aws-sdk 2.1621.0 → 2.1622.0

package/clients/quicksight.d.ts

@@ -611,6 +611,14 @@ declare class QuickSight extends Service {
    * Provides a summary and status of IP rules.
    */
   describeIpRestriction(callback?: (err: AWSError, data: QuickSight.Types.DescribeIpRestrictionResponse) => void): Request<QuickSight.Types.DescribeIpRestrictionResponse, AWSError>;
+  /**
+   * Describes all customer managed key registrations in a Amazon QuickSight account.
+   */
+  describeKeyRegistration(params: QuickSight.Types.DescribeKeyRegistrationRequest, callback?: (err: AWSError, data: QuickSight.Types.DescribeKeyRegistrationResponse) => void): Request<QuickSight.Types.DescribeKeyRegistrationResponse, AWSError>;
+  /**
+   * Describes all customer managed key registrations in a Amazon QuickSight account.
+   */
+  describeKeyRegistration(callback?: (err: AWSError, data: QuickSight.Types.DescribeKeyRegistrationResponse) => void): Request<QuickSight.Types.DescribeKeyRegistrationResponse, AWSError>;
   /**
    * Describes the current namespace.
    */
@@ -1267,6 +1275,14 @@ declare class QuickSight extends Service {
    * Updates the content and status of IP rules. Traffic from a source is allowed when the source satisfies either the IpRestrictionRule, VpcIdRestrictionRule, or VpcEndpointIdRestrictionRule. To use this operation, you must provide the entire map of rules. You can use the DescribeIpRestriction operation to get the current rule map.
    */
   updateIpRestriction(callback?: (err: AWSError, data: QuickSight.Types.UpdateIpRestrictionResponse) => void): Request<QuickSight.Types.UpdateIpRestrictionResponse, AWSError>;
+  /**
+   * Updates a customer managed key in a Amazon QuickSight account.
+   */
+  updateKeyRegistration(params: QuickSight.Types.UpdateKeyRegistrationRequest, callback?: (err: AWSError, data: QuickSight.Types.UpdateKeyRegistrationResponse) => void): Request<QuickSight.Types.UpdateKeyRegistrationResponse, AWSError>;
+  /**
+   * Updates a customer managed key in a Amazon QuickSight account.
+   */
+  updateKeyRegistration(callback?: (err: AWSError, data: QuickSight.Types.UpdateKeyRegistrationResponse) => void): Request<QuickSight.Types.UpdateKeyRegistrationResponse, AWSError>;
   /**
    * Use the UpdatePublicSharingSettings operation to turn on or turn off the public sharing settings of an Amazon QuickSight dashboard. To use this operation, turn on session capacity pricing for your Amazon QuickSight account. Before you can turn on public sharing on your account, make sure to give public sharing permissions to an administrative user in the Identity and Access Management (IAM) console. For more information on using IAM with Amazon QuickSight, see Using Amazon QuickSight with IAM in the Amazon QuickSight User Guide.
    */
@@ -8199,6 +8215,34 @@ declare namespace QuickSight {
      */
     Status?: StatusCode;
   }
+  export interface DescribeKeyRegistrationRequest {
+    /**
+     * The ID of the Amazon Web Services account that contains the customer managed key registration that you want to describe.
+     */
+    AwsAccountId: AwsAccountId;
+    /**
+     * Determines whether the request returns the default key only.
+     */
+    DefaultKeyOnly?: Boolean;
+  }
+  export interface DescribeKeyRegistrationResponse {
+    /**
+     * The ID of the Amazon Web Services account that contains the customer managed key registration specified in the request.
+     */
+    AwsAccountId?: AwsAccountId;
+    /**
+     * A list of RegisteredCustomerManagedKey objects in a Amazon QuickSight account.
+     */
+    KeyRegistration?: KeyRegistration;
+    /**
+     * The Amazon Web Services request ID for this operation.
+     */
+    RequestId?: NonEmptyString;
+    /**
+     * The HTTP status of the request.
+     */
+    Status?: StatusCode;
+  }
   export interface DescribeNamespaceRequest {
     /**
      * The ID for the Amazon Web Services account that contains the Amazon QuickSight namespace that you want to describe.
