aws-cdk-lib 2.95.1__py3-none-any.whl → 2.96.0__py3-none-any.whl

aws_cdk/aws_stepfunctions/__init__.py

@@ -51,7 +51,7 @@ final_status = tasks.LambdaInvoke(self, "Get Final Job Status",
 definition = submit_job.next(wait_x).next(get_status).next(sfn.Choice(self, "Job Complete?").when(sfn.Condition.string_equals("$.status", "FAILED"), job_failed).when(sfn.Condition.string_equals("$.status", "SUCCEEDED"), final_status).otherwise(wait_x))
 
 sfn.StateMachine(self, "StateMachine",
-    definition=definition,
+    definition_body=sfn.DefinitionBody.from_chainable(definition),
     timeout=Duration.minutes(5),
     comment="a super cool state machine"
 )
@@ -70,7 +70,7 @@ all states reachable from the start state:
 start_state = sfn.Pass(self, "StartState")
 
 sfn.StateMachine(self, "StateMachine",
-    definition=start_state
+    definition_body=sfn.DefinitionBody.from_chainable(start_state)
 )
 ```
 
@@ -551,7 +551,7 @@ custom = sfn.CustomState(self, "my custom task",
 chain = sfn.Chain.start(custom).next(final_status)
 
 sm = sfn.StateMachine(self, "StateMachine",
-    definition=chain,
+    definition_body=sfn.DefinitionBody.from_chainable(chain),
     timeout=Duration.seconds(30),
     comment="a super cool state machine"
 )
@@ -587,7 +587,7 @@ finish = sfn.Pass(self, "Finish")
 definition = step1.next(step2).next(choice.when(condition1, step3.next(step4).next(step5)).otherwise(step6).afterwards()).next(parallel.branch(step7.next(step8)).branch(step9.next(step10))).next(finish)
 
 sfn.StateMachine(self, "StateMachine",
-    definition=definition
+    definition_body=sfn.DefinitionBody.from_chainable(definition)
 )
 ```
 
@@ -673,7 +673,7 @@ class MyStack(Stack):
         parallel = sfn.Parallel(self, "All jobs").branch(MyJob(self, "Quick", job_flavor="quick").prefix_states()).branch(MyJob(self, "Medium", job_flavor="medium").prefix_states()).branch(MyJob(self, "Slow", job_flavor="slow").prefix_states())
 
         sfn.StateMachine(self, "MyStateMachine",
-            definition=parallel
+            definition_body=sfn.DefinitionBody.from_chainable(parallel)
         )
 ```
 
@@ -781,8 +781,10 @@ import aws_cdk.aws_logs as logs
 
 log_group = logs.LogGroup(self, "MyLogGroup")
 
+definition = sfn.Chain.start(sfn.Pass(self, "Pass"))
+
 sfn.StateMachine(self, "MyStateMachine",
-    definition=sfn.Chain.start(sfn.Pass(self, "Pass")),
+    definition_body=sfn.DefinitionBody.from_chainable(definition),
     logs=sfn.LogOptions(
         destination=log_group,
         level=sfn.LogLevel.ALL
@@ -795,8 +797,10 @@ sfn.StateMachine(self, "MyStateMachine",
 Enable X-Ray tracing for StateMachine:
 
