@propulsionworks/cloudformation 0.1.10 → 0.1.12

package/out/exports/resources.generated/aws-networkfirewall-vpcendpointassociation.d.ts

@@ -0,0 +1,100 @@
+import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
+/**
+ * A VPC endpoint association defines a single subnet to use for a firewall endpoint for a `Firewall` . You can define VPC endpoint associations only in the Availability Zones that already have a subnet mapping defined in the `Firewall` resource.
+ *
+ * > You can retrieve the list of Availability Zones that are available for use by calling `DescribeFirewallMetadata` .
+ *
+ * To manage firewall endpoints, first, in the `Firewall` specification, you specify a single VPC and one subnet for each of the Availability Zones where you want to use the firewall. Then you can define additional endpoints as VPC endpoint associations.
+ *
+ * You can use VPC endpoint associations to expand the protections of the firewall as follows:
+ *
+ * - *Protect multiple VPCs with a single firewall* - You can use the firewall to protect other VPCs, either in your account or in accounts where the firewall is shared. You can only specify Availability Zones that already have a firewall endpoint defined in the `Firewall` subnet mappings.
+ * - *Define multiple firewall endpoints for a VPC in an Availability Zone* - You can create additional firewall endpoints for the VPC that you have defined in the firewall, in any Availability Zone that already has an endpoint defined in the `Firewall` subnet mappings. You can create multiple VPC endpoint associations for any other VPC where you use the firewall.
+ *
+ * You can use AWS Resource Access Manager to share a `Firewall` that you own with other accounts, which gives them the ability to use the firewall to create VPC endpoint associations. For information about sharing a firewall, see `PutResourcePolicy` in this guide and see [Sharing Network Firewall resources](https://docs.aws.amazon.com/network-firewall/latest/developerguide/sharing.html) in the *AWS Network Firewall Developer Guide* .
+ *
+ * The status of the VPC endpoint association, which indicates whether it's ready to filter network traffic, is provided in the corresponding `VpcEndpointAssociationStatus` . You can retrieve both the association and its status by calling `DescribeVpcEndpointAssociation` .
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html}
+ */
+export type NetworkFirewallVpcEndpointAssociation = ResourceDefinitionWithAttributes<"AWS::NetworkFirewall::VpcEndpointAssociation", NetworkFirewallVpcEndpointAssociationProps, NetworkFirewallVpcEndpointAssociationAttribs>;
+/**
+ * A VPC endpoint association defines a single subnet to use for a firewall endpoint for a `Firewall` . You can define VPC endpoint associations only in the Availability Zones that already have a subnet mapping defined in the `Firewall` resource.
+ *
+ * > You can retrieve the list of Availability Zones that are available for use by calling `DescribeFirewallMetadata` .
+ *
+ * To manage firewall endpoints, first, in the `Firewall` specification, you specify a single VPC and one subnet for each of the Availability Zones where you want to use the firewall. Then you can define additional endpoints as VPC endpoint associations.
+ *
+ * You can use VPC endpoint associations to expand the protections of the firewall as follows:
+ *
+ * - *Protect multiple VPCs with a single firewall* - You can use the firewall to protect other VPCs, either in your account or in accounts where the firewall is shared. You can only specify Availability Zones that already have a firewall endpoint defined in the `Firewall` subnet mappings.
+ * - *Define multiple firewall endpoints for a VPC in an Availability Zone* - You can create additional firewall endpoints for the VPC that you have defined in the firewall, in any Availability Zone that already has an endpoint defined in the `Firewall` subnet mappings. You can create multiple VPC endpoint associations for any other VPC where you use the firewall.
