH) File Transfer Protocol (SFTP)</p>
-     *             </li>
-     *             <li>
-     *                <p>File Transfer Protocol Secure (FTPS)</p>
-     *             </li>
-     *             <li>
-     *                <p>File Transfer Protocol (FTP)</p>
-     *             </li>
-     *          </ul>
-     */
-    ServerProtocol?: Protocol | string;
-    /**
-     * <p>The source IP address of the user account to be tested.</p>
-     */
-    SourceIp?: string;
-    /**
-     * <p>The name of the user account to be tested.</p>
-     */
-    UserName: string | undefined;
-    /**
-     * <p>The password of the user account to be tested.</p>
-     */
-    UserPassword?: string;
-}
-export declare namespace TestIdentityProviderRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: TestIdentityProviderRequest) => any;
-}
-export interface TestIdentityProviderResponse {
-    /**
-     * <p>The response that is returned from your API Gateway.</p>
-     */
-    Response?: string;
-    /**
-     * <p>The HTTP status code that is the response from your API Gateway.</p>
-     */
-    StatusCode: number | undefined;
-    /**
-     * <p>A message that indicates whether the test was successful or not.</p>
-     */
-    Message?: string;
-    /**
-     * <p>The endpoint of the service used to authenticate a user.</p>
-     */
-    Url: string | undefined;
-}
-export declare namespace TestIdentityProviderResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: TestIdentityProviderResponse) => any;
-}
-export interface UntagResourceRequest {
-    /**
-     * <p>The value of the resource that will have the tag removed. An Amazon Resource Name (ARN) is
-     *       an identifier for a specific Amazon Web Services resource, such as a server, user, or role.</p>
-     */
-    Arn: string | undefined;
-    /**
-     * <p>TagKeys are key-value pairs assigned to ARNs that can be used to group and search for
-     *       resources by type. This metadata can be attached to resources for any purpose.</p>
-     */
-    TagKeys: string[] | undefined;
-}
-export declare namespace UntagResourceRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UntagResourceRequest) => any;
-}
-export interface UpdateAccessRequest {
-    /**
-     * <p>The landing directory (folder) for a user when they log in to the server using the client.</p>
-     *          <p>A <code>HomeDirectory</code> example is <code>/bucket_name/home/mydirectory</code>.</p>
-     */
-    HomeDirectory?: string;
-    /**
-     * <p>The type of landing directory (folder) you want your users' home directory to be when they log into the server.
-     *     If you set it to <code>PATH</code>, the user will see the absolute Amazon S3 bucket or EFS paths as is in their file transfer protocol clients.
-     *     If you set it <code>LOGICAL</code>, you need to provide mappings in the <code>HomeDirectoryMappings</code> for how you want to make Amazon
-     *     S3 or EFS paths visible to your users.</p>
-     */
-    HomeDirectoryType?: HomeDirectoryType | string;
-    /**
-     * <p>Logical directory mappings that specify what Amazon S3 or Amazon EFS paths and keys should
-     *       be visible to your user and how you want to make them visible. You must specify the
-     *         <code>Entry</code> and <code>Target</code> pair, where <code>Entry</code> shows how the path
-     *       is made visible and <code>Target</code> is the actual Amazon S3 or Amazon EFS path. If you
-     *       only specify a target, it is displayed as is. You also must ensure that your Amazon Web Services Identity
-     *       and Access Management (IAM) role provides access to paths in <code>Target</code>. This value
-     *       can only be set when <code>HomeDirectoryType</code> is set to
-     *       <i>LOGICAL</i>.</p>
-     *          <p>The following is an <code>Entry</code> and <code>Target</code> pair example.</p>
-     *          <p>
-     *             <code>[ { "Entry": "your-personal-report.pdf", "Target": "/bucket3/customized-reports/${transfer:UserName}.pdf" } ]</code>
-     *          </p>
-     *          <p>In most cases, you can use this value instead of the session policy to lock down your
-     *         user to the designated home directory ("<code>chroot</code>"). To do this, you can set
-     *         <code>Entry</code> to <code>/</code> and set <code>Target</code> to the
-     *         <code>HomeDirectory</code> parameter value.</p>
-     *          <p>The following is an <code>Entry</code> and <code>Target</code> pair example for <code>chroot</code>.</p>
