@aws-sdk/client-verifiedpermissions 3.525.0 → 3.528.0

package/dist-cjs/index.js

@@ -30,9 +30,15 @@ __export(src_exports, {
   BatchIsAuthorizedInputItemFilterSensitiveLog: () => BatchIsAuthorizedInputItemFilterSensitiveLog,
   BatchIsAuthorizedOutputFilterSensitiveLog: () => BatchIsAuthorizedOutputFilterSensitiveLog,
   BatchIsAuthorizedOutputItemFilterSensitiveLog: () => BatchIsAuthorizedOutputItemFilterSensitiveLog,
+  CognitoUserPoolConfigurationDetailFilterSensitiveLog: () => CognitoUserPoolConfigurationDetailFilterSensitiveLog,
   CognitoUserPoolConfigurationFilterSensitiveLog: () => CognitoUserPoolConfigurationFilterSensitiveLog,
+  CognitoUserPoolConfigurationItemFilterSensitiveLog: () => CognitoUserPoolConfigurationItemFilterSensitiveLog,
   Configuration: () => Configuration,
+  ConfigurationDetail: () => ConfigurationDetail,
+  ConfigurationDetailFilterSensitiveLog: () => ConfigurationDetailFilterSensitiveLog,
   ConfigurationFilterSensitiveLog: () => ConfigurationFilterSensitiveLog,
+  ConfigurationItem: () => ConfigurationItem,
+  ConfigurationItemFilterSensitiveLog: () => ConfigurationItemFilterSensitiveLog,
   ConflictException: () => ConflictException,
   ContextDefinition: () => ContextDefinition,
   ContextDefinitionFilterSensitiveLog: () => ContextDefinitionFilterSensitiveLog,
@@ -426,6 +432,22 @@ var Configuration;
     return visitor._(value.$unknown[0], value.$unknown[1]);
   }, "visit");
 })(Configuration || (Configuration = {}));
+var ConfigurationDetail;
+((ConfigurationDetail2) => {
+  ConfigurationDetail2.visit = /* @__PURE__ */ __name((value, visitor) => {
+    if (value.cognitoUserPoolConfiguration !== void 0)
+      return visitor.cognitoUserPoolConfiguration(value.cognitoUserPoolConfiguration);
+    return visitor._(value.$unknown[0], value.$unknown[1]);
+  }, "visit");
+})(ConfigurationDetail || (ConfigurationDetail = {}));
+var ConfigurationItem;
+((ConfigurationItem2) => {
+  ConfigurationItem2.visit = /* @__PURE__ */ __name((value, visitor) => {
+    if (value.cognitoUserPoolConfiguration !== void 0)
+      return visitor.cognitoUserPoolConfiguration(value.cognitoUserPoolConfiguration);
+    return visitor._(value.$unknown[0], value.$unknown[1]);
+  }, "visit");
+})(ConfigurationItem || (ConfigurationItem = {}));
 var _ConflictException = class _ConflictException extends VerifiedPermissionsServiceException {
   /**
    * @internal
@@ -591,6 +613,14 @@ var CognitoUserPoolConfigurationFilterSensitiveLog = /* @__PURE__ */ __name((obj
   ...obj,
   ...obj.clientIds && { clientIds: import_smithy_client.SENSITIVE_STRING }
 }), "CognitoUserPoolConfigurationFilterSensitiveLog");
+var CognitoUserPoolConfigurationDetailFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
+  ...obj,
+  ...obj.clientIds && { clientIds: import_smithy_client.SENSITIVE_STRING }
+}), "CognitoUserPoolConfigurationDetailFilterSensitiveLog");
+var CognitoUserPoolConfigurationItemFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
+  ...obj,
+  ...obj.clientIds && { clientIds: import_smithy_client.SENSITIVE_STRING }
+}), "CognitoUserPoolConfigurationItemFilterSensitiveLog");
 var ConfigurationFilterSensitiveLog = /* @__PURE__ */ __name((obj) => {
   if (obj.cognitoUserPoolConfiguration !== void 0)
     return {
@@ -599,6 +629,26 @@ var ConfigurationFilterSensitiveLog = /* @__PURE__ */ __name((obj) => {
   if (obj.$unknown !== void 0)
     return { [obj.$unknown[0]]: "UNKNOWN" };
 }, "ConfigurationFilterSensitiveLog");
+var ConfigurationDetailFilterSensitiveLog = /* @__PURE__ */ __name((obj) => {
+  if (obj.cognitoUserPoolConfiguration !== void 0)
+    return {
+      cognitoUserPoolConfiguration: CognitoUserPoolConfigurationDetailFilterSensitiveLog(
+        obj.cognitoUserPoolConfiguration
+      )
+    };
+  if (obj.$unknown !== void 0)
+    return { [obj.$unknown[0]]: "UNKNOWN" };
+}, "ConfigurationDetailFilterSensitiveLog");
+var ConfigurationItemFilterSensitiveLog = /* @__PURE__ */ __name((obj) => {
+  if (obj.cognitoUserPoolConfiguration !== void 0)
+    return {
+      cognitoUserPoolConfiguration: CognitoUserPoolConfigurationItemFilterSensitiveLog(
+        obj.cognitoUserPoolConfiguration
+      )
+    };
+  if (obj.$unknown !== void 0)
+    return { [obj.$unknown[0]]: "UNKNOWN" };
+}, "ConfigurationItemFilterSensitiveLog");
 var CreateIdentitySourceInputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
   ...obj.configuration && { configuration: ConfigurationFilterSensitiveLog(obj.configuration) },
@@ -655,7 +705,8 @@ var IdentitySourceDetailsFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
 var GetIdentitySourceOutputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
   ...obj.details && { details: IdentitySourceDetailsFilterSensitiveLog(obj.details) },
-  ...obj.principalEntityType && { principalEntityType: import_smithy_client.SENSITIVE_STRING }
+  ...obj.principalEntityType && { principalEntityType: import_smithy_client.SENSITIVE_STRING },
+  ...obj.configuration && { configuration: ConfigurationDetailFilterSensitiveLog(obj.configuration) }
 }), "GetIdentitySourceOutputFilterSensitiveLog");
 var StaticPolicyDefinitionDetailFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
@@ -710,7 +761,8 @@ var IdentitySourceItemDetailsFilterSensitiveLog = /* @__PURE__ */ __name((obj) =
 var IdentitySourceItemFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
   ...obj.details && { details: IdentitySourceItemDetailsFilterSensitiveLog(obj.details) },
-  ...obj.principalEntityType && { principalEntityType: import_smithy_client.SENSITIVE_STRING }
+  ...obj.principalEntityType && { principalEntityType: import_smithy_client.SENSITIVE_STRING },
+  ...obj.configuration && { configuration: ConfigurationItemFilterSensitiveLog(obj.configuration) }
 }), "IdentitySourceItemFilterSensitiveLog");
 var ListIdentitySourcesOutputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
@@ -1758,6 +1810,7 @@ var de_CreatePolicyTemplateOutput = /* @__PURE__ */ __name((output, context) =>
 }, "de_CreatePolicyTemplateOutput");
 var de_GetIdentitySourceOutput = /* @__PURE__ */ __name((output, context) => {
   return (0, import_smithy_client.take)(output, {
+    configuration: (_) => (0, import_smithy_client._json)((0, import_core2.awsExpectUnion)(_)),
     createdDate: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseRfc3339DateTimeWithOffset)(_)),
     details: import_smithy_client._json,
     identitySourceId: import_smithy_client.expectString,
@@ -1809,6 +1862,7 @@ var de_GetSchemaOutput = /* @__PURE__ */ __name((output, context) => {
 }, "de_GetSchemaOutput");
 var de_IdentitySourceItem = /* @__PURE__ */ __name((output, context) => {
   return (0, import_smithy_client.take)(output, {
+    configuration: (_) => (0, import_smithy_client._json)((0, import_core2.awsExpectUnion)(_)),
     createdDate: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseRfc3339DateTimeWithOffset)(_)),
     details: import_smithy_client._json,
     identitySourceId: import_smithy_client.expectString,
@@ -2545,6 +2599,8 @@ var import_util_endpoints = require("@aws-sdk/util-endpoints");
   ThrottlingException,
   ValidationException,
   Configuration,
+  ConfigurationDetail,
+  ConfigurationItem,
   ConflictException,
   ServiceQuotaExceededException,
   PolicyDefinition,
@@ -2564,7 +2620,11 @@ var import_util_endpoints = require("@aws-sdk/util-endpoints");
   EntityIdentifierFilterSensitiveLog,
   EvaluationErrorItemFilterSensitiveLog,
   CognitoUserPoolConfigurationFilterSensitiveLog,
+  CognitoUserPoolConfigurationDetailFilterSensitiveLog,
+  CognitoUserPoolConfigurationItemFilterSensitiveLog,
   ConfigurationFilterSensitiveLog,
+  ConfigurationDetailFilterSensitiveLog,
+  ConfigurationItemFilterSensitiveLog,
   CreateIdentitySourceInputFilterSensitiveLog,
   StaticPolicyDefinitionFilterSensitiveLog,
   TemplateLinkedPolicyDefinitionFilterSensitiveLog,