+ *
+ * You can use AWS Resource Access Manager to share a `Firewall` that you own with other accounts, which gives them the ability to use the firewall to create VPC endpoint associations. For information about sharing a firewall, see `PutResourcePolicy` in this guide and see [Sharing Network Firewall resources](https://docs.aws.amazon.com/network-firewall/latest/developerguide/sharing.html) in the *AWS Network Firewall Developer Guide* .
+ *
+ * The status of the VPC endpoint association, which indicates whether it's ready to filter network traffic, is provided in the corresponding `VpcEndpointAssociationStatus` . You can retrieve both the association and its status by calling `DescribeVpcEndpointAssociation` .
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html}
+ */
+export type NetworkFirewallVpcEndpointAssociationProps = {
+    /**
+     * A description of the VPC endpoint association.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-description}
+     */
+    Description?: string | undefined;
+    /**
+     * The Amazon Resource Name (ARN) of the firewall.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-firewallarn}
+     */
+    FirewallArn: string;
+    /**
+     * The ID for a subnet that's used in an association with a firewall. This is used in `CreateFirewall` , `AssociateSubnets` , and `CreateVpcEndpointAssociation` . AWS Network Firewall creates an instance of the associated firewall in each subnet that you specify, to filter traffic in the subnet's Availability Zone.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-subnetmapping}
+     */
+    SubnetMapping: SubnetMapping;
+    /**
+     * The key:value pairs to associate with the resource.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-tags}
+     */
+    Tags?: Tag[] | undefined;
+    /**
+     * The unique identifier of the VPC for the endpoint association.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-vpcid}
+     */
+    VpcId: string;
+};
+/**
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#aws-resource-networkfirewall-vpcendpointassociation-return-values}
+ */
+export type NetworkFirewallVpcEndpointAssociationAttribs = {
+    /**
+     * An endpoint Id.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-endpointid}
+     */
+    EndpointId: string;
+    /**
+     * The Amazon Resource Name (ARN) of a VPC endpoint association.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-vpcendpointassociationarn}
+     */
+    VpcEndpointAssociationArn: string;
+    /**
+     * The unique identifier of the VPC endpoint association.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-networkfirewall-vpcendpointassociation.html#cfn-networkfirewall-vpcendpointassociation-vpcendpointassociationid}
+     */
+    VpcEndpointAssociationId: string;
+};
+/**
+ * The ID for a subnet that's used in an association with a firewall. This is used in `CreateFirewall` , `AssociateSubnets` , and `CreateVpcEndpointAssociation` . AWS Network Firewall creates an instance of the associated firewall in each subnet that you specify, to filter traffic in the subnet's Availability Zone.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-vpcendpointassociation-subnetmapping.html}
+ */
+export type SubnetMapping = {
+    /**
+     * The subnet's IP address type. You can't change the IP address type after you create the subnet.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-vpcendpointassociation-subnetmapping.html#cfn-networkfirewall-vpcendpointassociation-subnetmapping-ipaddresstype}
+     */
+    IPAddressType?: string | undefined;
+    /**
+     * The unique identifier for the subnet.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-networkfirewall-vpcendpointassociation-subnetmapping.html#cfn-networkfirewall-vpcendpointassociation-subnetmapping-subnetid}
+     */
+    SubnetId: string;
+};
+//# sourceMappingURL=aws-networkfirewall-vpcendpointassociation.d.ts.map