-     *          <p>
-     *             <code>[ { "Entry:": "/", "Target": "/bucket_name/home/mydirectory" } ]</code>
-     *          </p>
-     *
-     *          <note>
-     *             <p>If the target of a logical directory entry does not exist in Amazon S3 or EFS, the entry is
-     *         ignored. As a workaround, you can use the Amazon S3 API or EFS API to create 0 byte objects as place
-     *         holders for your directory. If using the CLI, use the <code>s3api</code> or <code>efsapi</code> call instead of
-     *         <code>s3</code> or <code>efs</code> so you can use the put-object operation. For example, you use the
-     *         following: <code>aws s3api put-object --bucket bucketname --key path/to/folder/</code>. Make
-     *         sure that the end of the key name ends in a <code>/</code> for it to be considered a folder.</p>
-     *          </note>
-     */
-    HomeDirectoryMappings?: HomeDirectoryMapEntry[];
-    /**
-     * <p>A session policy for your user so that you can use the same IAM role across multiple users. This policy scopes down user
-     *      access to portions of their Amazon S3 bucket. Variables that you can use inside this policy include <code>${Transfer:UserName}</code>,
-     *      <code>${Transfer:HomeDirectory}</code>, and <code>${Transfer:HomeBucket}</code>.</p>
-     *
-     *
-     *          <note>
-     *             <p>This only applies when the domain of <code>ServerId</code> is S3. EFS does not use session policies.</p>
-     *             <p>For session policies, Amazon Web Services Transfer Family stores the policy as a JSON blob, instead
-     *         of the Amazon Resource Name (ARN) of the policy. You save the policy as a JSON blob and pass
-     *         it in the <code>Policy</code> argument.</p>
-     *             <p>For an example of a session policy, see <a href="https://docs.aws.amazon.com/transfer/latest/userguide/session-policy.html">Example
-     *         session policy</a>.</p>
-     *             <p>For more information, see <a href="https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRole.html">AssumeRole</a> in the <i>Amazon Web ServicesSecurity Token Service API
-     *           Reference</i>.</p>
-     *          </note>
-     */
-    Policy?: string;
-    /**
-     * <p>The full POSIX identity, including user ID (<code>Uid</code>), group ID
-     *       (<code>Gid</code>), and any secondary groups IDs (<code>SecondaryGids</code>), that controls
-     *       your users' access to your Amazon EFS file systems. The POSIX permissions that are set on
-     *       files and directories in your file system determine the level of access your users get when
-     *       transferring files into and out of your Amazon EFS file systems.</p>
-     */
-    PosixProfile?: PosixProfile;
-    /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the IAM role that controls your users' access to your Amazon S3 bucket or EFS
-     *       file system. The policies attached to this role determine the level of access that you want to provide your users when transferring
-     *       files into and out of your Amazon S3 bucket or EFS file system. The IAM role should also contain a trust relationship that allows the
-     *       server to access your resources when servicing your users' transfer requests.</p>
-     */
-    Role?: string;
-    /**
-     * <p>A system-assigned unique identifier for a server instance. This is the specific server that you added your user to.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>A unique identifier that is required to identify specific groups within your directory.
-     *     The users of the group that you associate have access to your Amazon S3 or Amazon EFS
-     *     resources over the enabled protocols using Amazon Web Services Transfer Family. If you know the group name,
-     *     you can view the SID values by running the following command using Windows PowerShell.</p>
-     *
-     *          <p>
-     *             <code>Get-ADGroup -Filter {samAccountName -like "<i>YourGroupName</i>*"} -Properties * | Select SamAccountName,ObjectSid</code>
-     *          </p>
-     *
-     *          <p>In that command, replace <i>YourGroupName</i> with the name of your Active Directory group.</p>
-     *
-     *          <p>The regex used to validate this parameter is a string of characters consisting of uppercase and lowercase alphanumeric characters with no spaces.
