@aws-sdk/client-verifiedpermissions 3.687.0 → 3.692.0

package/dist-types/models/models_0.d.ts

@@ -137,7 +137,7 @@ export interface StaticPolicyDefinitionDetail {
      * <p>A description of the static policy.</p>
      * @public
      */
-    description?: string;
+    description?: string | undefined;
     /**
      * <p>The content of the static policy written in the Cedar policy language.</p>
      * @public
@@ -160,14 +160,14 @@ export interface TemplateLinkedPolicyDefinitionDetail {
      *             request.</p>
      * @public
      */
-    principal?: EntityIdentifier;
+    principal?: EntityIdentifier | undefined;
     /**
      * <p>The resource associated with this template-linked policy. Verified Permissions substitutes this resource for the
      *                 <code>?resource</code> placeholder in the policy template when it evaluates an authorization
      *             request.</p>
      * @public
      */
-    resource?: EntityIdentifier;
+    resource?: EntityIdentifier | undefined;
 }
 /**
  * <p>A structure that describes a policy definition. It must always have either an
@@ -315,12 +315,12 @@ export declare class ThrottlingException extends __BaseException {
      * <p>The code for the Amazon Web Services service that owns the quota.</p>
      * @public
      */
-    serviceCode?: string;
+    serviceCode?: string | undefined;
     /**
      * <p>The quota code recognized by the Amazon Web Services Service Quotas service.</p>
      * @public
      */
-    quotaCode?: string;
+    quotaCode?: string | undefined;
     /**
      * @internal
      */
@@ -434,7 +434,7 @@ export declare class ValidationException extends __BaseException {
      * <p>The list of fields that aren't valid.</p>
      * @public
      */
-    fieldList?: ValidationExceptionField[];
+    fieldList?: ValidationExceptionField[] | undefined;
     /**
      * @internal
      */
@@ -546,7 +546,7 @@ export interface CognitoGroupConfigurationDetail {
      *             to <code>AWS::CognitoGroup</code>.</p>
      * @public
      */
-    groupEntityType?: string;
+    groupEntityType?: string | undefined;
 }
 /**
  * <p>The type of entity that a policy store maps to groups from an Amazon Cognito user
@@ -561,7 +561,7 @@ export interface CognitoGroupConfigurationItem {
      *             to <code>AWS::CognitoGroup</code>.</p>
      * @public
      */
-    groupEntityType?: string;
+    groupEntityType?: string | undefined;
 }
 /**
  * <p>The configuration for an identity source that represents a connection to an Amazon Cognito user pool used
@@ -590,13 +590,13 @@ export interface CognitoUserPoolConfiguration {
      *          </p>
      * @public
      */
-    clientIds?: string[];
+    clientIds?: string[] | undefined;
     /**
      * <p>The type of entity that a policy store maps to groups from an Amazon Cognito user
      *             pool identity source.</p>
      * @public
      */
-    groupConfiguration?: CognitoGroupConfiguration;
+    groupConfiguration?: CognitoGroupConfiguration | undefined;
 }
 /**
  * <p>The configuration for an identity source that represents a connection to an Amazon Cognito user pool used
@@ -640,7 +640,7 @@ export interface CognitoUserPoolConfigurationDetail {
      *             pool identity source.</p>
      * @public
      */
-    groupConfiguration?: CognitoGroupConfigurationDetail;
+    groupConfiguration?: CognitoGroupConfigurationDetail | undefined;
 }
 /**
  * <p>The configuration for an identity source that represents a connection to an Amazon Cognito user pool used
@@ -684,7 +684,7 @@ export interface CognitoUserPoolConfigurationItem {
      *             pool identity source.</p>
      * @public
      */
-    groupConfiguration?: CognitoGroupConfigurationItem;
+    groupConfiguration?: CognitoGroupConfigurationItem | undefined;
 }
 /**
  * <p>The claim in OIDC identity provider tokens that indicates a user's group membership, and
@@ -722,13 +722,13 @@ export interface OpenIdConnectAccessTokenConfiguration {
      *             <code>sub</code>.</p>
      * @public
      */
-    principalIdClaim?: string;
+    principalIdClaim?: string | undefined;
     /**
      * <p>The access token <code>aud</code> claim values that you want to accept in your policy
      *          store. For example, <code>https://myapp.example.com, https://myapp2.example.com</code>.</p>
      * @public
      */
-    audiences?: string[];
+    audiences?: string[] | undefined;
 }
 /**
  * <p>The configuration of an OpenID Connect (OIDC) identity source for handling identity (ID)
@@ -744,14 +744,14 @@ export interface OpenIdConnectIdentityTokenConfiguration {
      *             <code>sub</code>.</p>
      * @public
      */
-    principalIdClaim?: string;
+    principalIdClaim?: string | undefined;
     /**
      * <p>The ID token audience, or client ID, claim values that you want to accept in your policy
      *          store from an OIDC identity provider. For example, <code>1example23456789,
      *             2example10111213</code>.</p>
      * @public
      */
-    clientIds?: string[];
+    clientIds?: string[] | undefined;
 }
 /**
  * <p>The token type that you want to process from your OIDC identity provider. Your policy
@@ -825,14 +825,14 @@ export interface OpenIdConnectConfiguration {
      *             <code>MyCorp::User::MyOIDCProvider|Carlos</code>.</p>
      * @public
      */
-    entityIdPrefix?: string;
+    entityIdPrefix?: string | undefined;
     /**
