aws-sdk 2.1625.0 → 2.1627.0

package/clients/chatbot.d.ts

@@ -163,6 +163,30 @@ declare class Chatbot extends Service {
    * Lists all Microsoft Teams user identities with a mapped role.
    */
   listMicrosoftTeamsUserIdentities(callback?: (err: AWSError, data: Chatbot.Types.ListMicrosoftTeamsUserIdentitiesResult) => void): Request<Chatbot.Types.ListMicrosoftTeamsUserIdentitiesResult, AWSError>;
+  /**
+   * Retrieves the list of tags applied to a configuration.
+   */
+  listTagsForResource(params: Chatbot.Types.ListTagsForResourceRequest, callback?: (err: AWSError, data: Chatbot.Types.ListTagsForResourceResponse) => void): Request<Chatbot.Types.ListTagsForResourceResponse, AWSError>;
+  /**
+   * Retrieves the list of tags applied to a configuration.
+   */
+  listTagsForResource(callback?: (err: AWSError, data: Chatbot.Types.ListTagsForResourceResponse) => void): Request<Chatbot.Types.ListTagsForResourceResponse, AWSError>;
+  /**
+   * Applies the supplied tags to a configuration.
+   */
+  tagResource(params: Chatbot.Types.TagResourceRequest, callback?: (err: AWSError, data: Chatbot.Types.TagResourceResponse) => void): Request<Chatbot.Types.TagResourceResponse, AWSError>;
+  /**
+   * Applies the supplied tags to a configuration.
+   */
+  tagResource(callback?: (err: AWSError, data: Chatbot.Types.TagResourceResponse) => void): Request<Chatbot.Types.TagResourceResponse, AWSError>;
+  /**
+   * Removes the supplied tags from a configuration
+   */
+  untagResource(params: Chatbot.Types.UntagResourceRequest, callback?: (err: AWSError, data: Chatbot.Types.UntagResourceResponse) => void): Request<Chatbot.Types.UntagResourceResponse, AWSError>;
+  /**
+   * Removes the supplied tags from a configuration
+   */
+  untagResource(callback?: (err: AWSError, data: Chatbot.Types.UntagResourceResponse) => void): Request<Chatbot.Types.UntagResourceResponse, AWSError>;
   /**
    * Update Chatbot account level preferences
    */
@@ -207,6 +231,7 @@ declare namespace Chatbot {
      */
     TrainingDataCollectionEnabled?: BooleanAccountPreference;
   }
+  export type AmazonResourceName = string;
   export type Arn = string;
   export type AwsUserIdentity = string;
   export type BooleanAccountPreference = boolean;
@@ -236,6 +261,10 @@ declare namespace Chatbot {
      * Specifies the logging level for this configuration. This property affects the log entries pushed to Amazon CloudWatch Logs.Logging levels include ERROR, INFO, or NONE.
      */
     LoggingLevel?: CustomerCwLogLevel;
+    /**
+     * A list of tags applied to the configuration.
+     */
+    Tags?: Tags;
   }
   export type ChimeWebhookConfigurationList = ChimeWebhookConfiguration[];
   export type ChimeWebhookDescription = string;
@@ -281,6 +310,10 @@ declare namespace Chatbot {
      * Logging levels include ERROR, INFO, or NONE.
      */
     LoggingLevel?: CustomerCwLogLevel;
+    /**
+     * A list of tags to apply to the configuration.
+     */
+    Tags?: Tags;
   }
   export interface CreateChimeWebhookConfigurationResult {
     /**
@@ -325,6 +358,10 @@ declare namespace Chatbot {
      * Enables use of a user role requirement in your chat configuration.
      */
     UserAuthorizationRequired?: BooleanAccountPreference;
+    /**
+     * A list of tags to apply to the configuration.
+     */
+    Tags?: Tags;
   }
   export interface CreateSlackChannelConfigurationResult {
     /**
@@ -377,6 +414,10 @@ declare namespace Chatbot {
      * Enables use of a user role requirement in your chat configuration.
      */
     UserAuthorizationRequired?: BooleanAccountPreference;
+    /**
+     * A list of tags to apply to the configuration.
+     */
+    Tags?: Tags;
   }
   export interface CreateTeamsChannelConfigurationResult {
     /**
@@ -611,6 +652,18 @@ declare namespace Chatbot {
      */
     NextToken?: PaginationToken;
   }
+  export interface ListTagsForResourceRequest {
+    /**
+     * The ARN of the configuration.
