diff --git a/CHANGELOG.md b/CHANGELOG.md index a5ac86ac3ad96..64bb8f1c60b9f 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -3,6 +3,20 @@ All notable changes to this project will be documented in this file. See [Conventional Commits](https://conventionalcommits.org) for commit guidelines. +# [3.625.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.624.0...v3.625.0) (2024-08-06) + + +### Features + +* **client-bedrock-agent-runtime:** Introduce model invocation output traces for orchestration traces, which contain the model's raw response and usage. ([ad61bac](https://github.com/aws/aws-sdk-js-v3/commit/ad61bacdf1a8f9f21eaa67aef7d9b5c2e12f2cff)) +* **client-cognito-identity-provider:** Advanced security feature updates to include password history and log export for Cognito user pools. ([f35898e](https://github.com/aws/aws-sdk-js-v3/commit/f35898ec563ffb61bb40d88f6012d9571bbd8d75)) +* **client-cost-optimization-hub:** This release adds savings percentage support to the ListRecommendationSummaries API. ([82ea670](https://github.com/aws/aws-sdk-js-v3/commit/82ea670c8df1aa3fc00ca872c1105c9fbf59a678)) +* **client-workspaces:** Added support for BYOL_GRAPHICS_G4DN_WSP IngestionProcess ([871d342](https://github.com/aws/aws-sdk-js-v3/commit/871d34202fb92f2afb59efa2fc199cec50239778)) + + + + + # [3.624.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.623.0...v3.624.0) (2024-08-05) diff --git a/clients/client-bedrock-agent-runtime/CHANGELOG.md b/clients/client-bedrock-agent-runtime/CHANGELOG.md index 6a891e2968136..15bc28a027a6b 100644 --- a/clients/client-bedrock-agent-runtime/CHANGELOG.md +++ b/clients/client-bedrock-agent-runtime/CHANGELOG.md @@ -3,6 +3,17 @@ All notable changes to this project will be documented in this file. See [Conventional Commits](https://conventionalcommits.org) for commit guidelines. +# [3.625.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.624.0...v3.625.0) (2024-08-06) + + +### Features + +* **client-bedrock-agent-runtime:** Introduce model invocation output traces for orchestration traces, which contain the model's raw response and usage. ([ad61bac](https://github.com/aws/aws-sdk-js-v3/commit/ad61bacdf1a8f9f21eaa67aef7d9b5c2e12f2cff)) + + + + + # [3.624.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.623.0...v3.624.0) (2024-08-05) **Note:** Version bump only for package @aws-sdk/client-bedrock-agent-runtime diff --git a/clients/client-bedrock-agent-runtime/package.json b/clients/client-bedrock-agent-runtime/package.json index 61153c4b7bf71..5c2f01d403976 100644 --- a/clients/client-bedrock-agent-runtime/package.json +++ b/clients/client-bedrock-agent-runtime/package.json @@ -1,7 +1,7 @@ { "name": "@aws-sdk/client-bedrock-agent-runtime", "description": "AWS SDK for JavaScript Bedrock Agent Runtime Client for Node.js, Browser and React Native", - "version": "3.624.0", + "version": "3.625.0", "scripts": { "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'", "build:cjs": "node ../../scripts/compilation/inline client-bedrock-agent-runtime", diff --git a/clients/client-bedrock-agent-runtime/src/commands/InvokeAgentCommand.ts b/clients/client-bedrock-agent-runtime/src/commands/InvokeAgentCommand.ts index b681588d2716b..1175c987576bf 100644 --- a/clients/client-bedrock-agent-runtime/src/commands/InvokeAgentCommand.ts +++ b/clients/client-bedrock-agent-runtime/src/commands/InvokeAgentCommand.ts @@ -507,6 +507,18 @@ export interface InvokeAgentCommandOutput extends InvokeAgentResponse, __Metadat * // promptCreationMode: "DEFAULT" || "OVERRIDDEN", * // parserMode: "DEFAULT" || "OVERRIDDEN", * // }, + * // modelInvocationOutput: { // OrchestrationModelInvocationOutput + * // traceId: "STRING_VALUE", + * // rawResponse: { // RawResponse + * // content: "STRING_VALUE", + * // }, + * // metadata: { // Metadata + * // usage: { // Usage + * // inputTokens: Number("int"), + * // outputTokens: Number("int"), + * // }, + * // }, + * // }, * // }, * // postProcessingTrace: { // PostProcessingTrace Union: only one key present * // modelInvocationInput: { diff --git a/clients/client-bedrock-agent-runtime/src/commands/InvokeFlowCommand.ts b/clients/client-bedrock-agent-runtime/src/commands/InvokeFlowCommand.ts index e18572a4ac852..b388caae2b051 100644 --- a/clients/client-bedrock-agent-runtime/src/commands/InvokeFlowCommand.ts +++ b/clients/client-bedrock-agent-runtime/src/commands/InvokeFlowCommand.ts @@ -38,6 +38,9 @@ export interface InvokeFlowCommandOutput extends InvokeFlowResponse, __MetadataB /** *
Invokes an alias of a flow to run the inputs that you specify and return the output of each node as a stream. If there's an error, the error is returned. For more information, see Test a flow in Amazon Bedrock in the Amazon Bedrock User Guide.
+ *The CLI doesn't support streaming operations in Amazon Bedrock, including InvokeFlow
.
The input for the flow input node.
+ *The input to send to the prompt flow input node.
* @public */ export interface DocumentMember { @@ -282,7 +282,7 @@ export namespace FlowInputContent { } /** - *Contains information about an input into the flow and what to do with it.
+ *Contains information about an input into the prompt flow and where to send it.
*This data type is used in the following API operations:
*A name for the input of the flow input node.
+ *The name of the flow input node that begins the prompt flow.
* @public */ nodeName: string | undefined; /** - *A name for the output of the flow input node.
+ *The name of the output from the flow input node that begins the prompt flow.
* @public */ nodeOutputName: string | undefined; /** - *Contains information about an input into the flow.
+ *Contains information about an input into the prompt flow.
* @public */ content: FlowInputContent | undefined; @@ -370,7 +370,7 @@ export interface FlowCompletionEvent { } /** - *Contains information about the output node.
+ *Contains information about the content in an output from prompt flow invocation.
*This data type is used in the following API operations:
*A name for the output of the flow.
+ *The content in the output.
* @public */ export interface DocumentMember { @@ -435,7 +435,7 @@ export const NodeType = { export type NodeType = (typeof NodeType)[keyof typeof NodeType]; /** - *Contains information about an output from flow invoction.
+ *Contains information about an output from prompt flow invoction.
*This data type is used in the following API operations:
*The name of the node to which input was provided.
+ *The name of the flow output node that the output is from.
* @public */ nodeName: string | undefined; /** - *The type of node to which input was provided.
+ *The type of the node that the output is from.
* @public */ nodeType: NodeType | undefined; /** - *The output of the node.
+ *The content in the output.
* @public */ content: FlowOutputContent | undefined; @@ -2378,7 +2378,7 @@ export interface InferenceConfiguration { temperature?: number; /** - *While generating a response, the model determines the probability of the following token at each point of generation. The value that you set for Top P
determines the number of most-likely candidates from which the model chooses the next token in the sequence. For example, if you set topP
to 80, the model only selects the next token from the top 80% of the probability distribution of next tokens.
While generating a response, the model determines the probability of the following token at each point of generation. The value that you set for Top P
determines the number of most-likely candidates from which the model chooses the next token in the sequence. For example, if you set topP
to 0.8, the model only selects the next token from the top 80% of the probability distribution of next tokens.
Contains information of the usage of the foundation model.
+ * @public + */ +export interface Usage { + /** + *Contains information about the input tokens from the foundation model usage.
+ * @public + */ + inputTokens?: number; + + /** + *Contains information about the output tokens from the foundation model usage.
+ * @public + */ + outputTokens?: number; +} + +/** + *Provides details of the foundation model.
+ * @public + */ +export interface Metadata { + /** + *Contains details of the foundation model usage.
+ * @public + */ + usage?: Usage; +} + +/** + *Contains the raw output from the foundation model.
+ * @public + */ +export interface RawResponse { + /** + *The foundation model's raw output content.
+ * @public + */ + content?: string; +} + +/** + *The foundation model output from the orchestration step.
+ * @public + */ +export interface OrchestrationModelInvocationOutput { + /** + *The unique identifier of the trace.
+ * @public + */ + traceId?: string; + + /** + *Contains details of the raw response from the foundation model output.
+ * @public + */ + rawResponse?: RawResponse; + + /** + *Contains information about the foundation model output.
+ * @public + */ + metadata?: Metadata; +} + /** *Contains the JSON-formatted string returned by the API invoked by the code interpreter.
* @public @@ -2690,6 +2756,7 @@ export interface Rationale { export type OrchestrationTrace = | OrchestrationTrace.InvocationInputMember | OrchestrationTrace.ModelInvocationInputMember + | OrchestrationTrace.ModelInvocationOutputMember | OrchestrationTrace.ObservationMember | OrchestrationTrace.RationaleMember | OrchestrationTrace.$UnknownMember; @@ -2707,6 +2774,7 @@ export namespace OrchestrationTrace { invocationInput?: never; observation?: never; modelInvocationInput?: never; + modelInvocationOutput?: never; $unknown?: never; } @@ -2719,6 +2787,7 @@ export namespace OrchestrationTrace { invocationInput: InvocationInput; observation?: never; modelInvocationInput?: never; + modelInvocationOutput?: never; $unknown?: never; } @@ -2731,6 +2800,7 @@ export namespace OrchestrationTrace { invocationInput?: never; observation: Observation; modelInvocationInput?: never; + modelInvocationOutput?: never; $unknown?: never; } @@ -2754,6 +2824,20 @@ export namespace OrchestrationTrace { invocationInput?: never; observation?: never; modelInvocationInput: ModelInvocationInput; + modelInvocationOutput?: never; + $unknown?: never; + } + + /** + *Contains information pertaining to the output from the foundation model that is being invoked.
