@propulsionworks/cloudformation 0.1.16 → 0.1.17

package/out/exports/resources.generated/aws-aiops-investigationgroup.d.ts

@@ -1,16 +1,44 @@
 import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
 /**
- * Definition of AWS::AIOps::InvestigationGroup Resource Type
+ * Creates an *investigation group* in your account. Creating an investigation group is a one-time setup task for each Region in your account. It is a necessary task to be able to perform investigations.
+ *
+ * Settings in the investigation group help you centrally manage the common properties of your investigations, such as the following:
+ *
+ * - Who can access the investigations
+ * - Whether investigation data is encrypted with a customer managed AWS Key Management Service key.
+ * - How long investigations and their data are retained by default.
+ *
+ * Currently, you can have one investigation group in each Region in your account. Each investigation in a Region is a part of the investigation group in that Region
+ *
+ * To create an investigation group and set up Amazon Q Developer operational investigations, you must be signed in to an IAM principal that has the either the `AIOpsConsoleAdminPolicy` or the `AdministratorAccess` IAM policy attached, or to an account that has similar permissions.
+ *
+ * > You can optionally configure CloudWatch alarms to start investigations and add events to investigations. The examples section on this page demonstrates creating an investigation group and an alarm at the same time.
+ * >
+ * > For more information about configuring CloudWatch alarms to work with Amazon Q Developer operational investigations, see
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html}
  */
 export type AIOpsInvestigationGroup = ResourceDefinitionWithAttributes<"AWS::AIOps::InvestigationGroup", AIOpsInvestigationGroupProps, AIOpsInvestigationGroupAttribs>;
 /**
- * Definition of AWS::AIOps::InvestigationGroup Resource Type
+ * Creates an *investigation group* in your account. Creating an investigation group is a one-time setup task for each Region in your account. It is a necessary task to be able to perform investigations.
+ *
+ * Settings in the investigation group help you centrally manage the common properties of your investigations, such as the following:
+ *
+ * - Who can access the investigations
+ * - Whether investigation data is encrypted with a customer managed AWS Key Management Service key.
+ * - How long investigations and their data are retained by default.
+ *
+ * Currently, you can have one investigation group in each Region in your account. Each investigation in a Region is a part of the investigation group in that Region
+ *
+ * To create an investigation group and set up Amazon Q Developer operational investigations, you must be signed in to an IAM principal that has the either the `AIOpsConsoleAdminPolicy` or the `AdministratorAccess` IAM policy attached, or to an account that has similar permissions.
+ *
+ * > You can optionally configure CloudWatch alarms to start investigations and add events to investigations. The examples section on this page demonstrates creating an investigation group and an alarm at the same time.
+ * >
+ * > For more information about configuring CloudWatch alarms to work with Amazon Q Developer operational investigations, see
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html}
  */
 export type AIOpsInvestigationGroupProps = {
     /**
-     * An array of key-value pairs of notification channels to apply to this resource.
+     * Use this property to integrate Amazon Q Developer operational investigations with Amazon Q in chat applications. This property is an array. For the first string, specify the ARN of an Amazon SNS topic. For the array of strings, specify the ARNs of one or more Amazon Q in chat applications configurations that you want to associate with that topic. For more information about these configuration ARNs, see [Getting started with Amazon Q in chat applications](https://docs.aws.amazon.com/chatbot/latest/adminguide/getting-started.html) and [Resource type defined by AWS Chatbot](https://docs.aws.amazon.com/service-authorization/latest/reference/list_awschatbot.html#awschatbot-resources-for-iam-policies) .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html#cfn-aiops-investigationgroup-chatbotnotificationchannels}
      */
     ChatbotNotificationChannels?: ChatbotNotificationChannel[] | undefined;
@@ -20,6 +48,7 @@ export type AIOpsInvestigationGroupProps = {
      */
     CrossAccountConfigurations?: CrossAccountConfiguration[] | undefined;
     /**
+     * Use this property to specify a customer managed AWS KMS key to encrypt your investigation data. If you omit this property, Amazon Q Developer operational investigations will use an AWS key to encrypt the data. For more information, see [Encryption of investigation data](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/Investigations-Security.html#Investigations-KMS) .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html#cfn-aiops-investigationgroup-encryptionconfig}
      */
     EncryptionConfig?: EncryptionConfigMap | undefined;
@@ -29,31 +58,40 @@ export type AIOpsInvestigationGroupProps = {
      */
     InvestigationGroupPolicy?: string | undefined;
     /**
-     * Flag to enable cloud trail history
+     * Specify `true` to enable Amazon Q Developer operational investigations to have access to change events that are recorded by CloudTrail . The default is `true` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html#cfn-aiops-investigationgroup-iscloudtraileventhistoryenabled}
