@propulsionworks/cloudformation 0.1.36 → 0.1.37

package/out/exports/resources.generated/aws-eks-capability.d.ts

@@ -0,0 +1,189 @@
+import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
+/**
+ * Resource Type definition for EKS Capability.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html}
+ */
+export type EKSCapability = ResourceDefinitionWithAttributes<"AWS::EKS::Capability", EKSCapabilityProps, EKSCapabilityAttribs>;
+/**
+ * Resource Type definition for EKS Capability.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html}
+ */
+export type EKSCapabilityProps = {
+    /**
+     * A unique name for the capability. The name must be unique within your cluster and can contain alphanumeric characters, hyphens, and underscores.
+     * @minLength 1
+     * @maxLength 100
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html#cfn-eks-capability-capabilityname}
+     */
+    CapabilityName: string;
+    /**
+     * The name of the EKS cluster where you want to create the capability.
+     * @minLength 1
+     * @maxLength 100
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html#cfn-eks-capability-clustername}
+     */
+    ClusterName: string;
+    /**
+     * Configuration settings for a capability. The structure of this object varies depending on the capability type.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html#cfn-eks-capability-configuration}
+     */
+    Configuration?: CapabilityConfiguration | undefined;
+    /**
+     * Specifies how Kubernetes resources managed by the capability should be handled when the capability is deleted. Currently, the only supported value is RETAIN which retains all Kubernetes resources managed by the capability when the capability is deleted.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html#cfn-eks-capability-deletepropagationpolicy}
+     */
+    DeletePropagationPolicy: "RETAIN";
+    /**
+     * The Amazon Resource Name (ARN) of the IAM role that the capability uses to interact with AWS services. This role must have a trust policy that allows the EKS service principal to assume it, and it must have the necessary permissions for the capability type you're creating.
+     * @pattern ^arn:aws[a-z-]*:iam::[0-9]+:role/[a-zA-Z0-9+=,.@_-]+$
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html#cfn-eks-capability-rolearn}
+     */
+    RoleArn: string;
+    /**
+     * An array of key-value pairs to apply to this resource.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html#cfn-eks-capability-tags}
+     */
+    Tags?: Tag[] | undefined;
+    /**
+     * The type of capability to create. Valid values are: ACK (AWS Controllers for Kubernetes, which lets you manage AWS resources directly from Kubernetes), ARGOCD (Argo CD for GitOps-based continuous delivery), or KRO (Kube Resource Orchestrator for composing and managing custom Kubernetes resources).
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html#cfn-eks-capability-type}
+     */
+    Type: "ARGOCD" | "ACK" | "KRO";
+};
+/**
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html#aws-resource-eks-capability-return-values}
+ */
+export type EKSCapabilityAttribs = {
+    /**
+     * The Amazon Resource Name (ARN) of the capability.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html#cfn-eks-capability-arn}
+     */
+    Arn: string;
+    /**
+     * The ARN of the managed application created in IAM Identity Center for this Argo CD capability. This application is automatically created and managed by EKS.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-awsidc.html#cfn-eks-capability-awsidc-idcmanagedapplicationarn}
+     */
+    "Configuration.ArgoCd.AwsIdc.IdcManagedApplicationArn": string;
+    /**
+     * The URL of the Argo CD server. Use this URL to access the Argo CD web interface and API.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-argocd.html#cfn-eks-capability-argocd-serverurl}
+     */
+    "Configuration.ArgoCd.ServerUrl": string;
+    /**
+     * The Unix epoch timestamp in seconds for when the capability was created.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html#cfn-eks-capability-createdat}
+     */
+    CreatedAt: string;
+    /**
+     * The Unix epoch timestamp in seconds for when the capability was last modified.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html#cfn-eks-capability-modifiedat}
+     */
+    ModifiedAt: string;
+    /**
+     * The current status of the capability. Valid values include: CREATING (the capability is being created), ACTIVE (the capability is running and available), UPDATING (the capability is being updated), DELETING (the capability is being deleted), CREATE_FAILED (the capability creation failed), UPDATE_FAILED (the capability update failed), or DELETE_FAILED (the capability deletion failed).
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html#cfn-eks-capability-status}
+     */
+    Status: string;
+    /**
+     * The version of the capability software that is currently running.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-capability.html#cfn-eks-capability-version}
+     */
+    Version: string;
+};
+/**
+ * Configuration settings for an Argo CD capability. This includes the Kubernetes namespace, IAM Identity Center integration, RBAC role mappings, and network access configuration.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-argocd.html}
+ */
+export type ArgoCd = {
+    /**
+     * Configuration for integrating Argo CD with IAM Identity Center. This allows you to use your organization's identity provider for authentication to Argo CD.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-argocd.html#cfn-eks-capability-argocd-awsidc}
+     */
+    AwsIdc: AwsIdc;
+    /**
+     * The Kubernetes namespace where Argo CD resources will be created. If not specified, the default namespace is used.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-argocd.html#cfn-eks-capability-argocd-namespace}
+     */
+    Namespace?: string | undefined;
+    /**
+     * Configuration for network access to the Argo CD capability's managed API server endpoint. By default, the Argo CD server is accessible via a public endpoint. You can optionally specify one or more VPC endpoint IDs to enable private connectivity from your VPCs.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-argocd.html#cfn-eks-capability-argocd-networkaccess}
+     */
+    NetworkAccess?: NetworkAccess | undefined;
+    /**
+     * A list of role mappings that define which IAM Identity Center users or groups have which Argo CD roles. Each mapping associates an Argo CD role (ADMIN, EDITOR, or VIEWER) with one or more IAM Identity Center identities.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-argocd.html#cfn-eks-capability-argocd-rbacrolemappings}
+     */
+    RbacRoleMappings?: ArgoCdRoleMapping[] | undefined;
+};
+/**
+ * A mapping between an Argo CD role and IAM Identity Center identities. This defines which users or groups have specific permissions in Argo CD.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-argocdrolemapping.html}
+ */
+export type ArgoCdRoleMapping = {
+    /**
+     * A list of IAM Identity Center identities (users or groups) that should be assigned this Argo CD role.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-argocdrolemapping.html#cfn-eks-capability-argocdrolemapping-identities}
+     */
+    Identities: SsoIdentity[];
+    /**
+     * The Argo CD role to assign. Valid values are: ADMIN (full administrative access to Argo CD), EDITOR (edit access to Argo CD resources), or VIEWER (read-only access to Argo CD resources).
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-argocdrolemapping.html#cfn-eks-capability-argocdrolemapping-role}
+     */
+    Role: "ADMIN" | "EDITOR" | "VIEWER";
+};
+/**
+ * Configuration for integrating Argo CD with IAM Identity Center. This allows you to use your organization's identity provider for authentication to Argo CD.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-awsidc.html}
+ */
+export type AwsIdc = {
+    /**
+     * The ARN of the IAM Identity Center instance to use for authentication.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-awsidc.html#cfn-eks-capability-awsidc-idcinstancearn}
+     */
+    IdcInstanceArn: string;
+    /**
+     * The Region where your IAM Identity Center instance is located.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-awsidc.html#cfn-eks-capability-awsidc-idcregion}
+     */
+    IdcRegion?: string | undefined;
+};
+/**
+ * Configuration settings for a capability. The structure of this object varies depending on the capability type.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-capabilityconfiguration.html}
+ */
+export type CapabilityConfiguration = {
+    /**
+     * Configuration settings for an Argo CD capability. This includes the Kubernetes namespace, IAM Identity Center integration, RBAC role mappings, and network access configuration.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-capabilityconfiguration.html#cfn-eks-capability-capabilityconfiguration-argocd}
+     */
+    ArgoCd?: ArgoCd | undefined;
+};
+/**
+ * Configuration for network access to the Argo CD capability's managed API server endpoint. By default, the Argo CD server is accessible via a public endpoint. You can optionally specify one or more VPC endpoint IDs to enable private connectivity from your VPCs.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-networkaccess.html}
+ */
+export type NetworkAccess = {
+    /**
+     * A list of VPC endpoint IDs to associate with the managed Argo CD API server endpoint. Each VPC endpoint provides private connectivity from a specific VPC to the Argo CD server. You can specify multiple VPC endpoint IDs to enable access from multiple VPCs.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-networkaccess.html#cfn-eks-capability-networkaccess-vpceids}
+     */
+    VpceIds?: string[] | undefined;
+};
+/**
+ * An IAM Identity Center identity (user or group) that can be assigned permissions in a capability.
+ * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-ssoidentity.html}
+ */
+export type SsoIdentity = {
+    /**
+     * The unique identifier of the IAM Identity Center user or group.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-ssoidentity.html#cfn-eks-capability-ssoidentity-id}
+     */
+    Id: string;
+    /**
+     * The type of identity. Valid values are SSO_USER or SSO_GROUP.
+     * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-capability-ssoidentity.html#cfn-eks-capability-ssoidentity-type}
+     */
+    Type: "SSO_USER" | "SSO_GROUP";
+};
+//# sourceMappingURL=aws-eks-capability.d.ts.map