+     */
+    ResourceARN: AmazonResourceName;
+  }
+  export interface ListTagsForResourceResponse {
+    /**
+     * A list of tags applied to the configuration.
+     */
+    Tags?: TagList;
+  }
   export interface ListTeamsChannelConfigurationsRequest {
     /**
      * The maximum number of results to include in the response. If more results exist than the specified MaxResults value, a token is included in the response so that the remaining results can be retrieved.
@@ -682,6 +735,10 @@ declare namespace Chatbot {
      * Enables use of a user role requirement in your chat configuration.
      */
     UserAuthorizationRequired?: BooleanAccountPreference;
+    /**
+     * A list of tags applied to the configuration.
+     */
+    Tags?: Tags;
   }
   export type SlackChannelConfigurationList = SlackChannelConfiguration[];
   export type SlackChannelDisplayName = string;
@@ -725,6 +782,33 @@ declare namespace Chatbot {
   export type SlackWorkspacesList = SlackWorkspace[];
   export type SnsTopicArnList = Arn[];
   export type String = string;
+  export interface Tag {
+    /**
+     * The tag key.
+     */
+    TagKey: TagKey;
+    /**
+     * The tag value.
+     */
+    TagValue: TagValue;
+  }
+  export type TagKey = string;
+  export type TagKeyList = TagKey[];
+  export type TagList = Tag[];
+  export interface TagResourceRequest {
+    /**
+     * The ARN of the configuration.
+     */
+    ResourceARN: AmazonResourceName;
+    /**
+     * A list of tags to apply to the configuration.
+     */
+    Tags: TagList;
+  }
+  export interface TagResourceResponse {
+  }
+  export type TagValue = string;
+  export type Tags = Tag[];
   export type TeamChannelConfigurationsList = TeamsChannelConfiguration[];
   export type TeamName = string;
   export interface TeamsChannelConfiguration {
@@ -776,6 +860,10 @@ declare namespace Chatbot {
      * Enables use of a user role requirement in your chat configuration.
      */
     UserAuthorizationRequired?: BooleanAccountPreference;
+    /**
+     * A list of tags applied to the configuration.
+     */
+    Tags?: Tags;
   }
   export type TeamsChannelId = string;
   export type TeamsChannelName = string;
@@ -811,6 +899,18 @@ declare namespace Chatbot {
     TeamsTenantId?: UUID;
   }
   export type UUID = string;
+  export interface UntagResourceRequest {
+    /**
+     * The ARN of the configuration.
+     */
+    ResourceARN: AmazonResourceName;
+    /**
+     * A list of tag keys to remove from the configuration.
+     */
+    TagKeys: TagKeyList;
+  }
+  export interface UntagResourceResponse {
+  }
   export interface UpdateAccountPreferencesRequest {
     /**
      * Enables use of a user role requirement in your chat configuration.

package/clients/cloudformation.d.ts

@@ -1399,6 +1399,10 @@ declare namespace CloudFormation {
      * A unique identifier for this DeleteStack request. Specify this token if you plan to retry requests so that CloudFormation knows that you're not attempting to delete a stack with the same name. You might retry DeleteStack requests to ensure that CloudFormation successfully received them. All events initiated by a given stack operation are assigned the same client request token, which you can use to track operations. For example, if you execute a CreateStack operation with the token token1, then all the StackEvents generated by that operation will have ClientRequestToken set as token1. In the console, stack operations display the client request token on the Events tab. Stack operations that are initiated from the console use the token format Console-StackOperation-ID, which helps you easily identify the stack operation . For example, if you create a stack using the console, each stack event would be assigned the same token in the following format: Console-CreateStack-7f59c3cf-00d2-40c7-b2ff-e75db0987002.
      */
     ClientRequestToken?: ClientRequestToken;
+    /**
+     * Specifies the deletion mode for the stack. Possible values are:    STANDARD - Use the standard behavior. Specifying this value is the same as not specifying this parameter.    FORCE_DELETE_STACK - Delete the stack if it's stuck in a DELETE_FAILED state due to resource deletion failure.  
