@aws-sdk/client-verifiedpermissions 3.572.0 → 3.574.0

package/dist-cjs/index.js

@@ -109,6 +109,7 @@ __export(src_exports, {
   PolicyDefinitionFilterSensitiveLog: () => PolicyDefinitionFilterSensitiveLog,
   PolicyDefinitionItem: () => PolicyDefinitionItem,
   PolicyDefinitionItemFilterSensitiveLog: () => PolicyDefinitionItemFilterSensitiveLog,
+  PolicyEffect: () => PolicyEffect,
   PolicyFilterFilterSensitiveLog: () => PolicyFilterFilterSensitiveLog,
   PolicyItemFilterSensitiveLog: () => PolicyItemFilterSensitiveLog,
   PolicyStoreItemFilterSensitiveLog: () => PolicyStoreItemFilterSensitiveLog,
@@ -506,6 +507,10 @@ var PolicyDefinition;
     return visitor._(value.$unknown[0], value.$unknown[1]);
   }, "visit");
 })(PolicyDefinition || (PolicyDefinition = {}));
+var PolicyEffect = {
+  FORBID: "Forbid",
+  PERMIT: "Permit"
+};
 var PolicyType = {
   STATIC: "STATIC",
   TEMPLATE_LINKED: "TEMPLATE_LINKED"
@@ -709,7 +714,8 @@ var CreatePolicyInputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
 var CreatePolicyOutputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
   ...obj.principal && { principal: EntityIdentifierFilterSensitiveLog(obj.principal) },
-  ...obj.resource && { resource: EntityIdentifierFilterSensitiveLog(obj.resource) }
+  ...obj.resource && { resource: EntityIdentifierFilterSensitiveLog(obj.resource) },
+  ...obj.actions && { actions: obj.actions.map((item) => ActionIdentifierFilterSensitiveLog(item)) }
 }), "CreatePolicyOutputFilterSensitiveLog");
 var CreatePolicyStoreInputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
@@ -760,6 +766,7 @@ var GetPolicyOutputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
   ...obj.principal && { principal: EntityIdentifierFilterSensitiveLog(obj.principal) },
   ...obj.resource && { resource: EntityIdentifierFilterSensitiveLog(obj.resource) },
+  ...obj.actions && { actions: obj.actions.map((item) => ActionIdentifierFilterSensitiveLog(item)) },
   ...obj.definition && { definition: PolicyDefinitionDetailFilterSensitiveLog(obj.definition) }
 }), "GetPolicyOutputFilterSensitiveLog");
 var GetPolicyStoreOutputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
@@ -867,6 +874,7 @@ var PolicyItemFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
   ...obj.principal && { principal: EntityIdentifierFilterSensitiveLog(obj.principal) },
   ...obj.resource && { resource: EntityIdentifierFilterSensitiveLog(obj.resource) },
+  ...obj.actions && { actions: obj.actions.map((item) => ActionIdentifierFilterSensitiveLog(item)) },
   ...obj.definition && { definition: PolicyDefinitionItemFilterSensitiveLog(obj.definition) }
 }), "PolicyItemFilterSensitiveLog");
 var ListPoliciesOutputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
@@ -909,7 +917,8 @@ var UpdatePolicyInputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
 var UpdatePolicyOutputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
   ...obj.principal && { principal: EntityIdentifierFilterSensitiveLog(obj.principal) },
-  ...obj.resource && { resource: EntityIdentifierFilterSensitiveLog(obj.resource) }
+  ...obj.resource && { resource: EntityIdentifierFilterSensitiveLog(obj.resource) },
+  ...obj.actions && { actions: obj.actions.map((item) => ActionIdentifierFilterSensitiveLog(item)) }
 }), "UpdatePolicyOutputFilterSensitiveLog");
 var UpdatePolicyTemplateInputFilterSensitiveLog = /* @__PURE__ */ __name((obj) => ({
   ...obj,
@@ -1915,7 +1924,9 @@ var de_CreateIdentitySourceOutput = /* @__PURE__ */ __name((output, context) =>
 }, "de_CreateIdentitySourceOutput");
 var de_CreatePolicyOutput = /* @__PURE__ */ __name((output, context) => {
   return (0, import_smithy_client.take)(output, {
+    actions: import_smithy_client._json,
     createdDate: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseRfc3339DateTimeWithOffset)(_)),
+    effect: import_smithy_client.expectString,
     lastUpdatedDate: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseRfc3339DateTimeWithOffset)(_)),
     policyId: import_smithy_client.expectString,
     policyStoreId: import_smithy_client.expectString,
@@ -1953,8 +1964,10 @@ var de_GetIdentitySourceOutput = /* @__PURE__ */ __name((output, context) => {
 }, "de_GetIdentitySourceOutput");
