diff --git a/go.mod b/go.mod index 67bc6f58d0..cc36aad6f9 100644 --- a/go.mod +++ b/go.mod @@ -12,19 +12,19 @@ require ( github.com/aws/aws-sdk-go-v2 v1.30.3 github.com/aws/aws-sdk-go-v2/config v1.27.27 github.com/aws/aws-sdk-go-v2/credentials v1.17.27 - github.com/aws/aws-sdk-go-v2/service/autoscaling v1.43.1 - github.com/aws/aws-sdk-go-v2/service/cloudformation v1.52.1 - github.com/aws/aws-sdk-go-v2/service/cloudtrail v1.39.2 - github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs v1.37.1 + github.com/aws/aws-sdk-go-v2/service/autoscaling v1.43.3 + github.com/aws/aws-sdk-go-v2/service/cloudformation v1.53.3 + github.com/aws/aws-sdk-go-v2/service/cloudtrail v1.42.3 + github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs v1.37.3 github.com/aws/aws-sdk-go-v2/service/cognitoidentityprovider v1.37.0 github.com/aws/aws-sdk-go-v2/service/ec2 v1.173.0 - github.com/aws/aws-sdk-go-v2/service/eks v1.44.1 - github.com/aws/aws-sdk-go-v2/service/elasticloadbalancing v1.24.4 - github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 v1.30.5 - github.com/aws/aws-sdk-go-v2/service/iam v1.32.0 + github.com/aws/aws-sdk-go-v2/service/eks v1.47.0 + github.com/aws/aws-sdk-go-v2/service/elasticloadbalancing v1.26.3 + github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 v1.34.0 + github.com/aws/aws-sdk-go-v2/service/iam v1.34.3 github.com/aws/aws-sdk-go-v2/service/kms v1.35.1 - github.com/aws/aws-sdk-go-v2/service/outposts v1.39.0 - github.com/aws/aws-sdk-go-v2/service/ssm v1.52.1 + github.com/aws/aws-sdk-go-v2/service/outposts v1.42.0 + github.com/aws/aws-sdk-go-v2/service/ssm v1.52.3 github.com/aws/aws-sdk-go-v2/service/sts v1.30.3 github.com/aws/smithy-go v1.20.3 github.com/awslabs/amazon-eks-ami/nodeadm v0.0.0-20240802170344-02bcaac3e991 @@ -38,9 +38,9 @@ require ( github.com/dlespiau/kube-test-harness v0.0.0-20200915102055-a03579200ae8 github.com/evanphx/json-patch/v5 v5.9.0 github.com/fatih/color v1.17.0 - github.com/github-release/github-release v0.10.0 + github.com/github-release/github-release v0.10.1 github.com/gobwas/glob v0.2.3 - github.com/gofrs/flock v0.8.1 + github.com/gofrs/flock v0.12.1 github.com/golangci/golangci-lint v1.59.1 github.com/google/uuid v1.6.0 github.com/hashicorp/go-version v1.7.0 @@ -58,22 +58,22 @@ require ( github.com/pkg/errors v0.9.1 github.com/sethvargo/go-password v0.3.0 github.com/spf13/afero v1.11.0 - github.com/spf13/cobra v1.8.0 + github.com/spf13/cobra v1.8.1 github.com/spf13/pflag v1.0.5 github.com/stretchr/testify v1.9.0 github.com/tidwall/gjson v1.17.1 github.com/tidwall/sjson v1.2.5 github.com/tj/assert v0.0.3 github.com/vburenin/ifacemaker v1.2.1 - github.com/vektra/mockery/v2 v2.43.0 - github.com/weaveworks/goformation/v4 v4.10.2-0.20231113122203-bf1ae633f95c + github.com/vektra/mockery/v2 v2.44.1 + github.com/weaveworks/goformation/v4 v4.10.2-0.20240626091647-67263f64f317 github.com/weaveworks/schemer v0.0.0-20230525114451-47139fe25848 github.com/xgfone/netaddr v0.5.1 - golang.org/x/crypto v0.24.0 - golang.org/x/exp v0.0.0-20240103183307-be819d1f06fc - golang.org/x/oauth2 v0.19.0 - golang.org/x/sync v0.7.0 - golang.org/x/tools v0.22.0 + golang.org/x/crypto v0.25.0 + golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 + golang.org/x/oauth2 v0.21.0 + golang.org/x/sync v0.8.0 + golang.org/x/tools v0.23.0 gopkg.in/yaml.v2 v2.4.0 helm.sh/helm/v3 v3.15.2 k8s.io/api v0.30.3 @@ -82,32 +82,31 @@ require ( k8s.io/cli-runtime v0.30.0 k8s.io/client-go v0.30.1 k8s.io/cloud-provider v0.28.0 - k8s.io/code-generator v0.29.0 + k8s.io/code-generator v0.30.3 k8s.io/kops v1.28.4 k8s.io/kubelet v0.30.3 k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 - sigs.k8s.io/mdtoc v1.3.0 + sigs.k8s.io/mdtoc v1.4.0 sigs.k8s.io/yaml v1.4.0 ) require ( 4d63.com/gocheckcompilerdirectives v1.2.1 // indirect 4d63.com/gochecknoglobals v0.2.1 // indirect - cloud.google.com/go/compute v1.23.3 // indirect - cloud.google.com/go/compute/metadata v0.2.3 // indirect + cloud.google.com/go/compute/metadata v0.3.0 // indirect github.com/4meepo/tagalign v1.3.4 // indirect github.com/Abirdcfly/dupword v0.0.14 // indirect github.com/AdaLogics/go-fuzz-headers v0.0.0-20230811130428-ced1acdcaa24 // indirect github.com/Antonboom/errname v0.1.13 // indirect github.com/Antonboom/nilnil v0.1.9 // indirect - github.com/Antonboom/testifylint v1.3.1 // indirect + github.com/Antonboom/testifylint v1.4.3 // indirect github.com/Azure/azure-pipeline-go v0.2.3 // indirect github.com/Azure/azure-storage-blob-go v0.15.0 // indirect github.com/Azure/go-ansiterm v0.0.0-20230124172434-306776ec8161 // indirect github.com/BurntSushi/toml v1.4.0 // indirect - github.com/Crocmagnon/fatcontext v0.2.2 // indirect + github.com/Crocmagnon/fatcontext v0.4.0 // indirect github.com/Djarvur/go-err113 v0.0.0-20210108212216-aea10b59be24 // indirect - github.com/GaijinEntertainment/go-exhaustruct/v3 v3.2.0 // indirect + github.com/GaijinEntertainment/go-exhaustruct/v3 v3.3.0 // indirect github.com/MakeNowJust/heredoc v1.0.0 // indirect github.com/Masterminds/goutils v1.1.1 // indirect github.com/Masterminds/sprig/v3 v3.2.3 // indirect @@ -138,14 +137,14 @@ require ( github.com/bkielbasa/cyclop v1.2.1 // indirect github.com/blang/semver/v4 v4.0.0 // indirect github.com/blizzy78/varnamelen v0.8.0 // indirect - github.com/bombsimon/wsl/v4 v4.2.1 // indirect + github.com/bombsimon/wsl/v4 v4.4.1 // indirect github.com/breml/bidichk v0.2.7 // indirect github.com/breml/errchkjson v0.3.6 // indirect github.com/butuzov/ireturn v0.3.0 // indirect github.com/butuzov/mirror v1.2.0 // indirect github.com/catenacyber/perfsprint v0.7.1 // indirect github.com/ccojocar/zxcvbn-go v1.0.2 // indirect - github.com/cespare/xxhash/v2 v2.2.0 // indirect + github.com/cespare/xxhash/v2 v2.3.0 // indirect github.com/chai2010/gettext-go v1.0.2 // indirect github.com/charithe/durationcheck v0.0.10 // indirect github.com/charmbracelet/bubbles v0.15.0 // indirect @@ -180,7 +179,7 @@ require ( github.com/evertras/bubble-table v0.15.2 // indirect github.com/exponent-io/jsonpath v0.0.0-20151013193312-d6023ce2651d // indirect github.com/fatih/structtag v1.2.0 // indirect - github.com/felixge/httpsnoop v1.0.3 // indirect + github.com/felixge/httpsnoop v1.0.4 // indirect github.com/firefart/nonamedreturns v1.0.5 // indirect github.com/fsnotify/fsnotify v1.7.0 // indirect github.com/fzipp/gocyclo v0.6.0 // indirect @@ -189,7 +188,7 @@ require ( github.com/go-errors/errors v1.4.2 // indirect github.com/go-gorp/gorp/v3 v3.1.0 // indirect github.com/go-ini/ini v1.67.0 // indirect - github.com/go-logr/logr v1.4.1 // indirect + github.com/go-logr/logr v1.4.2 // indirect github.com/go-logr/stdr v1.2.2 // indirect github.com/go-openapi/jsonpointer v0.19.6 // indirect github.com/go-openapi/jsonreference v0.20.2 // indirect @@ -208,13 +207,13 @@ require ( github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect github.com/golang/protobuf v1.5.4 // indirect github.com/golangci/dupl v0.0.0-20180902072040-3e9179ac440a // indirect - github.com/golangci/gofmt v0.0.0-20231018234816-f50ced29576e // indirect + github.com/golangci/gofmt v0.0.0-20240724082148-399ed8a42d42 // indirect github.com/golangci/misspell v0.6.0 // indirect github.com/golangci/modinfo v0.3.4 // indirect github.com/golangci/plugin-module-register v0.1.1 // indirect github.com/golangci/revgrep v0.5.3 // indirect github.com/golangci/unconvert v0.0.0-20240309020433-c5143eacb3ed // indirect - github.com/gomarkdown/markdown v0.0.0-20240328165702-4d01890c35c0 // indirect + github.com/gomarkdown/markdown v0.0.0-20240730141124-034f12af3bf6 // indirect github.com/google/btree v1.1.2 // indirect github.com/google/certificate-transparency-go v1.1.7 // indirect github.com/google/gnostic-models v0.6.8 // indirect @@ -225,7 +224,7 @@ require ( github.com/google/s2a-go v0.1.7 // indirect github.com/google/shlex v0.0.0-20191202100458-e7afc7fbc510 // indirect github.com/googleapis/enterprise-certificate-proxy v0.3.2 // indirect - github.com/googleapis/gax-go/v2 v2.12.0 // indirect + github.com/googleapis/gax-go/v2 v2.12.3 // indirect github.com/gophercloud/gophercloud v1.6.0 // indirect github.com/gordonklaus/ineffassign v0.1.0 // indirect github.com/gorilla/mux v1.8.0 // indirect @@ -240,26 +239,26 @@ require ( github.com/hashicorp/go-multierror v1.1.1 // indirect github.com/hashicorp/hcl v1.0.0 // indirect github.com/hexops/gotextdiff v1.0.3 // indirect - github.com/huandu/xstrings v1.4.0 // indirect + github.com/huandu/xstrings v1.5.0 // indirect github.com/iancoleman/strcase v0.3.0 // indirect github.com/imdario/mergo v0.3.16 // indirect github.com/inconshreveable/mousetrap v1.1.0 // indirect - github.com/jessevdk/go-flags v1.5.0 // indirect + github.com/jessevdk/go-flags v1.6.1 // indirect github.com/jgautheron/goconst v1.7.1 // indirect github.com/jingyugao/rowserrcheck v1.1.1 // indirect github.com/jinzhu/copier v0.4.0 // indirect github.com/jirfag/go-printf-func-name v0.0.0-20200119135958-7558a9eaa5af // indirect - github.com/jjti/go-spancheck v0.6.1 // indirect + github.com/jjti/go-spancheck v0.6.2 // indirect github.com/jmespath/go-jmespath v0.4.0 // indirect github.com/jmoiron/sqlx v1.3.5 // indirect github.com/josharian/intern v1.0.0 // indirect github.com/json-iterator/go v1.1.12 // indirect github.com/julz/importas v0.1.0 // indirect github.com/karamaru-alpha/copyloopvar v1.1.0 // indirect - github.com/kevinburke/rest v0.0.0-20210106114233-22cd0577e450 // indirect + github.com/kevinburke/rest v0.0.0-20240617045629-3ed0ad3487f0 // indirect github.com/kisielk/errcheck v1.7.0 // indirect github.com/kkHAIKE/contextcheck v1.1.5 // indirect - github.com/klauspost/compress v1.17.0 // indirect + github.com/klauspost/compress v1.17.8 // indirect github.com/kr/fs v0.1.0 // indirect github.com/kris-nova/novaarchive v0.0.0-20210219195539-c7c1cabb2577 // indirect github.com/kulti/thelper v0.6.3 // indirect @@ -280,13 +279,13 @@ require ( github.com/mailru/easyjson v0.7.7 // indirect github.com/maratori/testableexamples v1.0.0 // indirect github.com/maratori/testpackage v1.1.1 // indirect - github.com/matoous/godox v0.0.0-20230222163458-006bad1f9d26 // indirect + github.com/matoous/godox v0.0.0-20240105082147-c5b5e0e7c0c0 // indirect github.com/mattn/go-colorable v0.1.13 // indirect github.com/mattn/go-ieproxy v0.0.1 // indirect github.com/mattn/go-isatty v0.0.20 // indirect github.com/mattn/go-localereader v0.0.1 // indirect - github.com/mattn/go-runewidth v0.0.14 // indirect - github.com/mgechev/revive v1.3.7 // indirect + github.com/mattn/go-runewidth v0.0.16 // indirect + github.com/mgechev/revive v1.3.9 // indirect github.com/mitchellh/copystructure v1.2.0 // indirect github.com/mitchellh/go-homedir v1.1.0 // indirect github.com/mitchellh/go-wordwrap v1.0.1 // indirect @@ -299,7 +298,7 @@ require ( github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect github.com/modern-go/reflect2 v1.0.2 // indirect github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00 // indirect - github.com/moricho/tparallel v0.3.1 // indirect + github.com/moricho/tparallel v0.3.2 // indirect github.com/muesli/ansi v0.0.0-20211018074035-2e021307bc4b // indirect github.com/muesli/cancelreader v0.2.2 // indirect github.com/muesli/reflow v0.3.0 // indirect @@ -320,22 +319,22 @@ require ( github.com/pkg/sftp v1.13.6 // indirect github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 // indirect github.com/polyfloyd/go-errorlint v1.5.2 // indirect - github.com/prometheus/client_golang v1.19.0 // indirect - github.com/prometheus/client_model v0.5.0 // indirect - github.com/prometheus/common v0.48.0 // indirect - github.com/prometheus/procfs v0.12.0 // indirect + github.com/prometheus/client_golang v1.19.1 // indirect + github.com/prometheus/client_model v0.6.1 // indirect + github.com/prometheus/common v0.55.0 // indirect + github.com/prometheus/procfs v0.15.1 // indirect github.com/quasilyte/go-ruleguard v0.4.2 // indirect github.com/quasilyte/go-ruleguard/dsl v0.3.22 // indirect github.com/quasilyte/gogrep v0.5.0 // indirect github.com/quasilyte/regex/syntax v0.0.0-20210819130434-b3f0c404a727 // indirect github.com/quasilyte/stdinfo v0.0.0-20220114132959-f7386bf02567 // indirect - github.com/rivo/uniseg v0.4.4 // indirect - github.com/rs/zerolog v1.31.0 // indirect + github.com/rivo/uniseg v0.4.7 // indirect + github.com/rs/zerolog v1.33.0 // indirect github.com/rubenv/sql-migrate v1.5.2 // indirect github.com/russross/blackfriday/v2 v2.1.0 // indirect - github.com/ryancurrah/gomodguard v1.3.2 // indirect + github.com/ryancurrah/gomodguard v1.3.3 // indirect github.com/ryanrolds/sqlclosecheck v0.5.1 // indirect - github.com/sagikazarmark/locafero v0.3.0 // indirect + github.com/sagikazarmark/locafero v0.6.0 // indirect github.com/sagikazarmark/slog-shim v0.1.0 // indirect github.com/sahilm/fuzzy v0.1.0 // indirect github.com/sanathkr/go-yaml v0.0.0-20170819195128-ed9d249f429b // indirect @@ -343,37 +342,36 @@ require ( github.com/sanposhiho/wastedassign/v2 v2.0.7 // indirect github.com/santhosh-tekuri/jsonschema/v5 v5.3.1 // indirect github.com/sashamelentyev/interfacebloat v1.1.0 // indirect - github.com/sashamelentyev/usestdlibvars v1.26.0 // indirect + github.com/sashamelentyev/usestdlibvars v1.27.0 // indirect github.com/securego/gosec/v2 v2.20.1-0.20240525090044-5f0084eb01a9 // indirect github.com/sergi/go-diff v1.3.1 // indirect github.com/shazow/go-diff v0.0.0-20160112020656-b6b7b6733b8c // indirect github.com/shopspring/decimal v1.3.1 // indirect github.com/sirupsen/logrus v1.9.3 // indirect github.com/sivchari/containedctx v1.0.3 // indirect - github.com/sivchari/tenv v1.7.1 // indirect + github.com/sivchari/tenv v1.10.0 // indirect github.com/sonatard/noctx v0.0.2 // indirect github.com/sourcegraph/conc v0.3.0 // indirect github.com/sourcegraph/go-diff v0.7.1-0.20230316160316-1b4d09c1adcb // indirect - github.com/spf13/cast v1.5.1 // indirect - github.com/spf13/viper v1.17.0 // indirect + github.com/spf13/cast v1.6.0 // indirect + github.com/spf13/viper v1.19.0 // indirect github.com/spotinst/spotinst-sdk-go v1.145.0 // indirect github.com/ssgreg/nlreturn/v2 v2.2.1 // indirect github.com/stbenjam/no-sprintf-host-port v0.1.1 // indirect github.com/stretchr/objx v0.5.2 // indirect github.com/subosito/gotenv v1.6.0 // indirect - github.com/t-yuki/gocover-cobertura v0.0.0-20180217150009-aaee18c8195c // indirect github.com/tdakkota/asciicheck v0.2.0 // indirect github.com/tetafro/godot v1.4.16 // indirect github.com/tidwall/match v1.1.1 // indirect github.com/tidwall/pretty v1.2.1 // indirect - github.com/timakin/bodyclose v0.0.0-20230421092635-574207250966 // indirect + github.com/timakin/bodyclose v0.0.0-20240125160201-f835fa56326a // indirect github.com/timonwong/loggercheck v0.9.4 // indirect github.com/tomarrell/wrapcheck/v2 v2.8.3 // indirect github.com/tommy-muehle/go-mnd/v2 v2.5.1 // indirect github.com/tomnomnom/linkheader v0.0.0-20180905144013-02ca5825eb80 // indirect github.com/ultraware/funlen v0.1.0 // indirect github.com/ultraware/whitespace v0.1.1 // indirect - github.com/uudashr/gocognit v1.1.2 // indirect + github.com/uudashr/gocognit v1.1.3 // indirect github.com/vbatts/tar-split v0.11.3 // indirect github.com/voxelbrain/goptions v0.0.0-20180630082107-58cddc247ea2 // indirect github.com/xeipuuv/gojsonpointer v0.0.0-20190905194746-02993c407bfb // indirect @@ -386,27 +384,27 @@ require ( github.com/ykadowak/zerologlint v0.1.5 // indirect gitlab.com/bosi/decorder v0.4.2 // indirect go-simpler.org/musttag v0.12.2 // indirect - go-simpler.org/sloglint v0.7.1 // indirect + go-simpler.org/sloglint v0.7.2 // indirect go.opencensus.io v0.24.0 // indirect - go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.45.0 // indirect - go.opentelemetry.io/otel v1.21.0 // indirect - go.opentelemetry.io/otel/metric v1.21.0 // indirect - go.opentelemetry.io/otel/trace v1.21.0 // indirect + go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.49.0 // indirect + go.opentelemetry.io/otel v1.24.0 // indirect + go.opentelemetry.io/otel/metric v1.24.0 // indirect + go.opentelemetry.io/otel/trace v1.24.0 // indirect go.starlark.net v0.0.0-20230525235612-a134d8f9ddca // indirect go.uber.org/automaxprocs v1.5.3 // indirect go.uber.org/multierr v1.11.0 // indirect go.uber.org/zap v1.27.0 // indirect - golang.org/x/exp/typeparams v0.0.0-20240314144324-c7f7c6466f7f // indirect - golang.org/x/mod v0.19.0 // indirect - golang.org/x/net v0.26.0 // indirect - golang.org/x/sys v0.21.0 // indirect - golang.org/x/term v0.21.0 // indirect + golang.org/x/exp/typeparams v0.0.0-20240719175910-8a7402abbf56 // indirect + golang.org/x/mod v0.20.0 // indirect + golang.org/x/net v0.27.0 // indirect + golang.org/x/sys v0.23.0 // indirect + golang.org/x/term v0.22.0 // indirect golang.org/x/text v0.16.0 // indirect golang.org/x/time v0.5.0 // indirect - google.golang.org/api v0.152.0 // indirect - google.golang.org/genproto/googleapis/rpc v0.0.0-20231212172506-995d672761c0 // indirect - google.golang.org/grpc v1.59.0 // indirect - google.golang.org/protobuf v1.33.0 // indirect + google.golang.org/api v0.171.0 // indirect + google.golang.org/genproto/googleapis/rpc v0.0.0-20240314234333-6e1732d8331c // indirect + google.golang.org/grpc v1.62.1 // indirect + google.golang.org/protobuf v1.34.2 // indirect gopkg.in/gcfg.v1 v1.2.3 // indirect gopkg.in/inf.v0 v0.9.1 // indirect gopkg.in/ini.v1 v1.67.0 // indirect @@ -418,8 +416,8 @@ require ( k8s.io/component-base v0.30.3 // indirect k8s.io/component-helpers v0.29.0 // indirect k8s.io/csi-translation-lib v0.28.0 // indirect - k8s.io/gengo v0.0.0-20230829151522-9cce18d56c01 // indirect - k8s.io/klog/v2 v2.120.1 // indirect + k8s.io/gengo v0.0.0-20240404160639-a0386bf69313 // indirect + k8s.io/klog/v2 v2.130.1 // indirect k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 // indirect k8s.io/kubectl v0.30.0 // indirect mvdan.cc/gofumpt v0.6.0 // indirect @@ -429,7 +427,7 @@ require ( sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect sigs.k8s.io/kustomize/api v0.13.5-0.20230601165947-6ce0bf390ce3 // indirect sigs.k8s.io/kustomize/kyaml v0.14.3-0.20230601165947-6ce0bf390ce3 // indirect - sigs.k8s.io/release-utils v0.7.7 // indirect + sigs.k8s.io/release-utils v0.8.4 // indirect sigs.k8s.io/structured-merge-diff/v4 v4.4.1 // indirect ) diff --git a/go.sum b/go.sum index bef5b59283..cf0f988197 100644 --- a/go.sum +++ b/go.sum @@ -178,13 +178,12 @@ cloud.google.com/go/compute v1.18.0/go.mod h1:1X7yHxec2Ga+Ss6jPyjxRxpu2uu7PLgsOV cloud.google.com/go/compute v1.19.0/go.mod h1:rikpw2y+UMidAe9tISo04EHNOIf42RLYF/q8Bs93scU= cloud.google.com/go/compute v1.19.3/go.mod h1:qxvISKp/gYnXkSAD1ppcSOveRAmzxicEv/JlizULFrI= cloud.google.com/go/compute v1.20.1/go.mod h1:4tCnrn48xsqlwSAiLf1HXMQk8CONslYbdiEZc9FEIbM= -cloud.google.com/go/compute v1.23.3 h1:6sVlXXBmbd7jNX0Ipq0trII3e4n1/MsADLK6a+aiVlk= -cloud.google.com/go/compute v1.23.3/go.mod h1:VCgBUoMnIVIR0CscqQiPJLAG25E3ZRZMzcFZeQ+h8CI= cloud.google.com/go/compute/metadata v0.1.0/go.mod h1:Z1VN+bulIf6bt4P/C37K4DyZYZEXYonfTBHHFPO/4UU= cloud.google.com/go/compute/metadata v0.2.0/go.mod h1:zFmK7XCadkQkj6TtorcaGlCW1hT1fIilQDwofLpJ20k= cloud.google.com/go/compute/metadata v0.2.1/go.mod h1:jgHgmJd2RKBGzXqF5LR2EZMGxBkeanZ9wwa75XHJgOM= -cloud.google.com/go/compute/metadata v0.2.3 h1:mg4jlk7mCAj6xXp9UJ4fjI9VUI5rubuGBW5aJ7UnBMY= cloud.google.com/go/compute/metadata v0.2.3/go.mod h1:VAV5nSsACxMJvgaAuX6Pk2AawlZn8kiOGuCv6gTkwuA= +cloud.google.com/go/compute/metadata v0.3.0 h1:Tz+eQXMEqDIKRsmY3cHTL6FVaynIjX2QxYC4trgAKZc= +cloud.google.com/go/compute/metadata v0.3.0/go.mod h1:zFmK7XCadkQkj6TtorcaGlCW1hT1fIilQDwofLpJ20k= cloud.google.com/go/contactcenterinsights v1.3.0/go.mod h1:Eu2oemoePuEFc/xKFPjbTuPSj0fYJcPls9TFlPNnHHY= cloud.google.com/go/contactcenterinsights v1.4.0/go.mod h1:L2YzkGbPsv+vMQMCADxJoT9YiTTnSEd6fEvCeHTYVck= cloud.google.com/go/contactcenterinsights v1.6.0/go.mod h1:IIDlT6CLcDoyv79kDv8iWxMSTZhLxSCofVV5W6YFM/w= @@ -614,8 +613,8 @@ github.com/Antonboom/errname v0.1.13 h1:JHICqsewj/fNckzrfVSe+T33svwQxmjC+1ntDsHO github.com/Antonboom/errname v0.1.13/go.mod h1:uWyefRYRN54lBg6HseYCFhs6Qjcy41Y3Jl/dVhA87Ns= github.com/Antonboom/nilnil v0.1.9 h1:eKFMejSxPSA9eLSensFmjW2XTgTwJMjZ8hUHtV4s/SQ= github.com/Antonboom/nilnil v0.1.9/go.mod h1:iGe2rYwCq5/Me1khrysB4nwI7swQvjclR8/YRPl5ihQ= -github.com/Antonboom/testifylint v1.3.1 h1:Uam4q1Q+2b6H7gvk9RQFw6jyVDdpzIirFOOrbs14eG4= -github.com/Antonboom/testifylint v1.3.1/go.mod h1:NV0hTlteCkViPW9mSR4wEMfwp+Hs1T3dY60bkvSfhpM= +github.com/Antonboom/testifylint v1.4.3 h1:ohMt6AHuHgttaQ1xb6SSnxCeK4/rnK7KKzbvs7DmEck= +github.com/Antonboom/testifylint v1.4.3/go.mod h1:+8Q9+AOLsz5ZiQiiYujJKs9mNz398+M6UgslP4qgJLA= github.com/Azure/azure-pipeline-go v0.2.3 h1:7U9HBg1JFK3jHl5qmo4CTZKFTVgMwdFHMVtCdfBE21U= github.com/Azure/azure-pipeline-go v0.2.3/go.mod h1:x841ezTBIMG6O3lAcl8ATHnsOPVl2bqk7S3ta6S6u4k= github.com/Azure/azure-storage-blob-go v0.15.0 h1:rXtgp8tN1p29GvpGgfJetavIG0V7OgcSXPpwp3tx6qk= @@ -640,14 +639,14 @@ github.com/BurntSushi/toml v1.2.1/go.mod h1:CxXYINrC8qIiEnFrOxCa7Jy5BFHlXnUU2pbi github.com/BurntSushi/toml v1.4.0 h1:kuoIxZQy2WRRk1pttg9asf+WVv6tWQuBNVmK8+nqPr0= github.com/BurntSushi/toml v1.4.0/go.mod h1:ukJfTF/6rtPPRCnwkur4qwRxa8vTRFBF0uk2lLoLwho= github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo= -github.com/Crocmagnon/fatcontext v0.2.2 h1:OrFlsDdOj9hW/oBEJBNSuH7QWf+E9WPVHw+x52bXVbk= -github.com/Crocmagnon/fatcontext v0.2.2/go.mod h1:WSn/c/+MMNiD8Pri0ahRj0o9jVpeowzavOQplBJw6u0= +github.com/Crocmagnon/fatcontext v0.4.0 h1:4ykozu23YHA0JB6+thiuEv7iT6xq995qS1vcuWZq0tg= +github.com/Crocmagnon/fatcontext v0.4.0/go.mod h1:ZtWrXkgyfsYPzS6K3O88va6t2GEglG93vnII/F94WC0= github.com/DATA-DOG/go-sqlmock v1.5.2 h1:OcvFkGmslmlZibjAjaHm3L//6LiuBgolP7OputlJIzU= github.com/DATA-DOG/go-sqlmock v1.5.2/go.mod h1:88MAG/4G7SMwSE3CeA0ZKzrT5CiOU3OJ+JlNzwDqpNU= github.com/Djarvur/go-err113 v0.0.0-20210108212216-aea10b59be24 h1:sHglBQTwgx+rWPdisA5ynNEsoARbiCBOyGcJM4/OzsM= github.com/Djarvur/go-err113 v0.0.0-20210108212216-aea10b59be24/go.mod h1:4UJr5HIiMZrwgkSPdsjy2uOQExX/WEILpIrO9UPGuXs= -github.com/GaijinEntertainment/go-exhaustruct/v3 v3.2.0 h1:sATXp1x6/axKxz2Gjxv8MALP0bXaNRfQinEwyfMcx8c= -github.com/GaijinEntertainment/go-exhaustruct/v3 v3.2.0/go.mod h1:Nl76DrGNJTA1KJ0LePKBw/vznBX1EHbAZX8mwjR82nI= +github.com/GaijinEntertainment/go-exhaustruct/v3 v3.3.0 h1:/fTUt5vmbkAcMBt4YQiuC23cV0kEsN1MVMNqeOW43cU= +github.com/GaijinEntertainment/go-exhaustruct/v3 v3.3.0/go.mod h1:ONJg5sxcbsdQQ4pOW8TGdTidT2TMAUy/2Xhr8mrYaao= github.com/JohnCGriffin/overflow v0.0.0-20211019200055-46fa312c352c/go.mod h1:X0CRv0ky0k6m906ixxpzmDRLvX58TFUKS2eePweuyxk= github.com/MakeNowJust/heredoc v1.0.0 h1:cXCdzVdstXyiTqTvfqk9SDHpKNjxuom+DOlyEeQ4pzQ= github.com/MakeNowJust/heredoc v1.0.0/go.mod h1:mG5amYoWBHf8vpLOuehzbGGw0EHxpZZ6lCpQ4fNJ8LE= @@ -731,38 +730,38 @@ github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.6.15 h1:C6WHdGnTDIYETAm5iE github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.6.15/go.mod h1:ZQLZqhcu+JhSrA9/NXRm8SkDvsycE+JkV3WGY41e+IM= github.com/aws/aws-sdk-go-v2/internal/ini v1.8.0 h1:hT8rVHwugYE2lEfdFE0QWVo81lF7jMrYJVDWI+f+VxU= github.com/aws/aws-sdk-go-v2/internal/ini v1.8.0/go.mod h1:8tu/lYfQfFe6IGnaOdrpVgEL2IrrDOf6/m9RQum4NkY= -github.com/aws/aws-sdk-go-v2/service/autoscaling v1.43.1 h1:nV3iVzSwz69etCRlmifzbxueN9KnnCq0hQow9ezJSzU= -github.com/aws/aws-sdk-go-v2/service/autoscaling v1.43.1/go.mod h1:SR3acVqfWMo5J4hI3WHHP0+cgC5yvEVjG9PJXtbOqQg= -github.com/aws/aws-sdk-go-v2/service/cloudformation v1.52.1 h1:Ts+mCjOtt8o2k2vnWnX/0sE0eSmEVWBvfJkNrNMQlAo= -github.com/aws/aws-sdk-go-v2/service/cloudformation v1.52.1/go.mod h1:IrWhabzdTEc651GAq7rgst/SYcEqqcD7Avr82m28AAU= -github.com/aws/aws-sdk-go-v2/service/cloudtrail v1.39.2 h1:svl3DNKWpcLOlz+bFzmOxGp8gcbvSZ6m2t44Zzaet9U= -github.com/aws/aws-sdk-go-v2/service/cloudtrail v1.39.2/go.mod h1:gAJs+mKIoK4JTQD1KMZtHgyBRZ8S6Oy5+qjJzoDAvbE= -github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs v1.37.1 h1:smJnRQ4jWExRn6U176xOsOVa1vqBY/FDw8BLIdVHrek= -github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs v1.37.1/go.mod h1:JI2AiAgXcmOgaE/u0qdxa8Aj6+2riJVrWhLZIiuH/ZE= +github.com/aws/aws-sdk-go-v2/service/autoscaling v1.43.3 h1:y4kBd6IXizNoJ1QnVa1kFFmonxnv6mm6z+q7z0Jkdhg= +github.com/aws/aws-sdk-go-v2/service/autoscaling v1.43.3/go.mod h1:j2WsKJ/NQS+y8JUgpv+BBzyzddNZP2SG60fB5aQBZaA= +github.com/aws/aws-sdk-go-v2/service/cloudformation v1.53.3 h1:mIpL+FXa+2U6oc85b/15JwJhNUU+c/LHwxM3hpQIxXQ= +github.com/aws/aws-sdk-go-v2/service/cloudformation v1.53.3/go.mod h1:lcQ7+K0Q9x0ozhjBwDfBkuY8qexSP/QXLgp0jj+/NZg= +github.com/aws/aws-sdk-go-v2/service/cloudtrail v1.42.3 h1:dtFepCqT+Lm3sFxracD6PvVJAMTuIKTRd3yqBpMOomk= +github.com/aws/aws-sdk-go-v2/service/cloudtrail v1.42.3/go.mod h1:p+4/sHQpT3kcfY2LruQuVgVFKd72yLnqJUayHhwfStY= +github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs v1.37.3 h1:pnvujeesw3tP0iDLKdREjPAzxmPqC8F0bov77VN2wSk= +github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs v1.37.3/go.mod h1:eJZGfJNuTmvBgiy2O5XIPlHMBi4GUYoJoKZ6U6wCVVk= github.com/aws/aws-sdk-go-v2/service/cognitoidentityprovider v1.37.0 h1:cAYdiSyKAvVuBGu8587c0kAA98RojEOfvCygbSrp+8E= github.com/aws/aws-sdk-go-v2/service/cognitoidentityprovider v1.37.0/go.mod h1:TiLZ2/+WAEyG2PnuAYj/un46UJ7qBf5BWWTAKgaHP8I= github.com/aws/aws-sdk-go-v2/service/ec2 v1.173.0 h1:ta62lid9JkIpKZtZZXSj6rP2AqY5x1qYGq53ffxqD9Q= github.com/aws/aws-sdk-go-v2/service/ec2 v1.173.0/go.mod h1:o6QDjdVKpP5EF0dp/VlvqckzuSDATr1rLdHt3A5m0YY= -github.com/aws/aws-sdk-go-v2/service/eks v1.44.1 h1:onUAzZXDsyXzyrmOGw/9p8Csl1NZkTDEs4URZ8covUY= -github.com/aws/aws-sdk-go-v2/service/eks v1.44.1/go.mod h1:dg9l/W4hXygeRNydRB4LWKY/MwHJhfUomGJUBwI29Dw= -github.com/aws/aws-sdk-go-v2/service/elasticloadbalancing v1.24.4 h1:V5YvSMQwZklktzYeOOhYdptx7rP650XP3RnxwNu1UEQ= -github.com/aws/aws-sdk-go-v2/service/elasticloadbalancing v1.24.4/go.mod h1:aYygRYqRxmLGrxRxAisgNarwo4x8bcJG14rh4r57VqE= -github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 v1.30.5 h1:/x2u/TOx+n17U+gz98TOw1HKJom0EOqrhL4SjrHr0cQ= -github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 v1.30.5/go.mod h1:e1McVqsud0JOERidvppLEHnuCdh/X6MRyL5L0LseAUk= -github.com/aws/aws-sdk-go-v2/service/iam v1.32.0 h1:ZNlfPdw849gBo/lvLFbEEvpTJMij0LXqiNWZ+lIamlU= -github.com/aws/aws-sdk-go-v2/service/iam v1.32.0/go.mod h1:aXWImQV0uTW35LM0A/T4wEg6R1/ReXUu4SM6/lUHYK0= +github.com/aws/aws-sdk-go-v2/service/eks v1.47.0 h1:u0VeIQ02COfhmp37ub8zv29bdRtosCYzXoWd+QRebbY= +github.com/aws/aws-sdk-go-v2/service/eks v1.47.0/go.mod h1:awleuSoavuUt32hemzWdSrI47zq7slFtIj8St07EXpE= +github.com/aws/aws-sdk-go-v2/service/elasticloadbalancing v1.26.3 h1:5B2Dq2zy/hgtEO3wITnOZiyh6e+GyuHTGw6bK/8+L3w= +github.com/aws/aws-sdk-go-v2/service/elasticloadbalancing v1.26.3/go.mod h1:mgU2kG+D5ybtfGhEuZRW8usYOGrNSgsimRt/hOSI65s= +github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 v1.34.0 h1:8rDRtPOu3ax8jEctw7G926JQlnFdhZZA4KJzQ+4ks3Q= +github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 v1.34.0/go.mod h1:L5bVuO4PeXuDuMYZfL3IW69E6mz6PDCYpp6IKDlcLMA= +github.com/aws/aws-sdk-go-v2/service/iam v1.34.3 h1:p4L/tixJ3JUIxCteMGT6oMlqCbEv/EzSZoVwdiib8sU= +github.com/aws/aws-sdk-go-v2/service/iam v1.34.3/go.mod h1:rfOWxxwdecWvSC9C2/8K/foW3Blf+aKnIIPP9kQ2DPE= github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.11.3 h1:dT3MqvGhSoaIhRseqw2I0yH81l7wiR2vjs57O51EAm8= github.com/aws/aws-sdk-go-v2/service/internal/accept-encoding v1.11.3/go.mod h1:GlAeCkHwugxdHaueRr4nhPuY+WW+gR8UjlcqzPr1SPI= github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.11.17 h1:HGErhhrxZlQ044RiM+WdoZxp0p+EGM62y3L6pwA4olE= github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.11.17/go.mod h1:RkZEx4l0EHYDJpWppMJ3nD9wZJAa8/0lq9aVC+r2UII= github.com/aws/aws-sdk-go-v2/service/kms v1.35.1 h1:0gP2OJJT6HM2BYltZ9x+A87OE8LJL96DXeAAdLv3t1M= github.com/aws/aws-sdk-go-v2/service/kms v1.35.1/go.mod h1:hGONorZkQCfR5DW6l2xdy7zC8vfO0r9pJlwyg6gmGeo= -github.com/aws/aws-sdk-go-v2/service/outposts v1.39.0 h1:6fKMCfPQQ97e9PsH+P1bnNk+WDvpvFgqFBVQa/gSbJI= -github.com/aws/aws-sdk-go-v2/service/outposts v1.39.0/go.mod h1:6fqELmjNXUPBviJYhN4QzmMQRtuPAREMRKlhzfBD8j0= +github.com/aws/aws-sdk-go-v2/service/outposts v1.42.0 h1:yjgxCK8Gi7YVM7nVYfI9/ZNEdNDLHny1Co3wjIURy4A= +github.com/aws/aws-sdk-go-v2/service/outposts v1.42.0/go.mod h1:NFdJn0HoIbvqSoZ4umUeO+7dhb+93Q5pkKdtqS0i7m0= github.com/aws/aws-sdk-go-v2/service/pricing v1.17.0 h1:RQOMvPwte2H4ZqsiZmrla1crhBWDFnW8bZynkec5cGU= github.com/aws/aws-sdk-go-v2/service/pricing v1.17.0/go.mod h1:LJyh9figH3ZpSiVjR5umzbl6V3EpQdZR4Se1ayoUtfI= -github.com/aws/aws-sdk-go-v2/service/ssm v1.52.1 h1:zeWJA3f0Td70984ZoSocVAEwVtZBGQu+Q0p/pA7dNoE= -github.com/aws/aws-sdk-go-v2/service/ssm v1.52.1/go.mod h1:xvWzNAXicm5A+1iOiH4sqMLwYHEbiQqpRSe6hvHdQrE= +github.com/aws/aws-sdk-go-v2/service/ssm v1.52.3 h1:iu53lwRKbZOGCVUH09g3J0xU8A+bAGVo09VR9K4d0Yg= +github.com/aws/aws-sdk-go-v2/service/ssm v1.52.3/go.mod h1:v7NIzEFIHBiicOMaMTuEmbnzGnqW0d+6ulNALul6fYE= github.com/aws/aws-sdk-go-v2/service/sso v1.22.4 h1:BXx0ZIxvrJdSgSvKTZ+yRBeSqqgPM89VPlulEcl37tM= github.com/aws/aws-sdk-go-v2/service/sso v1.22.4/go.mod h1:ooyCOXjvJEsUw7x+ZDHeISPMhtwI3ZCB7ggFMcFfWLU= github.com/aws/aws-sdk-go-v2/service/ssooidc v1.26.4 h1:yiwVzJW2ZxZTurVbYWA7QOrAaCYQR72t0wrSBfoesUE= @@ -793,8 +792,8 @@ github.com/blang/semver/v4 v4.0.0 h1:1PFHFE6yCCTv8C1TeyNNarDzntLi7wMI5i/pzqYIsAM github.com/blang/semver/v4 v4.0.0/go.mod h1:IbckMUScFkM3pff0VJDNKRiT6TG/YpiHIM2yvyW5YoQ= github.com/blizzy78/varnamelen v0.8.0 h1:oqSblyuQvFsW1hbBHh1zfwrKe3kcSj0rnXkKzsQ089M= github.com/blizzy78/varnamelen v0.8.0/go.mod h1:V9TzQZ4fLJ1DSrjVDfl89H7aMnTvKkApdHeyESmyR7k= -github.com/bombsimon/wsl/v4 v4.2.1 h1:Cxg6u+XDWff75SIFFmNsqnIOgob+Q9hG6y/ioKbRFiM= -github.com/bombsimon/wsl/v4 v4.2.1/go.mod h1:Xu/kDxGZTofQcDGCtQe9KCzhHphIe0fDuyWTxER9Feo= +github.com/bombsimon/wsl/v4 v4.4.1 h1:jfUaCkN+aUpobrMO24zwyAMwMAV5eSziCkOKEauOLdw= +github.com/bombsimon/wsl/v4 v4.4.1/go.mod h1:Xu/kDxGZTofQcDGCtQe9KCzhHphIe0fDuyWTxER9Feo= github.com/boombuler/barcode v1.0.0/go.mod h1:paBWMcWSl3LHKBqUq+rly7CNSldXjb2rDl3JlRe0mD8= github.com/boombuler/barcode v1.0.1/go.mod h1:paBWMcWSl3LHKBqUq+rly7CNSldXjb2rDl3JlRe0mD8= github.com/breml/bidichk v0.2.7 h1:dAkKQPLl/Qrk7hnP6P+E0xOodrq8Us7+U0o4UBOAlQY= @@ -826,8 +825,9 @@ github.com/census-instrumentation/opencensus-proto v0.3.0/go.mod h1:f6KPmirojxKA github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw= github.com/cespare/xxhash v1.1.0/go.mod h1:XrSqR1VqqWfGrhpAt58auRo0WTKS1nRRg3ghfAqPWnc= github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs= -github.com/cespare/xxhash/v2 v2.2.0 h1:DC2CZ1Ep5Y4k3ZQ899DldepgrayRUGE6BBZ/cd9Cj44= github.com/cespare/xxhash/v2 v2.2.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs= +github.com/cespare/xxhash/v2 v2.3.0 h1:UL815xU9SqsFlibzuggzjXhog7bL6oX9BbNZnL2UFvs= +github.com/cespare/xxhash/v2 v2.3.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs= github.com/chai2010/gettext-go v1.0.2 h1:1Lwwip6Q2QGsAdl/ZKPCwTe9fe0CjlUbqj5bFNSjIRk= github.com/chai2010/gettext-go v1.0.2/go.mod h1:y+wnP2cHYaVj19NZhYKAwEMH2CI1gNHeQQ+5AjwawxA= github.com/charithe/durationcheck v0.0.10 h1:wgw73BiocdBDQPik+zcEoBG/ob8uyBHf2iyoHGPf5w4= @@ -887,7 +887,7 @@ github.com/containerd/stargz-snapshotter/estargz v0.14.3 h1:OqlDCK3ZVUO6C3B/5FSk github.com/containerd/stargz-snapshotter/estargz v0.14.3/go.mod h1:KY//uOCIkSuNAHhJogcZtrNHdKrA99/FCCRjE3HD36o= github.com/coreos/go-systemd/v22 v22.5.0/go.mod h1:Y58oyj3AT4RCenI/lSvhwexgC+NSVTIJ3seZv2GcEnc= github.com/cpuguy83/go-md2man/v2 v2.0.2/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o= -github.com/cpuguy83/go-md2man/v2 v2.0.3/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o= +github.com/cpuguy83/go-md2man/v2 v2.0.4/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o= github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ33E= github.com/creack/pty v1.1.18 h1:n56/Zwd5o6whRC5PMGretI4IdRLlmBXYNjScPaBgsbY= github.com/creack/pty v1.1.18/go.mod h1:MOBLtS5ELjhRRrroQr9kyvTxUAFNvYEK993ew/Vr4O4= @@ -966,8 +966,8 @@ github.com/fatih/color v1.17.0 h1:GlRw1BRJxkpqUCBKzKOw098ed57fEsKeNjpTe3cSjK4= github.com/fatih/color v1.17.0/go.mod h1:YZ7TlrGPkiz6ku9fK3TLD/pl3CpsiFyu8N92HLgmosI= github.com/fatih/structtag v1.2.0 h1:/OdNE99OxoI/PqaW/SuSK9uxxT3f/tcSZgon/ssNSx4= github.com/fatih/structtag v1.2.0/go.mod h1:mBJUNpUnHmRKrKlQQlmCrh5PuhftFbNv8Ys4/aAZl94= -github.com/felixge/httpsnoop v1.0.3 h1:s/nj+GCswXYzN5v2DpNMuMQYe+0DDwt5WVCU6CWBdXk= -github.com/felixge/httpsnoop v1.0.3/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U= +github.com/felixge/httpsnoop v1.0.4 h1:NFTV2Zj1bL4mc9sqWACXbQFVBBg2W3GPvqp8/ESS2Wg= +github.com/felixge/httpsnoop v1.0.4/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U= github.com/firefart/nonamedreturns v1.0.5 h1:tM+Me2ZaXs8tfdDw3X6DOX++wMCOqzYUho6tUTYIdRA= github.com/firefart/nonamedreturns v1.0.5/go.mod h1:gHJjDqhGM4WyPt639SOZs+G89Ko7QKH5R5BhnO6xJhw= github.com/fogleman/gg v1.2.1-0.20190220221249-0403632d5b90/go.mod h1:R/bRT+9gY/C5z7JzPU0zXsXHKM4/ayA+zqcVNZzPa1k= @@ -986,8 +986,8 @@ github.com/fzipp/gocyclo v0.6.0/go.mod h1:rXPyn8fnlpa0R2csP/31uerbiVBugk5whMdlya github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04= github.com/ghostiam/protogetter v0.3.6 h1:R7qEWaSgFCsy20yYHNIJsU9ZOb8TziSRRxuAOTVKeOk= github.com/ghostiam/protogetter v0.3.6/go.mod h1:7lpeDnEJ1ZjL/YtyoN99ljO4z0pd3H0d18/t2dPBxHw= -github.com/github-release/github-release v0.10.0 h1:nJ3oEV2JrC0brYi6B8CsXumn/ORFeiAEOB2fwN9epOw= -github.com/github-release/github-release v0.10.0/go.mod h1:CcaWgA5VoBGz94mOHYIXavqUA8kADNZxU+5/oDQxF6o= +github.com/github-release/github-release v0.10.1 h1:yGDzJ7zPkQCjQe2uUZZz7to2dqu5WlpkhvB4o3qcP+s= +github.com/github-release/github-release v0.10.1/go.mod h1:CcaWgA5VoBGz94mOHYIXavqUA8kADNZxU+5/oDQxF6o= github.com/go-critic/go-critic v0.11.4 h1:O7kGOCx0NDIni4czrkRIXTnit0mkyKOCePh3My6OyEU= github.com/go-critic/go-critic v0.11.4/go.mod h1:2QAdo4iuLik5S9YG0rT4wcZ8QxwHYkrr6/2MWAiv/vc= github.com/go-errors/errors v1.4.2 h1:J6MZopCL4uSllY1OfXM374weqZFFItUbrImctkmUxIA= @@ -1016,8 +1016,8 @@ github.com/go-logr/logr v1.2.2/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbV github.com/go-logr/logr v1.2.3/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A= github.com/go-logr/logr v1.2.4/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A= github.com/go-logr/logr v1.3.0/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY= -github.com/go-logr/logr v1.4.1 h1:pKouT5E8xu9zeFC39JXRDukb6JFQPXM5p5I91188VAQ= -github.com/go-logr/logr v1.4.1/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY= +github.com/go-logr/logr v1.4.2 h1:6pFjapn8bFcIbiKo3XT4j/BhANplGihG6tvd+8rYgrY= +github.com/go-logr/logr v1.4.2/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY= github.com/go-logr/stdr v1.2.2 h1:hSWxHoqTgW2S2qGc0LTAI563KZ5YKYRhT3MFKZMbjag= github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE= github.com/go-openapi/jsonpointer v0.19.6 h1:eCs3fxoIi3Wh6vtgmLTOjdhSpiqphQ+DaPn38N2ZdrE= @@ -1033,6 +1033,7 @@ github.com/go-sql-driver/mysql v1.6.0/go.mod h1:DCzpHaOWr8IXmIStZouvnhqoel9Qv2LB github.com/go-sql-driver/mysql v1.7.1 h1:lUIinVbN1DY0xBg0eMOzmmtGoHwWBbvnWubQUrtU8EI= github.com/go-sql-driver/mysql v1.7.1/go.mod h1:OXbVy3sEdcQ2Doequ6Z5BW6fXNQTmx+9S1MCJN5yJMI= github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY= +github.com/go-stack/stack v1.8.1/go.mod h1:dcoOX6HbPZSZptuspn9bctJ+N/CnF5gGygcUP3XYfe4= github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE= github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572/go.mod h1:9Pwr4B2jHnOSGXyyzV8ROjYa2ojvAY6HCGYYfMoC3Ls= github.com/go-task/slim-sprig/v3 v3.0.0 h1:sUs3vkvUymDpBKi3qH1YSqBQk9+9D/8M2mN1vB6EwHI= @@ -1070,8 +1071,8 @@ github.com/gobwas/glob v0.2.3 h1:A4xDbljILXROh+kObIiy5kIaPYD8e96x1tgBhUI5J+Y= github.com/gobwas/glob v0.2.3/go.mod h1:d3Ez4x06l9bZtSvzIay5+Yzi0fmZzPgnTbPcKjJAkT8= github.com/goccy/go-json v0.9.11/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I= github.com/godbus/dbus/v5 v5.0.4/go.mod h1:xhWf0FNVPg57R7Z0UbKHbJfkEywrmjJnf7w5xrFpKfA= -github.com/gofrs/flock v0.8.1 h1:+gYjHKf32LDeiEEFhQaotPbLuUXjY5ZqxKgXy7n59aw= -github.com/gofrs/flock v0.8.1/go.mod h1:F1TvTiK9OcQqauNUHlbJvyl9Qa1QvF/gOUDKA14jxHU= +github.com/gofrs/flock v0.12.1 h1:MTLVXXHf8ekldpJk3AKicLij9MdwOWkZ+a/jHHZby9E= +github.com/gofrs/flock v0.12.1/go.mod h1:9zxTsyu5xtJ9DK+1tFZyibEV7y3uwDxPPfbxeeHCoD0= github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ= github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q= github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q= @@ -1119,8 +1120,8 @@ github.com/golang/snappy v0.0.3/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEW github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q= github.com/golangci/dupl v0.0.0-20180902072040-3e9179ac440a h1:w8hkcTqaFpzKqonE9uMCefW1WDie15eSP/4MssdenaM= github.com/golangci/dupl v0.0.0-20180902072040-3e9179ac440a/go.mod h1:ryS0uhF+x9jgbj/N71xsEqODy9BN81/GonCZiOzirOk= -github.com/golangci/gofmt v0.0.0-20231018234816-f50ced29576e h1:ULcKCDV1LOZPFxGZaA6TlQbiM3J2GCPnkx/bGF6sX/g= -github.com/golangci/gofmt v0.0.0-20231018234816-f50ced29576e/go.mod h1:Pm5KhLPA8gSnQwrQ6ukebRcapGb/BG9iUkdaiCcGHJM= +github.com/golangci/gofmt v0.0.0-20240724082148-399ed8a42d42 h1:AhUw9DWQccFqRvFyM6Zb7zpG+Co5skgw9YS1V0LFijA= +github.com/golangci/gofmt v0.0.0-20240724082148-399ed8a42d42/go.mod h1:YUrl2t63y0Ofpy74+wu/O18RfPenFkc9I3ntyYuGCtI= github.com/golangci/golangci-lint v1.59.1 h1:CRRLu1JbhK5avLABFJ/OHVSQ0Ie5c4ulsOId1h3TTks= github.com/golangci/golangci-lint v1.59.1/go.mod h1:jX5Oif4C7P0j9++YB2MMJmoNrb01NJ8ITqKWNLewThg= github.com/golangci/misspell v0.6.0 h1:JCle2HUTNWirNlDIAUO44hUsKhOFqGPoC4LZxlaSXDs= @@ -1133,8 +1134,8 @@ github.com/golangci/revgrep v0.5.3 h1:3tL7c1XBMtWHHqVpS5ChmiAAoe4PF/d5+ULzV9sLAz github.com/golangci/revgrep v0.5.3/go.mod h1:U4R/s9dlXZsg8uJmaR1GrloUr14D7qDl8gi2iPXJH8k= github.com/golangci/unconvert v0.0.0-20240309020433-c5143eacb3ed h1:IURFTjxeTfNFP0hTEi1YKjB/ub8zkpaOqFFMApi2EAs= github.com/golangci/unconvert v0.0.0-20240309020433-c5143eacb3ed/go.mod h1:XLXN8bNw4CGRPaqgl3bv/lhz7bsGPh4/xSaMTbo2vkQ= -github.com/gomarkdown/markdown v0.0.0-20240328165702-4d01890c35c0 h1:4gjrh/PN2MuWCCElk8/I4OCKRKWCCo2zEct3VKCbibU= -github.com/gomarkdown/markdown v0.0.0-20240328165702-4d01890c35c0/go.mod h1:JDGcbDT52eL4fju3sZ4TeHGsQwhG9nbDV21aMyhwPoA= +github.com/gomarkdown/markdown v0.0.0-20240730141124-034f12af3bf6 h1:ZPy+2XJ8u0bB3sNFi+I72gMEMS7MTg7aZCCXPOjV8iw= +github.com/gomarkdown/markdown v0.0.0-20240730141124-034f12af3bf6/go.mod h1:JDGcbDT52eL4fju3sZ4TeHGsQwhG9nbDV21aMyhwPoA= github.com/gomodule/redigo v1.8.2 h1:H5XSIre1MB5NbPYFp+i1NBbb5qN1W8Y8YAQoAYbkm8k= github.com/gomodule/redigo v1.8.2/go.mod h1:P9dn9mFrCBvWhGE1wpxx6fgq7BAeLBk+UUUzlpkBYO0= github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ= @@ -1228,8 +1229,8 @@ github.com/googleapis/gax-go/v2 v2.7.1/go.mod h1:4orTrqY6hXxxaUL4LHIPl6lGo8vAE38 github.com/googleapis/gax-go/v2 v2.8.0/go.mod h1:4orTrqY6hXxxaUL4LHIPl6lGo8vAE38/qKbhSAKP6QI= github.com/googleapis/gax-go/v2 v2.10.0/go.mod h1:4UOEnMCrxsSqQ940WnTiD6qJ63le2ev3xfyagutxiPw= github.com/googleapis/gax-go/v2 v2.11.0/go.mod h1:DxmR61SGKkGLa2xigwuZIQpkCI2S5iydzRfb3peWZJI= -github.com/googleapis/gax-go/v2 v2.12.0 h1:A+gCJKdRfqXkr+BIRGtZLibNXf0m1f9E4HG56etFpas= -github.com/googleapis/gax-go/v2 v2.12.0/go.mod h1:y+aIqrI5eb1YGMVJfuV3185Ts/D7qKpsEkdD5+I6QGU= +github.com/googleapis/gax-go/v2 v2.12.3 h1:5/zPPDvw8Q1SuXjrqrZslrqT7dL/uJT2CQii/cLCKqA= +github.com/googleapis/gax-go/v2 v2.12.3/go.mod h1:AKloxT6GtNbaLm8QTNSidHUVsHYcBHwWRvkNFJUQcS4= github.com/googleapis/go-type-adapters v1.0.0/go.mod h1:zHW75FOG2aur7gAO2B+MLby+cLsWGBF62rFAi7WjWO4= github.com/googleapis/google-cloud-go-testing v0.0.0-20200911160855-bcd43fbb19e8/go.mod h1:dvDLG8qkwmyD9a/MJJN3XJcT3xFxOKAvTZGvuZmac9g= github.com/gophercloud/gophercloud v1.6.0 h1:JwJN1bauRnWPba5ueWs9IluONHteXPWjjK+MvfM4krY= @@ -1281,8 +1282,8 @@ github.com/hexops/gotextdiff v1.0.3 h1:gitA9+qJrrTCsiCl7+kh75nPqQt1cx4ZkudSTLoUq github.com/hexops/gotextdiff v1.0.3/go.mod h1:pSWU5MAI3yDq+fZBTazCSJysOMbxWL1BSow5/V2vxeg= github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU= github.com/huandu/xstrings v1.3.3/go.mod h1:y5/lhBue+AyNmUVz9RLU9xbLR0o4KIIExikq4ovT0aE= -github.com/huandu/xstrings v1.4.0 h1:D17IlohoQq4UcpqD7fDk80P7l+lwAmlFaBHgOipl2FU= -github.com/huandu/xstrings v1.4.0/go.mod h1:y5/lhBue+AyNmUVz9RLU9xbLR0o4KIIExikq4ovT0aE= +github.com/huandu/xstrings v1.5.0 h1:2ag3IFq9ZDANvthTwTiqSSZLjDc+BedvHPAp5tJy2TI= +github.com/huandu/xstrings v1.5.0/go.mod h1:y5/lhBue+AyNmUVz9RLU9xbLR0o4KIIExikq4ovT0aE= github.com/iancoleman/strcase v0.2.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho= github.com/iancoleman/strcase v0.3.0 h1:nTXanmYxhfFAMjZL34Ov6gkzEsSJZ5DbhxWjvSASxEI= github.com/iancoleman/strcase v0.3.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho= @@ -1294,10 +1295,11 @@ github.com/imdario/mergo v0.3.11/go.mod h1:jmQim1M+e3UYxmgPu/WyfjB3N3VflVyUjjjwH github.com/imdario/mergo v0.3.12/go.mod h1:jmQim1M+e3UYxmgPu/WyfjB3N3VflVyUjjjwH0dnCYA= github.com/imdario/mergo v0.3.16 h1:wwQJbIsHYGMUyLSPrEq1CT16AhnhNJQ51+4fdHUnCl4= github.com/imdario/mergo v0.3.16/go.mod h1:WBLT9ZmE3lPoWsEzCh9LPo3TiwVN+ZKEjmz+hD27ysY= +github.com/inconshreveable/log15 v3.0.0-testing.5+incompatible/go.mod h1:cOaXtrgN4ScfRrD9Bre7U1thNq5RtJ8ZoP4iXVGRj6o= github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8= github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw= -github.com/jessevdk/go-flags v1.5.0 h1:1jKYvbxEjfUl0fmqTCOfonvskHHXMjBySTLW4y9LFvc= -github.com/jessevdk/go-flags v1.5.0/go.mod h1:Fw0T6WPc1dYxT4mKEZRfG5kJhaTDP9pj1c2EWnYs/m4= +github.com/jessevdk/go-flags v1.6.1 h1:Cvu5U8UGrLay1rZfv/zP7iLpSHGUZ/Ou68T0iX1bBK4= +github.com/jessevdk/go-flags v1.6.1/go.mod h1:Mk8T1hIAWpOiJiHa9rJASDK2UGWji0EuPGBnNLMooyc= github.com/jgautheron/goconst v1.7.1 h1:VpdAG7Ca7yvvJk5n8dMwQhfEZJh95kl/Hl9S1OI5Jkk= github.com/jgautheron/goconst v1.7.1/go.mod h1:aAosetZ5zaeC/2EfMeRswtxUFBpe2Hr7HzkgX4fanO4= github.com/jingyugao/rowserrcheck v1.1.1 h1:zibz55j/MJtLsjP1OF4bSdgXxwL1b+Vn7Tjzq7gFzUs= @@ -1306,8 +1308,8 @@ github.com/jinzhu/copier v0.4.0 h1:w3ciUoD19shMCRargcpm0cm91ytaBhDvuRpz1ODO/U8= github.com/jinzhu/copier v0.4.0/go.mod h1:DfbEm0FYsaqBcKcFuvmOZb218JkPGtvSHsKg8S8hyyg= github.com/jirfag/go-printf-func-name v0.0.0-20200119135958-7558a9eaa5af h1:KA9BjwUk7KlCh6S9EAGWBt1oExIUv9WyNCiRz5amv48= github.com/jirfag/go-printf-func-name v0.0.0-20200119135958-7558a9eaa5af/go.mod h1:HEWGJkRDzjJY2sqdDwxccsGicWEf9BQOZsq2tV+xzM0= -github.com/jjti/go-spancheck v0.6.1 h1:ZK/wE5Kyi1VX3PJpUO2oEgeoI4FWOUm7Shb2Gbv5obI= -github.com/jjti/go-spancheck v0.6.1/go.mod h1:vF1QkOO159prdo6mHRxak2CpzDpHAfKiPUDP/NeRnX8= +github.com/jjti/go-spancheck v0.6.2 h1:iYtoxqPMzHUPp7St+5yA8+cONdyXD3ug6KK15n7Pklk= +github.com/jjti/go-spancheck v0.6.2/go.mod h1:+X7lvIrR5ZdUTkxFYqzJ0abr8Sb5LOo80uOhWNqIrYA= github.com/jmespath/go-jmespath v0.4.0 h1:BEgLn5cpjn8UN1mAw4NjwDrS35OdebyEtFe+9YPoQUg= github.com/jmespath/go-jmespath v0.4.0/go.mod h1:T8mJZnbsbmF+m6zOOFylbeCJqk5+pHWvzYPziyZiYoo= github.com/jmespath/go-jmespath/internal/testify v1.5.1 h1:shLQSRRSCCPj3f2gpwzGwWFoC7ycTf1rcQZHOlsJ6N8= @@ -1333,8 +1335,8 @@ github.com/karrick/godirwalk v1.16.1 h1:DynhcF+bztK8gooS0+NDJFrdNZjJ3gzVzC545UNA github.com/karrick/godirwalk v1.16.1/go.mod h1:j4mkqPuvaLI8mp1DroR3P6ad7cyYd4c1qeJ3RV7ULlk= github.com/kballard/go-shellquote v0.0.0-20180428030007-95032a82bc51 h1:Z9n2FFNUXsshfwJMBgNA0RU6/i7WVaAegv3PtuIHPMs= github.com/kballard/go-shellquote v0.0.0-20180428030007-95032a82bc51/go.mod h1:CzGEWj7cYgsdH8dAjBGEr58BoE7ScuLd+fwFZ44+/x8= -github.com/kevinburke/rest v0.0.0-20210106114233-22cd0577e450 h1:Lr2sEj5wWzk82b/L8LsLzsCxywQaOpcr0ti/qcfzCOk= -github.com/kevinburke/rest v0.0.0-20210106114233-22cd0577e450/go.mod h1:pD+iEcdAGVXld5foVN4e24zb/6fnb60tgZPZ3P/3T/I= +github.com/kevinburke/rest v0.0.0-20240617045629-3ed0ad3487f0 h1:qksAIHu0d4vkA0rIePBn+K9eO33RxkUMiceFn3T7lO4= +github.com/kevinburke/rest v0.0.0-20240617045629-3ed0ad3487f0/go.mod h1:dcLMT8KO9krIMJQ4578Lex1Su6ewuJUqEDeQ1nTORug= github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8= github.com/kisielk/errcheck v1.7.0 h1:+SbscKmWJ5mOK/bO1zS60F5I9WwZDWOfRsC4RwfwRV0= github.com/kisielk/errcheck v1.7.0/go.mod h1:1kLL+jV4e+CFfueBmI1dSK2ADDyQnlrnrY/FqKluHJQ= @@ -1343,8 +1345,8 @@ github.com/kkHAIKE/contextcheck v1.1.5 h1:CdnJh63tcDe53vG+RebdpdXJTc9atMgGqdx8LX github.com/kkHAIKE/contextcheck v1.1.5/go.mod h1:O930cpht4xb1YQpK+1+AgoM3mFsvxr7uyFptcnWTYUA= github.com/klauspost/asmfmt v1.3.2/go.mod h1:AG8TuvYojzulgDAMCnYn50l/5QV3Bs/tp6j0HLHbNSE= github.com/klauspost/compress v1.15.9/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU= -github.com/klauspost/compress v1.17.0 h1:Rnbp4K9EjcDuVuHtd0dgA4qNuv9yKDYKK1ulpJwgrqM= -github.com/klauspost/compress v1.17.0/go.mod h1:ntbaceVETuRiXiv4DpjP66DpAtAGkEQskQzEyD//IeE= +github.com/klauspost/compress v1.17.8 h1:YcnTYrq7MikUT7k0Yb5eceMmALQPYBW/Xltxn0NAMnU= +github.com/klauspost/compress v1.17.8/go.mod h1:Di0epgTjJY877eYKx5yC51cX2A2Vl2ibi7bDH9ttBbw= github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg= github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ= github.com/kr/fs v0.1.0 h1:Jskdu9ieNAYnjxsi0LbQp1ulIKZV1LAFgK1tWhpZgl8= @@ -1418,8 +1420,8 @@ github.com/markbates/oncer v1.0.0 h1:E83IaVAHygyndzPimgUYJjbshhDTALZyXxvk9FOlQRY github.com/markbates/oncer v1.0.0/go.mod h1:Z59JA581E9GP6w96jai+TGqafHPW+cPfRxz2aSZ0mcI= github.com/markbates/safe v1.0.1 h1:yjZkbvRM6IzKj9tlu/zMJLS0n/V351OZWRnF3QfaUxI= github.com/markbates/safe v1.0.1/go.mod h1:nAqgmRi7cY2nqMc92/bSEeQA+R4OheNU2T1kNSCBdG0= -github.com/matoous/godox v0.0.0-20230222163458-006bad1f9d26 h1:gWg6ZQ4JhDfJPqlo2srm/LN17lpybq15AryXIRcWYLE= -github.com/matoous/godox v0.0.0-20230222163458-006bad1f9d26/go.mod h1:1BELzlh859Sh1c6+90blK8lbYy0kwQf1bYlBhBysy1s= +github.com/matoous/godox v0.0.0-20240105082147-c5b5e0e7c0c0 h1:Ny7cm4KSWceJLYyI1sm+aFIVDWSGXLcOJ0O0UaS5wdU= +github.com/matoous/godox v0.0.0-20240105082147-c5b5e0e7c0c0/go.mod h1:jgE/3fUXiTurkdHOLT5WEkThTSuE7yxHv5iWPa80afs= github.com/matryer/is v1.4.0 h1:sosSmIWwkYITGrxZ25ULNDeKiMNzFSr4V/eqBQP0PeE= github.com/matryer/is v1.4.0/go.mod h1:8I/i5uYgLzgsgEloJE1U6xx5HkBQpAZvepWuujKwMRU= github.com/mattn/go-colorable v0.1.13 h1:fFA4WZxdEF4tXPZVKMLwD8oUnCTTo08duU7wxecdEvA= @@ -1438,8 +1440,9 @@ github.com/mattn/go-runewidth v0.0.9/go.mod h1:H031xJmbD/WCDINGzjvQ9THkh0rPKHF+m github.com/mattn/go-runewidth v0.0.10/go.mod h1:RAqKPSqVFrSLVXbA8x7dzmKdmGzieGRCM46jaSJTDAk= github.com/mattn/go-runewidth v0.0.12/go.mod h1:RAqKPSqVFrSLVXbA8x7dzmKdmGzieGRCM46jaSJTDAk= github.com/mattn/go-runewidth v0.0.13/go.mod h1:Jdepj2loyihRzMpdS35Xk/zdY8IAYHsh153qUoGf23w= -github.com/mattn/go-runewidth v0.0.14 h1:+xnbZSEeDbOIg5/mE6JF0w6n9duR1l3/WmbinWVwUuU= github.com/mattn/go-runewidth v0.0.14/go.mod h1:Jdepj2loyihRzMpdS35Xk/zdY8IAYHsh153qUoGf23w= +github.com/mattn/go-runewidth v0.0.16 h1:E5ScNMtiwvlvB5paMFdw9p4kSQzbXFikJ5SQO6TULQc= +github.com/mattn/go-runewidth v0.0.16/go.mod h1:Jdepj2loyihRzMpdS35Xk/zdY8IAYHsh153qUoGf23w= github.com/mattn/go-sqlite3 v1.14.6/go.mod h1:NyWgC/yNuGj7Q9rpYnZvas74GogHl5/Z4A/KQRfk6bU= github.com/mattn/go-sqlite3 v1.14.14/go.mod h1:NyWgC/yNuGj7Q9rpYnZvas74GogHl5/Z4A/KQRfk6bU= github.com/mattn/go-sqlite3 v1.14.22 h1:2gZY6PC6kBnID23Tichd1K+Z0oS6nE/XwU+Vz/5o4kU= @@ -1447,8 +1450,8 @@ github.com/mattn/go-sqlite3 v1.14.22/go.mod h1:Uh1q+B4BYcTPb+yiD3kU8Ct7aC0hY9fxU github.com/matttproud/golang_protobuf_extensions v1.0.1/go.mod h1:D8He9yQNgCq6Z5Ld7szi9bcBfOoFv/3dc6xSMkL2PC0= github.com/maxbrunsfeld/counterfeiter/v6 v6.8.1 h1:NicmruxkeqHjDv03SfSxqmaLuisddudfP3h5wdXFbhM= github.com/maxbrunsfeld/counterfeiter/v6 v6.8.1/go.mod h1:eyp4DdUJAKkr9tvxR3jWhw2mDK7CWABMG5r9uyaKC7I= -github.com/mgechev/revive v1.3.7 h1:502QY0vQGe9KtYJ9FpxMz9rL+Fc/P13CI5POL4uHCcE= -github.com/mgechev/revive v1.3.7/go.mod h1:RJ16jUbF0OWC3co/+XTxmFNgEpUPwnnA0BRllX2aDNA= +github.com/mgechev/revive v1.3.9 h1:18Y3R4a2USSBF+QZKFQwVkBROUda7uoBlkEuBD+YD1A= +github.com/mgechev/revive v1.3.9/go.mod h1:+uxEIr5UH0TjXWHTno3xh4u7eg6jDpXKzQccA9UGhHU= github.com/miekg/dns v1.1.50 h1:DQUfb9uc6smULcREF09Uc+/Gd46YWqJd5DbpPE9xkcA= github.com/miekg/dns v1.1.50/go.mod h1:e3IlAVfNqAllflbibAZEWOXOQ+Ynzk/dDozDxY7XnME= github.com/minio/asm2plan9s v0.0.0-20200509001527-cdd76441f9d8/go.mod h1:mC1jAcsrzbxHt8iiaC+zU4b1ylILSosueou12R++wfY= @@ -1484,8 +1487,8 @@ github.com/modern-go/reflect2 v1.0.2 h1:xBagoLtFs94CBntxluKeaWgTMpvLxC4ur3nMaC9G github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk= github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00 h1:n6/2gBQ3RWajuToeY6ZtZTIKv2v7ThUy5KKusIT0yc0= github.com/monochromegane/go-gitignore v0.0.0-20200626010858-205db1a8cc00/go.mod h1:Pm3mSP3c5uWn86xMLZ5Sa7JB9GsEZySvHYXCTK4E9q4= -github.com/moricho/tparallel v0.3.1 h1:fQKD4U1wRMAYNngDonW5XupoB/ZGJHdpzrWqgyg9krA= -github.com/moricho/tparallel v0.3.1/go.mod h1:leENX2cUv7Sv2qDgdi0D0fCftN8fRC67Bcn8pqzeYNI= +github.com/moricho/tparallel v0.3.2 h1:odr8aZVFA3NZrNybggMkYO3rgPRcqjeQUlBBFVxKHTI= +github.com/moricho/tparallel v0.3.2/go.mod h1:OQ+K3b4Ln3l2TZveGCywybl68glfLEwFGqvnjok8b+U= github.com/muesli/ansi v0.0.0-20211018074035-2e021307bc4b h1:1XF24mVaiu7u+CFywTdcDo2ie1pzzhwjt6RHqzpMU34= github.com/muesli/ansi v0.0.0-20211018074035-2e021307bc4b/go.mod h1:fQuZ0gauxyBcmsdE3ZT4NasjaRdxmbCS0jRHsrWu3Ho= github.com/muesli/cancelreader v0.2.2 h1:3I4Kt4BQjOR54NavqnDogx/MIoWBFa0StPA8ELUXHmA= @@ -1613,24 +1616,24 @@ github.com/prashantv/gostub v1.1.0/go.mod h1:A5zLQHz7ieHGG7is6LLXLz7I8+3LZzsrV0P github.com/prometheus/client_golang v0.9.1/go.mod h1:7SWBe2y4D6OKWSNQJUaRYU/AaXPKyh/dDVn+NZz0KFw= github.com/prometheus/client_golang v1.0.0/go.mod h1:db9x61etRT2tGnBNRi70OPL5FsnadC4Ky3P0J6CfImo= github.com/prometheus/client_golang v1.1.0/go.mod h1:I1FGZT9+L76gKKOs5djB6ezCbFQP1xR9D75/vuwEF3g= -github.com/prometheus/client_golang v1.19.0 h1:ygXvpU1AoN1MhdzckN+PyD9QJOSD4x7kmXYlnfbA6JU= -github.com/prometheus/client_golang v1.19.0/go.mod h1:ZRM9uEAypZakd+q/x7+gmsvXdURP+DABIEIjnmDdp+k= +github.com/prometheus/client_golang v1.19.1 h1:wZWJDwK+NameRJuPGDhlnFgx8e8HN3XHQeLaYJFJBOE= +github.com/prometheus/client_golang v1.19.1/go.mod h1:mP78NwGzrVks5S2H6ab8+ZZGJLZUq1hoULYBAYBw1Ho= github.com/prometheus/client_model v0.0.0-20180712105110-5c3871d89910/go.mod h1:MbSGuTsp3dbXC40dX6PRTWyKYBIrTGTE9sqQNg2J8bo= github.com/prometheus/client_model v0.0.0-20190129233127-fd36f4220a90/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA= github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA= github.com/prometheus/client_model v0.2.0/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA= github.com/prometheus/client_model v0.3.0/go.mod h1:LDGWKZIo7rky3hgvBe+caln+Dr3dPggB5dvjtD7w9+w= -github.com/prometheus/client_model v0.5.0 h1:VQw1hfvPvk3Uv6Qf29VrPF32JB6rtbgI6cYPYQjL0Qw= -github.com/prometheus/client_model v0.5.0/go.mod h1:dTiFglRmd66nLR9Pv9f0mZi7B7fk5Pm3gvsjB5tr+kI= +github.com/prometheus/client_model v0.6.1 h1:ZKSh/rekM+n3CeS952MLRAdFwIKqeY8b62p8ais2e9E= +github.com/prometheus/client_model v0.6.1/go.mod h1:OrxVMOVHjw3lKMa8+x6HeMGkHMQyHDk9E3jmP2AmGiY= github.com/prometheus/common v0.4.1/go.mod h1:TNfzLD0ON7rHzMJeJkieUDPYmFC7Snx/y86RQel1bk4= github.com/prometheus/common v0.6.0/go.mod h1:eBmuwkDJBwy6iBfxCBob6t6dR6ENT/y+J+Zk0j9GMYc= -github.com/prometheus/common v0.48.0 h1:QO8U2CdOzSn1BBsmXJXduaaW+dY/5QLjfB8svtSzKKE= -github.com/prometheus/common v0.48.0/go.mod h1:0/KsvlIEfPQCQ5I2iNSAWKPZziNCvRs5EC6ILDTlAPc= +github.com/prometheus/common v0.55.0 h1:KEi6DK7lXW/m7Ig5i47x0vRzuBsHuvJdi5ee6Y3G1dc= +github.com/prometheus/common v0.55.0/go.mod h1:2SECS4xJG1kd8XF9IcM1gMX6510RAEL65zxzNImwdc8= github.com/prometheus/procfs v0.0.0-20181005140218-185b4288413d/go.mod h1:c3At6R/oaqEKCNdg8wHV1ftS6bRYblBhIjjI8uT2IGk= github.com/prometheus/procfs v0.0.2/go.mod h1:TjEm7ze935MbeOT/UhFTIMYKhuLP4wbCsTZCD3I8kEA= github.com/prometheus/procfs v0.0.3/go.mod h1:4A/X28fw3Fc593LaREMrKMqOKvUAntwMDaekg4FpcdQ= -github.com/prometheus/procfs v0.12.0 h1:jluTpSng7V9hY0O2R9DzzJHYb2xULk9VTR1V1R/k6Bo= -github.com/prometheus/procfs v0.12.0/go.mod h1:pcuDEFsWDnvcgNzo4EEweacyhjeA9Zk3cnaOZAZEfOo= +github.com/prometheus/procfs v0.15.1 h1:YagwOFzUgYfKKHX6Dr+sHT7km/hxC76UB0learggepc= +github.com/prometheus/procfs v0.15.1/go.mod h1:fB45yRUv8NstnjriLhBQLuOUt+WW4BsoGhij/e3PBqk= github.com/quasilyte/go-ruleguard v0.4.2 h1:htXcXDK6/rO12kiTHKfHuqR4kr3Y4M0J0rOL6CH/BYs= github.com/quasilyte/go-ruleguard v0.4.2/go.mod h1:GJLgqsLeo4qgavUoL8JeGFNS7qcisx3awV/w9eWTmNI= github.com/quasilyte/go-ruleguard/dsl v0.3.22 h1:wd8zkOhSNr+I+8Qeciml08ivDt1pSXe60+5DqOpCjPE= @@ -1644,8 +1647,8 @@ github.com/quasilyte/stdinfo v0.0.0-20220114132959-f7386bf02567/go.mod h1:DWNGW8 github.com/remyoudompheng/bigfft v0.0.0-20200410134404-eec4a21b6bb0/go.mod h1:qqbHyh8v60DhA7CoWK5oRCqLrMHRGoxYCSS9EjAz6Eo= github.com/rivo/uniseg v0.1.0/go.mod h1:J6wj4VEh+S6ZtnVlnTBMWIodfgj8LQOQFoIToxlJtxc= github.com/rivo/uniseg v0.2.0/go.mod h1:J6wj4VEh+S6ZtnVlnTBMWIodfgj8LQOQFoIToxlJtxc= -github.com/rivo/uniseg v0.4.4 h1:8TfxU8dW6PdqD27gjM8MVNuicgxIjxpm4K7x4jp8sis= -github.com/rivo/uniseg v0.4.4/go.mod h1:FN3SvrM+Zdj16jyLfmOkMNblXMcoc8DfTHruCPUcx88= +github.com/rivo/uniseg v0.4.7 h1:WUdvkW8uEhrYfLC4ZzdpI2ztxP1I582+49Oc5Mq64VQ= +github.com/rivo/uniseg v0.4.7/go.mod h1:FN3SvrM+Zdj16jyLfmOkMNblXMcoc8DfTHruCPUcx88= github.com/rogpeppe/fastuuid v1.2.0/go.mod h1:jVj6XXZzXRy/MSR5jhDC/2q6DgLz+nrA6LYCDYWNEvQ= github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4= github.com/rogpeppe/go-internal v1.6.1/go.mod h1:xXDCJY+GAPziupqXw64V24skbSoqbTEfhy4qGm1nDQc= @@ -1654,20 +1657,20 @@ github.com/rogpeppe/go-internal v1.10.0/go.mod h1:UQnix2H7Ngw/k4C5ijL5+65zddjncj github.com/rogpeppe/go-internal v1.12.0 h1:exVL4IDcn6na9z1rAb56Vxr+CgyK3nn3O+epU5NdKM8= github.com/rogpeppe/go-internal v1.12.0/go.mod h1:E+RYuTGaKKdloAfM02xzb0FW3Paa99yedzYV+kq4uf4= github.com/rs/xid v1.5.0/go.mod h1:trrq9SKmegXys3aeAKXMUTdJsYXVwGY3RLcfgqegfbg= -github.com/rs/zerolog v1.31.0 h1:FcTR3NnLWW+NnTwwhFWiJSZr4ECLpqCm6QsEnyvbV4A= -github.com/rs/zerolog v1.31.0/go.mod h1:/7mN4D5sKwJLZQ2b/znpjC3/GQWY/xaDXUM0kKWRHss= +github.com/rs/zerolog v1.33.0 h1:1cU2KZkvPxNyfgEmhHAz/1A9Bz+llsdYzklWFzgp0r8= +github.com/rs/zerolog v1.33.0/go.mod h1:/7mN4D5sKwJLZQ2b/znpjC3/GQWY/xaDXUM0kKWRHss= github.com/rubenv/sql-migrate v1.5.2 h1:bMDqOnrJVV/6JQgQ/MxOpU+AdO8uzYYA/TxFUBzFtS0= github.com/rubenv/sql-migrate v1.5.2/go.mod h1:H38GW8Vqf8F0Su5XignRyaRcbXbJunSWxs+kmzlg0Is= github.com/russross/blackfriday/v2 v2.1.0 h1:JIOH55/0cWyOuilr9/qlrm0BSXldqnqwMsf35Ld67mk= github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM= github.com/ruudk/golang-pdf417 v0.0.0-20181029194003-1af4ab5afa58/go.mod h1:6lfFZQK844Gfx8o5WFuvpxWRwnSoipWe/p622j1v06w= github.com/ruudk/golang-pdf417 v0.0.0-20201230142125-a7e3863a1245/go.mod h1:pQAZKsJ8yyVxGRWYNEm9oFB8ieLgKFnamEyDmSA0BRk= -github.com/ryancurrah/gomodguard v1.3.2 h1:CuG27ulzEB1Gu5Dk5gP8PFxSOZ3ptSdP5iI/3IXxM18= -github.com/ryancurrah/gomodguard v1.3.2/go.mod h1:LqdemiFomEjcxOqirbQCb3JFvSxH2JUYMerTFd3sF2o= +github.com/ryancurrah/gomodguard v1.3.3 h1:eiSQdJVNr9KTNxY2Niij8UReSwR8Xrte3exBrAZfqpg= +github.com/ryancurrah/gomodguard v1.3.3/go.mod h1:rsKQjj4l3LXe8N344Ow7agAy5p9yjsWOtRzUMYmA0QY= github.com/ryanrolds/sqlclosecheck v0.5.1 h1:dibWW826u0P8jNLsLN+En7+RqWWTYrjCB9fJfSfdyCU= github.com/ryanrolds/sqlclosecheck v0.5.1/go.mod h1:2g3dUjoS6AL4huFdv6wn55WpLIDjY7ZgUR4J8HOO/XQ= -github.com/sagikazarmark/locafero v0.3.0 h1:zT7VEGWC2DTflmccN/5T1etyKvxSxpHsjb9cJvm4SvQ= -github.com/sagikazarmark/locafero v0.3.0/go.mod h1:w+v7UsPNFwzF1cHuOajOOzoq4U7v/ig1mpRjqV+Bu1U= +github.com/sagikazarmark/locafero v0.6.0 h1:ON7AQg37yzcRPU69mt7gwhFEBwxI6P9T4Qu3N51bwOk= +github.com/sagikazarmark/locafero v0.6.0/go.mod h1:77OmuIc6VTraTXKXIs/uvUxKGUXjE1GbemJYHqdNjX0= github.com/sagikazarmark/slog-shim v0.1.0 h1:diDBnUNK9N/354PgrxMywXnAwEr1QZcOr6gto+ugjYE= github.com/sagikazarmark/slog-shim v0.1.0/go.mod h1:SrcSrq8aKtyuqEI1uvTDTK1arOWRIczQRv+GVI1AkeQ= github.com/sahilm/fuzzy v0.1.0 h1:FzWGaw2Opqyu+794ZQ9SYifWv2EIXpwP4q8dY1kDAwI= @@ -1682,8 +1685,8 @@ github.com/santhosh-tekuri/jsonschema/v5 v5.3.1 h1:lZUw3E0/J3roVtGQ+SCrUrg3ON6Ng github.com/santhosh-tekuri/jsonschema/v5 v5.3.1/go.mod h1:uToXkOrWAZ6/Oc07xWQrPOhJotwFIyu2bBVN41fcDUY= github.com/sashamelentyev/interfacebloat v1.1.0 h1:xdRdJp0irL086OyW1H/RTZTr1h/tMEOsumirXcOJqAw= github.com/sashamelentyev/interfacebloat v1.1.0/go.mod h1:+Y9yU5YdTkrNvoX0xHc84dxiN1iBi9+G8zZIhPVoNjQ= -github.com/sashamelentyev/usestdlibvars v1.26.0 h1:LONR2hNVKxRmzIrZR0PhSF3mhCAzvnr+DcUiHgREfXE= -github.com/sashamelentyev/usestdlibvars v1.26.0/go.mod h1:9nl0jgOfHKWNFS43Ojw0i7aRoS4j6EBye3YBhmAIRF8= +github.com/sashamelentyev/usestdlibvars v1.27.0 h1:t/3jZpSXtRPRf2xr0m63i32ZrusyurIGT9E5wAvXQnI= +github.com/sashamelentyev/usestdlibvars v1.27.0/go.mod h1:9nl0jgOfHKWNFS43Ojw0i7aRoS4j6EBye3YBhmAIRF8= github.com/sclevine/spec v1.4.0 h1:z/Q9idDcay5m5irkZ28M7PtQM4aOISzOpj4bUPkDee8= github.com/sclevine/spec v1.4.0/go.mod h1:LvpgJaFyvQzRvc1kaDs0bulYwzC70PbiYjC4QnFHkOM= github.com/securego/gosec/v2 v2.20.1-0.20240525090044-5f0084eb01a9 h1:rnO6Zp1YMQwv8AyxzuwsVohljJgp4L0ZqiCgtACsPsc= @@ -1703,8 +1706,8 @@ github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ= github.com/sivchari/containedctx v1.0.3 h1:x+etemjbsh2fB5ewm5FeLNi5bUjK0V8n0RB+Wwfd0XE= github.com/sivchari/containedctx v1.0.3/go.mod h1:c1RDvCbnJLtH4lLcYD/GqwiBSSf4F5Qk0xld2rBqzJ4= -github.com/sivchari/tenv v1.7.1 h1:PSpuD4bu6fSmtWMxSGWcvqUUgIn7k3yOJhOIzVWn8Ak= -github.com/sivchari/tenv v1.7.1/go.mod h1:64yStXKSOxDfX47NlhVwND4dHwfZDdbp2Lyl018Icvg= +github.com/sivchari/tenv v1.10.0 h1:g/hzMA+dBCKqGXgW8AV/1xIWhAvDrx0zFKNR48NFMg0= +github.com/sivchari/tenv v1.10.0/go.mod h1:tdY24masnVoZFxYrHv/nD6Tc8FbkEtAQEEziXpyMgqY= github.com/sonatard/noctx v0.0.2 h1:L7Dz4De2zDQhW8S0t+KUjY0MAQJd6SgVwhzNIc4ok00= github.com/sonatard/noctx v0.0.2/go.mod h1:kzFz+CzWSjQ2OzIm46uJZoXuBpa2+0y3T36U18dWqIo= github.com/sourcegraph/conc v0.3.0 h1:OQTbbt6P72L20UqAkXXuLOj79LfEanQ+YQFNpLA9ySo= @@ -1719,14 +1722,14 @@ github.com/spf13/afero v1.9.2/go.mod h1:iUV7ddyEEZPO5gA3zD4fJt6iStLlL+Lg4m2cihcD github.com/spf13/afero v1.11.0 h1:WJQKhtpdm3v2IzqG8VMqrr6Rf3UYpEF239Jy9wNepM8= github.com/spf13/afero v1.11.0/go.mod h1:GH9Y3pIexgf1MTIWtNGyogA5MwRIDXGUr+hbWNoBjkY= github.com/spf13/cast v1.3.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE= -github.com/spf13/cast v1.5.1 h1:R+kOtfhWQE6TVQzY+4D7wJLBgkdVasCEFxSUBYBYIlA= -github.com/spf13/cast v1.5.1/go.mod h1:b9PdjNptOpzXr7Rq1q9gJML/2cdGQAo69NKzQ10KN48= -github.com/spf13/cobra v1.8.0 h1:7aJaZx1B85qltLMc546zn58BxxfZdR/W22ej9CFoEf0= -github.com/spf13/cobra v1.8.0/go.mod h1:WXLWApfZ71AjXPya3WOlMsY9yMs7YeiHhFVlvLyhcho= +github.com/spf13/cast v1.6.0 h1:GEiTHELF+vaR5dhz3VqZfFSzZjYbgeKDpBxQVS4GYJ0= +github.com/spf13/cast v1.6.0/go.mod h1:ancEpBxwJDODSW/UG4rDrAqiKolqNNh2DX3mk86cAdo= +github.com/spf13/cobra v1.8.1 h1:e5/vxKd/rZsfSJMUX1agtjeTDf+qv1/JdBF8gg5k9ZM= +github.com/spf13/cobra v1.8.1/go.mod h1:wHxEcudfqmLYa8iTfL+OuZPbBZkmvliBWKIezN3kD9Y= github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA= github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg= -github.com/spf13/viper v1.17.0 h1:I5txKw7MJasPL/BrfkbA0Jyo/oELqVmux4pR/UxOMfI= -github.com/spf13/viper v1.17.0/go.mod h1:BmMMMLQXSbcHK6KAOiFLz0l5JHrU89OdIRHvsk0+yVI= +github.com/spf13/viper v1.19.0 h1:RWq5SEjt8o25SROyN3z2OrDB9l7RPd3lwTWU8EcEdcI= +github.com/spf13/viper v1.19.0/go.mod h1:GQUN9bilAbhU/jgc1bKs99f/suXKeUMct8Adx5+Ntkg= github.com/spotinst/spotinst-sdk-go v1.145.0 h1:c/PufzKMbjmqSYcVHr+TuNpcZ6x5+jZALVGTesbJ7q4= github.com/spotinst/spotinst-sdk-go v1.145.0/go.mod h1:Ku9c4p+kRWnQqmXkzGcTMHLcQKgLHrQZISxeKY7mPqE= github.com/ssgreg/nlreturn/v2 v2.2.1 h1:X4XDI7jstt3ySqGU86YGAURbxw3oTDPK9sPEi6YEwQ0= @@ -1753,8 +1756,6 @@ github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsT github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY= github.com/subosito/gotenv v1.6.0 h1:9NlTDc1FTs4qu0DDq7AEtTPNw6SVm7uBMsUCUjABIf8= github.com/subosito/gotenv v1.6.0/go.mod h1:Dk4QP5c2W3ibzajGcXpNraDfq2IrhjMIvMSWPKKo0FU= -github.com/t-yuki/gocover-cobertura v0.0.0-20180217150009-aaee18c8195c h1:+aPplBwWcHBo6q9xrfWdMrT9o4kltkmmvpemgIjep/8= -github.com/t-yuki/gocover-cobertura v0.0.0-20180217150009-aaee18c8195c/go.mod h1:SbErYREK7xXdsRiigaQiQkI9McGRzYMvlKYaP3Nimdk= github.com/tdakkota/asciicheck v0.2.0 h1:o8jvnUANo0qXtnslk2d3nMKTFNlOnJjRrNcj0j9qkHM= github.com/tdakkota/asciicheck v0.2.0/go.mod h1:Qb7Y9EgjCLJGup51gDHFzbI08/gbGhL/UVhYIPWG2rg= github.com/tenntenn/modver v1.0.1 h1:2klLppGhDgzJrScMpkj9Ujy3rXPUspSjAcev9tSEBgA= @@ -1773,8 +1774,8 @@ github.com/tidwall/pretty v1.2.1 h1:qjsOFOWWQl+N3RsoF5/ssm1pHmJJwhjlSbZ51I6wMl4= github.com/tidwall/pretty v1.2.1/go.mod h1:ITEVvHYasfjBbM0u2Pg8T2nJnzm8xPwvNhhsoaGGjNU= github.com/tidwall/sjson v1.2.5 h1:kLy8mja+1c9jlljvWTlSazM7cKDRfJuR/bOJhcY5NcY= github.com/tidwall/sjson v1.2.5/go.mod h1:Fvgq9kS/6ociJEDnK0Fk1cpYF4FIW6ZF7LAe+6jwd28= -github.com/timakin/bodyclose v0.0.0-20230421092635-574207250966 h1:quvGphlmUVU+nhpFa4gg4yJyTRJ13reZMDHrKwYw53M= -github.com/timakin/bodyclose v0.0.0-20230421092635-574207250966/go.mod h1:27bSVNWSBOHm+qRp1T9qzaIpsWEP6TbUnei/43HK+PQ= +github.com/timakin/bodyclose v0.0.0-20240125160201-f835fa56326a h1:A6uKudFIfAEpoPdaal3aSqGxBzLyU8TqyXImLwo6dIo= +github.com/timakin/bodyclose v0.0.0-20240125160201-f835fa56326a/go.mod h1:mkjARE7Yr8qU23YcGMSALbIxTQ9r9QBVahQOBRfU460= github.com/timonwong/loggercheck v0.9.4 h1:HKKhqrjcVj8sxL7K77beXh0adEm6DLjV/QOGeMXEVi4= github.com/timonwong/loggercheck v0.9.4/go.mod h1:caz4zlPcgvpEkXgVnAJGowHAMW2NwHaNlpS8xDbVhTg= github.com/tj/assert v0.0.3 h1:Df/BlaZ20mq6kuai7f5z2TvPFiwC3xaWJSDQNiIS3Rk= @@ -1790,18 +1791,18 @@ github.com/ultraware/funlen v0.1.0/go.mod h1:XJqmOQja6DpxarLj6Jj1U7JuoS8PvL4nEqD github.com/ultraware/whitespace v0.1.1 h1:bTPOGejYFulW3PkcrqkeQwOd6NKOOXvmGD9bo/Gk8VQ= github.com/ultraware/whitespace v0.1.1/go.mod h1:XcP1RLD81eV4BW8UhQlpaR+SDc2givTvyI8a586WjW8= github.com/urfave/cli v1.22.12/go.mod h1:sSBEIC79qR6OvcmsD4U3KABeOTxDqQtdDnaFuUN30b8= -github.com/uudashr/gocognit v1.1.2 h1:l6BAEKJqQH2UpKAPKdMfZf5kE4W/2xk8pfU1OVLvniI= -github.com/uudashr/gocognit v1.1.2/go.mod h1:aAVdLURqcanke8h3vg35BC++eseDm66Z7KmchI5et4k= +github.com/uudashr/gocognit v1.1.3 h1:l+a111VcDbKfynh+airAy/DJQKaXh2m9vkoysMPSZyM= +github.com/uudashr/gocognit v1.1.3/go.mod h1:aKH8/e8xbTRBwjbCkwZ8qt4l2EpKXl31KMHgSS+lZ2U= github.com/vbatts/tar-split v0.11.3 h1:hLFqsOLQ1SsppQNTMpkpPXClLDfC2A3Zgy9OUU+RVck= github.com/vbatts/tar-split v0.11.3/go.mod h1:9QlHN18E+fEH7RdG+QAJJcuya3rqT7eXSTY7wGrAokY= github.com/vburenin/ifacemaker v1.2.1 h1:3Vq8B/bfBgjWTkv+jDg4dVL1KHt3k1K4lO7XRxYA2sk= github.com/vburenin/ifacemaker v1.2.1/go.mod h1:5WqrzX2aD7/hi+okBjcaEQJMg4lDGrpuEX3B8L4Wgrs= -github.com/vektra/mockery/v2 v2.43.0 h1:9jgLwYbFIKPwWJUeK6Y+0s9oLRIGXLfW4FWlmF9R8c0= -github.com/vektra/mockery/v2 v2.43.0/go.mod h1:XNTE9RIu3deGAGQRVjP1VZxGpQNm0YedZx4oDs3prr8= +github.com/vektra/mockery/v2 v2.44.1 h1:lfvocO3HklLp68gezPBVaHl+5rKXloGCO7eTEXh71dA= +github.com/vektra/mockery/v2 v2.44.1/go.mod h1:XNTE9RIu3deGAGQRVjP1VZxGpQNm0YedZx4oDs3prr8= github.com/voxelbrain/goptions v0.0.0-20180630082107-58cddc247ea2 h1:txplJASvd6b/hrE0s/Ixfpp2cuwH9IO9oZBAN9iYa4A= github.com/voxelbrain/goptions v0.0.0-20180630082107-58cddc247ea2/go.mod h1:DGCIhurYgnLz8J9ga1fMV/fbLDyUvTyrWXVWUIyJon4= -github.com/weaveworks/goformation/v4 v4.10.2-0.20231113122203-bf1ae633f95c h1:iejfxgm8iQ6Jr3yT7Javgk40drlL6w9B6+zgACs0fMw= -github.com/weaveworks/goformation/v4 v4.10.2-0.20231113122203-bf1ae633f95c/go.mod h1:3c2tyJmoge5qTS4PXS0niVJxR0YzroIBsts3dQI3EdI= +github.com/weaveworks/goformation/v4 v4.10.2-0.20240626091647-67263f64f317 h1:efLcD8csEtX1RO0444Wa4RQjO34pYuojsdPABc5QC3s= +github.com/weaveworks/goformation/v4 v4.10.2-0.20240626091647-67263f64f317/go.mod h1:3c2tyJmoge5qTS4PXS0niVJxR0YzroIBsts3dQI3EdI= github.com/weaveworks/schemer v0.0.0-20230525114451-47139fe25848 h1:I7S+IHZIU49skVgTNArf9bIdy07mCn1Z0zv1r07ROws= github.com/weaveworks/schemer v0.0.0-20230525114451-47139fe25848/go.mod h1:y8Luzq6JDsYVoIV0QAlnvIiq8bSaap0myMjWKyzVFTY= github.com/xeipuuv/gojsonpointer v0.0.0-20180127040702-4e3ac2762d5f/go.mod h1:N2zxlSyiKSe5eX1tZViRH5QA0qijqEDrYZiPEAiq3wU= @@ -1845,8 +1846,8 @@ go-simpler.org/assert v0.9.0 h1:PfpmcSvL7yAnWyChSjOz6Sp6m9j5lyK8Ok9pEL31YkQ= go-simpler.org/assert v0.9.0/go.mod h1:74Eqh5eI6vCK6Y5l3PI8ZYFXG4Sa+tkr70OIPJAUr28= go-simpler.org/musttag v0.12.2 h1:J7lRc2ysXOq7eM8rwaTYnNrHd5JwjppzB6mScysB2Cs= go-simpler.org/musttag v0.12.2/go.mod h1:uN1DVIasMTQKk6XSik7yrJoEysGtR2GRqvWnI9S7TYM= -go-simpler.org/sloglint v0.7.1 h1:qlGLiqHbN5islOxjeLXoPtUdZXb669RW+BDQ+xOSNoU= -go-simpler.org/sloglint v0.7.1/go.mod h1:OlaVDRh/FKKd4X4sIMbsz8st97vomydceL146Fthh/c= +go-simpler.org/sloglint v0.7.2 h1:Wc9Em/Zeuu7JYpl+oKoYOsQSy2X560aVueCW/m6IijY= +go-simpler.org/sloglint v0.7.2/go.mod h1:US+9C80ppl7VsThQclkM7BkCHQAzuz8kHLsW3ppuluo= go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU= go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8= go.opencensus.io v0.22.2/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw= @@ -1856,14 +1857,14 @@ go.opencensus.io v0.22.5/go.mod h1:5pWMHQbX5EPX2/62yrJeAkowc+lfs/XD7Uxpq3pI6kk= go.opencensus.io v0.23.0/go.mod h1:XItmlyltB5F7CS4xOC1DcqMoFqwtC6OG2xF7mCv7P7E= go.opencensus.io v0.24.0 h1:y73uSU6J157QMP2kn2r30vwW1A2W2WFwSCGnAVxeaD0= go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo= -go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.45.0 h1:x8Z78aZx8cOF0+Kkazoc7lwUNMGy0LrzEMxTm4BbTxg= -go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.45.0/go.mod h1:62CPTSry9QZtOaSsE3tOzhx6LzDhHnXJ6xHeMNNiM6Q= -go.opentelemetry.io/otel v1.21.0 h1:hzLeKBZEL7Okw2mGzZ0cc4k/A7Fta0uoPgaJCr8fsFc= -go.opentelemetry.io/otel v1.21.0/go.mod h1:QZzNPQPm1zLX4gZK4cMi+71eaorMSGT3A4znnUvNNEo= -go.opentelemetry.io/otel/metric v1.21.0 h1:tlYWfeo+Bocx5kLEloTjbcDwBuELRrIFxwdQ36PlJu4= -go.opentelemetry.io/otel/metric v1.21.0/go.mod h1:o1p3CA8nNHW8j5yuQLdc1eeqEaPfzug24uvsyIEJRWM= -go.opentelemetry.io/otel/trace v1.21.0 h1:WD9i5gzvoUPuXIXH24ZNBudiarZDKuekPqi/E8fpfLc= -go.opentelemetry.io/otel/trace v1.21.0/go.mod h1:LGbsEB0f9LGjN+OZaQQ26sohbOmiMR+BaslueVtS/qQ= +go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.49.0 h1:jq9TW8u3so/bN+JPT166wjOI6/vQPF6Xe7nMNIltagk= +go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.49.0/go.mod h1:p8pYQP+m5XfbZm9fxtSKAbM6oIllS7s2AfxrChvc7iw= +go.opentelemetry.io/otel v1.24.0 h1:0LAOdjNmQeSTzGBzduGe/rU4tZhMwL5rWgtp9Ku5Jfo= +go.opentelemetry.io/otel v1.24.0/go.mod h1:W7b9Ozg4nkF5tWI5zsXkaKKDjdVjpD4oAt9Qi/MArHo= +go.opentelemetry.io/otel/metric v1.24.0 h1:6EhoGWWK28x1fbpA4tYTOWBkPefTDQnb8WSGXlc88kI= +go.opentelemetry.io/otel/metric v1.24.0/go.mod h1:VYhLe1rFfxuTXLgj4CBiyz+9WYBA8pNGJgDcSFRKBco= +go.opentelemetry.io/otel/trace v1.24.0 h1:CsKnnL4dUAr/0llH9FKuc698G04IrpWV0MQA/Y1YELI= +go.opentelemetry.io/otel/trace v1.24.0/go.mod h1:HPc3Xr/cOApsBI154IU0OI0HJexz+aw5uPdbs3UCjNU= go.opentelemetry.io/proto/otlp v0.7.0/go.mod h1:PqfVotwruBrMGOCsRd/89rSnXhoiJIqeYNgFYFoEGnI= go.opentelemetry.io/proto/otlp v0.15.0/go.mod h1:H7XAot3MsfNsj7EXtrA2q5xSNQ10UqI405h3+duxN4U= go.opentelemetry.io/proto/otlp v0.19.0/go.mod h1:H7XAot3MsfNsj7EXtrA2q5xSNQ10UqI405h3+duxN4U= @@ -1897,9 +1898,10 @@ golang.org/x/crypto v0.7.0/go.mod h1:pYwdfH91IfpZVANVyUOhSIPZaFoJGxTFbZhFTx+dXZU golang.org/x/crypto v0.9.0/go.mod h1:yrmDGqONDYtNj3tH8X9dzUun2m2lzPa9ngI6/RUPGR0= golang.org/x/crypto v0.11.0/go.mod h1:xgJhtzW8F9jGdVFWZESrid1U1bjeNy4zgy5cRr/CIio= golang.org/x/crypto v0.12.0/go.mod h1:NF0Gs7EO5K4qLn+Ylc+fih8BSTeIjAP05siRnAh98yw= +golang.org/x/crypto v0.13.0/go.mod h1:y6Z2r+Rw4iayiXXAIxJIDAJ1zMW4yaTpebo8fPOliYc= golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4= -golang.org/x/crypto v0.24.0 h1:mnl8DM0o513X8fdIkmyFE/5hTYxbwYOjDS/+rK6qpRI= -golang.org/x/crypto v0.24.0/go.mod h1:Z1PMYSOR5nyMcyAVAIQSKCDwalqy85Aqn1x3Ws4L5DM= +golang.org/x/crypto v0.25.0 h1:ypSNr+bnYL2YhwoMt2zPxHFmbAN1KZs/njMG3hxUp30= +golang.org/x/crypto v0.25.0/go.mod h1:T+wALwcMOSE0kXgUAnPAHqTLW+XHgcELELW8VaDgm/M= golang.org/x/exp v0.0.0-20180321215751-8460e604b9de/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA= golang.org/x/exp v0.0.0-20180807140117-3d87b88a115f/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA= golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA= @@ -1915,12 +1917,12 @@ golang.org/x/exp v0.0.0-20200119233911-0405dc783f0a/go.mod h1:2RIsYlXP63K8oxa1u0 golang.org/x/exp v0.0.0-20200207192155-f17229e696bd/go.mod h1:J/WKrq2StrnmMY6+EHIKF9dgMWnmCNThgcyBT1FY9mM= golang.org/x/exp v0.0.0-20200224162631-6cc2880d07d6/go.mod h1:3jZMyOhIsHpP37uCMkUooju7aAi5cS1Q23tOzKc+0MU= golang.org/x/exp v0.0.0-20220827204233-334a2380cb91/go.mod h1:cyybsKvd6eL0RnXn6p/Grxp8F5bW7iYuBgsNCOHpMYE= -golang.org/x/exp v0.0.0-20240103183307-be819d1f06fc h1:ao2WRsKSzW6KuUY9IWPwWahcHCgR0s52IfwutMfEbdM= -golang.org/x/exp v0.0.0-20240103183307-be819d1f06fc/go.mod h1:iRJReGqOEeBhDZGkGbynYwcHlctCvnjTYIamk7uXpHI= +golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56 h1:2dVuKD2vS7b0QIHQbpyTISPd0LeHDbnYEryqj5Q1ug8= +golang.org/x/exp v0.0.0-20240719175910-8a7402abbf56/go.mod h1:M4RDyNAINzryxdtnbRXRL/OHtkFuWGRjvuhBJpk2IlY= golang.org/x/exp/typeparams v0.0.0-20220428152302-39d4317da171/go.mod h1:AbB0pIl9nAr9wVwH+Z2ZpaocVmF5I4GyWCDIsVjR0bk= golang.org/x/exp/typeparams v0.0.0-20230203172020-98cc5a0785f9/go.mod h1:AbB0pIl9nAr9wVwH+Z2ZpaocVmF5I4GyWCDIsVjR0bk= -golang.org/x/exp/typeparams v0.0.0-20240314144324-c7f7c6466f7f h1:phY1HzDcf18Aq9A8KkmRtY9WvOFIxN8wgfvy6Zm1DV8= -golang.org/x/exp/typeparams v0.0.0-20240314144324-c7f7c6466f7f/go.mod h1:AbB0pIl9nAr9wVwH+Z2ZpaocVmF5I4GyWCDIsVjR0bk= +golang.org/x/exp/typeparams v0.0.0-20240719175910-8a7402abbf56 h1:i+QrZdyNyfLEnWjd5T6LQZvQP3xk2XiNs3sQgN7QDGE= +golang.org/x/exp/typeparams v0.0.0-20240719175910-8a7402abbf56/go.mod h1:AbB0pIl9nAr9wVwH+Z2ZpaocVmF5I4GyWCDIsVjR0bk= golang.org/x/image v0.0.0-20180708004352-c73c2afc3b81/go.mod h1:ux5Hcp/YLpHSI86hEcLt0YII63i6oz57MZXIpbrjZUs= golang.org/x/image v0.0.0-20190227222117-0694c2d4d067/go.mod h1:kZ7UVZpmo3dzQBMxlp+ypCbDeSB+sBbTgSJuh5dn5js= golang.org/x/image v0.0.0-20190802002840-cff245a6509b/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0= @@ -1967,8 +1969,9 @@ golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs= golang.org/x/mod v0.9.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs= golang.org/x/mod v0.10.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs= golang.org/x/mod v0.12.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs= -golang.org/x/mod v0.19.0 h1:fEdghXQSo20giMthA7cd28ZC+jts4amQ3YMXiP5oMQ8= -golang.org/x/mod v0.19.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c= +golang.org/x/mod v0.13.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c= +golang.org/x/mod v0.20.0 h1:utOm6MM3R3dnawAiJgn0y+xvuYRsm1RKM/4giyfDgV0= +golang.org/x/mod v0.20.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c= golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= @@ -2039,9 +2042,11 @@ golang.org/x/net v0.9.0/go.mod h1:d48xBJpPfHeWQsugry2m+kC02ZBRGRgulfHnEXEuWns= golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg= golang.org/x/net v0.12.0/go.mod h1:zEVYFnQC7m/vmpQFELhcD1EWkZlX69l4oqgmer6hfKA= golang.org/x/net v0.14.0/go.mod h1:PpSgVXXLK0OxS0F31C1/tv6XNguvCrnXIDrFMspZIUI= +golang.org/x/net v0.15.0/go.mod h1:idbUs1IY1+zTqbi8yxTbhexhEEk5ur9LInksu6HrEpk= +golang.org/x/net v0.16.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE= golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE= -golang.org/x/net v0.26.0 h1:soB7SVo0PWrY4vPW/+ay0jKDNScG2X9wFeYlXIvJsOQ= -golang.org/x/net v0.26.0/go.mod h1:5YKkiSynbBIh3p6iOc/vibscux0x38BZDkn8sCUPxHE= +golang.org/x/net v0.27.0 h1:5K3Njcw06/l2y9vpGCSdcxWOYHOUk3dVNGDXN+FvAys= +golang.org/x/net v0.27.0/go.mod h1:dDi0PyhWNoiUOrAS8uXv/vnScO4wnHQO4mj9fn/RytE= golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U= golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw= golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw= @@ -2073,8 +2078,8 @@ golang.org/x/oauth2 v0.6.0/go.mod h1:ycmewcwgD4Rpr3eZJLSB4Kyyljb3qDh40vJ8STE5HKw golang.org/x/oauth2 v0.7.0/go.mod h1:hPLQkd9LyjfXTiRohC/41GhcFqxisoUQ99sCUOHO9x4= golang.org/x/oauth2 v0.8.0/go.mod h1:yr7u4HXZRm1R1kBWqr/xKNqewf0plRYoB7sla+BCIXE= golang.org/x/oauth2 v0.10.0/go.mod h1:kTpgurOux7LqtuxjuyZa4Gj2gdezIt/jQtGnNFfypQI= -golang.org/x/oauth2 v0.19.0 h1:9+E/EZBCbTLNrbN35fHv/a/d/mOBatymz1zbtQrXpIg= -golang.org/x/oauth2 v0.19.0/go.mod h1:vYi7skDa1x015PmRRYZ7+s1cWyPgrPiSYRe4rnsexc8= +golang.org/x/oauth2 v0.21.0 h1:tsimM75w1tF/uws5rbeHzIWxEqElMehnc+iW793zsZs= +golang.org/x/oauth2 v0.21.0/go.mod h1:XYTD2NtWslqkgxebSiOHnXEap4TF09sJSc7H1sXbhtI= golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= @@ -2093,8 +2098,9 @@ golang.org/x/sync v0.0.0-20220929204114-8fcdb60fdcc0/go.mod h1:RxMgew5VJxzue5/jJ golang.org/x/sync v0.1.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.2.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= golang.org/x/sync v0.3.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y= -golang.org/x/sync v0.7.0 h1:YsImfSBoP9QPYL0xyKJPq0gcaJdG3rInoqxTWbfQu9M= -golang.org/x/sync v0.7.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk= +golang.org/x/sync v0.4.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y= +golang.org/x/sync v0.8.0 h1:3NFvSEYkUoMifnESzZl15y791HH1qU2xm6eCJU5ZPXQ= +golang.org/x/sync v0.8.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk= golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= @@ -2177,7 +2183,6 @@ golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBc golang.org/x/sys v0.0.0-20220610221304-9f5ed59c137d/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.0.0-20220615213510-4f61da869c0c/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.0.0-20220624220833-87e55d714810/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.0.0-20220702020025-31831981b65f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= @@ -2197,8 +2202,9 @@ golang.org/x/sys v0.10.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.21.0 h1:rF+pYz3DAGSQAxAu1CbC7catZg4ebC4UIeIhKxBZvws= -golang.org/x/sys v0.21.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= +golang.org/x/sys v0.14.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= +golang.org/x/sys v0.23.0 h1:YfKFowiIMvtgl1UERQoTPPToxltDeZfbj4H7dVUCwmM= +golang.org/x/sys v0.23.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA= golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo= golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= golang.org/x/term v0.0.0-20220526004731-065cf7ba2467/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= @@ -2212,9 +2218,10 @@ golang.org/x/term v0.7.0/go.mod h1:P32HKFT3hSsZrRxla30E9HqToFYAQPCMs/zFMBUFqPY= golang.org/x/term v0.8.0/go.mod h1:xPskH00ivmX89bAKVGSKKtLOWNx2+17Eiy94tnKShWo= golang.org/x/term v0.10.0/go.mod h1:lpqdcUyK/oCiQxvxVrppt5ggO2KCZ5QblwqPnfZ6d5o= golang.org/x/term v0.11.0/go.mod h1:zC9APTIj3jG3FdV/Ons+XE1riIZXG4aZ4GTHiPZJPIU= +golang.org/x/term v0.12.0/go.mod h1:owVbMEjm3cBLCHdkQu9b1opXd4ETQWc3BhuQGKgXgvU= golang.org/x/term v0.13.0/go.mod h1:LTmsnFJwVN6bCy1rVCoS+qHT1HhALEFxKncY3WNNh4U= -golang.org/x/term v0.21.0 h1:WVXCp+/EBEHOj53Rvu+7KiT/iElMrO8ACK16SMZ3jaA= -golang.org/x/term v0.21.0/go.mod h1:ooXLefLobQVslOqselCNF4SxFAaoS6KujMbsGzSDmX0= +golang.org/x/term v0.22.0 h1:BbsgPEJULsl2fV/AT3v15Mjva5yXKQDyKf+TbDz7QJk= +golang.org/x/term v0.22.0/go.mod h1:F3qCibpT5AMpCRfhfT53vVJwhLtIVHhB9XDjfFvnMI4= golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= @@ -2261,7 +2268,6 @@ golang.org/x/tools v0.0.0-20190606124116-d0a3d012864b/go.mod h1:/rFqwRUd4F7ZHNgw golang.org/x/tools v0.0.0-20190621195816-6e04913cbbac/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc= golang.org/x/tools v0.0.0-20190628153133-6cdbf07be9d0/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc= golang.org/x/tools v0.0.0-20190816200558-6889da9d5479/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= -golang.org/x/tools v0.0.0-20190910044552-dd2b5c81c578/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= golang.org/x/tools v0.0.0-20190911174233-4f2ddba30aff/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= golang.org/x/tools v0.0.0-20190927191325-030b2cf1153e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= golang.org/x/tools v0.0.0-20191012152004-8de300cfc20a/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= @@ -2317,7 +2323,6 @@ golang.org/x/tools v0.1.4/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk= golang.org/x/tools v0.1.5/go.mod h1:o0xws9oXOQQZyjljx8fwUC0k7L1pTE6eaCbjGeHmOkk= golang.org/x/tools v0.1.9/go.mod h1:nABZi5QlRsZVlzPpHl034qft6wpY4eDcsTt5AaioBiU= golang.org/x/tools v0.1.10/go.mod h1:Uh6Zz+xoGYZom868N8YTex3t7RhtHDBrE8Gzo9bV56E= -golang.org/x/tools v0.1.11/go.mod h1:SgwaegtQh8clINPpECJMqnxLv9I09HLqnW3RMqW0CA4= golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc= golang.org/x/tools v0.2.0/go.mod h1:y4OqIKeOV/fWJetJ8bXPU1sEVniLMIyDAZWeHdV+NTA= golang.org/x/tools v0.3.0/go.mod h1:/rWhSS2+zyEVwoJf8YAX6L2f0ntZ7Kn/mGgAWcipA5k= @@ -2328,8 +2333,10 @@ golang.org/x/tools v0.7.0/go.mod h1:4pg6aUX35JBAogB10C9AtvVL+qowtN4pT3CGSQex14s= golang.org/x/tools v0.9.1/go.mod h1:owI94Op576fPu3cIGQeHs3joujW/2Oc6MtlxbF5dfNc= golang.org/x/tools v0.9.3/go.mod h1:owI94Op576fPu3cIGQeHs3joujW/2Oc6MtlxbF5dfNc= golang.org/x/tools v0.12.0/go.mod h1:Sc0INKfu04TlqNoRA1hgpFZbhYXHPr4V5DzpSBTPqQM= -golang.org/x/tools v0.22.0 h1:gqSGLZqv+AI9lIQzniJ0nZDRG5GBPsSi+DRNHWNz6yA= -golang.org/x/tools v0.22.0/go.mod h1:aCwcsjqvq7Yqt6TNyX7QMU2enbQ/Gt0bo6krSeEri+c= +golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58= +golang.org/x/tools v0.14.0/go.mod h1:uYBEerGOWcJyEORxN+Ek8+TT266gXkNlHdJBwexUsBg= +golang.org/x/tools v0.23.0 h1:SGsXPZ+2l4JsgaCKkx+FQ9YZ5XEtA1GZYuoDjenLjvg= +golang.org/x/tools v0.23.0/go.mod h1:pnu6ufv6vQkll6szChhK3C3L/ruaIv5eBeztNG8wtsI= golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= @@ -2407,8 +2414,8 @@ google.golang.org/api v0.118.0/go.mod h1:76TtD3vkgmZ66zZzp72bUUklpmQmKlhh6sYtIjY google.golang.org/api v0.122.0/go.mod h1:gcitW0lvnyWjSp9nKxAbdHKIZ6vF4aajGueeslZOyms= google.golang.org/api v0.124.0/go.mod h1:xu2HQurE5gi/3t1aFCvhPD781p0a3p11sdunTJ2BlP4= google.golang.org/api v0.126.0/go.mod h1:mBwVAtz+87bEN6CbA1GtZPDOqY2R5ONPqJeIlvyo4Aw= -google.golang.org/api v0.152.0 h1:t0r1vPnfMc260S2Ci+en7kfCZaLOPs5KI0sVV/6jZrY= -google.golang.org/api v0.152.0/go.mod h1:3qNJX5eOmhiWYc67jRA/3GsDw97UFb5ivv7Y2PrriAY= +google.golang.org/api v0.171.0 h1:w174hnBPqut76FzW5Qaupt7zY8Kql6fiVjgys4f58sU= +google.golang.org/api v0.171.0/go.mod h1:Hnq5AHm4OTMt2BUVjael2CWZFD6vksJdWCWiUAmjC9o= google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM= google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4= google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4= @@ -2551,21 +2558,20 @@ google.golang.org/genproto v0.0.0-20230403163135-c38d8f061ccd/go.mod h1:UUQDJDOl google.golang.org/genproto v0.0.0-20230410155749-daa745c078e1/go.mod h1:nKE/iIaLqn2bQwXBg8f1g2Ylh6r5MN5CmZvuzZCgsCU= google.golang.org/genproto v0.0.0-20230525234025-438c736192d0/go.mod h1:9ExIQyXL5hZrHzQceCwuSYwZZ5QZBazOcprJ5rgs3lY= google.golang.org/genproto v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:xZnkP7mREFX5MORlOPEzLMr+90PPZQ2QWzrVTWfAq64= -google.golang.org/genproto v0.0.0-20231211222908-989df2bf70f3 h1:1hfbdAfFbkmpg41000wDVqr7jUpK/Yo+LPnIxxGzmkg= -google.golang.org/genproto v0.0.0-20231211222908-989df2bf70f3/go.mod h1:5RBcpGRxr25RbDzY5w+dmaqpSEvl8Gwl1x2CICf60ic= +google.golang.org/genproto v0.0.0-20240213162025-012b6fc9bca9 h1:9+tzLLstTlPTRyJTh+ah5wIMsBW5c4tQwGTN3thOW9Y= google.golang.org/genproto/googleapis/api v0.0.0-20230525234020-1aefcd67740a/go.mod h1:ts19tUU+Z0ZShN1y3aPyq2+O3d5FUNNgT6FtOzmrNn8= google.golang.org/genproto/googleapis/api v0.0.0-20230525234035-dd9d682886f9/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig= google.golang.org/genproto/googleapis/api v0.0.0-20230526203410-71b5a4ffd15e/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig= google.golang.org/genproto/googleapis/api v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:vHYtlOoi6TsQ3Uk2yxR7NI5z8uoV+3pZtR4jmHIkRig= -google.golang.org/genproto/googleapis/api v0.0.0-20231120223509-83a465c0220f h1:2yNACc1O40tTnrsbk9Cv6oxiW8pxI/pXj0wRtdlYmgY= -google.golang.org/genproto/googleapis/api v0.0.0-20231120223509-83a465c0220f/go.mod h1:Uy9bTZJqmfrw2rIBxgGLnamc78euZULUBrLZ9XTITKI= +google.golang.org/genproto/googleapis/api v0.0.0-20240311132316-a219d84964c2 h1:rIo7ocm2roD9DcFIX67Ym8icoGCKSARAiPljFhh5suQ= +google.golang.org/genproto/googleapis/api v0.0.0-20240311132316-a219d84964c2/go.mod h1:O1cOfN1Cy6QEYr7VxtjOyP5AdAuR0aJ/MYZaaof623Y= google.golang.org/genproto/googleapis/bytestream v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:ylj+BE99M198VPbBh6A8d9n3w8fChvyLK3wwBOjXBFA= google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234015-3fc162c6f38a/go.mod h1:xURIpW9ES5+/GZhnV6beoEtxQrnkRGIfP5VQG2tCBLc= google.golang.org/genproto/googleapis/rpc v0.0.0-20230525234030-28d5490b6b19/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA= google.golang.org/genproto/googleapis/rpc v0.0.0-20230526203410-71b5a4ffd15e/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA= google.golang.org/genproto/googleapis/rpc v0.0.0-20230530153820-e85fd2cbaebc/go.mod h1:66JfowdXAEgad5O9NnYcsNPLCPZJD++2L9X0PCMODrA= -google.golang.org/genproto/googleapis/rpc v0.0.0-20231212172506-995d672761c0 h1:/jFB8jK5R3Sq3i/lmeZO0cATSzFfZaJq1J2Euan3XKU= -google.golang.org/genproto/googleapis/rpc v0.0.0-20231212172506-995d672761c0/go.mod h1:FUoWkonphQm3RhTS+kOEhF8h0iDpm4tdXolVCeZ9KKA= +google.golang.org/genproto/googleapis/rpc v0.0.0-20240314234333-6e1732d8331c h1:lfpJ/2rWPa/kJgxyyXM8PrNnfCzcmxJ265mADgwmvLI= +google.golang.org/genproto/googleapis/rpc v0.0.0-20240314234333-6e1732d8331c/go.mod h1:WtryC6hu0hhx87FDGxWCDptyssuo68sk10vYjF+T9fY= google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c= google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38= google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM= @@ -2607,8 +2613,8 @@ google.golang.org/grpc v1.52.0/go.mod h1:pu6fVzoFb+NBYNAvQL08ic+lvB2IojljRYuun5v google.golang.org/grpc v1.53.0/go.mod h1:OnIrk0ipVdj4N5d9IUoFUx72/VlD7+jUsHwZgwSMQpw= google.golang.org/grpc v1.54.0/go.mod h1:PUSEXI6iWghWaB6lXM4knEgpJNu2qUcKfDtNci3EC2g= google.golang.org/grpc v1.55.0/go.mod h1:iYEXKGkEBhg1PjZQvoYEVPTDkHo1/bjTnfwTeGONTY8= -google.golang.org/grpc v1.59.0 h1:Z5Iec2pjwb+LEOqzpB2MR12/eKFhDPhuqW91O+4bwUk= -google.golang.org/grpc v1.59.0/go.mod h1:aUPDwccQo6OTjy7Hct4AfBPD1GptF4fyUjIkQ9YtF98= +google.golang.org/grpc v1.62.1 h1:B4n+nfKzOICUXMgyrNd19h/I9oH0L1pizfk1d4zSgTk= +google.golang.org/grpc v1.62.1/go.mod h1:IWTG0VlJLCh1SkC58F7np9ka9mx/WNkjl4PGJaiq+QE= google.golang.org/grpc/cmd/protoc-gen-go-grpc v1.1.0/go.mod h1:6Kw0yEErY5E/yWrBtf03jp27GLLJujG4z/JK95pnjjw= google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8= google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0= @@ -2628,8 +2634,8 @@ google.golang.org/protobuf v1.28.1/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqw google.golang.org/protobuf v1.29.1/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I= google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I= google.golang.org/protobuf v1.31.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I= -google.golang.org/protobuf v1.33.0 h1:uNO2rsAINq/JlFpSdYEKIZ0uKD/R9cpdv0T+yoGwGmI= -google.golang.org/protobuf v1.33.0/go.mod h1:c6P6GXX6sHbq/GpV6MGZEdwhWPcYBgnhAHhKbcUYpos= +google.golang.org/protobuf v1.34.2 h1:6xV6lTsCfpGD21XK49h7MhtcApnLqkfYgPcdHftf6hg= +google.golang.org/protobuf v1.34.2/go.mod h1:qYOHts0dSfpeUzUFpOMr/WGzszTmLH+DiWniOlNbLDw= gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw= gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0= gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0= @@ -2699,14 +2705,15 @@ k8s.io/component-helpers v0.29.0 h1:Y8W70NGeitKxWwhsPo/vEQbQx5VqJV+3xfLpP3V1VxU= k8s.io/component-helpers v0.29.0/go.mod h1:j2coxVfmzTOXWSE6sta0MTgNSr572Dcx68F6DD+8fWc= k8s.io/csi-translation-lib v0.29.0 h1:we4X1yUlDikvm5Rv0dwMuPHNw6KwjwsQiAuOPWXha8M= k8s.io/csi-translation-lib v0.29.0/go.mod h1:Cp6t3CNBSm1dXS17V8IImUjkqfIB6KCj8Fs8wf6uyTA= -k8s.io/gengo v0.0.0-20230829151522-9cce18d56c01 h1:pWEwq4Asjm4vjW7vcsmijwBhOr1/shsbSYiWXmNGlks= k8s.io/gengo v0.0.0-20230829151522-9cce18d56c01/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E= +k8s.io/gengo v0.0.0-20240404160639-a0386bf69313 h1:wBIDZID8ju9pwOiLlV22YYKjFGtiNSWgHf5CnKLRUuM= +k8s.io/gengo v0.0.0-20240404160639-a0386bf69313/go.mod h1:FiNAH4ZV3gBg2Kwh89tzAEV2be7d5xI0vBa/VySYy3E= k8s.io/klog/v2 v2.0.0/go.mod h1:PBfzABfn139FHAV07az/IF9Wp1bkk3vpT2XSJ76fSDE= k8s.io/klog/v2 v2.2.0/go.mod h1:Od+F08eJP+W3HUb4pSrPpgp9DGU4GzlpG/TmITuYh/Y= k8s.io/klog/v2 v2.80.1/go.mod h1:y1WjHnz7Dj687irZUWR/WLkLc5N1YHtjLdmgWjndZn0= k8s.io/klog/v2 v2.110.1/go.mod h1:YGtd1984u+GgbuZ7e08/yBuAfKLSO0+uR1Fhi6ExXjo= -k8s.io/klog/v2 v2.120.1 h1:QXU6cPEOIslTGvZaXvFWiP9VKyeet3sawzTOvdXb4Vw= -k8s.io/klog/v2 v2.120.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE= +k8s.io/klog/v2 v2.130.1 h1:n9Xl7H1Xvksem4KFG4PYbdQCQxqc/tTUyrgXaOhHSzk= +k8s.io/klog/v2 v2.130.1/go.mod h1:3Jpz1GvMt720eyJH1ckRHK1EDfpxISzJ7I9OYgaDtPE= k8s.io/kops v1.28.4 h1:vMKtEmmSfv5SJc9yxoFA+o/gCzk6XGXRCJAOMoZdH8w= k8s.io/kops v1.28.4/go.mod h1:qaPEwbWXvrbAO4si3nEyFiOZ2hlFC43kYf+wkQUh6q4= k8s.io/kube-openapi v0.0.0-20231010175941-2dd684a91f00/go.mod h1:AsvuZPBlUDVuCdzJ87iajxtXuR9oktsTctW/R9wwouA= @@ -2772,10 +2779,10 @@ sigs.k8s.io/kustomize/api v0.13.5-0.20230601165947-6ce0bf390ce3 h1:XX3Ajgzov2RKU sigs.k8s.io/kustomize/api v0.13.5-0.20230601165947-6ce0bf390ce3/go.mod h1:9n16EZKMhXBNSiUC5kSdFQJkdH3zbxS/JoO619G1VAY= sigs.k8s.io/kustomize/kyaml v0.14.3-0.20230601165947-6ce0bf390ce3 h1:W6cLQc5pnqM7vh3b7HvGNfXrJ/xL6BDMS0v1V/HHg5U= sigs.k8s.io/kustomize/kyaml v0.14.3-0.20230601165947-6ce0bf390ce3/go.mod h1:JWP1Fj0VWGHyw3YUPjXSQnRnrwezrZSrApfX5S0nIag= -sigs.k8s.io/mdtoc v1.3.0 h1:iMJLfMax45vMl3rnwLjEhZ38TS6JqLXSpm0uDNo/zyo= -sigs.k8s.io/mdtoc v1.3.0/go.mod h1:8zLWymqzP8oKMm+1m1e5GKnGZq8gbC1MreKfmRelMQA= -sigs.k8s.io/release-utils v0.7.7 h1:JKDOvhCk6zW8ipEOkpTGDH/mW3TI+XqtPp16aaQ79FU= -sigs.k8s.io/release-utils v0.7.7/go.mod h1:iU7DGVNi3umZJ8q6aHyUFzsDUIaYwNnNKGHo3YE5E3s= +sigs.k8s.io/mdtoc v1.4.0 h1:2pDEwJSjoVrGr5BPkG+LoLkYLKvgtGYurrBY8ul3SxQ= +sigs.k8s.io/mdtoc v1.4.0/go.mod h1:KVnRRtK1rX9aQ95qF0rt3x2ytTxf3r7W7N41H+0KF0k= +sigs.k8s.io/release-utils v0.8.4 h1:4QVr3UgbyY/d9p74LBhg0njSVQofUsAZqYOzVZBhdBw= +sigs.k8s.io/release-utils v0.8.4/go.mod h1:m1bHfscTemQp+z+pLCZnkXih9n0+WukIUU70n6nFnU0= sigs.k8s.io/structured-merge-diff/v4 v4.2.3/go.mod h1:qjx8mGObPmV2aSZepjQjbmb2ihdVs8cGKBraizNC69E= sigs.k8s.io/structured-merge-diff/v4 v4.4.1 h1:150L+0vs/8DA78h1u02ooW1/fFq/Lwr+sGiqlzvrtq4= sigs.k8s.io/structured-merge-diff/v4 v4.4.1/go.mod h1:N8hJocpFajUSSeSJ9bOZ77VzejKZaXsTtZo4/u7Io08= diff --git a/pkg/actions/addon/mocks/IAMRoleCreator.go b/pkg/actions/addon/mocks/IAMRoleCreator.go index 9ccdc07362..2b05503fe1 100644 --- a/pkg/actions/addon/mocks/IAMRoleCreator.go +++ b/pkg/actions/addon/mocks/IAMRoleCreator.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocks diff --git a/pkg/actions/addon/mocks/IAMRoleUpdater.go b/pkg/actions/addon/mocks/IAMRoleUpdater.go index 86a5eee3d4..2003c42e41 100644 --- a/pkg/actions/addon/mocks/IAMRoleUpdater.go +++ b/pkg/actions/addon/mocks/IAMRoleUpdater.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocks diff --git a/pkg/actions/addon/mocks/PodIdentityIAMUpdater.go b/pkg/actions/addon/mocks/PodIdentityIAMUpdater.go index 01dd647a58..9dfd3b58a4 100644 --- a/pkg/actions/addon/mocks/PodIdentityIAMUpdater.go +++ b/pkg/actions/addon/mocks/PodIdentityIAMUpdater.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocks diff --git a/pkg/actions/podidentityassociation/mocks/RoleMigrator.go b/pkg/actions/podidentityassociation/mocks/RoleMigrator.go index 6c25da54d7..9d01cbc7d5 100644 --- a/pkg/actions/podidentityassociation/mocks/RoleMigrator.go +++ b/pkg/actions/podidentityassociation/mocks/RoleMigrator.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocks diff --git a/pkg/actions/podidentityassociation/mocks/StackDeleter.go b/pkg/actions/podidentityassociation/mocks/StackDeleter.go index 8975a543ee..c80d6d119d 100644 --- a/pkg/actions/podidentityassociation/mocks/StackDeleter.go +++ b/pkg/actions/podidentityassociation/mocks/StackDeleter.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocks diff --git a/pkg/awsapi/autoscaling.go b/pkg/awsapi/autoscaling.go index bc68f16b0d..8dbd8cd831 100644 --- a/pkg/awsapi/autoscaling.go +++ b/pkg/awsapi/autoscaling.go @@ -17,67 +17,90 @@ type ASG interface { // config. Config overrides should instead be made on a per-operation basis through // functional options. Options() autoscaling.Options - // Attaches one or more EC2 instances to the specified Auto Scaling group. When - // you attach instances, Amazon EC2 Auto Scaling increases the desired capacity of - // the group by the number of instances being attached. If the number of instances - // being attached plus the desired capacity of the group exceeds the maximum size - // of the group, the operation fails. If there is a Classic Load Balancer attached - // to your Auto Scaling group, the instances are also registered with the load - // balancer. If there are target groups attached to your Auto Scaling group, the - // instances are also registered with the target groups. For more information, see - // Attach EC2 instances to your Auto Scaling group (https://docs.aws.amazon.com/autoscaling/ec2/userguide/attach-instance-asg.