package/dist-es/models/models_0.js

@@ -88,6 +88,22 @@ export var Configuration;
         return visitor._(value.$unknown[0], value.$unknown[1]);
     };
 })(Configuration || (Configuration = {}));
+export var ConfigurationDetail;
+(function (ConfigurationDetail) {
+    ConfigurationDetail.visit = (value, visitor) => {
+        if (value.cognitoUserPoolConfiguration !== undefined)
+            return visitor.cognitoUserPoolConfiguration(value.cognitoUserPoolConfiguration);
+        return visitor._(value.$unknown[0], value.$unknown[1]);
+    };
+})(ConfigurationDetail || (ConfigurationDetail = {}));
+export var ConfigurationItem;
+(function (ConfigurationItem) {
+    ConfigurationItem.visit = (value, visitor) => {
+        if (value.cognitoUserPoolConfiguration !== undefined)
+            return visitor.cognitoUserPoolConfiguration(value.cognitoUserPoolConfiguration);
+        return visitor._(value.$unknown[0], value.$unknown[1]);
+    };
+})(ConfigurationItem || (ConfigurationItem = {}));
 export class ConflictException extends __BaseException {
     constructor(opts) {
         super({
@@ -243,6 +259,14 @@ export const CognitoUserPoolConfigurationFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.clientIds && { clientIds: SENSITIVE_STRING }),
 });
+export const CognitoUserPoolConfigurationDetailFilterSensitiveLog = (obj) => ({
+    ...obj,
+    ...(obj.clientIds && { clientIds: SENSITIVE_STRING }),
+});
+export const CognitoUserPoolConfigurationItemFilterSensitiveLog = (obj) => ({
+    ...obj,
+    ...(obj.clientIds && { clientIds: SENSITIVE_STRING }),
+});
 export const ConfigurationFilterSensitiveLog = (obj) => {
     if (obj.cognitoUserPoolConfiguration !== undefined)
         return {
@@ -251,6 +275,22 @@ export const ConfigurationFilterSensitiveLog = (obj) => {
     if (obj.$unknown !== undefined)
         return { [obj.$unknown[0]]: "UNKNOWN" };
 };
+export const ConfigurationDetailFilterSensitiveLog = (obj) => {
+    if (obj.cognitoUserPoolConfiguration !== undefined)
+        return {
+            cognitoUserPoolConfiguration: CognitoUserPoolConfigurationDetailFilterSensitiveLog(obj.cognitoUserPoolConfiguration),
+        };
+    if (obj.$unknown !== undefined)
+        return { [obj.$unknown[0]]: "UNKNOWN" };
+};
+export const ConfigurationItemFilterSensitiveLog = (obj) => {
+    if (obj.cognitoUserPoolConfiguration !== undefined)
+        return {
+            cognitoUserPoolConfiguration: CognitoUserPoolConfigurationItemFilterSensitiveLog(obj.cognitoUserPoolConfiguration),
+        };
+    if (obj.$unknown !== undefined)
+        return { [obj.$unknown[0]]: "UNKNOWN" };
+};
 export const CreateIdentitySourceInputFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.configuration && { configuration: ConfigurationFilterSensitiveLog(obj.configuration) }),
@@ -308,6 +348,7 @@ export const GetIdentitySourceOutputFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.details && { details: IdentitySourceDetailsFilterSensitiveLog(obj.details) }),
     ...(obj.principalEntityType && { principalEntityType: SENSITIVE_STRING }),
+    ...(obj.configuration && { configuration: ConfigurationDetailFilterSensitiveLog(obj.configuration) }),
 });
 export const StaticPolicyDefinitionDetailFilterSensitiveLog = (obj) => ({
     ...obj,
@@ -363,6 +404,7 @@ export const IdentitySourceItemFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.details && { details: IdentitySourceItemDetailsFilterSensitiveLog(obj.details) }),
     ...(obj.principalEntityType && { principalEntityType: SENSITIVE_STRING }),
+    ...(obj.configuration && { configuration: ConfigurationItemFilterSensitiveLog(obj.configuration) }),
 });
 export const ListIdentitySourcesOutputFilterSensitiveLog = (obj) => ({
     ...obj,