@@ -8944,6 +8988,25 @@ declare namespace QuickSight {
     AvailabilityStatus?: DashboardBehavior;
   }
   export type Expression = string;
+  export type FailedKeyRegistrationEntries = FailedKeyRegistrationEntry[];
+  export interface FailedKeyRegistrationEntry {
+    /**
+     * The ARN of the KMS key that failed to update.
+     */
+    KeyArn?: String;
+    /**
+     * A message that provides information about why a FailedKeyRegistrationEntry error occurred.
+     */
+    Message: NonEmptyString;
+    /**
+     * The HTTP status of a FailedKeyRegistrationEntry error.
+     */
+    StatusCode: StatusCode;
+    /**
+     * A boolean that indicates whether a FailedKeyRegistrationEntry resulted from user error. If the value of this property is True, the error was caused by user error. If the value of this property is False, the error occurred on the backend. If your job continues fail and with a False SenderFault value, contact Amazon Web Services Support.
+     */
+    SenderFault: Boolean;
+  }
   export interface FieldBasedTooltip {
     /**
      * The visibility of Show aggregations.
@@ -11260,6 +11323,7 @@ declare namespace QuickSight {
     Type: KPIVisualStandardLayoutType;
   }
   export type KPIVisualStandardLayoutType = "CLASSIC"|"VERTICAL"|string;
+  export type KeyRegistration = RegisteredCustomerManagedKey[];
   export interface LabelOptions {
     /**
      * Determines whether or not the label is visible.
@@ -14391,7 +14455,7 @@ declare namespace QuickSight {
     /**
      * The user whose permissions and group memberships will be used by Amazon QuickSight to access the cluster. If this user already exists in your database, Amazon QuickSight is granted the same permissions that the user has. If the user doesn't exist, set the value of AutoCreateDatabaseUser to True to create a new user with PUBLIC permissions.
      */
-    DatabaseUser: DatabaseUser;
+    DatabaseUser?: DatabaseUser;
     /**
      * A list of groups whose permissions will be granted to Amazon QuickSight to access the cluster. These permissions are combined with the permissions granted to Amazon QuickSight by the DatabaseUser. If you choose to include this parameter, the RoleArn must grant access to redshift:JoinGroup.
      */
@@ -14599,7 +14663,7 @@ declare namespace QuickSight {
      */
     Email: String;
     /**
-     * The Amazon QuickSight role for the user. The user role can be one of the following:    READER: A user who has read-only access to dashboards.    AUTHOR: A user who can create data sources, datasets, analyses, and dashboards.    ADMIN: A user who is an author, who can also manage Amazon QuickSight settings.    RESTRICTED_READER: This role isn't currently available for use.    RESTRICTED_AUTHOR: This role isn't currently available for use.  
+     * The Amazon QuickSight role for the user. The user role can be one of the following:    READER: A user who has read-only access to dashboards.    AUTHOR: A user who can create data sources, datasets, analyses, and dashboards.    ADMIN: A user who is an author, who can also manage Amazon QuickSight settings.    READER_PRO: Reader Pro adds Generative BI capabilities to the Reader role. Reader Pros have access to Amazon Q in Amazon QuickSight, can build stories with Amazon Q, and can generate executive summaries from dashboards.    AUTHOR_PRO: Author Pro adds Generative BI capabilities to the Author role. Author Pros can author dashboards with natural language with Amazon Q, build stories with Amazon Q, create Topics for Q&amp;A, and generate executive summaries from dashboards.    ADMIN_PRO: Admin Pros are Author Pros who can also manage Amazon QuickSight administrative settings. Admin Pro users are billed at Author Pro pricing.    RESTRICTED_READER: This role isn't currently available for use.    RESTRICTED_AUTHOR: This role isn't currently available for use.  
      */
     UserRole: UserRole;
     /**
@@ -14661,6 +14725,16 @@ declare namespace QuickSight {
      */
     Status?: StatusCode;
   }
+  export interface RegisteredCustomerManagedKey {
+    /**
+     * The ARN of the KMS key that is registered to a Amazon QuickSight account for encryption and decryption use.