package/out/exports/resources.generated/aws-eks-cluster.d.ts

@@ -57,6 +57,7 @@ export type EKSClusterProps = {
      */
     ComputeConfig?: ComputeConfig | undefined;
     /**
+     * The control plane scaling tier configuration. For more information, see EKS Provisioned Control Plane in the Amazon EKS User Guide.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-eks-cluster.html#cfn-eks-cluster-controlplanescalingconfig}
      */
     ControlPlaneScalingConfig?: ControlPlaneScalingConfig | undefined;
@@ -202,7 +203,7 @@ export type EKSClusterAttribs = {
  */
 export type AccessConfig = {
     /**
-     * The desired authentication mode for the cluster. If you create a cluster by using the EKS API, AWS SDKs, or AWS CloudFormation , the default is `CONFIG_MAP` . If you create the cluster by using the the console , the default value is `API_AND_CONFIG_MAP` .
+     * The desired authentication mode for the cluster. If you create a cluster by using the EKS API, AWS SDKs, or AWS CloudFormation , the default is `CONFIG_MAP` . If you create the cluster by using the AWS Management Console , the default value is `API_AND_CONFIG_MAP` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-cluster-accessconfig.html#cfn-eks-cluster-accessconfig-authenticationmode}
      */
     AuthenticationMode?: "CONFIG_MAP" | "API_AND_CONFIG_MAP" | "API" | undefined;
@@ -271,12 +272,12 @@ export type ControlPlanePlacement = {
     GroupName?: string | undefined;
 };
 /**
- * Configuration for provisioned control plane scaling.
+ * The control plane scaling tier configuration. For more information, see EKS Provisioned Control Plane in the Amazon EKS User Guide.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-cluster-controlplanescalingconfig.html}
  */
 export type ControlPlaneScalingConfig = {
     /**
-     * The scaling tier for the provisioned control plane.
+     * The control plane scaling tier configuration. Available options are `standard` , `tier-xl` , `tier-2xl` , or `tier-4xl` . For more information, see EKS Provisioned Control Plane in the Amazon EKS User Guide.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-eks-cluster-controlplanescalingconfig.html#cfn-eks-cluster-controlplanescalingconfig-tier}
      */
     Tier?: "standard" | "tier-xl" | "tier-2xl" | "tier-4xl" | undefined;