      */
     IsCloudTrailEventHistoryEnabled?: boolean | undefined;
     /**
-     * User friendly name for resources.
+     * A name for the investigation group.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html#cfn-aiops-investigationgroup-name}
      */
     Name: string;
     /**
-     * The number of days to retain the investigation group
+     * Specify how long that investigation data is kept. For more information, see [Operational investigation data retention](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/Investigations-Retention.html) .
+     *
+     * If you omit this parameter, the default of 90 days is used.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html#cfn-aiops-investigationgroup-retentionindays}
      */
     RetentionInDays?: number | undefined;
     /**
-     * The Investigation Role's ARN.
+     * Specify the ARN of the IAM role that Amazon Q Developer operational investigations will use when it gathers investigation data. The permissions in this role determine which of your resources that Amazon Q Developer operational investigations will have access to during investigations.
+     *
+     * For more information, see [How to control what data Amazon Q has access to during investigations](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/Investigations-Security.html#Investigations-Security-Data) .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html#cfn-aiops-investigationgroup-rolearn}
      */
     RoleArn?: string | undefined;
     /**
+     * Enter the existing custom tag keys for custom applications in your system. Resource tags help Amazon Q narrow the search space when it is unable to discover definite relationships between resources. For example, to discover that an Amazon ECS service depends on an Amazon RDS database, Amazon Q can discover this relationship using data sources such as X-Ray and CloudWatch Application Signals. However, if you haven't deployed these features, Amazon Q will attempt to identify possible relationships. Tag boundaries can be used to narrow the resources that will be discovered by Amazon Q in these cases.
+     *
+     * You don't need to enter tags created by myApplications or AWS CloudFormation , because Amazon Q can automatically detect those tags.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html#cfn-aiops-investigationgroup-tagkeyboundaries}
      */
     TagKeyBoundaries?: string[] | undefined;
     /**
-     * An array of key-value pairs to apply to this resource.
+     * A list of key-value pairs to associate with the investigation group. You can associate as many as 50 tags with an investigation group.
+     *
+     * Tags can help you organize and categorize your resources.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html#cfn-aiops-investigationgroup-tags}
      */
     Tags?: Tag[] | undefined;
@@ -63,32 +101,33 @@ export type AIOpsInvestigationGroupProps = {
  */
 export type AIOpsInvestigationGroupAttribs = {
     /**
-     * The Investigation Group's ARN.
+     * The Amazon Resource Name (ARN) of the investigation group. For example, `arn:aws:aiops: *Region* : *account-id* :investigation-group: *investigation-group-id*`
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html#cfn-aiops-investigationgroup-arn}
      */
     Arn: string;
     /**
-     * The timestamp value.
+     * The date and time that the investigation group was created.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html#cfn-aiops-investigationgroup-createdat}
      */
     CreatedAt: string;
     /**
-     * User friendly name for resources.
+     * The name of the user who created the investigation group.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html#cfn-aiops-investigationgroup-createdby}
      */
     CreatedBy: string;
     /**
-     * User friendly name for resources.
+     * The date and time that the investigation group was most recently modified.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html#cfn-aiops-investigationgroup-lastmodifiedat}
      */
     LastModifiedAt: string;
     /**
-     * User friendly name for resources.
+     * The name of the user who most recently modified the investigation group.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-aiops-investigationgroup.html#cfn-aiops-investigationgroup-lastmodifiedby}
      */
     LastModifiedBy: string;
 };
 /**
+ * This structure is a string array. The first string is the ARN of a Amazon SNS topic. The array of strings display the ARNs of Amazon Q in chat applications configurations that are associated with that topic. For more information about these configuration ARNs, see [Getting started with Amazon Q in chat applications](https://docs.aws.amazon.com/chatbot/latest/adminguide/getting-started.html) and [Resource type defined by AWS Chatbot](https://docs.aws.amazon.com/service-authorization/latest/reference/list_awschatbot.html#awschatbot-resources-for-iam-policies) .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-aiops-investigationgroup-chatbotnotificationchannel.html}
  */
 export type ChatbotNotificationChannel = {
@@ -124,6 +163,7 @@ export type EncryptionConfigMap = {
      */
     EncryptionConfigurationType?: string | undefined;
     /**
+     * If the investigation group uses a customer managed key for encryption, this field displays the ID of that key.
      * @minLength 1
      * @maxLength 256
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-aiops-investigationgroup-encryptionconfigmap.html#cfn-aiops-investigationgroup-encryptionconfigmap-kmskeyid}

