aws-sdk 2.1591.0 → 2.1593.0

package/clients/ivs.d.ts

@@ -446,6 +446,10 @@ declare namespace IVS {
      * Recording-configuration ARN. A valid ARN value here both specifies the ARN and enables recording. Default: "" (empty string, recording is disabled).
      */
     recordingConfigurationArn?: ChannelRecordingConfigurationArn;
+    /**
+     * Specifies the endpoint and optional passphrase for streaming with the SRT protocol.
+     */
+    srt?: Srt;
     /**
      * Tags attached to the resource. Array of 1-50 maps, each of the form string:string (key:value). See Tagging Amazon Web Services Resources for more information, including restrictions that apply to tags and "Tag naming limits and requirements"; Amazon IVS has no service-specific constraints beyond what is documented there.
      */
@@ -512,7 +516,7 @@ declare namespace IVS {
      */
     authorized?: Boolean;
     /**
-     * Whether the channel allows insecure RTMP ingest. Default: false.
+     * Whether the channel allows insecure RTMP and SRT ingest. Default: false.
      */
     insecureIngest?: Boolean;
     /**
@@ -1164,6 +1168,18 @@ declare namespace IVS {
      */
     bucketName: S3DestinationBucketName;
   }
+  export interface Srt {
+    /**
+     * The endpoint to be used when streaming with IVS using the SRT protocol.
+     */
+    endpoint?: SrtEndpoint;
+    /**
+     * Auto-generated passphrase to enable encryption. This field is applicable only if the end user has not enabled the insecureIngest option for the channel.
+     */
+    passphrase?: SrtPassphrase;
+  }
+  export type SrtEndpoint = string;
+  export type SrtPassphrase = string;
   export interface StartViewerSessionRevocationRequest {
     /**
      * The ARN of the channel associated with the viewer session to revoke.
@@ -1421,7 +1437,7 @@ declare namespace IVS {
      */
     authorized?: Boolean;
     /**
-     * Whether the channel allows insecure RTMP ingest. Default: false.
+     * Whether the channel allows insecure RTMP and SRT ingest. Default: false.
      */
     insecureIngest?: Boolean;
     /**

package/clients/lambda.d.ts

@@ -2917,7 +2917,7 @@ declare namespace Lambda {
   export type ResourceArn = string;
   export type ResponseStreamingInvocationType = "RequestResponse"|"DryRun"|string;
   export type RoleArn = string;
-  export type Runtime = "nodejs"|"nodejs4.3"|"nodejs6.10"|"nodejs8.10"|"nodejs10.x"|"nodejs12.x"|"nodejs14.x"|"nodejs16.x"|"java8"|"java8.al2"|"java11"|"python2.7"|"python3.6"|"python3.7"|"python3.8"|"python3.9"|"dotnetcore1.0"|"dotnetcore2.0"|"dotnetcore2.1"|"dotnetcore3.1"|"dotnet6"|"dotnet8"|"nodejs4.3-edge"|"go1.x"|"ruby2.5"|"ruby2.7"|"provided"|"provided.al2"|"nodejs18.x"|"python3.10"|"java17"|"ruby3.2"|"python3.11"|"nodejs20.x"|"provided.al2023"|"python3.12"|"java21"|string;
+  export type Runtime = "nodejs"|"nodejs4.3"|"nodejs6.10"|"nodejs8.10"|"nodejs10.x"|"nodejs12.x"|"nodejs14.x"|"nodejs16.x"|"java8"|"java8.al2"|"java11"|"python2.7"|"python3.6"|"python3.7"|"python3.8"|"python3.9"|"dotnetcore1.0"|"dotnetcore2.0"|"dotnetcore2.1"|"dotnetcore3.1"|"dotnet6"|"dotnet8"|"nodejs4.3-edge"|"go1.x"|"ruby2.5"|"ruby2.7"|"provided"|"provided.al2"|"nodejs18.x"|"python3.10"|"java17"|"ruby3.2"|"ruby3.3"|"python3.11"|"nodejs20.x"|"provided.al2023"|"python3.12"|"java21"|string;
   export type RuntimeVersionArn = string;
   export interface RuntimeVersionConfig {
     /**