+ * @public + */ + export interface ModelInvocationOutputMember { + rationale?: never; + invocationInput?: never; + observation?: never; + modelInvocationInput?: never; + modelInvocationOutput: OrchestrationModelInvocationOutput; $unknown?: never; } @@ -2765,6 +2849,7 @@ export namespace OrchestrationTrace { invocationInput?: never; observation?: never; modelInvocationInput?: never; + modelInvocationOutput?: never; $unknown: [string, any]; } @@ -2773,6 +2858,7 @@ export namespace OrchestrationTrace { invocationInput: (value: InvocationInput) => T; observation: (value: Observation) => T; modelInvocationInput: (value: ModelInvocationInput) => T; + modelInvocationOutput: (value: OrchestrationModelInvocationOutput) => T; _: (name: string, value: any) => T; } @@ -2781,6 +2867,7 @@ export namespace OrchestrationTrace { if (value.invocationInput !== undefined) return visitor.invocationInput(value.invocationInput); if (value.observation !== undefined) return visitor.observation(value.observation); if (value.modelInvocationInput !== undefined) return visitor.modelInvocationInput(value.modelInvocationInput); + if (value.modelInvocationOutput !== undefined) return visitor.modelInvocationOutput(value.modelInvocationOutput); return visitor._(value.$unknown[0], value.$unknown[1]); }; } @@ -5298,6 +5385,37 @@ export const ModelInvocationInputFilterSensitiveLog = (obj: ModelInvocationInput ...(obj.text && { text: SENSITIVE_STRING }), }); +/** + * @internal + */ +export const UsageFilterSensitiveLog = (obj: Usage): any => ({ + ...obj, +}); + +/** + * @internal + */ +export const MetadataFilterSensitiveLog = (obj: Metadata): any => ({ + ...obj, + ...(obj.usage && { usage: SENSITIVE_STRING }), +}); + +/** + * @internal + */ +export const RawResponseFilterSensitiveLog = (obj: RawResponse): any => ({ + ...obj, +}); + +/** + * @internal + */ +export const OrchestrationModelInvocationOutputFilterSensitiveLog = (obj: OrchestrationModelInvocationOutput): any => ({ + ...obj, + ...(obj.rawResponse && { rawResponse: SENSITIVE_STRING }), + ...(obj.metadata && { metadata: SENSITIVE_STRING }), +}); + /** * @internal */ @@ -5355,6 +5473,7 @@ export const OrchestrationTraceFilterSensitiveLog = (obj: OrchestrationTrace): a if (obj.invocationInput !== undefined) return { invocationInput: SENSITIVE_STRING }; if (obj.observation !== undefined) return { observation: SENSITIVE_STRING }; if (obj.modelInvocationInput !== undefined) return { modelInvocationInput: SENSITIVE_STRING }; + if (obj.modelInvocationOutput !== undefined) return { modelInvocationOutput: SENSITIVE_STRING }; if (obj.$unknown !== undefined) return { [obj.$unknown[0]]: "UNKNOWN" }; }; diff --git a/clients/client-bedrock-agent-runtime/src/protocols/Aws_restJson1.ts b/clients/client-bedrock-agent-runtime/src/protocols/Aws_restJson1.ts index 3b5b380af0a04..f0bd1fad7de28 100644 --- a/clients/client-bedrock-agent-runtime/src/protocols/Aws_restJson1.ts +++ b/clients/client-bedrock-agent-runtime/src/protocols/Aws_restJson1.ts @@ -1470,6 +1470,8 @@ const de_MemorySessionSummary = (output: any, context: __SerdeContext): MemorySe }) as any; }; +// de_Metadata omitted. + /** * deserializeAws_restJson1ModelInvocationInput */ @@ -1500,6 +1502,8 @@ const de_Observation = (output: any, context: __SerdeContext): Observation => { }) as any; }; +// de_OrchestrationModelInvocationOutput omitted. + /** * deserializeAws_restJson1OrchestrationTrace */ @@ -1514,6 +1518,11 @@ const de_OrchestrationTrace = (output: any, context: __SerdeContext): Orchestrat modelInvocationInput: de_ModelInvocationInput(output.modelInvocationInput, context), }; } + if (output.modelInvocationOutput != null) { + return { + modelInvocationOutput: _json(output.modelInvocationOutput), + }; + } if (output.observation != null) { return { observation: de_Observation(output.observation, context), @@ -1612,6 +1621,8 @@ const de_PreProcessingTrace = (output: any, context: __SerdeContext): PreProcess // de_Rationale omitted. +// de_RawResponse omitted. + // de_RepromptResponse omitted. // de_RequestBody omitted. @@ -1728,6 +1739,8 @@ const de_TracePart = (output: any, context: __SerdeContext): TracePart => { }) as any; }; +// de_Usage omitted. + /** * deserializeAws_restJson1Document */ diff --git a/clients/client-cognito-identity-provider/CHANGELOG.md b/clients/client-cognito-identity-provider/CHANGELOG.md index c6ea1d93df098..985964bd05f1b 100644 --- a/clients/client-cognito-identity-provider/CHANGELOG.md +++ b/clients/client-cognito-identity-provider/CHANGELOG.md @@ -3,6 +3,17 @@ All notable changes to this project will be documented in this file. See [Conventional Commits](https://conventionalcommits.org) for commit guidelines. +# [3.625.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.624.0...v3.625.0) (2024-08-06) + + +### Features + +* **client-cognito-identity-provider:** Advanced security feature updates to include password history and log export for Cognito user pools. ([f35898e](https://github.com/aws/aws-sdk-js-v3/commit/f35898ec563ffb61bb40d88f6012d9571bbd8d75)) + + + + + # [3.624.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.623.0...v3.624.0) (2024-08-05) **Note:** Version bump only for package @aws-sdk/client-cognito-identity-provider diff --git a/clients/client-cognito-identity-provider/package.json b/clients/client-cognito-identity-provider/package.json index b141133df60de..4d5c45ee93d51 100644 --- a/clients/client-cognito-identity-provider/package.json +++ b/clients/client-cognito-identity-provider/package.json @@ -1,7 +1,7 @@ { "name": "@aws-sdk/client-cognito-identity-provider", "description": "AWS SDK for JavaScript Cognito Identity Provider Client for Node.js, Browser and React Native", - "version": "3.624.0", + "version": "3.625.0", "scripts": { "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'", "build:cjs": "node ../../scripts/compilation/inline client-cognito-identity-provider", diff --git a/clients/client-cognito-identity-provider/src/CognitoIdentityProvider.ts b/clients/client-cognito-identity-provider/src/CognitoIdentityProvider.ts index 1a3ca1a774924..3f91c3766a35f 100644 --- a/clients/client-cognito-identity-provider/src/CognitoIdentityProvider.ts +++ b/clients/client-cognito-identity-provider/src/CognitoIdentityProvider.ts @@ -2168,7 +2168,7 @@ export interface CognitoIdentityProvider { /** *With the Amazon Cognito user pools API, you can configure user pools and authenticate users. To * authenticate users from third-party identity providers (IdPs) in this API, you can - * link IdP users to native user profiles. Learn more + * link IdP users to native user profiles. Learn more * about the authentication and authorization of federated users at Adding user pool sign-in through a third party and in the User pool federation endpoints and hosted UI reference.
*This API reference provides detailed information about API operations and object types * in Amazon Cognito.
@@ -2200,7 +2200,7 @@ export interface CognitoIdentityProvider { ** Amazon Web Services - * Command Line Interface + * Command Line Interface *
** Amazon Web Services - * SDK for JavaScript + * SDK for JavaScript *
** Amazon Web Services SDK for PHP - * V3 + * V3 *
** Amazon Web Services SDK - * for Ruby V3 + * for Ruby V3 *
*With the Amazon Cognito user pools API, you can configure user pools and authenticate users. To * authenticate users from third-party identity providers (IdPs) in this API, you can - * link IdP users to native user profiles. Learn more + * link IdP users to native user profiles. Learn more * about the authentication and authorization of federated users at Adding user pool sign-in through a third party and in the User pool federation endpoints and hosted UI reference.
*This API reference provides detailed information about API operations and object types * in Amazon Cognito.
@@ -763,7 +763,7 @@ export interface CognitoIdentityProviderClientResolvedConfig extends CognitoIden ** Amazon Web Services - * Command Line Interface + * Command Line Interface *
** Amazon Web Services - * SDK for JavaScript + * SDK for JavaScript *
** Amazon Web Services SDK for PHP - * V3 + * V3 *
** Amazon Web Services SDK - * for Ruby V3 + * for Ruby V3 *
*This IAM-authenticated API operation provides a code that Amazon Cognito sent to your user - * when they signed up in your user pool. After your user enters their code, they confirm - * ownership of the email address or phone number that they provided, and their user - * account becomes active. Depending on your user pool configuration, your users will - * receive their confirmation code in an email or SMS message.
- *Local users who signed up in your user pool are the only type of user who can confirm - * sign-up with a code. Users who federate through an external identity provider (IdP) have - * already been confirmed by their IdP. Administrator-created users confirm their accounts - * when they respond to their invitation email message and choose a password.
+ *This IAM-authenticated API operation confirms user sign-up as an administrator. + * Unlike ConfirmSignUp, your IAM credentials authorize user account confirmation. + * No confirmation code is required.
+ *This request sets a user account active in a user pool that requires confirmation of new user accounts before they can sign in. You can + * configure your user pool to not send confirmation codes to new users and instead confirm + * them with this API operation on the back end.
*Amazon Cognito evaluates Identity and Access Management (IAM) policies in requests for this API operation. For * this operation, you must use IAM credentials to authorize requests, and you must diff --git a/clients/client-cognito-identity-provider/src/commands/AdminCreateUserCommand.ts b/clients/client-cognito-identity-provider/src/commands/AdminCreateUserCommand.ts index 2a47386f6c882..593a18fb76dda 100644 --- a/clients/client-cognito-identity-provider/src/commands/AdminCreateUserCommand.ts +++ b/clients/client-cognito-identity-provider/src/commands/AdminCreateUserCommand.ts @@ -171,7 +171,7 @@ export interface AdminCreateUserCommandOutput extends AdminCreateUserResponse, _ * @throws {@link InvalidSmsRoleTrustRelationshipException} (client fault) *
This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
This exception is thrown when a user isn't authorized.
* + * @throws {@link PasswordHistoryPolicyViolationException} (client fault) + *The message returned when a user's new password matches a previous password and + * doesn't comply with the password-history policy.