package/out/exports/resources.generated/aws-arczonalshift-zonalautoshiftconfiguration.d.ts

@@ -104,6 +104,8 @@ export type PracticeRunConfiguration = {
      * An array of one or more days and times that you can specify when ARC does not start practice runs for a resource. Days and times are in UTC.
      *
      * Specify blocked windows in the format `DAY:HH:MM-DAY:HH:MM` , separated by spaces. For example, `MON:18:30-MON:19:30 TUE:18:30-TUE:19:30` .
+     *
+     * > Blocked windows have to start and end on the same day. Windows that span multiple days aren't supported.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-arczonalshift-zonalautoshiftconfiguration-practicerunconfiguration.html#cfn-arczonalshift-zonalautoshiftconfiguration-practicerunconfiguration-blockedwindows}
      */
     BlockedWindows?: string[] | undefined;

package/out/exports/resources.generated/aws-cassandra-table.d.ts

@@ -25,7 +25,7 @@ export type CassandraTableProps = {
      */
     BillingMode?: BillingMode | undefined;
     /**
-     * Represents the CDC configuration for the table
+     * The settings for the CDC stream of a table. For more information about CDC streams, see [Working with change data capture (CDC) streams in Amazon Keyspaces](https://docs.aws.amazon.com/keyspaces/latest/devguide/cdc.html) in the *Amazon Keyspaces Developer Guide* .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cassandra-table.html#cfn-cassandra-table-cdcspecification}
      */
     CdcSpecification?: CdcSpecification | undefined;
@@ -196,17 +196,24 @@ export type BillingMode = {
     ProvisionedThroughput?: ProvisionedThroughput | undefined;
 };
 /**
- * Represents the CDC configuration for the table
+ * The settings for the CDC stream of a table. For more information about CDC streams, see [Working with change data capture (CDC) streams in Amazon Keyspaces](https://docs.aws.amazon.com/keyspaces/latest/devguide/cdc.html) in the *Amazon Keyspaces Developer Guide* .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cassandra-table-cdcspecification.html}
  */
 export type CdcSpecification = {
     /**
-     * Indicates whether CDC is enabled or disabled for the table
+     * The status of the CDC stream. You can enable or disable a stream for a table.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cassandra-table-cdcspecification.html#cfn-cassandra-table-cdcspecification-status}
      */
     Status: CdcStatus;
     /**
-     * Specifies what data should be captured in the change data stream
+     * The view type specifies the changes Amazon Keyspaces records for each changed row in the stream. After you create the stream, you can't make changes to this selection.
+     *
+     * The options are:
+     *
+     * - `NEW_AND_OLD_IMAGES` - both versions of the row, before and after the change. This is the default.
+     * - `NEW_IMAGE` - the version of the row after the change.
+     * - `OLD_IMAGE` - the version of the row before the change.
+     * - `KEYS_ONLY` - the partition and clustering keys of the row that was changed.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cassandra-table-cdcspecification.html#cfn-cassandra-table-cdcspecification-viewtype}
      */
     ViewType?: CdcViewType | undefined;

package/out/exports/resources.generated/aws-certificatemanager-certificate.d.ts

@@ -24,6 +24,10 @@ export type CertificateManagerCertificateProps = {
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-certificatemanager-certificate.html#cfn-certificatemanager-certificate-certificateauthorityarn}
      */
     CertificateAuthorityArn?: string | undefined;
+    /**
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-certificatemanager-certificate.html#cfn-certificatemanager-certificate-certificateexport}
+     */
+    CertificateExport?: string | undefined;
     /**
      * You can opt out of certificate transparency logging by specifying the `DISABLED` option. Opt in by specifying `ENABLED` .
      *

package/out/exports/resources.generated/aws-cloudformation-hookdefaultversion.d.ts

@@ -72,7 +72,7 @@ export type CloudFormationHookDefaultVersionProps = {
  */
 export type CloudFormationHookDefaultVersionAttribs = {
     /**
-     * The Amazon Resource Number (ARN) of the activated Hook, in this account and Region.
+     * The Amazon Resource Number (ARN) of the activated Hook in this account and Region.
      * @pattern ^arn:aws[A-Za-z0-9-]{0,64}:cloudformation:[A-Za-z0-9-]{1,64}:([0-9]{12})?:type/hook/.+$
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-hookdefaultversion.html#cfn-cloudformation-hookdefaultversion-arn}
      */

package/out/exports/resources.generated/aws-cloudformation-hooktypeconfig.d.ts

@@ -86,7 +86,7 @@ export type CloudFormationHookTypeConfigProps = {
  */
 export type CloudFormationHookTypeConfigAttribs = {
     /**
-     * The Amazon Resource Number (ARN) of the activated Hook type configuration, in this account and Region.
+     * The Amazon Resource Number (ARN) of the activated Hook type configuration in this account and Region.
      * @pattern ^arn:aws[A-Za-z0-9-]{0,64}:cloudformation:[A-Za-z0-9-]{1,64}:([0-9]{12})?:type(-configuration)?/hook/.+$
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-hooktypeconfig.html#cfn-cloudformation-hooktypeconfig-configurationarn}
      */

package/out/exports/resources.generated/aws-cloudformation-macro.d.ts

@@ -46,6 +46,7 @@ export type CloudFormationMacroProps = {
  */
 export type CloudFormationMacroAttribs = {
     /**
+     * Returns a unique identifier for the resource.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-macro.html#cfn-cloudformation-macro-id}
      */
     Id: string;

