@aws-sdk/client-vpc-lattice 3.405.0 → 3.408.0

package/dist-cjs/models/models_0.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.TargetStatus = exports.TargetGroupStatus = exports.TargetGroupType = exports.TargetGroupProtocolVersion = exports.IpAddressType = exports.HealthCheckProtocolVersion = exports.TargetGroupProtocol = exports.Matcher = exports.ServiceNetworkVpcAssociationStatus = exports.ServiceNetworkServiceAssociationStatus = exports.ServiceStatus = exports.ServiceQuotaExceededException = exports.ListenerProtocol = exports.RuleMatch = exports.PathMatchType = exports.HeaderMatchType = exports.RuleAction = exports.AuthType = exports.AuthPolicyState = exports.ValidationException = exports.ValidationExceptionReason = exports.ThrottlingException = exports.ResourceNotFoundException = exports.InternalServerException = exports.ConflictException = exports.AccessDeniedException = void 0;
+exports.TargetStatus = exports.TargetGroupStatus = exports.TargetGroupType = exports.TargetGroupProtocolVersion = exports.LambdaEventStructureVersion = exports.IpAddressType = exports.HealthCheckProtocolVersion = exports.TargetGroupProtocol = exports.Matcher = exports.ServiceNetworkVpcAssociationStatus = exports.ServiceNetworkServiceAssociationStatus = exports.ServiceStatus = exports.ServiceQuotaExceededException = exports.ListenerProtocol = exports.RuleMatch = exports.PathMatchType = exports.HeaderMatchType = exports.RuleAction = exports.AuthType = exports.AuthPolicyState = exports.ValidationException = exports.ValidationExceptionReason = exports.ThrottlingException = exports.ResourceNotFoundException = exports.InternalServerException = exports.ConflictException = exports.AccessDeniedException = void 0;
 const VPCLatticeServiceException_1 = require("./VPCLatticeServiceException");
 class AccessDeniedException extends VPCLatticeServiceException_1.VPCLatticeServiceException {
     constructor(opts) {
@@ -212,6 +212,10 @@ exports.IpAddressType = {
     IPV4: "IPV4",
     IPV6: "IPV6",
 };
+exports.LambdaEventStructureVersion = {
+    V1: "V1",
+    V2: "V2",
+};
 exports.TargetGroupProtocolVersion = {
     GRPC: "GRPC",
     HTTP1: "HTTP1",

package/dist-cjs/protocols/Aws_restJson1.js

@@ -1479,6 +1479,9 @@ const de_CreateServiceNetworkServiceAssociationCommandError = async (output, con
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.vpclattice#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "ConflictException":
         case "com.amazonaws.vpclattice#ConflictException":
             throw await de_ConflictExceptionRes(parsedOutput, context);
@@ -2648,6 +2651,9 @@ const de_GetTargetGroupCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.vpclattice#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalServerException":
         case "com.amazonaws.vpclattice#InternalServerException":
             throw await de_InternalServerExceptionRes(parsedOutput, context);
@@ -2692,6 +2698,9 @@ const de_ListAccessLogSubscriptionsCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.vpclattice#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalServerException":
         case "com.amazonaws.vpclattice#InternalServerException":
             throw await de_InternalServerExceptionRes(parsedOutput, context);
@@ -3002,6 +3011,9 @@ const de_ListTagsForResourceCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.vpclattice#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalServerException":
         case "com.amazonaws.vpclattice#InternalServerException":
             throw await de_InternalServerExceptionRes(parsedOutput, context);
@@ -3313,6 +3325,9 @@ const de_UntagResourceCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.vpclattice#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalServerException":
         case "com.amazonaws.vpclattice#InternalServerException":
             throw await de_InternalServerExceptionRes(parsedOutput, context);
@@ -3681,6 +3696,9 @@ const de_UpdateTargetGroupCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.vpclattice#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "ConflictException":
         case "com.amazonaws.vpclattice#ConflictException":
             throw await de_ConflictExceptionRes(parsedOutput, context);
@@ -3976,6 +3994,7 @@ const de_TargetGroupSummary = (output, context) => {
         createdAt: (_) => (0, smithy_client_1.expectNonNull)((0, smithy_client_1.parseRfc3339DateTimeWithOffset)(_)),
         id: smithy_client_1.expectString,
         ipAddressType: smithy_client_1.expectString,
+        lambdaEventStructureVersion: smithy_client_1.expectString,
         lastUpdatedAt: (_) => (0, smithy_client_1.expectNonNull)((0, smithy_client_1.parseRfc3339DateTimeWithOffset)(_)),
         name: smithy_client_1.expectString,
         port: smithy_client_1.expectInt32,

