aws-sdk 2.1187.0 → 2.1188.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (10) hide show
  1. package/CHANGELOG.md +5 -1
  2. package/README.md +1 -1
  3. package/clients/cognitoidentityserviceprovider.d.ts +21 -21
  4. package/clients/wafv2.d.ts +44 -44
  5. package/dist/aws-sdk-core-react-native.js +1 -1
  6. package/dist/aws-sdk-react-native.js +1 -1
  7. package/dist/aws-sdk.js +3 -3
  8. package/dist/aws-sdk.min.js +2 -2
  9. package/lib/core.js +1 -1
  10. package/package.json +1 -1
package/CHANGELOG.md CHANGED
@@ -1,7 +1,11 @@
1
1
  # Changelog for AWS SDK for JavaScript
2
- <!--LATEST=2.1187.0-->
2
+ <!--LATEST=2.1188.0-->
3
3
  <!--ENTRYINSERT-->
4
4
 
5
+ ## 2.1188.0
6
+ * feature: CognitoIdentityServiceProvider: Add a new exception type, ForbiddenException, that is returned when request is not allowed
7
+ * feature: WAFV2: You can now associate an AWS WAF web ACL with an Amazon Cognito user pool.
8
+
5
9
  ## 2.1187.0
6
10
  * feature: LicenseManagerUserSubscriptions: This release supports user based subscription for Microsoft Visual Studio Professional and Enterprise on EC2.
7
11
  * feature: Personalize: This release adds support for incremental bulk ingestion for the Personalize CreateDatasetImportJob API.
package/README.md CHANGED
@@ -29,7 +29,7 @@ For release notes, see the [CHANGELOG](https://github.com/aws/aws-sdk-js/blob/ma
29
29
  To use the SDK in the browser, simply add the following script tag to your
30
30
  HTML pages:
31
31
 
32
- <script src="https://sdk.amazonaws.com/js/aws-sdk-2.1187.0.min.js"></script>
32
+ <script src="https://sdk.amazonaws.com/js/aws-sdk-2.1188.0.min.js"></script>
33
33
 
34
34
  You can also build a custom browser SDK with your specified set of AWS services.
35
35
  This can allow you to reduce the SDK's size, specify different API versions of
package/clients/cognitoidentityserviceprovider.d.ts CHANGED
@@ -228,11 +228,11 @@ declare class CognitoIdentityServiceProvider extends Service {
228
228
  */
229
229
  adminUserGlobalSignOut(callback?: (err: AWSError, data: CognitoIdentityServiceProvider.Types.AdminUserGlobalSignOutResponse) => void): Request<CognitoIdentityServiceProvider.Types.AdminUserGlobalSignOutResponse, AWSError>;
230
230
  /**
231
- * Begins setup of time-based one-time password multi-factor authentication (TOTP MFA) for a user, with a unique private key that Amazon Cognito generates and returns in the API response. You can authorize an AssociateSoftwareToken request with either the user's access token, or a session string from a challenge response that you received from Amazon Cognito. Amazon Cognito disassociates an existing software token when you verify the new token in a VerifySoftwareToken API request. If you don't verify the software token and your user pool doesn't require MFA, the user can then authenticate with user name and password credentials alone. If your user pool requires TOTP MFA, Amazon Cognito generates an MFA_SETUP or SOFTWARE_TOKEN_SETUP challenge each time your user signs. Complete setup with AssociateSoftwareToken and VerifySoftwareToken. After you set up software token MFA for your user, Amazon Cognito generates a SOFTWARE_TOKEN_MFA challenge when they authenticate. Respond to this challenge with your user's TOTP.