      * <p>The claim in OIDC identity provider tokens that indicates a user's group membership, and
      *          the entity type that you want to map it to. For example, this object can map the contents
      *          of a <code>groups</code> claim to <code>MyCorp::UserGroup</code>.</p>
      * @public
      */
-    groupConfiguration?: OpenIdConnectGroupConfiguration;
+    groupConfiguration?: OpenIdConnectGroupConfiguration | undefined;
     /**
      * <p>The token type that you want to process from your OIDC identity provider. Your policy
      *          store can process either identity (ID) or access tokens from a given OIDC identity
@@ -932,13 +932,13 @@ export interface OpenIdConnectAccessTokenConfigurationDetail {
      *             <code>sub</code>.</p>
      * @public
      */
-    principalIdClaim?: string;
+    principalIdClaim?: string | undefined;
     /**
      * <p>The access token <code>aud</code> claim values that you want to accept in your policy
      *          store. For example, <code>https://myapp.example.com, https://myapp2.example.com</code>.</p>
      * @public
      */
-    audiences?: string[];
+    audiences?: string[] | undefined;
 }
 /**
  * <p>The configuration of an OpenID Connect (OIDC) identity source for handling identity (ID)
@@ -954,14 +954,14 @@ export interface OpenIdConnectIdentityTokenConfigurationDetail {
      *             <code>sub</code>.</p>
      * @public
      */
-    principalIdClaim?: string;
+    principalIdClaim?: string | undefined;
     /**
      * <p>The ID token audience, or client ID, claim values that you want to accept in your policy
      *          store from an OIDC identity provider. For example, <code>1example23456789,
      *             2example10111213</code>.</p>
      * @public
      */
-    clientIds?: string[];
+    clientIds?: string[] | undefined;
 }
 /**
  * <p>The token type that you want to process from your OIDC identity provider. Your policy
@@ -1035,14 +1035,14 @@ export interface OpenIdConnectConfigurationDetail {
      *             <code>MyCorp::User::MyOIDCProvider|Carlos</code>.</p>
      * @public
      */
-    entityIdPrefix?: string;
+    entityIdPrefix?: string | undefined;
     /**
      * <p>The claim in OIDC identity provider tokens that indicates a user's group membership, and
      *          the entity type that you want to map it to. For example, this object can map the contents
      *          of a <code>groups</code> claim to <code>MyCorp::UserGroup</code>.</p>
      * @public
      */
-    groupConfiguration?: OpenIdConnectGroupConfigurationDetail;
+    groupConfiguration?: OpenIdConnectGroupConfigurationDetail | undefined;
     /**
      * <p>The token type that you want to process from your OIDC identity provider. Your policy
      *          store can process either identity (ID) or access tokens from a given OIDC identity
@@ -1143,13 +1143,13 @@ export interface OpenIdConnectAccessTokenConfigurationItem {
      *             <code>sub</code>.</p>
      * @public
      */
-    principalIdClaim?: string;
+    principalIdClaim?: string | undefined;
     /**
      * <p>The access token <code>aud</code> claim values that you want to accept in your policy
      *          store. For example, <code>https://myapp.example.com, https://myapp2.example.com</code>.</p>
      * @public
      */
-    audiences?: string[];
+    audiences?: string[] | undefined;
 }
 /**
  * <p>The configuration of an OpenID Connect (OIDC) identity source for handling identity (ID)
@@ -1165,14 +1165,14 @@ export interface OpenIdConnectIdentityTokenConfigurationItem {
      *             <code>sub</code>.</p>
      * @public
      */
-    principalIdClaim?: string;
+    principalIdClaim?: string | undefined;
     /**
      * <p>The ID token audience, or client ID, claim values that you want to accept in your policy
      *          store from an OIDC identity provider. For example, <code>1example23456789,
      *             2example10111213</code>.</p>
      * @public
      */
-    clientIds?: string[];
+    clientIds?: string[] | undefined;
 }
 /**
  * <p>The token type that you want to process from your OIDC identity provider. Your policy
@@ -1246,14 +1246,14 @@ export interface OpenIdConnectConfigurationItem {
      *             <code>MyCorp::User::MyOIDCProvider|Carlos</code>.</p>
      * @public
      */
-    entityIdPrefix?: string;
+    entityIdPrefix?: string | undefined;
     /**
      * <p>The claim in OIDC identity provider tokens that indicates a user's group membership, and
      *          the entity type that you want to map it to. For example, this object can map the contents
      *          of a <code>groups</code> claim to <code>MyCorp::UserGroup</code>.</p>
      * @public
      */
-    groupConfiguration?: OpenIdConnectGroupConfigurationItem;
+    groupConfiguration?: OpenIdConnectGroupConfigurationItem | undefined;
     /**
      * <p>The token type that you want to process from your OIDC identity provider. Your policy
      *          store can process either identity (ID) or access tokens from a given OIDC identity
@@ -1373,7 +1373,7 @@ export interface CreateIdentitySourceInput {
      *              the value of <code>ClientToken</code>.</p>
      * @public
      */
-    clientToken?: string;
+    clientToken?: string | undefined;
     /**
      * <p>Specifies the ID of the policy store in which you want to store this identity source. Only policies and
      *             requests made using this policy store can reference identities from the identity provider