package/out/exports/resources.generated/aws-cloudformation-stack.d.ts

@@ -2,7 +2,7 @@ import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
 /**
  * The `AWS::CloudFormation::Stack` resource nests a stack as a resource in a top-level template. For more information, see [Nested stacks](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-nested-stacks.html) in the *AWS CloudFormation User Guide* .
  *
- * You can add output values from a nested stack within the containing template. You use the [GetAtt](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-getatt.html) function with the nested stack's logical name and the name of the output value in the nested stack in the format `Outputs. *NestedStackOutputName*` .
+ * You can add output values from a nested stack within the containing template. You use the [GetAtt](https://docs.aws.amazon.com/AWSCloudFormation/latest/TemplateReference/intrinsic-function-reference-getatt.html) function with the nested stack's logical name and the name of the output value in the nested stack in the format `Outputs. *NestedStackOutputName*` .
  *
  * We strongly recommend that updates to nested stacks are run from the parent stack.
  *
@@ -49,7 +49,7 @@ export type CloudFormationStack = ResourceDefinitionWithAttributes<"AWS::CloudFo
 /**
  * The `AWS::CloudFormation::Stack` resource nests a stack as a resource in a top-level template. For more information, see [Nested stacks](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-nested-stacks.html) in the *AWS CloudFormation User Guide* .
  *
- * You can add output values from a nested stack within the containing template. You use the [GetAtt](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-getatt.html) function with the nested stack's logical name and the name of the output value in the nested stack in the format `Outputs. *NestedStackOutputName*` .
+ * You can add output values from a nested stack within the containing template. You use the [GetAtt](https://docs.aws.amazon.com/AWSCloudFormation/latest/TemplateReference/intrinsic-function-reference-getatt.html) function with the nested stack's logical name and the name of the output value in the nested stack in the format `Outputs. *NestedStackOutputName*` .
  *
  * We strongly recommend that updates to nested stacks are run from the parent stack.
  *
@@ -179,12 +179,12 @@ export type CloudFormationStackProps = {
  */
 export type CloudFormationStackAttribs = {
     /**
-     * Returns the unique ID of the change set.
+     * Returns the unique identifier of the change set.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stack.html#cfn-cloudformation-stack-changesetid}
      */
     ChangeSetId: string;
     /**
-     * Returns The time at which the stack was created.
+     * Returns the time the stack was created.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stack.html#cfn-cloudformation-stack-creationtime}
      */
     CreationTime: string;