 var de_GetPolicyOutput = /* @__PURE__ */ __name((output, context) => {
   return (0, import_smithy_client.take)(output, {
+    actions: import_smithy_client._json,
     createdDate: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseRfc3339DateTimeWithOffset)(_)),
     definition: (_) => (0, import_smithy_client._json)((0, import_core2.awsExpectUnion)(_)),
+    effect: import_smithy_client.expectString,
     lastUpdatedDate: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseRfc3339DateTimeWithOffset)(_)),
     policyId: import_smithy_client.expectString,
     policyStoreId: import_smithy_client.expectString,
@@ -2035,8 +2048,10 @@ var de_ListPolicyTemplatesOutput = /* @__PURE__ */ __name((output, context) => {
 }, "de_ListPolicyTemplatesOutput");
 var de_PolicyItem = /* @__PURE__ */ __name((output, context) => {
   return (0, import_smithy_client.take)(output, {
+    actions: import_smithy_client._json,
     createdDate: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseRfc3339DateTimeWithOffset)(_)),
     definition: (_) => (0, import_smithy_client._json)((0, import_core2.awsExpectUnion)(_)),
+    effect: import_smithy_client.expectString,
     lastUpdatedDate: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseRfc3339DateTimeWithOffset)(_)),
     policyId: import_smithy_client.expectString,
     policyStoreId: import_smithy_client.expectString,
@@ -2114,7 +2129,9 @@ var de_UpdateIdentitySourceOutput = /* @__PURE__ */ __name((output, context) =>
 }, "de_UpdateIdentitySourceOutput");
 var de_UpdatePolicyOutput = /* @__PURE__ */ __name((output, context) => {
   return (0, import_smithy_client.take)(output, {
+    actions: import_smithy_client._json,
     createdDate: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseRfc3339DateTimeWithOffset)(_)),
+    effect: import_smithy_client.expectString,
     lastUpdatedDate: (_) => (0, import_smithy_client.expectNonNull)((0, import_smithy_client.parseRfc3339DateTimeWithOffset)(_)),
     policyId: import_smithy_client.expectString,
     policyStoreId: import_smithy_client.expectString,
@@ -2711,6 +2728,7 @@ var paginateListPolicyTemplates = (0, import_core.createPaginator)(VerifiedPermi
   ConflictException,
   ServiceQuotaExceededException,
   PolicyDefinition,
+  PolicyEffect,
   PolicyType,
   ValidationMode,
   EntityReference,

package/dist-es/models/models_0.js

@@ -143,6 +143,10 @@ export var PolicyDefinition;
         return visitor._(value.$unknown[0], value.$unknown[1]);
     };
 })(PolicyDefinition || (PolicyDefinition = {}));
+export const PolicyEffect = {
+    FORBID: "Forbid",
+    PERMIT: "Permit",
+};
 export const PolicyType = {
     STATIC: "STATIC",
     TEMPLATE_LINKED: "TEMPLATE_LINKED",
@@ -343,6 +347,7 @@ export const CreatePolicyOutputFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.principal && { principal: EntityIdentifierFilterSensitiveLog(obj.principal) }),
     ...(obj.resource && { resource: EntityIdentifierFilterSensitiveLog(obj.resource) }),
+    ...(obj.actions && { actions: obj.actions.map((item) => ActionIdentifierFilterSensitiveLog(item)) }),
 });
 export const CreatePolicyStoreInputFilterSensitiveLog = (obj) => ({
     ...obj,
@@ -393,6 +398,7 @@ export const GetPolicyOutputFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.principal && { principal: EntityIdentifierFilterSensitiveLog(obj.principal) }),
     ...(obj.resource && { resource: EntityIdentifierFilterSensitiveLog(obj.resource) }),
+    ...(obj.actions && { actions: obj.actions.map((item) => ActionIdentifierFilterSensitiveLog(item)) }),
     ...(obj.definition && { definition: PolicyDefinitionDetailFilterSensitiveLog(obj.definition) }),
 });
 export const GetPolicyStoreOutputFilterSensitiveLog = (obj) => ({
@@ -498,6 +504,7 @@ export const PolicyItemFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.principal && { principal: EntityIdentifierFilterSensitiveLog(obj.principal) }),
     ...(obj.resource && { resource: EntityIdentifierFilterSensitiveLog(obj.resource) }),
+    ...(obj.actions && { actions: obj.actions.map((item) => ActionIdentifierFilterSensitiveLog(item)) }),
     ...(obj.definition && { definition: PolicyDefinitionItemFilterSensitiveLog(obj.definition) }),
 });
 export const ListPoliciesOutputFilterSensitiveLog = (obj) => ({
