diff --git a/.docs.version b/.docs.version
index 1fec3807c4..fa14a31928 100644
--- a/.docs.version
+++ b/.docs.version
@@ -1 +1 @@
-d9a7a3f3043f4f8b764c54129f8d3316d8822ecd
+5c197d5a1e30d3254088221de8e3b1f82d37b8dd
diff --git a/aws-cloudformation-schema/aws-apigateway-domainnamev2.json b/aws-cloudformation-schema/aws-apigateway-domainnamev2.json
index 88cf2404bd..50e9f54f2e 100644
--- a/aws-cloudformation-schema/aws-apigateway-domainnamev2.json
+++ b/aws-cloudformation-schema/aws-apigateway-domainnamev2.json
@@ -44,9 +44,6 @@
"Policy" : {
"type" : [ "object", "string" ]
},
- "ManagementPolicy" : {
- "type" : [ "object", "string" ]
- },
"DomainNameId" : {
"type" : "string"
},
@@ -75,16 +72,16 @@
"readOnlyProperties" : [ "/properties/DomainNameId", "/properties/DomainNameArn" ],
"handlers" : {
"create" : {
- "permissions" : [ "apigateway:POST", "apigateway:GET", "apigateway:UpdateDomainNamePolicy", "apigateway:UpdateDomainNameManagementPolicy" ]
+ "permissions" : [ "apigateway:POST", "apigateway:GET", "apigateway:UpdateDomainNamePolicy" ]
},
"read" : {
"permissions" : [ "apigateway:GET" ]
},
"update" : {
- "permissions" : [ "apigateway:GET", "apigateway:PUT", "apigateway:PATCH", "apigateway:UpdateDomainNamePolicy", "apigateway:UpdateDomainNameManagementPolicy" ]
+ "permissions" : [ "apigateway:GET", "apigateway:PUT", "apigateway:PATCH", "apigateway:UpdateDomainNamePolicy" ]
},
"delete" : {
- "permissions" : [ "apigateway:DELETE", "apigateway:GET", "apigateway:UpdateDomainNamePolicy", "apigateway:UpdateDomainNameManagementPolicy" ]
+ "permissions" : [ "apigateway:DELETE", "apigateway:GET", "apigateway:UpdateDomainNamePolicy" ]
},
"list" : {
"permissions" : [ "apigateway:GET" ]
diff --git a/aws-cloudformation-schema/aws-applicationautoscaling-scalingpolicy.json b/aws-cloudformation-schema/aws-applicationautoscaling-scalingpolicy.json
index d123542583..49626b3bf0 100644
--- a/aws-cloudformation-schema/aws-applicationautoscaling-scalingpolicy.json
+++ b/aws-cloudformation-schema/aws-applicationautoscaling-scalingpolicy.json
@@ -42,16 +42,16 @@
"additionalProperties" : false,
"definitions" : {
"PredictiveScalingMetricDataQuery" : {
- "description" : "",
+ "description" : "The metric data to return. Also defines whether this call is returning data for one metric only, or whether it is performing a math expression on the values of returned metric statistics to create a new time series. A time series is a series of data points, each of which is associated with a timestamp.",
"additionalProperties" : false,
"type" : "object",
"properties" : {
"ReturnData" : {
- "description" : "Indicates whether to return the timestamps and raw data values of this metric.",
+ "description" : "Indicates whether to return the timestamps and raw data values of this metric. \n If you use any math expressions, specify ``true`` for this value for only the final math expression that the metric specification is based on. You must specify ``false`` for ``ReturnData`` for all the other metrics and expressions used in the metric specification.\n If you are only retrieving metrics and not performing any math expressions, do not specify anything for ``ReturnData``. This sets it to its default (``true``).",
"type" : "boolean"
},
"Expression" : {
- "description" : "The math expression to perform on the returned data, if this object is performing a math expression.",
+ "description" : "The math expression to perform on the returned data, if this object is performing a math expression. This expression can use the ``Id`` of the other metrics to refer to those metrics, and can also use the ``Id`` of other expressions to use the result of those expressions. \n Conditional: Within each ``MetricDataQuery`` object, you must specify either ``Expression`` or ``MetricStat``, but not both.",
"type" : "string"
},
"Label" : {
@@ -59,11 +59,11 @@
"type" : "string"
},
"MetricStat" : {
- "description" : "Information about the metric data to return.",
+ "description" : "Information about the metric data to return. \n Conditional: Within each ``MetricDataQuery`` object, you must specify either ``Expression`` or ``MetricStat``, but not both.",
"$ref" : "#/definitions/PredictiveScalingMetricStat"
},
"Id" : {
- "description" : "A short name that identifies the object's results in the response.",
+ "description" : "A short name that identifies the object's results in the response. This name must be unique among all ``MetricDataQuery`` objects specified for a single scaling policy. If you are performing math expressions on this set of data, this name represents that data and can serve as a variable in the mathematical expression. The valid characters are letters, numbers, and underscores. The first character must be a lowercase letter.",
"type" : "string"
}
}
@@ -88,7 +88,7 @@
}
},
"PredictiveScalingMetricDimension" : {
- "description" : "",
+ "description" : "Describes the dimension of a metric.",
"additionalProperties" : false,
"type" : "object",
"properties" : {
@@ -118,12 +118,13 @@
}
},
"PredictiveScalingCustomizedCapacityMetric" : {
- "description" : "",
+ "description" : "Represents a CloudWatch metric of your choosing for a predictive scaling policy.",
"additionalProperties" : false,
"type" : "object",
"properties" : {
"MetricDataQueries" : {
"uniqueItems" : true,
+ "description" : "One or more metric data queries to provide data points for a metric specification.",
"insertionOrder" : false,
"type" : "array",
"items" : {
@@ -161,12 +162,13 @@
}
},
"PredictiveScalingCustomizedScalingMetric" : {
- "description" : "",
+ "description" : "One or more metric data queries to provide data points for a metric specification.",
"additionalProperties" : false,
"type" : "object",
"properties" : {
"MetricDataQueries" : {
"uniqueItems" : true,
+ "description" : "One or more metric data queries to provide data points for a metric specification.",
"insertionOrder" : false,
"type" : "array",
"items" : {
@@ -218,14 +220,16 @@
}
},
"PredictiveScalingPredefinedLoadMetric" : {
- "description" : "",
+ "description" : "Describes a load metric for a predictive scaling policy. \n When returned in the output of ``DescribePolicies``, it indicates that a predictive scaling policy uses individually specified load and scaling metrics instead of a metric pair.",
"additionalProperties" : false,
"type" : "object",
"properties" : {
"PredefinedMetricType" : {
+ "description" : "The metric type.",
"type" : "string"
},
"ResourceLabel" : {
+ "description" : "A label that uniquely identifies a target group.",
"type" : "string"
}
},
@@ -264,14 +268,16 @@
"required" : [ "TargetValue" ]
},
"PredictiveScalingPredefinedMetricPair" : {
- "description" : "",
+ "description" : "Represents a metric pair for a predictive scaling policy.",
"additionalProperties" : false,
"type" : "object",
"properties" : {
"PredefinedMetricType" : {
+ "description" : "Indicates which metrics to use. There are two different types of metrics for each metric type: one is a load metric and one is a scaling metric.",
"type" : "string"
},
"ResourceLabel" : {
+ "description" : "A label that uniquely identifies a specific target group from which to determine the total and average request count.",
"type" : "string"
}
},
@@ -330,21 +336,25 @@
"required" : [ "Value", "Name" ]
},
"PredictiveScalingPolicyConfiguration" : {
- "description" : "",
+ "description" : "Represents a predictive scaling policy configuration.",
"additionalProperties" : false,
"type" : "object",
"properties" : {
"MaxCapacityBreachBehavior" : {
+ "description" : "Defines the behavior that should be applied if the forecast capacity approaches or exceeds the maximum capacity. Defaults to ``HonorMaxCapacity`` if not specified.",
"type" : "string"
},
"MaxCapacityBuffer" : {
+ "description" : "The size of the capacity buffer to use when the forecast capacity is close to or exceeds the maximum capacity. The value is specified as a percentage relative to the forecast capacity. For example, if the buffer is 10, this means a 10 percent buffer, such that if the forecast capacity is 50, and the maximum capacity is 40, then the effective maximum capacity is 55. \n Required if the ``MaxCapacityBreachBehavior`` property is set to ``IncreaseMaxCapacity``, and cannot be used otherwise.",
"type" : "integer"
},
"Mode" : {
+ "description" : "The predictive scaling mode. Defaults to ``ForecastOnly`` if not specified.",
"type" : "string"
},
"MetricSpecifications" : {
"uniqueItems" : true,
+ "description" : "This structure includes the metrics and target utilization to use for predictive scaling. \n This is an array, but we currently only support a single metric specification. That is, you can specify a target value and a single metric pair, or a target value and one scaling metric and one load metric.",
"insertionOrder" : false,
"type" : "array",
"items" : {
@@ -352,56 +362,66 @@
}
},
"SchedulingBufferTime" : {
+ "description" : "The amount of time, in seconds, that the start time can be advanced. \n The value must be less than the forecast interval duration of 3600 seconds (60 minutes). Defaults to 300 seconds if not specified.",
"type" : "integer"
}
},
"required" : [ "MetricSpecifications" ]
},
"PredictiveScalingPredefinedScalingMetric" : {
- "description" : "",
+ "description" : "Describes a scaling metric for a predictive scaling policy. \n When returned in the output of ``DescribePolicies``, it indicates that a predictive scaling policy uses individually specified load and scaling metrics instead of a metric pair.",
"additionalProperties" : false,
"type" : "object",
"properties" : {
"PredefinedMetricType" : {
+ "description" : "The metric type.",
"type" : "string"
},
"ResourceLabel" : {
+ "description" : "A label that uniquely identifies a specific target group from which to determine the average request count.",
"type" : "string"
}
},
"required" : [ "PredefinedMetricType" ]
},
"PredictiveScalingMetricSpecification" : {
- "description" : "",
+ "description" : "This structure specifies the metrics and target utilization settings for a predictive scaling policy. \n You must specify either a metric pair, or a load metric and a scaling metric individually. Specifying a metric pair instead of individual metrics provides a simpler way to configure metrics for a scaling policy. You choose the metric pair, and the policy automatically knows the correct sum and average statistics to use for the load metric and the scaling metric.",
"additionalProperties" : false,
"type" : "object",
"properties" : {
"CustomizedLoadMetricSpecification" : {
+ "description" : "The customized load metric specification.",
"$ref" : "#/definitions/PredictiveScalingCustomizedLoadMetric"
},
"PredefinedLoadMetricSpecification" : {
+ "description" : "The predefined load metric specification.",
"$ref" : "#/definitions/PredictiveScalingPredefinedLoadMetric"
},
"TargetValue" : {
+ "description" : "Specifies the target utilization.",
"type" : "number"
},
"PredefinedScalingMetricSpecification" : {
+ "description" : "The predefined scaling metric specification.",
"$ref" : "#/definitions/PredictiveScalingPredefinedScalingMetric"
},
"CustomizedCapacityMetricSpecification" : {
+ "description" : "The customized capacity metric specification.",
"$ref" : "#/definitions/PredictiveScalingCustomizedCapacityMetric"
},
"CustomizedScalingMetricSpecification" : {
+ "description" : "The customized scaling metric specification.",
"$ref" : "#/definitions/PredictiveScalingCustomizedScalingMetric"
},
"PredefinedMetricPairSpecification" : {
+ "description" : "The predefined metric pair specification that determines the appropriate scaling metric and load metric to use.",
"$ref" : "#/definitions/PredictiveScalingPredefinedMetricPair"
}
},
"required" : [ "TargetValue" ]
},
"PredictiveScalingMetric" : {
- "description" : "",
+ "description" : "Describes the scaling metric.",
"additionalProperties" : false,
"type" : "object",
"properties" : {
@@ -411,7 +431,7 @@
},
"Dimensions" : {
"uniqueItems" : false,
- "description" : "The dimensions for the metric.",
+ "description" : "Describes the dimensions of the metric.",
"insertionOrder" : false,
"type" : "array",
"items" : {
@@ -425,12 +445,13 @@
}
},
"PredictiveScalingCustomizedLoadMetric" : {
- "description" : "",
+ "description" : "The customized load metric specification.",
"additionalProperties" : false,
"type" : "object",
"properties" : {
"MetricDataQueries" : {
"uniqueItems" : true,
+ "description" : "",
"insertionOrder" : false,
"type" : "array",
"items" : {
@@ -465,20 +486,20 @@
}
},
"PredictiveScalingMetricStat" : {
- "description" : "",
+ "description" : "This structure defines the CloudWatch metric to return, along with the statistic and unit.",
"additionalProperties" : false,
"type" : "object",
"properties" : {
"Stat" : {
- "description" : "The statistic to return. It can include any CloudWatch statistic or extended statistic.",
+ "description" : "The statistic to return. It can include any CloudWatch statistic or extended statistic. For a list of valid values, see the table in [Statistics](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/cloudwatch_concepts.html#Statistic) in the *Amazon CloudWatch User Guide*. \n The most commonly used metrics for predictive scaling are ``Average`` and ``Sum``.",
"type" : "string"
},
"Metric" : {
- "description" : "The CloudWatch metric to return, including the metric name, namespace, and dimensions. ",
+ "description" : "The CloudWatch metric to return, including the metric name, namespace, and dimensions. To get the exact metric name, namespace, and dimensions, inspect the [Metric](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_Metric.html) object that is returned by a call to [ListMetrics](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_ListMetrics.html).",
"$ref" : "#/definitions/PredictiveScalingMetric"
},
"Unit" : {
- "description" : "The unit to use for the returned data points.",
+ "description" : "The unit to use for the returned data points. For a complete list of the units that CloudWatch supports, see the [MetricDatum](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_MetricDatum.html) data type in the *Amazon CloudWatch API Reference*.",
"type" : "string"
}
}
@@ -554,7 +575,7 @@
"$ref" : "#/definitions/StepScalingPolicyConfiguration"
},
"PredictiveScalingPolicyConfiguration" : {
- "description" : "",
+ "description" : "The predictive scaling policy configuration.",
"$ref" : "#/definitions/PredictiveScalingPolicyConfiguration"
}
}
diff --git a/aws-cloudformation-schema/aws-backup-backupselection.json b/aws-cloudformation-schema/aws-backup-backupselection.json
index 718ae91e35..615b7a598d 100644
--- a/aws-cloudformation-schema/aws-backup-backupselection.json
+++ b/aws-cloudformation-schema/aws-backup-backupselection.json
@@ -143,7 +143,7 @@
"permissions" : [ "backup:CreateBackupSelection", "iam:GetRole", "iam:PassRole", "iam:CreateServiceLinkedRole" ]
},
"list" : {
- "permissions" : [ "backup:ListBackupSelections" ]
+ "permissions" : [ "backup:ListBackupSelections", "backup:ListBackupPlans" ]
}
}
}
\ No newline at end of file
diff --git a/aws-cloudformation-schema/aws-backup-restoretestingselection.json b/aws-cloudformation-schema/aws-backup-restoretestingselection.json
index 28eff24a80..6d64a732c9 100644
--- a/aws-cloudformation-schema/aws-backup-restoretestingselection.json
+++ b/aws-cloudformation-schema/aws-backup-restoretestingselection.json
@@ -105,7 +105,7 @@
"timeoutInMinutes" : 5
},
"list" : {
- "permissions" : [ "backup:ListRestoreTestingSelections" ],
+ "permissions" : [ "backup:ListRestoreTestingSelections", "backup:ListRestoreTestingPlans" ],
"timeoutInMinutes" : 5
}
}
diff --git a/aws-cloudformation-schema/aws-connect-tasktemplate.json b/aws-cloudformation-schema/aws-connect-tasktemplate.json
index eb202bb782..28a603eb57 100644
--- a/aws-cloudformation-schema/aws-connect-tasktemplate.json
+++ b/aws-cloudformation-schema/aws-connect-tasktemplate.json
@@ -193,6 +193,11 @@
"type" : "string",
"pattern" : "^$|arn:aws[-a-z0-9]*:connect:[-a-z0-9]*:[0-9]{12}:instance/[-a-zA-Z0-9]*/contact-flow/[-a-zA-Z0-9]*$"
},
+ "SelfAssignContactFlowArn" : {
+ "description" : "The identifier of the contact flow.",
+ "type" : "string",
+ "pattern" : "^$|arn:aws[-a-z0-9]*:connect:[-a-z0-9]*:[0-9]{12}:instance/[-a-zA-Z0-9]*/contact-flow/[-a-zA-Z0-9]*$"
+ },
"Constraints" : {
"description" : "The constraints for the task template",
"type" : "object",
diff --git a/aws-cloudformation-schema/aws-dynamodb-table.json b/aws-cloudformation-schema/aws-dynamodb-table.json
index 99febc7060..3ec5025d50 100644
--- a/aws-cloudformation-schema/aws-dynamodb-table.json
+++ b/aws-cloudformation-schema/aws-dynamodb-table.json
@@ -476,7 +476,7 @@
"$ref" : "#/definitions/ContributorInsightsSpecification"
},
"ImportSourceSpecification" : {
- "description" : "Specifies the properties of data being imported from the S3 bucket source to the table.\n If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, or the ``DeletionProtectionEnabled`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.",
+ "description" : "Specifies the properties of data being imported from the S3 bucket source to the\" table.\n If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, the ``DeletionProtectionEnabled`` property, or the ``WarmThroughput`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.",
"$ref" : "#/definitions/ImportSourceSpecification"
},
"PointInTimeRecoverySpecification" : {
diff --git a/aws-cloudformation-schema/aws-ec2-customergateway.json b/aws-cloudformation-schema/aws-ec2-customergateway.json
index 57ce94e2b2..e0f21c581a 100644
--- a/aws-cloudformation-schema/aws-ec2-customergateway.json
+++ b/aws-cloudformation-schema/aws-ec2-customergateway.json
@@ -83,7 +83,7 @@
}
},
"CertificateArn" : {
- "pattern" : "^arn:(aws[a-zA-Z-]*)?:acm:[a-z]{2}((-gov)|(-iso(b?)))?-[a-z]+-\\d{1}:\\d{12}:certificate\\/[a-zA-Z0-9-_]+$",
+ "pattern" : "^arn:(aws[a-zA-Z-]*)?:acm:[a-z]{2}((-gov)|(-iso([a-z]{1})?))?-[a-z]+-\\d{1}:\\d{12}:certificate\\/[a-zA-Z0-9-_]+$",
"description" : "The Amazon Resource Name (ARN) for the customer gateway certificate.",
"type" : "string"
},
diff --git a/aws-cloudformation-schema/aws-ec2-launchtemplate.json b/aws-cloudformation-schema/aws-ec2-launchtemplate.json
index 0b3178e5f8..e5a82f7e27 100644
--- a/aws-cloudformation-schema/aws-ec2-launchtemplate.json
+++ b/aws-cloudformation-schema/aws-ec2-launchtemplate.json
@@ -45,16 +45,12 @@
},
"TagSpecifications" : {
"uniqueItems" : false,
- "description" : "The tags to apply to resources that are created during instance launch.\n To tag the launch template itself, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-tagspecifications).",
+ "description" : "The tags to apply to the resources that are created during instance launch.\n To tag a resource after it has been created, see [CreateTags](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateTags.html).\n To tag the launch template itself, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-tagspecifications).",
"type" : "array",
"items" : {
"$ref" : "#/definitions/TagSpecification"
}
},
- "NetworkPerformanceOptions" : {
- "description" : "",
- "$ref" : "#/definitions/NetworkPerformanceOptions"
- },
"UserData" : {
"description" : "The user data to make available to the instance. You must provide base64-encoded text. User data is limited to 16 KB. For more information, see [Run commands on your Amazon EC2 instance at launch](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/user-data.html) in the *Amazon EC2 User Guide*.\n If you are creating the launch template for use with BATCH, the user data must be provided in the [MIME multi-part archive format](https://docs.aws.amazon.com/https://cloudinit.readthedocs.io/en/latest/topics/format.html#mime-multi-part-archive). For more information, see [Amazon EC2 user data in launch templates](https://docs.aws.amazon.com/batch/latest/userguide/launch-templates.html) in the *User Guide*.",
"type" : "string"
@@ -93,7 +89,7 @@
},
"ElasticInferenceAccelerators" : {
"uniqueItems" : false,
- "description" : "Amazon Elastic Inference is no longer available.\n An elastic inference accelerator to associate with the instance. Elastic inference accelerators are a resource you can attach to your Amazon EC2 instances to accelerate your Deep Learning (DL) inference workloads.\n You cannot specify accelerators from different generations in the same request.\n Starting April 15, 2023, AWS will not onboard new customers to Amazon Elastic Inference (EI), and will help current customers migrate their workloads to options that offer better price and performance. After April 15, 2023, new customers will not be able to launch instances with Amazon EI accelerators in Amazon SageMaker, Amazon ECS, or Amazon EC2. However, customers who have used Amazon EI at least once during the past 30-day period are considered current customers and will be able to continue using the service.",
+ "description" : "An elastic inference accelerator to associate with the instance. Elastic inference accelerators are a resource you can attach to your Amazon EC2 instances to accelerate your Deep Learning (DL) inference workloads.\n You cannot specify accelerators from different generations in the same request.\n Starting April 15, 2023, AWS will not onboard new customers to Amazon Elastic Inference (EI), and will help current customers migrate their workloads to options that offer better price and performance. After April 15, 2023, new customers will not be able to launch instances with Amazon EI accelerators in Amazon SageMaker, Amazon ECS, or Amazon EC2. However, customers who have used Amazon EI at least once during the past 30-day period are considered current customers and will be able to continue using the service.",
"type" : "array",
"items" : {
"$ref" : "#/definitions/LaunchTemplateElasticInferenceAccelerator"
@@ -180,7 +176,7 @@
"$ref" : "#/definitions/InstanceMarketOptions"
},
"InstanceRequirements" : {
- "description" : "The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.\n You must specify ``VCpuCount`` and ``MemoryMiB``. All other attributes are optional. Any unspecified optional attribute is set to its default.\n When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values.\n To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request:\n + ``AllowedInstanceTypes`` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes.\n + ``ExcludedInstanceTypes`` - The instance types to exclude from the list, even if they match your specified attributes.\n \n If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.\n Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.\n For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.",
+ "description" : "The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.\n You must specify ``VCpuCount`` and ``MemoryMiB``. All other attributes are optional. Any unspecified optional attribute is set to its default.\n When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values.\n To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request:\n + ``AllowedInstanceTypes`` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes.\n + ``ExcludedInstanceTypes`` - The instance types to exclude from the list, even if they match your specified attributes.\n \n If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.\n Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.\n For more information, see [Attribute-based instance type selection for EC2 Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html), [Attribute-based instance type selection for Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-attribute-based-instance-type-selection.html), and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.",
"$ref" : "#/definitions/InstanceRequirements"
},
"RamDiskId" : {
@@ -247,7 +243,6 @@
"type" : "object",
"properties" : {
"References" : {
- "description" : "",
"$ref" : "#/definitions/References"
}
}
@@ -391,7 +386,7 @@
"type" : "string"
},
"KmsKeyId" : {
- "description" : "Identifier (key ID, key alias, key ARN, or alias ARN) of the customer managed KMS key to use for EBS encryption.",
+ "description" : "The ARN of the symmetric KMSlong (KMS) CMK used for encryption.",
"type" : "string"
},
"Encrypted" : {
@@ -524,7 +519,7 @@
"type" : "object",
"properties" : {
"InstanceFamily" : {
- "description" : "",
+ "description" : "The instance family to refer. Ensure that you specify the correct family name. For example, C6i and C6g are valid values, but C6 is not.",
"type" : "string"
}
}
@@ -658,7 +653,7 @@
"type" : "integer"
},
"InterfaceType" : {
- "description" : "The type of network interface. To create an Elastic Fabric Adapter (EFA), specify ``efa`` or ``efa``. For more information, see [Elastic Fabric Adapter](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide*.\n If you are not creating an EFA, specify ``interface`` or omit this parameter.\n If you specify ``efa-only``, do not assign any IP addresses to the network interface. EFA-only network interfaces do not support IP addresses.\n Valid values: ``interface`` | ``efa`` | ``efa-only``",
+ "description" : "The type of network interface. To create an Elastic Fabric Adapter (EFA), specify ``efa``. For more information, see [Elastic Fabric Adapter](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide*.\n If you are not creating an EFA, specify ``interface`` or omit this parameter.\n Valid values: ``interface`` | ``efa``",
"type" : "string"
},
"AssociateCarrierIpAddress" : {
@@ -737,7 +732,7 @@
}
},
"LaunchTemplateTagSpecification" : {
- "description" : "Specifies the tags to apply to the launch template during creation.\n To specify the tags for the resources that are created during instance launch, use [AWS::EC2::LaunchTemplate TagSpecification](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-tagspecification.html).\n ``LaunchTemplateTagSpecification`` is a property of [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html).",
+ "description" : "Specifies the tags to apply to the launch template during creation.\n ``LaunchTemplateTagSpecification`` is a property of [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html).",
"additionalProperties" : false,
"type" : "object",
"properties" : {
@@ -756,7 +751,7 @@
}
},
"TagSpecification" : {
- "description" : "Specifies the tags to apply to resources that are created during instance launch.\n ``TagSpecification`` is a property type of [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications). [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications) is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).",
+ "description" : "Specifies the tags to apply to a resource when the resource is created for the launch template.\n ``TagSpecification`` is a property type of [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications). [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications) is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).",
"additionalProperties" : false,
"type" : "object",
"properties" : {
@@ -840,12 +835,11 @@
}
},
"BaselinePerformanceFactors" : {
- "description" : "The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application.\n Currently, this parameter only supports CPU performance as a baseline performance factor. For example, specifying ``c6i`` would use the CPU performance of the ``c6i`` family as the baseline reference.",
+ "description" : "",
"additionalProperties" : false,
"type" : "object",
"properties" : {
"Cpu" : {
- "description" : "The CPU performance to consider, using an instance family as the baseline reference.",
"$ref" : "#/definitions/Cpu"
}
}
@@ -881,7 +875,7 @@
}
},
"InstanceRequirements" : {
- "description" : "The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.\n You must specify ``VCpuCount`` and ``MemoryMiB``. All other attributes are optional. Any unspecified optional attribute is set to its default.\n When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values.\n To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request:\n + ``AllowedInstanceTypes`` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes.\n + ``ExcludedInstanceTypes`` - The instance types to exclude from the list, even if they match your specified attributes.\n \n If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.\n Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.\n For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.",
+ "description" : "The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.\n You must specify ``VCpuCount`` and ``MemoryMiB``. All other attributes are optional. Any unspecified optional attribute is set to its default.\n When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values.\n To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request:\n + ``AllowedInstanceTypes`` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes.\n + ``ExcludedInstanceTypes`` - The instance types to exclude from the list, even if they match your specified attributes.\n \n If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.\n Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.\n For more information, see [Attribute-based instance type selection for EC2 Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html), [Attribute-based instance type selection for Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-attribute-based-instance-type-selection.html), and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.",
"additionalProperties" : false,
"type" : "object",
"properties" : {
@@ -899,7 +893,7 @@
},
"AcceleratorTypes" : {
"uniqueItems" : false,
- "description" : "The accelerator types that must be on the instance type.\n + For instance types with GPU accelerators, specify ``gpu``.\n + For instance types with FPGA accelerators, specify ``fpga``.\n \n Default: Any accelerator type",
+ "description" : "The accelerator types that must be on the instance type.\n + For instance types with GPU accelerators, specify ``gpu``.\n + For instance types with FPGA accelerators, specify ``fpga``.\n + For instance types with inference accelerators, specify ``inference``.\n \n Default: Any accelerator type",
"type" : "array",
"items" : {
"type" : "string"
@@ -923,7 +917,7 @@
},
"CpuManufacturers" : {
"uniqueItems" : false,
- "description" : "The CPU manufacturers to include.\n + For instance types with Intel CPUs, specify ``intel``.\n + For instance types with AMD CPUs, specify ``amd``.\n + For instance types with AWS CPUs, specify ``amazon-web-services``.\n + For instance types with Apple CPUs, specify ``apple``.\n \n Don't confuse the CPU manufacturer with the CPU architecture. Instances will be launched with a compatible CPU architecture based on the Amazon Machine Image (AMI) that you specify in your launch template.\n Default: Any manufacturer",
+ "description" : "The CPU manufacturers to include.\n + For instance types with Intel CPUs, specify ``intel``.\n + For instance types with AMD CPUs, specify ``amd``.\n + For instance types with AWS CPUs, specify ``amazon-web-services``.\n \n Don't confuse the CPU manufacturer with the CPU architecture. Instances will be launched with a compatible CPU architecture based on the Amazon Machine Image (AMI) that you specify in your launch template.\n Default: Any manufacturer",
"type" : "array",
"items" : {
"type" : "string"
@@ -987,7 +981,7 @@
"$ref" : "#/definitions/NetworkBandwidthGbps"
},
"BaselinePerformanceFactors" : {
- "description" : "The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide*.",
+ "description" : "",
"$ref" : "#/definitions/BaselinePerformanceFactors"
},
"SpotMaxPricePercentageOverLowestPrice" : {
@@ -1072,7 +1066,7 @@
"type" : "object",
"properties" : {
"CapacityReservationPreference" : {
- "description" : "Indicates the instance's Capacity Reservation preferences. Possible preferences include:\n + ``capacity-reservations-only`` - The instance will only run in a Capacity Reservation or Capacity Reservation group. If capacity isn't available, the instance will fail to launch.\n + ``open`` - The instance can run in any ``open`` Capacity Reservation that has matching attributes (instance type, platform, Availability Zone, tenancy).\n + ``none`` - The instance avoids running in a Capacity Reservation even if one is available. The instance runs in On-Demand capacity.",
+ "description" : "Indicates the instance's Capacity Reservation preferences. Possible preferences include:\n + ``open`` - The instance can run in any ``open`` Capacity Reservation that has matching attributes (instance type, platform, Availability Zone).\n + ``none`` - The instance avoids running in a Capacity Reservation even if one is available. The instance runs in On-Demand capacity.",
"type" : "string"
},
"CapacityReservationTarget" : {
@@ -1143,7 +1137,7 @@
},
"TagSpecifications" : {
"uniqueItems" : false,
- "description" : "The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.\n To specify the tags for resources that are created during instance launch, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications).",
+ "description" : "The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.\n To specify the tags for the resources that are created when an instance is launched, you must use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications).",
"type" : "array",
"items" : {
"$ref" : "#/definitions/LaunchTemplateTagSpecification"
diff --git a/aws-cloudformation-schema/aws-ec2-networkinterface.json b/aws-cloudformation-schema/aws-ec2-networkinterface.json
index e7092a8332..d9158d55cd 100644
--- a/aws-cloudformation-schema/aws-ec2-networkinterface.json
+++ b/aws-cloudformation-schema/aws-ec2-networkinterface.json
@@ -1,9 +1,112 @@
{
- "typeName" : "AWS::EC2::NetworkInterface",
+ "tagging" : {
+ "permissions" : [ "ec2:CreateTags", "ec2:DeleteTags" ],
+ "taggable" : true,
+ "tagOnCreate" : true,
+ "tagUpdatable" : true,
+ "tagProperty" : "/properties/Tags",
+ "cloudFormationSystemTags" : true
+ },
"$schema" : "https://raw.githubusercontent.com/aws-cloudformation/cloudformation-resource-schema/master/src/main/resources/schema/provider.definition.schema.v1.json",
- "sourceUrl" : "https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-ec2/networkinterface",
+ "typeName" : "AWS::EC2::NetworkInterface",
+ "readOnlyProperties" : [ "/properties/Id", "/properties/SecondaryPrivateIpAddresses", "/properties/PrimaryPrivateIpAddress", "/properties/PrimaryIpv6Address", "/properties/VpcId" ],
"description" : "The AWS::EC2::NetworkInterface resource creates network interface",
+ "createOnlyProperties" : [ "/properties/PrivateIpAddress", "/properties/InterfaceType", "/properties/SubnetId" ],
+ "primaryIdentifier" : [ "/properties/Id" ],
+ "required" : [ "SubnetId" ],
+ "conditionalCreateOnlyProperties" : [ "/properties/PrivateIpAddresses", "/properties/EnablePrimaryIpv6", "/properties/ConnectionTrackingSpecification" ],
+ "sourceUrl" : "https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-ec2/networkinterface",
+ "handlers" : {
+ "read" : {
+ "permissions" : [ "ec2:DescribeNetworkInterfaces" ]
+ },
+ "create" : {
+ "permissions" : [ "ec2:CreateNetworkInterface", "ec2:DescribeNetworkInterfaces", "ec2:CreateTags", "ec2:ModifyNetworkInterfaceAttribute", "ec2:ModifyPublicIpDnsNameOptions" ]
+ },
+ "update" : {
+ "permissions" : [ "ec2:DescribeNetworkInterfaces", "ec2:ModifyNetworkInterfaceAttribute", "ec2:UnassignIpv6Addresses", "ec2:AssignIpv6Addresses", "ec2:DeleteTags", "ec2:CreateTags", "ec2:UnassignPrivateIpAddresses", "ec2:AssignPrivateIpAddresses", "ec2:ModifyPublicIpDnsNameOptions" ]
+ },
+ "list" : {
+ "permissions" : [ "ec2:DescribeNetworkInterfaces" ]
+ },
+ "delete" : {
+ "permissions" : [ "ec2:DescribeNetworkInterfaces", "ec2:DeleteNetworkInterface" ]
+ }
+ },
"additionalProperties" : false,
+ "definitions" : {
+ "PrivateIpAddressSpecification" : {
+ "additionalProperties" : false,
+ "type" : "object",
+ "properties" : {
+ "PrivateIpAddress" : {
+ "type" : "string"
+ },
+ "Primary" : {
+ "type" : "boolean"
+ }
+ },
+ "required" : [ "PrivateIpAddress", "Primary" ]
+ },
+ "Ipv4PrefixSpecification" : {
+ "additionalProperties" : false,
+ "type" : "object",
+ "properties" : {
+ "Ipv4Prefix" : {
+ "type" : "string"
+ }
+ },
+ "required" : [ "Ipv4Prefix" ]
+ },
+ "InstanceIpv6Address" : {
+ "additionalProperties" : false,
+ "type" : "object",
+ "properties" : {
+ "Ipv6Address" : {
+ "type" : "string"
+ }
+ },
+ "required" : [ "Ipv6Address" ]
+ },
+ "Ipv6PrefixSpecification" : {
+ "additionalProperties" : false,
+ "type" : "object",
+ "properties" : {
+ "Ipv6Prefix" : {
+ "type" : "string"
+ }
+ },
+ "required" : [ "Ipv6Prefix" ]
+ },
+ "Tag" : {
+ "additionalProperties" : false,
+ "type" : "object",
+ "properties" : {
+ "Value" : {
+ "type" : "string"
+ },
+ "Key" : {
+ "type" : "string"
+ }
+ },
+ "required" : [ "Value", "Key" ]
+ },
+ "ConnectionTrackingSpecification" : {
+ "additionalProperties" : false,
+ "type" : "object",
+ "properties" : {
+ "UdpTimeout" : {
+ "type" : "integer"
+ },
+ "TcpEstablishedTimeout" : {
+ "type" : "integer"
+ },
+ "UdpStreamTimeout" : {
+ "type" : "integer"
+ }
+ }
+ }
+ },
"properties" : {
"Description" : {
"description" : "A description for the network interface.",
@@ -13,11 +116,15 @@
"description" : "Assigns a single private IP address to the network interface, which is used as the primary private IP address. If you want to specify multiple private IP address, use the PrivateIpAddresses property. ",
"type" : "string"
},
+ "PrimaryIpv6Address" : {
+ "description" : "The primary IPv6 address",
+ "type" : "string"
+ },
"PrivateIpAddresses" : {
- "description" : "Assigns a list of private IP addresses to the network interface. You can specify a primary private IP address by setting the value of the Primary property to true in the PrivateIpAddressSpecification property. If you want EC2 to automatically assign private IP addresses, use the SecondaryPrivateIpAddressCount property and do not specify this property.",
- "type" : "array",
"uniqueItems" : false,
+ "description" : "Assigns a list of private IP addresses to the network interface. You can specify a primary private IP address by setting the value of the Primary property to true in the PrivateIpAddressSpecification property. If you want EC2 to automatically assign private IP addresses, use the SecondaryPrivateIpAddressCount property and do not specify this property.",
"insertionOrder" : false,
+ "type" : "array",
"items" : {
"$ref" : "#/definitions/PrivateIpAddressSpecification"
}
@@ -26,15 +133,19 @@
"description" : "The number of secondary private IPv4 addresses to assign to a network interface. When you specify a number of secondary IPv4 addresses, Amazon EC2 selects these IP addresses within the subnet's IPv4 CIDR range. You can't specify this option and specify more than one private IP address using privateIpAddresses",
"type" : "integer"
},
+ "Ipv6PrefixCount" : {
+ "description" : "The number of IPv6 prefixes to assign to a network interface. When you specify a number of IPv6 prefixes, Amazon EC2 selects these prefixes from your existing subnet CIDR reservations, if available, or from free spaces in the subnet. By default, these will be /80 prefixes. You can't specify a count of IPv6 prefixes if you've specified one of the following: specific IPv6 prefixes, specific IPv6 addresses, or a count of IPv6 addresses.",
+ "type" : "integer"
+ },
"PrimaryPrivateIpAddress" : {
"description" : "Returns the primary private IP address of the network interface.",
"type" : "string"
},
"Ipv4Prefixes" : {
- "description" : "Assigns a list of IPv4 prefixes to the network interface. If you want EC2 to automatically assign IPv4 prefixes, use the Ipv4PrefixCount property and do not specify this property. Presently, only /28 prefixes are supported. You can't specify IPv4 prefixes if you've specified one of the following: a count of IPv4 prefixes, specific private IPv4 addresses, or a count of private IPv4 addresses.",
- "type" : "array",
"uniqueItems" : false,
+ "description" : "Assigns a list of IPv4 prefixes to the network interface. If you want EC2 to automatically assign IPv4 prefixes, use the Ipv4PrefixCount property and do not specify this property. Presently, only /28 prefixes are supported. You can't specify IPv4 prefixes if you've specified one of the following: a count of IPv4 prefixes, specific private IPv4 addresses, or a count of private IPv4 addresses.",
"insertionOrder" : false,
+ "type" : "array",
"items" : {
"$ref" : "#/definitions/Ipv4PrefixSpecification"
}
@@ -43,37 +154,37 @@
"description" : "The number of IPv4 prefixes to assign to a network interface. When you specify a number of IPv4 prefixes, Amazon EC2 selects these prefixes from your existing subnet CIDR reservations, if available, or from free spaces in the subnet. By default, these will be /28 prefixes. You can't specify a count of IPv4 prefixes if you've specified one of the following: specific IPv4 prefixes, specific private IPv4 addresses, or a count of private IPv4 addresses.",
"type" : "integer"
},
+ "EnablePrimaryIpv6" : {
+ "description" : "If you have instances or ENIs that rely on the IPv6 address not changing, to avoid disrupting traffic to instances or ENIs, you can enable a primary IPv6 address. Enable this option to automatically assign an IPv6 associated with the ENI attached to your instance to be the primary IPv6 address. When you enable an IPv6 address to be a primary IPv6, you cannot disable it. Traffic will be routed to the primary IPv6 address until the instance is terminated or the ENI is detached. If you have multiple IPv6 addresses associated with an ENI and you enable a primary IPv6 address, the first IPv6 address associated with the ENI becomes the primary IPv6 address.",
+ "type" : "boolean"
+ },
"GroupSet" : {
- "description" : "A list of security group IDs associated with this network interface.",
- "type" : "array",
"uniqueItems" : false,
+ "description" : "A list of security group IDs associated with this network interface.",
"insertionOrder" : false,
+ "type" : "array",
"items" : {
"type" : "string"
}
},
"Ipv6Addresses" : {
- "description" : "One or more specific IPv6 addresses from the IPv6 CIDR block range of your subnet to associate with the network interface. If you're specifying a number of IPv6 addresses, use the Ipv6AddressCount property and don't specify this property.",
- "type" : "array",
"uniqueItems" : true,
+ "description" : "One or more specific IPv6 addresses from the IPv6 CIDR block range of your subnet to associate with the network interface. If you're specifying a number of IPv6 addresses, use the Ipv6AddressCount property and don't specify this property.",
"insertionOrder" : false,
+ "type" : "array",
"items" : {
"$ref" : "#/definitions/InstanceIpv6Address"
}
},
"Ipv6Prefixes" : {
- "description" : "Assigns a list of IPv6 prefixes to the network interface. If you want EC2 to automatically assign IPv6 prefixes, use the Ipv6PrefixCount property and do not specify this property. Presently, only /80 prefixes are supported. You can't specify IPv6 prefixes if you've specified one of the following: a count of IPv6 prefixes, specific IPv6 addresses, or a count of IPv6 addresses.",
- "type" : "array",
"uniqueItems" : false,
+ "description" : "Assigns a list of IPv6 prefixes to the network interface. If you want EC2 to automatically assign IPv6 prefixes, use the Ipv6PrefixCount property and do not specify this property. Presently, only /80 prefixes are supported. You can't specify IPv6 prefixes if you've specified one of the following: a count of IPv6 prefixes, specific IPv6 addresses, or a count of IPv6 addresses.",
"insertionOrder" : false,
+ "type" : "array",
"items" : {
"$ref" : "#/definitions/Ipv6PrefixSpecification"
}
},
- "Ipv6PrefixCount" : {
- "description" : "The number of IPv6 prefixes to assign to a network interface. When you specify a number of IPv6 prefixes, Amazon EC2 selects these prefixes from your existing subnet CIDR reservations, if available, or from free spaces in the subnet. By default, these will be /80 prefixes. You can't specify a count of IPv6 prefixes if you've specified one of the following: specific IPv6 prefixes, specific IPv6 addresses, or a count of IPv6 addresses.",
- "type" : "integer"
- },
"SubnetId" : {
"description" : "The ID of the subnet to associate with the network interface.",
"type" : "string"
@@ -87,148 +198,37 @@
"type" : "string"
},
"SecondaryPrivateIpAddresses" : {
- "description" : "Returns the secondary private IP addresses of the network interface.",
- "type" : "array",
"uniqueItems" : false,
+ "description" : "Returns the secondary private IP addresses of the network interface.",
"insertionOrder" : false,
+ "type" : "array",
"items" : {
"type" : "string"
}
},
+ "VpcId" : {
+ "description" : "The ID of the VPC",
+ "type" : "string"
+ },
"Ipv6AddressCount" : {