package/clients/medialive.d.ts

@@ -844,6 +844,14 @@ Note that this field and audioType are both ignored if inputType is broadcasterM
      * Used for MS Smooth and Apple HLS outputs. Indicates the name displayed by the player (eg. English, or Director Commentary).
      */
     StreamName?: __string;
+    /**
+     * Identifies the DASH roles to assign to this audio output. Applies only when the audio output is configured for DVB DASH accessibility signaling.
+     */
+    AudioDashRoles?: __listOfDashRoleAudio;
+    /**
+     * Identifies DVB DASH accessibility signaling in this audio output. Used in Microsoft Smooth Streaming outputs to signal accessibility information to packagers.
+     */
+    DvbDashAccessibility?: DvbDashAccessibility;
   }
   export type AudioDescriptionAudioTypeControl = "FOLLOW_INPUT"|"USE_CONFIGURED"|string;
   export type AudioDescriptionLanguageCodeControl = "FOLLOW_INPUT"|"USE_CONFIGURED"|string;
@@ -1301,6 +1309,14 @@ Alternate rendition that the client will not try to play back by default. Repres
      * Name of the caption description.  Used to associate a caption description with an output.  Names must be unique within an event.
      */
     Name: __string;
+    /**
+     * Identifies the DASH roles to assign to this captions output. Applies only when the captions output is configured for DVB DASH accessibility signaling.
+     */
+    CaptionDashRoles?: __listOfDashRoleCaption;
+    /**
+     * Identifies DVB DASH accessibility signaling in this captions output. Used in Microsoft Smooth Streaming outputs to signal accessibility information to packagers.
+     */
+    DvbDashAccessibility?: DvbDashAccessibility;
   }
   export interface CaptionDestinationSettings {
     AribDestinationSettings?: AribDestinationSettings;
@@ -5872,6 +5888,7 @@ the timestamps will be in Coordinated Universal Time (UTC)
     MultiplexGroupSettings?: MultiplexGroupSettings;
     RtmpGroupSettings?: RtmpGroupSettings;
     UdpGroupSettings?: UdpGroupSettings;
+    CmafIngestGroupSettings?: CmafIngestGroupSettings;
   }
   export interface OutputLocationRef {
     DestinationRefId?: __string;
@@ -5889,6 +5906,7 @@ the timestamps will be in Coordinated Universal Time (UTC)
     MultiplexOutputSettings?: MultiplexOutputSettings;
     RtmpOutputSettings?: RtmpOutputSettings;
     UdpOutputSettings?: UdpOutputSettings;
+    CmafIngestOutputSettings?: CmafIngestOutputSettings;
   }
   export interface PassThroughSettings {
   }
@@ -7497,6 +7515,7 @@ If STANDARD channel, subnet IDs must be mapped to two unique availability zones
   export type __integerMin0Max100000000 = number;
   export type __integerMin0Max128 = number;
   export type __integerMin0Max15 = number;
+  export type __integerMin0Max2000 = number;