+ * * @throws {@link PasswordResetRequiredException} (client fault) *This exception is thrown when a password reset is required.
* diff --git a/clients/client-cognito-identity-provider/src/commands/AdminSetUserPasswordCommand.ts b/clients/client-cognito-identity-provider/src/commands/AdminSetUserPasswordCommand.ts index e620c0d67f2ce..63bc3158858ea 100644 --- a/clients/client-cognito-identity-provider/src/commands/AdminSetUserPasswordCommand.ts +++ b/clients/client-cognito-identity-provider/src/commands/AdminSetUserPasswordCommand.ts @@ -114,6 +114,10 @@ export interface AdminSetUserPasswordCommandOutput extends AdminSetUserPasswordR * @throws {@link NotAuthorizedException} (client fault) *This exception is thrown when a user isn't authorized.
* + * @throws {@link PasswordHistoryPolicyViolationException} (client fault) + *The message returned when a user's new password matches a previous password and + * doesn't comply with the password-history policy.
+ * * @throws {@link ResourceNotFoundException} (client fault) *This exception is thrown when the Amazon Cognito service can't find the requested * resource.
diff --git a/clients/client-cognito-identity-provider/src/commands/AdminUpdateUserAttributesCommand.ts b/clients/client-cognito-identity-provider/src/commands/AdminUpdateUserAttributesCommand.ts index 9393c68e86f64..32e0280e37c9d 100644 --- a/clients/client-cognito-identity-provider/src/commands/AdminUpdateUserAttributesCommand.ts +++ b/clients/client-cognito-identity-provider/src/commands/AdminUpdateUserAttributesCommand.ts @@ -139,7 +139,7 @@ export interface AdminUpdateUserAttributesCommandOutput extends AdminUpdateUserA * @throws {@link InvalidSmsRoleTrustRelationshipException} (client fault) *This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
MFA_SETUP
or SOFTWARE_TOKEN_SETUP
challenge
- * each time your user signs. Complete setup with AssociateSoftwareToken
- * and VerifySoftwareToken
.
+ * each time your user signs in. Complete setup with
+ * AssociateSoftwareToken
and VerifySoftwareToken
.
* After you set up software token MFA for your user, Amazon Cognito generates a
* SOFTWARE_TOKEN_MFA
challenge when they authenticate. Respond to
* this challenge with your user's TOTP.
This exception is thrown when a user isn't authorized.
* + * @throws {@link PasswordHistoryPolicyViolationException} (client fault) + *The message returned when a user's new password matches a previous password and + * doesn't comply with the password-history policy.
+ * * @throws {@link PasswordResetRequiredException} (client fault) *This exception is thrown when a password reset is required.
* diff --git a/clients/client-cognito-identity-provider/src/commands/ConfirmForgotPasswordCommand.ts b/clients/client-cognito-identity-provider/src/commands/ConfirmForgotPasswordCommand.ts index 987c69f9cdbfc..45e9d02cefec7 100644 --- a/clients/client-cognito-identity-provider/src/commands/ConfirmForgotPasswordCommand.ts +++ b/clients/client-cognito-identity-provider/src/commands/ConfirmForgotPasswordCommand.ts @@ -109,6 +109,10 @@ export interface ConfirmForgotPasswordCommandOutput extends ConfirmForgotPasswor * @throws {@link NotAuthorizedException} (client fault) *This exception is thrown when a user isn't authorized.
* + * @throws {@link PasswordHistoryPolicyViolationException} (client fault) + *The message returned when a user's new password matches a previous password and + * doesn't comply with the password-history policy.
+ * * @throws {@link ResourceNotFoundException} (client fault) *This exception is thrown when the Amazon Cognito service can't find the requested * resource.
diff --git a/clients/client-cognito-identity-provider/src/commands/CreateUserPoolCommand.ts b/clients/client-cognito-identity-provider/src/commands/CreateUserPoolCommand.ts index f655b4cbcd56c..9faf64fc5bc9e 100644 --- a/clients/client-cognito-identity-provider/src/commands/CreateUserPoolCommand.ts +++ b/clients/client-cognito-identity-provider/src/commands/CreateUserPoolCommand.ts @@ -89,6 +89,7 @@ export interface CreateUserPoolCommandOutput extends CreateUserPoolResponse, __M * RequireLowercase: true || false, * RequireNumbers: true || false, * RequireSymbols: true || false, + * PasswordHistorySize: Number("int"), * TemporaryPasswordValidityDays: Number("int"), * }, * }, @@ -218,6 +219,7 @@ export interface CreateUserPoolCommandOutput extends CreateUserPoolResponse, __M * // RequireLowercase: true || false, * // RequireNumbers: true || false, * // RequireSymbols: true || false, + * // PasswordHistorySize: Number("int"), * // TemporaryPasswordValidityDays: Number("int"), * // }, * // }, @@ -371,7 +373,7 @@ export interface CreateUserPoolCommandOutput extends CreateUserPoolResponse, __M * @throws {@link InvalidSmsRoleTrustRelationshipException} (client fault) *This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
Gets the detailed activity logging configuration for a user pool.
+ *Gets the logging configuration of a user pool.
* @example * Use a bare-bones client and the command you need to make an API call. * ```javascript @@ -51,11 +51,17 @@ export interface GetLogDeliveryConfigurationCommandOutput * // UserPoolId: "STRING_VALUE", // required * // LogConfigurations: [ // LogConfigurationListType // required * // { // LogConfigurationType - * // LogLevel: "ERROR", // required - * // EventSource: "userNotification", // required + * // LogLevel: "ERROR" || "INFO", // required + * // EventSource: "userNotification" || "userAuthEvents", // required * // CloudWatchLogsConfiguration: { // CloudWatchLogsConfigurationType * // LogGroupArn: "STRING_VALUE", * // }, + * // S3Configuration: { // S3ConfigurationType + * // BucketArn: "STRING_VALUE", + * // }, + * // FirehoseConfiguration: { // FirehoseConfigurationType + * // StreamArn: "STRING_VALUE", + * // }, * // }, * // ], * // }, diff --git a/clients/client-cognito-identity-provider/src/commands/GetUserAttributeVerificationCodeCommand.ts b/clients/client-cognito-identity-provider/src/commands/GetUserAttributeVerificationCodeCommand.ts index 3309c889c4765..ea7b330e218af 100644 --- a/clients/client-cognito-identity-provider/src/commands/GetUserAttributeVerificationCodeCommand.ts +++ b/clients/client-cognito-identity-provider/src/commands/GetUserAttributeVerificationCodeCommand.ts @@ -128,7 +128,7 @@ export interface GetUserAttributeVerificationCodeCommandOutput * @throws {@link InvalidSmsRoleTrustRelationshipException} (client fault) *This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
This exception is thrown when a user isn't authorized.
* + * @throws {@link PasswordHistoryPolicyViolationException} (client fault) + *The message returned when a user's new password matches a previous password and + * doesn't comply with the password-history policy.
+ * * @throws {@link PasswordResetRequiredException} (client fault) *This exception is thrown when a password reset is required.
* diff --git a/clients/client-cognito-identity-provider/src/commands/SetLogDeliveryConfigurationCommand.ts b/clients/client-cognito-identity-provider/src/commands/SetLogDeliveryConfigurationCommand.ts index 4644814147878..13e1195406412 100644 --- a/clients/client-cognito-identity-provider/src/commands/SetLogDeliveryConfigurationCommand.ts +++ b/clients/client-cognito-identity-provider/src/commands/SetLogDeliveryConfigurationCommand.ts @@ -10,8 +10,7 @@ import { ServiceOutputTypes, } from "../CognitoIdentityProviderClient"; import { commonParams } from "../endpoint/EndpointParameters"; -import { SetLogDeliveryConfigurationRequest } from "../models/models_0"; -import { SetLogDeliveryConfigurationResponse } from "../models/models_1"; +import { SetLogDeliveryConfigurationRequest, SetLogDeliveryConfigurationResponse } from "../models/models_1"; import { de_SetLogDeliveryConfigurationCommand, se_SetLogDeliveryConfigurationCommand } from "../protocols/Aws_json1_1"; /** @@ -35,7 +34,8 @@ export interface SetLogDeliveryConfigurationCommandOutput __MetadataBearer {} /** - *Sets up or modifies the detailed activity logging configuration of a user pool.
+ *Sets up or modifies the logging configuration of a user pool. User pools can export + * user notification logs and advanced security features user activity logs.
* @example * Use a bare-bones client and the command you need to make an API call. * ```javascript @@ -46,11 +46,17 @@ export interface SetLogDeliveryConfigurationCommandOutput * UserPoolId: "STRING_VALUE", // required * LogConfigurations: [ // LogConfigurationListType // required * { // LogConfigurationType - * LogLevel: "ERROR", // required - * EventSource: "userNotification", // required + * LogLevel: "ERROR" || "INFO", // required + * EventSource: "userNotification" || "userAuthEvents", // required * CloudWatchLogsConfiguration: { // CloudWatchLogsConfigurationType * LogGroupArn: "STRING_VALUE", * }, + * S3Configuration: { // S3ConfigurationType + * BucketArn: "STRING_VALUE", + * }, + * FirehoseConfiguration: { // FirehoseConfigurationType + * StreamArn: "STRING_VALUE", + * }, * }, * ], * }; @@ -61,11 +67,17 @@ export interface SetLogDeliveryConfigurationCommandOutput * // UserPoolId: "STRING_VALUE", // required * // LogConfigurations: [ // LogConfigurationListType // required * // { // LogConfigurationType - * // LogLevel: "ERROR", // required - * // EventSource: "userNotification", // required + * // LogLevel: "ERROR" || "INFO", // required + * // EventSource: "userNotification" || "userAuthEvents", // required * // CloudWatchLogsConfiguration: { // CloudWatchLogsConfigurationType * // LogGroupArn: "STRING_VALUE", * // }, + * // S3Configuration: { // S3ConfigurationType + * // BucketArn: "STRING_VALUE", + * // }, + * // FirehoseConfiguration: { // FirehoseConfigurationType + * // StreamArn: "STRING_VALUE", + * // }, * // }, * // ], * // }, diff --git a/clients/client-cognito-identity-provider/src/commands/SetUserPoolMfaConfigCommand.ts b/clients/client-cognito-identity-provider/src/commands/SetUserPoolMfaConfigCommand.ts index 7a938d7dc8daf..ed3c2afd98809 100644 --- a/clients/client-cognito-identity-provider/src/commands/SetUserPoolMfaConfigCommand.ts +++ b/clients/client-cognito-identity-provider/src/commands/SetUserPoolMfaConfigCommand.ts @@ -114,7 +114,7 @@ export interface SetUserPoolMfaConfigCommandOutput extends SetUserPoolMfaConfigR * @throws {@link InvalidSmsRoleTrustRelationshipException} (client fault) *This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
With the Amazon Cognito user pools API, you can configure user pools and authenticate users. To * authenticate users from third-party identity providers (IdPs) in this API, you can - * link IdP users to native user profiles. Learn more + * link IdP users to native user profiles. Learn more * about the authentication and authorization of federated users at Adding user pool sign-in through a third party and in the User pool federation endpoints and hosted UI reference.