+     */
+    KeyArn?: String;
+    /**
+     * Indicates whether a RegisteredCustomerManagedKey is set as the default key for encryption and decryption use.
+     */
+    DefaultKey?: Boolean;
+  }
   export interface RegisteredUserConsoleFeatureConfigurations {
     /**
      * The state persistence configurations of an embedded Amazon QuickSight console.
@@ -16423,6 +16497,17 @@ declare namespace QuickSight {
      */
     StyleTargets?: TableStyleTargetList;
   }
+  export type SuccessfulKeyRegistrationEntries = SuccessfulKeyRegistrationEntry[];
+  export interface SuccessfulKeyRegistrationEntry {
+    /**
+     * The ARN of the KMS key that is associated with the SuccessfulKeyRegistrationEntry entry.
+     */
+    KeyArn: String;
+    /**
+     * The HTTP status of a SuccessfulKeyRegistrationEntry entry.
+     */
+    StatusCode: StatusCode;
+  }
   export type Suffix = string;
   export type Synonyms = LimitedString[];
   export interface TableAggregatedFieldWells {
@@ -19070,6 +19155,30 @@ declare namespace QuickSight {
      */
     Status?: StatusCode;
   }
+  export interface UpdateKeyRegistrationRequest {
+    /**
+     * The ID of the Amazon Web Services account that contains the customer managed key registration that you want to update.
+     */
+    AwsAccountId: AwsAccountId;
+    /**
+     * A list of RegisteredCustomerManagedKey objects to be updated to the Amazon QuickSight account.
+     */
+    KeyRegistration: KeyRegistration;
+  }
+  export interface UpdateKeyRegistrationResponse {
+    /**
+     * A list of all customer managed key registrations that failed to update.
+     */
+    FailedKeyRegistration?: FailedKeyRegistrationEntries;
+    /**
+     * A list of all customer managed key registrations that were successfully updated.
+     */
+    SuccessfulKeyRegistration?: SuccessfulKeyRegistrationEntries;
+    /**
+     * The Amazon Web Services request ID for this operation.
+     */
+    RequestId?: NonEmptyString;
+  }
   export type UpdateLinkPermissionList = ResourcePermission[];
   export interface UpdatePublicSharingSettingsRequest {
     /**
@@ -19558,7 +19667,7 @@ declare namespace QuickSight {
      */
     Email: String;
     /**
-     * The Amazon QuickSight role of the user. The role can be one of the following default security cohorts:    READER: A user who has read-only access to dashboards.    AUTHOR: A user who can create data sources, datasets, analyses, and dashboards.    ADMIN: A user who is an author, who can also manage Amazon QuickSight settings.    READER_PRO: Reader Pro adds Generative BI capabilities to the Reader role. Reader Pros have access to Amazon Q Business, can build stories with Amazon Q, and can generate executive summaries from dashboards.    AUTHOR_PRO: Author Pro adds Generative BI capabilities to the Author role. Author Pros can author dashboards with natural language with Amazon Q, build stories with Amazon Q, create Topics for Q&amp;A, and generate executive summaries from dashboards.    ADMIN_PRO: Admin Pros are Author Pros who can also manage Amazon QuickSight administrative settings. Admin Pro users are billed at Author Pro pricing.   The name of the Amazon QuickSight role is invisible to the user except for the console screens dealing with permissions.
+     * The Amazon QuickSight role of the user. The role can be one of the following default security cohorts:    READER: A user who has read-only access to dashboards.    AUTHOR: A user who can create data sources, datasets, analyses, and dashboards.    ADMIN: A user who is an author, who can also manage Amazon QuickSight settings.    READER_PRO: Reader Pro adds Generative BI capabilities to the Reader role. Reader Pros have access to Amazon Q in Amazon QuickSight, can build stories with Amazon Q, and can generate executive summaries from dashboards.    AUTHOR_PRO: Author Pro adds Generative BI capabilities to the Author role. Author Pros can author dashboards with natural language with Amazon Q, build stories with Amazon Q, create Topics for Q&amp;A, and generate executive summaries from dashboards.    ADMIN_PRO: Admin Pros are Author Pros who can also manage Amazon QuickSight administrative settings. Admin Pro users are billed at Author Pro pricing.   The name of the Amazon QuickSight role is invisible to the user except for the console screens dealing with permissions.