package/out/exports/resources.generated/aws-opsworkscm-server.d.ts

@@ -16,14 +16,11 @@ export type OpsWorksCMServerProps = {
     AssociatePublicIpAddress?: boolean | undefined;
     /**
      * If you specify this field, AWS OpsWorks CM creates the server by using the backup represented by BackupId.
-     * @maxLength 79
-     * @pattern [a-zA-Z][a-zA-Z0-9\-\.\:]*
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-backupid}
      */
     BackupId?: string | undefined;
     /**
      * The number of automated backups that you want to keep. Whenever a new backup is created, AWS OpsWorks CM deletes the oldest backups if this number is exceeded. The default value is `1` .
-     * @minLength 1
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-backupretentioncount}
      */
     BackupRetentionCount?: number | undefined;
@@ -35,22 +32,16 @@ export type OpsWorksCMServerProps = {
      * - The certificate must be valid at the time of upload. A certificate can't be used before its validity period begins (the certificate's `NotBefore` date), or after it expires (the certificate's `NotAfter` date).
      * - The certificate’s common name or subject alternative names (SANs), if present, must match the value of `CustomDomain` .
      * - The certificate must match the value of `CustomPrivateKey` .
-     * @maxLength 2097152
-     * @pattern (?s)\s*-----BEGIN CERTIFICATE-----.+-----END CERTIFICATE-----\s*
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-customcertificate}
      */
     CustomCertificate?: string | undefined;
     /**
      * Supported on servers running Chef Automate 2.0 only. An optional public endpoint of a server, such as `https://aws.my-company.com` . To access the server, create a CNAME DNS record in your preferred DNS service that points the custom domain to the endpoint that is generated when the server is created (the value of the CreateServer Endpoint attribute). You cannot access the server by using the generated `Endpoint` value if the server is using a custom domain. If you specify a custom domain, you must also specify values for `CustomCertificate` and `CustomPrivateKey` .
-     * @maxLength 253
-     * @pattern ^(((?!-)[A-Za-z0-9-]{0,62}[A-Za-z0-9])\.)+((?!-)[A-Za-z0-9-]{1,62}[A-Za-z0-9])$
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-customdomain}
      */
     CustomDomain?: string | undefined;
     /**
      * Supported on servers running Chef Automate 2.0 only. A private key in PEM format for connecting to the server by using HTTPS. The private key must not be encrypted; it cannot be protected by a password or passphrase. If you specify a custom private key, you must also specify values for `CustomDomain` and `CustomCertificate` .
-     * @maxLength 4096
-     * @pattern (?ms)\s*^-----BEGIN (?-s:.*)PRIVATE KEY-----$.*?^-----END (?-s:.*)PRIVATE KEY-----$\s*
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-customprivatekey}
      */
     CustomPrivateKey?: string | undefined;
@@ -61,7 +52,6 @@ export type OpsWorksCMServerProps = {
     DisableAutomatedBackup?: boolean | undefined;
     /**
      * The configuration management engine to use. Valid values include `ChefAutomate` and `Puppet` .
-     * @maxLength 10000
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-engine}
      */
     Engine?: string | undefined;
@@ -79,33 +69,26 @@ export type OpsWorksCMServerProps = {
     EngineAttributes?: EngineAttribute[] | undefined;
     /**
      * The engine model of the server. Valid values in this release include `Monolithic` for Puppet and `Single` for Chef.
-     * @maxLength 10000
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-enginemodel}
      */
     EngineModel?: string | undefined;
     /**
      * The major release version of the engine that you want to use. For a Chef server, the valid value for EngineVersion is currently `2` . For a Puppet server, valid values are `2019` or `2017` .
-     * @maxLength 10000
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-engineversion}
      */
     EngineVersion?: string | undefined;
     /**
      * The ARN of the instance profile that your Amazon EC2 instances use.
-     * @maxLength 10000
-     * @pattern arn:aws:iam::[0-9]{12}:instance-profile/.*
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-instanceprofilearn}
      */
     InstanceProfileArn: string;
     /**
      * The Amazon EC2 instance type to use. For example, `m5.large` .
-     * @maxLength 10000
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-instancetype}
      */
     InstanceType: string;
     /**
      * The Amazon EC2 key pair to set for the instance. This parameter is optional; if desired, you may specify this parameter to connect to your instances by using SSH.
-     * @maxLength 10000
-     * @pattern .*
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-keypair}