package/dist-es/models/models_0.js

@@ -202,6 +202,10 @@ export const IpAddressType = {
     IPV4: "IPV4",
     IPV6: "IPV6",
 };
+export const LambdaEventStructureVersion = {
+    V1: "V1",
+    V2: "V2",
+};
 export const TargetGroupProtocolVersion = {
     GRPC: "GRPC",
     HTTP1: "HTTP1",

package/dist-es/protocols/Aws_restJson1.js

@@ -1415,6 +1415,9 @@ const de_CreateServiceNetworkServiceAssociationCommandError = async (output, con
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.vpclattice#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "ConflictException":
         case "com.amazonaws.vpclattice#ConflictException":
             throw await de_ConflictExceptionRes(parsedOutput, context);
@@ -2561,6 +2564,9 @@ const de_GetTargetGroupCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.vpclattice#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalServerException":
         case "com.amazonaws.vpclattice#InternalServerException":
             throw await de_InternalServerExceptionRes(parsedOutput, context);
@@ -2604,6 +2610,9 @@ const de_ListAccessLogSubscriptionsCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.vpclattice#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalServerException":
         case "com.amazonaws.vpclattice#InternalServerException":
             throw await de_InternalServerExceptionRes(parsedOutput, context);
@@ -2907,6 +2916,9 @@ const de_ListTagsForResourceCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.vpclattice#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalServerException":
         case "com.amazonaws.vpclattice#InternalServerException":
             throw await de_InternalServerExceptionRes(parsedOutput, context);
@@ -3211,6 +3223,9 @@ const de_UntagResourceCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.vpclattice#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "InternalServerException":
         case "com.amazonaws.vpclattice#InternalServerException":
             throw await de_InternalServerExceptionRes(parsedOutput, context);
@@ -3572,6 +3587,9 @@ const de_UpdateTargetGroupCommandError = async (output, context) => {
     };
     const errorCode = loadRestJsonErrorCode(output, parsedOutput.body);
     switch (errorCode) {
+        case "AccessDeniedException":
+        case "com.amazonaws.vpclattice#AccessDeniedException":
+            throw await de_AccessDeniedExceptionRes(parsedOutput, context);
         case "ConflictException":
         case "com.amazonaws.vpclattice#ConflictException":
             throw await de_ConflictExceptionRes(parsedOutput, context);
@@ -3867,6 +3885,7 @@ const de_TargetGroupSummary = (output, context) => {
         createdAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
         id: __expectString,
         ipAddressType: __expectString,
+        lambdaEventStructureVersion: __expectString,
         lastUpdatedAt: (_) => __expectNonNull(__parseRfc3339DateTimeWithOffset(_)),
         name: __expectString,
         port: __expectInt32,

package/dist-types/commands/CreateServiceNetworkServiceAssociationCommand.d.ts

@@ -67,6 +67,9 @@ export interface CreateServiceNetworkServiceAssociationCommandOutput extends Cre
  * @see {@link CreateServiceNetworkServiceAssociationCommandOutput} for command's `response` shape.
  * @see {@link VPCLatticeClientResolvedConfig | config} for VPCLatticeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>The user does not have sufficient access to perform this action.</p>
+ *
  * @throws {@link ConflictException} (client fault)
  *  <p>The request conflicts with the current state of the resource. Updating or deleting a
  *    resource can cause an inconsistent state.</p>