package/dist-es/protocols/Aws_json1_0.js

@@ -833,6 +833,7 @@ const de_CreatePolicyTemplateOutput = (output, context) => {
 };
 const de_GetIdentitySourceOutput = (output, context) => {
     return take(output, {
+        configuration: (_) => _json(__expectUnion(_)),
         createdDate: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
         details: _json,
         identitySourceId: __expectString,
@@ -884,6 +885,7 @@ const de_GetSchemaOutput = (output, context) => {
 };
 const de_IdentitySourceItem = (output, context) => {
     return take(output, {
+        configuration: (_) => _json(__expectUnion(_)),
         createdDate: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
         details: _json,
         identitySourceId: __expectString,

package/dist-types/commands/CreateIdentitySourceCommand.d.ts

@@ -55,7 +55,7 @@ declare const CreateIdentitySourceCommand_base: {
  *          <note>
  *             <p>Verified Permissions is <i>
  *                   <a href="https://wikipedia.org/wiki/Eventual_consistency">eventually consistent</a>
- *                </i>. It can take a few seconds for a new or changed element to be propagate through
+ *                </i>. It can take a few seconds for a new or changed element to propagate through
  *     the service and be visible in the results of other Verified Permissions operations.</p>
  *          </note>
  * @example

package/dist-types/commands/CreatePolicyCommand.d.ts

@@ -50,7 +50,7 @@ declare const CreatePolicyCommand_base: {
  *          <note>
  *             <p>Verified Permissions is <i>
  *                   <a href="https://wikipedia.org/wiki/Eventual_consistency">eventually consistent</a>
- *                </i>. It can take a few seconds for a new or changed element to be propagate through
+ *                </i>. It can take a few seconds for a new or changed element to propagate through
  *     the service and be visible in the results of other Verified Permissions operations.</p>
  *          </note>
  * @example

package/dist-types/commands/CreatePolicyStoreCommand.d.ts

@@ -34,7 +34,7 @@ declare const CreatePolicyStoreCommand_base: {
  *          <note>
  *             <p>Verified Permissions is <i>
  *                   <a href="https://wikipedia.org/wiki/Eventual_consistency">eventually consistent</a>
- *                </i>. It can take a few seconds for a new or changed element to be propagate through
+ *                </i>. It can take a few seconds for a new or changed element to propagate through
  *     the service and be visible in the results of other Verified Permissions operations.</p>
  *          </note>
  * @example

package/dist-types/commands/CreatePolicyTemplateCommand.d.ts

@@ -36,7 +36,7 @@ declare const CreatePolicyTemplateCommand_base: {
  *          <note>
  *             <p>Verified Permissions is <i>
  *                   <a href="https://wikipedia.org/wiki/Eventual_consistency">eventually consistent</a>
- *                </i>. It can take a few seconds for a new or changed element to be propagate through
+ *                </i>. It can take a few seconds for a new or changed element to propagate through
  *     the service and be visible in the results of other Verified Permissions operations.</p>
  *          </note>
  * @example