      */
     KeyPair?: string | undefined;
@@ -120,8 +103,6 @@ export type OpsWorksCMServerProps = {
      * *Example:* `08:00` , which represents a daily start time of 08:00 UTC.
      *
      * *Example:* `Mon:08:00` , which represents a start time of every Monday at 08:00 UTC. (8:00 a.m.)
-     * @maxLength 10000
-     * @pattern ^((Mon|Tue|Wed|Thu|Fri|Sat|Sun):)?([0-1][0-9]|2[0-3]):[0-5][0-9]$
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-preferredbackupwindow}
      */
     PreferredBackupWindow?: string | undefined;
@@ -129,8 +110,6 @@ export type OpsWorksCMServerProps = {
      * The start time for a one-hour period each week during which AWS OpsWorks CM performs maintenance on the instance. Valid values must be specified in the following format: `DDD:HH:MM` . `MM` must be specified as `00` . The specified time is in coordinated universal time (UTC). The default value is a random one-hour period on Tuesday, Wednesday, or Friday. See `TimeWindowDefinition` for more information.
      *
      * *Example:* `Mon:08:00` , which represents a start time of every Monday at 08:00 UTC. (8:00 a.m.)
-     * @maxLength 10000
-     * @pattern ^((Mon|Tue|Wed|Thu|Fri|Sat|Sun):)?([0-1][0-9]|2[0-3]):[0-5][0-9]$
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-preferredmaintenancewindow}
      */
     PreferredMaintenanceWindow?: string | undefined;
@@ -141,10 +120,12 @@ export type OpsWorksCMServerProps = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-securitygroupids}
      */
     SecurityGroupIds?: string[] | undefined;
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-servername}
+     */
+    ServerName?: string | undefined;
     /**
      * The service role that the AWS OpsWorks CM service backend uses to work with your account. Although the AWS OpsWorks management console typically creates the service role for you, if you are using the AWS CLI or API commands, run the service-role-creation.yaml AWS CloudFormation template, located at https://s3.amazonaws.com/opsworks-cm-us-east-1-prod-default-assets/misc/opsworks-cm-roles.yaml. This template creates a CloudFormation stack that includes the service role and instance profile that you need.
-     * @maxLength 10000
-     * @pattern arn:aws:iam::[0-9]{12}:role/.*
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-servicerolearn}
      */
     ServiceRoleArn: string;
@@ -177,24 +158,19 @@ export type OpsWorksCMServerProps = {
 export type OpsWorksCMServerAttribs = {
     /**
      * The Amazon Resource Name (ARN) of the server, such as `arn:aws:OpsWorksCM:us-east-1:123456789012:server/server-a1bzhi` .
-     * @maxLength 10000
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-arn}
      */
     Arn: string;
     /**
      * A DNS name that can be used to access the engine. Example: `myserver-asdfghjkl.us-east-1.opsworks.io` .
-     * @maxLength 10000
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-endpoint}
      */
     Endpoint: string;
     /**
-     * The name of the server.
-     * @minLength 1
-     * @maxLength 40
-     * @pattern [a-zA-Z][a-zA-Z0-9\-]*
-     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-servername}
+     * The ID of the server.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-opsworkscm-server.html#cfn-opsworkscm-server-id}
      */
-    ServerName: string;
+    Id: string;
 };
 /**
  * The `EngineAttribute` property type specifies administrator credentials for an AWS OpsWorks for Chef Automate or OpsWorks for Puppet Enterprise server. `EngineAttribute` is a property of the `AWS::OpsWorksCM::Server` resource type.
@@ -213,8 +189,6 @@ export type EngineAttribute = {
      * - `PUPPET_ADMIN_PASSWORD`
      * - `PUPPET_R10K_REMOTE`
      * - `PUPPET_R10K_PRIVATE_KEY`
-     * @maxLength 10000
-     * @pattern (?s).*
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-opsworkscm-server-engineattribute.html#cfn-opsworkscm-server-engineattribute-name}
      */
     Name?: string | undefined;
@@ -234,8 +208,6 @@ export type EngineAttribute = {
      * - `PUPPET_ADMIN_PASSWORD` : An administrator password that you can use to sign in to the Puppet Enterprise console webpage after the server is online. The password must use between 8 and 32 ASCII characters.
      * - `PUPPET_R10K_REMOTE` : The r10k remote is the URL of your control repository (for example, ssh://git@your.git-repo.com:user/control-repo.git). Specifying an r10k remote opens TCP port 8170.
      * - `PUPPET_R10K_PRIVATE_KEY` : If you are using a private Git repository, add `PUPPET_R10K_PRIVATE_KEY` to specify a PEM-encoded private SSH key.
-     * @maxLength 10000
-     * @pattern (?s).*
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-opsworkscm-server-engineattribute.html#cfn-opsworkscm-server-engineattribute-value}
      */
     Value?: string | undefined;