*This API reference provides detailed information about API operations and object types * in Amazon Cognito.
@@ -35,7 +35,7 @@ ** Amazon Web Services - * Command Line Interface + * Command Line Interface *
** Amazon Web Services - * SDK for JavaScript + * SDK for JavaScript *
** Amazon Web Services SDK for PHP - * V3 + * V3 *
** Amazon Web Services SDK - * for Ruby V3 + * for Ruby V3 *
*This exception is thrown when the trust relationship is not valid for the role
* provided for SMS configuration. This can happen if you don't trust
- * cognito-idp.amazonaws.com
or the external ID provided in the role does
+ * cognito-idp.amazonaws.com
or the external ID provided in the role does
* not match what is provided in the SMS configuration for the user pool.
The message returned when a user's new password matches a previous password and + * doesn't comply with the password-history policy.
+ * @public + */ +export class PasswordHistoryPolicyViolationException extends __BaseException { + readonly name: "PasswordHistoryPolicyViolationException" = "PasswordHistoryPolicyViolationException"; + readonly $fault: "client" = "client"; + /** + * @internal + */ + constructor(opts: __ExceptionOptionTypeThis exception is thrown when the software token time-based one-time password (TOTP) * multi-factor authentication (MFA) isn't activated for the user pool.
@@ -5313,6 +5334,17 @@ export interface PasswordPolicyType { */ RequireSymbols?: boolean; + /** + *The number of previous passwords that you want Amazon Cognito to restrict each user from
+ * reusing. Users can't set a password that matches any of n
previous
+ * passwords, where n
is the value of PasswordHistorySize
.
Password history isn't enforced and isn't displayed in DescribeUserPool responses when you set this value to
+ * 0
or don't provide it. To activate this setting,
+ * advanced security features must be active in your user pool.
The number of days a temporary password is valid in the password policy. If the user * doesn't sign in during this time, an administrator must reset their password. Defaults @@ -6508,6 +6540,7 @@ export interface CreateUserPoolClientRequest { * existence related errors aren't prevented.
* * + *Defaults to LEGACY
when you don't provide a value.
- * LEGACY
- This represents the old behavior of Amazon Cognito where user
+ * LEGACY
- This represents the early behavior of Amazon Cognito where user
* existence related errors aren't prevented.
Defaults to LEGACY
when you don't provide a value.
The ID of the user pool where you want to view detailed activity logging - * configuration.
+ *The ID of the user pool that has the logging configuration that you want to + * view.
* @public */ UserPoolId: string | undefined; } /** - *The CloudWatch logging destination of a user pool detailed activity logging - * configuration.
+ *Configuration for the CloudWatch log group destination of user pool detailed activity + * logging, or of user activity log export with advanced security features.
* @public */ export interface CloudWatchLogsConfigurationType { @@ -7897,6 +7931,7 @@ export interface CloudWatchLogsConfigurationType { * @enum */ export const EventSourceName = { + USER_AUTH_EVENTS: "userAuthEvents", USER_NOTIFICATION: "userNotification", } as const; @@ -7905,12 +7940,27 @@ export const EventSourceName = { */ export type EventSourceName = (typeof EventSourceName)[keyof typeof EventSourceName]; +/** + *Configuration for the Amazon Data Firehose stream destination of user activity log export with + * advanced security features.
+ * @public + */ +export interface FirehoseConfigurationType { + /** + *The ARN of an Amazon Data Firehose stream that's the destination for advanced security + * features log export.
+ * @public + */ + StreamArn?: string; +} + /** * @public * @enum */ export const LogLevel = { ERROR: "ERROR", + INFO: "INFO", } as const; /** @@ -7918,6 +7968,20 @@ export const LogLevel = { */ export type LogLevel = (typeof LogLevel)[keyof typeof LogLevel]; +/** + *Configuration for the Amazon S3 bucket destination of user activity log export with + * advanced security features.
+ * @public + */ +export interface S3ConfigurationType { + /** + *The ARN of an Amazon S3 bucket that's the destination for advanced security features + * log export.
+ * @public + */ + BucketArn?: string; +} + /** *The logging parameters of a user pool.
* @public @@ -7925,37 +7989,63 @@ export type LogLevel = (typeof LogLevel)[keyof typeof LogLevel]; export interface LogConfigurationType { /** *The errorlevel
selection of logs that a user pool sends for detailed
- * activity logging.
userNotification
activity with information about message delivery, choose ERROR
with
+ * CloudWatchLogsConfiguration
. To send userAuthEvents
+ * activity with user logs from advanced security features, choose INFO
with
+ * one of CloudWatchLogsConfiguration
, FirehoseConfiguration
, or
+ * S3Configuration
.
* @public
*/
LogLevel: LogLevel | undefined;
/**
- * The source of events that your user pool sends for detailed activity logging.
+ *The source of events that your user pool sends for logging. To send error-level logs
+ * about user notification activity, set to userNotification
. To send
+ * info-level logs about advanced security features user activity, set to
+ * userAuthEvents
.
The CloudWatch logging destination of a user pool.
+ *The CloudWatch log group destination of user pool detailed activity logs, or of user + * activity log export with advanced security features.
* @public */ CloudWatchLogsConfiguration?: CloudWatchLogsConfigurationType; + + /** + *The Amazon S3 bucket destination of user activity log export with advanced security + * features. To activate this setting, + * advanced security features must be active in your user pool.
+ * @public + */ + S3Configuration?: S3ConfigurationType; + + /** + *The Amazon Data Firehose stream destination of user activity log export with advanced security + * features. To activate this setting, + * advanced security features must be active in your user pool.
+ * @public + */ + FirehoseConfiguration?: FirehoseConfigurationType; } /** - *The logging parameters of a user pool.
+ *The logging parameters of a user pool returned in response to
+ * GetLogDeliveryConfiguration
.
The ID of the user pool where you configured detailed activity logging.
+ *The ID of the user pool where you configured logging.
* @public */ UserPoolId: string | undefined; /** - *The detailed activity logging destination of a user pool.
+ *A logging destination of a user pool. User pools can have multiple logging + * destinations for message-delivery and user-activity logs.
* @public */ LogConfigurations: LogConfigurationType[] | undefined; @@ -7966,7 +8056,7 @@ export interface LogDeliveryConfigurationType { */ export interface GetLogDeliveryConfigurationResponse { /** - *The detailed activity logging configuration of the requested user pool.
+ *The logging configuration of the requested user pool.
* @public */ LogDeliveryConfiguration?: LogDeliveryConfigurationType; @@ -9598,65 +9688,6 @@ export class UnauthorizedException extends __BaseException { } } -/** - *Exception that is thrown when you attempt to perform an operation that isn't enabled - * for the user pool client.
- * @public - */ -export class UnsupportedOperationException extends __BaseException { - readonly name: "UnsupportedOperationException" = "UnsupportedOperationException"; - readonly $fault: "client" = "client"; - /** - * @internal - */ - constructor(opts: __ExceptionOptionTypeException that is thrown when an unsupported token is passed to an operation.
- * @public - */ -export class UnsupportedTokenTypeException extends __BaseException { - readonly name: "UnsupportedTokenTypeException" = "UnsupportedTokenTypeException"; - readonly $fault: "client" = "client"; - /** - * @internal - */ - constructor(opts: __ExceptionOptionTypeThe ID of the user pool where you want to configure detailed activity logging .
- * @public - */ - UserPoolId: string | undefined; - - /** - *A collection of all of the detailed activity logging configurations for a user - * pool.
- * @public - */ - LogConfigurations: LogConfigurationType[] | undefined; -} - /** * @internal */ diff --git a/clients/client-cognito-identity-provider/src/models/models_1.ts b/clients/client-cognito-identity-provider/src/models/models_1.ts index 0d3a519c75bf8..c0ba8eab70166 100644 --- a/clients/client-cognito-identity-provider/src/models/models_1.ts +++ b/clients/client-cognito-identity-provider/src/models/models_1.ts @@ -23,6 +23,7 @@ import { GroupType, IdentityProviderType, LambdaConfigType, + LogConfigurationType, LogDeliveryConfigurationType, MFAOptionType, OAuthFlowType, @@ -52,6 +53,64 @@ import { VerifiedAttributeType, } from "./models_0"; +/** + *Exception that is thrown when you attempt to perform an operation that isn't enabled + * for the user pool client.
+ * @public + */ +export class UnsupportedOperationException extends __BaseException { + readonly name: "UnsupportedOperationException" = "UnsupportedOperationException"; + readonly $fault: "client" = "client"; + /** + * @internal + */ + constructor(opts: __ExceptionOptionTypeException that is thrown when an unsupported token is passed to an operation.
+ * @public + */ +export class UnsupportedTokenTypeException extends __BaseException { + readonly name: "UnsupportedTokenTypeException" = "UnsupportedTokenTypeException"; + readonly $fault: "client" = "client"; + /** + * @internal + */ + constructor(opts: __ExceptionOptionTypeThe ID of the user pool where you want to configure logging.
+ * @public + */ + UserPoolId: string | undefined; + + /** + *A collection of the logging configurations for a user pool.