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Attaches one or more EC2 instances to the specified Auto Scaling group. + // + // When you attach instances, Amazon EC2 Auto Scaling increases the desired + // capacity of the group by the number of instances being attached. If the number + // of instances being attached plus the desired capacity of the group exceeds the + // maximum size of the group, the operation fails. + // + // If there is a Classic Load Balancer attached to your Auto Scaling group, the + // instances are also registered with the load balancer. If there are target groups + // attached to your Auto Scaling group, the instances are also registered with the + // target groups. + // + // For more information, see [Detach or attach instances] in the Amazon EC2 Auto Scaling User Guide. + // + // [Detach or attach instances]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-detach-attach-instances.html AttachInstances(ctx context.Context, params *AttachInstancesInput, optFns ...func(*Options)) (*AttachInstancesOutput, error) - // This API operation is superseded by AttachTrafficSources , which can attach - // multiple traffic sources types. We recommend using AttachTrafficSources to - // simplify how you manage traffic sources. However, we continue to support - // AttachLoadBalancerTargetGroups . You can use both the original - // AttachLoadBalancerTargetGroups API operation and AttachTrafficSources on the - // same Auto Scaling group. Attaches one or more target groups to the specified - // Auto Scaling group. This operation is used with the following load balancer - // types: + // This API operation is superseded by AttachTrafficSources, which can attach multiple traffic sources + // types. We recommend using AttachTrafficSources to simplify how you manage + // traffic sources. However, we continue to support AttachLoadBalancerTargetGroups + // . You can use both the original AttachLoadBalancerTargetGroups API operation + // and AttachTrafficSources on the same Auto Scaling group. + // + // Attaches one or more target groups to the specified Auto Scaling group. + // + // This operation is used with the following load balancer types: + // // - Application Load Balancer - Operates at the application layer (layer 7) and // supports HTTP and HTTPS. + // // - Network Load Balancer - Operates at the transport layer (layer 4) and // supports TCP, TLS, and UDP. + // // - Gateway Load Balancer - Operates at the network layer (layer 3). // - // To describe the target groups for an Auto Scaling group, call the - // DescribeLoadBalancerTargetGroups API. To detach the target group from the Auto - // Scaling group, call the DetachLoadBalancerTargetGroups API. This operation is - // additive and does not detach existing target groups or Classic Load Balancers - // from the Auto Scaling group. For more information, see Use Elastic Load - // Balancing to distribute traffic across the instances in your Auto Scaling group (https://docs.aws.amazon.com/autoscaling/ec2/userguide/autoscaling-load-balancer.html) - // in the Amazon EC2 Auto Scaling User Guide. + // To describe the target groups for an Auto Scaling group, call the DescribeLoadBalancerTargetGroups API. To + // detach the target group from the Auto Scaling group, call the DetachLoadBalancerTargetGroupsAPI. + // + // This operation is additive and does not detach existing target groups or + // Classic Load Balancers from the Auto Scaling group. + // + // For more information, see [Use Elastic Load Balancing to distribute traffic across the instances in your Auto Scaling group] in the Amazon EC2 Auto Scaling User Guide. + // + // [Use Elastic Load Balancing to distribute traffic across the instances in your Auto Scaling group]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/autoscaling-load-balancer.html AttachLoadBalancerTargetGroups(ctx context.Context, params *AttachLoadBalancerTargetGroupsInput, optFns ...func(*Options)) (*AttachLoadBalancerTargetGroupsOutput, error) - // This API operation is superseded by AttachTrafficSources , which can attach - // multiple traffic sources types. We recommend using AttachTrafficSources to - // simplify how you manage traffic sources. However, we continue to support - // AttachLoadBalancers . You can use both the original AttachLoadBalancers API - // operation and AttachTrafficSources on the same Auto Scaling group. Attaches one - // or more Classic Load Balancers to the specified Auto Scaling group. Amazon EC2 - // Auto Scaling registers the running instances with these Classic Load Balancers. - // To describe the load balancers for an Auto Scaling group, call the - // DescribeLoadBalancers API. To detach a load balancer from the Auto Scaling - // group, call the DetachLoadBalancers API. This operation is additive and does - // not detach existing Classic Load Balancers or target groups from the Auto - // Scaling group. For more information, see Use Elastic Load Balancing to - // distribute traffic across the instances in your Auto Scaling group (https://docs.aws.amazon.com/autoscaling/ec2/userguide/autoscaling-load-balancer.html) - // in the Amazon EC2 Auto Scaling User Guide. + // This API operation is superseded by AttachTrafficSources, which can attach multiple traffic sources + // types. We recommend using AttachTrafficSources to simplify how you manage + // traffic sources. However, we continue to support AttachLoadBalancers . You can + // use both the original AttachLoadBalancers API operation and AttachTrafficSources + // on the same Auto Scaling group. + // + // Attaches one or more Classic Load Balancers to the specified Auto Scaling + // group. Amazon EC2 Auto Scaling registers the running instances with these + // Classic Load Balancers. + // + // To describe the load balancers for an Auto Scaling group, call the DescribeLoadBalancers API. To + // detach a load balancer from the Auto Scaling group, call the DetachLoadBalancersAPI. + // + // This operation is additive and does not detach existing Classic Load Balancers + // or target groups from the Auto Scaling group. + // + // For more information, see [Use Elastic Load Balancing to distribute traffic across the instances in your Auto Scaling group] in the Amazon EC2 Auto Scaling User Guide. + // + // [Use Elastic Load Balancing to distribute traffic across the instances in your Auto Scaling group]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/autoscaling-load-balancer.html AttachLoadBalancers(ctx context.Context, params *AttachLoadBalancersInput, optFns ...func(*Options)) (*AttachLoadBalancersOutput, error) - // Attaches one or more traffic sources to the specified Auto Scaling group. You - // can use any of the following as traffic sources for an Auto Scaling group: + // Attaches one or more traffic sources to the specified Auto Scaling group. + // + // You can use any of the following as traffic sources for an Auto Scaling group: + // // - Application Load Balancer + // // - Classic Load Balancer + // // - Gateway Load Balancer + // // - Network Load Balancer + // // - VPC Lattice // // This operation is additive and does not detach existing traffic sources from - // the Auto Scaling group. After the operation completes, use the - // DescribeTrafficSources API to return details about the state of the attachments - // between traffic sources and your Auto Scaling group. To detach a traffic source - // from the Auto Scaling group, call the DetachTrafficSources API. + // the Auto Scaling group. + // + // After the operation completes, use the DescribeTrafficSources API to return details about the state + // of the attachments between traffic sources and your Auto Scaling group. To + // detach a traffic source from the Auto Scaling group, call the DetachTrafficSourcesAPI. AttachTrafficSources(ctx context.Context, params *AttachTrafficSourcesInput, optFns ...func(*Options)) (*AttachTrafficSourcesOutput, error) // Deletes one or more scheduled actions for the specified Auto Scaling group. BatchDeleteScheduledAction(ctx context.Context, params *BatchDeleteScheduledActionInput, optFns ...func(*Options)) (*BatchDeleteScheduledActionOutput, error) @@ -86,213 +109,284 @@ type ASG interface { BatchPutScheduledUpdateGroupAction(ctx context.Context, params *BatchPutScheduledUpdateGroupActionInput, optFns ...func(*Options)) (*BatchPutScheduledUpdateGroupActionOutput, error) // Cancels an instance refresh or rollback that is in progress. If an instance // refresh or rollback is not in progress, an ActiveInstanceRefreshNotFound error - // occurs. This operation is part of the instance refresh feature (https://docs.aws.amazon.com/autoscaling/ec2/userguide/asg-instance-refresh.html) - // in Amazon EC2 Auto Scaling, which helps you update instances in your Auto - // Scaling group after you make configuration changes. When you cancel an instance - // refresh, this does not roll back any changes that it made. Use the - // RollbackInstanceRefresh API to roll back instead. + // occurs. + // + // This operation is part of the [instance refresh feature] in Amazon EC2 Auto Scaling, which helps you + // update instances in your Auto Scaling group after you make configuration + // changes. + // + // When you cancel an instance refresh, this does not roll back any changes that + // it made. Use the RollbackInstanceRefreshAPI to roll back instead. + // + // [instance refresh feature]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/asg-instance-refresh.html CancelInstanceRefresh(ctx context.Context, params *CancelInstanceRefreshInput, optFns ...func(*Options)) (*CancelInstanceRefreshOutput, error) // Completes the lifecycle action for the specified token or instance with the - // specified result. This step is a part of the procedure for adding a lifecycle - // hook to an Auto Scaling group: + // specified result. + // + // This step is a part of the procedure for adding a lifecycle hook to an Auto + // Scaling group: + // // - (Optional) Create a launch template or launch configuration with a user // data script that runs while an instance is in a wait state due to a lifecycle // hook. + // // - (Optional) Create a Lambda function and a rule that allows Amazon // EventBridge to invoke your Lambda function when an instance is put into a wait // state due to a lifecycle hook. + // // - (Optional) Create a notification target and an IAM role. The target can be // either an Amazon SQS queue or an Amazon SNS topic. The role allows Amazon EC2 // Auto Scaling to publish lifecycle notifications to the target. + // // - Create the lifecycle hook. Specify whether the hook is used when the // instances launch or terminate. + // // - If you need more time, record the lifecycle action heartbeat to keep the // instance in a wait state. - // - If you finish before the timeout period ends, send a callback by using the - // CompleteLifecycleAction API call. // - // For more information, see Complete a lifecycle action (https://docs.aws.amazon.com/autoscaling/ec2/userguide/completing-lifecycle-hooks.html) - // in the Amazon EC2 Auto Scaling User Guide. + // - If you finish before the timeout period ends, send a callback by using the CompleteLifecycleAction + // API call. + // + // For more information, see [Complete a lifecycle action] in the Amazon EC2 Auto Scaling User Guide. + // + // [Complete a lifecycle action]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/completing-lifecycle-hooks.html CompleteLifecycleAction(ctx context.Context, params *CompleteLifecycleActionInput, optFns ...func(*Options)) (*CompleteLifecycleActionOutput, error) - // We strongly recommend using a launch template when calling this operation to - // ensure full functionality for Amazon EC2 Auto Scaling and Amazon EC2. Creates an - // Auto Scaling group with the specified name and attributes. If you exceed your - // maximum limit of Auto Scaling groups, the call fails. To query this limit, call - // the DescribeAccountLimits API. For information about updating this limit, see - // Quotas for Amazon EC2 Auto Scaling (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-quotas.html) - // in the Amazon EC2 Auto Scaling User Guide. If you're new to Amazon EC2 Auto - // Scaling, see the introductory tutorials in Get started with Amazon EC2 Auto - // Scaling (https://docs.aws.amazon.com/autoscaling/ec2/userguide/get-started-with-ec2-auto-scaling.html) - // in the Amazon EC2 Auto Scaling User Guide. Every Auto Scaling group has three - // size properties ( DesiredCapacity , MaxSize , and MinSize ). Usually, you set - // these sizes based on a specific number of instances. However, if you configure a - // mixed instances policy that defines weights for the instance types, you must - // specify these sizes with the same units that you use for weighting instances. + // We strongly recommend using a launch template when calling this operation to + // + // ensure full functionality for Amazon EC2 Auto Scaling and Amazon EC2. + // + // Creates an Auto Scaling group with the specified name and attributes. + // + // If you exceed your maximum limit of Auto Scaling groups, the call fails. To + // query this limit, call the DescribeAccountLimitsAPI. For information about updating this limit, see [Quotas for Amazon EC2 Auto Scaling] + // in the Amazon EC2 Auto Scaling User Guide. + // + // If you're new to Amazon EC2 Auto Scaling, see the introductory tutorials in [Get started with Amazon EC2 Auto Scaling] in + // the Amazon EC2 Auto Scaling User Guide. + // + // Every Auto Scaling group has three size properties ( DesiredCapacity , MaxSize , + // and MinSize ). Usually, you set these sizes based on a specific number of + // instances. However, if you configure a mixed instances policy that defines + // weights for the instance types, you must specify these sizes with the same units + // that you use for weighting instances. + // + // [Get started with Amazon EC2 Auto Scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/get-started-with-ec2-auto-scaling.html + // [Quotas for Amazon EC2 Auto Scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-quotas.html CreateAutoScalingGroup(ctx context.Context, params *CreateAutoScalingGroupInput, optFns ...func(*Options)) (*CreateAutoScalingGroupOutput, error) - // Creates a launch configuration. If you exceed your maximum limit of launch - // configurations, the call fails. To query this limit, call the - // DescribeAccountLimits API. For information about updating this limit, see - // Quotas for Amazon EC2 Auto Scaling (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-quotas.html) - // in the Amazon EC2 Auto Scaling User Guide. For more information, see Launch - // configurations (https://docs.aws.amazon.com/autoscaling/ec2/userguide/LaunchConfiguration.html) - // in the Amazon EC2 Auto Scaling User Guide. Amazon EC2 Auto Scaling configures - // instances launched as part of an Auto Scaling group using either a launch - // template or a launch configuration. We strongly recommend that you do not use - // launch configurations. They do not provide full functionality for Amazon EC2 - // Auto Scaling or Amazon EC2. For information about using launch templates, see - // Launch templates (https://docs.aws.amazon.com/autoscaling/ec2/userguide/launch-templates.html) + // Creates a launch configuration. + // + // If you exceed your maximum limit of launch configurations, the call fails. To + // query this limit, call the DescribeAccountLimitsAPI. For information about updating this limit, see [Quotas for Amazon EC2 Auto Scaling] // in the Amazon EC2 Auto Scaling User Guide. + // + // For more information, see [Launch configurations] in the Amazon EC2 Auto Scaling User Guide. + // + // Amazon EC2 Auto Scaling configures instances launched as part of an Auto + // Scaling group using either a launch template or a launch configuration. We + // strongly recommend that you do not use launch configurations. They do not + // provide full functionality for Amazon EC2 Auto Scaling or Amazon EC2. For + // information about using launch templates, see [Launch templates]in the Amazon EC2 Auto Scaling + // User Guide. + // + // [Quotas for Amazon EC2 Auto Scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-quotas.html + // [Launch configurations]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/launch-configurations.html + // [Launch templates]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/launch-templates.html CreateLaunchConfiguration(ctx context.Context, params *CreateLaunchConfigurationInput, optFns ...func(*Options)) (*CreateLaunchConfigurationOutput, error) - // Creates or updates tags for the specified Auto Scaling group. When you specify - // a tag with a key that already exists, the operation overwrites the previous tag - // definition, and you do not get an error message. For more information, see Tag - // Auto Scaling groups and instances (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-tagging.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Creates or updates tags for the specified Auto Scaling group. + // + // When you specify a tag with a key that already exists, the operation overwrites + // the previous tag definition, and you do not get an error message. + // + // For more information, see [Tag Auto Scaling groups and instances] in the Amazon EC2 Auto Scaling User Guide. + // + // [Tag Auto Scaling groups and instances]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-tagging.html CreateOrUpdateTags(ctx context.Context, params *CreateOrUpdateTagsInput, optFns ...func(*Options)) (*CreateOrUpdateTagsOutput, error) - // Deletes the specified Auto Scaling group. If the group has instances or scaling - // activities in progress, you must specify the option to force the deletion in - // order for it to succeed. The force delete operation will also terminate the EC2 - // instances. If the group has a warm pool, the force delete option also deletes - // the warm pool. To remove instances from the Auto Scaling group before deleting - // it, call the DetachInstances API with the list of instances and the option to - // decrement the desired capacity. This ensures that Amazon EC2 Auto Scaling does - // not launch replacement instances. To terminate all instances before deleting the - // Auto Scaling group, call the UpdateAutoScalingGroup API and set the minimum - // size and desired capacity of the Auto Scaling group to zero. If the group has - // scaling policies, deleting the group deletes the policies, the underlying alarm - // actions, and any alarm that no longer has an associated action. For more - // information, see Delete your Auto Scaling infrastructure (https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-process-shutdown.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Deletes the specified Auto Scaling group. + // + // If the group has instances or scaling activities in progress, you must specify + // the option to force the deletion in order for it to succeed. The force delete + // operation will also terminate the EC2 instances. If the group has a warm pool, + // the force delete option also deletes the warm pool. + // + // To remove instances from the Auto Scaling group before deleting it, call the DetachInstances + // API with the list of instances and the option to decrement the desired capacity. + // This ensures that Amazon EC2 Auto Scaling does not launch replacement instances. + // + // To terminate all instances before deleting the Auto Scaling group, call the UpdateAutoScalingGroup + // API and set the minimum size and desired capacity of the Auto Scaling group to + // zero. + // + // If the group has scaling policies, deleting the group deletes the policies, the + // underlying alarm actions, and any alarm that no longer has an associated action. + // + // For more information, see [Delete your Auto Scaling infrastructure] in the Amazon EC2 Auto Scaling User Guide. + // + // [Delete your Auto Scaling infrastructure]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-process-shutdown.html DeleteAutoScalingGroup(ctx context.Context, params *DeleteAutoScalingGroupInput, optFns ...func(*Options)) (*DeleteAutoScalingGroupOutput, error) - // Deletes the specified launch configuration. The launch configuration must not - // be attached to an Auto Scaling group. When this call completes, the launch - // configuration is no longer available for use. + // Deletes the specified launch configuration. + // + // The launch configuration must not be attached to an Auto Scaling group. When + // this call completes, the launch configuration is no longer available for use. DeleteLaunchConfiguration(ctx context.Context, params *DeleteLaunchConfigurationInput, optFns ...func(*Options)) (*DeleteLaunchConfigurationOutput, error) - // Deletes the specified lifecycle hook. If there are any outstanding lifecycle - // actions, they are completed first ( ABANDON for launching instances, CONTINUE - // for terminating instances). + // Deletes the specified lifecycle hook. + // + // If there are any outstanding lifecycle actions, they are completed first ( + // ABANDON for launching instances, CONTINUE for terminating instances). DeleteLifecycleHook(ctx context.Context, params *DeleteLifecycleHookInput, optFns ...func(*Options)) (*DeleteLifecycleHookOutput, error) // Deletes the specified notification. DeleteNotificationConfiguration(ctx context.Context, params *DeleteNotificationConfigurationInput, optFns ...func(*Options)) (*DeleteNotificationConfigurationOutput, error) - // Deletes the specified scaling policy. Deleting either a step scaling policy or - // a simple scaling policy deletes the underlying alarm action, but does not delete - // the alarm, even if it no longer has an associated action. For more information, - // see Deleting a scaling policy (https://docs.aws.amazon.com/autoscaling/ec2/userguide/deleting-scaling-policy.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Deletes the specified scaling policy. + // + // Deleting either a step scaling policy or a simple scaling policy deletes the + // underlying alarm action, but does not delete the alarm, even if it no longer has + // an associated action. + // + // For more information, see [Delete a scaling policy] in the Amazon EC2 Auto Scaling User Guide. + // + // [Delete a scaling policy]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/deleting-scaling-policy.html DeletePolicy(ctx context.Context, params *DeletePolicyInput, optFns ...func(*Options)) (*DeletePolicyOutput, error) // Deletes the specified scheduled action. DeleteScheduledAction(ctx context.Context, params *DeleteScheduledActionInput, optFns ...func(*Options)) (*DeleteScheduledActionOutput, error) // Deletes the specified tags. DeleteTags(ctx context.Context, params *DeleteTagsInput, optFns ...func(*Options)) (*DeleteTagsOutput, error) - // Deletes the warm pool for the specified Auto Scaling group. For more - // information, see Warm pools for Amazon EC2 Auto Scaling (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-warm-pools.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Deletes the warm pool for the specified Auto Scaling group. + // + // For more information, see [Warm pools for Amazon EC2 Auto Scaling] in the Amazon EC2 Auto Scaling User Guide. + // + // [Warm pools for Amazon EC2 Auto Scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-warm-pools.html DeleteWarmPool(ctx context.Context, params *DeleteWarmPoolInput, optFns ...func(*Options)) (*DeleteWarmPoolOutput, error) // Describes the current Amazon EC2 Auto Scaling resource quotas for your account. + // // When you establish an Amazon Web Services account, the account has initial // quotas on the maximum number of Auto Scaling groups and launch configurations - // that you can create in a given Region. For more information, see Quotas for - // Amazon EC2 Auto Scaling (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-quotas.html) - // in the Amazon EC2 Auto Scaling User Guide. + // that you can create in a given Region. For more information, see [Quotas for Amazon EC2 Auto Scaling]in the Amazon + // EC2 Auto Scaling User Guide. + // + // [Quotas for Amazon EC2 Auto Scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-quotas.html DescribeAccountLimits(ctx context.Context, params *DescribeAccountLimitsInput, optFns ...func(*Options)) (*DescribeAccountLimitsOutput, error) // Describes the available adjustment types for step scaling and simple scaling - // policies. The following adjustment types are supported: + // policies. + // + // The following adjustment types are supported: + // // - ChangeInCapacity + // // - ExactCapacity + // // - PercentChangeInCapacity DescribeAdjustmentTypes(ctx context.Context, params *DescribeAdjustmentTypesInput, optFns ...func(*Options)) (*DescribeAdjustmentTypesOutput, error) - // Gets information about the Auto Scaling groups in the account and Region. If - // you specify Auto Scaling group names, the output includes information for only - // the specified Auto Scaling groups. If you specify filters, the output includes - // information for only those Auto Scaling groups that meet the filter criteria. If - // you do not specify group names or filters, the output includes information for - // all Auto Scaling groups. This operation also returns information about instances - // in Auto Scaling groups. To retrieve information about the instances in a warm - // pool, you must call the DescribeWarmPool API. + // Gets information about the Auto Scaling groups in the account and Region. + // + // If you specify Auto Scaling group names, the output includes information for + // only the specified Auto Scaling groups. If you specify filters, the output + // includes information for only those Auto Scaling groups that meet the filter + // criteria. If you do not specify group names or filters, the output includes + // information for all Auto Scaling groups. + // + // This operation also returns information about instances in Auto Scaling groups. + // To retrieve information about the instances in a warm pool, you must call the DescribeWarmPool + // API. DescribeAutoScalingGroups(ctx context.Context, params *DescribeAutoScalingGroupsInput, optFns ...func(*Options)) (*DescribeAutoScalingGroupsOutput, error) // Gets information about the Auto Scaling instances in the account and Region. DescribeAutoScalingInstances(ctx context.Context, params *DescribeAutoScalingInstancesInput, optFns ...func(*Options)) (*DescribeAutoScalingInstancesOutput, error) // Describes the notification types that are supported by Amazon EC2 Auto Scaling. DescribeAutoScalingNotificationTypes(ctx context.Context, params *DescribeAutoScalingNotificationTypesInput, optFns ...func(*Options)) (*DescribeAutoScalingNotificationTypesOutput, error) // Gets information about the instance refreshes for the specified Auto Scaling - // group from the previous six weeks. This operation is part of the instance - // refresh feature (https://docs.aws.amazon.com/autoscaling/ec2/userguide/asg-instance-refresh.html) - // in Amazon EC2 Auto Scaling, which helps you update instances in your Auto - // Scaling group after you make configuration changes. To help you determine the - // status of an instance refresh, Amazon EC2 Auto Scaling returns information about - // the instance refreshes you previously initiated, including their status, start - // time, end time, the percentage of the instance refresh that is complete, and the - // number of instances remaining to update before the instance refresh is complete. - // If a rollback is initiated while an instance refresh is in progress, Amazon EC2 - // Auto Scaling also returns information about the rollback of the instance - // refresh. + // group from the previous six weeks. + // + // This operation is part of the [instance refresh feature] in Amazon EC2 Auto Scaling, which helps you + // update instances in your Auto Scaling group after you make configuration + // changes. + // + // To help you determine the status of an instance refresh, Amazon EC2 Auto + // Scaling returns information about the instance refreshes you previously + // initiated, including their status, start time, end time, the percentage of the + // instance refresh that is complete, and the number of instances remaining to + // update before the instance refresh is complete. If a rollback is initiated while + // an instance refresh is in progress, Amazon EC2 Auto Scaling also returns + // information about the rollback of the instance refresh. + // + // [instance refresh feature]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/asg-instance-refresh.html DescribeInstanceRefreshes(ctx context.Context, params *DescribeInstanceRefreshesInput, optFns ...func(*Options)) (*DescribeInstanceRefreshesOutput, error) // Gets information about the launch configurations in the account and Region. DescribeLaunchConfigurations(ctx context.Context, params *DescribeLaunchConfigurationsInput, optFns ...func(*Options)) (*DescribeLaunchConfigurationsOutput, error) - // Describes the available types of lifecycle hooks. The following hook types are - // supported: + // Describes the available types of lifecycle hooks. + // + // The following hook types are supported: + // // - autoscaling:EC2_INSTANCE_LAUNCHING + // // - autoscaling:EC2_INSTANCE_TERMINATING DescribeLifecycleHookTypes(ctx context.Context, params *DescribeLifecycleHookTypesInput, optFns ...func(*Options)) (*DescribeLifecycleHookTypesOutput, error) // Gets information about the lifecycle hooks for the specified Auto Scaling group. DescribeLifecycleHooks(ctx context.Context, params *DescribeLifecycleHooksInput, optFns ...func(*Options)) (*DescribeLifecycleHooksOutput, error) - // This API operation is superseded by DescribeTrafficSources , which can describe - // multiple traffic sources types. We recommend using DetachTrafficSources to - // simplify how you manage traffic sources. However, we continue to support + // This API operation is superseded by DescribeTrafficSources, which can describe multiple traffic + // sources types. We recommend using DetachTrafficSources to simplify how you + // manage traffic sources. However, we continue to support // DescribeLoadBalancerTargetGroups . You can use both the original // DescribeLoadBalancerTargetGroups API operation and DescribeTrafficSources on - // the same Auto Scaling group. Gets information about the Elastic Load Balancing - // target groups for the specified Auto Scaling group. To determine the attachment - // status of the target group, use the State element in the response. When you - // attach a target group to an Auto Scaling group, the initial State value is - // Adding . The state transitions to Added after all Auto Scaling instances are - // registered with the target group. If Elastic Load Balancing health checks are - // enabled for the Auto Scaling group, the state transitions to InService after at - // least one Auto Scaling instance passes the health check. When the target group - // is in the InService state, Amazon EC2 Auto Scaling can terminate and replace - // any instances that are reported as unhealthy. If no registered instances pass - // the health checks, the target group doesn't enter the InService state. Target - // groups also have an InService state if you attach them in the - // CreateAutoScalingGroup API call. If your target group state is InService , but - // it is not working properly, check the scaling activities by calling - // DescribeScalingActivities and take any corrective actions necessary. For help - // with failed health checks, see Troubleshooting Amazon EC2 Auto Scaling: Health - // checks (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ts-as-healthchecks.html) - // in the Amazon EC2 Auto Scaling User Guide. For more information, see Use - // Elastic Load Balancing to distribute traffic across the instances in your Auto - // Scaling group (https://docs.aws.amazon.com/autoscaling/ec2/userguide/autoscaling-load-balancer.html) - // in the Amazon EC2 Auto Scaling User Guide. You can use this operation to - // describe target groups that were attached by using - // AttachLoadBalancerTargetGroups , but not for target groups that were attached by - // using AttachTrafficSources . + // the same Auto Scaling group. + // + // Gets information about the Elastic Load Balancing target groups for the + // specified Auto Scaling group. + // + // To determine the attachment status of the target group, use the State element + // in the response. When you attach a target group to an Auto Scaling group, the + // initial State value is Adding . The state transitions to Added after all Auto + // Scaling instances are registered with the target group. If Elastic Load + // Balancing health checks are enabled for the Auto Scaling group, the state + // transitions to InService after at least one Auto Scaling instance passes the + // health check. When the target group is in the InService state, Amazon EC2 Auto + // Scaling can terminate and replace any instances that are reported as unhealthy. + // If no registered instances pass the health checks, the target group doesn't + // enter the InService state. + // + // Target groups also have an InService state if you attach them in the CreateAutoScalingGroup API call. + // If your target group state is InService , but it is not working properly, check + // the scaling activities by calling DescribeScalingActivitiesand take any corrective actions necessary. + // + // For help with failed health checks, see [Troubleshooting Amazon EC2 Auto Scaling: Health checks] in the Amazon EC2 Auto Scaling User + // Guide. For more information, see [Use Elastic Load Balancing to distribute traffic across the instances in your Auto Scaling group]in the Amazon EC2 Auto Scaling User Guide. + // + // You can use this operation to describe target groups that were attached by + // using AttachLoadBalancerTargetGroups, but not for target groups that were attached by using AttachTrafficSources. + // + // [Troubleshooting Amazon EC2 Auto Scaling: Health checks]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ts-as-healthchecks.html + // [Use Elastic Load Balancing to distribute traffic across the instances in your Auto Scaling group]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/autoscaling-load-balancer.html DescribeLoadBalancerTargetGroups(ctx context.Context, params *DescribeLoadBalancerTargetGroupsInput, optFns ...func(*Options)) (*DescribeLoadBalancerTargetGroupsOutput, error) - // This API operation is superseded by DescribeTrafficSources , which can describe - // multiple traffic sources types. We recommend using DescribeTrafficSources to - // simplify how you manage traffic sources. However, we continue to support - // DescribeLoadBalancers . You can use both the original DescribeLoadBalancers API - // operation and DescribeTrafficSources on the same Auto Scaling group. Gets - // information about the load balancers for the specified Auto Scaling group. This - // operation describes only Classic Load Balancers. If you have Application Load - // Balancers, Network Load Balancers, or Gateway Load Balancers, use the - // DescribeLoadBalancerTargetGroups API instead. To determine the attachment status - // of the load balancer, use the State element in the response. When you attach a - // load balancer to an Auto Scaling group, the initial State value is Adding . The - // state transitions to Added after all Auto Scaling instances are registered with - // the load balancer. If Elastic Load Balancing health checks are enabled for the - // Auto Scaling group, the state transitions to InService after at least one Auto - // Scaling instance passes the health check. When the load balancer is in the - // InService state, Amazon EC2 Auto Scaling can terminate and replace any instances - // that are reported as unhealthy. If no registered instances pass the health - // checks, the load balancer doesn't enter the InService state. Load balancers - // also have an InService state if you attach them in the CreateAutoScalingGroup - // API call. If your load balancer state is InService , but it is not working - // properly, check the scaling activities by calling DescribeScalingActivities and - // take any corrective actions necessary. For help with failed health checks, see - // Troubleshooting Amazon EC2 Auto Scaling: Health checks (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ts-as-healthchecks.html) - // in the Amazon EC2 Auto Scaling User Guide. For more information, see Use - // Elastic Load Balancing to distribute traffic across the instances in your Auto - // Scaling group (https://docs.aws.amazon.com/autoscaling/ec2/userguide/autoscaling-load-balancer.html) - // in the Amazon EC2 Auto Scaling User Guide. + // This API operation is superseded by DescribeTrafficSources, which can describe multiple traffic + // sources types. We recommend using DescribeTrafficSources to simplify how you + // manage traffic sources. However, we continue to support DescribeLoadBalancers . + // You can use both the original DescribeLoadBalancers API operation and + // DescribeTrafficSources on the same Auto Scaling group. + // + // Gets information about the load balancers for the specified Auto Scaling group. + // + // This operation describes only Classic Load Balancers. If you have Application + // Load Balancers, Network Load Balancers, or Gateway Load Balancers, use the DescribeLoadBalancerTargetGroupsAPI + // instead. + // + // To determine the attachment status of the load balancer, use the State element + // in the response. When you attach a load balancer to an Auto Scaling group, the + // initial State value is Adding . The state transitions to Added after all Auto + // Scaling instances are registered with the load balancer. If Elastic Load + // Balancing health checks are enabled for the Auto Scaling group, the state + // transitions to InService after at least one Auto Scaling instance passes the + // health check. When the load balancer is in the InService state, Amazon EC2 Auto + // Scaling can terminate and replace any instances that are reported as unhealthy. + // If no registered instances pass the health checks, the load balancer doesn't + // enter the InService state. + // + // Load balancers also have an InService state if you attach them in the CreateAutoScalingGroup API + // call. If your load balancer state is InService , but it is not working properly, + // check the scaling activities by calling DescribeScalingActivitiesand take any corrective actions + // necessary. + // + // For help with failed health checks, see [Troubleshooting Amazon EC2 Auto Scaling: Health checks] in the Amazon EC2 Auto Scaling User + // Guide. For more information, see [Use Elastic Load Balancing to distribute traffic across the instances in your Auto Scaling group]in the Amazon EC2 Auto Scaling User Guide. + // + // [Troubleshooting Amazon EC2 Auto Scaling: Health checks]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ts-as-healthchecks.html + // [Use Elastic Load Balancing to distribute traffic across the instances in your Auto Scaling group]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/autoscaling-load-balancer.html DescribeLoadBalancers(ctx context.Context, params *DescribeLoadBalancersInput, optFns ...func(*Options)) (*DescribeLoadBalancersOutput, error) // Describes the available CloudWatch metrics for Amazon EC2 Auto Scaling. DescribeMetricCollectionTypes(ctx context.Context, params *DescribeMetricCollectionTypesInput, optFns ...func(*Options)) (*DescribeMetricCollectionTypesOutput, error) @@ -301,339 +395,466 @@ type ASG interface { DescribeNotificationConfigurations(ctx context.Context, params *DescribeNotificationConfigurationsInput, optFns ...func(*Options)) (*DescribeNotificationConfigurationsOutput, error) // Gets information about the scaling policies in the account and Region. DescribePolicies(ctx context.Context, params *DescribePoliciesInput, optFns ...func(*Options)) (*DescribePoliciesOutput, error) - // Gets information about the scaling activities in the account and Region. When - // scaling events occur, you see a record of the scaling activity in the scaling - // activities. For more information, see Verifying a scaling activity for an Auto - // Scaling group (https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-verify-scaling-activity.html) - // in the Amazon EC2 Auto Scaling User Guide. If the scaling event succeeds, the - // value of the StatusCode element in the response is Successful . If an attempt to - // launch instances failed, the StatusCode value is Failed or Cancelled and the - // StatusMessage element in the response indicates the cause of the failure. For - // help interpreting the StatusMessage , see Troubleshooting Amazon EC2 Auto - // Scaling (https://docs.aws.amazon.com/autoscaling/ec2/userguide/CHAP_Troubleshooting.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Gets information about the scaling activities in the account and Region. + // + // When scaling events occur, you see a record of the scaling activity in the + // scaling activities. For more information, see [Verify a scaling activity for an Auto Scaling group]in the Amazon EC2 Auto Scaling + // User Guide. + // + // If the scaling event succeeds, the value of the StatusCode element in the + // response is Successful . If an attempt to launch instances failed, the + // StatusCode value is Failed or Cancelled and the StatusMessage element in the + // response indicates the cause of the failure. For help interpreting the + // StatusMessage , see [Troubleshooting Amazon EC2 Auto Scaling] in the Amazon EC2 Auto Scaling User Guide. + // + // [Troubleshooting Amazon EC2 Auto Scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/CHAP_Troubleshooting.html + // [Verify a scaling activity for an Auto Scaling group]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-verify-scaling-activity.html DescribeScalingActivities(ctx context.Context, params *DescribeScalingActivitiesInput, optFns ...func(*Options)) (*DescribeScalingActivitiesOutput, error) - // Describes the scaling process types for use with the ResumeProcesses and - // SuspendProcesses APIs. + // Describes the scaling process types for use with the ResumeProcesses and SuspendProcesses APIs. DescribeScalingProcessTypes(ctx context.Context, params *DescribeScalingProcessTypesInput, optFns ...func(*Options)) (*DescribeScalingProcessTypesOutput, error) // Gets information about the scheduled actions that haven't run or that have not - // reached their end time. To describe the scaling activities for scheduled actions - // that have already run, call the DescribeScalingActivities API. + // reached their end time. + // + // To describe the scaling activities for scheduled actions that have already run, + // call the DescribeScalingActivitiesAPI. DescribeScheduledActions(ctx context.Context, params *DescribeScheduledActionsInput, optFns ...func(*Options)) (*DescribeScheduledActionsOutput, error) - // Describes the specified tags. You can use filters to limit the results. For - // example, you can query for the tags for a specific Auto Scaling group. You can - // specify multiple values for a filter. A tag must match at least one of the - // specified values for it to be included in the results. You can also specify - // multiple filters. The result includes information for a particular tag only if - // it matches all the filters. If there's no match, no special message is returned. - // For more information, see Tag Auto Scaling groups and instances (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-tagging.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Describes the specified tags. + // + // You can use filters to limit the results. For example, you can query for the + // tags for a specific Auto Scaling group. You can specify multiple values for a + // filter. A tag must match at least one of the specified values for it to be + // included in the results. + // + // You can also specify multiple filters. The result includes information for a + // particular tag only if it matches all the filters. If there's no match, no + // special message is returned. + // + // For more information, see [Tag Auto Scaling groups and instances] in the Amazon EC2 Auto Scaling User Guide. + // + // [Tag Auto Scaling groups and instances]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-tagging.html DescribeTags(ctx context.Context, params *DescribeTagsInput, optFns ...func(*Options)) (*DescribeTagsOutput, error) - // Describes the termination policies supported by Amazon EC2 Auto Scaling. For - // more information, see Work with Amazon EC2 Auto Scaling termination policies (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-termination-policies.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Describes the termination policies supported by Amazon EC2 Auto Scaling. + // + // For more information, see [Configure termination policies for Amazon EC2 Auto Scaling] in the Amazon EC2 Auto Scaling User Guide. + // + // [Configure termination policies for Amazon EC2 Auto Scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-termination-policies.html DescribeTerminationPolicyTypes(ctx context.Context, params *DescribeTerminationPolicyTypesInput, optFns ...func(*Options)) (*DescribeTerminationPolicyTypesOutput, error) - // Gets information about the traffic sources for the specified Auto Scaling - // group. You can optionally provide a traffic source type. If you provide a - // traffic source type, then the results only include that traffic source type. If - // you do not provide a traffic source type, then the results include all the + // Gets information about the traffic sources for the specified Auto Scaling group. + // + // You can optionally provide a traffic source type. If you provide a traffic + // source type, then the results only include that traffic source type. + // + // If you do not provide a traffic source type, then the results include all the // traffic sources for the specified Auto Scaling group. DescribeTrafficSources(ctx context.Context, params *DescribeTrafficSourcesInput, optFns ...func(*Options)) (*DescribeTrafficSourcesOutput, error) - // Gets information about a warm pool and its instances. For more information, see - // Warm pools for Amazon EC2 Auto Scaling (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-warm-pools.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Gets information about a warm pool and its instances. + // + // For more information, see [Warm pools for Amazon EC2 Auto Scaling] in the Amazon EC2 Auto Scaling User Guide. + // + // [Warm pools for Amazon EC2 Auto Scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-warm-pools.html DescribeWarmPool(ctx context.Context, params *DescribeWarmPoolInput, optFns ...func(*Options)) (*DescribeWarmPoolOutput, error) - // Removes one or more instances from the specified Auto Scaling group. After the - // instances are detached, you can manage them independent of the Auto Scaling - // group. If you do not specify the option to decrement the desired capacity, - // Amazon EC2 Auto Scaling launches instances to replace the ones that are - // detached. If there is a Classic Load Balancer attached to the Auto Scaling - // group, the instances are deregistered from the load balancer. If there are - // target groups attached to the Auto Scaling group, the instances are deregistered - // from the target groups. For more information, see Detach EC2 instances from - // your Auto Scaling group (https://docs.aws.amazon.com/autoscaling/ec2/userguide/detach-instance-asg.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Removes one or more instances from the specified Auto Scaling group. + // + // After the instances are detached, you can manage them independent of the Auto + // Scaling group. + // + // If you do not specify the option to decrement the desired capacity, Amazon EC2 + // Auto Scaling launches instances to replace the ones that are detached. + // + // If there is a Classic Load Balancer attached to the Auto Scaling group, the + // instances are deregistered from the load balancer. If there are target groups + // attached to the Auto Scaling group, the instances are deregistered from the + // target groups. + // + // For more information, see [Detach or attach instances] in the Amazon EC2 Auto Scaling User Guide. + // + // [Detach or attach instances]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-detach-attach-instances.html DetachInstances(ctx context.Context, params *DetachInstancesInput, optFns ...func(*Options)) (*DetachInstancesOutput, error) - // This API operation is superseded by DetachTrafficSources , which can detach - // multiple traffic sources types. We recommend using DetachTrafficSources to - // simplify how you manage traffic sources. However, we continue to support - // DetachLoadBalancerTargetGroups . You can use both the original - // DetachLoadBalancerTargetGroups API operation and DetachTrafficSources on the - // same Auto Scaling group. Detaches one or more target groups from the specified - // Auto Scaling group. When you detach a target group, it enters the Removing - // state while deregistering the instances in the group. When all instances are - // deregistered, then you can no longer describe the target group using the - // DescribeLoadBalancerTargetGroups API call. The instances remain running. You can - // use this operation to detach target groups that were attached by using - // AttachLoadBalancerTargetGroups , but not for target groups that were attached by - // using AttachTrafficSources . + // This API operation is superseded by DetachTrafficSources, which can detach multiple traffic sources + // types. We recommend using DetachTrafficSources to simplify how you manage + // traffic sources. However, we continue to support DetachLoadBalancerTargetGroups + // . You can use both the original DetachLoadBalancerTargetGroups API operation + // and DetachTrafficSources on the same Auto Scaling group. + // + // Detaches one or more target groups from the specified Auto Scaling group. + // + // When you detach a target group, it enters the Removing state while + // deregistering the instances in the group. When all instances are deregistered, + // then you can no longer describe the target group using the DescribeLoadBalancerTargetGroupsAPI call. The + // instances remain running. + // + // You can use this operation to detach target groups that were attached by using AttachLoadBalancerTargetGroups + // , but not for target groups that were attached by using AttachTrafficSources. DetachLoadBalancerTargetGroups(ctx context.Context, params *DetachLoadBalancerTargetGroupsInput, optFns ...func(*Options)) (*DetachLoadBalancerTargetGroupsOutput, error) - // This API operation is superseded by DetachTrafficSources , which can detach - // multiple traffic sources types. We recommend using DetachTrafficSources to - // simplify how you manage traffic sources. However, we continue to support - // DetachLoadBalancers . You can use both the original DetachLoadBalancers API - // operation and DetachTrafficSources on the same Auto Scaling group. Detaches one - // or more Classic Load Balancers from the specified Auto Scaling group. This - // operation detaches only Classic Load Balancers. If you have Application Load - // Balancers, Network Load Balancers, or Gateway Load Balancers, use the - // DetachLoadBalancerTargetGroups API instead. When you detach a load balancer, it - // enters the Removing state while deregistering the instances in the group. When - // all instances are deregistered, then you can no longer describe the load - // balancer using the DescribeLoadBalancers API call. The instances remain running. + // This API operation is superseded by DetachTrafficSources, which can detach multiple traffic sources + // types. We recommend using DetachTrafficSources to simplify how you manage + // traffic sources. However, we continue to support DetachLoadBalancers . You can + // use both the original DetachLoadBalancers API operation and DetachTrafficSources + // on the same Auto Scaling group. + // + // Detaches one or more Classic Load Balancers from the specified Auto Scaling + // group. + // + // This operation detaches only Classic Load Balancers. If you have Application + // Load Balancers, Network Load Balancers, or Gateway Load Balancers, use the DetachLoadBalancerTargetGroupsAPI + // instead. + // + // When you detach a load balancer, it enters the Removing state while + // deregistering the instances in the group. When all instances are deregistered, + // then you can no longer describe the load balancer using the DescribeLoadBalancersAPI call. The + // instances remain running. DetachLoadBalancers(ctx context.Context, params *DetachLoadBalancersInput, optFns ...func(*Options)) (*DetachLoadBalancersOutput, error) // Detaches one or more traffic sources from the specified Auto Scaling group. + // // When you detach a traffic source, it enters the Removing state while // deregistering the instances in the group. When all instances are deregistered, - // then you can no longer describe the traffic source using the - // DescribeTrafficSources API call. The instances continue to run. + // then you can no longer describe the traffic source using the DescribeTrafficSourcesAPI call. The + // instances continue to run. DetachTrafficSources(ctx context.Context, params *DetachTrafficSourcesInput, optFns ...func(*Options)) (*DetachTrafficSourcesOutput, error) // Disables group metrics collection for the specified Auto Scaling group. DisableMetricsCollection(ctx context.Context, params *DisableMetricsCollectionInput, optFns ...func(*Options)) (*DisableMetricsCollectionOutput, error) - // Enables group metrics collection for the specified Auto Scaling group. You can - // use these metrics to track changes in an Auto Scaling group and to set alarms on - // threshold values. You can view group metrics using the Amazon EC2 Auto Scaling - // console or the CloudWatch console. For more information, see Monitor CloudWatch - // metrics for your Auto Scaling groups and instances (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-cloudwatch-monitoring.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Enables group metrics collection for the specified Auto Scaling group. + // + // You can use these metrics to track changes in an Auto Scaling group and to set + // alarms on threshold values. You can view group metrics using the Amazon EC2 Auto + // Scaling console or the CloudWatch console. For more information, see [Monitor CloudWatch metrics for your Auto Scaling groups and instances]in the + // Amazon EC2 Auto Scaling User Guide. + // + // [Monitor CloudWatch metrics for your Auto Scaling groups and instances]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-cloudwatch-monitoring.html EnableMetricsCollection(ctx context.Context, params *EnableMetricsCollectionInput, optFns ...func(*Options)) (*EnableMetricsCollectionOutput, error) - // Moves the specified instances into the standby state. If you choose to - // decrement the desired capacity of the Auto Scaling group, the instances can - // enter standby as long as the desired capacity of the Auto Scaling group after - // the instances are placed into standby is equal to or greater than the minimum - // capacity of the group. If you choose not to decrement the desired capacity of - // the Auto Scaling group, the Auto Scaling group launches new instances to replace - // the instances on standby. For more information, see Temporarily removing - // instances from your Auto Scaling group (https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-enter-exit-standby.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Moves the specified instances into the standby state. + // + // If you choose to decrement the desired capacity of the Auto Scaling group, the + // instances can enter standby as long as the desired capacity of the Auto Scaling + // group after the instances are placed into standby is equal to or greater than + // the minimum capacity of the group. + // + // If you choose not to decrement the desired capacity of the Auto Scaling group, + // the Auto Scaling group launches new instances to replace the instances on + // standby. + // + // For more information, see [Temporarily removing instances from your Auto Scaling group] in the Amazon EC2 Auto Scaling User Guide. + // + // [Temporarily removing instances from your Auto Scaling group]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-enter-exit-standby.html EnterStandby(ctx context.Context, params *EnterStandbyInput, optFns ...func(*Options)) (*EnterStandbyOutput, error) // Executes the specified policy. This can be useful for testing the design of // your scaling policy. ExecutePolicy(ctx context.Context, params *ExecutePolicyInput, optFns ...func(*Options)) (*ExecutePolicyOutput, error) - // Moves the specified instances out of the standby state. After you put the - // instances back in service, the desired capacity is incremented. For more - // information, see Temporarily removing instances from your Auto Scaling group (https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-enter-exit-standby.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Moves the specified instances out of the standby state. + // + // After you put the instances back in service, the desired capacity is + // incremented. + // + // For more information, see [Temporarily removing instances from your Auto Scaling group] in the Amazon EC2 Auto Scaling User Guide. + // + // [Temporarily removing instances from your Auto Scaling group]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-enter-exit-standby.html ExitStandby(ctx context.Context, params *ExitStandbyInput, optFns ...func(*Options)) (*ExitStandbyOutput, error) - // Retrieves the forecast data for a predictive scaling policy. Load forecasts are - // predictions of the hourly load values using historical load data from CloudWatch - // and an analysis of historical trends. Capacity forecasts are represented as - // predicted values for the minimum capacity that is needed on an hourly basis, - // based on the hourly load forecast. A minimum of 24 hours of data is required to - // create the initial forecasts. However, having a full 14 days of historical data - // results in more accurate forecasts. For more information, see Predictive - // scaling for Amazon EC2 Auto Scaling (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-predictive-scaling.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Retrieves the forecast data for a predictive scaling policy. + // + // Load forecasts are predictions of the hourly load values using historical load + // data from CloudWatch and an analysis of historical trends. Capacity forecasts + // are represented as predicted values for the minimum capacity that is needed on + // an hourly basis, based on the hourly load forecast. + // + // A minimum of 24 hours of data is required to create the initial forecasts. + // However, having a full 14 days of historical data results in more accurate + // forecasts. + // + // For more information, see [Predictive scaling for Amazon EC2 Auto Scaling] in the Amazon EC2 Auto Scaling User Guide. + // + // [Predictive scaling for Amazon EC2 Auto Scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-predictive-scaling.html GetPredictiveScalingForecast(ctx context.Context, params *GetPredictiveScalingForecastInput, optFns ...func(*Options)) (*GetPredictiveScalingForecastOutput, error) // Creates or updates a lifecycle hook for the specified Auto Scaling group. + // // Lifecycle hooks let you create solutions that are aware of events in the Auto // Scaling instance lifecycle, and then perform a custom action on instances when - // the corresponding lifecycle event occurs. This step is a part of the procedure - // for adding a lifecycle hook to an Auto Scaling group: + // the corresponding lifecycle event occurs. + // + // This step is a part of the procedure for adding a lifecycle hook to an Auto + // Scaling group: + // // - (Optional) Create a launch template or launch configuration with a user // data script that runs while an instance is in a wait state due to a lifecycle // hook. + // // - (Optional) Create a Lambda function and a rule that allows Amazon // EventBridge to invoke your Lambda function when an instance is put into a wait // state due to a lifecycle hook. + // // - (Optional) Create a notification target and an IAM role. The target can be // either an Amazon SQS queue or an Amazon SNS topic. The role allows Amazon EC2 // Auto Scaling to publish lifecycle notifications to the target. + // // - Create the lifecycle hook. Specify whether the hook is used when the // instances launch or terminate. + // // - If you need more time, record the lifecycle action heartbeat to keep the - // instance in a wait state using the RecordLifecycleActionHeartbeat API call. - // - If you finish before the timeout period ends, send a callback by using the - // CompleteLifecycleAction API call. - // - // For more information, see Amazon EC2 Auto Scaling lifecycle hooks (https://docs.aws.amazon.com/autoscaling/ec2/userguide/lifecycle-hooks.html) - // in the Amazon EC2 Auto Scaling User Guide. If you exceed your maximum limit of - // lifecycle hooks, which by default is 50 per Auto Scaling group, the call fails. - // You can view the lifecycle hooks for an Auto Scaling group using the - // DescribeLifecycleHooks API call. If you are no longer using a lifecycle hook, - // you can delete it by calling the DeleteLifecycleHook API. + // instance in a wait state using the RecordLifecycleActionHeartbeatAPI call. + // + // - If you finish before the timeout period ends, send a callback by using the CompleteLifecycleAction + // API call. + // + // For more information, see [Amazon EC2 Auto Scaling lifecycle hooks] in the Amazon EC2 Auto Scaling User Guide. + // + // If you exceed your maximum limit of lifecycle hooks, which by default is 50 per + // Auto Scaling group, the call fails. + // + // You can view the lifecycle hooks for an Auto Scaling group using the DescribeLifecycleHooks API call. + // If you are no longer using a lifecycle hook, you can delete it by calling the DeleteLifecycleHook + // API. + // + // [Amazon EC2 Auto Scaling lifecycle hooks]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/lifecycle-hooks.html PutLifecycleHook(ctx context.Context, params *PutLifecycleHookInput, optFns ...func(*Options)) (*PutLifecycleHookOutput, error) // Configures an Auto Scaling group to send notifications when specified events // take place. Subscribers to the specified topic can have messages delivered to an - // endpoint such as a web server or an email address. This configuration overwrites - // any existing configuration. For more information, see Getting Amazon SNS - // notifications when your Auto Scaling group scales (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ASGettingNotifications.html) - // in the Amazon EC2 Auto Scaling User Guide. If you exceed your maximum limit of - // SNS topics, which is 10 per Auto Scaling group, the call fails. + // endpoint such as a web server or an email address. + // + // This configuration overwrites any existing configuration. + // + // For more information, see [Amazon SNS notification options for Amazon EC2 Auto Scaling] in the Amazon EC2 Auto Scaling User Guide. + // + // If you exceed your maximum limit of SNS topics, which is 10 per Auto Scaling + // group, the call fails. + // + // [Amazon SNS notification options for Amazon EC2 Auto Scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-sns-notifications.html PutNotificationConfiguration(ctx context.Context, params *PutNotificationConfigurationInput, optFns ...func(*Options)) (*PutNotificationConfigurationOutput, error) // Creates or updates a scaling policy for an Auto Scaling group. Scaling policies // are used to scale an Auto Scaling group based on configurable metrics. If no // policies are defined, the dynamic scaling and predictive scaling features are - // not used. For more information about using dynamic scaling, see Target tracking - // scaling policies (https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-scaling-target-tracking.html) - // and Step and simple scaling policies (https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-scaling-simple-step.html) - // in the Amazon EC2 Auto Scaling User Guide. For more information about using - // predictive scaling, see Predictive scaling for Amazon EC2 Auto Scaling (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-predictive-scaling.html) - // in the Amazon EC2 Auto Scaling User Guide. You can view the scaling policies for - // an Auto Scaling group using the DescribePolicies API call. If you are no longer - // using a scaling policy, you can delete it by calling the DeletePolicy API. + // not used. + // + // For more information about using dynamic scaling, see [Target tracking scaling policies] and [Step and simple scaling policies] in the Amazon EC2 + // Auto Scaling User Guide. + // + // For more information about using predictive scaling, see [Predictive scaling for Amazon EC2 Auto Scaling] in the Amazon EC2 + // Auto Scaling User Guide. + // + // You can view the scaling policies for an Auto Scaling group using the DescribePolicies API + // call. If you are no longer using a scaling policy, you can delete it by calling + // the DeletePolicyAPI. + // + // [Step and simple scaling policies]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-scaling-simple-step.html + // [Target tracking scaling policies]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-scaling-target-tracking.html + // [Predictive scaling for Amazon EC2 Auto Scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-predictive-scaling.html PutScalingPolicy(ctx context.Context, params *PutScalingPolicyInput, optFns ...func(*Options)) (*PutScalingPolicyOutput, error) - // Creates or updates a scheduled scaling action for an Auto Scaling group. For - // more information, see Scheduled scaling (https://docs.aws.amazon.com/autoscaling/ec2/userguide/schedule_time.html) - // in the Amazon EC2 Auto Scaling User Guide. You can view the scheduled actions - // for an Auto Scaling group using the DescribeScheduledActions API call. If you - // are no longer using a scheduled action, you can delete it by calling the - // DeleteScheduledAction API. If you try to schedule your action in the past, - // Amazon EC2 Auto Scaling returns an error message. + // Creates or updates a scheduled scaling action for an Auto Scaling group. + // + // For more information, see [Scheduled scaling] in the Amazon EC2 Auto Scaling User Guide. + // + // You can view the scheduled actions for an Auto Scaling group using the DescribeScheduledActions API + // call. If you are no longer using a scheduled action, you can delete it by + // calling the DeleteScheduledActionAPI. + // + // If you try to schedule your action in the past, Amazon EC2 Auto Scaling returns + // an error message. + // + // [Scheduled scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-scheduled-scaling.html PutScheduledUpdateGroupAction(ctx context.Context, params *PutScheduledUpdateGroupActionInput, optFns ...func(*Options)) (*PutScheduledUpdateGroupActionOutput, error) // Creates or updates a warm pool for the specified Auto Scaling group. A warm // pool is a pool of pre-initialized EC2 instances that sits alongside the Auto // Scaling group. Whenever your application needs to scale out, the Auto Scaling - // group can draw on the warm pool to meet its new desired capacity. For more - // information and example configurations, see Warm pools for Amazon EC2 Auto - // Scaling (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-warm-pools.html) - // in the Amazon EC2 Auto Scaling User Guide. This operation must be called from - // the Region in which the Auto Scaling group was created. This operation cannot be - // called on an Auto Scaling group that has a mixed instances policy or a launch - // template or launch configuration that requests Spot Instances. You can view the - // instances in the warm pool using the DescribeWarmPool API call. If you are no - // longer using a warm pool, you can delete it by calling the DeleteWarmPool API. + // group can draw on the warm pool to meet its new desired capacity. + // + // This operation must be called from the Region in which the Auto Scaling group + // was created. + // + // You can view the instances in the warm pool using the DescribeWarmPool API call. If you are no + // longer using a warm pool, you can delete it by calling the DeleteWarmPoolAPI. + // + // For more information, see [Warm pools for Amazon EC2 Auto Scaling] in the Amazon EC2 Auto Scaling User Guide. + // + // [Warm pools for Amazon EC2 Auto Scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-warm-pools.html PutWarmPool(ctx context.Context, params *PutWarmPoolInput, optFns ...func(*Options)) (*PutWarmPoolOutput, error) // Records a heartbeat for the lifecycle action associated with the specified // token or instance. This extends the timeout by the length of time defined using - // the PutLifecycleHook API call. This step is a part of the procedure for adding - // a lifecycle hook to an Auto Scaling group: + // the PutLifecycleHookAPI call. + // + // This step is a part of the procedure for adding a lifecycle hook to an Auto + // Scaling group: + // // - (Optional) Create a launch template or launch configuration with a user // data script that runs while an instance is in a wait state due to a lifecycle // hook. + // // - (Optional) Create a Lambda function and a rule that allows Amazon // EventBridge to invoke your Lambda function when an instance is put into a wait // state due to a lifecycle hook. + // // - (Optional) Create a notification target and an IAM role. The target can be // either an Amazon SQS queue or an Amazon SNS topic. The role allows Amazon EC2 // Auto Scaling to publish lifecycle notifications to the target. + // // - Create the lifecycle hook. Specify whether the hook is used when the // instances launch or terminate. + // // - If you need more time, record the lifecycle action heartbeat to keep the // instance in a wait state. - // - If you finish before the timeout period ends, send a callback by using the - // CompleteLifecycleAction API call. // - // For more information, see Amazon EC2 Auto Scaling lifecycle hooks (https://docs.aws.amazon.com/autoscaling/ec2/userguide/lifecycle-hooks.html) - // in the Amazon EC2 Auto Scaling User Guide. + // - If you finish before the timeout period ends, send a callback by using the CompleteLifecycleAction + // API call. + // + // For more information, see [Amazon EC2 Auto Scaling lifecycle hooks] in the Amazon EC2 Auto Scaling User Guide. + // + // [Amazon EC2 Auto Scaling lifecycle hooks]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/lifecycle-hooks.html RecordLifecycleActionHeartbeat(ctx context.Context, params *RecordLifecycleActionHeartbeatInput, optFns ...func(*Options)) (*RecordLifecycleActionHeartbeatOutput, error) // Resumes the specified suspended auto scaling processes, or all suspended - // process, for the specified Auto Scaling group. For more information, see - // Suspending and resuming scaling processes (https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-suspend-resume-processes.html) - // in the Amazon EC2 Auto Scaling User Guide. + // process, for the specified Auto Scaling group. + // + // For more information, see [Suspend and resume Amazon EC2 Auto Scaling processes] in the Amazon EC2 Auto Scaling User Guide. + // + // [Suspend and resume Amazon EC2 Auto Scaling processes]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-suspend-resume-processes.html ResumeProcesses(ctx context.Context, params *ResumeProcessesInput, optFns ...func(*Options)) (*ResumeProcessesOutput, error) // Cancels an instance refresh that is in progress and rolls back any changes that // it made. Amazon EC2 Auto Scaling replaces any instances that were replaced // during the instance refresh. This restores your Auto Scaling group to the - // configuration that it was using before the start of the instance refresh. This - // operation is part of the instance refresh feature (https://docs.aws.amazon.com/autoscaling/ec2/userguide/asg-instance-refresh.html) - // in Amazon EC2 Auto Scaling, which helps you update instances in your Auto - // Scaling group after you make configuration changes. A rollback is not supported - // in the following situations: + // configuration that it was using before the start of the instance refresh. + // + // This operation is part of the [instance refresh feature] in Amazon EC2 Auto Scaling, which helps you + // update instances in your Auto Scaling group after you make configuration + // changes. + // + // A rollback is not supported in the following situations: + // // - There is no desired configuration specified for the instance refresh. + // // - The Auto Scaling group has a launch template that uses an Amazon Web // Services Systems Manager parameter instead of an AMI ID for the ImageId // property. + // // - The Auto Scaling group uses the launch template's $Latest or $Default // version. // // When you receive a successful response from this operation, Amazon EC2 Auto // Scaling immediately begins replacing instances. You can check the status of this - // operation through the DescribeInstanceRefreshes API operation. + // operation through the DescribeInstanceRefreshesAPI operation. + // + // [instance refresh feature]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/asg-instance-refresh.html RollbackInstanceRefresh(ctx context.Context, params *RollbackInstanceRefreshInput, optFns ...func(*Options)) (*RollbackInstanceRefreshOutput, error) - // Sets the size of the specified Auto Scaling group. If a scale-in activity - // occurs as a result of a new DesiredCapacity value that is lower than the - // current size of the group, the Auto Scaling group uses its termination policy to - // determine which instances to terminate. For more information, see Manual scaling (https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-manual-scaling.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Sets the size of the specified Auto Scaling group. + // + // If a scale-in activity occurs as a result of a new DesiredCapacity value that + // is lower than the current size of the group, the Auto Scaling group uses its + // termination policy to determine which instances to terminate. + // + // For more information, see [Manual scaling] in the Amazon EC2 Auto Scaling User Guide. + // + // [Manual scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-scaling-manually.html SetDesiredCapacity(ctx context.Context, params *SetDesiredCapacityInput, optFns ...func(*Options)) (*SetDesiredCapacityOutput, error) - // Sets the health status of the specified instance. For more information, see - // Health checks for Auto Scaling instances (https://docs.aws.amazon.com/autoscaling/ec2/userguide/healthcheck.html) - // in the Amazon EC2 Auto Scaling User Guide. + // Sets the health status of the specified instance. + // + // For more information, see [Health checks for instances in an Auto Scaling group] in the Amazon EC2 Auto Scaling User Guide. + // + // [Health checks for instances in an Auto Scaling group]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-health-checks.html SetInstanceHealth(ctx context.Context, params *SetInstanceHealthInput, optFns ...func(*Options)) (*SetInstanceHealthOutput, error) // Updates the instance protection settings of the specified instances. This - // operation cannot be called on instances in a warm pool. For more information - // about preventing instances that are part of an Auto Scaling group from - // terminating on scale in, see Using instance scale-in protection (https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-instance-protection.html) - // in the Amazon EC2 Auto Scaling User Guide. If you exceed your maximum limit of - // instance IDs, which is 50 per Auto Scaling group, the call fails. + // operation cannot be called on instances in a warm pool. + // + // For more information, see [Use instance scale-in protection] in the Amazon EC2 Auto Scaling User Guide. + // + // If you exceed your maximum limit of instance IDs, which is 50 per Auto Scaling + // group, the call fails. + // + // [Use instance scale-in protection]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-instance-protection.html SetInstanceProtection(ctx context.Context, params *SetInstanceProtectionInput, optFns ...func(*Options)) (*SetInstanceProtectionOutput, error) - // Starts an instance refresh. This operation is part of the instance refresh - // feature (https://docs.aws.amazon.com/autoscaling/ec2/userguide/asg-instance-refresh.html) - // in Amazon EC2 Auto Scaling, which helps you update instances in your Auto - // Scaling group. This feature is helpful, for example, when you have a new AMI or - // a new user data script. You just need to create a new launch template that - // specifies the new AMI or user data script. Then start an instance refresh to - // immediately begin the process of updating instances in the group. If successful, - // the request's response contains a unique ID that you can use to track the - // progress of the instance refresh. To query its status, call the - // DescribeInstanceRefreshes API. To describe the instance refreshes that have - // already run, call the DescribeInstanceRefreshes API. To cancel an instance - // refresh that is in progress, use the CancelInstanceRefresh API. An instance - // refresh might fail for several reasons, such as EC2 launch failures, - // misconfigured health checks, or not ignoring or allowing the termination of - // instances that are in Standby state or protected from scale in. You can monitor - // for failed EC2 launches using the scaling activities. To find the scaling - // activities, call the DescribeScalingActivities API. If you enable auto - // rollback, your Auto Scaling group will be rolled back automatically when the - // instance refresh fails. You can enable this feature before starting an instance - // refresh by specifying the AutoRollback property in the instance refresh - // preferences. Otherwise, to roll back an instance refresh before it finishes, use - // the RollbackInstanceRefresh API. + // Starts an instance refresh. + // + // This operation is part of the [instance refresh feature] in Amazon EC2 Auto Scaling, which helps you + // update instances in your Auto Scaling group. This feature is helpful, for + // example, when you have a new AMI or a new user data script. You just need to + // create a new launch template that specifies the new AMI or user data script. + // Then start an instance refresh to immediately begin the process of updating + // instances in the group. + // + // If successful, the request's response contains a unique ID that you can use to + // track the progress of the instance refresh. To query its status, call the DescribeInstanceRefreshesAPI. + // To describe the instance refreshes that have already run, call the DescribeInstanceRefreshesAPI. To + // cancel an instance refresh that is in progress, use the CancelInstanceRefreshAPI. + // + // An instance refresh might fail for several reasons, such as EC2 launch + // failures, misconfigured health checks, or not ignoring or allowing the + // termination of instances that are in Standby state or protected from scale in. + // You can monitor for failed EC2 launches using the scaling activities. To find + // the scaling activities, call the DescribeScalingActivitiesAPI. + // + // If you enable auto rollback, your Auto Scaling group will be rolled back + // automatically when the instance refresh fails. You can enable this feature + // before starting an instance refresh by specifying the AutoRollback property in + // the instance refresh preferences. Otherwise, to roll back an instance refresh + // before it finishes, use the RollbackInstanceRefreshAPI. + // + // [instance refresh feature]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/asg-instance-refresh.html StartInstanceRefresh(ctx context.Context, params *StartInstanceRefreshInput, optFns ...func(*Options)) (*StartInstanceRefreshOutput, error) // Suspends the specified auto scaling processes, or all processes, for the - // specified Auto Scaling group. If you suspend either the Launch or Terminate - // process types, it can prevent other process types from functioning properly. For - // more information, see Suspending and resuming scaling processes (https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-suspend-resume-processes.html) - // in the Amazon EC2 Auto Scaling User Guide. To resume processes that have been - // suspended, call the ResumeProcesses API. + // specified Auto Scaling group. + // + // If you suspend either the Launch or Terminate process types, it can prevent + // other process types from functioning properly. For more information, see [Suspend and resume Amazon EC2 Auto Scaling processes]in the + // Amazon EC2 Auto Scaling User Guide. + // + // To resume processes that have been suspended, call the ResumeProcesses API. + // + // [Suspend and resume Amazon EC2 Auto Scaling processes]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/as-suspend-resume-processes.html SuspendProcesses(ctx context.Context, params *SuspendProcessesInput, optFns ...func(*Options)) (*SuspendProcessesOutput, error) // Terminates the specified instance and optionally adjusts the desired group - // size. This operation cannot be called on instances in a warm pool. This call - // simply makes a termination request. The instance is not terminated immediately. - // When an instance is terminated, the instance status changes to terminated . You - // can't connect to or start an instance after you've terminated it. If you do not - // specify the option to decrement the desired capacity, Amazon EC2 Auto Scaling - // launches instances to replace the ones that are terminated. By default, Amazon - // EC2 Auto Scaling balances instances across all Availability Zones. If you - // decrement the desired capacity, your Auto Scaling group can become unbalanced - // between Availability Zones. Amazon EC2 Auto Scaling tries to rebalance the - // group, and rebalancing might terminate instances in other zones. For more - // information, see Rebalancing activities (https://docs.aws.amazon.com/autoscaling/ec2/userguide/auto-scaling-benefits.html#AutoScalingBehavior.InstanceUsage) - // in the Amazon EC2 Auto Scaling User Guide. + // size. This operation cannot be called on instances in a warm pool. + // + // This call simply makes a termination request. The instance is not terminated + // immediately. When an instance is terminated, the instance status changes to + // terminated . You can't connect to or start an instance after you've terminated + // it. + // + // If you do not specify the option to decrement the desired capacity, Amazon EC2 + // Auto Scaling launches instances to replace the ones that are terminated. + // + // By default, Amazon EC2 Auto Scaling balances instances across all Availability + // Zones. If you decrement the desired capacity, your Auto Scaling group can become + // unbalanced between Availability Zones. Amazon EC2 Auto Scaling tries to + // rebalance the group, and rebalancing might terminate instances in other zones. + // For more information, see [Manual scaling]in the Amazon EC2 Auto Scaling User Guide. + // + // [Manual scaling]: https://docs.aws.amazon.com/autoscaling/ec2/userguide/ec2-auto-scaling-scaling-manually.html TerminateInstanceInAutoScalingGroup(ctx context.Context, params *TerminateInstanceInAutoScalingGroupInput, optFns ...func(*Options)) (*TerminateInstanceInAutoScalingGroupOutput, error) - // We strongly recommend that all Auto Scaling groups use launch templates to - // ensure full functionality for Amazon EC2 Auto Scaling and Amazon EC2. Updates - // the configuration for the specified Auto Scaling group. To update an Auto - // Scaling group, specify the name of the group and the property that you want to - // change. Any properties that you don't specify are not changed by this update - // request. The new settings take effect on any scaling activities after this call - // returns. If you associate a new launch configuration or template with an Auto - // Scaling group, all new instances will get the updated configuration. Existing - // instances continue to run with the configuration that they were originally - // launched with. When you update a group to specify a mixed instances policy - // instead of a launch configuration or template, existing instances may be - // replaced to match the new purchasing options that you specified in the policy. - // For example, if the group currently has 100% On-Demand capacity and the policy - // specifies 50% Spot capacity, this means that half of your instances will be - // gradually terminated and relaunched as Spot Instances. When replacing instances, - // Amazon EC2 Auto Scaling launches new instances before terminating the old ones, - // so that updating your group does not compromise the performance or availability - // of your application. Note the following about changing DesiredCapacity , MaxSize - // , or MinSize : + // We strongly recommend that all Auto Scaling groups use launch templates to + // + // ensure full functionality for Amazon EC2 Auto Scaling and Amazon EC2. + // + // Updates the configuration for the specified Auto Scaling group. + // + // To update an Auto Scaling group, specify the name of the group and the property + // that you want to change. Any properties that you don't specify are not changed + // by this update request. The new settings take effect on any scaling activities + // after this call returns. + // + // If you associate a new launch configuration or template with an Auto Scaling + // group, all new instances will get the updated configuration. Existing instances + // continue to run with the configuration that they were originally launched with. + // When you update a group to specify a mixed instances policy instead of a launch + // configuration or template, existing instances may be replaced to match the new + // purchasing options that you specified in the policy. For example, if the group + // currently has 100% On-Demand capacity and the policy specifies 50% Spot + // capacity, this means that half of your instances will be gradually terminated + // and relaunched as Spot Instances. When replacing instances, Amazon EC2 Auto + // Scaling launches new instances before terminating the old ones, so that updating + // your group does not compromise the performance or availability of your + // application. + // + // Note the following about changing DesiredCapacity , MaxSize , or MinSize : + // // - If a scale-in activity occurs as a result of a new DesiredCapacity value // that is lower than the current size of the group, the Auto Scaling group uses // its termination policy to determine which instances to terminate. + // // - If you specify a new value for MinSize without specifying a value for // DesiredCapacity , and the new MinSize is larger than the current size of the // group, this sets the group's DesiredCapacity to the new MinSize value. + // // - If you specify a new value for MaxSize without specifying a value for // DesiredCapacity , and the new MaxSize is smaller than the current size of the // group, this sets the group's DesiredCapacity to the new MaxSize value. // - // To see which properties have been set, call the DescribeAutoScalingGroups API. - // To view the scaling policies for an Auto Scaling group, call the - // DescribePolicies API. If the group has scaling policies, you can update them by - // calling the PutScalingPolicy API. + // To see which properties have been set, call the DescribeAutoScalingGroups API. To view the scaling + // policies for an Auto Scaling group, call the DescribePoliciesAPI. If the group has scaling + // policies, you can update them by calling the PutScalingPolicyAPI. UpdateAutoScalingGroup(ctx context.Context, params *UpdateAutoScalingGroupInput, optFns ...func(*Options)) (*UpdateAutoScalingGroupOutput, error) } diff --git a/pkg/awsapi/cloudformation.go b/pkg/awsapi/cloudformation.go index 07980b1dd2..e596f6c946 100644 --- a/pkg/awsapi/cloudformation.go +++ b/pkg/awsapi/cloudformation.go @@ -22,33 +22,42 @@ type CloudFormation interface { // create and manage StackSets for your organization. ActivateOrganizationsAccess(ctx context.Context, params *ActivateOrganizationsAccessInput, optFns ...func(*Options)) (*ActivateOrganizationsAccessOutput, error) // Activates a public third-party extension, making it available for use in stack - // templates. For more information, see Using public extensions (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/registry-public.html) - // in the CloudFormation User Guide. Once you have activated a public third-party - // extension in your account and Region, use SetTypeConfiguration (https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_SetTypeConfiguration.html) - // to specify configuration properties for the extension. For more information, see - // Configuring extensions at the account level (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/registry-private.html#registry-set-configuration) - // in the CloudFormation User Guide. + // templates. For more information, see [Using public extensions]in the CloudFormation User Guide. + // + // Once you have activated a public third-party extension in your account and + // Region, use [SetTypeConfiguration]to specify configuration properties for the extension. For more + // information, see [Configuring extensions at the account level]in the CloudFormation User Guide. + // + // [SetTypeConfiguration]: https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_SetTypeConfiguration.html + // [Using public extensions]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/registry-public.html + // [Configuring extensions at the account level]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/registry-private.html#registry-set-configuration ActivateType(ctx context.Context, params *ActivateTypeInput, optFns ...func(*Options)) (*ActivateTypeOutput, error) // Returns configuration data for the specified CloudFormation extensions, from - // the CloudFormation registry for the account and Region. For more information, - // see Configuring extensions at the account level (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/registry-private.html#registry-set-configuration) - // in the CloudFormation User Guide. + // the CloudFormation registry for the account and Region. + // + // For more information, see [Configuring extensions at the account level] in the CloudFormation User Guide. + // + // [Configuring extensions at the account level]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/registry-private.html#registry-set-configuration BatchDescribeTypeConfigurations(ctx context.Context, params *BatchDescribeTypeConfigurationsInput, optFns ...func(*Options)) (*BatchDescribeTypeConfigurationsOutput, error) // Cancels an update on the specified stack. If the call completes successfully, // the stack rolls back the update and reverts to the previous stack configuration. + // // You can cancel only stacks that are in the UPDATE_IN_PROGRESS state. CancelUpdateStack(ctx context.Context, params *CancelUpdateStackInput, optFns ...func(*Options)) (*CancelUpdateStackOutput, error) // For a specified stack that's in the UPDATE_ROLLBACK_FAILED state, continues // rolling it back to the UPDATE_ROLLBACK_COMPLETE state. Depending on the cause - // of the failure, you can manually fix the error (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/troubleshooting.html#troubleshooting-errors-update-rollback-failed) - // and continue the rollback. By continuing the rollback, you can return your stack - // to a working state (the UPDATE_ROLLBACK_COMPLETE state), and then try to update - // the stack again. A stack goes into the UPDATE_ROLLBACK_FAILED state when - // CloudFormation can't roll back all changes after a failed stack update. For - // example, you might have a stack that's rolling back to an old database instance - // that was deleted outside of CloudFormation. Because CloudFormation doesn't know - // the database was deleted, it assumes that the database instance still exists and - // attempts to roll back to it, causing the update rollback to fail. + // of the failure, you can manually [fix the error]and continue the rollback. By continuing the + // rollback, you can return your stack to a working state (the + // UPDATE_ROLLBACK_COMPLETE state), and then try to update the stack again. + // + // A stack goes into the UPDATE_ROLLBACK_FAILED state when CloudFormation can't + // roll back all changes after a failed stack update. For example, you might have a + // stack that's rolling back to an old database instance that was deleted outside + // of CloudFormation. Because CloudFormation doesn't know the database was deleted, + // it assumes that the database instance still exists and attempts to roll back to + // it, causing the update rollback to fail. + // + // [fix the error]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/troubleshooting.html#troubleshooting-errors-update-rollback-failed ContinueUpdateRollback(ctx context.Context, params *ContinueUpdateRollbackInput, optFns ...func(*Options)) (*ContinueUpdateRollbackOutput, error) // Creates a list of changes that will be applied to a stack so that you can // review the changes before executing them. You can create a change set for a @@ -58,17 +67,22 @@ type CloudFormation interface { // CloudFormation compares the stack's information with the information that you // submit in the change set and lists the differences. Use change sets to // understand which resources CloudFormation will create or change, and how it will - // change resources in an existing stack, before you create or update a stack. To - // create a change set for a stack that doesn't exist, for the ChangeSetType + // change resources in an existing stack, before you create or update a stack. + // + // To create a change set for a stack that doesn't exist, for the ChangeSetType // parameter, specify CREATE . To create a change set for an existing stack, // specify UPDATE for the ChangeSetType parameter. To create a change set for an // import operation, specify IMPORT for the ChangeSetType parameter. After the // CreateChangeSet call successfully completes, CloudFormation starts creating the - // change set. To check the status of the change set or to review it, use the - // DescribeChangeSet action. When you are satisfied with the changes the change set - // will make, execute the change set by using the ExecuteChangeSet action. - // CloudFormation doesn't make changes until you execute the change set. To create - // a change set for the entire stack hierarchy, set IncludeNestedStacks to True . + // change set. To check the status of the change set or to review it, use the DescribeChangeSet + // action. + // + // When you are satisfied with the changes the change set will make, execute the + // change set by using the ExecuteChangeSetaction. CloudFormation doesn't make changes until you + // execute the change set. + // + // To create a change set for the entire stack hierarchy, set IncludeNestedStacks + // to True . CreateChangeSet(ctx context.Context, params *CreateChangeSetInput, optFns ...func(*Options)) (*CreateChangeSetOutput, error) // Creates a template from existing resources that are not already managed with // CloudFormation. You can check the status of the template generation using the @@ -76,7 +90,7 @@ type CloudFormation interface { CreateGeneratedTemplate(ctx context.Context, params *CreateGeneratedTemplateInput, optFns ...func(*Options)) (*CreateGeneratedTemplateOutput, error) // Creates a stack as specified in the template. After the call completes // successfully, the stack creation starts. You can check the status of the stack - // through the DescribeStacks operation. + // through the DescribeStacksoperation. CreateStack(ctx context.Context, params *CreateStackInput, optFns ...func(*Options)) (*CreateStackOutput, error) // Creates stack instances for the specified accounts, within the specified Amazon // Web Services Regions. A stack instance refers to a stack in a specific account @@ -90,55 +104,67 @@ type CloudFormation interface { // manage service-managed StackSets for your organization. DeactivateOrganizationsAccess(ctx context.Context, params *DeactivateOrganizationsAccessInput, optFns ...func(*Options)) (*DeactivateOrganizationsAccessOutput, error) // Deactivates a public extension that was previously activated in this account - // and Region. Once deactivated, an extension can't be used in any CloudFormation - // operation. This includes stack update operations where the stack template - // includes the extension, even if no updates are being made to the extension. In - // addition, deactivated extensions aren't automatically updated if a new version - // of the extension is released. + // and Region. + // + // Once deactivated, an extension can't be used in any CloudFormation operation. + // This includes stack update operations where the stack template includes the + // extension, even if no updates are being made to the extension. In addition, + // deactivated extensions aren't automatically updated if a new version of the + // extension is released. DeactivateType(ctx context.Context, params *DeactivateTypeInput, optFns ...func(*Options)) (*DeactivateTypeOutput, error) // Deletes the specified change set. Deleting change sets ensures that no one - // executes the wrong change set. If the call successfully completes, - // CloudFormation successfully deleted the change set. If IncludeNestedStacks - // specifies True during the creation of the nested change set, then - // DeleteChangeSet will delete all change sets that belong to the stacks hierarchy - // and will also delete all change sets for nested stacks with the status of - // REVIEW_IN_PROGRESS . + // executes the wrong change set. + // + // If the call successfully completes, CloudFormation successfully deleted the + // change set. + // + // If IncludeNestedStacks specifies True during the creation of the nested change + // set, then DeleteChangeSet will delete all change sets that belong to the stacks + // hierarchy and will also delete all change sets for nested stacks with the status + // of REVIEW_IN_PROGRESS . DeleteChangeSet(ctx context.Context, params *DeleteChangeSetInput, optFns ...func(*Options)) (*DeleteChangeSetOutput, error) // Deleted a generated template. DeleteGeneratedTemplate(ctx context.Context, params *DeleteGeneratedTemplateInput, optFns ...func(*Options)) (*DeleteGeneratedTemplateOutput, error) // Deletes a specified stack. Once the call completes successfully, stack deletion - // starts. Deleted stacks don't show up in the DescribeStacks operation if the - // deletion has been completed successfully. + // starts. Deleted stacks don't show up in the DescribeStacksoperation if the deletion has been + // completed successfully. DeleteStack(ctx context.Context, params *DeleteStackInput, optFns ...func(*Options)) (*DeleteStackOutput, error) // Deletes stack instances for the specified accounts, in the specified Amazon Web // Services Regions. DeleteStackInstances(ctx context.Context, params *DeleteStackInstancesInput, optFns ...func(*Options)) (*DeleteStackInstancesOutput, error) // Deletes a stack set. Before you can delete a stack set, all its member stack - // instances must be deleted. For more information about how to complete this, see - // DeleteStackInstances . + // instances must be deleted. For more information about how to complete this, see DeleteStackInstances + // . DeleteStackSet(ctx context.Context, params *DeleteStackSetInput, optFns ...func(*Options)) (*DeleteStackSetOutput, error) // Marks an extension or extension version as DEPRECATED in the CloudFormation // registry, removing it from active use. Deprecated extensions or extension - // versions cannot be used in CloudFormation operations. To deregister an entire - // extension, you must individually deregister all active versions of that - // extension. If an extension has only a single active version, deregistering that - // version results in the extension itself being deregistered and marked as - // deprecated in the registry. You can't deregister the default version of an - // extension if there are other active version of that extension. If you do - // deregister the default version of an extension, the extension type itself is - // deregistered as well and marked as deprecated. To view the deprecation status of - // an extension or extension version, use DescribeType (https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_DescribeType.html) - // . + // versions cannot be used in CloudFormation operations. + // + // To deregister an entire extension, you must individually deregister all active + // versions of that extension. If an extension has only a single active version, + // deregistering that version results in the extension itself being deregistered + // and marked as deprecated in the registry. + // + // You can't deregister the default version of an extension if there are other + // active version of that extension. If you do deregister the default version of an + // extension, the extension type itself is deregistered as well and marked as + // deprecated. + // + // To view the deprecation status of an extension or extension version, use [DescribeType]. + // + // [DescribeType]: https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_DescribeType.html DeregisterType(ctx context.Context, params *DeregisterTypeInput, optFns ...func(*Options)) (*DeregisterTypeOutput, error) // Retrieves your account's CloudFormation limits, such as the maximum number of // stacks that you can create in your account. For more information about account - // limits, see CloudFormation Quotas (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/cloudformation-limits.html) - // in the CloudFormation User Guide. + // limits, see [CloudFormation Quotas]in the CloudFormation User Guide. + // + // [CloudFormation Quotas]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/cloudformation-limits.html DescribeAccountLimits(ctx context.Context, params *DescribeAccountLimitsInput, optFns ...func(*Options)) (*DescribeAccountLimitsOutput, error) // Returns the inputs for the change set and a list of changes that CloudFormation - // will make if you execute the change set. For more information, see Updating - // Stacks Using Change Sets (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-changesets.html) - // in the CloudFormation User Guide. + // will make if you execute the change set. For more information, see [Updating Stacks Using Change Sets]in the + // CloudFormation User Guide. + // + // [Updating Stacks Using Change Sets]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-changesets.html DescribeChangeSet(ctx context.Context, params *DescribeChangeSetInput, optFns ...func(*Options)) (*DescribeChangeSetOutput, error) // Returns hook-related information for the change set and a list of changes that // CloudFormation makes when you run the change set. @@ -153,13 +179,21 @@ type CloudFormation interface { // using the CallAs parameter. This API can also be called without the CallAs // parameter by the management account. DescribeOrganizationsAccess(ctx context.Context, params *DescribeOrganizationsAccessInput, optFns ...func(*Options)) (*DescribeOrganizationsAccessOutput, error) - // Returns information about a CloudFormation extension publisher. If you don't - // supply a PublisherId , and you have registered as an extension publisher, - // DescribePublisher returns information about your own publisher account. For more - // information about registering as a publisher, see: - // - RegisterPublisher (https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_RegisterPublisher.html) - // - Publishing extensions to make them available for public use (https://docs.aws.amazon.com/cloudformation-cli/latest/userguide/publish-extension.html) - // in the CloudFormation CLI User Guide + // Returns information about a CloudFormation extension publisher. + // + // If you don't supply a PublisherId , and you have registered as an extension + // publisher, DescribePublisher returns information about your own publisher + // account. + // + // For more information about registering as a publisher, see: + // + // [RegisterPublisher] + // + // [Publishing extensions to make them available for public use] + // - in the CloudFormation CLI User Guide + // + // [Publishing extensions to make them available for public use]: https://docs.aws.amazon.com/cloudformation-cli/latest/userguide/publish-extension.html + // [RegisterPublisher]: https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_RegisterPublisher.html DescribePublisher(ctx context.Context, params *DescribePublisherInput, optFns ...func(*Options)) (*DescribePublisherOutput, error) // Describes details of a resource scan. DescribeResourceScan(ctx context.Context, params *DescribeResourceScanInput, optFns ...func(*Options)) (*DescribeResourceScanOutput, error) @@ -168,53 +202,70 @@ type CloudFormation interface { // has drifted, from its expected configuration, as defined in the stack template // and any values specified as template