package/dist-types/commands/GetIdentitySourceCommand.d.ts

@@ -53,6 +53,15 @@ declare const GetIdentitySourceCommand_base: {
  * //   lastUpdatedDate: new Date("TIMESTAMP"), // required
  * //   policyStoreId: "STRING_VALUE", // required
  * //   principalEntityType: "STRING_VALUE", // required
+ * //   configuration: { // ConfigurationDetail Union: only one key present
+ * //     cognitoUserPoolConfiguration: { // CognitoUserPoolConfigurationDetail
+ * //       userPoolArn: "STRING_VALUE", // required
+ * //       clientIds: [ // required
+ * //         "STRING_VALUE",
+ * //       ],
+ * //       issuer: "STRING_VALUE", // required
+ * //     },
+ * //   },
  * // };
  *
  * ```

package/dist-types/commands/ListIdentitySourcesCommand.d.ts

@@ -62,6 +62,15 @@ declare const ListIdentitySourcesCommand_base: {
  * //       lastUpdatedDate: new Date("TIMESTAMP"), // required
  * //       policyStoreId: "STRING_VALUE", // required
  * //       principalEntityType: "STRING_VALUE", // required
+ * //       configuration: { // ConfigurationItem Union: only one key present
+ * //         cognitoUserPoolConfiguration: { // CognitoUserPoolConfigurationItem
+ * //           userPoolArn: "STRING_VALUE", // required
+ * //           clientIds: [ // required
+ * //             "STRING_VALUE",
+ * //           ],
+ * //           issuer: "STRING_VALUE", // required
+ * //         },
+ * //       },
  * //     },
  * //   ],
  * // };

package/dist-types/commands/PutSchemaCommand.d.ts

@@ -34,7 +34,7 @@ declare const PutSchemaCommand_base: {
  *          <note>
  *             <p>Verified Permissions is <i>
  *                   <a href="https://wikipedia.org/wiki/Eventual_consistency">eventually consistent</a>
- *                </i>. It can take a few seconds for a new or changed element to be propagate through
+ *                </i>. It can take a few seconds for a new or changed element to propagate through
  *     the service and be visible in the results of other Verified Permissions operations.</p>
  *          </note>
  * @example

package/dist-types/commands/UpdateIdentitySourceCommand.d.ts

@@ -31,7 +31,7 @@ declare const UpdateIdentitySourceCommand_base: {
  *          <note>
  *             <p>Verified Permissions is <i>
  *                   <a href="https://wikipedia.org/wiki/Eventual_consistency">eventually consistent</a>
- *                </i>. It can take a few seconds for a new or changed element to be propagate through
+ *                </i>. It can take a few seconds for a new or changed element to propagate through
  *     the service and be visible in the results of other Verified Permissions operations.</p>
  *          </note>
  * @example

package/dist-types/commands/UpdatePolicyCommand.d.ts

@@ -38,7 +38,7 @@ declare const UpdatePolicyCommand_base: {
  *                         stored.</p>
  *                </li>
  *                <li>
- *                   <p>When you edit a static policy, You can change only certain elements of a static
+ *                   <p>When you edit a static policy, you can change only certain elements of a static
  *                         policy:</p>
  *                   <ul>
  *                      <li>
@@ -74,7 +74,7 @@ declare const UpdatePolicyCommand_base: {
  *          <note>
  *             <p>Verified Permissions is <i>
  *                   <a href="https://wikipedia.org/wiki/Eventual_consistency">eventually consistent</a>
- *                </i>. It can take a few seconds for a new or changed element to be propagate through
+ *                </i>. It can take a few seconds for a new or changed element to propagate through
  *     the service and be visible in the results of other Verified Permissions operations.</p>
  *          </note>
  * @example

package/dist-types/commands/UpdatePolicyStoreCommand.d.ts

@@ -30,7 +30,7 @@ declare const UpdatePolicyStoreCommand_base: {
  *          <note>
  *             <p>Verified Permissions is <i>
  *                   <a href="https://wikipedia.org/wiki/Eventual_consistency">eventually consistent</a>
- *                </i>. It can take a few seconds for a new or changed element to be propagate through
+ *                </i>. It can take a few seconds for a new or changed element to propagate through
  *     the service and be visible in the results of other Verified Permissions operations.</p>
  *          </note>
  * @example

package/dist-types/commands/UpdatePolicyTemplateCommand.d.ts

@@ -36,7 +36,7 @@ declare const UpdatePolicyTemplateCommand_base: {
  *          <note>
  *             <p>Verified Permissions is <i>
  *                   <a href="https://wikipedia.org/wiki/Eventual_consistency">eventually consistent</a>
- *                </i>. It can take a few seconds for a new or changed element to be propagate through
+ *                </i>. It can take a few seconds for a new or changed element to propagate through
  *     the service and be visible in the results of other Verified Permissions operations.</p>
  *          </note>
  * @example

package/dist-types/models/models_0.d.ts

@@ -297,7 +297,7 @@ export declare class ValidationException extends __BaseException {
  * <p>The configuration for an identity source that represents a connection to an Amazon Cognito user pool used
  *             as an identity provider for Verified Permissions.</p>
  *          <p>This data type is used as a field that is part of an <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_Configuration.html">Configuration</a> structure that is
- *             used as a parameter to the <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_Configuration.html">Configuration</a>.</p>
+ *             used as a parameter to <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_CreateIdentitySource.html">CreateIdentitySource</a>.</p>
  *          <p>Example:<code>"CognitoUserPoolConfiguration":\{"UserPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","ClientIds":
  *                 ["a1b2c3d4e5f6g7h8i9j0kalbmc"]\}</code>
  *          </p>
@@ -321,6 +321,82 @@ export interface CognitoUserPoolConfiguration {
      */
     clientIds?: string[];
 }
+/**
+ * @public