+     */
+    DeletionMode?: DeletionMode;
   }
   export interface DeleteStackInstancesInput {
     /**
@@ -1452,6 +1456,7 @@ declare namespace CloudFormation {
   }
   export interface DeleteStackSetOutput {
   }
+  export type DeletionMode = "STANDARD"|"FORCE_DELETE_STACK"|string;
   export type DeletionTime = Date;
   export interface DeploymentTargets {
     /**
@@ -2680,7 +2685,7 @@ declare namespace CloudFormation {
   }
   export interface ListStackInstanceResourceDriftsOutput {
     /**
-     * A list of StackInstanceResourceDriftSummary structures that contain information about the specified stack instances.
+     * A list of StackInstanceResourceDriftsSummary structures that contain information about the specified stack instances.
      */
     Summaries?: StackInstanceResourceDriftsSummaries;
     /**
@@ -3806,6 +3811,10 @@ declare namespace CloudFormation {
      * When set to true, newly created resources are deleted when the operation rolls back. This includes newly created resources marked with a deletion policy of Retain. Default: false 
      */
     RetainExceptOnCreate?: RetainExceptOnCreate;
+    /**
+     * Specifies the deletion mode for the stack. Possible values are:    STANDARD - Use the standard behavior. Specifying this value is the same as not specifying this parameter.    FORCE_DELETE_STACK - Delete the stack if it's stuck in a DELETE_FAILED state due to resource deletion failure.  
+     */
+    DeletionMode?: DeletionMode;
     /**
      * The detailed status of the resource or stack. If CONFIGURATION_COMPLETE is present, the resource or resource configuration phase has completed and the stabilization of the resources is in progress. The stack sets CONFIGURATION_COMPLETE when all of the resources in the stack have reached that event. For more information, see CloudFormation stack deployment in the CloudFormation User Guide.
      */
@@ -4475,7 +4484,7 @@ declare namespace CloudFormation {
      */
     MaxConcurrentPercentage?: MaxConcurrentPercentage;
     /**
-     * Specifies how the concurrency level behaves during the operation execution.    STRICT_FAILURE_TOLERANCE: This option dynamically lowers the concurrency level to ensure the number of failed accounts never exceeds the value of FailureToleranceCount +1. The initial actual concurrency is set to the lower of either the value of the MaxConcurrentCount, or the value of MaxConcurrentCount +1. The actual concurrency is then reduced proportionally by the number of failures. This is the default behavior. If failure tolerance or Maximum concurrent accounts are set to percentages, the behavior is similar.    SOFT_FAILURE_TOLERANCE: This option decouples FailureToleranceCount from the actual concurrency. This allows stack set operations to run at the concurrency level set by the MaxConcurrentCount value, or MaxConcurrentPercentage, regardless of the number of failures.  
+     * Specifies how the concurrency level behaves during the operation execution.    STRICT_FAILURE_TOLERANCE: This option dynamically lowers the concurrency level to ensure the number of failed accounts never exceeds the value of FailureToleranceCount +1. The initial actual concurrency is set to the lower of either the value of the MaxConcurrentCount, or the value of FailureToleranceCount +1. The actual concurrency is then reduced proportionally by the number of failures. This is the default behavior. If failure tolerance or Maximum concurrent accounts are set to percentages, the behavior is similar.    SOFT_FAILURE_TOLERANCE: This option decouples FailureToleranceCount from the actual concurrency. This allows stack set operations to run at the concurrency level set by the MaxConcurrentCount value, or MaxConcurrentPercentage, regardless of the number of failures.  
      */
     ConcurrencyMode?: ConcurrencyMode;
   }

package/clients/emrserverless.d.ts

@@ -211,6 +211,10 @@ declare namespace EMRServerless {
      */
     runtimeConfiguration?: ConfigurationList;
     monitoringConfiguration?: MonitoringConfiguration;
+    /**
+     * The interactive configuration object that enables the interactive use cases for an application.
+     */
+    interactiveConfiguration?: InteractiveConfiguration;
   }
   export type ApplicationArn = string;
   export type ApplicationId = string;
@@ -411,6 +415,10 @@ declare namespace EMRServerless {
      * The configuration setting for monitoring.
      */
     monitoringConfiguration?: MonitoringConfiguration;
+    /**
+     * The interactive configuration object that enables the interactive use cases to use when running an application.
+     */
+    interactiveConfiguration?: InteractiveConfiguration;
   }
   export interface CreateApplicationResponse {
     /**
@@ -535,6 +543,16 @@ declare namespace EMRServerless {
   }
   export type InitialCapacityConfigMap = {[key: string]: InitialCapacityConfig};
   export type Integer = number;
+  export interface InteractiveConfiguration {
+    /**
+     * Enables you to connect an application to Amazon EMR Studio to run interactive workloads in a notebook.