231
+ * Begins setup of time-based one-time password (TOTP) multi-factor authentication (MFA) for a user, with a unique private key that Amazon Cognito generates and returns in the API response. You can authorize an AssociateSoftwareToken request with either the user's access token, or a session string from a challenge response that you received from Amazon Cognito. Amazon Cognito disassociates an existing software token when you verify the new token in a VerifySoftwareToken API request. If you don't verify the software token and your user pool doesn't require MFA, the user can then authenticate with user name and password credentials alone. If your user pool requires TOTP MFA, Amazon Cognito generates an MFA_SETUP or SOFTWARE_TOKEN_SETUP challenge each time your user signs. Complete setup with AssociateSoftwareToken and VerifySoftwareToken. After you set up software token MFA for your user, Amazon Cognito generates a SOFTWARE_TOKEN_MFA challenge when they authenticate. Respond to this challenge with your user's TOTP.
232
232
  */
233
233
  associateSoftwareToken(params: CognitoIdentityServiceProvider.Types.AssociateSoftwareTokenRequest, callback?: (err: AWSError, data: CognitoIdentityServiceProvider.Types.AssociateSoftwareTokenResponse) => void): Request<CognitoIdentityServiceProvider.Types.AssociateSoftwareTokenResponse, AWSError>;
234
234
  /**
235
- * Begins setup of time-based one-time password multi-factor authentication (TOTP MFA) for a user, with a unique private key that Amazon Cognito generates and returns in the API response. You can authorize an AssociateSoftwareToken request with either the user's access token, or a session string from a challenge response that you received from Amazon Cognito. Amazon Cognito disassociates an existing software token when you verify the new token in a VerifySoftwareToken API request. If you don't verify the software token and your user pool doesn't require MFA, the user can then authenticate with user name and password credentials alone. If your user pool requires TOTP MFA, Amazon Cognito generates an MFA_SETUP or SOFTWARE_TOKEN_SETUP challenge each time your user signs. Complete setup with AssociateSoftwareToken and VerifySoftwareToken. After you set up software token MFA for your user, Amazon Cognito generates a SOFTWARE_TOKEN_MFA challenge when they authenticate. Respond to this challenge with your user's TOTP.
235
+ * Begins setup of time-based one-time password (TOTP) multi-factor authentication (MFA) for a user, with a unique private key that Amazon Cognito generates and returns in the API response. You can authorize an AssociateSoftwareToken request with either the user's access token, or a session string from a challenge response that you received from Amazon Cognito. Amazon Cognito disassociates an existing software token when you verify the new token in a VerifySoftwareToken API request. If you don't verify the software token and your user pool doesn't require MFA, the user can then authenticate with user name and password credentials alone. If your user pool requires TOTP MFA, Amazon Cognito generates an MFA_SETUP or SOFTWARE_TOKEN_SETUP challenge each time your user signs. Complete setup with AssociateSoftwareToken and VerifySoftwareToken. After you set up software token MFA for your user, Amazon Cognito generates a SOFTWARE_TOKEN_MFA challenge when they authenticate. Respond to this challenge with your user's TOTP.
236
236
  */
237
237
  associateSoftwareToken(callback?: (err: AWSError, data: CognitoIdentityServiceProvider.Types.AssociateSoftwareTokenResponse) => void): Request<CognitoIdentityServiceProvider.Types.AssociateSoftwareTokenResponse, AWSError>;
238
238
  /**
@@ -1512,7 +1512,7 @@ declare namespace CognitoIdentityServiceProvider {
1512
1512
  }
1513
1513
  export interface AssociateSoftwareTokenResponse {
1514
1514
  /**
1515
- * A unique generated shared secret code that is used in the time-based one-time password (TOTP) algorithm to generate a one-time code.
1515
+ * A unique generated shared secret code that is used in the TOTP algorithm to generate a one-time code.
1516
1516
  */
1517
1517
  SecretCode?: SecretCodeType;
1518
1518
  /**
@@ -1715,11 +1715,11 @@ declare namespace CognitoIdentityServiceProvider {
1715
1715
  */
1716
1716
  Username: UsernameType;
1717
1717
  /**
1718
- * The confirmation code sent by a user's request to retrieve a forgotten password. For more information, see ForgotPassword.
1718
+ * The confirmation code from your user's request to reset their password. For more information, see ForgotPassword.
1719
1719
  */
1720
1720
  ConfirmationCode: ConfirmationCodeType;
1721
1721
  /**
1722
- * The password sent by a user's request to retrieve a forgotten password.