+ * <p>The configuration for an identity source that represents a connection to an Amazon Cognito user pool used
+ *             as an identity provider for Verified Permissions.</p>
+ *          <p>This data type is used as a field that is part of an <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ConfigurationDetail.html">ConfigurationDetail</a> structure that is
+ *             part of the response to <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_GetIdentitySource.html">GetIdentitySource</a>.</p>
+ *          <p>Example:<code>"CognitoUserPoolConfiguration":\{"UserPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","ClientIds":
+ *             ["a1b2c3d4e5f6g7h8i9j0kalbmc"]\}</code>
+ *          </p>
+ */
+export interface CognitoUserPoolConfigurationDetail {
+    /**
+     * @public
+     * <p>The <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Name (ARN)</a> of the Amazon Cognito user pool that contains the identities to be
+     *             authorized.</p>
+     *          <p>Example: <code>"userPoolArn":
+     *             "arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5"</code>
+     *          </p>
+     */
+    userPoolArn: string | undefined;
+    /**
+     * @public
+     * <p>The unique application client IDs that are associated with the specified Amazon Cognito user
+     *             pool.</p>
+     *          <p>Example: <code>"clientIds": ["&amp;ExampleCogClientId;"]</code>
+     *          </p>
+     */
+    clientIds: string[] | undefined;
+    /**
+     * @public
+     * <p>The OpenID Connect (OIDC) <code>issuer</code> ID of the Amazon Cognito user pool that contains the identities to be
+     *             authorized.</p>
+     *          <p>Example: <code>"issuer":
+     *             "https://cognito-idp.us-east-1.amazonaws.com/us-east-1_1a2b3c4d5"</code>
+     *          </p>
+     */
+    issuer: string | undefined;
+}
+/**
+ * @public
+ * <p>The configuration for an identity source that represents a connection to an Amazon Cognito user pool used
+ *             as an identity provider for Verified Permissions.</p>
+ *          <p>This data type is used as a field that is part of the <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ConfigurationItem.html">ConfigurationItem</a> structure that is
+ *             part of the response to <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ListIdentitySources.html">ListIdentitySources</a>.</p>
+ *          <p>Example:<code>"CognitoUserPoolConfiguration":\{"UserPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","ClientIds":
+ *             ["a1b2c3d4e5f6g7h8i9j0kalbmc"]\}</code>
+ *          </p>
+ */
+export interface CognitoUserPoolConfigurationItem {
+    /**
+     * @public
+     * <p>The <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Name (ARN)</a> of the Amazon Cognito user pool that contains the identities to be
+     *             authorized.</p>
+     *          <p>Example: <code>"userPoolArn":
+     *             "arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5"</code>
+     *          </p>
+     */
+    userPoolArn: string | undefined;
+    /**
+     * @public
+     * <p>The unique application client IDs that are associated with the specified Amazon Cognito user
+     *             pool.</p>
+     *          <p>Example: <code>"clientIds": ["&amp;ExampleCogClientId;"]</code>
+     *          </p>
+     */
+    clientIds: string[] | undefined;
+    /**
+     * @public
+     * <p>The OpenID Connect (OIDC) <code>issuer</code> ID of the Amazon Cognito user pool that contains the identities to be
+     *             authorized.</p>
+     *          <p>Example: <code>"issuer":
+     *             "https://cognito-idp.us-east-1.amazonaws.com/us-east-1_1a2b3c4d5"</code>
+     *          </p>
+     */
+    issuer: string | undefined;
+}
 /**
  * @public
  * <p>Contains configuration information used when creating a new identity source.</p>
@@ -365,6 +441,82 @@ export declare namespace Configuration {
     }
     const visit: <T>(value: Configuration, visitor: Visitor<T>) => T;
 }
+/**
+ * @public
+ * <p>Contains configuration information about an identity source.</p>
+ *          <p>This data type is a response parameter to the <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_GetIdentitySource.html">GetIdentitySource</a>
+ *             operation.</p>
+ */
+export type ConfigurationDetail = ConfigurationDetail.CognitoUserPoolConfigurationMember | ConfigurationDetail.$UnknownMember;
+/**
+ * @public
+ */
+export declare namespace ConfigurationDetail {
+    /**
+     * @public
+     * <p>Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of
+     *             authenticated identities as entities. It specifies the <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Name (ARN)</a> of a Amazon Cognito user pool
+     *             and one or more application client IDs.</p>
+     *          <p>Example:
+     *             <code>"configuration":\{"cognitoUserPoolConfiguration":\{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds":
+     *                 ["a1b2c3d4e5f6g7h8i9j0kalbmc"]\}\}</code>
+     *          </p>
+     */
+    interface CognitoUserPoolConfigurationMember {
+        cognitoUserPoolConfiguration: CognitoUserPoolConfigurationDetail;
+        $unknown?: never;
+    }
+    /**
+     * @public
+     */
+    interface $UnknownMember {
+        cognitoUserPoolConfiguration?: never;
+        $unknown: [string, any];
+    }
+    interface Visitor<T> {
+        cognitoUserPoolConfiguration: (value: CognitoUserPoolConfigurationDetail) => T;
+        _: (name: string, value: any) => T;
+    }
+    const visit: <T>(value: ConfigurationDetail, visitor: Visitor<T>) => T;
+}
+/**
+ * @public
+ * <p>Contains configuration information about an identity source.</p>
+ *          <p>This data type is a response parameter to the <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ListIdentitySources.html">ListIdentitySources</a>
+ *             operation.</p>
+ */
+export type ConfigurationItem = ConfigurationItem.CognitoUserPoolConfigurationMember | ConfigurationItem.$UnknownMember;
+/**
+ * @public
+ */
+export declare namespace ConfigurationItem {