package/dist-types/commands/CreateServiceNetworkVpcAssociationCommand.d.ts

@@ -30,10 +30,9 @@ export interface CreateServiceNetworkVpcAssociationCommandOutput extends CreateS
  *    fails, retry by deleting the association and recreating it.</p>
  *          <p>As a result of this operation, the association gets created in the service network account
  *    and the VPC owner account.</p>
- *          <p>If you add a security group to the service network and VPC association, the association must
- *    continue to always have at least one security group. You can add or edit security groups at any
- *    time. However, to remove all security groups, you must first delete the association and recreate
- *    it without security groups.</p>
+ *          <p>Once a security group is added to the VPC association it cannot be removed. You can add or
+ *    update the security groups being used for the VPC association once a security group is attached.
+ *    To remove all security groups you must reassociate the VPC.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/CreateTargetGroupCommand.d.ts

@@ -37,11 +37,11 @@ export interface CreateTargetGroupCommandOutput extends CreateTargetGroupRespons
  *   name: "STRING_VALUE", // required
  *   type: "STRING_VALUE", // required
  *   config: { // TargetGroupConfig
- *     port: Number("int"), // required
- *     protocol: "STRING_VALUE", // required
+ *     port: Number("int"),
+ *     protocol: "STRING_VALUE",
  *     protocolVersion: "STRING_VALUE",
  *     ipAddressType: "STRING_VALUE",
- *     vpcIdentifier: "STRING_VALUE", // required
+ *     vpcIdentifier: "STRING_VALUE",
  *     healthCheck: { // HealthCheckConfig
  *       enabled: true || false,
  *       protocol: "STRING_VALUE",
@@ -56,6 +56,7 @@ export interface CreateTargetGroupCommandOutput extends CreateTargetGroupRespons
  *         httpCode: "STRING_VALUE",
  *       },
  *     },
+ *     lambdaEventStructureVersion: "STRING_VALUE",
  *   },
  *   clientToken: "STRING_VALUE",
  *   tags: { // TagMap
@@ -70,11 +71,11 @@ export interface CreateTargetGroupCommandOutput extends CreateTargetGroupRespons
  * //   name: "STRING_VALUE",
  * //   type: "STRING_VALUE",
  * //   config: { // TargetGroupConfig
- * //     port: Number("int"), // required
- * //     protocol: "STRING_VALUE", // required
+ * //     port: Number("int"),
+ * //     protocol: "STRING_VALUE",
  * //     protocolVersion: "STRING_VALUE",
  * //     ipAddressType: "STRING_VALUE",
- * //     vpcIdentifier: "STRING_VALUE", // required
+ * //     vpcIdentifier: "STRING_VALUE",
  * //     healthCheck: { // HealthCheckConfig
  * //       enabled: true || false,
  * //       protocol: "STRING_VALUE",
@@ -89,6 +90,7 @@ export interface CreateTargetGroupCommandOutput extends CreateTargetGroupRespons
  * //         httpCode: "STRING_VALUE",
  * //       },
  * //     },
+ * //     lambdaEventStructureVersion: "STRING_VALUE",
  * //   },
  * //   status: "STRING_VALUE",
  * // };

package/dist-types/commands/DeleteAuthPolicyCommand.d.ts

@@ -23,7 +23,7 @@ export interface DeleteAuthPolicyCommandOutput extends DeleteAuthPolicyResponse,
 }
 /**
  * @public
- * <p>Deletes the specified auth policy. If an auth is set to <code>AWS_IAM</code>
+ * <p>Deletes the specified auth policy. If an auth is set to <code>Amazon Web Services_IAM</code>
  *    and the auth policy is deleted, all requests will be denied by default. If you are trying to
  *    remove the auth policy completely, you must set the auth_type to <code>NONE</code>. If auth is
  *    enabled on the resource, but no auth policy is set, all requests will be denied.</p>

package/dist-types/commands/GetResourcePolicyCommand.d.ts

@@ -24,7 +24,7 @@ export interface GetResourcePolicyCommandOutput extends GetResourcePolicyRespons
 /**
  * @public
  * <p>Retrieves information about the resource policy. The resource policy is an IAM policy
- *    created on behalf of the resource owner when they share a resource.</p>
+ *    created by AWS RAM on behalf of the resource owner when they share a resource.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/GetTargetGroupCommand.d.ts