package/out/exports/resources.generated/aws-cloudformation-stackset.d.ts

@@ -1,22 +1,22 @@
 import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
 /**
- * The `AWS::CloudFormation::StackSet` resource enables you to provision stacks into AWS accounts and across Regions by using a single CloudFormation template. In the stack set, you specify the template to use, in addition to any parameters and capabilities that the template requires.
+ * The `AWS::CloudFormation::StackSet` resource contains information about a StackSet. With StackSets, you can provision stacks across AWS accounts and Regions from a single CloudFormation template. Each stack is based on the same CloudFormation template, but you can customize individual stacks using parameters.
  *
  * > Run deployments to nested StackSets from the parent stack, not directly through the StackSet API.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html}
  */
 export type CloudFormationStackSet = ResourceDefinitionWithAttributes<"AWS::CloudFormation::StackSet", CloudFormationStackSetProps, CloudFormationStackSetAttribs>;
 /**
- * The `AWS::CloudFormation::StackSet` resource enables you to provision stacks into AWS accounts and across Regions by using a single CloudFormation template. In the stack set, you specify the template to use, in addition to any parameters and capabilities that the template requires.
+ * The `AWS::CloudFormation::StackSet` resource contains information about a StackSet. With StackSets, you can provision stacks across AWS accounts and Regions from a single CloudFormation template. Each stack is based on the same CloudFormation template, but you can customize individual stacks using parameters.
  *
  * > Run deployments to nested StackSets from the parent stack, not directly through the StackSet API.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html}
  */
 export type CloudFormationStackSetProps = {
     /**
-     * The Amazon Resource Number (ARN) of the IAM role to use to create this stack set. Specify an IAM role only if you are using customized administrator roles to control which users or groups can manage specific stack sets within the same administrator account.
+     * The Amazon Resource Number (ARN) of the IAM role to use to create this StackSet. Specify an IAM role only if you are using customized administrator roles to control which users or groups can manage specific StackSets within the same administrator account.
      *
-     * Use customized administrator roles to control which users or groups can manage specific stack sets within the same administrator account. For more information, see [Grant self-managed permissions](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs-self-managed.html) in the *AWS CloudFormation User Guide* .
+     * Use customized administrator roles to control which users or groups can manage specific StackSets within the same administrator account. For more information, see [Grant self-managed permissions](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs-self-managed.html) in the *AWS CloudFormation User Guide* .
      *
      * Valid only if the permissions model is `SELF_MANAGED` .
      * @minLength 20
@@ -34,33 +34,33 @@ export type CloudFormationStackSetProps = {
     /**
      * Specifies whether you are acting as an account administrator in the organization's management account or as a delegated administrator in a member account.
      *
-     * By default, `SELF` is specified. Use `SELF` for stack sets with self-managed permissions.
+     * By default, `SELF` is specified. Use `SELF` for StackSets with self-managed permissions.
      *
-     * - To create a stack set with service-managed permissions while signed in to the management account, specify `SELF` .
-     * - To create a stack set with service-managed permissions while signed in to a delegated administrator account, specify `DELEGATED_ADMIN` .
+     * - To create a StackSet with service-managed permissions while signed in to the management account, specify `SELF` .
+     * - To create a StackSet with service-managed permissions while signed in to a delegated administrator account, specify `DELEGATED_ADMIN` .
      *
      * Your AWS account must be registered as a delegated admin in the management account. For more information, see [Register a delegated administrator](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-delegated-admin.html) in the *AWS CloudFormation User Guide* .
      *
-     * Stack sets with service-managed permissions are created in the management account, including stack sets that are created by delegated administrators.
+     * StackSets with service-managed permissions are created in the management account, including StackSets that are created by delegated administrators.
      *
      * Valid only if the permissions model is `SERVICE_MANAGED` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-callas}
      */
     CallAs?: "SELF" | "DELEGATED_ADMIN" | undefined;
     /**
-     * The capabilities that are allowed in the stack set. Some stack set templates might include resources that can affect permissions in your AWS account —for example, by creating new IAM users. For more information, see [Acknowledging IAM resources in CloudFormation templates](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/control-access-with-iam.html#using-iam-capabilities) in the *AWS CloudFormation User Guide* .
+     * The capabilities that are allowed in the StackSet. Some StackSet templates might include resources that can affect permissions in your AWS account —for example, by creating new IAM users. For more information, see [Acknowledging IAM resources in CloudFormation templates](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/control-access-with-iam.html#using-iam-capabilities) in the *AWS CloudFormation User Guide* .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-capabilities}
      */
     Capabilities?: Capability[] | undefined;
     /**
-     * A description of the stack set.
+     * A description of the StackSet.
      * @minLength 1
      * @maxLength 1024
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-description}
      */
     Description?: string | undefined;
     /**
-     * The name of the IAM execution role to use to create the stack set. If you don't specify an execution role, CloudFormation uses the `AWSCloudFormationStackSetExecutionRole` role for the stack set operation.
+     * The name of the IAM execution role to use to create the StackSet. If you don't specify an execution role, CloudFormation uses the `AWSCloudFormationStackSetExecutionRole` role for the StackSet operation.
      *
      * Valid only if the permissions model is `SELF_MANAGED` .
      *
@@ -77,7 +77,7 @@ export type CloudFormationStackSetProps = {
      *
      * > If there are already running or queued operations, StackSets queues all incoming operations even if they are non-conflicting.
      * >
-     * > You can't modify your stack set's execution configuration while there are running or queued operations for that stack set.
+     * > You can't modify your StackSet's execution configuration while there are running or queued operations for that StackSet.
      *
      * When inactive (default), StackSets performs one operation at a time in request order.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-managedexecution}
