p6-cdk-s3-protector 0.0.41 → 0.0.43

package/.jsii

@@ -8,9 +8,9 @@
     ]
   },
   "bundled": {
-    "@aws-sdk/client-s3": "^3.927.0",
-    "@aws-sdk/client-s3-control": "^3.927.0",
-    "@aws-sdk/client-sts": "^3.927.0",
+    "@aws-sdk/client-s3": "^3.928.0",
+    "@aws-sdk/client-s3-control": "^3.928.0",
+    "@aws-sdk/client-sts": "^3.928.0",
     "@types/aws-lambda": "^8.10.157",
     "aws-sdk": "^2.1692.0",
     "cdk-iam-floyd": "^0.729.0",
@@ -3227,6 +3227,19 @@
             }
           }
         },
+        "aws-cdk-lib.aws_rtbfabric": {
+          "targets": {
+            "dotnet": {
+              "package": "Amazon.CDK.AWS.RTBFabric"
+            },
+            "java": {
+              "package": "software.amazon.awscdk.services.rtbfabric"
+            },
+            "python": {
+              "module": "aws_cdk.aws_rtbfabric"
+            }
+          }
+        },
         "aws-cdk-lib.aws_rum": {
           "targets": {
             "dotnet": {
@@ -3344,6 +3357,19 @@
             }
           }
         },
+        "aws-cdk-lib.aws_s3vectors": {
+          "targets": {
+            "dotnet": {
+              "package": "Amazon.CDK.AWS.S3Vectors"
+            },
+            "java": {
+              "package": "software.amazon.awscdk.services.s3vectors"
+            },
+            "python": {
+              "module": "aws_cdk.aws_s3vectors"
+            }
+          }
+        },
         "aws-cdk-lib.aws_sagemaker": {
           "targets": {
             "dotnet": {
@@ -4089,7 +4115,7 @@
   },
   "description": "AWS CDK: A Real-Time S3 Protector",
   "homepage": "https://github.com/p6m7g8/p6-cdk-s3-protector.git",
-  "jsiiVersion": "5.9.11 (build e3d2007)",
+  "jsiiVersion": "5.9.13 (build cc3e9a8)",
   "keywords": [
     "aws",
     "cdk",
@@ -4172,6 +4198,6 @@
       "symbolId": "src/p6cdks3protector:P6CDKS3Protector"
     }
   },
-  "version": "0.0.41",
-  "fingerprint": "8b19e4PTJeu6N10KROY1S3dWRfT3cmcf1asqkOjEBzk="
+  "version": "0.0.43",
+  "fingerprint": "PnWZBlIFJnNu7qnI2IC5/hhqJPby9gc9R1mUS+zgyYo="
 }

package/lib/p6cdks3protector.js

@@ -41,7 +41,7 @@ const lambdajs = __importStar(require("aws-cdk-lib/aws-lambda-nodejs"));
 const cr = __importStar(require("aws-cdk-lib/custom-resources"));
 const floyd = __importStar(require("cdk-iam-floyd"));
 class P6CDKS3Protector extends cdk.Resource {
-    static [JSII_RTTI_SYMBOL_1] = { fqn: "p6-cdk-s3-protector.P6CDKS3Protector", version: "0.0.41" };
+    static [JSII_RTTI_SYMBOL_1] = { fqn: "p6-cdk-s3-protector.P6CDKS3Protector", version: "0.0.43" };
     constructor(scope, id) {
         super(scope, id);
         const policy = new floyd.Statement.S3().allow().toPutObject().toPutObjectAcl();