"description" : "The number of IPv6 addresses to assign to a network interface. Amazon EC2 automatically selects the IPv6 addresses from the subnet range. To specify specific IPv6 addresses, use the Ipv6Addresses property and don't specify this property.",
"type" : "integer"
},
- "EnablePrimaryIpv6" : {
- "description" : "If you have instances or ENIs that rely on the IPv6 address not changing, to avoid disrupting traffic to instances or ENIs, you can enable a primary IPv6 address. Enable this option to automatically assign an IPv6 associated with the ENI attached to your instance to be the primary IPv6 address. When you enable an IPv6 address to be a primary IPv6, you cannot disable it. Traffic will be routed to the primary IPv6 address until the instance is terminated or the ENI is detached. If you have multiple IPv6 addresses associated with an ENI and you enable a primary IPv6 address, the first IPv6 address associated with the ENI becomes the primary IPv6 address.",
- "type" : "boolean"
- },
- "PrimaryIpv6Address" : {
- "description" : "The primary IPv6 address",
- "type" : "string"
- },
- "ConnectionTrackingSpecification" : {
- "$ref" : "#/definitions/ConnectionTrackingSpecification"
- },
"Id" : {
"description" : "Network interface id.",
"type" : "string"
},
"Tags" : {
- "description" : "An arbitrary set of tags (key-value pairs) for this network interface.",
- "type" : "array",
"uniqueItems" : false,
+ "description" : "An arbitrary set of tags (key-value pairs) for this network interface.",
"insertionOrder" : false,
+ "type" : "array",
"items" : {
"$ref" : "#/definitions/Tag"
}
},
- "VpcId" : {
- "description" : "The ID of the VPC",
- "type" : "string"
- }
- },
- "definitions" : {
- "PrivateIpAddressSpecification" : {
- "type" : "object",
- "additionalProperties" : false,
- "properties" : {
- "PrivateIpAddress" : {
- "type" : "string"
- },
- "Primary" : {
- "type" : "boolean"
- }
- },
- "required" : [ "PrivateIpAddress", "Primary" ]
- },
- "InstanceIpv6Address" : {
- "type" : "object",
- "additionalProperties" : false,
- "properties" : {
- "Ipv6Address" : {
- "type" : "string"
- }
- },
- "required" : [ "Ipv6Address" ]
- },
- "Ipv4PrefixSpecification" : {
- "type" : "object",
- "additionalProperties" : false,
- "properties" : {
- "Ipv4Prefix" : {
- "type" : "string"
- }
- },
- "required" : [ "Ipv4Prefix" ]
- },
- "Ipv6PrefixSpecification" : {
- "type" : "object",
- "additionalProperties" : false,
- "properties" : {
- "Ipv6Prefix" : {
- "type" : "string"
- }
- },
- "required" : [ "Ipv6Prefix" ]
- },
"ConnectionTrackingSpecification" : {
- "type" : "object",
- "additionalProperties" : false,
- "properties" : {
- "TcpEstablishedTimeout" : {
- "type" : "integer"
- },
- "UdpStreamTimeout" : {
- "type" : "integer"
- },
- "UdpTimeout" : {
- "type" : "integer"
- }
- }
- },
- "Tag" : {
- "type" : "object",
- "additionalProperties" : false,
- "properties" : {
- "Value" : {
- "type" : "string"
- },
- "Key" : {
- "type" : "string"
- }
- },
- "required" : [ "Value", "Key" ]
- }
- },
- "required" : [ "SubnetId" ],
- "createOnlyProperties" : [ "/properties/PrivateIpAddress", "/properties/InterfaceType", "/properties/SubnetId" ],
- "primaryIdentifier" : [ "/properties/Id" ],
- "readOnlyProperties" : [ "/properties/Id", "/properties/SecondaryPrivateIpAddresses", "/properties/PrimaryPrivateIpAddress", "/properties/PrimaryIpv6Address", "/properties/VpcId" ],
- "conditionalCreateOnlyProperties" : [ "/properties/PrivateIpAddresses", "/properties/EnablePrimaryIpv6", "/properties/ConnectionTrackingSpecification" ],
- "tagging" : {
- "taggable" : true,
- "tagOnCreate" : true,
- "tagUpdatable" : true,
- "cloudFormationSystemTags" : true,
- "tagProperty" : "/properties/Tags",
- "permissions" : [ "ec2:CreateTags", "ec2:DeleteTags" ]
- },
- "handlers" : {
- "create" : {
- "permissions" : [ "ec2:CreateNetworkInterface", "ec2:DescribeNetworkInterfaces", "ec2:CreateTags", "ec2:ModifyNetworkInterfaceAttribute" ]
- },
- "delete" : {
- "permissions" : [ "ec2:DescribeNetworkInterfaces", "ec2:DeleteNetworkInterface" ]
- },
- "list" : {
- "permissions" : [ "ec2:DescribeNetworkInterfaces" ]
- },
- "read" : {
- "permissions" : [ "ec2:DescribeNetworkInterfaces" ]
- },
- "update" : {
- "permissions" : [ "ec2:DescribeNetworkInterfaces", "ec2:ModifyNetworkInterfaceAttribute", "ec2:UnassignIpv6Addresses", "ec2:AssignIpv6Addresses", "ec2:DeleteTags", "ec2:CreateTags", "ec2:UnassignPrivateIpAddresses", "ec2:AssignPrivateIpAddresses" ]
+ "$ref" : "#/definitions/ConnectionTrackingSpecification"
}
}
}
\ No newline at end of file
diff --git a/aws-cloudformation-schema/aws-ecs-taskdefinition.json b/aws-cloudformation-schema/aws-ecs-taskdefinition.json
index 6b7180a622..88de9cb4ca 100644
--- a/aws-cloudformation-schema/aws-ecs-taskdefinition.json
+++ b/aws-cloudformation-schema/aws-ecs-taskdefinition.json
@@ -31,7 +31,7 @@
"typeName" : "AWS::ECS::TaskDefinition",
"readOnlyProperties" : [ "/properties/TaskDefinitionArn" ],
"description" : "Registers a new task definition from the supplied ``family`` and ``containerDefinitions``. Optionally, you can add data volumes to your containers with the ``volumes`` parameter. For more information about task definition parameters and defaults, see [Amazon ECS Task Definitions](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/task_defintions.html) in the *Amazon Elastic Container Service Developer Guide*.\n You can specify a role for your task with the ``taskRoleArn`` parameter. When you specify a role for a task, its containers can then use the latest versions of the CLI or SDKs to make API requests to the AWS services that are specified in the policy that's associated with the role. For more information, see [IAM Roles for Tasks](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/task-iam-roles.html) in the *Amazon Elastic Container Service Developer Guide*.\n You can specify a Docker networking mode for the containers in your task definition with the ``networkMode`` parameter. If you specify the ``awsvpc`` network mode, the task is allocated an elastic network interface, and you must specify a [NetworkConfiguration](https://docs.aws.amazon.com/AmazonECS/latest/APIReference/API_NetworkConfiguration.html) when you create a service or run a task with the task definition. For more information, see [Task Networking](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/task-networking.html) in the *Amazon Elastic Container Service Developer Guide*.\n In the following example or examples, the Authorization header contents (``AUTHPARAMS``) must be replaced with an AWS Signature Version 4 signature. For more information, see [Signature Version 4 Signing Process](https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html) in the *General Reference*.\n You only need to learn how to sign HTTP requests if you intend to create them manually. When you use the [](https://docs.aws.amazon.com/cli/) or one of the [SDKs](https://docs.aws.amazon.com/tools/) to make requests to AWS, these tools automatically sign the requests for you, with the access key that you specify when you configure the tools. When you use these tools, you don't have to sign requests yourself.",
- "createOnlyProperties" : [ "/properties/Family", "/properties/ContainerDefinitions", "/properties/Cpu", "/properties/ExecutionRoleArn", "/properties/InferenceAccelerators", "/properties/Memory", "/properties/NetworkMode", "/properties/PlacementConstraints", "/properties/ProxyConfiguration", "/properties/RequiresCompatibilities", "/properties/RuntimePlatform", "/properties/TaskRoleArn", "/properties/Volumes", "/properties/PidMode", "/properties/IpcMode", "/properties/EphemeralStorage" ],
+ "createOnlyProperties" : [ "/properties/Family", "/properties/ContainerDefinitions", "/properties/Cpu", "/properties/EnableFaultInjection", "/properties/ExecutionRoleArn", "/properties/InferenceAccelerators", "/properties/Memory", "/properties/NetworkMode", "/properties/PlacementConstraints", "/properties/ProxyConfiguration", "/properties/RequiresCompatibilities", "/properties/RuntimePlatform", "/properties/TaskRoleArn", "/properties/Volumes", "/properties/PidMode", "/properties/IpcMode", "/properties/EphemeralStorage" ],
"additionalProperties" : false,
"primaryIdentifier" : [ "/properties/TaskDefinitionArn" ],
"definitions" : {
@@ -292,7 +292,7 @@
},
"VersionConsistency" : {
"default" : "enabled",
- "description" : "",
+ "description" : "Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is ``enabled``. If you set the value for a container as ``disabled``, Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide*.",
"type" : "string",
"enum" : [ "enabled", "disabled" ]
},
@@ -1031,6 +1031,10 @@
"description" : "The process namespace to use for the containers in the task. The valid values are ``host`` or ``task``. On Fargate for Linux containers, the only valid value is ``task``. For example, monitoring sidecars might need ``pidMode`` to access information about other containers running in the same task.\n If ``host`` is specified, all containers within the tasks that specified the ``host`` PID mode on the same container instance share the same process namespace with the host Amazon EC2 instance.\n If ``task`` is specified, all containers within the specified task share the same process namespace.\n If no value is specified, the default is a private namespace for each container.\n If the ``host`` PID mode is used, there's a heightened risk of undesired process namespace exposure.\n This parameter is not supported for Windows containers.\n This parameter is only supported for tasks that are hosted on FARGATElong if the tasks are using platform version ``1.4.0`` or later (Linux). This isn't supported for Windows containers on Fargate.",
"type" : "string"
},
+ "EnableFaultInjection" : {
+ "description" : "",
+ "type" : "boolean"
+ },
"ExecutionRoleArn" : {
"description" : "The Amazon Resource Name (ARN) of the task execution role that grants the Amazon ECS container agent permission to make AWS API calls on your behalf. For informationabout the required IAM roles for Amazon ECS, see [IAM roles for Amazon ECS](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/security-ecs-iam-role-overview.html) in the *Amazon Elastic Container Service Developer Guide*.",
"type" : "string"
diff --git a/aws-cloudformation-schema/aws-healthlake-fhirdatastore.json b/aws-cloudformation-schema/aws-healthlake-fhirdatastore.json
index ebd88d0c6d..f56b2e18a1 100644
--- a/aws-cloudformation-schema/aws-healthlake-fhirdatastore.json
+++ b/aws-cloudformation-schema/aws-healthlake-fhirdatastore.json
@@ -73,6 +73,11 @@
}
},
"required" : [ "KmsEncryptionConfig" ],
+ "default" : {
+ "KmsEncryptionConfig" : {
+ "CmkType" : "AWS_OWNED_KMS_KEY"
+ }
+ },
"additionalProperties" : false
},
"KmsEncryptionConfig" : {
@@ -121,6 +126,10 @@
}
},
"required" : [ "AuthorizationStrategy" ],
+ "default" : {
+ "AuthorizationStrategy" : "AWS_AUTH",
+ "FineGrainedAuthorizationEnabled" : false
+ },
"additionalProperties" : false
},
"Tag" : {
diff --git a/aws-cloudformation-schema/aws-imagebuilder-component.json b/aws-cloudformation-schema/aws-imagebuilder-component.json
index a2643f3ecb..0778e2a154 100644
--- a/aws-cloudformation-schema/aws-imagebuilder-component.json
+++ b/aws-cloudformation-schema/aws-imagebuilder-component.json
@@ -89,13 +89,13 @@
"permissions" : [ "iam:CreateServiceLinkedRole", "iam:GetRole", "kms:GenerateDataKey", "kms:GenerateDataKeyPair", "kms:GenerateDataKeyPairWithoutPlaintext", "kms:GenerateDataKeyWithoutPlaintext", "kms:Encrypt", "kms:Decrypt", "s3:GetObject", "s3:HeadBucket", "s3:GetBucketLocation", "imagebuilder:TagResource", "imagebuilder:GetComponent", "imagebuilder:CreateComponent" ]
},
"read" : {
- "permissions" : [ "imagebuilder:GetComponent" ]
+ "permissions" : [ "imagebuilder:GetComponent", "kms:Decrypt" ]
},
"delete" : {
"permissions" : [ "imagebuilder:GetComponent", "imagebuilder:UnTagResource", "imagebuilder:DeleteComponent" ]
},
"list" : {
- "permissions" : [ "imagebuilder:ListComponents" ],
+ "permissions" : [ "imagebuilder:ListComponents", "imagebuilder:ListComponentBuildVersions" ],
"handlerSchema" : {
"properties" : {
"Arn" : {
diff --git a/aws-cloudformation-schema/aws-imagebuilder-containerrecipe.json b/aws-cloudformation-schema/aws-imagebuilder-containerrecipe.json
index ae5769ddc0..04a0f0547a 100644
--- a/aws-cloudformation-schema/aws-imagebuilder-containerrecipe.json
+++ b/aws-cloudformation-schema/aws-imagebuilder-containerrecipe.json
@@ -241,7 +241,7 @@
"permissions" : [ "iam:GetRole", "iam:CreateServiceLinkedRole", "imagebuilder:GetComponent", "imagebuilder:TagResource", "imagebuilder:GetContainerRecipe", "imagebuilder:CreateContainerRecipe", "imagebuilder:GetImage", "kms:Encrypt", "kms:Decrypt", "kms:ReEncryptFrom", "kms:ReEncryptTo", "kms:GenerateDataKey", "kms:GenerateDataKeyPair", "kms:GenerateDataKeyPairWithoutPlaintext", "kms:GenerateDataKeyWithoutPlaintext", "s3:GetObject", "s3:ListBucket", "ecr:DescribeRepositories", "ec2:DescribeImages" ]
},
"read" : {
- "permissions" : [ "imagebuilder:GetContainerRecipe" ]
+ "permissions" : [ "imagebuilder:GetContainerRecipe", "kms:Decrypt" ]
},
"delete" : {
"permissions" : [ "imagebuilder:UnTagResource", "imagebuilder:GetContainerRecipe", "imagebuilder:DeleteContainerRecipe" ]
diff --git a/aws-cloudformation-schema/aws-imagebuilder-image.json b/aws-cloudformation-schema/aws-imagebuilder-image.json
index ff6b8454e5..03aa8f91c3 100644
--- a/aws-cloudformation-schema/aws-imagebuilder-image.json
+++ b/aws-cloudformation-schema/aws-imagebuilder-image.json
@@ -196,7 +196,7 @@
"permissions" : [ "imagebuilder:GetImage", "imagebuilder:DeleteImage", "imagebuilder:UnTagResource", "imagebuilder:CancelImageCreation" ]
},
"list" : {
- "permissions" : [ "imagebuilder:ListImages" ],
+ "permissions" : [ "imagebuilder:ListImages", "imagebuilder:ListImageBuildVersions" ],
"handlerSchema" : {
"properties" : {
"Arn" : {
diff --git a/aws-cloudformation-schema/aws-imagebuilder-workflow.json b/aws-cloudformation-schema/aws-imagebuilder-workflow.json
index 5a8fe5a752..93c8ca3c69 100644
--- a/aws-cloudformation-schema/aws-imagebuilder-workflow.json
+++ b/aws-cloudformation-schema/aws-imagebuilder-workflow.json
@@ -72,13 +72,13 @@
"permissions" : [ "iam:GetRole", "kms:GenerateDataKey", "kms:GenerateDataKeyPair", "kms:GenerateDataKeyPairWithoutPlaintext", "kms:GenerateDataKeyWithoutPlaintext", "kms:Encrypt", "kms:Decrypt", "s3:GetObject", "s3:HeadBucket", "s3:GetBucketLocation", "imagebuilder:TagResource", "imagebuilder:GetWorkflow", "imagebuilder:CreateWorkflow" ]
},
"read" : {
- "permissions" : [ "imagebuilder:GetWorkflow" ]
+ "permissions" : [ "imagebuilder:GetWorkflow", "kms:Decrypt" ]
},
"delete" : {
"permissions" : [ "imagebuilder:GetWorkflow", "imagebuilder:UnTagResource", "imagebuilder:DeleteWorkflow" ]
},
"list" : {
- "permissions" : [ "imagebuilder:ListWorkflows" ],
+ "permissions" : [ "imagebuilder:ListWorkflows", "imagebuilder:ListWorkflowBuildVersions" ],
"handlerSchema" : {
"properties" : {
"Arn" : {
diff --git a/aws-cloudformation-schema/aws-iot-command.json b/aws-cloudformation-schema/aws-iot-command.json
new file mode 100644
index 0000000000..dd94b59259
--- /dev/null
+++ b/aws-cloudformation-schema/aws-iot-command.json
@@ -0,0 +1,212 @@
+{
+ "typeName" : "AWS::IoT::Command",
+ "description" : "Represents the resource definition of AWS IoT Command.",
+ "definitions" : {
+ "CommandParameterList" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/CommandParameter"
+ },
+ "minItems" : 1,
+ "insertionOrder" : false
+ },
+ "CommandParameter" : {
+ "type" : "object",
+ "properties" : {
+ "Name" : {
+ "$ref" : "#/definitions/CommandParameterName"
+ },
+ "Value" : {
+ "$ref" : "#/definitions/CommandParameterValue"
+ },
+ "DefaultValue" : {
+ "$ref" : "#/definitions/CommandParameterValue"
+ },
+ "Description" : {
+ "$ref" : "#/definitions/CommandParameterDescription"
+ }
+ },
+ "required" : [ "Name" ],
+ "additionalProperties" : false
+ },
+ "CommandParameterName" : {
+ "type" : "string",
+ "pattern" : "^[.$a-zA-Z0-9_-]+$",
+ "minLength" : 1,
+ "maxLength" : 192
+ },
+ "CommandParameterDescription" : {
+ "type" : "string",
+ "maxLength" : 2028
+ },
+ "CommandParameterValue" : {
+ "type" : "object",
+ "properties" : {
+ "S" : {
+ "type" : "string",
+ "minLength" : 1
+ },
+ "B" : {
+ "type" : "boolean"
+ },
+ "I" : {
+ "type" : "integer"
+ },
+ "L" : {
+ "type" : "string",
+ "pattern" : "^-?\\d+$",
+ "maxLength" : 19
+ },
+ "D" : {
+ "type" : "number"
+ },
+ "BIN" : {
+ "type" : "string",
+ "minLength" : 1
+ },
+ "UL" : {
+ "type" : "string",
+ "pattern" : "^[0-9]*$",
+ "minLength" : 1,
+ "maxLength" : 20
+ }
+ },
+ "additionalProperties" : false
+ },
+ "MimeType" : {
+ "type" : "string",
+ "minLength" : 1
+ },
+ "CommandPayloadContent" : {
+ "type" : "string"
+ },
+ "CommandPayload" : {
+ "type" : "object",
+ "properties" : {
+ "Content" : {
+ "$ref" : "#/definitions/CommandPayloadContent"
+ },
+ "ContentType" : {
+ "$ref" : "#/definitions/MimeType"
+ }
+ },
+ "additionalProperties" : false
+ },
+ "Tag" : {
+ "description" : "A key-value pair to associate with a resource.",
+ "type" : "object",
+ "properties" : {
+ "Key" : {
+ "type" : "string",
+ "description" : "The tag's key.",
+ "minLength" : 1,
+ "maxLength" : 128
+ },
+ "Value" : {
+ "type" : "string",
+ "description" : "The tag's value.",
+ "minLength" : 1,
+ "maxLength" : 256
+ }
+ },
+ "required" : [ "Value", "Key" ],
+ "additionalProperties" : false
+ }
+ },
+ "properties" : {
+ "CommandArn" : {
+ "type" : "string",
+ "description" : "The Amazon Resource Name (ARN) of the command."
+ },
+ "CommandId" : {
+ "type" : "string",
+ "pattern" : "^[a-zA-Z0-9_-]+$",
+ "minLength" : 1,
+ "maxLength" : 64,
+ "description" : "The unique identifier for the command."
+ },
+ "CreatedAt" : {
+ "type" : "string",
+ "description" : "The date and time when the command was created."
+ },
+ "Deprecated" : {
+ "type" : "boolean",
+ "description" : "A flag indicating whether the command is deprecated."
+ },
+ "Description" : {
+ "type" : "string",
+ "maxLength" : 2028,
+ "description" : "The description of the command."
+ },
+ "DisplayName" : {
+ "type" : "string",
+ "description" : "The display name for the command."
+ },
+ "LastUpdatedAt" : {
+ "type" : "string",
+ "description" : "The date and time when the command was last updated."
+ },
+ "MandatoryParameters" : {
+ "$ref" : "#/definitions/CommandParameterList",
+ "description" : "The list of mandatory parameters for the command."
+ },
+ "Namespace" : {
+ "type" : "string",
+ "enum" : [ "AWS-IoT", "AWS-IoT-FleetWise" ],
+ "description" : "The namespace to which the command belongs."
+ },
+ "RoleArn" : {
+ "type" : "string",
+ "minLength" : 20,
+ "maxLength" : 2028,
+ "description" : "The customer role associated with the command."
+ },
+ "Payload" : {
+ "$ref" : "#/definitions/CommandPayload",
+ "description" : "The payload associated with the command."
+ },
+ "PendingDeletion" : {
+ "type" : "boolean",
+ "description" : "A flag indicating whether the command is pending deletion."
+ },
+ "Tags" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/Tag"
+ },
+ "description" : "The tags to be associated with the command.",
+ "insertionOrder" : true
+ }
+ },
+ "required" : [ "CommandId" ],
+ "createOnlyProperties" : [ "/properties/CommandId" ],
+ "readOnlyProperties" : [ "/properties/CommandArn" ],
+ "writeOnlyProperties" : [ "/properties/LastUpdatedAt" ],
+ "primaryIdentifier" : [ "/properties/CommandId" ],
+ "handlers" : {
+ "create" : {
+ "permissions" : [ "iam:PassRole", "iot:CreateCommand", "iot:TagResource" ]
+ },
+ "read" : {
+ "permissions" : [ "iot:GetCommand", "iot:ListTagsForResource" ]
+ },
+ "update" : {
+ "permissions" : [ "iam:PassRole", "iot:UpdateCommand", "iot:GetCommand", "iot:TagResource", "iot:UntagResource", "iot:ListTagsForResource" ]
+ },
+ "delete" : {
+ "permissions" : [ "iot:GetCommand", "iot:UpdateCommand", "iot:DeleteCommand" ]
+ },
+ "list" : {
+ "permissions" : [ "iot:ListCommands" ]
+ }
+ },
+ "additionalProperties" : false,
+ "tagging" : {
+ "taggable" : true,
+ "tagOnCreate" : true,
+ "tagUpdatable" : true,
+ "cloudFormationSystemTags" : false,
+ "tagProperty" : "/properties/Tags",
+ "permissions" : [ "iot:TagResource", "iot:UntagResource", "iot:ListTagsForResource" ]
+ }
+}
\ No newline at end of file
diff --git a/aws-cloudformation-schema/aws-iotsitewise-gateway.json b/aws-cloudformation-schema/aws-iotsitewise-gateway.json
index 7b6479b075..f238d805d5 100644
--- a/aws-cloudformation-schema/aws-iotsitewise-gateway.json
+++ b/aws-cloudformation-schema/aws-iotsitewise-gateway.json
@@ -1,50 +1,55 @@
{
+ "sourceUrl" : "https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-IoTSiteWise.git",
+ "tagging" : {
+ "permissions" : [ "iotsitewise:TagResource", "iotsitewise:UntagResource", "iotsitewise:ListTagsForResource" ],
+ "taggable" : true,
+ "tagOnCreate" : true,
+ "tagUpdatable" : true,
+ "tagProperty" : "/properties/Tags",
+ "cloudFormationSystemTags" : true
+ },
+ "handlers" : {
+ "read" : {
+ "permissions" : [ "iotsitewise:DescribeGateway", "iotsitewise:DescribeGatewayCapabilityConfiguration", "iotsitewise:ListTagsForResource" ]
+ },
+ "create" : {
+ "permissions" : [ "iotsitewise:CreateGateway", "iotsitewise:DescribeGateway", "iotsitewise:DescribeGatewayCapabilityConfiguration", "iotsitewise:UpdateGatewayCapabilityConfiguration", "iam:PassRole", "iam:GetRole", "greengrass:GetCoreDevice", "iotsitewise:ListTagsForResource", "iotsitewise:TagResource", "iot:DescribeThing" ]
+ },
+ "update" : {
+ "permissions" : [ "iotsitewise:UpdateGateway", "iotsitewise:UpdateGatewayCapabilityConfiguration", "iotsitewise:TagResource", "iotsitewise:UntagResource", "iotsitewise:DescribeGateway", "iotsitewise:DescribeGatewayCapabilityConfiguration", "iotsitewise:ListTagsForResource" ]
+ },
+ "list" : {
+ "permissions" : [ "iotsitewise:ListGateways", "iotsitewise:ListTagsForResource" ]
+ },
+ "delete" : {
+ "permissions" : [ "iotsitewise:DescribeGateway", "iotsitewise:DescribeGatewayCapabilityConfiguration", "iotsitewise:DeleteGateway" ]
+ }
+ },
"typeName" : "AWS::IoTSiteWise::Gateway",
+ "readOnlyProperties" : [ "/properties/GatewayId" ],
"description" : "Resource schema for AWS::IoTSiteWise::Gateway",
- "sourceUrl" : "https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-IoTSiteWise.git",
+ "createOnlyProperties" : [ "/properties/GatewayPlatform" ],
+ "additionalProperties" : false,
+ "primaryIdentifier" : [ "/properties/GatewayId" ],
"definitions" : {
- "GatewayPlatform" : {
- "description" : "Contains a gateway's platform information.",
- "type" : "object",
+ "GatewayCapabilitySummary" : {
+ "description" : "Contains a summary of a gateway capability configuration.",
"additionalProperties" : false,
- "properties" : {
- "Greengrass" : {
- "description" : "A gateway that runs on AWS IoT Greengrass V1.",
- "$ref" : "#/definitions/Greengrass"
- },
- "GreengrassV2" : {
- "description" : "A gateway that runs on AWS IoT Greengrass V2.",
- "$ref" : "#/definitions/GreengrassV2"
- },
- "SiemensIE" : {
- "description" : "A gateway that runs on Siemens Industrial Edge.",
- "$ref" : "#/definitions/SiemensIE"
- }
- },
- "oneOf" : [ {
- "required" : [ "Greengrass" ]
- }, {
- "required" : [ "GreengrassV2" ]
- }, {
- "required" : [ "SiemensIE" ]
- } ]
- },
- "Greengrass" : {
- "description" : "Contains the ARN of AWS IoT Greengrass Group V1 that the gateway runs on.",
"type" : "object",
- "additionalProperties" : false,
"properties" : {
- "GroupArn" : {
- "description" : "The ARN of the Greengrass group.",
- "type" : "string"
+ "CapabilityNamespace" : {
+ "$ref" : "#/definitions/CapabilityNamespace"
+ },
+ "CapabilityConfiguration" : {
+ "$ref" : "#/definitions/CapabilityConfiguration"
}
},
- "required" : [ "GroupArn" ]
+ "required" : [ "CapabilityNamespace" ]
},
"GreengrassV2" : {
"description" : "Contains the CoreDeviceThingName of AWS IoT Greengrass Group V2 that the gateway runs on.",
- "type" : "object",
"additionalProperties" : false,
+ "type" : "object",
"properties" : {
"CoreDeviceThingName" : {
"description" : "The name of the CoreDevice in GreenGrass V2.",
@@ -53,56 +58,90 @@
},
"required" : [ "CoreDeviceThingName" ]
},
- "SiemensIE" : {
- "description" : "Contains the IotCoreThingName of AWS IoT Thing that the gateway runs on.",
- "type" : "object",
+ "CapabilityNamespace" : {
+ "description" : "The namespace of the capability configuration.",
+ "type" : "string"
+ },
+ "Greengrass" : {
+ "description" : "Contains the ARN of AWS IoT Greengrass Group V1 that the gateway runs on.",
"additionalProperties" : false,
+ "type" : "object",
"properties" : {
- "IotCoreThingName" : {
- "description" : "The name of the IoT Core Thing.",
+ "GroupArn" : {
+ "description" : "The ARN of the Greengrass group.",
"type" : "string"
}
},
- "required" : [ "IotCoreThingName" ]
+ "required" : [ "GroupArn" ]
+ },
+ "CapabilityConfiguration" : {
+ "description" : "The JSON document that defines the gateway capability's configuration.",
+ "type" : "string"
+ },
+ "GatewayPlatform" : {
+ "oneOf" : [ {
+ "required" : [ "Greengrass" ]
+ }, {
+ "required" : [ "GreengrassV2" ]
+ }, {
+ "required" : [ "SiemensIE" ]
+ } ],
+ "description" : "Contains a gateway's platform information.",
+ "additionalProperties" : false,
+ "type" : "object",
+ "properties" : {
+ "GreengrassV2" : {
+ "description" : "A gateway that runs on AWS IoT Greengrass V2.",
+ "$ref" : "#/definitions/GreengrassV2"
+ },
+ "Greengrass" : {
+ "description" : "A gateway that runs on AWS IoT Greengrass V1.",
+ "$ref" : "#/definitions/Greengrass"
+ },
+ "SiemensIE" : {
+ "description" : "A gateway that runs on Siemens Industrial Edge.",
+ "$ref" : "#/definitions/SiemensIE"
+ }
+ }
},
"Tag" : {
"description" : "To add or update tag, provide both key and value. To delete tag, provide only tag key to be deleted",
- "type" : "object",
"additionalProperties" : false,
+ "type" : "object",
"properties" : {
- "Key" : {
+ "Value" : {
"type" : "string"
},
- "Value" : {
+ "Key" : {
"type" : "string"
}
},
"required" : [ "Key", "Value" ]
},
- "CapabilityNamespace" : {
- "description" : "The namespace of the capability configuration.",
- "type" : "string"
- },
- "CapabilityConfiguration" : {
- "description" : "The JSON document that defines the gateway capability's configuration.",
- "type" : "string"
- },
- "GatewayCapabilitySummary" : {
- "description" : "Contains a summary of a gateway capability configuration.",
- "type" : "object",
+ "SiemensIE" : {
+ "description" : "Contains the IotCoreThingName of AWS IoT Thing that the gateway runs on.",
"additionalProperties" : false,
+ "type" : "object",
"properties" : {
- "CapabilityNamespace" : {
- "$ref" : "#/definitions/CapabilityNamespace"
- },
- "CapabilityConfiguration" : {
- "$ref" : "#/definitions/CapabilityConfiguration"
+ "IotCoreThingName" : {
+ "description" : "The name of the IoT Core Thing.",
+ "type" : "string"
}
},
- "required" : [ "CapabilityNamespace" ]
+ "required" : [ "IotCoreThingName" ]
}
},
+ "required" : [ "GatewayName", "GatewayPlatform" ],
"properties" : {
+ "GatewayCapabilitySummaries" : {
+ "uniqueItems" : true,
+ "description" : "A list of gateway capability summaries that each contain a namespace and status.",
+ "insertionOrder" : true,
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/GatewayCapabilitySummary"
+ }
+ },
"GatewayName" : {
"description" : "A unique, friendly name for the gateway.",
"type" : "string"
@@ -111,57 +150,18 @@
"description" : "The gateway's platform. You can only specify one platform in a gateway.",
"$ref" : "#/definitions/GatewayPlatform"
},
- "Tags" : {
- "description" : "A list of key-value pairs that contain metadata for the gateway.",
- "type" : "array",
- "uniqueItems" : false,
- "insertionOrder" : false,
- "items" : {
- "$ref" : "#/definitions/Tag"
- }
- },
"GatewayId" : {
"description" : "The ID of the gateway device.",
"type" : "string"
},
- "GatewayCapabilitySummaries" : {
- "description" : "A list of gateway capability summaries that each contain a namespace and status.",
+ "Tags" : {
+ "uniqueItems" : false,
+ "description" : "A list of key-value pairs that contain metadata for the gateway.",
+ "insertionOrder" : false,
"type" : "array",
- "uniqueItems" : true,
- "insertionOrder" : true,
"items" : {
- "$ref" : "#/definitions/GatewayCapabilitySummary"
+ "$ref" : "#/definitions/Tag"
}
}
- },
- "additionalProperties" : false,
- "tagging" : {
- "taggable" : true,
- "tagOnCreate" : true,
- "tagUpdatable" : true,
- "cloudFormationSystemTags" : true,
- "tagProperty" : "/properties/Tags",
- "permissions" : [ "iotsitewise:TagResource", "iotsitewise:UntagResource", "iotsitewise:ListTagsForResource" ]
- },
- "required" : [ "GatewayName", "GatewayPlatform" ],
- "readOnlyProperties" : [ "/properties/GatewayId" ],
- "createOnlyProperties" : [ "/properties/GatewayPlatform" ],
- "primaryIdentifier" : [ "/properties/GatewayId" ],
- "handlers" : {
- "create" : {
- "permissions" : [ "iotsitewise:CreateGateway", "iotsitewise:DescribeGateway", "iotsitewise:DescribeGatewayCapabilityConfiguration", "iotsitewise:UpdateGatewayCapabilityConfiguration", "iam:PassRole", "iam:GetRole", "greengrass:GetCoreDevice", "iotsitewise:ListTagsForResource", "iotsitewise:TagResource", "iot:DescribeThing" ]
- },
- "read" : {
- "permissions" : [ "iotsitewise:DescribeGateway", "iotsitewise:DescribeGatewayCapabilityConfiguration", "iotsitewise:ListTagsForResource" ]
- },
- "update" : {
- "permissions" : [ "iotsitewise:UpdateGateway", "iotsitewise:UpdateGatewayCapabilityConfiguration", "iotsitewise:TagResource", "iotsitewise:UntagResource", "iotsitewise:DescribeGateway", "iotsitewise:DescribeGatewayCapabilityConfiguration", "iotsitewise:ListTagsForResource" ]
- },
- "delete" : {
- "permissions" : [ "iotsitewise:DescribeGateway", "iotsitewise:DescribeGatewayCapabilityConfiguration", "iotsitewise:DeleteGateway" ]
- },
- "list" : {
- "permissions" : [ "iotsitewise:ListGateways", "iotsitewise:ListTagsForResource" ]
- }
}
}
\ No newline at end of file
diff --git a/aws-cloudformation-schema/aws-logs-transformer.json b/aws-cloudformation-schema/aws-logs-transformer.json
new file mode 100644
index 0000000000..b47ad3e935
--- /dev/null
+++ b/aws-cloudformation-schema/aws-logs-transformer.json
@@ -0,0 +1,577 @@
+{
+ "typeName" : "AWS::Logs::Transformer",
+ "description" : "Specifies a transformer on the log group to transform logs into consistent structured and information rich format.",
+ "sourceUrl" : "https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-logs.git",
+ "properties" : {
+ "LogGroupIdentifier" : {
+ "description" : "Existing log group that you want to associate with this transformer.",
+ "type" : "string",
+ "minLength" : 1,
+ "maxLength" : 2048,
+ "pattern" : "[\\w#+=/:,.@-]*"
+ },
+ "TransformerConfig" : {
+ "description" : "List of processors in a transformer",
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/Processor"
+ },
+ "minItems" : 1,
+ "maxItems" : 20,
+ "insertionOrder" : false
+ }
+ },
+ "required" : [ "LogGroupIdentifier", "TransformerConfig" ],
+ "additionalProperties" : false,
+ "definitions" : {
+ "Processor" : {
+ "description" : "Individual processor configuration",
+ "type" : "object",
+ "properties" : {
+ "ParseCloudfront" : {
+ "$ref" : "#/definitions/ParseCloudfront"
+ },
+ "ParseVPC" : {
+ "$ref" : "#/definitions/ParseVPC"
+ },
+ "ParseWAF" : {
+ "$ref" : "#/definitions/ParseWAF"
+ },
+ "ParseJSON" : {
+ "type" : "object",
+ "properties" : {
+ "Source" : {
+ "type" : "string"
+ },
+ "Destination" : {
+ "$ref" : "#/definitions/NonEmptyAndMaxLengthString"
+ }
+ },
+ "additionalProperties" : false
+ },
+ "ParseRoute53" : {
+ "$ref" : "#/definitions/ParseRoute53"
+ },
+ "ParsePostgres" : {
+ "$ref" : "#/definitions/ParsePostgres"
+ },
+ "ParseKeyValue" : {
+ "type" : "object",
+ "properties" : {
+ "Source" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "Destination" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "FieldDelimiter" : {
+ "type" : "string"
+ },
+ "KeyValueDelimiter" : {
+ "type" : "string"
+ },
+ "KeyPrefix" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "NonMatchValue" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "OverwriteIfExists" : {
+ "type" : "boolean"
+ }
+ },
+ "additionalProperties" : false
+ },
+ "CopyValue" : {
+ "type" : "object",
+ "properties" : {
+ "Entries" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/CopyValueEntry"
+ },
+ "minItems" : 1,
+ "maxItems" : 5,
+ "insertionOrder" : false
+ }
+ },
+ "required" : [ "Entries" ],
+ "additionalProperties" : false
+ },
+ "Csv" : {
+ "type" : "object",
+ "properties" : {
+ "QuoteCharacter" : {
+ "type" : "string",
+ "maxLength" : 1
+ },
+ "Delimiter" : {
+ "type" : "string",
+ "maxLength" : 1
+ },
+ "Source" : {
+ "type" : "string"
+ },
+ "Columns" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/Column"
+ },
+ "minItems" : 1,
+ "maxItems" : 100,
+ "insertionOrder" : false
+ }
+ },
+ "additionalProperties" : false
+ },
+ "DateTimeConverter" : {
+ "type" : "object",
+ "properties" : {
+ "Source" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "Target" : {
+ "$ref" : "#/definitions/NonEmptyAndMaxLengthString"
+ },
+ "TargetFormat" : {
+ "type" : "string"
+ },
+ "MatchPatterns" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/MatchPattern"
+ },
+ "minItems" : 1,
+ "maxItems" : 5,
+ "uniqueItems" : true,
+ "insertionOrder" : false
+ },
+ "SourceTimezone" : {
+ "type" : "string"
+ },
+ "TargetTimezone" : {
+ "type" : "string"
+ },
+ "Locale" : {
+ "type" : "string"
+ }
+ },
+ "required" : [ "Source", "Target", "MatchPatterns" ],
+ "additionalProperties" : false
+ },
+ "DeleteKeys" : {
+ "type" : "object",
+ "properties" : {
+ "WithKeys" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/WithKey"
+ },
+ "minItems" : 1,
+ "maxItems" : 5,
+ "uniqueItems" : true,
+ "insertionOrder" : false
+ }
+ },
+ "required" : [ "WithKeys" ],
+ "additionalProperties" : false
+ },
+ "Grok" : {
+ "type" : "object",
+ "properties" : {
+ "Source" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "Match" : {
+ "type" : "string",
+ "maxLength" : 128
+ }
+ },
+ "required" : [ "Match" ],
+ "additionalProperties" : false
+ },
+ "ListToMap" : {
+ "type" : "object",
+ "properties" : {
+ "Source" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "Key" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "ValueKey" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "Target" : {
+ "$ref" : "#/definitions/NonEmptyAndMaxLengthString"
+ },
+ "Flatten" : {
+ "type" : "boolean"
+ },
+ "FlattenedElement" : {
+ "type" : "string",
+ "enum" : [ "first", "last" ]
+ }
+ },
+ "required" : [ "Source", "Key" ],
+ "additionalProperties" : false
+ },
+ "AddKeys" : {
+ "type" : "object",
+ "properties" : {
+ "Entries" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/AddKeyEntry"
+ },
+ "minItems" : 1,
+ "maxItems" : 5,
+ "uniqueItems" : true,
+ "insertionOrder" : false
+ }
+ },
+ "required" : [ "Entries" ],
+ "additionalProperties" : false
+ },
+ "MoveKeys" : {
+ "type" : "object",
+ "properties" : {
+ "Entries" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/MoveKeyEntry"
+ },
+ "minItems" : 1,
+ "maxItems" : 5,
+ "insertionOrder" : false
+ }
+ },
+ "required" : [ "Entries" ],
+ "additionalProperties" : false
+ },
+ "RenameKeys" : {
+ "type" : "object",
+ "properties" : {
+ "Entries" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/RenameKeyEntry"
+ },
+ "minItems" : 1,
+ "maxItems" : 5,
+ "insertionOrder" : false
+ }
+ },
+ "required" : [ "Entries" ],
+ "additionalProperties" : false
+ },
+ "LowerCaseString" : {
+ "type" : "object",
+ "properties" : {
+ "WithKeys" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/WithKey"
+ },
+ "minItems" : 1,
+ "maxItems" : 10,
+ "uniqueItems" : true,
+ "insertionOrder" : false
+ }
+ },
+ "required" : [ "WithKeys" ],
+ "additionalProperties" : false
+ },
+ "SplitString" : {
+ "type" : "object",
+ "properties" : {
+ "Entries" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/SplitStringEntry"
+ },
+ "minItems" : 1,
+ "maxItems" : 10,
+ "insertionOrder" : false
+ }
+ },
+ "required" : [ "Entries" ],
+ "additionalProperties" : false
+ },
+ "SubstituteString" : {
+ "type" : "object",
+ "properties" : {
+ "Entries" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/SubstituteStringEntry"
+ },
+ "minItems" : 1,
+ "maxItems" : 10,
+ "insertionOrder" : false
+ }
+ },
+ "required" : [ "Entries" ],
+ "additionalProperties" : false
+ },
+ "TrimString" : {
+ "type" : "object",
+ "properties" : {
+ "WithKeys" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/WithKey"
+ },
+ "minItems" : 1,
+ "maxItems" : 10,
+ "uniqueItems" : true,
+ "insertionOrder" : false
+ }
+ },
+ "required" : [ "WithKeys" ],
+ "additionalProperties" : false
+ },
+ "UpperCaseString" : {
+ "type" : "object",
+ "properties" : {
+ "WithKeys" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/WithKey"
+ },
+ "minItems" : 1,
+ "maxItems" : 10,
+ "uniqueItems" : true,
+ "insertionOrder" : false
+ }
+ },
+ "required" : [ "WithKeys" ],
+ "additionalProperties" : false
+ },
+ "TypeConverter" : {
+ "type" : "object",
+ "properties" : {
+ "Entries" : {
+ "type" : "array",
+ "items" : {
+ "$ref" : "#/definitions/TypeConverterEntry"
+ },
+ "minItems" : 1,
+ "maxItems" : 5,
+ "insertionOrder" : false
+ }
+ },
+ "required" : [ "Entries" ],
+ "additionalProperties" : false
+ }
+ },
+ "additionalProperties" : false,
+ "minProperties" : 1,
+ "maxProperties" : 1
+ },
+ "ParseCloudfront" : {
+ "type" : "object",
+ "properties" : {
+ "Source" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ }
+ },
+ "additionalProperties" : false
+ },
+ "ParseVPC" : {
+ "type" : "object",
+ "properties" : {
+ "Source" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ }
+ },
+ "additionalProperties" : false
+ },
+ "ParseWAF" : {
+ "type" : "object",
+ "properties" : {
+ "Source" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ }
+ },
+ "additionalProperties" : false
+ },
+ "ParseRoute53" : {
+ "type" : "object",
+ "properties" : {
+ "Source" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ }
+ },
+ "additionalProperties" : false
+ },
+ "ParsePostgres" : {
+ "type" : "object",
+ "properties" : {
+ "Source" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ }
+ },
+ "additionalProperties" : false
+ },
+ "AddKeyEntry" : {
+ "type" : "object",
+ "properties" : {
+ "Key" : {
+ "$ref" : "#/definitions/NonEmptyAndMaxLengthString"
+ },
+ "Value" : {
+ "type" : "string",
+ "minLength" : 1,
+ "maxLength" : 256
+ },
+ "OverwriteIfExists" : {
+ "type" : "boolean"
+ }
+ },
+ "additionalProperties" : false,
+ "required" : [ "Key", "Value" ]
+ },
+ "CopyValueEntry" : {
+ "type" : "object",
+ "properties" : {
+ "Source" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "Target" : {
+ "$ref" : "#/definitions/NonEmptyAndMaxLengthString"
+ },
+ "OverwriteIfExists" : {
+ "type" : "boolean"
+ }
+ },
+ "required" : [ "Source", "Target" ],
+ "additionalProperties" : false
+ },
+ "Column" : {
+ "$ref" : "#/definitions/NonEmptyAndMaxLengthString"
+ },
+ "WithKey" : {
+ "type" : "string",
+ "minLength" : 1,
+ "maxLength" : 128
+ },
+ "MatchPattern" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "MoveKeyEntry" : {
+ "type" : "object",
+ "properties" : {
+ "Source" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "Target" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "OverwriteIfExists" : {
+ "type" : "boolean"
+ }
+ },
+ "required" : [ "Source", "Target" ],
+ "additionalProperties" : false
+ },
+ "RenameKeyEntry" : {
+ "type" : "object",
+ "properties" : {
+ "Key" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "RenameTo" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "OverwriteIfExists" : {
+ "type" : "boolean"
+ }
+ },
+ "required" : [ "Key", "RenameTo" ],
+ "additionalProperties" : false
+ },
+ "SplitStringEntry" : {
+ "type" : "object",
+ "properties" : {
+ "Source" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "Delimiter" : {
+ "type" : "string",
+ "maxLength" : 1
+ }
+ },
+ "required" : [ "Source", "Delimiter" ],
+ "additionalProperties" : false
+ },
+ "SubstituteStringEntry" : {
+ "type" : "object",
+ "properties" : {
+ "Source" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "From" : {
+ "$ref" : "#/definitions/NonEmptyAndMaxLengthString"
+ },
+ "To" : {
+ "$ref" : "#/definitions/NonEmptyAndMaxLengthString"
+ }
+ },
+ "required" : [ "Source", "From", "To" ],
+ "additionalProperties" : false
+ },
+ "TypeConverterEntry" : {
+ "type" : "object",
+ "properties" : {
+ "Key" : {
+ "$ref" : "#/definitions/NonEmptyString"
+ },
+ "Type" : {
+ "type" : "string",
+ "enum" : [ "boolean", "integer", "double", "string" ]
+ }
+ },
+ "required" : [ "Key", "Type" ],
+ "additionalProperties" : false
+ },
+ "NonEmptyAndMaxLengthString" : {
+ "type" : "string",
+ "maxLength" : 128,
+ "pattern" : "^.*[a-zA-Z0-9]+.*$"
+ },
+ "NonEmptyString" : {
+ "type" : "string",
+ "pattern" : "^.*[a-zA-Z0-9]+.*$"
+ },
+ "MaxLengthString" : {
+ "type" : "string",
+ "maxLength" : 128
+ }
+ },
+ "primaryIdentifier" : [ "/properties/LogGroupIdentifier" ],
+ "createOnlyProperties" : [ "/properties/LogGroupIdentifier" ],
+ "handlers" : {
+ "create" : {
+ "permissions" : [ "logs:PutTransformer", "logs:GetTransformer" ]
+ },
+ "read" : {
+ "permissions" : [ "logs:GetTransformer" ]
+ },
+ "update" : {
+ "permissions" : [ "logs:GetTransformer", "logs:PutTransformer" ]
+ },
+ "delete" : {
+ "permissions" : [ "logs:DeleteTransformer" ]
+ },
+ "list" : {
+ "permissions" : [ "logs:DescribeLogGroups", "logs:GetTransformer" ]
+ }
+ },
+ "tagging" : {
+ "taggable" : false,
+ "tagOnCreate" : false,
+ "tagUpdatable" : false,
+ "cloudFormationSystemTags" : false
+ }
+}
\ No newline at end of file
diff --git a/aws-cloudformation-schema/aws-networkmanager-directconnectgatewayattachment.json b/aws-cloudformation-schema/aws-networkmanager-directconnectgatewayattachment.json
new file mode 100644
index 0000000000..cdb1999140
--- /dev/null
+++ b/aws-cloudformation-schema/aws-networkmanager-directconnectgatewayattachment.json
@@ -0,0 +1,184 @@
+{
+ "typeName" : "AWS::NetworkManager::DirectConnectGatewayAttachment",
+ "description" : "AWS::NetworkManager::DirectConnectGatewayAttachment Resource Type",
+ "sourceUrl" : "https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-networkmanager/aws-networkmanager-directconnectgatewayattachment",
+ "properties" : {
+ "CoreNetworkId" : {
+ "description" : "The ID of a core network for the Direct Connect Gateway attachment.",
+ "type" : "string"
+ },
+ "CoreNetworkArn" : {
+ "description" : "The ARN of a core network for the Direct Connect Gateway attachment.",
+ "type" : "string"
+ },
+ "AttachmentId" : {
+ "description" : "Id of the attachment.",
+ "type" : "string"
+ },
+ "OwnerAccountId" : {
+ "description" : "Owner account of the attachment.",
+ "type" : "string"
+ },
+ "AttachmentType" : {
+ "description" : "Attachment type.",
+ "type" : "string"
+ },
+ "State" : {
+ "description" : "State of the attachment.",
+ "type" : "string"
+ },
+ "EdgeLocations" : {
+ "description" : "The Regions where the edges are located.",
+ "type" : "array",
+ "insertionOrder" : false,
+ "items" : {
+ "type" : "string"
+ }
+ },
+ "DirectConnectGatewayArn" : {
+ "description" : "The ARN of the Direct Connect Gateway.",
+ "type" : "string"
+ },
+ "ResourceArn" : {
+ "description" : "The ARN of the Resource.",
+ "type" : "string"
+ },
+ "AttachmentPolicyRuleNumber" : {
+ "description" : "The policy rule number associated with the attachment.",
+ "type" : "integer"
+ },
+ "SegmentName" : {
+ "description" : "The name of the segment attachment..",
+ "type" : "string"
+ },
+ "ProposedSegmentChange" : {
+ "description" : "The attachment to move from one segment to another.",
+ "$ref" : "#/definitions/ProposedSegmentChange"
+ },
+ "NetworkFunctionGroupName" : {
+ "description" : "The name of the network function group attachment.",
+ "type" : "string"
+ },
+ "ProposedNetworkFunctionGroupChange" : {
+ "description" : "The attachment to move from one network function group to another.",
+ "$ref" : "#/definitions/ProposedNetworkFunctionGroupChange"
+ },
+ "Tags" : {
+ "description" : "Tags for the attachment.",
+ "type" : "array",
+ "uniqueItems" : true,
+ "insertionOrder" : false,
+ "items" : {
+ "$ref" : "#/definitions/Tag"
+ }
+ },
+ "CreatedAt" : {
+ "description" : "Creation time of the attachment.",
+ "type" : "string"
+ },
+ "UpdatedAt" : {
+ "description" : "Last update time of the attachment.",
+ "type" : "string"
+ }
+ },
+ "definitions" : {
+ "Tag" : {
+ "description" : "A key-value pair to associate with a resource.",
+ "type" : "object",
+ "properties" : {
+ "Key" : {
+ "type" : "string",
+ "description" : "The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -."