@@ -1392,7 +1392,7 @@ export interface CreateIdentitySourceInput {
      *             authenticated by the new identity source.</p>
      * @public
      */
-    principalEntityType?: string;
+    principalEntityType?: string | undefined;
 }
 /**
  * @public
@@ -1430,7 +1430,7 @@ export declare class ServiceQuotaExceededException extends __BaseException {
      * <p>The unique ID of the resource referenced in the failed request.</p>
      * @public
      */
-    resourceId?: string;
+    resourceId?: string | undefined;
     /**
      * <p>The resource type of the resource referenced in the failed request.</p>
      * @public
@@ -1440,12 +1440,12 @@ export declare class ServiceQuotaExceededException extends __BaseException {
      * <p>The code for the Amazon Web Services service that owns the quota.</p>
      * @public
      */
-    serviceCode?: string;
+    serviceCode?: string | undefined;
     /**
      * <p>The quota code recognized by the Amazon Web Services Service Quotas service.</p>
      * @public
      */
-    quotaCode?: string;
+    quotaCode?: string | undefined;
     /**
      * @internal
      */
@@ -1462,7 +1462,7 @@ export interface StaticPolicyDefinition {
      * <p>The description of the static policy.</p>
      * @public
      */
-    description?: string;
+    description?: string | undefined;
     /**
      * <p>The policy content of the static policy, written in the Cedar policy language.</p>
      * @public
@@ -1485,14 +1485,14 @@ export interface TemplateLinkedPolicyDefinition {
      *             request.</p>
      * @public
      */
-    principal?: EntityIdentifier;
+    principal?: EntityIdentifier | undefined;
     /**
      * <p>The resource associated with this template-linked policy. Verified Permissions substitutes this resource for the
      *                 <code>?resource</code> placeholder in the policy template when it evaluates an authorization
      *             request.</p>
      * @public
      */
-    resource?: EntityIdentifier;
+    resource?: EntityIdentifier | undefined;
 }
 /**
  * <p>A structure that contains the details for a Cedar policy definition. It includes the
@@ -1566,7 +1566,7 @@ export interface CreatePolicyInput {
      *              the value of <code>ClientToken</code>.</p>
      * @public
      */
-    clientToken?: string;
+    clientToken?: string | undefined;
     /**
      * <p>Specifies the <code>PolicyStoreId</code> of the policy store you want to store the policy
      *             in.</p>
@@ -1617,20 +1617,20 @@ export interface CreatePolicyOutput {
      *             when <code>principal</code> isn't specified in the policy content.</p>
      * @public
      */
-    principal?: EntityIdentifier;
+    principal?: EntityIdentifier | undefined;
     /**
      * <p>The resource specified in the new policy's scope. This response element isn't present
      *             when the <code>resource</code> isn't specified in the policy content.</p>
      * @public
      */
-    resource?: EntityIdentifier;
+    resource?: EntityIdentifier | undefined;
     /**
      * <p>The action that a policy permits or forbids. For example,
      * <code>\{"actions": [\{"actionId": "ViewPhoto", "actionType": "PhotoFlash::Action"\}, \{"entityID": "SharePhoto",
      * "entityType": "PhotoFlash::Action"\}]\}</code>.</p>
      * @public
      */
-    actions?: ActionIdentifier[];
+    actions?: ActionIdentifier[] | undefined;
     /**
      * <p>The date and time the policy was originally created.</p>
      * @public
@@ -1646,7 +1646,7 @@ export interface CreatePolicyOutput {
      * request. For example, <code>"effect": "Permit"</code>.</p>
      * @public
      */
-    effect?: PolicyEffect;
+    effect?: PolicyEffect | undefined;
 }
 /**
  * @public
@@ -1715,7 +1715,7 @@ export interface CreatePolicyStoreInput {
      *              the value of <code>ClientToken</code>.</p>
      * @public
      */
-    clientToken?: string;
+    clientToken?: string | undefined;
     /**
      * <p>Specifies the validation setting for this policy store.</p>
      *          <p>Currently, the only valid and required value is <code>Mode</code>.</p>
@@ -1733,7 +1733,7 @@ export interface CreatePolicyStoreInput {
      *             of the current policy store.</p>
      * @public
      */
-    description?: string;
+    description?: string | undefined;
 }
 /**
  * @public
@@ -1781,7 +1781,7 @@ export interface CreatePolicyTemplateInput {
      *              the value of <code>ClientToken</code>.</p>
      * @public
      */
-    clientToken?: string;
+    clientToken?: string | undefined;
     /**
      * <p>The ID of the policy store in which to create the policy template.</p>
      * @public
@@ -1791,7 +1791,7 @@ export interface CreatePolicyTemplateInput {
      * <p>Specifies a description for the policy template.</p>
      * @public
      */
-    description?: string;
+    description?: string | undefined;
     /**
      * <p>Specifies the content that you want to use for the new policy template, written in the Cedar
      *             policy language.</p>
@@ -1989,7 +1989,7 @@ export interface IdentitySourceDetails {
      *             enabled for this identity source.</p>
      * @public
      */
-    clientIds?: string[];
+    clientIds?: string[] | undefined;
     /**
      * @deprecated
      *
@@ -1997,7 +1997,7 @@ export interface IdentitySourceDetails {
      *             policy store.</p>
      * @public
      */