      */
     Role: UserRole;
     /**
@@ -19688,7 +19797,7 @@ declare namespace QuickSight {
      */
     Email?: String;
     /**
-     * The Amazon QuickSight role for the user. The user role can be one of the following:.    READER: A user who has read-only access to dashboards.    AUTHOR: A user who can create data sources, datasets, analyses, and dashboards.    ADMIN: A user who is an author, who can also manage Amazon Amazon QuickSight settings.    READER_PRO: Reader Pro adds Generative BI capabilities to the Reader role. Reader Pros have access to Amazon Q Business, can build stories with Amazon Q, and can generate executive summaries from dashboards.    AUTHOR_PRO: Author Pro adds Generative BI capabilities to the Author role. Author Pros can author dashboards with natural language with Amazon Q, build stories with Amazon Q, create Topics for Q&amp;A, and generate executive summaries from dashboards.    ADMIN_PRO: Admin Pros are Author Pros who can also manage Amazon QuickSight administrative settings. Admin Pro users are billed at Author Pro pricing.    RESTRICTED_READER: This role isn't currently available for use.    RESTRICTED_AUTHOR: This role isn't currently available for use.  
+     * The Amazon QuickSight role for the user. The user role can be one of the following:.    READER: A user who has read-only access to dashboards.    AUTHOR: A user who can create data sources, datasets, analyses, and dashboards.    ADMIN: A user who is an author, who can also manage Amazon Amazon QuickSight settings.    READER_PRO: Reader Pro adds Generative BI capabilities to the Reader role. Reader Pros have access to Amazon Q in Amazon QuickSight, can build stories with Amazon Q, and can generate executive summaries from dashboards.    AUTHOR_PRO: Author Pro adds Generative BI capabilities to the Author role. Author Pros can author dashboards with natural language with Amazon Q, build stories with Amazon Q, create Topics for Q&amp;A, and generate executive summaries from dashboards.    ADMIN_PRO: Admin Pros are Author Pros who can also manage Amazon QuickSight administrative settings. Admin Pro users are billed at Author Pro pricing.    RESTRICTED_READER: This role isn't currently available for use.    RESTRICTED_AUTHOR: This role isn't currently available for use.  
      */
     Role?: UserRole;
     /**

package/clients/sagemaker.d.ts

@@ -421,11 +421,11 @@ declare class SageMaker extends Service {
    */
   createProject(callback?: (err: AWSError, data: SageMaker.Types.CreateProjectOutput) => void): Request<SageMaker.Types.CreateProjectOutput, AWSError>;
   /**
-   * Creates a space used for real time collaboration in a domain.
+   * Creates a private space or a space used for real time collaboration in a domain.
    */
   createSpace(params: SageMaker.Types.CreateSpaceRequest, callback?: (err: AWSError, data: SageMaker.Types.CreateSpaceResponse) => void): Request<SageMaker.Types.CreateSpaceResponse, AWSError>;
   /**
-   * Creates a space used for real time collaboration in a domain.
+   * Creates a private space or a space used for real time collaboration in a domain.
    */
   createSpace(callback?: (err: AWSError, data: SageMaker.Types.CreateSpaceResponse) => void): Request<SageMaker.Types.CreateSpaceResponse, AWSError>;
   /**
@@ -6674,6 +6674,10 @@ declare namespace SageMaker {
      * Configures notification of workers regarding available or expiring work items.
      */
     NotificationConfiguration?: NotificationConfiguration;
+    /**
+     * Use this optional parameter to constrain access to an Amazon S3 resource based on the IP address using supported IAM global condition keys. The Amazon S3 resource is accessed in the worker portal using a Amazon S3 presigned URL.