+ * @public + */ + LogConfigurations: LogConfigurationType[] | undefined; +} + /** * @public */ @@ -420,7 +479,7 @@ export interface SignUpResponse { CodeDeliveryDetails?: CodeDeliveryDetailsType; /** - *The UUID of the authenticated user. This isn't the same as + *
The 128-bit ID of the authenticated user. This isn't the same as
* username
.
Defaults to LEGACY
when you don't provide a value.
Updates the enrollment (opt in and opt out) status of an account to the Cost Optimization * Hub service.
- *If the account is a management account of an organization, this action can also be used to - * enroll member accounts of the organization.
+ *If the account is a management account or delegated administrator of an organization, this + * action can also be used to enroll member accounts of the organization.
*You must have the appropriate permissions to opt in to Cost Optimization Hub and to view * its recommendations. When you opt in, Cost Optimization Hub automatically creates a * service-linked role in your account to access its data.
diff --git a/clients/client-cost-optimization-hub/src/models/models_0.ts b/clients/client-cost-optimization-hub/src/models/models_0.ts index bb8167a31ade3..e76adbd532335 100644 --- a/clients/client-cost-optimization-hub/src/models/models_0.ts +++ b/clients/client-cost-optimization-hub/src/models/models_0.ts @@ -2233,7 +2233,7 @@ export interface ListEnrollmentStatusesResponse { /** *The enrollment status of all member accounts in the organization if the account is the - * management account.
+ * management account or delegated administrator. * @public */ includeMemberAccounts?: boolean; @@ -2536,6 +2536,19 @@ export interface ListRecommendationsResponse { nextToken?: string; } +/** + * @public + * @enum + */ +export const SummaryMetrics = { + SAVINGS_PERCENTAGE: "SavingsPercentage", +} as const; + +/** + * @public + */ +export type SummaryMetrics = (typeof SummaryMetrics)[keyof typeof SummaryMetrics]; + /** * @public */ @@ -2554,11 +2567,18 @@ export interface ListRecommendationSummariesRequest { groupBy: string | undefined; /** - *The maximum number of recommendations that are returned for the request.
+ *The maximum number of recommendations to be returned for the request.
* @public */ maxResults?: number; + /** + *Additional metrics to be returned for the request. The only valid value is
+ * savingsPercentage
.
The token to retrieve the next set of results.
* @public @@ -2591,6 +2611,24 @@ export interface RecommendationSummary { recommendationCount?: number; } +/** + *The results or descriptions for the additional metrics, based on whether the metrics were + * or were not requested.
+ * @public + */ +export interface SummaryMetricsResult { + /** + *The savings percentage based on your Amazon Web Services spend over the past 30 + * days.
+ *Savings percentage is only supported when filtering by Region, account ID, or + * tags.
+ *List of all savings recommendations.
+ *A list of all savings recommendations.
* @public */ items?: RecommendationSummary[]; @@ -2619,6 +2657,13 @@ export interface ListRecommendationSummariesResponse { */ currencyCode?: string; + /** + *The results or descriptions for the additional metrics, based on whether the metrics were + * or were not requested.
+ * @public + */ + metrics?: SummaryMetricsResult; + /** *The token to retrieve the next set of results.
* @public @@ -2638,7 +2683,7 @@ export interface UpdateEnrollmentStatusRequest { /** *Indicates whether to enroll member accounts of the organization if the account is the - * management account.
+ * management account or delegated administrator. * @public */ includeMemberAccounts?: boolean; diff --git a/clients/client-cost-optimization-hub/src/protocols/Aws_json1_0.ts b/clients/client-cost-optimization-hub/src/protocols/Aws_json1_0.ts index b93e4a365bf3e..aaa95eefd7dcd 100644 --- a/clients/client-cost-optimization-hub/src/protocols/Aws_json1_0.ts +++ b/clients/client-cost-optimization-hub/src/protocols/Aws_json1_0.ts @@ -98,6 +98,7 @@ import { SavingsPlansCostCalculation, SavingsPlansPricing, StorageConfiguration, + SummaryMetrics, Tag, ThrottlingException, UpdateEnrollmentStatusRequest, @@ -476,6 +477,8 @@ const de_ValidationExceptionRes = async (parsedOutput: any, context: __SerdeCont // se_ResourceTypeList omitted. +// se_SummaryMetricsList omitted. + // se_Tag omitted. // se_TagList omitted. @@ -749,6 +752,7 @@ const de_ListRecommendationSummariesResponse = ( estimatedTotalDedupedSavings: __limitedParseDouble, groupBy: __expectString, items: (_: any) => de_RecommendationSummariesList(_, context), + metrics: _json, nextToken: __expectString, }) as any; }; @@ -1063,6 +1067,8 @@ const de_StorageConfiguration = (output: any, context: __SerdeContext): StorageC }) as any; }; +// de_SummaryMetricsResult omitted. + // de_Tag omitted. // de_TagList omitted. diff --git a/clients/client-workspaces/CHANGELOG.md b/clients/client-workspaces/CHANGELOG.md index b4e6b0c90feca..7f6ac2c69c9fa 100644 --- a/clients/client-workspaces/CHANGELOG.md +++ b/clients/client-workspaces/CHANGELOG.md @@ -3,6 +3,17 @@ All notable changes to this project will be documented in this file. See [Conventional Commits](https://conventionalcommits.org) for commit guidelines. +# [3.625.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.624.0...v3.625.0) (2024-08-06) + + +### Features + +* **client-workspaces:** Added support for BYOL_GRAPHICS_G4DN_WSP IngestionProcess ([871d342](https://github.com/aws/aws-sdk-js-v3/commit/871d34202fb92f2afb59efa2fc199cec50239778)) + + + + + # [3.624.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.623.0...v3.624.0) (2024-08-05) **Note:** Version bump only for package @aws-sdk/client-workspaces diff --git a/clients/client-workspaces/package.json b/clients/client-workspaces/package.json index 9c1c596782113..a9b3b9c6425b1 100644 --- a/clients/client-workspaces/package.json +++ b/clients/client-workspaces/package.json @@ -1,7 +1,7 @@ { "name": "@aws-sdk/client-workspaces", "description": "AWS SDK for JavaScript Workspaces Client for Node.js, Browser and React Native", - "version": "3.624.0", + "version": "3.625.0", "scripts": { "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'", "build:cjs": "node ../../scripts/compilation/inline client-workspaces", diff --git a/clients/client-workspaces/src/commands/ImportWorkspaceImageCommand.ts b/clients/client-workspaces/src/commands/ImportWorkspaceImageCommand.ts index 57642bd8a5356..cb1f52b9cbefe 100644 --- a/clients/client-workspaces/src/commands/ImportWorkspaceImageCommand.ts +++ b/clients/client-workspaces/src/commands/ImportWorkspaceImageCommand.ts @@ -41,7 +41,7 @@ export interface ImportWorkspaceImageCommandOutput extends ImportWorkspaceImageR * const client = new WorkSpacesClient(config); * const input = { // ImportWorkspaceImageRequest * Ec2ImageId: "STRING_VALUE", // required - * IngestionProcess: "BYOL_REGULAR" || "BYOL_GRAPHICS" || "BYOL_GRAPHICSPRO" || "BYOL_GRAPHICS_G4DN" || "BYOL_REGULAR_WSP" || "BYOL_REGULAR_BYOP" || "BYOL_GRAPHICS_G4DN_BYOP", // required + * IngestionProcess: "BYOL_REGULAR" || "BYOL_GRAPHICS" || "BYOL_GRAPHICSPRO" || "BYOL_GRAPHICS_G4DN" || "BYOL_REGULAR_WSP" || "BYOL_GRAPHICS_G4DN_WSP" || "BYOL_REGULAR_BYOP" || "BYOL_GRAPHICS_G4DN_BYOP", // required * ImageName: "STRING_VALUE", // required * ImageDescription: "STRING_VALUE", // required * Tags: [ // TagList diff --git a/clients/client-workspaces/src/models/models_0.ts b/clients/client-workspaces/src/models/models_0.ts index cdd1a4032f0a9..86d68c67951c2 100644 --- a/clients/client-workspaces/src/models/models_0.ts +++ b/clients/client-workspaces/src/models/models_0.ts @@ -5991,6 +5991,7 @@ export const WorkspaceImageIngestionProcess = { BYOL_GRAPHICSPRO: "BYOL_GRAPHICSPRO", BYOL_GRAPHICS_G4DN: "BYOL_GRAPHICS_G4DN", BYOL_GRAPHICS_G4DN_BYOP: "BYOL_GRAPHICS_G4DN_BYOP", + BYOL_GRAPHICS_G4DN_WSP: "BYOL_GRAPHICS_G4DN_WSP", BYOL_REGULAR: "BYOL_REGULAR", BYOL_REGULAR_BYOP: "BYOL_REGULAR_BYOP", BYOL_REGULAR_WSP: "BYOL_REGULAR_WSP", @@ -6055,10 +6056,13 @@ export interface ImportWorkspaceImageRequest { *Although this parameter is an array, only one item is allowed at this time.
+ *Although this parameter is an array, only one item is allowed at this + * time.
*Windows 11 only supports Microsoft_Office_2019
.
During the image import process, non-GPU WSP WorkSpaces with Windows 11 support
+ * only Microsoft_Office_2019
. GPU WSP WorkSpaces with Windows 11 do not
+ * support Office installation.
A name for the input of the flow input node.
", + "smithy.api#documentation": "The name of the flow input node that begins the prompt flow.
", "smithy.api#required": {} } }, "nodeOutputName": { "target": "com.amazonaws.bedrockagentruntime#NodeOutputName", "traits": { - "smithy.api#documentation": "A name for the output of the flow input node.
", + "smithy.api#documentation": "The name of the output from the flow input node that begins the prompt flow.
", "smithy.api#required": {} } }, "content": { "target": "com.amazonaws.bedrockagentruntime#FlowInputContent", "traits": { - "smithy.api#documentation": "Contains information about an input into the flow.
", + "smithy.api#documentation": "Contains information about an input into the prompt flow.
", "smithy.api#required": {} } } }, "traits": { - "smithy.api#documentation": "Contains information about an input into the flow and what to do with it.
\nThis data type is used in the following API operations:
\n\n InvokeFlow request\n
\nContains information about an input into the prompt flow and where to send it.