+     */
+    studioEnabled?: Boolean;
+    /**
+     * Enables an Apache Livy endpoint that you can connect to and run interactive jobs.
+     */
+    livyEndpointEnabled?: Boolean;
+  }
   export type JobArn = string;
   export interface JobDriver {
     /**
@@ -1010,6 +1028,10 @@ declare namespace EMRServerless {
      * The key-value pairs that specify worker type to WorkerTypeSpecificationInput. This parameter must contain all valid worker types for a Spark or Hive application. Valid worker types include Driver and Executor for Spark applications and HiveDriver and TezTask for Hive applications. You can either set image details in this parameter for each worker type, or in imageConfiguration for all worker types.
      */
     workerTypeSpecifications?: WorkerTypeSpecificationInputMap;
+    /**
+     * The interactive configuration object that contains new interactive use cases when the application is updated.
+     */
+    interactiveConfiguration?: InteractiveConfiguration;
     /**
      * The Amazon EMR release label for the application. You can change the release label to use a different release of Amazon EMR.
      */

package/clients/kms.d.ts

@@ -220,11 +220,11 @@ declare class KMS extends Service {
    */
   getKeyRotationStatus(callback?: (err: AWSError, data: KMS.Types.GetKeyRotationStatusResponse) => void): Request<KMS.Types.GetKeyRotationStatusResponse, AWSError>;
   /**
-   * Returns the public key and an import token you need to import or reimport key material for a KMS key.  By default, KMS keys are created with key material that KMS generates. This operation supports Importing key material, an advanced feature that lets you generate and import the cryptographic key material for a KMS key. For more information about importing key material into KMS, see Importing key material in the Key Management Service Developer Guide. Before calling GetParametersForImport, use the CreateKey operation with an Origin value of EXTERNAL to create a KMS key with no key material. You can import key material for a symmetric encryption KMS key, HMAC KMS key, asymmetric encryption KMS key, or asymmetric signing KMS key. You can also import key material into a multi-Region key of any supported type. However, you can't import key material into a KMS key in a custom key store. You can also use GetParametersForImport to get a public key and import token to reimport the original key material into a KMS key whose key material expired or was deleted.  GetParametersForImport returns the items that you need to import your key material.   The public key (or "wrapping key") of an RSA key pair that KMS generates. You will use this public key to encrypt ("wrap") your key material while it's in transit to KMS.    A import token that ensures that KMS can decrypt your key material and associate it with the correct KMS key.   The public key and its import token are permanently linked and must be used together. Each public key and import token set is valid for 24 hours. The expiration date and time appear in the ParametersValidTo field in the GetParametersForImport response. You cannot use an expired public key or import token in an ImportKeyMaterial request. If your key and token expire, send another GetParametersForImport request.  GetParametersForImport requires the following information:   The key ID of the KMS key for which you are importing the key material.   The key spec of the public key ("wrapping key") that you will use to encrypt your key material during import.   The wrapping algorithm that you will use with the public key to encrypt your key material.   You can use the same or a different public key spec and wrapping algorithm each time you import or reimport the same key material.  The KMS key that you use for this operation must be in a compatible key state. For details, see Key states of KMS keys in the Key Management Service Developer Guide.  Cross-account use: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.  Required permissions: kms:GetParametersForImport (key policy)  Related operations:     ImportKeyMaterial     DeleteImportedKeyMaterial     Eventual consistency: The KMS API follows an eventual consistency model. For more information, see KMS eventual consistency.