-     *     You can also include underscores or any of the following characters: =,.@:/-</p>
-     */
-    ExternalId: string | undefined;
-}
-export declare namespace UpdateAccessRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UpdateAccessRequest) => any;
-}
-export interface UpdateAccessResponse {
-    /**
-     * <p>The ID of the server that the user is attached to.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>The external ID of the group whose users have access to your Amazon S3 or Amazon EFS
-     *       resources over the enabled protocols using Amazon Web ServicesTransfer Family.</p>
-     */
-    ExternalId: string | undefined;
-}
-export declare namespace UpdateAccessResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UpdateAccessResponse) => any;
-}
-export interface UpdateServerRequest {
-    /**
-     * <p>The Amazon Resource Name (ARN) of the Amazon Web ServicesCertificate Manager (ACM) certificate. Required
-     *       when <code>Protocols</code> is set to <code>FTPS</code>.</p>
-     *
-     *          <p>To request a new public certificate, see <a href="https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-request-public.html">Request a public certificate</a>
-     *       in the <i> Amazon Web ServicesCertificate Manager User Guide</i>.</p>
-     *
-     *          <p>To import an existing certificate into ACM, see <a href="https://docs.aws.amazon.com/acm/latest/userguide/import-certificate.html">Importing certificates into ACM</a>
-     *       in the <i> Amazon Web ServicesCertificate Manager User Guide</i>.</p>
-     *
-     *          <p>To request a private certificate to use FTPS through private IP addresses, see <a href="https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-request-private.html">Request a
-     *         private certificate</a> in the <i> Amazon Web ServicesCertificate Manager User
-     *       Guide</i>.</p>
-     *
-     *          <p>Certificates with the following cryptographic algorithms and key sizes are
-     *       supported:</p>
-     *
-     *          <ul>
-     *             <li>
-     *                <p>2048-bit RSA (RSA_2048)</p>
-     *             </li>
-     *             <li>
-     *                <p>4096-bit RSA (RSA_4096)</p>
-     *             </li>
-     *             <li>
-     *                <p>Elliptic Prime Curve 256 bit (EC_prime256v1)</p>
-     *             </li>
-     *             <li>
-     *                <p>Elliptic Prime Curve 384 bit (EC_secp384r1)</p>
-     *             </li>
-     *             <li>
-     *                <p>Elliptic Prime Curve 521 bit (EC_secp521r1)</p>
-     *             </li>
-     *          </ul>
-     *
-     *          <note>
-     *             <p>The certificate must be a valid SSL/TLS X.509 version 3 certificate with FQDN or IP
-     *         address specified and information about the issuer.</p>
-     *          </note>
-     */
-    Certificate?: string;
-    /**
-     * <p>
-     *       The protocol settings that are configured for your server.
-     *     </p>
-     *          <p>
-     *       Use the <code>PassiveIp</code> parameter to indicate passive mode (for FTP and FTPS protocols).
-     *       Enter a single dotted-quad IPv4 address, such as the external IP address of a firewall, router, or load balancer.
-     *     </p>
-     */
-    ProtocolDetails?: ProtocolDetails;
-    /**
-     * <p>The virtual private cloud (VPC) endpoint settings that are configured for your server.