@@ -541,6 +548,7 @@ export const UpdatePolicyOutputFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.principal && { principal: EntityIdentifierFilterSensitiveLog(obj.principal) }),
     ...(obj.resource && { resource: EntityIdentifierFilterSensitiveLog(obj.resource) }),
+    ...(obj.actions && { actions: obj.actions.map((item) => ActionIdentifierFilterSensitiveLog(item)) }),
 });
 export const UpdatePolicyTemplateInputFilterSensitiveLog = (obj) => ({
     ...obj,

package/dist-es/protocols/Aws_json1_0.js

@@ -877,7 +877,9 @@ const de_CreateIdentitySourceOutput = (output, context) => {
 };
 const de_CreatePolicyOutput = (output, context) => {
     return take(output, {
+        actions: _json,
         createdDate: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+        effect: __expectString,
         lastUpdatedDate: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
         policyId: __expectString,
         policyStoreId: __expectString,
@@ -915,8 +917,10 @@ const de_GetIdentitySourceOutput = (output, context) => {
 };
 const de_GetPolicyOutput = (output, context) => {
     return take(output, {
+        actions: _json,
         createdDate: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
         definition: (_) => _json(__expectUnion(_)),
+        effect: __expectString,
         lastUpdatedDate: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
         policyId: __expectString,
         policyStoreId: __expectString,
@@ -999,8 +1003,10 @@ const de_ListPolicyTemplatesOutput = (output, context) => {
 };
 const de_PolicyItem = (output, context) => {
     return take(output, {
+        actions: _json,
         createdDate: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
         definition: (_) => _json(__expectUnion(_)),
+        effect: __expectString,
         lastUpdatedDate: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
         policyId: __expectString,
         policyStoreId: __expectString,
@@ -1086,7 +1092,9 @@ const de_UpdateIdentitySourceOutput = (output, context) => {
 };
 const de_UpdatePolicyOutput = (output, context) => {
     return take(output, {
+        actions: _json,
         createdDate: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
+        effect: __expectString,
         lastUpdatedDate: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
         policyId: __expectString,
         policyStoreId: __expectString,

package/dist-types/commands/CreatePolicyCommand.d.ts

@@ -94,8 +94,15 @@ declare const CreatePolicyCommand_base: {
  * //     entityType: "STRING_VALUE", // required
  * //     entityId: "STRING_VALUE", // required
  * //   },
+ * //   actions: [ // ActionIdentifierList
+ * //     { // ActionIdentifier
+ * //       actionType: "STRING_VALUE", // required
+ * //       actionId: "STRING_VALUE", // required
+ * //     },
+ * //   ],
  * //   createdDate: new Date("TIMESTAMP"), // required
  * //   lastUpdatedDate: new Date("TIMESTAMP"), // required
+ * //   effect: "Permit" || "Forbid",
  * // };
  *
  * ```

package/dist-types/commands/GetPolicyCommand.d.ts

@@ -51,6 +51,12 @@ declare const GetPolicyCommand_base: {
  * //     entityType: "STRING_VALUE", // required
  * //     entityId: "STRING_VALUE", // required
  * //   },
+ * //   actions: [ // ActionIdentifierList
+ * //     { // ActionIdentifier
+ * //       actionType: "STRING_VALUE", // required
+ * //       actionId: "STRING_VALUE", // required
+ * //     },
+ * //   ],
  * //   definition: { // PolicyDefinitionDetail Union: only one key present
  * //     static: { // StaticPolicyDefinitionDetail
  * //       description: "STRING_VALUE",
@@ -70,6 +76,7 @@ declare const GetPolicyCommand_base: {
  * //   },
  * //   createdDate: new Date("TIMESTAMP"), // required
  * //   lastUpdatedDate: new Date("TIMESTAMP"), // required
+ * //   effect: "Permit" || "Forbid",
  * // };
  *
  * ```

package/dist-types/commands/ListPoliciesCommand.d.ts

@@ -73,6 +73,12 @@ declare const ListPoliciesCommand_base: {
  * //         entityType: "STRING_VALUE", // required
  * //         entityId: "STRING_VALUE", // required
  * //       },
+ * //       actions: [ // ActionIdentifierList
+ * //         { // ActionIdentifier
+ * //           actionType: "STRING_VALUE", // required