package/out/exports/resources.generated/aws-elasticloadbalancingv2-listener.d.ts

@@ -51,7 +51,7 @@ export type ElasticLoadBalancingV2ListenerProps = {
      */
     Port?: number | undefined;
     /**
-     * The protocol for connections from clients to the load balancer. For Application Load Balancers, the supported protocols are HTTP and HTTPS. For Network Load Balancers, the supported protocols are TCP, TLS, UDP, and TCP_UDP. You can’t specify the UDP or TCP_UDP protocol if dual-stack mode is enabled. You can't specify a protocol for a Gateway Load Balancer.
+     * The protocol for connections from clients to the load balancer. For Application Load Balancers, the supported protocols are HTTP and HTTPS. For Network Load Balancers, the supported protocols are TCP, TLS, UDP, TCP_UDP, QUIC, and TCP_QUIC. You can’t specify the UDP, TCP_UDP, QUIC, or TCP_QUIC protocol if dual-stack mode is enabled. You can't specify a protocol for a Gateway Load Balancer.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-elasticloadbalancingv2-listener.html#cfn-elasticloadbalancingv2-listener-protocol}
      */
     Protocol?: string | undefined;
@@ -101,6 +101,7 @@ export type Action = {
      */
     ForwardConfig?: ForwardConfig | undefined;
     /**
+     * [HTTPS listeners] Information for validating JWT access tokens in client requests. Specify only when `Type` is `jwt-validation` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-elasticloadbalancingv2-listener-action.html#cfn-elasticloadbalancingv2-listener-action-jwtvalidationconfig}
      */
     JwtValidationConfig?: JwtValidationConfig | undefined;
@@ -369,18 +370,22 @@ export type ForwardConfig = {
     TargetGroups?: TargetGroupTuple[] | undefined;
 };
 /**
+ * Information about an additional claim to validate.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-elasticloadbalancingv2-listener-jwtvalidationactionadditionalclaim.html}
  */
 export type JwtValidationActionAdditionalClaim = {
     /**
+     * The format of the claim value.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-elasticloadbalancingv2-listener-jwtvalidationactionadditionalclaim.html#cfn-elasticloadbalancingv2-listener-jwtvalidationactionadditionalclaim-format}
      */
     Format: string;
     /**
+     * The name of the claim. You can't specify `exp` , `iss` , `nbf` , or `iat` because we validate them by default.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-elasticloadbalancingv2-listener-jwtvalidationactionadditionalclaim.html#cfn-elasticloadbalancingv2-listener-jwtvalidationactionadditionalclaim-name}
      */
     Name: string;
     /**
+     * The claim value. The maximum size of the list is 10. Each value can be up to 256 characters in length. If the format is `space-separated-values` , the values can't include spaces.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-elasticloadbalancingv2-listener-jwtvalidationactionadditionalclaim.html#cfn-elasticloadbalancingv2-listener-jwtvalidationactionadditionalclaim-values}
      */
     Values: string[];

package/out/exports/resources.generated/aws-elasticloadbalancingv2-listenerrule.d.ts

@@ -87,6 +87,7 @@ export type Action = {
      */
     ForwardConfig?: ForwardConfig | undefined;
     /**
+     * [HTTPS listeners] Information for validating JWT access tokens in client requests. Specify only when `Type` is `jwt-validation` .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-elasticloadbalancingv2-listenerrule-action.html#cfn-elasticloadbalancingv2-listenerrule-action-jwtvalidationconfig}
      */
     JwtValidationConfig?: JwtValidationConfig | undefined;
@@ -402,18 +403,22 @@ export type HttpRequestMethodConfig = {
     Values?: string[] | undefined;
 };
 /**
+ * Information about an additional claim to validate.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-elasticloadbalancingv2-listenerrule-jwtvalidationactionadditionalclaim.html}
  */
 export type JwtValidationActionAdditionalClaim = {
     /**
+     * The format of the claim value.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-elasticloadbalancingv2-listenerrule-jwtvalidationactionadditionalclaim.html#cfn-elasticloadbalancingv2-listenerrule-jwtvalidationactionadditionalclaim-format}
      */
     Format: string;
     /**
+     * The name of the claim. You can't specify `exp` , `iss` , `nbf` , or `iat` because we validate them by default.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-elasticloadbalancingv2-listenerrule-jwtvalidationactionadditionalclaim.html#cfn-elasticloadbalancingv2-listenerrule-jwtvalidationactionadditionalclaim-name}
      */
     Name: string;
     /**
+     * The claim value. The maximum size of the list is 10. Each value can be up to 256 characters in length. If the format is `space-separated-values` , the values can't include spaces.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-elasticloadbalancingv2-listenerrule-jwtvalidationactionadditionalclaim.html#cfn-elasticloadbalancingv2-listenerrule-jwtvalidationactionadditionalclaim-values}
      */
     Values: string[];

package/out/exports/resources.generated/aws-elasticloadbalancingv2-loadbalancer.d.ts