-     *       When you host your endpoint within your VPC, you can make it accessible only to resources
-     *       within your VPC, or you can attach Elastic IP addresses and make it accessible to clients over
-     *       the internet. Your VPC's default security groups are automatically assigned to your
-     *       endpoint.</p>
-     */
-    EndpointDetails?: EndpointDetails;
-    /**
-     * <p>The type of endpoint that you want your server to use. You can choose to make your server's endpoint publicly accessible (PUBLIC)
-     *       or host it inside your VPC. With an endpoint that is hosted in a VPC, you can restrict access to your server and
-     *       resources only within your VPC or choose to make it internet facing by attaching Elastic IP addresses directly to it.</p>
-     *          <note>
-     *             <p> After May 19, 2021, you won't be able to create a server using
-     *           <code>EndpointType=VPC_ENDPOINT</code> in your Amazon Web Servicesaccount if your account hasn't already
-     *       done so before May 19, 2021. If you have already created servers with
-     *       <code>EndpointType=VPC_ENDPOINT</code> in your Amazon Web Servicesaccount on or before May 19, 2021,
-     *         you will not be affected. After this date, use
-     *         <code>EndpointType</code>=<code>VPC</code>.</p>
-     *
-     *             <p>For more information, see
-     *         https://docs.aws.amazon.com/transfer/latest/userguide/create-server-in-vpc.html#deprecate-vpc-endpoint.</p>
-     *             <p>It is recommended that you use <code>VPC</code> as the <code>EndpointType</code>. With
-     *         this endpoint type, you have the option to directly associate up to three Elastic IPv4
-     *         addresses (BYO IP included) with your server's endpoint and use VPC security groups to
-     *         restrict traffic by the client's public IP address. This is not possible with
-     *           <code>EndpointType</code> set to <code>VPC_ENDPOINT</code>.</p>
-     *          </note>
-     */
-    EndpointType?: EndpointType | string;
-    /**
-     * <p>The RSA private key as generated by <code>ssh-keygen -N "" -m PEM -f
-     *         my-new-server-key</code>.</p>
-     *
-     *          <important>
-     *             <p>If you aren't planning to migrate existing users from an existing server to a new
-     *         server, don't update the host key. Accidentally changing a server's host key can
-     *         be disruptive.</p>
-     *          </important>
-     *
-     *
-     *
-     *          <p>For more information, see <a href="https://docs.aws.amazon.com/transfer/latest/userguide/edit-server-config.html#configuring-servers-change-host-key">Change the host key for your SFTP-enabled server</a> in the <i>Amazon Web ServicesTransfer
-     *         Family User Guide</i>.</p>
-     */
-    HostKey?: string;
-    /**
-     * <p>An array containing all of the information required to call a customer's
-     *       authentication API method.</p>
-     */
-    IdentityProviderDetails?: IdentityProviderDetails;
-    /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the Amazon Web Services Identity and Access Management (IAM) role that allows a server to turn
-     *       on Amazon CloudWatch logging for Amazon S3 or Amazon EFS events. When set, user activity can be viewed in
-     *       your CloudWatch logs.</p>
-     */
-    LoggingRole?: string;
-    /**
-     * <p>Specifies the file transfer protocol or protocols over which your file transfer protocol
-     *       client can connect to your server's endpoint. The available protocols are:</p>
-     *
-     *          <ul>
-     *             <li>
-     *                <p>Secure Shell (SSH) File Transfer Protocol (SFTP): File transfer over SSH</p>
-     *             </li>
-     *             <li>
-     *                <p>File Transfer Protocol Secure (FTPS): File transfer with TLS encryption</p>
-     *             </li>
-     *             <li>
-     *                <p>File Transfer Protocol (FTP): Unencrypted file transfer</p>
-     *             </li>
-     *          </ul>
-     *
-     *          <note>
-     *             <p>If you select <code>FTPS</code>, you must choose a certificate stored in Amazon Web ServicesCertificate
-     *         Manager (ACM) which will be used to identify your server when clients connect to it over
-     *         FTPS.</p>
-     *
-     *
-     *             <p>If <code>Protocol</code> includes either <code>FTP</code> or <code>FTPS</code>, then the