-    userPoolArn?: string;
+    userPoolArn?: string | undefined;
     /**
      * @deprecated
      *
@@ -2010,7 +2010,7 @@ export interface IdentitySourceDetails {
      *          </p>
      * @public
      */
-    discoveryUrl?: string;
+    discoveryUrl?: string | undefined;
     /**
      * @deprecated
      *
@@ -2018,7 +2018,7 @@ export interface IdentitySourceDetails {
      *          <p>At this time, the only valid value is <code>cognito</code>.</p>
      * @public
      */
-    openIdIssuer?: OpenIdIssuer;
+    openIdIssuer?: OpenIdIssuer | undefined;
 }
 /**
  * @public
@@ -2035,7 +2035,7 @@ export interface GetIdentitySourceOutput {
      * <p>A structure that describes the configuration of the identity source.</p>
      * @public
      */
-    details?: IdentitySourceDetails;
+    details?: IdentitySourceDetails | undefined;
     /**
      * <p>The ID of the identity source.</p>
      * @public
@@ -2061,7 +2061,7 @@ export interface GetIdentitySourceOutput {
      * <p>Contains configuration information about an identity source.</p>
      * @public
      */
-    configuration?: ConfigurationDetail;
+    configuration?: ConfigurationDetail | undefined;
 }
 /**
  * @public
@@ -2103,20 +2103,20 @@ export interface GetPolicyOutput {
      *             response when <code>Principal</code> isn't present in the policy content.</p>
      * @public
      */
-    principal?: EntityIdentifier;
+    principal?: EntityIdentifier | undefined;
     /**
      * <p>The resource specified in the policy's scope. This element isn't included in the
      *             response when <code>Resource</code> isn't present in the policy content.</p>
      * @public
      */
-    resource?: EntityIdentifier;
+    resource?: EntityIdentifier | undefined;
     /**
      * <p>The action that a policy permits or forbids. For example,
      * <code>\{"actions": [\{"actionId": "ViewPhoto", "actionType": "PhotoFlash::Action"\}, \{"entityID": "SharePhoto",
      * "entityType": "PhotoFlash::Action"\}]\}</code>.</p>
      * @public
      */
-    actions?: ActionIdentifier[];
+    actions?: ActionIdentifier[] | undefined;
     /**
      * <p>The definition of the requested policy.</p>
      * @public
@@ -2137,7 +2137,7 @@ export interface GetPolicyOutput {
      * request. For example, <code>"effect": "Permit"</code>.</p>
      * @public
      */
-    effect?: PolicyEffect;
+    effect?: PolicyEffect | undefined;
 }
 /**
  * @public
@@ -2183,7 +2183,7 @@ export interface GetPolicyStoreOutput {
      *             of the current policy store.</p>
      * @public
      */
-    description?: string;
+    description?: string | undefined;
 }
 /**
  * @public
@@ -2219,7 +2219,7 @@ export interface GetPolicyTemplateOutput {
      * <p>The description of the policy template.</p>
      * @public
      */
-    description?: string;
+    description?: string | undefined;
     /**
      * <p>The content of the body of the policy template written in the Cedar policy language.</p>
      * @public
@@ -2274,7 +2274,7 @@ export interface GetSchemaOutput {
      * <p>The namespaces of the entities referenced by this schema.</p>
      * @public
      */
-    namespaces?: string[];
+    namespaces?: string[] | undefined;
 }
 /**
  * <p>A structure that defines characteristics of an identity source that you can use to
@@ -2289,7 +2289,7 @@ export interface IdentitySourceFilter {
      *             associated with this identity source.</p>
      * @public
      */
-    principalEntityType?: string;
+    principalEntityType?: string | undefined;
 }
 /**
  * @public
@@ -2308,7 +2308,7 @@ export interface ListIdentitySourcesInput {
      *              next page of results.</p>
      * @public
      */
-    nextToken?: string;
+    nextToken?: string | undefined;
     /**
      * <p>Specifies the total number of results that you want included in each
      *              response. If additional items exist beyond the number you specify, the
@@ -2322,13 +2322,13 @@ export interface ListIdentitySourcesInput {
      *             You can specify a maximum of 50 identity sources per response.</p>
      * @public
      */
-    maxResults?: number;
+    maxResults?: number | undefined;
     /**
      * <p>Specifies characteristics of an identity source that you can use to limit the output to matching
      *             identity sources.</p>
      * @public
      */
-    filters?: IdentitySourceFilter[];
+    filters?: IdentitySourceFilter[] | undefined;
 }
 /**
  * <p>A structure that contains configuration of the identity source.</p>
@@ -2346,14 +2346,14 @@ export interface IdentitySourceItemDetails {
      *             enabled for this identity source.</p>
      * @public
      */
-    clientIds?: string[];
+    clientIds?: string[] | undefined;
     /**
      * @deprecated
      *
      * <p>The Amazon Cognito user pool whose identities are accessible to this Verified Permissions policy store.</p>
      * @public
      */
-    userPoolArn?: string;
+    userPoolArn?: string | undefined;
     /**
      * @deprecated
      *
@@ -2366,7 +2366,7 @@ export interface IdentitySourceItemDetails {
      *          </p>
      * @public
      */
-    discoveryUrl?: string;
+    discoveryUrl?: string | undefined;
     /**
      * @deprecated
      *
@@ -2374,7 +2374,7 @@ export interface IdentitySourceItemDetails {
      *          <p>At this time, the only valid value is <code>cognito</code>.</p>
      * @public
      */
-    openIdIssuer?: OpenIdIssuer;