 ```python
+definition = sfn.Chain.start(sfn.Pass(self, "Pass"))
+
 sfn.StateMachine(self, "MyStateMachine",
-    definition=sfn.Chain.start(sfn.Pass(self, "Pass")),
+    definition_body=sfn.DefinitionBody.from_chainable(definition),
     tracing_enabled=True
 )
 ```
@@ -826,7 +830,7 @@ role = iam.Role(self, "Role",
     assumed_by=iam.ServicePrincipal("lambda.amazonaws.com")
 )
 state_machine = sfn.StateMachine(self, "StateMachine",
-    definition=definition
+    definition_body=sfn.DefinitionBody.from_chainable(definition)
 )
 
 # Give role permission to start execution of state machine
@@ -847,7 +851,7 @@ role = iam.Role(self, "Role",
     assumed_by=iam.ServicePrincipal("lambda.amazonaws.com")
 )
 state_machine = sfn.StateMachine(self, "StateMachine",
-    definition=definition
+    definition_body=sfn.DefinitionBody.from_chainable(definition)
 )
 
 # Give role read access to state machine
@@ -875,7 +879,7 @@ role = iam.Role(self, "Role",
     assumed_by=iam.ServicePrincipal("lambda.amazonaws.com")
 )
 state_machine = sfn.StateMachine(self, "StateMachine",
-    definition=definition
+    definition_body=sfn.DefinitionBody.from_chainable(definition)
 )
 
 # Give role task response permissions to the state machine
@@ -898,7 +902,7 @@ role = iam.Role(self, "Role",
     assumed_by=iam.ServicePrincipal("lambda.amazonaws.com")
 )
 state_machine = sfn.StateMachine(self, "StateMachine",
-    definition=definition
+    definition_body=sfn.DefinitionBody.from_chainable(definition)
 )
 
 # Give role permission to get execution history of ALL executions for the state machine
@@ -913,7 +917,7 @@ You can add any set of permissions to a state machine by calling the `grant()` A
 # definition: sfn.IChainable
 user = iam.User(self, "MyUser")
 state_machine = sfn.StateMachine(self, "StateMachine",
-    definition=definition
+    definition_body=sfn.DefinitionBody.from_chainable(definition)
 )
 
 # give user permission to send task success to the state machine
@@ -4391,7 +4395,7 @@ class CustomStateProps:
             chain = sfn.Chain.start(custom).next(final_status)
             
             sm = sfn.StateMachine(self, "StateMachine",
-                definition=chain,
+                definition_body=sfn.DefinitionBody.from_chainable(chain),
                 timeout=Duration.seconds(30),
                 comment="a super cool state machine"
             )
@@ -4437,12 +4441,15 @@ class DefinitionBody(
 
     Example::
 
-        sfn.StateMachine(self, "StateMachineFromString",
-            definition_body=sfn.DefinitionBody.from_string("{\"StartAt\":\"Pass\",\"States\":{\"Pass\":{\"Type\":\"Pass\",\"End\":true}}}")
+        state_machine = stepfunctions.StateMachine(self, "SM",
+            definition_body=stepfunctions.DefinitionBody.from_chainable(stepfunctions.Wait(self, "Hello", time=stepfunctions.WaitTime.duration(Duration.seconds(10))))
         )
         
-        sfn.StateMachine(self, "StateMachineFromFile",
-            definition_body=sfn.DefinitionBody.from_file("./asl.json")
+        iot.TopicRule(self, "TopicRule",
+            sql=iot.IotSql.from_string_as_ver20160323("SELECT * FROM 'device/+/data'"),
+            actions=[
+                actions.StepFunctionsStateMachineAction(state_machine)
+            ]
         )
     '''
 
@@ -6634,8 +6641,10 @@ class LogLevel(enum.Enum):
         
         log_group = logs.LogGroup(self, "MyLogGroup")
         
+        definition = sfn.Chain.start(sfn.Pass(self, "Pass"))
+        
         sfn.StateMachine(self, "MyStateMachine",
-            definition=sfn.Chain.start(sfn.Pass(self, "Pass")),
+            definition_body=sfn.DefinitionBody.from_chainable(definition),
             logs=sfn.LogOptions(
                 destination=log_group,
                 level=sfn.LogLevel.ALL
@@ -6685,8 +6694,10 @@ class LogOptions:
             
             log_group = logs.LogGroup(self, "MyLogGroup")
             
+            definition = sfn.Chain.start(sfn.Pass(self, "Pass"))
+            
             sfn.StateMachine(self, "MyStateMachine",
-                definition=sfn.Chain.start(sfn.Pass(self, "Pass")),