@@ -41,11 +41,11 @@ export interface GetTargetGroupCommandOutput extends GetTargetGroupResponse, __M
  * //   name: "STRING_VALUE",
  * //   type: "STRING_VALUE",
  * //   config: { // TargetGroupConfig
- * //     port: Number("int"), // required
- * //     protocol: "STRING_VALUE", // required
+ * //     port: Number("int"),
+ * //     protocol: "STRING_VALUE",
  * //     protocolVersion: "STRING_VALUE",
  * //     ipAddressType: "STRING_VALUE",
- * //     vpcIdentifier: "STRING_VALUE", // required
+ * //     vpcIdentifier: "STRING_VALUE",
  * //     healthCheck: { // HealthCheckConfig
  * //       enabled: true || false,
  * //       protocol: "STRING_VALUE",
@@ -60,6 +60,7 @@ export interface GetTargetGroupCommandOutput extends GetTargetGroupResponse, __M
  * //         httpCode: "STRING_VALUE",
  * //       },
  * //     },
+ * //     lambdaEventStructureVersion: "STRING_VALUE",
  * //   },
  * //   createdAt: new Date("TIMESTAMP"),
  * //   lastUpdatedAt: new Date("TIMESTAMP"),
@@ -79,6 +80,9 @@ export interface GetTargetGroupCommandOutput extends GetTargetGroupResponse, __M
  * @see {@link GetTargetGroupCommandOutput} for command's `response` shape.
  * @see {@link VPCLatticeClientResolvedConfig | config} for VPCLatticeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>The user does not have sufficient access to perform this action.</p>
+ *
  * @throws {@link InternalServerException} (server fault)
  *  <p>An unexpected error occurred while processing the request.</p>
  *

package/dist-types/commands/ListAccessLogSubscriptionsCommand.d.ts

@@ -60,6 +60,9 @@ export interface ListAccessLogSubscriptionsCommandOutput extends ListAccessLogSu
  * @see {@link ListAccessLogSubscriptionsCommandOutput} for command's `response` shape.
  * @see {@link VPCLatticeClientResolvedConfig | config} for VPCLatticeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>The user does not have sufficient access to perform this action.</p>
+ *
  * @throws {@link InternalServerException} (server fault)
  *  <p>An unexpected error occurred while processing the request.</p>
  *

package/dist-types/commands/ListTagsForResourceCommand.d.ts

@@ -49,6 +49,9 @@ export interface ListTagsForResourceCommandOutput extends ListTagsForResourceRes
  * @see {@link ListTagsForResourceCommandOutput} for command's `response` shape.
  * @see {@link VPCLatticeClientResolvedConfig | config} for VPCLatticeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>The user does not have sufficient access to perform this action.</p>
+ *
  * @throws {@link InternalServerException} (server fault)
  *  <p>An unexpected error occurred while processing the request.</p>
  *

package/dist-types/commands/ListTargetGroupsCommand.d.ts

@@ -56,6 +56,7 @@ export interface ListTargetGroupsCommandOutput extends ListTargetGroupsResponse,
  * //       serviceArns: [ // ServiceArnList
  * //         "STRING_VALUE",
  * //       ],
+ * //       lambdaEventStructureVersion: "STRING_VALUE",
  * //     },
  * //   ],
  * //   nextToken: "STRING_VALUE",

package/dist-types/commands/PutAuthPolicyCommand.d.ts

@@ -23,8 +23,7 @@ export interface PutAuthPolicyCommandOutput extends PutAuthPolicyResponse, __Met
 }
 /**
  * @public
- * <p>Creates or updates the auth policy. The policy string in JSON must not contain newlines or
- *    blank lines.</p>
+ * <p>Creates or updates the auth policy.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/UntagResourceCommand.d.ts