package/out/exports/resources.generated/aws-rds-dbproxytargetgroup.d.ts

@@ -89,18 +89,18 @@ export type ConnectionPoolConfigurationInfoFormat = {
      *
      * Constraints:
      *
-     * - Must be between 0 and 3600.
+     * - Must be between 0 and 300.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-rds-dbproxytargetgroup-connectionpoolconfigurationinfoformat.html#cfn-rds-dbproxytargetgroup-connectionpoolconfigurationinfoformat-connectionborrowtimeout}
      */
     ConnectionBorrowTimeout?: number | undefined;
     /**
-     * Add an initialization query, or modify the current one. You can specify one or more SQL statements for the proxy to run when opening each new database connection. The setting is typically used with `SET` statements to make sure that each connection has identical settings. Make sure that the query you add is valid. To include multiple variables in a single `SET` statement, use comma separators.
+     * Add an initialization query, or modify the current one. You can specify one or more SQL statements for the proxy to run when opening each new database connection. The setting is typically used with `SET` statements to make sure that each connection has identical settings. Make sure the query added here is valid. This is an optional field, so you can choose to leave it empty. For including multiple variables in a single SET statement, use a comma separator.
      *
      * For example: `SET variable1=value1, variable2=value2`
      *
-     * For multiple statements, use semicolons as the separator.
-     *
      * Default: no initialization query
+     *
+     * > Since you can access initialization query as part of target group configuration, it is not protected by authentication or cryptographic methods. Anyone with access to view or manage your proxy target group configuration can view the initialization query. You should not add sensitive data, such as passwords or long-lived encryption keys, to this option.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-rds-dbproxytargetgroup-connectionpoolconfigurationinfoformat.html#cfn-rds-dbproxytargetgroup-connectionpoolconfigurationinfoformat-initquery}
      */
     InitQuery?: string | undefined;

package/out/exports/resources.generated/aws-rds-dbshardgroup.d.ts

@@ -14,11 +14,11 @@ export type RDSDBShardGroup = ResourceDefinitionWithAttributes<"AWS::RDS::DBShar
  */
 export type RDSDBShardGroupProps = {
     /**
-     * Specifies whether to create standby DB shard groups for the DB shard group. Valid values are the following:
+     * Specifies whether to create standby standby DB data access shard for the DB shard group. Valid values are the following:
      *
-     * - 0 - Creates a DB shard group without a standby DB shard group. This is the default value.
-     * - 1 - Creates a DB shard group with a standby DB shard group in a different Availability Zone (AZ).
-     * - 2 - Creates a DB shard group with two standby DB shard groups in two different AZs.
+     * - 0 - Creates a DB shard group without a standby DB data access shard. This is the default value.
+     * - 1 - Creates a DB shard group with a standby DB data access shard in a different Availability Zone (AZ).
+     * - 2 - Creates a DB shard group with two standby DB data access shard in two different AZs.
      * @min 0
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-rds-dbshardgroup.html#cfn-rds-dbshardgroup-computeredundancy}
      */

package/out/exports/resources.generated/aws-s3-bucket.d.ts

@@ -1154,7 +1154,7 @@ export type RoutingRuleCondition = {
      */
     HttpErrorCodeReturnedEquals?: string | undefined;
     /**
-     * The object key name prefix when the redirect is applied. For example, to redirect requests for `ExamplePage.html` , the key prefix will be `ExamplePage.html` . To redirect request for all pages with the prefix `docs/` , the key prefix will be `/docs` , which identifies all objects in the docs/ folder.
+     * The object key name prefix when the redirect is applied. For example, to redirect requests for `ExamplePage.html` , the key prefix will be `ExamplePage.html` . To redirect request for all pages with the prefix `docs/` , the key prefix will be `docs/` , which identifies all objects in the docs/ folder.
      *
      * Required when the parent element `Condition` is specified and sibling `HttpErrorCodeReturnedEquals` is not specified. If both conditions are specified, both must be true for the redirect to be applied.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-s3-bucket-routingrulecondition.html#cfn-s3-bucket-routingrulecondition-keyprefixequals}

