aws-sdk 2.1616.0 → 2.1618.0

package/clients/ssooidc.d.ts

@@ -20,11 +20,11 @@ declare class SSOOIDC extends Service {
    */
   createToken(callback?: (err: AWSError, data: SSOOIDC.Types.CreateTokenResponse) => void): Request<SSOOIDC.Types.CreateTokenResponse, AWSError>;
   /**
-   * Creates and returns access and refresh tokens for clients and applications that are authenticated using IAM entities. The access token can be used to fetch short-term credentials for the assigned AWS accounts or to access application APIs using bearer authentication.
+   * Creates and returns access and refresh tokens for clients and applications that are authenticated using IAM entities. The access token can be used to fetch short-term credentials for the assigned Amazon Web Services accounts or to access application APIs using bearer authentication.
    */
   createTokenWithIAM(params: SSOOIDC.Types.CreateTokenWithIAMRequest, callback?: (err: AWSError, data: SSOOIDC.Types.CreateTokenWithIAMResponse) => void): Request<SSOOIDC.Types.CreateTokenWithIAMResponse, AWSError>;
   /**
-   * Creates and returns access and refresh tokens for clients and applications that are authenticated using IAM entities. The access token can be used to fetch short-term credentials for the assigned AWS accounts or to access application APIs using bearer authentication.
+   * Creates and returns access and refresh tokens for clients and applications that are authenticated using IAM entities. The access token can be used to fetch short-term credentials for the assigned Amazon Web Services accounts or to access application APIs using bearer authentication.
    */
   createTokenWithIAM(callback?: (err: AWSError, data: SSOOIDC.Types.CreateTokenWithIAMResponse) => void): Request<SSOOIDC.Types.CreateTokenWithIAMResponse, AWSError>;
   /**
@@ -46,12 +46,14 @@ declare class SSOOIDC extends Service {
 }
 declare namespace SSOOIDC {
   export type AccessToken = string;
+  export type ArnType = string;
   export type Assertion = string;
   export type AuthCode = string;
   export type ClientId = string;
   export type ClientName = string;
   export type ClientSecret = string;
   export type ClientType = string;
+  export type CodeVerifier = string;
   export interface CreateTokenRequest {
     /**
      * The unique identifier string for the client or application. This value comes from the result of the RegisterClient API.
@@ -85,10 +87,14 @@ declare namespace SSOOIDC {
      * Used only when calling this API for the Authorization Code grant type. This value specifies the location of the client or application that has registered to receive the authorization code.
      */
     redirectUri?: URI;
+    /**
+     * Used only when calling this API for the Authorization Code grant type. This value is generated by the client and presented to validate the original code challenge value the client passed at authorization time.
+     */
+    codeVerifier?: CodeVerifier;
   }
   export interface CreateTokenResponse {
     /**
-     * A bearer token to access AWS accounts and applications assigned to a user.
+     * A bearer token to access Amazon Web Services accounts and applications assigned to a user.
      */
     accessToken?: AccessToken;
     /**
@@ -149,10 +155,14 @@ declare namespace SSOOIDC {
      * Used only when calling this API for the Token Exchange grant type. This value specifies the type of token that the requester can receive. The following values are supported: * Access Token - urn:ietf:params:oauth:token-type:access_token  * Refresh Token - urn:ietf:params:oauth:token-type:refresh_token 
      */
     requestedTokenType?: TokenTypeURI;
+    /**
+     * Used only when calling this API for the Authorization Code grant type. This value is generated by the client and presented to validate the original code challenge value the client passed at authorization time.
+     */
+    codeVerifier?: CodeVerifier;
   }
   export interface CreateTokenWithIAMResponse {
     /**
-     * A bearer token to access AWS accounts and applications assigned to a user.
+     * A bearer token to access Amazon Web Services accounts and applications assigned to a user.
      */
     accessToken?: AccessToken;
     /**
@@ -183,9 +193,11 @@ declare namespace SSOOIDC {
   export type DeviceCode = string;
   export type ExpirationInSeconds = number;
   export type GrantType = string;
+  export type GrantTypes = GrantType[];
   export type IdToken = string;
   export type IntervalInSeconds = number;
   export type LongTimeStampType = number;
+  export type RedirectUris = URI[];
   export type RefreshToken = string;
   export interface RegisterClientRequest {
     /**
@@ -200,6 +212,22 @@ declare namespace SSOOIDC {
      * The list of scopes that are defined by the client. Upon authorization, this list is used to restrict permissions when granting an access token.
      */
     scopes?: Scopes;
+    /**
+     * The list of redirect URI that are defined by the client. At completion of authorization, this list is used to restrict what locations the user agent can be redirected back to.
+     */
+    redirectUris?: RedirectUris;
+    /**
+     * The list of OAuth 2.0 grant types that are defined by the client. This list is used to restrict the token granting flows available to the client.
+     */
+    grantTypes?: GrantTypes;
+    /**
+     * The IAM Identity Center Issuer URL associated with an instance of IAM Identity Center. This value is needed for user access to resources through the client.
+     */
+    issuerUrl?: URI;
+    /**
+     * This IAM Identity Center application ARN is used to define administrator-managed configuration for public client access to resources. At authorization, the scopes, grants, and redirect URI available to this client will be restricted by this application resource.
+     */
+    entitledApplicationArn?: ArnType;
   }
   export interface RegisterClientResponse {
     /**