   export type __integerMin0Max255 = number;
   export type __integerMin0Max30 = number;
   export type __integerMin0Max32768 = number;
@@ -7733,6 +7752,46 @@ one destination per packager.
   export type H265TreeblockSize = "AUTO"|"TREE_SIZE_32X32"|string;
   export type __integerMin256Max3840 = number;
   export type __integerMin64Max2160 = number;
+  export interface CmafIngestGroupSettings {
+    /**
+     * A HTTP destination for the tracks
+     */
+    Destination: OutputLocationRef;
+    /**
+     * If set to passthrough, Nielsen inaudible tones for media tracking will be detected in the input audio and an equivalent ID3 tag will be inserted in the output.
+     */
+    NielsenId3Behavior?: CmafNielsenId3Behavior;
+    /**
+     * Type of scte35 track to add. none or scte35WithoutSegmentation
+     */
+    Scte35Type?: Scte35Type;
+    /**
+     * The nominal duration of segments. The units are specified in SegmentLengthUnits. The segments will end on the next keyframe after the specified duration, so the actual segment length might be longer, and it might be a fraction of the units.
+     */
+    SegmentLength?: __integerMin1;
+    /**
+     * Time unit for segment length parameter.
+     */
+    SegmentLengthUnits?: CmafIngestSegmentLengthUnits;
+    /**
+     * Number of milliseconds to delay the output from the second pipeline.
+     */
+    SendDelayMs?: __integerMin0Max2000;
+  }
+  export interface CmafIngestOutputSettings {
+    /**
+     * String concatenated to the end of the destination filename.  Required for multiple outputs of the same type.
+     */
+    NameModifier?: __string;
+  }
+  export type CmafIngestSegmentLengthUnits = "MILLISECONDS"|"SECONDS"|string;
+  export type CmafNielsenId3Behavior = "NO_PASSTHROUGH"|"PASSTHROUGH"|string;
+  export type DashRoleAudio = "ALTERNATE"|"COMMENTARY"|"DESCRIPTION"|"DUB"|"EMERGENCY"|"ENHANCED-AUDIO-INTELLIGIBILITY"|"KARAOKE"|"MAIN"|"SUPPLEMENTARY"|string;
+  export type DashRoleCaption = "ALTERNATE"|"CAPTION"|"COMMENTARY"|"DESCRIPTION"|"DUB"|"EASYREADER"|"EMERGENCY"|"FORCED-SUBTITLE"|"KARAOKE"|"MAIN"|"METADATA"|"SUBTITLE"|"SUPPLEMENTARY"|string;
+  export type DvbDashAccessibility = "DVBDASH_1_VISUALLY_IMPAIRED"|"DVBDASH_2_HARD_OF_HEARING"|"DVBDASH_3_SUPPLEMENTAL_COMMENTARY"|"DVBDASH_4_DIRECTORS_COMMENTARY"|"DVBDASH_5_EDUCATIONAL_NOTES"|"DVBDASH_6_MAIN_PROGRAM"|"DVBDASH_7_CLEAN_FEED"|string;
+  export type __listOfDashRoleAudio = DashRoleAudio[];
+  export type __listOfDashRoleCaption = DashRoleCaption[];
+  export type Scte35Type = "NONE"|"SCTE_35_WITHOUT_SEGMENTATION"|string;
   /**
    * A string in YYYY-MM-DD format that represents the latest possible API version that can be used in this service. Specify 'latest' to use the latest possible version.
    */