\nThis data type is used in the following API operations:
\n\n InvokeFlow request\n
\nThe input for the flow input node.
" + "smithy.api#documentation": "The input to send to the prompt flow input node.
" } } }, @@ -1752,12 +1752,12 @@ "document": { "target": "smithy.api#Document", "traits": { - "smithy.api#documentation": "A name for the output of the flow.
" + "smithy.api#documentation": "The content in the output.
" } } }, "traits": { - "smithy.api#documentation": "Contains information about the output node.
\nThis data type is used in the following API operations:
\n\n InvokeFlow request\n
\nContains information about the content in an output from prompt flow invocation.
\nThis data type is used in the following API operations:
\n\n InvokeFlow request\n
\nThe name of the node to which input was provided.
", + "smithy.api#documentation": "The name of the flow output node that the output is from.
", "smithy.api#required": {} } }, "nodeType": { "target": "com.amazonaws.bedrockagentruntime#NodeType", "traits": { - "smithy.api#documentation": "The type of node to which input was provided.
", + "smithy.api#documentation": "The type of the node that the output is from.
", "smithy.api#required": {} } }, "content": { "target": "com.amazonaws.bedrockagentruntime#FlowOutputContent", "traits": { - "smithy.api#documentation": "The output of the node.
", + "smithy.api#documentation": "The content in the output.
", "smithy.api#required": {} } } }, "traits": { - "smithy.api#documentation": "Contains information about an output from flow invoction.
\nThis data type is used in the following API operations:
\n\n InvokeFlow response\n
\nContains information about an output from prompt flow invoction.
\nThis data type is used in the following API operations:
\n\n InvokeFlow response\n
\nWhile generating a response, the model determines the probability of the following token at each point of generation. The value that you set for Top P
determines the number of most-likely candidates from which the model chooses the next token in the sequence. For example, if you set topP
to 80, the model only selects the next token from the top 80% of the probability distribution of next tokens.
While generating a response, the model determines the probability of the following token at each point of generation. The value that you set for Top P
determines the number of most-likely candidates from which the model chooses the next token in the sequence. For example, if you set topP
to 0.8, the model only selects the next token from the top 80% of the probability distribution of next tokens.
Invokes an alias of a flow to run the inputs that you specify and return the output of each node as a stream. If there's an error, the error is returned. For more information, see Test a flow in Amazon Bedrock in the Amazon Bedrock User Guide.
", + "smithy.api#documentation": "Invokes an alias of a flow to run the inputs that you specify and return the output of each node as a stream. If there's an error, the error is returned. For more information, see Test a flow in Amazon Bedrock in the Amazon Bedrock User Guide.
\nThe CLI doesn't support streaming operations in Amazon Bedrock, including InvokeFlow
.
Contains details of the foundation model usage.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Provides details of the foundation model.
", + "smithy.api#sensitive": {} + } + }, "com.amazonaws.bedrockagentruntime#MimeType": { "type": "string" }, @@ -3945,6 +3960,33 @@ "smithy.api#documentation": "Settings for how the model processes the prompt prior to retrieval and generation.
" } }, + "com.amazonaws.bedrockagentruntime#OrchestrationModelInvocationOutput": { + "type": "structure", + "members": { + "traceId": { + "target": "com.amazonaws.bedrockagentruntime#TraceId", + "traits": { + "smithy.api#documentation": "The unique identifier of the trace.
" + } + }, + "rawResponse": { + "target": "com.amazonaws.bedrockagentruntime#RawResponse", + "traits": { + "smithy.api#documentation": "Contains details of the raw response from the foundation model output.
" + } + }, + "metadata": { + "target": "com.amazonaws.bedrockagentruntime#Metadata", + "traits": { + "smithy.api#documentation": "Contains information about the foundation model output.
" + } + } + }, + "traits": { + "smithy.api#documentation": "The foundation model output from the orchestration step.
", + "smithy.api#sensitive": {} + } + }, "com.amazonaws.bedrockagentruntime#OrchestrationTrace": { "type": "union", "members": { @@ -3971,6 +4013,12 @@ "traits": { "smithy.api#documentation": "The input for the orchestration step.
\nThe type
is ORCHESTRATION
.
The text
contains the prompt.
The inferenceConfiguration
, parserMode
, and overrideLambda
values are set in the PromptOverrideConfiguration object that was set when the agent was created or updated.
Contains information pertaining to the output from the foundation model that is being invoked.
" + } } }, "traits": { @@ -4354,6 +4402,21 @@ "smithy.api#sensitive": {} } }, + "com.amazonaws.bedrockagentruntime#RawResponse": { + "type": "structure", + "members": { + "content": { + "target": "smithy.api#String", + "traits": { + "smithy.api#documentation": "The foundation model's raw output content.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Contains the raw output from the foundation model.
", + "smithy.api#sensitive": {} + } + }, "com.amazonaws.bedrockagentruntime#RepromptResponse": { "type": "structure", "members": { @@ -5641,6 +5704,27 @@ } } }, + "com.amazonaws.bedrockagentruntime#Usage": { + "type": "structure", + "members": { + "inputTokens": { + "target": "smithy.api#Integer", + "traits": { + "smithy.api#documentation": "Contains information about the input tokens from the foundation model usage.
" + } + }, + "outputTokens": { + "target": "smithy.api#Integer", + "traits": { + "smithy.api#documentation": "Contains information about the output tokens from the foundation model usage.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Contains information of the usage of the foundation model.
", + "smithy.api#sensitive": {} + } + }, "com.amazonaws.bedrockagentruntime#ValidationException": { "type": "structure", "members": { diff --git a/codegen/sdk-codegen/aws-models/cognito-identity-provider.json b/codegen/sdk-codegen/aws-models/cognito-identity-provider.json index 7f8309db4bb13..677624d82548f 100644 --- a/codegen/sdk-codegen/aws-models/cognito-identity-provider.json +++ b/codegen/sdk-codegen/aws-models/cognito-identity-provider.json @@ -366,7 +366,7 @@ "name": "cognito-idp" }, "aws.protocols#awsJson1_1": {}, - "smithy.api#documentation": "With the Amazon Cognito user pools API, you can configure user pools and authenticate users. To\n authenticate users from third-party identity providers (IdPs) in this API, you can\n link IdP users to native user profiles. Learn more\n about the authentication and authorization of federated users at Adding user pool sign-in through a third party and in the User pool federation endpoints and hosted UI reference.
\nThis API reference provides detailed information about API operations and object types\n in Amazon Cognito.
\nAlong with resource management operations, the Amazon Cognito user pools API includes classes\n of operations and authorization models for client-side and server-side authentication of\n users. You can interact with operations in the Amazon Cognito user pools API as any of the\n following subjects.
\nAn administrator who wants to configure user pools, app clients, users,\n groups, or other user pool functions.
\nA server-side app, like a web application, that wants to use its Amazon Web Services\n privileges to manage, authenticate, or authorize a user.
\nA client-side app, like a mobile app, that wants to make unauthenticated\n requests to manage, authenticate, or authorize a user.
\nFor more information, see Using the Amazon Cognito user pools API and user pool endpoints\n in the Amazon Cognito Developer Guide.
\nWith your Amazon Web Services SDK, you can build the logic to support operational flows in every use\n case for this API. You can also make direct REST API requests to Amazon Cognito user pools service endpoints. The following links can get you started\n with the CognitoIdentityProvider
client in other supported Amazon Web Services\n SDKs.
To get started with an Amazon Web Services SDK, see Tools to Build on Amazon Web Services. For example actions and scenarios, see Code examples for Amazon Cognito Identity Provider using Amazon Web Services\n SDKs.
", + "smithy.api#documentation": "With the Amazon Cognito user pools API, you can configure user pools and authenticate users. To\n authenticate users from third-party identity providers (IdPs) in this API, you can\n link IdP users to native user profiles. Learn more\n about the authentication and authorization of federated users at Adding user pool sign-in through a third party and in the User pool federation endpoints and hosted UI reference.
\nThis API reference provides detailed information about API operations and object types\n in Amazon Cognito.
\nAlong with resource management operations, the Amazon Cognito user pools API includes classes\n of operations and authorization models for client-side and server-side authentication of\n users. You can interact with operations in the Amazon Cognito user pools API as any of the\n following subjects.
\nAn administrator who wants to configure user pools, app clients, users,\n groups, or other user pool functions.
\nA server-side app, like a web application, that wants to use its Amazon Web Services\n privileges to manage, authenticate, or authorize a user.
\nA client-side app, like a mobile app, that wants to make unauthenticated\n requests to manage, authenticate, or authorize a user.
\nFor more information, see Using the Amazon Cognito user pools API and user pool endpoints\n in the Amazon Cognito Developer Guide.
\nWith your Amazon Web Services SDK, you can build the logic to support operational flows in every use\n case for this API. You can also make direct REST API requests to Amazon Cognito user pools service endpoints. The following links can get you started\n with the CognitoIdentityProvider
client in other supported Amazon Web Services\n SDKs.
To get started with an Amazon Web Services SDK, see Tools to Build on Amazon Web Services. For example actions and scenarios, see Code examples for Amazon Cognito Identity Provider using Amazon Web Services\n SDKs.
", "smithy.api#title": "Amazon Cognito Identity Provider", "smithy.api#xmlNamespace": { "uri": "http://cognito-idp.amazonaws.com/doc/2016-04-18/" @@ -1570,7 +1570,7 @@ } ], "traits": { - "smithy.api#documentation": "This IAM-authenticated API operation provides a code that Amazon Cognito sent to your user\n when they signed up in your user pool. After your user enters their code, they confirm\n ownership of the email address or phone number that they provided, and their user\n account becomes active. Depending on your user pool configuration, your users will\n receive their confirmation code in an email or SMS message.
\nLocal users who signed up in your user pool are the only type of user who can confirm\n sign-up with a code. Users who federate through an external identity provider (IdP) have\n already been confirmed by their IdP. Administrator-created users confirm their accounts\n when they respond to their invitation email message and choose a password.
\nAmazon Cognito evaluates Identity and Access Management (IAM) policies in requests for this API operation. For\n this operation, you must use IAM credentials to authorize requests, and you must\n grant yourself the corresponding IAM permission in a policy.