+                definition_body=sfn.DefinitionBody.from_chainable(definition),
                 logs=sfn.LogOptions(
                     destination=log_group,
                     level=sfn.LogLevel.ALL
@@ -8775,7 +8786,7 @@ class StateMachineFragment(
                 parallel = sfn.Parallel(self, "All jobs").branch(MyJob(self, "Quick", job_flavor="quick").prefix_states()).branch(MyJob(self, "Medium", job_flavor="medium").prefix_states()).branch(MyJob(self, "Slow", job_flavor="slow").prefix_states())
         
                 sfn.StateMachine(self, "MyStateMachine",
-                    definition=parallel
+                    definition_body=sfn.DefinitionBody.from_chainable(parallel)
                 )
     '''
 
@@ -11006,7 +11017,7 @@ class Wait(
         create_message = tasks.EvaluateExpression(self, "Create message",
             # Note: this is a string inside a string.
             expression="`Now waiting ${$.waitSeconds} seconds...`",
-            runtime=lambda_.Runtime.NODEJS_16_X,
+            runtime=lambda_.Runtime.NODEJS_LATEST,
             result_path="$.message"
         )
         
@@ -11099,7 +11110,7 @@ class WaitProps:
             create_message = tasks.EvaluateExpression(self, "Create message",
                 # Note: this is a string inside a string.
                 expression="`Now waiting ${$.waitSeconds} seconds...`",
-                runtime=lambda_.Runtime.NODEJS_16_X,
+                runtime=lambda_.Runtime.NODEJS_LATEST,
                 result_path="$.message"
             )
             
@@ -11174,7 +11185,7 @@ class WaitTime(
         create_message = tasks.EvaluateExpression(self, "Create message",
             # Note: this is a string inside a string.
             expression="`Now waiting ${$.waitSeconds} seconds...`",
-            runtime=lambda_.Runtime.NODEJS_16_X,
+            runtime=lambda_.Runtime.NODEJS_LATEST,
             result_path="$.message"
         )
         
@@ -12170,7 +12181,7 @@ class CustomState(
         chain = sfn.Chain.start(custom).next(final_status)
         
         sm = sfn.StateMachine(self, "StateMachine",
-            definition=chain,
+            definition_body=sfn.DefinitionBody.from_chainable(chain),
             timeout=Duration.seconds(30),
             comment="a super cool state machine"
         )
@@ -12508,7 +12519,7 @@ class Parallel(
                 parallel = sfn.Parallel(self, "All jobs").branch(MyJob(self, "Quick", job_flavor="quick").prefix_states()).branch(MyJob(self, "Medium", job_flavor="medium").prefix_states()).branch(MyJob(self, "Slow", job_flavor="slow").prefix_states())
         
                 sfn.StateMachine(self, "MyStateMachine",
-                    definition=parallel
+                    definition_body=sfn.DefinitionBody.from_chainable(parallel)
                 )
     '''
 

aws_cdk/aws_stepfunctions_tasks/__init__.py

@@ -19,12 +19,13 @@ This module is part of the [AWS Cloud Development Kit](https://github.com/aws/aw
 * [Tasks for AWS Step Functions](#tasks-for-aws-step-functions)
 
   * [Table Of Contents](#table-of-contents)
+  * [Paths](#paths)
   * [Evaluate Expression](#evaluate-expression)
   * [API Gateway](#api-gateway)
 
     * [Call REST API Endpoint](#call-rest-api-endpoint)
     * [Call HTTP API Endpoint](#call-http-api-endpoint)
-  * [AWS SDK](#aws-sdk)
+    * [AWS SDK](#aws-sdk)
   * [Athena](#athena)
 
     * [StartQueryExecution](#startqueryexecution)
@@ -108,7 +109,7 @@ convert_to_seconds = tasks.EvaluateExpression(self, "Convert to seconds",
 create_message = tasks.EvaluateExpression(self, "Create message",
     # Note: this is a string inside a string.
     expression="`Now waiting ${$.waitSeconds} seconds...`",
-    runtime=lambda_.Runtime.NODEJS_16_X,
+    runtime=lambda_.Runtime.NODEJS_LATEST,
     result_path="$.message"
 )
 
@@ -313,7 +314,7 @@ Step Functions supports [Batch](https://docs.aws.amazon.com/step-functions/lates
 The [SubmitJob](https://docs.aws.amazon.com/batch/latest/APIReference/API_SubmitJob.html) API submits an AWS Batch job from a job definition.
 