+   * Returns the public key and an import token you need to import or reimport key material for a KMS key.  By default, KMS keys are created with key material that KMS generates. This operation supports Importing key material, an advanced feature that lets you generate and import the cryptographic key material for a KMS key. For more information about importing key material into KMS, see Importing key material in the Key Management Service Developer Guide. Before calling GetParametersForImport, use the CreateKey operation with an Origin value of EXTERNAL to create a KMS key with no key material. You can import key material for a symmetric encryption KMS key, HMAC KMS key, asymmetric encryption KMS key, or asymmetric signing KMS key. You can also import key material into a multi-Region key of any supported type. However, you can't import key material into a KMS key in a custom key store. You can also use GetParametersForImport to get a public key and import token to reimport the original key material into a KMS key whose key material expired or was deleted.  GetParametersForImport returns the items that you need to import your key material.   The public key (or "wrapping key") of an asymmetric key pair that KMS generates. You will use this public key to encrypt ("wrap") your key material while it's in transit to KMS.    A import token that ensures that KMS can decrypt your key material and associate it with the correct KMS key.   The public key and its import token are permanently linked and must be used together. Each public key and import token set is valid for 24 hours. The expiration date and time appear in the ParametersValidTo field in the GetParametersForImport response. You cannot use an expired public key or import token in an ImportKeyMaterial request. If your key and token expire, send another GetParametersForImport request.  GetParametersForImport requires the following information:   The key ID of the KMS key for which you are importing the key material.   The key spec of the public key ("wrapping key") that you will use to encrypt your key material during import.   The wrapping algorithm that you will use with the public key to encrypt your key material.   You can use the same or a different public key spec and wrapping algorithm each time you import or reimport the same key material.  The KMS key that you use for this operation must be in a compatible key state. For details, see Key states of KMS keys in the Key Management Service Developer Guide.  Cross-account use: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.  Required permissions: kms:GetParametersForImport (key policy)  Related operations:     ImportKeyMaterial     DeleteImportedKeyMaterial     Eventual consistency: The KMS API follows an eventual consistency model. For more information, see KMS eventual consistency.
    */
   getParametersForImport(params: KMS.Types.GetParametersForImportRequest, callback?: (err: AWSError, data: KMS.Types.GetParametersForImportResponse) => void): Request<KMS.Types.GetParametersForImportResponse, AWSError>;
   /**
-   * Returns the public key and an import token you need to import or reimport key material for a KMS key.  By default, KMS keys are created with key material that KMS generates. This operation supports Importing key material, an advanced feature that lets you generate and import the cryptographic key material for a KMS key. For more information about importing key material into KMS, see Importing key material in the Key Management Service Developer Guide. Before calling GetParametersForImport, use the CreateKey operation with an Origin value of EXTERNAL to create a KMS key with no key material. You can import key material for a symmetric encryption KMS key, HMAC KMS key, asymmetric encryption KMS key, or asymmetric signing KMS key. You can also import key material into a multi-Region key of any supported type. However, you can't import key material into a KMS key in a custom key store. You can also use GetParametersForImport to get a public key and import token to reimport the original key material into a KMS key whose key material expired or was deleted.  GetParametersForImport returns the items that you need to import your key material.   The public key (or "wrapping key") of an RSA key pair that KMS generates. You will use this public key to encrypt ("wrap") your key material while it's in transit to KMS.    A import token that ensures that KMS can decrypt your key material and associate it with the correct KMS key.   The public key and its import token are permanently linked and must be used together. Each public key and import token set is valid for 24 hours. The expiration date and time appear in the ParametersValidTo field in the GetParametersForImport response. You cannot use an expired public key or import token in an ImportKeyMaterial request. If your key and token expire, send another GetParametersForImport request.  GetParametersForImport requires the following information:   The key ID of the KMS key for which you are importing the key material.   The key spec of the public key ("wrapping key") that you will use to encrypt your key material during import.   The wrapping algorithm that you will use with the public key to encrypt your key material.   You can use the same or a different public key spec and wrapping algorithm each time you import or reimport the same key material.  The KMS key that you use for this operation must be in a compatible key state. For details, see Key states of KMS keys in the Key Management Service Developer Guide.  Cross-account use: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.  Required permissions: kms:GetParametersForImport (key policy)  Related operations:     ImportKeyMaterial     DeleteImportedKeyMaterial     Eventual consistency: The KMS API follows an eventual consistency model. For more information, see KMS eventual consistency.