package/node_modules/@aws-sdk/client-s3/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-s3",
   "description": "AWS SDK for JavaScript S3 Client for Node.js, Browser and React Native",
-  "version": "3.927.0",
+  "version": "3.928.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-s3",
@@ -29,24 +29,24 @@
     "@aws-crypto/sha1-browser": "5.2.0",
     "@aws-crypto/sha256-browser": "5.2.0",
     "@aws-crypto/sha256-js": "5.2.0",
-    "@aws-sdk/core": "3.927.0",
-    "@aws-sdk/credential-provider-node": "3.927.0",
+    "@aws-sdk/core": "3.928.0",
+    "@aws-sdk/credential-provider-node": "3.928.0",
     "@aws-sdk/middleware-bucket-endpoint": "3.922.0",
     "@aws-sdk/middleware-expect-continue": "3.922.0",
-    "@aws-sdk/middleware-flexible-checksums": "3.927.0",
+    "@aws-sdk/middleware-flexible-checksums": "3.928.0",
     "@aws-sdk/middleware-host-header": "3.922.0",
     "@aws-sdk/middleware-location-constraint": "3.922.0",
     "@aws-sdk/middleware-logger": "3.922.0",
     "@aws-sdk/middleware-recursion-detection": "3.922.0",
-    "@aws-sdk/middleware-sdk-s3": "3.927.0",
+    "@aws-sdk/middleware-sdk-s3": "3.928.0",
     "@aws-sdk/middleware-ssec": "3.922.0",
-    "@aws-sdk/middleware-user-agent": "3.927.0",
+    "@aws-sdk/middleware-user-agent": "3.928.0",
     "@aws-sdk/region-config-resolver": "3.925.0",
-    "@aws-sdk/signature-v4-multi-region": "3.927.0",
+    "@aws-sdk/signature-v4-multi-region": "3.928.0",
     "@aws-sdk/types": "3.922.0",
     "@aws-sdk/util-endpoints": "3.922.0",
     "@aws-sdk/util-user-agent-browser": "3.922.0",
-    "@aws-sdk/util-user-agent-node": "3.927.0",
+    "@aws-sdk/util-user-agent-node": "3.928.0",
     "@aws-sdk/xml-builder": "3.921.0",
     "@smithy/config-resolver": "^4.4.2",
     "@smithy/core": "^3.17.2",
@@ -85,7 +85,7 @@
     "tslib": "^2.6.2"
   },
   "devDependencies": {
-    "@aws-sdk/signature-v4-crt": "3.927.0",
+    "@aws-sdk/signature-v4-crt": "3.928.0",
     "@tsconfig/node18": "18.2.4",
     "@types/node": "^18.19.69",
     "concurrently": "7.0.0",

package/node_modules/@aws-sdk/client-s3-control/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-s3-control",
   "description": "AWS SDK for JavaScript S3 Control Client for Node.js, Browser and React Native",
-  "version": "3.927.0",
+  "version": "3.928.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-s3-control",
@@ -22,19 +22,19 @@
   "dependencies": {
     "@aws-crypto/sha256-browser": "5.2.0",
     "@aws-crypto/sha256-js": "5.2.0",
-    "@aws-sdk/core": "3.927.0",
-    "@aws-sdk/credential-provider-node": "3.927.0",
+    "@aws-sdk/core": "3.928.0",
+    "@aws-sdk/credential-provider-node": "3.928.0",
     "@aws-sdk/middleware-bucket-endpoint": "3.922.0",
     "@aws-sdk/middleware-host-header": "3.922.0",
     "@aws-sdk/middleware-logger": "3.922.0",
     "@aws-sdk/middleware-recursion-detection": "3.922.0",
     "@aws-sdk/middleware-sdk-s3-control": "3.922.0",
-    "@aws-sdk/middleware-user-agent": "3.927.0",
+    "@aws-sdk/middleware-user-agent": "3.928.0",
     "@aws-sdk/region-config-resolver": "3.925.0",
     "@aws-sdk/types": "3.922.0",
     "@aws-sdk/util-endpoints": "3.922.0",
     "@aws-sdk/util-user-agent-browser": "3.922.0",
-    "@aws-sdk/util-user-agent-node": "3.927.0",
+    "@aws-sdk/util-user-agent-node": "3.928.0",
     "@aws-sdk/xml-builder": "3.921.0",
     "@smithy/config-resolver": "^4.4.2",
     "@smithy/core": "^3.17.2",