parameters. A stack is considered to have // drifted if one or more of its resources have drifted. For more information about - // stack and resource drift, see Detecting Unregulated Configuration Changes to - // Stacks and Resources (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-stack-drift.html) - // . Use DetectStackDrift to initiate a stack drift detection operation. - // DetectStackDrift returns a StackDriftDetectionId you can use to monitor the - // progress of the operation using DescribeStackDriftDetectionStatus . Once the - // drift detection operation has completed, use DescribeStackResourceDrifts to - // return drift information about the stack and its resources. + // stack and resource drift, see [Detecting Unregulated Configuration Changes to Stacks and Resources]. + // + // Use DetectStackDrift to initiate a stack drift detection operation. DetectStackDrift returns a + // StackDriftDetectionId you can use to monitor the progress of the operation using + // DescribeStackDriftDetectionStatus . Once the drift detection operation has + // completed, use DescribeStackResourceDriftsto return drift information about the stack and its resources. + // + // [Detecting Unregulated Configuration Changes to Stacks and Resources]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-stack-drift.html DescribeStackDriftDetectionStatus(ctx context.Context, params *DescribeStackDriftDetectionStatusInput, optFns ...func(*Options)) (*DescribeStackDriftDetectionStatusOutput, error) // Returns all stack related events for a specified stack in reverse chronological - // order. For more information about a stack's event history, see CloudFormation - // stack creation events (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stack-resource-configuration-complete.html) - // in the CloudFormation User Guide. You can list events for stacks that have - // failed to create or have been deleted by specifying the unique stack identifier - // (stack ID). + // order. For more information about a stack's event history, see [CloudFormation stack creation events]in the + // CloudFormation User Guide. + // + // You can list events for stacks that have failed to create or have been deleted + // by specifying the unique stack identifier (stack ID). + // + // [CloudFormation stack creation events]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stack-resource-configuration-complete.html DescribeStackEvents(ctx context.Context, params *DescribeStackEventsInput, optFns ...func(*Options)) (*DescribeStackEventsOutput, error) // Returns the stack instance that's associated with the specified StackSet, - // Amazon Web Services account, and Amazon Web Services Region. For a list of stack - // instances that are associated with a specific StackSet, use ListStackInstances . + // Amazon Web Services account, and Amazon Web Services Region. + // + // For a list of stack instances that are associated with a specific StackSet, use ListStackInstances + // . DescribeStackInstance(ctx context.Context, params *DescribeStackInstanceInput, optFns ...func(*Options)) (*DescribeStackInstanceOutput, error) - // Returns a description of the specified resource in the specified stack. For - // deleted stacks, DescribeStackResource returns resource information for up to 90 - // days after the stack has been deleted. + // Returns a description of the specified resource in the specified stack. + // + // For deleted stacks, DescribeStackResource returns resource information for up + // to 90 days after the stack has been deleted. DescribeStackResource(ctx context.Context, params *DescribeStackResourceInput, optFns ...func(*Options)) (*DescribeStackResourceOutput, error) // Returns drift information for the resources that have been checked for drift in // the specified stack. This includes actual and expected configuration values for - // resources where CloudFormation detects configuration drift. For a given stack, - // there will be one StackResourceDrift for each stack resource that has been - // checked for drift. Resources that haven't yet been checked for drift aren't - // included. Resources that don't currently support drift detection aren't checked, - // and so not included. For a list of resources that support drift detection, see - // Resources that Support Drift Detection (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-stack-drift-resource-list.html) - // . Use DetectStackResourceDrift to detect drift on individual resources, or - // DetectStackDrift to detect drift on all supported resources for a given stack. + // resources where CloudFormation detects configuration drift. + // + // For a given stack, there will be one StackResourceDrift for each stack resource + // that has been checked for drift. Resources that haven't yet been checked for + // drift aren't included. Resources that don't currently support drift detection + // aren't checked, and so not included. For a list of resources that support drift + // detection, see [Resources that Support Drift Detection]. + // + // Use DetectStackResourceDrift to detect drift on individual resources, or DetectStackDrift to detect drift on all + // supported resources for a given stack. + // + // [Resources that Support Drift Detection]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-stack-drift-resource-list.html DescribeStackResourceDrifts(ctx context.Context, params *DescribeStackResourceDriftsInput, optFns ...func(*Options)) (*DescribeStackResourceDriftsOutput, error) // Returns Amazon Web Services resource descriptions for running and deleted // stacks. If StackName is specified, all the associated resources that are part // of the stack are returned. If PhysicalResourceId is specified, the associated - // resources of the stack that the resource belongs to are returned. Only the first - // 100 resources will be returned. If your stack has more resources than this, you - // should use ListStackResources instead. For deleted stacks, - // DescribeStackResources returns resource information for up to 90 days after the - // stack has been deleted. You must specify either StackName or PhysicalResourceId - // , but not both. In addition, you can specify LogicalResourceId to filter the - // returned result. For more information about resources, the LogicalResourceId - // and PhysicalResourceId , go to the CloudFormation User Guide (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/) - // . A ValidationError is returned if you specify both StackName and + // resources of the stack that the resource belongs to are returned. + // + // Only the first 100 resources will be returned. If your stack has more resources + // than this, you should use ListStackResources instead. + // + // For deleted stacks, DescribeStackResources returns resource information for up + // to 90 days after the stack has been deleted. + // + // You must specify either StackName or PhysicalResourceId , but not both. In + // addition, you can specify LogicalResourceId to filter the returned result. For + // more information about resources, the LogicalResourceId and PhysicalResourceId , + // go to the [CloudFormation User Guide]. + // + // A ValidationError is returned if you specify both StackName and // PhysicalResourceId in the same request. + // + // [CloudFormation User Guide]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/ DescribeStackResources(ctx context.Context, params *DescribeStackResourcesInput, optFns ...func(*Options)) (*DescribeStackResourcesOutput, error) // Returns the description of the specified StackSet. DescribeStackSet(ctx context.Context, params *DescribeStackSetInput, optFns ...func(*Options)) (*DescribeStackSetOutput, error) @@ -222,22 +273,26 @@ type CloudFormation interface { DescribeStackSetOperation(ctx context.Context, params *DescribeStackSetOperationInput, optFns ...func(*Options)) (*DescribeStackSetOperationOutput, error) // Returns the description for the specified stack; if no stack name was // specified, then it returns the description for all the stacks created. For more - // information about a stack's event history, see CloudFormation stack creation - // events (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stack-resource-configuration-complete.html) - // in the CloudFormation User Guide. If the stack doesn't exist, a ValidationError - // is returned. + // information about a stack's event history, see [CloudFormation stack creation events]in the CloudFormation User Guide. + // + // If the stack doesn't exist, a ValidationError is returned. + // + // [CloudFormation stack creation events]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stack-resource-configuration-complete.html DescribeStacks(ctx context.Context, params *DescribeStacksInput, optFns ...func(*Options)) (*DescribeStacksOutput, error) - // Returns detailed information about an extension that has been registered. If - // you specify a VersionId , DescribeType returns information about that specific - // extension version. Otherwise, it returns information about the default extension - // version. + // Returns detailed information about an extension that has been registered. + // + // If you specify a VersionId , DescribeType returns information about that + // specific extension version. Otherwise, it returns information about the default + // extension version. DescribeType(ctx context.Context, params *DescribeTypeInput, optFns ...func(*Options)) (*DescribeTypeOutput, error) // Returns information about an extension's registration, including its current - // status and type and version identifiers. When you initiate a registration - // request using RegisterType , you can then use DescribeTypeRegistration to - // monitor the progress of that registration request. Once the registration request - // has completed, use DescribeType to return detailed information about an - // extension. + // status and type and version identifiers. + // + // When you initiate a registration request using RegisterType, you can then use DescribeTypeRegistration to monitor + // the progress of that registration request. + // + // Once the registration request has completed, use DescribeType to return detailed + // information about an extension. DescribeTypeRegistration(ctx context.Context, params *DescribeTypeRegistrationInput, optFns ...func(*Options)) (*DescribeTypeRegistrationOutput, error) // Detects whether a stack's actual configuration differs, or has drifted, from // its expected configuration, as defined in the stack template and any values @@ -246,59 +301,75 @@ type CloudFormation interface { // resource with its expected template configuration. Only resource properties // explicitly defined in the stack template are checked for drift. A stack is // considered to have drifted if one or more of its resources differ from their - // expected template configurations. For more information, see Detecting - // Unregulated Configuration Changes to Stacks and Resources (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-stack-drift.html) - // . Use DetectStackDrift to detect drift on all supported resources for a given - // stack, or DetectStackResourceDrift to detect drift on individual resources. For - // a list of stack resources that currently support drift detection, see Resources - // that Support Drift Detection (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-stack-drift-resource-list.html) - // . DetectStackDrift can take up to several minutes, depending on the number of - // resources contained within the stack. Use DescribeStackDriftDetectionStatus to - // monitor the progress of a detect stack drift operation. Once the drift detection - // operation has completed, use DescribeStackResourceDrifts to return drift - // information about the stack and its resources. When detecting drift on a stack, - // CloudFormation doesn't detect drift on any nested stacks belonging to that - // stack. Perform DetectStackDrift directly on the nested stack itself. + // expected template configurations. For more information, see [Detecting Unregulated Configuration Changes to Stacks and Resources]. + // + // Use DetectStackDrift to detect drift on all supported resources for a given + // stack, or DetectStackResourceDriftto detect drift on individual resources. + // + // For a list of stack resources that currently support drift detection, see [Resources that Support Drift Detection]. + // + // DetectStackDrift can take up to several minutes, depending on the number of + // resources contained within the stack. Use DescribeStackDriftDetectionStatusto monitor the progress of a detect + // stack drift operation. Once the drift detection operation has completed, use DescribeStackResourceDriftsto + // return drift information about the stack and its resources. + // + // When detecting drift on a stack, CloudFormation doesn't detect drift on any + // nested stacks belonging to that stack. Perform DetectStackDrift directly on the + // nested stack itself. + // + // [Resources that Support Drift Detection]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-stack-drift-resource-list.html + // [Detecting Unregulated Configuration Changes to Stacks and Resources]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-stack-drift.html DetectStackDrift(ctx context.Context, params *DetectStackDriftInput, optFns ...func(*Options)) (*DetectStackDriftOutput, error) // Returns information about whether a resource's actual configuration differs, or // has drifted, from its expected configuration, as defined in the stack template // and any values specified as template parameters. This information includes // actual and expected property values for resources in which CloudFormation // detects drift. Only resource properties explicitly defined in the stack template - // are checked for drift. For more information about stack and resource drift, see - // Detecting Unregulated Configuration Changes to Stacks and Resources (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-stack-drift.html) - // . Use DetectStackResourceDrift to detect drift on individual resources, or - // DetectStackDrift to detect drift on all resources in a given stack that support - // drift detection. Resources that don't currently support drift detection can't be - // checked. For a list of resources that support drift detection, see Resources - // that Support Drift Detection (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-stack-drift-resource-list.html) + // are checked for drift. For more information about stack and resource drift, see [Detecting Unregulated Configuration Changes to Stacks and Resources] // . + // + // Use DetectStackResourceDrift to detect drift on individual resources, or DetectStackDrift to + // detect drift on all resources in a given stack that support drift detection. + // + // Resources that don't currently support drift detection can't be checked. For a + // list of resources that support drift detection, see [Resources that Support Drift Detection]. + // + // [Resources that Support Drift Detection]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-stack-drift-resource-list.html + // [Detecting Unregulated Configuration Changes to Stacks and Resources]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-stack-drift.html DetectStackResourceDrift(ctx context.Context, params *DetectStackResourceDriftInput, optFns ...func(*Options)) (*DetectStackResourceDriftOutput, error) // Detect drift on a stack set. When CloudFormation performs drift detection on a // stack set, it performs drift detection on the stack associated with each stack - // instance in the stack set. For more information, see How CloudFormation - // performs drift detection on a stack set (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-drift.html) - // . DetectStackSetDrift returns the OperationId of the stack set drift detection - // operation. Use this operation id with DescribeStackSetOperation to monitor the - // progress of the drift detection operation. The drift detection operation may - // take some time, depending on the number of stack instances included in the stack - // set, in addition to the number of resources included in each stack. Once the - // operation has completed, use the following actions to return drift information: - // - Use DescribeStackSet to return detailed information about the stack set, - // including detailed information about the last completed drift operation - // performed on the stack set. (Information about drift operations that are in - // progress isn't included.) - // - Use ListStackInstances to return a list of stack instances belonging to the - // stack set, including the drift status and last drift time checked of each - // instance. - // - Use DescribeStackInstance to return detailed information about a specific - // stack instance, including its drift status and last drift time checked. + // instance in the stack set. For more information, see [How CloudFormation performs drift detection on a stack set]. + // + // DetectStackSetDrift returns the OperationId of the stack set drift detection + // operation. Use this operation id with DescribeStackSetOperationto monitor the progress of the drift + // detection operation. The drift detection operation may take some time, depending + // on the number of stack instances included in the stack set, in addition to the + // number of resources included in each stack. + // + // Once the operation has completed, use the following actions to return drift + // information: + // + // - Use DescribeStackSetto return detailed information about the stack set, including detailed + // information about the last completed drift operation performed on the stack set. + // (Information about drift operations that are in progress isn't included.) + // + // - Use ListStackInstancesto return a list of stack instances belonging to the stack set, + // including the drift status and last drift time checked of each instance. + // + // - Use DescribeStackInstanceto return detailed information about a specific stack instance, + // including its drift status and last drift time checked. // // For more information about performing a drift detection operation on a stack - // set, see Detecting unmanaged changes in stack sets (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-drift.html) - // . You can only run a single drift detection operation on a given stack set at - // one time. To stop a drift detection stack set operation, use - // StopStackSetOperation . + // set, see [Detecting unmanaged changes in stack sets]. + // + // You can only run a single drift detection operation on a given stack set at one + // time. + // + // To stop a drift detection stack set operation, use StopStackSetOperation. + // + // [Detecting unmanaged changes in stack sets]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-drift.html + // [How CloudFormation performs drift detection on a stack set]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-drift.html DetectStackSetDrift(ctx context.Context, params *DetectStackSetDriftInput, optFns ...func(*Options)) (*DetectStackSetDriftOutput, error) // Returns the estimated monthly cost of a template. The return value is an Amazon // Web Services Simple Monthly Calculator URL with a query string that describes @@ -306,13 +377,18 @@ type CloudFormation interface { EstimateTemplateCost(ctx context.Context, params *EstimateTemplateCostInput, optFns ...func(*Options)) (*EstimateTemplateCostOutput, error) // Updates a stack using the input information that was provided when the // specified change set was created. After the call successfully completes, - // CloudFormation starts updating the stack. Use the DescribeStacks action to view - // the status of the update. When you execute a change set, CloudFormation deletes - // all other change sets associated with the stack because they aren't valid for - // the updated stack. If a stack policy is associated with the stack, - // CloudFormation enforces the policy during the update. You can't specify a - // temporary stack policy that overrides the current policy. To create a change set - // for the entire stack hierarchy, IncludeNestedStacks must have been set to True . + // CloudFormation starts updating the stack. Use the DescribeStacksaction to view the status of + // the update. + // + // When you execute a change set, CloudFormation deletes all other change sets + // associated with the stack because they aren't valid for the updated stack. + // + // If a stack policy is associated with the stack, CloudFormation enforces the + // policy during the update. You can't specify a temporary stack policy that + // overrides the current policy. + // + // To create a change set for the entire stack hierarchy, IncludeNestedStacks must + // have been set to True . ExecuteChangeSet(ctx context.Context, params *ExecuteChangeSetInput, optFns ...func(*Options)) (*ExecuteChangeSetOutput, error) // Retrieves a generated template. If the template is in an InProgress or Pending // status then the template returned will be the template when the template was @@ -323,17 +399,22 @@ type CloudFormation interface { // policy, a null value is returned. GetStackPolicy(ctx context.Context, params *GetStackPolicyInput, optFns ...func(*Options)) (*GetStackPolicyOutput, error) // Returns the template body for a specified stack. You can get the template for - // running or deleted stacks. For deleted stacks, GetTemplate returns the template - // for up to 90 days after the stack has been deleted. If the template doesn't - // exist, a ValidationError is returned. + // running or deleted stacks. + // + // For deleted stacks, GetTemplate returns the template for up to 90 days after + // the stack has been deleted. + // + // If the template doesn't exist, a ValidationError is returned. GetTemplate(ctx context.Context, params *GetTemplateInput, optFns ...func(*Options)) (*GetTemplateOutput, error) // Returns information about a new or existing template. The GetTemplateSummary // action is useful for viewing parameter information, such as default parameter // values and parameter types, before you create or update a stack or stack set. + // // You can use the GetTemplateSummary action when you submit a template, or you - // can get template information for a stack set, or a running or deleted stack. For - // deleted stacks, GetTemplateSummary returns the template information for up to - // 90 days after the stack has been deleted. If the template doesn't exist, a + // can get template information for a stack set, or a running or deleted stack. + // + // For deleted stacks, GetTemplateSummary returns the template information for up + // to 90 days after the stack has been deleted. If the template doesn't exist, a // ValidationError is returned. GetTemplateSummary(ctx context.Context, params *GetTemplateSummaryInput, optFns ...func(*Options)) (*GetTemplateSummaryOutput, error) // Import existing stacks into a new stack sets. Use the stack import operation to @@ -347,18 +428,23 @@ type CloudFormation interface { ListChangeSets(ctx context.Context, params *ListChangeSetsInput, optFns ...func(*Options)) (*ListChangeSetsOutput, error) // Lists all exported output values in the account and Region in which you call // this action. Use this action to see the exported output values that you can - // import into other stacks. To import values, use the Fn::ImportValue (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-importvalue.html) - // function. For more information, see CloudFormation export stack output values (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-stack-exports.html) - // . + // import into other stacks. To import values, use the [Fn::ImportValue]function. + // + // For more information, see [CloudFormation export stack output values]. + // + // [CloudFormation export stack output values]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-stack-exports.html + // [Fn::ImportValue]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-importvalue.html ListExports(ctx context.Context, params *ListExportsInput, optFns ...func(*Options)) (*ListExportsOutput, error) // Lists your generated templates in this Region. ListGeneratedTemplates(ctx context.Context, params *ListGeneratedTemplatesInput, optFns ...func(*Options)) (*ListGeneratedTemplatesOutput, error) // Lists all stacks that are importing an exported output value. To modify or // remove an exported output value, first use this action to see which stacks are - // using it. To see the exported output values in your account, see ListExports . - // For more information about importing an exported output value, see the - // Fn::ImportValue (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-importvalue.html) + // using it. To see the exported output values in your account, see ListExports. + // + // For more information about importing an exported output value, see the [Fn::ImportValue] // function. + // + // [Fn::ImportValue]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-importvalue.html ListImports(ctx context.Context, params *ListImportsInput, optFns ...func(*Options)) (*ListImportsOutput, error) // Lists the related resources for a list of resources from a resource scan. The // response indicates whether each returned resource is already managed by @@ -373,6 +459,7 @@ type CloudFormation interface { // 10 resource scans. ListResourceScans(ctx context.Context, params *ListResourceScansInput, optFns ...func(*Options)) (*ListResourceScansOutput, error) // Returns drift information for resources in a stack instance. + // // ListStackInstanceResourceDrifts returns drift information for the most recent // drift detection operation. If an operation is in progress, it may only return // partial results. @@ -382,9 +469,10 @@ type CloudFormation interface { // a specific Amazon Web Services account name or Region, or that have a specific // status. ListStackInstances(ctx context.Context, params *ListStackInstancesInput, optFns ...func(*Options)) (*ListStackInstancesOutput, error) - // Returns descriptions of all resources of the specified stack. For deleted - // stacks, ListStackResources returns resource information for up to 90 days after - // the stack has been deleted. + // Returns descriptions of all resources of the specified stack. + // + // For deleted stacks, ListStackResources returns resource information for up to + // 90 days after the stack has been deleted. ListStackResources(ctx context.Context, params *ListStackResourcesInput, optFns ...func(*Options)) (*ListStackResourcesOutput, error) // Returns summary information about deployment targets for a stack set. ListStackSetAutoDeploymentTargets(ctx context.Context, params *ListStackSetAutoDeploymentTargetsInput, optFns ...func(*Options)) (*ListStackSetAutoDeploymentTargetsOutput, error) @@ -393,12 +481,15 @@ type CloudFormation interface { // Returns summary information about operations performed on a stack set. ListStackSetOperations(ctx context.Context, params *ListStackSetOperationsInput, optFns ...func(*Options)) (*ListStackSetOperationsOutput, error) // Returns summary information about stack sets that are associated with the user. + // // - [Self-managed permissions] If you set the CallAs parameter to SELF while // signed in to your Amazon Web Services account, ListStackSets returns all // self-managed stack sets in your Amazon Web Services account. + // // - [Service-managed permissions] If you set the CallAs parameter to SELF while // signed in to the organization's management account, ListStackSets returns all // stack sets in the management account. + // // - [Service-managed permissions] If you set the CallAs parameter to // DELEGATED_ADMIN while signed in to your member account, ListStackSets returns // all stack sets with service-managed permissions in the management account. @@ -418,69 +509,97 @@ type CloudFormation interface { ListTypes(ctx context.Context, params *ListTypesInput, optFns ...func(*Options)) (*ListTypesOutput, error) // Publishes the specified extension to the CloudFormation registry as a public // extension in this Region. Public extensions are available for use by all - // CloudFormation users. For more information about publishing extensions, see - // Publishing extensions to make them available for public use (https://docs.aws.amazon.com/cloudformation-cli/latest/userguide/publish-extension.html) - // in the CloudFormation CLI User Guide. To publish an extension, you must be - // registered as a publisher with CloudFormation. For more information, see - // RegisterPublisher (https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_RegisterPublisher.html) - // . + // CloudFormation users. For more information about publishing extensions, see [Publishing extensions to make them available for public use]in + // the CloudFormation CLI User Guide. + // + // To publish an extension, you must be registered as a publisher with + // CloudFormation. For more information, see [RegisterPublisher]. + // + // [Publishing extensions to make them available for public use]: https://docs.aws.amazon.com/cloudformation-cli/latest/userguide/publish-extension.html + // [RegisterPublisher]: https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_RegisterPublisher.html PublishType(ctx context.Context, params *PublishTypeInput, optFns ...func(*Options)) (*PublishTypeOutput, error) - // Reports progress of a resource handler to CloudFormation. Reserved for use by - // the CloudFormation CLI (https://docs.aws.amazon.com/cloudformation-cli/latest/userguide/what-is-cloudformation-cli.html) - // . Don't use this API in your code. + // Reports progress of a resource handler to CloudFormation. + // + // Reserved for use by the [CloudFormation CLI]. Don't use this API in your code. + // + // [CloudFormation CLI]: https://docs.aws.amazon.com/cloudformation-cli/latest/userguide/what-is-cloudformation-cli.html RecordHandlerProgress(ctx context.Context, params *RecordHandlerProgressInput, optFns ...func(*Options)) (*RecordHandlerProgressOutput, error) // Registers your account as a publisher of public extensions in the // CloudFormation registry. Public extensions are available for use by all // CloudFormation users. This publisher ID applies to your account in all Amazon - // Web Services Regions. For information about requirements for registering as a - // public extension publisher, see Registering your account to publish - // CloudFormation extensions (https://docs.aws.amazon.com/cloudformation-cli/latest/userguide/publish-extension.html#publish-extension-prereqs) - // in the CloudFormation CLI User Guide. + // Web Services Regions. + // + // For information about requirements for registering as a public extension + // publisher, see [Registering your account to publish CloudFormation extensions]in the CloudFormation CLI User Guide. + // + // [Registering your account to publish CloudFormation extensions]: https://docs.aws.amazon.com/cloudformation-cli/latest/userguide/publish-extension.html#publish-extension-prereqs RegisterPublisher(ctx context.Context, params *RegisterPublisherInput, optFns ...func(*Options)) (*RegisterPublisherOutput, error) // Registers an extension with the CloudFormation service. Registering an // extension makes it available for use in CloudFormation templates in your Amazon // Web Services account, and includes: + // // - Validating the extension schema. + // // - Determining which handlers, if any, have been specified for the extension. + // // - Making the extension available for use in your account. // // For more information about how to develop extensions and ready them for - // registration, see Creating Resource Providers (https://docs.aws.amazon.com/cloudformation-cli/latest/userguide/resource-types.html) - // in the CloudFormation CLI User Guide. You can have a maximum of 50 resource - // extension versions registered at a time. This maximum is per account and per - // Region. Use DeregisterType (https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_DeregisterType.html) - // to deregister specific extension versions if necessary. Once you have initiated - // a registration request using RegisterType , you can use DescribeTypeRegistration - // to monitor the progress of the registration request. Once you have registered a - // private extension in your account and Region, use SetTypeConfiguration (https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_SetTypeConfiguration.html) + // registration, see [Creating Resource Providers]in the CloudFormation CLI User Guide. + // + // You can have a maximum of 50 resource extension versions registered at a time. + // This maximum is per account and per Region. Use [DeregisterType]to deregister specific + // extension versions if necessary. + // + // Once you have initiated a registration request using RegisterType, you can use DescribeTypeRegistration to monitor + // the progress of the registration request. + // + // Once you have registered a private extension in your account and Region, use [SetTypeConfiguration] // to specify configuration properties for the extension. For more information, see - // Configuring extensions at the account level (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/registry-private.html#registry-set-configuration) - // in the CloudFormation User Guide. + // [Configuring extensions at the account level]in the CloudFormation User Guide. + // + // [SetTypeConfiguration]: https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_SetTypeConfiguration.html + // [Creating Resource Providers]: https://docs.aws.amazon.com/cloudformation-cli/latest/userguide/resource-types.html + // [Configuring extensions at the account level]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/registry-private.html#registry-set-configuration + // [DeregisterType]: https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_DeregisterType.html RegisterType(ctx context.Context, params *RegisterTypeInput, optFns ...func(*Options)) (*RegisterTypeOutput, error) // When specifying RollbackStack , you preserve the state of previously provisioned // resources when an operation fails. You can check the status of the stack through - // the DescribeStacks operation. Rolls back the specified stack to the last known - // stable state from CREATE_FAILED or UPDATE_FAILED stack statuses. This operation - // will delete a stack if it doesn't contain a last known stable state. A last - // known stable state includes any status in a *_COMPLETE . This includes the - // following stack statuses. + // the DescribeStacksoperation. + // + // Rolls back the specified stack to the last known stable state from CREATE_FAILED + // or UPDATE_FAILED stack statuses. + // + // This operation will delete a stack if it doesn't contain a last known stable + // state. A last known stable state includes any status in a *_COMPLETE . This + // includes the following stack statuses. + // // - CREATE_COMPLETE + // // - UPDATE_COMPLETE + // // - UPDATE_ROLLBACK_COMPLETE + // // - IMPORT_COMPLETE + // // - IMPORT_ROLLBACK_COMPLETE RollbackStack(ctx context.Context, params *RollbackStackInput, optFns ...func(*Options)) (*RollbackStackOutput, error) // Sets a stack policy for a specified stack. SetStackPolicy(ctx context.Context, params *SetStackPolicyInput, optFns ...func(*Options)) (*SetStackPolicyOutput, error) // Specifies the configuration data for a registered CloudFormation extension, in - // the given account and Region. To view the current configuration data for an - // extension, refer to the ConfigurationSchema element of DescribeType (https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_DescribeType.html) - // . For more information, see Configuring extensions at the account level (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/registry-private.html#registry-set-configuration) - // in the CloudFormation User Guide. It's strongly recommended that you use dynamic - // references to restrict sensitive configuration definitions, such as third-party - // credentials. For more details on dynamic references, see Using dynamic - // references to specify template values (https://docs.aws.amazon.com/) in the + // the given account and Region. + // + // To view the current configuration data for an extension, refer to the + // ConfigurationSchema element of [DescribeType]. For more information, see [Configuring extensions at the account level] in the // CloudFormation User Guide. + // + // It's strongly recommended that you use dynamic references to restrict sensitive + // configuration definitions, such as third-party credentials. For more details on + // dynamic references, see [Using dynamic references to specify template values]in the CloudFormation User Guide. + // + // [DescribeType]: https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_DescribeType.html + // [Using dynamic references to specify template values]: https://docs.aws.amazon.com/ + // [Configuring extensions at the account level]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/registry-private.html#registry-set-configuration SetTypeConfiguration(ctx context.Context, params *SetTypeConfigurationInput, optFns ...func(*Options)) (*SetTypeConfigurationOutput, error) // Specify the default version of an extension. The default version of an // extension will be used in CloudFormation operations. @@ -501,24 +620,32 @@ type CloudFormation interface { StopStackSetOperation(ctx context.Context, params *StopStackSetOperationInput, optFns ...func(*Options)) (*StopStackSetOperationOutput, error) // Tests a registered extension to make sure it meets all necessary requirements // for being published in the CloudFormation registry. + // // - For resource types, this includes passing all contracts tests defined for // the type. + // // - For modules, this includes determining if the module's model meets all // necessary requirements. // - // For more information, see Testing your public extension prior to publishing (https://docs.aws.amazon.com/cloudformation-cli/latest/userguide/publish-extension.html#publish-extension-testing) - // in the CloudFormation CLI User Guide. If you don't specify a version, - // CloudFormation uses the default version of the extension in your account and - // Region for testing. To perform testing, CloudFormation assumes the execution - // role specified when the type was registered. For more information, see - // RegisterType (https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_RegisterType.html) - // . Once you've initiated testing on an extension using TestType , you can pass - // the returned TypeVersionArn into DescribeType (https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_DescribeType.html) - // to monitor the current test status and test status description for the - // extension. An extension must have a test status of PASSED before it can be - // published. For more information, see Publishing extensions to make them - // available for public use (https://docs.aws.amazon.com/cloudformation-cli/latest/userguide/resource-type-publish.html) - // in the CloudFormation CLI User Guide. + // For more information, see [Testing your public extension prior to publishing] in the CloudFormation CLI User Guide. + // + // If you don't specify a version, CloudFormation uses the default version of the + // extension in your account and Region for testing. + // + // To perform testing, CloudFormation assumes the execution role specified when + // the type was registered. For more information, see [RegisterType]. + // + // Once you've initiated testing on an extension using TestType , you can pass the + // returned TypeVersionArn into [DescribeType] to monitor the current test status and test + // status description for the extension. + // + // An extension must have a test status of PASSED before it can be published. For + // more information, see [Publishing extensions to make them available for public use]in the CloudFormation CLI User Guide. + // + // [DescribeType]: https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_DescribeType.html + // [Testing your public extension prior to publishing]: https://docs.aws.amazon.com/cloudformation-cli/latest/userguide/publish-extension.html#publish-extension-testing + // [RegisterType]: https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_RegisterType.html + // [Publishing extensions to make them available for public use]: https://docs.aws.amazon.com/cloudformation-cli/latest/userguide/resource-type-publish.html TestType(ctx context.Context, params *TestTypeInput, optFns ...func(*Options)) (*TestTypeOutput, error) // Updates a generated template. This can be used to change the name, add and // remove resources, refresh resources, and change the DeletionPolicy and @@ -527,42 +654,54 @@ type CloudFormation interface { UpdateGeneratedTemplate(ctx context.Context, params *UpdateGeneratedTemplateInput, optFns ...func(*Options)) (*UpdateGeneratedTemplateOutput, error) // Updates a stack as specified in the template. After the call completes // successfully, the stack update starts. You can check the status of the stack - // through the DescribeStacks action. To get a copy of the template for an - // existing stack, you can use the GetTemplate action. For more information about - // creating an update template, updating a stack, and monitoring the progress of - // the update, see Updating a Stack (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks.html) - // . + // through the DescribeStacksaction. + // + // To get a copy of the template for an existing stack, you can use the GetTemplate action. + // + // For more information about creating an update template, updating a stack, and + // monitoring the progress of the update, see [Updating a Stack]. + // + // [Updating a Stack]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks.html UpdateStack(ctx context.Context, params *UpdateStackInput, optFns ...func(*Options)) (*UpdateStackOutput, error) // Updates the parameter values for stack instances for the specified accounts, // within the specified Amazon Web Services Regions. A stack instance refers to a - // stack in a specific account and Region. You can only update stack instances in - // Amazon Web Services Regions and accounts where they already exist; to create - // additional stack instances, use CreateStackInstances (https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_CreateStackInstances.html) - // . During stack set updates, any parameters overridden for a stack instance - // aren't updated, but retain their overridden value. You can only update the - // parameter values that are specified in the stack set; to add or delete a - // parameter itself, use UpdateStackSet (https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_UpdateStackSet.html) - // to update the stack set template. If you add a parameter to a template, before - // you can override the parameter value specified in the stack set you must first - // use UpdateStackSet (https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_UpdateStackSet.html) - // to update all stack instances with the updated template and parameter value - // specified in the stack set. Once a stack instance has been updated with the new - // parameter, you can then override the parameter value using UpdateStackInstances . + // stack in a specific account and Region. + // + // You can only update stack instances in Amazon Web Services Regions and accounts + // where they already exist; to create additional stack instances, use [CreateStackInstances]. + // + // During stack set updates, any parameters overridden for a stack instance aren't + // updated, but retain their overridden value. + // + // You can only update the parameter values that are specified in the stack set; + // to add or delete a parameter itself, use [UpdateStackSet]to update the stack set template. If + // you add a parameter to a template, before you can override the parameter value + // specified in the stack set you must first use [UpdateStackSet]to update all stack instances + // with the updated template and parameter value specified in the stack set. Once a + // stack instance has been updated with the new parameter, you can then override + // the parameter value using UpdateStackInstances . + // + // [CreateStackInstances]: https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_CreateStackInstances.html + // [UpdateStackSet]: https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_UpdateStackSet.html UpdateStackInstances(ctx context.Context, params *UpdateStackInstancesInput, optFns ...func(*Options)) (*UpdateStackInstancesOutput, error) // Updates the stack set, and associated stack instances in the specified accounts - // and Amazon Web Services Regions. Even if the stack set operation created by - // updating the stack set fails (completely or partially, below or above a - // specified failure tolerance), the stack set is updated with your changes. - // Subsequent CreateStackInstances calls on the specified stack set use the - // updated stack set. + // and Amazon Web Services Regions. + // + // Even if the stack set operation created by updating the stack set fails + // (completely or partially, below or above a specified failure tolerance), the + // stack set is updated with your changes. Subsequent CreateStackInstancescalls on the specified stack + // set use the updated stack set. UpdateStackSet(ctx context.Context, params *UpdateStackSetInput, optFns ...func(*Options)) (*UpdateStackSetOutput, error) // Updates termination protection for the specified stack. If a user attempts to // delete a stack with termination protection enabled, the operation fails and the - // stack remains unchanged. For more information, see Protecting a Stack From - // Being Deleted (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-protect-stacks.html) - // in the CloudFormation User Guide. For nested stacks (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-nested-stacks.html) - // , termination protection is set on the root stack and can't be changed directly - // on the nested stack. + // stack remains unchanged. For more information, see [Protecting a Stack From Being Deleted]in the CloudFormation User + // Guide. + // + // For [nested stacks], termination protection is set on the root stack and can't be changed + // directly on the nested stack. + // + // [Protecting a Stack From Being Deleted]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-protect-stacks.html + // [nested stacks]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-nested-stacks.html UpdateTerminationProtection(ctx context.Context, params *UpdateTerminationProtectionInput, optFns ...func(*Options)) (*UpdateTerminationProtectionOutput, error) // Validates a specified template. CloudFormation first checks if the template is // valid JSON. If it isn't, CloudFormation checks if the template is valid YAML. If diff --git a/pkg/awsapi/cloudtrail.go b/pkg/awsapi/cloudtrail.go index 772f5fb1c6..3817edc8e1 100644 --- a/pkg/awsapi/cloudtrail.go +++ b/pkg/awsapi/cloudtrail.go @@ -49,10 +49,12 @@ type CloudTrail interface { // period of seven days. TerminationProtectionEnabled must be set to False on the // event data store and the FederationStatus must be DISABLED . You cannot delete // an event data store if TerminationProtectionEnabled is True or the - // FederationStatus is ENABLED . After you run DeleteEventDataStore on an event - // data store, you cannot run ListQueries , DescribeQuery , or GetQueryResults on - // queries that are using an event data store in a PENDING_DELETION state. An - // event data store in the PENDING_DELETION state does not incur costs. + // FederationStatus is ENABLED . + // + // After you run DeleteEventDataStore on an event data store, you cannot run + // ListQueries , DescribeQuery , or GetQueryResults on queries that are using an + // event data store in a PENDING_DELETION state. An event data store in the + // PENDING_DELETION state does not incur costs. DeleteEventDataStore(ctx context.Context, params *DeleteEventDataStoreInput, optFns ...func(*Options)) (*DeleteEventDataStoreOutput, error) // Deletes the resource-based policy attached to the CloudTrail channel. DeleteResourcePolicy(ctx context.Context, params *DeleteResourcePolicyInput, optFns ...func(*Options)) (*DeleteResourcePolicyOutput, error) @@ -66,34 +68,42 @@ type CloudTrail interface { // Returns metadata about a query, including query run time in milliseconds, // number of events scanned and matched, and query status. If the query results // were delivered to an S3 bucket, the response also provides the S3 URI and the - // delivery status. You must specify either a QueryID or a QueryAlias . Specifying - // the QueryAlias parameter returns information about the last query run for the - // alias. + // delivery status. + // + // You must specify either a QueryID or a QueryAlias . Specifying the QueryAlias + // parameter returns information about the last query run for the alias. DescribeQuery(ctx context.Context, params *DescribeQueryInput, optFns ...func(*Options)) (*DescribeQueryOutput, error) // Retrieves settings for one or more trails associated with the current Region // for your account. DescribeTrails(ctx context.Context, params *DescribeTrailsInput, optFns ...func(*Options)) (*DescribeTrailsOutput, error) - // Disables Lake query federation on the specified event data store. When you + // Disables Lake query federation on the specified event data store. When you + // // disable federation, CloudTrail disables the integration with Glue, Lake // Formation, and Amazon Athena. After disabling Lake query federation, you can no - // longer query your event data in Amazon Athena. No CloudTrail Lake data is - // deleted when you disable federation and you can continue to run queries in - // CloudTrail Lake. + // longer query your event data in Amazon Athena. + // + // No CloudTrail Lake data is deleted when you disable federation and you can + // continue to run queries in CloudTrail Lake. DisableFederation(ctx context.Context, params *DisableFederationInput, optFns ...func(*Options)) (*DisableFederationOutput, error) - // Enables Lake query federation on the specified event data store. Federating an + // Enables Lake query federation on the specified event data store. Federating an + // // event data store lets you view the metadata associated with the event data store - // in the Glue Data Catalog (https://docs.aws.amazon.com/glue/latest/dg/components-overview.html#data-catalog-intro) - // and run SQL queries against your event data using Amazon Athena. The table - // metadata stored in the Glue Data Catalog lets the Athena query engine know how - // to find, read, and process the data that you want to query. When you enable Lake - // query federation, CloudTrail creates a managed database named aws:cloudtrail - // (if the database doesn't already exist) and a managed federated table in the - // Glue Data Catalog. The event data store ID is used for the table name. - // CloudTrail registers the role ARN and event data store in Lake Formation (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-federation-lake-formation.html) - // , the service responsible for allowing fine-grained access control of the - // federated resources in the Glue Data Catalog. For more information about Lake - // query federation, see Federate an event data store (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-federation.html) - // . + // in the Glue [Data Catalog]and run SQL queries against your event data using Amazon Athena. + // The table metadata stored in the Glue Data Catalog lets the Athena query engine + // know how to find, read, and process the data that you want to query. + // + // When you enable Lake query federation, CloudTrail creates a managed database + // named aws:cloudtrail (if the database doesn't already exist) and a managed + // federated table in the Glue Data Catalog. The event data store ID is used for + // the table name. CloudTrail registers the role ARN and event data store in [Lake Formation], the + // service responsible for allowing fine-grained access control of the federated + // resources in the Glue Data Catalog. + // + // For more information about Lake query federation, see [Federate an event data store]. + // + // [Federate an event data store]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-federation.html + // [Lake Formation]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/query-federation-lake-formation.html + // [Data Catalog]: https://docs.aws.amazon.com/glue/latest/dg/components-overview.html#data-catalog-intro EnableFederation(ctx context.Context, params *EnableFederationInput, optFns ...func(*Options)) (*EnableFederationOutput, error) // Returns information about a specific channel. GetChannel(ctx context.Context, params *GetChannelInput, optFns ...func(*Options)) (*GetChannelOutput, error) @@ -105,14 +115,21 @@ type CloudTrail interface { // // - If your event selector includes read-only events, write-only events, or all // events. This applies to both management events and data events. + // // - If your event selector includes management events. + // // - If your event selector includes data events, the resources on which you are // logging data events. // // For more information about logging management and data events, see the // following topics in the CloudTrail User Guide: - // - Logging management events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-management-events-with-cloudtrail.html) - // - Logging data events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html) + // + // [Logging management events] + // + // [Logging data events] + // + // [Logging management events]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-management-events-with-cloudtrail.html + // [Logging data events]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html GetEventSelectors(ctx context.Context, params *GetEventSelectorsInput, optFns ...func(*Options)) (*GetEventSelectorsOutput, error) // Returns information about a specific import. GetImport(ctx context.Context, params *GetImportInput, optFns ...func(*Options)) (*GetImportOutput, error) @@ -121,17 +138,21 @@ type CloudTrail interface { // Insights event logging is enabled on the trail or event data store, and if it // is, which Insights types are enabled. If you run GetInsightSelectors on a trail // or event data store that does not have Insights events enabled, the operation - // throws the exception InsightNotEnabledException Specify either the - // EventDataStore parameter to get Insights event selectors for an event data - // store, or the TrailName parameter to the get Insights event selectors for a - // trail. You cannot specify these parameters together. For more information, see - // Logging CloudTrail Insights events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-insights-events-with-cloudtrail.html) - // in the CloudTrail User Guide. + // throws the exception InsightNotEnabledException + // + // Specify either the EventDataStore parameter to get Insights event selectors for + // an event data store, or the TrailName parameter to the get Insights event + // selectors for a trail. You cannot specify these parameters together. + // + // For more information, see [Logging CloudTrail Insights events] in the CloudTrail User Guide. + // + // [Logging CloudTrail Insights events]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-insights-events-with-cloudtrail.html GetInsightSelectors(ctx context.Context, params *GetInsightSelectorsInput, optFns ...func(*Options)) (*GetInsightSelectorsOutput, error) // Gets event data results of a query. You must specify the QueryID value returned // by the StartQuery operation. GetQueryResults(ctx context.Context, params *GetQueryResultsInput, optFns ...func(*Options)) (*GetQueryResultsOutput, error) - // Retrieves the JSON text of the resource-based policy document attached to the + // Retrieves the JSON text of the resource-based policy document attached to the + // // CloudTrail channel. GetResourcePolicy(ctx context.Context, params *GetResourcePolicyInput, optFns ...func(*Options)) (*GetResourcePolicyOutput, error) // Returns settings information for a specified trail. @@ -149,18 +170,25 @@ type CloudTrail interface { ListEventDataStores(ctx context.Context, params *ListEventDataStoresInput, optFns ...func(*Options)) (*ListEventDataStoresOutput, error) // Returns a list of failures for the specified import. ListImportFailures(ctx context.Context, params *ListImportFailuresInput, optFns ...func(*Options)) (*ListImportFailuresOutput, error) - // Returns information on all imports, or a select set of imports by ImportStatus + // Returns information on all imports, or a select set of imports by ImportStatus + // // or Destination . ListImports(ctx context.Context, params *ListImportsInput, optFns ...func(*Options)) (*ListImportsOutput, error) // Returns Insights metrics data for trails that have enabled Insights. The // request must include the EventSource , EventName , and InsightType parameters. + // // If the InsightType is set to ApiErrorRateInsight , the request must also include - // the ErrorCode parameter. The following are the available time periods for - // ListInsightsMetricData . Each cutoff is inclusive. + // the ErrorCode parameter. + // + // The following are the available time periods for ListInsightsMetricData . Each + // cutoff is inclusive. + // // - Data points with a period of 60 seconds (1-minute) are available for 15 // days. + // // - Data points with a period of 300 seconds (5-minute) are available for 63 // days. + // // - Data points with a period of 3600 seconds (1 hour) are available for 90 // days. // @@ -170,11 +198,12 @@ type CloudTrail interface { ListInsightsMetricData(ctx context.Context, params *ListInsightsMetricDataInput, optFns ...func(*Options)) (*ListInsightsMetricDataOutput, error) // Returns all public keys whose private keys were used to sign the digest files // within the specified time range. The public key is needed to validate digest - // files that were signed with its corresponding private key. CloudTrail uses - // different private and public key pairs per Region. Each digest file is signed - // with a private key unique to its Region. When you validate a digest file from a - // specific Region, you must look in the same Region for its corresponding public - // key. + // files that were signed with its corresponding private key. + // + // CloudTrail uses different private and public key pairs per Region. Each digest + // file is signed with a private key unique to its Region. When you validate a + // digest file from a specific Region, you must look in the same Region for its + // corresponding public key. ListPublicKeys(ctx context.Context, params *ListPublicKeysInput, optFns ...func(*Options)) (*ListPublicKeysOutput, error) // Returns a list of queries and query statuses for the past seven days. You must // specify an ARN value for EventDataStore . Optionally, to shorten the list of @@ -188,102 +217,137 @@ type CloudTrail interface { ListTags(ctx context.Context, params *ListTagsInput, optFns ...func(*Options)) (*ListTagsOutput, error) // Lists trails that are in the current account. ListTrails(ctx context.Context, params *ListTrailsInput, optFns ...func(*Options)) (*ListTrailsOutput, error) - // Looks up management events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-concepts.html#cloudtrail-concepts-management-events) - // or CloudTrail Insights events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-concepts.html#cloudtrail-concepts-insights-events) - // that are captured by CloudTrail. You can look up events that occurred in a - // Region within the last 90 days. LookupEvents returns recent Insights events for - // trails that enable Insights. To view Insights events for an event data store, - // you can run queries on your Insights event data store, and you can also view the - // Lake dashboard for Insights. Lookup supports the following attributes for - // management events: + // Looks up [management events] or [CloudTrail Insights events] that are captured by CloudTrail. You can look up events that + // occurred in a Region within the last 90 days. + // + // LookupEvents returns recent Insights events for trails that enable Insights. To + // view Insights events for an event data store, you can run queries on your + // Insights event data store, and you can also view the Lake dashboard for + // Insights. + // + // Lookup supports the following attributes for management events: + // // - Amazon Web Services access key + // // - Event ID + // // - Event name + // // - Event source + // // - Read only + // // - Resource name + // // - Resource type + // // - User name // // Lookup supports the following attributes for Insights events: + // // - Event ID + // // - Event name + // // - Event source // // All attributes are optional. The default number of results returned is 50, with // a maximum of 50 possible. The response includes a token that you can use to get - // the next page of results. The rate of lookup requests is limited to two per - // second, per account, per Region. If this limit is exceeded, a throttling error - // occurs. + // the next page of results. + // + // The rate of lookup requests is limited to two per second, per account, per + // Region. If this limit is exceeded, a throttling error occurs. + // + // [CloudTrail Insights events]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-concepts.html#cloudtrail-concepts-insights-events + // [management events]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-concepts.html#cloudtrail-concepts-management-events LookupEvents(ctx context.Context, params *LookupEventsInput, optFns ...func(*Options)) (*LookupEventsOutput, error) // Configures an event selector or advanced event selectors for your trail. Use // event selectors or advanced event selectors to specify management and data event // settings for your trail. If you want your trail to log Insights events, be sure // the event selector enables logging of the Insights event types you want // configured for your trail. For more information about logging Insights events, - // see Logging Insights events for trails (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-insights-events-with-cloudtrail.html) - // in the CloudTrail User Guide. By default, trails created without specific event - // selectors are configured to log all read and write management events, and no - // data events. When an event occurs in your account, CloudTrail evaluates the - // event selectors or advanced event selectors in all trails. For each trail, if - // the event matches any event selector, the trail processes and logs the event. If - // the event doesn't match any event selector, the trail doesn't log the event. + // see [Logging Insights events]in the CloudTrail User Guide. By default, trails created without specific + // event selectors are configured to log all read and write management events, and + // no data events. + // + // When an event occurs in your account, CloudTrail evaluates the event selectors + // or advanced event selectors in all trails. For each trail, if the event matches + // any event selector, the trail processes and logs the event. If the event doesn't + // match any event selector, the trail doesn't log the event. + // // Example + // // - You create an event selector for a trail and specify that you want // write-only events. + // // - The EC2 GetConsoleOutput and RunInstances API operations occur in your // account. + // // - CloudTrail evaluates whether the events match your event selectors. + // // - The RunInstances is a write-only event and it matches your event selector. // The trail logs the event. + // // - The GetConsoleOutput is a read-only event that doesn't match your event // selector. The trail doesn't log the event. // // The PutEventSelectors operation must be called from the Region in which the - // trail was created; otherwise, an InvalidHomeRegionException exception is - // thrown. You can configure up to five event selectors for each trail. For more - // information, see Logging management events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-management-events-with-cloudtrail.html) - // , Logging data events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html) - // , and Quotas in CloudTrail (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/WhatIsCloudTrail-Limits.html) - // in the CloudTrail User Guide. You can add advanced event selectors, and - // conditions for your advanced event selectors, up to a maximum of 500 values for - // all conditions and selectors on a trail. You can use either - // AdvancedEventSelectors or EventSelectors , but not both. If you apply - // AdvancedEventSelectors to a trail, any existing EventSelectors are overwritten. - // For more information about advanced event selectors, see Logging data events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html) - // in the CloudTrail User Guide. + // trail was created; otherwise, an InvalidHomeRegionException exception is thrown. + // + // You can configure up to five event selectors for each trail. For more + // information, see [Logging management events], [Logging data events], and [Quotas in CloudTrail] in the CloudTrail User Guide. + // + // You can add advanced event selectors, and conditions for your advanced event + // selectors, up to a maximum of 500 values for all conditions and selectors on a + // trail. You can use either AdvancedEventSelectors or EventSelectors , but not + // both. If you apply AdvancedEventSelectors to a trail, any existing + // EventSelectors are overwritten. For more information about advanced event + // selectors, see [Logging data events]in the CloudTrail User Guide. + // + // [Logging Insights events]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-insights-events-with-cloudtrail.html + // [Logging management events]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-management-events-with-cloudtrail.html + // [Quotas in CloudTrail]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/WhatIsCloudTrail-Limits.html + // [Logging data events]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-data-events-with-cloudtrail.html PutEventSelectors(ctx context.Context, params *PutEventSelectorsInput, optFns ...func(*Options)) (*PutEventSelectorsOutput, error) // Lets you enable Insights event logging by specifying the Insights selectors // that you want to enable on an existing trail or event data store. You also use // PutInsightSelectors to turn off Insights event logging, by passing an empty list // of Insights types. The valid Insights event types are ApiErrorRateInsight and - // ApiCallRateInsight . To enable Insights on an event data store, you must specify - // the ARNs (or ID suffix of the ARNs) for the source event data store ( - // EventDataStore ) and the destination event data store ( InsightsDestination ). - // The source event data store logs management events and enables Insights. The - // destination event data store logs Insights events based upon the management - // event activity of the source event data store. The source and destination event - // data stores must belong to the same Amazon Web Services account. To log Insights - // events for a trail, you must specify the name ( TrailName ) of the CloudTrail - // trail for which you want to change or add Insights selectors. To log CloudTrail - // Insights events on API call volume, the trail or event data store must log write - // management events. To log CloudTrail Insights events on API error rate, the - // trail or event data store must log read or write management events. You can - // call GetEventSelectors on a trail to check whether the trail logs management - // events. You can call GetEventDataStore on an event data store to check whether - // the event data store logs management events. For more information, see Logging - // CloudTrail Insights events (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-insights-events-with-cloudtrail.html) - // in the CloudTrail User Guide. + // ApiCallRateInsight . + // + // To enable Insights on an event data store, you must specify the ARNs (or ID + // suffix of the ARNs) for the source event data store ( EventDataStore ) and the + // destination event data store ( InsightsDestination ). The source event data + // store logs management events and enables Insights. The destination event data + // store logs Insights events based upon the management event activity of the + // source event data store. The source and destination event data stores must + // belong to the same Amazon Web Services account. + // + // To log Insights events for a trail, you must specify the name ( TrailName ) of + // the CloudTrail trail for which you want to change or add Insights selectors. + // + // To log CloudTrail Insights events on API call volume, the trail or event data + // store must log write management events. To log CloudTrail Insights events on + // API error rate, the trail or event data store must log read or write management + // events. You can call GetEventSelectors on a trail to check whether the trail + // logs management events. You can call GetEventDataStore on an event data store + // to check whether the event data store logs management events. + // + // For more information, see [Logging CloudTrail Insights events] in the CloudTrail User Guide. + // + // [Logging CloudTrail Insights events]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/logging-insights-events-with-cloudtrail.html PutInsightSelectors(ctx context.Context, params *PutInsightSelectorsInput, optFns ...func(*Options)) (*PutInsightSelectorsOutput, error) - // Attaches a resource-based permission policy to a CloudTrail channel that is + // Attaches a resource-based permission policy to a CloudTrail channel that is + // // used for an integration with an event source outside of Amazon Web Services. For - // more information about resource-based policies, see CloudTrail resource-based - // policy examples (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/security_iam_resource-based-policy-examples.html) - // in the CloudTrail User Guide. + // more information about resource-based policies, see [CloudTrail resource-based policy examples]in the CloudTrail User + // Guide. + // + // [CloudTrail resource-based policy examples]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/security_iam_resource-based-policy-examples.html PutResourcePolicy(ctx context.Context, params *PutResourcePolicyInput, optFns ...func(*Options)) (*PutResourcePolicyOutput, error) - // Registers an organization’s member account as the CloudTrail delegated - // administrator (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-delegated-administrator.html) - // . + // Registers an organization’s member account as the CloudTrail [delegated administrator]. + // + // [delegated administrator]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-delegated-administrator.html RegisterOrganizationDelegatedAdmin(ctx context.Context, params *RegisterOrganizationDelegatedAdminInput, optFns ...func(*Options)) (*RegisterOrganizationDelegatedAdminOutput, error) // Removes the specified tags from a trail, event data store, or channel. RemoveTags(ctx context.Context, params *RemoveTagsInput, optFns ...func(*Options)) (*RemoveTagsOutput, error) @@ -297,21 +361,28 @@ type CloudTrail interface { // Status must be STOPPED_INGESTION and the eventCategory must be Management , Data // , or ConfigurationItem . StartEventDataStoreIngestion(ctx context.Context, params *StartEventDataStoreIngestionInput, optFns ...func(*Options)) (*StartEventDataStoreIngestionOutput, error) - // Starts an import of logged trail events from a source S3 bucket to a + // Starts an import of logged trail events from a source S3 bucket to a + // // destination event data store. By default, CloudTrail only imports events // contained in the S3 bucket's CloudTrail prefix and the prefixes inside the // CloudTrail prefix, and does not check prefixes for other Amazon Web Services // services. If you want to import CloudTrail events contained in another prefix, // you must include the prefix in the S3LocationUri . For more considerations about - // importing trail events, see Considerations (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-copy-trail-to-lake.html#cloudtrail-trail-copy-considerations) - // . When you start a new import, the Destinations and ImportSource parameters are + // importing trail events, see [Considerations for copying trail events]in the CloudTrail User Guide. + // + // When you start a new import, the Destinations and ImportSource parameters are // required. Before starting a new import, disable any access control lists (ACLs) // attached to the source S3 bucket. For more information about disabling ACLs, see - // Controlling ownership of objects and disabling ACLs for your bucket (https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html) - // . When you retry an import, the ImportID parameter is required. If the - // destination event data store is for an organization, you must use the management - // account to import trail events. You cannot use the delegated administrator - // account for the organization. + // [Controlling ownership of objects and disabling ACLs for your bucket]. + // + // When you retry an import, the ImportID parameter is required. + // + // If the destination event data store is for an organization, you must use the + // management account to import trail events. You cannot use the delegated + // administrator account for the organization. + // + // [Considerations for copying trail events]: https://docs.aws.amazon.com/awscloudtrail/latest/userguide/cloudtrail-copy-trail-to-lake.html#cloudtrail-trail-copy-considerations + // [Controlling ownership of objects and disabling ACLs for your bucket]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html StartImport(ctx context.Context, params *StartImportInput, optFns ...func(*Options)) (*StartImportOutput, error) // Starts the recording of Amazon Web Services API calls and log file delivery for // a trail. For a trail that is enabled in all Regions, this operation must be @@ -321,11 +392,12 @@ type CloudTrail interface { StartLogging(ctx context.Context, params *StartLoggingInput, optFns ...func(*Options)) (*StartLoggingOutput, error) // Starts a CloudTrail Lake query. Use the QueryStatement parameter to provide // your SQL query, enclosed in single quotation marks. Use the optional - // DeliveryS3Uri parameter to deliver the query results to an S3 bucket. StartQuery - // requires you specify either the QueryStatement parameter, or a QueryAlias and - // any QueryParameters . In the current release, the QueryAlias and QueryParameters - // parameters are used only for the queries that populate the CloudTrail Lake - // dashboards. + // DeliveryS3Uri parameter to deliver the query results to an S3 bucket. + // + // StartQuery requires you specify either the QueryStatement parameter, or a + // QueryAlias and any QueryParameters . In the current release, the QueryAlias and + // QueryParameters parameters are used only for the queries that populate the + // CloudTrail Lake dashboards. StartQuery(ctx context.Context, params *StartQueryInput, optFns ...func(*Options)) (*StartQueryOutput, error) // Stops the ingestion of live events on an event data store specified as either // an ARN or the ID portion of the ARN. To stop ingestion, the event data store @@ -351,12 +423,16 @@ type CloudTrail interface { // in days, and valid values are integers between 7 and 3653 if the BillingMode is // set to EXTENDABLE_RETENTION_PRICING , or between 7 and 2557 if BillingMode is // set to FIXED_RETENTION_PRICING . By default, TerminationProtection is enabled. + // // For event data stores for CloudTrail events, AdvancedEventSelectors includes or // excludes management or data events in your event data store. For more - // information about AdvancedEventSelectors , see AdvancedEventSelectors (https://docs.aws.amazon.com/awscloudtrail/latest/APIReference/API_AdvancedEventSelector.html) - // . For event data stores for CloudTrail Insights events, Config configuration + // information about AdvancedEventSelectors , see [AdvancedEventSelectors]. + // + // For event data stores for CloudTrail Insights events, Config configuration // items, Audit Manager evidence, or non-Amazon Web Services events, // AdvancedEventSelectors includes events of that type in your event data store. + // + // [AdvancedEventSelectors]: https://docs.aws.amazon.com/awscloudtrail/latest/APIReference/API_AdvancedEventSelector.html UpdateEventDataStore(ctx context.Context, params *UpdateEventDataStoreInput, optFns ...func(*Options)) (*UpdateEventDataStoreOutput, error) // Updates trail settings that control what events you are logging, and how to // handle log files. Changes to a trail do not require stopping the CloudTrail diff --git a/pkg/awsapi/cloudwatchlogs.go b/pkg/awsapi/cloudwatchlogs.go index f75b3de033..50ed8023bc 100644 --- a/pkg/awsapi/cloudwatchlogs.go +++ b/pkg/awsapi/cloudwatchlogs.go @@ -18,160 +18,235 @@ type CloudWatchLogs interface { // functional options. Options() cloudwatchlogs.Options // Associates the specified KMS key with either one log group in the account, or - // with all stored CloudWatch Logs query insights results in the account. When you - // use AssociateKmsKey , you specify either the logGroupName parameter or the - // resourceIdentifier parameter. You can't specify both of those parameters in the - // same operation. + // with all stored CloudWatch Logs query insights results in the account. + // + // When you use AssociateKmsKey , you specify either the logGroupName parameter or + // the resourceIdentifier parameter. You can't specify both of those parameters in + // the same operation. + // // - Specify the logGroupName parameter to cause all log events stored in the log // group to be encrypted with that key. Only the log events ingested after the key - // is associated are encrypted with that key. Associating a KMS key with a log - // group overrides any existing associations between the log group and a KMS key. - // After a KMS key is associated with a log group, all newly ingested data for the - // log group is encrypted using the KMS key. This association is stored as long as - // the data encrypted with the KMS key is still within CloudWatch Logs. This - // enables CloudWatch Logs to decrypt this data whenever it is requested. - // Associating a key with a log group does not cause the results of queries of that - // log group to be encrypted with that key. To have query results encrypted with a - // KMS key, you must use an AssociateKmsKey operation with the resourceIdentifier - // parameter that specifies a query-result resource. - // - Specify the resourceIdentifier parameter with a query-result resource, to - // use that key to encrypt the stored results of all future StartQuery (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_StartQuery.html) - // operations in the account. The response from a GetQueryResults (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_GetQueryResults.html) - // operation will still return the query results in plain text. Even if you have - // not associated a key with your query results, the query results are encrypted - // when stored, using the default CloudWatch Logs method. If you run a query from a - // monitoring account that queries logs in a source account, the query results key - // from the monitoring account, if any, is used. + // is associated are encrypted with that key. + // + // Associating a KMS key with a log group overrides any existing associations + // + // between the log group and a KMS key. After a KMS key is associated with a log + // group, all newly ingested data for the log group is encrypted using the KMS key. + // This association is stored as long as the data encrypted with the KMS key is + // still within CloudWatch Logs. This enables CloudWatch Logs to decrypt this data + // whenever it is requested. + // + // Associating a key with a log group does not cause the results of queries of + // + // that log group to be encrypted with that key. To have query results encrypted + // with a KMS key, you must use an AssociateKmsKey operation with the + // resourceIdentifier parameter that specifies a query-result resource. + // + // - Specify the resourceIdentifier parameter with a query-result resource, to + // use that key to encrypt the stored results of all future [StartQuery]operations in the + // account. The response from a [GetQueryResults]operation will still return the query results in + // plain text. + // + // Even if you have not associated a key with your query results, the query + // + // results are encrypted when stored, using the default CloudWatch Logs method. + // + // If you run a query from a monitoring account that queries logs in a source + // + // account, the query results key from the monitoring account, if any, is used. // // If you delete the key that is used to encrypt log events or log group query // results, then all the associated stored log events or query results that were - // encrypted with that key will be unencryptable and unusable. CloudWatch Logs - // supports only symmetric KMS keys. Do not use an associate an asymmetric KMS key - // with your log group or query results. For more information, see Using Symmetric - // and Asymmetric Keys (https://docs.aws.amazon.com/kms/latest/developerguide/symmetric-asymmetric.html) - // . It can take up to 5 minutes for this operation to take effect. If you attempt - // to associate a KMS key with a log group but the KMS key does not exist or the - // KMS key is disabled, you receive an InvalidParameterException error. + // encrypted with that key will be unencryptable and unusable. + // + // CloudWatch Logs supports only symmetric KMS keys. Do not use an associate an + // asymmetric KMS key with your log group or query results. For more information, + // see [Using Symmetric and Asymmetric Keys]. + // + // It can take up to 5 minutes for this operation to take effect. + // + // If you attempt to associate a KMS key with a log group but the KMS key does not + // exist or the KMS key is disabled, you receive an InvalidParameterException + // error. + // + // [Using Symmetric and Asymmetric Keys]: https://docs.aws.amazon.com/kms/latest/developerguide/symmetric-asymmetric.html + // + // [StartQuery]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_StartQuery.html + // [GetQueryResults]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_GetQueryResults.html AssociateKmsKey(ctx context.Context, params *AssociateKmsKeyInput, optFns ...func(*Options)) (*AssociateKmsKeyOutput, error) - // Cancels the specified export task. The task must be in the PENDING or RUNNING - // state. + // Cancels the specified export task. + // + // The task must be in the PENDING or RUNNING state. CancelExportTask(ctx context.Context, params *CancelExportTaskInput, optFns ...func(*Options)) (*CancelExportTaskOutput, error) // Creates a delivery. A delivery is a connection between a logical delivery - // source and a logical delivery destination that you have already created. Only - // some Amazon Web Services services support being configured as a delivery source - // using this operation. These services are listed as Supported [V2 Permissions] in - // the table at Enabling logging from Amazon Web Services services. (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AWS-logs-and-resource-policy.html) + // source and a logical delivery destination that you have already created. + // + // Only some Amazon Web Services services support being configured as a delivery + // source using this operation. These services are listed as Supported [V2 + // Permissions] in the table at [Enabling logging from Amazon Web Services services.] + // // A delivery destination can represent a log group in CloudWatch Logs, an Amazon - // S3 bucket, or a delivery stream in Firehose. To configure logs delivery between - // a supported Amazon Web Services service and a destination, you must do the - // following: + // S3 bucket, or a delivery stream in Firehose. + // + // To configure logs delivery between a supported Amazon Web Services service and + // a destination, you must do the following: + // // - Create a delivery source, which is a logical object that represents the - // resource that is actually sending the logs. For more information, see - // PutDeliverySource (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliverySource.html) - // . + // resource that is actually sending the logs. For more information, see [PutDeliverySource]. + // // - Create a delivery destination, which is a logical object that represents - // the actual delivery destination. For more information, see - // PutDeliveryDestination (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestination.html) - // . - // - If you are delivering logs cross-account, you must use - // PutDeliveryDestinationPolicy (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestinationPolicy.html) - // in the destination account to assign an IAM policy to the destination. This - // policy allows delivery to that destination. + // the actual delivery destination. For more information, see [PutDeliveryDestination]. + // + // - If you are delivering logs cross-account, you must use [PutDeliveryDestinationPolicy]in the destination + // account to assign an IAM policy to the destination. This policy allows delivery + // to that destination. + // // - Use CreateDelivery to create a delivery by pairing exactly one delivery // source and one delivery destination. // // You can configure a single delivery source to send logs to multiple // destinations by creating multiple deliveries. You can also create multiple // deliveries to configure multiple delivery sources to send logs to the same - // delivery destination. You can't update an existing delivery. You can only create - // and delete deliveries. + // delivery destination. + // + // You can't update an existing delivery. You can only create and delete + // deliveries. + // + // [PutDeliveryDestination]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestination.html + // [PutDeliverySource]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliverySource.html + // [Enabling logging from Amazon Web Services services.]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AWS-logs-and-resource-policy.html + // [PutDeliveryDestinationPolicy]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestinationPolicy.html CreateDelivery(ctx context.Context, params *CreateDeliveryInput, optFns ...func(*Options)) (*CreateDeliveryOutput, error) // Creates an export task so that you can efficiently export data from a log group // to an Amazon S3 bucket. When you perform a CreateExportTask operation, you must // use credentials that have permission to write to the S3 bucket that you specify - // as the destination. Exporting log data to S3 buckets that are encrypted by KMS - // is supported. Exporting log data to Amazon S3 buckets that have S3 Object Lock - // enabled with a retention period is also supported. Exporting to S3 buckets that - // are encrypted with AES-256 is supported. This is an asynchronous call. If all - // the required information is provided, this operation initiates an export task - // and responds with the ID of the task. After the task has started, you can use - // DescribeExportTasks (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_DescribeExportTasks.html) - // to get the status of the export task. Each account can only have one active ( - // RUNNING or PENDING ) export task at a time. To cancel an export task, use - // CancelExportTask (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_CancelExportTask.html) - // . You can export logs from multiple log groups or multiple time ranges to the + // as the destination. + // + // Exporting log data to S3 buckets that are encrypted by KMS is supported. + // Exporting log data to Amazon S3 buckets that have S3 Object Lock enabled with a + // retention period is also supported. + // + // Exporting to S3 buckets that are encrypted with AES-256 is supported. + // + // This is an asynchronous call. If all the required information is provided, this + // operation initiates an export task and responds with the ID of the task. After + // the task has started, you can use [DescribeExportTasks]to get the status of the export task. Each + // account can only have one active ( RUNNING or PENDING ) export task at a time. + // To cancel an export task, use [CancelExportTask]. + // + // You can export logs from multiple log groups or multiple time ranges to the // same S3 bucket. To separate log data for each export task, specify a prefix to - // be used as the Amazon S3 key prefix for all exported objects. Time-based sorting - // on chunks of log data inside an exported file is not guaranteed. You can sort - // the exported log field data by using Linux utilities. + // be used as the Amazon S3 key prefix for all exported objects. + // + // Time-based sorting on chunks of log data inside an exported file is not + // guaranteed. You can sort the exported log field data by using Linux utilities. + // + // [CancelExportTask]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_CancelExportTask.html + // [DescribeExportTasks]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_DescribeExportTasks.html CreateExportTask(ctx context.Context, params *CreateExportTaskInput, optFns ...func(*Options)) (*CreateExportTaskOutput, error) // Creates an anomaly detector that regularly scans one or more log groups and - // look for patterns and anomalies in the logs. An anomaly detector can help - // surface issues by automatically discovering anomalies in your log event traffic. - // An anomaly detector uses machine learning algorithms to scan log events and find - // patterns. A pattern is a shared text structure that recurs among your log - // fields. Patterns provide a useful tool for analyzing large sets of logs because - // a large number of log events can often be compressed into a few patterns. The - // anomaly detector uses pattern recognition to find anomalies , which are unusual - // log events. It uses the evaluationFrequency to compare current log events and - // patterns with trained baselines. Fields within a pattern are called tokens. - // Fields that vary within a pattern, such as a request ID or timestamp, are - // referred to as dynamic tokens and represented by <> . The following is an - // example of a pattern: [INFO] Request time: < > ms This pattern represents log - // events like [INFO] Request time: 327 ms and other similar log events that - // differ only by the number, in this csse 327. When the pattern is displayed, the - // different numbers are replaced by <*> Any parts of log events that are masked - // as sensitive data are not scanned for anomalies. For more information about - // masking sensitive data, see Help protect sensitive log data with masking (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html) - // . + // look for patterns and anomalies in the logs. + // + // An anomaly detector can help surface issues by automatically discovering + // anomalies in your log event traffic. An anomaly detector uses machine learning + // algorithms to scan log events and find patterns. + // + // A pattern is a shared text structure that recurs among your log fields. + // Patterns provide a useful tool for analyzing large sets of logs because a large + // number of log events can often be compressed into a few patterns. + // + // The anomaly detector uses pattern recognition to find anomalies , which are + // unusual log events. It uses the evaluationFrequency to compare current log + // events and patterns with trained baselines. + // + // Fields within a pattern are called tokens. Fields that vary within a pattern, + // such as a request ID or timestamp, are referred to as dynamic tokens and + // represented by <> . + // + // The following is an example of a pattern: + // + // [INFO] Request time: < + // + // > ms + // + // This pattern represents log events like [INFO] Request time: 327 ms and other + // similar log events that differ only by the number, in this csse 327. When the + // pattern is displayed, the different numbers are replaced by <*> + // + // Any parts of log events that are masked as sensitive data are not scanned for + // anomalies. For more information about masking sensitive data, see [Help protect sensitive log data with masking]. + // + // [Help protect sensitive log data with masking]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html CreateLogAnomalyDetector(ctx context.Context, params *CreateLogAnomalyDetectorInput, optFns ...func(*Options)) (*CreateLogAnomalyDetectorOutput, error) // Creates a log group with the specified name. You can create up to 1,000,000 log - // groups per Region per account. You must use the following guidelines when naming - // a log group: + // groups per Region per account. + // + // You must use the following guidelines when naming a log group: + // // - Log group names must be unique within a Region for an Amazon Web Services // account. + // // - Log group names can be between 1 and 512 characters long. + // // - Log group names consist of the following characters: a-z, A-Z, 0-9, '_' // (underscore), '-' (hyphen), '/' (forward slash), '.' (period), and '#' (number // sign) + // // - Log group names can't start with the string aws/ // // When you create a log group, by default the log events in the log group do not // expire. To set a retention policy so that events expire and are deleted after a - // specified time, use PutRetentionPolicy (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutRetentionPolicy.html) - // . If you associate an KMS key with the log group, ingested data is encrypted + // specified time, use [PutRetentionPolicy]. + // + // If you associate an KMS key with the log group, ingested data is encrypted // using the KMS key. This association is stored as long as the data encrypted with // the KMS key is still within CloudWatch Logs. This enables CloudWatch Logs to - // decrypt this data whenever it is requested. If you attempt to associate a KMS - // key with the log group but the KMS key does not exist or the KMS key is - // disabled, you receive an InvalidParameterException error. CloudWatch Logs - // supports only symmetric KMS keys. Do not associate an asymmetric KMS key with - // your log group. For more information, see Using Symmetric and Asymmetric Keys (https://docs.aws.amazon.com/kms/latest/developerguide/symmetric-asymmetric.html) - // . + // decrypt this data whenever it is requested. + // + // If you attempt to associate a KMS key with the log group but the KMS key does + // not exist or the KMS key is disabled, you receive an InvalidParameterException + // error. + // + // CloudWatch Logs supports only symmetric KMS keys. Do not associate an + // asymmetric KMS key with your log group. For more information, see [Using Symmetric and Asymmetric Keys]. + // + // [Using Symmetric and Asymmetric Keys]: https://docs.aws.amazon.com/kms/latest/developerguide/symmetric-asymmetric.html + // [PutRetentionPolicy]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutRetentionPolicy.html CreateLogGroup(ctx context.Context, params *CreateLogGroupInput, optFns ...func(*Options)) (*CreateLogGroupOutput, error) // Creates a log stream for the specified log group. A log stream is a sequence of // log events that originate from a single source, such as an application instance - // or a resource that is being monitored. There is no limit on the number of log - // streams that you can create for a log group. There is a limit of 50 TPS on - // CreateLogStream operations, after which transactions are throttled. You must use - // the following guidelines when naming a log stream: + // or a resource that is being monitored. + // + // There is no limit on the number of log streams that you can create for a log + // group. There is a limit of 50 TPS on CreateLogStream operations, after which + // transactions are throttled. + // + // You must use the following guidelines when naming a log stream: + // // - Log stream names must be unique within the log group. + // // - Log stream names can be between 1 and 512 characters long. + // // - Don't use ':' (colon) or '*' (asterisk) characters. CreateLogStream(ctx context.Context, params *CreateLogStreamInput, optFns ...func(*Options)) (*CreateLogStreamOutput, error) // Deletes a CloudWatch Logs account policy. This stops the policy from applying // to all log groups or a subset of log groups in the account. Log-group level - // policies will still be in effect. To use this operation, you must be signed on - // with the correct permissions depending on the type of policy that you are - // deleting. + // policies will still be in effect. + // + // To use this operation, you must be signed on with the correct permissions + // depending on the type of policy that you are deleting. + // // - To delete a data protection policy, you must have the // logs:DeleteDataProtectionPolicy and logs:DeleteAccountPolicy permissions. + // // - To delete a subscription filter policy, you must have the // logs:DeleteSubscriptionFilter and logs:DeleteAccountPolicy permissions. DeleteAccountPolicy(ctx context.Context, params *DeleteAccountPolicyInput, optFns ...func(*Options)) (*DeleteAccountPolicyOutput, error) - // Deletes the data protection policy from the specified log group. For more - // information about data protection policies, see PutDataProtectionPolicy (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDataProtectionPolicy.html) - // . + // Deletes the data protection policy from the specified log group. + // + // For more information about data protection policies, see [PutDataProtectionPolicy]. + // + // [PutDataProtectionPolicy]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDataProtectionPolicy.html DeleteDataProtectionPolicy(ctx context.Context, params *DeleteDataProtectionPolicyInput, optFns ...func(*Options)) (*DeleteDataProtectionPolicyOutput, error) // Deletes s delivery. A delivery is a connection between a logical delivery // source and a logical delivery destination. Deleting a delivery only deletes the @@ -179,21 +254,28 @@ type CloudWatchLogs interface { // delete the delivery destination or the delivery source. DeleteDelivery(ctx context.Context, params *DeleteDeliveryInput, optFns ...func(*Options)) (*DeleteDeliveryOutput, error) // Deletes a delivery destination. A delivery is a connection between a logical - // delivery source and a logical delivery destination. You can't delete a delivery - // destination if any current deliveries are associated with it. To find whether - // any deliveries are associated with this delivery destination, use the - // DescribeDeliveries (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_DescribeDeliveries.html) - // operation and check the deliveryDestinationArn field in the results. + // delivery source and a logical delivery destination. + // + // You can't delete a delivery destination if any current deliveries are + // associated with it. To find whether any deliveries are associated with this + // delivery destination, use the [DescribeDeliveries]operation and check the deliveryDestinationArn + // field in the results. + // + // [DescribeDeliveries]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_DescribeDeliveries.html DeleteDeliveryDestination(ctx context.Context, params *DeleteDeliveryDestinationInput, optFns ...func(*Options)) (*DeleteDeliveryDestinationOutput, error) // Deletes a delivery destination policy. For more information about these - // policies, see PutDeliveryDestinationPolicy (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestinationPolicy.html) - // . + // policies, see [PutDeliveryDestinationPolicy]. + // + // [PutDeliveryDestinationPolicy]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestinationPolicy.html DeleteDeliveryDestinationPolicy(ctx context.Context, params *DeleteDeliveryDestinationPolicyInput, optFns ...func(*Options)) (*DeleteDeliveryDestinationPolicyOutput, error) // Deletes a delivery source. A delivery is a connection between a logical - // delivery source and a logical delivery destination. You can't delete a delivery - // source if any current deliveries are associated with it. To find whether any - // deliveries are associated with this delivery source, use the DescribeDeliveries (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_DescribeDeliveries.html) - // operation and check the deliverySourceName field in the results. + // delivery source and a logical delivery destination. + // + // You can't delete a delivery source if any current deliveries are associated + // with it. To find whether any deliveries are associated with this delivery + // source, use the [DescribeDeliveries]operation and check the deliverySourceName field in the results. + // + // [DescribeDeliveries]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_DescribeDeliveries.html DeleteDeliverySource(ctx context.Context, params *DeleteDeliverySourceInput, optFns ...func(*Options)) (*DeleteDeliverySourceOutput, error) // Deletes the specified destination, and eventually disables all the subscription // filters that publish to it. This operation does not delete the physical resource @@ -210,28 +292,37 @@ type CloudWatchLogs interface { // Deletes the specified metric filter. DeleteMetricFilter(ctx context.Context, params *DeleteMetricFilterInput, optFns ...func(*Options)) (*DeleteMetricFilterOutput, error) // Deletes a saved CloudWatch Logs Insights query definition. A query definition - // contains details about a saved CloudWatch Logs Insights query. Each - // DeleteQueryDefinition operation can delete one query definition. You must have - // the logs:DeleteQueryDefinition permission to be able to perform this operation. + // contains details about a saved CloudWatch Logs Insights query. + // + // Each DeleteQueryDefinition operation can delete one query definition. + // + // You must have the logs:DeleteQueryDefinition permission to be able to perform + // this operation. DeleteQueryDefinition(ctx context.Context, params *DeleteQueryDefinitionInput, optFns ...func(*Options)) (*DeleteQueryDefinitionOutput, error) // Deletes a resource policy from this account. This revokes the access of the // identities in that policy to put log events to this account. DeleteResourcePolicy(ctx context.Context, params *DeleteResourcePolicyInput, optFns ...func(*Options)) (*DeleteResourcePolicyOutput, error) - // Deletes the specified retention policy. Log events do not expire if they belong - // to log groups without a retention policy. + // Deletes the specified retention policy. + // + // Log events do not expire if they belong to log groups without a retention + // policy. DeleteRetentionPolicy(ctx context.Context, params *DeleteRetentionPolicyInput, optFns ...func(*Options)) (*DeleteRetentionPolicyOutput, error) // Deletes the specified subscription filter. DeleteSubscriptionFilter(ctx context.Context, params *DeleteSubscriptionFilterInput, optFns ...func(*Options)) (*DeleteSubscriptionFilterOutput, error) // Returns a list of all CloudWatch Logs account policies in the account. DescribeAccountPolicies(ctx context.Context, params *DescribeAccountPoliciesInput, optFns ...func(*Options)) (*DescribeAccountPoliciesOutput, error) - // Retrieves a list of the deliveries that have been created in the account. A - // delivery is a connection between a delivery source (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliverySource.html) - // and a delivery destination (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestination.html) - // . A delivery source represents an Amazon Web Services resource that sends logs - // to an logs delivery destination. The destination can be CloudWatch Logs, Amazon - // S3, or Firehose. Only some Amazon Web Services services support being configured - // as a delivery source. These services are listed in Enable logging from Amazon - // Web Services services. (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AWS-logs-and-resource-policy.html) + // Retrieves a list of the deliveries that have been created in the account. + // + // A delivery is a connection between a [delivery source] and a [delivery destination]. + // + // A delivery source represents an Amazon Web Services resource that sends logs to + // an logs delivery destination. The destination can be CloudWatch Logs, Amazon S3, + // or Firehose. Only some Amazon Web Services services support being configured as + // a delivery source. These services are listed in [Enable logging from Amazon Web Services services.] + // + // [delivery destination]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestination.html + // [delivery source]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliverySource.html + // [Enable logging from Amazon Web Services services.]