@@ -86,20 +86,20 @@ export type CloudFormationStackSetProps = {
         Active?: boolean | undefined;
     } | undefined;
     /**
-     * The user-specified preferences for how CloudFormation performs a stack set operation.
+     * The user-specified preferences for how CloudFormation performs a StackSet operation.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-operationpreferences}
      */
     OperationPreferences?: OperationPreferences | undefined;
     /**
-     * The input parameters for the stack set template.
+     * The input parameters for the StackSet template.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-parameters}
      */
     Parameters?: Parameter[] | undefined;
     /**
-     * Describes how the IAM roles required for stack set operations are created.
+     * Describes how the IAM roles required for StackSet operations are created.
      *
      * - With `SELF_MANAGED` permissions, you must create the administrator and execution roles required to deploy to target accounts. For more information, see [Grant self-managed permissions](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs-self-managed.html) in the *AWS CloudFormation User Guide* .
-     * - With `SERVICE_MANAGED` permissions, StackSets automatically creates the IAM roles required to deploy to accounts managed by AWS Organizations . For more information, see [Activate trusted access for stack sets with AWS Organizations](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-activate-trusted-access.html) in the *AWS CloudFormation User Guide* .
+     * - With `SERVICE_MANAGED` permissions, StackSets automatically creates the IAM roles required to deploy to accounts managed by AWS Organizations . For more information, see [Activate trusted access for StackSets with AWS Organizations](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-activate-trusted-access.html) in the *AWS CloudFormation User Guide* .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-permissionmodel}
      */
     PermissionModel: "SERVICE_MANAGED" | "SELF_MANAGED";
@@ -109,7 +109,7 @@ export type CloudFormationStackSetProps = {
      */
     StackInstancesGroup?: StackInstances[] | undefined;
     /**
-     * The name to associate with the stack set. The name must be unique in the Region where you create your stack set.
+     * The name to associate with the StackSet. The name must be unique in the Region where you create your StackSet.
      * @maxLength 128
      * @pattern ^[a-zA-Z][a-zA-Z0-9\-]{0,127}$
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-stacksetname}
@@ -142,9 +142,9 @@ export type CloudFormationStackSetProps = {
     TemplateURL: string;
 } | {
     /**
-     * The Amazon Resource Number (ARN) of the IAM role to use to create this stack set. Specify an IAM role only if you are using customized administrator roles to control which users or groups can manage specific stack sets within the same administrator account.
+     * The Amazon Resource Number (ARN) of the IAM role to use to create this StackSet. Specify an IAM role only if you are using customized administrator roles to control which users or groups can manage specific StackSets within the same administrator account.
      *
-     * Use customized administrator roles to control which users or groups can manage specific stack sets within the same administrator account. For more information, see [Grant self-managed permissions](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs-self-managed.html) in the *AWS CloudFormation User Guide* .
+     * Use customized administrator roles to control which users or groups can manage specific StackSets within the same administrator account. For more information, see [Grant self-managed permissions](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs-self-managed.html) in the *AWS CloudFormation User Guide* .
      *
      * Valid only if the permissions model is `SELF_MANAGED` .
      * @minLength 20
@@ -162,33 +162,33 @@ export type CloudFormationStackSetProps = {
     /**
      * Specifies whether you are acting as an account administrator in the organization's management account or as a delegated administrator in a member account.
      *
-     * By default, `SELF` is specified. Use `SELF` for stack sets with self-managed permissions.
+     * By default, `SELF` is specified. Use `SELF` for StackSets with self-managed permissions.
      *
-     * - To create a stack set with service-managed permissions while signed in to the management account, specify `SELF` .
-     * - To create a stack set with service-managed permissions while signed in to a delegated administrator account, specify `DELEGATED_ADMIN` .
+     * - To create a StackSet with service-managed permissions while signed in to the management account, specify `SELF` .
+     * - To create a StackSet with service-managed permissions while signed in to a delegated administrator account, specify `DELEGATED_ADMIN` .
      *
      * Your AWS account must be registered as a delegated admin in the management account. For more information, see [Register a delegated administrator](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-delegated-admin.html) in the *AWS CloudFormation User Guide* .
      *
-     * Stack sets with service-managed permissions are created in the management account, including stack sets that are created by delegated administrators.
+     * StackSets with service-managed permissions are created in the management account, including StackSets that are created by delegated administrators.
      *
      * Valid only if the permissions model is `SERVICE_MANAGED` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-callas}
      */
     CallAs?: "SELF" | "DELEGATED_ADMIN" | undefined;
     /**
-     * The capabilities that are allowed in the stack set. Some stack set templates might include resources that can affect permissions in your AWS account —for example, by creating new IAM users. For more information, see [Acknowledging IAM resources in CloudFormation templates](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/control-access-with-iam.html#using-iam-capabilities) in the *AWS CloudFormation User Guide* .
+     * The capabilities that are allowed in the StackSet. Some StackSet templates might include resources that can affect permissions in your AWS account —for example, by creating new IAM users. For more information, see [Acknowledging IAM resources in CloudFormation templates](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/control-access-with-iam.html#using-iam-capabilities) in the *AWS CloudFormation User Guide* .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-capabilities}
      */
     Capabilities?: Capability[] | undefined;
     /**
-     * A description of the stack set.
+     * A description of the StackSet.
      * @minLength 1
      * @maxLength 1024
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-description}
      */
     Description?: string | undefined;
     /**
-     * The name of the IAM execution role to use to create the stack set. If you don't specify an execution role, CloudFormation uses the `AWSCloudFormationStackSetExecutionRole` role for the stack set operation.