1722
+ * The new password that your user wants to set.
1723
1723
  */
1724
1724
  Password: PasswordType;
1725
1725
  /**
@@ -1938,11 +1938,11 @@ declare namespace CognitoIdentityServiceProvider {
1938
1938
  */
1939
1939
  WriteAttributes?: ClientPermissionListType;
1940
1940
  /**
1941
- * The authentication flows that are supported by the user pool clients. Flow names without the ALLOW_ prefix are no longer supported, in favor of new names with the ALLOW_ prefix. Values with ALLOW_ prefix must be used only along with the ALLOW_ prefix. Valid values include: ALLOW_ADMIN_USER_PASSWORD_AUTH: Enable admin based user password authentication flow ADMIN_USER_PASSWORD_AUTH. This setting replaces the ADMIN_NO_SRP_AUTH setting. With this authentication flow, Amazon Cognito receives the password in the request instead of using the Secure Remote Password (SRP) protocol to verify passwords. ALLOW_CUSTOM_AUTH: Enable Lambda trigger based authentication. ALLOW_USER_PASSWORD_AUTH: Enable user password-based authentication. In this flow, Amazon Cognito receives the password in the request instead of using the SRP protocol to verify passwords. ALLOW_USER_SRP_AUTH: Enable SRP-based authentication. ALLOW_REFRESH_TOKEN_AUTH: Enable authflow to refresh tokens. If you don't specify a value for ExplicitAuthFlows, your app client activates the ALLOW_USER_SRP_AUTH and ALLOW_CUSTOM_AUTH authentication flows.
1941
+ * The authentication flows that are supported by the user pool clients. Flow names without the ALLOW_ prefix are no longer supported, in favor of new names with the ALLOW_ prefix. Values with ALLOW_ prefix must be used only along with the ALLOW_ prefix. Valid values include: ALLOW_ADMIN_USER_PASSWORD_AUTH Enable admin based user password authentication flow ADMIN_USER_PASSWORD_AUTH. This setting replaces the ADMIN_NO_SRP_AUTH setting. With this authentication flow, Amazon Cognito receives the password in the request instead of using the Secure Remote Password (SRP) protocol to verify passwords. ALLOW_CUSTOM_AUTH Enable Lambda trigger based authentication. ALLOW_USER_PASSWORD_AUTH Enable user password-based authentication. In this flow, Amazon Cognito receives the password in the request instead of using the SRP protocol to verify passwords. ALLOW_USER_SRP_AUTH Enable SRP-based authentication. ALLOW_REFRESH_TOKEN_AUTH Enable the authflow that refreshes tokens. If you don't specify a value for ExplicitAuthFlows, your user client supports ALLOW_USER_SRP_AUTH and ALLOW_CUSTOM_AUTH.
1942
1942
  */
1943
1943
  ExplicitAuthFlows?: ExplicitAuthFlowsListType;
1944
1944
  /**
1945
- * A list of provider names for the IdPs that this client supports. The following are supported: COGNITO, Facebook, Google LoginWithAmazon, and the names of your own SAML and OIDC providers.
1945
+ * A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: COGNITO, Facebook, Google, SignInWithApple, and LoginWithAmazon. You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example MySAMLIdP or MyOIDCIdP.
1946
1946
  */
1947
1947
  SupportedIdentityProviders?: SupportedIdentityProvidersListType;
1948
1948
  /**
@@ -2062,11 +2062,11 @@ declare namespace CognitoIdentityServiceProvider {
2062
2062
  */
2063
2063
  MfaConfiguration?: UserPoolMfaType;
2064
2064
  /**
2065
- * The settings for updates to user attributes. These settings include the property AttributesRequireVerificationBeforeUpdate, a user-pool setting that tells Amazon Cognito how to handle changes to the value of your users' email address and phone number attributes. For more information, see Verifying updates to to email addresses and phone numbers.
2065
+ * The settings for updates to user attributes. These settings include the property AttributesRequireVerificationBeforeUpdate, a user-pool setting that tells Amazon Cognito how to handle changes to the value of your users' email address and phone number attributes. For more information, see Verifying updates to email addresses and phone numbers.