@@ -178,6 +178,9 @@ export type LoadBalancerAttribute = {
      * - `connection_logs.s3.enabled` - Indicates whether connection logs are enabled. The value is `true` or `false` . The default is `false` .
      * - `connection_logs.s3.bucket` - The name of the S3 bucket for the connection logs. This attribute is required if connection logs are enabled. The bucket must exist in the same region as the load balancer and have a bucket policy that grants Elastic Load Balancing permissions to write to the bucket.
      * - `connection_logs.s3.prefix` - The prefix for the location in the S3 bucket for the connection logs.
+     * - `health_check_logs.s3.enabled` - Indicates whether health check logs are enabled. The value is `true` or `false` . The default is `false` .
+     * - `health_check_logs.s3.bucket` - The name of the S3 bucket for the health check logs. This attribute is required if health check logs are enabled. The bucket must exist in the same region as the load balancer and have a bucket policy that grants Elastic Load Balancing permissions to write to the bucket.
+     * - `health_check_logs.s3.prefix` - The prefix for the location in the S3 bucket for the health check logs.
      * - `routing.http.desync_mitigation_mode` - Determines how the load balancer handles requests that might pose a security risk to your application. The possible values are `monitor` , `defensive` , and `strictest` . The default is `defensive` .
      * - `routing.http.drop_invalid_header_fields.enabled` - Indicates whether HTTP headers with invalid header fields are removed by the load balancer ( `true` ) or routed to targets ( `false` ). The default is `false` .
      * - `routing.http.preserve_host_header.enabled` - Indicates whether the Application Load Balancer should preserve the `Host` header in the HTTP request and send it to the target without any change. The possible values are `true` and `false` . The default is `false` .

package/out/exports/resources.generated/aws-elasticloadbalancingv2-targetgroup.d.ts

@@ -19,7 +19,7 @@ export type ElasticLoadBalancingV2TargetGroupProps = {
      */
     HealthCheckEnabled?: boolean | undefined;
     /**
-     * The approximate amount of time, in seconds, between health checks of an individual target. The range is 5-300. If the target group protocol is TCP, TLS, UDP, TCP_UDP, HTTP or HTTPS, the default is 30 seconds. If the target group protocol is GENEVE, the default is 10 seconds. If the target type is `lambda` , the default is 35 seconds.
+     * The approximate amount of time, in seconds, between health checks of an individual target. The range is 5-300. If the target group protocol is TCP, TLS, UDP, TCP_UDP, QUIC, TCP_QUIC, HTTP or HTTPS, the default is 30 seconds. If the target group protocol is GENEVE, the default is 10 seconds. If the target type is `lambda` , the default is 35 seconds.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-elasticloadbalancingv2-targetgroup.html#cfn-elasticloadbalancingv2-targetgroup-healthcheckintervalseconds}
      */
     HealthCheckIntervalSeconds?: number | undefined;
@@ -33,12 +33,12 @@ export type ElasticLoadBalancingV2TargetGroupProps = {
      */
     HealthCheckPath?: string | undefined;
     /**
-     * The port the load balancer uses when performing health checks on targets. If the protocol is HTTP, HTTPS, TCP, TLS, UDP, or TCP_UDP, the default is `traffic-port` , which is the port on which each target receives traffic from the load balancer. If the protocol is GENEVE, the default is port 80.
+     * The port the load balancer uses when performing health checks on targets. If the protocol is HTTP, HTTPS, TCP, TLS, UDP, TCP_UDP, QUIC, or TCP_QUIC the default is `traffic-port` , which is the port on which each target receives traffic from the load balancer. If the protocol is GENEVE, the default is port 80.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-elasticloadbalancingv2-targetgroup.html#cfn-elasticloadbalancingv2-targetgroup-healthcheckport}
      */
     HealthCheckPort?: string | undefined;
     /**
-     * The protocol the load balancer uses when performing health checks on targets. For Application Load Balancers, the default is HTTP. For Network Load Balancers and Gateway Load Balancers, the default is TCP. The TCP protocol is not supported for health checks if the protocol of the target group is HTTP or HTTPS. The GENEVE, TLS, UDP, and TCP_UDP protocols are not supported for health checks.
+     * The protocol the load balancer uses when performing health checks on targets. For Application Load Balancers, the default is HTTP. For Network Load Balancers and Gateway Load Balancers, the default is TCP. The TCP protocol is not supported for health checks if the protocol of the target group is HTTP or HTTPS. The GENEVE, TLS, UDP, TCP_UDP, QUIC, and TCP_QUIC protocols are not supported for health checks.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-elasticloadbalancingv2-targetgroup.html#cfn-elasticloadbalancingv2-targetgroup-healthcheckprotocol}
      */
     HealthCheckProtocol?: string | undefined;
@@ -58,7 +58,7 @@ export type ElasticLoadBalancingV2TargetGroupProps = {
      */
     IpAddressType?: string | undefined;
     /**
-     * [HTTP/HTTPS health checks] The HTTP or gRPC codes to use when checking for a successful response from a target. For target groups with a protocol of TCP, TCP_UDP, UDP or TLS the range is 200-599. For target groups with a protocol of HTTP or HTTPS, the range is 200-499. For target groups with a protocol of GENEVE, the range is 200-399.
+     * [HTTP/HTTPS health checks] The HTTP or gRPC codes to use when checking for a successful response from a target. For target groups with a protocol of TCP, TCP_UDP, UDP, QUIC, TCP_QUIC, or TLS the range is 200-599. For target groups with a protocol of HTTP or HTTPS, the range is 200-499. For target groups with a protocol of GENEVE, the range is 200-399.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-elasticloadbalancingv2-targetgroup.html#cfn-elasticloadbalancingv2-targetgroup-matcher}
      */
     Matcher?: Matcher | undefined;
@@ -75,7 +75,7 @@ export type ElasticLoadBalancingV2TargetGroupProps = {
      */
     Port?: number | undefined;
     /**
-     * The protocol to use for routing traffic to the targets. For Application Load Balancers, the supported protocols are HTTP and HTTPS. For Network Load Balancers, the supported protocols are TCP, TLS, UDP, or TCP_UDP. For Gateway Load Balancers, the supported protocol is GENEVE. A TCP_UDP listener must be associated with a TCP_UDP target group. If the target is a Lambda function, this parameter does not apply.
+     * The protocol to use for routing traffic to the targets. For Application Load Balancers, the supported protocols are HTTP and HTTPS. For Network Load Balancers, the supported protocols are TCP, TLS, UDP, TCP_UDP, QUIC, or TCP_QUIC. For Gateway Load Balancers, the supported protocol is GENEVE. A TCP_UDP listener must be associated with a TCP_UDP target group. A TCP_QUIC listener must be associated with a TCP_QUIC target group. If the target is a Lambda function, this parameter does not apply.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-elasticloadbalancingv2-targetgroup.html#cfn-elasticloadbalancingv2-targetgroup-protocol}
      */
     Protocol?: string | undefined;
@@ -90,7 +90,7 @@ export type ElasticLoadBalancingV2TargetGroupProps = {
      */
     Tags?: Tag[] | undefined;
     /**
-     * The port that the target control agent uses to communicate the available capacity of targets to the load balancer.
+     * The port on which the target control agent and application load balancer exchange management traffic for the target optimizer feature.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-elasticloadbalancingv2-targetgroup.html#cfn-elasticloadbalancingv2-targetgroup-targetcontrolport}
      */
     TargetControlPort?: number | undefined;
@@ -115,7 +115,7 @@ export type ElasticLoadBalancingV2TargetGroupProps = {
      */
     Targets?: TargetDescription[] | undefined;
     /**
-     * The number of consecutive health check failures required before considering a target unhealthy. The range is 2-10. If the target group protocol is TCP, TCP_UDP, UDP, TLS, HTTP or HTTPS, the default is 2. For target groups with a protocol of GENEVE, the default is 2. If the target type is `lambda` , the default is 5.
+     * The number of consecutive health check failures required before considering a target unhealthy. The range is 2-10. If the target group protocol is TCP, TCP_UDP, UDP, TLS, QUIC, TCP_QUIC, HTTP or HTTPS, the default is 2. For target groups with a protocol of GENEVE, the default is 2. If the target type is `lambda` , the default is 5.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-elasticloadbalancingv2-targetgroup.html#cfn-elasticloadbalancingv2-targetgroup-unhealthythresholdcount}
      */
     UnhealthyThresholdCount?: number | undefined;
@@ -203,7 +203,9 @@ export type TargetDescription = {
      */
     Port?: number | undefined;
     /**
-     * The Server ID used by targets when using QUIC or TCP_QUIC protocols.
+     * The server ID for the targets. This value is required if the protocol is `QUIC` or `TCP_QUIC` and can't be used with other protocols.
+     *
+     * The ID consists of the `0x` prefix followed by 16 hexadecimal characters. Any letters must be lowercase. The value must be unique at the listener level. You can't modify the server ID for a registered target. You must deregister the target and then provide a new server ID when you register the target again.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-elasticloadbalancingv2-targetgroup-targetdescription.html#cfn-elasticloadbalancingv2-targetgroup-targetdescription-quicserverid}
      */
     QuicServerId?: string | undefined;