+   * Returns the public key and an import token you need to import or reimport key material for a KMS key.  By default, KMS keys are created with key material that KMS generates. This operation supports Importing key material, an advanced feature that lets you generate and import the cryptographic key material for a KMS key. For more information about importing key material into KMS, see Importing key material in the Key Management Service Developer Guide. Before calling GetParametersForImport, use the CreateKey operation with an Origin value of EXTERNAL to create a KMS key with no key material. You can import key material for a symmetric encryption KMS key, HMAC KMS key, asymmetric encryption KMS key, or asymmetric signing KMS key. You can also import key material into a multi-Region key of any supported type. However, you can't import key material into a KMS key in a custom key store. You can also use GetParametersForImport to get a public key and import token to reimport the original key material into a KMS key whose key material expired or was deleted.  GetParametersForImport returns the items that you need to import your key material.   The public key (or "wrapping key") of an asymmetric key pair that KMS generates. You will use this public key to encrypt ("wrap") your key material while it's in transit to KMS.    A import token that ensures that KMS can decrypt your key material and associate it with the correct KMS key.   The public key and its import token are permanently linked and must be used together. Each public key and import token set is valid for 24 hours. The expiration date and time appear in the ParametersValidTo field in the GetParametersForImport response. You cannot use an expired public key or import token in an ImportKeyMaterial request. If your key and token expire, send another GetParametersForImport request.  GetParametersForImport requires the following information:   The key ID of the KMS key for which you are importing the key material.   The key spec of the public key ("wrapping key") that you will use to encrypt your key material during import.   The wrapping algorithm that you will use with the public key to encrypt your key material.   You can use the same or a different public key spec and wrapping algorithm each time you import or reimport the same key material.  The KMS key that you use for this operation must be in a compatible key state. For details, see Key states of KMS keys in the Key Management Service Developer Guide.  Cross-account use: No. You cannot perform this operation on a KMS key in a different Amazon Web Services account.  Required permissions: kms:GetParametersForImport (key policy)  Related operations:     ImportKeyMaterial     DeleteImportedKeyMaterial     Eventual consistency: The KMS API follows an eventual consistency model. For more information, see KMS eventual consistency.
    */
   getParametersForImport(callback?: (err: AWSError, data: KMS.Types.GetParametersForImportResponse) => void): Request<KMS.Types.GetParametersForImportResponse, AWSError>;
   /**
@@ -430,7 +430,7 @@ declare class KMS extends Service {
 }
 declare namespace KMS {
   export type AWSAccountIdType = string;
-  export type AlgorithmSpec = "RSAES_PKCS1_V1_5"|"RSAES_OAEP_SHA_1"|"RSAES_OAEP_SHA_256"|"RSA_AES_KEY_WRAP_SHA_1"|"RSA_AES_KEY_WRAP_SHA_256"|string;
+  export type AlgorithmSpec = "RSAES_PKCS1_V1_5"|"RSAES_OAEP_SHA_1"|"RSAES_OAEP_SHA_256"|"RSA_AES_KEY_WRAP_SHA_1"|"RSA_AES_KEY_WRAP_SHA_256"|"SM2PKE"|string;
   export type AliasList = AliasListEntry[];
   export interface AliasListEntry {
     /**
@@ -1171,11 +1171,11 @@ declare namespace KMS {
      */
     KeyId: KeyIdType;
     /**
-     * The algorithm you will use with the RSA public key (PublicKey) in the response to protect your key material during import. For more information, see Select a wrapping algorithm in the Key Management Service Developer Guide. For RSA_AES wrapping algorithms, you encrypt your key material with an AES key that you generate, then encrypt your AES key with the RSA public key from KMS. For RSAES wrapping algorithms, you encrypt your key material directly with the RSA public key from KMS. The wrapping algorithms that you can use depend on the type of key material that you are importing. To import an RSA private key, you must use an RSA_AES wrapping algorithm.    RSA_AES_KEY_WRAP_SHA_256 — Supported for wrapping RSA and ECC key material.    RSA_AES_KEY_WRAP_SHA_1 — Supported for wrapping RSA and ECC key material.    RSAES_OAEP_SHA_256 — Supported for all types of key material, except RSA key material (private key). You cannot use the RSAES_OAEP_SHA_256 wrapping algorithm with the RSA_2048 wrapping key spec to wrap ECC_NIST_P521 key material.    RSAES_OAEP_SHA_1 — Supported for all types of key material, except RSA key material (private key). You cannot use the RSAES_OAEP_SHA_1 wrapping algorithm with the RSA_2048 wrapping key spec to wrap ECC_NIST_P521 key material.    RSAES_PKCS1_V1_5 (Deprecated) — As of October 10, 2023, KMS does not support the RSAES_PKCS1_V1_5 wrapping algorithm.  