\n\n Learn more\n
\n\n Using the Amazon Cognito user pools API and user pool endpoints\n
\nThis IAM-authenticated API operation confirms user sign-up as an administrator.\n Unlike ConfirmSignUp, your IAM credentials authorize user account confirmation.\n No confirmation code is required.
\nThis request sets a user account active in a user pool that requires confirmation of new user accounts before they can sign in. You can\n configure your user pool to not send confirmation codes to new users and instead confirm\n them with this API operation on the back end.
\nAmazon Cognito evaluates Identity and Access Management (IAM) policies in requests for this API operation. For\n this operation, you must use IAM credentials to authorize requests, and you must\n grant yourself the corresponding IAM permission in a policy.
\n\n Learn more\n
\n\n Using the Amazon Cognito user pools API and user pool endpoints\n
\nBegins setup of time-based one-time password (TOTP) multi-factor authentication (MFA)\n for a user, with a unique private key that Amazon Cognito generates and returns in the API\n response. You can authorize an AssociateSoftwareToken
request with either\n the user's access token, or a session string from a challenge response that you received\n from Amazon Cognito.
Amazon Cognito disassociates an existing software token when you verify the new token in a\n VerifySoftwareToken API request. If you don't verify the software\n token and your user pool doesn't require MFA, the user can then authenticate with\n user name and password credentials alone. If your user pool requires TOTP MFA, Amazon Cognito\n generates an MFA_SETUP
or SOFTWARE_TOKEN_SETUP
challenge\n each time your user signs. Complete setup with AssociateSoftwareToken
\n and VerifySoftwareToken
.
After you set up software token MFA for your user, Amazon Cognito generates a\n SOFTWARE_TOKEN_MFA
challenge when they authenticate. Respond to\n this challenge with your user's TOTP.
Amazon Cognito doesn't evaluate Identity and Access Management (IAM) policies in requests for this API operation. For\n this operation, you can't use IAM credentials to authorize requests, and you can't\n grant IAM permissions in policies. For more information about authorization models in\n Amazon Cognito, see Using the Amazon Cognito user pools API and user pool endpoints.
\nBegins setup of time-based one-time password (TOTP) multi-factor authentication (MFA)\n for a user, with a unique private key that Amazon Cognito generates and returns in the API\n response. You can authorize an AssociateSoftwareToken
request with either\n the user's access token, or a session string from a challenge response that you received\n from Amazon Cognito.
Amazon Cognito disassociates an existing software token when you verify the new token in a\n VerifySoftwareToken API request. If you don't verify the software\n token and your user pool doesn't require MFA, the user can then authenticate with\n user name and password credentials alone. If your user pool requires TOTP MFA, Amazon Cognito\n generates an MFA_SETUP
or SOFTWARE_TOKEN_SETUP
challenge\n each time your user signs in. Complete setup with\n AssociateSoftwareToken
and VerifySoftwareToken
.
After you set up software token MFA for your user, Amazon Cognito generates a\n SOFTWARE_TOKEN_MFA
challenge when they authenticate. Respond to\n this challenge with your user's TOTP.
Amazon Cognito doesn't evaluate Identity and Access Management (IAM) policies in requests for this API operation. For\n this operation, you can't use IAM credentials to authorize requests, and you can't\n grant IAM permissions in policies. For more information about authorization models in\n Amazon Cognito, see Using the Amazon Cognito user pools API and user pool endpoints.
\nThe CloudWatch logging destination of a user pool detailed activity logging\n configuration.
" + "smithy.api#documentation": "Configuration for the CloudWatch log group destination of user pool detailed activity\n logging, or of user activity log export with advanced security features.
" } }, "com.amazonaws.cognitoidentityprovider#CodeDeliveryDetailsListType": { @@ -4893,6 +4902,9 @@ { "target": "com.amazonaws.cognitoidentityprovider#NotAuthorizedException" }, + { + "target": "com.amazonaws.cognitoidentityprovider#PasswordHistoryPolicyViolationException" + }, { "target": "com.amazonaws.cognitoidentityprovider#ResourceNotFoundException" }, @@ -6241,7 +6253,7 @@ "PreventUserExistenceErrors": { "target": "com.amazonaws.cognitoidentityprovider#PreventUserExistenceErrorTypes", "traits": { - "smithy.api#documentation": "Errors and responses that you want Amazon Cognito APIs to return during authentication, account\n confirmation, and password recovery when the user doesn't exist in the user pool. When\n set to ENABLED
and the user doesn't exist, authentication returns an error\n indicating either the username or password was incorrect. Account confirmation and\n password recovery return a response indicating a code was sent to a simulated\n destination. When set to LEGACY
, those APIs return a\n UserNotFoundException
exception if the user doesn't exist in the user\n pool.
Valid values include:
\n\n ENABLED
- This prevents user existence-related errors.
\n LEGACY
- This represents the early behavior of Amazon Cognito where user\n existence related errors aren't prevented.
Errors and responses that you want Amazon Cognito APIs to return during authentication, account\n confirmation, and password recovery when the user doesn't exist in the user pool. When\n set to ENABLED
and the user doesn't exist, authentication returns an error\n indicating either the username or password was incorrect. Account confirmation and\n password recovery return a response indicating a code was sent to a simulated\n destination. When set to LEGACY
, those APIs return a\n UserNotFoundException
exception if the user doesn't exist in the user\n pool.
Valid values include:
\n\n ENABLED
- This prevents user existence-related errors.
\n LEGACY
- This represents the early behavior of Amazon Cognito where user\n existence related errors aren't prevented.
Defaults to LEGACY
when you don't provide a value.
The ARN of an Amazon Data Firehose stream that's the destination for advanced security\n features log export.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Configuration for the Amazon Data Firehose stream destination of user activity log export with\n advanced security features.
" + } + }, "com.amazonaws.cognitoidentityprovider#ForbiddenException": { "type": "structure", "members": { @@ -8788,7 +8820,7 @@ } ], "traits": { - "smithy.api#documentation": "Gets the detailed activity logging configuration for a user pool.
" + "smithy.api#documentation": "Gets the logging configuration of a user pool.
" } }, "com.amazonaws.cognitoidentityprovider#GetLogDeliveryConfigurationRequest": { @@ -8797,7 +8829,7 @@ "UserPoolId": { "target": "com.amazonaws.cognitoidentityprovider#UserPoolIdType", "traits": { - "smithy.api#documentation": "The ID of the user pool where you want to view detailed activity logging\n configuration.
", + "smithy.api#documentation": "The ID of the user pool that has the logging configuration that you want to\n view.
", "smithy.api#required": {} } } @@ -8812,7 +8844,7 @@ "LogDeliveryConfiguration": { "target": "com.amazonaws.cognitoidentityprovider#LogDeliveryConfigurationType", "traits": { - "smithy.api#documentation": "The detailed activity logging configuration of the requested user pool.
" + "smithy.api#documentation": "The logging configuration of the requested user pool.
" } } }, @@ -9834,7 +9866,7 @@ } }, "traits": { - "smithy.api#documentation": "This exception is thrown when the trust relationship is not valid for the role\n provided for SMS configuration. This can happen if you don't trust\n cognito-idp.amazonaws.com
or the external ID provided in the role does\n not match what is provided in the SMS configuration for the user pool.
This exception is thrown when the trust relationship is not valid for the role\n provided for SMS configuration. This can happen if you don't trust\n cognito-idp.amazonaws.com
or the external ID provided in the role does\n not match what is provided in the SMS configuration for the user pool.
The errorlevel
selection of logs that a user pool sends for detailed\n activity logging.
The errorlevel
selection of logs that a user pool sends for detailed\n activity logging. To send userNotification
activity with information about message delivery, choose ERROR
with\n CloudWatchLogsConfiguration
. To send userAuthEvents
\n activity with user logs from advanced security features, choose INFO
with\n one of CloudWatchLogsConfiguration
, FirehoseConfiguration
, or\n S3Configuration
.
The source of events that your user pool sends for detailed activity logging.
", + "smithy.api#documentation": "The source of events that your user pool sends for logging. To send error-level logs\n about user notification activity, set to userNotification
. To send\n info-level logs about advanced security features user activity, set to\n userAuthEvents
.
The CloudWatch logging destination of a user pool.
" + "smithy.api#documentation": "The CloudWatch log group destination of user pool detailed activity logs, or of user\n activity log export with advanced security features.
" + } + }, + "S3Configuration": { + "target": "com.amazonaws.cognitoidentityprovider#S3ConfigurationType", + "traits": { + "smithy.api#documentation": "The Amazon S3 bucket destination of user activity log export with advanced security\n features. To activate this setting, \n advanced security features must be active in your user pool.
" + } + }, + "FirehoseConfiguration": { + "target": "com.amazonaws.cognitoidentityprovider#FirehoseConfigurationType", + "traits": { + "smithy.api#documentation": "The Amazon Data Firehose stream destination of user activity log export with advanced security\n features. To activate this setting, \n advanced security features must be active in your user pool.
" } } }, @@ -10941,20 +10985,20 @@ "UserPoolId": { "target": "com.amazonaws.cognitoidentityprovider#UserPoolIdType", "traits": { - "smithy.api#documentation": "The ID of the user pool where you configured detailed activity logging.
", + "smithy.api#documentation": "The ID of the user pool where you configured logging.
", "smithy.api#required": {} } }, "LogConfigurations": { "target": "com.amazonaws.cognitoidentityprovider#LogConfigurationListType", "traits": { - "smithy.api#documentation": "The detailed activity logging destination of a user pool.
", + "smithy.api#documentation": "A logging destination of a user pool. User pools can have multiple logging\n destinations for message-delivery and user-activity logs.
", "smithy.api#required": {} } } }, "traits": { - "smithy.api#documentation": "The logging parameters of a user pool.
" + "smithy.api#documentation": "The logging parameters of a user pool returned in response to\n GetLogDeliveryConfiguration
.
The message returned when a user's new password matches a previous password and \n doesn't comply with the password-history policy.