+     */
+    WorkerAccessConfiguration?: WorkerAccessConfiguration;
     /**
      * An array of key-value pairs. For more information, see Resource Tag and Using Cost Allocation Tags in the  Amazon Web Services Billing and Cost Management User Guide.
      */
@@ -11612,6 +11616,7 @@ declare namespace SageMaker {
   export interface EnableSagemakerServicecatalogPortfolioOutput {
   }
   export type EnableSessionTagChaining = boolean;
+  export type EnabledOrDisabled = "Enabled"|"Disabled"|string;
   export interface Endpoint {
     /**
      * The name of the endpoint.
@@ -13122,6 +13127,16 @@ declare namespace SageMaker {
      */
     SourceIdentity?: String;
   }
+  export interface IamPolicyConstraints {
+    /**
+     * When SourceIp is Enabled the worker's IP address when a task is rendered in the worker portal is added to the IAM policy as a Condition used to generate the Amazon S3 presigned URL. This IP address is checked by Amazon S3 and must match in order for the Amazon S3 resource to be rendered in the worker portal.
+     */
+    SourceIp?: EnabledOrDisabled;
+    /**
+     * When VpcSourceIp is Enabled the worker's IP address when a task is rendered in private worker portal inside the VPC is added to the IAM policy as a Condition used to generate the Amazon S3 presigned URL. To render the task successfully Amazon S3 checks that the presigned URL is being accessed over an Amazon S3 VPC Endpoint, and that the worker's IP address matches the IP address in the IAM policy. To learn more about configuring private worker portal, see Use Amazon VPC mode from a private worker portal.
+     */
+    VpcSourceIp?: EnabledOrDisabled;
+  }
   export type IdempotencyToken = string;
   export interface IdentityProviderOAuthSetting {
     /**
@@ -14267,7 +14282,7 @@ declare namespace SageMaker {
      */
     NextToken?: NextToken;
     /**
-     * The total number of items to return in the response. If the total number of items available is more than the value specified, a NextToken is provided in the response. To resume pagination, provide the NextToken value in the as part of a subsequent call. The default value is 10.
+     * This parameter defines the maximum number of results that can be returned in a single response. The MaxResults parameter is an upper bound, not a target. If there are more results available than the value specified, a NextToken is provided in the response. The NextToken indicates that the user should get the next set of results by providing this token as a part of a subsequent call. The default value for MaxResults is 10.
      */
     MaxResults?: MaxResults;
     /**
@@ -14853,7 +14868,7 @@ declare namespace SageMaker {
      */
     NextToken?: NextToken;
     /**
-     * The total number of items to return in the response. If the total number of items available is more than the value specified, a NextToken is provided in the response. To resume pagination, provide the NextToken value in the as part of a subsequent call. The default value is 10.
+     * This parameter defines the maximum number of results that can be returned in a single response. The MaxResults parameter is an upper bound, not a target. If there are more results available than the value specified, a NextToken is provided in the response. The NextToken indicates that the user should get the next set of results by providing this token as a part of a subsequent call. The default value for MaxResults is 10.
      */
     MaxResults?: MaxResults;
   }
@@ -16883,7 +16898,7 @@ declare namespace SageMaker {
      */
     NextToken?: NextToken;
     /**
-     * The total number of items to return in the response. If the total number of items available is more than the value specified, a NextToken is provided in the response. To resume pagination, provide the NextToken value in the as part of a subsequent call. The default value is 10.
+     * This parameter defines the maximum number of results that can be returned in a single response. The MaxResults parameter is an upper bound, not a target. If there are more results available than the value specified, a NextToken is provided in the response. The NextToken indicates that the user should get the next set of results by providing this token as a part of a subsequent call. The default value for MaxResults is 10.
      */
     MaxResults?: MaxResults;
     /**
@@ -17289,7 +17304,7 @@ declare namespace SageMaker {
      */
     NextToken?: NextToken;
     /**
-     * The total number of items to return in the response. If the total number of items available is more than the value specified, a NextToken is provided in the response. To resume pagination, provide the NextToken value in the as part of a subsequent call. The default value is 10.