package/clients/medicalimaging.d.ts

@@ -45,11 +45,11 @@ declare class MedicalImaging extends Service {
    */
   deleteImageSet(callback?: (err: AWSError, data: MedicalImaging.Types.DeleteImageSetResponse) => void): Request<MedicalImaging.Types.DeleteImageSetResponse, AWSError>;
   /**
-   * Get the import job properties to learn more about the job or job progress.
+   * Get the import job properties to learn more about the job or job progress.  The jobStatus refers to the execution of the import job. Therefore, an import job can return a jobStatus as COMPLETED even if validation issues are discovered during the import process. If a jobStatus returns as COMPLETED, we still recommend you review the output manifests written to S3, as they provide details on the success or failure of individual P10 object imports. 
    */
   getDICOMImportJob(params: MedicalImaging.Types.GetDICOMImportJobRequest, callback?: (err: AWSError, data: MedicalImaging.Types.GetDICOMImportJobResponse) => void): Request<MedicalImaging.Types.GetDICOMImportJobResponse, AWSError>;
   /**
-   * Get the import job properties to learn more about the job or job progress.
+   * Get the import job properties to learn more about the job or job progress.  The jobStatus refers to the execution of the import job. Therefore, an import job can return a jobStatus as COMPLETED even if validation issues are discovered during the import process. If a jobStatus returns as COMPLETED, we still recommend you review the output manifests written to S3, as they provide details on the success or failure of individual P10 object imports. 
    */
   getDICOMImportJob(callback?: (err: AWSError, data: MedicalImaging.Types.GetDICOMImportJobResponse) => void): Request<MedicalImaging.Types.GetDICOMImportJobResponse, AWSError>;
   /**
@@ -387,6 +387,10 @@ declare namespace MedicalImaging {
   export type DICOMPatientId = string;
   export type DICOMPatientName = string;
   export type DICOMPatientSex = string;
+  export type DICOMSeriesBodyPart = string;
+  export type DICOMSeriesInstanceUID = string;
+  export type DICOMSeriesModality = string;
+  export type DICOMSeriesNumber = number;
   export type DICOMStudyDate = string;
   export interface DICOMStudyDateAndTime {
     /**
@@ -420,15 +424,15 @@ declare namespace MedicalImaging {
      */
     DICOMPatientSex?: DICOMPatientSex;
     /**
-     * The DICOM provided identifier for studyInstanceUid.&gt;
+     * The DICOM provided identifier for the Study Instance UID.
      */
     DICOMStudyInstanceUID?: DICOMStudyInstanceUID;
     /**
-     * The DICOM provided studyId.
+     * The DICOM provided identifier for the Study ID.
      */
     DICOMStudyId?: DICOMStudyId;
     /**
-     * The description of the study.
+     * The DICOM provided Study Description.
      */
     DICOMStudyDescription?: DICOMStudyDescription;
     /**
@@ -443,6 +447,22 @@ declare namespace MedicalImaging {
      * The accession number for the DICOM study.
      */
     DICOMAccessionNumber?: DICOMAccessionNumber;
+    /**
+     * The DICOM provided identifier for the Series Instance UID.
+     */
+    DICOMSeriesInstanceUID?: DICOMSeriesInstanceUID;
+    /**
+     * The DICOM provided identifier for the series Modality.
+     */
+    DICOMSeriesModality?: DICOMSeriesModality;
+    /**
+     * The DICOM provided identifier for the series Body Part Examined.
+     */
+    DICOMSeriesBodyPart?: DICOMSeriesBodyPart;
+    /**
+     * The DICOM provided identifier for the Series Number.
+     */
+    DICOMSeriesNumber?: DICOMSeriesNumber;
     /**
      * The study date.
      */
@@ -902,10 +922,18 @@ declare namespace MedicalImaging {
      * The DICOM study instance UID for search.
      */
     DICOMStudyInstanceUID?: DICOMStudyInstanceUID;
+    /**
+     * The Series Instance UID input for search.
+     */
+    DICOMSeriesInstanceUID?: DICOMSeriesInstanceUID;
     /**
      * The created at time of the image set provided for search.
      */
     createdAt?: _Date;
+    /**
+     * The timestamp input for search.
+     */
+    updatedAt?: _Date;
     /**
      * The aggregated structure containing DICOM study date and study time for search.
      */
@@ -916,6 +944,10 @@ declare namespace MedicalImaging {
      * The filters for the search criteria.
      */
     filters?: SearchCriteriaFiltersList;
+    /**
+     * The sort input for search criteria.
+     */
+    sort?: Sort;
   }
   export type SearchCriteriaFiltersList = SearchFilter[];
   export interface SearchFilter {
@@ -953,11 +985,27 @@ declare namespace MedicalImaging {
      * The model containing the image set results.
      */
     imageSetsMetadataSummaries: ImageSetsMetadataSummaries;
+    /**
+     * The sort order for image set search results.
+     */
+    sort?: Sort;
     /**
      * The token for pagination results.
      */
     nextToken?: NextToken;
   }
+  export interface Sort {
+    /**
+     * The sort order for search criteria.
+     */
+    sortOrder: SortOrder;
+    /**
+     * The sort field for search criteria.
+     */
+    sortField: SortField;
+  }
+  export type SortField = "updatedAt"|"createdAt"|"DICOMStudyDateAndTime"|string;
+  export type SortOrder = "ASC"|"DESC"|string;
   export interface StartDICOMImportJobRequest {
     /**
      * The import job name.