 ```python
-import aws_cdk.aws_batch_alpha as batch
+import aws_cdk.aws_batch as batch
 # batch_job_definition: batch.EcsJobDefinition
 # batch_queue: batch.JobQueue
 
@@ -3589,7 +3590,7 @@ class BatchSubmitJob(
 
     Example::
 
-        import aws_cdk.aws_batch_alpha as batch
+        import aws_cdk.aws_batch as batch
         # batch_job_definition: batch.EcsJobDefinition
         # batch_queue: batch.JobQueue
         
@@ -3769,7 +3770,7 @@ class BatchSubmitJobProps(_TaskStateBaseProps_3a62b6d0):
 
         Example::
 
-            import aws_cdk.aws_batch_alpha as batch
+            import aws_cdk.aws_batch as batch
             # batch_job_definition: batch.EcsJobDefinition
             # batch_queue: batch.JobQueue
             
@@ -19072,7 +19073,7 @@ class EvaluateExpression(
         create_message = tasks.EvaluateExpression(self, "Create message",
             # Note: this is a string inside a string.
             expression="`Now waiting ${$.waitSeconds} seconds...`",
-            runtime=lambda_.Runtime.NODEJS_16_X,
+            runtime=lambda_.Runtime.NODEJS_LATEST,
             result_path="$.message"
         )
         
@@ -19114,7 +19115,7 @@ class EvaluateExpression(
         :param scope: -
         :param id: Descriptive identifier for this chainable.
         :param expression: The expression to evaluate. The expression may contain state paths. Example value: ``'$.a + $.b'``
-        :param runtime: The runtime language to use to evaluate the expression. Default: lambda.Runtime.NODEJS_16_X
+        :param runtime: The runtime language to use to evaluate the expression. Default: lambda.Runtime.NODEJS_18_X
         :param comment: An optional description for this state. Default: - No comment
         :param credentials: Credentials for an IAM Role that the State Machine assumes for executing the task. This enables cross-account resource invocations. Default: - None (Task is executed using the State Machine's execution role)
         :param heartbeat: (deprecated) Timeout for the heartbeat. Default: - None
@@ -19211,7 +19212,7 @@ class EvaluateExpressionProps(_TaskStateBaseProps_3a62b6d0):
         :param task_timeout: Timeout for the task. [disable-awslint:duration-prop-type] is needed because all props interface in aws-stepfunctions-tasks extend this interface Default: - None
         :param timeout: (deprecated) Timeout for the task. Default: - None
         :param expression: The expression to evaluate. The expression may contain state paths. Example value: ``'$.a + $.b'``
-        :param runtime: The runtime language to use to evaluate the expression. Default: lambda.Runtime.NODEJS_16_X
+        :param runtime: The runtime language to use to evaluate the expression. Default: lambda.Runtime.NODEJS_18_X
 
         :exampleMetadata: infused
 
@@ -19225,7 +19226,7 @@ class EvaluateExpressionProps(_TaskStateBaseProps_3a62b6d0):
             create_message = tasks.EvaluateExpression(self, "Create message",
                 # Note: this is a string inside a string.
                 expression="`Now waiting ${$.waitSeconds} seconds...`",
-                runtime=lambda_.Runtime.NODEJS_16_X,
+                runtime=lambda_.Runtime.NODEJS_LATEST,
                 result_path="$.message"
             )
             
@@ -19446,7 +19447,7 @@ class EvaluateExpressionProps(_TaskStateBaseProps_3a62b6d0):
     def runtime(self) -> typing.Optional[_Runtime_b4eaa844]:
         '''The runtime language to use to evaluate the expression.
 
-        :default: lambda.Runtime.NODEJS_16_X
+        :default: lambda.Runtime.NODEJS_18_X
         '''
         result = self._values.get("runtime")
         return typing.cast(typing.Optional[_Runtime_b4eaa844], result)
@@ -26163,7 +26164,7 @@ class SnsPublish(
         create_message = tasks.EvaluateExpression(self, "Create message",
             # Note: this is a string inside a string.
             expression="`Now waiting ${$.waitSeconds} seconds...`",
-            runtime=lambda_.Runtime.NODEJS_16_X,
+            runtime=lambda_.Runtime.NODEJS_LATEST,
             result_path="$.message"
         )
         
@@ -26334,7 +26335,7 @@ class SnsPublishProps(_TaskStateBaseProps_3a62b6d0):
             create_message = tasks.EvaluateExpression(self, "Create message",
                 # Note: this is a string inside a string.
                 expression="`Now waiting ${$.waitSeconds} seconds...`",
-                runtime=lambda_.Runtime.NODEJS_16_X,
+                runtime=lambda_.Runtime.NODEJS_LATEST,
                 result_path="$.message"
             )
             