package/out/exports/resources.generated/aws-events-rule.d.ts

@@ -108,7 +108,7 @@ export type EventsRuleProps = {
      *
      * For a list of services you can configure as targets for events, see [EventBridge targets](https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-targets.html) in the **Amazon EventBridge User Guide** .
      *
-     * Creating rules with built-in targets is supported only in the the console . The built-in targets are:
+     * Creating rules with built-in targets is supported only in the AWS Management Console . The built-in targets are:
      *
      * - `Amazon EBS CreateSnapshot API call`
      * - `Amazon EC2 RebootInstances API call`

package/out/exports/resources.generated/aws-fsx-filesystem.d.ts

@@ -712,6 +712,14 @@ export type SelfManagedActiveDirectoryConfiguration = {
      */
     DnsIps?: string[] | undefined;
     /**
+     * The Amazon Resource Name (ARN) of the AWS Secrets Manager secret containing the self-managed Active Directory domain join service account credentials. When provided, Amazon FSx uses the credentials stored in this secret to join the file system to your self-managed Active Directory domain.
+     *
+     * The secret must contain two key-value pairs:
+     *
+     * - `CUSTOMER_MANAGED_ACTIVE_DIRECTORY_USERNAME` - The username for the service account
+     * - `CUSTOMER_MANAGED_ACTIVE_DIRECTORY_PASSWORD` - The password for the service account
+     *
+     * For more information, see [Using Amazon FSx for Windows with your self-managed Microsoft Active Directory](https://docs.aws.amazon.com/fsx/latest/WindowsGuide/self-manage-prereqs.html) or [Using Amazon FSx for ONTAP with your self-managed Microsoft Active Directory](https://docs.aws.amazon.com/fsx/latest/ONTAPGuide/self-manage-prereqs.html) .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-fsx-filesystem-selfmanagedactivedirectoryconfiguration.html#cfn-fsx-filesystem-selfmanagedactivedirectoryconfiguration-domainjoinserviceaccountsecret}
      */
     DomainJoinServiceAccountSecret?: string | undefined;