package/node_modules/@aws-sdk/client-sso/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@aws-sdk/client-sso",
   "description": "AWS SDK for JavaScript Sso Client for Node.js, Browser and React Native",
-  "version": "3.927.0",
+  "version": "3.928.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "node ../../scripts/compilation/inline client-sso",
@@ -20,16 +20,16 @@
   "dependencies": {
     "@aws-crypto/sha256-browser": "5.2.0",
     "@aws-crypto/sha256-js": "5.2.0",
-    "@aws-sdk/core": "3.927.0",
+    "@aws-sdk/core": "3.928.0",
     "@aws-sdk/middleware-host-header": "3.922.0",
     "@aws-sdk/middleware-logger": "3.922.0",
     "@aws-sdk/middleware-recursion-detection": "3.922.0",
-    "@aws-sdk/middleware-user-agent": "3.927.0",
+    "@aws-sdk/middleware-user-agent": "3.928.0",
     "@aws-sdk/region-config-resolver": "3.925.0",
     "@aws-sdk/types": "3.922.0",
     "@aws-sdk/util-endpoints": "3.922.0",
     "@aws-sdk/util-user-agent-browser": "3.922.0",
-    "@aws-sdk/util-user-agent-node": "3.927.0",
+    "@aws-sdk/util-user-agent-node": "3.928.0",
     "@smithy/config-resolver": "^4.4.2",
     "@smithy/core": "^3.17.2",
     "@smithy/fetch-http-handler": "^5.3.5",

package/node_modules/@aws-sdk/client-sts/README.md

@@ -262,6 +262,14 @@ GetCallerIdentity
 
 [Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/sts/command/GetCallerIdentityCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-sts/Interface/GetCallerIdentityCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-sts/Interface/GetCallerIdentityCommandOutput/)
 
+</details>
+<details>
+<summary>
+GetDelegatedAccessToken
+</summary>
+
+[Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/sts/command/GetDelegatedAccessTokenCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-sts/Interface/GetDelegatedAccessTokenCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-sts/Interface/GetDelegatedAccessTokenCommandOutput/)
+
 </details>
 <details>
 <summary>