+ },
+ "Value" : {
+ "type" : "string",
+ "description" : "The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -."
+ }
+ },
+ "required" : [ "Key", "Value" ],
+ "additionalProperties" : false
+ },
+ "ProposedSegmentChange" : {
+ "description" : "The attachment to move from one segment to another.",
+ "type" : "object",
+ "properties" : {
+ "Tags" : {
+ "description" : "The key-value tags that changed for the segment.",
+ "type" : "array",
+ "uniqueItems" : true,
+ "insertionOrder" : false,
+ "items" : {
+ "$ref" : "#/definitions/Tag"
+ }
+ },
+ "AttachmentPolicyRuleNumber" : {
+ "description" : "The rule number in the policy document that applies to this change.",
+ "type" : "integer"
+ },
+ "SegmentName" : {
+ "description" : "The name of the segment to change.",
+ "type" : "string"
+ }
+ },
+ "additionalProperties" : false
+ },
+ "ProposedNetworkFunctionGroupChange" : {
+ "description" : "The attachment to move from one network function group to another.",
+ "type" : "object",
+ "properties" : {
+ "Tags" : {
+ "description" : "The key-value tags that changed for the network function group.",
+ "type" : "array",
+ "uniqueItems" : true,
+ "insertionOrder" : false,
+ "items" : {
+ "$ref" : "#/definitions/Tag"
+ }
+ },
+ "AttachmentPolicyRuleNumber" : {
+ "description" : "The rule number in the policy document that applies to this change.",
+ "type" : "integer"
+ },
+ "NetworkFunctionGroupName" : {
+ "description" : "The name of the network function group to change.",
+ "type" : "string"
+ }
+ },
+ "additionalProperties" : false
+ }
+ },
+ "tagging" : {
+ "taggable" : true,
+ "tagOnCreate" : true,
+ "tagUpdatable" : true,
+ "cloudFormationSystemTags" : false,
+ "tagProperty" : "/properties/Tags",
+ "permissions" : [ "networkmanager:TagResource", "networkmanager:UntagResource", "networkmanager:ListTagsForResource" ]
+ },
+ "additionalProperties" : false,
+ "required" : [ "CoreNetworkId", "DirectConnectGatewayArn", "EdgeLocations" ],
+ "createOnlyProperties" : [ "/properties/CoreNetworkId", "/properties/DirectConnectGatewayArn" ],
+ "readOnlyProperties" : [ "/properties/CoreNetworkArn", "/properties/CreatedAt", "/properties/UpdatedAt", "/properties/AttachmentType", "/properties/State", "/properties/AttachmentId", "/properties/OwnerAccountId", "/properties/AttachmentPolicyRuleNumber", "/properties/SegmentName", "/properties/NetworkFunctionGroupName", "/properties/ResourceArn" ],
+ "primaryIdentifier" : [ "/properties/AttachmentId" ],
+ "additionalIdentifiers" : [ [ "/properties/CoreNetworkId", "/properties/DirectConnectGatewayArn" ] ],
+ "handlers" : {
+ "create" : {
+ "permissions" : [ "networkmanager:CreateDirectConnectGatewayAttachment", "networkmanager:GetDirectConnectGatewayAttachment", "networkmanager:TagResource", "ec2:DescribeRegions", "iam:CreateServiceLinkedRole" ],
+ "timeoutInMinutes" : 60
+ },
+ "read" : {
+ "permissions" : [ "networkmanager:GetDirectConnectGatewayAttachment" ]
+ },
+ "update" : {
+ "permissions" : [ "networkmanager:UpdateDirectConnectGatewayAttachment", "networkmanager:GetDirectConnectGatewayAttachment", "networkmanager:ListTagsForResource", "networkmanager:TagResource", "networkmanager:UntagResource", "ec2:DescribeRegions" ],
+ "timeoutInMinutes" : 60
+ },
+ "delete" : {
+ "permissions" : [ "networkmanager:DeleteAttachment", "networkmanager:GetDirectConnectGatewayAttachment", "networkmanager:UntagResource", "ec2:DescribeRegions" ],
+ "timeoutInMinutes" : 60
+ },
+ "list" : {
+ "permissions" : [ "networkmanager:ListAttachments" ]
+ }
+ }
+}
\ No newline at end of file
diff --git a/aws-cloudformation-schema/aws-networkmanager-transitgatewaypeering.json b/aws-cloudformation-schema/aws-networkmanager-transitgatewaypeering.json
index 04c93705af..406bd39858 100644
--- a/aws-cloudformation-schema/aws-networkmanager-transitgatewaypeering.json
+++ b/aws-cloudformation-schema/aws-networkmanager-transitgatewaypeering.json
@@ -98,7 +98,7 @@
"timeoutInMinutes" : 60
},
"read" : {
- "permissions" : [ "networkmanager:GetTransitGatewayPeering", "networkmanager:TagResource" ]
+ "permissions" : [ "networkmanager:GetTransitGatewayPeering" ]
},
"update" : {
"permissions" : [ "networkmanager:TagResource", "networkmanager:UntagResource", "networkmanager:ListTagsForResource", "networkmanager:GetTransitGatewayPeering", "ec2:DescribeRegions" ]
diff --git a/aws-cloudformation-schema/aws-oam-link.json b/aws-cloudformation-schema/aws-oam-link.json
index 9e25bf833a..89791ce659 100644
--- a/aws-cloudformation-schema/aws-oam-link.json
+++ b/aws-cloudformation-schema/aws-oam-link.json
@@ -92,13 +92,13 @@
"primaryIdentifier" : [ "/properties/Arn" ],
"handlers" : {
"create" : {
- "permissions" : [ "oam:CreateLink", "oam:GetLink", "cloudwatch:Link", "logs:Link", "xray:Link", "applicationinsights:Link", "internetmonitor:Link" ]
+ "permissions" : [ "oam:CreateLink", "oam:GetLink", "oam:TagResource", "oam:ListTagsForResource", "cloudwatch:Link", "logs:Link", "xray:Link", "applicationinsights:Link", "internetmonitor:Link" ]
},
"read" : {
- "permissions" : [ "oam:GetLink" ]
+ "permissions" : [ "oam:GetLink", "oam:ListTagsForResource" ]
},
"update" : {
- "permissions" : [ "oam:GetLink", "oam:UpdateLink", "cloudwatch:Link", "logs:Link", "xray:Link", "applicationinsights:Link", "internetmonitor:Link", "oam:TagResource", "oam:UntagResource" ]
+ "permissions" : [ "oam:GetLink", "oam:UpdateLink", "cloudwatch:Link", "logs:Link", "xray:Link", "applicationinsights:Link", "internetmonitor:Link", "oam:TagResource", "oam:UntagResource", "oam:ListTagsForResource" ]
},
"delete" : {
"permissions" : [ "oam:DeleteLink", "oam:GetLink" ]
diff --git a/aws-cloudformation-schema/aws-oam-sink.json b/aws-cloudformation-schema/aws-oam-sink.json
index ad8dd78707..3a0ef1228a 100644
--- a/aws-cloudformation-schema/aws-oam-sink.json
+++ b/aws-cloudformation-schema/aws-oam-sink.json
@@ -48,7 +48,7 @@
"primaryIdentifier" : [ "/properties/Arn" ],
"handlers" : {
"create" : {
- "permissions" : [ "oam:CreateSink", "oam:PutSinkPolicy", "oam:GetSinkPolicy", "oam:GetSink" ]
+ "permissions" : [ "oam:CreateSink", "oam:PutSinkPolicy", "oam:GetSinkPolicy", "oam:GetSink", "oam:TagResource", "oam:ListTagsForResource" ]
},
"delete" : {
"permissions" : [ "oam:DeleteSink", "oam:GetSinkPolicy", "oam:GetSink" ]
@@ -57,10 +57,10 @@
"permissions" : [ "oam:ListSinks" ]
},
"read" : {
- "permissions" : [ "oam:GetSinkPolicy", "oam:GetSink" ]
+ "permissions" : [ "oam:GetSinkPolicy", "oam:GetSink", "oam:ListTagsForResource" ]
},
"update" : {
- "permissions" : [ "oam:PutSinkPolicy", "oam:GetSinkPolicy", "oam:GetSink", "oam:TagResource", "oam:UntagResource" ]
+ "permissions" : [ "oam:PutSinkPolicy", "oam:GetSinkPolicy", "oam:GetSink", "oam:TagResource", "oam:UntagResource", "oam:ListTagsForResource" ]
}
}
}
\ No newline at end of file
diff --git a/aws-cloudformation-schema/aws-organizations-policy.json b/aws-cloudformation-schema/aws-organizations-policy.json
index 08a7b220fd..3d9ce54dbe 100644
--- a/aws-cloudformation-schema/aws-organizations-policy.json
+++ b/aws-cloudformation-schema/aws-organizations-policy.json
@@ -11,9 +11,9 @@
"maxLength" : 128
},
"Type" : {
- "description" : "The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY",
+ "description" : "The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY,DECLARATIVE_POLICY_EC2",
"type" : "string",
- "enum" : [ "SERVICE_CONTROL_POLICY", "AISERVICES_OPT_OUT_POLICY", "BACKUP_POLICY", "TAG_POLICY", "CHATBOT_POLICY", "RESOURCE_CONTROL_POLICY" ]
+ "enum" : [ "SERVICE_CONTROL_POLICY", "AISERVICES_OPT_OUT_POLICY", "BACKUP_POLICY", "TAG_POLICY", "CHATBOT_POLICY", "RESOURCE_CONTROL_POLICY", "DECLARATIVE_POLICY_EC2" ]
},
"Content" : {
"description" : "The Policy text content. For AWS CloudFormation templates formatted in YAML, you can provide the policy in JSON or YAML format. AWS CloudFormation always converts a YAML policy to JSON format before submitting it.",
diff --git a/aws-cloudformation-schema/aws-ram-resourceshare.json b/aws-cloudformation-schema/aws-ram-resourceshare.json
index 1573d61329..ccc832c790 100644
--- a/aws-cloudformation-schema/aws-ram-resourceshare.json
+++ b/aws-cloudformation-schema/aws-ram-resourceshare.json
@@ -1,72 +1,107 @@
{
"typeName" : "AWS::RAM::ResourceShare",
- "description" : "Resource Type definition for AWS::RAM::ResourceShare",
- "additionalProperties" : false,
+ "description" : "Resource type definition for AWS::RAM::ResourceShare",
+ "sourceUrl" : "https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-ram",
+ "definitions" : {
+ "Tag" : {
+ "description" : "A key-value pair to associate with a resource.",
+ "type" : "object",
+ "properties" : {
+ "Key" : {
+ "type" : "string",
+ "description" : "The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -."
+ },
+ "Value" : {
+ "type" : "string",
+ "description" : "The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -."
+ }
+ },
+ "required" : [ "Key", "Value" ],
+ "additionalProperties" : false
+ }
+ },
"properties" : {
+ "AllowExternalPrincipals" : {
+ "description" : "Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`.",
+ "type" : "boolean"
+ },
+ "Arn" : {
+ "type" : "string"
+ },
+ "Name" : {
+ "description" : "Specifies the name of the resource share.",
+ "type" : "string"
+ },
"PermissionArns" : {
+ "description" : "Specifies the [Amazon Resource Names (ARNs)](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) of the AWS RAM permission to associate with the resource share. If you do not specify an ARN for the permission, AWS RAM automatically attaches the default version of the permission for each resource type. You can associate only one permission with each resource type included in the resource share.",
"type" : "array",
- "uniqueItems" : false,
+ "insertionOrder" : false,
"items" : {
"type" : "string"
}
},
"Principals" : {
+ "description" : "Specifies the principals to associate with the resource share. The possible values are:\n\n- An AWS account ID\n\n- An Amazon Resource Name (ARN) of an organization in AWS Organizations\n\n- An ARN of an organizational unit (OU) in AWS Organizations\n\n- An ARN of an IAM role\n\n- An ARN of an IAM user",
"type" : "array",
- "uniqueItems" : false,
+ "insertionOrder" : false,
"items" : {
"type" : "string"
}
},
- "AllowExternalPrincipals" : {
- "type" : "boolean"
- },
- "Id" : {
- "type" : "string"
- },
- "Arn" : {
- "type" : "string"
- },
"ResourceArns" : {
+ "description" : "Specifies a list of one or more ARNs of the resources to associate with the resource share.",
"type" : "array",
- "uniqueItems" : false,
+ "insertionOrder" : false,
"items" : {
"type" : "string"
}
},
"Sources" : {
+ "description" : "Specifies from which source accounts the service principal has access to the resources in this resource share.",
"type" : "array",
- "uniqueItems" : false,
+ "insertionOrder" : false,
"items" : {
"type" : "string"
}
},
"Tags" : {
+ "description" : "Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share.",
"type" : "array",
- "uniqueItems" : false,
+ "uniqueItems" : true,
+ "insertionOrder" : false,
"items" : {
"$ref" : "#/definitions/Tag"
}
- },
- "Name" : {
- "type" : "string"
- }
- },
- "definitions" : {
- "Tag" : {
- "type" : "object",
- "additionalProperties" : false,
- "properties" : {
- "Value" : {
- "type" : "string"
- },
- "Key" : {
- "type" : "string"
- }
- },
- "required" : [ "Value", "Key" ]
}
},
+ "additionalProperties" : false,
"required" : [ "Name" ],
- "primaryIdentifier" : [ "/properties/Id" ],
- "readOnlyProperties" : [ "/properties/Id", "/properties/Arn" ]
+ "readOnlyProperties" : [ "/properties/Arn" ],
+ "writeOnlyProperties" : [ "/properties/PermissionArns", "/properties/Principals", "/properties/ResourceArns", "/properties/Sources" ],
+ "primaryIdentifier" : [ "/properties/Arn" ],
+ "tagging" : {
+ "taggable" : true,
+ "tagOnCreate" : true,
+ "tagUpdatable" : true,
+ "cloudFormationSystemTags" : false,
+ "tagProperty" : "/properties/Tags",
+ "permissions" : [ "ram:TagResource", "ram:UntagResource" ]
+ },
+ "handlers" : {
+ "create" : {
+ "permissions" : [ "ram:CreateResourceShare", "ram:TagResource" ]
+ },
+ "read" : {
+ "permissions" : [ "ram:GetResourceShares" ]
+ },
+ "update" : {
+ "permissions" : [ "ram:GetPermission", "ram:GetResourceShares", "ram:GetResourceShareAssociations", "ram:ListResourceSharePermissions", "ram:UpdateResourceShare", "ram:AssociateResourceSharePermission", "ram:AssociateResourceShare", "ram:DisassociateResourceShare", "ram:UntagResource", "ram:TagResource" ]
+ },
+ "delete" : {
+ "permissions" : [ "ram:DeleteResourceShare", "ram:GetResourceShares" ]
+ },
+ "list" : {
+ "permissions" : [ "ram:GetResourceShares" ]
+ }
+ }
}
\ No newline at end of file
diff --git a/aws-cloudformation-schema/aws-rds-customdbengineversion.json b/aws-cloudformation-schema/aws-rds-customdbengineversion.json
index b22d4b2030..ee854e08d1 100644
--- a/aws-cloudformation-schema/aws-rds-customdbengineversion.json
+++ b/aws-cloudformation-schema/aws-rds-customdbengineversion.json
@@ -1,24 +1,29 @@
{
"typeName" : "AWS::RDS::CustomDBEngineVersion",
- "description" : "The AWS::RDS::CustomDBEngineVersion resource creates an Amazon RDS custom DB engine version.",
+ "description" : "Creates a custom DB engine version (CEV).",
"sourceUrl" : "https://github.com/aws-cloudformation/aws-cloudformation-rpdk.git",
"tagging" : {
- "taggable" : true
+ "taggable" : true,
+ "tagOnCreate" : true,
+ "tagUpdatable" : true,
+ "cloudFormationSystemTags" : true,
+ "tagProperty" : "/properties/Tags",
+ "permissions" : [ "rds:AddTagsToResource", "rds:RemoveTagsFromResource" ]
},
"definitions" : {
"Tag" : {
- "description" : "A key-value pair to associate with a resource.",
+ "description" : "Metadata assigned to an Amazon RDS resource consisting of a key-value pair.\n For more information, see [Tagging Amazon RDS resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide* or [Tagging Amazon Aurora and Amazon RDS resources](https://docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/USER_Tagging.html) in the *Amazon Aurora User Guide*.",
"type" : "object",
"properties" : {
"Key" : {
"type" : "string",
- "description" : "The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.",
+ "description" : "A key is the required name of the tag. The string value can be from 1 to 128 Unicode characters in length and can't be prefixed with ``aws:`` or ``rds:``. The string can only contain only the set of Unicode letters, digits, white-space, '_', '.', ':', '/', '=', '+', '-', '@' (Java regex: \"^([\\\\p{L}\\\\p{Z}\\\\p{N}_.:/=+\\\\-@]*)$\").",
"minLength" : 1,
"maxLength" : 128
},
"Value" : {
"type" : "string",
- "description" : "The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.",
+ "description" : "A value is the optional value of the tag. The string value can be from 1 to 256 Unicode characters in length and can't be prefixed with ``aws:`` or ``rds:``. The string can only contain only the set of Unicode letters, digits, white-space, '_', '.', ':', '/', '=', '+', '-', '@' (Java regex: \"^([\\\\p{L}\\\\p{Z}\\\\p{N}_.:/=+\\\\-@]*)$\").",
"minLength" : 0,
"maxLength" : 256
}
@@ -30,13 +35,13 @@
"properties" : {
"DatabaseInstallationFilesS3BucketName" : {
"type" : "string",
- "description" : "The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is `my-custom-installation-files`.",
+ "description" : "The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is ``my-custom-installation-files``.",
"minLength" : 3,
"maxLength" : 63
},
"DatabaseInstallationFilesS3Prefix" : {
"type" : "string",
- "description" : "The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is `123456789012/cev1`. If this setting isn't specified, no prefix is assumed.",
+ "description" : "The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is ``123456789012/cev1``. If this setting isn't specified, no prefix is assumed.",
"minLength" : 1,
"maxLength" : 255
},
@@ -48,52 +53,52 @@
},
"Engine" : {
"type" : "string",
- "description" : "The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`.",
+ "description" : "The database engine to use for your custom engine version (CEV).\n Valid values:\n + ``custom-oracle-ee`` \n + ``custom-oracle-ee-cdb``",
"minLength" : 1,
"maxLength" : 35
},
"EngineVersion" : {
"type" : "string",
- "description" : "The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region.",
+ "description" : "The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.\n *Constraints:* Minimum length is 1. Maximum length is 60.\n *Pattern:* ``^[a-z0-9_.-]{1,60$``}",
"minLength" : 1,
"maxLength" : 60
},
"KMSKeyId" : {
"type" : "string",
- "description" : "The AWS KMS key identifier for an encrypted CEV. A symmetric KMS key is required for RDS Custom, but optional for Amazon RDS.",
+ "description" : "The AWS KMS key identifier for an encrypted CEV. A symmetric encryption KMS key is required for RDS Custom, but optional for Amazon RDS.\n If you have an existing symmetric encryption KMS key in your account, you can use it with RDS Custom. No further action is necessary. If you don't already have a symmetric encryption KMS key in your account, follow the instructions in [Creating a symmetric encryption KMS key](https://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html#create-symmetric-cmk) in the *Key Management Service Developer Guide*.\n You can choose the same symmetric encryption key when you create a CEV and a DB instance, or choose different keys.",
"minLength" : 1,
"maxLength" : 2048
},
"Manifest" : {
"type" : "string",
- "description" : "The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.",
+ "description" : "The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.\n The following JSON fields are valid:\n + MediaImportTemplateVersion Version of the CEV manifest. The date is in the format YYYY-MM-DD. + databaseInstallationFileNames Ordered list of installation files for the CEV. + opatchFileNames Ordered list of OPatch installers used for the Oracle DB engine. + psuRuPatchFileNames The PSU and RU patches for this CEV. + OtherPatchFileNames The patches that are not in the list of PSU and RU patches. Amazon RDS applies these patches after applying the PSU and RU patches. \n For more information, see [Creating the CEV manifest](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/custom-cev.html#custom-cev.preparing.manifest) in the *Amazon RDS User Guide*.",
"minLength" : 1,
"maxLength" : 51000
},
"DBEngineVersionArn" : {
"type" : "string",
- "description" : "The ARN of the custom engine version."
+ "description" : ""
},
"SourceCustomDbEngineVersionIdentifier" : {
"type" : "string",
- "description" : "The identifier of the source custom engine version."
+ "description" : "The ARN of a CEV to use as a source for creating a new CEV. You can specify a different Amazon Machine Imagine (AMI) by using either ``Source`` or ``UseAwsProvidedLatestImage``. You can't specify a different JSON manifest when you specify ``SourceCustomDbEngineVersionIdentifier``."
},
"UseAwsProvidedLatestImage" : {
"type" : "boolean",
- "description" : "A value that indicates whether AWS provided latest image is applied automatically to the Custom Engine Version. By default, AWS provided latest image is applied automatically. This value is only applied on create."
+ "description" : "Specifies whether to use the latest service-provided Amazon Machine Image (AMI) for the CEV. If you specify ``UseAwsProvidedLatestImage``, you can't also specify ``ImageId``."
},
"ImageId" : {
"type" : "string",
- "description" : "The identifier of Amazon Machine Image (AMI) used for CEV."
+ "description" : "A value that indicates the ID of the AMI."
},
"Status" : {
"type" : "string",
- "description" : "The availability status to be assigned to the CEV.",
+ "description" : "A value that indicates the status of a custom engine version (CEV).",
"default" : "available",
"enum" : [ "available", "inactive", "inactive-except-restore" ]
},
"Tags" : {
- "description" : "An array of key-value pairs to apply to this resource.",
+ "description" : "A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*",
"type" : "array",
"uniqueItems" : false,
"insertionOrder" : false,
@@ -106,7 +111,7 @@
"propertyTransform" : {
"/properties/Engine" : "$lowercase(Engine)",
"/properties/EngineVersion" : "$lowercase(EngineVersion)",
- "/properties/KMSKeyId" : "$join([\"arn:(aws)[-]{0,1}[a-z]{0,2}[-]{0,1}[a-z]{0,3}:kms:[a-z]{2}[-]{1}[a-z]{3,10}[-]{0,1}[a-z]{0,10}[-]{1}[1-3]{1}:[0-9]{12}[:]{1}key\\/\", KMSKeyId])"
+ "/properties/KMSKeyId" : "$join([\"arn:.+?:kms:.+?:.+?:key\\/\", KMSKeyId])"
},
"required" : [ "Engine", "EngineVersion" ],
"writeOnlyProperties" : [ "/properties/Manifest", "/properties/SourceCustomDbEngineVersionIdentifier", "/properties/UseAwsProvidedLatestImage" ],
diff --git a/aws-cloudformation-schema/aws-redshiftserverless-workgroup.json b/aws-cloudformation-schema/aws-redshiftserverless-workgroup.json
index d96fd145a2..e0827d286e 100644
--- a/aws-cloudformation-schema/aws-redshiftserverless-workgroup.json
+++ b/aws-cloudformation-schema/aws-redshiftserverless-workgroup.json
@@ -56,6 +56,20 @@
},
"additionalProperties" : false
},
+ "PerformanceTarget" : {
+ "type" : "object",
+ "properties" : {
+ "Status" : {
+ "$ref" : "#/definitions/PerformanceTargetStatus"
+ },
+ "Level" : {
+ "type" : "integer",
+ "minimum" : 1,
+ "maximum" : 100
+ }
+ },
+ "additionalProperties" : false
+ },
"VpcEndpoint" : {
"type" : "object",
"properties" : {
@@ -144,6 +158,9 @@
},
"CreationDate" : {
"type" : "string"
+ },
+ "PricePerformanceTarget" : {
+ "$ref" : "#/definitions/PerformanceTarget"
}
},
"additionalProperties" : false
@@ -168,6 +185,10 @@
"WorkgroupStatus" : {
"type" : "string",
"enum" : [ "CREATING", "AVAILABLE", "MODIFYING", "DELETING" ]
+ },
+ "PerformanceTargetStatus" : {
+ "type" : "string",
+ "enum" : [ "ENABLED", "DISABLED" ]
}
},
"properties" : {
@@ -243,6 +264,11 @@
"description" : "The custom port to use when connecting to a workgroup. Valid port ranges are 5431-5455 and 8191-8215. The default is 5439.",
"type" : "integer"
},
+ "PricePerformanceTarget" : {
+ "description" : "A property that represents the price performance target settings for the workgroup.",
+ "type" : "object",
+ "$ref" : "#/definitions/PerformanceTarget"
+ },
"Tags" : {
"description" : "The map of the key-value pairs used to tag the workgroup.",
"type" : "array",
diff --git a/aws-cloudformation-schema/aws-s3-bucket.json b/aws-cloudformation-schema/aws-s3-bucket.json
index d5b6c83cdc..092be00afc 100644
--- a/aws-cloudformation-schema/aws-s3-bucket.json
+++ b/aws-cloudformation-schema/aws-s3-bucket.json
@@ -68,6 +68,10 @@
"uniqueItems" : true,
"insertionOrder" : true
},
+ "MetadataTableConfiguration" : {
+ "$ref" : "#/definitions/MetadataTableConfiguration",
+ "description" : ""
+ },
"NotificationConfiguration" : {
"$ref" : "#/definitions/NotificationConfiguration",
"description" : "Configuration that defines how Amazon S3 handles bucket notifications."
@@ -1404,6 +1408,65 @@
"Arn" : {
"description" : "the Amazon Resource Name (ARN) of the specified bucket.",
"type" : "string"
+ },
+ "MetadataTableConfiguration" : {
+ "type" : "object",
+ "additionalProperties" : false,
+ "properties" : {
+ "S3TablesDestination" : {
+ "$ref" : "#/definitions/S3TablesDestination"
+ },
+ "Status" : {
+ "type" : "string",
+ "description" : "Returns the Status value of the GetBucketMetadataTableConfigurationResult response. This value indicates the status of the metadata table. The status values are: CREATING - The metadata table is in the process of being created in the specified table bucket. ACTIVE - The metadata table has been created successfully and records are being delivered to the table. FAILED - Amazon S3 is unable to create the metadata table, or Amazon S3 is unable to deliver records."
+ },
+ "Error" : {
+ "$ref" : "#/definitions/MetadataTableError",
+ "description" : "Returns the Error value of the GetBucketMetadataTableConfiguration response."
+ }
+ },
+ "required" : [ "S3TablesDestination" ],
+ "description" : ""
+ },
+ "S3TablesDestination" : {
+ "type" : "object",
+ "additionalProperties" : false,
+ "properties" : {
+ "TableBucketArn" : {
+ "type" : "string",
+ "description" : "The Amazon Resource Name (ARN) for the table bucket that's specified as the destination in the metadata table configuration. The destination table bucket must be in the same Region and AWS account as the general purpose bucket."
+ },
+ "TableName" : {
+ "type" : "string",
+ "description" : "The name for the metadata table in your metadata table configuration. The specified metadata table name must be unique within the aws_s3_metadata namespace in the destination table bucket."
+ },
+ "TableNamespace" : {
+ "type" : "string",
+ "description" : "The table bucket namespace for the metadata table in your metadata table configuration. This value is always aws_s3_metadata."
+ },
+ "TableArn" : {
+ "type" : "string",
+ "description" : "The Amazon Resource Name (ARN) for the metadata table in the metadata table configuration. The specified metadata table name must be unique within the aws_s3_metadata namespace in the destination table bucket."
+ }
+ },
+ "required" : [ "TableBucketArn", "TableName" ],
+ "description" : ""
+ },
+ "MetadataTableError" : {
+ "type" : "object",
+ "additionalProperties" : false,
+ "properties" : {
+ "ErrorCode" : {
+ "type" : "string",
+ "description" : "If the CreateBucketMetadataTableConfiguration request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows: AccessDeniedCreatingResources - You don't have sufficient permissions to create the required resources. Make sure that you have s3tables:CreateNamespace, s3tables:CreateTable, s3tables:GetTable and s3tables:PutTablePolicy permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. AccessDeniedWritingToTable - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. DestinationTableNotFound - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. ServerInternalError - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableAlreadyExists - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableBucketNotFound - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration."
+ },
+ "ErrorMessage" : {
+ "type" : "string",
+ "description" : "If the CreateBucketMetadataTableConfiguration request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows: AccessDeniedCreatingResources - You don't have sufficient permissions to create the required resources. Make sure that you have s3tables:CreateNamespace, s3tables:CreateTable, s3tables:GetTable and s3tables:PutTablePolicy permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. AccessDeniedWritingToTable - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. DestinationTableNotFound - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. ServerInternalError - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableAlreadyExists - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableBucketNotFound - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration."
+ }
+ },
+ "required" : [ "ErrorCode", "ErrorMessage" ],
+ "description" : ""
}
},
"tagging" : {
@@ -1424,10 +1487,10 @@
},
"handlers" : {
"create" : {
- "permissions" : [ "s3:CreateBucket", "s3:PutBucketTagging", "s3:PutAnalyticsConfiguration", "s3:PutEncryptionConfiguration", "s3:PutBucketCORS", "s3:PutInventoryConfiguration", "s3:PutLifecycleConfiguration", "s3:PutMetricsConfiguration", "s3:PutBucketNotification", "s3:PutBucketReplication", "s3:PutBucketWebsite", "s3:PutAccelerateConfiguration", "s3:PutBucketPublicAccessBlock", "s3:PutReplicationConfiguration", "s3:PutObjectAcl", "s3:PutBucketObjectLockConfiguration", "s3:GetBucketAcl", "s3:ListBucket", "iam:PassRole", "s3:DeleteObject", "s3:PutBucketLogging", "s3:PutBucketVersioning", "s3:PutObjectLockConfiguration", "s3:PutBucketOwnershipControls", "s3:PutIntelligentTieringConfiguration" ]
+ "permissions" : [ "s3:CreateBucket", "s3:PutBucketTagging", "s3:PutAnalyticsConfiguration", "s3:PutEncryptionConfiguration", "s3:PutBucketCORS", "s3:PutInventoryConfiguration", "s3:PutLifecycleConfiguration", "s3:PutMetricsConfiguration", "s3:PutBucketNotification", "s3:PutBucketReplication", "s3:PutBucketWebsite", "s3:PutAccelerateConfiguration", "s3:PutBucketPublicAccessBlock", "s3:PutReplicationConfiguration", "s3:PutObjectAcl", "s3:PutBucketObjectLockConfiguration", "s3:GetBucketAcl", "s3:ListBucket", "iam:PassRole", "s3:DeleteObject", "s3:PutBucketLogging", "s3:PutBucketVersioning", "s3:PutObjectLockConfiguration", "s3:PutBucketOwnershipControls", "s3:PutIntelligentTieringConfiguration", "s3:CreateBucketMetadataTableConfiguration" ]
},
"read" : {
- "permissions" : [ "s3:GetAccelerateConfiguration", "s3:GetLifecycleConfiguration", "s3:GetBucketPublicAccessBlock", "s3:GetAnalyticsConfiguration", "s3:GetBucketCORS", "s3:GetEncryptionConfiguration", "s3:GetInventoryConfiguration", "s3:GetBucketLogging", "s3:GetMetricsConfiguration", "s3:GetBucketNotification", "s3:GetBucketVersioning", "s3:GetReplicationConfiguration", "S3:GetBucketWebsite", "s3:GetBucketPublicAccessBlock", "s3:GetBucketObjectLockConfiguration", "s3:GetBucketTagging", "s3:GetBucketOwnershipControls", "s3:GetIntelligentTieringConfiguration", "s3:ListBucket" ]
+ "permissions" : [ "s3:GetAccelerateConfiguration", "s3:GetLifecycleConfiguration", "s3:GetBucketPublicAccessBlock", "s3:GetAnalyticsConfiguration", "s3:GetBucketCORS", "s3:GetEncryptionConfiguration", "s3:GetInventoryConfiguration", "s3:GetBucketLogging", "s3:GetMetricsConfiguration", "s3:GetBucketNotification", "s3:GetBucketVersioning", "s3:GetReplicationConfiguration", "S3:GetBucketWebsite", "s3:GetBucketPublicAccessBlock", "s3:GetBucketObjectLockConfiguration", "s3:GetBucketTagging", "s3:GetBucketOwnershipControls", "s3:GetIntelligentTieringConfiguration", "s3:GetBucketMetadataTableConfiguration", "s3:ListBucket" ]
},
"update" : {
"permissions" : [ "s3:PutBucketAcl", "s3:PutBucketTagging", "s3:PutAnalyticsConfiguration", "s3:PutEncryptionConfiguration", "s3:PutBucketCORS", "s3:PutInventoryConfiguration", "s3:PutLifecycleConfiguration", "s3:PutMetricsConfiguration", "s3:PutBucketNotification", "s3:PutBucketReplication", "s3:PutBucketWebsite", "s3:PutAccelerateConfiguration", "s3:PutBucketPublicAccessBlock", "s3:PutReplicationConfiguration", "s3:PutBucketOwnershipControls", "s3:PutIntelligentTieringConfiguration", "s3:DeleteBucketWebsite", "s3:PutBucketLogging", "s3:PutBucketVersioning", "s3:PutObjectLockConfiguration", "s3:PutBucketObjectLockConfiguration", "s3:DeleteBucketAnalyticsConfiguration", "s3:DeleteBucketCors", "s3:DeleteBucketMetricsConfiguration", "s3:DeleteBucketEncryption", "s3:DeleteBucketLifecycle", "s3:DeleteBucketReplication", "iam:PassRole", "s3:ListBucket" ]
diff --git a/aws-cloudformation-schema/aws-s3express-directorybucket.json b/aws-cloudformation-schema/aws-s3express-directorybucket.json
index 9898ad586d..a3e633b46a 100644
--- a/aws-cloudformation-schema/aws-s3express-directorybucket.json
+++ b/aws-cloudformation-schema/aws-s3express-directorybucket.json
@@ -4,24 +4,24 @@
"additionalProperties" : false,
"properties" : {
"BucketName" : {
- "description" : "Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.",
+ "description" : "Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.",
"maxLength" : 63,
"pattern" : "^[a-z0-9][a-z0-9//.//-]*[a-z0-9]$",
"type" : "string"
},
"LocationName" : {
- "description" : "Specifies the AZ ID of the Availability Zone where the directory bucket will be created. An example AZ ID value is 'use1-az5'.",
+ "description" : "Specifies the Zone ID of the Availability Zone or Local Zone where the directory bucket will be created. An example Availability Zone ID value is 'use1-az5'.",
"type" : "string"
},
"AvailabilityZoneName" : {
- "description" : "Returns the code for the Availability Zone where the directory bucket was created.",
+ "description" : "Returns the code for the Availability Zone or Local Zone where the directory bucket was created. An example for the code of an Availability Zone is 'us-east-1f'.",
"examples" : [ "us-east-1f" ],
"type" : "string"
},
"DataRedundancy" : {
- "description" : "Specifies the number of Availability Zone that's used for redundancy for the bucket.",
+ "description" : "Specifies the number of Availability Zone or Local Zone that's used for redundancy for the bucket.",
"type" : "string",
- "enum" : [ "SingleAvailabilityZone" ]
+ "enum" : [ "SingleAvailabilityZone", "SingleLocalZone" ]
},
"Arn" : {
"$ref" : "#/definitions/Arn",
diff --git a/aws-cloudformation-schema/aws-s3tables-tablebucket.json b/aws-cloudformation-schema/aws-s3tables-tablebucket.json
new file mode 100644
index 0000000000..91d5d8912b
--- /dev/null
+++ b/aws-cloudformation-schema/aws-s3tables-tablebucket.json
@@ -0,0 +1,78 @@
+{
+ "typeName" : "AWS::S3Tables::TableBucket",
+ "description" : "Creates an Amazon S3 Tables table bucket in the same AWS Region where you create the AWS CloudFormation stack.",
+ "properties" : {
+ "TableBucketARN" : {
+ "$ref" : "#/definitions/TableBucketARN"
+ },
+ "TableBucketName" : {
+ "$ref" : "#/definitions/TableBucketName"
+ },
+ "UnreferencedFileRemoval" : {
+ "$ref" : "#/definitions/UnreferencedFileRemoval"
+ }
+ },
+ "definitions" : {
+ "TableBucketARN" : {
+ "description" : "The Amazon Resource Name (ARN) of the specified table bucket.",
+ "type" : "string",
+ "examples" : [ "arn:aws:s3tables:us-west-2:123456789012:bucket/mytablebucket" ]
+ },
+ "TableBucketName" : {
+ "description" : "A name for the table bucket.",
+ "type" : "string",
+ "minLength" : 3,
+ "maxLength" : 63
+ },
+ "UnreferencedFileRemoval" : {
+ "description" : "Settings governing the Unreferenced File Removal maintenance action. Unreferenced file removal identifies and deletes all objects that are not referenced by any table snapshots.",
+ "additionalProperties" : false,
+ "type" : "object",
+ "properties" : {
+ "Status" : {
+ "description" : "Indicates whether the Unreferenced File Removal maintenance action is enabled.",
+ "type" : "string",
+ "enum" : [ "Enabled", "Disabled" ]
+ },
+ "UnreferencedDays" : {
+ "description" : "For any object not referenced by your table and older than the UnreferencedDays property, S3 creates a delete marker and marks the object version as noncurrent.",
+ "type" : "integer",
+ "minimum" : 1
+ },
+ "NoncurrentDays" : {
+ "description" : "S3 permanently deletes noncurrent objects after the number of days specified by the NoncurrentDays property.",
+ "type" : "integer",
+ "minimum" : 1
+ }
+ }
+ }
+ },
+ "additionalProperties" : false,
+ "required" : [ "TableBucketName" ],
+ "createOnlyProperties" : [ "/properties/TableBucketName" ],
+ "readOnlyProperties" : [ "/properties/TableBucketARN" ],
+ "primaryIdentifier" : [ "/properties/TableBucketARN" ],
+ "tagging" : {
+ "taggable" : false,
+ "tagOnCreate" : false,
+ "tagUpdatable" : false,
+ "cloudFormationSystemTags" : false
+ },
+ "handlers" : {
+ "create" : {
+ "permissions" : [ "s3tables:CreateTableBucket", "s3tables:PutTableBucketMaintenanceConfiguration", "s3tables:GetTableBucket", "s3tables:GetTableBucketMaintenanceConfiguration" ]
+ },
+ "read" : {
+ "permissions" : [ "s3tables:GetTableBucket", "s3tables:GetTableBucketMaintenanceConfiguration" ]
+ },
+ "update" : {
+ "permissions" : [ "s3tables:PutTableBucketMaintenanceConfiguration", "s3tables:GetTableBucket", "s3tables:GetTableBucketMaintenanceConfiguration" ]
+ },
+ "delete" : {
+ "permissions" : [ "s3tables:DeleteTableBucket" ]
+ },
+ "list" : {
+ "permissions" : [ "s3tables:ListTableBuckets" ]
+ }
+ }
+}
\ No newline at end of file
diff --git a/aws-cloudformation-schema/aws-s3tables-tablebucketpolicy.json b/aws-cloudformation-schema/aws-s3tables-tablebucketpolicy.json
new file mode 100644
index 0000000000..426e203517
--- /dev/null
+++ b/aws-cloudformation-schema/aws-s3tables-tablebucketpolicy.json
@@ -0,0 +1,50 @@
+{
+ "typeName" : "AWS::S3Tables::TableBucketPolicy",
+ "description" : "Applies an IAM resource policy to a table bucket.",
+ "properties" : {
+ "ResourcePolicy" : {
+ "$ref" : "#/definitions/ResourcePolicy"
+ },
+ "TableBucketARN" : {
+ "$ref" : "#/definitions/TableBucketARN"
+ }
+ },
+ "definitions" : {
+ "ResourcePolicy" : {
+ "description" : "A policy document containing permissions to add to the specified table bucket. In IAM, you must provide policy documents in JSON format. However, in CloudFormation you can provide the policy in JSON or YAML format because CloudFormation converts YAML to JSON before submitting it to IAM.",
+ "type" : [ "object", "string" ]
+ },
+ "TableBucketARN" : {
+ "description" : "The Amazon Resource Name (ARN) of the table bucket to which the policy applies.",
+ "type" : "string",
+ "examples" : [ "arn:aws:s3tables:us-west-2:123456789012:bucket/mytablebucket" ]
+ }
+ },
+ "additionalProperties" : false,
+ "required" : [ "ResourcePolicy", "TableBucketARN" ],
+ "createOnlyProperties" : [ "/properties/TableBucketARN" ],
+ "primaryIdentifier" : [ "/properties/TableBucketARN" ],
+ "tagging" : {
+ "taggable" : false,
+ "tagOnCreate" : false,
+ "tagUpdatable" : false,
+ "cloudFormationSystemTags" : false
+ },
+ "handlers" : {
+ "create" : {
+ "permissions" : [ "s3tables:GetTableBucket", "s3tables:GetTableBucketPolicy", "s3tables:PutTableBucketPolicy" ]
+ },
+ "read" : {
+ "permissions" : [ "s3tables:GetTableBucketPolicy" ]
+ },
+ "update" : {
+ "permissions" : [ "s3tables:GetTableBucketPolicy", "s3tables:PutTableBucketPolicy" ]
+ },
+ "delete" : {
+ "permissions" : [ "s3tables:GetTableBucketPolicy", "s3tables:DeleteTableBucketPolicy" ]
+ },
+ "list" : {
+ "permissions" : [ "s3tables:GetTableBucketPolicy", "s3tables:ListTableBuckets" ]
+ }
+ }
+}
\ No newline at end of file
diff --git a/meta/.botocore.version b/meta/.botocore.version
index a06af74a7a..804a975ceb 100644
--- a/meta/.botocore.version
+++ b/meta/.botocore.version
@@ -1 +1 @@
-1.35.76
+1.35.78
diff --git a/provider/cmd/pulumi-gen-aws-native/supported-types.txt b/provider/cmd/pulumi-gen-aws-native/supported-types.txt
index 742c2ccefe..2c0adbcc64 100644
--- a/provider/cmd/pulumi-gen-aws-native/supported-types.txt
+++ b/provider/cmd/pulumi-gen-aws-native/supported-types.txt
@@ -575,6 +575,7 @@ AWS::IoT::BillingGroup
AWS::IoT::CACertificate
AWS::IoT::Certificate
AWS::IoT::CertificateProvider
+AWS::IoT::Command
AWS::IoT::CustomMetric
AWS::IoT::Dimension
AWS::IoT::DomainConfiguration
@@ -842,6 +843,7 @@ AWS::QuickSight::Theme
AWS::QuickSight::Topic
AWS::QuickSight::VPCConnection
AWS::RAM::Permission
+AWS::RAM::ResourceShare
AWS::RDS::CustomDBEngineVersion
AWS::RDS::DBCluster
AWS::RDS::DBClusterParameterGroup
@@ -935,6 +937,8 @@ AWS::S3Outposts::AccessPoint
AWS::S3Outposts::Bucket
AWS::S3Outposts::BucketPolicy
AWS::S3Outposts::Endpoint
+AWS::S3Tables::TableBucket
+AWS::S3Tables::TableBucketPolicy
AWS::SES::ConfigurationSet
AWS::SES::ConfigurationSetEventDestination
AWS::SES::ContactList
diff --git a/provider/cmd/pulumi-resource-aws-native/metadata.json b/provider/cmd/pulumi-resource-aws-native/metadata.json
index f67966683e..405c050368 100644
--- a/provider/cmd/pulumi-resource-aws-native/metadata.json
+++ b/provider/cmd/pulumi-resource-aws-native/metadata.json
@@ -2262,10 +2262,6 @@
"$ref": "#/types/aws-native:apigateway:DomainNameV2EndpointConfiguration",
"description": "The endpoint configuration to indicate the types of endpoints an API (RestApi) or its custom domain name (DomainName) has."