-     *         <code>EndpointType</code> must be <code>VPC</code> and the
-     *         <code>IdentityProviderType</code> must be <code>AWS_DIRECTORY_SERVICE</code> or <code>API_GATEWAY</code>.</p>
-     *
-     *             <p>If <code>Protocol</code> includes <code>FTP</code>, then
-     *           <code>AddressAllocationIds</code> cannot be associated.</p>
-     *
-     *             <p>If <code>Protocol</code> is set only to <code>SFTP</code>, the <code>EndpointType</code>
-     *         can be set to <code>PUBLIC</code> and the <code>IdentityProviderType</code> can be set to
-     *           <code>SERVICE_MANAGED</code>.</p>
-     *          </note>
-     */
-    Protocols?: (Protocol | string)[];
-    /**
-     * <p>Specifies the name of the security policy that is attached to the server.</p>
-     */
-    SecurityPolicyName?: string;
-    /**
-     * <p>A system-assigned unique identifier for a server instance that the user account is
-     *       assigned to.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>Specifies the workflow ID for the workflow to assign and the execution role used for executing the workflow.</p>
-     */
-    WorkflowDetails?: WorkflowDetails;
-}
-export declare namespace UpdateServerRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UpdateServerRequest) => any;
-}
-export interface UpdateServerResponse {
-    /**
-     * <p>A system-assigned unique identifier for a server that the user account is assigned
-     *       to.</p>
-     */
-    ServerId: string | undefined;
-}
-export declare namespace UpdateServerResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UpdateServerResponse) => any;
-}
-export interface UpdateUserRequest {
-    /**
-     * <p>The landing directory (folder) for a user when they log in to the server using the client.</p>
-     *          <p>A <code>HomeDirectory</code> example is <code>/bucket_name/home/mydirectory</code>.</p>
-     */
-    HomeDirectory?: string;
-    /**
-     * <p>The type of landing directory (folder) you want your users' home directory to be when they log into the server.
-     *     If you set it to <code>PATH</code>, the user will see the absolute Amazon S3 bucket or EFS paths as is in their file transfer protocol clients.
-     *     If you set it <code>LOGICAL</code>, you need to provide mappings in the <code>HomeDirectoryMappings</code> for how you want to make Amazon
-     *     S3 or EFS paths visible to your users.</p>
-     */
-    HomeDirectoryType?: HomeDirectoryType | string;
-    /**
-     * <p>Logical directory mappings that specify what Amazon S3 or Amazon EFS paths and keys should
-     *       be visible to your user and how you want to make them visible. You must specify the
-     *         <code>Entry</code> and <code>Target</code> pair, where <code>Entry</code> shows how the path
-     *       is made visible and <code>Target</code> is the actual Amazon S3 or Amazon EFS path. If you
-     *       only specify a target, it is displayed as is. You also must ensure that your Amazon Web Services Identity
-     *       and Access Management (IAM) role provides access to paths in <code>Target</code>. This value
-     *       can only be set when <code>HomeDirectoryType</code> is set to
-     *       <i>LOGICAL</i>.</p>
-     *
-     *          <p>The following is an <code>Entry</code> and <code>Target</code> pair example.</p>
-     *          <p>
-     *             <code>[ { "Entry": "your-personal-report.pdf", "Target":
-     *         "/bucket3/customized-reports/${transfer:UserName}.pdf" } ]</code>
-     *          </p>
-     *
-     *          <p>In most cases, you can use this value instead of the session policy to lock down your
-     *       user to the designated home directory ("<code>chroot</code>"). To do this, you can set
-     *         <code>Entry</code> to '/' and set <code>Target</code> to the HomeDirectory
-     *       parameter value.</p>
-     *
-     *          <p>The following is an <code>Entry</code> and <code>Target</code> pair example for <code>chroot</code>.</p>
-     *          <p>
-     *             <code>[ { "Entry:": "/", "Target": "/bucket_name/home/mydirectory" } ]</code>
-     *          </p>
-     *
-     *          <note>
-     *             <p>If the target of a logical directory entry does not exist in Amazon S3 or EFS, the entry is
-     *         ignored. As a workaround, you can use the Amazon S3 API or EFS API to create 0 byte objects as place