package/node_modules/@aws-sdk/client-sts/dist-cjs/index.js

@@ -113,6 +113,18 @@ class InvalidAuthorizationMessageException extends STSServiceException {
         Object.setPrototypeOf(this, InvalidAuthorizationMessageException.prototype);
     }
 }
+class ExpiredTradeInTokenException extends STSServiceException {
+    name = "ExpiredTradeInTokenException";
+    $fault = "client";
+    constructor(opts) {
+        super({
+            name: "ExpiredTradeInTokenException",
+            $fault: "client",
+            ...opts,
+        });
+        Object.setPrototypeOf(this, ExpiredTradeInTokenException.prototype);
+    }
+}
 const CredentialsFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.SecretAccessKey && { SecretAccessKey: smithyClient.SENSITIVE_STRING }),
@@ -141,6 +153,14 @@ const AssumeRootResponseFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.Credentials && { Credentials: CredentialsFilterSensitiveLog(obj.Credentials) }),
 });
+const GetDelegatedAccessTokenRequestFilterSensitiveLog = (obj) => ({
+    ...obj,
+    ...(obj.TradeInToken && { TradeInToken: smithyClient.SENSITIVE_STRING }),
+});
+const GetDelegatedAccessTokenResponseFilterSensitiveLog = (obj) => ({
+    ...obj,
+    ...(obj.Credentials && { Credentials: CredentialsFilterSensitiveLog(obj.Credentials) }),
+});
 const GetFederationTokenResponseFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.Credentials && { Credentials: CredentialsFilterSensitiveLog(obj.Credentials) }),
@@ -220,6 +240,16 @@ const se_GetCallerIdentityCommand = async (input, context) => {
     });
     return buildHttpRpcRequest(context, headers, "/", undefined, body);
 };
+const se_GetDelegatedAccessTokenCommand = async (input, context) => {
+    const headers = SHARED_HEADERS;
+    let body;
+    body = buildFormUrlencodedString({
+        ...se_GetDelegatedAccessTokenRequest(input),
+        [_A]: _GDAT,
+        [_V]: _,
+    });
+    return buildHttpRpcRequest(context, headers, "/", undefined, body);
+};
 const se_GetFederationTokenCommand = async (input, context) => {
     const headers = SHARED_HEADERS;
     let body;
@@ -331,6 +361,19 @@ const de_GetCallerIdentityCommand = async (output, context) => {
     };
     return response;
 };
+const de_GetDelegatedAccessTokenCommand = async (output, context) => {
+    if (output.statusCode >= 300) {
+        return de_CommandError(output, context);
+    }
+    const data = await core.parseXmlBody(output.body, context);
+    let contents = {};
+    contents = de_GetDelegatedAccessTokenResponse(data.GetDelegatedAccessTokenResult);
+    const response = {
+        $metadata: deserializeMetadata(output),
+        ...contents,
+    };
+    return response;
+};
 const de_GetFederationTokenCommand = async (output, context) => {
     if (output.statusCode >= 300) {
         return de_CommandError(output, context);
@@ -388,6 +431,9 @@ const de_CommandError = async (output, context) => {
         case "InvalidAuthorizationMessageException":
         case "com.amazonaws.sts#InvalidAuthorizationMessageException":
             throw await de_InvalidAuthorizationMessageExceptionRes(parsedOutput);
+        case "ExpiredTradeInTokenException":
+        case "com.amazonaws.sts#ExpiredTradeInTokenException":
+            throw await de_ExpiredTradeInTokenExceptionRes(parsedOutput);
         default:
             const parsedBody = parsedOutput.body;
             return throwDefaultError({
@@ -406,6 +452,15 @@ const de_ExpiredTokenExceptionRes = async (parsedOutput, context) => {
     });
     return smithyClient.decorateServiceException(exception, body);
 };
+const de_ExpiredTradeInTokenExceptionRes = async (parsedOutput, context) => {
+    const body = parsedOutput.body;
+    const deserialized = de_ExpiredTradeInTokenException(body.Error);
+    const exception = new ExpiredTradeInTokenException({
+        $metadata: deserializeMetadata(parsedOutput),
+        ...deserialized,
+    });
+    return smithyClient.decorateServiceException(exception, body);
+};
 const de_IDPCommunicationErrorExceptionRes = async (parsedOutput, context) => {
     const body = parsedOutput.body;
     const deserialized = de_IDPCommunicationErrorException(body.Error);
@@ -633,6 +688,13 @@ const se_GetCallerIdentityRequest = (input, context) => {
     const entries = {};
     return entries;
 };
+const se_GetDelegatedAccessTokenRequest = (input, context) => {
+    const entries = {};
+    if (input[_TIT] != null) {
+        entries[_TIT] = input[_TIT];
+    }
+    return entries;
+};
 const se_GetFederationTokenRequest = (input, context) => {
     const entries = {};
     if (input[_N] != null) {
@@ -885,6 +947,13 @@ const de_ExpiredTokenException = (output, context) => {
     }
     return contents;
 };
+const de_ExpiredTradeInTokenException = (output, context) => {
+    const contents = {};
+    if (output[_m] != null) {
+        contents[_m] = smithyClient.expectString(output[_m]);
+    }
+    return contents;
+};
 const de_FederatedUser = (output, context) => {
     const contents = {};
     if (output[_FUI] != null) {
@@ -915,6 +984,19 @@ const de_GetCallerIdentityResponse = (output, context) => {
     }
     return contents;
 };
+const de_GetDelegatedAccessTokenResponse = (output, context) => {
+    const contents = {};
+    if (output[_C] != null) {
+        contents[_C] = de_Credentials(output[_C]);
+    }
+    if (output[_PPS] != null) {
+        contents[_PPS] = smithyClient.strictParseInt32(output[_PPS]);
+    }
+    if (output[_AP] != null) {
+        contents[_AP] = smithyClient.expectString(output[_AP]);
+    }
+    return contents;
+};
 const de_GetFederationTokenResponse = (output, context) => {
     const contents = {};
     if (output[_C] != null) {
@@ -1012,6 +1094,7 @@ const SHARED_HEADERS = {
 const _ = "2011-06-15";
 const _A = "Action";
 const _AKI = "AccessKeyId";
+const _AP = "AssumedPrincipal";
 const _AR = "AssumeRole";
 const _ARI = "AssumedRoleId";
 const _ARU = "AssumedRoleUser";
@@ -1033,6 +1116,7 @@ const _FU = "FederatedUser";
 const _FUI = "FederatedUserId";
 const _GAKI = "GetAccessKeyInfo";
 const _GCI = "GetCallerIdentity";
+const _GDAT = "GetDelegatedAccessToken";
 const _GFT = "GetFederationToken";
 const _GST = "GetSessionToken";
 const _I = "Issuer";
@@ -1059,6 +1143,7 @@ const _ST = "SubjectType";
 const _STe = "SessionToken";
 const _T = "Tags";
 const _TC = "TokenCode";
+const _TIT = "TradeInToken";
 const _TP = "TargetPrincipal";
 const _TPA = "TaskPolicyArn";
 const _TTK = "TransitiveTagKeys";
@@ -1199,6 +1284,23 @@ class GetCallerIdentityCommand extends smithyClient.Command
     .build() {
 }
 