package/out/exports/resources.generated/aws-fsx-storagevirtualmachine.d.ts

@@ -97,6 +97,14 @@ export type SelfManagedActiveDirectoryConfiguration = {
      */
     DnsIps?: string[] | undefined;
     /**
+     * The Amazon Resource Name (ARN) of the AWS Secrets Manager secret containing the self-managed Active Directory domain join service account credentials. When provided, Amazon FSx uses the credentials stored in this secret to join the file system to your self-managed Active Directory domain.
+     *
+     * The secret must contain two key-value pairs:
+     *
+     * - `CUSTOMER_MANAGED_ACTIVE_DIRECTORY_USERNAME` - The username for the service account
+     * - `CUSTOMER_MANAGED_ACTIVE_DIRECTORY_PASSWORD` - The password for the service account
+     *
+     * For more information, see [Using Amazon FSx for Windows with your self-managed Microsoft Active Directory](https://docs.aws.amazon.com/fsx/latest/WindowsGuide/self-manage-prereqs.html) or [Using Amazon FSx for ONTAP with your self-managed Microsoft Active Directory](https://docs.aws.amazon.com/fsx/latest/ONTAPGuide/self-manage-prereqs.html) .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-fsx-storagevirtualmachine-selfmanagedactivedirectoryconfiguration.html#cfn-fsx-storagevirtualmachine-selfmanagedactivedirectoryconfiguration-domainjoinserviceaccountsecret}
      */
     DomainJoinServiceAccountSecret?: string | undefined;

package/out/exports/resources.generated/aws-gamelift-containergroupdefinition.d.ts

@@ -38,7 +38,7 @@ export type GameLiftContainerGroupDefinitionProps = {
     /**
      * The platform that all containers in the container group definition run on.
      *
-     * > Amazon Linux 2 (AL2) will reach end of support on 6/30/2025. See more details in the [Amazon Linux 2 FAQs](https://docs.aws.amazon.com/amazon-linux-2/faqs/) . For game servers that are hosted on AL2 and use server SDK version 4.x for Amazon GameLift Servers, first update the game server build to server SDK 5.x, and then deploy to AL2023 instances. See [Migrate to server SDK version 5.](https://docs.aws.amazon.com/gamelift/latest/developerguide/reference-serversdk5-migration.html)
+     * > Amazon Linux 2 (AL2) will reach end of support on 6/30/2026. See more details in the [Amazon Linux 2 FAQs](https://docs.aws.amazon.com/amazon-linux-2/faqs/) . For game servers that are hosted on AL2 and use server SDK version 4.x for Amazon GameLift Servers, first update the game server build to server SDK 5.x, and then deploy to AL2023 instances. See [Migrate to server SDK version 5.](https://docs.aws.amazon.com/gamelift/latest/developerguide/reference-serversdk5-migration.html)
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-gamelift-containergroupdefinition.html#cfn-gamelift-containergroupdefinition-operatingsystem}
      */
     OperatingSystem: "AMAZON_LINUX_2023";

package/out/exports/resources.generated/aws-gamelift-fleet.d.ts

@@ -74,7 +74,7 @@ export type GameLiftFleetProps = {
      */
     FleetType?: "ON_DEMAND" | "SPOT" | undefined;
     /**
-     * A unique identifier for an IAM role that manages access to your AWS services. With an instance role ARN set, any application that runs on an instance in this fleet can assume the role, including install scripts, server processes, and daemons (background processes). Create a role or look up a role's ARN by using the [IAM dashboard](https://docs.aws.amazon.com/iam/) in the the console . Learn more about using on-box credentials for your game servers at [Access external resources from a game server](https://docs.aws.amazon.com/gamelift/latest/developerguide/gamelift-sdk-server-resources.html) . This attribute is used with fleets where `ComputeType` is `EC2` .
+     * A unique identifier for an IAM role that manages access to your AWS services. With an instance role ARN set, any application that runs on an instance in this fleet can assume the role, including install scripts, server processes, and daemons (background processes). Create a role or look up a role's ARN by using the [IAM dashboard](https://docs.aws.amazon.com/iam/) in the AWS Management Console . Learn more about using on-box credentials for your game servers at [Access external resources from a game server](https://docs.aws.amazon.com/gamelift/latest/developerguide/gamelift-sdk-server-resources.html) . This attribute is used with fleets where `ComputeType` is `EC2` .
      * @minLength 1
      * @pattern ^arn:aws(-.*)?:[a-z-]+:(([a-z]+-)+[0-9])?:([0-9]{12})?:[^.]+$
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-gamelift-fleet.html#cfn-gamelift-fleet-instancerolearn}
@@ -128,7 +128,7 @@ export type GameLiftFleetProps = {
      */
     NewGameSessionProtectionPolicy?: "FullProtection" | "NoProtection" | undefined;
     /**
-     * Used when peering your Amazon GameLift Servers fleet with a VPC, the unique identifier for the AWS account that owns the VPC. You can find your account ID in the the console under account settings.
+     * Used when peering your Amazon GameLift Servers fleet with a VPC, the unique identifier for the AWS account that owns the VPC. You can find your account ID in the AWS Management Console under account settings.
      * @minLength 1
      * @maxLength 1024
      * @pattern ^[0-9]{12}$
@@ -136,7 +136,7 @@ export type GameLiftFleetProps = {
      */
     PeerVpcAwsAccountId?: string | undefined;
     /**
-     * A unique identifier for a VPC with resources to be accessed by your Amazon GameLift Servers fleet. The VPC must be in the same Region as your fleet. To look up a VPC ID, use the [VPC Dashboard](https://docs.aws.amazon.com/vpc/) in the the console . Learn more about VPC peering in [VPC Peering with Amazon GameLift Servers Fleets](https://docs.aws.amazon.com/gamelift/latest/developerguide/vpc-peering.html) .
+     * A unique identifier for a VPC with resources to be accessed by your Amazon GameLift Servers fleet. The VPC must be in the same Region as your fleet. To look up a VPC ID, use the [VPC Dashboard](https://docs.aws.amazon.com/vpc/) in the AWS Management Console . Learn more about VPC peering in [VPC Peering with Amazon GameLift Servers Fleets](https://docs.aws.amazon.com/gamelift/latest/developerguide/vpc-peering.html) .
      * @minLength 1
      * @maxLength 1024
      * @pattern ^vpc-\S+