@@ -48,6 +48,9 @@ export interface UntagResourceCommandOutput extends UntagResourceResponse, __Met
  * @see {@link UntagResourceCommandOutput} for command's `response` shape.
  * @see {@link VPCLatticeClientResolvedConfig | config} for VPCLatticeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>The user does not have sufficient access to perform this action.</p>
+ *
  * @throws {@link InternalServerException} (server fault)
  *  <p>An unexpected error occurred while processing the request.</p>
  *

package/dist-types/commands/UpdateServiceNetworkVpcAssociationCommand.d.ts

@@ -23,10 +23,8 @@ export interface UpdateServiceNetworkVpcAssociationCommandOutput extends UpdateS
 }
 /**
  * @public
- * <p>Updates the service network and VPC association. If you add a security group to the service
- *    network and VPC association, the association must continue to always have at least one security
- *    group. You can add or edit security groups at any time. However, to remove all security groups,
- *    you must first delete the association and recreate it without security groups.</p>
+ * <p>Updates the service network and VPC association. Once you add a security group, it cannot be
+ *    removed.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

package/dist-types/commands/UpdateTargetGroupCommand.d.ts

@@ -55,11 +55,11 @@ export interface UpdateTargetGroupCommandOutput extends UpdateTargetGroupRespons
  * //   name: "STRING_VALUE",
  * //   type: "STRING_VALUE",
  * //   config: { // TargetGroupConfig
- * //     port: Number("int"), // required
- * //     protocol: "STRING_VALUE", // required
+ * //     port: Number("int"),
+ * //     protocol: "STRING_VALUE",
  * //     protocolVersion: "STRING_VALUE",
  * //     ipAddressType: "STRING_VALUE",
- * //     vpcIdentifier: "STRING_VALUE", // required
+ * //     vpcIdentifier: "STRING_VALUE",
  * //     healthCheck: { // HealthCheckConfig
  * //       enabled: true || false,
  * //       protocol: "STRING_VALUE",
@@ -74,6 +74,7 @@ export interface UpdateTargetGroupCommandOutput extends UpdateTargetGroupRespons
  * //         httpCode: "STRING_VALUE",
  * //       },
  * //     },
+ * //     lambdaEventStructureVersion: "STRING_VALUE",
  * //   },
  * //   status: "STRING_VALUE",
  * // };
@@ -86,6 +87,9 @@ export interface UpdateTargetGroupCommandOutput extends UpdateTargetGroupRespons
  * @see {@link UpdateTargetGroupCommandOutput} for command's `response` shape.
  * @see {@link VPCLatticeClientResolvedConfig | config} for VPCLatticeClient's `config` shape.
  *
+ * @throws {@link AccessDeniedException} (client fault)
+ *  <p>The user does not have sufficient access to perform this action.</p>
+ *
  * @throws {@link ConflictException} (client fault)
  *  <p>The request conflicts with the current state of the resource. Updating or deleting a
  *    resource can cause an inconsistent state.</p>