+class GetDelegatedAccessTokenCommand extends smithyClient.Command
+    .classBuilder()
+    .ep(EndpointParameters.commonParams)
+    .m(function (Command, cs, config, o) {
+    return [
+        middlewareSerde.getSerdePlugin(config, this.serialize, this.deserialize),
+        middlewareEndpoint.getEndpointPlugin(config, Command.getEndpointParameterInstructions()),
+    ];
+})
+    .s("AWSSecurityTokenServiceV20110615", "GetDelegatedAccessToken", {})
+    .n("STSClient", "GetDelegatedAccessTokenCommand")
+    .f(GetDelegatedAccessTokenRequestFilterSensitiveLog, GetDelegatedAccessTokenResponseFilterSensitiveLog)
+    .ser(se_GetDelegatedAccessTokenCommand)
+    .de(de_GetDelegatedAccessTokenCommand)
+    .build() {
+}
+
 class GetFederationTokenCommand extends smithyClient.Command
     .classBuilder()
     .ep(EndpointParameters.commonParams)
@@ -1241,6 +1343,7 @@ const commands = {
     DecodeAuthorizationMessageCommand,
     GetAccessKeyInfoCommand,
     GetCallerIdentityCommand,
+    GetDelegatedAccessTokenCommand,
     GetFederationTokenCommand,
     GetSessionTokenCommand,
 };
@@ -1384,8 +1487,12 @@ exports.AssumeRootResponseFilterSensitiveLog = AssumeRootResponseFilterSensitive
 exports.CredentialsFilterSensitiveLog = CredentialsFilterSensitiveLog;
 exports.DecodeAuthorizationMessageCommand = DecodeAuthorizationMessageCommand;
 exports.ExpiredTokenException = ExpiredTokenException;
+exports.ExpiredTradeInTokenException = ExpiredTradeInTokenException;
 exports.GetAccessKeyInfoCommand = GetAccessKeyInfoCommand;
 exports.GetCallerIdentityCommand = GetCallerIdentityCommand;
+exports.GetDelegatedAccessTokenCommand = GetDelegatedAccessTokenCommand;
+exports.GetDelegatedAccessTokenRequestFilterSensitiveLog = GetDelegatedAccessTokenRequestFilterSensitiveLog;
+exports.GetDelegatedAccessTokenResponseFilterSensitiveLog = GetDelegatedAccessTokenResponseFilterSensitiveLog;
 exports.GetFederationTokenCommand = GetFederationTokenCommand;
 exports.GetFederationTokenResponseFilterSensitiveLog = GetFederationTokenResponseFilterSensitiveLog;
 exports.GetSessionTokenCommand = GetSessionTokenCommand;

package/node_modules/@aws-sdk/client-sts/dist-es/STS.js

@@ -6,6 +6,7 @@ import { AssumeRootCommand } from "./commands/AssumeRootCommand";
 import { DecodeAuthorizationMessageCommand, } from "./commands/DecodeAuthorizationMessageCommand";
 import { GetAccessKeyInfoCommand, } from "./commands/GetAccessKeyInfoCommand";
 import { GetCallerIdentityCommand, } from "./commands/GetCallerIdentityCommand";
+import { GetDelegatedAccessTokenCommand, } from "./commands/GetDelegatedAccessTokenCommand";
 import { GetFederationTokenCommand, } from "./commands/GetFederationTokenCommand";
 import { GetSessionTokenCommand, } from "./commands/GetSessionTokenCommand";
 import { STSClient } from "./STSClient";
@@ -17,6 +18,7 @@ const commands = {
     DecodeAuthorizationMessageCommand,
     GetAccessKeyInfoCommand,
     GetCallerIdentityCommand,
+    GetDelegatedAccessTokenCommand,
     GetFederationTokenCommand,
     GetSessionTokenCommand,
 };

package/node_modules/@aws-sdk/client-sts/dist-es/commands/GetDelegatedAccessTokenCommand.js