", + "smithy.api#error": "client", + "smithy.api#httpError": 400 + } + }, + "com.amazonaws.cognitoidentityprovider#PasswordHistorySizeType": { + "type": "integer", + "traits": { + "smithy.api#range": { + "min": 0, + "max": 24 + } + } + }, "com.amazonaws.cognitoidentityprovider#PasswordPolicyMinLengthType": { "type": "integer", "traits": { @@ -11302,6 +11374,12 @@ "smithy.api#documentation": "In the password policy that you have set, refers to whether you have required users to\n use at least one symbol in their password.
" } }, + "PasswordHistorySize": { + "target": "com.amazonaws.cognitoidentityprovider#PasswordHistorySizeType", + "traits": { + "smithy.api#documentation": "The number of previous passwords that you want Amazon Cognito to restrict each user from\n reusing. Users can't set a password that matches any of n
previous\n passwords, where n
is the value of PasswordHistorySize
.
Password history isn't enforced and isn't displayed in DescribeUserPool responses when you set this value to\n 0
or don't provide it. To activate this setting, \n advanced security features must be active in your user pool.
Configuration for the Amazon S3 bucket destination of user activity log export with\n advanced security features.
" + } + }, "com.amazonaws.cognitoidentityprovider#SESConfigurationSet": { "type": "string", "traits": { @@ -12462,7 +12567,7 @@ } ], "traits": { - "smithy.api#documentation": "Sets up or modifies the detailed activity logging configuration of a user pool.
" + "smithy.api#documentation": "Sets up or modifies the logging configuration of a user pool. User pools can export\n user notification logs and advanced security features user activity logs.
" } }, "com.amazonaws.cognitoidentityprovider#SetLogDeliveryConfigurationRequest": { @@ -12471,14 +12576,14 @@ "UserPoolId": { "target": "com.amazonaws.cognitoidentityprovider#UserPoolIdType", "traits": { - "smithy.api#documentation": "The ID of the user pool where you want to configure detailed activity logging .
", + "smithy.api#documentation": "The ID of the user pool where you want to configure logging.
", "smithy.api#required": {} } }, "LogConfigurations": { "target": "com.amazonaws.cognitoidentityprovider#LogConfigurationListType", "traits": { - "smithy.api#documentation": "A collection of all of the detailed activity logging configurations for a user\n pool.
", + "smithy.api#documentation": "A collection of the logging configurations for a user pool.
", "smithy.api#required": {} } } @@ -13062,7 +13167,7 @@ "UserSub": { "target": "com.amazonaws.cognitoidentityprovider#StringType", "traits": { - "smithy.api#documentation": "The UUID of the authenticated user. This isn't the same as\n username
.
The 128-bit ID of the authenticated user. This isn't the same as\n username
.
Errors and responses that you want Amazon Cognito APIs to return during authentication, account\n confirmation, and password recovery when the user doesn't exist in the user pool. When\n set to ENABLED
and the user doesn't exist, authentication returns an error\n indicating either the username or password was incorrect. Account confirmation and\n password recovery return a response indicating a code was sent to a simulated\n destination. When set to LEGACY
, those APIs return a\n UserNotFoundException
exception if the user doesn't exist in the user\n pool.
Valid values include:
\n\n ENABLED
- This prevents user existence-related errors.
\n LEGACY
- This represents the early behavior of Amazon Cognito where user\n existence related errors aren't prevented.
Errors and responses that you want Amazon Cognito APIs to return during authentication, account\n confirmation, and password recovery when the user doesn't exist in the user pool. When\n set to ENABLED
and the user doesn't exist, authentication returns an error\n indicating either the username or password was incorrect. Account confirmation and\n password recovery return a response indicating a code was sent to a simulated\n destination. When set to LEGACY
, those APIs return a\n UserNotFoundException
exception if the user doesn't exist in the user\n pool.
Valid values include:
\n\n ENABLED
- This prevents user existence-related errors.
\n LEGACY
- This represents the early behavior of Amazon Cognito where user\n existence related errors aren't prevented.
Defaults to LEGACY
when you don't provide a value.
Errors and responses that you want Amazon Cognito APIs to return during authentication, account\n confirmation, and password recovery when the user doesn't exist in the user pool. When\n set to ENABLED
and the user doesn't exist, authentication returns an error\n indicating either the username or password was incorrect. Account confirmation and\n password recovery return a response indicating a code was sent to a simulated\n destination. When set to LEGACY
, those APIs return a\n UserNotFoundException
exception if the user doesn't exist in the user\n pool.
Valid values include:
\n\n ENABLED
- This prevents user existence-related errors.
\n LEGACY
- This represents the old behavior of Amazon Cognito where user\n existence related errors aren't prevented.
Errors and responses that you want Amazon Cognito APIs to return during authentication, account\n confirmation, and password recovery when the user doesn't exist in the user pool. When\n set to ENABLED
and the user doesn't exist, authentication returns an error\n indicating either the username or password was incorrect. Account confirmation and\n password recovery return a response indicating a code was sent to a simulated\n destination. When set to LEGACY
, those APIs return a\n UserNotFoundException
exception if the user doesn't exist in the user\n pool.
Valid values include:
\n\n ENABLED
- This prevents user existence-related errors.
\n LEGACY
- This represents the early behavior of Amazon Cognito where user\n existence related errors aren't prevented.
Defaults to LEGACY
when you don't provide a value.
The enrollment status of all member accounts in the organization if the account is the\n management account.
" + "smithy.api#documentation": "The enrollment status of all member accounts in the organization if the account is the\n management account or delegated administrator.
" } }, "nextToken": { @@ -2006,13 +2006,20 @@ "maxResults": { "target": "com.amazonaws.costoptimizationhub#MaxResults", "traits": { - "smithy.api#documentation": "The maximum number of recommendations that are returned for the request.
", + "smithy.api#documentation": "The maximum number of recommendations to be returned for the request.
", "smithy.api#range": { "min": 0, "max": 1000 } } }, + "metrics": { + "target": "com.amazonaws.costoptimizationhub#SummaryMetricsList", + "traits": { + "smithy.api#documentation": "Additional metrics to be returned for the request. The only valid value is\n savingsPercentage
.
List of all savings recommendations.
" + "smithy.api#documentation": "A list of all savings recommendations.
" } }, "groupBy": { @@ -2051,6 +2058,13 @@ "smithy.api#documentation": "The currency code used for the recommendation.
" } }, + "metrics": { + "target": "com.amazonaws.costoptimizationhub#SummaryMetricsResult", + "traits": { + "smithy.api#documentation": "The results or descriptions for the additional metrics, based on whether the metrics were\n or were not requested.
", + "smithy.api#tags": ["delegatedAdmin"] + } + }, "nextToken": { "target": "smithy.api#String", "traits": { @@ -3341,6 +3355,43 @@ "smithy.api#documentation": "The storage configuration used for recommendations.
" } }, + "com.amazonaws.costoptimizationhub#SummaryMetrics": { + "type": "enum", + "members": { + "SAVINGS_PERCENTAGE": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "SavingsPercentage" + } + } + } + }, + "com.amazonaws.costoptimizationhub#SummaryMetricsList": { + "type": "list", + "member": { + "target": "com.amazonaws.costoptimizationhub#SummaryMetrics" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 100 + } + } + }, + "com.amazonaws.costoptimizationhub#SummaryMetricsResult": { + "type": "structure", + "members": { + "savingsPercentage": { + "target": "smithy.api#String", + "traits": { + "smithy.api#documentation": "The savings percentage based on your Amazon Web Services spend over the past 30\n days.
\nSavings percentage is only supported when filtering by Region, account ID, or\n tags.
\nThe results or descriptions for the additional metrics, based on whether the metrics were\n or were not requested.
" + } + }, "com.amazonaws.costoptimizationhub#Tag": { "type": "structure", "members": { @@ -3409,7 +3460,7 @@ } ], "traits": { - "smithy.api#documentation": "Updates the enrollment (opt in and opt out) status of an account to the Cost Optimization\n Hub service.
\nIf the account is a management account of an organization, this action can also be used to\n enroll member accounts of the organization.
\nYou must have the appropriate permissions to opt in to Cost Optimization Hub and to view\n its recommendations. When you opt in, Cost Optimization Hub automatically creates a\n service-linked role in your account to access its data.
" + "smithy.api#documentation": "Updates the enrollment (opt in and opt out) status of an account to the Cost Optimization\n Hub service.
\nIf the account is a management account or delegated administrator of an organization, this\n action can also be used to enroll member accounts of the organization.
\nYou must have the appropriate permissions to opt in to Cost Optimization Hub and to view\n its recommendations. When you opt in, Cost Optimization Hub automatically creates a\n service-linked role in your account to access its data.
" } }, "com.amazonaws.costoptimizationhub#UpdateEnrollmentStatusRequest": { @@ -3425,7 +3476,7 @@ "includeMemberAccounts": { "target": "smithy.api#Boolean", "traits": { - "smithy.api#documentation": "Indicates whether to enroll member accounts of the organization if the account is the\n management account.
" + "smithy.api#documentation": "Indicates whether to enroll member accounts of the organization if the account is the\n management account or delegated administrator.
" } } }, diff --git a/codegen/sdk-codegen/aws-models/workspaces.json b/codegen/sdk-codegen/aws-models/workspaces.json index 4433b76cc3a50..b72a67b66d539 100644 --- a/codegen/sdk-codegen/aws-models/workspaces.json +++ b/codegen/sdk-codegen/aws-models/workspaces.json @@ -5915,7 +5915,7 @@ "Applications": { "target": "com.amazonaws.workspaces#ApplicationList", "traits": { - "smithy.api#documentation": "If specified, the version of Microsoft Office to subscribe to. Valid only for Windows 10 and 11\n BYOL images. For more information about subscribing to Office for BYOL images, see Bring\n Your Own Windows Desktop Licenses.
\nAlthough this parameter is an array, only one item is allowed at this time.
\nWindows 11 only supports Microsoft_Office_2019
.
If specified, the version of Microsoft Office to subscribe to. Valid only for Windows 10 and 11\n BYOL images. For more information about subscribing to Office for BYOL images, see Bring\n Your Own Windows Desktop Licenses.
\nAlthough this parameter is an array, only one item is allowed at this\n time.
\nDuring the image import process, non-GPU WSP WorkSpaces with Windows 11 support\n only Microsoft_Office_2019
. GPU WSP WorkSpaces with Windows 11 do not\n support Office installation.