+ * //           actionId: "STRING_VALUE", // required
+ * //         },
+ * //       ],
  * //       definition: { // PolicyDefinitionItem Union: only one key present
  * //         static: { // StaticPolicyDefinitionItem
  * //           description: "STRING_VALUE",
@@ -91,6 +97,7 @@ declare const ListPoliciesCommand_base: {
  * //       },
  * //       createdDate: new Date("TIMESTAMP"), // required
  * //       lastUpdatedDate: new Date("TIMESTAMP"), // required
+ * //       effect: "Permit" || "Forbid",
  * //     },
  * //   ],
  * // };

package/dist-types/commands/UpdatePolicyCommand.d.ts

@@ -107,8 +107,15 @@ declare const UpdatePolicyCommand_base: {
  * //     entityType: "STRING_VALUE", // required
  * //     entityId: "STRING_VALUE", // required
  * //   },
+ * //   actions: [ // ActionIdentifierList
+ * //     { // ActionIdentifier
+ * //       actionType: "STRING_VALUE", // required
+ * //       actionId: "STRING_VALUE", // required
+ * //     },
+ * //   ],
  * //   createdDate: new Date("TIMESTAMP"), // required
  * //   lastUpdatedDate: new Date("TIMESTAMP"), // required
+ * //   effect: "Permit" || "Forbid",
  * // };
  *
  * ```

package/dist-types/models/models_0.d.ts

@@ -293,8 +293,8 @@ export declare class ValidationException extends __BaseException {
     constructor(opts: __ExceptionOptionType<ValidationException, __BaseException>);
 }
 /**
- * <p>A list of user groups and entities from an Amazon Cognito user pool identity
- *             source.</p>
+ * <p>The type of entity that a policy store maps to groups from an Amazon Cognito user
+ *             pool identity source.</p>
  *          <p>This data type is part of a <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_CognitoUserPoolConfiguration.html">CognitoUserPoolConfiguration</a> structure and is a request parameter in <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_CreateIdentitySource.html">CreateIdentitySource</a>.</p>
  * @public
  */
@@ -307,8 +307,8 @@ export interface CognitoGroupConfiguration {
     groupEntityType: string | undefined;
 }
 /**
- * <p>A list of user groups and entities from an Amazon Cognito user pool identity
- *             source.</p>
+ * <p>The type of entity that a policy store maps to groups from an Amazon Cognito user
+ *             pool identity source.</p>
  *          <p>This data type is part of an <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_CognitoUserPoolConfigurationItem.html">CognitoUserPoolConfigurationDetail</a> structure and is a response parameter to
  *             <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_GetIdentitySource.html">GetIdentitySource</a>.</p>
  * @public
@@ -322,8 +322,8 @@ export interface CognitoGroupConfigurationDetail {
     groupEntityType?: string;
 }
 /**
- * <p>A list of user groups and entities from an Amazon Cognito user pool identity
- *             source.</p>
+ * <p>The type of entity that a policy store maps to groups from an Amazon Cognito user
+ *             pool identity source.</p>
  *          <p>This data type is part of an <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_CognitoUserPoolConfigurationDetail.html">CognitoUserPoolConfigurationItem</a> structure and is a response parameter to
  *             <a href="http://forums.aws.amazon.com/verifiedpermissions/latest/apireference/API_ListIdentitySources.html">ListIdentitySources</a>.</p>
  * @public
@@ -342,7 +342,7 @@ export interface CognitoGroupConfigurationItem {
  *          <p>This data type is used as a field that is part of an <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_Configuration.html">Configuration</a> structure that is
  *             used as a parameter to <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_CreateIdentitySource.html">CreateIdentitySource</a>.</p>
  *          <p>Example:<code>"CognitoUserPoolConfiguration":\{"UserPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","ClientIds":
- *                 ["a1b2c3d4e5f6g7h8i9j0kalbmc"]\}</code>
+ *             ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": \{"groupEntityType": "MyCorp::Group"\}\}</code>
  *          </p>
  * @public
  */
@@ -365,8 +365,8 @@ export interface CognitoUserPoolConfiguration {
      */
     clientIds?: string[];