@@ -0,0 +1,23 @@
+import { getEndpointPlugin } from "@smithy/middleware-endpoint";
+import { getSerdePlugin } from "@smithy/middleware-serde";
+import { Command as $Command } from "@smithy/smithy-client";
+import { commonParams } from "../endpoint/EndpointParameters";
+import { GetDelegatedAccessTokenRequestFilterSensitiveLog, GetDelegatedAccessTokenResponseFilterSensitiveLog, } from "../models/models_0";
+import { de_GetDelegatedAccessTokenCommand, se_GetDelegatedAccessTokenCommand } from "../protocols/Aws_query";
+export { $Command };
+export class GetDelegatedAccessTokenCommand extends $Command
+    .classBuilder()
+    .ep(commonParams)
+    .m(function (Command, cs, config, o) {
+    return [
+        getSerdePlugin(config, this.serialize, this.deserialize),
+        getEndpointPlugin(config, Command.getEndpointParameterInstructions()),
+    ];
+})
+    .s("AWSSecurityTokenServiceV20110615", "GetDelegatedAccessToken", {})
+    .n("STSClient", "GetDelegatedAccessTokenCommand")
+    .f(GetDelegatedAccessTokenRequestFilterSensitiveLog, GetDelegatedAccessTokenResponseFilterSensitiveLog)
+    .ser(se_GetDelegatedAccessTokenCommand)
+    .de(de_GetDelegatedAccessTokenCommand)
+    .build() {
+}

package/node_modules/@aws-sdk/client-sts/dist-es/commands/index.js

@@ -5,5 +5,6 @@ export * from "./AssumeRootCommand";
 export * from "./DecodeAuthorizationMessageCommand";
 export * from "./GetAccessKeyInfoCommand";
 export * from "./GetCallerIdentityCommand";
+export * from "./GetDelegatedAccessTokenCommand";
 export * from "./GetFederationTokenCommand";
 export * from "./GetSessionTokenCommand";

package/node_modules/@aws-sdk/client-sts/dist-es/models/models_0.js

@@ -96,6 +96,18 @@ export class InvalidAuthorizationMessageException extends __BaseException {
         Object.setPrototypeOf(this, InvalidAuthorizationMessageException.prototype);
     }
 }
+export class ExpiredTradeInTokenException extends __BaseException {
+    name = "ExpiredTradeInTokenException";
+    $fault = "client";
+    constructor(opts) {
+        super({
+            name: "ExpiredTradeInTokenException",
+            $fault: "client",
+            ...opts,
+        });
+        Object.setPrototypeOf(this, ExpiredTradeInTokenException.prototype);
+    }
+}
 export const CredentialsFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.SecretAccessKey && { SecretAccessKey: SENSITIVE_STRING }),
@@ -124,6 +136,14 @@ export const AssumeRootResponseFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.Credentials && { Credentials: CredentialsFilterSensitiveLog(obj.Credentials) }),
 });
+export const GetDelegatedAccessTokenRequestFilterSensitiveLog = (obj) => ({
+    ...obj,
+    ...(obj.TradeInToken && { TradeInToken: SENSITIVE_STRING }),
+});
+export const GetDelegatedAccessTokenResponseFilterSensitiveLog = (obj) => ({
+    ...obj,
+    ...(obj.Credentials && { Credentials: CredentialsFilterSensitiveLog(obj.Credentials) }),
+});
 export const GetFederationTokenResponseFilterSensitiveLog = (obj) => ({
     ...obj,
     ...(obj.Credentials && { Credentials: CredentialsFilterSensitiveLog(obj.Credentials) }),