aws_cdk/aws_transfer/__init__.py

@@ -2028,7 +2028,7 @@ class CfnServer(
         :param certificate: The Amazon Resource Name (ARN) of the AWS Certificate Manager (ACM) certificate. Required when ``Protocols`` is set to ``FTPS`` . To request a new public certificate, see `Request a public certificate <https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-request-public.html>`_ in the *AWS Certificate Manager User Guide* . To import an existing certificate into ACM, see `Importing certificates into ACM <https://docs.aws.amazon.com/acm/latest/userguide/import-certificate.html>`_ in the *AWS Certificate Manager User Guide* . To request a private certificate to use FTPS through private IP addresses, see `Request a private certificate <https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-request-private.html>`_ in the *AWS Certificate Manager User Guide* . Certificates with the following cryptographic algorithms and key sizes are supported: - 2048-bit RSA (RSA_2048) - 4096-bit RSA (RSA_4096) - Elliptic Prime Curve 256 bit (EC_prime256v1) - Elliptic Prime Curve 384 bit (EC_secp384r1) - Elliptic Prime Curve 521 bit (EC_secp521r1) .. epigraph:: The certificate must be a valid SSL/TLS X.509 version 3 certificate with FQDN or IP address specified and information about the issuer.
         :param domain: Specifies the domain of the storage system that is used for file transfers.
         :param endpoint_details: The virtual private cloud (VPC) endpoint settings that are configured for your server. When you host your endpoint within your VPC, you can make your endpoint accessible only to resources within your VPC, or you can attach Elastic IP addresses and make your endpoint accessible to clients over the internet. Your VPC's default security groups are automatically assigned to your endpoint.
-        :param endpoint_type: The type of endpoint that you want your server to use. You can choose to make your server's endpoint publicly accessible (PUBLIC) or host it inside your VPC. With an endpoint that is hosted in a VPC, you can restrict access to your server and resources only within your VPC or choose to make it internet facing by attaching Elastic IP addresses directly to it.
+        :param endpoint_type: The type of endpoint that you want your server to use. You can choose to make your server's endpoint publicly accessible (PUBLIC) or host it inside your VPC. With an endpoint that is hosted in a VPC, you can restrict access to your server and resources only within your VPC or choose to make it internet facing by attaching Elastic IP addresses directly to it. .. epigraph:: After May 19, 2021, you won't be able to create a server using ``EndpointType=VPC_ENDPOINT`` in your AWS account if your account hasn't already done so before May 19, 2021. If you have already created servers with ``EndpointType=VPC_ENDPOINT`` in your AWS account on or before May 19, 2021, you will not be affected. After this date, use ``EndpointType`` = ``VPC`` . For more information, see `Discontinuing the use of VPC_ENDPOINT <https://docs.aws.amazon.com//transfer/latest/userguide/create-server-in-vpc.html#deprecate-vpc-endpoint>`_ . It is recommended that you use ``VPC`` as the ``EndpointType`` . With this endpoint type, you have the option to directly associate up to three Elastic IPv4 addresses (BYO IP included) with your server's endpoint and use VPC security groups to restrict traffic by the client's public IP address. This is not possible with ``EndpointType`` set to ``VPC_ENDPOINT`` .
         :param identity_provider_details: Required when ``IdentityProviderType`` is set to ``AWS_DIRECTORY_SERVICE`` , ``AWS _LAMBDA`` or ``API_GATEWAY`` . Accepts an array containing all of the information required to use a directory in ``AWS_DIRECTORY_SERVICE`` or invoke a customer-supplied authentication API, including the API Gateway URL. Not required when ``IdentityProviderType`` is set to ``SERVICE_MANAGED`` .
         :param identity_provider_type: The mode of authentication for a server. The default value is ``SERVICE_MANAGED`` , which allows you to store and access user credentials within the AWS Transfer Family service. Use ``AWS_DIRECTORY_SERVICE`` to provide access to Active Directory groups in AWS Directory Service for Microsoft Active Directory or Microsoft Active Directory in your on-premises environment or in AWS using AD Connector. This option also requires you to provide a Directory ID by using the ``IdentityProviderDetails`` parameter. Use the ``API_GATEWAY`` value to integrate with an identity provider of your choosing. The ``API_GATEWAY`` setting requires you to provide an Amazon API Gateway endpoint URL to call for authentication by using the ``IdentityProviderDetails`` parameter. Use the ``AWS_LAMBDA`` value to directly use an AWS Lambda function as your identity provider. If you choose this value, you must specify the ARN for the Lambda function in the ``Function`` parameter for the ``IdentityProviderDetails`` data type.
         :param logging_role: The Amazon Resource Name (ARN) of the AWS Identity and Access Management (IAM) role that allows a server to turn on Amazon CloudWatch logging for Amazon S3 or Amazon EFSevents. When set, you can view user activity in your CloudWatch logs.
@@ -3066,7 +3066,7 @@ class CfnServerProps:
         :param certificate: The Amazon Resource Name (ARN) of the AWS Certificate Manager (ACM) certificate. Required when ``Protocols`` is set to ``FTPS`` . To request a new public certificate, see `Request a public certificate <https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-request-public.html>`_ in the *AWS Certificate Manager User Guide* . To import an existing certificate into ACM, see `Importing certificates into ACM <https://docs.aws.amazon.com/acm/latest/userguide/import-certificate.html>`_ in the *AWS Certificate Manager User Guide* . To request a private certificate to use FTPS through private IP addresses, see `Request a private certificate <https://docs.aws.amazon.com/acm/latest/userguide/gs-acm-request-private.html>`_ in the *AWS Certificate Manager User Guide* . Certificates with the following cryptographic algorithms and key sizes are supported: - 2048-bit RSA (RSA_2048) - 4096-bit RSA (RSA_4096) - Elliptic Prime Curve 256 bit (EC_prime256v1) - Elliptic Prime Curve 384 bit (EC_secp384r1) - Elliptic Prime Curve 521 bit (EC_secp521r1) .. epigraph:: The certificate must be a valid SSL/TLS X.509 version 3 certificate with FQDN or IP address specified and information about the issuer.
         :param domain: Specifies the domain of the storage system that is used for file transfers.
         :param endpoint_details: The virtual private cloud (VPC) endpoint settings that are configured for your server. When you host your endpoint within your VPC, you can make your endpoint accessible only to resources within your VPC, or you can attach Elastic IP addresses and make your endpoint accessible to clients over the internet. Your VPC's default security groups are automatically assigned to your endpoint.
-        :param endpoint_type: The type of endpoint that you want your server to use. You can choose to make your server's endpoint publicly accessible (PUBLIC) or host it inside your VPC. With an endpoint that is hosted in a VPC, you can restrict access to your server and resources only within your VPC or choose to make it internet facing by attaching Elastic IP addresses directly to it.
+        :param endpoint_type: The type of endpoint that you want your server to use. You can choose to make your server's endpoint publicly accessible (PUBLIC) or host it inside your VPC. With an endpoint that is hosted in a VPC, you can restrict access to your server and resources only within your VPC or choose to make it internet facing by attaching Elastic IP addresses directly to it. .. epigraph:: After May 19, 2021, you won't be able to create a server using ``EndpointType=VPC_ENDPOINT`` in your AWS account if your account hasn't already done so before May 19, 2021. If you have already created servers with ``EndpointType=VPC_ENDPOINT`` in your AWS account on or before May 19, 2021, you will not be affected. After this date, use ``EndpointType`` = ``VPC`` . For more information, see `Discontinuing the use of VPC_ENDPOINT <https://docs.aws.amazon.com//transfer/latest/userguide/create-server-in-vpc.html#deprecate-vpc-endpoint>`_ . It is recommended that you use ``VPC`` as the ``EndpointType`` . With this endpoint type, you have the option to directly associate up to three Elastic IPv4 addresses (BYO IP included) with your server's endpoint and use VPC security groups to restrict traffic by the client's public IP address. This is not possible with ``EndpointType`` set to ``VPC_ENDPOINT`` .
         :param identity_provider_details: Required when ``IdentityProviderType`` is set to ``AWS_DIRECTORY_SERVICE`` , ``AWS _LAMBDA`` or ``API_GATEWAY`` . Accepts an array containing all of the information required to use a directory in ``AWS_DIRECTORY_SERVICE`` or invoke a customer-supplied authentication API, including the API Gateway URL. Not required when ``IdentityProviderType`` is set to ``SERVICE_MANAGED`` .
         :param identity_provider_type: The mode of authentication for a server. The default value is ``SERVICE_MANAGED`` , which allows you to store and access user credentials within the AWS Transfer Family service. Use ``AWS_DIRECTORY_SERVICE`` to provide access to Active Directory groups in AWS Directory Service for Microsoft Active Directory or Microsoft Active Directory in your on-premises environment or in AWS using AD Connector. This option also requires you to provide a Directory ID by using the ``IdentityProviderDetails`` parameter. Use the ``API_GATEWAY`` value to integrate with an identity provider of your choosing. The ``API_GATEWAY`` setting requires you to provide an Amazon API Gateway endpoint URL to call for authentication by using the ``IdentityProviderDetails`` parameter. Use the ``AWS_LAMBDA`` value to directly use an AWS Lambda function as your identity provider. If you choose this value, you must specify the ARN for the Lambda function in the ``Function`` parameter for the ``IdentityProviderDetails`` data type.
         :param logging_role: The Amazon Resource Name (ARN) of the AWS Identity and Access Management (IAM) role that allows a server to turn on Amazon CloudWatch logging for Amazon S3 or Amazon EFSevents. When set, you can view user activity in your CloudWatch logs.
@@ -3240,6 +3240,13 @@ class CfnServerProps:
         '''The type of endpoint that you want your server to use.
 