+     * The algorithm you will use with the asymmetric public key (PublicKey) in the response to protect your key material during import. For more information, see Select a wrapping algorithm in the Key Management Service Developer Guide. For RSA_AES wrapping algorithms, you encrypt your key material with an AES key that you generate, then encrypt your AES key with the RSA public key from KMS. For RSAES wrapping algorithms, you encrypt your key material directly with the RSA public key from KMS. For SM2PKE wrapping algorithms, you encrypt your key material directly with the SM2 public key from KMS. The wrapping algorithms that you can use depend on the type of key material that you are importing. To import an RSA private key, you must use an RSA_AES wrapping algorithm, except in China Regions, where you must use the SM2PKE wrapping algorithm to import an RSA private key. The SM2PKE wrapping algorithm is available only in China Regions. The RSA_AES_KEY_WRAP_SHA_256 and RSA_AES_KEY_WRAP_SHA_1 wrapping algorithms are not supported in China Regions.    RSA_AES_KEY_WRAP_SHA_256 — Supported for wrapping RSA and ECC key material.    RSA_AES_KEY_WRAP_SHA_1 — Supported for wrapping RSA and ECC key material.    RSAES_OAEP_SHA_256 — Supported for all types of key material, except RSA key material (private key). You cannot use the RSAES_OAEP_SHA_256 wrapping algorithm with the RSA_2048 wrapping key spec to wrap ECC_NIST_P521 key material.    RSAES_OAEP_SHA_1 — Supported for all types of key material, except RSA key material (private key). You cannot use the RSAES_OAEP_SHA_1 wrapping algorithm with the RSA_2048 wrapping key spec to wrap ECC_NIST_P521 key material.    RSAES_PKCS1_V1_5 (Deprecated) — As of October 10, 2023, KMS does not support the RSAES_PKCS1_V1_5 wrapping algorithm.    SM2PKE (China Regions only) — supported for wrapping RSA, ECC, and SM2 key material.  
      */
     WrappingAlgorithm: AlgorithmSpec;
     /**
-     * The type of RSA public key to return in the response. You will use this wrapping key with the specified wrapping algorithm to protect your key material during import.  Use the longest RSA wrapping key that is practical.  You cannot use an RSA_2048 public key to directly wrap an ECC_NIST_P521 private key. Instead, use an RSA_AES wrapping algorithm or choose a longer RSA public key.
+     * The type of public key to return in the response. You will use this wrapping key with the specified wrapping algorithm to protect your key material during import.  Use the longest wrapping key that is practical.  You cannot use an RSA_2048 public key to directly wrap an ECC_NIST_P521 private key. Instead, use an RSA_AES wrapping algorithm or choose a longer RSA public key. The SM2 wrapping key spec is available only in China Regions.
      */
     WrappingKeySpec: WrappingKeySpec;
   }
@@ -2108,7 +2108,7 @@ declare namespace KMS {
      */
     SigningAlgorithm?: SigningAlgorithmSpec;
   }
-  export type WrappingKeySpec = "RSA_2048"|"RSA_3072"|"RSA_4096"|string;
+  export type WrappingKeySpec = "RSA_2048"|"RSA_3072"|"RSA_4096"|"SM2"|string;
   export interface XksKeyConfigurationType {
     /**
      * The ID of the external key in its external key manager. This is the ID that the external key store proxy uses to identify the external key.

package/clients/opensearch.d.ts

@@ -1321,9 +1321,14 @@ declare namespace OpenSearch {
      * A description of the data source.
      */
     Description?: DataSourceDescription;
+    /**
+     * The status of the data source.
+     */
+    Status?: DataSourceStatus;
   }
   export type DataSourceList = DataSourceDetails[];
   export type DataSourceName = string;
+  export type DataSourceStatus = "ACTIVE"|"DISABLED"|string;
   export interface DataSourceType {
     /**
      * An Amazon S3 data source.
@@ -2052,7 +2057,7 @@ declare namespace OpenSearch {
      */
     Endpoints?: EndpointsMap;
     /**
-     * The DualStack Hosted Zone Id for the domain. 
+     * The dual stack hosted zone ID for the domain. 
      */
     DomainEndpointV2HostedZoneId?: HostedZoneId;
     /**
@@ -2318,6 +2323,10 @@ declare namespace OpenSearch {
      * A description of the data source.
      */
     Description?: DataSourceDescription;
+    /**
+     * The status of the data source response.
+     */
+    Status?: DataSourceStatus;
   }
   export interface GetDomainMaintenanceStatusRequest {
     /**
@@ -3579,6 +3588,10 @@ declare namespace OpenSearch {
      * A new description of the data source.
      */
     Description?: DataSourceDescription;
+    /**
+     * The status of the data source update request.
+     */
+    Status?: DataSourceStatus;
   }
   export interface UpdateDataSourceResponse {
     /**