+    openIdIssuer?: OpenIdIssuer | undefined;
 }
 /**
  * <p>A structure that defines an identity source.</p>
@@ -2395,7 +2395,7 @@ export interface IdentitySourceItem {
      *             (IdP).</p>
      * @public
      */
-    details?: IdentitySourceItemDetails;
+    details?: IdentitySourceItemDetails | undefined;
     /**
      * <p>The unique identifier of the identity source.</p>
      * @public
@@ -2421,7 +2421,7 @@ export interface IdentitySourceItem {
      * <p>Contains configuration information about an identity source.</p>
      * @public
      */
-    configuration?: ConfigurationItem;
+    configuration?: ConfigurationItem | undefined;
 }
 /**
  * @public
@@ -2435,7 +2435,7 @@ export interface ListIdentitySourcesOutput {
      *              back as <code>null</code>. This indicates that this is the last page of results.</p>
      * @public
      */
-    nextToken?: string;
+    nextToken?: string | undefined;
     /**
      * <p>The list of identity sources stored in the specified policy store.</p>
      * @public
@@ -2470,13 +2470,13 @@ export interface UpdateCognitoUserPoolConfiguration {
      *             pool.</p>
      * @public
      */
-    clientIds?: string[];
+    clientIds?: string[] | undefined;
     /**
      * <p>The configuration of the user groups from an Amazon Cognito user pool identity
      *             source.</p>
      * @public
      */
-    groupConfiguration?: UpdateCognitoGroupConfiguration;
+    groupConfiguration?: UpdateCognitoGroupConfiguration | undefined;
 }
 /**
  * <p>The claim in OIDC identity provider tokens that indicates a user's group membership, and
@@ -2514,13 +2514,13 @@ export interface UpdateOpenIdConnectAccessTokenConfiguration {
      *             <code>sub</code>.</p>
      * @public
      */
-    principalIdClaim?: string;
+    principalIdClaim?: string | undefined;
     /**
      * <p>The access token <code>aud</code> claim values that you want to accept in your policy
      *          store. For example, <code>https://myapp.example.com, https://myapp2.example.com</code>.</p>
      * @public
      */
-    audiences?: string[];
+    audiences?: string[] | undefined;
 }
 /**
  * <p>The configuration of an OpenID Connect (OIDC) identity source for handling identity (ID)
@@ -2536,14 +2536,14 @@ export interface UpdateOpenIdConnectIdentityTokenConfiguration {
      *             <code>sub</code>.</p>
      * @public
      */
-    principalIdClaim?: string;
+    principalIdClaim?: string | undefined;
     /**
      * <p>The ID token audience, or client ID, claim values that you want to accept in your policy
      *          store from an OIDC identity provider. For example, <code>1example23456789,
      *             2example10111213</code>.</p>
      * @public
      */
-    clientIds?: string[];
+    clientIds?: string[] | undefined;
 }
 /**
  * <p>The token type that you want to process from your OIDC identity provider. Your policy
@@ -2617,14 +2617,14 @@ export interface UpdateOpenIdConnectConfiguration {
      *             <code>MyCorp::User::MyOIDCProvider|Carlos</code>.</p>
      * @public
      */
-    entityIdPrefix?: string;
+    entityIdPrefix?: string | undefined;
     /**
      * <p>The claim in OIDC identity provider tokens that indicates a user's group membership, and
      *          the entity type that you want to map it to. For example, this object can map the contents
      *          of a <code>groups</code> claim to <code>MyCorp::UserGroup</code>.</p>
      * @public
      */
-    groupConfiguration?: UpdateOpenIdConnectGroupConfiguration;
+    groupConfiguration?: UpdateOpenIdConnectGroupConfiguration | undefined;
     /**
      * <p>The token type that you want to process from your OIDC identity provider. Your policy
      *          store can process either identity (ID) or access tokens from a given OIDC identity
@@ -2704,7 +2704,7 @@ export interface UpdateIdentitySourceInput {
      *             identity source.</p>
      * @public
      */
-    principalEntityType?: string;
+    principalEntityType?: string | undefined;
 }
 /**
  * @public
@@ -2788,7 +2788,7 @@ export interface IsAuthorizedWithTokenOutput {
      * <p>The identifier of the principal in the ID or access token.</p>
      * @public
      */
-    principal?: EntityIdentifier;
+    principal?: EntityIdentifier | undefined;
 }
 /**
  * <p>Contains information about a filter to refine policies returned in a query.</p>
@@ -2800,23 +2800,23 @@ export interface PolicyFilter {
      * <p>Filters the output to only policies that reference the specified principal.</p>
      * @public
      */
-    principal?: EntityReference;
+    principal?: EntityReference | undefined;
     /**
      * <p>Filters the output to only policies that reference the specified resource.</p>
      * @public
      */
-    resource?: EntityReference;
+    resource?: EntityReference | undefined;
     /**
      * <p>Filters the output to only policies of the specified type.</p>
      * @public
      */
-    policyType?: PolicyType;
+    policyType?: PolicyType | undefined;
     /**
      * <p>Filters the output to only template-linked policies that were instantiated from the specified
      *             policy template.</p>
      * @public
      */
-    policyTemplateId?: string;
+    policyTemplateId?: string | undefined;
 }
 /**
  * @public
@@ -2835,7 +2835,7 @@ export interface ListPoliciesInput {
      *              next page of results.</p>
      * @public
      */
-    nextToken?: string;