},
- "managementPolicy": {
- "$ref": "pulumi.json#/Any",
- "description": "Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property."
- },
"policy": {
"$ref": "pulumi.json#/Any",
"description": "A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .\n\nSearch the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property."
@@ -2305,10 +2301,6 @@
"description": "The endpoint configuration to indicate the types of endpoints an API (RestApi) or its custom domain name (DomainName) has.",
"replaceOnChanges": true
},
- "managementPolicy": {
- "$ref": "pulumi.json#/Any",
- "description": "Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property."
- },
"policy": {
"$ref": "pulumi.json#/Any",
"description": "A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .\n\nSearch the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property."
@@ -20085,10 +20077,12 @@
"description": "An array of image files that you want to apply to roles like backgrounds, logos, and icons. Each object must also indicate whether it is for dark mode, light mode, or browser-adaptive mode."
},
"clientId": {
- "type": "string"
+ "type": "string",
+ "description": "The app client that's assigned to the branding style that you want more information about."
},
"returnMergedResources": {
- "type": "boolean"
+ "type": "boolean",
+ "description": "When `true` , returns values for branding options that are unchanged from Amazon Cognito defaults. When `false` or when you omit this parameter, returns only values that you customized in your branding style."
},
"settings": {
"$ref": "pulumi.json#/Any",
@@ -20096,7 +20090,7 @@
},
"useCognitoProvidedValues": {
"type": "boolean",
- "description": "When true, applies the default branding style options. This option reverts to a \"blank\" style that you can modify later in the branding designer."
+ "description": "When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.\n\nWhen you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request."
},
"userPoolId": {
"type": "string",
@@ -20113,6 +20107,7 @@
},
"clientId": {
"type": "string",
+ "description": "The app client that's assigned to the branding style that you want more information about.",
"replaceOnChanges": true
},
"managedLoginBrandingId": {
@@ -20120,7 +20115,8 @@
"description": "The ID of the managed login branding style."
},
"returnMergedResources": {
- "type": "boolean"
+ "type": "boolean",
+ "description": "When `true` , returns values for branding options that are unchanged from Amazon Cognito defaults. When `false` or when you omit this parameter, returns only values that you customized in your branding style."
},
"settings": {
"$ref": "pulumi.json#/Any",
@@ -20128,7 +20124,7 @@
},
"useCognitoProvidedValues": {
"type": "boolean",
- "description": "When true, applies the default branding style options. This option reverts to a \"blank\" style that you can modify later in the branding designer."
+ "description": "When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.\n\nWhen you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request."
},
"userPoolId": {
"type": "string",
@@ -20168,14 +20164,14 @@
"items": {
"type": "string"
},
- "description": "Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* ."
+ "description": "Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* . For more information about alias attributes, see [Customizing sign-in attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-aliases) ."
},
"autoVerifiedAttributes": {
"type": "array",
"items": {
"type": "string"
},
- "description": "The attributes to be auto-verified. Possible values: *email* , *phone_number* ."
+ "description": "The attributes that you want your user pool to automatically verify. Possible values: *email* , *phone_number* . For more information see [Verifying contact information at sign-up](https://docs.aws.amazon.com/cognito/latest/developerguide/signing-up-users-in-your-app.html#allowing-users-to-sign-up-and-confirm-themselves) ."
},
"deletionProtection": {
"type": "string",
@@ -20183,7 +20179,7 @@
},
"deviceConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolDeviceConfiguration",
- "description": "The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool.\n\n\u003e When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature."
+ "description": "The device-remembering configuration for a user pool. Device remembering or device tracking is a \"Remember me on this device\" option for user pools that perform authentication with the device key of a trusted device in the back end, instead of a user-provided MFA code. For more information about device authentication, see [Working with user devices in your user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-device-tracking.html) . A null value indicates that you have deactivated device remembering in your user pool.\n\n\u003e When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature. For more infor"
},
"emailAuthenticationMessage": {
"type": "string"
@@ -20227,7 +20223,7 @@
"items": {
"$ref": "#/types/aws-native:cognito:UserPoolSchemaAttribute"
},
- "description": "An array of schema attributes for the new user pool. These attributes can be standard or custom attributes."
+ "description": "An array of attributes for the new user pool. You can add custom attributes and modify the properties of default attributes. The specifications in this parameter set the required attributes in your user pool. For more information, see [Working with user attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html) ."
},
"smsAuthenticationMessage": {
"type": "string",
@@ -20235,7 +20231,7 @@
},
"smsConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolSmsConfiguration",
- "description": "The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account ."
+ "description": "The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account . For more information see [SMS message settings](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-sms-settings.html) ."
},
"smsVerificationMessage": {
"type": "string",
@@ -20251,7 +20247,7 @@
},
"userPoolName": {
"type": "string",
- "description": "A string used to name the user pool."
+ "description": "A friendlhy name for your user pool."
},
"userPoolTags": {
"type": "object",
@@ -20273,17 +20269,19 @@
},
"usernameConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolUsernameConfiguration",
- "description": "Case sensitivity on the username input for the selected sign-in option. When case sensitivity is set to `False` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `False` (case insensitive) as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.\n\nThis configuration is immutable after you set it. For more information, see [UsernameConfigurationType](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UsernameConfigurationType.html) ."
+ "description": "Sets the case sensitivity option for sign-in usernames. When `CaseSensitive` is `false` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `false` as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.\n\nWhen `CaseSensitive` is `true` (case sensitive), Amazon Cognito interprets `USERNAME` and `UserName` as distinct users.\n\nThis configuration is immutable after you set it."
},
"verificationMessageTemplate": {
"$ref": "#/types/aws-native:cognito:UserPoolVerificationMessageTemplate",
"description": "The template for the verification message that your user pool delivers to users who set an email address or phone number attribute.\n\nSet the email message type that corresponds to your `DefaultEmailOption` selection. For `CONFIRM_WITH_LINK` , specify an `EmailMessageByLink` and leave `EmailMessage` blank. For `CONFIRM_WITH_CODE` , specify an `EmailMessage` and leave `EmailMessageByLink` blank. When you supply both parameters with either choice, Amazon Cognito returns an error."
},
"webAuthnRelyingPartyId": {
- "type": "string"
+ "type": "string",
+ "description": "Sets or displays the authentication domain, typically your user pool domain, that passkey providers must use as a relying party (RP) in their configuration.\n\nUnder the following conditions, the passkey relying party ID must be the fully-qualified domain name of your custom domain:\n\n- The user pool is configured for passkey authentication.\n- The user pool has a custom domain, whether or not it also has a prefix domain.\n- Your application performs authentication with managed login or the classic hosted UI."
},
"webAuthnUserVerification": {
- "type": "string"
+ "type": "string",
+ "description": "When `required` , users can only register and sign in users with passkeys that are capable of [user verification](https://docs.aws.amazon.com/https://www.w3.org/TR/webauthn-2/#enum-userVerificationRequirement) . When `preferred` , your user pool doesn't require the use of authenticators with user verification but encourages it."
}
},
"outputs": {
@@ -20300,7 +20298,7 @@
"items": {
"type": "string"
},
- "description": "Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* ."
+ "description": "Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* . For more information about alias attributes, see [Customizing sign-in attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-aliases) ."
},
"arn": {
"type": "string",
@@ -20311,7 +20309,7 @@
"items": {
"type": "string"
},
- "description": "The attributes to be auto-verified. Possible values: *email* , *phone_number* ."
+ "description": "The attributes that you want your user pool to automatically verify. Possible values: *email* , *phone_number* . For more information see [Verifying contact information at sign-up](https://docs.aws.amazon.com/cognito/latest/developerguide/signing-up-users-in-your-app.html#allowing-users-to-sign-up-and-confirm-themselves) ."
},
"deletionProtection": {
"type": "string",
@@ -20319,7 +20317,7 @@
},
"deviceConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolDeviceConfiguration",
- "description": "The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool.\n\n\u003e When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature."
+ "description": "The device-remembering configuration for a user pool. Device remembering or device tracking is a \"Remember me on this device\" option for user pools that perform authentication with the device key of a trusted device in the back end, instead of a user-provided MFA code. For more information about device authentication, see [Working with user devices in your user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-device-tracking.html) . A null value indicates that you have deactivated device remembering in your user pool.\n\n\u003e When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature. For more infor"
},
"emailAuthenticationMessage": {
"type": "string"
@@ -20371,7 +20369,7 @@
"items": {
"$ref": "#/types/aws-native:cognito:UserPoolSchemaAttribute"
},
- "description": "An array of schema attributes for the new user pool. These attributes can be standard or custom attributes."
+ "description": "An array of attributes for the new user pool. You can add custom attributes and modify the properties of default attributes. The specifications in this parameter set the required attributes in your user pool. For more information, see [Working with user attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html) ."
},
"smsAuthenticationMessage": {
"type": "string",
@@ -20379,7 +20377,7 @@
},
"smsConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolSmsConfiguration",
- "description": "The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account ."
+ "description": "The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account . For more information see [SMS message settings](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-sms-settings.html) ."
},
"smsVerificationMessage": {
"type": "string",
@@ -20399,7 +20397,7 @@
},
"userPoolName": {
"type": "string",
- "description": "A string used to name the user pool."
+ "description": "A friendlhy name for your user pool."
},
"userPoolTags": {
"type": "object",
@@ -20421,17 +20419,19 @@
},
"usernameConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolUsernameConfiguration",
- "description": "Case sensitivity on the username input for the selected sign-in option. When case sensitivity is set to `False` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `False` (case insensitive) as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.\n\nThis configuration is immutable after you set it. For more information, see [UsernameConfigurationType](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UsernameConfigurationType.html) ."
+ "description": "Sets the case sensitivity option for sign-in usernames. When `CaseSensitive` is `false` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `false` as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.\n\nWhen `CaseSensitive` is `true` (case sensitive), Amazon Cognito interprets `USERNAME` and `UserName` as distinct users.\n\nThis configuration is immutable after you set it."
},
"verificationMessageTemplate": {
"$ref": "#/types/aws-native:cognito:UserPoolVerificationMessageTemplate",
"description": "The template for the verification message that your user pool delivers to users who set an email address or phone number attribute.\n\nSet the email message type that corresponds to your `DefaultEmailOption` selection. For `CONFIRM_WITH_LINK` , specify an `EmailMessageByLink` and leave `EmailMessage` blank. For `CONFIRM_WITH_CODE` , specify an `EmailMessage` and leave `EmailMessageByLink` blank. When you supply both parameters with either choice, Amazon Cognito returns an error."
},
"webAuthnRelyingPartyId": {
- "type": "string"
+ "type": "string",
+ "description": "Sets or displays the authentication domain, typically your user pool domain, that passkey providers must use as a relying party (RP) in their configuration.\n\nUnder the following conditions, the passkey relying party ID must be the fully-qualified domain name of your custom domain:\n\n- The user pool is configured for passkey authentication.\n- The user pool has a custom domain, whether or not it also has a prefix domain.\n- Your application performs authentication with managed login or the classic hosted UI."
},
"webAuthnUserVerification": {
- "type": "string"
+ "type": "string",
+ "description": "When `required` , users can only register and sign in users with passkeys that are capable of [user verification](https://docs.aws.amazon.com/https://www.w3.org/TR/webauthn-2/#enum-userVerificationRequirement) . When `preferred` , your user pool doesn't require the use of authenticators with user verification but encourages it."
}
},
"autoNamingSpec": {
@@ -20478,11 +20478,11 @@
"items": {
"type": "string"
},
- "description": "The allowed OAuth scopes. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported."
+ "description": "The OAuth 2.0 scopes that you want to permit your app client to authorize. Scopes govern access control to user pool self-service API operations, user data from the `userInfo` endpoint, and third-party APIs. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported."
},
"analyticsConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolClientAnalyticsConfiguration",
- "description": "The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.\n\n\u003e In AWS Regions where Amazon Pinpoint isn't available, user pools only support sending events to Amazon Pinpoint projects in AWS Region us-east-1. In Regions where Amazon Pinpoint is available, user pools support sending events to Amazon Pinpoint projects within that same Region."
+ "description": "The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.\n\nIn AWS Regions where Amazon Pinpoint isn't available, user pools might not have access to analytics or might be configurable with campaigns in the US East (N. Virginia) Region. For more information, see [Using Amazon Pinpoint analytics](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-pinpoint-integration.html) ."
},
"authSessionValidity": {
"type": "integer",
@@ -20493,15 +20493,15 @@
"items": {
"type": "string"
},
- "description": "A list of allowed redirect (callback) URLs for the IdPs.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server.\n- Not include a fragment component.\n\nSee [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
+ "description": "A list of allowed redirect (callback) URLs for the IdPs.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server. Amazon Cognito doesn't accept authorization requests with `redirect_uri` values that aren't in the list of `CallbackURLs` that you provide in this parameter.\n- Not include a fragment component.\n\nSee [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
},
"clientName": {
"type": "string",
- "description": "The client name for the user pool client you would like to create."
+ "description": "A friendly name for the app client that you want to create."
},
"defaultRedirectUri": {
"type": "string",
- "description": "The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server.\n- Not include a fragment component.\n\nFor more information, see [Default redirect URI](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#cognito-user-pools-app-idp-settings-about) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
+ "description": "The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list."
},
"enablePropagateAdditionalUserContextData": {
"type": "boolean",
@@ -20520,7 +20520,7 @@
},
"generateSecret": {
"type": "boolean",
- "description": "Boolean to specify whether you want to generate a secret for the user pool client being created."
+ "description": "When `true` , generates a client secret for the app client. Client secrets are used with server-side and machine-to-machine applications. For more information, see [App client types](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#user-pool-settings-client-app-client-types) ."
},
"idTokenValidity": {
"type": "integer",
@@ -20531,7 +20531,7 @@
"items": {
"type": "string"
},
- "description": "A list of allowed logout URLs for the IdPs."
+ "description": "A list of allowed logout URLs for managed login authentication. For more information, see [Logout endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/logout-endpoint.html) ."
},
"preventUserExistenceErrors": {
"type": "string",
@@ -20553,15 +20553,15 @@
"items": {
"type": "string"
},
- "description": "A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .\n\nThis setting applies to providers that you can access with the [hosted UI and OAuth 2.0 authorization server](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-app-integration.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) ."
+ "description": "A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .\n\nThis setting applies to providers that you can access with [managed login](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managed-login.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) ."
},
"tokenValidityUnits": {
"$ref": "#/types/aws-native:cognito:UserPoolClientTokenValidityUnits",
- "description": "The units in which the validity times are represented. The default unit for RefreshToken is days, and default for ID and access tokens are hours."
+ "description": "The units that validity times are represented in. The default unit for refresh tokens is days, and the default for ID and access tokens are hours."
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool where you want to create a user pool client."
+ "description": "The ID of the user pool where you want to create an app client."
},
"writeAttributes": {
"type": "array",
@@ -20592,11 +20592,11 @@
"items": {
"type": "string"
},
- "description": "The allowed OAuth scopes. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported."
+ "description": "The OAuth 2.0 scopes that you want to permit your app client to authorize. Scopes govern access control to user pool self-service API operations, user data from the `userInfo` endpoint, and third-party APIs. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported."
},
"analyticsConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolClientAnalyticsConfiguration",
- "description": "The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.\n\n\u003e In AWS Regions where Amazon Pinpoint isn't available, user pools only support sending events to Amazon Pinpoint projects in AWS Region us-east-1. In Regions where Amazon Pinpoint is available, user pools support sending events to Amazon Pinpoint projects within that same Region."
+ "description": "The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.\n\nIn AWS Regions where Amazon Pinpoint isn't available, user pools might not have access to analytics or might be configurable with campaigns in the US East (N. Virginia) Region. For more information, see [Using Amazon Pinpoint analytics](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-pinpoint-integration.html) ."
},
"authSessionValidity": {
"type": "integer",
@@ -20607,7 +20607,7 @@
"items": {
"type": "string"
},
- "description": "A list of allowed redirect (callback) URLs for the IdPs.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server.\n- Not include a fragment component.\n\nSee [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
+ "description": "A list of allowed redirect (callback) URLs for the IdPs.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server. Amazon Cognito doesn't accept authorization requests with `redirect_uri` values that aren't in the list of `CallbackURLs` that you provide in this parameter.\n- Not include a fragment component.\n\nSee [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
},
"clientId": {
"type": "string",
@@ -20615,14 +20615,14 @@
},
"clientName": {
"type": "string",
- "description": "The client name for the user pool client you would like to create."
+ "description": "A friendly name for the app client that you want to create."
},
"clientSecret": {
"type": "string"
},
"defaultRedirectUri": {
"type": "string",
- "description": "The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server.\n- Not include a fragment component.\n\nFor more information, see [Default redirect URI](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#cognito-user-pools-app-idp-settings-about) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
+ "description": "The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list."
},
"enablePropagateAdditionalUserContextData": {
"type": "boolean",
@@ -20641,7 +20641,7 @@
},
"generateSecret": {
"type": "boolean",
- "description": "Boolean to specify whether you want to generate a secret for the user pool client being created.",
+ "description": "When `true` , generates a client secret for the app client. Client secrets are used with server-side and machine-to-machine applications. For more information, see [App client types](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#user-pool-settings-client-app-client-types) .",
"replaceOnChanges": true
},
"idTokenValidity": {
@@ -20653,7 +20653,7 @@
"items": {
"type": "string"
},
- "description": "A list of allowed logout URLs for the IdPs."
+ "description": "A list of allowed logout URLs for managed login authentication. For more information, see [Logout endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/logout-endpoint.html) ."
},
"name": {
"type": "string"
@@ -20678,15 +20678,15 @@
"items": {
"type": "string"
},
- "description": "A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .\n\nThis setting applies to providers that you can access with the [hosted UI and OAuth 2.0 authorization server](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-app-integration.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) ."
+ "description": "A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .\n\nThis setting applies to providers that you can access with [managed login](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managed-login.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) ."
},
"tokenValidityUnits": {
"$ref": "#/types/aws-native:cognito:UserPoolClientTokenValidityUnits",
- "description": "The units in which the validity times are represented. The default unit for RefreshToken is days, and default for ID and access tokens are hours."
+ "description": "The units that validity times are represented in. The default unit for refresh tokens is days, and the default for ID and access tokens are hours."
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool where you want to create a user pool client.",
+ "description": "The ID of the user pool where you want to create an app client.",
"replaceOnChanges": true
},
"writeAttributes": {
@@ -20790,11 +20790,11 @@
"inputs": {
"description": {
"type": "string",
- "description": "A string containing the description of the group."
+ "description": "A description of the group that you're creating."
},
"groupName": {
"type": "string",
- "description": "The name of the group. Must be unique."
+ "description": "A name for the group. This name must be unique in your user pool."
},
"precedence": {
"type": "integer",
@@ -20802,21 +20802,21 @@
},
"roleArn": {
"type": "string",
- "description": "The role Amazon Resource Name (ARN) for the group."
+ "description": "The Amazon Resource Name (ARN) for the IAM role that you want to associate with the group. A group role primarily declares a preferred role for the credentials that you get from an identity pool. Amazon Cognito ID tokens have a `cognito:preferred_role` claim that presents the highest-precedence group that a user belongs to. Both ID and access tokens also contain a `cognito:groups` claim that list all the groups that a user is a member of."
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool."
+ "description": "The ID of the user pool where you want to create a user group."
}
},
"outputs": {
"description": {
"type": "string",
- "description": "A string containing the description of the group."
+ "description": "A description of the group that you're creating."
},
"groupName": {
"type": "string",
- "description": "The name of the group. Must be unique.",
+ "description": "A name for the group. This name must be unique in your user pool.",
"replaceOnChanges": true
},
"precedence": {
@@ -20825,11 +20825,11 @@
},
"roleArn": {
"type": "string",
- "description": "The role Amazon Resource Name (ARN) for the group."
+ "description": "The Amazon Resource Name (ARN) for the IAM role that you want to associate with the group. A group role primarily declares a preferred role for the credentials that you get from an identity pool. Amazon Cognito ID tokens have a `cognito:preferred_role` claim that presents the highest-precedence group that a user belongs to. Both ID and access tokens also contain a `cognito:groups` claim that list all the groups that a user is a member of."
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool.",
+ "description": "The ID of the user pool where you want to create a user group.",
"replaceOnChanges": true
}
},
@@ -20856,14 +20856,14 @@
"additionalProperties": {
"type": "string"
},
- "description": "A mapping of IdP attributes to standard and custom user pool attributes."
+ "description": "A mapping of IdP attributes to standard and custom user pool attributes. Specify a user pool attribute as the key of the key-value pair, and the IdP attribute claim name as the value."
},
"idpIdentifiers": {
"type": "array",
"items": {
"type": "string"
},
- "description": "A list of IdP identifiers."
+ "description": "An array of IdP identifiers, for example `\"IdPIdentifiers\": [ \"MyIdP\", \"MyIdP2\" ]` . Identifiers are friendly names that you can pass in the `idp_identifier` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP. Identifiers in a domain format also enable the use of [email-address matching with SAML providers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managing-saml-idp-naming.html) ."
},
"providerDetails": {
"type": "object",
@@ -20874,15 +20874,15 @@
},
"providerName": {
"type": "string",
- "description": "The IdP name."
+ "description": "The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP."
},
"providerType": {
"type": "string",
- "description": "The IdP type."
+ "description": "The type of IdP that you want to add. Amazon Cognito supports OIDC, SAML 2.0, Login With Amazon, Sign In With Apple, Google, and Facebook IdPs."
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID."
+ "description": "The Id of the user pool where you want to create an IdP."
}
},
"outputs": {
@@ -20891,14 +20891,14 @@
"additionalProperties": {
"type": "string"
},
- "description": "A mapping of IdP attributes to standard and custom user pool attributes."
+ "description": "A mapping of IdP attributes to standard and custom user pool attributes. Specify a user pool attribute as the key of the key-value pair, and the IdP attribute claim name as the value."
},
"idpIdentifiers": {
"type": "array",
"items": {
"type": "string"
},
- "description": "A list of IdP identifiers."
+ "description": "An array of IdP identifiers, for example `\"IdPIdentifiers\": [ \"MyIdP\", \"MyIdP2\" ]` . Identifiers are friendly names that you can pass in the `idp_identifier` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP. Identifiers in a domain format also enable the use of [email-address matching with SAML providers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managing-saml-idp-naming.html) ."
},
"providerDetails": {
"type": "object",
@@ -20909,17 +20909,17 @@
},
"providerName": {
"type": "string",
- "description": "The IdP name.",
+ "description": "The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP.",
"replaceOnChanges": true
},
"providerType": {
"type": "string",
- "description": "The IdP type.",
+ "description": "The type of IdP that you want to add. Amazon Cognito supports OIDC, SAML 2.0, Login With Amazon, Sign In With Apple, Google, and Facebook IdPs.",
"replaceOnChanges": true
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID.",
+ "description": "The Id of the user pool where you want to create an IdP.",
"replaceOnChanges": true
}
},
@@ -20961,7 +20961,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool."
+ "description": "The ID of the user pool where you want to create a resource server."
}
},
"outputs": {
@@ -20983,7 +20983,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool.",
+ "description": "The ID of the user pool where you want to create a resource server.",
"replaceOnChanges": true
}
},
@@ -21080,7 +21080,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool."
+ "description": "The ID of the user pool."
}
},
"outputs": {
@@ -21095,7 +21095,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool.",
+ "description": "The ID of the user pool.",
"replaceOnChanges": true
}
},
@@ -21123,22 +21123,22 @@
"additionalProperties": {
"type": "string"
},
- "description": "A map of custom key-value pairs that you can provide as input for any custom workflows that this action triggers.\n\nYou create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `clientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.\n\nFor more information, see [Customizing user pool Workflows with Lambda Triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html) in the *Amazon Cognito Developer Guide* .\n\n\u003e When you use the ClientMetadata parameter, remember that Amazon Cognito won't do the following:\n\u003e \n\u003e - Store the ClientMetadata value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the ClientMetadata parameter serves no purpose.\n\u003e - Validate the ClientMetadata value.\n\u003e - Encrypt the ClientMetadata value. Don't use Amazon Cognito to provide sensitive information."
+ "description": "A map of custom key-value pairs that you can provide as input for any custom workflows that this action triggers.\n\nYou create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `ClientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.\n\nFor more information, see [Customizing user pool Workflows with Lambda Triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html) in the *Amazon Cognito Developer Guide* .\n\n\u003e When you use the `ClientMetadata` parameter, note that Amazon Cognito won't do the following:\n\u003e \n\u003e - Store the `ClientMetadata` value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the `ClientMetadata` parameter serves no purpose.\n\u003e - Validate the `ClientMetadata` value.\n\u003e - Encrypt the `ClientMetadata` value. Don't send sensitive information in this parameter."
},
"desiredDeliveryMediums": {
"type": "array",
"items": {
"type": "string"
},
- "description": "Specify `\"EMAIL\"` if email will be used to send the welcome message. Specify `\"SMS\"` if the phone number will be used. The default value is `\"SMS\"` . You can specify more than one value."
+ "description": "Specify `EMAIL` if email will be used to send the welcome message. Specify `SMS` if the phone number will be used. The default value is `SMS` . You can specify more than one value."
},
"forceAliasCreation": {
"type": "boolean",
- "description": "This parameter is used only if the `phone_number_verified` or `email_verified` attribute is set to `True` . Otherwise, it is ignored.\n\nIf this parameter is set to `True` and the phone number or email address specified in the UserAttributes parameter already exists as an alias with a different user, the API call will migrate the alias from the previous user to the newly created user. The previous user will no longer be able to log in using that alias.\n\nIf this parameter is set to `False` , the API throws an `AliasExistsException` error if the alias already exists. The default value is `False` ."
+ "description": "This parameter is used only if the `phone_number_verified` or `email_verified` attribute is set to `True` . Otherwise, it is ignored.\n\nIf this parameter is set to `True` and the phone number or email address specified in the `UserAttributes` parameter already exists as an alias with a different user, this request migrates the alias from the previous user to the newly-created user. The previous user will no longer be able to log in using that alias.\n\nIf this parameter is set to `False` , the API throws an `AliasExistsException` error if the alias already exists. The default value is `False` ."
},
"messageAction": {
"type": "string",
- "description": "Set to `RESEND` to resend the invitation message to a user that already exists and reset the expiration limit on the user's account. Set to `SUPPRESS` to suppress sending the message. You can specify only one value."
+ "description": "Set to `RESEND` to resend the invitation message to a user that already exists, and to reset the temporary-password duration with a new temporary password. Set to `SUPPRESS` to suppress sending the message. You can specify only one value."
},
"userAttributes": {
"type": "array",
@@ -21149,7 +21149,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool where the user will be created."
+ "description": "The ID of the user pool where you want to create a user."
},
"username": {
"type": "string",
@@ -21169,7 +21169,7 @@
"additionalProperties": {
"type": "string"
},
- "description": "A map of custom key-value pairs that you can provide as input for any custom workflows that this action triggers.\n\nYou create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `clientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.\n\nFor more information, see [Customizing user pool Workflows with Lambda Triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html) in the *Amazon Cognito Developer Guide* .\n\n\u003e When you use the ClientMetadata parameter, remember that Amazon Cognito won't do the following:\n\u003e \n\u003e - Store the ClientMetadata value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the ClientMetadata parameter serves no purpose.\n\u003e - Validate the ClientMetadata value.\n\u003e - Encrypt the ClientMetadata value. Don't use Amazon Cognito to provide sensitive information.",
+ "description": "A map of custom key-value pairs that you can provide as input for any custom workflows that this action triggers.\n\nYou create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `ClientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.\n\nFor more information, see [Customizing user pool Workflows with Lambda Triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html) in the *Amazon Cognito Developer Guide* .\n\n\u003e When you use the `ClientMetadata` parameter, note that Amazon Cognito won't do the following:\n\u003e \n\u003e - Store the `ClientMetadata` value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the `ClientMetadata` parameter serves no purpose.\n\u003e - Validate the `ClientMetadata` value.\n\u003e - Encrypt the `ClientMetadata` value. Don't send sensitive information in this parameter.",
"replaceOnChanges": true
},
"desiredDeliveryMediums": {
@@ -21177,17 +21177,17 @@
"items": {
"type": "string"
},
- "description": "Specify `\"EMAIL\"` if email will be used to send the welcome message. Specify `\"SMS\"` if the phone number will be used. The default value is `\"SMS\"` . You can specify more than one value.",
+ "description": "Specify `EMAIL` if email will be used to send the welcome message. Specify `SMS` if the phone number will be used. The default value is `SMS` . You can specify more than one value.",
"replaceOnChanges": true
},
"forceAliasCreation": {
"type": "boolean",
- "description": "This parameter is used only if the `phone_number_verified` or `email_verified` attribute is set to `True` . Otherwise, it is ignored.\n\nIf this parameter is set to `True` and the phone number or email address specified in the UserAttributes parameter already exists as an alias with a different user, the API call will migrate the alias from the previous user to the newly created user. The previous user will no longer be able to log in using that alias.\n\nIf this parameter is set to `False` , the API throws an `AliasExistsException` error if the alias already exists. The default value is `False` .",
+ "description": "This parameter is used only if the `phone_number_verified` or `email_verified` attribute is set to `True` . Otherwise, it is ignored.\n\nIf this parameter is set to `True` and the phone number or email address specified in the `UserAttributes` parameter already exists as an alias with a different user, this request migrates the alias from the previous user to the newly-created user. The previous user will no longer be able to log in using that alias.\n\nIf this parameter is set to `False` , the API throws an `AliasExistsException` error if the alias already exists. The default value is `False` .",
"replaceOnChanges": true
},
"messageAction": {
"type": "string",
- "description": "Set to `RESEND` to resend the invitation message to a user that already exists and reset the expiration limit on the user's account. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.",
+ "description": "Set to `RESEND` to resend the invitation message to a user that already exists, and to reset the temporary-password duration with a new temporary password. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.",
"replaceOnChanges": true
},
"userAttributes": {
@@ -21200,7 +21200,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool where the user will be created.",
+ "description": "The ID of the user pool where you want to create a user.",
"replaceOnChanges": true
},
"username": {
@@ -21254,7 +21254,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool."
+ "description": "The ID of the user pool that contains the group that you want to add the user to."
},
"username": {
"type": "string",
@@ -21269,7 +21269,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool.",
+ "description": "The ID of the user pool that contains the group that you want to add the user to.",
"replaceOnChanges": true
},
"username": {
@@ -23760,6 +23760,10 @@
"type": "string",
"description": "The name of the task template."
},
+ "selfAssignContactFlowArn": {
+ "type": "string",
+ "description": "The identifier of the contact flow."
+ },
"status": {
"$ref": "#/types/aws-native:connect:TaskTemplateStatus",
"description": "The status of the task template."
@@ -23815,6 +23819,10 @@
"type": "string",
"description": "The name of the task template."
},
+ "selfAssignContactFlowArn": {
+ "type": "string",
+ "description": "The identifier of the contact flow."
+ },
"status": {
"$ref": "#/types/aws-native:connect:TaskTemplateStatus",
"description": "The status of the task template."
@@ -31410,7 +31418,7 @@
},
"importSourceSpecification": {
"$ref": "#/types/aws-native:dynamodb:TableImportSourceSpecification",
- "description": "Specifies the properties of data being imported from the S3 bucket source to the table.\n If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, or the ``DeletionProtectionEnabled`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission."
+ "description": "Specifies the properties of data being imported from the S3 bucket source to the\" table.\n If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, the ``DeletionProtectionEnabled`` property, or the ``WarmThroughput`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission."
},
"keySchema": {
"oneOf": [
@@ -31518,7 +31526,7 @@
},
"importSourceSpecification": {
"$ref": "#/types/aws-native:dynamodb:TableImportSourceSpecification",
- "description": "Specifies the properties of data being imported from the S3 bucket source to the table.\n If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, or the ``DeletionProtectionEnabled`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.",
+ "description": "Specifies the properties of data being imported from the S3 bucket source to the\" table.\n If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, the ``DeletionProtectionEnabled`` property, or the ``WarmThroughput`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.",
"replaceOnChanges": true
},
"keySchema": {
@@ -34242,7 +34250,7 @@
"items": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateTagSpecification"
},
- "description": "The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.\n To specify the tags for resources that are created during instance launch, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications)."
+ "description": "The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.\n To specify the tags for the resources that are created when an instance is launched, you must use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications)."
},
"versionDescription": {
"type": "string",
@@ -34276,7 +34284,7 @@
"items": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateTagSpecification"
},
- "description": "The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.\n To specify the tags for resources that are created during instance launch, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications)."
+ "description": "The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.\n To specify the tags for the resources that are created when an instance is launched, you must use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications)."
},
"versionDescription": {
"type": "string",
@@ -40413,6 +40421,9 @@
"type": "string",
"description": "The number of ``cpu`` units used by the task. If you use the EC2 launch type, this field is optional. Any value can be used. If you use the Fargate launch type, this field is required. You must use one of the following values. The value that you choose determines your range of valid values for the ``memory`` parameter.\n If you use the EC2 launch type, this field is optional. Supported values are between ``128`` CPU units (``0.125`` vCPUs) and ``10240`` CPU units (``10`` vCPUs).\n The CPU units cannot be less than 1 vCPU when you use Windows containers on Fargate.\n + 256 (.25 vCPU) - Available ``memory`` values: 512 (0.5 GB), 1024 (1 GB), 2048 (2 GB)\n + 512 (.5 vCPU) - Available ``memory`` values: 1024 (1 GB), 2048 (2 GB), 3072 (3 GB), 4096 (4 GB)\n + 1024 (1 vCPU) - Available ``memory`` values: 2048 (2 GB), 3072 (3 GB), 4096 (4 GB), 5120 (5 GB), 6144 (6 GB), 7168 (7 GB), 8192 (8 GB)\n + 2048 (2 vCPU) - Available ``memory`` values: 4096 (4 GB) and 16384 (16 GB) in increments of 1024 (1 GB)\n + 4096 (4 vCPU) - Available ``memory`` values: 8192 (8 GB) and 30720 (30 GB) in increments of 1024 (1 GB)\n + 8192 (8 vCPU) - Available ``memory`` values: 16 GB and 60 GB in 4 GB increments\n This option requires Linux platform ``1.4.0`` or later.\n + 16384 (16vCPU) - Available ``memory`` values: 32GB and 120 GB in 8 GB increments\n This option requires Linux platform ``1.4.0`` or later."
},
+ "enableFaultInjection": {
+ "type": "boolean"
+ },
"ephemeralStorage": {
"$ref": "#/types/aws-native:ecs:TaskDefinitionEphemeralStorage",
"description": "The ephemeral storage settings to use for tasks run with the task definition."
@@ -40503,6 +40514,10 @@
"description": "The number of ``cpu`` units used by the task. If you use the EC2 launch type, this field is optional. Any value can be used. If you use the Fargate launch type, this field is required. You must use one of the following values. The value that you choose determines your range of valid values for the ``memory`` parameter.\n If you use the EC2 launch type, this field is optional. Supported values are between ``128`` CPU units (``0.125`` vCPUs) and ``10240`` CPU units (``10`` vCPUs).\n The CPU units cannot be less than 1 vCPU when you use Windows containers on Fargate.\n + 256 (.25 vCPU) - Available ``memory`` values: 512 (0.5 GB), 1024 (1 GB), 2048 (2 GB)\n + 512 (.5 vCPU) - Available ``memory`` values: 1024 (1 GB), 2048 (2 GB), 3072 (3 GB), 4096 (4 GB)\n + 1024 (1 vCPU) - Available ``memory`` values: 2048 (2 GB), 3072 (3 GB), 4096 (4 GB), 5120 (5 GB), 6144 (6 GB), 7168 (7 GB), 8192 (8 GB)\n + 2048 (2 vCPU) - Available ``memory`` values: 4096 (4 GB) and 16384 (16 GB) in increments of 1024 (1 GB)\n + 4096 (4 vCPU) - Available ``memory`` values: 8192 (8 GB) and 30720 (30 GB) in increments of 1024 (1 GB)\n + 8192 (8 vCPU) - Available ``memory`` values: 16 GB and 60 GB in 4 GB increments\n This option requires Linux platform ``1.4.0`` or later.\n + 16384 (16vCPU) - Available ``memory`` values: 32GB and 120 GB in 8 GB increments\n This option requires Linux platform ``1.4.0`` or later.",
"replaceOnChanges": true
},
+ "enableFaultInjection": {
+ "type": "boolean",
+ "replaceOnChanges": true
+ },
"ephemeralStorage": {
"$ref": "#/types/aws-native:ecs:TaskDefinitionEphemeralStorage",
"description": "The ephemeral storage settings to use for tasks run with the task definition.",
@@ -40600,6 +40615,7 @@
"createOnly": [
"containerDefinitions",
"cpu",
+ "enableFaultInjection",
"ephemeralStorage",
"executionRoleArn",
"family",
@@ -54354,7 +54370,7 @@
"inputs": {
"healthEventsConfig": {
"$ref": "#/types/aws-native:internetmonitor:MonitorHealthEventsConfig",
- "description": "A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.\n\nDefines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.\n\nYou can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.\n\nIf you don't set a health event threshold, the default value is 95%.\n\nFor local thresholds, you also set a minimum percentage of overall traffic that is impacted by an issue before Internet Monitor creates an event. In addition, you can disable local thresholds, for performance scores, availability scores, or both.\n\nFor more information, see [Change health event thresholds](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-IM-overview.html#IMUpdateThresholdFromOverview) in the Internet Monitor section of the *CloudWatch User Guide* ."
+ "description": "A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.\n\nDefines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.\n\nYou can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.\n\nIf you don't set a health event threshold, the default value is 95%.\n\nFor local thresholds, you also set a minimum percentage of overall traffic that is impacted by an issue before Internet Monitor creates an event. In addition, you can disable local thresholds, for performance scores, availability scores, or both.\n\nFor more information, see [Change health event thresholds](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-IM-overview.html#IMUpdateThresholdFromOverview) in the Internet Monitor section of the *CloudWatch User Guide* ."
},
"includeLinkedAccounts": {
"type": "boolean",
@@ -54420,7 +54436,7 @@
},
"healthEventsConfig": {
"$ref": "#/types/aws-native:internetmonitor:MonitorHealthEventsConfig",
- "description": "A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.\n\nDefines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.\n\nYou can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.\n\nIf you don't set a health event threshold, the default value is 95%.\n\nFor local thresholds, you also set a minimum percentage of overall traffic that is impacted by an issue before Internet Monitor creates an event. In addition, you can disable local thresholds, for performance scores, availability scores, or both.\n\nFor more information, see [Change health event thresholds](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-IM-overview.html#IMUpdateThresholdFromOverview) in the Internet Monitor section of the *CloudWatch User Guide* ."
+ "description": "A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.\n\nDefines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.\n\nYou can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.\n\nIf you don't set a health event threshold, the default value is 95%.\n\nFor local thresholds, you also set a minimum percentage of overall traffic that is impacted by an issue before Internet Monitor creates an event. In addition, you can disable local thresholds, for performance scores, availability scores, or both.\n\nFor more information, see [Change health event thresholds](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-IM-overview.html#IMUpdateThresholdFromOverview) in the Internet Monitor section of the *CloudWatch User Guide* ."
},
"includeLinkedAccounts": {
"type": "boolean",
@@ -54520,56 +54536,70 @@
"cf": "AWS::Invoicing::InvoiceUnit",
"inputs": {
"description": {
- "type": "string"
+ "type": "string",
+ "description": "The assigned description for an invoice unit. This information can't be modified or deleted."
},
"invoiceReceiver": {
- "type": "string"
+ "type": "string",
+ "description": "The account that receives invoices related to the invoice unit."
},
"name": {
- "type": "string"
+ "type": "string",
+ "description": "A unique name that is distinctive within your AWS ."
},
"resourceTags": {
"type": "array",
"items": {
"$ref": "#/types/aws-native:index:Tag"
- }
+ },
+ "description": "The tag structure that contains a tag key and value."
},
"rule": {
- "$ref": "#/types/aws-native:invoicing:InvoiceUnitRule"
+ "$ref": "#/types/aws-native:invoicing:InvoiceUnitRule",
+ "description": "An `InvoiceUnitRule` object used the categorize invoice units."
},
"taxInheritanceDisabled": {
- "type": "boolean"
+ "type": "boolean",
+ "description": "Whether the invoice unit based tax inheritance is/ should be enabled or disabled."
}
},
"outputs": {
"description": {
- "type": "string"
+ "type": "string",
+ "description": "The assigned description for an invoice unit. This information can't be modified or deleted."
},
"invoiceReceiver": {
"type": "string",
+ "description": "The account that receives invoices related to the invoice unit.",
"replaceOnChanges": true
},
"invoiceUnitArn": {
- "type": "string"
+ "type": "string",
+ "description": "The ARN to identify an invoice unit. This information can't be modified or deleted."
},
"lastModified": {
- "type": "number"
+ "type": "number",
+ "description": "The last time the invoice unit was updated. This is important to determine the version of invoice unit configuration used to create the invoices. Any invoice created after this modified time will use this invoice unit configuration."
},
"name": {
"type": "string",
+ "description": "A unique name that is distinctive within your AWS .",
"replaceOnChanges": true
},
"resourceTags": {
"type": "array",
"items": {
"$ref": "#/types/aws-native:index:Tag"
- }
+ },
+ "description": "The tag structure that contains a tag key and value."
},
"rule": {
- "$ref": "#/types/aws-native:invoicing:InvoiceUnitRule"
+ "$ref": "#/types/aws-native:invoicing:InvoiceUnitRule",
+ "description": "An `InvoiceUnitRule` object used the categorize invoice units."
},
"taxInheritanceDisabled": {
- "type": "boolean"
+ "type": "boolean",
+ "description": "Whether the invoice unit based tax inheritance is/ should be enabled or disabled."
}
},
"autoNamingSpec": {
@@ -55082,6 +55112,140 @@
"certificateProviderName"
]
},
+ "aws-native:iot:Command": {
+ "cf": "AWS::IoT::Command",
+ "inputs": {
+ "commandId": {
+ "type": "string",
+ "description": "The unique identifier for the command."
+ },
+ "createdAt": {
+ "type": "string",
+ "description": "The date and time when the command was created."
+ },
+ "deprecated": {
+ "type": "boolean",
+ "description": "A flag indicating whether the command is deprecated."
+ },
+ "description": {
+ "type": "string",
+ "description": "The description of the command."
+ },
+ "displayName": {
+ "type": "string",
+ "description": "The display name for the command."
+ },
+ "lastUpdatedAt": {
+ "type": "string",
+ "description": "The date and time when the command was last updated."
+ },
+ "mandatoryParameters": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:iot:CommandParameter"
+ },
+ "description": "The list of mandatory parameters for the command."
+ },
+ "namespace": {
+ "$ref": "#/types/aws-native:iot:CommandNamespace",
+ "description": "The namespace to which the command belongs."
+ },
+ "payload": {
+ "$ref": "#/types/aws-native:iot:CommandPayload",
+ "description": "The payload associated with the command."
+ },
+ "pendingDeletion": {
+ "type": "boolean",
+ "description": "A flag indicating whether the command is pending deletion."
+ },
+ "roleArn": {
+ "type": "string",
+ "description": "The customer role associated with the command."
+ },
+ "tags": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:index:Tag"
+ },
+ "description": "The tags to be associated with the command."
+ }
+ },
+ "outputs": {
+ "commandArn": {
+ "type": "string",
+ "description": "The Amazon Resource Name (ARN) of the command."
+ },
+ "commandId": {
+ "type": "string",
+ "description": "The unique identifier for the command.",
+ "replaceOnChanges": true
+ },
+ "createdAt": {
+ "type": "string",
+ "description": "The date and time when the command was created."
+ },
+ "deprecated": {
+ "type": "boolean",
+ "description": "A flag indicating whether the command is deprecated."
+ },
+ "description": {
+ "type": "string",
+ "description": "The description of the command."
+ },
+ "displayName": {
+ "type": "string",
+ "description": "The display name for the command."
+ },
+ "lastUpdatedAt": {
+ "type": "string",
+ "description": "The date and time when the command was last updated."
+ },
+ "mandatoryParameters": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:iot:CommandParameter"
+ },
+ "description": "The list of mandatory parameters for the command."
+ },
+ "namespace": {
+ "$ref": "#/types/aws-native:iot:CommandNamespace",
+ "description": "The namespace to which the command belongs."
+ },
+ "payload": {
+ "$ref": "#/types/aws-native:iot:CommandPayload",
+ "description": "The payload associated with the command."
+ },
+ "pendingDeletion": {
+ "type": "boolean",
+ "description": "A flag indicating whether the command is pending deletion."
+ },
+ "roleArn": {
+ "type": "string",
+ "description": "The customer role associated with the command."
+ },
+ "tags": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:index:Tag"
+ },
+ "description": "The tags to be associated with the command."
+ }
+ },
+ "required": [
+ "commandId"
+ ],
+ "createOnly": [
+ "commandId"
+ ],
+ "writeOnly": [
+ "lastUpdatedAt"
+ ],
+ "tagsProperty": "tags",
+ "tagsStyle": "keyValueArray",
+ "primaryIdentifier": [
+ "commandId"
+ ]
+ },
"aws-native:iot:CustomMetric": {
"cf": "AWS::IoT::CustomMetric",
"inputs": {
@@ -77603,7 +77767,7 @@
},
"type": {
"$ref": "#/types/aws-native:organizations:PolicyType",
- "description": "The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY"
+ "description": "The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY,DECLARATIVE_POLICY_EC2"
}
},
"outputs": {
@@ -77647,7 +77811,7 @@
},
"type": {
"$ref": "#/types/aws-native:organizations:PolicyType",
- "description": "The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY",
+ "description": "The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY,DECLARATIVE_POLICY_EC2",
"replaceOnChanges": true
}
},
@@ -79520,7 +79684,8 @@
"type": "array",
"items": {
"type": "string"
- }
+ },
+ "description": "The OIDC client ID for a Amazon Q Business application."