+    /**
+     * @public
+     * <p>Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of
+     *             authenticated identities as entities. It specifies the <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Name (ARN)</a> of a Amazon Cognito user pool
+     *             and one or more application client IDs.</p>
+     *          <p>Example:
+     *             <code>"configuration":\{"cognitoUserPoolConfiguration":\{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds":
+     *                 ["a1b2c3d4e5f6g7h8i9j0kalbmc"]\}\}</code>
+     *          </p>
+     */
+    interface CognitoUserPoolConfigurationMember {
+        cognitoUserPoolConfiguration: CognitoUserPoolConfigurationItem;
+        $unknown?: never;
+    }
+    /**
+     * @public
+     */
+    interface $UnknownMember {
+        cognitoUserPoolConfiguration?: never;
+        $unknown: [string, any];
+    }
+    interface Visitor<T> {
+        cognitoUserPoolConfiguration: (value: CognitoUserPoolConfigurationItem) => T;
+        _: (name: string, value: any) => T;
+    }
+    const visit: <T>(value: ConfigurationItem, visitor: Visitor<T>) => T;
+}
 /**
  * @public
  * <p>Contains information about a resource conflict.</p>
@@ -414,8 +566,11 @@ export interface CreateIdentitySourceInput {
      *          <p>If you don't provide this value, then Amazon Web Services generates a random one for
      *              you.</p>
      *          <p>If you retry the operation with the same <code>ClientToken</code>, but with
-     *              different parameters, the retry fails with an <code>IdempotentParameterMismatch</code>
+     *              different parameters, the retry fails with an <code>ConflictException</code>
      *              error.</p>
+     *          <p>Verified Permissions recognizes a <code>ClientToken</code> for eight hours. After eight hours,
+     *              the next request with the same parameters performs the operation again regardless of
+     *              the value of <code>ClientToken</code>.</p>
      */
     clientToken?: string;
     /**
@@ -610,8 +765,11 @@ export interface CreatePolicyInput {
      *          <p>If you don't provide this value, then Amazon Web Services generates a random one for
      *              you.</p>
      *          <p>If you retry the operation with the same <code>ClientToken</code>, but with
-     *              different parameters, the retry fails with an <code>IdempotentParameterMismatch</code>
+     *              different parameters, the retry fails with an <code>ConflictException</code>
      *              error.</p>
+     *          <p>Verified Permissions recognizes a <code>ClientToken</code> for eight hours. After eight hours,
+     *              the next request with the same parameters performs the operation again regardless of
+     *              the value of <code>ClientToken</code>.</p>
      */
     clientToken?: string;
     /**
@@ -743,8 +901,11 @@ export interface CreatePolicyStoreInput {
      *          <p>If you don't provide this value, then Amazon Web Services generates a random one for
      *              you.</p>
      *          <p>If you retry the operation with the same <code>ClientToken</code>, but with
-     *              different parameters, the retry fails with an <code>IdempotentParameterMismatch</code>
+     *              different parameters, the retry fails with an <code>ConflictException</code>
      *              error.</p>
+     *          <p>Verified Permissions recognizes a <code>ClientToken</code> for eight hours. After eight hours,
+     *              the next request with the same parameters performs the operation again regardless of
+     *              the value of <code>ClientToken</code>.</p>
      */
     clientToken?: string;
     /**
@@ -806,8 +967,11 @@ export interface CreatePolicyTemplateInput {
      *          <p>If you don't provide this value, then Amazon Web Services generates a random one for
      *              you.</p>
      *          <p>If you retry the operation with the same <code>ClientToken</code>, but with
-     *              different parameters, the retry fails with an <code>IdempotentParameterMismatch</code>
+     *              different parameters, the retry fails with an <code>ConflictException</code>
      *              error.</p>
+     *          <p>Verified Permissions recognizes a <code>ClientToken</code> for eight hours. After eight hours,
+     *              the next request with the same parameters performs the operation again regardless of
+     *              the value of <code>ClientToken</code>.</p>
      */
     clientToken?: string;
     /**
@@ -1003,25 +1167,33 @@ export declare const OpenIdIssuer: {
 export type OpenIdIssuer = (typeof OpenIdIssuer)[keyof typeof OpenIdIssuer];
 /**
  * @public
+ * @deprecated
+ *
  * <p>A structure that contains configuration of the identity source.</p>
- *          <p>This data type is used as a response parameter for the <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_CreateIdentitySource.html">CreateIdentitySource</a>
- *             operation.</p>
+ *          <p>This data type was a response parameter for the <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_GetIdentitySource.html">GetIdentitySource</a>
+ *             operation. Replaced by <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ConfigurationDetail.html">ConfigurationDetail</a>.</p>
  */
 export interface IdentitySourceDetails {
     /**
      * @public
+     * @deprecated
+     *
      * <p>The application client IDs associated with the specified Amazon Cognito user pool that are
      *             enabled for this identity source.</p>
      */
     clientIds?: string[];
     /**
      * @public
+     * @deprecated
+     *
      * <p>The <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Name (ARN)</a> of the Amazon Cognito user pool whose identities are accessible to this Verified Permissions
      *             policy store.</p>
      */
     userPoolArn?: string;
     /**
      * @public
+     * @deprecated
+     *
      * <p>The well-known URL that points to this user pool's OIDC discovery endpoint. This is a