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AWS-logs-and-resource-policy.html DescribeDeliveries(ctx context.Context, params *DescribeDeliveriesInput, optFns ...func(*Options)) (*DescribeDeliveriesOutput, error) // Retrieves a list of the delivery destinations that have been created in the // account. @@ -244,27 +335,37 @@ type CloudWatchLogs interface { // the results based on task ID or task status. DescribeExportTasks(ctx context.Context, params *DescribeExportTasksInput, optFns ...func(*Options)) (*DescribeExportTasksOutput, error) // Lists the specified log groups. You can list all your log groups or filter the - // results by prefix. The results are ASCII-sorted by log group name. CloudWatch - // Logs doesn’t support IAM policies that control access to the DescribeLogGroups - // action by using the aws:ResourceTag/key-name condition key. Other CloudWatch - // Logs actions do support the use of the aws:ResourceTag/key-name condition key - // to control access. For more information about using tags to control access, see - // Controlling access to Amazon Web Services resources using tags (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html) - // . If you are using CloudWatch cross-account observability, you can use this + // results by prefix. The results are ASCII-sorted by log group name. + // + // CloudWatch Logs doesn’t support IAM policies that control access to the + // DescribeLogGroups action by using the aws:ResourceTag/key-name condition key. + // Other CloudWatch Logs actions do support the use of the + // aws:ResourceTag/key-name condition key to control access. For more information + // about using tags to control access, see [Controlling access to Amazon Web Services resources using tags]. + // + // If you are using CloudWatch cross-account observability, you can use this // operation in a monitoring account and view data from the linked source accounts. - // For more information, see CloudWatch cross-account observability (https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Unified-Cross-Account.html) - // . + // For more information, see [CloudWatch cross-account observability]. + // + // [CloudWatch cross-account observability]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Unified-Cross-Account.html + // [Controlling access to Amazon Web Services resources using tags]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html DescribeLogGroups(ctx context.Context, params *DescribeLogGroupsInput, optFns ...func(*Options)) (*DescribeLogGroupsOutput, error) // Lists the log streams for the specified log group. You can list all the log // streams or filter the results by prefix. You can also control how the results - // are ordered. You can specify the log group to search by using either - // logGroupIdentifier or logGroupName . You must include one of these two - // parameters, but you can't include both. This operation has a limit of five - // transactions per second, after which transactions are throttled. If you are - // using CloudWatch cross-account observability, you can use this operation in a - // monitoring account and view data from the linked source accounts. For more - // information, see CloudWatch cross-account observability (https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Unified-Cross-Account.html) - // . + // are ordered. + // + // You can specify the log group to search by using either logGroupIdentifier or + // logGroupName . You must include one of these two parameters, but you can't + // include both. + // + // This operation has a limit of five transactions per second, after which + // transactions are throttled. + // + // If you are using CloudWatch cross-account observability, you can use this + // operation in a monitoring account and view data from the linked source accounts. + // For more information, see [CloudWatch cross-account observability]. + // + // [CloudWatch cross-account observability]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Unified-Cross-Account.html DescribeLogStreams(ctx context.Context, params *DescribeLogStreamsInput, optFns ...func(*Options)) (*DescribeLogStreamsOutput, error) // Lists the specified metric filters. You can list all of the metric filters or // filter the results by log name, prefix, metric name, or metric namespace. The @@ -276,9 +377,10 @@ type CloudWatchLogs interface { DescribeQueries(ctx context.Context, params *DescribeQueriesInput, optFns ...func(*Options)) (*DescribeQueriesOutput, error) // This operation returns a paginated list of your saved CloudWatch Logs Insights // query definitions. You can retrieve query definitions from the current account - // or from a source account that is linked to the current account. You can use the - // queryDefinitionNamePrefix parameter to limit the results to only the query - // definitions that have names that start with a certain string. + // or from a source account that is linked to the current account. + // + // You can use the queryDefinitionNamePrefix parameter to limit the results to + // only the query definitions that have names that start with a certain string. DescribeQueryDefinitions(ctx context.Context, params *DescribeQueryDefinitionsInput, optFns ...func(*Options)) (*DescribeQueryDefinitionsOutput, error) // Lists the resource policies in this account. DescribeResourcePolicies(ctx context.Context, params *DescribeResourcePoliciesInput, optFns ...func(*Options)) (*DescribeResourcePoliciesOutput, error) @@ -287,117 +389,154 @@ type CloudWatchLogs interface { // ASCII-sorted by filter name. DescribeSubscriptionFilters(ctx context.Context, params *DescribeSubscriptionFiltersInput, optFns ...func(*Options)) (*DescribeSubscriptionFiltersOutput, error) // Disassociates the specified KMS key from the specified log group or from all - // CloudWatch Logs Insights query results in the account. When you use - // DisassociateKmsKey , you specify either the logGroupName parameter or the - // resourceIdentifier parameter. You can't specify both of those parameters in the - // same operation. + // CloudWatch Logs Insights query results in the account. + // + // When you use DisassociateKmsKey , you specify either the logGroupName parameter + // or the resourceIdentifier parameter. You can't specify both of those parameters + // in the same operation. + // // - Specify the logGroupName parameter to stop using the KMS key to encrypt // future log events ingested and stored in the log group. Instead, they will be // encrypted with the default CloudWatch Logs method. The log events that were // ingested while the key was associated with the log group are still encrypted // with that key. Therefore, CloudWatch Logs will need permissions for the key // whenever that data is accessed. + // // - Specify the resourceIdentifier parameter with the query-result resource to - // stop using the KMS key to encrypt the results of all future StartQuery (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_StartQuery.html) - // operations in the account. They will instead be encrypted with the default - // CloudWatch Logs method. The results from queries that ran while the key was - // associated with the account are still encrypted with that key. Therefore, - // CloudWatch Logs will need permissions for the key whenever that data is - // accessed. + // stop using the KMS key to encrypt the results of all future [StartQuery]operations in the + // account. They will instead be encrypted with the default CloudWatch Logs method. + // The results from queries that ran while the key was associated with the account + // are still encrypted with that key. Therefore, CloudWatch Logs will need + // permissions for the key whenever that data is accessed. // // It can take up to 5 minutes for this operation to take effect. + // + // [StartQuery]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_StartQuery.html DisassociateKmsKey(ctx context.Context, params *DisassociateKmsKeyInput, optFns ...func(*Options)) (*DisassociateKmsKeyOutput, error) // Lists log events from the specified log group. You can list all the log events // or filter the results using a filter pattern, a time range, and the name of the - // log stream. You must have the logs:FilterLogEvents permission to perform this - // operation. You can specify the log group to search by using either - // logGroupIdentifier or logGroupName . You must include one of these two - // parameters, but you can't include both. By default, this operation returns as - // many log events as can fit in 1 MB (up to 10,000 log events) or all the events - // found within the specified time range. If the results include a token, that - // means there are more log events available. You can get additional results by - // specifying the token in a subsequent call. This operation can return empty - // results while there are more log events available through the token. The - // returned log events are sorted by event timestamp, the timestamp when the event - // was ingested by CloudWatch Logs, and the ID of the PutLogEvents request. If you - // are using CloudWatch cross-account observability, you can use this operation in - // a monitoring account and view data from the linked source accounts. For more - // information, see CloudWatch cross-account observability (https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Unified-Cross-Account.html) - // . + // log stream. + // + // You must have the logs:FilterLogEvents permission to perform this operation. + // + // You can specify the log group to search by using either logGroupIdentifier or + // logGroupName . You must include one of these two parameters, but you can't + // include both. + // + // By default, this operation returns as many log events as can fit in 1 MB (up to + // 10,000 log events) or all the events found within the specified time range. If + // the results include a token, that means there are more log events available. You + // can get additional results by specifying the token in a subsequent call. This + // operation can return empty results while there are more log events available + // through the token. + // + // The returned log events are sorted by event timestamp, the timestamp when the + // event was ingested by CloudWatch Logs, and the ID of the PutLogEvents request. + // + // If you are using CloudWatch cross-account observability, you can use this + // operation in a monitoring account and view data from the linked source accounts. + // For more information, see [CloudWatch cross-account observability]. + // + // [CloudWatch cross-account observability]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Unified-Cross-Account.html FilterLogEvents(ctx context.Context, params *FilterLogEventsInput, optFns ...func(*Options)) (*FilterLogEventsOutput, error) // Returns information about a log group data protection policy. GetDataProtectionPolicy(ctx context.Context, params *GetDataProtectionPolicyInput, optFns ...func(*Options)) (*GetDataProtectionPolicyOutput, error) // Returns complete information about one logical delivery. A delivery is a - // connection between a delivery source (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliverySource.html) - // and a delivery destination (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestination.html) - // . A delivery source represents an Amazon Web Services resource that sends logs - // to an logs delivery destination. The destination can be CloudWatch Logs, Amazon - // S3, or Firehose. Only some Amazon Web Services services support being configured - // as a delivery source. These services are listed in Enable logging from Amazon - // Web Services services. (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AWS-logs-and-resource-policy.html) + // connection between a [delivery source]and a [delivery destination]. + // + // A delivery source represents an Amazon Web Services resource that sends logs to + // an logs delivery destination. The destination can be CloudWatch Logs, Amazon S3, + // or Firehose. Only some Amazon Web Services services support being configured as + // a delivery source. These services are listed in [Enable logging from Amazon Web Services services.] + // // You need to specify the delivery id in this operation. You can find the IDs of - // the deliveries in your account with the DescribeDeliveries (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_DescribeDeliveries.html) - // operation. + // the deliveries in your account with the [DescribeDeliveries]operation. + // + // [delivery destination]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestination.html + // [delivery source]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliverySource.html + // [Enable logging from Amazon Web Services services.]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AWS-logs-and-resource-policy.html + // [DescribeDeliveries]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_DescribeDeliveries.html GetDelivery(ctx context.Context, params *GetDeliveryInput, optFns ...func(*Options)) (*GetDeliveryOutput, error) // Retrieves complete information about one delivery destination. GetDeliveryDestination(ctx context.Context, params *GetDeliveryDestinationInput, optFns ...func(*Options)) (*GetDeliveryDestinationOutput, error) // Retrieves the delivery destination policy assigned to the delivery destination // that you specify. For more information about delivery destinations and their - // policies, see PutDeliveryDestinationPolicy (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestinationPolicy.html) - // . + // policies, see [PutDeliveryDestinationPolicy]. + // + // [PutDeliveryDestinationPolicy]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestinationPolicy.html GetDeliveryDestinationPolicy(ctx context.Context, params *GetDeliveryDestinationPolicyInput, optFns ...func(*Options)) (*GetDeliveryDestinationPolicyOutput, error) // Retrieves complete information about one delivery source. GetDeliverySource(ctx context.Context, params *GetDeliverySourceInput, optFns ...func(*Options)) (*GetDeliverySourceOutput, error) // Retrieves information about the log anomaly detector that you specify. GetLogAnomalyDetector(ctx context.Context, params *GetLogAnomalyDetectorInput, optFns ...func(*Options)) (*GetLogAnomalyDetectorOutput, error) // Lists log events from the specified log stream. You can list all of the log - // events or filter using a time range. By default, this operation returns as many - // log events as can fit in a response size of 1MB (up to 10,000 log events). You - // can get additional log events by specifying one of the tokens in a subsequent - // call. This operation can return empty results while there are more log events - // available through the token. If you are using CloudWatch cross-account - // observability, you can use this operation in a monitoring account and view data - // from the linked source accounts. For more information, see CloudWatch - // cross-account observability (https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Unified-Cross-Account.html) - // . You can specify the log group to search by using either logGroupIdentifier or + // events or filter using a time range. + // + // By default, this operation returns as many log events as can fit in a response + // size of 1MB (up to 10,000 log events). You can get additional log events by + // specifying one of the tokens in a subsequent call. This operation can return + // empty results while there are more log events available through the token. + // + // If you are using CloudWatch cross-account observability, you can use this + // operation in a monitoring account and view data from the linked source accounts. + // For more information, see [CloudWatch cross-account observability]. + // + // You can specify the log group to search by using either logGroupIdentifier or // logGroupName . You must include one of these two parameters, but you can't // include both. + // + // [CloudWatch cross-account observability]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Unified-Cross-Account.html GetLogEvents(ctx context.Context, params *GetLogEventsInput, optFns ...func(*Options)) (*GetLogEventsOutput, error) // Returns a list of the fields that are included in log events in the specified // log group. Includes the percentage of log events that contain each field. The - // search is limited to a time period that you specify. You can specify the log - // group to search by using either logGroupIdentifier or logGroupName . You must - // specify one of these parameters, but you can't specify both. In the results, - // fields that start with @ are fields generated by CloudWatch Logs. For example, - // @timestamp is the timestamp of each log event. For more information about the - // fields that are generated by CloudWatch logs, see Supported Logs and Discovered - // Fields (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/CWL_AnalyzeLogData-discoverable-fields.html) - // . The response results are sorted by the frequency percentage, starting with the - // highest percentage. If you are using CloudWatch cross-account observability, you - // can use this operation in a monitoring account and view data from the linked - // source accounts. For more information, see CloudWatch cross-account - // observability (https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Unified-Cross-Account.html) - // . + // search is limited to a time period that you specify. + // + // You can specify the log group to search by using either logGroupIdentifier or + // logGroupName . You must specify one of these parameters, but you can't specify + // both. + // + // In the results, fields that start with @ are fields generated by CloudWatch + // Logs. For example, @timestamp is the timestamp of each log event. For more + // information about the fields that are generated by CloudWatch logs, see [Supported Logs and Discovered Fields]. + // + // The response results are sorted by the frequency percentage, starting with the + // highest percentage. + // + // If you are using CloudWatch cross-account observability, you can use this + // operation in a monitoring account and view data from the linked source accounts. + // For more information, see [CloudWatch cross-account observability]. + // + // [CloudWatch cross-account observability]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Unified-Cross-Account.html + // [Supported Logs and Discovered Fields]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/CWL_AnalyzeLogData-discoverable-fields.html GetLogGroupFields(ctx context.Context, params *GetLogGroupFieldsInput, optFns ...func(*Options)) (*GetLogGroupFieldsOutput, error) // Retrieves all of the fields and values of a single log event. All fields are // retrieved, even if the original query that produced the logRecordPointer // retrieved only a subset of fields. Fields are returned as field name/field value - // pairs. The full unparsed log event is returned within @message . + // pairs. + // + // The full unparsed log event is returned within @message . GetLogRecord(ctx context.Context, params *GetLogRecordInput, optFns ...func(*Options)) (*GetLogRecordOutput, error) - // Returns the results from the specified query. Only the fields requested in the - // query are returned, along with a @ptr field, which is the identifier for the - // log record. You can use the value of @ptr in a GetLogRecord (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_GetLogRecord.html) - // operation to get the full log record. GetQueryResults does not start running a - // query. To run a query, use StartQuery (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_StartQuery.html) - // . For more information about how long results of previous queries are available, - // see CloudWatch Logs quotas (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/cloudwatch_limits_cwl.html) - // . If the value of the Status field in the output is Running , this operation + // Returns the results from the specified query. + // + // Only the fields requested in the query are returned, along with a @ptr field, + // which is the identifier for the log record. You can use the value of @ptr in a [GetLogRecord] + // operation to get the full log record. + // + // GetQueryResults does not start running a query. To run a query, use [StartQuery]. For more + // information about how long results of previous queries are available, see [CloudWatch Logs quotas]. + // + // If the value of the Status field in the output is Running , this operation // returns only partial results. If you see a value of Scheduled or Running for - // the status, you can retry the operation later to see the final results. If you - // are using CloudWatch cross-account observability, you can use this operation in - // a monitoring account to start queries in linked source accounts. For more - // information, see CloudWatch cross-account observability (https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Unified-Cross-Account.html) - // . + // the status, you can retry the operation later to see the final results. + // + // If you are using CloudWatch cross-account observability, you can use this + // operation in a monitoring account to start queries in linked source accounts. + // For more information, see [CloudWatch cross-account observability]. + // + // [CloudWatch cross-account observability]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Unified-Cross-Account.html + // [GetLogRecord]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_GetLogRecord.html + // [CloudWatch Logs quotas]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/cloudwatch_limits_cwl.html + // [StartQuery]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_StartQuery.html GetQueryResults(ctx context.Context, params *GetQueryResultsInput, optFns ...func(*Options)) (*GetQueryResultsOutput, error) // Returns a list of anomalies that log anomaly detectors have found. For details // about the structure format of each anomaly object that is returned, see the @@ -409,208 +548,283 @@ type CloudWatchLogs interface { // groups and destinations support tagging. ListTagsForResource(ctx context.Context, params *ListTagsForResourceInput, optFns ...func(*Options)) (*ListTagsForResourceOutput, error) // The ListTagsLogGroup operation is on the path to deprecation. We recommend that - // you use ListTagsForResource (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_ListTagsForResource.html) - // instead. Lists the tags for the specified log group. + // you use [ListTagsForResource]instead. + // + // Lists the tags for the specified log group. // // Deprecated: Please use the generic tagging API ListTagsForResource + // + // [ListTagsForResource]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_ListTagsForResource.html ListTagsLogGroup(ctx context.Context, params *ListTagsLogGroupInput, optFns ...func(*Options)) (*ListTagsLogGroupOutput, error) // Creates an account-level data protection policy or subscription filter policy - // that applies to all log groups or a subset of log groups in the account. Data - // protection policy A data protection policy can help safeguard sensitive data - // that's ingested by your log groups by auditing and masking the sensitive log - // data. Each account can have only one account-level data protection policy. - // Sensitive data is detected and masked when it is ingested into a log group. When - // you set a data protection policy, log events ingested into the log groups before - // that time are not masked. If you use PutAccountPolicy to create a data - // protection policy for your whole account, it applies to both existing log groups - // and all log groups that are created later in this account. The account-level - // policy is applied to existing log groups with eventual consistency. It might - // take up to 5 minutes before sensitive data in existing log groups begins to be - // masked. By default, when a user views a log event that includes masked data, the + // that applies to all log groups or a subset of log groups in the account. + // + // # Data protection policy + // + // A data protection policy can help safeguard sensitive data that's ingested by + // your log groups by auditing and masking the sensitive log data. Each account can + // have only one account-level data protection policy. + // + // Sensitive data is detected and masked when it is ingested into a log group. + // When you set a data protection policy, log events ingested into the log groups + // before that time are not masked. + // + // If you use PutAccountPolicy to create a data protection policy for your whole + // account, it applies to both existing log groups and all log groups that are + // created later in this account. The account-level policy is applied to existing + // log groups with eventual consistency. It might take up to 5 minutes before + // sensitive data in existing log groups begins to be masked. + // + // By default, when a user views a log event that includes masked data, the // sensitive data is replaced by asterisks. A user who has the logs:Unmask - // permission can use a GetLogEvents (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_GetLogEvents.html) - // or FilterLogEvents (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_FilterLogEvents.html) - // operation with the unmask parameter set to true to view the unmasked log - // events. Users with the logs:Unmask can also view unmasked data in the - // CloudWatch Logs console by running a CloudWatch Logs Insights query with the - // unmask query command. For more information, including a list of types of data - // that can be audited and masked, see Protect sensitive log data with masking (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html) - // . To use the PutAccountPolicy operation for a data protection policy, you must - // be signed on with the logs:PutDataProtectionPolicy and logs:PutAccountPolicy - // permissions. The PutAccountPolicy operation applies to all log groups in the - // account. You can use PutDataProtectionPolicy (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDataProtectionPolicy.html) - // to create a data protection policy that applies to just one log group. If a log - // group has its own data protection policy and the account also has an + // permission can use a [GetLogEvents]or [FilterLogEvents] operation with the unmask parameter set to true to + // view the unmasked log events. Users with the logs:Unmask can also view unmasked + // data in the CloudWatch Logs console by running a CloudWatch Logs Insights query + // with the unmask query command. + // + // For more information, including a list of types of data that can be audited and + // masked, see [Protect sensitive log data with masking]. + // + // To use the PutAccountPolicy operation for a data protection policy, you must be + // signed on with the logs:PutDataProtectionPolicy and logs:PutAccountPolicy + // permissions. + // + // The PutAccountPolicy operation applies to all log groups in the account. You + // can use [PutDataProtectionPolicy]to create a data protection policy that applies to just one log group. + // If a log group has its own data protection policy and the account also has an // account-level data protection policy, then the two policies are cumulative. Any - // sensitive term specified in either policy is masked. Subscription filter policy + // sensitive term specified in either policy is masked. + // + // # Subscription filter policy + // // A subscription filter policy sets up a real-time feed of log events from // CloudWatch Logs to other Amazon Web Services services. Account-level // subscription filter policies apply to both existing log groups and log groups // that are created later in this account. Supported destinations are Kinesis Data // Streams, Firehose, and Lambda. When log events are sent to the receiving - // service, they are Base64 encoded and compressed with the GZIP format. The - // following destinations are supported for subscription filters: + // service, they are Base64 encoded and compressed with the GZIP format. + // + // The following destinations are supported for subscription filters: + // // - An Kinesis Data Streams data stream in the same account as the subscription // policy, for same-account delivery. + // // - An Firehose data stream in the same account as the subscription policy, for // same-account delivery. + // // - A Lambda function in the same account as the subscription policy, for // same-account delivery. - // - A logical destination in a different account created with PutDestination (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDestination.html) - // , for cross-account delivery. Kinesis Data Streams and Firehose are supported as + // + // - A logical destination in a different account created with [PutDestination], for + // cross-account delivery. Kinesis Data Streams and Firehose are supported as // logical destinations. // // Each account can have one account-level subscription filter policy. If you are // updating an existing filter, you must specify the correct name in PolicyName . // To perform a PutAccountPolicy subscription filter operation for any destination // except a Lambda function, you must also have the iam:PassRole permission. + // + // [PutDestination]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDestination.html + // [PutDataProtectionPolicy]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDataProtectionPolicy.html + // [Protect sensitive log data with masking]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html + // [FilterLogEvents]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_FilterLogEvents.html + // [GetLogEvents]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_GetLogEvents.html PutAccountPolicy(ctx context.Context, params *PutAccountPolicyInput, optFns ...func(*Options)) (*PutAccountPolicyOutput, error) // Creates a data protection policy for the specified log group. A data protection // policy can help safeguard sensitive data that's ingested by the log group by - // auditing and masking the sensitive log data. Sensitive data is detected and - // masked when it is ingested into the log group. When you set a data protection - // policy, log events ingested into the log group before that time are not masked. + // auditing and masking the sensitive log data. + // + // Sensitive data is detected and masked when it is ingested into the log group. + // When you set a data protection policy, log events ingested into the log group + // before that time are not masked. + // // By default, when a user views a log event that includes masked data, the // sensitive data is replaced by asterisks. A user who has the logs:Unmask - // permission can use a GetLogEvents (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_GetLogEvents.html) - // or FilterLogEvents (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_FilterLogEvents.html) - // operation with the unmask parameter set to true to view the unmasked log - // events. Users with the logs:Unmask can also view unmasked data in the - // CloudWatch Logs console by running a CloudWatch Logs Insights query with the - // unmask query command. For more information, including a list of types of data - // that can be audited and masked, see Protect sensitive log data with masking (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html) - // . The PutDataProtectionPolicy operation applies to only the specified log - // group. You can also use PutAccountPolicy (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutAccountPolicy.html) - // to create an account-level data protection policy that applies to all log groups - // in the account, including both existing log groups and log groups that are - // created level. If a log group has its own data protection policy and the account - // also has an account-level data protection policy, then the two policies are - // cumulative. Any sensitive term specified in either policy is masked. + // permission can use a [GetLogEvents]or [FilterLogEvents] operation with the unmask parameter set to true to + // view the unmasked log events. Users with the logs:Unmask can also view unmasked + // data in the CloudWatch Logs console by running a CloudWatch Logs Insights query + // with the unmask query command. + // + // For more information, including a list of types of data that can be audited and + // masked, see [Protect sensitive log data with masking]. + // + // The PutDataProtectionPolicy operation applies to only the specified log group. + // You can also use [PutAccountPolicy]to create an account-level data protection policy that applies + // to all log groups in the account, including both existing log groups and log + // groups that are created level. If a log group has its own data protection policy + // and the account also has an account-level data protection policy, then the two + // policies are cumulative. Any sensitive term specified in either policy is + // masked. + // + // [Protect sensitive log data with masking]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/mask-sensitive-log-data.html + // [FilterLogEvents]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_FilterLogEvents.html + // [PutAccountPolicy]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutAccountPolicy.html + // [GetLogEvents]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_GetLogEvents.html PutDataProtectionPolicy(ctx context.Context, params *PutDataProtectionPolicyInput, optFns ...func(*Options)) (*PutDataProtectionPolicyOutput, error) // Creates or updates a logical delivery destination. A delivery destination is an // Amazon Web Services resource that represents an Amazon Web Services service that // logs can be sent to. CloudWatch Logs, Amazon S3, and Firehose are supported as - // logs delivery destinations. To configure logs delivery between a supported - // Amazon Web Services service and a destination, you must do the following: + // logs delivery destinations. + // + // To configure logs delivery between a supported Amazon Web Services service and + // a destination, you must do the following: + // // - Create a delivery source, which is a logical object that represents the - // resource that is actually sending the logs. For more information, see - // PutDeliverySource (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliverySource.html) - // . + // resource that is actually sending the logs. For more information, see [PutDeliverySource]. + // // - Use PutDeliveryDestination to create a delivery destination, which is a // logical object that represents the actual delivery destination. - // - If you are delivering logs cross-account, you must use - // PutDeliveryDestinationPolicy (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestinationPolicy.html) - // in the destination account to assign an IAM policy to the destination. This - // policy allows delivery to that destination. + // + // - If you are delivering logs cross-account, you must use [PutDeliveryDestinationPolicy]in the destination + // account to assign an IAM policy to the destination. This policy allows delivery + // to that destination. + // // - Use CreateDelivery to create a delivery by pairing exactly one delivery - // source and one delivery destination. For more information, see CreateDelivery (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_CreateDelivery.html) - // . + // source and one delivery destination. For more information, see [CreateDelivery]. // // You can configure a single delivery source to send logs to multiple // destinations by creating multiple deliveries. You can also create multiple // deliveries to configure multiple delivery sources to send logs to the same - // delivery destination. Only some Amazon Web Services services support being - // configured as a delivery source. These services are listed as Supported [V2 - // Permissions] in the table at Enabling logging from Amazon Web Services services. (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AWS-logs-and-resource-policy.html) + // delivery destination. + // + // Only some Amazon Web Services services support being configured as a delivery + // source. These services are listed as Supported [V2 Permissions] in the table at [Enabling logging from Amazon Web Services services.] + // // If you use this operation to update an existing delivery destination, all the // current delivery destination parameters are overwritten with the new parameter // values that you specify. + // + // [PutDeliverySource]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliverySource.html + // [Enabling logging from Amazon Web Services services.]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AWS-logs-and-resource-policy.html + // [CreateDelivery]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_CreateDelivery.html + // [PutDeliveryDestinationPolicy]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestinationPolicy.html PutDeliveryDestination(ctx context.Context, params *PutDeliveryDestinationInput, optFns ...func(*Options)) (*PutDeliveryDestinationOutput, error) // Creates and assigns an IAM policy that grants permissions to CloudWatch Logs to // deliver logs cross-account to a specified destination in this account. To // configure the delivery of logs from an Amazon Web Services service in another // account to a logs delivery destination in the current account, you must do the // following: + // // - Create a delivery source, which is a logical object that represents the - // resource that is actually sending the logs. For more information, see - // PutDeliverySource (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliverySource.html) - // . + // resource that is actually sending the logs. For more information, see [PutDeliverySource]. + // // - Create a delivery destination, which is a logical object that represents - // the actual delivery destination. For more information, see - // PutDeliveryDestination (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestination.html) - // . + // the actual delivery destination. For more information, see [PutDeliveryDestination]. + // // - Use this operation in the destination account to assign an IAM policy to // the destination. This policy allows delivery to that destination. + // // - Create a delivery by pairing exactly one delivery source and one delivery - // destination. For more information, see CreateDelivery (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_CreateDelivery.html) - // . + // destination. For more information, see [CreateDelivery]. // // Only some Amazon Web Services services support being configured as a delivery - // source. These services are listed as Supported [V2 Permissions] in the table at - // Enabling logging from Amazon Web Services services. (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AWS-logs-and-resource-policy.html) + // source. These services are listed as Supported [V2 Permissions] in the table at [Enabling logging from Amazon Web Services services.] + // // The contents of the policy must include two statements. One statement enables // general logs delivery, and the other allows delivery to the chosen destination. // See the examples for the needed policies. + // + // [PutDeliveryDestination]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestination.html + // [PutDeliverySource]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliverySource.html + // [Enabling logging from Amazon Web Services services.]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AWS-logs-and-resource-policy.html + // [CreateDelivery]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_CreateDelivery.html PutDeliveryDestinationPolicy(ctx context.Context, params *PutDeliveryDestinationPolicyInput, optFns ...func(*Options)) (*PutDeliveryDestinationPolicyOutput, error) // Creates or updates a logical delivery source. A delivery source represents an // Amazon Web Services resource that sends logs to an logs delivery destination. - // The destination can be CloudWatch Logs, Amazon S3, or Firehose. To configure - // logs delivery between a delivery destination and an Amazon Web Services service - // that is supported as a delivery source, you must do the following: + // The destination can be CloudWatch Logs, Amazon S3, or Firehose. + // + // To configure logs delivery between a delivery destination and an Amazon Web + // Services service that is supported as a delivery source, you must do the + // following: + // // - Use PutDeliverySource to create a delivery source, which is a logical object // that represents the resource that is actually sending the logs. + // // - Use PutDeliveryDestination to create a delivery destination, which is a // logical object that represents the actual delivery destination. For more - // information, see PutDeliveryDestination (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestination.html) - // . - // - If you are delivering logs cross-account, you must use - // PutDeliveryDestinationPolicy (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestinationPolicy.html) - // in the destination account to assign an IAM policy to the destination. This - // policy allows delivery to that destination. + // information, see [PutDeliveryDestination]. + // + // - If you are delivering logs cross-account, you must use [PutDeliveryDestinationPolicy]in the destination + // account to assign an IAM policy to the destination. This policy allows delivery + // to that destination. + // // - Use CreateDelivery to create a delivery by pairing exactly one delivery - // source and one delivery destination. For more information, see CreateDelivery (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_CreateDelivery.html) - // . + // source and one delivery destination. For more information, see [CreateDelivery]. // // You can configure a single delivery source to send logs to multiple // destinations by creating multiple deliveries. You can also create multiple // deliveries to configure multiple delivery sources to send logs to the same - // delivery destination. Only some Amazon Web Services services support being - // configured as a delivery source. These services are listed as Supported [V2 - // Permissions] in the table at Enabling logging from Amazon Web Services services. (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AWS-logs-and-resource-policy.html) - // If you use this operation to update an existing delivery source, all the current - // delivery source parameters are overwritten with the new parameter values that - // you specify. + // delivery destination. + // + // Only some Amazon Web Services services support being configured as a delivery + // source. These services are listed as Supported [V2 Permissions] in the table at [Enabling logging from Amazon Web Services services.] + // + // If you use this operation to update an existing delivery source, all the + // current delivery source parameters are overwritten with the new parameter values + // that you specify. + // + // [PutDeliveryDestination]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestination.html + // [Enabling logging from Amazon Web Services services.]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AWS-logs-and-resource-policy.html + // [CreateDelivery]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_CreateDelivery.html + // [PutDeliveryDestinationPolicy]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDeliveryDestinationPolicy.html PutDeliverySource(ctx context.Context, params *PutDeliverySourceInput, optFns ...func(*Options)) (*PutDeliverySourceOutput, error) // Creates or updates a destination. This operation is used only to create - // destinations for cross-account subscriptions. A destination encapsulates a - // physical resource (such as an Amazon Kinesis stream). With a destination, you - // can subscribe to a real-time stream of log events for a different account, - // ingested using PutLogEvents (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutLogEvents.html) - // . Through an access policy, a destination controls what is written to it. By + // destinations for cross-account subscriptions. + // + // A destination encapsulates a physical resource (such as an Amazon Kinesis + // stream). With a destination, you can subscribe to a real-time stream of log + // events for a different account, ingested using [PutLogEvents]. + // + // Through an access policy, a destination controls what is written to it. By // default, PutDestination does not set any access policy with the destination, - // which means a cross-account user cannot call PutSubscriptionFilter (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutSubscriptionFilter.html) - // against this destination. To enable this, the destination owner must call - // PutDestinationPolicy (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDestinationPolicy.html) - // after PutDestination . To perform a PutDestination operation, you must also - // have the iam:PassRole permission. + // which means a cross-account user cannot call [PutSubscriptionFilter]against this destination. To + // enable this, the destination owner must call [PutDestinationPolicy]after PutDestination . + // + // To perform a PutDestination operation, you must also have the iam:PassRole + // permission. + // + // [PutSubscriptionFilter]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutSubscriptionFilter.html + // [PutLogEvents]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutLogEvents.html + // [PutDestinationPolicy]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDestinationPolicy.html PutDestination(ctx context.Context, params *PutDestinationInput, optFns ...func(*Options)) (*PutDestinationOutput, error) // Creates or updates an access policy associated with an existing destination. An - // access policy is an IAM policy document (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies_overview.html) - // that is used to authorize claims to register a subscription filter against a - // given destination. + // access policy is an [IAM policy document]that is used to authorize claims to register a subscription + // filter against a given destination. + // + // [IAM policy document]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies_overview.html PutDestinationPolicy(ctx context.Context, params *PutDestinationPolicyInput, optFns ...func(*Options)) (*PutDestinationPolicyOutput, error) - // Uploads a batch of log events to the specified log stream. The sequence token - // is now ignored in PutLogEvents actions. PutLogEvents actions are always - // accepted and never return InvalidSequenceTokenException or + // Uploads a batch of log events to the specified log stream. + // + // The sequence token is now ignored in PutLogEvents actions. PutLogEvents actions + // are always accepted and never return InvalidSequenceTokenException or // DataAlreadyAcceptedException even if the sequence token is not valid. You can - // use parallel PutLogEvents actions on the same log stream. The batch of events - // must satisfy the following constraints: + // use parallel PutLogEvents actions on the same log stream. + // + // The batch of events must satisfy the following constraints: + // // - The maximum batch size is 1,048,576 bytes. This size is calculated as the // sum of all event messages in UTF-8, plus 26 bytes for each log event. + // // - None of the log events in the batch can be more than 2 hours in the future. + // // - None of the log events in the batch can be more than 14 days in the past. // Also, none of the log events can be from earlier than the retention period of // the log group. + // // - The log events in the batch must be in chronological order by their // timestamp. The timestamp is the time that the event occurred, expressed as the // number of milliseconds after Jan 1, 1970 00:00:00 UTC . (In Amazon Web // Services Tools for PowerShell and the Amazon Web Services SDK for .NET, the // timestamp is specified in .NET format: yyyy-mm-ddThh:mm:ss . For example, // 2017-09-15T13:45:30 .) + // // - A batch of log events in a single request cannot span more than 24 hours. // Otherwise, the operation fails. + // // - Each log event can be no larger than 256 KB. + // // - The maximum number of log events in a batch is 10,000. + // // - The quota of five requests per second per log stream has been removed. // Instead, PutLogEvents actions are throttled based on a per-second per-account // quota. You can request an increase to the per-second throttling quota by using @@ -621,30 +835,44 @@ type CloudWatchLogs interface { PutLogEvents(ctx context.Context, params *PutLogEventsInput, optFns ...func(*Options)) (*PutLogEventsOutput, error) // Creates or updates a metric filter and associates it with the specified log // group. With metric filters, you can configure rules to extract metric data from - // log events ingested through PutLogEvents (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutLogEvents.html) - // . The maximum number of metric filters that can be associated with a log group - // is 100. When you create a metric filter, you can also optionally assign a unit - // and dimensions to the metric that is created. Metrics extracted from log events - // are charged as custom metrics. To prevent unexpected high charges, do not - // specify high-cardinality fields such as IPAddress or requestID as dimensions. - // Each different value found for a dimension is treated as a separate metric and - // accrues charges as a separate custom metric. CloudWatch Logs might disable a - // metric filter if it generates 1,000 different name/value pairs for your - // specified dimensions within one hour. You can also set up a billing alarm to - // alert you if your charges are higher than expected. For more information, see - // Creating a Billing Alarm to Monitor Your Estimated Amazon Web Services Charges (https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/monitor_estimated_charges_with_cloudwatch.html) - // . + // log events ingested through [PutLogEvents]. + // + // The maximum number of metric filters that can be associated with a log group is + // 100. + // + // When you create a metric filter, you can also optionally assign a unit and + // dimensions to the metric that is created. + // + // Metrics extracted from log events are charged as custom metrics. To prevent + // unexpected high charges, do not specify high-cardinality fields such as + // IPAddress or requestID as dimensions. Each different value found for a + // dimension is treated as a separate metric and accrues charges as a separate + // custom metric. + // + // CloudWatch Logs might disable a metric filter if it generates 1,000 different + // name/value pairs for your specified dimensions within one hour. + // + // You can also set up a billing alarm to alert you if your charges are higher + // than expected. For more information, see [Creating a Billing Alarm to Monitor Your Estimated Amazon Web Services Charges]. + // + // [Creating a Billing Alarm to Monitor Your Estimated Amazon Web Services Charges]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/monitor_estimated_charges_with_cloudwatch.html + // [PutLogEvents]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutLogEvents.html PutMetricFilter(ctx context.Context, params *PutMetricFilterInput, optFns ...func(*Options)) (*PutMetricFilterOutput, error) // Creates or updates a query definition for CloudWatch Logs Insights. For more - // information, see Analyzing Log Data with CloudWatch Logs Insights (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AnalyzingLogData.html) - // . To update a query definition, specify its queryDefinitionId in your request. + // information, see [Analyzing Log Data with CloudWatch Logs Insights]. + // + // To update a query definition, specify its queryDefinitionId in your request. // The values of name , queryString , and logGroupNames are changed to the values // that you specify in your update operation. No current values are retained from // the current query definition. For example, imagine updating a current query // definition that includes log groups. If you don't specify the logGroupNames // parameter in your update operation, the query definition changes to contain no - // log groups. You must have the logs:PutQueryDefinition permission to be able to - // perform this operation. + // log groups. + // + // You must have the logs:PutQueryDefinition permission to be able to perform this + // operation. + // + // [Analyzing Log Data with CloudWatch Logs Insights]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/AnalyzingLogData.html PutQueryDefinition(ctx context.Context, params *PutQueryDefinitionInput, optFns ...func(*Options)) (*PutQueryDefinitionOutput, error) // Creates or updates a resource policy allowing other Amazon Web Services // services to put log events to this account, such as Amazon Route 53. An account @@ -652,142 +880,200 @@ type CloudWatchLogs interface { PutResourcePolicy(ctx context.Context, params *PutResourcePolicyInput, optFns ...func(*Options)) (*PutResourcePolicyOutput, error) // Sets the retention of the specified log group. With a retention policy, you can // configure the number of days for which to retain log events in the specified log - // group. CloudWatch Logs doesn’t immediately delete log events when they reach - // their retention setting. It typically takes up to 72 hours after that before log - // events are deleted, but in rare situations might take longer. To illustrate, - // imagine that you change a log group to have a longer retention setting when it - // contains log events that are past the expiration date, but haven’t been deleted. - // Those log events will take up to 72 hours to be deleted after the new retention - // date is reached. To make sure that log data is deleted permanently, keep a log - // group at its lower retention setting until 72 hours after the previous retention - // period ends. Alternatively, wait to change the retention setting until you - // confirm that the earlier log events are deleted. When log events reach their - // retention setting they are marked for deletion. After they are marked for - // deletion, they do not add to your archival storage costs anymore, even if they - // are not actually deleted until later. These log events marked for deletion are - // also not included when you use an API to retrieve the storedBytes value to see - // how many bytes a log group is storing. + // group. + // + // CloudWatch Logs doesn’t immediately delete log events when they reach their + // retention setting. It typically takes up to 72 hours after that before log + // events are deleted, but in rare situations might take longer. + // + // To illustrate, imagine that you change a log group to have a longer retention + // setting when it contains log events that are past the expiration date, but + // haven’t been deleted. Those log events will take up to 72 hours to be deleted + // after the new retention date is reached. To make sure that log data is deleted + // permanently, keep a log group at its lower retention setting until 72 hours + // after the previous retention period ends. Alternatively, wait to change the + // retention setting until you confirm that the earlier log events are deleted. + // + // When log events reach their retention setting they are marked for deletion. + // After they are marked for deletion, they do not add to your archival storage + // costs anymore, even if they are not actually deleted until later. These log + // events marked for deletion are also not included when you use an API to retrieve + // the storedBytes value to see how many bytes a log group is storing. PutRetentionPolicy(ctx context.Context, params *PutRetentionPolicyInput, optFns ...func(*Options)) (*PutRetentionPolicyOutput, error) // Creates or updates a subscription filter and associates it with the specified // log group. With subscription filters, you can subscribe to a real-time stream of - // log events ingested through PutLogEvents (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutLogEvents.html) - // and have them delivered to a specific destination. When log events are sent to - // the receiving service, they are Base64 encoded and compressed with the GZIP - // format. The following destinations are supported for subscription filters: + // log events ingested through [PutLogEvents]and have them delivered to a specific destination. + // When log events are sent to the receiving service, they are Base64 encoded and + // compressed with the GZIP format. + // + // The following destinations are supported for subscription filters: + // // - An Amazon Kinesis data stream belonging to the same account as the // subscription filter, for same-account delivery. - // - A logical destination created with PutDestination (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDestination.html) - // that belongs to a different account, for cross-account delivery. We currently - // support Kinesis Data Streams and Firehose as logical destinations. + // + // - A logical destination created with [PutDestination]that belongs to a different account, for + // cross-account delivery. We currently support Kinesis Data Streams and Firehose + // as logical destinations. + // // - An Amazon Kinesis Data Firehose delivery stream that belongs to the same // account as the subscription filter, for same-account delivery. + // // - An Lambda function that belongs to the same account as the subscription // filter, for same-account delivery. // // Each log group can have up to two subscription filters associated with it. If // you are updating an existing filter, you must specify the correct name in - // filterName . To perform a PutSubscriptionFilter operation for any destination - // except a Lambda function, you must also have the iam:PassRole permission. + // filterName . + // + // To perform a PutSubscriptionFilter operation for any destination except a + // Lambda function, you must also have the iam:PassRole permission. + // + // [PutDestination]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutDestination.html + // [PutLogEvents]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_PutLogEvents.html PutSubscriptionFilter(ctx context.Context, params *PutSubscriptionFilterInput, optFns ...func(*Options)) (*PutSubscriptionFilterOutput, error) // Starts a Live Tail streaming session for one or more log groups. A Live Tail // session returns a stream of log events that have been recently ingested in the - // log groups. For more information, see Use Live Tail to view logs in near real - // time (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/CloudWatchLogs_LiveTail.html) - // . The response to this operation is a response stream, over which the server - // sends live log events and the client receives them. The following objects are - // sent over the stream: - // - A single LiveTailSessionStart (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_LiveTailSessionStart.html) - // object is sent at the start of the session. - // - Every second, a LiveTailSessionUpdate (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_LiveTailSessionUpdate.html) - // object is sent. Each of these objects contains an array of the actual log - // events. If no new log events were ingested in the past second, the - // LiveTailSessionUpdate object will contain an empty array. The array of log - // events contained in a LiveTailSessionUpdate can include as many as 500 log - // events. If the number of log events matching the request exceeds 500 per second, - // the log events are sampled down to 500 log events to be included in each - // LiveTailSessionUpdate object. If your client consumes the log events slower - // than the server produces them, CloudWatch Logs buffers up to 10 - // LiveTailSessionUpdate events or 5000 log events, after which it starts - // dropping the oldest events. - // - A SessionStreamingException (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_SessionStreamingException.html) - // object is returned if an unknown error occurs on the server side. - // - A SessionTimeoutException (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_SessionTimeoutException.html) - // object is returned when the session times out, after it has been kept open for - // three hours. + // log groups. For more information, see [Use Live Tail to view logs in near real time]. + // + // The response to this operation is a response stream, over which the server + // sends live log events and the client receives them. + // + // The following objects are sent over the stream: + // + // - A single [LiveTailSessionStart]object is sent at the start of the session. + // + // - Every second, a [LiveTailSessionUpdate]object is sent. Each of these objects contains an array of + // the actual log events. + // + // If no new log events were ingested in the past second, the LiveTailSessionUpdate + // + // object will contain an empty array. + // + // The array of log events contained in a LiveTailSessionUpdate can include as many + // + // as 500 log events. If the number of log events matching the request exceeds 500 + // per second, the log events are sampled down to 500 log events to be included in + // each LiveTailSessionUpdate object. + // + // If your client consumes the log events slower than the server produces them, + // + // CloudWatch Logs buffers up to 10 LiveTailSessionUpdate events or 5000 log + // events, after which it starts dropping the oldest events. + // + // - A [SessionStreamingException]object is returned if an unknown error occurs on the server side. + // + // - A [SessionTimeoutException]object is returned when the session times out, after it has been kept + // open for three hours. // // You can end a session before it times out by closing the session stream or by // closing the client that is receiving the stream. The session also ends if the - // established connection between the client and the server breaks. For examples of - // using an SDK to start a Live Tail session, see Start a Live Tail session using - // an Amazon Web Services SDK (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/example_cloudwatch-logs_StartLiveTail_section.html) - // . + // established connection between the client and the server breaks. + // + // For examples of using an SDK to start a Live Tail session, see [Start a Live Tail session using an Amazon Web Services SDK]. + // + // [LiveTailSessionStart]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_LiveTailSessionStart.html + // [LiveTailSessionUpdate]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_LiveTailSessionUpdate.html + // [Use Live Tail to view logs in near real time]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/CloudWatchLogs_LiveTail.html + // [Start a Live Tail session using an Amazon Web Services SDK]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/example_cloudwatch-logs_StartLiveTail_section.html + // + // [SessionTimeoutException]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_SessionTimeoutException.html + // [SessionStreamingException]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_SessionStreamingException.html StartLiveTail(ctx context.Context, params *StartLiveTailInput, optFns ...func(*Options)) (*StartLiveTailOutput, error) // Schedules a query of a log group using CloudWatch Logs Insights. You specify - // the log group and time range to query and the query string to use. For more - // information, see CloudWatch Logs Insights Query Syntax (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/CWL_QuerySyntax.html) - // . After you run a query using StartQuery , the query results are stored by - // CloudWatch Logs. You can use GetQueryResults (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_GetQueryResults.html) - // to retrieve the results of a query, using the queryId that StartQuery returns. - // If you have associated a KMS key with the query results in this account, then - // StartQuery (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_StartQuery.html) + // the log group and time range to query and the query string to use. + // + // For more information, see [CloudWatch Logs Insights Query Syntax]. + // + // After you run a query using StartQuery , the query results are stored by + // CloudWatch Logs. You can use [GetQueryResults]to retrieve the results of a query, using the + // queryId that StartQuery returns. + // + // If you have associated a KMS key with the query results in this account, then [StartQuery] // uses that key to encrypt the results when it stores them. If no key is // associated with query results, the query results are encrypted with the default - // CloudWatch Logs encryption method. Queries time out after 60 minutes of runtime. - // If your queries are timing out, reduce the time range being searched or - // partition your query into a number of queries. If you are using CloudWatch - // cross-account observability, you can use this operation in a monitoring account - // to start a query in a linked source account. For more information, see - // CloudWatch cross-account observability (https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Unified-Cross-Account.html) - // . For a cross-account StartQuery operation, the query definition must be - // defined in the monitoring account. You can have up to 30 concurrent CloudWatch - // Logs insights queries, including queries that have been added to dashboards. + // CloudWatch Logs encryption method. + // + // Queries time out after 60 minutes of runtime. If your queries are timing out, + // reduce the time range being searched or partition your query into a number of + // queries. + // + // If you are using CloudWatch cross-account observability, you can use this + // operation in a monitoring account to start a query in a linked source account. + // For more information, see [CloudWatch cross-account observability]. For a cross-account StartQuery operation, the query + // definition must be defined in the monitoring account. + // + // You can have up to 30 concurrent CloudWatch Logs insights queries, including + // queries that have been added to dashboards. + // + // [CloudWatch Logs Insights Query Syntax]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/CWL_QuerySyntax.html + // [CloudWatch cross-account observability]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Unified-Cross-Account.html + // [GetQueryResults]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_GetQueryResults.html + // [StartQuery]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_StartQuery.html StartQuery(ctx context.Context, params *StartQueryInput, optFns ...func(*Options)) (*StartQueryOutput, error) // Stops a CloudWatch Logs Insights query that is in progress. If the query has // already ended, the operation returns an error indicating that the specified // query is not running. StopQuery(ctx context.Context, params *StopQueryInput, optFns ...func(*Options)) (*StopQueryOutput, error) // The TagLogGroup operation is on the path to deprecation. We recommend that you - // use TagResource (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_TagResource.html) - // instead. Adds or updates the specified tags for the specified log group. To list - // the tags for a log group, use ListTagsForResource (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_ListTagsForResource.html) - // . To remove tags, use UntagResource (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_UntagResource.html) - // . For more information about tags, see Tag Log Groups in Amazon CloudWatch Logs (https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/Working-with-log-groups-and-streams.html#log-group-tagging) - // in the Amazon CloudWatch Logs User Guide. CloudWatch Logs doesn’t support IAM - // policies that prevent users from assigning specified tags to log groups using - // the aws:Resource/key-name or aws:TagKeys condition keys. For more information - // about using tags to control access, see Controlling access to Amazon Web - // Services resources using tags (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html) - // . + // use [TagResource]instead. + // + // Adds or updates the specified tags for the specified log group. + // + // To list the tags for a log group, use [ListTagsForResource]. To remove tags, use [UntagResource]. + // + // For more information about tags, see [Tag Log Groups in Amazon CloudWatch Logs] in the Amazon CloudWatch Logs User Guide. + // + // CloudWatch Logs doesn’t support IAM policies that prevent users from assigning + // specified tags to log groups using the aws:Resource/key-name or aws:TagKeys + // condition keys. For more information about using tags to control access, see [Controlling access to Amazon Web Services resources using tags]. // // Deprecated: Please use the generic tagging API TagResource + // + // [TagResource]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_TagResource.html + // [UntagResource]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_UntagResource.html + // [Tag Log Groups in Amazon CloudWatch Logs]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/Working-with-log-groups-and-streams.html#log-group-tagging + // [Controlling access to Amazon Web Services resources using tags]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html + // [ListTagsForResource]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_ListTagsForResource.html TagLogGroup(ctx context.Context, params *TagLogGroupInput, optFns ...func(*Options)) (*TagLogGroupOutput, error) // Assigns one or more tags (key-value pairs) to the specified CloudWatch Logs // resource. Currently, the only CloudWatch Logs resources that can be tagged are - // log groups and destinations. Tags can help you organize and categorize your - // resources. You can also use them to scope user permissions by granting a user - // permission to access or change only resources with certain tag values. Tags - // don't have any semantic meaning to Amazon Web Services and are interpreted - // strictly as strings of characters. You can use the TagResource action with a - // resource that already has tags. If you specify a new tag key for the alarm, this - // tag is appended to the list of tags associated with the alarm. If you specify a - // tag key that is already associated with the alarm, the new tag value that you - // specify replaces the previous value for that tag. You can associate as many as - // 50 tags with a CloudWatch Logs resource. + // log groups and destinations. + // + // Tags can help you organize and categorize your resources. You can also use them + // to scope user permissions by granting a user permission to access or change only + // resources with certain tag values. + // + // Tags don't have any semantic meaning to Amazon Web Services and are interpreted + // strictly as strings of characters. + // + // You can use the TagResource action with a resource that already has tags. If + // you specify a new tag key for the alarm, this tag is appended to the list of + // tags associated with the alarm. If you specify a tag key that is already + // associated with the alarm, the new tag value that you specify replaces the + // previous value for that tag. + // + // You can associate as many as 50 tags with a CloudWatch Logs resource. TagResource(ctx context.Context, params *TagResourceInput, optFns ...func(*Options)) (*TagResourceOutput, error) // Tests the filter pattern of a metric filter against a sample of log event // messages. You can use this operation to validate the correctness of a metric // filter pattern. TestMetricFilter(ctx context.Context, params *TestMetricFilterInput, optFns ...func(*Options)) (*TestMetricFilterOutput, error) // The UntagLogGroup operation is on the path to deprecation. We recommend that - // you use UntagResource (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_UntagResource.html) - // instead. Removes the specified tags from the specified log group. To list the - // tags for a log group, use ListTagsForResource (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_ListTagsForResource.html) - // . To add tags, use TagResource (https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_TagResource.html) - // . CloudWatch Logs doesn’t support IAM policies that prevent users from assigning + // you use [UntagResource]instead. + // + // Removes the specified tags from the specified log group. + // + // To list the tags for a log group, use [ListTagsForResource]. To add tags, use [TagResource]. + // + // CloudWatch Logs doesn’t support IAM policies that prevent users from assigning // specified tags to log groups using the aws:Resource/key-name or aws:TagKeys // condition keys. // // Deprecated: Please use the generic tagging API UntagResource + // + // [TagResource]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_TagResource.html + // [UntagResource]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_UntagResource.html + // [ListTagsForResource]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_ListTagsForResource.html UntagLogGroup(ctx context.Context, params *UntagLogGroupInput, optFns ...func(*Options)) (*UntagLogGroupOutput, error) // Removes one or more tags from the specified resource. UntagResource(ctx context.Context, params *UntagResourceInput, optFns ...func(*Options)) (*UntagResourceOutput, error) @@ -795,12 +1081,16 @@ type CloudWatchLogs interface { // pattern. If you suppress an anomaly, CloudWatch Logs won’t report new // occurrences of that anomaly and won't update that anomaly with new data. If you // suppress a pattern, CloudWatch Logs won’t report any anomalies related to that - // pattern. You must specify either anomalyId or patternId , but you can't specify - // both parameters in the same operation. If you have previously used this - // operation to suppress detection of a pattern or anomaly, you can use it again to - // cause CloudWatch Logs to end the suppression. To do this, use this operation and - // specify the anomaly or pattern to stop suppressing, and omit the suppressionType - // and suppressionPeriod parameters. + // pattern. + // + // You must specify either anomalyId or patternId , but you can't specify both + // parameters in the same operation. + // + // If you have previously used this operation to suppress detection of a pattern + // or anomaly, you can use it again to cause CloudWatch Logs to end the + // suppression. To do this, use this operation and specify the anomaly or pattern + // to stop suppressing, and omit the suppressionType and suppressionPeriod + // parameters. UpdateAnomaly(ctx context.Context, params *UpdateAnomalyInput, optFns ...func(*Options)) (*UpdateAnomalyOutput, error) // Updates an existing log anomaly detector. UpdateLogAnomalyDetector(ctx context.Context, params *UpdateLogAnomalyDetectorInput, optFns ...func(*Options)) (*UpdateLogAnomalyDetectorOutput, error) diff --git a/pkg/awsapi/elasticloadbalancing.go b/pkg/awsapi/elasticloadbalancing.go index 780c5001d5..5545d92060 100644 --- a/pkg/awsapi/elasticloadbalancing.go +++ b/pkg/awsapi/elasticloadbalancing.go @@ -18,83 +18,112 @@ type ELB interface { // functional options. Options() elasticloadbalancing.Options // Adds the specified tags to the specified load balancer. Each load balancer can - // have a maximum of 10 tags. Each tag consists of a key and an optional value. If - // a tag with the same key is already associated with the load balancer, AddTags - // updates its value. For more information, see Tag Your Classic Load Balancer (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/add-remove-tags.html) - // in the Classic Load Balancers Guide. + // have a maximum of 10 tags. + // + // Each tag consists of a key and an optional value. If a tag with the same key is + // already associated with the load balancer, AddTags updates its value. + // + // For more information, see [Tag Your Classic Load Balancer] in the Classic Load Balancers Guide. + // + // [Tag Your Classic Load Balancer]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/add-remove-tags.html AddTags(ctx context.Context, params *AddTagsInput, optFns ...func(*Options)) (*AddTagsOutput, error) // Associates one or more security groups with your load balancer in a virtual // private cloud (VPC). The specified security groups override the previously - // associated security groups. For more information, see Security Groups for Load - // Balancers in a VPC (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-security-groups.html#elb-vpc-security-groups) - // in the Classic Load Balancers Guide. + // associated security groups. + // + // For more information, see [Security Groups for Load Balancers in a VPC] in the Classic Load Balancers Guide. + // + // [Security Groups for Load Balancers in a VPC]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-security-groups.html#elb-vpc-security-groups ApplySecurityGroupsToLoadBalancer(ctx context.Context, params *ApplySecurityGroupsToLoadBalancerInput, optFns ...func(*Options)) (*ApplySecurityGroupsToLoadBalancerOutput, error) // Adds one or more subnets to the set of configured subnets for the specified - // load balancer. The load balancer evenly distributes requests across all - // registered subnets. For more information, see Add or Remove Subnets for Your - // Load Balancer in a VPC (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-manage-subnets.html) - // in the Classic Load Balancers Guide. + // load balancer. + // + // The load balancer evenly distributes requests across all registered subnets. + // For more information, see [Add or Remove Subnets for Your Load Balancer in a VPC]in the Classic Load Balancers Guide. + // + // [Add or Remove Subnets for Your Load Balancer in a VPC]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-manage-subnets.html AttachLoadBalancerToSubnets(ctx context.Context, params *AttachLoadBalancerToSubnetsInput, optFns ...func(*Options)) (*AttachLoadBalancerToSubnetsOutput, error) // Specifies the health check settings to use when evaluating the health state of - // your EC2 instances. For more information, see Configure Health Checks for Your - // Load Balancer (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-healthchecks.html) - // in the Classic Load Balancers Guide. + // your EC2 instances. + // + // For more information, see [Configure Health Checks for Your Load Balancer] in the Classic Load Balancers Guide. + // + // [Configure Health Checks for Your Load Balancer]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-healthchecks.html ConfigureHealthCheck(ctx context.Context, params *ConfigureHealthCheckInput, optFns ...func(*Options)) (*ConfigureHealthCheckOutput, error) // Generates a stickiness policy with sticky session lifetimes that follow that of // an application-generated cookie. This policy can be associated only with - // HTTP/HTTPS listeners. This policy is similar to the policy created by - // CreateLBCookieStickinessPolicy , except that the lifetime of the special Elastic - // Load Balancing cookie, AWSELB , follows the lifetime of the + // HTTP/HTTPS listeners. + // + // This policy is similar to the policy created by CreateLBCookieStickinessPolicy, except that the lifetime of + // the special Elastic Load Balancing cookie, AWSELB , follows the lifetime of the // application-generated cookie specified in the policy configuration. The load // balancer only inserts a new stickiness cookie when the application response - // includes a new application cookie. If the application cookie is explicitly - // removed or expires, the session stops being sticky until a new application - // cookie is issued. For more information, see Application-Controlled Session - // Stickiness (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-sticky-sessions.html#enable-sticky-sessions-application) - // in the Classic Load Balancers Guide. + // includes a new application cookie. + // + // If the application cookie is explicitly removed or expires, the session stops + // being sticky until a new application cookie is issued. + // + // For more information, see [Application-Controlled Session Stickiness] in the Classic Load Balancers Guide. + // + // [Application-Controlled Session Stickiness]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-sticky-sessions.html#enable-sticky-sessions-application CreateAppCookieStickinessPolicy(ctx context.Context, params *CreateAppCookieStickinessPolicyInput, optFns ...func(*Options)) (*CreateAppCookieStickinessPolicyOutput, error) // Generates a stickiness policy with sticky session lifetimes controlled by the // lifetime of the browser (user-agent) or a specified expiration period. This - // policy can be associated only with HTTP/HTTPS listeners. When a load balancer - // implements this policy, the load balancer uses a special cookie to track the - // instance for each request. When the load balancer receives a request, it first - // checks to see if this cookie is present in the request. If so, the load balancer - // sends the request to the application server specified in the cookie. If not, the - // load balancer sends the request to a server that is chosen based on the existing - // load-balancing algorithm. A cookie is inserted into the response for binding - // subsequent requests from the same user to that server. The validity of the - // cookie is based on the cookie expiration time, which is specified in the policy - // configuration. For more information, see Duration-Based Session Stickiness (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-sticky-sessions.html#enable-sticky-sessions-duration) - // in the Classic Load Balancers Guide. + // policy can be associated only with HTTP/HTTPS listeners. + // + // When a load balancer implements this policy, the load balancer uses a special + // cookie to track the instance for each request. When the load balancer receives a + // request, it first checks to see if this cookie is present in the request. If so, + // the load balancer sends the request to the application server specified in the + // cookie. If not, the load balancer sends the request to a server that is chosen + // based on the existing load-balancing algorithm. + // + // A cookie is inserted into the response for binding subsequent requests from the + // same user to that server. The validity of the cookie is based on the cookie + // expiration time, which is specified in the policy configuration. + // + // For more information, see [Duration-Based Session Stickiness] in the Classic Load Balancers Guide. + // + // [Duration-Based Session Stickiness]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-sticky-sessions.html#enable-sticky-sessions-duration CreateLBCookieStickinessPolicy(ctx context.Context, params *CreateLBCookieStickinessPolicyInput, optFns ...func(*Options)) (*CreateLBCookieStickinessPolicyOutput, error) - // Creates a Classic Load Balancer. You can add listeners, security groups, - // subnets, and tags when you create your load balancer, or you can add them later - // using CreateLoadBalancerListeners , ApplySecurityGroupsToLoadBalancer , - // AttachLoadBalancerToSubnets , and AddTags . To describe your current load - // balancers, see DescribeLoadBalancers . When you are finished with a load - // balancer, you can delete it using DeleteLoadBalancer . You can create up to 20 - // load balancers per region per account. You can request an increase for the - // number of load balancers for your account. For more information, see Limits for - // Your Classic Load Balancer (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-limits.html) - // in the Classic Load Balancers Guide. + // Creates a Classic Load Balancer. + // + // You can add listeners, security groups, subnets, and tags when you create your + // load balancer, or you can add them later using CreateLoadBalancerListeners, ApplySecurityGroupsToLoadBalancer, AttachLoadBalancerToSubnets, and AddTags. + // + // To describe your current load balancers, see DescribeLoadBalancers. When you are finished with a + // load balancer, you can delete it using DeleteLoadBalancer. + // + // You can create up to 20 load balancers per region per account. You can request + // an increase for the number of load balancers for your account. For more + // information, see [Limits for Your Classic Load Balancer]in the Classic Load Balancers Guide. + // + // [Limits for Your Classic Load Balancer]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-limits.html CreateLoadBalancer(ctx context.Context, params *CreateLoadBalancerInput, optFns ...func(*Options)) (*CreateLoadBalancerOutput, error) // Creates one or more listeners for the specified load balancer. If a listener // with the specified port does not already exist, it is created; otherwise, the // properties of the new listener must match the properties of the existing - // listener. For more information, see Listeners for Your Classic Load Balancer (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-listener-config.html) - // in the Classic Load Balancers Guide. + // listener. + // + // For more information, see [Listeners for Your Classic Load Balancer] in the Classic Load Balancers Guide. + // + // [Listeners for Your Classic Load Balancer]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-listener-config.html CreateLoadBalancerListeners(ctx context.Context, params *CreateLoadBalancerListenersInput, optFns ...func(*Options)) (*CreateLoadBalancerListenersOutput, error) // Creates a policy with the specified attributes for the specified load balancer. + // // Policies are settings that are saved for your load balancer and that can be // applied to the listener or the application server, depending on the policy type. CreateLoadBalancerPolicy(ctx context.Context, params *CreateLoadBalancerPolicyInput, optFns ...func(*Options)) (*CreateLoadBalancerPolicyOutput, error) - // Deletes the specified load balancer. If you are attempting to recreate a load - // balancer, you must reconfigure all settings. The DNS name associated with a - // deleted load balancer are no longer usable. The name and associated DNS record - // of the deleted load balancer no longer exist and traffic sent to any of its IP - // addresses is no longer delivered to your instances. If the load balancer does - // not exist or has already been deleted, the call to DeleteLoadBalancer still - // succeeds. + // Deletes the specified load balancer. + // + // If you are attempting to recreate a load balancer, you must reconfigure all + // settings. The DNS name associated with a deleted load balancer are no longer + // usable. The name and associated DNS record of the deleted load balancer no + // longer exist and traffic sent to any of its IP addresses is no longer delivered + // to your instances. + // + // If the load balancer does not exist or has already been deleted, the call to + // DeleteLoadBalancer still succeeds. DeleteLoadBalancer(ctx context.Context, params *DeleteLoadBalancerInput, optFns ...func(*Options)) (*DeleteLoadBalancerOutput, error) // Deletes the specified listeners from the specified load balancer. DeleteLoadBalancerListeners(ctx context.Context, params *DeleteLoadBalancerListenersInput, optFns ...func(*Options)) (*DeleteLoadBalancerListenersOutput, error) @@ -103,14 +132,19 @@ type ELB interface { DeleteLoadBalancerPolicy(ctx context.Context, params *DeleteLoadBalancerPolicyInput, optFns ...func(*Options)) (*DeleteLoadBalancerPolicyOutput, error) // Deregisters the specified instances from the specified load balancer. After the // instance is deregistered, it no longer receives traffic from the load balancer. - // You can use DescribeLoadBalancers to verify that the instance is deregistered - // from the load balancer. For more information, see Register or De-Register EC2 - // Instances (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-deregister-register-instances.html) - // in the Classic Load Balancers Guide. + // + // You can use DescribeLoadBalancers to verify that the instance is deregistered from the load balancer. + // + // For more information, see [Register or De-Register EC2 Instances] in the Classic Load Balancers Guide. + // + // [Register or De-Register EC2 Instances]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-deregister-register-instances.html DeregisterInstancesFromLoadBalancer(ctx context.Context, params *DeregisterInstancesFromLoadBalancerInput, optFns ...func(*Options)) (*DeregisterInstancesFromLoadBalancerOutput, error) // Describes the current Elastic Load Balancing resource limits for your AWS - // account. For more information, see Limits for Your Classic Load Balancer (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-limits.html) - // in the Classic Load Balancers Guide. + // account. + // + // For more information, see [Limits for Your Classic Load Balancer] in the Classic Load Balancers Guide. + // + // [Limits for Your Classic Load Balancer]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-limits.html DescribeAccountLimits(ctx context.Context, params *DescribeAccountLimitsInput, optFns ...func(*Options)) (*DescribeAccountLimitsOutput, error) // Describes the state of the specified instances with respect to the specified // load balancer. If no instances are specified, the call describes the state of @@ -120,22 +154,25 @@ type ELB interface { DescribeInstanceHealth(ctx context.Context, params *DescribeInstanceHealthInput, optFns ...func(*Options)) (*DescribeInstanceHealthOutput, error) // Describes the