},
"description": {
"type": "string",
@@ -79591,6 +79756,7 @@
"items": {
"type": "string"
},
+ "description": "The OIDC client ID for a Amazon Q Business application.",
"replaceOnChanges": true
},
"createdAt": {
@@ -82143,6 +82309,117 @@
"arn"
]
},
+ "aws-native:ram:ResourceShare": {
+ "cf": "AWS::RAM::ResourceShare",
+ "inputs": {
+ "allowExternalPrincipals": {
+ "type": "boolean",
+ "description": "Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`."
+ },
+ "name": {
+ "type": "string",
+ "description": "Specifies the name of the resource share."
+ },
+ "permissionArns": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies the [Amazon Resource Names (ARNs)](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) of the AWS RAM permission to associate with the resource share. If you do not specify an ARN for the permission, AWS RAM automatically attaches the default version of the permission for each resource type. You can associate only one permission with each resource type included in the resource share."
+ },
+ "principals": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies the principals to associate with the resource share. The possible values are:\n\n- An AWS account ID\n\n- An Amazon Resource Name (ARN) of an organization in AWS Organizations\n\n- An ARN of an organizational unit (OU) in AWS Organizations\n\n- An ARN of an IAM role\n\n- An ARN of an IAM user"
+ },
+ "resourceArns": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies a list of one or more ARNs of the resources to associate with the resource share."
+ },
+ "sources": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies from which source accounts the service principal has access to the resources in this resource share."
+ },
+ "tags": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:index:Tag"
+ },
+ "description": "Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share."
+ }
+ },
+ "outputs": {
+ "allowExternalPrincipals": {
+ "type": "boolean",
+ "description": "Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`."
+ },
+ "arn": {
+ "type": "string",
+ "description": "The Amazon Resource Name (ARN) of the resource share."
+ },
+ "name": {
+ "type": "string",
+ "description": "Specifies the name of the resource share."
+ },
+ "permissionArns": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies the [Amazon Resource Names (ARNs)](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) of the AWS RAM permission to associate with the resource share. If you do not specify an ARN for the permission, AWS RAM automatically attaches the default version of the permission for each resource type. You can associate only one permission with each resource type included in the resource share."
+ },
+ "principals": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies the principals to associate with the resource share. The possible values are:\n\n- An AWS account ID\n\n- An Amazon Resource Name (ARN) of an organization in AWS Organizations\n\n- An ARN of an organizational unit (OU) in AWS Organizations\n\n- An ARN of an IAM role\n\n- An ARN of an IAM user"
+ },
+ "resourceArns": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies a list of one or more ARNs of the resources to associate with the resource share."
+ },
+ "sources": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies from which source accounts the service principal has access to the resources in this resource share."
+ },
+ "tags": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:index:Tag"
+ },
+ "description": "Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share."
+ }
+ },
+ "autoNamingSpec": {
+ "sdkName": "name"
+ },
+ "writeOnly": [
+ "permissionArns",
+ "principals",
+ "resourceArns",
+ "sources"
+ ],
+ "tagsProperty": "tags",
+ "tagsStyle": "keyValueArray",
+ "primaryIdentifier": [
+ "arn"
+ ]
+ },
"aws-native:rbin:Rule": {
"cf": "AWS::Rbin::Rule",
"inputs": {
@@ -82267,11 +82544,11 @@
"inputs": {
"databaseInstallationFilesS3BucketName": {
"type": "string",
- "description": "The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is `my-custom-installation-files`."
+ "description": "The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is ``my-custom-installation-files``."
},
"databaseInstallationFilesS3Prefix": {
"type": "string",
- "description": "The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is `123456789012/cev1`. If this setting isn't specified, no prefix is assumed."
+ "description": "The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is ``123456789012/cev1``. If this setting isn't specified, no prefix is assumed."
},
"description": {
"type": "string",
@@ -82279,53 +82556,53 @@
},
"engine": {
"type": "string",
- "description": "The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`."
+ "description": "The database engine to use for your custom engine version (CEV).\n Valid values:\n + ``custom-oracle-ee`` \n + ``custom-oracle-ee-cdb``"
},
"engineVersion": {
"type": "string",
- "description": "The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region."
+ "description": "The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.\n *Constraints:* Minimum length is 1. Maximum length is 60.\n *Pattern:* ``^[a-z0-9_.-]{1,60$``}"
},
"imageId": {
"type": "string",
- "description": "The identifier of Amazon Machine Image (AMI) used for CEV."
+ "description": "A value that indicates the ID of the AMI."
},
"kmsKeyId": {
"type": "string",
- "description": "The AWS KMS key identifier for an encrypted CEV. A symmetric KMS key is required for RDS Custom, but optional for Amazon RDS."
+ "description": "The AWS KMS key identifier for an encrypted CEV. A symmetric encryption KMS key is required for RDS Custom, but optional for Amazon RDS.\n If you have an existing symmetric encryption KMS key in your account, you can use it with RDS Custom. No further action is necessary. If you don't already have a symmetric encryption KMS key in your account, follow the instructions in [Creating a symmetric encryption KMS key](https://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html#create-symmetric-cmk) in the *Key Management Service Developer Guide*.\n You can choose the same symmetric encryption key when you create a CEV and a DB instance, or choose different keys."
},
"manifest": {
"type": "string",
- "description": "The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed."
+ "description": "The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.\n The following JSON fields are valid:\n + MediaImportTemplateVersion Version of the CEV manifest. The date is in the format YYYY-MM-DD. + databaseInstallationFileNames Ordered list of installation files for the CEV. + opatchFileNames Ordered list of OPatch installers used for the Oracle DB engine. + psuRuPatchFileNames The PSU and RU patches for this CEV. + OtherPatchFileNames The patches that are not in the list of PSU and RU patches. Amazon RDS applies these patches after applying the PSU and RU patches. \n For more information, see [Creating the CEV manifest](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/custom-cev.html#custom-cev.preparing.manifest) in the *Amazon RDS User Guide*."
},
"sourceCustomDbEngineVersionIdentifier": {
"type": "string",
- "description": "The identifier of the source custom engine version."
+ "description": "The ARN of a CEV to use as a source for creating a new CEV. You can specify a different Amazon Machine Imagine (AMI) by using either ``Source`` or ``UseAwsProvidedLatestImage``. You can't specify a different JSON manifest when you specify ``SourceCustomDbEngineVersionIdentifier``."
},
"status": {
"$ref": "#/types/aws-native:rds:CustomDbEngineVersionStatus",
- "description": "The availability status to be assigned to the CEV."
+ "description": "A value that indicates the status of a custom engine version (CEV)."
},
"tags": {
"type": "array",
"items": {
"$ref": "#/types/aws-native:index:Tag"
},
- "description": "An array of key-value pairs to apply to this resource."
+ "description": "A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*"
},
"useAwsProvidedLatestImage": {
"type": "boolean",
- "description": "A value that indicates whether AWS provided latest image is applied automatically to the Custom Engine Version. By default, AWS provided latest image is applied automatically. This value is only applied on create."
+ "description": "Specifies whether to use the latest service-provided Amazon Machine Image (AMI) for the CEV. If you specify ``UseAwsProvidedLatestImage``, you can't also specify ``ImageId``."
}
},
"outputs": {
"databaseInstallationFilesS3BucketName": {
"type": "string",
- "description": "The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is `my-custom-installation-files`.",
+ "description": "The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is ``my-custom-installation-files``.",
"replaceOnChanges": true
},
"databaseInstallationFilesS3Prefix": {
"type": "string",
- "description": "The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is `123456789012/cev1`. If this setting isn't specified, no prefix is assumed.",
+ "description": "The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is ``123456789012/cev1``. If this setting isn't specified, no prefix is assumed.",
"replaceOnChanges": true
},
"dbEngineVersionArn": {
@@ -82338,48 +82615,48 @@
},
"engine": {
"type": "string",
- "description": "The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`.",
+ "description": "The database engine to use for your custom engine version (CEV).\n Valid values:\n + ``custom-oracle-ee`` \n + ``custom-oracle-ee-cdb``",
"replaceOnChanges": true
},
"engineVersion": {
"type": "string",
- "description": "The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region.",
+ "description": "The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.\n *Constraints:* Minimum length is 1. Maximum length is 60.\n *Pattern:* ``^[a-z0-9_.-]{1,60$``}",
"replaceOnChanges": true
},
"imageId": {
"type": "string",
- "description": "The identifier of Amazon Machine Image (AMI) used for CEV.",
+ "description": "A value that indicates the ID of the AMI.",
"replaceOnChanges": true
},
"kmsKeyId": {
"type": "string",
- "description": "The AWS KMS key identifier for an encrypted CEV. A symmetric KMS key is required for RDS Custom, but optional for Amazon RDS.",
+ "description": "The AWS KMS key identifier for an encrypted CEV. A symmetric encryption KMS key is required for RDS Custom, but optional for Amazon RDS.\n If you have an existing symmetric encryption KMS key in your account, you can use it with RDS Custom. No further action is necessary. If you don't already have a symmetric encryption KMS key in your account, follow the instructions in [Creating a symmetric encryption KMS key](https://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html#create-symmetric-cmk) in the *Key Management Service Developer Guide*.\n You can choose the same symmetric encryption key when you create a CEV and a DB instance, or choose different keys.",
"replaceOnChanges": true
},
"manifest": {
"type": "string",
- "description": "The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.",
+ "description": "The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.\n The following JSON fields are valid:\n + MediaImportTemplateVersion Version of the CEV manifest. The date is in the format YYYY-MM-DD. + databaseInstallationFileNames Ordered list of installation files for the CEV. + opatchFileNames Ordered list of OPatch installers used for the Oracle DB engine. + psuRuPatchFileNames The PSU and RU patches for this CEV. + OtherPatchFileNames The patches that are not in the list of PSU and RU patches. Amazon RDS applies these patches after applying the PSU and RU patches. \n For more information, see [Creating the CEV manifest](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/custom-cev.html#custom-cev.preparing.manifest) in the *Amazon RDS User Guide*.",
"replaceOnChanges": true
},
"sourceCustomDbEngineVersionIdentifier": {
"type": "string",
- "description": "The identifier of the source custom engine version.",
+ "description": "The ARN of a CEV to use as a source for creating a new CEV. You can specify a different Amazon Machine Imagine (AMI) by using either ``Source`` or ``UseAwsProvidedLatestImage``. You can't specify a different JSON manifest when you specify ``SourceCustomDbEngineVersionIdentifier``.",
"replaceOnChanges": true
},
"status": {
"$ref": "#/types/aws-native:rds:CustomDbEngineVersionStatus",
- "description": "The availability status to be assigned to the CEV."
+ "description": "A value that indicates the status of a custom engine version (CEV)."
},
"tags": {
"type": "array",
"items": {
"$ref": "#/types/aws-native:index:Tag"
},
- "description": "An array of key-value pairs to apply to this resource."
+ "description": "A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*"
},
"useAwsProvidedLatestImage": {
"type": "boolean",
- "description": "A value that indicates whether AWS provided latest image is applied automatically to the Custom Engine Version. By default, AWS provided latest image is applied automatically. This value is only applied on create.",
+ "description": "Specifies whether to use the latest service-provided Amazon Machine Image (AMI) for the CEV. If you specify ``UseAwsProvidedLatestImage``, you can't also specify ``ImageId``.",
"replaceOnChanges": true
}
},
@@ -86260,6 +86537,10 @@
"type": "integer",
"description": "The custom port to use when connecting to a workgroup. Valid port ranges are 5431-5455 and 8191-8215. The default is 5439."
},
+ "pricePerformanceTarget": {
+ "$ref": "#/types/aws-native:redshiftserverless:WorkgroupPerformanceTarget",
+ "description": "A property that represents the price performance target settings for the workgroup."
+ },
"publiclyAccessible": {
"type": "boolean",
"description": "A value that specifies whether the workgroup can be accessible from a public network."
@@ -86319,6 +86600,10 @@
"type": "integer",
"description": "The custom port to use when connecting to a workgroup. Valid port ranges are 5431-5455 and 8191-8215. The default is 5439."
},
+ "pricePerformanceTarget": {
+ "$ref": "#/types/aws-native:redshiftserverless:WorkgroupPerformanceTarget",
+ "description": "A property that represents the price performance target settings for the workgroup."
+ },
"publiclyAccessible": {
"type": "boolean",
"description": "A value that specifies whether the workgroup can be accessible from a public network."
@@ -90589,6 +90874,9 @@
"$ref": "#/types/aws-native:s3:BucketLoggingConfiguration",
"description": "Settings that define where logs are stored."
},
+ "metadataTableConfiguration": {
+ "$ref": "#/types/aws-native:s3:BucketMetadataTableConfiguration"
+ },
"metricsConfigurations": {
"type": "array",
"items": {
@@ -90699,6 +90987,9 @@
"$ref": "#/types/aws-native:s3:BucketLoggingConfiguration",
"description": "Settings that define where logs are stored."
},
+ "metadataTableConfiguration": {
+ "$ref": "#/types/aws-native:s3:BucketMetadataTableConfiguration"
+ },
"metricsConfigurations": {
"type": "array",
"items": {
@@ -91061,11 +91352,11 @@
},
"bucketName": {
"type": "string",
- "description": "Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name."
+ "description": "Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name."
},
"dataRedundancy": {
"$ref": "#/types/aws-native:s3express:DirectoryBucketDataRedundancy",
- "description": "Specifies the number of Availability Zone that's used for redundancy for the bucket."
+ "description": "Specifies the number of Availability Zone or Local Zone that's used for redundancy for the bucket."
},
"lifecycleConfiguration": {
"$ref": "#/types/aws-native:s3express:DirectoryBucketLifecycleConfiguration",
@@ -91073,7 +91364,7 @@
},
"locationName": {
"type": "string",
- "description": "Specifies the AZ ID of the Availability Zone where the directory bucket will be created. An example AZ ID value is 'use1-az5'."
+ "description": "Specifies the Zone ID of the Availability Zone or Local Zone where the directory bucket will be created. An example Availability Zone ID value is 'use1-az5'."
}
},
"outputs": {
@@ -91083,7 +91374,7 @@
},
"availabilityZoneName": {
"type": "string",
- "description": "Returns the code for the Availability Zone where the directory bucket was created."
+ "description": "Returns the code for the Availability Zone or Local Zone where the directory bucket was created. An example for the code of an Availability Zone is 'us-east-1f'."
},
"bucketEncryption": {
"$ref": "#/types/aws-native:s3express:DirectoryBucketBucketEncryption",
@@ -91091,12 +91382,12 @@
},
"bucketName": {
"type": "string",
- "description": "Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.",
+ "description": "Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.",
"replaceOnChanges": true
},
"dataRedundancy": {
"$ref": "#/types/aws-native:s3express:DirectoryBucketDataRedundancy",
- "description": "Specifies the number of Availability Zone that's used for redundancy for the bucket.",
+ "description": "Specifies the number of Availability Zone or Local Zone that's used for redundancy for the bucket.",
"replaceOnChanges": true
},
"lifecycleConfiguration": {
@@ -91105,7 +91396,7 @@
},
"locationName": {
"type": "string",
- "description": "Specifies the AZ ID of the Availability Zone where the directory bucket will be created. An example AZ ID value is 'use1-az5'.",
+ "description": "Specifies the Zone ID of the Availability Zone or Local Zone where the directory bucket will be created. An example Availability Zone ID value is 'use1-az5'.",
"replaceOnChanges": true
}
},
@@ -91492,6 +91783,74 @@
"arn"
]
},
+ "aws-native:s3tables:TableBucket": {
+ "cf": "AWS::S3Tables::TableBucket",
+ "inputs": {
+ "tableBucketName": {
+ "type": "string"
+ },
+ "unreferencedFileRemoval": {
+ "$ref": "#/types/aws-native:s3tables:TableBucketUnreferencedFileRemoval"
+ }
+ },
+ "outputs": {
+ "tableBucketArn": {
+ "type": "string"
+ },
+ "tableBucketName": {
+ "type": "string",
+ "replaceOnChanges": true
+ },
+ "unreferencedFileRemoval": {
+ "$ref": "#/types/aws-native:s3tables:TableBucketUnreferencedFileRemoval"
+ }
+ },
+ "autoNamingSpec": {
+ "sdkName": "tableBucketName"
+ },
+ "createOnly": [
+ "tableBucketName"
+ ],
+ "irreversibleNames": {
+ "tableBucketArn": "TableBucketARN"
+ },
+ "primaryIdentifier": [
+ "tableBucketArn"
+ ]
+ },
+ "aws-native:s3tables:TableBucketPolicy": {
+ "cf": "AWS::S3Tables::TableBucketPolicy",
+ "inputs": {
+ "resourcePolicy": {
+ "$ref": "#/types/aws-native:s3tables:TableBucketPolicyResourcePolicy"
+ },
+ "tableBucketArn": {
+ "type": "string"
+ }
+ },
+ "outputs": {
+ "resourcePolicy": {
+ "$ref": "#/types/aws-native:s3tables:TableBucketPolicyResourcePolicy"
+ },
+ "tableBucketArn": {
+ "type": "string",
+ "replaceOnChanges": true
+ }
+ },
+ "required": [
+ "resourcePolicy",
+ "tableBucketArn"
+ ],
+ "createOnly": [
+ "tableBucketArn"
+ ],
+ "irreversibleNames": {
+ "tableBucketArn": "TableBucketARN"
+ },
+ "primaryIdentifier": [
+ "tableBucketArn"
+ ]
+ },
"aws-native:sagemaker:App": {
"cf": "AWS::SageMaker::App",
"inputs": {
@@ -112148,7 +112507,7 @@
"items": {
"$ref": "#/types/aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingMetricDimension"
},
- "description": "The dimensions for the metric."
+ "description": "Describes the dimensions of the metric."
},
"metricName": {
"type": "string",
@@ -112165,11 +112524,11 @@
"properties": {
"expression": {
"type": "string",
- "description": "The math expression to perform on the returned data, if this object is performing a math expression."
+ "description": "The math expression to perform on the returned data, if this object is performing a math expression. This expression can use the ``Id`` of the other metrics to refer to those metrics, and can also use the ``Id`` of other expressions to use the result of those expressions. \n Conditional: Within each ``MetricDataQuery`` object, you must specify either ``Expression`` or ``MetricStat``, but not both."
},
"id": {
"type": "string",
- "description": "A short name that identifies the object's results in the response."
+ "description": "A short name that identifies the object's results in the response. This name must be unique among all ``MetricDataQuery`` objects specified for a single scaling policy. If you are performing math expressions on this set of data, this name represents that data and can serve as a variable in the mathematical expression. The valid characters are letters, numbers, and underscores. The first character must be a lowercase letter."
},
"label": {
"type": "string",
@@ -112177,11 +112536,11 @@
},
"metricStat": {
"$ref": "#/types/aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingMetricStat",
- "description": "Information about the metric data to return."
+ "description": "Information about the metric data to return. \n Conditional: Within each ``MetricDataQuery`` object, you must specify either ``Expression`` or ``MetricStat``, but not both."
},
"returnData": {
"type": "boolean",
- "description": "Indicates whether to return the timestamps and raw data values of this metric."
+ "description": "Indicates whether to return the timestamps and raw data values of this metric. \n If you use any math expressions, specify ``true`` for this value for only the final math expression that the metric specification is based on. You must specify ``false`` for ``ReturnData`` for all the other metrics and expressions used in the metric specification.\n If you are only retrieving metrics and not performing any math expressions, do not specify anything for ``ReturnData``. This sets it to its default (``true``)."
}
}
},
@@ -112236,15 +112595,15 @@
"properties": {
"metric": {
"$ref": "#/types/aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingMetric",
- "description": "The CloudWatch metric to return, including the metric name, namespace, and dimensions. "
+ "description": "The CloudWatch metric to return, including the metric name, namespace, and dimensions. To get the exact metric name, namespace, and dimensions, inspect the [Metric](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_Metric.html) object that is returned by a call to [ListMetrics](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_ListMetrics.html)."
},
"stat": {
"type": "string",
- "description": "The statistic to return. It can include any CloudWatch statistic or extended statistic."
+ "description": "The statistic to return. It can include any CloudWatch statistic or extended statistic. For a list of valid values, see the table in [Statistics](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/cloudwatch_concepts.html#Statistic) in the *Amazon CloudWatch User Guide*. \n The most commonly used metrics for predictive scaling are ``Average`` and ``Sum``."
},
"unit": {
"type": "string",
- "description": "The unit to use for the returned data points."
+ "description": "The unit to use for the returned data points. For a complete list of the units that CloudWatch supports, see the [MetricDatum](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_MetricDatum.html) data type in the *Amazon CloudWatch API Reference*."
}
}
},
@@ -112253,26 +112612,26 @@
"properties": {
"maxCapacityBreachBehavior": {
"type": "string",
- "description": "Defines the behavior that should be applied if the forecast capacity approaches or exceeds the maximum capacity. Defaults to `HonorMaxCapacity` if not specified."
+ "description": "Defines the behavior that should be applied if the forecast capacity approaches or exceeds the maximum capacity. Defaults to ``HonorMaxCapacity`` if not specified."
},
"maxCapacityBuffer": {
"type": "integer",
- "description": "The size of the capacity buffer to use when the forecast capacity is close to or exceeds the maximum capacity. The value is specified as a percentage relative to the forecast capacity. For example, if the buffer is 10, this means a 10 percent buffer, such that if the forecast capacity is 50, and the maximum capacity is 40, then the effective maximum capacity is 55.\n\nRequired if the `MaxCapacityBreachBehavior` property is set to `IncreaseMaxCapacity` , and cannot be used otherwise."
+ "description": "The size of the capacity buffer to use when the forecast capacity is close to or exceeds the maximum capacity. The value is specified as a percentage relative to the forecast capacity. For example, if the buffer is 10, this means a 10 percent buffer, such that if the forecast capacity is 50, and the maximum capacity is 40, then the effective maximum capacity is 55. \n Required if the ``MaxCapacityBreachBehavior`` property is set to ``IncreaseMaxCapacity``, and cannot be used otherwise."
},
"metricSpecifications": {
"type": "array",
"items": {
"$ref": "#/types/aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingMetricSpecification"
},
- "description": "This structure includes the metrics and target utilization to use for predictive scaling.\n\nThis is an array, but we currently only support a single metric specification. That is, you can specify a target value and a single metric pair, or a target value and one scaling metric and one load metric."
+ "description": "This structure includes the metrics and target utilization to use for predictive scaling. \n This is an array, but we currently only support a single metric specification. That is, you can specify a target value and a single metric pair, or a target value and one scaling metric and one load metric."
},
"mode": {
"type": "string",
- "description": "The predictive scaling mode. Defaults to `ForecastOnly` if not specified."
+ "description": "The predictive scaling mode. Defaults to ``ForecastOnly`` if not specified."
},
"schedulingBufferTime": {
"type": "integer",
- "description": "The amount of time, in seconds, that the start time can be advanced.\n\nThe value must be less than the forecast interval duration of 3600 seconds (60 minutes). Defaults to 300 seconds if not specified."
+ "description": "The amount of time, in seconds, that the start time can be advanced. \n The value must be less than the forecast interval duration of 3600 seconds (60 minutes). Defaults to 300 seconds if not specified."
}
}
},
@@ -118654,7 +119013,7 @@
"properties": {
"bedrockFoundationModelConfiguration": {
"$ref": "#/types/aws-native:bedrock:DataSourceBedrockFoundationModelConfiguration",
- "description": "Settings for a foundation model used to parse documents for a data source."
+ "description": "If you specify `BEDROCK_FOUNDATION_MODEL` as the parsing strategy for ingesting your data source, use this object to modify configurations for using a foundation model to parse documents."
},
"parsingStrategy": {
"$ref": "#/types/aws-native:bedrock:DataSourceParsingStrategy",
@@ -118942,7 +119301,7 @@
},
"parsingConfiguration": {
"$ref": "#/types/aws-native:bedrock:DataSourceParsingConfiguration",
- "description": "A custom parser for data source documents.",
+ "description": "Configurations for a parser to use for parsing documents in your data source. If you exclude this field, the default parser will be used.",
"replaceOnChanges": true
}
}
@@ -120357,7 +120716,7 @@
},
"type": {
"$ref": "#/types/aws-native:bedrock:GuardrailPiiEntityType",
- "description": "Configure guardrail type when the PII entity is detected.\n\nThe following PIIs are used to block or mask sensitive information:\n\n- *General*\n\n- *ADDRESS*\n\nA physical address, such as \"100 Main Street, Anytown, USA\" or \"Suite #12, Building 123\". An address can include information such as the street, building, location, city, state, country, county, zip code, precinct, and neighborhood.\n- *AGE*\n\nAn individual's age, including the quantity and unit of time. For example, in the phrase \"I am 40 years old,\" Guarrails recognizes \"40 years\" as an age.\n- *NAME*\n\nAn individual's name. This entity type does not include titles, such as Dr., Mr., Mrs., or Miss. guardrails doesn't apply this entity type to names that are part of organizations or addresses. For example, guardrails recognizes the \"John Doe Organization\" as an organization, and it recognizes \"Jane Doe Street\" as an address.\n- *EMAIL*\n\nAn email address, such as *marymajor@email.com* .\n- *PHONE*\n\nA phone number. This entity type also includes fax and pager numbers.\n- *USERNAME*\n\nA user name that identifies an account, such as a login name, screen name, nick name, or handle.\n- *PASSWORD*\n\nAn alphanumeric string that is used as a password, such as \"* *very20special#pass** \".\n- *DRIVER_ID*\n\nThe number assigned to a driver's license, which is an official document permitting an individual to operate one or more motorized vehicles on a public road. A driver's license number consists of alphanumeric characters.\n- *LICENSE_PLATE*\n\nA license plate for a vehicle is issued by the state or country where the vehicle is registered. The format for passenger vehicles is typically five to eight digits, consisting of upper-case letters and numbers. The format varies depending on the location of the issuing state or country.\n- *VEHICLE_IDENTIFICATION_NUMBER*\n\nA Vehicle Identification Number (VIN) uniquely identifies a vehicle. VIN content and format are defined in the *ISO 3779* specification. Each country has specific codes and formats for VINs.\n- *Finance*\n\n- *REDIT_DEBIT_CARD_CVV*\n\nA three-digit card verification code (CVV) that is present on VISA, MasterCard, and Discover credit and debit cards. For American Express credit or debit cards, the CVV is a four-digit numeric code.\n- *CREDIT_DEBIT_CARD_EXPIRY*\n\nThe expiration date for a credit or debit card. This number is usually four digits long and is often formatted as *month/year* or *MM/YY* . Guardrails recognizes expiration dates such as *01/21* , *01/2021* , and *Jan 2021* .\n- *CREDIT_DEBIT_CARD_NUMBER*\n\nThe number for a credit or debit card. These numbers can vary from 13 to 16 digits in length. However, Amazon Comprehend also recognizes credit or debit card numbers when only the last four digits are present.\n- *PIN*\n\nA four-digit personal identification number (PIN) with which you can access your bank account.\n- *INTERNATIONAL_BANK_ACCOUNT_NUMBER*\n\nAn International Bank Account Number has specific formats in each country. For more information, see [www.iban.com/structure](https://docs.aws.amazon.com/https://www.iban.com/structure) .\n- *SWIFT_CODE*\n\nA SWIFT code is a standard format of Bank Identifier Code (BIC) used to specify a particular bank or branch. Banks use these codes for money transfers such as international wire transfers.\n\nSWIFT codes consist of eight or 11 characters. The 11-digit codes refer to specific branches, while eight-digit codes (or 11-digit codes ending in 'XXX') refer to the head or primary office.\n- *IT*\n\n- *IP_ADDRESS*\n\nAn IPv4 address, such as *198.51.100.0* .\n- *MAC_ADDRESS*\n\nA *media access control* (MAC) address is a unique identifier assigned to a network interface controller (NIC).\n- *URL*\n\nA web address, such as *www.example.com* .\n- *AWS_ACCESS_KEY*\n\nA unique identifier that's associated with a secret access key; you use the access key ID and secret access key to sign programmatic AWS requests cryptographically.\n- *AWS_SECRET_KEY*\n\nA unique identifier that's associated with an access key. You use the access key ID and secret access key to sign programmatic AWS requests cryptographically.\n- *USA specific*\n\n- *US_BANK_ACCOUNT_NUMBER*\n\nA US bank account number, which is typically 10 to 12 digits long.\n- *US_BANK_ROUTING_NUMBER*\n\nA US bank account routing number. These are typically nine digits long,\n- *US_INDIVIDUAL_TAX_IDENTIFICATION_NUMBER*\n\nA US Individual Taxpayer Identification Number (ITIN) is a nine-digit number that starts with a \"9\" and contain a \"7\" or \"8\" as the fourth digit. An ITIN can be formatted with a space or a dash after the third and forth digits.\n- *US_PASSPORT_NUMBER*\n\nA US passport number. Passport numbers range from six to nine alphanumeric characters.\n- *US_SOCIAL_SECURITY_NUMBER*\n\nA US Social Security Number (SSN) is a nine-digit number that is issued to US citizens, permanent residents, and temporary working residents.\n- *Canada specific*\n\n- *CA_HEALTH_NUMBER*\n\nA Canadian Health Service Number is a 10-digit unique identifier, required for individuals to access healthcare benefits.\n- *CA_SOCIAL_INSURANCE_NUMBER*\n\nA Canadian Social Insurance Number (SIN) is a nine-digit unique identifier, required for individuals to access government programs and benefits.\n\nThe SIN is formatted as three groups of three digits, such as *123-456-789* . A SIN can be validated through a simple check-digit process called the [Luhn algorithm](https://docs.aws.amazon.com/https://www.wikipedia.org/wiki/Luhn_algorithm) .\n- *UK Specific*\n\n- *UK_NATIONAL_HEALTH_SERVICE_NUMBER*\n\nA UK National Health Service Number is a 10-17 digit number, such as *485 777 3456* . The current system formats the 10-digit number with spaces after the third and sixth digits. The final digit is an error-detecting checksum.\n- *UK_NATIONAL_INSURANCE_NUMBER*\n\nA UK National Insurance Number (NINO) provides individuals with access to National Insurance (social security) benefits. It is also used for some purposes in the UK tax system.\n\nThe number is nine digits long and starts with two letters, followed by six numbers and one letter. A NINO can be formatted with a space or a dash after the two letters and after the second, forth, and sixth digits.\n- *UK_UNIQUE_TAXPAYER_REFERENCE_NUMBER*\n\nA UK Unique Taxpayer Reference (UTR) is a 10-digit number that identifies a taxpayer or a business.\n- *Custom*\n\n- *Regex filter* - You can use a regular expressions to define patterns for a guardrail to recognize and act upon such as serial number, booking ID etc.."
+ "description": "Configure guardrail type when the PII entity is detected.\n\nThe following PIIs are used to block or mask sensitive information:\n\n- *General*\n\n- *ADDRESS*\n\nA physical address, such as \"100 Main Street, Anytown, USA\" or \"Suite #12, Building 123\". An address can include information such as the street, building, location, city, state, country, county, zip code, precinct, and neighborhood.\n- *AGE*\n\nAn individual's age, including the quantity and unit of time. For example, in the phrase \"I am 40 years old,\" Guardrails recognizes \"40 years\" as an age.\n- *NAME*\n\nAn individual's name. This entity type does not include titles, such as Dr., Mr., Mrs., or Miss. guardrails doesn't apply this entity type to names that are part of organizations or addresses. For example, guardrails recognizes the \"John Doe Organization\" as an organization, and it recognizes \"Jane Doe Street\" as an address.\n- *EMAIL*\n\nAn email address, such as *marymajor@email.com* .\n- *PHONE*\n\nA phone number. This entity type also includes fax and pager numbers.\n- *USERNAME*\n\nA user name that identifies an account, such as a login name, screen name, nick name, or handle.\n- *PASSWORD*\n\nAn alphanumeric string that is used as a password, such as \"* *very20special#pass** \".\n- *DRIVER_ID*\n\nThe number assigned to a driver's license, which is an official document permitting an individual to operate one or more motorized vehicles on a public road. A driver's license number consists of alphanumeric characters.\n- *LICENSE_PLATE*\n\nA license plate for a vehicle is issued by the state or country where the vehicle is registered. The format for passenger vehicles is typically five to eight digits, consisting of upper-case letters and numbers. The format varies depending on the location of the issuing state or country.\n- *VEHICLE_IDENTIFICATION_NUMBER*\n\nA Vehicle Identification Number (VIN) uniquely identifies a vehicle. VIN content and format are defined in the *ISO 3779* specification. Each country has specific codes and formats for VINs.\n- *Finance*\n\n- *CREDIT_DEBIT_CARD_CVV*\n\nA three-digit card verification code (CVV) that is present on VISA, MasterCard, and Discover credit and debit cards. For American Express credit or debit cards, the CVV is a four-digit numeric code.\n- *CREDIT_DEBIT_CARD_EXPIRY*\n\nThe expiration date for a credit or debit card. This number is usually four digits long and is often formatted as *month/year* or *MM/YY* . Guardrails recognizes expiration dates such as *01/21* , *01/2021* , and *Jan 2021* .\n- *CREDIT_DEBIT_CARD_NUMBER*\n\nThe number for a credit or debit card. These numbers can vary from 13 to 16 digits in length. However, Amazon Comprehend also recognizes credit or debit card numbers when only the last four digits are present.\n- *PIN*\n\nA four-digit personal identification number (PIN) with which you can access your bank account.\n- *INTERNATIONAL_BANK_ACCOUNT_NUMBER*\n\nAn International Bank Account Number has specific formats in each country. For more information, see [www.iban.com/structure](https://docs.aws.amazon.com/https://www.iban.com/structure) .\n- *SWIFT_CODE*\n\nA SWIFT code is a standard format of Bank Identifier Code (BIC) used to specify a particular bank or branch. Banks use these codes for money transfers such as international wire transfers.\n\nSWIFT codes consist of eight or 11 characters. The 11-digit codes refer to specific branches, while eight-digit codes (or 11-digit codes ending in 'XXX') refer to the head or primary office.\n- *IT*\n\n- *IP_ADDRESS*\n\nAn IPv4 address, such as *198.51.100.0* .\n- *MAC_ADDRESS*\n\nA *media access control* (MAC) address is a unique identifier assigned to a network interface controller (NIC).\n- *URL*\n\nA web address, such as *www.example.com* .\n- *AWS_ACCESS_KEY*\n\nA unique identifier that's associated with a secret access key; you use the access key ID and secret access key to sign programmatic AWS requests cryptographically.\n- *AWS_SECRET_KEY*\n\nA unique identifier that's associated with an access key. You use the access key ID and secret access key to sign programmatic AWS requests cryptographically.\n- *USA specific*\n\n- *US_BANK_ACCOUNT_NUMBER*\n\nA US bank account number, which is typically 10 to 12 digits long.\n- *US_BANK_ROUTING_NUMBER*\n\nA US bank account routing number. These are typically nine digits long,\n- *US_INDIVIDUAL_TAX_IDENTIFICATION_NUMBER*\n\nA US Individual Taxpayer Identification Number (ITIN) is a nine-digit number that starts with a \"9\" and contain a \"7\" or \"8\" as the fourth digit. An ITIN can be formatted with a space or a dash after the third and forth digits.\n- *US_PASSPORT_NUMBER*\n\nA US passport number. Passport numbers range from six to nine alphanumeric characters.\n- *US_SOCIAL_SECURITY_NUMBER*\n\nA US Social Security Number (SSN) is a nine-digit number that is issued to US citizens, permanent residents, and temporary working residents.\n- *Canada specific*\n\n- *CA_HEALTH_NUMBER*\n\nA Canadian Health Service Number is a 10-digit unique identifier, required for individuals to access healthcare benefits.\n- *CA_SOCIAL_INSURANCE_NUMBER*\n\nA Canadian Social Insurance Number (SIN) is a nine-digit unique identifier, required for individuals to access government programs and benefits.\n\nThe SIN is formatted as three groups of three digits, such as *123-456-789* . A SIN can be validated through a simple check-digit process called the [Luhn algorithm](https://docs.aws.amazon.com/https://www.wikipedia.org/wiki/Luhn_algorithm) .\n- *UK Specific*\n\n- *UK_NATIONAL_HEALTH_SERVICE_NUMBER*\n\nA UK National Health Service Number is a 10-17 digit number, such as *485 777 3456* . The current system formats the 10-digit number with spaces after the third and sixth digits. The final digit is an error-detecting checksum.\n- *UK_NATIONAL_INSURANCE_NUMBER*\n\nA UK National Insurance Number (NINO) provides individuals with access to National Insurance (social security) benefits. It is also used for some purposes in the UK tax system.\n\nThe number is nine digits long and starts with two letters, followed by six numbers and one letter. A NINO can be formatted with a space or a dash after the two letters and after the second, forth, and sixth digits.\n- *UK_UNIQUE_TAXPAYER_REFERENCE_NUMBER*\n\nA UK Unique Taxpayer Reference (UTR) is a 10-digit number that identifies a taxpayer or a business.\n- *Custom*\n\n- *Regex filter* - You can use a regular expressions to define patterns for a guardrail to recognize and act upon such as serial number, booking ID etc.."
}
}
},
@@ -126090,7 +126449,8 @@
"type": "object",
"properties": {
"advancedSecurityAdditionalFlows": {
- "$ref": "#/types/aws-native:cognito:UserPoolAdvancedSecurityAdditionalFlows"
+ "$ref": "#/types/aws-native:cognito:UserPoolAdvancedSecurityAdditionalFlows",
+ "description": "Advanced security configuration options for additional authentication types in your user pool, including custom authentication."
},
"advancedSecurityMode": {
"type": "string",
@@ -126119,7 +126479,8 @@
"type": "object",
"properties": {
"customAuthMode": {
- "type": "string"
+ "type": "string",
+ "description": "The operating mode of advanced security features in custom authentication with [Custom authentication challenge Lambda triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-lambda-challenge.html) ."
}
}
},
@@ -126377,7 +126738,8 @@
"description": "The password policy settings for a user pool, including complexity, history, and length requirements."
},
"signInPolicy": {
- "$ref": "#/types/aws-native:cognito:UserPoolSignInPolicy"
+ "$ref": "#/types/aws-native:cognito:UserPoolSignInPolicy",
+ "description": "The policy for allowed types of authentication in a user pool.\n\nThis data type is a request and response parameter of [CreateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_CreateUserPool.html) and [UpdateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserPool.html) , and a response parameter of [DescribeUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_DescribeUserPool.html) ."
}
}
},
@@ -126597,7 +126959,8 @@
"type": "array",
"items": {
"type": "string"
- }
+ },
+ "description": "The sign-in methods that a user pool supports as the first factor. You can permit users to start authentication with a standard username and password, or with other one-time password and hardware factors.\n\nSupports values of `EMAIL_OTP` , `SMS_OTP` , `WEB_AUTHN` and `PASSWORD` ,"
}
}
},
@@ -135870,7 +136233,7 @@
"properties": {
"capacityReservationPreference": {
"type": "string",
- "description": "Indicates the instance's Capacity Reservation preferences. Possible preferences include:\n + ``capacity-reservations-only`` - The instance will only run in a Capacity Reservation or Capacity Reservation group. If capacity isn't available, the instance will fail to launch.\n + ``open`` - The instance can run in any ``open`` Capacity Reservation that has matching attributes (instance type, platform, Availability Zone, tenancy).\n + ``none`` - The instance avoids running in a Capacity Reservation even if one is available. The instance runs in On-Demand capacity."
+ "description": "Indicates the instance's Capacity Reservation preferences. Possible preferences include:\n + ``open`` - The instance can run in any ``open`` Capacity Reservation that has matching attributes (instance type, platform, Availability Zone).\n + ``none`` - The instance avoids running in a Capacity Reservation even if one is available. The instance runs in On-Demand capacity."
},
"capacityReservationTarget": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateCapacityReservationTarget",
@@ -135994,7 +136357,7 @@
"items": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateElasticInferenceAccelerator"
},
- "description": "Amazon Elastic Inference is no longer available.\n An elastic inference accelerator to associate with the instance. Elastic inference accelerators are a resource you can attach to your Amazon EC2 instances to accelerate your Deep Learning (DL) inference workloads.\n You cannot specify accelerators from different generations in the same request.\n Starting April 15, 2023, AWS will not onboard new customers to Amazon Elastic Inference (EI), and will help current customers migrate their workloads to options that offer better price and performance. After April 15, 2023, new customers will not be able to launch instances with Amazon EI accelerators in Amazon SageMaker, Amazon ECS, or Amazon EC2. However, customers who have used Amazon EI at least once during the past 30-day period are considered current customers and will be able to continue using the service."
+ "description": "An elastic inference accelerator to associate with the instance. Elastic inference accelerators are a resource you can attach to your Amazon EC2 instances to accelerate your Deep Learning (DL) inference workloads.\n You cannot specify accelerators from different generations in the same request.\n Starting April 15, 2023, AWS will not onboard new customers to Amazon Elastic Inference (EI), and will help current customers migrate their workloads to options that offer better price and performance. After April 15, 2023, new customers will not be able to launch instances with Amazon EI accelerators in Amazon SageMaker, Amazon ECS, or Amazon EC2. However, customers who have used Amazon EI at least once during the past 30-day period are considered current customers and will be able to continue using the service."
},
"enclaveOptions": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateEnclaveOptions",
@@ -136022,7 +136385,7 @@
},
"instanceRequirements": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateInstanceRequirements",
- "description": "The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.\n You must specify ``VCpuCount`` and ``MemoryMiB``. All other attributes are optional. Any unspecified optional attribute is set to its default.\n When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values.\n To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request:\n + ``AllowedInstanceTypes`` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes.\n + ``ExcludedInstanceTypes`` - The instance types to exclude from the list, even if they match your specified attributes.\n \n If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.\n Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.\n For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*."
+ "description": "The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.\n You must specify ``VCpuCount`` and ``MemoryMiB``. All other attributes are optional. Any unspecified optional attribute is set to its default.\n When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values.\n To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request:\n + ``AllowedInstanceTypes`` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes.\n + ``ExcludedInstanceTypes`` - The instance types to exclude from the list, even if they match your specified attributes.\n \n If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.\n Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.\n For more information, see [Attribute-based instance type selection for EC2 Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html), [Attribute-based instance type selection for Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-attribute-based-instance-type-selection.html), and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*."
},
"instanceType": {
"type": "string",
@@ -136062,9 +136425,6 @@
},
"description": "The network interfaces for the instance."
},
- "networkPerformanceOptions": {
- "$ref": "pulumi.json#/Any"
- },
"placement": {
"$ref": "#/types/aws-native:ec2:LaunchTemplatePlacement",
"description": "The placement for the instance."
@@ -136096,7 +136456,7 @@
"items": {
"$ref": "#/types/aws-native:ec2:TagSpecification"
},
- "description": "The tags to apply to resources that are created during instance launch.\n To tag the launch template itself, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-tagspecifications)."
+ "description": "The tags to apply to the resources that are created during instance launch.\n To tag a resource after it has been created, see [CreateTags](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateTags.html).\n To tag the launch template itself, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-tagspecifications)."
},
"userData": {
"type": "string",
@@ -136121,7 +136481,7 @@
},
"kmsKeyId": {
"type": "string",
- "description": "Identifier (key ID, key alias, key ARN, or alias ARN) of the customer managed KMS key to use for EBS encryption."
+ "description": "The ARN of the symmetric KMSlong (KMS) CMK used for encryption."
},
"snapshotId": {
"type": "string",
@@ -136259,7 +136619,7 @@
"items": {
"type": "string"
},
- "description": "The accelerator types that must be on the instance type.\n + For instance types with GPU accelerators, specify ``gpu``.\n + For instance types with FPGA accelerators, specify ``fpga``.\n \n Default: Any accelerator type"
+ "description": "The accelerator types that must be on the instance type.\n + For instance types with GPU accelerators, specify ``gpu``.\n + For instance types with FPGA accelerators, specify ``fpga``.\n + For instance types with inference accelerators, specify ``inference``.\n \n Default: Any accelerator type"
},
"allowedInstanceTypes": {
"type": "array",
@@ -136278,7 +136638,7 @@
},
"baselinePerformanceFactors": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateBaselinePerformanceFactors",
- "description": "The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide*."
+ "description": "The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide* ."