      *             URL string in the following format. This URL replaces the placeholders for both the
      *             Amazon Web Services Region and the user pool identifier with those appropriate for this user
@@ -1033,6 +1205,8 @@ export interface IdentitySourceDetails {
     discoveryUrl?: string;
     /**
      * @public
+     * @deprecated
+     *
      * <p>A string that identifies the type of OIDC service represented by this identity source. </p>
      *          <p>At this time, the only valid value is <code>cognito</code>.</p>
      */
@@ -1049,9 +1223,11 @@ export interface GetIdentitySourceOutput {
     createdDate: Date | undefined;
     /**
      * @public
+     * @deprecated
+     *
      * <p>A structure that describes the configuration of the identity source.</p>
      */
-    details: IdentitySourceDetails | undefined;
+    details?: IdentitySourceDetails;
     /**
      * @public
      * <p>The ID of the identity source.</p>
@@ -1073,6 +1249,11 @@ export interface GetIdentitySourceOutput {
      *             identity source.</p>
      */
     principalEntityType: string | undefined;
+    /**
+     * @public
+     * <p>Contains configuration information about an identity source.</p>
+     */
+    configuration?: ConfigurationDetail;
 }
 /**
  * @public
@@ -1111,10 +1292,7 @@ export interface StaticPolicyDefinitionDetail {
 }
 /**
  * @public
- * <p>Contains information about a policy that was </p>
- *          <p/>
- *          <p>created by instantiating a policy template. </p>
- *          <p>This </p>
+ * <p>Contains information about a policy that was created by instantiating a policy template. </p>
  */
 export interface TemplateLinkedPolicyDefinitionDetail {
     /**
@@ -1369,7 +1547,7 @@ export interface GetSchemaOutput {
  * @public
  * <p>A structure that defines characteristics of an identity source that you can use to
  *             filter.</p>
- *          <p>This data type is used as a request parameter for the <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ListIdentityStores.html">ListIdentityStores</a>
+ *          <p>This data type is a request parameter for the <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ListIdentityStores.html">ListIdentityStores</a>
  *             operation.</p>
  */
 export interface IdentitySourceFilter {
@@ -1421,24 +1599,32 @@ export interface ListIdentitySourcesInput {
 }
 /**
  * @public
+ * @deprecated
+ *
  * <p>A structure that contains configuration of the identity source.</p>
- *          <p>This data type is used as a response parameter for the <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_CreateIdentitySource.html">CreateIdentitySource</a>
- *             operation.</p>
+ *          <p>This data type was a response parameter for the <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ListIdentitySources.html">ListIdentitySources</a>
+ *             operation. Replaced by <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ConfigurationItem.html">ConfigurationItem</a>.</p>
  */
 export interface IdentitySourceItemDetails {
     /**
      * @public
+     * @deprecated
+     *
      * <p>The application client IDs associated with the specified Amazon Cognito user pool that are
      *             enabled for this identity source.</p>
      */
     clientIds?: string[];
     /**
      * @public
+     * @deprecated
+     *
      * <p>The Amazon Cognito user pool whose identities are accessible to this Verified Permissions policy store.</p>
      */
     userPoolArn?: string;
     /**
      * @public
+     * @deprecated
+     *
      * <p>The well-known URL that points to this user pool's OIDC discovery endpoint. This is a
      *             URL string in the following format. This URL replaces the placeholders for both the
      *             Amazon Web Services Region and the user pool identifier with those appropriate for this user
@@ -1450,6 +1636,8 @@ export interface IdentitySourceItemDetails {
     discoveryUrl?: string;
     /**
      * @public
+     * @deprecated
+     *
      * <p>A string that identifies the type of OIDC service represented by this identity source. </p>
      *          <p>At this time, the only valid value is <code>cognito</code>.</p>
      */
@@ -1458,7 +1646,7 @@ export interface IdentitySourceItemDetails {
 /**
  * @public
  * <p>A structure that defines an identity source.</p>
- *          <p>This data type is used as a request parameter for the <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ListIdentityStores.html">ListIdentityStores</a>
+ *          <p>This data type is a response parameter to the <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ListIdentitySources.html">ListIdentitySources</a>
  *             operation.</p>
  */
 export interface IdentitySourceItem {
@@ -1469,10 +1657,12 @@ export interface IdentitySourceItem {
     createdDate: Date | undefined;
     /**
      * @public
+     * @deprecated
+     *
      * <p>A structure that contains the details of the associated identity provider
      *             (IdP).</p>
      */
-    details: IdentitySourceItemDetails | undefined;
+    details?: IdentitySourceItemDetails;
     /**
      * @public
      * <p>The unique identifier of the identity source.</p>
@@ -1494,6 +1684,11 @@ export interface IdentitySourceItem {
      *             identity source.</p>
      */
     principalEntityType: string | undefined;
+    /**
+     * @public
+     * <p>Contains configuration information about an identity source.</p>
+     */
+    configuration?: ConfigurationItem;
 }
 /**
  * @public
@@ -2810,16 +3005,20 @@ export interface IsAuthorizedWithTokenInput {
      * @public
      * <p>Specifies an identity token for the principal to be authorized. This token is provided
      *             to you by the identity provider (IdP) associated with the specified identity source. You must
-     *             specify either an <code>AccessToken</code> or an <code>IdentityToken</code>, or
+     *             specify either an <code>accessToken</code>, an <code>identityToken</code>, or
      *             both.</p>