         You can choose to make your server's endpoint publicly accessible (PUBLIC) or host it inside your VPC. With an endpoint that is hosted in a VPC, you can restrict access to your server and resources only within your VPC or choose to make it internet facing by attaching Elastic IP addresses directly to it.
+        .. epigraph::
+
+           After May 19, 2021, you won't be able to create a server using ``EndpointType=VPC_ENDPOINT`` in your AWS account if your account hasn't already done so before May 19, 2021. If you have already created servers with ``EndpointType=VPC_ENDPOINT`` in your AWS account on or before May 19, 2021, you will not be affected. After this date, use ``EndpointType`` = ``VPC`` .
+
+           For more information, see `Discontinuing the use of VPC_ENDPOINT <https://docs.aws.amazon.com//transfer/latest/userguide/create-server-in-vpc.html#deprecate-vpc-endpoint>`_ .
+
+           It is recommended that you use ``VPC`` as the ``EndpointType`` . With this endpoint type, you have the option to directly associate up to three Elastic IPv4 addresses (BYO IP included) with your server's endpoint and use VPC security groups to restrict traffic by the client's public IP address. This is not possible with ``EndpointType`` set to ``VPC_ENDPOINT`` .
 
         :see: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-transfer-server.html#cfn-transfer-server-endpointtype
         '''

aws_cdk/aws_wafv2/__init__.py

@@ -11511,8 +11511,8 @@ class CfnWebACL(
 
             This configuration is used in ``ManagedRuleGroupConfig`` .
 
-            :param creation_path: The path of the account creation endpoint for your application. This is the page on your website that accepts the completed registration form for a new user. This page must accept ``POST`` requests. For example, for the URL ``https://example.com/web/signup`` , you would provide the path ``/web/signup`` .
-            :param registration_page_path: The path of the account registration endpoint for your application. This is the page on your website that presents the registration form to new users. .. epigraph:: This page must accept ``GET`` text/html requests. For example, for the URL ``https://example.com/web/register`` , you would provide the path ``/web/register`` .
+            :param creation_path: The path of the account creation endpoint for your application. This is the page on your website that accepts the completed registration form for a new user. This page must accept ``POST`` requests. For example, for the URL ``https://example.com/web/newaccount`` , you would provide the path ``/web/newaccount`` . Account creation page paths that start with the path that you provide are considered a match. For example ``/web/newaccount`` matches the account creation paths ``/web/newaccount`` , ``/web/newaccount/`` , ``/web/newaccountPage`` , and ``/web/newaccount/thisPage`` , but doesn't match the path ``/home/web/newaccount`` or ``/website/newaccount`` .
+            :param registration_page_path: The path of the account registration endpoint for your application. This is the page on your website that presents the registration form to new users. .. epigraph:: This page must accept ``GET`` text/html requests. For example, for the URL ``https://example.com/web/registration`` , you would provide the path ``/web/registration`` . Registration page paths that start with the path that you provide are considered a match. For example ``/web/registration`` matches the registration paths ``/web/registration`` , ``/web/registration/`` , ``/web/registrationPage`` , and ``/web/registration/thisPage`` , but doesn't match the path ``/home/web/registration`` or ``/website/registration`` .
             :param request_inspection: The criteria for inspecting account creation requests, used by the ACFP rule group to validate and track account creation attempts.
             :param enable_regex_in_path: Allow the use of regular expressions in the registration page path and the account creation path.
             :param response_inspection: The criteria for inspecting responses to account creation requests, used by the ACFP rule group to track account creation success rates. .. epigraph:: Response inspection is available only in web ACLs that protect Amazon CloudFront distributions. The ACFP rule group evaluates the responses that your protected resources send back to client account creation attempts, keeping count of successful and failed attempts from each IP address and client session. Using this information, the rule group labels and mitigates requests from client sessions and IP addresses that have had too many successful account creation attempts in a short amount of time.
@@ -11597,7 +11597,7 @@ class CfnWebACL(
 
             This is the page on your website that accepts the completed registration form for a new user. This page must accept ``POST`` requests.
 
-            For example, for the URL ``https://example.com/web/signup`` , you would provide the path ``/web/signup`` .
+            For example, for the URL ``https://example.com/web/newaccount`` , you would provide the path ``/web/newaccount`` . Account creation page paths that start with the path that you provide are considered a match. For example ``/web/newaccount`` matches the account creation paths ``/web/newaccount`` , ``/web/newaccount/`` , ``/web/newaccountPage`` , and ``/web/newaccount/thisPage`` , but doesn't match the path ``/home/web/newaccount`` or ``/website/newaccount`` .
 