package/node_modules/@aws-sdk/client-sts/dist-es/protocols/Aws_query.js

@@ -1,7 +1,7 @@
 import { parseXmlBody as parseBody, parseXmlErrorBody as parseErrorBody } from "@aws-sdk/core";
 import { HttpRequest as __HttpRequest } from "@smithy/protocol-http";
 import { collectBody, decorateServiceException as __decorateServiceException, expectNonNull as __expectNonNull, expectString as __expectString, extendedEncodeURIComponent as __extendedEncodeURIComponent, parseRfc3339DateTimeWithOffset as __parseRfc3339DateTimeWithOffset, strictParseInt32 as __strictParseInt32, withBaseException, } from "@smithy/smithy-client";
-import { ExpiredTokenException, IDPCommunicationErrorException, IDPRejectedClaimException, InvalidAuthorizationMessageException, InvalidIdentityTokenException, MalformedPolicyDocumentException, PackedPolicyTooLargeException, RegionDisabledException, } from "../models/models_0";
+import { ExpiredTokenException, ExpiredTradeInTokenException, IDPCommunicationErrorException, IDPRejectedClaimException, InvalidAuthorizationMessageException, InvalidIdentityTokenException, MalformedPolicyDocumentException, PackedPolicyTooLargeException, RegionDisabledException, } from "../models/models_0";
 import { STSServiceException as __BaseException } from "../models/STSServiceException";
 export const se_AssumeRoleCommand = async (input, context) => {
     const headers = SHARED_HEADERS;
@@ -73,6 +73,16 @@ export const se_GetCallerIdentityCommand = async (input, context) => {
     });
     return buildHttpRpcRequest(context, headers, "/", undefined, body);
 };
+export const se_GetDelegatedAccessTokenCommand = async (input, context) => {
+    const headers = SHARED_HEADERS;
+    let body;
+    body = buildFormUrlencodedString({
+        ...se_GetDelegatedAccessTokenRequest(input, context),
+        [_A]: _GDAT,
+        [_V]: _,
+    });
+    return buildHttpRpcRequest(context, headers, "/", undefined, body);
+};
 export const se_GetFederationTokenCommand = async (input, context) => {
     const headers = SHARED_HEADERS;
     let body;
@@ -184,6 +194,19 @@ export const de_GetCallerIdentityCommand = async (output, context) => {
     };
     return response;
 };
+export const de_GetDelegatedAccessTokenCommand = async (output, context) => {
+    if (output.statusCode >= 300) {
+        return de_CommandError(output, context);
+    }
+    const data = await parseBody(output.body, context);
+    let contents = {};
+    contents = de_GetDelegatedAccessTokenResponse(data.GetDelegatedAccessTokenResult, context);
+    const response = {
+        $metadata: deserializeMetadata(output),
+        ...contents,
+    };
+    return response;
+};
 export const de_GetFederationTokenCommand = async (output, context) => {
     if (output.statusCode >= 300) {
         return de_CommandError(output, context);
@@ -241,6 +264,9 @@ const de_CommandError = async (output, context) => {
         case "InvalidAuthorizationMessageException":
         case "com.amazonaws.sts#InvalidAuthorizationMessageException":
             throw await de_InvalidAuthorizationMessageExceptionRes(parsedOutput, context);
+        case "ExpiredTradeInTokenException":
+        case "com.amazonaws.sts#ExpiredTradeInTokenException":
+            throw await de_ExpiredTradeInTokenExceptionRes(parsedOutput, context);
         default:
             const parsedBody = parsedOutput.body;
             return throwDefaultError({
@@ -259,6 +285,15 @@ const de_ExpiredTokenExceptionRes = async (parsedOutput, context) => {
     });
     return __decorateServiceException(exception, body);
 };
+const de_ExpiredTradeInTokenExceptionRes = async (parsedOutput, context) => {
+    const body = parsedOutput.body;
+    const deserialized = de_ExpiredTradeInTokenException(body.Error, context);
+    const exception = new ExpiredTradeInTokenException({
+        $metadata: deserializeMetadata(parsedOutput),
+        ...deserialized,
+    });
+    return __decorateServiceException(exception, body);
+};
 const de_IDPCommunicationErrorExceptionRes = async (parsedOutput, context) => {
     const body = parsedOutput.body;
     const deserialized = de_IDPCommunicationErrorException(body.Error, context);
@@ -486,6 +521,13 @@ const se_GetCallerIdentityRequest = (input, context) => {
     const entries = {};
     return entries;
 };
+const se_GetDelegatedAccessTokenRequest = (input, context) => {
+    const entries = {};
+    if (input[_TIT] != null) {
+        entries[_TIT] = input[_TIT];
+    }
+    return entries;
+};
 const se_GetFederationTokenRequest = (input, context) => {
     const entries = {};
     if (input[_N] != null) {
@@ -738,6 +780,13 @@ const de_ExpiredTokenException = (output, context) => {
     }
     return contents;
 };
+const de_ExpiredTradeInTokenException = (output, context) => {
+    const contents = {};
+    if (output[_m] != null) {
+        contents[_m] = __expectString(output[_m]);
+    }
+    return contents;
+};
 const de_FederatedUser = (output, context) => {
     const contents = {};
     if (output[_FUI] != null) {
@@ -768,6 +817,19 @@ const de_GetCallerIdentityResponse = (output, context) => {
     }
     return contents;
 };
+const de_GetDelegatedAccessTokenResponse = (output, context) => {
+    const contents = {};
+    if (output[_C] != null) {
+        contents[_C] = de_Credentials(output[_C], context);
+    }
+    if (output[_PPS] != null) {
+        contents[_PPS] = __strictParseInt32(output[_PPS]);
+    }
+    if (output[_AP] != null) {
+        contents[_AP] = __expectString(output[_AP]);
+    }
+    return contents;
+};
 const de_GetFederationTokenResponse = (output, context) => {
     const contents = {};
     if (output[_C] != null) {
@@ -869,6 +931,7 @@ const SHARED_HEADERS = {
 const _ = "2011-06-15";
 const _A = "Action";
 const _AKI = "AccessKeyId";
+const _AP = "AssumedPrincipal";
 const _AR = "AssumeRole";
 const _ARI = "AssumedRoleId";
 const _ARU = "AssumedRoleUser";
@@ -890,6 +953,7 @@ const _FU = "FederatedUser";
 const _FUI = "FederatedUserId";
 const _GAKI = "GetAccessKeyInfo";
 const _GCI = "GetCallerIdentity";
+const _GDAT = "GetDelegatedAccessToken";
 const _GFT = "GetFederationToken";
 const _GST = "GetSessionToken";
 const _I = "Issuer";
@@ -916,6 +980,7 @@ const _ST = "SubjectType";
 const _STe = "SessionToken";
 const _T = "Tags";
 const _TC = "TokenCode";
+const _TIT = "TradeInToken";
 const _TP = "TargetPrincipal";
 const _TPA = "TaskPolicyArn";
 const _TTK = "TransitiveTagKeys";