package/out/exports/resources.generated/aws-glue-connection.d.ts

@@ -176,40 +176,10 @@ export type ConnectionInput = {
      * - `SAPODATA` - Designates a connection to SAP OData.
      * - `SERVICENOW` - Designates a connection to ServiceNow.
      * - `SLACK` - Designates a connection to Slack.
-     * - `SNOWFLAKE` - Designates a connection to Snowflake.
      * - `SNAPCHATADS` - Designates a connection to Snapchat Ads.
      * - `STRIPE` - Designates a connection to Stripe.
      * - `ZENDESK` - Designates a connection to Zendesk.
      * - `ZOHOCRM` - Designates a connection to Zoho CRM.
-     * - `ADOBEANALYTICS` - Designates a connection to Adobe Analytics.
-     * - `LINKEDIN` - Designates a connection to LinkedIn.
-     * - `MIXPANEL` - Designates a connection to Mixpanel.
-     * - `ASANA` - Designates a connection to Asana.
-     * - `SMARTSHEET` - Designates a connection to Smartsheet.
-     * - `DATADOG` - Designates a connection to Datadog.
-     * - `WOOCOMMERCE` - Designates a connection to WooCommerce.
-     * - `PAYPAL` - Designates a connection to PayPal.
-     * - `QUICKBOOKS` - Designates a connection to QuickBooks.
-     * - `FACEBOOKPAGEINSIGHTS` - Designates a connection to Facebook Page Insights.
-     * - `FRESHDESK` - Designates a connection to Freshdesk.
-     * - `TWILIO` - Designates a connection to Twilio.
-     * - `DOCUSIGNMONITOR` - Designates a connection to DocuSign Monitor.
-     * - `FRESHSALES` - Designates a connection to Freshsales.
-     * - `ZOOM` - Designates a connection to Zoom.
-     * - `GOOGLESEARCHCONSOLE` - Designates a connection to Google Search Console.
-     * - `SALESFORCECOMMERCECLOUD` - Designates a connection to Salesforce Commerce Cloud.
-     * - `SAPCONCUR` - Designates a connection to SAP Concur.
-     * - `DYNATRACE` - Designates a connection to Dynatrace.
-     * - `MICROSOFTDYNAMIC365FINANCEANDOPS` - Designates a connection to Microsoft Dynamics 365 Finance and Operations.
-     * - `MICROSOFTTEAMS` - Designates a connection to Microsoft Teams.
-     * - `BLACKBAUDRAISEREDGENXT` - Designates a connection to Blackbaud Raiser's Edge NXT.
-     * - `MAILCHIMP` - Designates a connection to Mailchimp.
-     * - `GITLAB` - Designates a connection to GitLab.
-     * - `PENDO` - Designates a connection to Pendo.
-     * - `PRODUCTBOARD` - Designates a connection to Productboard.
-     * - `CIRCLECI` - Designates a connection to CircleCI.
-     * - `PIPEDIVE` - Designates a connection to Pipedrive.
-     * - `SENDGRID` - Designates a connection to SendGrid.
      *
      * For more information on the connection parameters needed for a particular connector, see the documentation for the connector in [Adding an AWS Glue connection](https://docs.aws.amazon.com/glue/latest/dg/console-connections.html) in the AWS Glue User Guide.
      *