     /**
-     * <p>The configuration of the user groups from an Amazon Cognito user pool identity
-     *             source.</p>
+     * <p>The type of entity that a policy store maps to groups from an Amazon Cognito user
+     *             pool identity source.</p>
      * @public
      */
     groupConfiguration?: CognitoGroupConfiguration;
@@ -377,7 +377,7 @@ export interface CognitoUserPoolConfiguration {
  *          <p>This data type is used as a field that is part of an <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ConfigurationDetail.html">ConfigurationDetail</a> structure that is
  *             part of the response to <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_GetIdentitySource.html">GetIdentitySource</a>.</p>
  *          <p>Example:<code>"CognitoUserPoolConfiguration":\{"UserPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","ClientIds":
- *             ["a1b2c3d4e5f6g7h8i9j0kalbmc"]\}</code>
+ *             ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": \{"groupEntityType": "MyCorp::Group"\}\}</code>
  *          </p>
  * @public
  */
@@ -409,8 +409,8 @@ export interface CognitoUserPoolConfigurationDetail {
      */
     issuer: string | undefined;
     /**
-     * <p>The configuration of the user groups from an Amazon Cognito user pool identity
-     *             source.</p>
+     * <p>The type of entity that a policy store maps to groups from an Amazon Cognito user
+     *             pool identity source.</p>
      * @public
      */
     groupConfiguration?: CognitoGroupConfigurationDetail;
@@ -421,7 +421,7 @@ export interface CognitoUserPoolConfigurationDetail {
  *          <p>This data type is used as a field that is part of the <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ConfigurationItem.html">ConfigurationItem</a> structure that is
  *             part of the response to <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ListIdentitySources.html">ListIdentitySources</a>.</p>
  *          <p>Example:<code>"CognitoUserPoolConfiguration":\{"UserPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","ClientIds":
- *             ["a1b2c3d4e5f6g7h8i9j0kalbmc"]\}</code>
+ *             ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": \{"groupEntityType": "MyCorp::Group"\}\}</code>
  *          </p>
  * @public
  */
@@ -453,8 +453,8 @@ export interface CognitoUserPoolConfigurationItem {
      */
     issuer: string | undefined;
     /**
-     * <p>The configuration of the user groups from an Amazon Cognito user pool identity
-     *             source.</p>
+     * <p>The type of entity that a policy store maps to groups from an Amazon Cognito user
+     *             pool identity source.</p>
      * @public
      */
     groupConfiguration?: CognitoGroupConfigurationItem;
@@ -464,7 +464,7 @@ export interface CognitoUserPoolConfigurationItem {
  *          <note>
  *             <p>At this time, the only valid member of this structure is a Amazon Cognito user pool
  *                 configuration.</p>
- *             <p>You must specify a <code>userPoolArn</code>, and optionally, a
+ *             <p>Specifies a <code>userPoolArn</code>, a <code>groupConfiguration</code>, and a
  *                     <code>ClientId</code>.</p>
  *          </note>
  *          <p>This data type is used as a request parameter for the <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_CreateIdentitySource.html">CreateIdentitySource</a>
@@ -516,7 +516,8 @@ export type ConfigurationDetail = ConfigurationDetail.CognitoUserPoolConfigurati
 export declare namespace ConfigurationDetail {
     /**
      * <p>Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of
-     *             authenticated identities as entities. It specifies the <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Name (ARN)</a> of a Amazon Cognito user pool
+     *             authenticated identities as entities. It specifies the <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Name (ARN)</a> of a Amazon Cognito user pool,
+     *             the policy store entity that you want to assign to user groups,
      *             and one or more application client IDs.</p>
      *          <p>Example:
      *             <code>"configuration":\{"cognitoUserPoolConfiguration":\{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds":
@@ -554,7 +555,8 @@ export type ConfigurationItem = ConfigurationItem.CognitoUserPoolConfigurationMe
 export declare namespace ConfigurationItem {
     /**
      * <p>Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of
-     *             authenticated identities as entities. It specifies the <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Name (ARN)</a> of a Amazon Cognito user pool
+     *             authenticated identities as entities. It specifies the <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Name (ARN)</a> of a Amazon Cognito user pool,
+     *             the policy store entity that you want to assign to user groups,
      *             and one or more application client IDs.</p>
      *          <p>Example:
      *             <code>"configuration":\{"cognitoUserPoolConfiguration":\{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds":
@@ -848,6 +850,18 @@ export interface CreatePolicyInput {
      */
     definition: PolicyDefinition | undefined;
 }
+/**
+ * @public
+ * @enum
+ */
+export declare const PolicyEffect: {
+    readonly FORBID: "Forbid";
+    readonly PERMIT: "Permit";
+};
+/**
+ * @public
+ */
+export type PolicyEffect = (typeof PolicyEffect)[keyof typeof PolicyEffect];
 /**
  * @public
  * @enum
@@ -891,6 +905,13 @@ export interface CreatePolicyOutput {
      * @public
      */
     resource?: EntityIdentifier;
+    /**
+     * <p>The action that a policy permits or forbids. For example,
+     * <code>\{"actions": [\{"actionId": "ViewPhoto", "actionType": "PhotoFlash::Action"\}, \{"entityID": "SharePhoto",
+     * "entityType": "PhotoFlash::Action"\}]\}</code>.</p>
+     * @public
+     */
+    actions?: ActionIdentifier[];
     /**
      * <p>The date and time the policy was originally created.</p>
      * @public
@@ -901,6 +922,12 @@ export interface CreatePolicyOutput {
      * @public
      */
     lastUpdatedDate: Date | undefined;
+    /**
+     * <p>The effect of the decision that a policy returns to an authorization
+     * request. For example, <code>"effect": "Permit"</code>.</p>
+     * @public
+     */
+    effect?: PolicyEffect;
 }
 /**
  * @public
@@ -1452,6 +1479,13 @@ export interface GetPolicyOutput {
      * @public
      */
     resource?: EntityIdentifier;
+    /**
+     * <p>The action that a policy permits or forbids. For example,
+     * <code>\{"actions": [\{"actionId": "ViewPhoto", "actionType": "PhotoFlash::Action"\}, \{"entityID": "SharePhoto",
+     * "entityType": "PhotoFlash::Action"\}]\}</code>.</p>
+     * @public
+     */
+    actions?: ActionIdentifier[];
     /**
      * <p>The definition of the requested policy.</p>
      * @public
@@ -1467,6 +1501,12 @@ export interface GetPolicyOutput {
      * @public
      */
     lastUpdatedDate: Date | undefined;
+    /**
+     * <p>The effect of the decision that a policy returns to an authorization
+     * request. For example, <code>"effect": "Permit"</code>.</p>
+     * @public
+     */
+    effect?: PolicyEffect;
 }
 /**
  * @public
@@ -1648,7 +1688,7 @@ export interface ListIdentitySourcesInput {
      *              <code>NextToken</code> after every operation to ensure that you receive all of the
      *              results.</p>
      *          <p>If you do not specify this parameter, the operation defaults to 10 identity sources per response.
-     *             You can specify a maximum of 200 identity sources per response.</p>
+     *             You can specify a maximum of 50 identity sources per response.</p>
      * @public
      */
     maxResults?: number;
@@ -1772,7 +1812,7 @@ export interface ListIdentitySourcesOutput {
     identitySources: IdentitySourceItem[] | undefined;
 }
 /**
- * <p>A list of user groups and entities from an Amazon Cognito user pool identity
+ * <p>The user group entities from an Amazon Cognito user pool identity
  *             source.</p>
  * @public
  */
@@ -2159,6 +2199,13 @@ export interface PolicyItem {
      * @public
      */
     resource?: EntityIdentifier;
+    /**
+     * <p>The action that a policy permits or forbids. For example,
+     * <code>\{"actions": [\{"actionId": "ViewPhoto", "actionType": "PhotoFlash::Action"\}, \{"entityID": "SharePhoto",