package/dist-types/models/models_0.d.ts

@@ -1633,6 +1633,24 @@ export declare const IpAddressType: {
  * @public
  */
 export type IpAddressType = (typeof IpAddressType)[keyof typeof IpAddressType];
+/**
+ * @public
+ * @enum
+ */
+export declare const LambdaEventStructureVersion: {
+    /**
+     * This is the default lambda event structure version
+     */
+    readonly V1: "V1";
+    /**
+     * Indicates use of lambda event structure version 2
+     */
+    readonly V2: "V2";
+};
+/**
+ * @public
+ */
+export type LambdaEventStructureVersion = (typeof LambdaEventStructureVersion)[keyof typeof LambdaEventStructureVersion];
 /**
  * @public
  * @enum
@@ -1667,13 +1685,13 @@ export interface TargetGroupConfig {
      *    HTTPS, the default is <code>443</code>
      *          </p>
      */
-    port: number | undefined;
+    port?: number;
     /**
      * @public
      * <p>The protocol to use for routing traffic to the targets. Default is the protocol of a target
      *    group.</p>
      */
-    protocol: TargetGroupProtocol | string | undefined;
+    protocol?: TargetGroupProtocol | string;
     /**
      * @public
      * <p>The protocol version. Default value is <code>HTTP1</code>.</p>
@@ -1689,12 +1707,17 @@ export interface TargetGroupConfig {
      * @public
      * <p>The ID of the VPC.</p>
      */
-    vpcIdentifier: string | undefined;
+    vpcIdentifier?: string;
     /**
      * @public
      * <p>The health check configuration.</p>
      */
     healthCheck?: HealthCheckConfig;
+    /**
+     * @public
+     * Lambda event structure version
+     */
+    lambdaEventStructureVersion?: LambdaEventStructureVersion | string;
 }
 /**
  * @public
@@ -2150,7 +2173,7 @@ export interface GetAuthPolicyResponse {
     /**
      * @public
      * <p>The state of the auth policy. The auth policy is only active when the auth type is set to
-     *      <code>AWS_IAM</code>. If you provide a policy, then authentication and
+     *      <code>Amazon Web Services_IAM</code>. If you provide a policy, then authentication and
      *    authorization decisions are made based on this policy and the client's IAM policy. If the auth
      *    type is <code>NONE</code>, then any auth policy you provide will remain inactive. For more
      *    information, see <a href="https://docs.aws.amazon.com/vpc-lattice/latest/ug/service-networks.html#create-service-network">Create a service
@@ -2245,7 +2268,7 @@ export interface GetListenerResponse {
 export interface GetResourcePolicyRequest {
     /**
      * @public
-     * <p>The Amazon Resource Name (ARN) of the service network or service.</p>
+     * <p>An IAM policy.</p>
      */
     resourceArn: string | undefined;
 }
@@ -2255,7 +2278,7 @@ export interface GetResourcePolicyRequest {
 export interface GetResourcePolicyResponse {
     /**
      * @public
-     * <p>An IAM policy.</p>
+     * <p>The Amazon Resource Name (ARN) of the service network or service.</p>
      */
     policy?: string;
 }
@@ -3395,6 +3418,11 @@ export interface TargetGroupSummary {
      * <p>The list of Amazon Resource Names (ARNs) of the service.</p>
      */
     serviceArns?: string[];
+    /**
+     * @public
+     * Lambda event structure version
+     */
+    lambdaEventStructureVersion?: LambdaEventStructureVersion | string;
 }
 /**
  * @public
@@ -3554,7 +3582,7 @@ export interface PutAuthPolicyRequest {
     resourceIdentifier: string | undefined;
     /**
      * @public
-     * <p>The auth policy. The policy string in JSON must not contain newlines or blank lines.</p>
+     * <p>The auth policy.</p>
      */
     policy: string | undefined;
 }
@@ -3564,13 +3592,13 @@ export interface PutAuthPolicyRequest {
 export interface PutAuthPolicyResponse {
     /**
      * @public
-     * <p>The auth policy. The policy string in JSON must not contain newlines or blank lines.</p>
+     * <p>The auth policy.</p>
      */
     policy?: string;
     /**
      * @public
      * <p>The state of the auth policy. The auth policy is only active when the auth type is set to
-     *      <code>AWS_IAM</code>. If you provide a policy, then authentication and
+     *      <code>Amazon Web Services_IAM</code>. If you provide a policy, then authentication and
      *    authorization decisions are made based on this policy and the client's IAM policy. If the Auth
      *    type is <code>NONE</code>, then, any auth policy you provide will remain inactive. For more
      *    information, see <a href="https://docs.aws.amazon.com/vpc-lattice/latest/ug/service-networks.html#create-service-network">Create a service
@@ -3590,8 +3618,7 @@ export interface PutResourcePolicyRequest {
     resourceArn: string | undefined;
     /**
      * @public
-     * <p>An IAM policy. The policy string in JSON must not contain newlines or
-     *    blank lines.</p>
+     * <p>An IAM policy.</p>
      */
     policy: string | undefined;
 }
@@ -3801,7 +3828,7 @@ export interface UpdateServiceNetworkVpcAssociationRequest {
     serviceNetworkVpcAssociationIdentifier: string | undefined;
     /**
      * @public
-     * <p>The IDs of the security groups. </p>
+     * <p>The IDs of the security groups. Once you add a security group, it cannot be removed.</p>
      */
     securityGroupIds: string[] | undefined;
 }