             :see: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-awsmanagedrulesacfpruleset.html#cfn-wafv2-webacl-awsmanagedrulesacfpruleset-creationpath
             '''
@@ -11614,7 +11614,7 @@ class CfnWebACL(
 
                This page must accept ``GET`` text/html requests.
 
-            For example, for the URL ``https://example.com/web/register`` , you would provide the path ``/web/register`` .
+            For example, for the URL ``https://example.com/web/registration`` , you would provide the path ``/web/registration`` . Registration page paths that start with the path that you provide are considered a match. For example ``/web/registration`` matches the registration paths ``/web/registration`` , ``/web/registration/`` , ``/web/registrationPage`` , and ``/web/registration/thisPage`` , but doesn't match the path ``/home/web/registration`` or ``/website/registration`` .
 
             :see: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-webacl-awsmanagedrulesacfpruleset.html#cfn-wafv2-webacl-awsmanagedrulesacfpruleset-registrationpagepath
             '''
@@ -11696,7 +11696,7 @@ class CfnWebACL(
 
             This configuration is used in ``ManagedRuleGroupConfig`` .
 
-            :param login_path: The path of the login endpoint for your application. For example, for the URL ``https://example.com/web/login`` , you would provide the path ``/web/login`` . The rule group inspects only HTTP ``POST`` requests to your specified login endpoint.
+            :param login_path: The path of the login endpoint for your application. For example, for the URL ``https://example.com/web/login`` , you would provide the path ``/web/login`` . Login paths that start with the path that you provide are considered a match. For example ``/web/login`` matches the login paths ``/web/login`` , ``/web/login/`` , ``/web/loginPage`` , and ``/web/login/thisPage`` , but doesn't match the login path ``/home/web/login`` or ``/website/login`` . The rule group inspects only HTTP ``POST`` requests to your specified login endpoint.
             :param enable_regex_in_path: Allow the use of regular expressions in the login page path.
             :param request_inspection: The criteria for inspecting login requests, used by the ATP rule group to validate credentials usage.
             :param response_inspection: The criteria for inspecting responses to login requests, used by the ATP rule group to track login failure rates. .. epigraph:: Response inspection is available only in web ACLs that protect Amazon CloudFront distributions. The ATP rule group evaluates the responses that your protected resources send back to client login attempts, keeping count of successful and failed attempts for each IP address and client session. Using this information, the rule group labels and mitigates requests from client sessions and IP addresses that have had too many failed login attempts in a short amount of time.
@@ -11766,7 +11766,7 @@ class CfnWebACL(
         def login_path(self) -> builtins.str:
             '''The path of the login endpoint for your application.
 
-            For example, for the URL ``https://example.com/web/login`` , you would provide the path ``/web/login`` .
+            For example, for the URL ``https://example.com/web/login`` , you would provide the path ``/web/login`` . Login paths that start with the path that you provide are considered a match. For example ``/web/login`` matches the login paths ``/web/login`` , ``/web/login/`` , ``/web/loginPage`` , and ``/web/login/thisPage`` , but doesn't match the login path ``/home/web/login`` or ``/website/login`` .
 
             The rule group inspects only HTTP ``POST`` requests to your specified login endpoint.
 

aws_cdk/pipelines/__init__.py

@@ -6691,7 +6691,7 @@ class CodePipelineSource(
         If you need access to symlinks or the repository history, be sure to set
         ``codeBuildCloneOutput``.
 
-        :param repo_string: A string that encodes owner and repository separated by a slash (e.g. 'owner/repo').
+        :param repo_string: A string that encodes owner and repository separated by a slash (e.g. 'owner/repo'). The provided string must be resolvable at runtime.
         :param branch: The branch to use.
         :param connection_arn: The ARN of the CodeStar Connection created in the AWS console that has permissions to access this GitHub or BitBucket repository.
         :param action_name: The action name used for this source in the CodePipeline. Default: - The repository string

{aws_cdk_lib-2.95.1.dist-info → aws_cdk_lib-2.96.0.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: aws-cdk-lib
-Version: 2.95.1
+Version: 2.96.0
 Summary: Version 2 of the AWS Cloud Development Kit library
 Home-page: https://github.com/aws/aws-cdk
 Author: Amazon Web Services