2066
2066
  */
2067
2067
  UserAttributeUpdateSettings?: UserAttributeUpdateSettingsType;
2068
2068
  /**
2069
- * The device configuration.
2069
+ * The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool. When you provide a value for any DeviceConfiguration field, you activate the Amazon Cognito device-remembering feature.
2070
2070
  */
2071
2071
  DeviceConfiguration?: DeviceConfigurationType;
2072
2072
  /**
@@ -2325,11 +2325,11 @@ declare namespace CognitoIdentityServiceProvider {
2325
2325
  export type DescriptionType = string;
2326
2326
  export interface DeviceConfigurationType {
2327
2327
  /**
2328
- * When true, device authentication can replace SMS and time-based one-time password (TOTP) factors for multi-factor authentication (MFA). Users that sign in with devices that have not been confirmed or remembered will still have to provide a second factor, whether or not ChallengeRequiredOnNewDevice is true, when your user pool requires MFA.
2328
+ * When true, device authentication can replace SMS and time-based one-time password (TOTP) factors for multi-factor authentication (MFA). Regardless of the value of this field, users that sign in with new devices that have not been confirmed or remembered must provide a second factor if your user pool requires MFA.
2329
2329
  */
2330
2330
  ChallengeRequiredOnNewDevice?: BooleanType;
2331
2331
  /**
2332
- * When true, users can opt in to remembering their device. Your app code must use callback functions to return the user's choice.
2332
+ * When true, Amazon Cognito doesn't remember newly-confirmed devices. Users who want to authenticate with their device can instead opt in to remembering their device. To collect a choice from your user, create an input prompt in your app and return the value that the user chooses in an UpdateDeviceStatus API request.
2333
2333
  */
2334
2334
  DeviceOnlyRememberedOnUserPrompt?: BooleanType;
2335
2335
  }
@@ -2658,15 +2658,15 @@ declare namespace CognitoIdentityServiceProvider {
2658
2658
  }
2659
2659
  export interface GetUserPoolMfaConfigResponse {
2660
2660
  /**
2661
- * The SMS text message multi-factor (MFA) configuration.
2661
+ * The SMS text message multi-factor authentication (MFA) configuration.
2662
2662
  */
2663
2663
  SmsMfaConfiguration?: SmsMfaConfigType;
2664
2664
  /**
2665
- * The software token multi-factor (MFA) configuration.
2665
+ * The software token multi-factor authentication (MFA) configuration.
2666
2666
  */
2667
2667
  SoftwareTokenMfaConfiguration?: SoftwareTokenMfaConfigType;
2668
2668
  /**
2669
- * The multi-factor (MFA) configuration. Valid values include: OFF MFA won't be used for any users. ON MFA is required for all users to sign in. OPTIONAL MFA will be required only for individual users who have an MFA factor activated.
2669
+ * The multi-factor authentication (MFA) configuration. Valid values include: OFF MFA won't be used for any users. ON MFA is required for all users to sign in. OPTIONAL MFA will be required only for individual users who have an MFA factor activated.
2670
2670
  */
2671
2671
  MfaConfiguration?: UserPoolMfaType;
2672
2672
  }
@@ -3582,7 +3582,7 @@ declare namespace CognitoIdentityServiceProvider {
3582
3582
  */
3583
3583
  SMSMfaSettings?: SMSMfaSettingsType;
3584
3584
  /**
3585
- * The time-based one-time password software token MFA settings.
3585
+ * The time-based one-time password (TOTP) software token MFA settings.
3586
3586
  */
3587
3587
  SoftwareTokenMfaSettings?: SoftwareTokenMfaSettingsType;
3588
3588
  /**
@@ -4031,7 +4031,7 @@ declare namespace CognitoIdentityServiceProvider {
4031
4031
  */
4032
4032
  ExplicitAuthFlows?: ExplicitAuthFlowsListType;
4033
4033
  /**
4034
- * A list of provider names for the IdPs that this client supports. The following are supported: COGNITO, Facebook, Google LoginWithAmazon, and the names of your own SAML and OIDC providers.