package/dist-types/ts3.4/models/models_0.d.ts

@@ -485,6 +485,12 @@ export declare const IpAddressType: {
   readonly IPV6: "IPV6";
 };
 export type IpAddressType = (typeof IpAddressType)[keyof typeof IpAddressType];
+export declare const LambdaEventStructureVersion: {
+  readonly V1: "V1";
+  readonly V2: "V2";
+};
+export type LambdaEventStructureVersion =
+  (typeof LambdaEventStructureVersion)[keyof typeof LambdaEventStructureVersion];
 export declare const TargetGroupProtocolVersion: {
   readonly GRPC: "GRPC";
   readonly HTTP1: "HTTP1";
@@ -493,12 +499,13 @@ export declare const TargetGroupProtocolVersion: {
 export type TargetGroupProtocolVersion =
   (typeof TargetGroupProtocolVersion)[keyof typeof TargetGroupProtocolVersion];
 export interface TargetGroupConfig {
-  port: number | undefined;
-  protocol: TargetGroupProtocol | string | undefined;
+  port?: number;
+  protocol?: TargetGroupProtocol | string;
   protocolVersion?: TargetGroupProtocolVersion | string;
   ipAddressType?: IpAddressType | string;
-  vpcIdentifier: string | undefined;
+  vpcIdentifier?: string;
   healthCheck?: HealthCheckConfig;
+  lambdaEventStructureVersion?: LambdaEventStructureVersion | string;
 }
 export declare const TargetGroupType: {
   readonly ALB: "ALB";
@@ -896,6 +903,7 @@ export interface TargetGroupSummary {
   lastUpdatedAt?: Date;
   status?: TargetGroupStatus | string;
   serviceArns?: string[];
+  lambdaEventStructureVersion?: LambdaEventStructureVersion | string;
 }
 export interface ListTargetGroupsResponse {
   items?: TargetGroupSummary[];

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-vpc-lattice",
   "description": "AWS SDK for JavaScript Vpc Lattice Client for Node.js, Browser and React Native",
-  "version": "3.405.0",
+  "version": "3.408.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "tsc -p tsconfig.cjs.json",
@@ -21,17 +21,17 @@
   "dependencies": {
     "@aws-crypto/sha256-browser": "3.0.0",
     "@aws-crypto/sha256-js": "3.0.0",
-    "@aws-sdk/client-sts": "3.405.0",
-    "@aws-sdk/credential-provider-node": "3.405.0",
-    "@aws-sdk/middleware-host-header": "3.398.0",
-    "@aws-sdk/middleware-logger": "3.398.0",
-    "@aws-sdk/middleware-recursion-detection": "3.398.0",
-    "@aws-sdk/middleware-signing": "3.398.0",
-    "@aws-sdk/middleware-user-agent": "3.398.0",
-    "@aws-sdk/types": "3.398.0",
-    "@aws-sdk/util-endpoints": "3.398.0",
-    "@aws-sdk/util-user-agent-browser": "3.398.0",
-    "@aws-sdk/util-user-agent-node": "3.405.0",
+    "@aws-sdk/client-sts": "3.408.0",
+    "@aws-sdk/credential-provider-node": "3.408.0",
+    "@aws-sdk/middleware-host-header": "3.408.0",
+    "@aws-sdk/middleware-logger": "3.408.0",
+    "@aws-sdk/middleware-recursion-detection": "3.408.0",
+    "@aws-sdk/middleware-signing": "3.408.0",
+    "@aws-sdk/middleware-user-agent": "3.408.0",
+    "@aws-sdk/types": "3.408.0",
+    "@aws-sdk/util-endpoints": "3.408.0",
+    "@aws-sdk/util-user-agent-browser": "3.408.0",
+    "@aws-sdk/util-user-agent-node": "3.408.0",
     "@smithy/config-resolver": "^2.0.5",
     "@smithy/fetch-http-handler": "^2.0.5",
     "@smithy/hash-node": "^2.0.5",