+     * The name of the IAM execution role to use to create the StackSet. If you don't specify an execution role, CloudFormation uses the `AWSCloudFormationStackSetExecutionRole` role for the StackSet operation.
      *
      * Valid only if the permissions model is `SELF_MANAGED` .
      *
@@ -205,7 +205,7 @@ export type CloudFormationStackSetProps = {
      *
      * > If there are already running or queued operations, StackSets queues all incoming operations even if they are non-conflicting.
      * >
-     * > You can't modify your stack set's execution configuration while there are running or queued operations for that stack set.
+     * > You can't modify your StackSet's execution configuration while there are running or queued operations for that StackSet.
      *
      * When inactive (default), StackSets performs one operation at a time in request order.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-managedexecution}
@@ -214,20 +214,20 @@ export type CloudFormationStackSetProps = {
         Active?: boolean | undefined;
     } | undefined;
     /**
-     * The user-specified preferences for how CloudFormation performs a stack set operation.
+     * The user-specified preferences for how CloudFormation performs a StackSet operation.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-operationpreferences}
      */
     OperationPreferences?: OperationPreferences | undefined;
     /**
-     * The input parameters for the stack set template.
+     * The input parameters for the StackSet template.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-parameters}
      */
     Parameters?: Parameter[] | undefined;
     /**
-     * Describes how the IAM roles required for stack set operations are created.
+     * Describes how the IAM roles required for StackSet operations are created.
      *
      * - With `SELF_MANAGED` permissions, you must create the administrator and execution roles required to deploy to target accounts. For more information, see [Grant self-managed permissions](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-prereqs-self-managed.html) in the *AWS CloudFormation User Guide* .
-     * - With `SERVICE_MANAGED` permissions, StackSets automatically creates the IAM roles required to deploy to accounts managed by AWS Organizations . For more information, see [Activate trusted access for stack sets with AWS Organizations](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-activate-trusted-access.html) in the *AWS CloudFormation User Guide* .
+     * - With `SERVICE_MANAGED` permissions, StackSets automatically creates the IAM roles required to deploy to accounts managed by AWS Organizations . For more information, see [Activate trusted access for StackSets with AWS Organizations](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-orgs-activate-trusted-access.html) in the *AWS CloudFormation User Guide* .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-permissionmodel}
      */
     PermissionModel: "SERVICE_MANAGED" | "SELF_MANAGED";
@@ -237,7 +237,7 @@ export type CloudFormationStackSetProps = {
      */
     StackInstancesGroup?: StackInstances[] | undefined;
     /**
-     * The name to associate with the stack set. The name must be unique in the Region where you create your stack set.
+     * The name to associate with the StackSet. The name must be unique in the Region where you create your StackSet.
      * @maxLength 128
      * @pattern ^[a-zA-Z][a-zA-Z0-9\-]{0,127}$
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-stacksetname}
@@ -274,7 +274,7 @@ export type CloudFormationStackSetProps = {
  */
 export type CloudFormationStackSetAttribs = {
     /**
-     * The ID of the stack that you're creating.
+     * Returns the unique identifier of the resource.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-stackset.html#cfn-cloudformation-stackset-stacksetid}
      */
     StackSetId: string;
@@ -305,7 +305,7 @@ export type Capability = "CAPABILITY_IAM" | "CAPABILITY_NAMED_IAM" | "CAPABILITY
  */
 export type ConcurrencyMode = "STRICT_FAILURE_TOLERANCE" | "SOFT_FAILURE_TOLERANCE";
 /**
- * The AWS OrganizationalUnitIds or Accounts for which to create stack instances in the specified Regions.
+ * The AWS `OrganizationalUnitIds` or `Accounts` for which to create stack instances in the specified Regions.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudformation-stackset-deploymenttargets.html}
  */
 export type DeploymentTargets = {
@@ -344,7 +344,7 @@ export type DeploymentTargets = {
     OrganizationalUnitIds?: string[] | undefined;
 };
 /**
- * The user-specified preferences for how CloudFormation performs a stack set operation. For more information on maximum concurrent accounts and failure tolerance, see [Stack set operation options](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-concepts.html#stackset-ops-options) in the *AWS CloudFormation User Guide* .
+ * The user-specified preferences for how CloudFormation performs a StackSet operation. For more information on maximum concurrent accounts and failure tolerance, see [StackSet operation options](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-concepts.html#stackset-ops-options) in the *AWS CloudFormation User Guide* .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudformation-stackset-operationpreferences.html}
  */
 export type OperationPreferences = {
@@ -354,7 +354,7 @@ export type OperationPreferences = {
      * - `STRICT_FAILURE_TOLERANCE` : This option dynamically lowers the concurrency level to ensure the number of failed accounts never exceeds the value of `FailureToleranceCount` +1. The initial actual concurrency is set to the lower of either the value of the `MaxConcurrentCount` , or the value of `FailureToleranceCount` +1. The actual concurrency is then reduced proportionally by the number of failures. This is the default behavior.
      *
      * If failure tolerance or Maximum concurrent accounts are set to percentages, the behavior is similar.
-     * - `SOFT_FAILURE_TOLERANCE` : This option decouples `FailureToleranceCount` from the actual concurrency. This allows stack set operations to run at the concurrency level set by the `MaxConcurrentCount` value, or `MaxConcurrentPercentage` , regardless of the number of failures.
+     * - `SOFT_FAILURE_TOLERANCE` : This option decouples `FailureToleranceCount` from the actual concurrency. This allows StackSet operations to run at the concurrency level set by the `MaxConcurrentCount` value, or `MaxConcurrentPercentage` , regardless of the number of failures.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudformation-stackset-operationpreferences.html#cfn-cloudformation-stackset-operationpreferences-concurrencymode}
      */
     ConcurrencyMode?: ConcurrencyMode | undefined;
@@ -443,7 +443,7 @@ export type StackInstances = {
      */
     DeploymentTargets: DeploymentTargets;
     /**
-     * A list of stack set parameters whose values you want to override in the selected stack instances.
+     * A list of StackSet parameters whose values you want to override in the selected stack instances.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudformation-stackset-stackinstances.html#cfn-cloudformation-stackset-stackinstances-parameteroverrides}
      */
     ParameterOverrides?: Parameter[] | undefined;