+    nextToken?: string | undefined;
     /**
      * <p>Specifies the total number of results that you want included in each
      *              response. If additional items exist beyond the number you specify, the
@@ -2849,14 +2849,14 @@ export interface ListPoliciesInput {
      *             response. You can specify a maximum of 50 policies per response.</p>
      * @public
      */
-    maxResults?: number;
+    maxResults?: number | undefined;
     /**
      * <p>Specifies a filter that limits the response to only policies that match the specified
      *             criteria. For example, you list only the policies that reference a specified
      *             principal.</p>
      * @public
      */
-    filter?: PolicyFilter;
+    filter?: PolicyFilter | undefined;
 }
 /**
  * <p>A structure that contains details about a static policy. It includes the description and
@@ -2870,7 +2870,7 @@ export interface StaticPolicyDefinitionItem {
      * <p>A description of the static policy.</p>
      * @public
      */
-    description?: string;
+    description?: string | undefined;
 }
 /**
  * <p>Contains information about a policy created by instantiating a policy template. </p>
@@ -2889,14 +2889,14 @@ export interface TemplateLinkedPolicyDefinitionItem {
      *             request.</p>
      * @public
      */
-    principal?: EntityIdentifier;
+    principal?: EntityIdentifier | undefined;
     /**
      * <p>The resource associated with this template-linked policy. Verified Permissions substitutes this resource for the
      *                 <code>?resource</code> placeholder in the policy template when it evaluates an authorization
      *             request.</p>
      * @public
      */
-    resource?: EntityIdentifier;
+    resource?: EntityIdentifier | undefined;
 }
 /**
  * <p>A structure that describes a <a href="https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_PolicyDefinintion.html">PolicyDefinintion</a>. It will
@@ -2982,19 +2982,19 @@ export interface PolicyItem {
      * <p>The principal associated with the policy.</p>
      * @public
      */
-    principal?: EntityIdentifier;
+    principal?: EntityIdentifier | undefined;
     /**
      * <p>The resource associated with the policy.</p>
      * @public
      */
-    resource?: EntityIdentifier;
+    resource?: EntityIdentifier | undefined;
     /**
      * <p>The action that a policy permits or forbids. For example,
      * <code>\{"actions": [\{"actionId": "ViewPhoto", "actionType": "PhotoFlash::Action"\}, \{"entityID": "SharePhoto",
      * "entityType": "PhotoFlash::Action"\}]\}</code>.</p>
      * @public
      */
-    actions?: ActionIdentifier[];
+    actions?: ActionIdentifier[] | undefined;
     /**
      * <p>The policy definition of an item in the list of policies returned.</p>
      * @public
@@ -3015,7 +3015,7 @@ export interface PolicyItem {
      * request. For example, <code>"effect": "Permit"</code>.</p>
      * @public
      */
-    effect?: PolicyEffect;
+    effect?: PolicyEffect | undefined;
 }
 /**
  * @public
@@ -3029,7 +3029,7 @@ export interface ListPoliciesOutput {
      *              back as <code>null</code>. This indicates that this is the last page of results.</p>
      * @public
      */
-    nextToken?: string;
+    nextToken?: string | undefined;
     /**
      * <p>Lists all policies that are available in the specified policy store.</p>
      * @public
@@ -3048,7 +3048,7 @@ export interface ListPolicyStoresInput {
      *              next page of results.</p>
      * @public
      */
-    nextToken?: string;
+    nextToken?: string | undefined;
     /**
      * <p>Specifies the total number of results that you want included in each
      *              response. If additional items exist beyond the number you specify, the
@@ -3062,7 +3062,7 @@ export interface ListPolicyStoresInput {
      *             You can specify a maximum of 50 policy stores per response.</p>
      * @public
      */
-    maxResults?: number;
+    maxResults?: number | undefined;
 }
 /**
  * <p>Contains information about a policy store.</p>
@@ -3090,13 +3090,13 @@ export interface PolicyStoreItem {
      * <p>The date and time the policy store was most recently updated.</p>
      * @public
      */
-    lastUpdatedDate?: Date;
+    lastUpdatedDate?: Date | undefined;
     /**
      * <p>Descriptive text that you can provide to help with identification
      *             of the current policy store.</p>
      * @public
      */
-    description?: string;
+    description?: string | undefined;
 }
 /**
  * @public
@@ -3110,7 +3110,7 @@ export interface ListPolicyStoresOutput {
      *              back as <code>null</code>. This indicates that this is the last page of results.</p>
      * @public
      */
-    nextToken?: string;
+    nextToken?: string | undefined;
     /**
      * <p>The list of policy stores in the account.</p>
      * @public
@@ -3134,7 +3134,7 @@ export interface ListPolicyTemplatesInput {
      *              next page of results.</p>
      * @public
      */
-    nextToken?: string;
+    nextToken?: string | undefined;
     /**
      * <p>Specifies the total number of results that you want included in each
      *              response. If additional items exist beyond the number you specify, the
@@ -3148,7 +3148,7 @@ export interface ListPolicyTemplatesInput {
      *             You can specify a maximum of 50 policy templates per response.</p>
      * @public
      */
-    maxResults?: number;