},
"burstablePerformance": {
"type": "string",
@@ -136289,7 +136649,7 @@
"items": {
"type": "string"
},
- "description": "The CPU manufacturers to include.\n + For instance types with Intel CPUs, specify ``intel``.\n + For instance types with AMD CPUs, specify ``amd``.\n + For instance types with AWS CPUs, specify ``amazon-web-services``.\n + For instance types with Apple CPUs, specify ``apple``.\n \n Don't confuse the CPU manufacturer with the CPU architecture. Instances will be launched with a compatible CPU architecture based on the Amazon Machine Image (AMI) that you specify in your launch template.\n Default: Any manufacturer"
+ "description": "The CPU manufacturers to include.\n + For instance types with Intel CPUs, specify ``intel``.\n + For instance types with AMD CPUs, specify ``amd``.\n + For instance types with AWS CPUs, specify ``amazon-web-services``.\n \n Don't confuse the CPU manufacturer with the CPU architecture. Instances will be launched with a compatible CPU architecture based on the Amazon Machine Image (AMI) that you specify in your launch template.\n Default: Any manufacturer"
},
"excludedInstanceTypes": {
"type": "array",
@@ -136519,7 +136879,7 @@
},
"interfaceType": {
"type": "string",
- "description": "The type of network interface. To create an Elastic Fabric Adapter (EFA), specify ``efa`` or ``efa``. For more information, see [Elastic Fabric Adapter](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide*.\n If you are not creating an EFA, specify ``interface`` or omit this parameter.\n If you specify ``efa-only``, do not assign any IP addresses to the network interface. EFA-only network interfaces do not support IP addresses.\n Valid values: ``interface`` | ``efa`` | ``efa-only``"
+ "description": "The type of network interface. To create an Elastic Fabric Adapter (EFA), specify ``efa``. For more information, see [Elastic Fabric Adapter](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide*.\n If you are not creating an EFA, specify ``interface`` or omit this parameter.\n Valid values: ``interface`` | ``efa``"
},
"ipv4PrefixCount": {
"type": "integer",
@@ -136678,7 +137038,8 @@
"type": "object",
"properties": {
"instanceFamily": {
- "type": "string"
+ "type": "string",
+ "description": "The instance family to refer. Ensure that you specify the correct family name. For example, C6i and C6g are valid values, but C6 is not."
}
}
},
@@ -138115,7 +138476,7 @@
},
"secondaryPrivateIpAddressCount": {
"type": "integer",
- "description": "The number of secondary private IPv4 addresses. You can't specify this option and specify more than one private IP address using the private IP addresses option. You cannot specify this option if you're launching more than one instance in a [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) request."
+ "description": "The number of secondary private IPv4 addresses. You can’t specify this parameter and also specify a secondary private IP address using the `PrivateIpAddress` parameter."
},
"subnetId": {
"type": "string",
@@ -140573,7 +140934,7 @@
},
"versionConsistency": {
"$ref": "#/types/aws-native:ecs:TaskDefinitionContainerDefinitionVersionConsistency",
- "description": "Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is `enabled` . If you set the value for a container as `disabled` , Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide* ."
+ "description": "Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is ``enabled``. If you set the value for a container as ``disabled``, Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide*."
},
"volumesFrom": {
"type": "array",
@@ -144065,7 +144426,8 @@
"description": "The authorization parameters for Basic authorization."
},
"connectivityParameters": {
- "$ref": "#/types/aws-native:events:ConnectionConnectivityParameters"
+ "$ref": "#/types/aws-native:events:ConnectionConnectivityParameters",
+ "description": "For private OAuth authentication endpoints. The parameters EventBridge uses to authenticate against the endpoint.\n\nFor more information, see [Authorization methods for connections](https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-target-connection-auth.html) in the **Amazon EventBridge User Guide** ."
},
"invocationHttpParameters": {
"$ref": "#/types/aws-native:events:ConnectionHttpParameters",
@@ -144113,7 +144475,8 @@
"type": "object",
"properties": {
"resourceParameters": {
- "$ref": "#/types/aws-native:events:ConnectionResourceParameters"
+ "$ref": "#/types/aws-native:events:ConnectionResourceParameters",
+ "description": "The parameters for EventBridge to use when invoking the resource endpoint."
}
}
},
@@ -144188,10 +144551,12 @@
"type": "object",
"properties": {
"resourceAssociationArn": {
- "type": "string"
+ "type": "string",
+ "description": "For connections to private APIs, the Amazon Resource Name (ARN) of the resource association EventBridge created between the connection and the private API's resource configuration.\n\n\u003e The value of this property is set by EventBridge . Any value you specify in your template is ignored."
},
"resourceConfigurationArn": {
- "type": "string"
+ "type": "string",
+ "description": "The Amazon Resource Name (ARN) of the Amazon VPC Lattice resource configuration for the resource endpoint."
}
}
},
@@ -144284,7 +144649,8 @@
"type": "object",
"properties": {
"resourceParameters": {
- "$ref": "#/types/aws-native:events:ConnectionResourceParameters"
+ "$ref": "#/types/aws-native:events:ConnectionResourceParameters",
+ "description": "The parameters for EventBridge to use when invoking the resource endpoint."
}
}
},
@@ -151053,7 +151419,8 @@
"type": "array",
"items": {
"type": "string"
- }
+ },
+ "description": "The list of `LINKED_ACCOUNT` IDs where charges are included within the invoice unit."
}
}
},
@@ -151272,6 +151639,80 @@
"aws-native:iot:CertificateStatus": {
"type": "string"
},
+ "aws-native:iot:CommandNamespace": {
+ "type": "string"
+ },
+ "aws-native:iot:CommandParameter": {
+ "type": "object",
+ "properties": {
+ "defaultValue": {
+ "$ref": "#/types/aws-native:iot:CommandParameterValue"
+ },
+ "description": {
+ "type": "string"
+ },
+ "name": {
+ "type": "string"
+ },
+ "value": {
+ "$ref": "#/types/aws-native:iot:CommandParameterValue"
+ }
+ }
+ },
+ "aws-native:iot:CommandParameterValue": {
+ "type": "object",
+ "properties": {
+ "b": {
+ "type": "boolean"
+ },
+ "bin": {
+ "type": "string"
+ },
+ "d": {
+ "type": "number"
+ },
+ "i": {
+ "type": "integer"
+ },
+ "l": {
+ "type": "string"
+ },
+ "s": {
+ "type": "string"
+ },
+ "ul": {
+ "type": "string"
+ }
+ },
+ "irreversibleNames": {
+ "bin": "BIN",
+ "ul": "UL"
+ }
+ },
+ "aws-native:iot:CommandPayload": {
+ "type": "object",
+ "properties": {
+ "content": {
+ "type": "string"
+ },
+ "contentType": {
+ "type": "string"
+ }
+ }
+ },
+ "aws-native:iot:CommandTag": {
+ "type": "object",
+ "properties": {
+ "key": {
+ "type": "string",
+ "description": "The tag's key."
+ },
+ "value": {
+ "type": "string",
+ "description": "The tag's value."
+ }
+ }
+ },
"aws-native:iot:CustomMetricMetricType": {
"type": "string"
},
@@ -209800,6 +210241,19 @@
}
}
},
+ "aws-native:ram:ResourceShareTag": {
+ "type": "object",
+ "properties": {
+ "key": {
+ "type": "string",
+ "description": "The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -."
+ },
+ "value": {
+ "type": "string",
+ "description": "The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -."
+ }
+ }
+ },
"aws-native:rbin:RuleResourceTag": {
"type": "object",
"properties": {
@@ -209869,11 +210323,11 @@
"properties": {
"key": {
"type": "string",
- "description": "The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -."
+ "description": "A key is the required name of the tag. The string value can be from 1 to 128 Unicode characters in length and can't be prefixed with ``aws:`` or ``rds:``. The string can only contain only the set of Unicode letters, digits, white-space, '_', '.', ':', '/', '=', '+', '-', '@' (Java regex: \"^([\\\\p{L}\\\\p{Z}\\\\p{N}_.:/=+\\\\-@]*)$\")."
},
"value": {
"type": "string",
- "description": "The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -."
+ "description": "A value is the optional value of the tag. The string value can be from 1 to 256 Unicode characters in length and can't be prefixed with ``aws:`` or ``rds:``. The string can only contain only the set of Unicode letters, digits, white-space, '_', '.', ':', '/', '=', '+', '-', '@' (Java regex: \"^([\\\\p{L}\\\\p{Z}\\\\p{N}_.:/=+\\\\-@]*)$\")."
}
}
},
@@ -210661,6 +211115,9 @@
"type": "string",
"description": "The namespace the workgroup is associated with."
},
+ "pricePerformanceTarget": {
+ "$ref": "#/types/aws-native:redshiftserverless:WorkgroupPerformanceTarget"
+ },
"publiclyAccessible": {
"type": "boolean",
"description": "A value that specifies whether the workgroup can be accessible from a public network."
@@ -210751,6 +211208,20 @@
}
}
},
+ "aws-native:redshiftserverless:WorkgroupPerformanceTarget": {
+ "type": "object",
+ "properties": {
+ "level": {
+ "type": "integer"
+ },
+ "status": {
+ "$ref": "#/types/aws-native:redshiftserverless:WorkgroupPerformanceTargetStatus"
+ }
+ }
+ },
+ "aws-native:redshiftserverless:WorkgroupPerformanceTargetStatus": {
+ "type": "string"
+ },
"aws-native:redshiftserverless:WorkgroupStatus": {
"type": "string"
},
@@ -212880,6 +213351,38 @@
}
}
},
+ "aws-native:s3:BucketMetadataTableConfiguration": {
+ "type": "object",
+ "properties": {
+ "error": {
+ "$ref": "#/types/aws-native:s3:BucketMetadataTableError",
+ "description": "Returns the \u003ccode\u003eError\u003c/code\u003e value of the GetBucketMetadataTableConfiguration response."
+ },
+ "s3TablesDestination": {
+ "$ref": "#/types/aws-native:s3:BucketS3TablesDestination"
+ },
+ "status": {
+ "type": "string",
+ "description": "Returns the \u003ccode\u003eStatus\u003c/code\u003e value of the \u003ccode\u003eGetBucketMetadataTableConfigurationResult\u003c/code\u003e response. This value indicates the status of the metadata table. The status values are:\u003cbr/\u003e\u003ccode\u003eCREATING\u003c/code\u003e - The metadata table is in the process of being created in the specified table bucket.\u003cbr/\u003e\u003ccode\u003eACTIVE\u003c/code\u003e - The metadata table has been created successfully and records are being delivered to the table.\u003cbr/\u003e\u003ccode\u003eFAILED\u003c/code\u003e - Amazon S3 is unable to create the metadata table, or Amazon S3 is unable to deliver records."
+ }
+ },
+ "irreversibleNames": {
+ "s3TablesDestination": "S3TablesDestination"
+ }
+ },
+ "aws-native:s3:BucketMetadataTableError": {
+ "type": "object",
+ "properties": {
+ "errorCode": {
+ "type": "string",
+ "description": "If the \u003ccode\u003eCreateBucketMetadataTableConfiguration\u003c/code\u003e request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows:\u003cbr/\u003e\u003ccode\u003eAccessDeniedCreatingResources\u003c/code\u003e - You don't have sufficient permissions to create the required resources. Make sure that you have \u003ccode\u003es3tables:CreateNamespace\u003c/code\u003e, \u003ccode\u003es3tables:CreateTable\u003c/code\u003e, \u003ccode\u003es3tables:GetTable\u003c/code\u003e and \u003ccode\u003es3tables:PutTablePolicy\u003c/code\u003e permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eAccessDeniedWritingToTable\u003c/code\u003e - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eDestinationTableNotFound\u003c/code\u003e - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eServerInternalError\u003c/code\u003e - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eTableAlreadyExists\u003c/code\u003e - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eTableBucketNotFound\u003c/code\u003e - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration."
+ },
+ "errorMessage": {
+ "type": "string",
+ "description": "If the \u003ccode\u003eCreateBucketMetadataTableConfiguration\u003c/code\u003e request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows:\u003cbr/\u003e\u003ccode\u003eAccessDeniedCreatingResources\u003c/code\u003e - You don't have sufficient permissions to create the required resources. Make sure that you have \u003ccode\u003es3tables:CreateNamespace\u003c/code\u003e, \u003ccode\u003es3tables:CreateTable\u003c/code\u003e, \u003ccode\u003es3tables:GetTable\u003c/code\u003e and \u003ccode\u003es3tables:PutTablePolicy\u003c/code\u003e permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eAccessDeniedWritingToTable\u003c/code\u003e - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eDestinationTableNotFound\u003c/code\u003e - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eServerInternalError\u003c/code\u003e - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eTableAlreadyExists\u003c/code\u003e - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eTableBucketNotFound\u003c/code\u003e - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration."
+ }
+ }
+ },
"aws-native:s3:BucketMetrics": {
"type": "object",
"properties": {
@@ -213404,6 +213907,27 @@
}
}
},
+ "aws-native:s3:BucketS3TablesDestination": {
+ "type": "object",
+ "properties": {
+ "tableArn": {
+ "type": "string",
+ "description": "The Amazon Resource Name (ARN) for the metadata table in the metadata table configuration. The specified metadata table name must be unique within the \u003ccode\u003eaws_s3_metadata\u003c/code\u003e namespace in the destination table bucket."
+ },
+ "tableBucketArn": {
+ "type": "string",
+ "description": "The Amazon Resource Name (ARN) for the table bucket that's specified as the destination in the metadata table configuration. The destination table bucket must be in the same Region and AWS account as the general purpose bucket."
+ },
+ "tableName": {
+ "type": "string",
+ "description": "The name for the metadata table in your metadata table configuration. The specified metadata table name must be unique within the \u003ccode\u003eaws_s3_metadata\u003c/code\u003e namespace in the destination table bucket."
+ },
+ "tableNamespace": {
+ "type": "string",
+ "description": "The table bucket namespace for the metadata table in your metadata table configuration. This value is always \u003ccode\u003eaws_s3_metadata\u003c/code\u003e."
+ }
+ }
+ },
"aws-native:s3:BucketServerSideEncryptionByDefault": {
"type": "object",
"properties": {
@@ -214460,6 +214984,29 @@
"aws-native:s3outposts:EndpointStatus": {
"type": "string"
},
+ "aws-native:s3tables:TableBucketPolicyResourcePolicy": {
+ "type": "object"
+ },
+ "aws-native:s3tables:TableBucketUnreferencedFileRemoval": {
+ "type": "object",
+ "properties": {
+ "noncurrentDays": {
+ "type": "integer",
+ "description": "S3 permanently deletes noncurrent objects after the number of days specified by the NoncurrentDays property."
+ },
+ "status": {
+ "$ref": "#/types/aws-native:s3tables:TableBucketUnreferencedFileRemovalStatus",
+ "description": "Indicates whether the Unreferenced File Removal maintenance action is enabled."
+ },
+ "unreferencedDays": {
+ "type": "integer",
+ "description": "For any object not referenced by your table and older than the UnreferencedDays property, S3 creates a delete marker and marks the object version as noncurrent."
+ }
+ }
+ },
+ "aws-native:s3tables:TableBucketUnreferencedFileRemovalStatus": {
+ "type": "string"
+ },
"aws-native:sagemaker:AppImageConfigCodeEditorAppImageConfig": {
"type": "object",
"properties": {
@@ -234593,6 +235140,12 @@
"certificateProviderName"
]
},
+ "aws-native:iot:getCommand": {
+ "cf": "AWS::IoT::Command",
+ "ids": [
+ "commandId"
+ ]
+ },
"aws-native:iot:getCustomMetric": {
"cf": "AWS::IoT::CustomMetric",
"ids": [
@@ -236254,6 +236807,12 @@
"arn"
]
},
+ "aws-native:ram:getResourceShare": {
+ "cf": "AWS::RAM::ResourceShare",
+ "ids": [
+ "arn"
+ ]
+ },
"aws-native:rbin:getRule": {
"cf": "AWS::Rbin::Rule",
"ids": [
@@ -236808,6 +237367,18 @@
"arn"
]
},
+ "aws-native:s3tables:getTableBucket": {
+ "cf": "AWS::S3Tables::TableBucket",
+ "ids": [
+ "tableBucketArn"
+ ]
+ },
+ "aws-native:s3tables:getTableBucketPolicy": {
+ "cf": "AWS::S3Tables::TableBucketPolicy",
+ "ids": [
+ "tableBucketArn"
+ ]
+ },
"aws-native:sagemaker:getApp": {
"cf": "AWS::SageMaker::App",
"ids": [
diff --git a/provider/cmd/pulumi-resource-aws-native/schema.json b/provider/cmd/pulumi-resource-aws-native/schema.json
index a676275f55..3f76d20c76 100644
--- a/provider/cmd/pulumi-resource-aws-native/schema.json
+++ b/provider/cmd/pulumi-resource-aws-native/schema.json
@@ -205,6 +205,7 @@
"s3express": "S3Express",
"s3objectlambda": "S3ObjectLambda",
"s3outposts": "S3Outposts",
+ "s3tables": "S3Tables",
"sagemaker": "SageMaker",
"scheduler": "Scheduler",
"secretsmanager": "SecretsManager",
@@ -7871,6 +7872,7 @@
]
},
"aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingCustomizedCapacityMetric": {
+ "description": "Represents a CloudWatch metric of your choosing for a predictive scaling policy.",
"properties": {
"metricDataQueries": {
"type": "array",
@@ -7886,6 +7888,7 @@
]
},
"aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingCustomizedLoadMetric": {
+ "description": "The customized load metric specification.",
"properties": {
"metricDataQueries": {
"type": "array",
@@ -7900,6 +7903,7 @@
]
},
"aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingCustomizedScalingMetric": {
+ "description": "One or more metric data queries to provide data points for a metric specification.",
"properties": {
"metricDataQueries": {
"type": "array",
@@ -7915,13 +7919,14 @@
]
},
"aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingMetric": {
+ "description": "Describes the scaling metric.",
"properties": {
"dimensions": {
"type": "array",
"items": {
"$ref": "#/types/aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingMetricDimension"
},
- "description": "The dimensions for the metric."
+ "description": "Describes the dimensions of the metric."
},
"metricName": {
"type": "string",
@@ -7935,14 +7940,15 @@
"type": "object"
},
"aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingMetricDataQuery": {
+ "description": "The metric data to return. Also defines whether this call is returning data for one metric only, or whether it is performing a math expression on the values of returned metric statistics to create a new time series. A time series is a series of data points, each of which is associated with a timestamp.",
"properties": {
"expression": {
"type": "string",
- "description": "The math expression to perform on the returned data, if this object is performing a math expression."
+ "description": "The math expression to perform on the returned data, if this object is performing a math expression. This expression can use the ``Id`` of the other metrics to refer to those metrics, and can also use the ``Id`` of other expressions to use the result of those expressions. \n Conditional: Within each ``MetricDataQuery`` object, you must specify either ``Expression`` or ``MetricStat``, but not both."
},
"id": {
"type": "string",
- "description": "A short name that identifies the object's results in the response."
+ "description": "A short name that identifies the object's results in the response. This name must be unique among all ``MetricDataQuery`` objects specified for a single scaling policy. If you are performing math expressions on this set of data, this name represents that data and can serve as a variable in the mathematical expression. The valid characters are letters, numbers, and underscores. The first character must be a lowercase letter."
},
"label": {
"type": "string",
@@ -7950,16 +7956,17 @@
},
"metricStat": {
"$ref": "#/types/aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingMetricStat",
- "description": "Information about the metric data to return."
+ "description": "Information about the metric data to return. \n Conditional: Within each ``MetricDataQuery`` object, you must specify either ``Expression`` or ``MetricStat``, but not both."
},
"returnData": {
"type": "boolean",
- "description": "Indicates whether to return the timestamps and raw data values of this metric."
+ "description": "Indicates whether to return the timestamps and raw data values of this metric. \n If you use any math expressions, specify ``true`` for this value for only the final math expression that the metric specification is based on. You must specify ``false`` for ``ReturnData`` for all the other metrics and expressions used in the metric specification.\n If you are only retrieving metrics and not performing any math expressions, do not specify anything for ``ReturnData``. This sets it to its default (``true``)."
}
},
"type": "object"
},
"aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingMetricDimension": {
+ "description": "Describes the dimension of a metric.",
"properties": {
"name": {
"type": "string",
@@ -7973,6 +7980,7 @@
"type": "object"
},
"aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingMetricSpecification": {
+ "description": "This structure specifies the metrics and target utilization settings for a predictive scaling policy. \n You must specify either a metric pair, or a load metric and a scaling metric individually. Specifying a metric pair instead of individual metrics provides a simpler way to configure metrics for a scaling policy. You choose the metric pair, and the policy automatically knows the correct sum and average statistics to use for the load metric and the scaling metric.",
"properties": {
"customizedCapacityMetricSpecification": {
"$ref": "#/types/aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingCustomizedCapacityMetric",
@@ -8009,46 +8017,48 @@
]
},
"aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingMetricStat": {
+ "description": "This structure defines the CloudWatch metric to return, along with the statistic and unit.",
"properties": {
"metric": {
"$ref": "#/types/aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingMetric",
- "description": "The CloudWatch metric to return, including the metric name, namespace, and dimensions. "
+ "description": "The CloudWatch metric to return, including the metric name, namespace, and dimensions. To get the exact metric name, namespace, and dimensions, inspect the [Metric](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_Metric.html) object that is returned by a call to [ListMetrics](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_ListMetrics.html)."
},
"stat": {
"type": "string",
- "description": "The statistic to return. It can include any CloudWatch statistic or extended statistic."
+ "description": "The statistic to return. It can include any CloudWatch statistic or extended statistic. For a list of valid values, see the table in [Statistics](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/cloudwatch_concepts.html#Statistic) in the *Amazon CloudWatch User Guide*. \n The most commonly used metrics for predictive scaling are ``Average`` and ``Sum``."
},
"unit": {
"type": "string",
- "description": "The unit to use for the returned data points."
+ "description": "The unit to use for the returned data points. For a complete list of the units that CloudWatch supports, see the [MetricDatum](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_MetricDatum.html) data type in the *Amazon CloudWatch API Reference*."
}
},
"type": "object"
},
"aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingPolicyConfiguration": {
+ "description": "Represents a predictive scaling policy configuration.",
"properties": {
"maxCapacityBreachBehavior": {
"type": "string",
- "description": "Defines the behavior that should be applied if the forecast capacity approaches or exceeds the maximum capacity. Defaults to `HonorMaxCapacity` if not specified."
+ "description": "Defines the behavior that should be applied if the forecast capacity approaches or exceeds the maximum capacity. Defaults to ``HonorMaxCapacity`` if not specified."
},
"maxCapacityBuffer": {
"type": "integer",
- "description": "The size of the capacity buffer to use when the forecast capacity is close to or exceeds the maximum capacity. The value is specified as a percentage relative to the forecast capacity. For example, if the buffer is 10, this means a 10 percent buffer, such that if the forecast capacity is 50, and the maximum capacity is 40, then the effective maximum capacity is 55.\n\nRequired if the `MaxCapacityBreachBehavior` property is set to `IncreaseMaxCapacity` , and cannot be used otherwise."
+ "description": "The size of the capacity buffer to use when the forecast capacity is close to or exceeds the maximum capacity. The value is specified as a percentage relative to the forecast capacity. For example, if the buffer is 10, this means a 10 percent buffer, such that if the forecast capacity is 50, and the maximum capacity is 40, then the effective maximum capacity is 55. \n Required if the ``MaxCapacityBreachBehavior`` property is set to ``IncreaseMaxCapacity``, and cannot be used otherwise."
},
"metricSpecifications": {
"type": "array",
"items": {
"$ref": "#/types/aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingMetricSpecification"
},
- "description": "This structure includes the metrics and target utilization to use for predictive scaling.\n\nThis is an array, but we currently only support a single metric specification. That is, you can specify a target value and a single metric pair, or a target value and one scaling metric and one load metric."
+ "description": "This structure includes the metrics and target utilization to use for predictive scaling. \n This is an array, but we currently only support a single metric specification. That is, you can specify a target value and a single metric pair, or a target value and one scaling metric and one load metric."
},
"mode": {
"type": "string",
- "description": "The predictive scaling mode. Defaults to `ForecastOnly` if not specified."
+ "description": "The predictive scaling mode. Defaults to ``ForecastOnly`` if not specified."
},
"schedulingBufferTime": {
"type": "integer",
- "description": "The amount of time, in seconds, that the start time can be advanced.\n\nThe value must be less than the forecast interval duration of 3600 seconds (60 minutes). Defaults to 300 seconds if not specified."
+ "description": "The amount of time, in seconds, that the start time can be advanced. \n The value must be less than the forecast interval duration of 3600 seconds (60 minutes). Defaults to 300 seconds if not specified."
}
},
"type": "object",
@@ -8057,6 +8067,7 @@
]
},
"aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingPredefinedLoadMetric": {
+ "description": "Describes a load metric for a predictive scaling policy. \n When returned in the output of ``DescribePolicies``, it indicates that a predictive scaling policy uses individually specified load and scaling metrics instead of a metric pair.",
"properties": {
"predefinedMetricType": {
"type": "string",
@@ -8073,6 +8084,7 @@
]
},
"aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingPredefinedMetricPair": {
+ "description": "Represents a metric pair for a predictive scaling policy.",
"properties": {
"predefinedMetricType": {
"type": "string",
@@ -8089,6 +8101,7 @@
]
},
"aws-native:applicationautoscaling:ScalingPolicyPredictiveScalingPredefinedScalingMetric": {
+ "description": "Describes a scaling metric for a predictive scaling policy. \n When returned in the output of ``DescribePolicies``, it indicates that a predictive scaling policy uses individually specified load and scaling metrics instead of a metric pair.",
"properties": {
"predefinedMetricType": {
"type": "string",
@@ -18997,7 +19010,7 @@
"properties": {
"bedrockFoundationModelConfiguration": {
"$ref": "#/types/aws-native:bedrock:DataSourceBedrockFoundationModelConfiguration",
- "description": "Settings for a foundation model used to parse documents for a data source."
+ "description": "If you specify `BEDROCK_FOUNDATION_MODEL` as the parsing strategy for ingesting your data source, use this object to modify configurations for using a foundation model to parse documents."
},
"parsingStrategy": {
"$ref": "#/types/aws-native:bedrock:DataSourceParsingStrategy",
@@ -19431,7 +19444,7 @@
},
"parsingConfiguration": {
"$ref": "#/types/aws-native:bedrock:DataSourceParsingConfiguration",
- "description": "A custom parser for data source documents.",
+ "description": "Configurations for a parser to use for parsing documents in your data source. If you exclude this field, the default parser will be used.",
"replaceOnChanges": true
}
},
@@ -21529,7 +21542,7 @@
},
"type": {
"$ref": "#/types/aws-native:bedrock:GuardrailPiiEntityType",
- "description": "Configure guardrail type when the PII entity is detected.\n\nThe following PIIs are used to block or mask sensitive information:\n\n- *General*\n\n- *ADDRESS*\n\nA physical address, such as \"100 Main Street, Anytown, USA\" or \"Suite #12, Building 123\". An address can include information such as the street, building, location, city, state, country, county, zip code, precinct, and neighborhood.\n- *AGE*\n\nAn individual's age, including the quantity and unit of time. For example, in the phrase \"I am 40 years old,\" Guarrails recognizes \"40 years\" as an age.\n- *NAME*\n\nAn individual's name. This entity type does not include titles, such as Dr., Mr., Mrs., or Miss. guardrails doesn't apply this entity type to names that are part of organizations or addresses. For example, guardrails recognizes the \"John Doe Organization\" as an organization, and it recognizes \"Jane Doe Street\" as an address.\n- *EMAIL*\n\nAn email address, such as *marymajor@email.com* .\n- *PHONE*\n\nA phone number. This entity type also includes fax and pager numbers.\n- *USERNAME*\n\nA user name that identifies an account, such as a login name, screen name, nick name, or handle.\n- *PASSWORD*\n\nAn alphanumeric string that is used as a password, such as \"* *very20special#pass** \".\n- *DRIVER_ID*\n\nThe number assigned to a driver's license, which is an official document permitting an individual to operate one or more motorized vehicles on a public road. A driver's license number consists of alphanumeric characters.\n- *LICENSE_PLATE*\n\nA license plate for a vehicle is issued by the state or country where the vehicle is registered. The format for passenger vehicles is typically five to eight digits, consisting of upper-case letters and numbers. The format varies depending on the location of the issuing state or country.\n- *VEHICLE_IDENTIFICATION_NUMBER*\n\nA Vehicle Identification Number (VIN) uniquely identifies a vehicle. VIN content and format are defined in the *ISO 3779* specification. Each country has specific codes and formats for VINs.\n- *Finance*\n\n- *REDIT_DEBIT_CARD_CVV*\n\nA three-digit card verification code (CVV) that is present on VISA, MasterCard, and Discover credit and debit cards. For American Express credit or debit cards, the CVV is a four-digit numeric code.\n- *CREDIT_DEBIT_CARD_EXPIRY*\n\nThe expiration date for a credit or debit card. This number is usually four digits long and is often formatted as *month/year* or *MM/YY* . Guardrails recognizes expiration dates such as *01/21* , *01/2021* , and *Jan 2021* .\n- *CREDIT_DEBIT_CARD_NUMBER*\n\nThe number for a credit or debit card. These numbers can vary from 13 to 16 digits in length. However, Amazon Comprehend also recognizes credit or debit card numbers when only the last four digits are present.\n- *PIN*\n\nA four-digit personal identification number (PIN) with which you can access your bank account.\n- *INTERNATIONAL_BANK_ACCOUNT_NUMBER*\n\nAn International Bank Account Number has specific formats in each country. For more information, see [www.iban.com/structure](https://docs.aws.amazon.com/https://www.iban.com/structure) .\n- *SWIFT_CODE*\n\nA SWIFT code is a standard format of Bank Identifier Code (BIC) used to specify a particular bank or branch. Banks use these codes for money transfers such as international wire transfers.\n\nSWIFT codes consist of eight or 11 characters. The 11-digit codes refer to specific branches, while eight-digit codes (or 11-digit codes ending in 'XXX') refer to the head or primary office.\n- *IT*\n\n- *IP_ADDRESS*\n\nAn IPv4 address, such as *198.51.100.0* .\n- *MAC_ADDRESS*\n\nA *media access control* (MAC) address is a unique identifier assigned to a network interface controller (NIC).\n- *URL*\n\nA web address, such as *www.example.com* .\n- *AWS_ACCESS_KEY*\n\nA unique identifier that's associated with a secret access key; you use the access key ID and secret access key to sign programmatic AWS requests cryptographically.\n- *AWS_SECRET_KEY*\n\nA unique identifier that's associated with an access key. You use the access key ID and secret access key to sign programmatic AWS requests cryptographically.\n- *USA specific*\n\n- *US_BANK_ACCOUNT_NUMBER*\n\nA US bank account number, which is typically 10 to 12 digits long.\n- *US_BANK_ROUTING_NUMBER*\n\nA US bank account routing number. These are typically nine digits long,\n- *US_INDIVIDUAL_TAX_IDENTIFICATION_NUMBER*\n\nA US Individual Taxpayer Identification Number (ITIN) is a nine-digit number that starts with a \"9\" and contain a \"7\" or \"8\" as the fourth digit. An ITIN can be formatted with a space or a dash after the third and forth digits.\n- *US_PASSPORT_NUMBER*\n\nA US passport number. Passport numbers range from six to nine alphanumeric characters.\n- *US_SOCIAL_SECURITY_NUMBER*\n\nA US Social Security Number (SSN) is a nine-digit number that is issued to US citizens, permanent residents, and temporary working residents.\n- *Canada specific*\n\n- *CA_HEALTH_NUMBER*\n\nA Canadian Health Service Number is a 10-digit unique identifier, required for individuals to access healthcare benefits.\n- *CA_SOCIAL_INSURANCE_NUMBER*\n\nA Canadian Social Insurance Number (SIN) is a nine-digit unique identifier, required for individuals to access government programs and benefits.\n\nThe SIN is formatted as three groups of three digits, such as *123-456-789* . A SIN can be validated through a simple check-digit process called the [Luhn algorithm](https://docs.aws.amazon.com/https://www.wikipedia.org/wiki/Luhn_algorithm) .\n- *UK Specific*\n\n- *UK_NATIONAL_HEALTH_SERVICE_NUMBER*\n\nA UK National Health Service Number is a 10-17 digit number, such as *485 777 3456* . The current system formats the 10-digit number with spaces after the third and sixth digits. The final digit is an error-detecting checksum.\n- *UK_NATIONAL_INSURANCE_NUMBER*\n\nA UK National Insurance Number (NINO) provides individuals with access to National Insurance (social security) benefits. It is also used for some purposes in the UK tax system.\n\nThe number is nine digits long and starts with two letters, followed by six numbers and one letter. A NINO can be formatted with a space or a dash after the two letters and after the second, forth, and sixth digits.\n- *UK_UNIQUE_TAXPAYER_REFERENCE_NUMBER*\n\nA UK Unique Taxpayer Reference (UTR) is a 10-digit number that identifies a taxpayer or a business.\n- *Custom*\n\n- *Regex filter* - You can use a regular expressions to define patterns for a guardrail to recognize and act upon such as serial number, booking ID etc.."
+ "description": "Configure guardrail type when the PII entity is detected.\n\nThe following PIIs are used to block or mask sensitive information:\n\n- *General*\n\n- *ADDRESS*\n\nA physical address, such as \"100 Main Street, Anytown, USA\" or \"Suite #12, Building 123\". An address can include information such as the street, building, location, city, state, country, county, zip code, precinct, and neighborhood.\n- *AGE*\n\nAn individual's age, including the quantity and unit of time. For example, in the phrase \"I am 40 years old,\" Guardrails recognizes \"40 years\" as an age.\n- *NAME*\n\nAn individual's name. This entity type does not include titles, such as Dr., Mr., Mrs., or Miss. guardrails doesn't apply this entity type to names that are part of organizations or addresses. For example, guardrails recognizes the \"John Doe Organization\" as an organization, and it recognizes \"Jane Doe Street\" as an address.\n- *EMAIL*\n\nAn email address, such as *marymajor@email.com* .\n- *PHONE*\n\nA phone number. This entity type also includes fax and pager numbers.\n- *USERNAME*\n\nA user name that identifies an account, such as a login name, screen name, nick name, or handle.\n- *PASSWORD*\n\nAn alphanumeric string that is used as a password, such as \"* *very20special#pass** \".\n- *DRIVER_ID*\n\nThe number assigned to a driver's license, which is an official document permitting an individual to operate one or more motorized vehicles on a public road. A driver's license number consists of alphanumeric characters.\n- *LICENSE_PLATE*\n\nA license plate for a vehicle is issued by the state or country where the vehicle is registered. The format for passenger vehicles is typically five to eight digits, consisting of upper-case letters and numbers. The format varies depending on the location of the issuing state or country.\n- *VEHICLE_IDENTIFICATION_NUMBER*\n\nA Vehicle Identification Number (VIN) uniquely identifies a vehicle. VIN content and format are defined in the *ISO 3779* specification. Each country has specific codes and formats for VINs.\n- *Finance*\n\n- *CREDIT_DEBIT_CARD_CVV*\n\nA three-digit card verification code (CVV) that is present on VISA, MasterCard, and Discover credit and debit cards. For American Express credit or debit cards, the CVV is a four-digit numeric code.\n- *CREDIT_DEBIT_CARD_EXPIRY*\n\nThe expiration date for a credit or debit card. This number is usually four digits long and is often formatted as *month/year* or *MM/YY* . Guardrails recognizes expiration dates such as *01/21* , *01/2021* , and *Jan 2021* .\n- *CREDIT_DEBIT_CARD_NUMBER*\n\nThe number for a credit or debit card. These numbers can vary from 13 to 16 digits in length. However, Amazon Comprehend also recognizes credit or debit card numbers when only the last four digits are present.\n- *PIN*\n\nA four-digit personal identification number (PIN) with which you can access your bank account.\n- *INTERNATIONAL_BANK_ACCOUNT_NUMBER*\n\nAn International Bank Account Number has specific formats in each country. For more information, see [www.iban.com/structure](https://docs.aws.amazon.com/https://www.iban.com/structure) .\n- *SWIFT_CODE*\n\nA SWIFT code is a standard format of Bank Identifier Code (BIC) used to specify a particular bank or branch. Banks use these codes for money transfers such as international wire transfers.\n\nSWIFT codes consist of eight or 11 characters. The 11-digit codes refer to specific branches, while eight-digit codes (or 11-digit codes ending in 'XXX') refer to the head or primary office.\n- *IT*\n\n- *IP_ADDRESS*\n\nAn IPv4 address, such as *198.51.100.0* .\n- *MAC_ADDRESS*\n\nA *media access control* (MAC) address is a unique identifier assigned to a network interface controller (NIC).\n- *URL*\n\nA web address, such as *www.example.com* .\n- *AWS_ACCESS_KEY*\n\nA unique identifier that's associated with a secret access key; you use the access key ID and secret access key to sign programmatic AWS requests cryptographically.\n- *AWS_SECRET_KEY*\n\nA unique identifier that's associated with an access key. You use the access key ID and secret access key to sign programmatic AWS requests cryptographically.\n- *USA specific*\n\n- *US_BANK_ACCOUNT_NUMBER*\n\nA US bank account number, which is typically 10 to 12 digits long.\n- *US_BANK_ROUTING_NUMBER*\n\nA US bank account routing number. These are typically nine digits long,\n- *US_INDIVIDUAL_TAX_IDENTIFICATION_NUMBER*\n\nA US Individual Taxpayer Identification Number (ITIN) is a nine-digit number that starts with a \"9\" and contain a \"7\" or \"8\" as the fourth digit. An ITIN can be formatted with a space or a dash after the third and forth digits.\n- *US_PASSPORT_NUMBER*\n\nA US passport number. Passport numbers range from six to nine alphanumeric characters.\n- *US_SOCIAL_SECURITY_NUMBER*\n\nA US Social Security Number (SSN) is a nine-digit number that is issued to US citizens, permanent residents, and temporary working residents.\n- *Canada specific*\n\n- *CA_HEALTH_NUMBER*\n\nA Canadian Health Service Number is a 10-digit unique identifier, required for individuals to access healthcare benefits.\n- *CA_SOCIAL_INSURANCE_NUMBER*\n\nA Canadian Social Insurance Number (SIN) is a nine-digit unique identifier, required for individuals to access government programs and benefits.\n\nThe SIN is formatted as three groups of three digits, such as *123-456-789* . A SIN can be validated through a simple check-digit process called the [Luhn algorithm](https://docs.aws.amazon.com/https://www.wikipedia.org/wiki/Luhn_algorithm) .\n- *UK Specific*\n\n- *UK_NATIONAL_HEALTH_SERVICE_NUMBER*\n\nA UK National Health Service Number is a 10-17 digit number, such as *485 777 3456* . The current system formats the 10-digit number with spaces after the third and sixth digits. The final digit is an error-detecting checksum.\n- *UK_NATIONAL_INSURANCE_NUMBER*\n\nA UK National Insurance Number (NINO) provides individuals with access to National Insurance (social security) benefits. It is also used for some purposes in the UK tax system.\n\nThe number is nine digits long and starts with two letters, followed by six numbers and one letter. A NINO can be formatted with a space or a dash after the two letters and after the second, forth, and sixth digits.\n- *UK_UNIQUE_TAXPAYER_REFERENCE_NUMBER*\n\nA UK Unique Taxpayer Reference (UTR) is a 10-digit number that identifies a taxpayer or a business.\n- *Custom*\n\n- *Regex filter* - You can use a regular expressions to define patterns for a guardrail to recognize and act upon such as serial number, booking ID etc.."
}
},
"type": "object",
@@ -30239,7 +30252,8 @@
"aws-native:cognito:UserPoolAddOns": {
"properties": {
"advancedSecurityAdditionalFlows": {
- "$ref": "#/types/aws-native:cognito:UserPoolAdvancedSecurityAdditionalFlows"
+ "$ref": "#/types/aws-native:cognito:UserPoolAdvancedSecurityAdditionalFlows",
+ "description": "Advanced security configuration options for additional authentication types in your user pool, including custom authentication."
},
"advancedSecurityMode": {
"type": "string",
@@ -30268,7 +30282,8 @@
"aws-native:cognito:UserPoolAdvancedSecurityAdditionalFlows": {
"properties": {
"customAuthMode": {
- "type": "string"
+ "type": "string",
+ "description": "The operating mode of advanced security features in custom authentication with [Custom authentication challenge Lambda triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-lambda-challenge.html) ."
}
},
"type": "object"
@@ -30519,7 +30534,8 @@
"description": "The password policy settings for a user pool, including complexity, history, and length requirements."
},
"signInPolicy": {
- "$ref": "#/types/aws-native:cognito:UserPoolSignInPolicy"
+ "$ref": "#/types/aws-native:cognito:UserPoolSignInPolicy",
+ "description": "The policy for allowed types of authentication in a user pool.\n\nThis data type is a request and response parameter of [CreateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_CreateUserPool.html) and [UpdateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserPool.html) , and a response parameter of [DescribeUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_DescribeUserPool.html) ."
}
},
"type": "object"
@@ -30758,7 +30774,8 @@
"type": "array",
"items": {
"type": "string"
- }
+ },
+ "description": "The sign-in methods that a user pool supports as the first factor. You can permit users to start authentication with a standard username and password, or with other one-time password and hardware factors.\n\nSupports values of `EMAIL_OTP` , `SMS_OTP` , `WEB_AUTHN` and `PASSWORD` ,"
}
},
"type": "object"
@@ -45572,7 +45589,6 @@
"type": "object"
},
"aws-native:ec2:LaunchTemplateBaselinePerformanceFactors": {
- "description": "The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application.\n Currently, this parameter only supports CPU performance as a baseline performance factor. For example, specifying ``c6i`` would use the CPU performance of the ``c6i`` family as the baseline reference.",
"properties": {
"cpu": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateCpu",
@@ -45608,7 +45624,7 @@
"properties": {
"capacityReservationPreference": {
"type": "string",
- "description": "Indicates the instance's Capacity Reservation preferences. Possible preferences include:\n + ``capacity-reservations-only`` - The instance will only run in a Capacity Reservation or Capacity Reservation group. If capacity isn't available, the instance will fail to launch.\n + ``open`` - The instance can run in any ``open`` Capacity Reservation that has matching attributes (instance type, platform, Availability Zone, tenancy).\n + ``none`` - The instance avoids running in a Capacity Reservation even if one is available. The instance runs in On-Demand capacity."
+ "description": "Indicates the instance's Capacity Reservation preferences. Possible preferences include:\n + ``open`` - The instance can run in any ``open`` Capacity Reservation that has matching attributes (instance type, platform, Availability Zone).\n + ``none`` - The instance avoids running in a Capacity Reservation even if one is available. The instance runs in On-Demand capacity."
},
"capacityReservationTarget": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateCapacityReservationTarget",
@@ -45748,7 +45764,7 @@
"items": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateElasticInferenceAccelerator"
},
- "description": "Amazon Elastic Inference is no longer available.\n An elastic inference accelerator to associate with the instance. Elastic inference accelerators are a resource you can attach to your Amazon EC2 instances to accelerate your Deep Learning (DL) inference workloads.\n You cannot specify accelerators from different generations in the same request.\n Starting April 15, 2023, AWS will not onboard new customers to Amazon Elastic Inference (EI), and will help current customers migrate their workloads to options that offer better price and performance. After April 15, 2023, new customers will not be able to launch instances with Amazon EI accelerators in Amazon SageMaker, Amazon ECS, or Amazon EC2. However, customers who have used Amazon EI at least once during the past 30-day period are considered current customers and will be able to continue using the service."
+ "description": "An elastic inference accelerator to associate with the instance. Elastic inference accelerators are a resource you can attach to your Amazon EC2 instances to accelerate your Deep Learning (DL) inference workloads.\n You cannot specify accelerators from different generations in the same request.\n Starting April 15, 2023, AWS will not onboard new customers to Amazon Elastic Inference (EI), and will help current customers migrate their workloads to options that offer better price and performance. After April 15, 2023, new customers will not be able to launch instances with Amazon EI accelerators in Amazon SageMaker, Amazon ECS, or Amazon EC2. However, customers who have used Amazon EI at least once during the past 30-day period are considered current customers and will be able to continue using the service."
},
"enclaveOptions": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateEnclaveOptions",
@@ -45776,7 +45792,7 @@
},
"instanceRequirements": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateInstanceRequirements",
- "description": "The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.\n You must specify ``VCpuCount`` and ``MemoryMiB``. All other attributes are optional. Any unspecified optional attribute is set to its default.\n When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values.\n To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request:\n + ``AllowedInstanceTypes`` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes.\n + ``ExcludedInstanceTypes`` - The instance types to exclude from the list, even if they match your specified attributes.\n \n If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.\n Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.\n For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*."
+ "description": "The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.\n You must specify ``VCpuCount`` and ``MemoryMiB``. All other attributes are optional. Any unspecified optional attribute is set to its default.\n When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values.\n To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request:\n + ``AllowedInstanceTypes`` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes.\n + ``ExcludedInstanceTypes`` - The instance types to exclude from the list, even if they match your specified attributes.\n \n If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.\n Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.\n For more information, see [Attribute-based instance type selection for EC2 Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html), [Attribute-based instance type selection for Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-attribute-based-instance-type-selection.html), and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*."
},
"instanceType": {
"type": "string",
@@ -45816,9 +45832,6 @@
},
"description": "The network interfaces for the instance."
},
- "networkPerformanceOptions": {
- "$ref": "pulumi.json#/Any"
- },
"placement": {
"$ref": "#/types/aws-native:ec2:LaunchTemplatePlacement",
"description": "The placement for the instance."
@@ -45850,7 +45863,7 @@
"items": {
"$ref": "#/types/aws-native:ec2:TagSpecification"
},
- "description": "The tags to apply to resources that are created during instance launch.\n To tag the launch template itself, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-tagspecifications)."
+ "description": "The tags to apply to the resources that are created during instance launch.\n To tag a resource after it has been created, see [CreateTags](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateTags.html).\n To tag the launch template itself, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-tagspecifications)."
},
"userData": {
"type": "string",
@@ -45876,7 +45889,7 @@
},
"kmsKeyId": {
"type": "string",
- "description": "Identifier (key ID, key alias, key ARN, or alias ARN) of the customer managed KMS key to use for EBS encryption."
+ "description": "The ARN of the symmetric KMSlong (KMS) CMK used for encryption."