+     *          <p>Must be an ID token. Verified Permissions returns an error if the <code>token_use</code> claim in the
+     *             submitted token isn't <code>id</code>.</p>
      */
     identityToken?: string;
     /**
      * @public
      * <p>Specifies an access token for the principal to be authorized. This token is provided
      *             to you by the identity provider (IdP) associated with the specified identity source. You must
-     *             specify either an <code>AccessToken</code>, or an <code>IdentityToken</code>, or
+     *             specify either an <code>accessToken</code>, an <code>identityToken</code>, or
      *             both.</p>
+     *          <p>Must be an access token. Verified Permissions returns an error if the <code>token_use</code> claim in
+     *             the submitted token isn't <code>access</code>.</p>
      */
     accessToken?: string;
     /**
@@ -2907,10 +3106,26 @@ export declare const EvaluationErrorItemFilterSensitiveLog: (obj: EvaluationErro
  * @internal
  */
 export declare const CognitoUserPoolConfigurationFilterSensitiveLog: (obj: CognitoUserPoolConfiguration) => any;
+/**
+ * @internal
+ */
+export declare const CognitoUserPoolConfigurationDetailFilterSensitiveLog: (obj: CognitoUserPoolConfigurationDetail) => any;
+/**
+ * @internal
+ */
+export declare const CognitoUserPoolConfigurationItemFilterSensitiveLog: (obj: CognitoUserPoolConfigurationItem) => any;
 /**
  * @internal
  */
 export declare const ConfigurationFilterSensitiveLog: (obj: Configuration) => any;
+/**
+ * @internal
+ */
+export declare const ConfigurationDetailFilterSensitiveLog: (obj: ConfigurationDetail) => any;
+/**
+ * @internal
+ */
+export declare const ConfigurationItemFilterSensitiveLog: (obj: ConfigurationItem) => any;
 /**
  * @internal
  */

package/dist-types/ts3.4/models/models_0.d.ts

@@ -79,6 +79,16 @@ export interface CognitoUserPoolConfiguration {
   userPoolArn: string | undefined;
   clientIds?: string[];
 }
+export interface CognitoUserPoolConfigurationDetail {
+  userPoolArn: string | undefined;
+  clientIds: string[] | undefined;
+  issuer: string | undefined;
+}
+export interface CognitoUserPoolConfigurationItem {
+  userPoolArn: string | undefined;
+  clientIds: string[] | undefined;
+  issuer: string | undefined;
+}
 export type Configuration =
   | Configuration.CognitoUserPoolConfigurationMember
   | Configuration.$UnknownMember;
@@ -97,6 +107,46 @@ export declare namespace Configuration {
   }
   const visit: <T>(value: Configuration, visitor: Visitor<T>) => T;
 }
+export type ConfigurationDetail =
+  | ConfigurationDetail.CognitoUserPoolConfigurationMember
+  | ConfigurationDetail.$UnknownMember;
+export declare namespace ConfigurationDetail {
+  interface CognitoUserPoolConfigurationMember {
+    cognitoUserPoolConfiguration: CognitoUserPoolConfigurationDetail;
+    $unknown?: never;
+  }
+  interface $UnknownMember {
+    cognitoUserPoolConfiguration?: never;
+    $unknown: [string, any];
+  }
+  interface Visitor<T> {
+    cognitoUserPoolConfiguration: (
+      value: CognitoUserPoolConfigurationDetail
+    ) => T;
+    _: (name: string, value: any) => T;
+  }
+  const visit: <T>(value: ConfigurationDetail, visitor: Visitor<T>) => T;
+}
+export type ConfigurationItem =
+  | ConfigurationItem.CognitoUserPoolConfigurationMember
+  | ConfigurationItem.$UnknownMember;
+export declare namespace ConfigurationItem {
+  interface CognitoUserPoolConfigurationMember {
+    cognitoUserPoolConfiguration: CognitoUserPoolConfigurationItem;
+    $unknown?: never;
+  }
+  interface $UnknownMember {
+    cognitoUserPoolConfiguration?: never;
+    $unknown: [string, any];
+  }
+  interface Visitor<T> {
+    cognitoUserPoolConfiguration: (
+      value: CognitoUserPoolConfigurationItem
+    ) => T;
+    _: (name: string, value: any) => T;
+  }
+  const visit: <T>(value: ConfigurationItem, visitor: Visitor<T>) => T;
+}
 export interface ResourceConflict {
   resourceId: string | undefined;
   resourceType: ResourceType | undefined;
@@ -279,11 +329,12 @@ export interface IdentitySourceDetails {
 }
 export interface GetIdentitySourceOutput {
   createdDate: Date | undefined;
-  details: IdentitySourceDetails | undefined;
+  details?: IdentitySourceDetails;
   identitySourceId: string | undefined;
   lastUpdatedDate: Date | undefined;
   policyStoreId: string | undefined;
   principalEntityType: string | undefined;
+  configuration?: ConfigurationDetail;
 }
 export interface GetPolicyInput {
   policyStoreId: string | undefined;
@@ -385,11 +436,12 @@ export interface IdentitySourceItemDetails {
 }
 export interface IdentitySourceItem {
   createdDate: Date | undefined;
-  details: IdentitySourceItemDetails | undefined;
+  details?: IdentitySourceItemDetails;
   identitySourceId: string | undefined;
   lastUpdatedDate: Date | undefined;
   policyStoreId: string | undefined;
   principalEntityType: string | undefined;
+  configuration?: ConfigurationItem;
 }
 export interface ListIdentitySourcesOutput {
   nextToken?: string;
@@ -793,9 +845,21 @@ export declare const EvaluationErrorItemFilterSensitiveLog: (
 export declare const CognitoUserPoolConfigurationFilterSensitiveLog: (
   obj: CognitoUserPoolConfiguration
 ) => any;
+export declare const CognitoUserPoolConfigurationDetailFilterSensitiveLog: (
+  obj: CognitoUserPoolConfigurationDetail
+) => any;
+export declare const CognitoUserPoolConfigurationItemFilterSensitiveLog: (
+  obj: CognitoUserPoolConfigurationItem
+) => any;
 export declare const ConfigurationFilterSensitiveLog: (
   obj: Configuration
 ) => any;
+export declare const ConfigurationDetailFilterSensitiveLog: (
+  obj: ConfigurationDetail
+) => any;
+export declare const ConfigurationItemFilterSensitiveLog: (
+  obj: ConfigurationItem
+) => any;
 export declare const CreateIdentitySourceInputFilterSensitiveLog: (
   obj: CreateIdentitySourceInput
 ) => any;

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-verifiedpermissions",
   "description": "AWS SDK for JavaScript Verifiedpermissions Client for Node.js, Browser and React Native",
-  "version": "3.525.0",
+  "version": "3.528.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-verifiedpermissions",