package/node_modules/@aws-sdk/client-sts/dist-types/STS.d.ts

@@ -6,6 +6,7 @@ import { AssumeRootCommandInput, AssumeRootCommandOutput } from "./commands/Assu
 import { DecodeAuthorizationMessageCommandInput, DecodeAuthorizationMessageCommandOutput } from "./commands/DecodeAuthorizationMessageCommand";
 import { GetAccessKeyInfoCommandInput, GetAccessKeyInfoCommandOutput } from "./commands/GetAccessKeyInfoCommand";
 import { GetCallerIdentityCommandInput, GetCallerIdentityCommandOutput } from "./commands/GetCallerIdentityCommand";
+import { GetDelegatedAccessTokenCommandInput, GetDelegatedAccessTokenCommandOutput } from "./commands/GetDelegatedAccessTokenCommand";
 import { GetFederationTokenCommandInput, GetFederationTokenCommandOutput } from "./commands/GetFederationTokenCommand";
 import { GetSessionTokenCommandInput, GetSessionTokenCommandOutput } from "./commands/GetSessionTokenCommand";
 import { STSClient } from "./STSClient";
@@ -53,6 +54,12 @@ export interface STS {
     getCallerIdentity(args: GetCallerIdentityCommandInput, options?: __HttpHandlerOptions): Promise<GetCallerIdentityCommandOutput>;
     getCallerIdentity(args: GetCallerIdentityCommandInput, cb: (err: any, data?: GetCallerIdentityCommandOutput) => void): void;
     getCallerIdentity(args: GetCallerIdentityCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetCallerIdentityCommandOutput) => void): void;
+    /**
+     * @see {@link GetDelegatedAccessTokenCommand}
+     */
+    getDelegatedAccessToken(args: GetDelegatedAccessTokenCommandInput, options?: __HttpHandlerOptions): Promise<GetDelegatedAccessTokenCommandOutput>;
+    getDelegatedAccessToken(args: GetDelegatedAccessTokenCommandInput, cb: (err: any, data?: GetDelegatedAccessTokenCommandOutput) => void): void;
+    getDelegatedAccessToken(args: GetDelegatedAccessTokenCommandInput, options: __HttpHandlerOptions, cb: (err: any, data?: GetDelegatedAccessTokenCommandOutput) => void): void;
     /**
      * @see {@link GetFederationTokenCommand}
      */