},
"snapshotId": {
"type": "string",
@@ -45994,7 +46007,7 @@
"type": "object"
},
"aws-native:ec2:LaunchTemplateInstanceRequirements": {
- "description": "The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.\n You must specify ``VCpuCount`` and ``MemoryMiB``. All other attributes are optional. Any unspecified optional attribute is set to its default.\n When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values.\n To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request:\n + ``AllowedInstanceTypes`` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes.\n + ``ExcludedInstanceTypes`` - The instance types to exclude from the list, even if they match your specified attributes.\n \n If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.\n Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.\n For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.",
+ "description": "The attributes for the instance types. When you specify instance attributes, Amazon EC2 will identify instance types with these attributes.\n You must specify ``VCpuCount`` and ``MemoryMiB``. All other attributes are optional. Any unspecified optional attribute is set to its default.\n When you specify multiple attributes, you get instance types that satisfy all of the specified attributes. If you specify multiple values for an attribute, you get instance types that satisfy any of the specified values.\n To limit the list of instance types from which Amazon EC2 can identify matching instance types, you can use one of the following parameters, but not both in the same request:\n + ``AllowedInstanceTypes`` - The instance types to include in the list. All other instance types are ignored, even if they match your specified attributes.\n + ``ExcludedInstanceTypes`` - The instance types to exclude from the list, even if they match your specified attributes.\n \n If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.\n Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.\n For more information, see [Attribute-based instance type selection for EC2 Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html), [Attribute-based instance type selection for Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-attribute-based-instance-type-selection.html), and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.",
"properties": {
"acceleratorCount": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateAcceleratorCount",
@@ -46023,7 +46036,7 @@
"items": {
"type": "string"
},
- "description": "The accelerator types that must be on the instance type.\n + For instance types with GPU accelerators, specify ``gpu``.\n + For instance types with FPGA accelerators, specify ``fpga``.\n \n Default: Any accelerator type"
+ "description": "The accelerator types that must be on the instance type.\n + For instance types with GPU accelerators, specify ``gpu``.\n + For instance types with FPGA accelerators, specify ``fpga``.\n + For instance types with inference accelerators, specify ``inference``.\n \n Default: Any accelerator type"
},
"allowedInstanceTypes": {
"type": "array",
@@ -46042,7 +46055,7 @@
},
"baselinePerformanceFactors": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateBaselinePerformanceFactors",
- "description": "The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide*."
+ "description": "The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide* ."
},
"burstablePerformance": {
"type": "string",
@@ -46053,7 +46066,7 @@
"items": {
"type": "string"
},
- "description": "The CPU manufacturers to include.\n + For instance types with Intel CPUs, specify ``intel``.\n + For instance types with AMD CPUs, specify ``amd``.\n + For instance types with AWS CPUs, specify ``amazon-web-services``.\n + For instance types with Apple CPUs, specify ``apple``.\n \n Don't confuse the CPU manufacturer with the CPU architecture. Instances will be launched with a compatible CPU architecture based on the Amazon Machine Image (AMI) that you specify in your launch template.\n Default: Any manufacturer"
+ "description": "The CPU manufacturers to include.\n + For instance types with Intel CPUs, specify ``intel``.\n + For instance types with AMD CPUs, specify ``amd``.\n + For instance types with AWS CPUs, specify ``amazon-web-services``.\n \n Don't confuse the CPU manufacturer with the CPU architecture. Instances will be launched with a compatible CPU architecture based on the Amazon Machine Image (AMI) that you specify in your launch template.\n Default: Any manufacturer"
},
"excludedInstanceTypes": {
"type": "array",
@@ -46291,7 +46304,7 @@
},
"interfaceType": {
"type": "string",
- "description": "The type of network interface. To create an Elastic Fabric Adapter (EFA), specify ``efa`` or ``efa``. For more information, see [Elastic Fabric Adapter](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide*.\n If you are not creating an EFA, specify ``interface`` or omit this parameter.\n If you specify ``efa-only``, do not assign any IP addresses to the network interface. EFA-only network interfaces do not support IP addresses.\n Valid values: ``interface`` | ``efa`` | ``efa-only``"
+ "description": "The type of network interface. To create an Elastic Fabric Adapter (EFA), specify ``efa``. For more information, see [Elastic Fabric Adapter](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide*.\n If you are not creating an EFA, specify ``interface`` or omit this parameter.\n Valid values: ``interface`` | ``efa``"
},
"ipv4PrefixCount": {
"type": "integer",
@@ -46451,7 +46464,8 @@
"aws-native:ec2:LaunchTemplateReference": {
"properties": {
"instanceFamily": {
- "type": "string"
+ "type": "string",
+ "description": "The instance family to refer. Ensure that you specify the correct family name. For example, C6i and C6g are valid values, but C6 is not."
}
},
"type": "object"
@@ -46501,7 +46515,7 @@
]
},
"aws-native:ec2:LaunchTemplateTagSpecification": {
- "description": "Specifies the tags to apply to the launch template during creation.\n To specify the tags for the resources that are created during instance launch, use [AWS::EC2::LaunchTemplate TagSpecification](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-tagspecification.html).\n ``LaunchTemplateTagSpecification`` is a property of [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html).",
+ "description": "Specifies the tags to apply to the launch template during creation.\n ``LaunchTemplateTagSpecification`` is a property of [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html).",
"properties": {
"resourceType": {
"type": "string",
@@ -48125,7 +48139,7 @@
},
"secondaryPrivateIpAddressCount": {
"type": "integer",
- "description": "The number of secondary private IPv4 addresses. You can't specify this option and specify more than one private IP address using the private IP addresses option. You cannot specify this option if you're launching more than one instance in a [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) request."
+ "description": "The number of secondary private IPv4 addresses. You can’t specify this parameter and also specify a secondary private IP address using the `PrivateIpAddress` parameter."
},
"subnetId": {
"type": "string",
@@ -49289,7 +49303,7 @@
]
},
"aws-native:ec2:TagSpecification": {
- "description": "Specifies the tags to apply to resources that are created during instance launch.\n ``TagSpecification`` is a property type of [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications). [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications) is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).",
+ "description": "Specifies the tags to apply to a resource when the resource is created for the launch template.\n ``TagSpecification`` is a property type of [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications). [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications) is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).",
"properties": {
"resourceType": {
"type": "string",
@@ -51665,7 +51679,7 @@
},
"versionConsistency": {
"$ref": "#/types/aws-native:ecs:TaskDefinitionContainerDefinitionVersionConsistency",
- "description": "Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is `enabled` . If you set the value for a container as `disabled` , Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide* ."
+ "description": "Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is ``enabled``. If you set the value for a container as ``disabled``, Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide*."
},
"volumesFrom": {
"type": "array",
@@ -51686,7 +51700,7 @@
]
},
"aws-native:ecs:TaskDefinitionContainerDefinitionVersionConsistency": {
- "description": "Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is `enabled` . If you set the value for a container as `disabled` , Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide* .",
+ "description": "Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is ``enabled``. If you set the value for a container as ``disabled``, Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide*.",
"type": "string",
"enum": [
{
@@ -56163,7 +56177,8 @@
"description": "The authorization parameters for Basic authorization."
},
"connectivityParameters": {
- "$ref": "#/types/aws-native:events:ConnectionConnectivityParameters"
+ "$ref": "#/types/aws-native:events:ConnectionConnectivityParameters",
+ "description": "For private OAuth authentication endpoints. The parameters EventBridge uses to authenticate against the endpoint.\n\nFor more information, see [Authorization methods for connections](https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-target-connection-auth.html) in the **Amazon EventBridge User Guide** ."
},
"invocationHttpParameters": {
"$ref": "#/types/aws-native:events:ConnectionHttpParameters",
@@ -56231,7 +56246,8 @@
"aws-native:events:ConnectionConnectivityParameters": {
"properties": {
"resourceParameters": {
- "$ref": "#/types/aws-native:events:ConnectionResourceParameters"
+ "$ref": "#/types/aws-native:events:ConnectionResourceParameters",
+ "description": "The parameters for EventBridge to use when invoking the resource endpoint."
}
},
"type": "object",
@@ -56333,10 +56349,12 @@
"aws-native:events:ConnectionResourceParameters": {
"properties": {
"resourceAssociationArn": {
- "type": "string"
+ "type": "string",
+ "description": "For connections to private APIs, the Amazon Resource Name (ARN) of the resource association EventBridge created between the connection and the private API's resource configuration.\n\n\u003e The value of this property is set by EventBridge . Any value you specify in your template is ignored."
},
"resourceConfigurationArn": {
- "type": "string"
+ "type": "string",
+ "description": "The Amazon Resource Name (ARN) of the Amazon VPC Lattice resource configuration for the resource endpoint."
}
},
"type": "object",
@@ -56494,7 +56512,8 @@
"description": "The private resource the HTTP request will be sent to.",
"properties": {
"resourceParameters": {
- "$ref": "#/types/aws-native:events:ConnectionResourceParameters"
+ "$ref": "#/types/aws-native:events:ConnectionResourceParameters",
+ "description": "The parameters for EventBridge to use when invoking the resource endpoint."
}
},
"type": "object",
@@ -66810,7 +66829,8 @@
"type": "array",
"items": {
"type": "string"
- }
+ },
+ "description": "The list of `LINKED_ACCOUNT` IDs where charges are included within the invoice unit."
}
},
"type": "object",
@@ -67144,6 +67164,95 @@
}
]
},
+ "aws-native:iot:CommandNamespace": {
+ "description": "The namespace to which the command belongs.",
+ "type": "string",
+ "enum": [
+ {
+ "name": "AwsIoT",
+ "value": "AWS-IoT"
+ },
+ {
+ "name": "AwsIoTFleetWise",
+ "value": "AWS-IoT-FleetWise"
+ }
+ ]
+ },
+ "aws-native:iot:CommandParameter": {
+ "properties": {
+ "defaultValue": {
+ "$ref": "#/types/aws-native:iot:CommandParameterValue"
+ },
+ "description": {
+ "type": "string"
+ },
+ "name": {
+ "type": "string"
+ },
+ "value": {
+ "$ref": "#/types/aws-native:iot:CommandParameterValue"
+ }
+ },
+ "type": "object",
+ "required": [
+ "name"
+ ]
+ },
+ "aws-native:iot:CommandParameterValue": {
+ "properties": {
+ "b": {
+ "type": "boolean"
+ },
+ "bin": {
+ "type": "string"
+ },
+ "d": {
+ "type": "number"
+ },
+ "i": {
+ "type": "integer"
+ },
+ "l": {
+ "type": "string"
+ },
+ "s": {
+ "type": "string"
+ },
+ "ul": {
+ "type": "string"
+ }
+ },
+ "type": "object"
+ },
+ "aws-native:iot:CommandPayload": {
+ "properties": {
+ "content": {
+ "type": "string"
+ },
+ "contentType": {
+ "type": "string"
+ }
+ },
+ "type": "object"
+ },
+ "aws-native:iot:CommandTag": {
+ "description": "A key-value pair to associate with a resource.",
+ "properties": {
+ "key": {
+ "type": "string",
+ "description": "The tag's key."
+ },
+ "value": {
+ "type": "string",
+ "description": "The tag's value."
+ }
+ },
+ "type": "object",
+ "required": [
+ "key",
+ "value"
+ ]
+ },
"aws-native:iot:CustomMetricMetricType": {
"description": "The type of the custom metric. Types include string-list, ip-address-list, number-list, and number.",
"type": "string",
@@ -95863,7 +95972,7 @@
]
},
"aws-native:organizations:PolicyType": {
- "description": "The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY",
+ "description": "The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY,DECLARATIVE_POLICY_EC2",
"type": "string",
"enum": [
{
@@ -95889,6 +95998,10 @@
{
"name": "ResourceControlPolicy",
"value": "RESOURCE_CONTROL_POLICY"
+ },
+ {
+ "name": "DeclarativePolicyEc2",
+ "value": "DECLARATIVE_POLICY_EC2"
}
]
},
@@ -145486,6 +145599,24 @@
"value"
]
},
+ "aws-native:ram:ResourceShareTag": {
+ "description": "A key-value pair to associate with a resource.",
+ "properties": {
+ "key": {
+ "type": "string",
+ "description": "The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -."
+ },
+ "value": {
+ "type": "string",
+ "description": "The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -."
+ }
+ },
+ "type": "object",
+ "required": [
+ "key",
+ "value"
+ ]
+ },
"aws-native:rbin:RuleResourceTag": {
"description": "The resource tag of the rule.",
"properties": {
@@ -145588,7 +145719,7 @@
]
},
"aws-native:rds:CustomDbEngineVersionStatus": {
- "description": "The availability status to be assigned to the CEV.",
+ "description": "A value that indicates the status of a custom engine version (CEV).",
"type": "string",
"enum": [
{
@@ -145606,15 +145737,15 @@
]
},
"aws-native:rds:CustomDbEngineVersionTag": {
- "description": "A key-value pair to associate with a resource.",
+ "description": "Metadata assigned to an Amazon RDS resource consisting of a key-value pair.\n For more information, see [Tagging Amazon RDS resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide* or [Tagging Amazon Aurora and Amazon RDS resources](https://docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/USER_Tagging.html) in the *Amazon Aurora User Guide*.",
"properties": {
"key": {
"type": "string",
- "description": "The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -."
+ "description": "A key is the required name of the tag. The string value can be from 1 to 128 Unicode characters in length and can't be prefixed with ``aws:`` or ``rds:``. The string can only contain only the set of Unicode letters, digits, white-space, '_', '.', ':', '/', '=', '+', '-', '@' (Java regex: \"^([\\\\p{L}\\\\p{Z}\\\\p{N}_.:/=+\\\\-@]*)$\")."
},
"value": {
"type": "string",
- "description": "The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -."
+ "description": "A value is the optional value of the tag. The string value can be from 1 to 256 Unicode characters in length and can't be prefixed with ``aws:`` or ``rds:``. The string can only contain only the set of Unicode letters, digits, white-space, '_', '.', ':', '/', '=', '+', '-', '@' (Java regex: \"^([\\\\p{L}\\\\p{Z}\\\\p{N}_.:/=+\\\\-@]*)$\")."
}
},
"type": "object",
@@ -146704,6 +146835,9 @@
"type": "string",
"description": "The namespace the workgroup is associated with."
},
+ "pricePerformanceTarget": {
+ "$ref": "#/types/aws-native:redshiftserverless:WorkgroupPerformanceTarget"
+ },
"publiclyAccessible": {
"type": "boolean",
"description": "A value that specifies whether the workgroup can be accessible from a public network."
@@ -146795,6 +146929,30 @@
},
"type": "object"
},
+ "aws-native:redshiftserverless:WorkgroupPerformanceTarget": {
+ "properties": {
+ "level": {
+ "type": "integer"
+ },
+ "status": {
+ "$ref": "#/types/aws-native:redshiftserverless:WorkgroupPerformanceTargetStatus"
+ }
+ },
+ "type": "object"
+ },
+ "aws-native:redshiftserverless:WorkgroupPerformanceTargetStatus": {
+ "type": "string",
+ "enum": [
+ {
+ "name": "Enabled",
+ "value": "ENABLED"
+ },
+ {
+ "name": "Disabled",
+ "value": "DISABLED"
+ }
+ ]
+ },
"aws-native:redshiftserverless:WorkgroupStatus": {
"type": "string",
"enum": [
@@ -150529,6 +150687,42 @@
},
"type": "object"
},
+ "aws-native:s3:BucketMetadataTableConfiguration": {
+ "properties": {
+ "error": {
+ "$ref": "#/types/aws-native:s3:BucketMetadataTableError",
+ "description": "Returns the \u003ccode\u003eError\u003c/code\u003e value of the GetBucketMetadataTableConfiguration response."
+ },
+ "s3TablesDestination": {
+ "$ref": "#/types/aws-native:s3:BucketS3TablesDestination"
+ },
+ "status": {
+ "type": "string",
+ "description": "Returns the \u003ccode\u003eStatus\u003c/code\u003e value of the \u003ccode\u003eGetBucketMetadataTableConfigurationResult\u003c/code\u003e response. This value indicates the status of the metadata table. The status values are:\u003cbr/\u003e\u003ccode\u003eCREATING\u003c/code\u003e - The metadata table is in the process of being created in the specified table bucket.\u003cbr/\u003e\u003ccode\u003eACTIVE\u003c/code\u003e - The metadata table has been created successfully and records are being delivered to the table.\u003cbr/\u003e\u003ccode\u003eFAILED\u003c/code\u003e - Amazon S3 is unable to create the metadata table, or Amazon S3 is unable to deliver records."
+ }
+ },
+ "type": "object",
+ "required": [
+ "s3TablesDestination"
+ ]
+ },
+ "aws-native:s3:BucketMetadataTableError": {
+ "properties": {
+ "errorCode": {
+ "type": "string",
+ "description": "If the \u003ccode\u003eCreateBucketMetadataTableConfiguration\u003c/code\u003e request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows:\u003cbr/\u003e\u003ccode\u003eAccessDeniedCreatingResources\u003c/code\u003e - You don't have sufficient permissions to create the required resources. Make sure that you have \u003ccode\u003es3tables:CreateNamespace\u003c/code\u003e, \u003ccode\u003es3tables:CreateTable\u003c/code\u003e, \u003ccode\u003es3tables:GetTable\u003c/code\u003e and \u003ccode\u003es3tables:PutTablePolicy\u003c/code\u003e permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eAccessDeniedWritingToTable\u003c/code\u003e - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eDestinationTableNotFound\u003c/code\u003e - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eServerInternalError\u003c/code\u003e - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eTableAlreadyExists\u003c/code\u003e - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eTableBucketNotFound\u003c/code\u003e - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration."
+ },
+ "errorMessage": {
+ "type": "string",
+ "description": "If the \u003ccode\u003eCreateBucketMetadataTableConfiguration\u003c/code\u003e request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows:\u003cbr/\u003e\u003ccode\u003eAccessDeniedCreatingResources\u003c/code\u003e - You don't have sufficient permissions to create the required resources. Make sure that you have \u003ccode\u003es3tables:CreateNamespace\u003c/code\u003e, \u003ccode\u003es3tables:CreateTable\u003c/code\u003e, \u003ccode\u003es3tables:GetTable\u003c/code\u003e and \u003ccode\u003es3tables:PutTablePolicy\u003c/code\u003e permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eAccessDeniedWritingToTable\u003c/code\u003e - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eDestinationTableNotFound\u003c/code\u003e - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eServerInternalError\u003c/code\u003e - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eTableAlreadyExists\u003c/code\u003e - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.\u003cbr/\u003e\u003ccode\u003eTableBucketNotFound\u003c/code\u003e - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration."
+ }
+ },
+ "type": "object",
+ "required": [
+ "errorCode",
+ "errorMessage"
+ ]
+ },
"aws-native:s3:BucketMetrics": {
"description": "A container specifying replication metrics-related settings enabling replication metrics and events.",
"properties": {
@@ -151286,6 +151480,31 @@
"rules"
]
},
+ "aws-native:s3:BucketS3TablesDestination": {
+ "properties": {
+ "tableArn": {
+ "type": "string",
+ "description": "The Amazon Resource Name (ARN) for the metadata table in the metadata table configuration. The specified metadata table name must be unique within the \u003ccode\u003eaws_s3_metadata\u003c/code\u003e namespace in the destination table bucket."
+ },
+ "tableBucketArn": {
+ "type": "string",
+ "description": "The Amazon Resource Name (ARN) for the table bucket that's specified as the destination in the metadata table configuration. The destination table bucket must be in the same Region and AWS account as the general purpose bucket."
+ },
+ "tableName": {
+ "type": "string",
+ "description": "The name for the metadata table in your metadata table configuration. The specified metadata table name must be unique within the \u003ccode\u003eaws_s3_metadata\u003c/code\u003e namespace in the destination table bucket."
+ },
+ "tableNamespace": {
+ "type": "string",
+ "description": "The table bucket namespace for the metadata table in your metadata table configuration. This value is always \u003ccode\u003eaws_s3_metadata\u003c/code\u003e."
+ }
+ },
+ "type": "object",
+ "required": [
+ "tableBucketArn",
+ "tableName"
+ ]
+ },
"aws-native:s3:BucketServerSideEncryptionByDefault": {
"description": "Describes the default server-side encryption to apply to new objects in the bucket. If a PUT Object request doesn't specify any server-side encryption, this default encryption will be applied. For more information, see [PutBucketEncryption](https://docs.aws.amazon.com/AmazonS3/latest/API/RESTBucketPUTencryption.html).\n + *General purpose buckets* - If you don't specify a customer managed key at configuration, Amazon S3 automatically creates an AWS KMS key (``aws/s3``) in your AWS account the first time that you add an object encrypted with SSE-KMS to a bucket. By default, Amazon S3 uses this KMS key for SSE-KMS. \n + *Directory buckets* - Your SSE-KMS configuration can only support 1 [customer managed key](https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#customer-cmk) per directory bucket for the lifetime of the bucket. The [managed key](https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-managed-cmk) (``aws/s3``) isn't supported. \n + *Directory buckets* - For directory buckets, there are only two supported options for server-side encryption: SSE-S3 and SSE-KMS.",
"properties": {
@@ -152191,12 +152410,16 @@
]
},
"aws-native:s3express:DirectoryBucketDataRedundancy": {
- "description": "Specifies the number of Availability Zone that's used for redundancy for the bucket.",
+ "description": "Specifies the number of Availability Zone or Local Zone that's used for redundancy for the bucket.",
"type": "string",
"enum": [
{
"name": "SingleAvailabilityZone",
"value": "SingleAvailabilityZone"
+ },
+ {
+ "name": "SingleLocalZone",
+ "value": "SingleLocalZone"
}
]
},
@@ -152683,6 +152906,42 @@
}
]
},
+ "aws-native:s3tables:TableBucketPolicyResourcePolicy": {
+ "description": "A policy document containing permissions to add to the specified table bucket. In IAM, you must provide policy documents in JSON format. However, in CloudFormation you can provide the policy in JSON or YAML format because CloudFormation converts YAML to JSON before submitting it to IAM.",
+ "type": "object"
+ },
+ "aws-native:s3tables:TableBucketUnreferencedFileRemoval": {
+ "description": "Settings governing the Unreferenced File Removal maintenance action. Unreferenced file removal identifies and deletes all objects that are not referenced by any table snapshots.",
+ "properties": {
+ "noncurrentDays": {
+ "type": "integer",
+ "description": "S3 permanently deletes noncurrent objects after the number of days specified by the NoncurrentDays property."
+ },
+ "status": {
+ "$ref": "#/types/aws-native:s3tables:TableBucketUnreferencedFileRemovalStatus",
+ "description": "Indicates whether the Unreferenced File Removal maintenance action is enabled."
+ },
+ "unreferencedDays": {
+ "type": "integer",
+ "description": "For any object not referenced by your table and older than the UnreferencedDays property, S3 creates a delete marker and marks the object version as noncurrent."
+ }
+ },
+ "type": "object"
+ },
+ "aws-native:s3tables:TableBucketUnreferencedFileRemovalStatus": {
+ "description": "Indicates whether the Unreferenced File Removal maintenance action is enabled.",
+ "type": "string",
+ "enum": [
+ {
+ "name": "Enabled",
+ "value": "Enabled"
+ },
+ {
+ "name": "Disabled",
+ "value": "Disabled"
+ }
+ ]
+ },
"aws-native:sagemaker:AppImageConfigCodeEditorAppImageConfig": {
"description": "The configuration for the kernels in a SageMaker image running as a CodeEditor app.",
"properties": {
@@ -180568,10 +180827,6 @@
"description": "The endpoint configuration to indicate the types of endpoints an API (RestApi) or its custom domain name (DomainName) has.",
"replaceOnChanges": true
},
- "managementPolicy": {
- "$ref": "pulumi.json#/Any",
- "description": "Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property."
- },
"policy": {
"$ref": "pulumi.json#/Any",
"description": "A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .\n\nSearch the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property."
@@ -180607,10 +180862,6 @@
"$ref": "#/types/aws-native:apigateway:DomainNameV2EndpointConfiguration",
"description": "The endpoint configuration to indicate the types of endpoints an API (RestApi) or its custom domain name (DomainName) has."
},
- "managementPolicy": {
- "$ref": "pulumi.json#/Any",
- "description": "Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property."
- },
"policy": {
"$ref": "pulumi.json#/Any",
"description": "A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .\n\nSearch the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property."
@@ -197188,6 +197439,7 @@
},
"clientId": {
"type": "string",
+ "description": "The app client that's assigned to the branding style that you want more information about.",
"replaceOnChanges": true
},
"managedLoginBrandingId": {
@@ -197195,7 +197447,8 @@
"description": "The ID of the managed login branding style."
},
"returnMergedResources": {
- "type": "boolean"
+ "type": "boolean",
+ "description": "When `true` , returns values for branding options that are unchanged from Amazon Cognito defaults. When `false` or when you omit this parameter, returns only values that you customized in your branding style."
},
"settings": {
"$ref": "pulumi.json#/Any",
@@ -197203,7 +197456,7 @@
},
"useCognitoProvidedValues": {
"type": "boolean",
- "description": "When true, applies the default branding style options. This option reverts to a \"blank\" style that you can modify later in the branding designer."
+ "description": "When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.\n\nWhen you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request."
},
"userPoolId": {
"type": "string",
@@ -197225,10 +197478,12 @@
"description": "An array of image files that you want to apply to roles like backgrounds, logos, and icons. Each object must also indicate whether it is for dark mode, light mode, or browser-adaptive mode."
},
"clientId": {
- "type": "string"
+ "type": "string",
+ "description": "The app client that's assigned to the branding style that you want more information about."
},
"returnMergedResources": {
- "type": "boolean"
+ "type": "boolean",
+ "description": "When `true` , returns values for branding options that are unchanged from Amazon Cognito defaults. When `false` or when you omit this parameter, returns only values that you customized in your branding style."
},
"settings": {
"$ref": "pulumi.json#/Any",
@@ -197236,7 +197491,7 @@
},
"useCognitoProvidedValues": {
"type": "boolean",
- "description": "When true, applies the default branding style options. This option reverts to a \"blank\" style that you can modify later in the branding designer."
+ "description": "When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.\n\nWhen you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request."
},
"userPoolId": {
"type": "string",
@@ -197263,7 +197518,7 @@
"items": {
"type": "string"
},
- "description": "Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* ."
+ "description": "Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* . For more information about alias attributes, see [Customizing sign-in attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-aliases) ."
},
"arn": {
"type": "string",
@@ -197274,7 +197529,7 @@
"items": {
"type": "string"
},
- "description": "The attributes to be auto-verified. Possible values: *email* , *phone_number* ."
+ "description": "The attributes that you want your user pool to automatically verify. Possible values: *email* , *phone_number* . For more information see [Verifying contact information at sign-up](https://docs.aws.amazon.com/cognito/latest/developerguide/signing-up-users-in-your-app.html#allowing-users-to-sign-up-and-confirm-themselves) ."
},
"deletionProtection": {
"type": "string",
@@ -197282,7 +197537,7 @@
},
"deviceConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolDeviceConfiguration",
- "description": "The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool.\n\n\u003e When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature."
+ "description": "The device-remembering configuration for a user pool. Device remembering or device tracking is a \"Remember me on this device\" option for user pools that perform authentication with the device key of a trusted device in the back end, instead of a user-provided MFA code. For more information about device authentication, see [Working with user devices in your user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-device-tracking.html) . A null value indicates that you have deactivated device remembering in your user pool.\n\n\u003e When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature. For more infor"
},
"emailAuthenticationMessage": {
"type": "string"
@@ -197334,7 +197589,7 @@
"items": {
"$ref": "#/types/aws-native:cognito:UserPoolSchemaAttribute"
},
- "description": "An array of schema attributes for the new user pool. These attributes can be standard or custom attributes."
+ "description": "An array of attributes for the new user pool. You can add custom attributes and modify the properties of default attributes. The specifications in this parameter set the required attributes in your user pool. For more information, see [Working with user attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html) ."
},
"smsAuthenticationMessage": {
"type": "string",
@@ -197342,7 +197597,7 @@
},
"smsConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolSmsConfiguration",
- "description": "The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account ."
+ "description": "The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account . For more information see [SMS message settings](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-sms-settings.html) ."
},
"smsVerificationMessage": {
"type": "string",
@@ -197362,7 +197617,7 @@
},
"userPoolName": {
"type": "string",
- "description": "A string used to name the user pool."
+ "description": "A friendlhy name for your user pool."
},
"userPoolTags": {
"type": "object",
@@ -197384,17 +197639,19 @@
},
"usernameConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolUsernameConfiguration",
- "description": "Case sensitivity on the username input for the selected sign-in option. When case sensitivity is set to `False` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `False` (case insensitive) as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.\n\nThis configuration is immutable after you set it. For more information, see [UsernameConfigurationType](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UsernameConfigurationType.html) ."
+ "description": "Sets the case sensitivity option for sign-in usernames. When `CaseSensitive` is `false` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `false` as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.\n\nWhen `CaseSensitive` is `true` (case sensitive), Amazon Cognito interprets `USERNAME` and `UserName` as distinct users.\n\nThis configuration is immutable after you set it."
},
"verificationMessageTemplate": {
"$ref": "#/types/aws-native:cognito:UserPoolVerificationMessageTemplate",
"description": "The template for the verification message that your user pool delivers to users who set an email address or phone number attribute.\n\nSet the email message type that corresponds to your `DefaultEmailOption` selection. For `CONFIRM_WITH_LINK` , specify an `EmailMessageByLink` and leave `EmailMessage` blank. For `CONFIRM_WITH_CODE` , specify an `EmailMessage` and leave `EmailMessageByLink` blank. When you supply both parameters with either choice, Amazon Cognito returns an error."
},
"webAuthnRelyingPartyId": {
- "type": "string"
+ "type": "string",
+ "description": "Sets or displays the authentication domain, typically your user pool domain, that passkey providers must use as a relying party (RP) in their configuration.\n\nUnder the following conditions, the passkey relying party ID must be the fully-qualified domain name of your custom domain:\n\n- The user pool is configured for passkey authentication.\n- The user pool has a custom domain, whether or not it also has a prefix domain.\n- Your application performs authentication with managed login or the classic hosted UI."
},
"webAuthnUserVerification": {
- "type": "string"
+ "type": "string",
+ "description": "When `required` , users can only register and sign in users with passkeys that are capable of [user verification](https://docs.aws.amazon.com/https://www.w3.org/TR/webauthn-2/#enum-userVerificationRequirement) . When `preferred` , your user pool doesn't require the use of authenticators with user verification but encourages it."
}
},
"type": "object",
@@ -197418,14 +197675,14 @@
"items": {
"type": "string"
},
- "description": "Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* ."
+ "description": "Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* . For more information about alias attributes, see [Customizing sign-in attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-aliases) ."
},
"autoVerifiedAttributes": {
"type": "array",
"items": {
"type": "string"
},
- "description": "The attributes to be auto-verified. Possible values: *email* , *phone_number* ."
+ "description": "The attributes that you want your user pool to automatically verify. Possible values: *email* , *phone_number* . For more information see [Verifying contact information at sign-up](https://docs.aws.amazon.com/cognito/latest/developerguide/signing-up-users-in-your-app.html#allowing-users-to-sign-up-and-confirm-themselves) ."
},
"deletionProtection": {
"type": "string",
@@ -197433,7 +197690,7 @@
},
"deviceConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolDeviceConfiguration",
- "description": "The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool.\n\n\u003e When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature."
+ "description": "The device-remembering configuration for a user pool. Device remembering or device tracking is a \"Remember me on this device\" option for user pools that perform authentication with the device key of a trusted device in the back end, instead of a user-provided MFA code. For more information about device authentication, see [Working with user devices in your user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-device-tracking.html) . A null value indicates that you have deactivated device remembering in your user pool.\n\n\u003e When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature. For more infor"
},
"emailAuthenticationMessage": {
"type": "string"
@@ -197477,7 +197734,7 @@
"items": {
"$ref": "#/types/aws-native:cognito:UserPoolSchemaAttribute"
},
- "description": "An array of schema attributes for the new user pool. These attributes can be standard or custom attributes."
+ "description": "An array of attributes for the new user pool. You can add custom attributes and modify the properties of default attributes. The specifications in this parameter set the required attributes in your user pool. For more information, see [Working with user attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html) ."
},
"smsAuthenticationMessage": {
"type": "string",
@@ -197485,7 +197742,7 @@
},
"smsConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolSmsConfiguration",
- "description": "The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account ."
+ "description": "The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account . For more information see [SMS message settings](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-sms-settings.html) ."
},
"smsVerificationMessage": {
"type": "string",
@@ -197501,7 +197758,7 @@
},
"userPoolName": {
"type": "string",
- "description": "A string used to name the user pool."
+ "description": "A friendlhy name for your user pool."
},
"userPoolTags": {
"type": "object",
@@ -197523,17 +197780,19 @@
},
"usernameConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolUsernameConfiguration",
- "description": "Case sensitivity on the username input for the selected sign-in option. When case sensitivity is set to `False` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `False` (case insensitive) as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.\n\nThis configuration is immutable after you set it. For more information, see [UsernameConfigurationType](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UsernameConfigurationType.html) ."
+ "description": "Sets the case sensitivity option for sign-in usernames. When `CaseSensitive` is `false` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `false` as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.\n\nWhen `CaseSensitive` is `true` (case sensitive), Amazon Cognito interprets `USERNAME` and `UserName` as distinct users.\n\nThis configuration is immutable after you set it."
},
"verificationMessageTemplate": {
"$ref": "#/types/aws-native:cognito:UserPoolVerificationMessageTemplate",
"description": "The template for the verification message that your user pool delivers to users who set an email address or phone number attribute.\n\nSet the email message type that corresponds to your `DefaultEmailOption` selection. For `CONFIRM_WITH_LINK` , specify an `EmailMessageByLink` and leave `EmailMessage` blank. For `CONFIRM_WITH_CODE` , specify an `EmailMessage` and leave `EmailMessageByLink` blank. When you supply both parameters with either choice, Amazon Cognito returns an error."
},
"webAuthnRelyingPartyId": {
- "type": "string"
+ "type": "string",
+ "description": "Sets or displays the authentication domain, typically your user pool domain, that passkey providers must use as a relying party (RP) in their configuration.\n\nUnder the following conditions, the passkey relying party ID must be the fully-qualified domain name of your custom domain:\n\n- The user pool is configured for passkey authentication.\n- The user pool has a custom domain, whether or not it also has a prefix domain.\n- Your application performs authentication with managed login or the classic hosted UI."
},
"webAuthnUserVerification": {
- "type": "string"
+ "type": "string",
+ "description": "When `required` , users can only register and sign in users with passkeys that are capable of [user verification](https://docs.aws.amazon.com/https://www.w3.org/TR/webauthn-2/#enum-userVerificationRequirement) . When `preferred` , your user pool doesn't require the use of authenticators with user verification but encourages it."
}
}
},
@@ -197560,11 +197819,11 @@
"items": {
"type": "string"
},
- "description": "The allowed OAuth scopes. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported."
+ "description": "The OAuth 2.0 scopes that you want to permit your app client to authorize. Scopes govern access control to user pool self-service API operations, user data from the `userInfo` endpoint, and third-party APIs. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported."
},
"analyticsConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolClientAnalyticsConfiguration",
- "description": "The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.\n\n\u003e In AWS Regions where Amazon Pinpoint isn't available, user pools only support sending events to Amazon Pinpoint projects in AWS Region us-east-1. In Regions where Amazon Pinpoint is available, user pools support sending events to Amazon Pinpoint projects within that same Region."
+ "description": "The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.\n\nIn AWS Regions where Amazon Pinpoint isn't available, user pools might not have access to analytics or might be configurable with campaigns in the US East (N. Virginia) Region. For more information, see [Using Amazon Pinpoint analytics](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-pinpoint-integration.html) ."
},
"authSessionValidity": {
"type": "integer",
@@ -197575,7 +197834,7 @@
"items": {
"type": "string"
},
- "description": "A list of allowed redirect (callback) URLs for the IdPs.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server.\n- Not include a fragment component.\n\nSee [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
+ "description": "A list of allowed redirect (callback) URLs for the IdPs.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server. Amazon Cognito doesn't accept authorization requests with `redirect_uri` values that aren't in the list of `CallbackURLs` that you provide in this parameter.\n- Not include a fragment component.\n\nSee [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
},
"clientId": {
"type": "string",
@@ -197583,14 +197842,14 @@
},
"clientName": {
"type": "string",
- "description": "The client name for the user pool client you would like to create."
+ "description": "A friendly name for the app client that you want to create."
},
"clientSecret": {
"type": "string"
},
"defaultRedirectUri": {
"type": "string",
- "description": "The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server.\n- Not include a fragment component.\n\nFor more information, see [Default redirect URI](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#cognito-user-pools-app-idp-settings-about) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
+ "description": "The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list."
},
"enablePropagateAdditionalUserContextData": {
"type": "boolean",
@@ -197609,7 +197868,7 @@
},
"generateSecret": {
"type": "boolean",
- "description": "Boolean to specify whether you want to generate a secret for the user pool client being created.",
+ "description": "When `true` , generates a client secret for the app client. Client secrets are used with server-side and machine-to-machine applications. For more information, see [App client types](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#user-pool-settings-client-app-client-types) .",
"replaceOnChanges": true
},
"idTokenValidity": {
@@ -197621,7 +197880,7 @@
"items": {
"type": "string"
},
- "description": "A list of allowed logout URLs for the IdPs."
+ "description": "A list of allowed logout URLs for managed login authentication. For more information, see [Logout endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/logout-endpoint.html) ."
},
"name": {
"type": "string"
@@ -197646,15 +197905,15 @@
"items": {
"type": "string"
},
- "description": "A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .\n\nThis setting applies to providers that you can access with the [hosted UI and OAuth 2.0 authorization server](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-app-integration.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) ."
+ "description": "A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .\n\nThis setting applies to providers that you can access with [managed login](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managed-login.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) ."
},
"tokenValidityUnits": {
"$ref": "#/types/aws-native:cognito:UserPoolClientTokenValidityUnits",
- "description": "The units in which the validity times are represented. The default unit for RefreshToken is days, and default for ID and access tokens are hours."
+ "description": "The units that validity times are represented in. The default unit for refresh tokens is days, and the default for ID and access tokens are hours."
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool where you want to create a user pool client.",
+ "description": "The ID of the user pool where you want to create an app client.",
"replaceOnChanges": true
},
"writeAttributes": {
@@ -197693,11 +197952,11 @@
"items": {
"type": "string"
},
- "description": "The allowed OAuth scopes. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported."
+ "description": "The OAuth 2.0 scopes that you want to permit your app client to authorize. Scopes govern access control to user pool self-service API operations, user data from the `userInfo` endpoint, and third-party APIs. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported."
},
"analyticsConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolClientAnalyticsConfiguration",
- "description": "The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.\n\n\u003e In AWS Regions where Amazon Pinpoint isn't available, user pools only support sending events to Amazon Pinpoint projects in AWS Region us-east-1. In Regions where Amazon Pinpoint is available, user pools support sending events to Amazon Pinpoint projects within that same Region."
+ "description": "The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.\n\nIn AWS Regions where Amazon Pinpoint isn't available, user pools might not have access to analytics or might be configurable with campaigns in the US East (N. Virginia) Region. For more information, see [Using Amazon Pinpoint analytics](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-pinpoint-integration.html) ."
},
"authSessionValidity": {
"type": "integer",
@@ -197708,15 +197967,15 @@
"items": {
"type": "string"
},
- "description": "A list of allowed redirect (callback) URLs for the IdPs.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server.\n- Not include a fragment component.\n\nSee [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
+ "description": "A list of allowed redirect (callback) URLs for the IdPs.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server. Amazon Cognito doesn't accept authorization requests with `redirect_uri` values that aren't in the list of `CallbackURLs` that you provide in this parameter.\n- Not include a fragment component.\n\nSee [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
},
"clientName": {
"type": "string",
- "description": "The client name for the user pool client you would like to create."
+ "description": "A friendly name for the app client that you want to create."
},
"defaultRedirectUri": {
"type": "string",
- "description": "The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server.\n- Not include a fragment component.\n\nFor more information, see [Default redirect URI](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#cognito-user-pools-app-idp-settings-about) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
+ "description": "The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list."
},
"enablePropagateAdditionalUserContextData": {
"type": "boolean",
@@ -197735,7 +197994,7 @@
},
"generateSecret": {
"type": "boolean",
- "description": "Boolean to specify whether you want to generate a secret for the user pool client being created."
+ "description": "When `true` , generates a client secret for the app client. Client secrets are used with server-side and machine-to-machine applications. For more information, see [App client types](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#user-pool-settings-client-app-client-types) ."
},
"idTokenValidity": {
"type": "integer",
@@ -197746,7 +198005,7 @@
"items": {
"type": "string"
},
- "description": "A list of allowed logout URLs for the IdPs."
+ "description": "A list of allowed logout URLs for managed login authentication. For more information, see [Logout endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/logout-endpoint.html) ."
},
"preventUserExistenceErrors": {
"type": "string",
@@ -197768,15 +198027,15 @@
"items": {
"type": "string"
},
- "description": "A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .\n\nThis setting applies to providers that you can access with the [hosted UI and OAuth 2.0 authorization server](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-app-integration.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) ."
+ "description": "A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .\n\nThis setting applies to providers that you can access with [managed login](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managed-login.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) ."
},
"tokenValidityUnits": {
"$ref": "#/types/aws-native:cognito:UserPoolClientTokenValidityUnits",
- "description": "The units in which the validity times are represented. The default unit for RefreshToken is days, and default for ID and access tokens are hours."
+ "description": "The units that validity times are represented in. The default unit for refresh tokens is days, and the default for ID and access tokens are hours."
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool where you want to create a user pool client."
+ "description": "The ID of the user pool where you want to create an app client."
},
"writeAttributes": {
"type": "array",
@@ -197855,11 +198114,11 @@
"properties": {
"description": {
"type": "string",
- "description": "A string containing the description of the group."
+ "description": "A description of the group that you're creating."
},
"groupName": {
"type": "string",
- "description": "The name of the group. Must be unique.",
+ "description": "A name for the group. This name must be unique in your user pool.",
"replaceOnChanges": true
},
"precedence": {
@@ -197868,11 +198127,11 @@
},
"roleArn": {
"type": "string",
- "description": "The role Amazon Resource Name (ARN) for the group."
+ "description": "The Amazon Resource Name (ARN) for the IAM role that you want to associate with the group. A group role primarily declares a preferred role for the credentials that you get from an identity pool. Amazon Cognito ID tokens have a `cognito:preferred_role` claim that presents the highest-precedence group that a user belongs to. Both ID and access tokens also contain a `cognito:groups` claim that list all the groups that a user is a member of."
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool.",
+ "description": "The ID of the user pool where you want to create a user group.",
"replaceOnChanges": true
}
},
@@ -197883,11 +198142,11 @@
"inputProperties": {
"description": {
"type": "string",
- "description": "A string containing the description of the group."
+ "description": "A description of the group that you're creating."
},
"groupName": {
"type": "string",
- "description": "The name of the group. Must be unique."
+ "description": "A name for the group. This name must be unique in your user pool."
},
"precedence": {
"type": "integer",
@@ -197895,11 +198154,11 @@
},
"roleArn": {
"type": "string",
- "description": "The role Amazon Resource Name (ARN) for the group."
+ "description": "The Amazon Resource Name (ARN) for the IAM role that you want to associate with the group. A group role primarily declares a preferred role for the credentials that you get from an identity pool. Amazon Cognito ID tokens have a `cognito:preferred_role` claim that presents the highest-precedence group that a user belongs to. Both ID and access tokens also contain a `cognito:groups` claim that list all the groups that a user is a member of."
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool."
+ "description": "The ID of the user pool where you want to create a user group."
}
},
"requiredInputs": [
@@ -197914,14 +198173,14 @@
"additionalProperties": {
"type": "string"
},
- "description": "A mapping of IdP attributes to standard and custom user pool attributes."
+ "description": "A mapping of IdP attributes to standard and custom user pool attributes. Specify a user pool attribute as the key of the key-value pair, and the IdP attribute claim name as the value."
},
"idpIdentifiers": {
"type": "array",
"items": {
"type": "string"
},
- "description": "A list of IdP identifiers."
+ "description": "An array of IdP identifiers, for example `\"IdPIdentifiers\": [ \"MyIdP\", \"MyIdP2\" ]` . Identifiers are friendly names that you can pass in the `idp_identifier` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP. Identifiers in a domain format also enable the use of [email-address matching with SAML providers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managing-saml-idp-naming.html) ."
},
"providerDetails": {
"type": "object",
@@ -197932,17 +198191,17 @@
},
"providerName": {
"type": "string",
- "description": "The IdP name.",
+ "description": "The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP.",
"replaceOnChanges": true
},
"providerType": {
"type": "string",
- "description": "The IdP type.",
+ "description": "The type of IdP that you want to add. Amazon Cognito supports OIDC, SAML 2.0, Login With Amazon, Sign In With Apple, Google, and Facebook IdPs.",
"replaceOnChanges": true
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID.",
+ "description": "The Id of the user pool where you want to create an IdP.",
"replaceOnChanges": true
}
},
@@ -197959,14 +198218,14 @@
"additionalProperties": {
"type": "string"
},
- "description": "A mapping of IdP attributes to standard and custom user pool attributes."
+ "description": "A mapping of IdP attributes to standard and custom user pool attributes. Specify a user pool attribute as the key of the key-value pair, and the IdP attribute claim name as the value."
},
"idpIdentifiers": {
"type": "array",
"items": {
"type": "string"
},
- "description": "A list of IdP identifiers."
+ "description": "An array of IdP identifiers, for example `\"IdPIdentifiers\": [ \"MyIdP\", \"MyIdP2\" ]` . Identifiers are friendly names that you can pass in the `idp_identifier` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP. Identifiers in a domain format also enable the use of [email-address matching with SAML providers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managing-saml-idp-naming.html) ."
},
"providerDetails": {
"type": "object",
@@ -197977,15 +198236,15 @@
},
"providerName": {
"type": "string",
- "description": "The IdP name."