package/out/exports/resources.generated/aws-cloudformation-waitcondition.d.ts

@@ -1,13 +1,13 @@
 import type { ResourceDefinitionWithAttributes } from "../main.ts";
 /**
- * The `AWS::CloudFormation::WaitCondition` resource provides a way to coordinate stack resource creation with configuration actions that are external to the stack creation or to track the status of a configuration process. In these situations, we recommend that you associate a `CreationPolicy` attribute with the wait condition instead of using a wait condition handle. For more information and an example, see [CreationPolicy attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-creationpolicy.html) in the *AWS CloudFormation User Guide* . If you use a `CreationPolicy` with a wait condition, don't specify any of the wait condition's properties.
+ * The `AWS::CloudFormation::WaitCondition` resource provides a way to coordinate stack resource creation with configuration actions that are external to the stack creation or to track the status of a configuration process. In these situations, we recommend that you associate a `CreationPolicy` attribute with the wait condition instead of using a wait condition handle. For more information and an example, see [CreationPolicy attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/TemplateReference/aws-attribute-creationpolicy.html) in the *AWS CloudFormation User Guide* . If you use a `CreationPolicy` with a wait condition, don't specify any of the wait condition's properties.
  *
  * > If you use AWS PrivateLink , resources in the VPC that respond to wait conditions must have access to CloudFormation , specific Amazon S3 buckets. Resources must send wait condition responses to a presigned Amazon S3 URL. If they can't send responses to Amazon S3 , CloudFormation won't receive a response and the stack operation fails. For more information, see [Access CloudFormation using an interface endpoint ( AWS PrivateLink )](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/vpc-interface-endpoints.html) in the *AWS CloudFormation User Guide* . > For Amazon EC2 and Auto Scaling resources, we recommend that you use a `CreationPolicy` attribute instead of wait conditions. Add a `CreationPolicy` attribute to those resources, and use the `cfn-signal` helper script to signal when an instance creation process has completed successfully.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-waitcondition.html}
  */
 export type CloudFormationWaitCondition = ResourceDefinitionWithAttributes<"AWS::CloudFormation::WaitCondition", CloudFormationWaitConditionProps, CloudFormationWaitConditionAttribs>;
 /**
- * The `AWS::CloudFormation::WaitCondition` resource provides a way to coordinate stack resource creation with configuration actions that are external to the stack creation or to track the status of a configuration process. In these situations, we recommend that you associate a `CreationPolicy` attribute with the wait condition instead of using a wait condition handle. For more information and an example, see [CreationPolicy attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-creationpolicy.html) in the *AWS CloudFormation User Guide* . If you use a `CreationPolicy` with a wait condition, don't specify any of the wait condition's properties.
+ * The `AWS::CloudFormation::WaitCondition` resource provides a way to coordinate stack resource creation with configuration actions that are external to the stack creation or to track the status of a configuration process. In these situations, we recommend that you associate a `CreationPolicy` attribute with the wait condition instead of using a wait condition handle. For more information and an example, see [CreationPolicy attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/TemplateReference/aws-attribute-creationpolicy.html) in the *AWS CloudFormation User Guide* . If you use a `CreationPolicy` with a wait condition, don't specify any of the wait condition's properties.
  *
  * > If you use AWS PrivateLink , resources in the VPC that respond to wait conditions must have access to CloudFormation , specific Amazon S3 buckets. Resources must send wait condition responses to a presigned Amazon S3 URL. If they can't send responses to Amazon S3 , CloudFormation won't receive a response and the stack operation fails. For more information, see [Access CloudFormation using an interface endpoint ( AWS PrivateLink )](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/vpc-interface-endpoints.html) in the *AWS CloudFormation User Guide* . > For Amazon EC2 and Auto Scaling resources, we recommend that you use a `CreationPolicy` attribute instead of wait conditions. Add a `CreationPolicy` attribute to those resources, and use the `cfn-signal` helper script to signal when an instance creation process has completed successfully.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-waitcondition.html}
@@ -42,6 +42,7 @@ export type CloudFormationWaitConditionProps = {
  */
 export type CloudFormationWaitConditionAttribs = {
     /**
+     * Returns a unique identifier for the resource.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-waitcondition.html#cfn-cloudformation-waitcondition-id}
      */
     Id: string;

package/out/exports/resources.generated/aws-cloudformation-waitconditionhandle.d.ts

@@ -26,7 +26,7 @@ export type CloudFormationWaitConditionHandleProps = Record<string, never>;
  */
 export type CloudFormationWaitConditionHandleAttribs = {
     /**
-     * A unique identifier for the resource.
+     * Returns a unique identifier for the resource.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudformation-waitconditionhandle.html#cfn-cloudformation-waitconditionhandle-id}
      */
     Id: string;

package/out/exports/resources.generated/aws-cloudfront-distribution.d.ts

@@ -572,7 +572,7 @@ export type DistributionConfig = {
      */
     Comment?: string | undefined;
     /**
-     * The connection mode to filter distributions by.
+     * This field specifies whether the connection mode is through a standard distribution (direct) or a multi-tenant distribution with distribution tenants(tenant-only).
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cloudfront-distribution-distributionconfig.html#cfn-cloudfront-distribution-distributionconfig-connectionmode}
      */
     ConnectionMode?: ConnectionMode | undefined;
@@ -723,6 +723,8 @@ export type DistributionConfig = {
      */
     ViewerCertificate?: ViewerCertificate | undefined;
     /**
+     * > Multi-tenant distributions only support AWS WAF V2 web ACLs.
+     *
      * A unique identifier that specifies the AWS WAF web ACL, if any, to associate with this distribution. To specify a web ACL created using the latest version of AWS WAF , use the ACL ARN, for example `arn:aws:wafv2:us-east-1:123456789012:global/webacl/ExampleWebACL/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111` . To specify a web ACL created using AWS WAF Classic, use the ACL ID, for example `a1b2c3d4-5678-90ab-cdef-EXAMPLE11111` .
      *
      * AWS WAF is a web application firewall that lets you monitor the HTTP and HTTPS requests that are forwarded to CloudFront, and lets you control access to your content. Based on conditions that you specify, such as the IP addresses that requests originate from or the values of query strings, CloudFront responds to requests either with the requested content or with an HTTP 403 status code (Forbidden). You can also configure CloudFront to return a custom error page when a request is blocked. For more information about AWS WAF , see the [AWS WAF Developer Guide](https://docs.aws.amazon.com/waf/latest/developerguide/what-is-aws-waf.html) .