attributes for the specified load balancer. DescribeLoadBalancerAttributes(ctx context.Context, params *DescribeLoadBalancerAttributesInput, optFns ...func(*Options)) (*DescribeLoadBalancerAttributesOutput, error) - // Describes the specified policies. If you specify a load balancer name, the - // action returns the descriptions of all policies created for the load balancer. - // If you specify a policy name associated with your load balancer, the action - // returns the description of that policy. If you don't specify a load balancer - // name, the action returns descriptions of the specified sample policies, or - // descriptions of all sample policies. The names of the sample policies have the - // ELBSample- prefix. + // Describes the specified policies. + // + // If you specify a load balancer name, the action returns the descriptions of all + // policies created for the load balancer. If you specify a policy name associated + // with your load balancer, the action returns the description of that policy. If + // you don't specify a load balancer name, the action returns descriptions of the + // specified sample policies, or descriptions of all sample policies. The names of + // the sample policies have the ELBSample- prefix. DescribeLoadBalancerPolicies(ctx context.Context, params *DescribeLoadBalancerPoliciesInput, optFns ...func(*Options)) (*DescribeLoadBalancerPoliciesOutput, error) // Describes the specified load balancer policy types or all load balancer policy - // types. The description of each type indicates how it can be used. For example, - // some policies can be used only with layer 7 listeners, some policies can be used - // only with layer 4 listeners, and some policies can be used only with your EC2 - // instances. You can use CreateLoadBalancerPolicy to create a policy - // configuration for any of these policy types. Then, depending on the policy type, - // use either SetLoadBalancerPoliciesOfListener or - // SetLoadBalancerPoliciesForBackendServer to set the policy. + // types. + // + // The description of each type indicates how it can be used. For example, some + // policies can be used only with layer 7 listeners, some policies can be used only + // with layer 4 listeners, and some policies can be used only with your EC2 + // instances. + // + // You can use CreateLoadBalancerPolicy to create a policy configuration for any of these policy types. + // Then, depending on the policy type, use either SetLoadBalancerPoliciesOfListeneror SetLoadBalancerPoliciesForBackendServer to set the policy. DescribeLoadBalancerPolicyTypes(ctx context.Context, params *DescribeLoadBalancerPolicyTypesInput, optFns ...func(*Options)) (*DescribeLoadBalancerPolicyTypesOutput, error) // Describes the specified the load balancers. If no load balancers are specified, // the call describes all of your load balancers. @@ -143,84 +180,124 @@ type ELB interface { // Describes the tags associated with the specified load balancers. DescribeTags(ctx context.Context, params *DescribeTagsInput, optFns ...func(*Options)) (*DescribeTagsOutput, error) // Removes the specified subnets from the set of configured subnets for the load - // balancer. After a subnet is removed, all EC2 instances registered with the load - // balancer in the removed subnet go into the OutOfService state. Then, the load - // balancer balances the traffic among the remaining routable subnets. + // balancer. + // + // After a subnet is removed, all EC2 instances registered with the load balancer + // in the removed subnet go into the OutOfService state. Then, the load balancer + // balances the traffic among the remaining routable subnets. DetachLoadBalancerFromSubnets(ctx context.Context, params *DetachLoadBalancerFromSubnetsInput, optFns ...func(*Options)) (*DetachLoadBalancerFromSubnetsOutput, error) // Removes the specified Availability Zones from the set of Availability Zones for - // the specified load balancer in EC2-Classic or a default VPC. For load balancers - // in a non-default VPC, use DetachLoadBalancerFromSubnets . There must be at least - // one Availability Zone registered with a load balancer at all times. After an - // Availability Zone is removed, all instances registered with the load balancer - // that are in the removed Availability Zone go into the OutOfService state. Then, - // the load balancer attempts to equally balance the traffic among its remaining - // Availability Zones. For more information, see Add or Remove Availability Zones (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/enable-disable-az.html) - // in the Classic Load Balancers Guide. + // the specified load balancer in EC2-Classic or a default VPC. + // + // For load balancers in a non-default VPC, use DetachLoadBalancerFromSubnets. + // + // There must be at least one Availability Zone registered with a load balancer at + // all times. After an Availability Zone is removed, all instances registered with + // the load balancer that are in the removed Availability Zone go into the + // OutOfService state. Then, the load balancer attempts to equally balance the + // traffic among its remaining Availability Zones. + // + // For more information, see [Add or Remove Availability Zones] in the Classic Load Balancers Guide. + // + // [Add or Remove Availability Zones]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/enable-disable-az.html DisableAvailabilityZonesForLoadBalancer(ctx context.Context, params *DisableAvailabilityZonesForLoadBalancerInput, optFns ...func(*Options)) (*DisableAvailabilityZonesForLoadBalancerOutput, error) // Adds the specified Availability Zones to the set of Availability Zones for the - // specified load balancer in EC2-Classic or a default VPC. For load balancers in a - // non-default VPC, use AttachLoadBalancerToSubnets . The load balancer evenly - // distributes requests across all its registered Availability Zones that contain - // instances. For more information, see Add or Remove Availability Zones (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/enable-disable-az.html) - // in the Classic Load Balancers Guide. + // specified load balancer in EC2-Classic or a default VPC. + // + // For load balancers in a non-default VPC, use AttachLoadBalancerToSubnets. + // + // The load balancer evenly distributes requests across all its registered + // Availability Zones that contain instances. For more information, see [Add or Remove Availability Zones]in the + // Classic Load Balancers Guide. + // + // [Add or Remove Availability Zones]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/enable-disable-az.html EnableAvailabilityZonesForLoadBalancer(ctx context.Context, params *EnableAvailabilityZonesForLoadBalancerInput, optFns ...func(*Options)) (*EnableAvailabilityZonesForLoadBalancerOutput, error) - // Modifies the attributes of the specified load balancer. You can modify the load - // balancer attributes, such as AccessLogs , ConnectionDraining , and - // CrossZoneLoadBalancing by either enabling or disabling them. Or, you can modify - // the load balancer attribute ConnectionSettings by specifying an idle connection - // timeout value for your load balancer. For more information, see the following in - // the Classic Load Balancers Guide: - // - Cross-Zone Load Balancing (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/enable-disable-crosszone-lb.html) - // - Connection Draining (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/config-conn-drain.html) - // - Access Logs (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/access-log-collection.html) - // - Idle Connection Timeout (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/config-idle-timeout.html) + // Modifies the attributes of the specified load balancer. + // + // You can modify the load balancer attributes, such as AccessLogs , + // ConnectionDraining , and CrossZoneLoadBalancing by either enabling or disabling + // them. Or, you can modify the load balancer attribute ConnectionSettings by + // specifying an idle connection timeout value for your load balancer. + // + // For more information, see the following in the Classic Load Balancers Guide: + // + // [Cross-Zone Load Balancing] + // + // [Connection Draining] + // + // [Access Logs] + // + // [Idle Connection Timeout] + // + // [Cross-Zone Load Balancing]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/enable-disable-crosszone-lb.html + // [Idle Connection Timeout]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/config-idle-timeout.html + // [Access Logs]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/access-log-collection.html + // [Connection Draining]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/config-conn-drain.html ModifyLoadBalancerAttributes(ctx context.Context, params *ModifyLoadBalancerAttributesInput, optFns ...func(*Options)) (*ModifyLoadBalancerAttributesOutput, error) - // Adds the specified instances to the specified load balancer. The instance must - // be a running instance in the same network as the load balancer (EC2-Classic or - // the same VPC). If you have EC2-Classic instances and a load balancer in a VPC - // with ClassicLink enabled, you can link the EC2-Classic instances to that VPC and - // then register the linked EC2-Classic instances with the load balancer in the - // VPC. Note that RegisterInstanceWithLoadBalancer completes when the request has - // been registered. Instance registration takes a little time to complete. To check - // the state of the registered instances, use DescribeLoadBalancers or - // DescribeInstanceHealth . After the instance is registered, it starts receiving - // traffic and requests from the load balancer. Any instance that is not in one of - // the Availability Zones registered for the load balancer is moved to the - // OutOfService state. If an Availability Zone is added to the load balancer later, - // any instances registered with the load balancer move to the InService state. To - // deregister instances from a load balancer, use - // DeregisterInstancesFromLoadBalancer . For more information, see Register or - // De-Register EC2 Instances (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-deregister-register-instances.html) - // in the Classic Load Balancers Guide. + // Adds the specified instances to the specified load balancer. + // + // The instance must be a running instance in the same network as the load + // balancer (EC2-Classic or the same VPC). If you have EC2-Classic instances and a + // load balancer in a VPC with ClassicLink enabled, you can link the EC2-Classic + // instances to that VPC and then register the linked EC2-Classic instances with + // the load balancer in the VPC. + // + // Note that RegisterInstanceWithLoadBalancer completes when the request has been + // registered. Instance registration takes a little time to complete. To check the + // state of the registered instances, use DescribeLoadBalancersor DescribeInstanceHealth. + // + // After the instance is registered, it starts receiving traffic and requests from + // the load balancer. Any instance that is not in one of the Availability Zones + // registered for the load balancer is moved to the OutOfService state. If an + // Availability Zone is added to the load balancer later, any instances registered + // with the load balancer move to the InService state. + // + // To deregister instances from a load balancer, use DeregisterInstancesFromLoadBalancer. + // + // For more information, see [Register or De-Register EC2 Instances] in the Classic Load Balancers Guide. + // + // [Register or De-Register EC2 Instances]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-deregister-register-instances.html RegisterInstancesWithLoadBalancer(ctx context.Context, params *RegisterInstancesWithLoadBalancerInput, optFns ...func(*Options)) (*RegisterInstancesWithLoadBalancerOutput, error) // Removes one or more tags from the specified load balancer. RemoveTags(ctx context.Context, params *RemoveTagsInput, optFns ...func(*Options)) (*RemoveTagsOutput, error) // Sets the certificate that terminates the specified listener's SSL connections. // The specified certificate replaces any prior certificate that was used on the - // same load balancer and port. For more information about updating your SSL - // certificate, see Replace the SSL Certificate for Your Load Balancer (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-update-ssl-cert.html) - // in the Classic Load Balancers Guide. + // same load balancer and port. + // + // For more information about updating your SSL certificate, see [Replace the SSL Certificate for Your Load Balancer] in the Classic + // Load Balancers Guide. + // + // [Replace the SSL Certificate for Your Load Balancer]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-update-ssl-cert.html SetLoadBalancerListenerSSLCertificate(ctx context.Context, params *SetLoadBalancerListenerSSLCertificateInput, optFns ...func(*Options)) (*SetLoadBalancerListenerSSLCertificateOutput, error) // Replaces the set of policies associated with the specified port on which the // EC2 instance is listening with a new set of policies. At this time, only the // back-end server authentication policy type can be applied to the instance ports; - // this policy type is composed of multiple public key policies. Each time you use - // SetLoadBalancerPoliciesForBackendServer to enable the policies, use the - // PolicyNames parameter to list the policies that you want to enable. You can use - // DescribeLoadBalancers or DescribeLoadBalancerPolicies to verify that the policy - // is associated with the EC2 instance. For more information about enabling - // back-end instance authentication, see Configure Back-end Instance Authentication (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-create-https-ssl-load-balancer.html#configure_backendauth_clt) - // in the Classic Load Balancers Guide. For more information about Proxy Protocol, - // see Configure Proxy Protocol Support (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/enable-proxy-protocol.html) - // in the Classic Load Balancers Guide. + // this policy type is composed of multiple public key policies. + // + // Each time you use SetLoadBalancerPoliciesForBackendServer to enable the + // policies, use the PolicyNames parameter to list the policies that you want to + // enable. + // + // You can use DescribeLoadBalancers or DescribeLoadBalancerPolicies to verify that the policy is associated with the EC2 instance. + // + // For more information about enabling back-end instance authentication, see [Configure Back-end Instance Authentication] in + // the Classic Load Balancers Guide. For more information about Proxy Protocol, see + // [Configure Proxy Protocol Support]in the Classic Load Balancers Guide. + // + // [Configure Back-end Instance Authentication]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-create-https-ssl-load-balancer.html#configure_backendauth_clt + // [Configure Proxy Protocol Support]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/enable-proxy-protocol.html SetLoadBalancerPoliciesForBackendServer(ctx context.Context, params *SetLoadBalancerPoliciesForBackendServerInput, optFns ...func(*Options)) (*SetLoadBalancerPoliciesForBackendServerOutput, error) // Replaces the current set of policies for the specified load balancer port with - // the specified set of policies. To enable back-end server authentication, use - // SetLoadBalancerPoliciesForBackendServer . For more information about setting - // policies, see Update the SSL Negotiation Configuration (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/ssl-config-update.html) - // , Duration-Based Session Stickiness (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-sticky-sessions.html#enable-sticky-sessions-duration) - // , and Application-Controlled Session Stickiness (https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-sticky-sessions.html#enable-sticky-sessions-application) - // in the Classic Load Balancers Guide. + // the specified set of policies. + // + // To enable back-end server authentication, use SetLoadBalancerPoliciesForBackendServer. + // + // For more information about setting policies, see [Update the SSL Negotiation Configuration], [Duration-Based Session Stickiness], and [Application-Controlled Session Stickiness] in the Classic Load + // Balancers Guide. + // + // [Update the SSL Negotiation Configuration]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/ssl-config-update.html + // [Duration-Based Session Stickiness]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-sticky-sessions.html#enable-sticky-sessions-duration + // [Application-Controlled Session Stickiness]: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-sticky-sessions.html#enable-sticky-sessions-application SetLoadBalancerPoliciesOfListener(ctx context.Context, params *SetLoadBalancerPoliciesOfListenerInput, optFns ...func(*Options)) (*SetLoadBalancerPoliciesOfListenerOutput, error) } diff --git a/pkg/awsapi/elasticloadbalancingv2.go b/pkg/awsapi/elasticloadbalancingv2.go index b62777f201..36034dd800 100644 --- a/pkg/awsapi/elasticloadbalancingv2.go +++ b/pkg/awsapi/elasticloadbalancingv2.go @@ -18,143 +18,228 @@ type ELBV2 interface { // functional options. Options() elasticloadbalancingv2.Options // Adds the specified SSL server certificate to the certificate list for the - // specified HTTPS or TLS listener. If the certificate in already in the - // certificate list, the call is successful but the certificate is not added again. - // For more information, see HTTPS listeners (https://docs.aws.amazon.com/elasticloadbalancing/latest/application/create-https-listener.html) - // in the Application Load Balancers Guide or TLS listeners (https://docs.aws.amazon.com/elasticloadbalancing/latest/network/create-tls-listener.html) - // in the Network Load Balancers Guide. + // specified HTTPS or TLS listener. + // + // If the certificate in already in the certificate list, the call is successful + // but the certificate is not added again. + // + // For more information, see [HTTPS listeners] in the Application Load Balancers Guide or [TLS listeners] in the + // Network Load Balancers Guide. + // + // [TLS listeners]: https://docs.aws.amazon.com/elasticloadbalancing/latest/network/create-tls-listener.html + // [HTTPS listeners]: https://docs.aws.amazon.com/elasticloadbalancing/latest/application/create-https-listener.html AddListenerCertificates(ctx context.Context, params *AddListenerCertificatesInput, optFns ...func(*Options)) (*AddListenerCertificatesOutput, error) // Adds the specified tags to the specified Elastic Load Balancing resource. You // can tag your Application Load Balancers, Network Load Balancers, Gateway Load - // Balancers, target groups, trust stores, listeners, and rules. Each tag consists - // of a key and an optional value. If a resource already has a tag with the same - // key, AddTags updates its value. + // Balancers, target groups, trust stores, listeners, and rules. + // + // Each tag consists of a key and an optional value. If a resource already has a + // tag with the same key, AddTags updates its value. AddTags(ctx context.Context, params *AddTagsInput, optFns ...func(*Options)) (*AddTagsOutput, error) // Adds the specified revocation file to the specified trust store. AddTrustStoreRevocations(ctx context.Context, params *AddTrustStoreRevocationsInput, optFns ...func(*Options)) (*AddTrustStoreRevocationsOutput, error) // Creates a listener for the specified Application Load Balancer, Network Load - // Balancer, or Gateway Load Balancer. For more information, see the following: - // - Listeners for your Application Load Balancers (https://docs.aws.amazon.com/elasticloadbalancing/latest/application/load-balancer-listeners.html) - // - Listeners for your Network Load Balancers (https://docs.aws.amazon.com/elasticloadbalancing/latest/network/load-balancer-listeners.html) - // - Listeners for your Gateway Load Balancers (https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/gateway-listeners.html) + // Balancer, or Gateway Load Balancer. + // + // For more information, see the following: + // + // [Listeners for your Application Load Balancers] + // + // [Listeners for your Network Load Balancers] + // + // [Listeners for your Gateway Load Balancers] // // This operation is idempotent, which means that it completes at most one time. // If you attempt to create multiple listeners with the same settings, each call // succeeds. + // + // [Listeners for your Gateway Load Balancers]: https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/gateway-listeners.html + // [Listeners for your Application Load Balancers]: https://docs.aws.amazon.com/elasticloadbalancing/latest/application/load-balancer-listeners.html + // [Listeners for your Network Load Balancers]: https://docs.aws.amazon.com/elasticloadbalancing/latest/network/load-balancer-listeners.html CreateListener(ctx context.Context, params *CreateListenerInput, optFns ...func(*Options)) (*CreateListenerOutput, error) // Creates an Application Load Balancer, Network Load Balancer, or Gateway Load - // Balancer. For more information, see the following: - // - Application Load Balancers (https://docs.aws.amazon.com/elasticloadbalancing/latest/application/application-load-balancers.html) - // - Network Load Balancers (https://docs.aws.amazon.com/elasticloadbalancing/latest/network/network-load-balancers.html) - // - Gateway Load Balancers (https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/gateway-load-balancers.html) + // Balancer. + // + // For more information, see the following: + // + // [Application Load Balancers] + // + // [Network Load Balancers] + // + // [Gateway Load Balancers] // // This operation is idempotent, which means that it completes at most one time. // If you attempt to create multiple load balancers with the same settings, each // call succeeds. + // + // [Gateway Load Balancers]: https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/gateway-load-balancers.html + // [Network Load Balancers]: https://docs.aws.amazon.com/elasticloadbalancing/latest/network/network-load-balancers.html + // [Application Load Balancers]: https://docs.aws.amazon.com/elasticloadbalancing/latest/application/application-load-balancers.html CreateLoadBalancer(ctx context.Context, params *CreateLoadBalancerInput, optFns ...func(*Options)) (*CreateLoadBalancerOutput, error) // Creates a rule for the specified listener. The listener must be associated with - // an Application Load Balancer. Each rule consists of a priority, one or more - // actions, and one or more conditions. Rules are evaluated in priority order, from - // the lowest value to the highest value. When the conditions for a rule are met, - // its actions are performed. If the conditions for no rules are met, the actions - // for the default rule are performed. For more information, see Listener rules (https://docs.aws.amazon.com/elasticloadbalancing/latest/application/load-balancer-listeners.html#listener-rules) - // in the Application Load Balancers Guide. + // an Application Load Balancer. + // + // Each rule consists of a priority, one or more actions, and one or more + // conditions. Rules are evaluated in priority order, from the lowest value to the + // highest value. When the conditions for a rule are met, its actions are + // performed. If the conditions for no rules are met, the actions for the default + // rule are performed. For more information, see [Listener rules]in the Application Load Balancers + // Guide. + // + // [Listener rules]: https://docs.aws.amazon.com/elasticloadbalancing/latest/application/load-balancer-listeners.html#listener-rules CreateRule(ctx context.Context, params *CreateRuleInput, optFns ...func(*Options)) (*CreateRuleOutput, error) - // Creates a target group. For more information, see the following: - // - Target groups for your Application Load Balancers (https://docs.aws.amazon.com/elasticloadbalancing/latest/application/load-balancer-target-groups.html) - // - Target groups for your Network Load Balancers (https://docs.aws.amazon.com/elasticloadbalancing/latest/network/load-balancer-target-groups.html) - // - Target groups for your Gateway Load Balancers (https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/target-groups.html) + // Creates a target group. + // + // For more information, see the following: + // + // [Target groups for your Application Load Balancers] + // + // [Target groups for your Network Load Balancers] + // + // [Target groups for your Gateway Load Balancers] // // This operation is idempotent, which means that it completes at most one time. // If you attempt to create multiple target groups with the same settings, each // call succeeds. + // + // [Target groups for your Gateway Load Balancers]: https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/target-groups.html + // [Target groups for your Application Load Balancers]: https://docs.aws.amazon.com/elasticloadbalancing/latest/application/load-balancer-target-groups.html + // [Target groups for your Network Load Balancers]: https://docs.aws.amazon.com/elasticloadbalancing/latest/network/load-balancer-target-groups.html CreateTargetGroup(ctx context.Context, params *CreateTargetGroupInput, optFns ...func(*Options)) (*CreateTargetGroupOutput, error) // Creates a trust store. CreateTrustStore(ctx context.Context, params *CreateTrustStoreInput, optFns ...func(*Options)) (*CreateTrustStoreOutput, error) - // Deletes the specified listener. Alternatively, your listener is deleted when - // you delete the load balancer to which it is attached. + // Deletes the specified listener. + // + // Alternatively, your listener is deleted when you delete the load balancer to + // which it is attached. DeleteListener(ctx context.Context, params *DeleteListenerInput, optFns ...func(*Options)) (*DeleteListenerOutput, error) // Deletes the specified Application Load Balancer, Network Load Balancer, or - // Gateway Load Balancer. Deleting a load balancer also deletes its listeners. You - // can't delete a load balancer if deletion protection is enabled. If the load - // balancer does not exist or has already been deleted, the call succeeds. Deleting - // a load balancer does not affect its registered targets. For example, your EC2 - // instances continue to run and are still registered to their target groups. If - // you no longer need these EC2 instances, you can stop or terminate them. + // Gateway Load Balancer. Deleting a load balancer also deletes its listeners. + // + // You can't delete a load balancer if deletion protection is enabled. If the load + // balancer does not exist or has already been deleted, the call succeeds. + // + // Deleting a load balancer does not affect its registered targets. For example, + // your EC2 instances continue to run and are still registered to their target + // groups. If you no longer need these EC2 instances, you can stop or terminate + // them. DeleteLoadBalancer(ctx context.Context, params *DeleteLoadBalancerInput, optFns ...func(*Options)) (*DeleteLoadBalancerOutput, error) - // Deletes the specified rule. You can't delete the default rule. + // Deletes the specified rule. + // + // You can't delete the default rule. DeleteRule(ctx context.Context, params *DeleteRuleInput, optFns ...func(*Options)) (*DeleteRuleOutput, error) - // Deletes the specified target group. You can delete a target group if it is not - // referenced by any actions. Deleting a target group also deletes any associated - // health checks. Deleting a target group does not affect its registered targets. - // For example, any EC2 instances continue to run until you stop or terminate them. + // Deletes a shared trust store association. + DeleteSharedTrustStoreAssociation(ctx context.Context, params *DeleteSharedTrustStoreAssociationInput, optFns ...func(*Options)) (*DeleteSharedTrustStoreAssociationOutput, error) + // Deletes the specified target group. + // + // You can delete a target group if it is not referenced by any actions. Deleting + // a target group also deletes any associated health checks. Deleting a target + // group does not affect its registered targets. For example, any EC2 instances + // continue to run until you stop or terminate them. DeleteTargetGroup(ctx context.Context, params *DeleteTargetGroupInput, optFns ...func(*Options)) (*DeleteTargetGroupOutput, error) // Deletes a trust store. DeleteTrustStore(ctx context.Context, params *DeleteTrustStoreInput, optFns ...func(*Options)) (*DeleteTrustStoreOutput, error) // Deregisters the specified targets from the specified target group. After the // targets are deregistered, they no longer receive traffic from the load balancer. + // // The load balancer stops sending requests to targets that are deregistering, but // uses connection draining to ensure that in-flight traffic completes on the // existing connections. This deregistration delay is configured by default but can - // be updated for each target group. For more information, see the following: - // - Deregistration delay (https://docs.aws.amazon.com/elasticloadbalancing/latest/application/load-balancer-target-groups.html#deregistration-delay) - // in the Application Load Balancers User Guide - // - Deregistration delay (https://docs.aws.amazon.com/elasticloadbalancing/latest/network/load-balancer-target-groups.html#deregistration-delay) - // in the Network Load Balancers User Guide - // - Deregistration delay (https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/target-groups.html#deregistration-delay) - // in the Gateway Load Balancers User Guide + // be updated for each target group. + // + // For more information, see the following: + // + // [Deregistration delay] + // - in the Application Load Balancers User Guide + // + // [Deregistration delay] + // - in the Network Load Balancers User Guide + // + // [Deregistration delay] + // - in the Gateway Load Balancers User Guide // // Note: If the specified target does not exist, the action returns successfully. + // + // [Deregistration delay]: https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/target-groups.html#deregistration-delay DeregisterTargets(ctx context.Context, params *DeregisterTargetsInput, optFns ...func(*Options)) (*DeregisterTargetsOutput, error) // Describes the current Elastic Load Balancing resource limits for your Amazon - // Web Services account. For more information, see the following: - // - Quotas for your Application Load Balancers (https://docs.aws.amazon.com/elasticloadbalancing/latest/application/load-balancer-limits.html) - // - Quotas for your Network Load Balancers (https://docs.aws.amazon.com/elasticloadbalancing/latest/network/load-balancer-limits.html) - // - Quotas for your Gateway Load Balancers (https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/quotas-limits.html) + // Web Services account. + // + // For more information, see the following: + // + // [Quotas for your Application Load Balancers] + // + // [Quotas for your Network Load Balancers] + // + // [Quotas for your Gateway Load Balancers] + // + // [Quotas for your Gateway Load Balancers]: https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/quotas-limits.html + // [Quotas for your Application Load Balancers]: https://docs.aws.amazon.com/elasticloadbalancing/latest/application/load-balancer-limits.html + // [Quotas for your Network Load Balancers]: https://docs.aws.amazon.com/elasticloadbalancing/latest/network/load-balancer-limits.html DescribeAccountLimits(ctx context.Context, params *DescribeAccountLimitsInput, optFns ...func(*Options)) (*DescribeAccountLimitsOutput, error) // Describes the default certificate and the certificate list for the specified - // HTTPS or TLS listener. If the default certificate is also in the certificate - // list, it appears twice in the results (once with IsDefault set to true and once - // with IsDefault set to false). For more information, see SSL certificates (https://docs.aws.amazon.com/elasticloadbalancing/latest/application/create-https-listener.html#https-listener-certificates) - // in the Application Load Balancers Guide or Server certificates (https://docs.aws.amazon.com/elasticloadbalancing/latest/network/create-tls-listener.html#tls-listener-certificate) - // in the Network Load Balancers Guide. + // HTTPS or TLS listener. + // + // If the default certificate is also in the certificate list, it appears twice in + // the results (once with IsDefault set to true and once with IsDefault set to + // false). + // + // For more information, see [SSL certificates] in the Application Load Balancers Guide or [Server certificates] in the + // Network Load Balancers Guide. + // + // [Server certificates]: https://docs.aws.amazon.com/elasticloadbalancing/latest/network/create-tls-listener.html#tls-listener-certificate + // [SSL certificates]: https://docs.aws.amazon.com/elasticloadbalancing/latest/application/create-https-listener.html#https-listener-certificates DescribeListenerCertificates(ctx context.Context, params *DescribeListenerCertificatesInput, optFns ...func(*Options)) (*DescribeListenerCertificatesOutput, error) // Describes the specified listeners or the listeners for the specified // Application Load Balancer, Network Load Balancer, or Gateway Load Balancer. You // must specify either a load balancer or one or more listeners. DescribeListeners(ctx context.Context, params *DescribeListenersInput, optFns ...func(*Options)) (*DescribeListenersOutput, error) // Describes the attributes for the specified Application Load Balancer, Network - // Load Balancer, or Gateway Load Balancer. For more information, see the - // following: - // - Load balancer attributes (https://docs.aws.amazon.com/elasticloadbalancing/latest/application/application-load-balancers.html#load-balancer-attributes) - // in the Application Load Balancers Guide - // - Load balancer attributes (https://docs.aws.amazon.com/elasticloadbalancing/latest/network/network-load-balancers.html#load-balancer-attributes) - // in the Network Load Balancers Guide - // - Load balancer attributes (https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/gateway-load-balancers.html#load-balancer-attributes) - // in the Gateway Load Balancers Guide + // Load Balancer, or Gateway Load Balancer. + // + // For more information, see the following: + // + // [Load balancer attributes] + // - in the Application Load Balancers Guide + // + // [Load balancer attributes] + // - in the Network Load Balancers Guide + // + // [Load balancer attributes] + // - in the Gateway Load Balancers Guide + // + // [Load balancer attributes]: https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/gateway-load-balancers.html#load-balancer-attributes DescribeLoadBalancerAttributes(ctx context.Context, params *DescribeLoadBalancerAttributesInput, optFns ...func(*Options)) (*DescribeLoadBalancerAttributesOutput, error) // Describes the specified load balancers or all of your load balancers. DescribeLoadBalancers(ctx context.Context, params *DescribeLoadBalancersInput, optFns ...func(*Options)) (*DescribeLoadBalancersOutput, error) // Describes the specified rules or the rules for the specified listener. You must // specify either a listener or one or more rules. DescribeRules(ctx context.Context, params *DescribeRulesInput, optFns ...func(*Options)) (*DescribeRulesOutput, error) - // Describes the specified policies or all policies used for SSL negotiation. For - // more information, see Security policies (https://docs.aws.amazon.com/elasticloadbalancing/latest/application/create-https-listener.html#describe-ssl-policies) - // in the Application Load Balancers Guide or Security policies (https://docs.aws.amazon.com/elasticloadbalancing/latest/network/create-tls-listener.html#describe-ssl-policies) - // in the Network Load Balancers Guide. + // Describes the specified policies or all policies used for SSL negotiation. + // + // For more information, see [Security policies] in the Application Load Balancers Guide or [Security policies] in the + // Network Load Balancers Guide. + // + // [Security policies]: https://docs.aws.amazon.com/elasticloadbalancing/latest/network/create-tls-listener.html#describe-ssl-policies DescribeSSLPolicies(ctx context.Context, params *DescribeSSLPoliciesInput, optFns ...func(*Options)) (*DescribeSSLPoliciesOutput, error) // Describes the tags for the specified Elastic Load Balancing resources. You can // describe the tags for one or more Application Load Balancers, Network Load // Balancers, Gateway Load Balancers, target groups, listeners, or rules. DescribeTags(ctx context.Context, params *DescribeTagsInput, optFns ...func(*Options)) (*DescribeTagsOutput, error) - // Describes the attributes for the specified target group. For more information, - // see the following: - // - Target group attributes (https://docs.aws.amazon.com/elasticloadbalancing/latest/application/load-balancer-target-groups.html#target-group-attributes) - // in the Application Load Balancers Guide - // - Target group attributes (https://docs.aws.amazon.com/elasticloadbalancing/latest/network/load-balancer-target-groups.html#target-group-attributes) - // in the Network Load Balancers Guide - // - Target group attributes (https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/target-groups.html#target-group-attributes) - // in the Gateway Load Balancers Guide + // Describes the attributes for the specified target group. + // + // For more information, see the following: + // + // [Target group attributes] + // - in the Application Load Balancers Guide + // + // [Target group attributes] + // - in the Network Load Balancers Guide + // + // [Target group attributes] + // - in the Gateway Load Balancers Guide + // + // [Target group attributes]: https://docs.aws.amazon.com/elasticloadbalancing/latest/gateway/target-groups.html#target-group-attributes DescribeTargetGroupAttributes(ctx context.Context, params *DescribeTargetGroupAttributesInput, optFns ...func(*Options)) (*DescribeTargetGroupAttributesOutput, error) // Describes the specified target groups or all of your target groups. By default, // all target groups are described. Alternatively, you can specify one of the @@ -165,54 +250,68 @@ type ELBV2 interface { DescribeTargetHealth(ctx context.Context, params *DescribeTargetHealthInput, optFns ...func(*Options)) (*DescribeTargetHealthOutput, error) // Describes all resources associated with the specified trust store. DescribeTrustStoreAssociations(ctx context.Context, params *DescribeTrustStoreAssociationsInput, optFns ...func(*Options)) (*DescribeTrustStoreAssociationsOutput, error) - // Describes the revocation files in use by the specified trust store arn, or - // revocation ID. + // Describes the revocation files in use by the specified trust store or + // revocation files. DescribeTrustStoreRevocations(ctx context.Context, params *DescribeTrustStoreRevocationsInput, optFns ...func(*Options)) (*DescribeTrustStoreRevocationsOutput, error) - // Describes all trust stores for a given account by trust store arn’s or name. + // Describes all trust stores for the specified account. DescribeTrustStores(ctx context.Context, params *DescribeTrustStoresInput, optFns ...func(*Options)) (*DescribeTrustStoresOutput, error) - // Retrieves the ca certificate bundle. This action returns a pre-signed S3 URI - // which is active for ten minutes. + // Retrieves the resource policy for a specified resource. + GetResourcePolicy(ctx context.Context, params *GetResourcePolicyInput, optFns ...func(*Options)) (*GetResourcePolicyOutput, error) + // Retrieves the ca certificate bundle. + // + // This action returns a pre-signed S3 URI which is active for ten minutes. GetTrustStoreCaCertificatesBundle(ctx context.Context, params *GetTrustStoreCaCertificatesBundleInput, optFns ...func(*Options)) (*GetTrustStoreCaCertificatesBundleOutput, error) - // Retrieves the specified revocation file. This action returns a pre-signed S3 - // URI which is active for ten minutes. + // Retrieves the specified revocation file. + // + // This action returns a pre-signed S3 URI which is active for ten minutes. GetTrustStoreRevocationContent(ctx context.Context, params *GetTrustStoreRevocationContentInput, optFns ...func(*Options)) (*GetTrustStoreRevocationContentOutput, error) // Replaces the specified properties of the specified listener. Any properties - // that you do not specify remain unchanged. Changing the protocol from HTTPS to - // HTTP, or from TLS to TCP, removes the security policy and default certificate - // properties. If you change the protocol from HTTP to HTTPS, or from TCP to TLS, - // you must add the security policy and default certificate properties. To add an - // item to a list, remove an item from a list, or update an item in a list, you - // must provide the entire list. For example, to add an action, specify a list with - // the current actions plus the new action. + // that you do not specify remain unchanged. + // + // Changing the protocol from HTTPS to HTTP, or from TLS to TCP, removes the + // security policy and default certificate properties. If you change the protocol + // from HTTP to HTTPS, or from TCP to TLS, you must add the security policy and + // default certificate properties. + // + // To add an item to a list, remove an item from a list, or update an item in a + // list, you must provide the entire list. For example, to add an action, specify a + // list with the current actions plus the new action. ModifyListener(ctx context.Context, params *ModifyListenerInput, optFns ...func(*Options)) (*ModifyListenerOutput, error) // Modifies the specified attributes of the specified Application Load Balancer, - // Network Load Balancer, or Gateway Load Balancer. If any of the specified - // attributes can't be modified as requested, the call fails. Any existing - // attributes that you do not modify retain their current values. + // Network Load Balancer, or Gateway Load Balancer. + // + // If any of the specified attributes can't be modified as requested, the call + // fails. Any existing attributes that you do not modify retain their current + // values. ModifyLoadBalancerAttributes(ctx context.Context, params *ModifyLoadBalancerAttributesInput, optFns ...func(*Options)) (*ModifyLoadBalancerAttributesOutput, error) // Replaces the specified properties of the specified rule. Any properties that - // you do not specify are unchanged. To add an item to a list, remove an item from - // a list, or update an item in a list, you must provide the entire list. For - // example, to add an action, specify a list with the current actions plus the new - // action. + // you do not specify are unchanged. + // + // To add an item to a list, remove an item from a list, or update an item in a + // list, you must provide the entire list. For example, to add an action, specify a + // list with the current actions plus the new action. ModifyRule(ctx context.Context, params *ModifyRuleInput, optFns ...func(*Options)) (*ModifyRuleOutput, error) // Modifies the health checks used when evaluating the health state of the targets // in the specified target group. ModifyTargetGroup(ctx context.Context, params *ModifyTargetGroupInput, optFns ...func(*Options)) (*ModifyTargetGroupOutput, error) // Modifies the specified attributes of the specified target group. ModifyTargetGroupAttributes(ctx context.Context, params *ModifyTargetGroupAttributesInput, optFns ...func(*Options)) (*ModifyTargetGroupAttributesOutput, error) - // Update the ca certificate bundle for a given trust store. + // Update the ca certificate bundle for the specified trust store. ModifyTrustStore(ctx context.Context, params *ModifyTrustStoreInput, optFns ...func(*Options)) (*ModifyTrustStoreOutput, error) - // Registers the specified targets with the specified target group. If the target - // is an EC2 instance, it must be in the running state when you register it. By - // default, the load balancer routes requests to registered targets using the + // Registers the specified targets with the specified target group. + // + // If the target is an EC2 instance, it must be in the running state when you + // register it. + // + // By default, the load balancer routes requests to registered targets using the // protocol and port for the target group. Alternatively, you can override the port // for a target when you register it. You can register each EC2 instance or IP - // address with the same target group multiple times using different ports. With a - // Network Load Balancer, you cannot register instances by instance ID if they have - // the following instance types: C1, CC1, CC2, CG1, CG2, CR1, CS1, G1, G2, HI1, - // HS1, M1, M2, M3, and T1. You can register instances of these types by IP - // address. + // address with the same target group multiple times using different ports. + // + // With a Network Load Balancer, you cannot register instances by instance ID if + // they have the following instance types: C1, CC1, CC2, CG1, CG2, CR1, CS1, G1, + // G2, HI1, HS1, M1, M2, M3, and T1. You can register instances of these types by + // IP address. RegisterTargets(ctx context.Context, params *RegisterTargetsInput, optFns ...func(*Options)) (*RegisterTargetsOutput, error) // Removes the specified certificate from the certificate list for the specified // HTTPS or TLS listener. @@ -226,22 +325,26 @@ type ELBV2 interface { // Sets the type of IP addresses used by the subnets of the specified load // balancer. SetIpAddressType(ctx context.Context, params *SetIpAddressTypeInput, optFns ...func(*Options)) (*SetIpAddressTypeOutput, error) - // Sets the priorities of the specified rules. You can reorder the rules as long - // as there are no priority conflicts in the new order. Any existing rules that you - // do not specify retain their current priority. + // Sets the priorities of the specified rules. + // + // You can reorder the rules as long as there are no priority conflicts in the new + // order. Any existing rules that you do not specify retain their current priority. SetRulePriorities(ctx context.Context, params *SetRulePrioritiesInput, optFns ...func(*Options)) (*SetRulePrioritiesOutput, error) // Associates the specified security groups with the specified Application Load // Balancer or Network Load Balancer. The specified security groups override the - // previously associated security groups. You can't perform this operation on a - // Network Load Balancer unless you specified a security group for the load - // balancer when you created it. You can't associate a security group with a - // Gateway Load Balancer. + // previously associated security groups. + // + // You can't perform this operation on a Network Load Balancer unless you + // specified a security group for the load balancer when you created it. + // + // You can't associate a security group with a Gateway Load Balancer. SetSecurityGroups(ctx context.Context, params *SetSecurityGroupsInput, optFns ...func(*Options)) (*SetSecurityGroupsOutput, error) // Enables the Availability Zones for the specified public subnets for the // specified Application Load Balancer, Network Load Balancer or Gateway Load - // Balancer. The specified subnets replace the previously enabled subnets. When you - // specify subnets for a Network Load Balancer, or Gateway Load Balancer you must - // include all subnets that were enabled previously, with their existing + // Balancer. The specified subnets replace the previously enabled subnets. + // + // When you specify subnets for a Network Load Balancer, or Gateway Load Balancer + // you must include all subnets that were enabled previously, with their existing // configurations, plus any additional subnets. SetSubnets(ctx context.Context, params *SetSubnetsInput, optFns ...func(*Options)) (*SetSubnetsOutput, error) } diff --git a/pkg/awsapi/iam.go b/pkg/awsapi/iam.go index c6568bedae..a0c98ccd19 100644 --- a/pkg/awsapi/iam.go +++ b/pkg/awsapi/iam.go @@ -18,178 +18,256 @@ type IAM interface { // functional options. Options() iam.Options // Adds a new client ID (also known as audience) to the list of client IDs already - // registered for the specified IAM OpenID Connect (OIDC) provider resource. This - // operation is idempotent; it does not fail or return an error if you add an + // registered for the specified IAM OpenID Connect (OIDC) provider resource. + // + // This operation is idempotent; it does not fail or return an error if you add an // existing client ID to the provider. AddClientIDToOpenIDConnectProvider(ctx context.Context, params *AddClientIDToOpenIDConnectProviderInput, optFns ...func(*Options)) (*AddClientIDToOpenIDConnectProviderOutput, error) // Adds the specified IAM role to the specified instance profile. An instance // profile can contain only one role, and this quota cannot be increased. You can // remove the existing role and then add a different role to an instance profile. // You must then wait for the change to appear across all of Amazon Web Services - // because of eventual consistency (https://en.wikipedia.org/wiki/Eventual_consistency) - // . To force the change, you must disassociate the instance profile (https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DisassociateIamInstanceProfile.html) - // and then associate the instance profile (https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_AssociateIamInstanceProfile.html) - // , or you can stop your instance and then restart it. The caller of this - // operation must be granted the PassRole permission on the IAM role by a - // permissions policy. For more information about roles, see IAM roles (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html) - // in the IAM User Guide. For more information about instance profiles, see Using - // instance profiles (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2_instance-profiles.html) - // in the IAM User Guide. + // because of [eventual consistency]. To force the change, you must [disassociate the instance profile] and then [associate the instance profile], or you can stop your + // instance and then restart it. + // + // The caller of this operation must be granted the PassRole permission on the IAM + // role by a permissions policy. + // + // For more information about roles, see [IAM roles] in the IAM User Guide. For more + // information about instance profiles, see [Using instance profiles]in the IAM User Guide. + // + // [disassociate the instance profile]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DisassociateIamInstanceProfile.html + // [associate the instance profile]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_AssociateIamInstanceProfile.html + // [Using instance profiles]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2_instance-profiles.html + // [eventual consistency]: https://en.wikipedia.org/wiki/Eventual_consistency + // [IAM roles]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html AddRoleToInstanceProfile(ctx context.Context, params *AddRoleToInstanceProfileInput, optFns ...func(*Options)) (*AddRoleToInstanceProfileOutput, error) // Adds the specified user to the specified group. AddUserToGroup(ctx context.Context, params *AddUserToGroupInput, optFns ...func(*Options)) (*AddUserToGroupOutput, error) - // Attaches the specified managed policy to the specified IAM group. You use this - // operation to attach a managed policy to a group. To embed an inline policy in a - // group, use PutGroupPolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_PutGroupPolicy.html) - // . As a best practice, you can validate your IAM policies. To learn more, see - // Validating IAM policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_policy-validator.html) - // in the IAM User Guide. For more information about policies, see Managed - // policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // Attaches the specified managed policy to the specified IAM group. + // + // You use this operation to attach a managed policy to a group. To embed an + // inline policy in a group, use [PutGroupPolicy]PutGroupPolicy . + // + // As a best practice, you can validate your IAM policies. To learn more, see [Validating IAM policies] in + // the IAM User Guide. + // + // For more information about policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // [PutGroupPolicy]: https://docs.aws.amazon.com/IAM/latest/APIReference/API_PutGroupPolicy.html + // [Validating IAM policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_policy-validator.html + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html AttachGroupPolicy(ctx context.Context, params *AttachGroupPolicyInput, optFns ...func(*Options)) (*AttachGroupPolicyOutput, error) // Attaches the specified managed policy to the specified IAM role. When you // attach a managed policy to a role, the managed policy becomes part of the role's - // permission (access) policy. You cannot use a managed policy as the role's trust - // policy. The role's trust policy is created at the same time as the role, using - // CreateRole (https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreateRole.html) - // . You can update a role's trust policy using UpdateAssumerolePolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_UpdateAssumeRolePolicy.html) - // . Use this operation to attach a managed policy to a role. To embed an inline - // policy in a role, use PutRolePolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_PutRolePolicy.html) - // . For more information about policies, see Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. As a best practice, you can validate your IAM policies. - // To learn more, see Validating IAM policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_policy-validator.html) + // permission (access) policy. + // + // You cannot use a managed policy as the role's trust policy. The role's trust + // policy is created at the same time as the role, using [CreateRole]CreateRole . You can + // update a role's trust policy using [UpdateAssumerolePolicy]UpdateAssumerolePolicy . + // + // Use this operation to attach a managed policy to a role. To embed an inline + // policy in a role, use [PutRolePolicy]PutRolePolicy . For more information about policies, see [Managed policies and inline policies] // in the IAM User Guide. + // + // As a best practice, you can validate your IAM policies. To learn more, see [Validating IAM policies] in + // the IAM User Guide. + // + // [Validating IAM policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_policy-validator.html + // [UpdateAssumerolePolicy]: https://docs.aws.amazon.com/IAM/latest/APIReference/API_UpdateAssumeRolePolicy.html + // [PutRolePolicy]: https://docs.aws.amazon.com/IAM/latest/APIReference/API_PutRolePolicy.html + // [CreateRole]: https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreateRole.html + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html AttachRolePolicy(ctx context.Context, params *AttachRolePolicyInput, optFns ...func(*Options)) (*AttachRolePolicyOutput, error) - // Attaches the specified managed policy to the specified user. You use this - // operation to attach a managed policy to a user. To embed an inline policy in a - // user, use PutUserPolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_PutUserPolicy.html) - // . As a best practice, you can validate your IAM policies. To learn more, see - // Validating IAM policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_policy-validator.html) - // in the IAM User Guide. For more information about policies, see Managed - // policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // Attaches the specified managed policy to the specified user. + // + // You use this operation to attach a managed policy to a user. To embed an inline + // policy in a user, use [PutUserPolicy]PutUserPolicy . + // + // As a best practice, you can validate your IAM policies. To learn more, see [Validating IAM policies] in + // the IAM User Guide. + // + // For more information about policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // [Validating IAM policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_policy-validator.html + // [PutUserPolicy]: https://docs.aws.amazon.com/IAM/latest/APIReference/API_PutUserPolicy.html + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html AttachUserPolicy(ctx context.Context, params *AttachUserPolicyInput, optFns ...func(*Options)) (*AttachUserPolicyOutput, error) // Changes the password of the IAM user who is calling this operation. This // operation can be performed using the CLI, the Amazon Web Services API, or the My // Security Credentials page in the Amazon Web Services Management Console. The // Amazon Web Services account root user password is not affected by this - // operation. Use UpdateLoginProfile to use the CLI, the Amazon Web Services API, - // or the Users page in the IAM console to change the password for any IAM user. - // For more information about modifying passwords, see Managing passwords (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingLogins.html) - // in the IAM User Guide. + // operation. + // + // Use UpdateLoginProfile to use the CLI, the Amazon Web Services API, or the Users page in the IAM + // console to change the password for any IAM user. For more information about + // modifying passwords, see [Managing passwords]in the IAM User Guide. + // + // [Managing passwords]: https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingLogins.html ChangePassword(ctx context.Context, params *ChangePasswordInput, optFns ...func(*Options)) (*ChangePasswordOutput, error) - // Creates a new Amazon Web Services secret access key and corresponding Amazon + // Creates a new Amazon Web Services secret access key and corresponding Amazon + // // Web Services access key ID for the specified user. The default status for new - // keys is Active . If you do not specify a user name, IAM determines the user name - // implicitly based on the Amazon Web Services access key ID signing the request. - // This operation works for access keys under the Amazon Web Services account. + // keys is Active . + // + // If you do not specify a user name, IAM determines the user name implicitly + // based on the Amazon Web Services access key ID signing the request. This + // operation works for access keys under the Amazon Web Services account. // Consequently, you can use this operation to manage Amazon Web Services account // root user credentials. This is true even if the Amazon Web Services account has - // no associated users. For information about quotas on the number of keys you can - // create, see IAM and STS quotas (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html) - // in the IAM User Guide. To ensure the security of your Amazon Web Services - // account, the secret access key is accessible only during key and user creation. - // You must save the key (for example, in a text file) if you want to be able to - // access it again. If a secret key is lost, you can delete the access keys for the - // associated user and then create new keys. + // no associated users. + // + // For information about quotas on the number of keys you can create, see [IAM and STS quotas] in the + // IAM User Guide. + // + // To ensure the security of your Amazon Web Services account, the secret access + // key is accessible only during key and user creation. You must save the key (for + // example, in a text file) if you want to be able to access it again. If a secret + // key is lost, you can delete the access keys for the associated user and then + // create new keys. + // + // [IAM and STS quotas]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html CreateAccessKey(ctx context.Context, params *CreateAccessKeyInput, optFns ...func(*Options)) (*CreateAccessKeyOutput, error) // Creates an alias for your Amazon Web Services account. For information about - // using an Amazon Web Services account alias, see Creating, deleting, and listing - // an Amazon Web Services account alias (https://docs.aws.amazon.com/signin/latest/userguide/CreateAccountAlias.html) - // in the Amazon Web Services Sign-In User Guide. + // using an Amazon Web Services account alias, see [Creating, deleting, and listing an Amazon Web Services account alias]in the Amazon Web Services + // Sign-In User Guide. + // + // [Creating, deleting, and listing an Amazon Web Services account alias]: https://docs.aws.amazon.com/signin/latest/userguide/CreateAccountAlias.html CreateAccountAlias(ctx context.Context, params *CreateAccountAliasInput, optFns ...func(*Options)) (*CreateAccountAliasOutput, error) - // Creates a new group. For information about the number of groups you can create, - // see IAM and STS quotas (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html) - // in the IAM User Guide. + // Creates a new group. + // + // For information about the number of groups you can create, see [IAM and STS quotas] in the IAM User + // Guide. + // + // [IAM and STS quotas]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html CreateGroup(ctx context.Context, params *CreateGroupInput, optFns ...func(*Options)) (*CreateGroupOutput, error) - // Creates a new instance profile. For information about instance profiles, see - // Using roles for applications on Amazon EC2 (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2.html) - // in the IAM User Guide, and Instance profiles (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/iam-roles-for-amazon-ec2.html#ec2-instance-profile) - // in the Amazon EC2 User Guide. For information about the number of instance - // profiles you can create, see IAM object quotas (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html) - // in the IAM User Guide. + // Creates a new instance profile. For information about instance profiles, see [Using roles for applications on Amazon EC2] + // + // in the IAM User Guide, and [Instance profiles]in the Amazon EC2 User Guide. + // + // For information about the number of instance profiles you can create, see [IAM object quotas] in + // the IAM User Guide. + // + // [Instance profiles]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/iam-roles-for-amazon-ec2.html#ec2-instance-profile + // [IAM object quotas]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html + // + // [Using roles for applications on Amazon EC2]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2.html CreateInstanceProfile(ctx context.Context, params *CreateInstanceProfileInput, optFns ...func(*Options)) (*CreateInstanceProfileOutput, error) // Creates a password for the specified IAM user. A password allows an IAM user to // access Amazon Web Services services through the Amazon Web Services Management - // Console. You can use the CLI, the Amazon Web Services API, or the Users page in - // the IAM console to create a password for any IAM user. Use ChangePassword to - // update your own existing password in the My Security Credentials page in the - // Amazon Web Services Management Console. For more information about managing - // passwords, see Managing passwords (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingLogins.html) - // in the IAM User Guide. + // Console. + // + // You can use the CLI, the Amazon Web Services API, or the Users page in the IAM + // console to create a password for any IAM user. Use ChangePasswordto update your own existing + // password in the My Security Credentials page in the Amazon Web Services + // Management Console. + // + // For more information about managing passwords, see [Managing passwords] in the IAM User Guide. + // + // [Managing passwords]: https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingLogins.html CreateLoginProfile(ctx context.Context, params *CreateLoginProfileInput, optFns ...func(*Options)) (*CreateLoginProfileOutput, error) - // Creates an IAM entity to describe an identity provider (IdP) that supports - // OpenID Connect (OIDC) (http://openid.net/connect/) . The OIDC provider that you - // create with this operation can be used as a principal in a role's trust policy. - // Such a policy establishes a trust relationship between Amazon Web Services and - // the OIDC provider. If you are using an OIDC identity provider from Google, - // Facebook, or Amazon Cognito, you don't need to create a separate IAM identity - // provider. These OIDC identity providers are already built-in to Amazon Web - // Services and are available for your use. Instead, you can move directly to - // creating new roles using your identity provider. To learn more, see Creating a - // role for web identity or OpenID connect federation (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_create_for-idp_oidc.html) - // in the IAM User Guide. When you create the IAM OIDC provider, you specify the - // following: + // Creates an IAM entity to describe an identity provider (IdP) that supports [OpenID Connect (OIDC)]. + // + // The OIDC provider that you create with this operation can be used as a + // principal in a role's trust policy. Such a policy establishes a trust + // relationship between Amazon Web Services and the OIDC provider. + // + // If you are using an OIDC identity provider from Google, Facebook, or Amazon + // Cognito, you don't need to create a separate IAM identity provider. These OIDC + // identity providers are already built-in to Amazon Web Services and are available + // for your use. Instead, you can move directly to creating new roles using your + // identity provider. To learn more, see [Creating a role for web identity or OpenID connect federation]in the IAM User Guide. + // + // When you create the IAM OIDC provider, you specify the following: + // // - The URL of the OIDC identity provider (IdP) to trust + // // - A list of client IDs (also known as audiences) that identify the // application or applications allowed to authenticate using the OIDC provider + // // - A list of tags that are attached to the specified IAM OIDC provider + // // - A list of thumbprints of one or more server certificates that the IdP uses // // You get all of this information from the OIDC IdP you want to use to access - // Amazon Web Services. Amazon Web Services secures communication with some OIDC - // identity providers (IdPs) through our library of trusted root certificate - // authorities (CAs) instead of using a certificate thumbprint to verify your IdP - // server certificate. In these cases, your legacy thumbprint remains in your - // configuration, but is no longer used for validation. These OIDC IdPs include - // Auth0, GitHub, GitLab, Google, and those that use an Amazon S3 bucket to host a - // JSON Web Key Set (JWKS) endpoint. The trust for the OIDC provider is derived - // from the IAM provider that this operation creates. Therefore, it is best to - // limit access to the CreateOpenIDConnectProvider operation to highly privileged - // users. + // Amazon Web Services. + // + // Amazon Web Services secures communication with some OIDC identity providers + // (IdPs) through our library of trusted root certificate authorities (CAs) instead + // of using a certificate thumbprint to verify your IdP server certificate. In + // these cases, your legacy thumbprint remains in your configuration, but is no + // longer used for validation. These OIDC IdPs include Auth0, GitHub, GitLab, + // Google, and those that use an Amazon S3 bucket to host a JSON Web Key Set (JWKS) + // endpoint. + // + // The trust for the OIDC provider is derived from the IAM provider that this + // operation creates. Therefore, it is best to limit access to the CreateOpenIDConnectProvideroperation to + // highly privileged users. + // + // [OpenID Connect (OIDC)]: http://openid.net/connect/ + // [Creating a role for web identity or OpenID connect federation]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_create_for-idp_oidc.html CreateOpenIDConnectProvider(ctx context.Context, params *CreateOpenIDConnectProviderInput, optFns ...func(*Options)) (*CreateOpenIDConnectProviderOutput, error) - // Creates a new managed policy for your Amazon Web Services account. This - // operation creates a policy version with a version identifier of v1 and sets v1 - // as the policy's default version. For more information about policy versions, see - // Versioning for managed policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) - // in the IAM User Guide. As a best practice, you can validate your IAM policies. - // To learn more, see Validating IAM policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_policy-validator.html) - // in the IAM User Guide. For more information about managed policies in general, - // see Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // Creates a new managed policy for your Amazon Web Services account. + // + // This operation creates a policy version with a version identifier of v1 and + // sets v1 as the policy's default version. For more information about policy + // versions, see [Versioning for managed policies]in the IAM User Guide. + // + // As a best practice, you can validate your IAM policies. To learn more, see [Validating IAM policies] in + // the IAM User Guide. + // + // For more information about managed policies in general, see [Managed policies and inline policies] in the IAM User + // Guide. + // + // [Validating IAM policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_policy-validator.html + // [Versioning for managed policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html CreatePolicy(ctx context.Context, params *CreatePolicyInput, optFns ...func(*Options)) (*CreatePolicyOutput, error) // Creates a new version of the specified managed policy. To update a managed // policy, you create a new policy version. A managed policy can have up to five // versions. If the policy has five versions, you must delete an existing version - // using DeletePolicyVersion before you create a new version. Optionally, you can - // set the new version as the policy's default version. The default version is the - // version that is in effect for the IAM users, groups, and roles to which the - // policy is attached. For more information about managed policy versions, see - // Versioning for managed policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) - // in the IAM User Guide. + // using DeletePolicyVersionbefore you create a new version. + // + // Optionally, you can set the new version as the policy's default version. The + // default version is the version that is in effect for the IAM users, groups, and + // roles to which the policy is attached. + // + // For more information about managed policy versions, see [Versioning for managed policies] in the IAM User Guide. + // + // [Versioning for managed policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html CreatePolicyVersion(ctx context.Context, params *CreatePolicyVersionInput, optFns ...func(*Options)) (*CreatePolicyVersionOutput, error) - // Creates a new role for your Amazon Web Services account. For more information - // about roles, see IAM roles (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html) - // in the IAM User Guide. For information about quotas for role names and the - // number of roles you can create, see IAM and STS quotas (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html) - // in the IAM User Guide. + // Creates a new role for your Amazon Web Services account. + // + // For more information about roles, see [IAM roles] in the IAM User Guide. For information + // about quotas for role names and the number of roles you can create, see [IAM and STS quotas]in the + // IAM User Guide. + // + // [IAM and STS quotas]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html + // [IAM roles]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html CreateRole(ctx context.Context, params *CreateRoleInput, optFns ...func(*Options)) (*CreateRoleOutput, error) // Creates an IAM resource that describes an identity provider (IdP) that supports - // SAML 2.0. The SAML provider resource that you create with this operation can be - // used as a principal in an IAM role's trust policy. Such a policy can enable - // federated users who sign in using the SAML IdP to assume the role. You can - // create an IAM role that supports Web-based single sign-on (SSO) to the Amazon - // Web Services Management Console or one that supports API access to Amazon Web - // Services. When you create the SAML provider resource, you upload a SAML metadata - // document that you get from your IdP. That document includes the issuer's name, - // expiration information, and keys that can be used to validate the SAML - // authentication response (assertions) that the IdP sends. You must generate the - // metadata document using the identity management software that is used as your - // organization's IdP. This operation requires Signature Version 4 (https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html) - // . For more information, see Enabling SAML 2.0 federated users to access the - // Amazon Web Services Management Console (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-saml.html) - // and About SAML 2.0-based federation (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html) - // in the IAM User Guide. + // SAML 2.0. + // + // The SAML provider resource that you create with this operation can be used as a + // principal in an IAM role's trust policy. Such a policy can enable federated + // users who sign in using the SAML IdP to assume the role. You can create an IAM + // role that supports Web-based single sign-on (SSO) to the Amazon Web Services + // Management Console or one that supports API access to Amazon Web Services. + // + // When you create the SAML provider resource, you upload a SAML metadata document + // that you get from your IdP. That document includes the issuer's name, expiration + // information, and keys that can be used to validate the SAML authentication + // response (assertions) that the IdP sends. You must generate the metadata + // document using the identity management software that is used as your + // organization's IdP. + // + // This operation requires [Signature Version 4]. + // + // For more information, see [Enabling SAML 2.0 federated users to access the Amazon Web Services Management Console] and [About SAML 2.0-based federation] in the IAM User Guide. + // + // [Signature Version 4]: https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html + // [About SAML 2.0-based federation]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html + // [Enabling SAML 2.0 federated users to access the Amazon Web Services Management Console]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-saml.html CreateSAMLProvider(ctx context.Context, params *CreateSAMLProviderInput, optFns ...func(*Options)) (*CreateSAMLProviderOutput, error) // Creates an IAM role that is linked to a specific Amazon Web Services service. // The service controls the attached policies and when the role can be deleted. @@ -197,55 +275,77 @@ type IAM interface { // deleted role, which could put your Amazon Web Services resources into an unknown // state. Allowing the service to control the role helps improve service stability // and proper cleanup when a service and its role are no longer needed. For more - // information, see Using service-linked roles (https://docs.aws.amazon.com/IAM/latest/UserGuide/using-service-linked-roles.html) - // in the IAM User Guide. To attach a policy to this service-linked role, you must - // make the request using the Amazon Web Services service that depends on this - // role. + // information, see [Using service-linked roles]in the IAM User Guide. + // + // To attach a policy to this service-linked role, you must make the request using + // the Amazon Web Services service that depends on this role. + // + // [Using service-linked roles]: https://docs.aws.amazon.com/IAM/latest/UserGuide/using-service-linked-roles.html CreateServiceLinkedRole(ctx context.Context, params *CreateServiceLinkedRoleInput, optFns ...func(*Options)) (*CreateServiceLinkedRoleOutput, error) // Generates a set of credentials consisting of a user name and password that can // be used to access the service specified in the request. These credentials are - // generated by IAM, and can be used only for the specified service. You can have a - // maximum of two sets of service-specific credentials for each supported service - // per user. You can create service-specific credentials for CodeCommit and Amazon - // Keyspaces (for Apache Cassandra). You can reset the password to a new - // service-generated value by calling ResetServiceSpecificCredential . For more - // information about service-specific credentials, see Using IAM with CodeCommit: - // Git credentials, SSH keys, and Amazon Web Services access keys (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_ssh-keys.html) - // in the IAM User Guide. + // generated by IAM, and can be used only for the specified service. + // + // You can have a maximum of two sets of service-specific credentials for each + // supported service per user. + // + // You can create service-specific credentials for CodeCommit and Amazon Keyspaces + // (for Apache Cassandra). + // + // You can reset the password to a new service-generated value by calling ResetServiceSpecificCredential. + // + // For more information about service-specific credentials, see [Using IAM with CodeCommit: Git credentials, SSH keys, and Amazon Web Services access keys] in the IAM User + // Guide. + // + // [Using IAM with CodeCommit: Git credentials, SSH keys, and Amazon Web Services access keys]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_ssh-keys.html CreateServiceSpecificCredential(ctx context.Context, params *CreateServiceSpecificCredentialInput, optFns ...func(*Options)) (*CreateServiceSpecificCredentialOutput, error) - // Creates a new IAM user for your Amazon Web Services account. For information - // about quotas for the number of IAM users you can create, see IAM and STS quotas (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html) + // Creates a new IAM user for your Amazon Web Services account. + // + // For information about quotas for the number of IAM users you can create, see [IAM and STS quotas] // in the IAM User Guide. + // + // [IAM and STS quotas]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html CreateUser(ctx context.Context, params *CreateUserInput, optFns ...func(*Options)) (*CreateUserOutput, error) // Creates a new virtual MFA device for the Amazon Web Services account. After - // creating the virtual MFA, use EnableMFADevice to attach the MFA device to an - // IAM user. For more information about creating and working with virtual MFA - // devices, see Using a virtual MFA device (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_VirtualMFA.html) - // in the IAM User Guide. For information about the maximum number of MFA devices - // you can create, see IAM and STS quotas (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html) - // in the IAM User Guide. The seed information contained in the QR code and the - // Base32 string should be treated like any other secret access information. In - // other words, protect the seed information as you would your Amazon Web Services - // access keys or your passwords. After you provision your virtual device, you - // should ensure that the information is destroyed following secure procedures. + // creating the virtual MFA, use EnableMFADeviceto attach the MFA device to an IAM user. For more + // information about creating and working with virtual MFA devices, see [Using a virtual MFA device]in the IAM + // User Guide. + // + // For information about the maximum number of MFA devices you can create, see [IAM and STS quotas] in + // the IAM User Guide. + // + // The seed information contained in the QR code and the Base32 string should be + // treated like any other secret access information. In other words, protect the + // seed information as you would your Amazon Web Services access keys or your + // passwords. After you provision your virtual device, you should ensure that the + // information is destroyed following secure procedures. + // + // [Using a virtual MFA device]: https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_VirtualMFA.html + // [IAM and STS quotas]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html CreateVirtualMFADevice(ctx context.Context, params *CreateVirtualMFADeviceInput, optFns ...func(*Options)) (*CreateVirtualMFADeviceOutput, error) // Deactivates the specified MFA device and removes it from association with the - // user name for which it was originally enabled. For more information about - // creating and working with virtual MFA devices, see Enabling a virtual - // multi-factor authentication (MFA) device (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_VirtualMFA.html) + // user name for which it was originally enabled. + // + // For more information about creating and working with virtual MFA devices, see [Enabling a virtual multi-factor authentication (MFA) device] // in the IAM User Guide. + // + // [Enabling a virtual multi-factor authentication (MFA) device]: https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_VirtualMFA.html DeactivateMFADevice(ctx context.Context, params *DeactivateMFADeviceInput, optFns ...func(*Options)) (*DeactivateMFADeviceOutput, error) - // Deletes the access key pair associated with the specified IAM user. If you do - // not specify a user name, IAM determines the user name implicitly based on the - // Amazon Web Services access key ID signing the request. This operation works for - // access keys under the Amazon Web Services account. Consequently, you can use - // this operation to manage Amazon Web Services account root user credentials even - // if the Amazon Web Services account has no associated users. + // Deletes the access key pair associated with the specified IAM user. + // + // If you do not specify a user name, IAM determines the user name implicitly + // based on the Amazon Web Services access key ID signing the request. This + // operation works for access keys under the Amazon Web Services account. + // Consequently, you can use this operation to manage Amazon Web Services account + // root user credentials even if the Amazon Web Services account has no associated + // users. DeleteAccessKey(ctx context.Context, params *DeleteAccessKeyInput, optFns ...func(*Options)) (*DeleteAccessKeyOutput, error) - // Deletes the specified Amazon Web Services account alias. For information about - // using an Amazon Web Services account alias, see Creating, deleting, and listing - // an Amazon Web Services account alias (https://docs.aws.amazon.com/signin/latest/userguide/CreateAccountAlias.html) - // in the Amazon Web Services Sign-In User Guide. + // Deletes the specified Amazon Web Services account alias. For information about + // + // using an Amazon Web Services account alias, see [Creating, deleting, and listing an Amazon Web Services account alias]in the Amazon Web Services + // Sign-In User Guide. + // + // [Creating, deleting, and listing an Amazon Web Services account alias]: https://docs.aws.amazon.com/signin/latest/userguide/CreateAccountAlias.html DeleteAccountAlias(ctx context.Context, params *DeleteAccountAliasInput, optFns ...func(*Options)) (*DeleteAccountAliasOutput, error) // Deletes the password policy for the Amazon Web Services account. There are no // parameters. @@ -253,249 +353,321 @@ type IAM interface { // Deletes the specified IAM group. The group must not contain any users or have // any attached policies. DeleteGroup(ctx context.Context, params *DeleteGroupInput, optFns ...func(*Options)) (*DeleteGroupOutput, error) - // Deletes the specified inline policy that is embedded in the specified IAM - // group. A group can also have managed policies attached to it. To detach a - // managed policy from a group, use DetachGroupPolicy . For more information about - // policies, refer to Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // Deletes the specified inline policy that is embedded in the specified IAM group. + // + // A group can also have managed policies attached to it. To detach a managed + // policy from a group, use DetachGroupPolicy. For more information about policies, refer to [Managed policies and inline policies] in + // the IAM User Guide. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html DeleteGroupPolicy(ctx context.Context, params *DeleteGroupPolicyInput, optFns ...func(*Options)) (*DeleteGroupPolicyOutput, error) // Deletes the specified instance profile. The instance profile must not have an - // associated role. Make sure that you do not have any Amazon EC2 instances running - // with the instance profile you are about to delete. Deleting a role or instance - // profile that is associated with a running instance will break any applications - // running on the instance. For more information about instance profiles, see - // Using instance profiles (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2_instance-profiles.html) - // in the IAM User Guide. + // associated role. + // + // Make sure that you do not have any Amazon EC2 instances running with the + // instance profile you are about to delete. Deleting a role or instance profile + // that is associated with a running instance will break any applications running + // on the instance. + // + // For more information about instance profiles, see [Using instance profiles] in the IAM User Guide. + // + // [Using instance profiles]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2_instance-profiles.html DeleteInstanceProfile(ctx context.Context, params *DeleteInstanceProfileInput, optFns ...func(*Options)) (*DeleteInstanceProfileOutput, error) - // Deletes the password for the specified IAM user, For more information, see - // Managing passwords for IAM users (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_passwords_admin-change-user.html) - // . You can use the CLI, the Amazon Web Services API, or the Users page in the IAM - // console to delete a password for any IAM user. You can use ChangePassword to - // update, but not delete, your own password in the My Security Credentials page in - // the Amazon Web Services Management Console. Deleting a user's password does not - // prevent a user from accessing Amazon Web Services through the command line - // interface or the API. To prevent all user access, you must also either make any - // access keys inactive or delete them. For more information about making keys - // inactive or deleting them, see UpdateAccessKey and DeleteAccessKey . + // Deletes the password for the specified IAM user, For more information, see [Managing passwords for IAM users]. + // + // You can use the CLI, the Amazon Web Services API, or the Users page in the IAM + // console to delete a password for any IAM user. You can use ChangePasswordto update, but not + // delete, your own password in the My Security Credentials page in the Amazon Web + // Services Management Console. + // + // Deleting a user's password does not prevent a user from accessing Amazon Web + // Services through the command line interface or the API. To prevent all user + // access, you must also either make any access keys inactive or delete them. For + // more information about making keys inactive or deleting them, see UpdateAccessKeyand DeleteAccessKey. + // + // [Managing passwords for IAM users]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_passwords_admin-change-user.html DeleteLoginProfile(ctx context.Context, params *DeleteLoginProfileInput, optFns ...func(*Options)) (*DeleteLoginProfileOutput, error) // Deletes an OpenID Connect identity provider (IdP) resource object in IAM. + // // Deleting an IAM OIDC provider resource does not update any roles that reference // the provider as a principal in their trust policies. Any attempt to assume a - // role that references a deleted provider fails. This operation is idempotent; it - // does not fail or return an error if you call the operation for a provider that - // does not exist. + // role that references a deleted provider fails. + // + // This operation is idempotent; it does not fail or return an error if you call + // the operation for a provider that does not exist. DeleteOpenIDConnectProvider(ctx context.Context, params *DeleteOpenIDConnectProviderInput, optFns ...func(*Options)) (*DeleteOpenIDConnectProviderOutput, error) - // Deletes the specified managed policy. Before you can delete a managed policy, - // you must first detach the policy from all users, groups, and roles that it is - // attached to. In addition, you must delete all the policy's versions. The - // following steps describe the process for deleting a managed policy: + // Deletes the specified managed policy. + // + // Before you can delete a managed policy, you must first detach the policy from + // all users, groups, and roles that it is attached to. In addition, you must + // delete all the policy's versions. The following steps describe the process for + // deleting a managed policy: + // // - Detach the policy from all users, groups, and roles that the policy is - // attached to, using DetachUserPolicy , DetachGroupPolicy , or DetachRolePolicy - // . To list all the users, groups, and roles that a policy is attached to, use - // ListEntitiesForPolicy . - // - Delete all versions of the policy using DeletePolicyVersion . To list the - // policy's versions, use ListPolicyVersions . You cannot use DeletePolicyVersion - // to delete the version that is marked as the default version. You delete the - // policy's default version in the next step of the process. + // attached to, using DetachUserPolicy, DetachGroupPolicy, or DetachRolePolicy. To list all the users, groups, and roles that a + // policy is attached to, use ListEntitiesForPolicy. + // + // - Delete all versions of the policy using DeletePolicyVersion. To list the policy's versions, + // use ListPolicyVersions. You cannot use DeletePolicyVersionto delete the version that is marked as the default + // version. You delete the policy's default version in the next step of the + // process. + // // - Delete the policy (this automatically deletes the policy's default version) // using this operation. // - // For information about managed policies, see Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // For information about managed policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html DeletePolicy(ctx context.Context, params *DeletePolicyInput, optFns ...func(*Options)) (*DeletePolicyOutput, error) - // Deletes the specified version from the specified managed policy. You cannot - // delete the default version from a policy using this operation. To delete the - // default version from a policy, use DeletePolicy . To find out which version of a - // policy is marked as the default version, use ListPolicyVersions . For - // information about versions for managed policies, see Versioning for managed - // policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) - // in the IAM User Guide. + // Deletes the specified version from the specified managed policy. + // + // You cannot delete the default version from a policy using this operation. To + // delete the default version from a policy, use DeletePolicy. To find out which version of a + // policy is marked as the default version, use ListPolicyVersions. + // + // For information about versions for managed policies, see [Versioning for managed policies] in the IAM User Guide. + // + // [Versioning for managed policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html DeletePolicyVersion(ctx context.Context, params *DeletePolicyVersionInput, optFns ...func(*Options)) (*DeletePolicyVersionOutput, error) // Deletes the specified role. Unlike the Amazon Web Services Management Console, // when you delete a role programmatically, you must delete the items attached to - // the role manually, or the deletion fails. For more information, see Deleting an - // IAM role (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_manage_delete.html#roles-managingrole-deleting-cli) - // . Before attempting to delete a role, remove the following attached items: - // - Inline policies ( DeleteRolePolicy ) - // - Attached managed policies ( DetachRolePolicy ) - // - Instance profile ( RemoveRoleFromInstanceProfile ) + // the role manually, or the deletion fails. For more information, see [Deleting an IAM role]. Before + // attempting to delete a role, remove the following attached items: + // + // - Inline policies (DeleteRolePolicy ) + // + // - Attached managed policies (DetachRolePolicy ) + // + // - Instance profile (RemoveRoleFromInstanceProfile ) + // // - Optional – Delete instance profile after detaching from role for resource - // clean up ( DeleteInstanceProfile ) + // clean up (DeleteInstanceProfile ) // // Make sure that you do not have any Amazon EC2 instances running with the role // you are about to delete. Deleting a role or instance profile that is associated // with a running instance will break any applications running on the instance. + // + // [Deleting an IAM role]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_manage_delete.html#roles-managingrole-deleting-cli DeleteRole(ctx context.Context, params *DeleteRoleInput, optFns ...func(*Options)) (*DeleteRoleOutput, error) - // Deletes the permissions boundary for the specified IAM role. You cannot set the - // boundary for a service-linked role. Deleting the permissions boundary for a role - // might increase its permissions. For example, it might allow anyone who assumes - // the role to perform all the actions granted in its permissions policies. + // Deletes the permissions boundary for the specified IAM role. + // + // You cannot set the boundary for a service-linked role. + // + // Deleting the permissions boundary for a role might increase its permissions. + // For example, it might allow anyone who assumes the role to perform all the + // actions granted in its permissions policies. DeleteRolePermissionsBoundary(ctx context.Context, params *DeleteRolePermissionsBoundaryInput, optFns ...func(*Options)) (*DeleteRolePermissionsBoundaryOutput, error) // Deletes the specified inline policy that is embedded in the specified IAM role. - // A role can also have managed policies attached to it. To detach a managed policy - // from a role, use DetachRolePolicy . For more information about policies, refer - // to Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // + // A role can also have managed policies attached to it. To detach a managed + // policy from a role, use DetachRolePolicy. For more information about policies, refer to [Managed policies and inline policies] in the + // IAM User Guide. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html DeleteRolePolicy(ctx context.Context, params *DeleteRolePolicyInput, optFns ...func(*Options)) (*DeleteRolePolicyOutput, error) - // Deletes a SAML provider resource in IAM. Deleting the provider resource from - // IAM does not update any roles that reference the SAML provider resource's ARN as - // a principal in their trust policies. Any attempt to assume a role that - // references a non-existent provider resource ARN fails. This operation requires - // Signature Version 4 (https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html) - // . + // Deletes a SAML provider resource in IAM. + // + // Deleting the provider resource from IAM does not update any roles that + // reference the SAML provider resource's ARN as a principal in their trust + // policies. Any attempt to assume a role that references a non-existent provider + // resource ARN fails. + // + // This operation requires [Signature Version 4]. + // + // [Signature Version 4]: https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html DeleteSAMLProvider(ctx context.Context, params *DeleteSAMLProviderInput, optFns ...func(*Options)) (*DeleteSAMLProviderOutput, error) - // Deletes the specified SSH public key. The SSH public key deleted by this - // operation is used only for authenticating the associated IAM user to an - // CodeCommit repository. For more information about using SSH keys to authenticate - // to an CodeCommit repository, see Set up CodeCommit for SSH connections (https://docs.aws.amazon.com/codecommit/latest/userguide/setting-up-credentials-ssh.html) - // in the CodeCommit User Guide. + // Deletes the specified SSH public key. + // + // The SSH public key deleted by this operation is used only for authenticating + // the associated IAM user to an CodeCommit repository. For more information about + // using SSH keys to authenticate to an CodeCommit repository, see [Set up CodeCommit for SSH connections]in the + // CodeCommit User Guide. + // + // [Set up CodeCommit for SSH connections]: https://docs.aws.amazon.com/codecommit/latest/userguide/setting-up-credentials-ssh.html DeleteSSHPublicKey(ctx context.Context, params *DeleteSSHPublicKeyInput, optFns ...func(*Options)) (*DeleteSSHPublicKeyOutput, error) - // Deletes the specified server certificate. For more information about working - // with server certificates, see Working with server certificates (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html) - // in the IAM User Guide. This topic also includes a list of Amazon Web Services - // services that can use the server certificates that you manage with IAM. If you - // are using a server certificate with Elastic Load Balancing, deleting the + // Deletes the specified server certificate. + // + // For more information about working with server certificates, see [Working with server certificates] in the IAM + // User Guide. This topic also includes a list of Amazon Web Services services that + // can use the server certificates that you manage with IAM. + // + // If you are using a server certificate with Elastic Load Balancing, deleting the // certificate could have implications for your application. If Elastic Load // Balancing doesn't detect the deletion of bound certificates, it may continue to // use the certificates. This could cause Elastic Load Balancing to stop accepting // traffic. We recommend that you remove the reference to the certificate from // Elastic Load Balancing before using this command to delete the certificate. For - // more information, see DeleteLoadBalancerListeners (https://docs.aws.amazon.com/ElasticLoadBalancing/latest/APIReference/API_DeleteLoadBalancerListeners.html) - // in the Elastic Load Balancing API Reference. + // more information, see [DeleteLoadBalancerListeners]in the Elastic Load Balancing API Reference. + // + // [Working with server certificates]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html + // [DeleteLoadBalancerListeners]: https://docs.aws.amazon.com/ElasticLoadBalancing/latest/APIReference/API_DeleteLoadBalancerListeners.html DeleteServerCertificate(ctx context.Context, params *DeleteServerCertificateInput, optFns ...func(*Options)) (*DeleteServerCertificateOutput, error) // Submits a service-linked role deletion request and returns a DeletionTaskId , // which you can use to check the status of the deletion. Before you call this // operation, confirm that the role has no active sessions and that any resources // used by the role in the linked service are deleted. If you call this operation // more than once for the same service-linked role and an earlier deletion task is - // not complete, then the DeletionTaskId of the earlier request is returned. If - // you submit a deletion request for a service-linked role whose linked service is - // still accessing a resource, then the deletion task fails. If it fails, the - // GetServiceLinkedRoleDeletionStatus operation returns the reason for the failure, - // usually including the resources that must be deleted. To delete the - // service-linked role, you must first remove those resources from the linked - // service and then submit the deletion request again. Resources are specific to - // the service that is linked to the role. For more information about removing - // resources from a service, see the Amazon Web Services documentation (http://docs.aws.amazon.com/) - // for your service. For more information about service-linked roles, see Roles - // terms and concepts: Amazon Web Services service-linked role (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_terms-and-concepts.html#iam-term-service-linked-role) - // in the IAM User Guide. + // not complete, then the DeletionTaskId of the earlier request is returned. + // + // If you submit a deletion request for a service-linked role whose linked service + // is still accessing a resource, then the deletion task fails. If it fails, the GetServiceLinkedRoleDeletionStatus + // operation returns the reason for the failure, usually including the resources + // that must be deleted. To delete the service-linked role, you must first remove + // those resources from the linked service and then submit the deletion request + // again. Resources are specific to the service that is linked to the role. For + // more information about removing resources from a service, see the [Amazon Web Services documentation]for your + // service. + // + // For more information about service-linked roles, see [Roles terms and concepts: Amazon Web Services service-linked role] in the IAM User Guide. + // + // [Roles terms and concepts: Amazon Web Services service-linked role]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_terms-and-concepts.html#iam-term-service-linked-role + // [Amazon Web Services documentation]: http://docs.aws.amazon.com/ DeleteServiceLinkedRole(ctx context.Context, params *DeleteServiceLinkedRoleInput, optFns ...func(*Options)) (*DeleteServiceLinkedRoleOutput, error) // Deletes the specified service-specific credential. DeleteServiceSpecificCredential(ctx context.Context, params *DeleteServiceSpecificCredentialInput, optFns ...func(*Options)) (*DeleteServiceSpecificCredentialOutput, error) - // Deletes a signing certificate associated with the specified IAM user. If you do - // not specify a user name, IAM determines the user name implicitly based on the - // Amazon Web Services access key ID signing the request. This operation works for - // access keys under the Amazon Web Services account. Consequently, you can use - // this operation to manage Amazon Web Services account root user credentials even - // if the Amazon Web Services account has no associated IAM users. + // Deletes a signing certificate associated with the specified IAM user. + // + // If you do not specify a user name, IAM determines the user name implicitly + // based on the Amazon Web Services access key ID signing the request. This + // operation works for access keys under the Amazon Web Services account. + // Consequently, you can use this operation to manage Amazon Web Services account + // root user credentials even if the Amazon Web Services account has no associated + // IAM users. DeleteSigningCertificate(ctx context.Context, params *DeleteSigningCertificateInput, optFns ...func(*Options)) (*DeleteSigningCertificateOutput, error) // Deletes the specified IAM user. Unlike the Amazon Web Services Management // Console, when you delete a user programmatically, you must delete the items - // attached to the user manually, or the deletion fails. For more information, see - // Deleting an IAM user (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users_manage.html#id_users_deleting_cli) + // attached to the user manually, or the deletion fails. For more information, see [Deleting an IAM user] // . Before attempting to delete a user, remove the following items: - // - Password ( DeleteLoginProfile ) - // - Access keys ( DeleteAccessKey ) - // - Signing certificate ( DeleteSigningCertificate ) - // - SSH public key ( DeleteSSHPublicKey ) - // - Git credentials ( DeleteServiceSpecificCredential ) - // - Multi-factor authentication (MFA) device ( DeactivateMFADevice , - // DeleteVirtualMFADevice ) - // - Inline policies ( DeleteUserPolicy ) - // - Attached managed policies ( DetachUserPolicy ) - // - Group memberships ( RemoveUserFromGroup ) + // + // - Password (DeleteLoginProfile ) + // + // - Access keys (DeleteAccessKey ) + // + // - Signing certificate (DeleteSigningCertificate ) + // + // - SSH public key (DeleteSSHPublicKey ) + // + // - Git credentials (DeleteServiceSpecificCredential ) + // + // - Multi-factor authentication (MFA) device (DeactivateMFADevice , DeleteVirtualMFADevice) + // + // - Inline policies (DeleteUserPolicy ) + // + // - Attached managed policies (DetachUserPolicy ) + // + // - Group memberships (RemoveUserFromGroup ) + // + // [Deleting an IAM user]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users_manage.html#id_users_deleting_cli DeleteUser(ctx context.Context, params *DeleteUserInput, optFns ...func(*Options)) (*DeleteUserOutput, error) - // Deletes the permissions boundary for the specified IAM user. Deleting the - // permissions boundary for a user might increase its permissions by allowing the - // user to perform all the actions granted in its permissions policies. + // Deletes the permissions boundary for the specified IAM user. + // + // Deleting the permissions boundary for a user might increase its permissions by + // allowing the user to perform all the actions granted in its permissions + // policies. DeleteUserPermissionsBoundary(ctx context.Context, params *DeleteUserPermissionsBoundaryInput, optFns ...func(*Options)) (*DeleteUserPermissionsBoundaryOutput, error) // Deletes the specified inline policy that is embedded in the specified IAM user. - // A user can also have managed policies attached to it. To detach a managed policy - // from a user, use DetachUserPolicy . For more information about policies, refer - // to Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // + // A user can also have managed policies attached to it. To detach a managed + // policy from a user, use DetachUserPolicy. For more information about policies, refer to [Managed policies and inline policies] in the + // IAM User Guide. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html DeleteUserPolicy(ctx context.Context, params *DeleteUserPolicyInput, optFns ...func(*Options)) (*DeleteUserPolicyOutput, error) - // Deletes a virtual MFA device. You must deactivate a user's virtual MFA device - // before you can delete it. For information about deactivating MFA devices, see - // DeactivateMFADevice . + // Deletes a virtual MFA device. + // + // You must deactivate a user's virtual MFA device before you can delete it. For + // information about deactivating MFA devices, see DeactivateMFADevice. DeleteVirtualMFADevice(ctx context.Context, params *DeleteVirtualMFADeviceInput, optFns ...func(*Options)) (*DeleteVirtualMFADeviceOutput, error) - // Removes the specified managed policy from the specified IAM group. A group can - // also have inline policies embedded with it. To delete an inline policy, use - // DeleteGroupPolicy . For information about policies, see Managed policies and - // inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // Removes the specified managed policy from the specified IAM group. + // + // A group can also have inline policies embedded with it. To delete an inline + // policy, use DeleteGroupPolicy. For information about policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html DetachGroupPolicy(ctx context.Context, params *DetachGroupPolicyInput, optFns ...func(*Options)) (*DetachGroupPolicyOutput, error) - // Removes the specified managed policy from the specified role. A role can also - // have inline policies embedded with it. To delete an inline policy, use - // DeleteRolePolicy . For information about policies, see Managed policies and - // inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // Removes the specified managed policy from the specified role. + // + // A role can also have inline policies embedded with it. To delete an inline + // policy, use DeleteRolePolicy. For information about policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html DetachRolePolicy(ctx context.Context, params *DetachRolePolicyInput, optFns ...func(*Options)) (*DetachRolePolicyOutput, error) - // Removes the specified managed policy from the specified user. A user can also - // have inline policies embedded with it. To delete an inline policy, use - // DeleteUserPolicy . For information about policies, see Managed policies and - // inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // Removes the specified managed policy from the specified user. + // + // A user can also have inline policies embedded with it. To delete an inline + // policy, use DeleteUserPolicy. For information about policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html DetachUserPolicy(ctx context.Context, params *DetachUserPolicyInput, optFns ...func(*Options)) (*DetachUserPolicyOutput, error) // Enables the specified MFA device and associates it with the specified IAM user. // When enabled, the MFA device is required for every subsequent login by the IAM // user associated with the device. EnableMFADevice(ctx context.Context, params *EnableMFADeviceInput, optFns ...func(*Options)) (*EnableMFADeviceOutput, error) - // Generates a credential report for the Amazon Web Services account. For more - // information about the credential report, see Getting credential reports (https://docs.aws.amazon.com/IAM/latest/UserGuide/credential-reports.html) - // in the IAM User Guide. + // Generates a credential report for the Amazon Web Services account. For more + // + // information about the credential report, see [Getting credential reports]in the IAM User Guide. + // + // [Getting credential reports]: https://docs.aws.amazon.com/IAM/latest/UserGuide/credential-reports.html GenerateCredentialReport(ctx context.Context, params *GenerateCredentialReportInput, optFns ...func(*Options)) (*GenerateCredentialReportOutput, error) // Generates a report for service last accessed data for Organizations. You can // generate a report for any entities (organization root, organizational unit, or - // account) or policies in your organization. To call this operation, you must be - // signed in using your Organizations management account credentials. You can use - // your long-term IAM user or root user credentials, or temporary credentials from - // assuming an IAM role. SCPs must be enabled for your organization root. You must - // have the required IAM and Organizations permissions. For more information, see - // Refining permissions using service last accessed data (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html) - // in the IAM User Guide. You can generate a service last accessed data report for - // entities by specifying only the entity's path. This data includes a list of - // services that are allowed by any service control policies (SCPs) that apply to - // the entity. You can generate a service last accessed data report for a policy by - // specifying an entity's path and an optional Organizations policy ID. This data - // includes a list of services that are allowed by the specified SCP. For each - // service in both report types, the data includes the most recent account activity - // that the policy allows to account principals in the entity or the entity's - // children. For important information about the data, reporting period, - // permissions required, troubleshooting, and supported Regions see Reducing - // permissions using service last accessed data (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html) - // in the IAM User Guide. The data includes all attempts to access Amazon Web - // Services, not just the successful ones. This includes all attempts that were - // made using the Amazon Web Services Management Console, the Amazon Web Services - // API through any of the SDKs, or any of the command line tools. An unexpected - // entry in the service last accessed data does not mean that an account has been - // compromised, because the request might have been denied. Refer to your - // CloudTrail logs as the authoritative source for information about all API calls - // and whether they were successful or denied access. For more information, see - // Logging IAM events with CloudTrail (https://docs.aws.amazon.com/IAM/latest/UserGuide/cloudtrail-integration.html) - // in the IAM User Guide. This operation returns a JobId . Use this parameter in - // the GetOrganizationsAccessReport operation to check the status of the report - // generation. To check the status of this request, use the JobId parameter in the - // GetOrganizationsAccessReport operation and test the JobStatus response - // parameter. When the job is complete, you can retrieve the report. To generate a - // service last accessed data report for entities, specify an entity path without - // specifying the optional Organizations policy ID. The type of entity that you - // specify determines the data returned in the report. + // account) or policies in your organization. + // + // To call this operation, you must be signed in using your Organizations + // management account credentials. You can use your long-term IAM user or root user + // credentials, or temporary credentials from assuming an IAM role. SCPs must be + // enabled for your organization root. You must have the required IAM and + // Organizations permissions. For more information, see [Refining permissions using service last accessed data]in the IAM User Guide. + // + // You can generate a service last accessed data report for entities by specifying + // only the entity's path. This data includes a list of services that are allowed + // by any service control policies (SCPs) that apply to the entity. + // + // You can generate a service last accessed data report for a policy by specifying + // an entity's path and an optional Organizations policy ID. This data includes a + // list of services that are allowed by the specified SCP. + // + // For each service in both report types, the data includes the most recent + // account activity that the policy allows to account principals in the entity or + // the entity's children. For important information about the data, reporting + // period, permissions required, troubleshooting, and supported Regions see [Reducing permissions using service last accessed data]in the + // IAM User Guide. + // + // The data includes all attempts to access Amazon Web Services, not just the + // successful ones. This includes all attempts that were made using the Amazon Web + // Services Management Console, the Amazon Web Services API through any of the + // SDKs, or any of the command line tools. An unexpected entry in the service last + // accessed data does not mean that an account has been compromised, because the + // request might have been denied. Refer to your CloudTrail logs as the + // authoritative source for information about all API calls and whether they were + // successful or denied access. For more information, see [Logging IAM events with CloudTrail]in the IAM User Guide. + // + // This operation returns a JobId . Use this parameter in the GetOrganizationsAccessReport operation to check + // the status of the report generation. To check the status of this request, use + // the JobId parameter in the GetOrganizationsAccessReport operation and test the JobStatus response + // parameter. When the job is complete, you can retrieve the report. + // + // To generate a service last accessed data report for entities, specify an entity + // path without specifying the optional Organizations policy ID. The type of entity + // that you specify determines the data returned in the report. + // // - Root – When you specify the organizations root as the entity, the resulting // report lists all of the services allowed by SCPs that are attached to your root. // For each service, the report includes data for all accounts in your organization // except the management account, because the management account is not limited by // SCPs. + // // - OU – When you specify an organizational unit (OU) as the entity, the // resulting report lists all of the services allowed by SCPs that are attached to // the OU and its parents. For each service, the report includes data for all // accounts in the OU or its children. This data excludes the management account, // because the management account is not limited by SCPs. + // // - management account – When you specify the management account, the resulting // report lists all Amazon Web Services services, because the management account is // not limited by SCPs. For each service, the report includes data for only the // management account. + // // - Account – When you specify another account as the entity, the resulting // report lists all of the services allowed by SCPs that are attached to the // account and its parents. For each service, the report includes data for only the @@ -504,6 +676,7 @@ type IAM interface { // To generate a service last accessed data report for policies, specify an entity // path and the optional Organizations policy ID. The type of entity that you // specify determines the data returned for each service. + // // - Root – When you specify the root entity and a policy ID, the resulting // report lists all of the services that are allowed by the specified SCP. For each // service, the report includes data for all accounts in your organization to which @@ -511,6 +684,7 @@ type IAM interface { // management account is not limited by SCPs. If the SCP is not attached to any // entities in the organization, then the report will return a list of services // with no data. + // // - OU – When you specify an OU entity and a policy ID, the resulting report // lists all of the services that are allowed by the specified SCP. For each // service, the report includes data for all accounts in the OU or its children to @@ -519,11 +693,13 @@ type IAM interface { // management account, because the management account is not limited by SCPs. If // the SCP is not attached to the OU or one of its children, the report will return // a list of services with no data. + // // - management account – When you specify the management account, the resulting // report lists all Amazon Web Services services, because the management account is // not limited by SCPs. If you specify a policy ID in the CLI or API, the policy is // ignored. For each service, the report includes data for only the management // account. + // // - Account – When you specify another account entity and a policy ID, the // resulting report lists all of the services that are allowed by the specified // SCP. For each service, the report includes data for only the specified account. @@ -535,55 +711,77 @@ type IAM interface { // whether a principal could access a service. These other policy types include // identity-based policies, resource-based policies, access control lists, IAM // permissions boundaries, and STS assume role policies. It only applies SCP logic. - // For more about the evaluation of policy types, see Evaluating policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html#policy-eval-basics) - // in the IAM User Guide. For more information about service last accessed data, - // see Reducing policy scope by viewing user activity (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html) - // in the IAM User Guide. + // For more about the evaluation of policy types, see [Evaluating policies]in the IAM User Guide. + // + // For more information about service last accessed data, see [Reducing policy scope by viewing user activity] in the IAM User + // Guide. + // + // [Logging IAM events with CloudTrail]: https://docs.aws.amazon.com/IAM/latest/UserGuide/cloudtrail-integration.html + // [Refining permissions using service last accessed data]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html + // [Reducing permissions using service last accessed data]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html + // [Evaluating policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html#policy-eval-basics + // [Reducing policy scope by viewing user activity]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html GenerateOrganizationsAccessReport(ctx context.Context, params *GenerateOrganizationsAccessReportInput, optFns ...func(*Options)) (*GenerateOrganizationsAccessReportOutput, error) // Generates a report that includes details about when an IAM resource (user, // group, role, or policy) was last used in an attempt to access Amazon Web // Services services. Recent activity usually appears within four hours. IAM // reports activity for at least the last 400 days, or less if your Region began - // supporting this feature within the last year. For more information, see Regions - // where data is tracked (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#access-advisor_tracking-period) - // . For more information about services and actions for which action last accessed - // information is displayed, see IAM action last accessed information services and - // actions (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor-action-last-accessed.html) - // . The service last accessed data includes all attempts to access an Amazon Web + // supporting this feature within the last year. For more information, see [Regions where data is tracked]. For + // more information about services and actions for which action last accessed + // information is displayed, see [IAM action last accessed information services and actions]. + // + // The service last accessed data includes all attempts to access an Amazon Web // Services API, not just the successful ones. This includes all attempts that were // made using the Amazon Web Services Management Console, the Amazon Web Services // API through any of the SDKs, or any of the command line tools. An unexpected // entry in the service last accessed data does not mean that your account has been // compromised, because the request might have been denied. Refer to your // CloudTrail logs as the authoritative source for information about all API calls - // and whether they were successful or denied access. For more information, see - // Logging IAM events with CloudTrail (https://docs.aws.amazon.com/IAM/latest/UserGuide/cloudtrail-integration.html) - // in the IAM User Guide. The GenerateServiceLastAccessedDetails operation returns - // a JobId . Use this parameter in the following operations to retrieve the - // following details from your report: - // - GetServiceLastAccessedDetails – Use this operation for users, groups, roles, - // or policies to list every Amazon Web Services service that the resource could - // access using permissions policies. For each service, the response includes - // information about the most recent access attempt. The JobId returned by - // GenerateServiceLastAccessedDetail must be used by the same role within a - // session, or by the same user when used to call GetServiceLastAccessedDetail . - // - GetServiceLastAccessedDetailsWithEntities – Use this operation for groups - // and policies to list information about the associated entities (users or roles) - // that attempted to access a specific Amazon Web Services service. + // and whether they were successful or denied access. For more information, see [Logging IAM events with CloudTrail]in + // the IAM User Guide. + // + // The GenerateServiceLastAccessedDetails operation returns a JobId . Use this + // parameter in the following operations to retrieve the following details from + // your report: + // + // GetServiceLastAccessedDetails + // - – Use this operation for users, groups, roles, or policies to list every + // Amazon Web Services service that the resource could access using permissions + // policies. For each service, the response includes information about the most + // recent access attempt. + // + // The JobId returned by GenerateServiceLastAccessedDetail must be used by the same + // + // role within a session, or by the same user when used to call + // GetServiceLastAccessedDetail . + // + // GetServiceLastAccessedDetailsWithEntities + // - – Use this operation for groups and policies to list information about the + // associated entities (users or roles) that attempted to access a specific Amazon + // Web Services service. // // To check the status of the GenerateServiceLastAccessedDetails request, use the // JobId parameter in the same operations and test the JobStatus response - // parameter. For additional information about the permissions policies that allow - // an identity (user, group, or role) to access specific services, use the - // ListPoliciesGrantingServiceAccess operation. Service last accessed data does not - // use other policy types when determining whether a resource could access a - // service. These other policy types include resource-based policies, access - // control lists, Organizations policies, IAM permissions boundaries, and STS - // assume role policies. It only applies permissions policy logic. For more about - // the evaluation of policy types, see Evaluating policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html#policy-eval-basics) - // in the IAM User Guide. For more information about service and action last - // accessed data, see Reducing permissions using service last accessed data (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html) - // in the IAM User Guide. + // parameter. + // + // For additional information about the permissions policies that allow an + // identity (user, group, or role) to access specific services, use the ListPoliciesGrantingServiceAccessoperation. + // + // Service last accessed data does not use other policy types when determining + // whether a resource could access a service. These other policy types include + // resource-based policies, access control lists, Organizations policies, IAM + // permissions boundaries, and STS assume role policies. It only applies + // permissions policy logic. For more about the evaluation of policy types, see [Evaluating policies]in + // the IAM User Guide. + // + // For more information about service and action last accessed data, see [Reducing permissions using service last accessed data] in the + // IAM User Guide. + // + // [Logging IAM events with CloudTrail]: https://docs.aws.amazon.com/IAM/latest/UserGuide/cloudtrail-integration.html + // [Reducing permissions using service last accessed data]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html + // [Regions where data is tracked]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#access-advisor_tracking-period + // [Evaluating policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html#policy-eval-basics + // [IAM action last accessed information services and actions]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor-action-last-accessed.html GenerateServiceLastAccessedDetails(ctx context.Context, params *GenerateServiceLastAccessedDetailsInput, optFns ...func(*Options)) (*GenerateServiceLastAccessedDetailsOutput, error) // Retrieves information about when the specified access key was last used. The // information includes the date and time of last use, along with the Amazon Web @@ -593,86 +791,111 @@ type IAM interface { // Retrieves information about all IAM users, groups, roles, and policies in your // Amazon Web Services account, including their relationships to one another. Use // this operation to obtain a snapshot of the configuration of IAM permissions - // (users, groups, roles, and policies) in your account. Policies returned by this - // operation are URL-encoded compliant with RFC 3986 (https://tools.ietf.org/html/rfc3986) - // . You can use a URL decoding method to convert the policy back to plain JSON - // text. For example, if you use Java, you can use the decode method of the + // (users, groups, roles, and policies) in your account. + // + // Policies returned by this operation are URL-encoded compliant with [RFC 3986]. You can + // use a URL decoding method to convert the policy back to plain JSON text. For + // example, if you use Java, you can use the decode method of the // java.net.URLDecoder utility class in the Java SDK. Other languages and SDKs - // provide similar functionality. You can optionally filter the results using the - // Filter parameter. You can paginate the results using the MaxItems and Marker - // parameters. + // provide similar functionality. + // + // You can optionally filter the results using the Filter parameter. You can + // paginate the results using the MaxItems and Marker parameters. + // + // [RFC 3986]: https://tools.ietf.org/html/rfc3986 GetAccountAuthorizationDetails(ctx context.Context, params *GetAccountAuthorizationDetailsInput, optFns ...func(*Options)) (*GetAccountAuthorizationDetailsOutput, error) // Retrieves the password policy for the Amazon Web Services account. This tells // you the complexity requirements and mandatory rotation periods for the IAM user // passwords in your account. For more information about using a password policy, - // see Managing an IAM password policy (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingPasswordPolicies.html) - // . + // see [Managing an IAM password policy]. + // + // [Managing an IAM password policy]: https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingPasswordPolicies.html GetAccountPasswordPolicy(ctx context.Context, params *GetAccountPasswordPolicyInput, optFns ...func(*Options)) (*GetAccountPasswordPolicyOutput, error) // Retrieves information about IAM entity usage and IAM quotas in the Amazon Web - // Services account. For information about IAM quotas, see IAM and STS quotas (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html) - // in the IAM User Guide. + // Services account. + // + // For information about IAM quotas, see [IAM and STS quotas] in the IAM User Guide. + // + // [IAM and STS quotas]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html GetAccountSummary(ctx context.Context, params *GetAccountSummaryInput, optFns ...func(*Options)) (*GetAccountSummaryOutput, error) // Gets a list of all of the context keys referenced in the input policies. The // policies are supplied as a list of one or more strings. To get the context keys - // from policies associated with an IAM user, group, or role, use - // GetContextKeysForPrincipalPolicy . Context keys are variables maintained by - // Amazon Web Services and its services that provide details about the context of - // an API query request. Context keys can be evaluated by testing against a value - // specified in an IAM policy. Use GetContextKeysForCustomPolicy to understand - // what key names and values you must supply when you call SimulateCustomPolicy . - // Note that all parameters are shown in unencoded form here for clarity but must - // be URL encoded to be included as a part of a real HTML request. + // from policies associated with an IAM user, group, or role, use GetContextKeysForPrincipalPolicy. + // + // Context keys are variables maintained by Amazon Web Services and its services + // that provide details about the context of an API query request. Context keys can + // be evaluated by testing against a value specified in an IAM policy. Use + // GetContextKeysForCustomPolicy to understand what key names and values you must + // supply when you call SimulateCustomPolicy. Note that all parameters are shown in unencoded form + // here for clarity but must be URL encoded to be included as a part of a real HTML + // request. GetContextKeysForCustomPolicy(ctx context.Context, params *GetContextKeysForCustomPolicyInput, optFns ...func(*Options)) (*GetContextKeysForCustomPolicyOutput, error) // Gets a list of all of the context keys referenced in all the IAM policies that // are attached to the specified IAM entity. The entity can be an IAM user, group, // or role. If you specify a user, then the request also includes all of the - // policies attached to groups that the user is a member of. You can optionally - // include a list of one or more additional policies, specified as strings. If you - // want to include only a list of policies by string, use - // GetContextKeysForCustomPolicy instead. Note: This operation discloses - // information about the permissions granted to other users. If you do not want - // users to see other user's permissions, then consider allowing them to use - // GetContextKeysForCustomPolicy instead. Context keys are variables maintained by - // Amazon Web Services and its services that provide details about the context of - // an API query request. Context keys can be evaluated by testing against a value - // in an IAM policy. Use GetContextKeysForPrincipalPolicy to understand what key - // names and values you must supply when you call SimulatePrincipalPolicy . + // policies attached to groups that the user is a member of. + // + // You can optionally include a list of one or more additional policies, specified + // as strings. If you want to include only a list of policies by string, use GetContextKeysForCustomPolicy + // instead. + // + // Note: This operation discloses information about the permissions granted to + // other users. If you do not want users to see other user's permissions, then + // consider allowing them to use GetContextKeysForCustomPolicyinstead. + // + // Context keys are variables maintained by Amazon Web Services and its services + // that provide details about the context of an API query request. Context keys can + // be evaluated by testing against a value in an IAM policy. Use GetContextKeysForPrincipalPolicyto understand + // what key names and values you must supply when you call SimulatePrincipalPolicy. GetContextKeysForPrincipalPolicy(ctx context.Context, params *GetContextKeysForPrincipalPolicyInput, optFns ...func(*Options)) (*GetContextKeysForPrincipalPolicyOutput, error) - // Retrieves a credential report for the Amazon Web Services account. For more - // information about the credential report, see Getting credential reports (https://docs.aws.amazon.com/IAM/latest/UserGuide/credential-reports.html) - // in the IAM User Guide. + // Retrieves a credential report for the Amazon Web Services account. For more + // + // information about the credential report, see [Getting credential reports]in the IAM User Guide. + // + // [Getting credential reports]: https://docs.aws.amazon.com/IAM/latest/UserGuide/credential-reports.html GetCredentialReport(ctx context.Context, params *GetCredentialReportInput, optFns ...func(*Options)) (*GetCredentialReportOutput, error) - // Returns a list of IAM users that are in the specified IAM group. You can + // Returns a list of IAM users that are in the specified IAM group. You can + // // paginate the results using the MaxItems and Marker parameters. GetGroup(ctx context.Context, params *GetGroupInput, optFns ...func(*Options)) (*GetGroupOutput, error) // Retrieves the specified inline policy document that is embedded in the - // specified IAM group. Policies returned by this operation are URL-encoded - // compliant with RFC 3986 (https://tools.ietf.org/html/rfc3986) . You can use a - // URL decoding method to convert the policy back to plain JSON text. For example, - // if you use Java, you can use the decode method of the java.net.URLDecoder - // utility class in the Java SDK. Other languages and SDKs provide similar - // functionality. An IAM group can also have managed policies attached to it. To - // retrieve a managed policy document that is attached to a group, use GetPolicy - // to determine the policy's default version, then use GetPolicyVersion to - // retrieve the policy document. For more information about policies, see Managed - // policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // specified IAM group. + // + // Policies returned by this operation are URL-encoded compliant with [RFC 3986]. You can + // use a URL decoding method to convert the policy back to plain JSON text. For + // example, if you use Java, you can use the decode method of the + // java.net.URLDecoder utility class in the Java SDK. Other languages and SDKs + // provide similar functionality. + // + // An IAM group can also have managed policies attached to it. To retrieve a + // managed policy document that is attached to a group, use GetPolicyto determine the + // policy's default version, then use GetPolicyVersionto retrieve the policy document. + // + // For more information about policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // [RFC 3986]: https://tools.ietf.org/html/rfc3986 + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html GetGroupPolicy(ctx context.Context, params *GetGroupPolicyInput, optFns ...func(*Options)) (*GetGroupPolicyOutput, error) - // Retrieves information about the specified instance profile, including the + // Retrieves information about the specified instance profile, including the + // // instance profile's path, GUID, ARN, and role. For more information about - // instance profiles, see Using instance profiles (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2_instance-profiles.html) - // in the IAM User Guide. + // instance profiles, see [Using instance profiles]in the IAM User Guide. + // + // [Using instance profiles]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2_instance-profiles.html GetInstanceProfile(ctx context.Context, params *GetInstanceProfileInput, optFns ...func(*Options)) (*GetInstanceProfileOutput, error) // Retrieves the user name for the specified IAM user. A login profile is created // when you create a password for the user to access the Amazon Web Services // Management Console. If the user does not exist or does not have a password, the - // operation returns a 404 ( NoSuchEntity ) error. If you create an IAM user with - // access to the console, the CreateDate reflects the date you created the initial - // password for the user. If you create an IAM user with programmatic access, and - // then later add a password for the user to access the Amazon Web Services - // Management Console, the CreateDate reflects the initial password creation date. - // A user with programmatic access does not have a login profile unless you create - // a password for the user to access the Amazon Web Services Management Console. + // operation returns a 404 ( NoSuchEntity ) error. + // + // If you create an IAM user with access to the console, the CreateDate reflects + // the date you created the initial password for the user. + // + // If you create an IAM user with programmatic access, and then later add a + // password for the user to access the Amazon Web Services Management Console, the + // CreateDate reflects the initial password creation date. A user with programmatic + // access does not have a login profile unless you create a password for the user + // to access the Amazon Web Services Management Console. GetLoginProfile(ctx context.Context, params *GetLoginProfileInput, optFns ...func(*Options)) (*GetLoginProfileOutput, error) // Retrieves information about an MFA device for a specified user. GetMFADevice(ctx context.Context, params *GetMFADeviceInput, optFns ...func(*Options)) (*GetMFADeviceOutput, error) @@ -680,530 +903,729 @@ type IAM interface { // object in IAM. GetOpenIDConnectProvider(ctx context.Context, params *GetOpenIDConnectProviderInput, optFns ...func(*Options)) (*GetOpenIDConnectProviderOutput, error) // Retrieves the service last accessed data report for Organizations that was - // previously generated using the GenerateOrganizationsAccessReport operation. - // This operation retrieves the status of your report job and the report contents. + // previously generated using the GenerateOrganizationsAccessReportoperation. This operation retrieves the status + // of your report job and the report contents. + // // Depending on the parameters that you passed when you generated the report, the - // data returned could include different information. For details, see - // GenerateOrganizationsAccessReport . To call this operation, you must be signed - // in to the management account in your organization. SCPs must be enabled for your - // organization root. You must have permissions to perform this operation. For more - // information, see Refining permissions using service last accessed data (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html) - // in the IAM User Guide. For each service that principals in an account (root - // user, IAM users, or IAM roles) could access using SCPs, the operation returns - // details about the most recent access attempt. If there was no attempt, the - // service is listed without details about the most recent attempt to access the - // service. If the operation fails, it returns the reason that it failed. By - // default, the list is sorted by service namespace. + // data returned could include different information. For details, see GenerateOrganizationsAccessReport. + // + // To call this operation, you must be signed in to the management account in your + // organization. SCPs must be enabled for your organization root. You must have + // permissions to perform this operation. For more information, see [Refining permissions using service last accessed data]in the IAM + // User Guide. + // + // For each service that principals in an account (root user, IAM users, or IAM + // roles) could access using SCPs, the operation returns details about the most + // recent access attempt. If there was no attempt, the service is listed without + // details about the most recent attempt to access the service. If the operation + // fails, it returns the reason that it failed. + // + // By default, the list is sorted by service namespace. + // + // [Refining permissions using service last accessed data]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html GetOrganizationsAccessReport(ctx context.Context, params *GetOrganizationsAccessReportInput, optFns ...func(*Options)) (*GetOrganizationsAccessReportOutput, error) // Retrieves information about the specified managed policy, including the // policy's default version and the total number of IAM users, groups, and roles to // which the policy is attached. To retrieve the list of the specific users, - // groups, and roles that the policy is attached to, use ListEntitiesForPolicy . - // This operation returns metadata about the policy. To retrieve the actual policy - // document for a specific version of the policy, use GetPolicyVersion . This - // operation retrieves information about managed policies. To retrieve information - // about an inline policy that is embedded with an IAM user, group, or role, use - // GetUserPolicy , GetGroupPolicy , or GetRolePolicy . For more information about - // policies, see Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // groups, and roles that the policy is attached to, use ListEntitiesForPolicy. This operation returns + // metadata about the policy. To retrieve the actual policy document for a specific + // version of the policy, use GetPolicyVersion. + // + // This operation retrieves information about managed policies. To retrieve + // information about an inline policy that is embedded with an IAM user, group, or + // role, use GetUserPolicy, GetGroupPolicy, or GetRolePolicy. + // + // For more information about policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html GetPolicy(ctx context.Context, params *GetPolicyInput, optFns ...func(*Options)) (*GetPolicyOutput, error) // Retrieves information about the specified version of the specified managed - // policy, including the policy document. Policies returned by this operation are - // URL-encoded compliant with RFC 3986 (https://tools.ietf.org/html/rfc3986) . You - // can use a URL decoding method to convert the policy back to plain JSON text. For + // policy, including the policy document. + // + // Policies returned by this operation are URL-encoded compliant with [RFC 3986]. You can + // use a URL decoding method to convert the policy back to plain JSON text. For // example, if you use Java, you can use the decode method of the // java.net.URLDecoder utility class in the Java SDK. Other languages and SDKs - // provide similar functionality. To list the available versions for a policy, use - // ListPolicyVersions . This operation retrieves information about managed - // policies. To retrieve information about an inline policy that is embedded in a - // user, group, or role, use GetUserPolicy , GetGroupPolicy , or GetRolePolicy . - // For more information about the types of policies, see Managed policies and - // inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. For more information about managed policy versions, see - // Versioning for managed policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) - // in the IAM User Guide. + // provide similar functionality. + // + // To list the available versions for a policy, use ListPolicyVersions. + // + // This operation retrieves information about managed policies. To retrieve + // information about an inline policy that is embedded in a user, group, or role, + // use GetUserPolicy, GetGroupPolicy, or GetRolePolicy. + // + // For more information about the types of policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // For more information about managed policy versions, see [Versioning for managed policies] in the IAM User Guide. + // + // [RFC 3986]: https://tools.ietf.org/html/rfc3986 + // [Versioning for managed policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html GetPolicyVersion(ctx context.Context, params *GetPolicyVersionInput, optFns ...func(*Options)) (*GetPolicyVersionOutput, error) // Retrieves information about the specified role, including the role's path, // GUID, ARN, and the role's trust policy that grants permission to assume the - // role. For more information about roles, see IAM roles (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html) - // in the IAM User Guide. Policies returned by this operation are URL-encoded - // compliant with RFC 3986 (https://tools.ietf.org/html/rfc3986) . You can use a - // URL decoding method to convert the policy back to plain JSON text. For example, - // if you use Java, you can use the decode method of the java.net.URLDecoder - // utility class in the Java SDK. Other languages and SDKs provide similar - // functionality. + // role. For more information about roles, see [IAM roles]in the IAM User Guide. + // + // Policies returned by this operation are URL-encoded compliant with [RFC 3986]. You can + // use a URL decoding method to convert the policy back to plain JSON text. For + // example, if you use Java, you can use the decode method of the + // java.net.URLDecoder utility class in the Java SDK. Other languages and SDKs + // provide similar functionality. + // + // [RFC 3986]: https://tools.ietf.org/html/rfc3986 + // [IAM roles]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html GetRole(ctx context.Context, params *GetRoleInput, optFns ...func(*Options)) (*GetRoleOutput, error) // Retrieves the specified inline policy document that is embedded with the - // specified IAM role. Policies returned by this operation are URL-encoded - // compliant with RFC 3986 (https://tools.ietf.org/html/rfc3986) . You can use a - // URL decoding method to convert the policy back to plain JSON text. For example, - // if you use Java, you can use the decode method of the java.net.URLDecoder - // utility class in the Java SDK. Other languages and SDKs provide similar - // functionality. An IAM role can also have managed policies attached to it. To - // retrieve a managed policy document that is attached to a role, use GetPolicy to - // determine the policy's default version, then use GetPolicyVersion to retrieve - // the policy document. For more information about policies, see Managed policies - // and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. For more information about roles, see IAM roles (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html) - // in the IAM User Guide. + // specified IAM role. + // + // Policies returned by this operation are URL-encoded compliant with [RFC 3986]. You can + // use a URL decoding method to convert the policy back to plain JSON text. For + // example, if you use Java, you can use the decode method of the + // java.net.URLDecoder utility class in the Java SDK. Other languages and SDKs + // provide similar functionality. + // + // An IAM role can also have managed policies attached to it. To retrieve a + // managed policy document that is attached to a role, use GetPolicyto determine the + // policy's default version, then use GetPolicyVersionto retrieve the policy document. + // + // For more information about policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // For more information about roles, see [IAM roles] in the IAM User Guide. + // + // [RFC 3986]: https://tools.ietf.org/html/rfc3986 + // [IAM roles]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html GetRolePolicy(ctx context.Context, params *GetRolePolicyInput, optFns ...func(*Options)) (*GetRolePolicyOutput, error) // Returns the SAML provider metadocument that was uploaded when the IAM SAML - // provider resource object was created or updated. This operation requires - // Signature Version 4 (https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html) - // . + // provider resource object was created or updated. + // + // This operation requires [Signature Version 4]. + // + // [Signature Version 4]: https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html GetSAMLProvider(ctx context.Context, params *GetSAMLProviderInput, optFns ...func(*Options)) (*GetSAMLProviderOutput, error) - // Retrieves the specified SSH public key, including metadata about the key. The - // SSH public key retrieved by this operation is used only for authenticating the - // associated IAM user to an CodeCommit repository. For more information about - // using SSH keys to authenticate to an CodeCommit repository, see Set up - // CodeCommit for SSH connections (https://docs.aws.amazon.com/codecommit/latest/userguide/setting-up-credentials-ssh.html) - // in the CodeCommit User Guide. + // Retrieves the specified SSH public key, including metadata about the key. + // + // The SSH public key retrieved by this operation is used only for authenticating + // the associated IAM user to an CodeCommit repository. For more information about + // using SSH keys to authenticate to an CodeCommit repository, see [Set up CodeCommit for SSH connections]in the + // CodeCommit User Guide. + // + // [Set up CodeCommit for SSH connections]: https://docs.aws.amazon.com/codecommit/latest/userguide/setting-up-credentials-ssh.html GetSSHPublicKey(ctx context.Context, params *GetSSHPublicKeyInput, optFns ...func(*Options)) (*GetSSHPublicKeyOutput, error) - // Retrieves information about the specified server certificate stored in IAM. For - // more information about working with server certificates, see Working with - // server certificates (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html) - // in the IAM User Guide. This topic includes a list of Amazon Web Services - // services that can use the server certificates that you manage with IAM. + // Retrieves information about the specified server certificate stored in IAM. + // + // For more information about working with server certificates, see [Working with server certificates] in the IAM + // User Guide. This topic includes a list of Amazon Web Services services that can + // use the server certificates that you manage with IAM. + // + // [Working with server certificates]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html GetServerCertificate(ctx context.Context, params *GetServerCertificateInput, optFns ...func(*Options)) (*GetServerCertificateOutput, error) // Retrieves a service last accessed report that was created using the // GenerateServiceLastAccessedDetails operation. You can use the JobId parameter // in GetServiceLastAccessedDetails to retrieve the status of your report job. // When the report is complete, you can retrieve the generated report. The report // includes a list of Amazon Web Services services that the resource (user, group, - // role, or managed policy) can access. Service last accessed data does not use - // other policy types when determining whether a resource could access a service. - // These other policy types include resource-based policies, access control lists, - // Organizations policies, IAM permissions boundaries, and STS assume role - // policies. It only applies permissions policy logic. For more about the - // evaluation of policy types, see Evaluating policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html#policy-eval-basics) - // in the IAM User Guide. For each service that the resource could access using - // permissions policies, the operation returns details about the most recent access - // attempt. If there was no attempt, the service is listed without details about - // the most recent attempt to access the service. If the operation fails, the - // GetServiceLastAccessedDetails operation returns the reason that it failed. The - // GetServiceLastAccessedDetails operation returns a list of services. This list - // includes the number of entities that have attempted to access the service and - // the date and time of the last attempt. It also returns the ARN of the following - // entity, depending on the resource ARN that you used to generate the report: + // role, or managed policy) can access. + // + // Service last accessed data does not use other policy types when determining + // whether a resource could access a service. These other policy types include + // resource-based policies, access control lists, Organizations policies, IAM + // permissions boundaries, and STS assume role policies. It only applies + // permissions policy logic. For more about the evaluation of policy types, see [Evaluating policies]in + // the IAM User Guide. + // + // For each service that the resource could access using permissions policies, the + // operation returns details about the most recent access attempt. If there was no + // attempt, the service is listed without details about the most recent attempt to + // access the service. If the operation fails, the GetServiceLastAccessedDetails + // operation returns the reason that it failed. + // + // The GetServiceLastAccessedDetails operation returns a list of services. This + // list includes the number of entities that have attempted to access the service + // and the date and time of the last attempt. It also returns the ARN of the + // following entity, depending on the resource ARN that you used to generate the + // report: + // // - User – Returns the user ARN that you used to generate the report + // // - Group – Returns the ARN of the group member (user) that last attempted to // access the service + // // - Role – Returns the role ARN that you used to generate the report + // // - Policy – Returns the ARN of the user or role that last used the policy to // attempt to access the service // - // By default, the list is sorted by service namespace. If you specified - // ACTION_LEVEL granularity when you generated the report, this operation returns - // service and action last accessed data. This includes the most recent access - // attempt for each tracked action within a service. Otherwise, this operation - // returns only service data. For more information about service and action last - // accessed data, see Reducing permissions using service last accessed data (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html) - // in the IAM User Guide. + // By default, the list is sorted by service namespace. + // + // If you specified ACTION_LEVEL granularity when you generated the report, this + // operation returns service and action last accessed data. This includes the most + // recent access attempt for each tracked action within a service. Otherwise, this + // operation returns only service data. + // + // For more information about service and action last accessed data, see [Reducing permissions using service last accessed data] in the + // IAM User Guide. + // + // [Reducing permissions using service last accessed data]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html + // [Evaluating policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html#policy-eval-basics GetServiceLastAccessedDetails(ctx context.Context, params *GetServiceLastAccessedDetailsInput, optFns ...func(*Options)) (*GetServiceLastAccessedDetailsOutput, error) // After you generate a group or policy report using the // GenerateServiceLastAccessedDetails operation, you can use the JobId parameter // in GetServiceLastAccessedDetailsWithEntities . This operation retrieves the // status of your report job and a list of entities that could have used group or // policy permissions to access the specified service. + // // - Group – For a group report, this operation returns a list of users in the // group that could have used the group’s policies in an attempt to access the // service. + // // - Policy – For a policy report, this operation returns a list of entities // (users or roles) that could have used the policy in an attempt to access the // service. // // You can also use this operation for user or role reports to retrieve details - // about those entities. If the operation fails, the - // GetServiceLastAccessedDetailsWithEntities operation returns the reason that it - // failed. By default, the list of associated entities is sorted by date, with the - // most recent access listed first. + // about those entities. + // + // If the operation fails, the GetServiceLastAccessedDetailsWithEntities operation + // returns the reason that it failed. + // + // By default, the list of associated entities is sorted by date, with the most + // recent access listed first. GetServiceLastAccessedDetailsWithEntities(ctx context.Context, params *GetServiceLastAccessedDetailsWithEntitiesInput, optFns ...func(*Options)) (*GetServiceLastAccessedDetailsWithEntitiesOutput, error) - // Retrieves the status of your service-linked role deletion. After you use - // DeleteServiceLinkedRole to submit a service-linked role for deletion, you can - // use the DeletionTaskId parameter in GetServiceLinkedRoleDeletionStatus to check - // the status of the deletion. If the deletion fails, this operation returns the - // reason that it failed, if that information is returned by the service. + // Retrieves the status of your service-linked role deletion. After you use DeleteServiceLinkedRole to + // submit a service-linked role for deletion, you can use the DeletionTaskId + // parameter in GetServiceLinkedRoleDeletionStatus to check the status of the + // deletion. If the deletion fails, this operation returns the reason that it + // failed, if that information is returned by the service. GetServiceLinkedRoleDeletionStatus(ctx context.Context, params *GetServiceLinkedRoleDeletionStatusInput, optFns ...func(*Options)) (*GetServiceLinkedRoleDeletionStatusOutput, error) // Retrieves information about the specified IAM user, including the user's - // creation date, path, unique ID, and ARN. If you do not specify a user name, IAM - // determines the user name implicitly based on the Amazon Web Services access key - // ID used to sign the request to this operation. + // creation date, path, unique ID, and ARN. + // + // If you do not specify a user name, IAM determines the user name implicitly + // based on the Amazon Web Services access key ID used to sign the request to this + // operation. GetUser(ctx context.Context, params *GetUserInput, optFns ...func(*Options)) (*GetUserOutput, error) // Retrieves the specified inline policy document that is embedded in the - // specified IAM user. Policies returned by this operation are URL-encoded - // compliant with RFC 3986 (https://tools.ietf.org/html/rfc3986) . You can use a - // URL decoding method to convert the policy back to plain JSON text. For example, - // if you use Java, you can use the decode method of the java.net.URLDecoder - // utility class in the Java SDK. Other languages and SDKs provide similar - // functionality. An IAM user can also have managed policies attached to it. To - // retrieve a managed policy document that is attached to a user, use GetPolicy to - // determine the policy's default version. Then use GetPolicyVersion to retrieve - // the policy document. For more information about policies, see Managed policies - // and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // specified IAM user. + // + // Policies returned by this operation are URL-encoded compliant with [RFC 3986]. You can + // use a URL decoding method to convert the policy back to plain JSON text. For + // example, if you use Java, you can use the decode method of the + // java.net.URLDecoder utility class in the Java SDK. Other languages and SDKs + // provide similar functionality. + // + // An IAM user can also have managed policies attached to it. To retrieve a + // managed policy document that is attached to a user, use GetPolicyto determine the + // policy's default version. Then use GetPolicyVersionto retrieve the policy document. + // + // For more information about policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // [RFC 3986]: https://tools.ietf.org/html/rfc3986 + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html GetUserPolicy(ctx context.Context, params *GetUserPolicyInput, optFns ...func(*Options)) (*GetUserPolicyOutput, error) // Returns information about the access key IDs associated with the specified IAM - // user. If there is none, the operation returns an empty list. Although each user - // is limited to a small number of keys, you can still paginate the results using - // the MaxItems and Marker parameters. If the UserName is not specified, the user - // name is determined implicitly based on the Amazon Web Services access key ID - // used to sign the request. If a temporary access key is used, then UserName is - // required. If a long-term key is assigned to the user, then UserName is not - // required. This operation works for access keys under the Amazon Web Services - // account. If the Amazon Web Services account has no associated users, the root - // user returns it's own access key IDs by running this command. To ensure the - // security of your Amazon Web Services account, the secret access key is - // accessible only during key and user creation. + // user. If there is none, the operation returns an empty list. + // + // Although each user is limited to a small number of keys, you can still paginate + // the results using the MaxItems and Marker parameters. + // + // If the UserName is not specified, the user name is determined implicitly based + // on the Amazon Web Services access key ID used to sign the request. If a + // temporary access key is used, then UserName is required. If a long-term key is + // assigned to the user, then UserName is not required. + // + // This operation works for access keys under the Amazon Web Services account. If + // the Amazon Web Services account has no associated users, the root user returns + // it's own access key IDs by running this command. + // + // To ensure the security of your Amazon Web Services account, the secret access + // key is accessible only during key and user creation. ListAccessKeys(ctx context.Context, params *ListAccessKeysInput, optFns ...func(*Options)) (*ListAccessKeysOutput, error) // Lists the account alias associated with the Amazon Web Services account (Note: // you can have only one). For information about using an Amazon Web Services - // account alias, see Creating, deleting, and listing an Amazon Web Services - // account alias (https://docs.aws.amazon.com/signin/latest/userguide/CreateAccountAlias.html) - // in the Amazon Web Services Sign-In User Guide. + // account alias, see [Creating, deleting, and listing an Amazon Web Services account alias]in the Amazon Web Services Sign-In User Guide. + // + // [Creating, deleting, and listing an Amazon Web Services account alias]: https://docs.aws.amazon.com/signin/latest/userguide/CreateAccountAlias.html ListAccountAliases(ctx context.Context, params *ListAccountAliasesInput, optFns ...func(*Options)) (*ListAccountAliasesOutput, error) - // Lists all managed policies that are attached to the specified IAM group. An IAM - // group can also have inline policies embedded with it. To list the inline - // policies for a group, use ListGroupPolicies . For information about policies, - // see Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. You can paginate the results using the MaxItems and - // Marker parameters. You can use the PathPrefix parameter to limit the list of - // policies to only those matching the specified path prefix. If there are no - // policies attached to the specified group (or none that match the specified path - // prefix), the operation returns an empty list. + // Lists all managed policies that are attached to the specified IAM group. + // + // An IAM group can also have inline policies embedded with it. To list the inline + // policies for a group, use ListGroupPolicies. For information about policies, see [Managed policies and inline policies] in the IAM + // User Guide. + // + // You can paginate the results using the MaxItems and Marker parameters. You can + // use the PathPrefix parameter to limit the list of policies to only those + // matching the specified path prefix. If there are no policies attached to the + // specified group (or none that match the specified path prefix), the operation + // returns an empty list. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html ListAttachedGroupPolicies(ctx context.Context, params *ListAttachedGroupPoliciesInput, optFns ...func(*Options)) (*ListAttachedGroupPoliciesOutput, error) - // Lists all managed policies that are attached to the specified IAM role. An IAM - // role can also have inline policies embedded with it. To list the inline policies - // for a role, use ListRolePolicies . For information about policies, see Managed - // policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. You can paginate the results using the MaxItems and - // Marker parameters. You can use the PathPrefix parameter to limit the list of - // policies to only those matching the specified path prefix. If there are no - // policies attached to the specified role (or none that match the specified path - // prefix), the operation returns an empty list. + // Lists all managed policies that are attached to the specified IAM role. + // + // An IAM role can also have inline policies embedded with it. To list the inline + // policies for a role, use ListRolePolicies. For information about policies, see [Managed policies and inline policies] in the IAM User + // Guide. + // + // You can paginate the results using the MaxItems and Marker parameters. You can + // use the PathPrefix parameter to limit the list of policies to only those + // matching the specified path prefix. If there are no policies attached to the + // specified role (or none that match the specified path prefix), the operation + // returns an empty list. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html ListAttachedRolePolicies(ctx context.Context, params *ListAttachedRolePoliciesInput, optFns ...func(*Options)) (*ListAttachedRolePoliciesOutput, error) - // Lists all managed policies that are attached to the specified IAM user. An IAM - // user can also have inline policies embedded with it. To list the inline policies - // for a user, use ListUserPolicies . For information about policies, see Managed - // policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. You can paginate the results using the MaxItems and - // Marker parameters. You can use the PathPrefix parameter to limit the list of - // policies to only those matching the specified path prefix. If there are no - // policies attached to the specified group (or none that match the specified path - // prefix), the operation returns an empty list. + // Lists all managed policies that are attached to the specified IAM user. + // + // An IAM user can also have inline policies embedded with it. To list the inline + // policies for a user, use ListUserPolicies. For information about policies, see [Managed policies and inline policies] in the IAM User + // Guide. + // + // You can paginate the results using the MaxItems and Marker parameters. You can + // use the PathPrefix parameter to limit the list of policies to only those + // matching the specified path prefix. If there are no policies attached to the + // specified group (or none that match the specified path prefix), the operation + // returns an empty list. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html ListAttachedUserPolicies(ctx context.Context, params *ListAttachedUserPoliciesInput, optFns ...func(*Options)) (*ListAttachedUserPoliciesOutput, error) // Lists all IAM users, groups, and roles that the specified managed policy is - // attached to. You can use the optional EntityFilter parameter to limit the - // results to a particular type of entity (users, groups, or roles). For example, - // to list only the roles that are attached to the specified policy, set - // EntityFilter to Role . You can paginate the results using the MaxItems and - // Marker parameters. + // attached to. + // + // You can use the optional EntityFilter parameter to limit the results to a + // particular type of entity (users, groups, or roles). For example, to list only + // the roles that are attached to the specified policy, set EntityFilter to Role . + // + // You can paginate the results using the MaxItems and Marker parameters. ListEntitiesForPolicy(ctx context.Context, params *ListEntitiesForPolicyInput, optFns ...func(*Options)) (*ListEntitiesForPolicyOutput, error) // Lists the names of the inline policies that are embedded in the specified IAM - // group. An IAM group can also have managed policies attached to it. To list the - // managed policies that are attached to a group, use ListAttachedGroupPolicies . - // For more information about policies, see Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. You can paginate the results using the MaxItems and - // Marker parameters. If there are no inline policies embedded with the specified - // group, the operation returns an empty list. + // group. + // + // An IAM group can also have managed policies attached to it. To list the managed + // policies that are attached to a group, use ListAttachedGroupPolicies. For more information about + // policies, see [Managed policies and inline policies]in the IAM User Guide. + // + // You can paginate the results using the MaxItems and Marker parameters. If there + // are no inline policies embedded with the specified group, the operation returns + // an empty list. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html ListGroupPolicies(ctx context.Context, params *ListGroupPoliciesInput, optFns ...func(*Options)) (*ListGroupPoliciesOutput, error) - // Lists the IAM groups that have the specified path prefix. You can paginate the - // results using the MaxItems and Marker parameters. + // Lists the IAM groups that have the specified path prefix. + // + // You can paginate the results using the MaxItems and Marker parameters. ListGroups(ctx context.Context, params *ListGroupsInput, optFns ...func(*Options)) (*ListGroupsOutput, error) - // Lists the IAM groups that the specified IAM user belongs to. You can paginate - // the results using the MaxItems and Marker parameters. + // Lists the IAM groups that the specified IAM user belongs to. + // + // You can paginate the results using the MaxItems and Marker parameters. ListGroupsForUser(ctx context.Context, params *ListGroupsForUserInput, optFns ...func(*Options)) (*ListGroupsForUserOutput, error) // Lists the tags that are attached to the specified IAM instance profile. The // returned list of tags is sorted by tag key. For more information about tagging, - // see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // see [Tagging IAM resources]in the IAM User Guide. + // + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html ListInstanceProfileTags(ctx context.Context, params *ListInstanceProfileTagsInput, optFns ...func(*Options)) (*ListInstanceProfileTagsOutput, error) // Lists the instance profiles that have the specified path prefix. If there are // none, the operation returns an empty list. For more information about instance - // profiles, see Using instance profiles (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2_instance-profiles.html) - // in the IAM User Guide. IAM resource-listing operations return a subset of the - // available attributes for the resource. For example, this operation does not - // return tags, even though they are an attribute of the returned object. To view - // all of the information for an instance profile, see GetInstanceProfile . You can - // paginate the results using the MaxItems and Marker parameters. + // profiles, see [Using instance profiles]in the IAM User Guide. + // + // IAM resource-listing operations return a subset of the available attributes for + // the resource. For example, this operation does not return tags, even though they + // are an attribute of the returned object. To view all of the information for an + // instance profile, see GetInstanceProfile. + // + // You can paginate the results using the MaxItems and Marker parameters. + // + // [Using instance profiles]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2_instance-profiles.html ListInstanceProfiles(ctx context.Context, params *ListInstanceProfilesInput, optFns ...func(*Options)) (*ListInstanceProfilesOutput, error) // Lists the instance profiles that have the specified associated IAM role. If // there are none, the operation returns an empty list. For more information about - // instance profiles, go to Using instance profiles (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2_instance-profiles.html) - // in the IAM User Guide. You can paginate the results using the MaxItems and - // Marker parameters. + // instance profiles, go to [Using instance profiles]in the IAM User Guide. + // + // You can paginate the results using the MaxItems and Marker parameters. + // + // [Using instance profiles]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2_instance-profiles.html ListInstanceProfilesForRole(ctx context.Context, params *ListInstanceProfilesForRoleInput, optFns ...func(*Options)) (*ListInstanceProfilesForRoleOutput, error) // Lists the tags that are attached to the specified IAM virtual multi-factor // authentication (MFA) device. The returned list of tags is sorted by tag key. For - // more information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // more information about tagging, see [Tagging IAM resources]in the IAM User Guide. + // + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html ListMFADeviceTags(ctx context.Context, params *ListMFADeviceTagsInput, optFns ...func(*Options)) (*ListMFADeviceTagsOutput, error) // Lists the MFA devices for an IAM user. If the request includes a IAM user name, // then this operation lists all the MFA devices associated with the specified // user. If you do not specify a user name, IAM determines the user name implicitly // based on the Amazon Web Services access key ID signing the request for this - // operation. You can paginate the results using the MaxItems and Marker - // parameters. + // operation. + // + // You can paginate the results using the MaxItems and Marker parameters. ListMFADevices(ctx context.Context, params *ListMFADevicesInput, optFns ...func(*Options)) (*ListMFADevicesOutput, error) // Lists the tags that are attached to the specified OpenID Connect // (OIDC)-compatible identity provider. The returned list of tags is sorted by tag - // key. For more information, see About web identity federation (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_oidc.html) - // . For more information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // key. For more information, see [About web identity federation]. + // + // For more information about tagging, see [Tagging IAM resources] in the IAM User Guide. + // + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html + // [About web identity federation]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_oidc.html ListOpenIDConnectProviderTags(ctx context.Context, params *ListOpenIDConnectProviderTagsInput, optFns ...func(*Options)) (*ListOpenIDConnectProviderTagsOutput, error) // Lists information about the IAM OpenID Connect (OIDC) provider resource objects - // defined in the Amazon Web Services account. IAM resource-listing operations - // return a subset of the available attributes for the resource. For example, this - // operation does not return tags, even though they are an attribute of the - // returned object. To view all of the information for an OIDC provider, see - // GetOpenIDConnectProvider . + // defined in the Amazon Web Services account. + // + // IAM resource-listing operations return a subset of the available attributes for + // the resource. For example, this operation does not return tags, even though they + // are an attribute of the returned object. To view all of the information for an + // OIDC provider, see GetOpenIDConnectProvider. ListOpenIDConnectProviders(ctx context.Context, params *ListOpenIDConnectProvidersInput, optFns ...func(*Options)) (*ListOpenIDConnectProvidersOutput, error) // Lists all the managed policies that are available in your Amazon Web Services // account, including your own customer-defined managed policies and all Amazon Web - // Services managed policies. You can filter the list of policies that is returned - // using the optional OnlyAttached , Scope , and PathPrefix parameters. For - // example, to list only the customer managed policies in your Amazon Web Services - // account, set Scope to Local . To list only Amazon Web Services managed policies, - // set Scope to AWS . You can paginate the results using the MaxItems and Marker - // parameters. For more information about managed policies, see Managed policies - // and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. IAM resource-listing operations return a subset of the - // available attributes for the resource. For example, this operation does not - // return tags, even though they are an attribute of the returned object. To view - // all of the information for a customer manged policy, see GetPolicy . + // Services managed policies. + // + // You can filter the list of policies that is returned using the optional + // OnlyAttached , Scope , and PathPrefix parameters. For example, to list only the + // customer managed policies in your Amazon Web Services account, set Scope to + // Local . To list only Amazon Web Services managed policies, set Scope to AWS . + // + // You can paginate the results using the MaxItems and Marker parameters. + // + // For more information about managed policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // IAM resource-listing operations return a subset of the available attributes for + // the resource. For example, this operation does not return tags, even though they + // are an attribute of the returned object. To view all of the information for a + // customer manged policy, see GetPolicy. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html ListPolicies(ctx context.Context, params *ListPoliciesInput, optFns ...func(*Options)) (*ListPoliciesOutput, error) // Retrieves a list of policies that the IAM identity (user, group, or role) can - // use to access each specified service. This operation does not use other policy - // types when determining whether a resource could access a service. These other - // policy types include resource-based policies, access control lists, - // Organizations policies, IAM permissions boundaries, and STS assume role - // policies. It only applies permissions policy logic. For more about the - // evaluation of policy types, see Evaluating policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html#policy-eval-basics) - // in the IAM User Guide. The list of policies returned by the operation depends on - // the ARN of the identity that you provide. + // use to access each specified service. + // + // This operation does not use other policy types when determining whether a + // resource could access a service. These other policy types include resource-based + // policies, access control lists, Organizations policies, IAM permissions + // boundaries, and STS assume role policies. It only applies permissions policy + // logic. For more about the evaluation of policy types, see [Evaluating policies]in the IAM User Guide. + // + // The list of policies returned by the operation depends on the ARN of the + // identity that you provide. + // // - User – The list of policies includes the managed and inline policies that // are attached to the user directly. The list also includes any additional managed // and inline policies that are attached to the group to which the user belongs. + // // - Group – The list of policies includes only the managed and inline policies // that are attached to the group directly. Policies that are attached to the // group’s user are not included. + // // - Role – The list of policies includes only the managed and inline policies // that are attached to the role. // // For each managed policy, this operation returns the ARN and policy name. For // each inline policy, it returns the policy name and the entity to which it is // attached. Inline policies do not have an ARN. For more information about these - // policy types, see Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_managed-vs-inline.html) - // in the IAM User Guide. Policies that are attached to users and roles as - // permissions boundaries are not returned. To view which managed policy is - // currently used to set the permissions boundary for a user or role, use the - // GetUser or GetRole operations. + // policy types, see [Managed policies and inline policies]in the IAM User Guide. + // + // Policies that are attached to users and roles as permissions boundaries are not + // returned. To view which managed policy is currently used to set the permissions + // boundary for a user or role, use the GetUseror GetRole operations. + // + // [Evaluating policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html#policy-eval-basics + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_managed-vs-inline.html ListPoliciesGrantingServiceAccess(ctx context.Context, params *ListPoliciesGrantingServiceAccessInput, optFns ...func(*Options)) (*ListPoliciesGrantingServiceAccessOutput, error) // Lists the tags that are attached to the specified IAM customer managed policy. // The returned list of tags is sorted by tag key. For more information about - // tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // tagging, see [Tagging IAM resources]in the IAM User Guide. + // + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html ListPolicyTags(ctx context.Context, params *ListPolicyTagsInput, optFns ...func(*Options)) (*ListPolicyTagsOutput, error) // Lists information about the versions of the specified managed policy, including - // the version that is currently set as the policy's default version. For more - // information about managed policies, see Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // the version that is currently set as the policy's default version. + // + // For more information about managed policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html ListPolicyVersions(ctx context.Context, params *ListPolicyVersionsInput, optFns ...func(*Options)) (*ListPolicyVersionsOutput, error) // Lists the names of the inline policies that are embedded in the specified IAM - // role. An IAM role can also have managed policies attached to it. To list the - // managed policies that are attached to a role, use ListAttachedRolePolicies . For - // more information about policies, see Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. You can paginate the results using the MaxItems and - // Marker parameters. If there are no inline policies embedded with the specified - // role, the operation returns an empty list. + // role. + // + // An IAM role can also have managed policies attached to it. To list the managed + // policies that are attached to a role, use ListAttachedRolePolicies. For more information about + // policies, see [Managed policies and inline policies]in the IAM User Guide. + // + // You can paginate the results using the MaxItems and Marker parameters. If there + // are no inline policies embedded with the specified role, the operation returns + // an empty list. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html ListRolePolicies(ctx context.Context, params *ListRolePoliciesInput, optFns ...func(*Options)) (*ListRolePoliciesOutput, error) // Lists the tags that are attached to the specified role. The returned list of - // tags is sorted by tag key. For more information about tagging, see Tagging IAM - // resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) in the - // IAM User Guide. + // tags is sorted by tag key. For more information about tagging, see [Tagging IAM resources]in the IAM + // User Guide. + // + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html ListRoleTags(ctx context.Context, params *ListRoleTagsInput, optFns ...func(*Options)) (*ListRoleTagsOutput, error) // Lists the IAM roles that have the specified path prefix. If there are none, the - // operation returns an empty list. For more information about roles, see IAM roles (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html) - // in the IAM User Guide. IAM resource-listing operations return a subset of the - // available attributes for the resource. This operation does not return the - // following attributes, even though they are an attribute of the returned object: + // operation returns an empty list. For more information about roles, see [IAM roles]in the + // IAM User Guide. + // + // IAM resource-listing operations return a subset of the available attributes for + // the resource. This operation does not return the following attributes, even + // though they are an attribute of the returned object: + // // - PermissionsBoundary + // // - RoleLastUsed + // // - Tags // - // To view all of the information for a role, see GetRole . You can paginate the - // results using the MaxItems and Marker parameters. + // To view all of the information for a role, see GetRole. + // + // You can paginate the results using the MaxItems and Marker parameters. + // + // [IAM roles]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html ListRoles(ctx context.Context, params *ListRolesInput, optFns ...func(*Options)) (*ListRolesOutput, error) // Lists the tags that are attached to the specified Security Assertion Markup // Language (SAML) identity provider. The returned list of tags is sorted by tag - // key. For more information, see About SAML 2.0-based federation (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html) - // . For more information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // key. For more information, see [About SAML 2.0-based federation]. + // + // For more information about tagging, see [Tagging IAM resources] in the IAM User Guide. + // + // [About SAML 2.0-based federation]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html ListSAMLProviderTags(ctx context.Context, params *ListSAMLProviderTagsInput, optFns ...func(*Options)) (*ListSAMLProviderTagsOutput, error) // Lists the SAML provider resource objects defined in IAM in the account. IAM // resource-listing operations return a subset of the available attributes for the // resource. For example, this operation does not return tags, even though they are // an attribute of the returned object. To view all of the information for a SAML - // provider, see GetSAMLProvider . This operation requires Signature Version 4 (https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html) - // . + // provider, see GetSAMLProvider. + // + // This operation requires [Signature Version 4]. + // + // [Signature Version 4]: https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html ListSAMLProviders(ctx context.Context, params *ListSAMLProvidersInput, optFns ...func(*Options)) (*ListSAMLProvidersOutput, error) // Returns information about the SSH public keys associated with the specified IAM - // user. If none exists, the operation returns an empty list. The SSH public keys - // returned by this operation are used only for authenticating the IAM user to an - // CodeCommit repository. For more information about using SSH keys to authenticate - // to an CodeCommit repository, see Set up CodeCommit for SSH connections (https://docs.aws.amazon.com/codecommit/latest/userguide/setting-up-credentials-ssh.html) - // in the CodeCommit User Guide. Although each user is limited to a small number of - // keys, you can still paginate the results using the MaxItems and Marker - // parameters. + // user. If none exists, the operation returns an empty list. + // + // The SSH public keys returned by this operation are used only for authenticating + // the IAM user to an CodeCommit repository. For more information about using SSH + // keys to authenticate to an CodeCommit repository, see [Set up CodeCommit for SSH connections]in the CodeCommit User + // Guide. + // + // Although each user is limited to a small number of keys, you can still paginate + // the results using the MaxItems and Marker parameters. + // + // [Set up CodeCommit for SSH connections]: https://docs.aws.amazon.com/codecommit/latest/userguide/setting-up-credentials-ssh.html ListSSHPublicKeys(ctx context.Context, params *ListSSHPublicKeysInput, optFns ...func(*Options)) (*ListSSHPublicKeysOutput, error) // Lists the tags that are attached to the specified IAM server certificate. The // returned list of tags is sorted by tag key. For more information about tagging, - // see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. For certificates in a Region supported by Certificate - // Manager (ACM), we recommend that you don't use IAM server certificates. Instead, - // use ACM to provision, manage, and deploy your server certificates. For more - // information about IAM server certificates, Working with server certificates (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html) - // in the IAM User Guide. + // see [Tagging IAM resources]in the IAM User Guide. + // + // For certificates in a Region supported by Certificate Manager (ACM), we + // recommend that you don't use IAM server certificates. Instead, use ACM to + // provision, manage, and deploy your server certificates. For more information + // about IAM server certificates, [Working with server certificates]in the IAM User Guide. + // + // [Working with server certificates]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html ListServerCertificateTags(ctx context.Context, params *ListServerCertificateTagsInput, optFns ...func(*Options)) (*ListServerCertificateTagsOutput, error) // Lists the server certificates stored in IAM that have the specified path - // prefix. If none exist, the operation returns an empty list. You can paginate the - // results using the MaxItems and Marker parameters. For more information about - // working with server certificates, see Working with server certificates (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html) - // in the IAM User Guide. This topic also includes a list of Amazon Web Services - // services that can use the server certificates that you manage with IAM. IAM - // resource-listing operations return a subset of the available attributes for the - // resource. For example, this operation does not return tags, even though they are - // an attribute of the returned object. To view all of the information for a - // servercertificate, see GetServerCertificate . + // prefix. If none exist, the operation returns an empty list. + // + // You can paginate the results using the MaxItems and Marker parameters. + // + // For more information about working with server certificates, see [Working with server certificates] in the IAM + // User Guide. This topic also includes a list of Amazon Web Services services that + // can use the server certificates that you manage with IAM. + // + // IAM resource-listing operations return a subset of the available attributes for + // the resource. For example, this operation does not return tags, even though they + // are an attribute of the returned object. To view all of the information for a + // servercertificate, see GetServerCertificate. + // + // [Working with server certificates]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html ListServerCertificates(ctx context.Context, params *ListServerCertificatesInput, optFns ...func(*Options)) (*ListServerCertificatesOutput, error) // Returns information about the service-specific credentials associated with the // specified IAM user. If none exists, the operation returns an empty list. The // service-specific credentials returned by this operation are used only for // authenticating the IAM user to a specific service. For more information about // using service-specific credentials to authenticate to an Amazon Web Services - // service, see Set up service-specific credentials (https://docs.aws.amazon.com/codecommit/latest/userguide/setting-up-gc.html) - // in the CodeCommit User Guide. + // service, see [Set up service-specific credentials]in the CodeCommit User Guide. + // + // [Set up service-specific credentials]: https://docs.aws.amazon.com/codecommit/latest/userguide/setting-up-gc.html ListServiceSpecificCredentials(ctx context.Context, params *ListServiceSpecificCredentialsInput, optFns ...func(*Options)) (*ListServiceSpecificCredentialsOutput, error) // Returns information about the signing certificates associated with the // specified IAM user. If none exists, the operation returns an empty list. - // Although each user is limited to a small number of signing certificates, you can - // still paginate the results using the MaxItems and Marker parameters. If the - // UserName field is not specified, the user name is determined implicitly based on - // the Amazon Web Services access key ID used to sign the request for this + // + // Although each user is limited to a small number of signing certificates, you + // can still paginate the results using the MaxItems and Marker parameters. + // + // If the UserName field is not specified, the user name is determined implicitly + // based on the Amazon Web Services access key ID used to sign the request for this // operation. This operation works for access keys under the Amazon Web Services // account. Consequently, you can use this operation to manage Amazon Web Services // account root user credentials even if the Amazon Web Services account has no // associated users. ListSigningCertificates(ctx context.Context, params *ListSigningCertificatesInput, optFns ...func(*Options)) (*ListSigningCertificatesOutput, error) - // Lists the names of the inline policies embedded in the specified IAM user. An - // IAM user can also have managed policies attached to it. To list the managed - // policies that are attached to a user, use ListAttachedUserPolicies . For more - // information about policies, see Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. You can paginate the results using the MaxItems and - // Marker parameters. If there are no inline policies embedded with the specified - // user, the operation returns an empty list. + // Lists the names of the inline policies embedded in the specified IAM user. + // + // An IAM user can also have managed policies attached to it. To list the managed + // policies that are attached to a user, use ListAttachedUserPolicies. For more information about + // policies, see [Managed policies and inline policies]in the IAM User Guide. + // + // You can paginate the results using the MaxItems and Marker parameters. If there + // are no inline policies embedded with the specified user, the operation returns + // an empty list. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html ListUserPolicies(ctx context.Context, params *ListUserPoliciesInput, optFns ...func(*Options)) (*ListUserPoliciesOutput, error) // Lists the tags that are attached to the specified IAM user. The returned list - // of tags is sorted by tag key. For more information about tagging, see Tagging - // IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) in - // the IAM User Guide. + // of tags is sorted by tag key. For more information about tagging, see [Tagging IAM resources]in the + // IAM User Guide. + // + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html ListUserTags(ctx context.Context, params *ListUserTagsInput, optFns ...func(*Options)) (*ListUserTagsOutput, error) // Lists the IAM users that have the specified path prefix. If no path prefix is // specified, the operation returns all users in the Amazon Web Services account. - // If there are none, the operation returns an empty list. IAM resource-listing - // operations return a subset of the available attributes for the resource. This - // operation does not return the following attributes, even though they are an - // attribute of the returned object: + // If there are none, the operation returns an empty list. + // + // IAM resource-listing operations return a subset of the available attributes for + // the resource. This operation does not return the following attributes, even + // though they are an attribute of the returned object: + // // - PermissionsBoundary + // // - Tags // - // To view all of the information for a user, see GetUser . You can paginate the - // results using the MaxItems and Marker parameters. + // To view all of the information for a user, see GetUser. + // + // You can paginate the results using the MaxItems and Marker parameters. ListUsers(ctx context.Context, params *ListUsersInput, optFns ...func(*Options)) (*ListUsersOutput, error) // Lists the virtual MFA devices defined in the Amazon Web Services account by // assignment status. If you do not specify an assignment status, the operation // returns a list of all virtual MFA devices. Assignment status can be Assigned , - // Unassigned , or Any . IAM resource-listing operations return a subset of the - // available attributes for the resource. For example, this operation does not - // return tags, even though they are an attribute of the returned object. To view - // tag information for a virtual MFA device, see ListMFADeviceTags . You can - // paginate the results using the MaxItems and Marker parameters. + // Unassigned , or Any . + // + // IAM resource-listing operations return a subset of the available attributes for + // the resource. For example, this operation does not return tags, even though they + // are an attribute of the returned object. To view tag information for a virtual + // MFA device, see ListMFADeviceTags. + // + // You can paginate the results using the MaxItems and Marker parameters. ListVirtualMFADevices(ctx context.Context, params *ListVirtualMFADevicesInput, optFns ...func(*Options)) (*ListVirtualMFADevicesOutput, error) // Adds or updates an inline policy document that is embedded in the specified IAM - // group. A user can also have managed policies attached to it. To attach a managed - // policy to a group, use AttachGroupPolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_AttachGroupPolicy.html) - // . To create a new managed policy, use CreatePolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreatePolicy.html) - // . For information about policies, see Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. For information about the maximum number of inline - // policies that you can embed in a group, see IAM and STS quotas (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html) - // in the IAM User Guide. Because policy documents can be large, you should use - // POST rather than GET when calling PutGroupPolicy . For general information about - // using the Query API with IAM, see Making query requests (https://docs.aws.amazon.com/IAM/latest/UserGuide/IAM_UsingQueryAPI.html) - // in the IAM User Guide. + // group. + // + // A user can also have managed policies attached to it. To attach a managed + // policy to a group, use [AttachGroupPolicy]AttachGroupPolicy . To create a new managed policy, use [CreatePolicy] + // CreatePolicy . For information about policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // For information about the maximum number of inline policies that you can embed + // in a group, see [IAM and STS quotas]in the IAM User Guide. + // + // Because policy documents can be large, you should use POST rather than GET when + // calling PutGroupPolicy . For general information about using the Query API with + // IAM, see [Making query requests]in the IAM User Guide. + // + // [CreatePolicy]: https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreatePolicy.html + // [IAM and STS quotas]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html + // [Making query requests]: https://docs.aws.amazon.com/IAM/latest/UserGuide/IAM_UsingQueryAPI.html + // [AttachGroupPolicy]: https://docs.aws.amazon.com/IAM/latest/APIReference/API_AttachGroupPolicy.html + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html PutGroupPolicy(ctx context.Context, params *PutGroupPolicyInput, optFns ...func(*Options)) (*PutGroupPolicyOutput, error) // Adds or updates the policy that is specified as the IAM role's permissions // boundary. You can use an Amazon Web Services managed policy or a customer // managed policy to set the boundary for a role. Use the boundary to control the // maximum permissions that the role can have. Setting a permissions boundary is an - // advanced feature that can affect the permissions for the role. You cannot set - // the boundary for a service-linked role. Policies used as permissions boundaries - // do not provide permissions. You must also attach a permissions policy to the - // role. To learn how the effective permissions for a role are evaluated, see IAM - // JSON policy evaluation logic (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html) - // in the IAM User Guide. + // advanced feature that can affect the permissions for the role. + // + // You cannot set the boundary for a service-linked role. + // + // Policies used as permissions boundaries do not provide permissions. You must + // also attach a permissions policy to the role. To learn how the effective + // permissions for a role are evaluated, see [IAM JSON policy evaluation logic]in the IAM User Guide. + // + // [IAM JSON policy evaluation logic]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html PutRolePermissionsBoundary(ctx context.Context, params *PutRolePermissionsBoundaryInput, optFns ...func(*Options)) (*PutRolePermissionsBoundaryOutput, error) // Adds or updates an inline policy document that is embedded in the specified IAM - // role. When you embed an inline policy in a role, the inline policy is used as - // part of the role's access (permissions) policy. The role's trust policy is - // created at the same time as the role, using CreateRole (https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreateRole.html) - // . You can update a role's trust policy using UpdateAssumeRolePolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_UpdateAssumeRolePolicy.html) - // . For more information about roles, see IAM roles (https://docs.aws.amazon.com/IAM/latest/UserGuide/roles-toplevel.html) - // in the IAM User Guide. A role can also have a managed policy attached to it. To - // attach a managed policy to a role, use AttachRolePolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_AttachRolePolicy.html) - // . To create a new managed policy, use CreatePolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreatePolicy.html) - // . For information about policies, see Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. For information about the maximum number of inline - // policies that you can embed with a role, see IAM and STS quotas (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html) - // in the IAM User Guide. Because policy documents can be large, you should use - // POST rather than GET when calling PutRolePolicy . For general information about - // using the Query API with IAM, see Making query requests (https://docs.aws.amazon.com/IAM/latest/UserGuide/IAM_UsingQueryAPI.html) - // in the IAM User Guide. + // role. + // + // When you embed an inline policy in a role, the inline policy is used as part of + // the role's access (permissions) policy. The role's trust policy is created at + // the same time as the role, using [CreateRole]CreateRole . You can update a role's trust + // policy using [UpdateAssumeRolePolicy]UpdateAssumeRolePolicy . For more information about roles, see [IAM roles] in + // the IAM User Guide. + // + // A role can also have a managed policy attached to it. To attach a managed + // policy to a role, use [AttachRolePolicy]AttachRolePolicy . To create a new managed policy, use [CreatePolicy] + // CreatePolicy . For information about policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // For information about the maximum number of inline policies that you can embed + // with a role, see [IAM and STS quotas]in the IAM User Guide. + // + // Because policy documents can be large, you should use POST rather than GET when + // calling PutRolePolicy . For general information about using the Query API with + // IAM, see [Making query requests]in the IAM User Guide. + // + // [UpdateAssumeRolePolicy]: https://docs.aws.amazon.com/IAM/latest/APIReference/API_UpdateAssumeRolePolicy.html + // [AttachRolePolicy]: https://docs.aws.amazon.com/IAM/latest/APIReference/API_AttachRolePolicy.html + // [CreatePolicy]: https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreatePolicy.html + // [IAM and STS quotas]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html + // [Making query requests]: https://docs.aws.amazon.com/IAM/latest/UserGuide/IAM_UsingQueryAPI.html + // [IAM roles]: https://docs.aws.amazon.com/IAM/latest/UserGuide/roles-toplevel.html + // [CreateRole]: https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreateRole.html + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html PutRolePolicy(ctx context.Context, params *PutRolePolicyInput, optFns ...func(*Options)) (*PutRolePolicyOutput, error) // Adds or updates the policy that is specified as the IAM user's permissions // boundary. You can use an Amazon Web Services managed policy or a customer // managed policy to set the boundary for a user. Use the boundary to control the // maximum permissions that the user can have. Setting a permissions boundary is an - // advanced feature that can affect the permissions for the user. Policies that are - // used as permissions boundaries do not provide permissions. You must also attach - // a permissions policy to the user. To learn how the effective permissions for a - // user are evaluated, see IAM JSON policy evaluation logic (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html) - // in the IAM User Guide. + // advanced feature that can affect the permissions for the user. + // + // Policies that are used as permissions boundaries do not provide permissions. + // You must also attach a permissions policy to the user. To learn how the + // effective permissions for a user are evaluated, see [IAM JSON policy evaluation logic]in the IAM User Guide. + // + // [IAM JSON policy evaluation logic]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html PutUserPermissionsBoundary(ctx context.Context, params *PutUserPermissionsBoundaryInput, optFns ...func(*Options)) (*PutUserPermissionsBoundaryOutput, error) // Adds or updates an inline policy document that is embedded in the specified IAM - // user. An IAM user can also have a managed policy attached to it. To attach a - // managed policy to a user, use AttachUserPolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_AttachUserPolicy.html) - // . To create a new managed policy, use CreatePolicy (https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreatePolicy.html) - // . For information about policies, see Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. For information about the maximum number of inline - // policies that you can embed in a user, see IAM and STS quotas (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html) - // in the IAM User Guide. Because policy documents can be large, you should use - // POST rather than GET when calling PutUserPolicy . For general information about - // using the Query API with IAM, see Making query requests (https://docs.aws.amazon.com/IAM/latest/UserGuide/IAM_UsingQueryAPI.html) - // in the IAM User Guide. + // user. + // + // An IAM user can also have a managed policy attached to it. To attach a managed + // policy to a user, use [AttachUserPolicy]AttachUserPolicy . To create a new managed policy, use [CreatePolicy] + // CreatePolicy . For information about policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // For information about the maximum number of inline policies that you can embed + // in a user, see [IAM and STS quotas]in the IAM User Guide. + // + // Because policy documents can be large, you should use POST rather than GET when + // calling PutUserPolicy . For general information about using the Query API with + // IAM, see [Making query requests]in the IAM User Guide. + // + // [CreatePolicy]: https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreatePolicy.html + // [IAM and STS quotas]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html + // [Making query requests]: https://docs.aws.amazon.com/IAM/latest/UserGuide/IAM_UsingQueryAPI.html + // [AttachUserPolicy]: https://docs.aws.amazon.com/IAM/latest/APIReference/API_AttachUserPolicy.html + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html PutUserPolicy(ctx context.Context, params *PutUserPolicyInput, optFns ...func(*Options)) (*PutUserPolicyOutput, error) // Removes the specified client ID (also known as audience) from the list of // client IDs registered for the specified IAM OpenID Connect (OIDC) provider - // resource object. This operation is idempotent; it does not fail or return an - // error if you try to remove a client ID that does not exist. + // resource object. + // + // This operation is idempotent; it does not fail or return an error if you try to + // remove a client ID that does not exist. RemoveClientIDFromOpenIDConnectProvider(ctx context.Context, params *RemoveClientIDFromOpenIDConnectProviderInput, optFns ...func(*Options)) (*RemoveClientIDFromOpenIDConnectProviderOutput, error) // Removes the specified IAM role from the specified Amazon EC2 instance profile. + // // Make sure that you do not have any Amazon EC2 instances running with the role // you are about to remove from the instance profile. Removing a role from an // instance profile that is associated with a running instance might break any - // applications running on the instance. For more information about roles, see IAM - // roles (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html) in the - // IAM User Guide. For more information about instance profiles, see Using - // instance profiles (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2_instance-profiles.html) - // in the IAM User Guide. + // applications running on the instance. + // + // For more information about roles, see [IAM roles] in the IAM User Guide. For more + // information about instance profiles, see [Using instance profiles]in the IAM User Guide. + // + // [Using instance profiles]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2_instance-profiles.html + // [IAM roles]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles.html RemoveRoleFromInstanceProfile(ctx context.Context, params *RemoveRoleFromInstanceProfileInput, optFns ...func(*Options)) (*RemoveRoleFromInstanceProfileOutput, error) // Removes the specified user from the specified group. RemoveUserFromGroup(ctx context.Context, params *RemoveUserFromGroupInput, optFns ...func(*Options)) (*RemoveUserFromGroupOutput, error) @@ -1213,93 +1635,121 @@ type IAM interface { // previous password associated with this user. ResetServiceSpecificCredential(ctx context.Context, params *ResetServiceSpecificCredentialInput, optFns ...func(*Options)) (*ResetServiceSpecificCredentialOutput, error) // Synchronizes the specified MFA device with its IAM resource object on the - // Amazon Web Services servers. For more information about creating and working - // with virtual MFA devices, see Using a virtual MFA device (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_VirtualMFA.html) + // Amazon Web Services servers. + // + // For more information about creating and working with virtual MFA devices, see [Using a virtual MFA device] // in the IAM User Guide. + // + // [Using a virtual MFA device]: https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_VirtualMFA.html ResyncMFADevice(ctx context.Context, params *ResyncMFADeviceInput, optFns ...func(*Options)) (*ResyncMFADeviceOutput, error) // Sets the specified version of the specified policy as the policy's default - // (operative) version. This operation affects all users, groups, and roles that - // the policy is attached to. To list the users, groups, and roles that the policy - // is attached to, use ListEntitiesForPolicy . For information about managed - // policies, see Managed policies and inline policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) - // in the IAM User Guide. + // (operative) version. + // + // This operation affects all users, groups, and roles that the policy is attached + // to. To list the users, groups, and roles that the policy is attached to, use ListEntitiesForPolicy. + // + // For information about managed policies, see [Managed policies and inline policies] in the IAM User Guide. + // + // [Managed policies and inline policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html SetDefaultPolicyVersion(ctx context.Context, params *SetDefaultPolicyVersionInput, optFns ...func(*Options)) (*SetDefaultPolicyVersionOutput, error) // Sets the specified version of the global endpoint token as the token version - // used for the Amazon Web Services account. By default, Security Token Service - // (STS) is available as a global service, and all STS requests go to a single - // endpoint at https://sts.amazonaws.com . Amazon Web Services recommends using - // Regional STS endpoints to reduce latency, build in redundancy, and increase - // session token availability. For information about Regional endpoints for STS, - // see Security Token Service endpoints and quotas (https://docs.aws.amazon.com/general/latest/gr/sts.html) - // in the Amazon Web Services General Reference. If you make an STS call to the - // global endpoint, the resulting session tokens might be valid in some Regions but - // not others. It depends on the version that is set in this operation. Version 1 - // tokens are valid only in Amazon Web Services Regions that are available by - // default. These tokens do not work in manually enabled Regions, such as Asia - // Pacific (Hong Kong). Version 2 tokens are valid in all Regions. However, version - // 2 tokens are longer and might affect systems where you temporarily store tokens. - // For information, see Activating and deactivating STS in an Amazon Web Services - // Region (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp_enable-regions.html) - // in the IAM User Guide. To view the current session token version, see the - // GlobalEndpointTokenVersion entry in the response of the GetAccountSummary - // operation. + // used for the Amazon Web Services account. + // + // By default, Security Token Service (STS) is available as a global service, and + // all STS requests go to a single endpoint at https://sts.amazonaws.com . Amazon + // Web Services recommends using Regional STS endpoints to reduce latency, build in + // redundancy, and increase session token availability. For information about + // Regional endpoints for STS, see [Security Token Service endpoints and quotas]in the Amazon Web Services General Reference. + // + // If you make an STS call to the global endpoint, the resulting session tokens + // might be valid in some Regions but not others. It depends on the version that is + // set in this operation. Version 1 tokens are valid only in Amazon Web Services + // Regions that are available by default. These tokens do not work in manually + // enabled Regions, such as Asia Pacific (Hong Kong). Version 2 tokens are valid in + // all Regions. However, version 2 tokens are longer and might affect systems where + // you temporarily store tokens. For information, see [Activating and deactivating STS in an Amazon Web Services Region]in the IAM User Guide. + // + // To view the current session token version, see the GlobalEndpointTokenVersion + // entry in the response of the GetAccountSummaryoperation. + // + // [Activating and deactivating STS in an Amazon Web Services Region]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp_enable-regions.html + // [Security Token Service endpoints and quotas]: https://docs.aws.amazon.com/general/latest/gr/sts.html SetSecurityTokenServicePreferences(ctx context.Context, params *SetSecurityTokenServicePreferencesInput, optFns ...func(*Options)) (*SetSecurityTokenServicePreferencesOutput, error) // Simulate how a set of IAM policies and optionally a resource-based policy works // with a list of API operations and Amazon Web Services resources to determine the - // policies' effective permissions. The policies are provided as strings. The - // simulation does not perform the API operations; it only checks the authorization - // to determine if the simulated policies allow or deny the operations. You can - // simulate resources that don't exist in your account. If you want to simulate - // existing policies that are attached to an IAM user, group, or role, use - // SimulatePrincipalPolicy instead. Context keys are variables that are maintained - // by Amazon Web Services and its services and which provide details about the - // context of an API query request. You can use the Condition element of an IAM - // policy to evaluate context keys. To get the list of context keys that the - // policies require for correct simulation, use GetContextKeysForCustomPolicy . If - // the output is long, you can use MaxItems and Marker parameters to paginate the - // results. The IAM policy simulator evaluates statements in the identity-based - // policy and the inputs that you provide during simulation. The policy simulator - // results can differ from your live Amazon Web Services environment. We recommend - // that you check your policies against your live Amazon Web Services environment - // after testing using the policy simulator to confirm that you have the desired - // results. For more information about using the policy simulator, see Testing IAM - // policies with the IAM policy simulator (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_testing-policies.html) - // in the IAM User Guide. + // policies' effective permissions. The policies are provided as strings. + // + // The simulation does not perform the API operations; it only checks the + // authorization to determine if the simulated policies allow or deny the + // operations. You can simulate resources that don't exist in your account. + // + // If you want to simulate existing policies that are attached to an IAM user, + // group, or role, use SimulatePrincipalPolicyinstead. + // + // Context keys are variables that are maintained by Amazon Web Services and its + // services and which provide details about the context of an API query request. + // You can use the Condition element of an IAM policy to evaluate context keys. To + // get the list of context keys that the policies require for correct simulation, + // use GetContextKeysForCustomPolicy. + // + // If the output is long, you can use MaxItems and Marker parameters to paginate + // the results. + // + // The IAM policy simulator evaluates statements in the identity-based policy and + // the inputs that you provide during simulation. The policy simulator results can + // differ from your live Amazon Web Services environment. We recommend that you + // check your policies against your live Amazon Web Services environment after + // testing using the policy simulator to confirm that you have the desired results. + // For more information about using the policy simulator, see [Testing IAM policies with the IAM policy simulator]in the IAM User + // Guide. + // + // [Testing IAM policies with the IAM policy simulator]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_testing-policies.html SimulateCustomPolicy(ctx context.Context, params *SimulateCustomPolicyInput, optFns ...func(*Options)) (*SimulateCustomPolicyOutput, error) // Simulate how a set of IAM policies attached to an IAM entity works with a list // of API operations and Amazon Web Services resources to determine the policies' // effective permissions. The entity can be an IAM user, group, or role. If you // specify a user, then the simulation also includes all of the policies that are // attached to groups that the user belongs to. You can simulate resources that - // don't exist in your account. You can optionally include a list of one or more - // additional policies specified as strings to include in the simulation. If you - // want to simulate only policies specified as strings, use SimulateCustomPolicy - // instead. You can also optionally include one resource-based policy to be - // evaluated with each of the resources included in the simulation for IAM users - // only. The simulation does not perform the API operations; it only checks the + // don't exist in your account. + // + // You can optionally include a list of one or more additional policies specified + // as strings to include in the simulation. If you want to simulate only policies + // specified as strings, use SimulateCustomPolicyinstead. + // + // You can also optionally include one resource-based policy to be evaluated with + // each of the resources included in the simulation for IAM users only. + // + // The simulation does not perform the API operations; it only checks the // authorization to determine if the simulated policies allow or deny the - // operations. Note: This operation discloses information about the permissions - // granted to other users. If you do not want users to see other user's - // permissions, then consider allowing them to use SimulateCustomPolicy instead. + // operations. + // + // Note: This operation discloses information about the permissions granted to + // other users. If you do not want users to see other user's permissions, then + // consider allowing them to use SimulateCustomPolicyinstead. + // // Context keys are variables maintained by Amazon Web Services and its services // that provide details about the context of an API query request. You can use the // Condition element of an IAM policy to evaluate context keys. To get the list of - // context keys that the policies require for correct simulation, use - // GetContextKeysForPrincipalPolicy . If the output is long, you can use the - // MaxItems and Marker parameters to paginate the results. The IAM policy - // simulator evaluates statements in the identity-based policy and the inputs that - // you provide during simulation. The policy simulator results can differ from your - // live Amazon Web Services environment. We recommend that you check your policies - // against your live Amazon Web Services environment after testing using the policy - // simulator to confirm that you have the desired results. For more information - // about using the policy simulator, see Testing IAM policies with the IAM policy - // simulator (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_testing-policies.html) - // in the IAM User Guide. + // context keys that the policies require for correct simulation, use GetContextKeysForPrincipalPolicy. + // + // If the output is long, you can use the MaxItems and Marker parameters to + // paginate the results. + // + // The IAM policy simulator evaluates statements in the identity-based policy and + // the inputs that you provide during simulation. The policy simulator results can + // differ from your live Amazon Web Services environment. We recommend that you + // check your policies against your live Amazon Web Services environment after + // testing using the policy simulator to confirm that you have the desired results. + // For more information about using the policy simulator, see [Testing IAM policies with the IAM policy simulator]in the IAM User + // Guide. + // + // [Testing IAM policies with the IAM policy simulator]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_testing-policies.html SimulatePrincipalPolicy(ctx context.Context, params *SimulatePrincipalPolicyInput, optFns ...func(*Options)) (*SimulatePrincipalPolicyOutput, error) // Adds one or more tags to an IAM instance profile. If a tag with the same key - // name already exists, then that tag is overwritten with the new value. Each tag - // consists of a key name and an associated value. By assigning tags to your - // resources, you can do the following: + // name already exists, then that tag is overwritten with the new value. + // + // Each tag consists of a key name and an associated value. By assigning tags to + // your resources, you can do the following: // // - Administrative grouping and discovery - Attach tags to resources to aid in // organization and search. For example, you could search for all resources with @@ -1309,22 +1759,25 @@ type IAM interface { // - Access control - Include tags in IAM user-based and resource-based // policies. You can use tags to restrict access to only an IAM instance profile // that has a specified tag attached. For examples of policies that show how to use - // tags to control access, see Control access using IAM tags (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html) - // in the IAM User Guide. + // tags to control access, see [Control access using IAM tags]in the IAM User Guide. // // - If any one of the tags is invalid or if you exceed the allowed maximum // number of tags, then the entire request fails and the resource is not created. - // For more information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // For more information about tagging, see [Tagging IAM resources]in the IAM User Guide. // // - Amazon Web Services always interprets the tag Value as a single string. If // you need to store an array, you can store comma-separated values in the string. // However, you must interpret the value in your code. + // + // [Control access using IAM tags]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html TagInstanceProfile(ctx context.Context, params *TagInstanceProfileInput, optFns ...func(*Options)) (*TagInstanceProfileOutput, error) // Adds one or more tags to an IAM virtual multi-factor authentication (MFA) // device. If a tag with the same key name already exists, then that tag is - // overwritten with the new value. A tag consists of a key name and an associated - // value. By assigning tags to your resources, you can do the following: + // overwritten with the new value. + // + // A tag consists of a key name and an associated value. By assigning tags to your + // resources, you can do the following: // // - Administrative grouping and discovery - Attach tags to resources to aid in // organization and search. For example, you could search for all resources with @@ -1334,23 +1787,25 @@ type IAM interface { // - Access control - Include tags in IAM user-based and resource-based // policies. You can use tags to restrict access to only an IAM virtual MFA device // that has a specified tag attached. For examples of policies that show how to use - // tags to control access, see Control access using IAM tags (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html) - // in the IAM User Guide. + // tags to control access, see [Control access using IAM tags]in the IAM User Guide. // // - If any one of the tags is invalid or if you exceed the allowed maximum // number of tags, then the entire request fails and the resource is not created. - // For more information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // For more information about tagging, see [Tagging IAM resources]in the IAM User Guide. // // - Amazon Web Services always interprets the tag Value as a single string. If // you need to store an array, you can store comma-separated values in the string. // However, you must interpret the value in your code. + // + // [Control access using IAM tags]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html TagMFADevice(ctx context.Context, params *TagMFADeviceInput, optFns ...func(*Options)) (*TagMFADeviceOutput, error) // Adds one or more tags to an OpenID Connect (OIDC)-compatible identity provider. - // For more information about these providers, see About web identity federation (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_oidc.html) - // . If a tag with the same key name already exists, then that tag is overwritten - // with the new value. A tag consists of a key name and an associated value. By - // assigning tags to your resources, you can do the following: + // For more information about these providers, see [About web identity federation]. If a tag with the same key + // name already exists, then that tag is overwritten with the new value. + // + // A tag consists of a key name and an associated value. By assigning tags to your + // resources, you can do the following: // // - Administrative grouping and discovery - Attach tags to resources to aid in // organization and search. For example, you could search for all resources with @@ -1360,21 +1815,24 @@ type IAM interface { // - Access control - Include tags in IAM identity-based and resource-based // policies. You can use tags to restrict access to only an OIDC provider that has // a specified tag attached. For examples of policies that show how to use tags to - // control access, see Control access using IAM tags (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html) - // in the IAM User Guide. + // control access, see [Control access using IAM tags]in the IAM User Guide. // // - If any one of the tags is invalid or if you exceed the allowed maximum // number of tags, then the entire request fails and the resource is not created. - // For more information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // For more information about tagging, see [Tagging IAM resources]in the IAM User Guide. // // - Amazon Web Services always interprets the tag Value as a single string. If // you need to store an array, you can store comma-separated values in the string. // However, you must interpret the value in your code. + // + // [Control access using IAM tags]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html + // [About web identity federation]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_oidc.html TagOpenIDConnectProvider(ctx context.Context, params *TagOpenIDConnectProviderInput, optFns ...func(*Options)) (*TagOpenIDConnectProviderOutput, error) // Adds one or more tags to an IAM customer managed policy. If a tag with the same - // key name already exists, then that tag is overwritten with the new value. A tag - // consists of a key name and an associated value. By assigning tags to your + // key name already exists, then that tag is overwritten with the new value. + // + // A tag consists of a key name and an associated value. By assigning tags to your // resources, you can do the following: // // - Administrative grouping and discovery - Attach tags to resources to aid in @@ -1385,22 +1843,25 @@ type IAM interface { // - Access control - Include tags in IAM user-based and resource-based // policies. You can use tags to restrict access to only an IAM customer managed // policy that has a specified tag attached. For examples of policies that show how - // to use tags to control access, see Control access using IAM tags (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html) - // in the IAM User Guide. + // to use tags to control access, see [Control access using IAM tags]in the IAM User Guide. // // - If any one of the tags is invalid or if you exceed the allowed maximum // number of tags, then the entire request fails and the resource is not created. - // For more information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // For more information about tagging, see [Tagging IAM resources]in the IAM User Guide. // // - Amazon Web Services always interprets the tag Value as a single string. If // you need to store an array, you can store comma-separated values in the string. // However, you must interpret the value in your code. + // + // [Control access using IAM tags]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html TagPolicy(ctx context.Context, params *TagPolicyInput, optFns ...func(*Options)) (*TagPolicyOutput, error) // Adds one or more tags to an IAM role. The role can be a regular role or a // service-linked role. If a tag with the same key name already exists, then that - // tag is overwritten with the new value. A tag consists of a key name and an - // associated value. By assigning tags to your resources, you can do the following: + // tag is overwritten with the new value. + // + // A tag consists of a key name and an associated value. By assigning tags to your + // resources, you can do the following: // // - Administrative grouping and discovery - Attach tags to resources to aid in // organization and search. For example, you could search for all resources with @@ -1411,30 +1872,31 @@ type IAM interface { // policies. You can use tags to restrict access to only an IAM role that has a // specified tag attached. You can also restrict access to only those resources // that have a certain tag attached. For examples of policies that show how to use - // tags to control access, see Control access using IAM tags (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html) - // in the IAM User Guide. + // tags to control access, see [Control access using IAM tags]in the IAM User Guide. // // - Cost allocation - Use tags to help track which individuals and teams are // using which Amazon Web Services resources. // // - If any one of the tags is invalid or if you exceed the allowed maximum // number of tags, then the entire request fails and the resource is not created. - // For more information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // For more information about tagging, see [Tagging IAM resources]in the IAM User Guide. // // - Amazon Web Services always interprets the tag Value as a single string. If // you need to store an array, you can store comma-separated values in the string. // However, you must interpret the value in your code. // - // For more information about tagging, see Tagging IAM identities (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // For more information about tagging, see [Tagging IAM identities] in the IAM User Guide. + // + // [Control access using IAM tags]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html + // [Tagging IAM identities]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html TagRole(ctx context.Context, params *TagRoleInput, optFns ...func(*Options)) (*TagRoleOutput, error) // Adds one or more tags to a Security Assertion Markup Language (SAML) identity - // provider. For more information about these providers, see About SAML 2.0-based - // federation (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html) - // . If a tag with the same key name already exists, then that tag is overwritten - // with the new value. A tag consists of a key name and an associated value. By - // assigning tags to your resources, you can do the following: + // provider. For more information about these providers, see [About SAML 2.0-based federation]. If a tag with the + // same key name already exists, then that tag is overwritten with the new value. + // + // A tag consists of a key name and an associated value. By assigning tags to your + // resources, you can do the following: // // - Administrative grouping and discovery - Attach tags to resources to aid in // organization and search. For example, you could search for all resources with @@ -1444,26 +1906,30 @@ type IAM interface { // - Access control - Include tags in IAM user-based and resource-based // policies. You can use tags to restrict access to only a SAML identity provider // that has a specified tag attached. For examples of policies that show how to use - // tags to control access, see Control access using IAM tags (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html) - // in the IAM User Guide. + // tags to control access, see [Control access using IAM tags]in the IAM User Guide. // // - If any one of the tags is invalid or if you exceed the allowed maximum // number of tags, then the entire request fails and the resource is not created. - // For more information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // For more information about tagging, see [Tagging IAM resources]in the IAM User Guide. // // - Amazon Web Services always interprets the tag Value as a single string. If // you need to store an array, you can store comma-separated values in the string. // However, you must interpret the value in your code. + // + // [Control access using IAM tags]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html + // [About SAML 2.0-based federation]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html TagSAMLProvider(ctx context.Context, params *TagSAMLProviderInput, optFns ...func(*Options)) (*TagSAMLProviderOutput, error) // Adds one or more tags to an IAM server certificate. If a tag with the same key - // name already exists, then that tag is overwritten with the new value. For - // certificates in a Region supported by Certificate Manager (ACM), we recommend - // that you don't use IAM server certificates. Instead, use ACM to provision, - // manage, and deploy your server certificates. For more information about IAM - // server certificates, Working with server certificates (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html) - // in the IAM User Guide. A tag consists of a key name and an associated value. By - // assigning tags to your resources, you can do the following: + // name already exists, then that tag is overwritten with the new value. + // + // For certificates in a Region supported by Certificate Manager (ACM), we + // recommend that you don't use IAM server certificates. Instead, use ACM to + // provision, manage, and deploy your server certificates. For more information + // about IAM server certificates, [Working with server certificates]in the IAM User Guide. + // + // A tag consists of a key name and an associated value. By assigning tags to your + // resources, you can do the following: // // - Administrative grouping and discovery - Attach tags to resources to aid in // organization and search. For example, you could search for all resources with @@ -1473,25 +1939,28 @@ type IAM interface { // - Access control - Include tags in IAM user-based and resource-based // policies. You can use tags to restrict access to only a server certificate that // has a specified tag attached. For examples of policies that show how to use tags - // to control access, see Control access using IAM tags (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html) - // in the IAM User Guide. + // to control access, see [Control access using IAM tags]in the IAM User Guide. // // - Cost allocation - Use tags to help track which individuals and teams are // using which Amazon Web Services resources. // // - If any one of the tags is invalid or if you exceed the allowed maximum // number of tags, then the entire request fails and the resource is not created. - // For more information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // For more information about tagging, see [Tagging IAM resources]in the IAM User Guide. // // - Amazon Web Services always interprets the tag Value as a single string. If // you need to store an array, you can store comma-separated values in the string. // However, you must interpret the value in your code. + // + // [Control access using IAM tags]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html + // [Working with server certificates]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html TagServerCertificate(ctx context.Context, params *TagServerCertificateInput, optFns ...func(*Options)) (*TagServerCertificateOutput, error) // Adds one or more tags to an IAM user. If a tag with the same key name already - // exists, then that tag is overwritten with the new value. A tag consists of a key - // name and an associated value. By assigning tags to your resources, you can do - // the following: + // exists, then that tag is overwritten with the new value. + // + // A tag consists of a key name and an associated value. By assigning tags to your + // resources, you can do the following: // // - Administrative grouping and discovery - Attach tags to resources to aid in // organization and search. For example, you could search for all resources with @@ -1502,161 +1971,203 @@ type IAM interface { // policies. You can use tags to restrict access to only an IAM requesting user // that has a specified tag attached. You can also restrict access to only those // resources that have a certain tag attached. For examples of policies that show - // how to use tags to control access, see Control access using IAM tags (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html) - // in the IAM User Guide. + // how to use tags to control access, see [Control access using IAM tags]in the IAM User Guide. // // - Cost allocation - Use tags to help track which individuals and teams are // using which Amazon Web Services resources. // // - If any one of the tags is invalid or if you exceed the allowed maximum // number of tags, then the entire request fails and the resource is not created. - // For more information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // For more information about tagging, see [Tagging IAM resources]in the IAM User Guide. // // - Amazon Web Services always interprets the tag Value as a single string. If // you need to store an array, you can store comma-separated values in the string. // However, you must interpret the value in your code. // - // For more information about tagging, see Tagging IAM identities (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // For more information about tagging, see [Tagging IAM identities] in the IAM User Guide. + // + // [Control access using IAM tags]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_tags.html + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html + // [Tagging IAM identities]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html TagUser(ctx context.Context, params *TagUserInput, optFns ...func(*Options)) (*TagUserOutput, error) // Removes the specified tags from the IAM instance profile. For more information - // about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // about tagging, see [Tagging IAM resources]in the IAM User Guide. + // + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html UntagInstanceProfile(ctx context.Context, params *UntagInstanceProfileInput, optFns ...func(*Options)) (*UntagInstanceProfileOutput, error) // Removes the specified tags from the IAM virtual multi-factor authentication - // (MFA) device. For more information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // (MFA) device. For more information about tagging, see [Tagging IAM resources]in the IAM User Guide. + // + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html UntagMFADevice(ctx context.Context, params *UntagMFADeviceInput, optFns ...func(*Options)) (*UntagMFADeviceOutput, error) // Removes the specified tags from the specified OpenID Connect (OIDC)-compatible - // identity provider in IAM. For more information about OIDC providers, see About - // web identity federation (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_oidc.html) - // . For more information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // identity provider in IAM. For more information about OIDC providers, see [About web identity federation]. For + // more information about tagging, see [Tagging IAM resources]in the IAM User Guide. + // + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html + // [About web identity federation]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_oidc.html UntagOpenIDConnectProvider(ctx context.Context, params *UntagOpenIDConnectProviderInput, optFns ...func(*Options)) (*UntagOpenIDConnectProviderOutput, error) // Removes the specified tags from the customer managed policy. For more - // information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // information about tagging, see [Tagging IAM resources]in the IAM User Guide. + // + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html UntagPolicy(ctx context.Context, params *UntagPolicyInput, optFns ...func(*Options)) (*UntagPolicyOutput, error) // Removes the specified tags from the role. For more information about tagging, - // see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // see [Tagging IAM resources]in the IAM User Guide. + // + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html UntagRole(ctx context.Context, params *UntagRoleInput, optFns ...func(*Options)) (*UntagRoleOutput, error) // Removes the specified tags from the specified Security Assertion Markup // Language (SAML) identity provider in IAM. For more information about these - // providers, see About web identity federation (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_oidc.html) - // . For more information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // providers, see [About web identity federation]. For more information about tagging, see [Tagging IAM resources] in the IAM User Guide. + // + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html + // [About web identity federation]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_oidc.html UntagSAMLProvider(ctx context.Context, params *UntagSAMLProviderInput, optFns ...func(*Options)) (*UntagSAMLProviderOutput, error) // Removes the specified tags from the IAM server certificate. For more - // information about tagging, see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. For certificates in a Region supported by Certificate - // Manager (ACM), we recommend that you don't use IAM server certificates. Instead, - // use ACM to provision, manage, and deploy your server certificates. For more - // information about IAM server certificates, Working with server certificates (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html) - // in the IAM User Guide. + // information about tagging, see [Tagging IAM resources]in the IAM User Guide. + // + // For certificates in a Region supported by Certificate Manager (ACM), we + // recommend that you don't use IAM server certificates. Instead, use ACM to + // provision, manage, and deploy your server certificates. For more information + // about IAM server certificates, [Working with server certificates]in the IAM User Guide. + // + // [Working with server certificates]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html UntagServerCertificate(ctx context.Context, params *UntagServerCertificateInput, optFns ...func(*Options)) (*UntagServerCertificateOutput, error) // Removes the specified tags from the user. For more information about tagging, - // see Tagging IAM resources (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html) - // in the IAM User Guide. + // see [Tagging IAM resources]in the IAM User Guide. + // + // [Tagging IAM resources]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html UntagUser(ctx context.Context, params *UntagUserInput, optFns ...func(*Options)) (*UntagUserOutput, error) // Changes the status of the specified access key from Active to Inactive, or vice // versa. This operation can be used to disable a user's key as part of a key - // rotation workflow. If the UserName is not specified, the user name is - // determined implicitly based on the Amazon Web Services access key ID used to - // sign the request. If a temporary access key is used, then UserName is required. - // If a long-term key is assigned to the user, then UserName is not required. This - // operation works for access keys under the Amazon Web Services account. - // Consequently, you can use this operation to manage Amazon Web Services account - // root user credentials even if the Amazon Web Services account has no associated - // users. For information about rotating keys, see Managing keys and certificates (https://docs.aws.amazon.com/IAM/latest/UserGuide/ManagingCredentials.html) - // in the IAM User Guide. + // rotation workflow. + // + // If the UserName is not specified, the user name is determined implicitly based + // on the Amazon Web Services access key ID used to sign the request. If a + // temporary access key is used, then UserName is required. If a long-term key is + // assigned to the user, then UserName is not required. This operation works for + // access keys under the Amazon Web Services account. Consequently, you can use + // this operation to manage Amazon Web Services account root user credentials even + // if the Amazon Web Services account has no associated users. + // + // For information about rotating keys, see [Managing keys and certificates] in the IAM User Guide. + // + // [Managing keys and certificates]: https://docs.aws.amazon.com/IAM/latest/UserGuide/ManagingCredentials.html UpdateAccessKey(ctx context.Context, params *UpdateAccessKeyInput, optFns ...func(*Options)) (*UpdateAccessKeyOutput, error) - // Updates the password policy settings for the Amazon Web Services account. This - // operation does not support partial updates. No parameters are required, but if - // you do not specify a parameter, that parameter's value reverts to its default - // value. See the Request Parameters section for each parameter's default value. - // Also note that some parameters do not allow the default parameter to be + // Updates the password policy settings for the Amazon Web Services account. + // + // This operation does not support partial updates. No parameters are required, + // but if you do not specify a parameter, that parameter's value reverts to its + // default value. See the Request Parameters section for each parameter's default + // value. Also note that some parameters do not allow the default parameter to be // explicitly set. Instead, to invoke the default value, do not include that - // parameter when you invoke the operation. For more information about using a - // password policy, see Managing an IAM password policy (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingPasswordPolicies.html) - // in the IAM User Guide. + // parameter when you invoke the operation. + // + // For more information about using a password policy, see [Managing an IAM password policy] in the IAM User Guide. + // + // [Managing an IAM password policy]: https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingPasswordPolicies.html UpdateAccountPasswordPolicy(ctx context.Context, params *UpdateAccountPasswordPolicyInput, optFns ...func(*Options)) (*UpdateAccountPasswordPolicyOutput, error) // Updates the policy that grants an IAM entity permission to assume a role. This // is typically referred to as the "role trust policy". For more information about - // roles, see Using roles to delegate permissions and federate identities (https://docs.aws.amazon.com/IAM/latest/UserGuide/roles-toplevel.html) - // . + // roles, see [Using roles to delegate permissions and federate identities]. + // + // [Using roles to delegate permissions and federate identities]: https://docs.aws.amazon.com/IAM/latest/UserGuide/roles-toplevel.html UpdateAssumeRolePolicy(ctx context.Context, params *UpdateAssumeRolePolicyInput, optFns ...func(*Options)) (*UpdateAssumeRolePolicyOutput, error) - // Updates the name and/or the path of the specified IAM group. You should - // understand the implications of changing a group's path or name. For more - // information, see Renaming users and groups (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_WorkingWithGroupsAndUsers.html) - // in the IAM User Guide. The person making the request (the principal), must have - // permission to change the role group with the old name and the new name. For - // example, to change the group named Managers to MGRs , the principal must have a - // policy that allows them to update both groups. If the principal has permission - // to update the Managers group, but not the MGRs group, then the update fails. - // For more information about permissions, see Access management (https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html) - // . + // Updates the name and/or the path of the specified IAM group. + // + // You should understand the implications of changing a group's path or name. For + // more information, see [Renaming users and groups]in the IAM User Guide. + // + // The person making the request (the principal), must have permission to change + // the role group with the old name and the new name. For example, to change the + // group named Managers to MGRs , the principal must have a policy that allows them + // to update both groups. If the principal has permission to update the Managers + // group, but not the MGRs group, then the update fails. For more information + // about permissions, see [Access management]. + // + // [Access management]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html + // [Renaming users and groups]: https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_WorkingWithGroupsAndUsers.html UpdateGroup(ctx context.Context, params *UpdateGroupInput, optFns ...func(*Options)) (*UpdateGroupOutput, error) // Changes the password for the specified IAM user. You can use the CLI, the // Amazon Web Services API, or the Users page in the IAM console to change the - // password for any IAM user. Use ChangePassword to change your own password in - // the My Security Credentials page in the Amazon Web Services Management Console. - // For more information about modifying passwords, see Managing passwords (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingLogins.html) - // in the IAM User Guide. + // password for any IAM user. Use ChangePasswordto change your own password in the My Security + // Credentials page in the Amazon Web Services Management Console. + // + // For more information about modifying passwords, see [Managing passwords] in the IAM User Guide. + // + // [Managing passwords]: https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingLogins.html UpdateLoginProfile(ctx context.Context, params *UpdateLoginProfileInput, optFns ...func(*Options)) (*UpdateLoginProfileOutput, error) // Replaces the existing list of server certificate thumbprints associated with an // OpenID Connect (OIDC) provider resource object with a new list of thumbprints. - // The list that you pass with this operation completely replaces the existing list - // of thumbprints. (The lists are not merged.) Typically, you need to update a - // thumbprint only when the identity provider certificate changes, which occurs - // rarely. However, if the provider's certificate does change, any attempt to - // assume an IAM role that specifies the OIDC provider as a principal fails until - // the certificate thumbprint is updated. Amazon Web Services secures communication - // with some OIDC identity providers (IdPs) through our library of trusted root - // certificate authorities (CAs) instead of using a certificate thumbprint to - // verify your IdP server certificate. In these cases, your legacy thumbprint - // remains in your configuration, but is no longer used for validation. These OIDC - // IdPs include Auth0, GitHub, GitLab, Google, and those that use an Amazon S3 - // bucket to host a JSON Web Key Set (JWKS) endpoint. Trust for the OIDC provider - // is derived from the provider certificate and is validated by the thumbprint. - // Therefore, it is best to limit access to the + // + // The list that you pass with this operation completely replaces the existing + // list of thumbprints. (The lists are not merged.) + // + // Typically, you need to update a thumbprint only when the identity provider + // certificate changes, which occurs rarely. However, if the provider's certificate + // does change, any attempt to assume an IAM role that specifies the OIDC provider + // as a principal fails until the certificate thumbprint is updated. + // + // Amazon Web Services secures communication with some OIDC identity providers + // (IdPs) through our library of trusted root certificate authorities (CAs) instead + // of using a certificate thumbprint to verify your IdP server certificate. In + // these cases, your legacy thumbprint remains in your configuration, but is no + // longer used for validation. These OIDC IdPs include Auth0, GitHub, GitLab, + // Google, and those that use an Amazon S3 bucket to host a JSON Web Key Set (JWKS) + // endpoint. + // + // Trust for the OIDC provider is derived from the provider certificate and is + // validated by the thumbprint. Therefore, it is best to limit access to the // UpdateOpenIDConnectProviderThumbprint operation to highly privileged users. UpdateOpenIDConnectProviderThumbprint(ctx context.Context, params *UpdateOpenIDConnectProviderThumbprintInput, optFns ...func(*Options)) (*UpdateOpenIDConnectProviderThumbprintOutput, error) // Updates the description or maximum session duration setting of a role. UpdateRole(ctx context.Context, params *UpdateRoleInput, optFns ...func(*Options)) (*UpdateRoleOutput, error) - // Use UpdateRole instead. Modifies only the description of a role. This operation - // performs the same function as the Description parameter in the UpdateRole - // operation. + // Use UpdateRole instead. + // + // Modifies only the description of a role. This operation performs the same + // function as the Description parameter in the UpdateRole operation. UpdateRoleDescription(ctx context.Context, params *UpdateRoleDescriptionInput, optFns ...func(*Options)) (*UpdateRoleDescriptionOutput, error) // Updates the metadata document for an existing SAML provider resource object. - // This operation requires Signature Version 4 (https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html) - // . + // + // This operation requires [Signature Version 4]. + // + // [Signature Version 4]: https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html UpdateSAMLProvider(ctx context.Context, params *UpdateSAMLProviderInput, optFns ...func(*Options)) (*UpdateSAMLProviderOutput, error) // Sets the status of an IAM user's SSH public key to active or inactive. SSH // public keys that are inactive cannot be used for authentication. This operation // can be used to disable a user's SSH public key as part of a key rotation work - // flow. The SSH public key affected by this operation is used only for - // authenticating the associated IAM user to an CodeCommit repository. For more - // information about using SSH keys to authenticate to an CodeCommit repository, - // see Set up CodeCommit for SSH connections (https://docs.aws.amazon.com/codecommit/latest/userguide/setting-up-credentials-ssh.html) - // in the CodeCommit User Guide. + // flow. + // + // The SSH public key affected by this operation is used only for authenticating + // the associated IAM user to an CodeCommit repository. For more information about + // using SSH keys to authenticate to an CodeCommit repository, see [Set up CodeCommit for SSH connections]in the + // CodeCommit User Guide. + // + // [Set up CodeCommit for SSH connections]: https://docs.aws.amazon.com/codecommit/latest/userguide/setting-up-credentials-ssh.html UpdateSSHPublicKey(ctx context.Context, params *UpdateSSHPublicKeyInput, optFns ...func(*Options)) (*UpdateSSHPublicKeyOutput, error) // Updates the name and/or the path of the specified server certificate stored in - // IAM. For more information about working with server certificates, see Working - // with server certificates (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html) - // in the IAM User Guide. This topic also includes a list of Amazon Web Services - // services that can use the server certificates that you manage with IAM. You - // should understand the implications of changing a server certificate's path or - // name. For more information, see Renaming a server certificate (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs_manage.html#RenamingServerCerts) - // in the IAM User Guide. The person making the request (the principal), must have - // permission to change the server certificate with the old name and the new name. - // For example, to change the certificate named ProductionCert to ProdCert , the - // principal must have a policy that allows them to update both certificates. If - // the principal has permission to update the ProductionCert group, but not the - // ProdCert certificate, then the update fails. For more information about - // permissions, see Access management (https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html) + // IAM. + // + // For more information about working with server certificates, see [Working with server certificates] in the IAM + // User Guide. This topic also includes a list of Amazon Web Services services that + // can use the server certificates that you manage with IAM. + // + // You should understand the implications of changing a server certificate's path + // or name. For more information, see [Renaming a server certificate]in the IAM User Guide. + // + // The person making the request (the principal), must have permission to change + // the server certificate with the old name and the new name. For example, to + // change the certificate named ProductionCert to ProdCert , the principal must + // have a policy that allows them to update both certificates. If the principal has + // permission to update the ProductionCert group, but not the ProdCert + // certificate, then the update fails. For more information about permissions, see [Access management] // in the IAM User Guide. + // + // [Renaming a server certificate]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs_manage.html#RenamingServerCerts + // [Access management]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html + // [Working with server certificates]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html UpdateServerCertificate(ctx context.Context, params *UpdateServerCertificateInput, optFns ...func(*Options)) (*UpdateServerCertificateOutput, error) // Sets the status of a service-specific credential to Active or Inactive . // Service-specific credentials that are inactive cannot be used for authentication @@ -1665,72 +2176,93 @@ type IAM interface { UpdateServiceSpecificCredential(ctx context.Context, params *UpdateServiceSpecificCredentialInput, optFns ...func(*Options)) (*UpdateServiceSpecificCredentialOutput, error) // Changes the status of the specified user signing certificate from active to // disabled, or vice versa. This operation can be used to disable an IAM user's - // signing certificate as part of a certificate rotation work flow. If the UserName - // field is not specified, the user name is determined implicitly based on the - // Amazon Web Services access key ID used to sign the request. This operation works - // for access keys under the Amazon Web Services account. Consequently, you can use - // this operation to manage Amazon Web Services account root user credentials even - // if the Amazon Web Services account has no associated users. + // signing certificate as part of a certificate rotation work flow. + // + // If the UserName field is not specified, the user name is determined implicitly + // based on the Amazon Web Services access key ID used to sign the request. This + // operation works for access keys under the Amazon Web Services account. + // Consequently, you can use this operation to manage Amazon Web Services account + // root user credentials even if the Amazon Web Services account has no associated + // users. UpdateSigningCertificate(ctx context.Context, params *UpdateSigningCertificateInput, optFns ...func(*Options)) (*UpdateSigningCertificateOutput, error) - // Updates the name and/or the path of the specified IAM user. You should - // understand the implications of changing an IAM user's path or name. For more - // information, see Renaming an IAM user (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users_manage.html#id_users_renaming) - // and Renaming an IAM group (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_groups_manage_rename.html) - // in the IAM User Guide. To change a user name, the requester must have - // appropriate permissions on both the source object and the target object. For - // example, to change Bob to Robert, the entity making the request must have - // permission on Bob and Robert, or must have permission on all (*). For more - // information about permissions, see Permissions and policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/PermissionsAndPolicies.html) - // . + // Updates the name and/or the path of the specified IAM user. + // + // You should understand the implications of changing an IAM user's path or name. + // For more information, see [Renaming an IAM user]and [Renaming an IAM group] in the IAM User Guide. + // + // To change a user name, the requester must have appropriate permissions on both + // the source object and the target object. For example, to change Bob to Robert, + // the entity making the request must have permission on Bob and Robert, or must + // have permission on all (*). For more information about permissions, see [Permissions and policies]. + // + // [Renaming an IAM user]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users_manage.html#id_users_renaming + // [Renaming an IAM group]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_groups_manage_rename.html + // [Permissions and policies]: https://docs.aws.amazon.com/IAM/latest/UserGuide/PermissionsAndPolicies.html UpdateUser(ctx context.Context, params *UpdateUserInput, optFns ...func(*Options)) (*UpdateUserOutput, error) - // Uploads an SSH public key and associates it with the specified IAM user. The - // SSH public key uploaded by this operation can be used only for authenticating - // the associated IAM user to an CodeCommit repository. For more information about - // using SSH keys to authenticate to an CodeCommit repository, see Set up - // CodeCommit for SSH connections (https://docs.aws.amazon.com/codecommit/latest/userguide/setting-up-credentials-ssh.html) - // in the CodeCommit User Guide. + // Uploads an SSH public key and associates it with the specified IAM user. + // + // The SSH public key uploaded by this operation can be used only for + // authenticating the associated IAM user to an CodeCommit repository. For more + // information about using SSH keys to authenticate to an CodeCommit repository, + // see [Set up CodeCommit for SSH connections]in the CodeCommit User Guide. + // + // [Set up CodeCommit for SSH connections]: https://docs.aws.amazon.com/codecommit/latest/userguide/setting-up-credentials-ssh.html UploadSSHPublicKey(ctx context.Context, params *UploadSSHPublicKeyInput, optFns ...func(*Options)) (*UploadSSHPublicKeyOutput, error) // Uploads a server certificate entity for the Amazon Web Services account. The // server certificate entity includes a public key certificate, a private key, and - // an optional certificate chain, which should all be PEM-encoded. We recommend - // that you use Certificate Manager (https://docs.aws.amazon.com/acm/) to - // provision, manage, and deploy your server certificates. With ACM you can request - // a certificate, deploy it to Amazon Web Services resources, and let ACM handle - // certificate renewals for you. Certificates provided by ACM are free. For more - // information about using ACM, see the Certificate Manager User Guide (https://docs.aws.amazon.com/acm/latest/userguide/) - // . For more information about working with server certificates, see Working with - // server certificates (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html) - // in the IAM User Guide. This topic includes a list of Amazon Web Services - // services that can use the server certificates that you manage with IAM. For - // information about the number of server certificates you can upload, see IAM and - // STS quotas (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html) - // in the IAM User Guide. Because the body of the public key certificate, private - // key, and the certificate chain can be large, you should use POST rather than GET - // when calling UploadServerCertificate . For information about setting up - // signatures and authorization through the API, see Signing Amazon Web Services - // API requests (https://docs.aws.amazon.com/general/latest/gr/signing_aws_api_requests.html) - // in the Amazon Web Services General Reference. For general information about - // using the Query API with IAM, see Calling the API by making HTTP query requests (https://docs.aws.amazon.com/IAM/latest/UserGuide/programming.html) - // in the IAM User Guide. + // an optional certificate chain, which should all be PEM-encoded. + // + // We recommend that you use [Certificate Manager] to provision, manage, and deploy your server + // certificates. With ACM you can request a certificate, deploy it to Amazon Web + // Services resources, and let ACM handle certificate renewals for you. + // Certificates provided by ACM are free. For more information about using ACM, see + // the [Certificate Manager User Guide]. + // + // For more information about working with server certificates, see [Working with server certificates] in the IAM + // User Guide. This topic includes a list of Amazon Web Services services that can + // use the server certificates that you manage with IAM. + // + // For information about the number of server certificates you can upload, see [IAM and STS quotas] in + // the IAM User Guide. + // + // Because the body of the public key certificate, private key, and the + // certificate chain can be large, you should use POST rather than GET when calling + // UploadServerCertificate . For information about setting up signatures and + // authorization through the API, see [Signing Amazon Web Services API requests]in the Amazon Web Services General + // Reference. For general information about using the Query API with IAM, see [Calling the API by making HTTP query requests]in + // the IAM User Guide. + // + // [Certificate Manager]: https://docs.aws.amazon.com/acm/ + // [Certificate Manager User Guide]: https://docs.aws.amazon.com/acm/latest/userguide/ + // [IAM and STS quotas]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html + // [Working with server certificates]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html + // [Signing Amazon Web Services API requests]: https://docs.aws.amazon.com/general/latest/gr/signing_aws_api_requests.html + // [Calling the API by making HTTP query requests]: https://docs.aws.amazon.com/IAM/latest/UserGuide/programming.html UploadServerCertificate(ctx context.Context, params *UploadServerCertificateInput, optFns ...func(*Options)) (*UploadServerCertificateOutput, error) // Uploads an X.509 signing certificate and associates it with the specified IAM // user. Some Amazon Web Services services require you to use certificates to // validate requests that are signed with a corresponding private key. When you - // upload the certificate, its default status is Active . For information about - // when you would use an X.509 signing certificate, see Managing server - // certificates in IAM (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html) - // in the IAM User Guide. If the UserName is not specified, the IAM user name is - // determined implicitly based on the Amazon Web Services access key ID used to - // sign the request. This operation works for access keys under the Amazon Web - // Services account. Consequently, you can use this operation to manage Amazon Web - // Services account root user credentials even if the Amazon Web Services account - // has no associated users. Because the body of an X.509 certificate can be large, - // you should use POST rather than GET when calling UploadSigningCertificate . For - // information about setting up signatures and authorization through the API, see - // Signing Amazon Web Services API requests (https://docs.aws.amazon.com/general/latest/gr/signing_aws_api_requests.html) - // in the Amazon Web Services General Reference. For general information about - // using the Query API with IAM, see Making query requests (https://docs.aws.amazon.com/IAM/latest/UserGuide/IAM_UsingQueryAPI.html) - // in the IAM User Guide. + // upload the certificate, its default status is Active . + // + // For information about when you would use an X.509 signing certificate, see [Managing server certificates in IAM] in + // the IAM User Guide. + // + // If the UserName is not specified, the IAM user name is determined implicitly + // based on the Amazon Web Services access key ID used to sign the request. This + // operation works for access keys under the Amazon Web Services account. + // Consequently, you can use this operation to manage Amazon Web Services account + // root user credentials even if the Amazon Web Services account has no associated + // users. + // + // Because the body of an X.509 certificate can be large, you should use POST + // rather than GET when calling UploadSigningCertificate . For information about + // setting up signatures and authorization through the API, see [Signing Amazon Web Services API requests]in the Amazon Web + // Services General Reference. For general information about using the Query API + // with IAM, see [Making query requests]in the IAM User Guide. + // + // [Managing server certificates in IAM]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html + // [Making query requests]: https://docs.aws.amazon.com/IAM/latest/UserGuide/IAM_UsingQueryAPI.html + // [Signing Amazon Web Services API requests]: https://docs.aws.amazon.com/general/latest/gr/signing_aws_api_requests.html UploadSigningCertificate(ctx context.Context, params *UploadSigningCertificateInput, optFns ...func(*Options)) (*UploadSigningCertificateOutput, error) } diff --git a/pkg/awsapi/outposts.go b/pkg/awsapi/outposts.go index 1e77b4ff1f..49773de977 100644 --- a/pkg/awsapi/outposts.go +++ b/pkg/awsapi/outposts.go @@ -23,7 +23,9 @@ type Outposts interface { CancelOrder(ctx context.Context, params *CancelOrderInput, optFns ...func(*Options)) (*CancelOrderOutput, error) // Creates an order for an Outpost. CreateOrder(ctx context.Context, params *CreateOrderInput, optFns ...func(*Options)) (*CreateOrderOutput, error) - // Creates an Outpost. You can specify either an Availability one or an AZ ID. + // Creates an Outpost. + // + // You can specify either an Availability one or an AZ ID. CreateOutpost(ctx context.Context, params *CreateOutpostInput, optFns ...func(*Options)) (*CreateOutpostOutput, error) // Creates a site for an Outpost. CreateSite(ctx context.Context, params *CreateSiteInput, optFns ...func(*Options)) (*CreateSiteOutput, error) @@ -35,14 +37,16 @@ type Outposts interface { GetCapacityTask(ctx context.Context, params *GetCapacityTaskInput, optFns ...func(*Options)) (*GetCapacityTaskOutput, error) // Gets information about the specified catalog item. GetCatalogItem(ctx context.Context, params *GetCatalogItemInput, optFns ...func(*Options)) (*GetCatalogItemOutput, error) - // Amazon Web Services uses this action to install Outpost servers. Gets - // information about the specified connection. Use CloudTrail to monitor this - // action or Amazon Web Services managed policy for Amazon Web Services Outposts to - // secure it. For more information, see Amazon Web Services managed policies for - // Amazon Web Services Outposts (https://docs.aws.amazon.com/outposts/latest/userguide/security-iam-awsmanpol.html) - // and Logging Amazon Web Services Outposts API calls with Amazon Web Services - // CloudTrail (https://docs.aws.amazon.com/outposts/latest/userguide/logging-using-cloudtrail.html) - // in the Amazon Web Services Outposts User Guide. + // Amazon Web Services uses this action to install Outpost servers. + // + // Gets information about the specified connection. + // + // Use CloudTrail to monitor this action or Amazon Web Services managed policy for + // Amazon Web Services Outposts to secure it. For more information, see [Amazon Web Services managed policies for Amazon Web Services Outposts]and [Logging Amazon Web Services Outposts API calls with Amazon Web Services CloudTrail] in + // the Amazon Web Services Outposts User Guide. + // + // [Logging Amazon Web Services Outposts API calls with Amazon Web Services CloudTrail]: https://docs.aws.amazon.com/outposts/latest/userguide/logging-using-cloudtrail.html + // [Amazon Web Services managed policies for Amazon Web Services Outposts]: https://docs.aws.amazon.com/outposts/latest/userguide/security-iam-awsmanpol.html GetConnection(ctx context.Context, params *GetConnectionInput, optFns ...func(*Options)) (*GetConnectionOutput, error) // Gets information about the specified order. GetOrder(ctx context.Context, params *GetOrderInput, optFns ...func(*Options)) (*GetOrderOutput, error) @@ -58,52 +62,59 @@ type Outposts interface { GetSite(ctx context.Context, params *GetSiteInput, optFns ...func(*Options)) (*GetSiteOutput, error) // Gets the site address of the specified site. GetSiteAddress(ctx context.Context, params *GetSiteAddressInput, optFns ...func(*Options)) (*GetSiteAddressOutput, error) - // Lists the hardware assets for the specified Outpost. Use filters to return - // specific results. If you specify multiple filters, the results include only the - // resources that match all of the specified filters. For a filter where you can - // specify multiple values, the results include items that match any of the values - // that you specify for the filter. + // Lists the hardware assets for the specified Outpost. + // + // Use filters to return specific results. If you specify multiple filters, the + // results include only the resources that match all of the specified filters. For + // a filter where you can specify multiple values, the results include items that + // match any of the values that you specify for the filter. ListAssets(ctx context.Context, params *ListAssetsInput, optFns ...func(*Options)) (*ListAssetsOutput, error) - // Lists the capacity tasks for your Amazon Web Services account. Use filters to - // return specific results. If you specify multiple filters, the results include - // only the resources that match all of the specified filters. For a filter where - // you can specify multiple values, the results include items that match any of the - // values that you specify for the filter. + // Lists the capacity tasks for your Amazon Web Services account. + // + // Use filters to return specific results. If you specify multiple filters, the + // results include only the resources that match all of the specified filters. For + // a filter where you can specify multiple values, the results include items that + // match any of the values that you specify for the filter. ListCapacityTasks(ctx context.Context, params *ListCapacityTasksInput, optFns ...func(*Options)) (*ListCapacityTasksOutput, error) - // Lists the items in the catalog. Use filters to return specific results. If you - // specify multiple filters, the results include only the resources that match all - // of the specified filters. For a filter where you can specify multiple values, - // the results include items that match any of the values that you specify for the - // filter. + // Lists the items in the catalog. + // + // Use filters to return specific results. If you specify multiple filters, the + // results include only the resources that match all of the specified filters. For + // a filter where you can specify multiple values, the results include items that + // match any of the values that you specify for the filter. ListCatalogItems(ctx context.Context, params *ListCatalogItemsInput, optFns ...func(*Options)) (*ListCatalogItemsOutput, error) // Lists the Outpost orders for your Amazon Web Services account. ListOrders(ctx context.Context, params *ListOrdersInput, optFns ...func(*Options)) (*ListOrdersOutput, error) - // Lists the Outposts for your Amazon Web Services account. Use filters to return - // specific results. If you specify multiple filters, the results include only the - // resources that match all of the specified filters. For a filter where you can - // specify multiple values, the results include items that match any of the values - // that you specify for the filter. + // Lists the Outposts for your Amazon Web Services account. + // + // Use filters to return specific results. If you specify multiple filters, the + // results include only the resources that match all of the specified filters. For + // a filter where you can specify multiple values, the results include items that + // match any of the values that you specify for the filter. ListOutposts(ctx context.Context, params *ListOutpostsInput, optFns ...func(*Options)) (*ListOutpostsOutput, error) // Lists the Outpost sites for your Amazon Web Services account. Use filters to - // return specific results. Use filters to return specific results. If you specify - // multiple filters, the results include only the resources that match all of the - // specified filters. For a filter where you can specify multiple values, the - // results include items that match any of the values that you specify for the - // filter. + // return specific results. + // + // Use filters to return specific results. If you specify multiple filters, the + // results include only the resources that match all of the specified filters. For + // a filter where you can specify multiple values, the results include items that + // match any of the values that you specify for the filter. ListSites(ctx context.Context, params *ListSitesInput, optFns ...func(*Options)) (*ListSitesOutput, error) // Lists the tags for the specified resource. ListTagsForResource(ctx context.Context, params *ListTagsForResourceInput, optFns ...func(*Options)) (*ListTagsForResourceOutput, error) // Starts the specified capacity task. You can have one active capacity task for // an order. StartCapacityTask(ctx context.Context, params *StartCapacityTaskInput, optFns ...func(*Options)) (*StartCapacityTaskOutput, error) - // Amazon Web Services uses this action to install Outpost servers. Starts the - // connection required for Outpost server installation. Use CloudTrail to monitor - // this action or Amazon Web Services managed policy for Amazon Web Services - // Outposts to secure it. For more information, see Amazon Web Services managed - // policies for Amazon Web Services Outposts (https://docs.aws.amazon.com/outposts/latest/userguide/security-iam-awsmanpol.html) - // and Logging Amazon Web Services Outposts API calls with Amazon Web Services - // CloudTrail (https://docs.aws.amazon.com/outposts/latest/userguide/logging-using-cloudtrail.html) - // in the Amazon Web Services Outposts User Guide. + // Amazon Web Services uses this action to install Outpost servers. + // + // Starts the connection required for Outpost server installation. + // + // Use CloudTrail to monitor this action or Amazon Web Services managed policy for + // Amazon Web Services Outposts to secure it. For more information, see [Amazon Web Services managed policies for Amazon Web Services Outposts]and [Logging Amazon Web Services Outposts API calls with Amazon Web Services CloudTrail] in + // the Amazon Web Services Outposts User Guide. + // + // [Logging Amazon Web Services Outposts API calls with Amazon Web Services CloudTrail]: https://docs.aws.amazon.com/outposts/latest/userguide/logging-using-cloudtrail.html + // [Amazon Web Services managed policies for Amazon Web Services Outposts]: https://docs.aws.amazon.com/outposts/latest/userguide/security-iam-awsmanpol.html StartConnection(ctx context.Context, params *StartConnectionInput, optFns ...func(*Options)) (*StartConnectionOutput, error) // Adds tags to the specified resource. TagResource(ctx context.Context, params *TagResourceInput, optFns ...func(*Options)) (*TagResourceOutput, error) @@ -113,17 +124,22 @@ type Outposts interface { UpdateOutpost(ctx context.Context, params *UpdateOutpostInput, optFns ...func(*Options)) (*UpdateOutpostOutput, error) // Updates the specified site. UpdateSite(ctx context.Context, params *UpdateSiteInput, optFns ...func(*Options)) (*UpdateSiteOutput, error) - // Updates the address of the specified site. You can't update a site address if - // there is an order in progress. You must wait for the order to complete or cancel - // the order. You can update the operating address before you place an order at the - // site, or after all Outposts that belong to the site have been deactivated. + // Updates the address of the specified site. + // + // You can't update a site address if there is an order in progress. You must wait + // for the order to complete or cancel the order. + // + // You can update the operating address before you place an order at the site, or + // after all Outposts that belong to the site have been deactivated. UpdateSiteAddress(ctx context.Context, params *UpdateSiteAddressInput, optFns ...func(*Options)) (*UpdateSiteAddressOutput, error) // Update the physical and logistical details for a rack at a site. For more - // information about hardware requirements for racks, see Network readiness - // checklist (https://docs.aws.amazon.com/outposts/latest/userguide/outposts-requirements.html#checklist) - // in the Amazon Web Services Outposts User Guide. To update a rack at a site with - // an order of IN_PROGRESS , you must wait for the order to complete or cancel the - // order. + // information about hardware requirements for racks, see [Network readiness checklist]in the Amazon Web + // Services Outposts User Guide. + // + // To update a rack at a site with an order of IN_PROGRESS , you must wait for the + // order to complete or cancel the order. + // + // [Network readiness checklist]: https://docs.aws.amazon.com/outposts/latest/userguide/outposts-requirements.html#checklist UpdateSiteRackPhysicalProperties(ctx context.Context, params *UpdateSiteRackPhysicalPropertiesInput, optFns ...func(*Options)) (*UpdateSiteRackPhysicalPropertiesOutput, error) } diff --git a/pkg/awsapi/ssm.go b/pkg/awsapi/ssm.go index 28791f3bd9..531070ed6e 100644 --- a/pkg/awsapi/ssm.go +++ b/pkg/awsapi/ssm.go @@ -25,22 +25,32 @@ type SSM interface { // value, both of which you define. For example, you could define a set of tags for // your account's managed nodes that helps you track each node's owner and stack // level. For example: + // // - Key=Owner,Value=DbAdmin + // // - Key=Owner,Value=SysAdmin + // // - Key=Owner,Value=Dev + // // - Key=Stack,Value=Production + // // - Key=Stack,Value=Pre-Production + // // - Key=Stack,Value=Test // // Most resources can have a maximum of 50 tags. Automations can have a maximum of - // 5 tags. We recommend that you devise a set of tag keys that meets your needs for - // each resource type. Using a consistent set of tag keys makes it easier for you - // to manage your resources. You can search and filter the resources based on the - // tags you add. Tags don't have any semantic meaning to and are interpreted - // strictly as a string of characters. For more information about using tags with - // Amazon Elastic Compute Cloud (Amazon EC2) instances, see Tag your Amazon EC2 - // resources (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Using_Tags.html) - // in the Amazon EC2 User Guide. + // 5 tags. + // + // We recommend that you devise a set of tag keys that meets your needs for each + // resource type. Using a consistent set of tag keys makes it easier for you to + // manage your resources. You can search and filter the resources based on the tags + // you add. Tags don't have any semantic meaning to and are interpreted strictly as + // a string of characters. + // + // For more information about using tags with Amazon Elastic Compute Cloud (Amazon + // EC2) instances, see [Tag your Amazon EC2 resources]in the Amazon EC2 User Guide. + // + // [Tag your Amazon EC2 resources]: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Using_Tags.html AddTagsToResource(ctx context.Context, params *AddTagsToResourceInput, optFns ...func(*Options)) (*AddTagsToResourceOutput, error) // Associates a related item to a Systems Manager OpsCenter OpsItem. For example, // you can associate an Incident Manager incident or analysis with an OpsItem. @@ -61,11 +71,14 @@ type SSM interface { // it possible to manage them using Systems Manager capabilities. You use the // activation code and ID when installing SSM Agent on machines in your hybrid // environment. For more information about requirements for managing on-premises - // machines using Systems Manager, see Setting up Amazon Web Services Systems - // Manager for hybrid and multicloud environments (https://docs.aws.amazon.com/systems-manager/latest/userguide/systems-manager-managedinstances.html) - // in the Amazon Web Services Systems Manager User Guide. Amazon Elastic Compute - // Cloud (Amazon EC2) instances, edge devices, and on-premises servers and VMs that - // are configured for Systems Manager are all called managed nodes. + // machines using Systems Manager, see [Setting up Amazon Web Services Systems Manager for hybrid and multicloud environments]in the Amazon Web Services Systems Manager + // User Guide. + // + // Amazon Elastic Compute Cloud (Amazon EC2) instances, edge devices, and + // on-premises servers and VMs that are configured for Systems Manager are all + // called managed nodes. + // + // [Setting up Amazon Web Services Systems Manager for hybrid and multicloud environments]: https://docs.aws.amazon.com/systems-manager/latest/userguide/systems-manager-managedinstances.html CreateActivation(ctx context.Context, params *CreateActivationInput, optFns ...func(*Options)) (*CreateActivationOutput, error) // A State Manager association defines the state that you want to maintain on your // managed nodes. For example, an association can specify that anti-virus software @@ -81,66 +94,81 @@ type SSM interface { // running, then the association might instruct State Manager to start the service. CreateAssociation(ctx context.Context, params *CreateAssociationInput, optFns ...func(*Options)) (*CreateAssociationOutput, error) // Associates the specified Amazon Web Services Systems Manager document (SSM - // document) with the specified managed nodes or targets. When you associate a - // document with one or more managed nodes using IDs or tags, Amazon Web Services - // Systems Manager Agent (SSM Agent) running on the managed node processes the - // document and configures the node as specified. If you associate a document with - // a managed node that already has an associated document, the system returns the - // AssociationAlreadyExists exception. + // document) with the specified managed nodes or targets. + // + // When you associate a document with one or more managed nodes using IDs or tags, + // Amazon Web Services Systems Manager Agent (SSM Agent) running on the managed + // node processes the document and configures the node as specified. + // + // If you associate a document with a managed node that already has an associated + // document, the system returns the AssociationAlreadyExists exception. CreateAssociationBatch(ctx context.Context, params *CreateAssociationBatchInput, optFns ...func(*Options)) (*CreateAssociationBatchOutput, error) // Creates a Amazon Web Services Systems Manager (SSM document). An SSM document // defines the actions that Systems Manager performs on your managed nodes. For // more information about SSM documents, including information about supported - // schemas, features, and syntax, see Amazon Web Services Systems Manager Documents (https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-ssm-docs.html) - // in the Amazon Web Services Systems Manager User Guide. + // schemas, features, and syntax, see [Amazon Web Services Systems Manager Documents]in the Amazon Web Services Systems Manager + // User Guide. + // + // [Amazon Web Services Systems Manager Documents]: https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-ssm-docs.html CreateDocument(ctx context.Context, params *CreateDocumentInput, optFns ...func(*Options)) (*CreateDocumentOutput, error) - // Creates a new maintenance window. The value you specify for Duration determines - // the specific end time for the maintenance window based on the time it begins. No - // maintenance window tasks are permitted to start after the resulting endtime - // minus the number of hours you specify for Cutoff . For example, if the - // maintenance window starts at 3 PM, the duration is three hours, and the value - // you specify for Cutoff is one hour, no maintenance window tasks can start after - // 5 PM. + // Creates a new maintenance window. + // + // The value you specify for Duration determines the specific end time for the + // maintenance window based on the time it begins. No maintenance window tasks are + // permitted to start after the resulting endtime minus the number of hours you + // specify for Cutoff . For example, if the maintenance window starts at 3 PM, the + // duration is three hours, and the value you specify for Cutoff is one hour, no + // maintenance window tasks can start after 5 PM. CreateMaintenanceWindow(ctx context.Context, params *CreateMaintenanceWindowInput, optFns ...func(*Options)) (*CreateMaintenanceWindowOutput, error) // Creates a new OpsItem. You must have permission in Identity and Access - // Management (IAM) to create a new OpsItem. For more information, see Set up - // OpsCenter (https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter-setup.html) - // in the Amazon Web Services Systems Manager User Guide. Operations engineers and - // IT professionals use Amazon Web Services Systems Manager OpsCenter to view, - // investigate, and remediate operational issues impacting the performance and - // health of their Amazon Web Services resources. For more information, see Amazon - // Web Services Systems Manager OpsCenter (https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter.html) - // in the Amazon Web Services Systems Manager User Guide. + // Management (IAM) to create a new OpsItem. For more information, see [Set up OpsCenter]in the + // Amazon Web Services Systems Manager User Guide. + // + // Operations engineers and IT professionals use Amazon Web Services Systems + // Manager OpsCenter to view, investigate, and remediate operational issues + // impacting the performance and health of their Amazon Web Services resources. For + // more information, see [Amazon Web Services Systems Manager OpsCenter]in the Amazon Web Services Systems Manager User Guide. + // + // [Amazon Web Services Systems Manager OpsCenter]: https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter.html + // [Set up OpsCenter]: https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter-setup.html CreateOpsItem(ctx context.Context, params *CreateOpsItemInput, optFns ...func(*Options)) (*CreateOpsItemOutput, error) // If you create a new application in Application Manager, Amazon Web Services // Systems Manager calls this API operation to specify information about the new // application, including the application type. CreateOpsMetadata(ctx context.Context, params *CreateOpsMetadataInput, optFns ...func(*Options)) (*CreateOpsMetadataOutput, error) - // Creates a patch baseline. For information about valid key-value pairs in - // PatchFilters for each supported operating system type, see PatchFilter . + // Creates a patch baseline. + // + // For information about valid key-value pairs in PatchFilters for each supported + // operating system type, see PatchFilter. CreatePatchBaseline(ctx context.Context, params *CreatePatchBaselineInput, optFns ...func(*Options)) (*CreatePatchBaselineOutput, error) // A resource data sync helps you view data from multiple sources in a single // location. Amazon Web Services Systems Manager offers two types of resource data - // sync: SyncToDestination and SyncFromSource . You can configure Systems Manager - // Inventory to use the SyncToDestination type to synchronize Inventory data from - // multiple Amazon Web Services Regions to a single Amazon Simple Storage Service - // (Amazon S3) bucket. For more information, see Configuring resource data sync - // for Inventory (https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-inventory-datasync.html) - // in the Amazon Web Services Systems Manager User Guide. You can configure Systems - // Manager Explorer to use the SyncFromSource type to synchronize operational work - // items (OpsItems) and operational data (OpsData) from multiple Amazon Web - // Services Regions to a single Amazon S3 bucket. This type can synchronize - // OpsItems and OpsData from multiple Amazon Web Services accounts and Amazon Web - // Services Regions or EntireOrganization by using Organizations. For more - // information, see Setting up Systems Manager Explorer to display data from - // multiple accounts and Regions (https://docs.aws.amazon.com/systems-manager/latest/userguide/Explorer-resource-data-sync.html) - // in the Amazon Web Services Systems Manager User Guide. A resource data sync is - // an asynchronous operation that returns immediately. After a successful initial - // sync is completed, the system continuously syncs data. To check the status of a - // sync, use the ListResourceDataSync . By default, data isn't encrypted in Amazon - // S3. We strongly recommend that you enable encryption in Amazon S3 to ensure - // secure data storage. We also recommend that you secure access to the Amazon S3 - // bucket by creating a restrictive bucket policy. + // sync: SyncToDestination and SyncFromSource . + // + // You can configure Systems Manager Inventory to use the SyncToDestination type + // to synchronize Inventory data from multiple Amazon Web Services Regions to a + // single Amazon Simple Storage Service (Amazon S3) bucket. For more information, + // see [Configuring resource data sync for Inventory]in the Amazon Web Services Systems Manager User Guide. + // + // You can configure Systems Manager Explorer to use the SyncFromSource type to + // synchronize operational work items (OpsItems) and operational data (OpsData) + // from multiple Amazon Web Services Regions to a single Amazon S3 bucket. This + // type can synchronize OpsItems and OpsData from multiple Amazon Web Services + // accounts and Amazon Web Services Regions or EntireOrganization by using + // Organizations. For more information, see [Setting up Systems Manager Explorer to display data from multiple accounts and Regions]in the Amazon Web Services Systems + // Manager User Guide. + // + // A resource data sync is an asynchronous operation that returns immediately. + // After a successful initial sync is completed, the system continuously syncs + // data. To check the status of a sync, use the ListResourceDataSync. + // + // By default, data isn't encrypted in Amazon S3. We strongly recommend that you + // enable encryption in Amazon S3 to ensure secure data storage. We also recommend + // that you secure access to the Amazon S3 bucket by creating a restrictive bucket + // policy. + // + // [Setting up Systems Manager Explorer to display data from multiple accounts and Regions]: https://docs.aws.amazon.com/systems-manager/latest/userguide/Explorer-resource-data-sync.html + // [Configuring resource data sync for Inventory]: https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-inventory-datasync.html CreateResourceDataSync(ctx context.Context, params *CreateResourceDataSyncInput, optFns ...func(*Options)) (*CreateResourceDataSyncOutput, error) // Deletes an activation. You aren't required to delete an activation. If you // delete an activation, you can no longer use it to register additional managed @@ -150,15 +178,18 @@ type SSM interface { // Disassociates the specified Amazon Web Services Systems Manager document (SSM // document) from the specified managed node. If you created the association by // using the Targets parameter, then you must delete the association by using the - // association ID. When you disassociate a document from a managed node, it doesn't - // change the configuration of the node. To change the configuration state of a - // managed node after you disassociate a document, you must create a new document - // with the desired configuration and associate it with the node. + // association ID. + // + // When you disassociate a document from a managed node, it doesn't change the + // configuration of the node. To change the configuration state of a managed node + // after you disassociate a document, you must create a new document with the + // desired configuration and associate it with the node. DeleteAssociation(ctx context.Context, params *DeleteAssociationInput, optFns ...func(*Options)) (*DeleteAssociationOutput, error) // Deletes the Amazon Web Services Systems Manager document (SSM document) and all - // managed node associations to the document. Before you delete the document, we - // recommend that you use DeleteAssociation to disassociate all managed nodes that - // are associated with the document. + // managed node associations to the document. + // + // Before you delete the document, we recommend that you use DeleteAssociation to disassociate all + // managed nodes that are associated with the document. DeleteDocument(ctx context.Context, params *DeleteDocumentInput, optFns ...func(*Options)) (*DeleteDocumentOutput, error) // Delete a custom inventory type or the data associated with a custom Inventory // type. Deleting a custom inventory type is also referred to as deleting a custom @@ -167,23 +198,29 @@ type SSM interface { // Deletes a maintenance window. DeleteMaintenanceWindow(ctx context.Context, params *DeleteMaintenanceWindowInput, optFns ...func(*Options)) (*DeleteMaintenanceWindowOutput, error) // Delete an OpsItem. You must have permission in Identity and Access Management - // (IAM) to delete an OpsItem. Note the following important information about this - // operation. + // (IAM) to delete an OpsItem. + // + // Note the following important information about this operation. + // // - Deleting an OpsItem is irreversible. You can't restore a deleted OpsItem. + // // - This operation uses an eventual consistency model, which means the system // can take a few minutes to complete this operation. If you delete an OpsItem and - // immediately call, for example, GetOpsItem , the deleted OpsItem might still - // appear in the response. + // immediately call, for example, GetOpsItem, the deleted OpsItem might still appear in + // the response. + // // - This operation is idempotent. The system doesn't throw an exception if you // repeatedly call this operation for the same OpsItem. If the first call is // successful, all additional calls return the same successful response as the // first call. + // // - This operation doesn't support cross-account calls. A delegated // administrator or management account can't delete OpsItems in other accounts, // even if OpsCenter has been set up for cross-account administration. For more - // information about cross-account administration, see Setting up OpsCenter to - // centrally manage OpsItems across accounts (https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter-setting-up-cross-account.html) - // in the Systems Manager User Guide. + // information about cross-account administration, see [Setting up OpsCenter to centrally manage OpsItems across accounts]in the Systems Manager + // User Guide. + // + // [Setting up OpsCenter to centrally manage OpsItems across accounts]: https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter-setting-up-cross-account.html DeleteOpsItem(ctx context.Context, params *DeleteOpsItemInput, optFns ...func(*Options)) (*DeleteOpsItemOutput, error) // Delete OpsMetadata related to an application. DeleteOpsMetadata(ctx context.Context, params *DeleteOpsMetadataInput, optFns ...func(*Options)) (*DeleteOpsMetadataOutput, error) @@ -203,13 +240,17 @@ type SSM interface { // define the IAM entity (for example, an Amazon Web Services account) that can // manage your Systems Manager resources. The following resources support Systems // Manager resource policies. + // // - OpsItemGroup - The resource policy for OpsItemGroup enables Amazon Web // Services accounts to view and interact with OpsCenter operational work items // (OpsItems). + // // - Parameter - The resource policy is used to share a parameter with other // accounts using Resource Access Manager (RAM). For more information about - // cross-account sharing of parameters, see Working with shared parameters (https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-shared-parameters.html) - // in the Amazon Web Services Systems Manager User Guide. + // cross-account sharing of parameters, see [Working with shared parameters]in the Amazon Web Services Systems + // Manager User Guide. + // + // [Working with shared parameters]: https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-shared-parameters.html DeleteResourcePolicy(ctx context.Context, params *DeleteResourcePolicyInput, optFns ...func(*Options)) (*DeleteResourcePolicyOutput, error) // Removes the server or virtual machine from the list of registered servers. You // can reregister the node again at any time. If you don't plan to use Run Command @@ -239,9 +280,10 @@ type SSM interface { // Information about all active and terminated step executions in an Automation // workflow. DescribeAutomationStepExecutions(ctx context.Context, params *DescribeAutomationStepExecutionsInput, optFns ...func(*Options)) (*DescribeAutomationStepExecutionsOutput, error) - // Lists all patches eligible to be included in a patch baseline. Currently, - // DescribeAvailablePatches supports only the Amazon Linux 1, Amazon Linux 2, and - // Windows Server operating systems. + // Lists all patches eligible to be included in a patch baseline. + // + // Currently, DescribeAvailablePatches supports only the Amazon Linux 1, Amazon + // Linux 2, and Windows Server operating systems. DescribeAvailablePatches(ctx context.Context, params *DescribeAvailablePatchesInput, optFns ...func(*Options)) (*DescribeAvailablePatchesOutput, error) // Describes the specified Amazon Web Services Systems Manager document (SSM // document). @@ -261,13 +303,16 @@ type SSM interface { // Provides information about one or more of your managed nodes, including the // operating system platform, SSM Agent version, association status, and IP // address. This operation does not return information for nodes that are either - // Stopped or Terminated. If you specify one or more node IDs, the operation - // returns information for those managed nodes. If you don't specify node IDs, it - // returns information for all your managed nodes. If you specify a node ID that - // isn't valid or a node that you don't own, you receive an error. The IamRole - // field returned for this API operation is the Identity and Access Management - // (IAM) role assigned to on-premises managed nodes. This operation does not return - // the IAM role for EC2 instances. + // Stopped or Terminated. + // + // If you specify one or more node IDs, the operation returns information for + // those managed nodes. If you don't specify node IDs, it returns information for + // all your managed nodes. If you specify a node ID that isn't valid or a node that + // you don't own, you receive an error. + // + // The IamRole field returned for this API operation is the Identity and Access + // Management (IAM) role assigned to on-premises managed nodes. This operation does + // not return the IAM role for EC2 instances. DescribeInstanceInformation(ctx context.Context, params *DescribeInstanceInformationInput, optFns ...func(*Options)) (*DescribeInstanceInformationOutput, error) // Retrieves the high-level patch state of one or more managed nodes. DescribeInstancePatchStates(ctx context.Context, params *DescribeInstancePatchStatesInput, optFns ...func(*Options)) (*DescribeInstancePatchStatesOutput, error) @@ -295,11 +340,12 @@ type SSM interface { DescribeMaintenanceWindowSchedule(ctx context.Context, params *DescribeMaintenanceWindowScheduleInput, optFns ...func(*Options)) (*DescribeMaintenanceWindowScheduleOutput, error) // Lists the targets registered with the maintenance window. DescribeMaintenanceWindowTargets(ctx context.Context, params *DescribeMaintenanceWindowTargetsInput, optFns ...func(*Options)) (*DescribeMaintenanceWindowTargetsOutput, error) - // Lists the tasks in a maintenance window. For maintenance window tasks without a - // specified target, you can't supply values for --max-errors and --max-concurrency - // . Instead, the system inserts a placeholder value of 1 , which may be reported - // in the response to this command. These values don't affect the running of your - // task and can be ignored. + // Lists the tasks in a maintenance window. + // + // For maintenance window tasks without a specified target, you can't supply + // values for --max-errors and --max-concurrency . Instead, the system inserts a + // placeholder value of 1 , which may be reported in the response to this command. + // These values don't affect the running of your task and can be ignored. DescribeMaintenanceWindowTasks(ctx context.Context, params *DescribeMaintenanceWindowTasksInput, optFns ...func(*Options)) (*DescribeMaintenanceWindowTasksOutput, error) // Retrieves the maintenance windows in an Amazon Web Services account. DescribeMaintenanceWindows(ctx context.Context, params *DescribeMaintenanceWindowsInput, optFns ...func(*Options)) (*DescribeMaintenanceWindowsOutput, error) @@ -307,27 +353,34 @@ type SSM interface { // managed node is associated with. DescribeMaintenanceWindowsForTarget(ctx context.Context, params *DescribeMaintenanceWindowsForTargetInput, optFns ...func(*Options)) (*DescribeMaintenanceWindowsForTargetOutput, error) // Query a set of OpsItems. You must have permission in Identity and Access - // Management (IAM) to query a list of OpsItems. For more information, see Set up - // OpsCenter (https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter-setup.html) - // in the Amazon Web Services Systems Manager User Guide. Operations engineers and - // IT professionals use Amazon Web Services Systems Manager OpsCenter to view, - // investigate, and remediate operational issues impacting the performance and - // health of their Amazon Web Services resources. For more information, see Amazon - // Web Services Systems Manager OpsCenter (https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter.html) - // in the Amazon Web Services Systems Manager User Guide. + // Management (IAM) to query a list of OpsItems. For more information, see [Set up OpsCenter]in the + // Amazon Web Services Systems Manager User Guide. + // + // Operations engineers and IT professionals use Amazon Web Services Systems + // Manager OpsCenter to view, investigate, and remediate operational issues + // impacting the performance and health of their Amazon Web Services resources. For + // more information, see [Amazon Web Services Systems Manager OpsCenter]in the Amazon Web Services Systems Manager User Guide. + // + // [Amazon Web Services Systems Manager OpsCenter]: https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter.html + // [Set up OpsCenter]: https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter-setup.html DescribeOpsItems(ctx context.Context, params *DescribeOpsItemsInput, optFns ...func(*Options)) (*DescribeOpsItemsOutput, error) // Lists the parameters in your Amazon Web Services account or the parameters - // shared with you when you enable the Shared (https://docs.aws.amazon.com/systems-manager/latest/APIReference/API_DescribeParameters.html#systemsmanager-DescribeParameters-request-Shared) - // option. Request results are returned on a best-effort basis. If you specify - // MaxResults in the request, the response includes information up to the limit - // specified. The number of items returned, however, can be between zero and the - // value of MaxResults . If the service reaches an internal limit while processing - // the results, it stops the operation and returns the matching values up to that - // point and a NextToken . You can specify the NextToken in a subsequent call to - // get the next set of results. If you change the KMS key alias for the KMS key - // used to encrypt a parameter, then you must also update the key alias the - // parameter uses to reference KMS. Otherwise, DescribeParameters retrieves - // whatever the original key alias was referencing. + // shared with you when you enable the [Shared]option. + // + // Request results are returned on a best-effort basis. If you specify MaxResults + // in the request, the response includes information up to the limit specified. The + // number of items returned, however, can be between zero and the value of + // MaxResults . If the service reaches an internal limit while processing the + // results, it stops the operation and returns the matching values up to that point + // and a NextToken . You can specify the NextToken in a subsequent call to get the + // next set of results. + // + // If you change the KMS key alias for the KMS key used to encrypt a parameter, + // then you must also update the key alias the parameter uses to reference KMS. + // Otherwise, DescribeParameters retrieves whatever the original key alias was + // referencing. + // + // [Shared]: https://docs.aws.amazon.com/systems-manager/latest/APIReference/API_DescribeParameters.html#systemsmanager-DescribeParameters-request-Shared DescribeParameters(ctx context.Context, params *DescribeParametersInput, optFns ...func(*Options)) (*DescribeParametersOutput, error) // Lists the patch baselines in your Amazon Web Services account. DescribePatchBaselines(ctx context.Context, params *DescribePatchBaselinesInput, optFns ...func(*Options)) (*DescribePatchBaselinesOutput, error) @@ -339,17 +392,31 @@ type SSM interface { // Lists the properties of available patches organized by product, product family, // classification, severity, and other properties of available patches. You can use // the reported properties in the filters you specify in requests for operations - // such as CreatePatchBaseline , UpdatePatchBaseline , DescribeAvailablePatches , - // and DescribePatchBaselines . The following section lists the properties that can - // be used in filters for each major operating system type: AMAZON_LINUX Valid - // properties: PRODUCT | CLASSIFICATION | SEVERITY AMAZON_LINUX_2 Valid - // properties: PRODUCT | CLASSIFICATION | SEVERITY CENTOS Valid properties: PRODUCT - // | CLASSIFICATION | SEVERITY DEBIAN Valid properties: PRODUCT | PRIORITY MACOS - // Valid properties: PRODUCT | CLASSIFICATION ORACLE_LINUX Valid properties: - // PRODUCT | CLASSIFICATION | SEVERITY REDHAT_ENTERPRISE_LINUX Valid properties: - // PRODUCT | CLASSIFICATION | SEVERITY SUSE Valid properties: PRODUCT | - // CLASSIFICATION | SEVERITY UBUNTU Valid properties: PRODUCT | PRIORITY WINDOWS - // Valid properties: PRODUCT | PRODUCT_FAMILY | CLASSIFICATION | MSRC_SEVERITY + // such as CreatePatchBaseline, UpdatePatchBaseline, DescribeAvailablePatches, and DescribePatchBaselines. + // + // The following section lists the properties that can be used in filters for each + // major operating system type: + // + // AMAZON_LINUX Valid properties: PRODUCT | CLASSIFICATION | SEVERITY + // + // AMAZON_LINUX_2 Valid properties: PRODUCT | CLASSIFICATION | SEVERITY + // + // CENTOS Valid properties: PRODUCT | CLASSIFICATION | SEVERITY + // + // DEBIAN Valid properties: PRODUCT | PRIORITY + // + // MACOS Valid properties: PRODUCT | CLASSIFICATION + // + // ORACLE_LINUX Valid properties: PRODUCT | CLASSIFICATION | SEVERITY + // + // REDHAT_ENTERPRISE_LINUX Valid properties: PRODUCT | CLASSIFICATION | SEVERITY + // + // SUSE Valid properties: PRODUCT | CLASSIFICATION | SEVERITY + // + // UBUNTU Valid properties: PRODUCT | PRIORITY + // + // WINDOWS Valid properties: PRODUCT | PRODUCT_FAMILY | CLASSIFICATION | + // MSRC_SEVERITY DescribePatchProperties(ctx context.Context, params *DescribePatchPropertiesInput, optFns ...func(*Options)) (*DescribePatchPropertiesOutput, error) // Retrieves a list of all active sessions (both connected and disconnected) or // terminated sessions from the past 30 days. @@ -365,37 +432,45 @@ type SSM interface { // returns the state of the calendar at that specific time, and returns the next // time that the change calendar state will transition. If you don't specify a // time, GetCalendarState uses the current time. Change Calendar entries have two - // possible states: OPEN or CLOSED . If you specify more than one calendar in a - // request, the command returns the status of OPEN only if all calendars in the - // request are open. If one or more calendars in the request are closed, the status - // returned is CLOSED . For more information about Change Calendar, a capability of - // Amazon Web Services Systems Manager, see Amazon Web Services Systems Manager - // Change Calendar (https://docs.aws.amazon.com/systems-manager/latest/userguide/systems-manager-change-calendar.html) - // in the Amazon Web Services Systems Manager User Guide. + // possible states: OPEN or CLOSED . + // + // If you specify more than one calendar in a request, the command returns the + // status of OPEN only if all calendars in the request are open. If one or more + // calendars in the request are closed, the status returned is CLOSED . + // + // For more information about Change Calendar, a capability of Amazon Web Services + // Systems Manager, see [Amazon Web Services Systems Manager Change Calendar]in the Amazon Web Services Systems Manager User Guide. + // + // [Amazon Web Services Systems Manager Change Calendar]: https://docs.aws.amazon.com/systems-manager/latest/userguide/systems-manager-change-calendar.html GetCalendarState(ctx context.Context, params *GetCalendarStateInput, optFns ...func(*Options)) (*GetCalendarStateOutput, error) // Returns detailed information about command execution for an invocation or - // plugin. GetCommandInvocation only gives the execution status of a plugin in a - // document. To get the command execution status on a specific managed node, use - // ListCommandInvocations . To get the command execution status across managed - // nodes, use ListCommands . + // plugin. + // + // GetCommandInvocation only gives the execution status of a plugin in a document. + // To get the command execution status on a specific managed node, use ListCommandInvocations. To get + // the command execution status across managed nodes, use ListCommands. GetCommandInvocation(ctx context.Context, params *GetCommandInvocationInput, optFns ...func(*Options)) (*GetCommandInvocationOutput, error) // Retrieves the Session Manager connection status for a managed node to determine // whether it is running and ready to receive Session Manager connections. GetConnectionStatus(ctx context.Context, params *GetConnectionStatusInput, optFns ...func(*Options)) (*GetConnectionStatusOutput, error) // Retrieves the default patch baseline. Amazon Web Services Systems Manager // supports creating multiple default patch baselines. For example, you can create - // a default patch baseline for each operating system. If you don't specify an - // operating system value, the default patch baseline for Windows is returned. + // a default patch baseline for each operating system. + // + // If you don't specify an operating system value, the default patch baseline for + // Windows is returned. GetDefaultPatchBaseline(ctx context.Context, params *GetDefaultPatchBaselineInput, optFns ...func(*Options)) (*GetDefaultPatchBaselineOutput, error) // Retrieves the current snapshot for the patch baseline the managed node uses. // This API is primarily used by the AWS-RunPatchBaseline Systems Manager document - // (SSM document). If you run the command locally, such as with the Command Line - // Interface (CLI), the system attempts to use your local Amazon Web Services - // credentials and the operation fails. To avoid this, you can run the command in - // the Amazon Web Services Systems Manager console. Use Run Command, a capability - // of Amazon Web Services Systems Manager, with an SSM document that enables you to - // target a managed node with a script or command. For example, run the command - // using the AWS-RunShellScript document or the AWS-RunPowerShellScript document. + // (SSM document). + // + // If you run the command locally, such as with the Command Line Interface (CLI), + // the system attempts to use your local Amazon Web Services credentials and the + // operation fails. To avoid this, you can run the command in the Amazon Web + // Services Systems Manager console. Use Run Command, a capability of Amazon Web + // Services Systems Manager, with an SSM document that enables you to target a + // managed node with a script or command. For example, run the command using the + // AWS-RunShellScript document or the AWS-RunPowerShellScript document. GetDeployablePatchSnapshotForInstance(ctx context.Context, params *GetDeployablePatchSnapshotForInstanceInput, optFns ...func(*Options)) (*GetDeployablePatchSnapshotForInstanceOutput, error) // Gets the contents of the specified Amazon Web Services Systems Manager document // (SSM document). @@ -415,22 +490,26 @@ type SSM interface { GetMaintenanceWindowExecutionTask(ctx context.Context, params *GetMaintenanceWindowExecutionTaskInput, optFns ...func(*Options)) (*GetMaintenanceWindowExecutionTaskOutput, error) // Retrieves information about a specific task running on a specific target. GetMaintenanceWindowExecutionTaskInvocation(ctx context.Context, params *GetMaintenanceWindowExecutionTaskInvocationInput, optFns ...func(*Options)) (*GetMaintenanceWindowExecutionTaskInvocationOutput, error) - // Retrieves the details of a maintenance window task. For maintenance window - // tasks without a specified target, you can't supply values for --max-errors and - // --max-concurrency . Instead, the system inserts a placeholder value of 1 , which - // may be reported in the response to this command. These values don't affect the - // running of your task and can be ignored. To retrieve a list of tasks in a - // maintenance window, instead use the DescribeMaintenanceWindowTasks command. + // Retrieves the details of a maintenance window task. + // + // For maintenance window tasks without a specified target, you can't supply + // values for --max-errors and --max-concurrency . Instead, the system inserts a + // placeholder value of 1 , which may be reported in the response to this command. + // These values don't affect the running of your task and can be ignored. + // + // To retrieve a list of tasks in a maintenance window, instead use the DescribeMaintenanceWindowTasks command. GetMaintenanceWindowTask(ctx context.Context, params *GetMaintenanceWindowTaskInput, optFns ...func(*Options)) (*GetMaintenanceWindowTaskOutput, error) // Get information about an OpsItem by using the ID. You must have permission in // Identity and Access Management (IAM) to view information about an OpsItem. For - // more information, see Set up OpsCenter (https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter-setup.html) - // in the Amazon Web Services Systems Manager User Guide. Operations engineers and - // IT professionals use Amazon Web Services Systems Manager OpsCenter to view, - // investigate, and remediate operational issues impacting the performance and - // health of their Amazon Web Services resources. For more information, see Amazon - // Web Services Systems Manager OpsCenter (https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter.html) - // in the Amazon Web Services Systems Manager User Guide. + // more information, see [Set up OpsCenter]in the Amazon Web Services Systems Manager User Guide. + // + // Operations engineers and IT professionals use Amazon Web Services Systems + // Manager OpsCenter to view, investigate, and remediate operational issues + // impacting the performance and health of their Amazon Web Services resources. For + // more information, see [Amazon Web Services Systems Manager OpsCenter]in the Amazon Web Services Systems Manager User Guide. + // + // [Amazon Web Services Systems Manager OpsCenter]: https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter.html + // [Set up OpsCenter]: https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter-setup.html GetOpsItem(ctx context.Context, params *GetOpsItemInput, optFns ...func(*Options)) (*GetOpsItemOutput, error) // View operational metadata related to an application in Application Manager. GetOpsMetadata(ctx context.Context, params *GetOpsMetadataInput, optFns ...func(*Options)) (*GetOpsMetadataOutput, error) @@ -440,20 +519,24 @@ type SSM interface { // any Amazon Web Services resource or service configured to report OpsData to // Amazon Web Services Systems Manager Explorer. GetOpsSummary(ctx context.Context, params *GetOpsSummaryInput, optFns ...func(*Options)) (*GetOpsSummaryOutput, error) - // Get information about a single parameter by specifying the parameter name. To - // get information about more than one parameter at a time, use the GetParameters - // operation. + // Get information about a single parameter by specifying the parameter name. + // + // To get information about more than one parameter at a time, use the GetParameters operation. GetParameter(ctx context.Context, params *GetParameterInput, optFns ...func(*Options)) (*GetParameterOutput, error) - // Retrieves the history of all changes to a parameter. If you change the KMS key - // alias for the KMS key used to encrypt a parameter, then you must also update the - // key alias the parameter uses to reference KMS. Otherwise, GetParameterHistory - // retrieves whatever the original key alias was referencing. + // Retrieves the history of all changes to a parameter. + // + // If you change the KMS key alias for the KMS key used to encrypt a parameter, + // then you must also update the key alias the parameter uses to reference KMS. + // Otherwise, GetParameterHistory retrieves whatever the original key alias was + // referencing. GetParameterHistory(ctx context.Context, params *GetParameterHistoryInput, optFns ...func(*Options)) (*GetParameterHistoryOutput, error) // Get information about one or more parameters by specifying multiple parameter - // names. To get information about a single parameter, you can use the GetParameter - // operation instead. + // names. + // + // To get information about a single parameter, you can use the GetParameter operation instead. GetParameters(ctx context.Context, params *GetParametersInput, optFns ...func(*Options)) (*GetParametersOutput, error) // Retrieve information about one or more parameters in a specific hierarchy. + // // Request results are returned on a best-effort basis. If you specify MaxResults // in the request, the response includes information up to the limit specified. The // number of items returned, however, can be between zero and the value of @@ -474,32 +557,44 @@ type SSM interface { // account based on feature or service usage, then the Amazon Web Services service // team might create a default setting of false . This means the user can't use // this feature unless they change the setting to true and intentionally opt in - // for a paid feature. Services map a SettingId object to a setting value. Amazon - // Web Services services teams define the default value for a SettingId . You can't - // create a new SettingId , but you can overwrite the default value if you have the - // ssm:UpdateServiceSetting permission for the setting. Use the - // UpdateServiceSetting API operation to change the default setting. Or use the - // ResetServiceSetting to change the value back to the original value defined by - // the Amazon Web Services service team. Query the current service setting for the - // Amazon Web Services account. + // for a paid feature. + // + // Services map a SettingId object to a setting value. Amazon Web Services + // services teams define the default value for a SettingId . You can't create a new + // SettingId , but you can overwrite the default value if you have the + // ssm:UpdateServiceSetting permission for the setting. Use the UpdateServiceSetting API operation to + // change the default setting. Or use the ResetServiceSettingto change the value back to the original + // value defined by the Amazon Web Services service team. + // + // Query the current service setting for the Amazon Web Services account. GetServiceSetting(ctx context.Context, params *GetServiceSettingInput, optFns ...func(*Options)) (*GetServiceSettingOutput, error) // A parameter label is a user-defined alias to help you manage different versions // of a parameter. When you modify a parameter, Amazon Web Services Systems Manager // automatically saves a new version and increments the version number by one. A // label can help you remember the purpose of a parameter when there are multiple - // versions. Parameter labels have the following requirements and restrictions. + // versions. + // + // Parameter labels have the following requirements and restrictions. + // // - A version of a parameter can have a maximum of 10 labels. + // // - You can't attach the same label to different versions of the same // parameter. For example, if version 1 has the label Production, then you can't // attach Production to version 2. + // // - You can move a label from one version of a parameter to another. + // // - You can't create a label when you create a new parameter. You must attach a // label to a specific version of a parameter. + // // - If you no longer want to use a parameter label, then you can either delete // it or move it to a different version of a parameter. + // // - A label can have a maximum of 100 characters. + // // - Labels can contain letters (case sensitive), numbers, periods (.), hyphens // (-), or underscores (_). + // // - Labels can't begin with a number, " aws " or " ssm " (not case sensitive). // If a label fails to meet these requirements, then the label isn't associated // with a parameter and the system displays it in the list of InvalidLabels. @@ -556,16 +651,18 @@ type SSM interface { ListResourceComplianceSummaries(ctx context.Context, params *ListResourceComplianceSummariesInput, optFns ...func(*Options)) (*ListResourceComplianceSummariesOutput, error) // Lists your resource data sync configurations. Includes information about the // last time a sync attempted to start, the last sync status, and the last time a - // sync successfully completed. The number of sync configurations might be too - // large to return using a single call to ListResourceDataSync . You can limit the - // number of sync configurations returned by using the MaxResults parameter. To - // determine whether there are more sync configurations to list, check the value of - // NextToken in the output. If there are more sync configurations to list, you can - // request them by specifying the NextToken returned in the call to the parameter - // of a subsequent call. + // sync successfully completed. + // + // The number of sync configurations might be too large to return using a single + // call to ListResourceDataSync . You can limit the number of sync configurations + // returned by using the MaxResults parameter. To determine whether there are more + // sync configurations to list, check the value of NextToken in the output. If + // there are more sync configurations to list, you can request them by specifying + // the NextToken returned in the call to the parameter of a subsequent call. ListResourceDataSync(ctx context.Context, params *ListResourceDataSyncInput, optFns ...func(*Options)) (*ListResourceDataSyncOutput, error) - // Returns a list of the tags assigned to the specified resource. For information - // about the ID format for each supported resource type, see AddTagsToResource . + // Returns a list of the tags assigned to the specified resource. + // + // For information about the ID format for each supported resource type, see AddTagsToResource. ListTagsForResource(ctx context.Context, params *ListTagsForResourceInput, optFns ...func(*Options)) (*ListTagsForResourceOutput, error) // Shares a Amazon Web Services Systems Manager document (SSM document)publicly or // privately. If you share a document privately, you must specify the Amazon Web @@ -576,24 +673,41 @@ type SSM interface { // resource. This operation lets you register custom compliance details with a // resource. This call overwrites existing compliance information on the resource, // so you must provide a full list of compliance items each time that you send the - // request. ComplianceType can be one of the following: + // request. + // + // ComplianceType can be one of the following: + // // - ExecutionId: The execution ID when the patch, association, or custom // compliance item was applied. + // // - ExecutionType: Specify patch, association, or Custom: string . + // // - ExecutionTime. The time the patch, association, or custom compliance item // was applied to the managed node. + // // - Id: The patch, association, or custom compliance ID. + // // - Title: A title. + // // - Status: The status of the compliance item. For example, approved for // patches, or Failed for associations. + // // - Severity: A patch severity. For example, Critical . + // // - DocumentName: An SSM document name. For example, AWS-RunPatchBaseline . + // // - DocumentVersion: An SSM document version number. For example, 4. + // // - Classification: A patch classification. For example, security updates . + // // - PatchBaselineId: A patch baseline ID. + // // - PatchSeverity: A patch severity. For example, Critical . + // // - PatchState: A patch state. For example, InstancesWithFailedPatches . + // // - PatchGroup: The name of a patch group. + // // - InstalledTime: The time the association, patch, or custom compliance item // was applied to the resource. Specify the time by using the following format: // yyyy-MM-dd'T'HH:mm:ss'Z' @@ -608,35 +722,50 @@ type SSM interface { // you to define the IAM entity (for example, an Amazon Web Services account) that // can manage your Systems Manager resources. The following resources support // Systems Manager resource policies. + // // - OpsItemGroup - The resource policy for OpsItemGroup enables Amazon Web // Services accounts to view and interact with OpsCenter operational work items // (OpsItems). + // // - Parameter - The resource policy is used to share a parameter with other - // accounts using Resource Access Manager (RAM). To share a parameter, it must be - // in the advanced parameter tier. For information about parameter tiers, see - // Managing parameter tiers (https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-advanced-parameters.html) - // . For information about changing an existing standard parameter to an advanced - // parameter, see Changing a standard parameter to an advanced parameter (https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-advanced-parameters.html#parameter-store-advanced-parameters-enabling) - // . To share a SecureString parameter, it must be encrypted with a customer - // managed key, and you must share the key separately through Key Management - // Service. Amazon Web Services managed keys cannot be shared. Parameters encrypted - // with the default Amazon Web Services managed key can be updated to use a - // customer managed key instead. For KMS key definitions, see KMS concepts (https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html) - // in the Key Management Service Developer Guide. While you can share a parameter - // using the Systems Manager PutResourcePolicy operation, we recommend using - // Resource Access Manager (RAM) instead. This is because using PutResourcePolicy - // requires the extra step of promoting the parameter to a standard RAM Resource - // Share using the RAM PromoteResourceShareCreatedFromPolicy (https://docs.aws.amazon.com/ram/latest/APIReference/API_PromoteResourceShareCreatedFromPolicy.html) - // API operation. Otherwise, the parameter won't be returned by the Systems Manager - // DescribeParameters (https://docs.aws.amazon.com/systems-manager/latest/APIReference/API_DescribeParameters.html) - // API operation using the --shared option. For more information, see Sharing a - // parameter (https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-shared-parameters.html#share) - // in the Amazon Web Services Systems Manager User Guide + // accounts using Resource Access Manager (RAM). + // + // To share a parameter, it must be in the advanced parameter tier. For + // + // information about parameter tiers, see [Managing parameter tiers]. For information about changing an + // existing standard parameter to an advanced parameter, see [Changing a standard parameter to an advanced parameter]. + // + // To share a SecureString parameter, it must be encrypted with a customer managed + // + // key, and you must share the key separately through Key Management Service. + // Amazon Web Services managed keys cannot be shared. Parameters encrypted with the + // default Amazon Web Services managed key can be updated to use a customer managed + // key instead. For KMS key definitions, see [KMS concepts]in the Key Management Service + // Developer Guide. + // + // While you can share a parameter using the Systems Manager PutResourcePolicy + // + // operation, we recommend using Resource Access Manager (RAM) instead. This is + // because using PutResourcePolicy requires the extra step of promoting the + // parameter to a standard RAM Resource Share using the RAM [PromoteResourceShareCreatedFromPolicy]API operation. + // Otherwise, the parameter won't be returned by the Systems Manager [DescribeParameters]API + // operation using the --shared option. + // + // For more information, see [Sharing a parameter]in the Amazon Web Services Systems Manager User Guide + // + // [Sharing a parameter]: https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-shared-parameters.html#share + // + // [Managing parameter tiers]: https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-advanced-parameters.html + // [Changing a standard parameter to an advanced parameter]: https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-advanced-parameters.html#parameter-store-advanced-parameters-enabling + // [PromoteResourceShareCreatedFromPolicy]: https://docs.aws.amazon.com/ram/latest/APIReference/API_PromoteResourceShareCreatedFromPolicy.html + // [KMS concepts]: https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html + // [DescribeParameters]: https://docs.aws.amazon.com/systems-manager/latest/APIReference/API_DescribeParameters.html PutResourcePolicy(ctx context.Context, params *PutResourcePolicyInput, optFns ...func(*Options)) (*PutResourcePolicyOutput, error) - // Defines the default patch baseline for the relevant operating system. To reset - // the Amazon Web Services-predefined patch baseline as the default, specify the - // full patch baseline Amazon Resource Name (ARN) as the baseline ID value. For - // example, for CentOS, specify + // Defines the default patch baseline for the relevant operating system. + // + // To reset the Amazon Web Services-predefined patch baseline as the default, + // specify the full patch baseline Amazon Resource Name (ARN) as the baseline ID + // value. For example, for CentOS, specify // arn:aws:ssm:us-east-2:733109147000:patchbaseline/pb-0574b43a65ea646ed instead of // pb-0574b43a65ea646ed . RegisterDefaultPatchBaseline(ctx context.Context, params *RegisterDefaultPatchBaselineInput, optFns ...func(*Options)) (*RegisterDefaultPatchBaselineOutput, error) @@ -654,20 +783,23 @@ type SSM interface { // account based on feature or service usage, then the Amazon Web Services service // team might create a default setting of "false". This means the user can't use // this feature unless they change the setting to "true" and intentionally opt in - // for a paid feature. Services map a SettingId object to a setting value. Amazon - // Web Services services teams define the default value for a SettingId . You can't - // create a new SettingId , but you can overwrite the default value if you have the - // ssm:UpdateServiceSetting permission for the setting. Use the GetServiceSetting - // API operation to view the current value. Use the UpdateServiceSetting API - // operation to change the default setting. Reset the service setting for the - // account to the default value as provisioned by the Amazon Web Services service - // team. + // for a paid feature. + // + // Services map a SettingId object to a setting value. Amazon Web Services + // services teams define the default value for a SettingId . You can't create a new + // SettingId , but you can overwrite the default value if you have the + // ssm:UpdateServiceSetting permission for the setting. Use the GetServiceSetting API operation to + // view the current value. Use the UpdateServiceSettingAPI operation to change the default setting. + // + // Reset the service setting for the account to the default value as provisioned + // by the Amazon Web Services service team. ResetServiceSetting(ctx context.Context, params *ResetServiceSettingInput, optFns ...func(*Options)) (*ResetServiceSettingOutput, error) // Reconnects a session to a managed node after it has been disconnected. // Connections can be resumed for disconnected sessions, but not terminated - // sessions. This command is primarily for use by client machines to automatically - // reconnect during intermittent network issues. It isn't intended for any other - // use. + // sessions. + // + // This command is primarily for use by client machines to automatically reconnect + // during intermittent network issues. It isn't intended for any other use. ResumeSession(ctx context.Context, params *ResumeSessionInput, optFns ...func(*Options)) (*ResumeSessionOutput, error) // Sends a signal to an Automation execution to change the current behavior or // status of the execution. @@ -685,14 +817,18 @@ type SSM interface { StartChangeRequestExecution(ctx context.Context, params *StartChangeRequestExecutionInput, optFns ...func(*Options)) (*StartChangeRequestExecutionOutput, error) // Initiates a connection to a target (for example, a managed node) for a Session // Manager session. Returns a URL and token that can be used to open a WebSocket - // connection for sending input and receiving outputs. Amazon Web Services CLI - // usage: start-session is an interactive command that requires the Session - // Manager plugin to be installed on the client machine making the call. For - // information, see Install the Session Manager plugin for the Amazon Web Services - // CLI (https://docs.aws.amazon.com/systems-manager/latest/userguide/session-manager-working-with-install-plugin.html) - // in the Amazon Web Services Systems Manager User Guide. Amazon Web Services Tools - // for PowerShell usage: Start-SSMSession isn't currently supported by Amazon Web - // Services Tools for PowerShell on Windows local machines. + // connection for sending input and receiving outputs. + // + // Amazon Web Services CLI usage: start-session is an interactive command that + // requires the Session Manager plugin to be installed on the client machine making + // the call. For information, see [Install the Session Manager plugin for the Amazon Web Services CLI]in the Amazon Web Services Systems Manager User + // Guide. + // + // Amazon Web Services Tools for PowerShell usage: Start-SSMSession isn't + // currently supported by Amazon Web Services Tools for PowerShell on Windows local + // machines. + // + // [Install the Session Manager plugin for the Amazon Web Services CLI]: https://docs.aws.amazon.com/systems-manager/latest/userguide/session-manager-working-with-install-plugin.html StartSession(ctx context.Context, params *StartSessionInput, optFns ...func(*Options)) (*StartSessionOutput, error) // Stop an Automation that is currently running. StopAutomationExecution(ctx context.Context, params *StopAutomationExecutionInput, optFns ...func(*Options)) (*StopAutomationExecutionOutput, error) @@ -709,33 +845,39 @@ type SSM interface { // values for those parameters. This is by design. You must specify all optional // parameters in the call, even if you are not changing the parameters. This // includes the Name parameter. Before calling this API action, we recommend that - // you call the DescribeAssociation API operation and make a note of all optional - // parameters required for your UpdateAssociation call. In order to call this API - // operation, a user, group, or role must be granted permission to call the - // DescribeAssociation API operation. If you don't have permission to call + // you call the DescribeAssociationAPI operation and make a note of all optional parameters required + // for your UpdateAssociation call. + // + // In order to call this API operation, a user, group, or role must be granted + // permission to call the DescribeAssociationAPI operation. If you don't have permission to call // DescribeAssociation , then you receive the following error: An error occurred // (AccessDeniedException) when calling the UpdateAssociation operation: User: - // isn't authorized to perform: ssm:DescribeAssociation on resource: When you - // update an association, the association immediately runs against the specified - // targets. You can add the ApplyOnlyAtCronInterval parameter to run the + // isn't authorized to perform: ssm:DescribeAssociation on resource: + // + // When you update an association, the association immediately runs against the + // specified targets. You can add the ApplyOnlyAtCronInterval parameter to run the // association during the next schedule run. UpdateAssociation(ctx context.Context, params *UpdateAssociationInput, optFns ...func(*Options)) (*UpdateAssociationOutput, error) // Updates the status of the Amazon Web Services Systems Manager document (SSM - // document) associated with the specified managed node. UpdateAssociationStatus - // is primarily used by the Amazon Web Services Systems Manager Agent (SSM Agent) - // to report status updates about your associations and is only used for - // associations created with the InstanceId legacy parameter. + // document) associated with the specified managed node. + // + // UpdateAssociationStatus is primarily used by the Amazon Web Services Systems + // Manager Agent (SSM Agent) to report status updates about your associations and + // is only used for associations created with the InstanceId legacy parameter. UpdateAssociationStatus(ctx context.Context, params *UpdateAssociationStatusInput, optFns ...func(*Options)) (*UpdateAssociationStatusOutput, error) // Updates one or more values for an SSM document. UpdateDocument(ctx context.Context, params *UpdateDocumentInput, optFns ...func(*Options)) (*UpdateDocumentOutput, error) - // Set the default version of a document. If you change a document version for a - // State Manager association, Systems Manager immediately runs the association - // unless you previously specifed the apply-only-at-cron-interval parameter. + // Set the default version of a document. + // + // If you change a document version for a State Manager association, Systems + // Manager immediately runs the association unless you previously specifed the + // apply-only-at-cron-interval parameter. UpdateDocumentDefaultVersion(ctx context.Context, params *UpdateDocumentDefaultVersionInput, optFns ...func(*Options)) (*UpdateDocumentDefaultVersionOutput, error) // Updates information related to approval reviews for a specific version of a // change template in Change Manager. UpdateDocumentMetadata(ctx context.Context, params *UpdateDocumentMetadataInput, optFns ...func(*Options)) (*UpdateDocumentMetadataOutput, error) // Updates an existing maintenance window. Only specified parameters are modified. + // // The value you specify for Duration determines the specific end time for the // maintenance window based on the time it begins. No maintenance window tasks are // permitted to start after the resulting endtime minus the number of hours you @@ -745,74 +887,94 @@ type SSM interface { UpdateMaintenanceWindow(ctx context.Context, params *UpdateMaintenanceWindowInput, optFns ...func(*Options)) (*UpdateMaintenanceWindowOutput, error) // Modifies the target of an existing maintenance window. You can change the // following: + // // - Name + // // - Description + // // - Owner + // // - IDs for an ID target + // // - Tags for a Tag target + // // - From any supported tag type to another. The three supported tag types are - // ID target, Tag target, and resource group. For more information, see Target . + // ID target, Tag target, and resource group. For more information, see Target. // // If a parameter is null, then the corresponding field isn't modified. UpdateMaintenanceWindowTarget(ctx context.Context, params *UpdateMaintenanceWindowTargetInput, optFns ...func(*Options)) (*UpdateMaintenanceWindowTargetOutput, error) // Modifies a task assigned to a maintenance window. You can't change the task // type, but you can change the following values: + // // - TaskARN . For example, you can change a RUN_COMMAND task from // AWS-RunPowerShellScript to AWS-RunShellScript . + // // - ServiceRoleArn + // // - TaskInvocationParameters + // // - Priority + // // - MaxConcurrency + // // - MaxErrors // // One or more targets must be specified for maintenance window Run Command-type // tasks. Depending on the task, targets are optional for other maintenance window // task types (Automation, Lambda, and Step Functions). For more information about - // running tasks that don't specify targets, see Registering maintenance window - // tasks without targets (https://docs.aws.amazon.com/systems-manager/latest/userguide/maintenance-windows-targetless-tasks.html) - // in the Amazon Web Services Systems Manager User Guide. If the value for a - // parameter in UpdateMaintenanceWindowTask is null, then the corresponding field - // isn't modified. If you set Replace to true, then all fields required by the - // RegisterTaskWithMaintenanceWindow operation are required for this request. - // Optional fields that aren't specified are set to null. When you update a - // maintenance window task that has options specified in TaskInvocationParameters , - // you must provide again all the TaskInvocationParameters values that you want to - // retain. The values you don't specify again are removed. For example, suppose - // that when you registered a Run Command task, you specified - // TaskInvocationParameters values for Comment , NotificationConfig , and - // OutputS3BucketName . If you update the maintenance window task and specify only - // a different OutputS3BucketName value, the values for Comment and - // NotificationConfig are removed. + // running tasks that don't specify targets, see [Registering maintenance window tasks without targets]in the Amazon Web Services + // Systems Manager User Guide. + // + // If the value for a parameter in UpdateMaintenanceWindowTask is null, then the + // corresponding field isn't modified. If you set Replace to true, then all fields + // required by the RegisterTaskWithMaintenanceWindowoperation are required for this request. Optional fields that + // aren't specified are set to null. + // + // When you update a maintenance window task that has options specified in + // TaskInvocationParameters , you must provide again all the + // TaskInvocationParameters values that you want to retain. The values you don't + // specify again are removed. For example, suppose that when you registered a Run + // Command task, you specified TaskInvocationParameters values for Comment , + // NotificationConfig , and OutputS3BucketName . If you update the maintenance + // window task and specify only a different OutputS3BucketName value, the values + // for Comment and NotificationConfig are removed. + // + // [Registering maintenance window tasks without targets]: https://docs.aws.amazon.com/systems-manager/latest/userguide/maintenance-windows-targetless-tasks.html UpdateMaintenanceWindowTask(ctx context.Context, params *UpdateMaintenanceWindowTaskInput, optFns ...func(*Options)) (*UpdateMaintenanceWindowTaskOutput, error) // Changes the Identity and Access Management (IAM) role that is assigned to the // on-premises server, edge device, or virtual machines (VM). IAM roles are first // assigned to these hybrid nodes during the activation process. For more - // information, see CreateActivation . + // information, see CreateActivation. UpdateManagedInstanceRole(ctx context.Context, params *UpdateManagedInstanceRoleInput, optFns ...func(*Options)) (*UpdateManagedInstanceRoleOutput, error) // Edit or change an OpsItem. You must have permission in Identity and Access - // Management (IAM) to update an OpsItem. For more information, see Set up - // OpsCenter (https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter-setup.html) - // in the Amazon Web Services Systems Manager User Guide. Operations engineers and - // IT professionals use Amazon Web Services Systems Manager OpsCenter to view, - // investigate, and remediate operational issues impacting the performance and - // health of their Amazon Web Services resources. For more information, see Amazon - // Web Services Systems Manager OpsCenter (https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter.html) - // in the Amazon Web Services Systems Manager User Guide. + // Management (IAM) to update an OpsItem. For more information, see [Set up OpsCenter]in the Amazon + // Web Services Systems Manager User Guide. + // + // Operations engineers and IT professionals use Amazon Web Services Systems + // Manager OpsCenter to view, investigate, and remediate operational issues + // impacting the performance and health of their Amazon Web Services resources. For + // more information, see [Amazon Web Services Systems Manager OpsCenter]in the Amazon Web Services Systems Manager User Guide. + // + // [Amazon Web Services Systems Manager OpsCenter]: https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter.html + // [Set up OpsCenter]: https://docs.aws.amazon.com/systems-manager/latest/userguide/OpsCenter-setup.html UpdateOpsItem(ctx context.Context, params *UpdateOpsItemInput, optFns ...func(*Options)) (*UpdateOpsItemOutput, error) // Amazon Web Services Systems Manager calls this API operation when you edit // OpsMetadata in Application Manager. UpdateOpsMetadata(ctx context.Context, params *UpdateOpsMetadataInput, optFns ...func(*Options)) (*UpdateOpsMetadataOutput, error) // Modifies an existing patch baseline. Fields not specified in the request are - // left unchanged. For information about valid key-value pairs in PatchFilters for - // each supported operating system type, see PatchFilter . + // left unchanged. + // + // For information about valid key-value pairs in PatchFilters for each supported + // operating system type, see PatchFilter. UpdatePatchBaseline(ctx context.Context, params *UpdatePatchBaselineInput, optFns ...func(*Options)) (*UpdatePatchBaselineOutput, error) // Update a resource data sync. After you create a resource data sync for a // Region, you can't change the account options for that sync. For example, if you // create a sync in the us-east-2 (Ohio) Region and you choose the Include only // the current account option, you can't edit that sync later and choose the // Include all accounts from my Organizations configuration option. Instead, you - // must delete the first resource data sync, and create a new one. This API - // operation only supports a resource data sync that was created with a + // must delete the first resource data sync, and create a new one. + // + // This API operation only supports a resource data sync that was created with a // SyncFromSource SyncType . UpdateResourceDataSync(ctx context.Context, params *UpdateResourceDataSyncInput, optFns ...func(*Options)) (*UpdateResourceDataSyncOutput, error) // ServiceSetting is an account-level setting for an Amazon Web Services service. @@ -821,13 +983,16 @@ type SSM interface { // account based on feature or service usage, then the Amazon Web Services service // team might create a default setting of "false". This means the user can't use // this feature unless they change the setting to "true" and intentionally opt in - // for a paid feature. Services map a SettingId object to a setting value. Amazon - // Web Services services teams define the default value for a SettingId . You can't - // create a new SettingId , but you can overwrite the default value if you have the - // ssm:UpdateServiceSetting permission for the setting. Use the GetServiceSetting - // API operation to view the current value. Or, use the ResetServiceSetting to - // change the value back to the original value defined by the Amazon Web Services - // service team. Update the service setting for the account. + // for a paid feature. + // + // Services map a SettingId object to a setting value. Amazon Web Services + // services teams define the default value for a SettingId . You can't create a new + // SettingId , but you can overwrite the default value if you have the + // ssm:UpdateServiceSetting permission for the setting. Use the GetServiceSetting API operation to + // view the current value. Or, use the ResetServiceSettingto change the value back to the original + // value defined by the Amazon Web Services service team. + // + // Update the service setting for the account. UpdateServiceSetting(ctx context.Context, params *UpdateServiceSettingInput, optFns ...func(*Options)) (*UpdateServiceSettingOutput, error) } diff --git a/pkg/cfn/manager/create_tasks.go b/pkg/cfn/manager/create_tasks.go index efeaec7a73..db2d6bd396 100644 --- a/pkg/cfn/manager/create_tasks.go +++ b/pkg/cfn/manager/create_tasks.go @@ -4,8 +4,6 @@ import ( "context" "fmt" - "github.com/pkg/errors" - "github.com/kris-nova/logger" v1 "k8s.io/apimachinery/pkg/apis/meta/v1" diff --git a/pkg/cfn/manager/fakes/fake_nodegroup_resource_set.go b/pkg/cfn/manager/fakes/fake_nodegroup_resource_set.go new file mode 100644 index 0000000000..5a10b8f7e9 --- /dev/null +++ b/pkg/cfn/manager/fakes/fake_nodegroup_resource_set.go @@ -0,0 +1,387 @@ +// Code generated by counterfeiter. DO NOT EDIT. +package fakes + +import ( + "context" + "sync" + + "github.com/aws/aws-sdk-go-v2/service/cloudformation/types" + "github.com/weaveworks/eksctl/pkg/cfn/manager" +) + +type FakeNodeGroupResourceSet struct { + AddAllResourcesStub func(context.Context) error + addAllResourcesMutex sync.RWMutex + addAllResourcesArgsForCall []struct { + arg1 context.Context + } + addAllResourcesReturns struct { + result1 error + } + addAllResourcesReturnsOnCall map[int]struct { + result1 error + } + GetAllOutputsStub func(types.Stack) error + getAllOutputsMutex sync.RWMutex + getAllOutputsArgsForCall []struct { + arg1 types.Stack + } + getAllOutputsReturns struct { + result1 error + } + getAllOutputsReturnsOnCall map[int]struct { + result1 error + } + RenderJSONStub func() ([]byte, error) + renderJSONMutex sync.RWMutex + renderJSONArgsForCall []struct { + } + renderJSONReturns struct { + result1 []byte + result2 error + } + renderJSONReturnsOnCall map[int]struct { + result1 []byte + result2 error + } + WithIAMStub func() bool + withIAMMutex sync.RWMutex + withIAMArgsForCall []struct { + } + withIAMReturns struct { + result1 bool + } + withIAMReturnsOnCall map[int]struct { + result1 bool + } + WithNamedIAMStub func() bool + withNamedIAMMutex sync.RWMutex + withNamedIAMArgsForCall []struct { + } + withNamedIAMReturns struct { + result1 bool + } + withNamedIAMReturnsOnCall map[int]struct { + result1 bool + } + invocations map[string][][]interface{} + invocationsMutex sync.RWMutex +} + +func (fake *FakeNodeGroupResourceSet) AddAllResources(arg1 context.Context) error { + fake.addAllResourcesMutex.Lock() + ret, specificReturn := fake.addAllResourcesReturnsOnCall[len(fake.addAllResourcesArgsForCall)] + fake.addAllResourcesArgsForCall = append(fake.addAllResourcesArgsForCall, struct { + arg1 context.Context + }{arg1}) + stub := fake.AddAllResourcesStub + fakeReturns := fake.addAllResourcesReturns + fake.recordInvocation("AddAllResources", []interface{}{arg1}) + fake.addAllResourcesMutex.Unlock() + if stub != nil { + return stub(arg1) + } + if specificReturn { + return ret.result1 + } + return fakeReturns.result1 +} + +func (fake *FakeNodeGroupResourceSet) AddAllResourcesCallCount() int { + fake.addAllResourcesMutex.RLock() + defer fake.addAllResourcesMutex.RUnlock() + return len(fake.addAllResourcesArgsForCall) +} + +func (fake *FakeNodeGroupResourceSet) AddAllResourcesCalls(stub func(context.Context) error) { + fake.addAllResourcesMutex.Lock() + defer fake.addAllResourcesMutex.Unlock() + fake.AddAllResourcesStub = stub +} + +func (fake *FakeNodeGroupResourceSet) AddAllResourcesArgsForCall(i int) context.Context { + fake.addAllResourcesMutex.RLock() + defer fake.addAllResourcesMutex.RUnlock() + argsForCall := fake.addAllResourcesArgsForCall[i] + return argsForCall.arg1 +} + +func (fake *FakeNodeGroupResourceSet) AddAllResourcesReturns(result1 error) { + fake.addAllResourcesMutex.Lock() + defer fake.addAllResourcesMutex.Unlock() + fake.AddAllResourcesStub = nil + fake.addAllResourcesReturns = struct { + result1 error + }{result1} +} + +func (fake *FakeNodeGroupResourceSet) AddAllResourcesReturnsOnCall(i int, result1 error) { + fake.addAllResourcesMutex.Lock() + defer fake.addAllResourcesMutex.Unlock() + fake.AddAllResourcesStub = nil + if fake.addAllResourcesReturnsOnCall == nil { + fake.addAllResourcesReturnsOnCall = make(map[int]struct { + result1 error + }) + } + fake.addAllResourcesReturnsOnCall[i] = struct { + result1 error + }{result1} +} + +func (fake *FakeNodeGroupResourceSet) GetAllOutputs(arg1 types.Stack) error { + fake.getAllOutputsMutex.Lock() + ret, specificReturn := fake.getAllOutputsReturnsOnCall[len(fake.getAllOutputsArgsForCall)] + fake.getAllOutputsArgsForCall = append(fake.getAllOutputsArgsForCall, struct { + arg1 types.Stack + }{arg1}) + stub := fake.GetAllOutputsStub + fakeReturns := fake.getAllOutputsReturns + fake.recordInvocation("GetAllOutputs", []interface{}{arg1}) + fake.getAllOutputsMutex.Unlock() + if stub != nil { + return stub(arg1) + } + if specificReturn { + return ret.result1 + } + return fakeReturns.result1 +} + +func (fake *FakeNodeGroupResourceSet) GetAllOutputsCallCount() int { + fake.getAllOutputsMutex.RLock() + defer fake.getAllOutputsMutex.RUnlock() + return len(fake.getAllOutputsArgsForCall) +} + +func (fake *FakeNodeGroupResourceSet) GetAllOutputsCalls(stub func(types.Stack) error) { + fake.getAllOutputsMutex.Lock() + defer fake.getAllOutputsMutex.Unlock() + fake.GetAllOutputsStub = stub +} + +func (fake *FakeNodeGroupResourceSet) GetAllOutputsArgsForCall(i int) types.Stack { + fake.getAllOutputsMutex.RLock() + defer fake.getAllOutputsMutex.RUnlock() + argsForCall := fake.getAllOutputsArgsForCall[i] + return argsForCall.arg1 +} + +func (fake *FakeNodeGroupResourceSet) GetAllOutputsReturns(result1 error) { + fake.getAllOutputsMutex.Lock() + defer fake.getAllOutputsMutex.Unlock() + fake.GetAllOutputsStub = nil + fake.getAllOutputsReturns = struct { + result1 error + }{result1} +} + +func (fake *FakeNodeGroupResourceSet) GetAllOutputsReturnsOnCall(i int, result1 error) { + fake.getAllOutputsMutex.Lock() + defer fake.getAllOutputsMutex.Unlock() + fake.GetAllOutputsStub = nil + if fake.getAllOutputsReturnsOnCall == nil { + fake.getAllOutputsReturnsOnCall = make(map[int]struct { + result1 error + }) + } + fake.getAllOutputsReturnsOnCall[i] = struct { + result1 error + }{result1} +} + +func (fake *FakeNodeGroupResourceSet) RenderJSON() ([]byte, error) { + fake.renderJSONMutex.Lock() + ret, specificReturn := fake.renderJSONReturnsOnCall[len(fake.renderJSONArgsForCall)] + fake.renderJSONArgsForCall = append(fake.renderJSONArgsForCall, struct { + }{}) + stub := fake.RenderJSONStub + fakeReturns := fake.renderJSONReturns + fake.recordInvocation("RenderJSON", []interface{}{}) + fake.renderJSONMutex.Unlock() + if stub != nil { + return stub() + } + if specificReturn { + return ret.result1, ret.result2 + } + return fakeReturns.result1, fakeReturns.result2 +} + +func (fake *FakeNodeGroupResourceSet) RenderJSONCallCount() int { + fake.renderJSONMutex.RLock() + defer fake.renderJSONMutex.RUnlock() + return len(fake.renderJSONArgsForCall) +} + +func (fake *FakeNodeGroupResourceSet) RenderJSONCalls(stub func() ([]byte, error)) { + fake.renderJSONMutex.Lock() + defer fake.renderJSONMutex.Unlock() + fake.RenderJSONStub = stub +} + +func (fake *FakeNodeGroupResourceSet) RenderJSONReturns(result1 []byte, result2 error) { + fake.renderJSONMutex.Lock() + defer fake.renderJSONMutex.Unlock() + fake.RenderJSONStub = nil + fake.renderJSONReturns = struct { + result1 []byte + result2 error + }{result1, result2} +} + +func (fake *FakeNodeGroupResourceSet) RenderJSONReturnsOnCall(i int, result1 []byte, result2 error) { + fake.renderJSONMutex.Lock() + defer fake.renderJSONMutex.Unlock() + fake.RenderJSONStub = nil + if fake.renderJSONReturnsOnCall == nil { + fake.renderJSONReturnsOnCall = make(map[int]struct { + result1 []byte + result2 error + }) + } + fake.renderJSONReturnsOnCall[i] = struct { + result1 []byte + result2 error + }{result1, result2} +} + +func (fake *FakeNodeGroupResourceSet) WithIAM() bool { + fake.withIAMMutex.Lock() + ret, specificReturn := fake.withIAMReturnsOnCall[len(fake.withIAMArgsForCall)] + fake.withIAMArgsForCall = append(fake.withIAMArgsForCall, struct { + }{}) + stub := fake.WithIAMStub + fakeReturns := fake.withIAMReturns + fake.recordInvocation("WithIAM", []interface{}{}) + fake.withIAMMutex.Unlock() + if stub != nil { + return stub() + } + if specificReturn { + return ret.result1 + } + return fakeReturns.result1 +} + +func (fake *FakeNodeGroupResourceSet) WithIAMCallCount() int { + fake.withIAMMutex.RLock() + defer fake.withIAMMutex.RUnlock() + return len(fake.withIAMArgsForCall) +} + +func (fake *FakeNodeGroupResourceSet) WithIAMCalls(stub func() bool) { + fake.withIAMMutex.Lock() + defer fake.withIAMMutex.Unlock() + fake.WithIAMStub = stub +} + +func (fake *FakeNodeGroupResourceSet) WithIAMReturns(result1 bool) { + fake.withIAMMutex.Lock() + defer fake.withIAMMutex.Unlock() + fake.WithIAMStub = nil + fake.withIAMReturns = struct { + result1 bool + }{result1} +} + +func (fake *FakeNodeGroupResourceSet) WithIAMReturnsOnCall(i int, result1 bool) { + fake.withIAMMutex.Lock() + defer fake.withIAMMutex.Unlock() + fake.WithIAMStub = nil + if fake.withIAMReturnsOnCall == nil { + fake.withIAMReturnsOnCall = make(map[int]struct { + result1 bool + }) + } + fake.withIAMReturnsOnCall[i] = struct { + result1 bool + }{result1} +} + +func (fake *FakeNodeGroupResourceSet) WithNamedIAM() bool { + fake.withNamedIAMMutex.Lock() + ret, specificReturn := fake.withNamedIAMReturnsOnCall[len(fake.withNamedIAMArgsForCall)] + fake.withNamedIAMArgsForCall = append(fake.withNamedIAMArgsForCall, struct { + }{}) + stub := fake.WithNamedIAMStub + fakeReturns := fake.withNamedIAMReturns + fake.recordInvocation("WithNamedIAM", []interface{}{}) + fake.withNamedIAMMutex.Unlock() + if stub != nil { + return stub() + } + if specificReturn { + return ret.result1 + } + return fakeReturns.result1 +} + +func (fake *FakeNodeGroupResourceSet) WithNamedIAMCallCount() int { + fake.withNamedIAMMutex.RLock() + defer fake.withNamedIAMMutex.RUnlock() + return len(fake.withNamedIAMArgsForCall) +} + +func (fake *FakeNodeGroupResourceSet) WithNamedIAMCalls(stub func() bool) { + fake.withNamedIAMMutex.Lock() + defer fake.withNamedIAMMutex.Unlock() + fake.WithNamedIAMStub = stub +} + +func (fake *FakeNodeGroupResourceSet) WithNamedIAMReturns(result1 bool) { + fake.withNamedIAMMutex.Lock() + defer fake.withNamedIAMMutex.Unlock() + fake.WithNamedIAMStub = nil + fake.withNamedIAMReturns = struct { + result1 bool + }{result1} +} + +func (fake *FakeNodeGroupResourceSet) WithNamedIAMReturnsOnCall(i int, result1 bool) { + fake.withNamedIAMMutex.Lock() + defer fake.withNamedIAMMutex.Unlock() + fake.WithNamedIAMStub = nil + if fake.withNamedIAMReturnsOnCall == nil { + fake.withNamedIAMReturnsOnCall = make(map[int]struct { + result1 bool + }) + } + fake.withNamedIAMReturnsOnCall[i] = struct { + result1 bool + }{result1} +} + +func (fake *FakeNodeGroupResourceSet) Invocations() map[string][][]interface{} { + fake.invocationsMutex.RLock() + defer fake.invocationsMutex.RUnlock() + fake.addAllResourcesMutex.RLock() + defer fake.addAllResourcesMutex.RUnlock() + fake.getAllOutputsMutex.RLock() + defer fake.getAllOutputsMutex.RUnlock() + fake.renderJSONMutex.RLock() + defer fake.renderJSONMutex.RUnlock() + fake.withIAMMutex.RLock() + defer fake.withIAMMutex.RUnlock() + fake.withNamedIAMMutex.RLock() + defer fake.withNamedIAMMutex.RUnlock() + copiedInvocations := map[string][][]interface{}{} + for key, value := range fake.invocations { + copiedInvocations[key] = value + } + return copiedInvocations +} + +func (fake *FakeNodeGroupResourceSet) recordInvocation(key string, args []interface{}) { + fake.invocationsMutex.Lock() + defer fake.invocationsMutex.Unlock() + if fake.invocations == nil { + fake.invocations = map[string][][]interface{}{} + } + if fake.invocations[key] == nil { + fake.invocations[key] = [][]interface{}{} + } + fake.invocations[key] = append(fake.invocations[key], args) +} + +var _ manager.NodeGroupResourceSet = new(FakeNodeGroupResourceSet) diff --git a/pkg/cfn/manager/mocks/NodeGroupResourceSet.go b/pkg/cfn/manager/mocks/NodeGroupResourceSet.go index 0503b83664..ed7cc9b392 100644 --- a/pkg/cfn/manager/mocks/NodeGroupResourceSet.go +++ b/pkg/cfn/manager/mocks/NodeGroupResourceSet.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocks diff --git a/pkg/cfn/manager/mocks/NodeGroupStackManager.go b/pkg/cfn/manager/mocks/NodeGroupStackManager.go index f39bdf0837..fc47bb121f 100644 --- a/pkg/cfn/manager/mocks/NodeGroupStackManager.go +++ b/pkg/cfn/manager/mocks/NodeGroupStackManager.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocks diff --git a/pkg/ctl/utils/mocks/VPCConfigUpdater.go b/pkg/ctl/utils/mocks/VPCConfigUpdater.go index 6c3d0aa326..ea459c681e 100644 --- a/pkg/ctl/utils/mocks/VPCConfigUpdater.go +++ b/pkg/ctl/utils/mocks/VPCConfigUpdater.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocks diff --git a/pkg/eks/mocks/ConfigProvider.go b/pkg/eks/mocks/ConfigProvider.go index ea4d551cd2..91b4ce9fee 100644 --- a/pkg/eks/mocks/ConfigProvider.go +++ b/pkg/eks/mocks/ConfigProvider.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocks diff --git a/pkg/eks/mocks/KubeNodeGroup.go b/pkg/eks/mocks/KubeNodeGroup.go index f7238b0460..b014876fc8 100644 --- a/pkg/eks/mocks/KubeNodeGroup.go +++ b/pkg/eks/mocks/KubeNodeGroup.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocks diff --git a/pkg/eks/mocksv2/ASG.go b/pkg/eks/mocksv2/ASG.go index 40cc4d62a0..5da7a3093a 100644 --- a/pkg/eks/mocksv2/ASG.go +++ b/pkg/eks/mocksv2/ASG.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocksv2 diff --git a/pkg/eks/mocksv2/CloudFormation.go b/pkg/eks/mocksv2/CloudFormation.go index 869749a092..be3d57edc8 100644 --- a/pkg/eks/mocksv2/CloudFormation.go +++ b/pkg/eks/mocksv2/CloudFormation.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocksv2 diff --git a/pkg/eks/mocksv2/CloudTrail.go b/pkg/eks/mocksv2/CloudTrail.go index 764ab8464b..9103fca9dd 100644 --- a/pkg/eks/mocksv2/CloudTrail.go +++ b/pkg/eks/mocksv2/CloudTrail.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocksv2 diff --git a/pkg/eks/mocksv2/CloudWatchLogs.go b/pkg/eks/mocksv2/CloudWatchLogs.go index 1bea3a8f9e..7796b9d3d2 100644 --- a/pkg/eks/mocksv2/CloudWatchLogs.go +++ b/pkg/eks/mocksv2/CloudWatchLogs.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocksv2 diff --git a/pkg/eks/mocksv2/CredentialsProvider.go b/pkg/eks/mocksv2/CredentialsProvider.go index 72459a468f..beaf908f0b 100644 --- a/pkg/eks/mocksv2/CredentialsProvider.go +++ b/pkg/eks/mocksv2/CredentialsProvider.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocksv2 diff --git a/pkg/eks/mocksv2/EC2.go b/pkg/eks/mocksv2/EC2.go index 4df7bcf520..025cc1f8a4 100644 --- a/pkg/eks/mocksv2/EC2.go +++ b/pkg/eks/mocksv2/EC2.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocksv2 diff --git a/pkg/eks/mocksv2/EKS.go b/pkg/eks/mocksv2/EKS.go index 0c36093392..f9363ec740 100644 --- a/pkg/eks/mocksv2/EKS.go +++ b/pkg/eks/mocksv2/EKS.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocksv2 diff --git a/pkg/eks/mocksv2/ELB.go b/pkg/eks/mocksv2/ELB.go index d37bbf0151..70e66f1c4a 100644 --- a/pkg/eks/mocksv2/ELB.go +++ b/pkg/eks/mocksv2/ELB.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocksv2 diff --git a/pkg/eks/mocksv2/ELBV2.go b/pkg/eks/mocksv2/ELBV2.go index 41db6bf8d2..b8371ead97 100644 --- a/pkg/eks/mocksv2/ELBV2.go +++ b/pkg/eks/mocksv2/ELBV2.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocksv2 @@ -421,6 +421,43 @@ func (_m *ELBV2) DeleteRule(ctx context.Context, params *elasticloadbalancingv2. return r0, r1 } +// DeleteSharedTrustStoreAssociation provides a mock function with given fields: ctx, params, optFns +func (_m *ELBV2) DeleteSharedTrustStoreAssociation(ctx context.Context, params *elasticloadbalancingv2.DeleteSharedTrustStoreAssociationInput, optFns ...func(*elasticloadbalancingv2.Options)) (*elasticloadbalancingv2.DeleteSharedTrustStoreAssociationOutput, error) { + _va := make([]interface{}, len(optFns)) + for _i := range optFns { + _va[_i] = optFns[_i] + } + var _ca []interface{} + _ca = append(_ca, ctx, params) + _ca = append(_ca, _va...) + ret := _m.Called(_ca...) + + if len(ret) == 0 { + panic("no return value specified for DeleteSharedTrustStoreAssociation") + } + + var r0 *elasticloadbalancingv2.DeleteSharedTrustStoreAssociationOutput + var r1 error + if rf, ok := ret.Get(0).(func(context.Context, *elasticloadbalancingv2.DeleteSharedTrustStoreAssociationInput, ...func(*elasticloadbalancingv2.Options)) (*elasticloadbalancingv2.DeleteSharedTrustStoreAssociationOutput, error)); ok { + return rf(ctx, params, optFns...) + } + if rf, ok := ret.Get(0).(func(context.Context, *elasticloadbalancingv2.DeleteSharedTrustStoreAssociationInput, ...func(*elasticloadbalancingv2.Options)) *elasticloadbalancingv2.DeleteSharedTrustStoreAssociationOutput); ok { + r0 = rf(ctx, params, optFns...) + } else { + if ret.Get(0) != nil { + r0 = ret.Get(0).(*elasticloadbalancingv2.DeleteSharedTrustStoreAssociationOutput) + } + } + + if rf, ok := ret.Get(1).(func(context.Context, *elasticloadbalancingv2.DeleteSharedTrustStoreAssociationInput, ...func(*elasticloadbalancingv2.Options)) error); ok { + r1 = rf(ctx, params, optFns...) + } else { + r1 = ret.Error(1) + } + + return r0, r1 +} + // DeleteTargetGroup provides a mock function with given fields: ctx, params, optFns func (_m *ELBV2) DeleteTargetGroup(ctx context.Context, params *elasticloadbalancingv2.DeleteTargetGroupInput, optFns ...func(*elasticloadbalancingv2.Options)) (*elasticloadbalancingv2.DeleteTargetGroupOutput, error) { _va := make([]interface{}, len(optFns)) @@ -1050,6 +1087,43 @@ func (_m *ELBV2) DescribeTrustStores(ctx context.Context, params *elasticloadbal return r0, r1 } +// GetResourcePolicy provides a mock function with given fields: ctx, params, optFns +func (_m *ELBV2) GetResourcePolicy(ctx context.Context, params *elasticloadbalancingv2.GetResourcePolicyInput, optFns ...func(*elasticloadbalancingv2.Options)) (*elasticloadbalancingv2.GetResourcePolicyOutput, error) { + _va := make([]interface{}, len(optFns)) + for _i := range optFns { + _va[_i] = optFns[_i] + } + var _ca []interface{} + _ca = append(_ca, ctx, params) + _ca = append(_ca, _va...) + ret := _m.Called(_ca...) + + if len(ret) == 0 { + panic("no return value specified for GetResourcePolicy") + } + + var r0 *elasticloadbalancingv2.GetResourcePolicyOutput + var r1 error + if rf, ok := ret.Get(0).(func(context.Context, *elasticloadbalancingv2.GetResourcePolicyInput, ...func(*elasticloadbalancingv2.Options)) (*elasticloadbalancingv2.GetResourcePolicyOutput, error)); ok { + return rf(ctx, params, optFns...) + } + if rf, ok := ret.Get(0).(func(context.Context, *elasticloadbalancingv2.GetResourcePolicyInput, ...func(*elasticloadbalancingv2.Options)) *elasticloadbalancingv2.GetResourcePolicyOutput); ok { + r0 = rf(ctx, params, optFns...) + } else { + if ret.Get(0) != nil { + r0 = ret.Get(0).(*elasticloadbalancingv2.GetResourcePolicyOutput) + } + } + + if rf, ok := ret.Get(1).(func(context.Context, *elasticloadbalancingv2.GetResourcePolicyInput, ...func(*elasticloadbalancingv2.Options)) error); ok { + r1 = rf(ctx, params, optFns...) + } else { + r1 = ret.Error(1) + } + + return r0, r1 +} + // GetTrustStoreCaCertificatesBundle provides a mock function with given fields: ctx, params, optFns func (_m *ELBV2) GetTrustStoreCaCertificatesBundle(ctx context.Context, params *elasticloadbalancingv2.GetTrustStoreCaCertificatesBundleInput, optFns ...func(*elasticloadbalancingv2.Options)) (*elasticloadbalancingv2.GetTrustStoreCaCertificatesBundleOutput, error) { _va := make([]interface{}, len(optFns)) diff --git a/pkg/eks/mocksv2/IAM.go b/pkg/eks/mocksv2/IAM.go index 688b14d1b5..bc7e8ca709 100644 --- a/pkg/eks/mocksv2/IAM.go +++ b/pkg/eks/mocksv2/IAM.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocksv2 diff --git a/pkg/eks/mocksv2/Outposts.go b/pkg/eks/mocksv2/Outposts.go index 94a9fbe7d1..3ee42f6da2 100644 --- a/pkg/eks/mocksv2/Outposts.go +++ b/pkg/eks/mocksv2/Outposts.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocksv2 @@ -14,6 +14,43 @@ type Outposts struct { mock.Mock } +// CancelCapacityTask provides a mock function with given fields: ctx, params, optFns +func (_m *Outposts) CancelCapacityTask(ctx context.Context, params *outposts.CancelCapacityTaskInput, optFns ...func(*outposts.Options)) (*outposts.CancelCapacityTaskOutput, error) { + _va := make([]interface{}, len(optFns)) + for _i := range optFns { + _va[_i] = optFns[_i] + } + var _ca []interface{} + _ca = append(_ca, ctx, params) + _ca = append(_ca, _va...) + ret := _m.Called(_ca...) + + if len(ret) == 0 { + panic("no return value specified for CancelCapacityTask") + } + + var r0 *outposts.CancelCapacityTaskOutput + var r1 error + if rf, ok := ret.Get(0).(func(context.Context, *outposts.CancelCapacityTaskInput, ...func(*outposts.Options)) (*outposts.CancelCapacityTaskOutput, error)); ok { + return rf(ctx, params, optFns...) + } + if rf, ok := ret.Get(0).(func(context.Context, *outposts.CancelCapacityTaskInput, ...func(*outposts.Options)) *outposts.CancelCapacityTaskOutput); ok { + r0 = rf(ctx, params, optFns...) + } else { + if ret.Get(0) != nil { + r0 = ret.Get(0).(*outposts.CancelCapacityTaskOutput) + } + } + + if rf, ok := ret.Get(1).(func(context.Context, *outposts.CancelCapacityTaskInput, ...func(*outposts.Options)) error); ok { + r1 = rf(ctx, params, optFns...) + } else { + r1 = ret.Error(1) + } + + return r0, r1 +} + // CancelOrder provides a mock function with given fields: ctx, params, optFns func (_m *Outposts) CancelOrder(ctx context.Context, params *outposts.CancelOrderInput, optFns ...func(*outposts.Options)) (*outposts.CancelOrderOutput, error) { _va := make([]interface{}, len(optFns)) @@ -236,6 +273,43 @@ func (_m *Outposts) DeleteSite(ctx context.Context, params *outposts.DeleteSiteI return r0, r1 } +// GetCapacityTask provides a mock function with given fields: ctx, params, optFns +func (_m *Outposts) GetCapacityTask(ctx context.Context, params *outposts.GetCapacityTaskInput, optFns ...func(*outposts.Options)) (*outposts.GetCapacityTaskOutput, error) { + _va := make([]interface{}, len(optFns)) + for _i := range optFns { + _va[_i] = optFns[_i] + } + var _ca []interface{} + _ca = append(_ca, ctx, params) + _ca = append(_ca, _va...) + ret := _m.Called(_ca...) + + if len(ret) == 0 { + panic("no return value specified for GetCapacityTask") + } + + var r0 *outposts.GetCapacityTaskOutput + var r1 error + if rf, ok := ret.Get(0).(func(context.Context, *outposts.GetCapacityTaskInput, ...func(*outposts.Options)) (*outposts.GetCapacityTaskOutput, error)); ok { + return rf(ctx, params, optFns...) + } + if rf, ok := ret.Get(0).(func(context.Context, *outposts.GetCapacityTaskInput, ...func(*outposts.Options)) *outposts.GetCapacityTaskOutput); ok { + r0 = rf(ctx, params, optFns...) + } else { + if ret.Get(0) != nil { + r0 = ret.Get(0).(*outposts.GetCapacityTaskOutput) + } + } + + if rf, ok := ret.Get(1).(func(context.Context, *outposts.GetCapacityTaskInput, ...func(*outposts.Options)) error); ok { + r1 = rf(ctx, params, optFns...) + } else { + r1 = ret.Error(1) + } + + return r0, r1 +} + // GetCatalogItem provides a mock function with given fields: ctx, params, optFns func (_m *Outposts) GetCatalogItem(ctx context.Context, params *outposts.GetCatalogItemInput, optFns ...func(*outposts.Options)) (*outposts.GetCatalogItemOutput, error) { _va := make([]interface{}, len(optFns)) @@ -421,6 +495,43 @@ func (_m *Outposts) GetOutpostInstanceTypes(ctx context.Context, params *outpost return r0, r1 } +// GetOutpostSupportedInstanceTypes provides a mock function with given fields: ctx, params, optFns +func (_m *Outposts) GetOutpostSupportedInstanceTypes(ctx context.Context, params *outposts.GetOutpostSupportedInstanceTypesInput, optFns ...func(*outposts.Options)) (*outposts.GetOutpostSupportedInstanceTypesOutput, error) { + _va := make([]interface{}, len(optFns)) + for _i := range optFns { + _va[_i] = optFns[_i] + } + var _ca []interface{} + _ca = append(_ca, ctx, params) + _ca = append(_ca, _va...) + ret := _m.Called(_ca...) + + if len(ret) == 0 { + panic("no return value specified for GetOutpostSupportedInstanceTypes") + } + + var r0 *outposts.GetOutpostSupportedInstanceTypesOutput + var r1 error + if rf, ok := ret.Get(0).(func(context.Context, *outposts.GetOutpostSupportedInstanceTypesInput, ...func(*outposts.Options)) (*outposts.GetOutpostSupportedInstanceTypesOutput, error)); ok { + return rf(ctx, params, optFns...) + } + if rf, ok := ret.Get(0).(func(context.Context, *outposts.GetOutpostSupportedInstanceTypesInput, ...func(*outposts.Options)) *outposts.GetOutpostSupportedInstanceTypesOutput); ok { + r0 = rf(ctx, params, optFns...) + } else { + if ret.Get(0) != nil { + r0 = ret.Get(0).(*outposts.GetOutpostSupportedInstanceTypesOutput) + } + } + + if rf, ok := ret.Get(1).(func(context.Context, *outposts.GetOutpostSupportedInstanceTypesInput, ...func(*outposts.Options)) error); ok { + r1 = rf(ctx, params, optFns...) + } else { + r1 = ret.Error(1) + } + + return r0, r1 +} + // GetSite provides a mock function with given fields: ctx, params, optFns func (_m *Outposts) GetSite(ctx context.Context, params *outposts.GetSiteInput, optFns ...func(*outposts.Options)) (*outposts.GetSiteOutput, error) { _va := make([]interface{}, len(optFns)) @@ -532,6 +643,43 @@ func (_m *Outposts) ListAssets(ctx context.Context, params *outposts.ListAssetsI return r0, r1 } +// ListCapacityTasks provides a mock function with given fields: ctx, params, optFns +func (_m *Outposts) ListCapacityTasks(ctx context.Context, params *outposts.ListCapacityTasksInput, optFns ...func(*outposts.Options)) (*outposts.ListCapacityTasksOutput, error) { + _va := make([]interface{}, len(optFns)) + for _i := range optFns { + _va[_i] = optFns[_i] + } + var _ca []interface{} + _ca = append(_ca, ctx, params) + _ca = append(_ca, _va...) + ret := _m.Called(_ca...) + + if len(ret) == 0 { + panic("no return value specified for ListCapacityTasks") + } + + var r0 *outposts.ListCapacityTasksOutput + var r1 error + if rf, ok := ret.Get(0).(func(context.Context, *outposts.ListCapacityTasksInput, ...func(*outposts.Options)) (*outposts.ListCapacityTasksOutput, error)); ok { + return rf(ctx, params, optFns...) + } + if rf, ok := ret.Get(0).(func(context.Context, *outposts.ListCapacityTasksInput, ...func(*outposts.Options)) *outposts.ListCapacityTasksOutput); ok { + r0 = rf(ctx, params, optFns...) + } else { + if ret.Get(0) != nil { + r0 = ret.Get(0).(*outposts.ListCapacityTasksOutput) + } + } + + if rf, ok := ret.Get(1).(func(context.Context, *outposts.ListCapacityTasksInput, ...func(*outposts.Options)) error); ok { + r1 = rf(ctx, params, optFns...) + } else { + r1 = ret.Error(1) + } + + return r0, r1 +} + // ListCatalogItems provides a mock function with given fields: ctx, params, optFns func (_m *Outposts) ListCatalogItems(ctx context.Context, params *outposts.ListCatalogItemsInput, optFns ...func(*outposts.Options)) (*outposts.ListCatalogItemsOutput, error) { _va := make([]interface{}, len(optFns)) @@ -735,6 +883,43 @@ func (_m *Outposts) Options() outposts.Options { return r0 } +// StartCapacityTask provides a mock function with given fields: ctx, params, optFns +func (_m *Outposts) StartCapacityTask(ctx context.Context, params *outposts.StartCapacityTaskInput, optFns ...func(*outposts.Options)) (*outposts.StartCapacityTaskOutput, error) { + _va := make([]interface{}, len(optFns)) + for _i := range optFns { + _va[_i] = optFns[_i] + } + var _ca []interface{} + _ca = append(_ca, ctx, params) + _ca = append(_ca, _va...) + ret := _m.Called(_ca...) + + if len(ret) == 0 { + panic("no return value specified for StartCapacityTask") + } + + var r0 *outposts.StartCapacityTaskOutput + var r1 error + if rf, ok := ret.Get(0).(func(context.Context, *outposts.StartCapacityTaskInput, ...func(*outposts.Options)) (*outposts.StartCapacityTaskOutput, error)); ok { + return rf(ctx, params, optFns...) + } + if rf, ok := ret.Get(0).(func(context.Context, *outposts.StartCapacityTaskInput, ...func(*outposts.Options)) *outposts.StartCapacityTaskOutput); ok { + r0 = rf(ctx, params, optFns...) + } else { + if ret.Get(0) != nil { + r0 = ret.Get(0).(*outposts.StartCapacityTaskOutput) + } + } + + if rf, ok := ret.Get(1).(func(context.Context, *outposts.StartCapacityTaskInput, ...func(*outposts.Options)) error); ok { + r1 = rf(ctx, params, optFns...) + } else { + r1 = ret.Error(1) + } + + return r0, r1 +} + // StartConnection provides a mock function with given fields: ctx, params, optFns func (_m *Outposts) StartConnection(ctx context.Context, params *outposts.StartConnectionInput, optFns ...func(*outposts.Options)) (*outposts.StartConnectionOutput, error) { _va := make([]interface{}, len(optFns)) diff --git a/pkg/eks/mocksv2/SSM.go b/pkg/eks/mocksv2/SSM.go index 6bd9b48f09..d62f02cd63 100644 --- a/pkg/eks/mocksv2/SSM.go +++ b/pkg/eks/mocksv2/SSM.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocksv2 @@ -1679,6 +1679,43 @@ func (_m *SSM) DescribeInstancePatches(ctx context.Context, params *ssm.Describe return r0, r1 } +// DescribeInstanceProperties provides a mock function with given fields: ctx, params, optFns +func (_m *SSM) DescribeInstanceProperties(ctx context.Context, params *ssm.DescribeInstancePropertiesInput, optFns ...func(*ssm.Options)) (*ssm.DescribeInstancePropertiesOutput, error) { + _va := make([]interface{}, len(optFns)) + for _i := range optFns { + _va[_i] = optFns[_i] + } + var _ca []interface{} + _ca = append(_ca, ctx, params) + _ca = append(_ca, _va...) + ret := _m.Called(_ca...) + + if len(ret) == 0 { + panic("no return value specified for DescribeInstanceProperties") + } + + var r0 *ssm.DescribeInstancePropertiesOutput + var r1 error + if rf, ok := ret.Get(0).(func(context.Context, *ssm.DescribeInstancePropertiesInput, ...func(*ssm.Options)) (*ssm.DescribeInstancePropertiesOutput, error)); ok { + return rf(ctx, params, optFns...) + } + if rf, ok := ret.Get(0).(func(context.Context, *ssm.DescribeInstancePropertiesInput, ...func(*ssm.Options)) *ssm.DescribeInstancePropertiesOutput); ok { + r0 = rf(ctx, params, optFns...) + } else { + if ret.Get(0) != nil { + r0 = ret.Get(0).(*ssm.DescribeInstancePropertiesOutput) + } + } + + if rf, ok := ret.Get(1).(func(context.Context, *ssm.DescribeInstancePropertiesInput, ...func(*ssm.Options)) error); ok { + r1 = rf(ctx, params, optFns...) + } else { + r1 = ret.Error(1) + } + + return r0, r1 +} + // DescribeInventoryDeletions provides a mock function with given fields: ctx, params, optFns func (_m *SSM) DescribeInventoryDeletions(ctx context.Context, params *ssm.DescribeInventoryDeletionsInput, optFns ...func(*ssm.Options)) (*ssm.DescribeInventoryDeletionsOutput, error) { _va := make([]interface{}, len(optFns)) diff --git a/pkg/eks/mocksv2/STS.go b/pkg/eks/mocksv2/STS.go index 775d1df9bd..926f6982d2 100644 --- a/pkg/eks/mocksv2/STS.go +++ b/pkg/eks/mocksv2/STS.go @@ -1,4 +1,4 @@ -// Code generated by mockery v2.38.0. DO NOT EDIT. +// Code generated by mockery v2.44.1. DO NOT EDIT. package mocksv2