+    maxResults?: number | undefined;
 }
 /**
  * <p>Contains details about a policy template</p>
@@ -3171,7 +3171,7 @@ export interface PolicyTemplateItem {
      * <p>The description attached to the policy template.</p>
      * @public
      */
-    description?: string;
+    description?: string | undefined;
     /**
      * <p>The date and time that the policy template was created.</p>
      * @public
@@ -3195,7 +3195,7 @@ export interface ListPolicyTemplatesOutput {
      *              back as <code>null</code>. This indicates that this is the last page of results.</p>
      * @public
      */
-    nextToken?: string;
+    nextToken?: string | undefined;
     /**
      * <p>The list of the policy templates in the specified policy store.</p>
      * @public
@@ -3211,7 +3211,7 @@ export interface UpdateStaticPolicyDefinition {
      * <p>Specifies the description to be added to or replaced on the static policy.</p>
      * @public
      */
-    description?: string;
+    description?: string | undefined;
     /**
      * <p>Specifies the Cedar policy language text to be added to or replaced on the static policy.</p>
      *          <important>
@@ -3350,20 +3350,20 @@ export interface UpdatePolicyOutput {
      *             response when <code>Principal</code> isn't present in the policy content.</p>
      * @public
      */
-    principal?: EntityIdentifier;
+    principal?: EntityIdentifier | undefined;
     /**
      * <p>The resource specified in the policy's scope. This element isn't included in the
      *             response when <code>Resource</code> isn't present in the policy content.</p>
      * @public
      */
-    resource?: EntityIdentifier;
+    resource?: EntityIdentifier | undefined;
     /**
      * <p>The action that a policy permits or forbids. For example,
      * <code>\{"actions": [\{"actionId": "ViewPhoto", "actionType": "PhotoFlash::Action"\}, \{"entityID": "SharePhoto",
      * "entityType": "PhotoFlash::Action"\}]\}</code>.</p>
      * @public
      */
-    actions?: ActionIdentifier[];
+    actions?: ActionIdentifier[] | undefined;
     /**
      * <p>The date and time that the policy was originally created.</p>
      * @public
@@ -3379,7 +3379,7 @@ export interface UpdatePolicyOutput {
      * request. For example, <code>"effect": "Permit"</code>.</p>
      * @public
      */
-    effect?: PolicyEffect;
+    effect?: PolicyEffect | undefined;
 }
 /**
  * @public
@@ -3399,7 +3399,7 @@ export interface UpdatePolicyTemplateInput {
      * <p>Specifies a new description to apply to the policy template.</p>
      * @public
      */
-    description?: string;
+    description?: string | undefined;
     /**
      * <p>Specifies new statement content written in Cedar policy language to replace the
      *             current body of the policy template.</p>
@@ -3551,7 +3551,7 @@ export interface UpdatePolicyStoreInput {
      *             of the current policy store.</p>
      * @public
      */
-    description?: string;
+    description?: string | undefined;
 }
 /**
  * @public
@@ -3823,7 +3823,7 @@ export interface EntityItem {
      * <p>A list of attributes for the entity.</p>
      * @public
      */
-    attributes?: Record<string, AttributeValue>;
+    attributes?: Record<string, AttributeValue> | undefined;
     /**
      * <p>The parent entities in the hierarchy that contains the entity. A principal or resource
      *             entity can be defined with at most 99 <i>transitive parents</i> per
@@ -3834,7 +3834,7 @@ export interface EntityItem {
      *             parents, and eight parents of parents. </p>
      * @public
      */
-    parents?: EntityIdentifier[];
+    parents?: EntityIdentifier[] | undefined;
 }
 /**
  * <p>An authorization request that you include in a <code>BatchIsAuthorized</code> API
@@ -3846,25 +3846,25 @@ export interface BatchIsAuthorizedInputItem {
      * <p>Specifies the principal for which the authorization decision is to be made.</p>
      * @public
      */
-    principal?: EntityIdentifier;
+    principal?: EntityIdentifier | undefined;
     /**
      * <p>Specifies the requested action to be authorized. For example,
      *                 <code>PhotoFlash::ReadPhoto</code>.</p>
      * @public
      */
-    action?: ActionIdentifier;
+    action?: ActionIdentifier | undefined;
     /**
      * <p>Specifies the resource that you want an authorization decision for. For example,
      *                 <code>PhotoFlash::Photo</code>.</p>
      * @public
      */
-    resource?: EntityIdentifier;
+    resource?: EntityIdentifier | undefined;
     /**
      * <p>Specifies additional context that can be used to make more granular authorization
      *             decisions.</p>
      * @public
      */
-    context?: ContextDefinition;
+    context?: ContextDefinition | undefined;
 }
 /**
  * <p>An authorization request that you include in a <code>BatchIsAuthorizedWithToken</code>
@@ -3877,19 +3877,19 @@ export interface BatchIsAuthorizedWithTokenInputItem {
      *             <code>PhotoFlash::ReadPhoto</code>.</p>
      * @public
      */
-    action?: ActionIdentifier;
+    action?: ActionIdentifier | undefined;
     /**
      * <p>Specifies the resource that you want an authorization decision for. For example,
      *             <code>PhotoFlash::Photo</code>.</p>
      * @public
      */
-    resource?: EntityIdentifier;
+    resource?: EntityIdentifier | undefined;
     /**
      * <p>Specifies additional context that can be used to make more granular authorization