package/clients/verifiedpermissions.d.ts

@@ -232,6 +232,7 @@ declare namespace VerifiedPermissions {
      */
     actionId: ActionId;
   }
+  export type ActionIdentifierList = ActionIdentifier[];
   export type ActionType = string;
   export interface AttributeValue {
     /**
@@ -415,7 +416,7 @@ declare namespace VerifiedPermissions {
      */
     clientIds?: ClientIds;
     /**
-     * The configuration of the user groups from an Amazon Cognito user pool identity source.
+     * The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.
      */
     groupConfiguration?: CognitoGroupConfiguration;
   }
@@ -433,7 +434,7 @@ declare namespace VerifiedPermissions {
      */
     issuer: Issuer;
     /**
-     * The configuration of the user groups from an Amazon Cognito user pool identity source.
+     * The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.
      */
     groupConfiguration?: CognitoGroupConfigurationDetail;
   }
@@ -451,7 +452,7 @@ declare namespace VerifiedPermissions {
      */
     issuer: Issuer;
     /**
-     * The configuration of the user groups from an Amazon Cognito user pool identity source.
+     * The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.
      */
     groupConfiguration?: CognitoGroupConfigurationItem;
   }
@@ -463,13 +464,13 @@ declare namespace VerifiedPermissions {
   }
   export interface ConfigurationDetail {
     /**
-     * Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool and one or more application client IDs. Example: "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": "MyCorp::Group"}}} 
+     * Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity that you want to assign to user groups, and one or more application client IDs. Example: "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": "MyCorp::Group"}}} 
      */
     cognitoUserPoolConfiguration?: CognitoUserPoolConfigurationDetail;
   }
   export interface ConfigurationItem {
     /**
-     * Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool and one or more application client IDs. Example: "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": "MyCorp::Group"}}} 
+     * Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity that you want to assign to user groups, and one or more application client IDs. Example: "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": "MyCorp::Group"}}} 
      */
     cognitoUserPoolConfiguration?: CognitoUserPoolConfigurationItem;
   }
@@ -551,6 +552,10 @@ declare namespace VerifiedPermissions {
      * The resource specified in the new policy's scope. This response element isn't present when the resource isn't specified in the policy content.
      */
     resource?: EntityIdentifier;
+    /**
+     * The action that a policy permits or forbids. For example, {"actions": [{"actionId": "ViewPhoto", "actionType": "PhotoFlash::Action"}, {"entityID": "SharePhoto", "entityType": "PhotoFlash::Action"}]}.
+     */
+    actions?: ActionIdentifierList;
     /**
      * The date and time the policy was originally created.
      */
@@ -559,6 +564,10 @@ declare namespace VerifiedPermissions {
      * The date and time the policy was last updated.
      */
     lastUpdatedDate: TimestampFormat;
+    /**
+     * The effect of the decision that a policy returns to an authorization request. For example, "effect": "Permit".
+     */
+    effect?: PolicyEffect;
   }
   export interface CreatePolicyStoreInput {
     /**
@@ -803,6 +812,10 @@ declare namespace VerifiedPermissions {
      * The resource specified in the policy's scope. This element isn't included in the response when Resource isn't present in the policy content.
      */
     resource?: EntityIdentifier;
+    /**
+     * The action that a policy permits or forbids. For example, {"actions": [{"actionId": "ViewPhoto", "actionType": "PhotoFlash::Action"}, {"entityID": "SharePhoto", "entityType": "PhotoFlash::Action"}]}.
+     */
+    actions?: ActionIdentifierList;
     /**
      * The definition of the requested policy.
      */
@@ -815,6 +828,10 @@ declare namespace VerifiedPermissions {
      * The date and time that the policy was last updated.
      */
     lastUpdatedDate: TimestampFormat;
+    /**