package/out/exports/resources.generated/aws-iam-samlprovider.d.ts

@@ -2,26 +2,26 @@ import type { ResourceDefinitionWithAttributes, Tag } from "../main.ts";
 /**
  * Creates an IAM resource that describes an identity provider (IdP) that supports SAML 2.0.
  *
- * The SAML provider resource that you create with this operation can be used as a principal in an IAM role's trust policy. Such a policy can enable federated users who sign in using the SAML IdP to assume the role. You can create an IAM role that supports Web-based single sign-on (SSO) to the the console or one that supports API access to AWS .
+ * The SAML provider resource that you create with this operation can be used as a principal in an IAM role's trust policy. Such a policy can enable federated users who sign in using the SAML IdP to assume the role. You can create an IAM role that supports Web-based single sign-on (SSO) to the AWS Management Console or one that supports API access to AWS .
  *
  * When you create the SAML provider resource, you upload a SAML metadata document that you get from your IdP. That document includes the issuer's name, expiration information, and keys that can be used to validate the SAML authentication response (assertions) that the IdP sends. You must generate the metadata document using the identity management software that is used as your organization's IdP.
  *
  * > This operation requires [Signature Version 4](https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html) .
  *
- * For more information, see [Enabling SAML 2.0 federated users to access the the console](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-saml.html) and [About SAML 2.0-based federation](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html) in the *IAM User Guide* .
+ * For more information, see [Enabling SAML 2.0 federated users to access the AWS Management Console](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-saml.html) and [About SAML 2.0-based federation](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html) in the *IAM User Guide* .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iam-samlprovider.html}
  */
 export type IAMSAMLProvider = ResourceDefinitionWithAttributes<"AWS::IAM::SAMLProvider", IAMSAMLProviderProps, IAMSAMLProviderAttribs>;
 /**
  * Creates an IAM resource that describes an identity provider (IdP) that supports SAML 2.0.
  *
- * The SAML provider resource that you create with this operation can be used as a principal in an IAM role's trust policy. Such a policy can enable federated users who sign in using the SAML IdP to assume the role. You can create an IAM role that supports Web-based single sign-on (SSO) to the the console or one that supports API access to AWS .
+ * The SAML provider resource that you create with this operation can be used as a principal in an IAM role's trust policy. Such a policy can enable federated users who sign in using the SAML IdP to assume the role. You can create an IAM role that supports Web-based single sign-on (SSO) to the AWS Management Console or one that supports API access to AWS .
  *
  * When you create the SAML provider resource, you upload a SAML metadata document that you get from your IdP. That document includes the issuer's name, expiration information, and keys that can be used to validate the SAML authentication response (assertions) that the IdP sends. You must generate the metadata document using the identity management software that is used as your organization's IdP.
  *
  * > This operation requires [Signature Version 4](https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html) .
  *
- * For more information, see [Enabling SAML 2.0 federated users to access the the console](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-saml.html) and [About SAML 2.0-based federation](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html) in the *IAM User Guide* .
+ * For more information, see [Enabling SAML 2.0 federated users to access the AWS Management Console](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-saml.html) and [About SAML 2.0-based federation](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html) in the *IAM User Guide* .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iam-samlprovider.html}
  */
 export type IAMSAMLProviderProps = {

package/out/exports/resources.generated/aws-iam-user.d.ts

@@ -19,9 +19,9 @@ export type IAMUserProps = {
      */
     Groups?: string[] | undefined;
     /**
-     * Creates a password for the specified IAM user. A password allows an IAM user to access AWS services through the the console .
+     * Creates a password for the specified IAM user. A password allows an IAM user to access AWS services through the AWS Management Console .
      *
-     * You can use the AWS CLI , the AWS API, or the *Users* page in the IAM console to create a password for any IAM user. Use [ChangePassword](https://docs.aws.amazon.com/IAM/latest/APIReference/API_ChangePassword.html) to update your own existing password in the *My Security Credentials* page in the the console .
+     * You can use the AWS CLI , the AWS API, or the *Users* page in the IAM console to create a password for any IAM user. Use [ChangePassword](https://docs.aws.amazon.com/IAM/latest/APIReference/API_ChangePassword.html) to update your own existing password in the *My Security Credentials* page in the AWS Management Console .
      *
      * For more information about managing passwords, see [Managing passwords](https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingLogins.html) in the *IAM User Guide* .
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iam-user.html#cfn-iam-user-loginprofile}
@@ -93,7 +93,7 @@ export type IAMUserAttribs = {
     Arn: string;
 };
 /**
- * Creates a password for the specified user, giving the user the ability to access AWS services through the the console . For more information about managing passwords, see [Managing Passwords](https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingLogins.html) in the *IAM User Guide* .
+ * Creates a password for the specified user, giving the user the ability to access AWS services through the AWS Management Console . For more information about managing passwords, see [Managing Passwords](https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingLogins.html) in the *IAM User Guide* .
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-iam-user-loginprofile.html}
  */
 export type LoginProfile = {

package/out/exports/resources.generated/aws-kinesisvideo-stream.d.ts

@@ -65,7 +65,7 @@ export type KinesisVideoStreamProps = {
      */
     Name?: string | undefined;
     /**
-     * Configuration for the storage tier of the Kinesis Video Stream.
+     * The configuration for stream storage, including the default storage tier for stream data. This configuration determines how stream data is stored and accessed, with different tiers offering varying levels of performance and cost optimization.
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-kinesisvideo-stream.html#cfn-kinesisvideo-stream-streamstorageconfiguration}
      */
     StreamStorageConfiguration?: StreamStorageConfiguration | undefined;
@@ -88,12 +88,17 @@ export type KinesisVideoStreamAttribs = {
     Arn: string;
 };
 /**
- * Configuration for the storage tier of the Kinesis Video Stream.
+ * The configuration for stream storage, including the default storage tier for stream data. This configuration determines how stream data is stored and accessed, with different tiers offering varying levels of performance and cost optimization.
  * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-kinesisvideo-stream-streamstorageconfiguration.html}
  */
 export type StreamStorageConfiguration = {
     /**
-     * The storage tier for the Kinesis Video Stream. Determines the storage class used for stream data.
+     * The default storage tier for the stream data. This setting determines the storage class used for stream data, affecting both performance characteristics and storage costs.
+     *
+     * Available storage tiers:
+     *
+     * - `HOT` - Optimized for frequent access with the lowest latency and highest performance. Ideal for real-time applications and frequently accessed data.
+     * - `WARM` - Balanced performance and cost for moderately accessed data. Suitable for data that is accessed regularly but not continuously.
      * @default "HOT"
      * @see {@link https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-kinesisvideo-stream-streamstorageconfiguration.html#cfn-kinesisvideo-stream-streamstorageconfiguration-defaultstoragetier}
      */