+     * This parameter defines the maximum number of results that can be returned in a single response. The MaxResults parameter is an upper bound, not a target. If there are more results available than the value specified, a NextToken is provided in the response. The NextToken indicates that the user should get the next set of results by providing this token as a part of a subsequent call. The default value for MaxResults is 10.
      */
     MaxResults?: MaxResults;
     /**
@@ -21169,6 +21184,12 @@ declare namespace SageMaker {
   export type S3ModelDataType = "S3Prefix"|"S3Object"|string;
   export type S3ModelUri = string;
   export type S3OutputPath = string;
+  export interface S3Presign {
+    /**
+     * Use this parameter to specify the allowed request source. Possible sources are either SourceIp or VpcSourceIp.
+     */
+    IamPolicyConstraints?: IamPolicyConstraints;
+  }
   export interface S3StorageConfig {
     /**
      * The S3 URI, or location in Amazon S3, of OfflineStore. S3 URIs have a format similar to the following: s3://example-bucket/prefix/.
@@ -24116,6 +24137,10 @@ declare namespace SageMaker {
      * Configures SNS topic notifications for available or expiring work items
      */
     NotificationConfiguration?: NotificationConfiguration;
+    /**
+     * Use this optional parameter to constrain access to an Amazon S3 resource based on the IP address using supported IAM global condition keys. The Amazon S3 resource is accessed in the worker portal using a Amazon S3 presigned URL.
+     */
+    WorkerAccessConfiguration?: WorkerAccessConfiguration;
   }
   export interface UpdateWorkteamResponse {
     /**
@@ -24318,6 +24343,12 @@ declare namespace SageMaker {
      */
     ReusedByJob?: TrainingJobName;
   }
+  export interface WorkerAccessConfiguration {
+    /**
+     * Defines any Amazon S3 resource constraints.
+     */
+    S3Presign?: S3Presign;
+  }
   export interface Workforce {
     /**
      * The name of the private workforce.
@@ -24458,6 +24489,10 @@ declare namespace SageMaker {
      * Configures SNS notifications of available or expiring work items for work teams.
      */
     NotificationConfiguration?: NotificationConfiguration;
+    /**
+     * Describes any access constraints that have been defined for Amazon S3 resources.
+     */
+    WorkerAccessConfiguration?: WorkerAccessConfiguration;
   }
   export type WorkteamArn = string;
   export type WorkteamName = string;

package/clients/secretsmanager.d.ts

@@ -395,7 +395,7 @@ declare namespace SecretsManager {
      */
     KmsKeyId?: KmsKeyIdType;
     /**
-     * Specifies whether automatic rotation is turned on for this secret. To turn on rotation, use RotateSecret. To turn off rotation, use CancelRotateSecret.
+     * Specifies whether automatic rotation is turned on for this secret. If the secret has never been configured for rotation, Secrets Manager returns null. To turn on rotation, use RotateSecret. To turn off rotation, use CancelRotateSecret.
      */
     RotationEnabled?: RotationEnabledType;
     /**
@@ -536,7 +536,7 @@ declare namespace SecretsManager {
   }
   export interface GetSecretValueRequest {
     /**
-     * The ARN or name of the secret to retrieve. For an ARN, we recommend that you specify a complete ARN rather than a partial ARN. See Finding a secret from a partial ARN.
+     * The ARN or name of the secret to retrieve. To retrieve a secret from another account, you must use an ARN. For an ARN, we recommend that you specify a complete ARN rather than a partial ARN. See Finding a secret from a partial ARN.
      */
     SecretId: SecretIdType;
     /**
@@ -1130,7 +1130,7 @@ declare namespace SecretsManager {
   }
   export interface ValidateResourcePolicyRequest {
     /**
-     * This field is reserved for internal use.
+     * The ARN or name of the secret with the resource-based policy you want to validate.
      */
     SecretId?: SecretIdType;
     /**

package/dist/aws-sdk-core-react-native.js

@@ -83,7 +83,7 @@ return /******/ (function(modules) { // webpackBootstrap
 	  /**
 	   * @constant
 	   */
-	  VERSION: '2.1621.0',
+	  VERSION: '2.1622.0',
 
 	  /**
 	   * @api private