package/clients/transfer.d.ts

@@ -205,11 +205,11 @@ declare class Transfer extends Service {
    */
   describeProfile(callback?: (err: AWSError, data: Transfer.Types.DescribeProfileResponse) => void): Request<Transfer.Types.DescribeProfileResponse, AWSError>;
   /**
-   * Describes the security policy that is attached to your file transfer protocol-enabled server. The response contains a description of the security policy's properties. For more information about security policies, see Working with security policies.
+   * Describes the security policy that is attached to your server or SFTP connector. The response contains a description of the security policy's properties. For more information about security policies, see Working with security policies for servers or Working with security policies for SFTP connectors.
    */
   describeSecurityPolicy(params: Transfer.Types.DescribeSecurityPolicyRequest, callback?: (err: AWSError, data: Transfer.Types.DescribeSecurityPolicyResponse) => void): Request<Transfer.Types.DescribeSecurityPolicyResponse, AWSError>;
   /**
-   * Describes the security policy that is attached to your file transfer protocol-enabled server. The response contains a description of the security policy's properties. For more information about security policies, see Working with security policies.
+   * Describes the security policy that is attached to your server or SFTP connector. The response contains a description of the security policy's properties. For more information about security policies, see Working with security policies for servers or Working with security policies for SFTP connectors.
    */
   describeSecurityPolicy(callback?: (err: AWSError, data: Transfer.Types.DescribeSecurityPolicyResponse) => void): Request<Transfer.Types.DescribeSecurityPolicyResponse, AWSError>;
   /**
@@ -317,11 +317,11 @@ declare class Transfer extends Service {
    */
   listProfiles(callback?: (err: AWSError, data: Transfer.Types.ListProfilesResponse) => void): Request<Transfer.Types.ListProfilesResponse, AWSError>;
   /**
-   * Lists the security policies that are attached to your file transfer protocol-enabled servers.
+   * Lists the security policies that are attached to your servers and SFTP connectors. For more information about security policies, see Working with security policies for servers or Working with security policies for SFTP connectors.
    */
   listSecurityPolicies(params: Transfer.Types.ListSecurityPoliciesRequest, callback?: (err: AWSError, data: Transfer.Types.ListSecurityPoliciesResponse) => void): Request<Transfer.Types.ListSecurityPoliciesResponse, AWSError>;
   /**
-   * Lists the security policies that are attached to your file transfer protocol-enabled servers.
+   * Lists the security policies that are attached to your servers and SFTP connectors. For more information about security policies, see Working with security policies for servers or Working with security policies for SFTP connectors.
    */
   listSecurityPolicies(callback?: (err: AWSError, data: Transfer.Types.ListSecurityPoliciesResponse) => void): Request<Transfer.Types.ListSecurityPoliciesResponse, AWSError>;
   /**
@@ -562,6 +562,7 @@ declare namespace Transfer {
   export type CertificateUsageType = "SIGNING"|"ENCRYPTION"|string;
   export type CompressionEnum = "ZLIB"|"DISABLED"|string;
   export type ConnectorId = string;
+  export type ConnectorSecurityPolicyName = string;
   export interface CopyStepDetails {
     /**
      * The name of the step, used as an identifier.
@@ -686,6 +687,10 @@ declare namespace Transfer {
      * A structure that contains the parameters for an SFTP connector object.
      */
     SftpConfig?: SftpConnectorConfig;
+    /**
+     * Specifies the name of the security policy for the connector.
+     */
+    SecurityPolicyName?: ConnectorSecurityPolicyName;
   }
   export interface CreateConnectorResponse {
     /**
@@ -767,7 +772,7 @@ declare namespace Transfer {
      */
     ProtocolDetails?: ProtocolDetails;
     /**
-     * Specifies the name of the security policy that is attached to the server.
+     * Specifies the name of the security policy for the server.
      */
     SecurityPolicyName?: SecurityPolicyName;
     /**
@@ -1117,7 +1122,7 @@ declare namespace Transfer {
   }
   export interface DescribeSecurityPolicyRequest {
     /**
-     * Specifies the name of the security policy that is attached to the server.
+     * Specify the text name of the security policy for which you want the details.
      */
     SecurityPolicyName: SecurityPolicyName;
   }
@@ -1335,6 +1340,10 @@ declare namespace Transfer {