-     *         holders for your directory. If using the CLI, use the <code>s3api</code> or <code>efsapi</code> call instead of
-     *         <code>s3</code> or <code>efs</code> so you can use the put-object operation. For example, you use the
-     *         following: <code>aws s3api put-object --bucket bucketname --key path/to/folder/</code>. Make
-     *         sure that the end of the key name ends in a <code>/</code> for it to be considered a folder.</p>
-     *          </note>
-     */
-    HomeDirectoryMappings?: HomeDirectoryMapEntry[];
-    /**
-     * <p>A session policy for your user so that you can use the same IAM role across multiple users. This policy scopes down user
-     *      access to portions of their Amazon S3 bucket. Variables that you can use inside this policy include <code>${Transfer:UserName}</code>,
-     *      <code>${Transfer:HomeDirectory}</code>, and <code>${Transfer:HomeBucket}</code>.</p>
-     *
-     *          <note>
-     *             <p>This only applies when the domain of <code>ServerId</code> is S3. EFS does not use session policies.</p>
-     *             <p>For session policies, Amazon Web Services Transfer Family stores the policy as a JSON blob, instead
-     *         of the Amazon Resource Name (ARN) of the policy. You save the policy as a JSON blob and pass
-     *         it in the <code>Policy</code> argument.</p>
-     *
-     *
-     *
-     *             <p>For an example of a session policy, see <a href="https://docs.aws.amazon.com/transfer/latest/userguide/session-policy">Creating a session
-     *           policy</a>.</p>
-     *
-     *
-     *
-     *             <p>For more information, see <a href="https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRole.html">AssumeRole</a> in the <i>Amazon Web Services
-     *           Security Token Service API Reference</i>.</p>
-     *          </note>
-     */
-    Policy?: string;
-    /**
-     * <p>Specifies the full POSIX identity, including user ID (<code>Uid</code>), group ID
-     *         (<code>Gid</code>), and any secondary groups IDs (<code>SecondaryGids</code>), that controls
-     *       your users' access to your Amazon Elastic File Systems (Amazon EFS). The POSIX permissions
-     *       that are set on files and directories in your file system determines the level of access your
-     *       users get when transferring files into and out of your Amazon EFS file systems.</p>
-     */
-    PosixProfile?: PosixProfile;
-    /**
-     * <p>Specifies the Amazon Resource Name (ARN) of the IAM role that controls your users' access to your Amazon S3 bucket or EFS
-     *       file system. The policies attached to this role determine the level of access that you want to provide your users when transferring
-     *       files into and out of your Amazon S3 bucket or EFS file system. The IAM role should also contain a trust relationship that allows the
-     *       server to access your resources when servicing your users' transfer requests.</p>
-     */
-    Role?: string;
-    /**
-     * <p>A system-assigned unique identifier for a server instance that the user account is
-     *       assigned to.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>A unique string that identifies a user and is associated with a server as specified by the
-     *         <code>ServerId</code>. This user name must be a minimum of 3 and a maximum of 100 characters
-     *       long. The following are valid characters: a-z, A-Z, 0-9, underscore '_', hyphen
-     *       '-', period '.', and at sign '@'. The user name can't start
-     *       with a hyphen, period, or at sign.</p>
-     */
-    UserName: string | undefined;
-}
-export declare namespace UpdateUserRequest {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UpdateUserRequest) => any;
-}
-/**
- * <p>
- *             <code>UpdateUserResponse</code> returns the user name and identifier for the request to
- *       update a user's properties.</p>
- */
-export interface UpdateUserResponse {
-    /**
-     * <p>A system-assigned unique identifier for a server instance that the user account is
-     *       assigned to.</p>
-     */
-    ServerId: string | undefined;
-    /**
-     * <p>The unique identifier for a user that is assigned to a server instance that was specified
-     *       in the request.</p>
-     */
-    UserName: string | undefined;
-}
-export declare namespace UpdateUserResponse {
-    /**
-     * @internal
-     */
-    const filterSensitiveLog: (obj: UpdateUserResponse) => any;
-}