      *             decisions.</p>
      * @public
      */
-    context?: ContextDefinition;
+    context?: ContextDefinition | undefined;
 }
 /**
  * <p>The decision, based on policy evaluation, from an individual authorization request in
@@ -4013,7 +4013,7 @@ export interface BatchIsAuthorizedWithTokenOutput {
      * <p>The identifier of the principal in the ID or access token.</p>
      * @public
      */
-    principal?: EntityIdentifier;
+    principal?: EntityIdentifier | undefined;
     /**
      * <p>A series of <code>Allow</code> or <code>Deny</code> decisions for each request, and
      *             the policies that produced them.  These results are returned in the order they were requested.</p>
@@ -4035,24 +4035,24 @@ export interface IsAuthorizedInput {
      * <p>Specifies the principal for which the authorization decision is to be made.</p>
      * @public
      */
-    principal?: EntityIdentifier;
+    principal?: EntityIdentifier | undefined;
     /**
      * <p>Specifies the requested action to be authorized. For example, is the principal
      *             authorized to perform this action on the resource?</p>
      * @public
      */
-    action?: ActionIdentifier;
+    action?: ActionIdentifier | undefined;
     /**
      * <p>Specifies the resource for which the authorization decision is to be made.</p>
      * @public
      */
-    resource?: EntityIdentifier;
+    resource?: EntityIdentifier | undefined;
     /**
      * <p>Specifies additional context that can be used to make more granular authorization
      *             decisions.</p>
      * @public
      */
-    context?: ContextDefinition;
+    context?: ContextDefinition | undefined;
     /**
      * <p>Specifies the list of resources and principals and their associated attributes that
      *             Verified Permissions can examine when evaluating the policies. </p>
@@ -4062,7 +4062,7 @@ export interface IsAuthorizedInput {
      *          </note>
      * @public
      */
-    entities?: EntitiesDefinition;
+    entities?: EntitiesDefinition | undefined;
 }
 /**
  * @public
@@ -4083,7 +4083,7 @@ export interface IsAuthorizedWithTokenInput {
      *             submitted token isn't <code>id</code>.</p>
      * @public
      */
-    identityToken?: string;
+    identityToken?: string | undefined;
     /**
      * <p>Specifies an access token for the principal to be authorized. This token is provided
      *             to you by the identity provider (IdP) associated with the specified identity source. You must
@@ -4093,25 +4093,25 @@ export interface IsAuthorizedWithTokenInput {
      *             the submitted token isn't <code>access</code>.</p>
      * @public
      */
-    accessToken?: string;
+    accessToken?: string | undefined;
     /**
      * <p>Specifies the requested action to be authorized. Is the specified principal authorized
      *             to perform this action on the specified resource.</p>
      * @public
      */
-    action?: ActionIdentifier;
+    action?: ActionIdentifier | undefined;
     /**
      * <p>Specifies the resource for which the authorization decision is made. For example, is
      *             the principal allowed to perform the action on the resource?</p>
      * @public
      */
-    resource?: EntityIdentifier;
+    resource?: EntityIdentifier | undefined;
     /**
      * <p>Specifies additional context that can be used to make more granular authorization
      *             decisions.</p>
      * @public
      */
-    context?: ContextDefinition;
+    context?: ContextDefinition | undefined;
     /**
      * <p>Specifies the list of resources and their associated attributes that Verified Permissions can examine
      *             when evaluating the policies. </p>
@@ -4136,7 +4136,7 @@ export interface IsAuthorizedWithTokenInput {
      *          </important>
      * @public
      */
-    entities?: EntitiesDefinition;
+    entities?: EntitiesDefinition | undefined;
 }
 /**
  * @public
@@ -4157,7 +4157,7 @@ export interface BatchIsAuthorizedInput {
      *          </note>
      * @public
      */
-    entities?: EntitiesDefinition;
+    entities?: EntitiesDefinition | undefined;
     /**
      * <p>An array of up to 30 requests that you want Verified Permissions to evaluate.</p>
      * @public
@@ -4183,7 +4183,7 @@ export interface BatchIsAuthorizedWithTokenInput {
      *             submitted token isn't <code>id</code>.</p>
      * @public
      */
-    identityToken?: string;
+    identityToken?: string | undefined;
     /**
      * <p>Specifies an access token for the principal that you want to authorize in each
      *             request. This token is provided to you by the identity provider (IdP) associated with
@@ -4193,7 +4193,7 @@ export interface BatchIsAuthorizedWithTokenInput {
      *             the submitted token isn't <code>access</code>.</p>
      * @public
      */
-    accessToken?: string;
+    accessToken?: string | undefined;
     /**
      * <p>Specifies the list of resources and their associated attributes that Verified Permissions can examine
      *             when evaluating the policies. </p>
@@ -4218,7 +4218,7 @@ export interface BatchIsAuthorizedWithTokenInput {
      *          </important>
      * @public
      */
-    entities?: EntitiesDefinition;
+    entities?: EntitiesDefinition | undefined;
     /**
      * <p>An array of up to 30 requests that you want Verified Permissions to evaluate.</p>
      * @public