      * The list of egress IP addresses of this connector. These IP addresses are assigned automatically when you create the connector.
      */
     ServiceManagedEgressIpAddresses?: ServiceManagedEgressIpAddresses;
+    /**
+     * The text name of the security policy for the specified connector.
+     */
+    SecurityPolicyName?: ConnectorSecurityPolicyName;
   }
   export interface DescribedExecution {
     /**
@@ -1425,29 +1434,41 @@ declare namespace Transfer {
   }
   export interface DescribedSecurityPolicy {
     /**
-     * Specifies whether this policy enables Federal Information Processing Standards (FIPS).
+     * Specifies whether this policy enables Federal Information Processing Standards (FIPS). This parameter applies to both server and connector security policies.
      */
     Fips?: Fips;
     /**
-     * Specifies the name of the security policy that is attached to the server.
+     * The text name of the specified security policy.
      */
     SecurityPolicyName: SecurityPolicyName;
     /**
-     * Specifies the enabled Secure Shell (SSH) cipher encryption algorithms in the security policy that is attached to the server.
+     * Lists the enabled Secure Shell (SSH) cipher encryption algorithms in the security policy that is attached to the server or connector. This parameter applies to both server and connector security policies.
      */
     SshCiphers?: SecurityPolicyOptions;
     /**
-     * Specifies the enabled SSH key exchange (KEX) encryption algorithms in the security policy that is attached to the server.
+     * Lists the enabled SSH key exchange (KEX) encryption algorithms in the security policy that is attached to the server or connector. This parameter applies to both server and connector security policies.
      */
     SshKexs?: SecurityPolicyOptions;
     /**
-     * Specifies the enabled SSH message authentication code (MAC) encryption algorithms in the security policy that is attached to the server.
+     * Lists the enabled SSH message authentication code (MAC) encryption algorithms in the security policy that is attached to the server or connector. This parameter applies to both server and connector security policies.
      */
     SshMacs?: SecurityPolicyOptions;
     /**
-     * Specifies the enabled Transport Layer Security (TLS) cipher encryption algorithms in the security policy that is attached to the server.
+     * Lists the enabled Transport Layer Security (TLS) cipher encryption algorithms in the security policy that is attached to the server.  This parameter only applies to security policies for servers. 
      */
     TlsCiphers?: SecurityPolicyOptions;
+    /**
+     * Lists the host key algorithms for the security policy.  This parameter only applies to security policies for connectors. 
+     */
+    SshHostKeyAlgorithms?: SecurityPolicyOptions;
+    /**
+     * The resource type to which the security policy applies, either server or connector.
+     */
+    Type?: SecurityPolicyResourceType;
+    /**
+     * Lists the file transfer protocols that the security policy applies to.
+     */
+    Protocols?: SecurityPolicyProtocols;
   }
   export interface DescribedServer {
     /**
@@ -1503,7 +1524,7 @@ declare namespace Transfer {
      */
     Protocols?: Protocols;
     /**
-     * Specifies the name of the security policy that is attached to the server.
+     * Specifies the name of the security policy for the server.
      */
     SecurityPolicyName?: SecurityPolicyName;
     /**
@@ -2510,6 +2531,9 @@ declare namespace Transfer {
   export type SecurityPolicyNames = SecurityPolicyName[];
   export type SecurityPolicyOption = string;
   export type SecurityPolicyOptions = SecurityPolicyOption[];
+  export type SecurityPolicyProtocol = "SFTP"|"FTPS"|string;
+  export type SecurityPolicyProtocols = SecurityPolicyProtocol[];
+  export type SecurityPolicyResourceType = "SERVER"|"CONNECTOR"|string;
   export interface SendWorkflowStepStateRequest {
     /**
      * A unique identifier for the workflow.
@@ -2862,6 +2886,10 @@ declare namespace Transfer {
      * A structure that contains the parameters for an SFTP connector object.
      */
     SftpConfig?: SftpConnectorConfig;
+    /**
+     * Specifies the name of the security policy for the connector.
+     */
+    SecurityPolicyName?: ConnectorSecurityPolicyName;
   }
   export interface UpdateConnectorResponse {
     /**
@@ -2951,7 +2979,7 @@ declare namespace Transfer {
      */
     Protocols?: Protocols;
     /**
-     * Specifies the name of the security policy that is attached to the server.
+     * Specifies the name of the security policy for the server.
      */
     SecurityPolicyName?: SecurityPolicyName;
     /**