package/out/exports/resources.generated/aws-sagemaker-domain.d.ts

@@ -442,6 +442,11 @@ export type DomainSettings = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-domainsettings.html#cfn-sagemaker-domain-domainsettings-securitygroupids}
      */
     SecurityGroupIds?: string[] | undefined;
+    /**
+     * The settings that apply to an SageMaker AI domain when you use it in Amazon SageMaker Unified Studio.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-domainsettings.html#cfn-sagemaker-domain-domainsettings-unifiedstudiosettings}
+     */
+    UnifiedStudioSettings?: UnifiedStudioSettings | undefined;
 };
 /**
  * The settings for assigning a custom Amazon EFS file system to a user profile or space for an Amazon SageMaker AI Domain.
@@ -777,6 +782,66 @@ export type StudioWebPortalSettings = {
      */
     HiddenSageMakerImageVersionAliases?: HiddenSageMakerImage[] | undefined;
 };
+/**
+ * The settings that apply to an Amazon SageMaker AI domain when you use it in Amazon SageMaker Unified Studio.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html}
+ */
+export type UnifiedStudioSettings = {
+    /**
+     * The ID of the AWS account that has the Amazon SageMaker Unified Studio domain. The default value, if you don't specify an ID, is the ID of the account that has the Amazon SageMaker AI domain.
+     * @minLength 12
+     * @maxLength 12
+     * @pattern ^\d+$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html#cfn-sagemaker-domain-unifiedstudiosettings-domainaccountid}
+     */
+    DomainAccountId?: string | undefined;
+    /**
+     * The ID of the Amazon SageMaker Unified Studio domain associated with this domain.
+     * @minLength 1
+     * @maxLength 36
+     * @pattern ^dzd[-_][a-zA-Z0-9_-]{1,36}$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html#cfn-sagemaker-domain-unifiedstudiosettings-domainid}
+     */
+    DomainId?: string | undefined;
+    /**
+     * The AWS Region where the domain is located in Amazon SageMaker Unified Studio. The default value, if you don't specify a Region, is the Region where the Amazon SageMaker AI domain is located.
+     * @pattern [a-zA-Z]{2}-[a-zA-Z\-]+-\d+
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html#cfn-sagemaker-domain-unifiedstudiosettings-domainregion}
+     */
+    DomainRegion?: string | undefined;
+    /**
+     * The ID of the environment that Amazon SageMaker Unified Studio associates with the domain.
+     * @minLength 1
+     * @maxLength 36
+     * @pattern ^[a-zA-Z0-9_-]{1,36}$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html#cfn-sagemaker-domain-unifiedstudiosettings-environmentid}
+     */
+    EnvironmentId?: string | undefined;
+    /**
+     * The ID of the Amazon SageMaker Unified Studio project that corresponds to the domain.
+     * @pattern ^[a-zA-Z0-9_-]{1,36}$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html#cfn-sagemaker-domain-unifiedstudiosettings-projectid}
+     */
+    ProjectId?: string | undefined;
+    /**
+     * The location where Amazon S3 stores temporary execution data and other artifacts for the project that corresponds to the domain.
+     * @minLength 1
+     * @maxLength 100
+     * @pattern [\w\.-]+$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html#cfn-sagemaker-domain-unifiedstudiosettings-projects3path}
+     */
+    ProjectS3Path?: string | undefined;
+    /**
+     * Sets whether you can access the domain in Amazon SageMaker Studio:
+     *
+     * - **ENABLED** - You can access the domain in Amazon SageMaker Studio. If you migrate the domain to Amazon SageMaker Unified Studio, you can access it in both studio interfaces.
+     * - **DISABLED** - You can't access the domain in Amazon SageMaker Studio. If you migrate the domain to Amazon SageMaker Unified Studio, you can access it only in that studio interface.
+     *
+     * To migrate a domain to Amazon SageMaker Unified Studio, you specify the UnifiedStudioSettings data type when you use the UpdateDomain action.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sagemaker-domain-unifiedstudiosettings.html#cfn-sagemaker-domain-unifiedstudiosettings-studiowebportalaccess}
+     */
+    StudioWebPortalAccess?: "ENABLED" | "DISABLED" | undefined;
+};
 /**
  * A collection of settings that apply to users of Amazon SageMaker Studio. These settings are specified when the [CreateUserProfile](https://docs.aws.amazon.com/sagemaker/latest/APIReference/API_CreateUserProfile.html) API is called, and as `DefaultUserSettings` when the [CreateDomain](https://docs.aws.amazon.com/sagemaker/latest/APIReference/API_CreateDomain.html) API is called.
  *

package/out/exports/resources.generated/aws-transfer-user.d.ts

@@ -14,7 +14,7 @@ export type TransferUserProps = {
      *
      * A `HomeDirectory` example is `/bucket_name/home/mydirectory` .
      *
-     * > The `HomeDirectory` parameter is only used if `HomeDirectoryType` is set to `PATH` .
+     * > You can use the `HomeDirectory` parameter for `HomeDirectoryType` when it is set to either `PATH` or `LOGICAL` .
      * @minLength 0
      * @maxLength 1024
      * @pattern ^(|/.*)$