+     * "entityType": "PhotoFlash::Action"\}]\}</code>.</p>
+     * @public
+     */
+    actions?: ActionIdentifier[];
     /**
      * <p>The policy definition of an item in the list of policies returned.</p>
      * @public
@@ -2174,6 +2221,12 @@ export interface PolicyItem {
      * @public
      */
     lastUpdatedDate: Date | undefined;
+    /**
+     * <p>The effect of the decision that a policy returns to an authorization
+     * request. For example, <code>"effect": "Permit"</code>.</p>
+     * @public
+     */
+    effect?: PolicyEffect;
 }
 /**
  * @public
@@ -2515,6 +2568,13 @@ export interface UpdatePolicyOutput {
      * @public
      */
     resource?: EntityIdentifier;
+    /**
+     * <p>The action that a policy permits or forbids. For example,
+     * <code>\{"actions": [\{"actionId": "ViewPhoto", "actionType": "PhotoFlash::Action"\}, \{"entityID": "SharePhoto",
+     * "entityType": "PhotoFlash::Action"\}]\}</code>.</p>
+     * @public
+     */
+    actions?: ActionIdentifier[];
     /**
      * <p>The date and time that the policy was originally created.</p>
      * @public
@@ -2525,6 +2585,12 @@ export interface UpdatePolicyOutput {
      * @public
      */
     lastUpdatedDate: Date | undefined;
+    /**
+     * <p>The effect of the decision that a policy returns to an authorization
+     * request. For example, <code>"effect": "Permit"</code>.</p>
+     * @public
+     */
+    effect?: PolicyEffect;
 }
 /**
  * @public

package/dist-types/ts3.4/models/models_0.d.ts

@@ -233,6 +233,11 @@ export interface CreatePolicyInput {
   policyStoreId: string | undefined;
   definition: PolicyDefinition | undefined;
 }
+export declare const PolicyEffect: {
+  readonly FORBID: "Forbid";
+  readonly PERMIT: "Permit";
+};
+export type PolicyEffect = (typeof PolicyEffect)[keyof typeof PolicyEffect];
 export declare const PolicyType: {
   readonly STATIC: "STATIC";
   readonly TEMPLATE_LINKED: "TEMPLATE_LINKED";
@@ -244,8 +249,10 @@ export interface CreatePolicyOutput {
   policyType: PolicyType | undefined;
   principal?: EntityIdentifier;
   resource?: EntityIdentifier;
+  actions?: ActionIdentifier[];
   createdDate: Date | undefined;
   lastUpdatedDate: Date | undefined;
+  effect?: PolicyEffect;
 }
 export declare const ValidationMode: {
   readonly OFF: "OFF";
@@ -394,9 +401,11 @@ export interface GetPolicyOutput {
   policyType: PolicyType | undefined;
   principal?: EntityIdentifier;
   resource?: EntityIdentifier;
+  actions?: ActionIdentifier[];
   definition: PolicyDefinitionDetail | undefined;
   createdDate: Date | undefined;
   lastUpdatedDate: Date | undefined;
+  effect?: PolicyEffect;
 }
 export interface GetPolicyStoreInput {
   policyStoreId: string | undefined;
@@ -563,9 +572,11 @@ export interface PolicyItem {
   policyType: PolicyType | undefined;
   principal?: EntityIdentifier;
   resource?: EntityIdentifier;
+  actions?: ActionIdentifier[];
   definition: PolicyDefinitionItem | undefined;
   createdDate: Date | undefined;
   lastUpdatedDate: Date | undefined;
+  effect?: PolicyEffect;
 }
 export interface ListPoliciesOutput {
   nextToken?: string;
@@ -635,8 +646,10 @@ export interface UpdatePolicyOutput {
   policyType: PolicyType | undefined;
   principal?: EntityIdentifier;
   resource?: EntityIdentifier;
+  actions?: ActionIdentifier[];
   createdDate: Date | undefined;
   lastUpdatedDate: Date | undefined;
+  effect?: PolicyEffect;
 }
 export interface UpdatePolicyTemplateInput {
   policyStoreId: string | undefined;

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-verifiedpermissions",
   "description": "AWS SDK for JavaScript Verifiedpermissions Client for Node.js, Browser and React Native",
-  "version": "3.572.0",
+  "version": "3.574.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-verifiedpermissions",
@@ -20,8 +20,8 @@
   "dependencies": {
     "@aws-crypto/sha256-browser": "3.0.0",
     "@aws-crypto/sha256-js": "3.0.0",
-    "@aws-sdk/client-sso-oidc": "3.572.0",
-    "@aws-sdk/client-sts": "3.572.0",
+    "@aws-sdk/client-sso-oidc": "3.574.0",
+    "@aws-sdk/client-sts": "3.574.0",
     "@aws-sdk/core": "3.572.0",
     "@aws-sdk/credential-provider-node": "3.572.0",
     "@aws-sdk/middleware-host-header": "3.567.0",