package/clients/verifiedpermissions.d.ts

@@ -271,11 +271,11 @@ declare namespace VerifiedPermissions {
      */
     principal?: EntityIdentifier;
     /**
-     * Specifies the requested action to be authorized. For example, is the principal authorized to perform this action on the resource?
+     * Specifies the requested action to be authorized. For example, PhotoFlash::ReadPhoto.
      */
     action?: ActionIdentifier;
     /**
-     * Specifies the resource for which the authorization decision is to be made.
+     * Specifies the resource that you want an authorization decision for. For example, PhotoFlash::Photo.
      */
     resource?: EntityIdentifier;
     /**
@@ -304,7 +304,7 @@ declare namespace VerifiedPermissions {
      */
     determiningPolicies: DeterminingPolicyList;
     /**
-     * Errors that occurred while making an authorization decision, for example, a policy references an Entity or entity Attribute that does not exist in the slice.
+     * Errors that occurred while making an authorization decision. For example, a policy might reference an entity or attribute that doesn't exist in the request.
      */
     errors: EvaluationErrorList;
   }
@@ -313,6 +313,24 @@ declare namespace VerifiedPermissions {
   export type BooleanAttribute = boolean;
   export type ClientId = string;
   export type ClientIds = ClientId[];
+  export interface CognitoGroupConfiguration {
+    /**
+     * The name of the schema entity type that's mapped to the user pool group. Defaults to AWS::CognitoGroup.
+     */
+    groupEntityType: GroupEntityType;
+  }
+  export interface CognitoGroupConfigurationDetail {
+    /**
+     * The name of the schema entity type that's mapped to the user pool group. Defaults to AWS::CognitoGroup.
+     */
+    groupEntityType?: GroupEntityType;
+  }
+  export interface CognitoGroupConfigurationItem {
+    /**
+     * The name of the schema entity type that's mapped to the user pool group. Defaults to AWS::CognitoGroup.
+     */
+    groupEntityType?: GroupEntityType;
+  }
   export interface CognitoUserPoolConfiguration {
     /**
      * The Amazon Resource Name (ARN) of the Amazon Cognito user pool that contains the identities to be authorized. Example: "UserPoolArn": "arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5" 
@@ -322,6 +340,10 @@ declare namespace VerifiedPermissions {
      * The unique application client IDs that are associated with the specified Amazon Cognito user pool. Example: "ClientIds": ["&ExampleCogClientId;"] 
      */
     clientIds?: ClientIds;
+    /**
+     * The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.
+     */
+    groupConfiguration?: CognitoGroupConfiguration;
   }
   export interface CognitoUserPoolConfigurationDetail {
     /**
@@ -336,6 +358,10 @@ declare namespace VerifiedPermissions {
      * The OpenID Connect (OIDC) issuer ID of the Amazon Cognito user pool that contains the identities to be authorized. Example: "issuer": "https://cognito-idp.us-east-1.amazonaws.com/us-east-1_1a2b3c4d5" 
      */
     issuer: Issuer;
+    /**
+     * The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.
+     */
+    groupConfiguration?: CognitoGroupConfigurationDetail;
   }
   export interface CognitoUserPoolConfigurationItem {
     /**
@@ -350,22 +376,26 @@ declare namespace VerifiedPermissions {
      * The OpenID Connect (OIDC) issuer ID of the Amazon Cognito user pool that contains the identities to be authorized. Example: "issuer": "https://cognito-idp.us-east-1.amazonaws.com/us-east-1_1a2b3c4d5" 
      */
     issuer: Issuer;
+    /**
+     * The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.