package/out/exports/resources.generated/aws-verifiedpermissions-policystore.d.ts

@@ -10,6 +10,9 @@ export type VerifiedPermissionsPolicyStore = ResourceDefinitionWithAttributes<"A
  */
 export type VerifiedPermissionsPolicyStoreProps = {
     /**
+     * Specifies whether the policy store can be deleted. If enabled, the policy store can't be deleted.
+     *
+     * The default state is `DISABLED` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-verifiedpermissions-policystore.html#cfn-verifiedpermissions-policystore-deletionprotection}
      */
     DeletionProtection?: DeletionProtection | undefined;
@@ -67,10 +70,14 @@ export type VerifiedPermissionsPolicyStoreAttribs = {
  */
 export type DeletionMode = "ENABLED" | "DISABLED";
 /**
+ * Specifies whether the policy store can be deleted.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-verifiedpermissions-policystore-deletionprotection.html}
  */
 export type DeletionProtection = {
     /**
+     * Specifies whether the policy store can be deleted. If enabled, the policy store can't be deleted.
+     *
+     * The default state is `DISABLED` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-verifiedpermissions-policystore-deletionprotection.html#cfn-verifiedpermissions-policystore-deletionprotection-mode}
      */
     Mode: DeletionMode;

package/out/exports/resources.generated/aws-wafv2-rulegroup.d.ts

@@ -121,6 +121,19 @@ export type AndStatement = {
      */
     Statements: Statement[];
 };
+/**
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-asnmatchstatement.html}
+ */
+export type AsnMatchStatement = {
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-asnmatchstatement.html#cfn-wafv2-rulegroup-asnmatchstatement-asnlist}
+     */
+    AsnList?: number[] | undefined;
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-asnmatchstatement.html#cfn-wafv2-rulegroup-asnmatchstatement-forwardedipconfig}
+     */
+    ForwardedIPConfig?: ForwardedIPConfiguration | undefined;
+};
 /**
  * Block traffic towards application.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-blockaction.html}
@@ -561,7 +574,7 @@ export type FieldToMatch = {
  *
  * > If the specified header isn't present in the request, AWS WAF doesn't apply the rule to the web request at all.
  *
- * This configuration is used for `GeoMatchStatement` and `RateBasedStatement` . For `IPSetReferenceStatement` , use `IPSetForwardedIPConfig` instead.
+ * This configuration is used for `GeoMatchStatement` , `AsnMatchStatement` , and `RateBasedStatement` . For `IPSetReferenceStatement` , use `IPSetForwardedIPConfig` instead.
  *
  * AWS WAF only evaluates the first IP address found in the specified HTTP header.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-forwardedipconfiguration.html}
@@ -1097,6 +1110,11 @@ export type RateBasedStatement = {
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-ratebasedstatementcustomkey.html}
  */
 export type RateBasedStatementCustomKey = {
+    /**
+     * Specifies the request's ASN as an aggregate key for a rate-based rule.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-ratebasedstatementcustomkey.html#cfn-wafv2-rulegroup-ratebasedstatementcustomkey-asn}
+     */
+    ASN?: Record<string, unknown> | undefined;
     /**
      * Use the value of a cookie in the request as an aggregate key. Each distinct value in the cookie contributes to the aggregation instance. If you use a single cookie as your custom key, then each value fully defines an aggregation instance.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-ratebasedstatementcustomkey.html#cfn-wafv2-rulegroup-ratebasedstatementcustomkey-cookie}
@@ -1527,6 +1545,10 @@ export type Statement = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-statement.html#cfn-wafv2-rulegroup-statement-andstatement}
      */
     AndStatement?: AndStatement | undefined;
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-statement.html#cfn-wafv2-rulegroup-statement-asnmatchstatement}
+     */
+    AsnMatchStatement?: AsnMatchStatement | undefined;
     /**
      * A rule statement that defines a string match search for AWS WAF to apply to web requests. The byte match statement provides the bytes to search for, the location in requests that you want AWS WAF to search, and other settings. The bytes to search for are typically a string that corresponds with ASCII characters. In the AWS WAF console and the developer guide, this is called a string match statement.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-rulegroup-statement.html#cfn-wafv2-rulegroup-statement-bytematchstatement}