4034
+ * A list of provider names for the IdPs that this client supports. The following are supported: COGNITO, Facebook, Google, SignInWithApple, LoginWithAmazon, and the names of your own SAML and OIDC providers.
4035
4035
  */
4036
4036
  SupportedIdentityProviders?: SupportedIdentityProvidersListType;
4037
4037
  /**
@@ -4139,7 +4139,7 @@ declare namespace CognitoIdentityServiceProvider {
4139
4139
  */
4140
4140
  SmsAuthenticationMessage?: SmsVerificationMessageType;
4141
4141
  /**
4142
- * The settings for updates to user attributes. These settings include the property AttributesRequireVerificationBeforeUpdate, a user-pool setting that tells Amazon Cognito how to handle changes to the value of your users' email address and phone number attributes. For more information, see Verifying updates to to email addresses and phone numbers.
4142
+ * The settings for updates to user attributes. These settings include the property AttributesRequireVerificationBeforeUpdate, a user-pool setting that tells Amazon Cognito how to handle changes to the value of your users' email address and phone number attributes. For more information, see Verifying updates to email addresses and phone numbers.
4143
4143
  */
4144
4144
  UserAttributeUpdateSettings?: UserAttributeUpdateSettingsType;
4145
4145
  /**
@@ -4147,7 +4147,7 @@ declare namespace CognitoIdentityServiceProvider {
4147
4147
  */
4148
4148
  MfaConfiguration?: UserPoolMfaType;
4149
4149
  /**
4150
- * Device configuration.
4150
+ * The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool. When you provide a value for any DeviceConfiguration field, you activate the Amazon Cognito device-remembering feature.
4151
4151
  */
4152
4152
  DeviceConfiguration?: DeviceConfigurationType;
4153
4153
  /**
@@ -4328,7 +4328,7 @@ declare namespace CognitoIdentityServiceProvider {
4328
4328
  */
4329
4329
  ExplicitAuthFlows?: ExplicitAuthFlowsListType;
4330
4330
  /**
4331
- * A list of provider names for the IdPs that this client supports. The following are supported: COGNITO, Facebook, Google LoginWithAmazon, and the names of your own SAML and OIDC providers.
4331
+ * A list of provider names for the IdPs that this client supports. The following are supported: COGNITO, Facebook, Google, SignInWithApple, LoginWithAmazon, and the names of your own SAML and OIDC providers.
4332
4332
  */
4333
4333
  SupportedIdentityProviders?: SupportedIdentityProvidersListType;
4334
4334
  /**
@@ -4476,7 +4476,7 @@ declare namespace CognitoIdentityServiceProvider {
4476
4476
  */
4477
4477
  SmsAuthenticationMessage?: SmsVerificationMessageType;
4478
4478
  /**
4479
- * The settings for updates to user attributes. These settings include the property AttributesRequireVerificationBeforeUpdate, a user-pool setting that tells Amazon Cognito how to handle changes to the value of your users' email address and phone number attributes. For more information, see Verifying updates to to email addresses and phone numbers.
4479
+ * The settings for updates to user attributes. These settings include the property AttributesRequireVerificationBeforeUpdate, a user-pool setting that tells Amazon Cognito how to handle changes to the value of your users' email address and phone number attributes. For more information, see Verifying updates to email addresses and phone numbers.
4480
4480
  */
4481
4481
  UserAttributeUpdateSettings?: UserAttributeUpdateSettingsType;
4482
4482
  /**
@@ -4484,7 +4484,7 @@ declare namespace CognitoIdentityServiceProvider {
4484
4484
  */
4485
4485
  MfaConfiguration?: UserPoolMfaType;
4486
4486
  /**
4487
- * The device configuration.
4487
+ * The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool. When you provide a value for any DeviceConfiguration field, you activate the Amazon Cognito device-remembering feature.
4488
4488
  */
4489
4489
  DeviceConfiguration?: DeviceConfigurationType;
4490
4490
  /**