+     */
+    groupConfiguration?: CognitoGroupConfigurationItem;
   }
   export interface Configuration {
     /**
-     * Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool and one or more application client IDs. Example: "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": ["a1b2c3d4e5f6g7h8i9j0kalbmc"]}} 
+     * Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool and one or more application client IDs. Example: "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": "MyCorp::Group"}}} 
      */
     cognitoUserPoolConfiguration?: CognitoUserPoolConfiguration;
   }
   export interface ConfigurationDetail {
     /**
-     * Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool and one or more application client IDs. Example: "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": ["a1b2c3d4e5f6g7h8i9j0kalbmc"]}} 
+     * Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity that you want to assign to user groups, and one or more application client IDs. Example: "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": "MyCorp::Group"}}} 
      */
     cognitoUserPoolConfiguration?: CognitoUserPoolConfigurationDetail;
   }
   export interface ConfigurationItem {
     /**
-     * Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool and one or more application client IDs. Example: "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": ["a1b2c3d4e5f6g7h8i9j0kalbmc"]}} 
+     * Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity that you want to assign to user groups, and one or more application client IDs. Example: "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": "MyCorp::Group"}}} 
      */
     cognitoUserPoolConfiguration?: CognitoUserPoolConfigurationItem;
   }
@@ -808,6 +838,7 @@ declare namespace VerifiedPermissions {
      */
     namespaces?: NamespaceList;
   }
+  export type GroupEntityType = string;
   export type IdempotencyToken = string;
   export interface IdentitySourceDetails {
     /**
@@ -967,6 +998,10 @@ declare namespace VerifiedPermissions {
      * Errors that occurred while making an authorization decision. For example, a policy references an entity or entity attribute that does not exist in the slice.
      */
     errors: EvaluationErrorList;
+    /**
+     * The identifier of the principal in the ID or access token.
+     */
+    principal?: EntityIdentifier;
   }
   export type Issuer = string;
   export interface ListIdentitySourcesInput {
@@ -1325,6 +1360,12 @@ declare namespace VerifiedPermissions {
   }
   export type TimestampFormat = Date;
   export type Token = string;
+  export interface UpdateCognitoGroupConfiguration {
+    /**
+     * The name of the schema entity type that's mapped to the user pool group. Defaults to AWS::CognitoGroup.
+     */
+    groupEntityType: GroupEntityType;
+  }
   export interface UpdateCognitoUserPoolConfiguration {
     /**
      * The Amazon Resource Name (ARN) of the Amazon Cognito user pool associated with this identity source.
@@ -1334,6 +1375,10 @@ declare namespace VerifiedPermissions {
      * The client ID of an app client that is configured for the specified Amazon Cognito user pool.
      */
     clientIds?: ClientIds;
+    /**
+     * The configuration of the user groups from an Amazon Cognito user pool identity source.
+     */
+    groupConfiguration?: UpdateCognitoGroupConfiguration;
   }
   export interface UpdateConfiguration {
     /**

package/dist/aws-sdk-core-react-native.js

@@ -83,7 +83,7 @@ return /******/ (function(modules) { // webpackBootstrap
 	  /**
 	   * @constant
 	   */
-	  VERSION: '2.1591.0',
+	  VERSION: '2.1593.0',
 
 	  /**
 	   * @api private