+     * The effect of the decision that a policy returns to an authorization request. For example, "effect": "Permit".
+     */
+    effect?: PolicyEffect;
   }
   export interface GetPolicyStoreInput {
     /**
@@ -1088,7 +1105,7 @@ declare namespace VerifiedPermissions {
      */
     nextToken?: NextToken;
     /**
-     * Specifies the total number of results that you want included in each response. If additional items exist beyond the number you specify, the NextToken response element is returned with a value (not null). Include the specified value as the NextToken request parameter in the next call to the operation to get the next set of results. Note that the service might return fewer results than the maximum even when there are more results available. You should check NextToken after every operation to ensure that you receive all of the results. If you do not specify this parameter, the operation defaults to 10 identity sources per response. You can specify a maximum of 200 identity sources per response.
+     * Specifies the total number of results that you want included in each response. If additional items exist beyond the number you specify, the NextToken response element is returned with a value (not null). Include the specified value as the NextToken request parameter in the next call to the operation to get the next set of results. Note that the service might return fewer results than the maximum even when there are more results available. You should check NextToken after every operation to ensure that you receive all of the results. If you do not specify this parameter, the operation defaults to 10 identity sources per response. You can specify a maximum of 50 identity sources per response.
      */
     maxResults?: ListIdentitySourcesMaxResults;
     /**
@@ -1216,6 +1233,7 @@ declare namespace VerifiedPermissions {
      */
     templateLinked?: TemplateLinkedPolicyDefinitionItem;
   }
+  export type PolicyEffect = "Permit"|"Forbid"|string;
   export interface PolicyFilter {
     /**
      * Filters the output to only policies that reference the specified principal.
@@ -1256,6 +1274,10 @@ declare namespace VerifiedPermissions {
      * The resource associated with the policy.
      */
     resource?: EntityIdentifier;
+    /**
+     * The action that a policy permits or forbids. For example, {"actions": [{"actionId": "ViewPhoto", "actionType": "PhotoFlash::Action"}, {"entityID": "SharePhoto", "entityType": "PhotoFlash::Action"}]}.
+     */
+    actions?: ActionIdentifierList;
     /**
      * The policy definition of an item in the list of policies returned.
      */
@@ -1268,6 +1290,10 @@ declare namespace VerifiedPermissions {
      * The date and time the policy was most recently updated.
      */
     lastUpdatedDate: TimestampFormat;
+    /**
+     * The effect of the decision that a policy returns to an authorization request. For example, "effect": "Permit".
+     */
+    effect?: PolicyEffect;
   }
   export type PolicyList = PolicyItem[];
   export type PolicyStatement = string;
@@ -1537,6 +1563,10 @@ declare namespace VerifiedPermissions {
      * The resource specified in the policy's scope. This element isn't included in the response when Resource isn't present in the policy content.
      */
     resource?: EntityIdentifier;
+    /**
+     * The action that a policy permits or forbids. For example, {"actions": [{"actionId": "ViewPhoto", "actionType": "PhotoFlash::Action"}, {"entityID": "SharePhoto", "entityType": "PhotoFlash::Action"}]}.
+     */
+    actions?: ActionIdentifierList;
     /**
      * The date and time that the policy was originally created.
      */
@@ -1545,6 +1575,10 @@ declare namespace VerifiedPermissions {
      * The date and time that the policy was most recently updated.
      */
     lastUpdatedDate: TimestampFormat;
+    /**
+     * The effect of the decision that a policy returns to an authorization request. For example, "effect": "Permit".
+     */
+    effect?: PolicyEffect;
   }
   export interface UpdatePolicyStoreInput {
     /**

package/dist/aws-sdk-core-react-native.js

@@ -83,7 +83,7 @@ return /******/ (function(modules) { // webpackBootstrap
 	  /**
 	   * @constant
 	   */
-	  VERSION: '2.1616.0',
+	  VERSION: '2.1618.0',
 
 	  /**
 	   * @api private