+ "description": "The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP."
},
"providerType": {
"type": "string",
- "description": "The IdP type."
+ "description": "The type of IdP that you want to add. Amazon Cognito supports OIDC, SAML 2.0, Login With Amazon, Sign In With Apple, Google, and Facebook IdPs."
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID."
+ "description": "The Id of the user pool where you want to create an IdP."
}
},
"requiredInputs": [
@@ -198015,7 +198274,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool.",
+ "description": "The ID of the user pool where you want to create a resource server.",
"replaceOnChanges": true
}
},
@@ -198043,7 +198302,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool."
+ "description": "The ID of the user pool where you want to create a resource server."
}
},
"requiredInputs": [
@@ -198123,7 +198382,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool.",
+ "description": "The ID of the user pool.",
"replaceOnChanges": true
}
},
@@ -198143,7 +198402,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool."
+ "description": "The ID of the user pool."
}
},
"requiredInputs": [
@@ -198159,7 +198418,7 @@
"additionalProperties": {
"type": "string"
},
- "description": "A map of custom key-value pairs that you can provide as input for any custom workflows that this action triggers.\n\nYou create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `clientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.\n\nFor more information, see [Customizing user pool Workflows with Lambda Triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html) in the *Amazon Cognito Developer Guide* .\n\n\u003e When you use the ClientMetadata parameter, remember that Amazon Cognito won't do the following:\n\u003e \n\u003e - Store the ClientMetadata value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the ClientMetadata parameter serves no purpose.\n\u003e - Validate the ClientMetadata value.\n\u003e - Encrypt the ClientMetadata value. Don't use Amazon Cognito to provide sensitive information.",
+ "description": "A map of custom key-value pairs that you can provide as input for any custom workflows that this action triggers.\n\nYou create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `ClientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.\n\nFor more information, see [Customizing user pool Workflows with Lambda Triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html) in the *Amazon Cognito Developer Guide* .\n\n\u003e When you use the `ClientMetadata` parameter, note that Amazon Cognito won't do the following:\n\u003e \n\u003e - Store the `ClientMetadata` value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the `ClientMetadata` parameter serves no purpose.\n\u003e - Validate the `ClientMetadata` value.\n\u003e - Encrypt the `ClientMetadata` value. Don't send sensitive information in this parameter.",
"replaceOnChanges": true
},
"desiredDeliveryMediums": {
@@ -198167,17 +198426,17 @@
"items": {
"type": "string"
},
- "description": "Specify `\"EMAIL\"` if email will be used to send the welcome message. Specify `\"SMS\"` if the phone number will be used. The default value is `\"SMS\"` . You can specify more than one value.",
+ "description": "Specify `EMAIL` if email will be used to send the welcome message. Specify `SMS` if the phone number will be used. The default value is `SMS` . You can specify more than one value.",
"replaceOnChanges": true
},
"forceAliasCreation": {
"type": "boolean",
- "description": "This parameter is used only if the `phone_number_verified` or `email_verified` attribute is set to `True` . Otherwise, it is ignored.\n\nIf this parameter is set to `True` and the phone number or email address specified in the UserAttributes parameter already exists as an alias with a different user, the API call will migrate the alias from the previous user to the newly created user. The previous user will no longer be able to log in using that alias.\n\nIf this parameter is set to `False` , the API throws an `AliasExistsException` error if the alias already exists. The default value is `False` .",
+ "description": "This parameter is used only if the `phone_number_verified` or `email_verified` attribute is set to `True` . Otherwise, it is ignored.\n\nIf this parameter is set to `True` and the phone number or email address specified in the `UserAttributes` parameter already exists as an alias with a different user, this request migrates the alias from the previous user to the newly-created user. The previous user will no longer be able to log in using that alias.\n\nIf this parameter is set to `False` , the API throws an `AliasExistsException` error if the alias already exists. The default value is `False` .",
"replaceOnChanges": true
},
"messageAction": {
"type": "string",
- "description": "Set to `RESEND` to resend the invitation message to a user that already exists and reset the expiration limit on the user's account. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.",
+ "description": "Set to `RESEND` to resend the invitation message to a user that already exists, and to reset the temporary-password duration with a new temporary password. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.",
"replaceOnChanges": true
},
"userAttributes": {
@@ -198190,7 +198449,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool where the user will be created.",
+ "description": "The ID of the user pool where you want to create a user.",
"replaceOnChanges": true
},
"username": {
@@ -198217,22 +198476,22 @@
"additionalProperties": {
"type": "string"
},
- "description": "A map of custom key-value pairs that you can provide as input for any custom workflows that this action triggers.\n\nYou create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `clientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.\n\nFor more information, see [Customizing user pool Workflows with Lambda Triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html) in the *Amazon Cognito Developer Guide* .\n\n\u003e When you use the ClientMetadata parameter, remember that Amazon Cognito won't do the following:\n\u003e \n\u003e - Store the ClientMetadata value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the ClientMetadata parameter serves no purpose.\n\u003e - Validate the ClientMetadata value.\n\u003e - Encrypt the ClientMetadata value. Don't use Amazon Cognito to provide sensitive information."
+ "description": "A map of custom key-value pairs that you can provide as input for any custom workflows that this action triggers.\n\nYou create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `ClientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.\n\nFor more information, see [Customizing user pool Workflows with Lambda Triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html) in the *Amazon Cognito Developer Guide* .\n\n\u003e When you use the `ClientMetadata` parameter, note that Amazon Cognito won't do the following:\n\u003e \n\u003e - Store the `ClientMetadata` value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the `ClientMetadata` parameter serves no purpose.\n\u003e - Validate the `ClientMetadata` value.\n\u003e - Encrypt the `ClientMetadata` value. Don't send sensitive information in this parameter."
},
"desiredDeliveryMediums": {
"type": "array",
"items": {
"type": "string"
},
- "description": "Specify `\"EMAIL\"` if email will be used to send the welcome message. Specify `\"SMS\"` if the phone number will be used. The default value is `\"SMS\"` . You can specify more than one value."
+ "description": "Specify `EMAIL` if email will be used to send the welcome message. Specify `SMS` if the phone number will be used. The default value is `SMS` . You can specify more than one value."
},
"forceAliasCreation": {
"type": "boolean",
- "description": "This parameter is used only if the `phone_number_verified` or `email_verified` attribute is set to `True` . Otherwise, it is ignored.\n\nIf this parameter is set to `True` and the phone number or email address specified in the UserAttributes parameter already exists as an alias with a different user, the API call will migrate the alias from the previous user to the newly created user. The previous user will no longer be able to log in using that alias.\n\nIf this parameter is set to `False` , the API throws an `AliasExistsException` error if the alias already exists. The default value is `False` ."
+ "description": "This parameter is used only if the `phone_number_verified` or `email_verified` attribute is set to `True` . Otherwise, it is ignored.\n\nIf this parameter is set to `True` and the phone number or email address specified in the `UserAttributes` parameter already exists as an alias with a different user, this request migrates the alias from the previous user to the newly-created user. The previous user will no longer be able to log in using that alias.\n\nIf this parameter is set to `False` , the API throws an `AliasExistsException` error if the alias already exists. The default value is `False` ."
},
"messageAction": {
"type": "string",
- "description": "Set to `RESEND` to resend the invitation message to a user that already exists and reset the expiration limit on the user's account. Set to `SUPPRESS` to suppress sending the message. You can specify only one value."
+ "description": "Set to `RESEND` to resend the invitation message to a user that already exists, and to reset the temporary-password duration with a new temporary password. Set to `SUPPRESS` to suppress sending the message. You can specify only one value."
},
"userAttributes": {
"type": "array",
@@ -198243,7 +198502,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool where the user will be created."
+ "description": "The ID of the user pool where you want to create a user."
},
"username": {
"type": "string",
@@ -198271,7 +198530,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool.",
+ "description": "The ID of the user pool that contains the group that you want to add the user to.",
"replaceOnChanges": true
},
"username": {
@@ -198293,7 +198552,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool."
+ "description": "The ID of the user pool that contains the group that you want to add the user to."
},
"username": {
"type": "string",
@@ -200583,6 +200842,10 @@
"type": "string",
"description": "The name of the task template."
},
+ "selfAssignContactFlowArn": {
+ "type": "string",
+ "description": "The identifier of the contact flow."
+ },
"status": {
"$ref": "#/types/aws-native:connect:TaskTemplateStatus",
"description": "The status of the task template."
@@ -200639,6 +200902,10 @@
"type": "string",
"description": "The name of the task template."
},
+ "selfAssignContactFlowArn": {
+ "type": "string",
+ "description": "The identifier of the contact flow."
+ },
"status": {
"$ref": "#/types/aws-native:connect:TaskTemplateStatus",
"description": "The status of the task template."
@@ -207741,7 +208008,7 @@
},
"importSourceSpecification": {
"$ref": "#/types/aws-native:dynamodb:TableImportSourceSpecification",
- "description": "Specifies the properties of data being imported from the S3 bucket source to the table.\n If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, or the ``DeletionProtectionEnabled`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.",
+ "description": "Specifies the properties of data being imported from the S3 bucket source to the\" table.\n If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, the ``DeletionProtectionEnabled`` property, or the ``WarmThroughput`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.",
"replaceOnChanges": true
},
"keySchema": {
@@ -207857,7 +208124,7 @@
},
"importSourceSpecification": {
"$ref": "#/types/aws-native:dynamodb:TableImportSourceSpecification",
- "description": "Specifies the properties of data being imported from the S3 bucket source to the table.\n If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, or the ``DeletionProtectionEnabled`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission."
+ "description": "Specifies the properties of data being imported from the S3 bucket source to the\" table.\n If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, the ``DeletionProtectionEnabled`` property, or the ``WarmThroughput`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission."
},
"keySchema": {
"oneOf": [
@@ -210387,7 +210654,7 @@
"items": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateTagSpecification"
},
- "description": "The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.\n To specify the tags for resources that are created during instance launch, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications)."
+ "description": "The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.\n To specify the tags for the resources that are created when an instance is launched, you must use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications)."
},
"versionDescription": {
"type": "string",
@@ -210415,7 +210682,7 @@
"items": {
"$ref": "#/types/aws-native:ec2:LaunchTemplateTagSpecification"
},
- "description": "The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.\n To specify the tags for resources that are created during instance launch, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications)."
+ "description": "The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.\n To specify the tags for the resources that are created when an instance is launched, you must use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications)."
},
"versionDescription": {
"type": "string",
@@ -216102,6 +216369,10 @@
"description": "The number of ``cpu`` units used by the task. If you use the EC2 launch type, this field is optional. Any value can be used. If you use the Fargate launch type, this field is required. You must use one of the following values. The value that you choose determines your range of valid values for the ``memory`` parameter.\n If you use the EC2 launch type, this field is optional. Supported values are between ``128`` CPU units (``0.125`` vCPUs) and ``10240`` CPU units (``10`` vCPUs).\n The CPU units cannot be less than 1 vCPU when you use Windows containers on Fargate.\n + 256 (.25 vCPU) - Available ``memory`` values: 512 (0.5 GB), 1024 (1 GB), 2048 (2 GB)\n + 512 (.5 vCPU) - Available ``memory`` values: 1024 (1 GB), 2048 (2 GB), 3072 (3 GB), 4096 (4 GB)\n + 1024 (1 vCPU) - Available ``memory`` values: 2048 (2 GB), 3072 (3 GB), 4096 (4 GB), 5120 (5 GB), 6144 (6 GB), 7168 (7 GB), 8192 (8 GB)\n + 2048 (2 vCPU) - Available ``memory`` values: 4096 (4 GB) and 16384 (16 GB) in increments of 1024 (1 GB)\n + 4096 (4 vCPU) - Available ``memory`` values: 8192 (8 GB) and 30720 (30 GB) in increments of 1024 (1 GB)\n + 8192 (8 vCPU) - Available ``memory`` values: 16 GB and 60 GB in 4 GB increments\n This option requires Linux platform ``1.4.0`` or later.\n + 16384 (16vCPU) - Available ``memory`` values: 32GB and 120 GB in 8 GB increments\n This option requires Linux platform ``1.4.0`` or later.",
"replaceOnChanges": true
},
+ "enableFaultInjection": {
+ "type": "boolean",
+ "replaceOnChanges": true
+ },
"ephemeralStorage": {
"$ref": "#/types/aws-native:ecs:TaskDefinitionEphemeralStorage",
"description": "The ephemeral storage settings to use for tasks run with the task definition.",
@@ -216212,6 +216483,9 @@
"type": "string",
"description": "The number of ``cpu`` units used by the task. If you use the EC2 launch type, this field is optional. Any value can be used. If you use the Fargate launch type, this field is required. You must use one of the following values. The value that you choose determines your range of valid values for the ``memory`` parameter.\n If you use the EC2 launch type, this field is optional. Supported values are between ``128`` CPU units (``0.125`` vCPUs) and ``10240`` CPU units (``10`` vCPUs).\n The CPU units cannot be less than 1 vCPU when you use Windows containers on Fargate.\n + 256 (.25 vCPU) - Available ``memory`` values: 512 (0.5 GB), 1024 (1 GB), 2048 (2 GB)\n + 512 (.5 vCPU) - Available ``memory`` values: 1024 (1 GB), 2048 (2 GB), 3072 (3 GB), 4096 (4 GB)\n + 1024 (1 vCPU) - Available ``memory`` values: 2048 (2 GB), 3072 (3 GB), 4096 (4 GB), 5120 (5 GB), 6144 (6 GB), 7168 (7 GB), 8192 (8 GB)\n + 2048 (2 vCPU) - Available ``memory`` values: 4096 (4 GB) and 16384 (16 GB) in increments of 1024 (1 GB)\n + 4096 (4 vCPU) - Available ``memory`` values: 8192 (8 GB) and 30720 (30 GB) in increments of 1024 (1 GB)\n + 8192 (8 vCPU) - Available ``memory`` values: 16 GB and 60 GB in 4 GB increments\n This option requires Linux platform ``1.4.0`` or later.\n + 16384 (16vCPU) - Available ``memory`` values: 32GB and 120 GB in 8 GB increments\n This option requires Linux platform ``1.4.0`` or later."
},
+ "enableFaultInjection": {
+ "type": "boolean"
+ },
"ephemeralStorage": {
"$ref": "#/types/aws-native:ecs:TaskDefinitionEphemeralStorage",
"description": "The ephemeral storage settings to use for tasks run with the task definition."
@@ -228946,7 +229220,7 @@
},
"healthEventsConfig": {
"$ref": "#/types/aws-native:internetmonitor:MonitorHealthEventsConfig",
- "description": "A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.\n\nDefines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.\n\nYou can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.\n\nIf you don't set a health event threshold, the default value is 95%.\n\nFor local thresholds, you also set a minimum percentage of overall traffic that is impacted by an issue before Internet Monitor creates an event. In addition, you can disable local thresholds, for performance scores, availability scores, or both.\n\nFor more information, see [Change health event thresholds](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-IM-overview.html#IMUpdateThresholdFromOverview) in the Internet Monitor section of the *CloudWatch User Guide* ."
+ "description": "A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.\n\nDefines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.\n\nYou can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.\n\nIf you don't set a health event threshold, the default value is 95%.\n\nFor local thresholds, you also set a minimum percentage of overall traffic that is impacted by an issue before Internet Monitor creates an event. In addition, you can disable local thresholds, for performance scores, availability scores, or both.\n\nFor more information, see [Change health event thresholds](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-IM-overview.html#IMUpdateThresholdFromOverview) in the Internet Monitor section of the *CloudWatch User Guide* ."
},
"includeLinkedAccounts": {
"type": "boolean",
@@ -229034,7 +229308,7 @@
"inputProperties": {
"healthEventsConfig": {
"$ref": "#/types/aws-native:internetmonitor:MonitorHealthEventsConfig",
- "description": "A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.\n\nDefines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.\n\nYou can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.\n\nIf you don't set a health event threshold, the default value is 95%.\n\nFor local thresholds, you also set a minimum percentage of overall traffic that is impacted by an issue before Internet Monitor creates an event. In addition, you can disable local thresholds, for performance scores, availability scores, or both.\n\nFor more information, see [Change health event thresholds](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-IM-overview.html#IMUpdateThresholdFromOverview) in the Internet Monitor section of the *CloudWatch User Guide* ."
+ "description": "A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.\n\nDefines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.\n\nYou can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.\n\nIf you don't set a health event threshold, the default value is 95%.\n\nFor local thresholds, you also set a minimum percentage of overall traffic that is impacted by an issue before Internet Monitor creates an event. In addition, you can disable local thresholds, for performance scores, availability scores, or both.\n\nFor more information, see [Change health event thresholds](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-IM-overview.html#IMUpdateThresholdFromOverview) in the Internet Monitor section of the *CloudWatch User Guide* ."
},
"includeLinkedAccounts": {
"type": "boolean",
@@ -229098,33 +229372,41 @@
"description": "An invoice unit is a set of mutually exclusive accounts that correspond to your business entity. Invoice units allow you to separate AWS account costs and configures your invoice for each business entity.",
"properties": {
"description": {
- "type": "string"
+ "type": "string",
+ "description": "The assigned description for an invoice unit. This information can't be modified or deleted."
},
"invoiceReceiver": {
"type": "string",
+ "description": "The account that receives invoices related to the invoice unit.",
"replaceOnChanges": true
},
"invoiceUnitArn": {
- "type": "string"
+ "type": "string",
+ "description": "The ARN to identify an invoice unit. This information can't be modified or deleted."
},
"lastModified": {
- "type": "number"
+ "type": "number",
+ "description": "The last time the invoice unit was updated. This is important to determine the version of invoice unit configuration used to create the invoices. Any invoice created after this modified time will use this invoice unit configuration."
},
"name": {
"type": "string",
+ "description": "A unique name that is distinctive within your AWS .",
"replaceOnChanges": true
},
"resourceTags": {
"type": "array",
"items": {
"$ref": "#/types/aws-native:index:Tag"
- }
+ },
+ "description": "The tag structure that contains a tag key and value."
},
"rule": {
- "$ref": "#/types/aws-native:invoicing:InvoiceUnitRule"
+ "$ref": "#/types/aws-native:invoicing:InvoiceUnitRule",
+ "description": "An `InvoiceUnitRule` object used the categorize invoice units."
},
"taxInheritanceDisabled": {
- "type": "boolean"
+ "type": "boolean",
+ "description": "Whether the invoice unit based tax inheritance is/ should be enabled or disabled."
}
},
"type": "object",
@@ -229137,25 +229419,31 @@
],
"inputProperties": {
"description": {
- "type": "string"
+ "type": "string",
+ "description": "The assigned description for an invoice unit. This information can't be modified or deleted."
},
"invoiceReceiver": {
- "type": "string"
+ "type": "string",
+ "description": "The account that receives invoices related to the invoice unit."
},
"name": {
- "type": "string"
+ "type": "string",
+ "description": "A unique name that is distinctive within your AWS ."
},
"resourceTags": {
"type": "array",
"items": {
"$ref": "#/types/aws-native:index:Tag"
- }
+ },
+ "description": "The tag structure that contains a tag key and value."
},
"rule": {
- "$ref": "#/types/aws-native:invoicing:InvoiceUnitRule"
+ "$ref": "#/types/aws-native:invoicing:InvoiceUnitRule",
+ "description": "An `InvoiceUnitRule` object used the categorize invoice units."
},
"taxInheritanceDisabled": {
- "type": "boolean"
+ "type": "boolean",
+ "description": "Whether the invoice unit based tax inheritance is/ should be enabled or disabled."
}
},
"requiredInputs": [
@@ -229595,6 +229883,134 @@
"lambdaFunctionArn"
]
},
+ "aws-native:iot:Command": {
+ "description": "Represents the resource definition of AWS IoT Command.",
+ "properties": {
+ "commandArn": {
+ "type": "string",
+ "description": "The Amazon Resource Name (ARN) of the command."
+ },
+ "commandId": {
+ "type": "string",
+ "description": "The unique identifier for the command.",
+ "replaceOnChanges": true
+ },
+ "createdAt": {
+ "type": "string",
+ "description": "The date and time when the command was created."
+ },
+ "deprecated": {
+ "type": "boolean",
+ "description": "A flag indicating whether the command is deprecated."
+ },
+ "description": {
+ "type": "string",
+ "description": "The description of the command."
+ },
+ "displayName": {
+ "type": "string",
+ "description": "The display name for the command."
+ },
+ "lastUpdatedAt": {
+ "type": "string",
+ "description": "The date and time when the command was last updated."
+ },
+ "mandatoryParameters": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:iot:CommandParameter"
+ },
+ "description": "The list of mandatory parameters for the command."
+ },
+ "namespace": {
+ "$ref": "#/types/aws-native:iot:CommandNamespace",
+ "description": "The namespace to which the command belongs."
+ },
+ "payload": {
+ "$ref": "#/types/aws-native:iot:CommandPayload",
+ "description": "The payload associated with the command."
+ },
+ "pendingDeletion": {
+ "type": "boolean",
+ "description": "A flag indicating whether the command is pending deletion."
+ },
+ "roleArn": {
+ "type": "string",
+ "description": "The customer role associated with the command."
+ },
+ "tags": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:index:Tag"
+ },
+ "description": "The tags to be associated with the command."
+ }
+ },
+ "type": "object",
+ "required": [
+ "commandArn",
+ "commandId"
+ ],
+ "inputProperties": {
+ "commandId": {
+ "type": "string",
+ "description": "The unique identifier for the command."
+ },
+ "createdAt": {
+ "type": "string",
+ "description": "The date and time when the command was created."
+ },
+ "deprecated": {
+ "type": "boolean",
+ "description": "A flag indicating whether the command is deprecated."
+ },
+ "description": {
+ "type": "string",
+ "description": "The description of the command."
+ },
+ "displayName": {
+ "type": "string",
+ "description": "The display name for the command."
+ },
+ "lastUpdatedAt": {
+ "type": "string",
+ "description": "The date and time when the command was last updated."
+ },
+ "mandatoryParameters": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:iot:CommandParameter"
+ },
+ "description": "The list of mandatory parameters for the command."
+ },
+ "namespace": {
+ "$ref": "#/types/aws-native:iot:CommandNamespace",
+ "description": "The namespace to which the command belongs."
+ },
+ "payload": {
+ "$ref": "#/types/aws-native:iot:CommandPayload",
+ "description": "The payload associated with the command."
+ },
+ "pendingDeletion": {
+ "type": "boolean",
+ "description": "A flag indicating whether the command is pending deletion."
+ },
+ "roleArn": {
+ "type": "string",
+ "description": "The customer role associated with the command."
+ },
+ "tags": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:index:Tag"
+ },
+ "description": "The tags to be associated with the command."
+ }
+ },
+ "requiredInputs": [
+ "commandId"
+ ]
+ },
"aws-native:iot:CustomMetric": {
"description": "A custom metric published by your devices to Device Defender.\n\n{{% examples %}}\n## Example Usage\n{{% example %}}\n### Example\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing AwsNative = Pulumi.AwsNative;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var batteryPercentageMetric = new AwsNative.IoT.CustomMetric(\"batteryPercentageMetric\", new()\n {\n MetricName = \"batteryPercentage\",\n DisplayName = \"Remaining battery percentage\",\n MetricType = AwsNative.IoT.CustomMetricMetricType.Number,\n });\n\n});\n\n\n```\n\n```go\npackage main\n\nimport (\n\t\"github.com/pulumi/pulumi-aws-native/sdk/go/aws/iot\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\t_, err := iot.NewCustomMetric(ctx, \"batteryPercentageMetric\", \u0026iot.CustomMetricArgs{\n\t\t\tMetricName: pulumi.String(\"batteryPercentage\"),\n\t\t\tDisplayName: pulumi.String(\"Remaining battery percentage\"),\n\t\t\tMetricType: iot.CustomMetricMetricTypeNumber,\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n\n```\n\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as aws_native from \"@pulumi/aws-native\";\n\nconst batteryPercentageMetric = new aws_native.iot.CustomMetric(\"batteryPercentageMetric\", {\n metricName: \"batteryPercentage\",\n displayName: \"Remaining battery percentage\",\n metricType: aws_native.iot.CustomMetricMetricType.Number,\n});\n\n```\n\n```python\nimport pulumi\nimport pulumi_aws_native as aws_native\n\nbattery_percentage_metric = aws_native.iot.CustomMetric(\"batteryPercentageMetric\",\n metric_name=\"batteryPercentage\",\n display_name=\"Remaining battery percentage\",\n metric_type=aws_native.iot.CustomMetricMetricType.NUMBER)\n\n```\n\n{{% /example %}}\n{{% /examples %}}\n",
"properties": {
@@ -250453,7 +250869,7 @@
},
"type": {
"$ref": "#/types/aws-native:organizations:PolicyType",
- "description": "The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY",
+ "description": "The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY,DECLARATIVE_POLICY_EC2",
"replaceOnChanges": true
}
},
@@ -250495,7 +250911,7 @@
},
"type": {
"$ref": "#/types/aws-native:organizations:PolicyType",
- "description": "The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY"
+ "description": "The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY,DECLARATIVE_POLICY_EC2"
}
},
"requiredInputs": [
@@ -252191,6 +252607,7 @@
"items": {
"type": "string"
},
+ "description": "The OIDC client ID for a Amazon Q Business application.",
"replaceOnChanges": true
},
"createdAt": {
@@ -252283,7 +252700,8 @@
"type": "array",
"items": {
"type": "string"
- }
+ },
+ "description": "The OIDC client ID for a Amazon Q Business application."
},
"description": {
"type": "string",
@@ -254673,6 +255091,108 @@
"resourceType"
]
},
+ "aws-native:ram:ResourceShare": {
+ "description": "Resource type definition for AWS::RAM::ResourceShare\n\n{{% examples %}}\n## Example Usage\n{{% example %}}\n### Example\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing AwsNative = Pulumi.AwsNative;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var myresourceshare = new AwsNative.Ram.ResourceShare(\"myresourceshare\", new()\n {\n Name = \"My Resource Share\",\n ResourceArns = new[]\n {\n \"arn:aws:ec2:us-east-1:123456789012:resource-type/12345678-1234-1234-1234-12345678\",\n },\n Principals = new[]\n {\n \"210987654321\",\n },\n Tags = new[]\n {\n new AwsNative.Inputs.TagArgs\n {\n Key = \"Key1\",\n Value = \"Value1\",\n },\n new AwsNative.Inputs.TagArgs\n {\n Key = \"Key2\",\n Value = \"Value2\",\n },\n },\n });\n\n});\n\n\n```\n\n```go\npackage main\n\nimport (\n\tawsnative \"github.com/pulumi/pulumi-aws-native/sdk/go/aws\"\n\t\"github.com/pulumi/pulumi-aws-native/sdk/go/aws/ram\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\t_, err := ram.NewResourceShare(ctx, \"myresourceshare\", \u0026ram.ResourceShareArgs{\n\t\t\tName: pulumi.String(\"My Resource Share\"),\n\t\t\tResourceArns: pulumi.StringArray{\n\t\t\t\tpulumi.String(\"arn:aws:ec2:us-east-1:123456789012:resource-type/12345678-1234-1234-1234-12345678\"),\n\t\t\t},\n\t\t\tPrincipals: pulumi.StringArray{\n\t\t\t\tpulumi.String(\"210987654321\"),\n\t\t\t},\n\t\t\tTags: aws.TagArray{\n\t\t\t\t\u0026aws.TagArgs{\n\t\t\t\t\tKey: pulumi.String(\"Key1\"),\n\t\t\t\t\tValue: pulumi.String(\"Value1\"),\n\t\t\t\t},\n\t\t\t\t\u0026aws.TagArgs{\n\t\t\t\t\tKey: pulumi.String(\"Key2\"),\n\t\t\t\t\tValue: pulumi.String(\"Value2\"),\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n\n```\n\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as aws_native from \"@pulumi/aws-native\";\n\nconst myresourceshare = new aws_native.ram.ResourceShare(\"myresourceshare\", {\n name: \"My Resource Share\",\n resourceArns: [\"arn:aws:ec2:us-east-1:123456789012:resource-type/12345678-1234-1234-1234-12345678\"],\n principals: [\"210987654321\"],\n tags: [\n {\n key: \"Key1\",\n value: \"Value1\",\n },\n {\n key: \"Key2\",\n value: \"Value2\",\n },\n ],\n});\n\n```\n\n```python\nimport pulumi\nimport pulumi_aws_native as aws_native\n\nmyresourceshare = aws_native.ram.ResourceShare(\"myresourceshare\",\n name=\"My Resource Share\",\n resource_arns=[\"arn:aws:ec2:us-east-1:123456789012:resource-type/12345678-1234-1234-1234-12345678\"],\n principals=[\"210987654321\"],\n tags=[\n {\n \"key\": \"Key1\",\n \"value\": \"Value1\",\n },\n {\n \"key\": \"Key2\",\n \"value\": \"Value2\",\n },\n ])\n\n```\n\n{{% /example %}}\n{{% example %}}\n### Example\n```csharp\nusing System.Collections.Generic;\nusing System.Linq;\nusing Pulumi;\nusing AwsNative = Pulumi.AwsNative;\n\nreturn await Deployment.RunAsync(() =\u003e \n{\n var myresourceshare = new AwsNative.Ram.ResourceShare(\"myresourceshare\", new()\n {\n Name = \"My Resource Share\",\n ResourceArns = new[]\n {\n \"arn:aws:ec2:us-east-1:123456789012:resource-type/12345678-1234-1234-1234-12345678\",\n },\n Principals = new[]\n {\n \"210987654321\",\n },\n Tags = new[]\n {\n new AwsNative.Inputs.TagArgs\n {\n Key = \"Key1\",\n Value = \"Value1\",\n },\n new AwsNative.Inputs.TagArgs\n {\n Key = \"Key2\",\n Value = \"Value2\",\n },\n },\n });\n\n});\n\n\n```\n\n```go\npackage main\n\nimport (\n\tawsnative \"github.com/pulumi/pulumi-aws-native/sdk/go/aws\"\n\t\"github.com/pulumi/pulumi-aws-native/sdk/go/aws/ram\"\n\t\"github.com/pulumi/pulumi/sdk/v3/go/pulumi\"\n)\n\nfunc main() {\n\tpulumi.Run(func(ctx *pulumi.Context) error {\n\t\t_, err := ram.NewResourceShare(ctx, \"myresourceshare\", \u0026ram.ResourceShareArgs{\n\t\t\tName: pulumi.String(\"My Resource Share\"),\n\t\t\tResourceArns: pulumi.StringArray{\n\t\t\t\tpulumi.String(\"arn:aws:ec2:us-east-1:123456789012:resource-type/12345678-1234-1234-1234-12345678\"),\n\t\t\t},\n\t\t\tPrincipals: pulumi.StringArray{\n\t\t\t\tpulumi.String(\"210987654321\"),\n\t\t\t},\n\t\t\tTags: aws.TagArray{\n\t\t\t\t\u0026aws.TagArgs{\n\t\t\t\t\tKey: pulumi.String(\"Key1\"),\n\t\t\t\t\tValue: pulumi.String(\"Value1\"),\n\t\t\t\t},\n\t\t\t\t\u0026aws.TagArgs{\n\t\t\t\t\tKey: pulumi.String(\"Key2\"),\n\t\t\t\t\tValue: pulumi.String(\"Value2\"),\n\t\t\t\t},\n\t\t\t},\n\t\t})\n\t\tif err != nil {\n\t\t\treturn err\n\t\t}\n\t\treturn nil\n\t})\n}\n\n```\n\n```typescript\nimport * as pulumi from \"@pulumi/pulumi\";\nimport * as aws_native from \"@pulumi/aws-native\";\n\nconst myresourceshare = new aws_native.ram.ResourceShare(\"myresourceshare\", {\n name: \"My Resource Share\",\n resourceArns: [\"arn:aws:ec2:us-east-1:123456789012:resource-type/12345678-1234-1234-1234-12345678\"],\n principals: [\"210987654321\"],\n tags: [\n {\n key: \"Key1\",\n value: \"Value1\",\n },\n {\n key: \"Key2\",\n value: \"Value2\",\n },\n ],\n});\n\n```\n\n```python\nimport pulumi\nimport pulumi_aws_native as aws_native\n\nmyresourceshare = aws_native.ram.ResourceShare(\"myresourceshare\",\n name=\"My Resource Share\",\n resource_arns=[\"arn:aws:ec2:us-east-1:123456789012:resource-type/12345678-1234-1234-1234-12345678\"],\n principals=[\"210987654321\"],\n tags=[\n {\n \"key\": \"Key1\",\n \"value\": \"Value1\",\n },\n {\n \"key\": \"Key2\",\n \"value\": \"Value2\",\n },\n ])\n\n```\n\n{{% /example %}}\n{{% /examples %}}\n",
+ "properties": {
+ "allowExternalPrincipals": {
+ "type": "boolean",
+ "description": "Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`."
+ },
+ "arn": {
+ "type": "string",
+ "description": "The Amazon Resource Name (ARN) of the resource share."
+ },
+ "name": {
+ "type": "string",
+ "description": "Specifies the name of the resource share."
+ },
+ "permissionArns": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies the [Amazon Resource Names (ARNs)](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) of the AWS RAM permission to associate with the resource share. If you do not specify an ARN for the permission, AWS RAM automatically attaches the default version of the permission for each resource type. You can associate only one permission with each resource type included in the resource share."
+ },
+ "principals": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies the principals to associate with the resource share. The possible values are:\n\n- An AWS account ID\n\n- An Amazon Resource Name (ARN) of an organization in AWS Organizations\n\n- An ARN of an organizational unit (OU) in AWS Organizations\n\n- An ARN of an IAM role\n\n- An ARN of an IAM user"
+ },
+ "resourceArns": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies a list of one or more ARNs of the resources to associate with the resource share."
+ },
+ "sources": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies from which source accounts the service principal has access to the resources in this resource share."
+ },
+ "tags": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:index:Tag"
+ },
+ "description": "Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share."
+ }
+ },
+ "type": "object",
+ "required": [
+ "arn",
+ "name"
+ ],
+ "inputProperties": {
+ "allowExternalPrincipals": {
+ "type": "boolean",
+ "description": "Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`."
+ },
+ "name": {
+ "type": "string",
+ "description": "Specifies the name of the resource share."
+ },
+ "permissionArns": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies the [Amazon Resource Names (ARNs)](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) of the AWS RAM permission to associate with the resource share. If you do not specify an ARN for the permission, AWS RAM automatically attaches the default version of the permission for each resource type. You can associate only one permission with each resource type included in the resource share."
+ },
+ "principals": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies the principals to associate with the resource share. The possible values are:\n\n- An AWS account ID\n\n- An Amazon Resource Name (ARN) of an organization in AWS Organizations\n\n- An ARN of an organizational unit (OU) in AWS Organizations\n\n- An ARN of an IAM role\n\n- An ARN of an IAM user"
+ },
+ "resourceArns": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies a list of one or more ARNs of the resources to associate with the resource share."
+ },
+ "sources": {
+ "type": "array",
+ "items": {
+ "type": "string"
+ },
+ "description": "Specifies from which source accounts the service principal has access to the resources in this resource share."
+ },
+ "tags": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:index:Tag"
+ },
+ "description": "Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share."
+ }
+ }
+ },
"aws-native:rbin:Rule": {
"description": "Resource Type definition for AWS::Rbin::Rule",
"properties": {
@@ -254788,16 +255308,16 @@
]
},
"aws-native:rds:CustomDbEngineVersion": {
- "description": "The AWS::RDS::CustomDBEngineVersion resource creates an Amazon RDS custom DB engine version.",
+ "description": "Creates a custom DB engine version (CEV).",
"properties": {
"databaseInstallationFilesS3BucketName": {
"type": "string",
- "description": "The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is `my-custom-installation-files`.",
+ "description": "The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is ``my-custom-installation-files``.",
"replaceOnChanges": true
},
"databaseInstallationFilesS3Prefix": {
"type": "string",
- "description": "The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is `123456789012/cev1`. If this setting isn't specified, no prefix is assumed.",
+ "description": "The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is ``123456789012/cev1``. If this setting isn't specified, no prefix is assumed.",
"replaceOnChanges": true
},
"dbEngineVersionArn": {
@@ -254810,48 +255330,48 @@
},
"engine": {
"type": "string",
- "description": "The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`.",
+ "description": "The database engine to use for your custom engine version (CEV).\n Valid values:\n + ``custom-oracle-ee`` \n + ``custom-oracle-ee-cdb``",
"replaceOnChanges": true
},
"engineVersion": {
"type": "string",
- "description": "The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region.",
+ "description": "The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.\n *Constraints:* Minimum length is 1. Maximum length is 60.\n *Pattern:* ``^[a-z0-9_.-]{1,60$``}",
"replaceOnChanges": true
},
"imageId": {
"type": "string",
- "description": "The identifier of Amazon Machine Image (AMI) used for CEV.",
+ "description": "A value that indicates the ID of the AMI.",
"replaceOnChanges": true
},
"kmsKeyId": {
"type": "string",
- "description": "The AWS KMS key identifier for an encrypted CEV. A symmetric KMS key is required for RDS Custom, but optional for Amazon RDS.",
+ "description": "The AWS KMS key identifier for an encrypted CEV. A symmetric encryption KMS key is required for RDS Custom, but optional for Amazon RDS.\n If you have an existing symmetric encryption KMS key in your account, you can use it with RDS Custom. No further action is necessary. If you don't already have a symmetric encryption KMS key in your account, follow the instructions in [Creating a symmetric encryption KMS key](https://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html#create-symmetric-cmk) in the *Key Management Service Developer Guide*.\n You can choose the same symmetric encryption key when you create a CEV and a DB instance, or choose different keys.",
"replaceOnChanges": true
},
"manifest": {
"type": "string",
- "description": "The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.",
+ "description": "The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.\n The following JSON fields are valid:\n + MediaImportTemplateVersion Version of the CEV manifest. The date is in the format YYYY-MM-DD. + databaseInstallationFileNames Ordered list of installation files for the CEV. + opatchFileNames Ordered list of OPatch installers used for the Oracle DB engine. + psuRuPatchFileNames The PSU and RU patches for this CEV. + OtherPatchFileNames The patches that are not in the list of PSU and RU patches. Amazon RDS applies these patches after applying the PSU and RU patches. \n For more information, see [Creating the CEV manifest](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/custom-cev.html#custom-cev.preparing.manifest) in the *Amazon RDS User Guide*.",
"replaceOnChanges": true
},
"sourceCustomDbEngineVersionIdentifier": {
"type": "string",
- "description": "The identifier of the source custom engine version.",
+ "description": "The ARN of a CEV to use as a source for creating a new CEV. You can specify a different Amazon Machine Imagine (AMI) by using either ``Source`` or ``UseAwsProvidedLatestImage``. You can't specify a different JSON manifest when you specify ``SourceCustomDbEngineVersionIdentifier``.",
"replaceOnChanges": true
},
"status": {
"$ref": "#/types/aws-native:rds:CustomDbEngineVersionStatus",
- "description": "The availability status to be assigned to the CEV."
+ "description": "A value that indicates the status of a custom engine version (CEV)."
},
"tags": {
"type": "array",
"items": {
"$ref": "#/types/aws-native:index:Tag"
},
- "description": "An array of key-value pairs to apply to this resource."
+ "description": "A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*"
},
"useAwsProvidedLatestImage": {
"type": "boolean",
- "description": "A value that indicates whether AWS provided latest image is applied automatically to the Custom Engine Version. By default, AWS provided latest image is applied automatically. This value is only applied on create.",
+ "description": "Specifies whether to use the latest service-provided Amazon Machine Image (AMI) for the CEV. If you specify ``UseAwsProvidedLatestImage``, you can't also specify ``ImageId``.",
"replaceOnChanges": true
}
},
@@ -254864,11 +255384,11 @@
"inputProperties": {
"databaseInstallationFilesS3BucketName": {
"type": "string",
- "description": "The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is `my-custom-installation-files`."
+ "description": "The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is ``my-custom-installation-files``."
},
"databaseInstallationFilesS3Prefix": {
"type": "string",
- "description": "The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is `123456789012/cev1`. If this setting isn't specified, no prefix is assumed."
+ "description": "The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is ``123456789012/cev1``. If this setting isn't specified, no prefix is assumed."
},
"description": {
"type": "string",
@@ -254876,42 +255396,42 @@
},
"engine": {
"type": "string",
- "description": "The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`."
+ "description": "The database engine to use for your custom engine version (CEV).\n Valid values:\n + ``custom-oracle-ee`` \n + ``custom-oracle-ee-cdb``"
},
"engineVersion": {
"type": "string",
- "description": "The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region."
+ "description": "The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.\n *Constraints:* Minimum length is 1. Maximum length is 60.\n *Pattern:* ``^[a-z0-9_.-]{1,60$``}"
},
"imageId": {
"type": "string",
- "description": "The identifier of Amazon Machine Image (AMI) used for CEV."
+ "description": "A value that indicates the ID of the AMI."
},
"kmsKeyId": {
"type": "string",
- "description": "The AWS KMS key identifier for an encrypted CEV. A symmetric KMS key is required for RDS Custom, but optional for Amazon RDS."
+ "description": "The AWS KMS key identifier for an encrypted CEV. A symmetric encryption KMS key is required for RDS Custom, but optional for Amazon RDS.\n If you have an existing symmetric encryption KMS key in your account, you can use it with RDS Custom. No further action is necessary. If you don't already have a symmetric encryption KMS key in your account, follow the instructions in [Creating a symmetric encryption KMS key](https://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html#create-symmetric-cmk) in the *Key Management Service Developer Guide*.\n You can choose the same symmetric encryption key when you create a CEV and a DB instance, or choose different keys."
},
"manifest": {
"type": "string",
- "description": "The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed."
+ "description": "The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.\n The following JSON fields are valid:\n + MediaImportTemplateVersion Version of the CEV manifest. The date is in the format YYYY-MM-DD. + databaseInstallationFileNames Ordered list of installation files for the CEV. + opatchFileNames Ordered list of OPatch installers used for the Oracle DB engine. + psuRuPatchFileNames The PSU and RU patches for this CEV. + OtherPatchFileNames The patches that are not in the list of PSU and RU patches. Amazon RDS applies these patches after applying the PSU and RU patches. \n For more information, see [Creating the CEV manifest](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/custom-cev.html#custom-cev.preparing.manifest) in the *Amazon RDS User Guide*."
},
"sourceCustomDbEngineVersionIdentifier": {
"type": "string",
- "description": "The identifier of the source custom engine version."
+ "description": "The ARN of a CEV to use as a source for creating a new CEV. You can specify a different Amazon Machine Imagine (AMI) by using either ``Source`` or ``UseAwsProvidedLatestImage``. You can't specify a different JSON manifest when you specify ``SourceCustomDbEngineVersionIdentifier``."
},
"status": {
"$ref": "#/types/aws-native:rds:CustomDbEngineVersionStatus",
- "description": "The availability status to be assigned to the CEV."
+ "description": "A value that indicates the status of a custom engine version (CEV)."
},
"tags": {
"type": "array",
"items": {
"$ref": "#/types/aws-native:index:Tag"
},
- "description": "An array of key-value pairs to apply to this resource."
+ "description": "A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*"
},
"useAwsProvidedLatestImage": {
"type": "boolean",
- "description": "A value that indicates whether AWS provided latest image is applied automatically to the Custom Engine Version. By default, AWS provided latest image is applied automatically. This value is only applied on create."
+ "description": "Specifies whether to use the latest service-provided Amazon Machine Image (AMI) for the CEV. If you specify ``UseAwsProvidedLatestImage``, you can't also specify ``ImageId``."
}
},
"requiredInputs": [
@@ -258460,6 +258980,10 @@
"type": "integer",
"description": "The custom port to use when connecting to a workgroup. Valid port ranges are 5431-5455 and 8191-8215. The default is 5439."
},
+ "pricePerformanceTarget": {
+ "$ref": "#/types/aws-native:redshiftserverless:WorkgroupPerformanceTarget",
+ "description": "A property that represents the price performance target settings for the workgroup."
+ },
"publiclyAccessible": {
"type": "boolean",
"description": "A value that specifies whether the workgroup can be accessible from a public network."
@@ -258533,6 +259057,10 @@
"type": "integer",
"description": "The custom port to use when connecting to a workgroup. Valid port ranges are 5431-5455 and 8191-8215. The default is 5439."
},
+ "pricePerformanceTarget": {
+ "$ref": "#/types/aws-native:redshiftserverless:WorkgroupPerformanceTarget",
+ "description": "A property that represents the price performance target settings for the workgroup."
+ },
"publiclyAccessible": {
"type": "boolean",
"description": "A value that specifies whether the workgroup can be accessible from a public network."
@@ -262382,6 +262910,9 @@
"$ref": "#/types/aws-native:s3:BucketLoggingConfiguration",
"description": "Settings that define where logs are stored."
},
+ "metadataTableConfiguration": {
+ "$ref": "#/types/aws-native:s3:BucketMetadataTableConfiguration"
+ },
"metricsConfigurations": {
"type": "array",
"items": {
@@ -262495,6 +263026,9 @@
"$ref": "#/types/aws-native:s3:BucketLoggingConfiguration",
"description": "Settings that define where logs are stored."
},
+ "metadataTableConfiguration": {
+ "$ref": "#/types/aws-native:s3:BucketMetadataTableConfiguration"
+ },
"metricsConfigurations": {
"type": "array",
"items": {
@@ -262800,7 +263334,7 @@
},
"availabilityZoneName": {
"type": "string",
- "description": "Returns the code for the Availability Zone where the directory bucket was created."
+ "description": "Returns the code for the Availability Zone or Local Zone where the directory bucket was created. An example for the code of an Availability Zone is 'us-east-1f'."
},
"bucketEncryption": {
"$ref": "#/types/aws-native:s3express:DirectoryBucketBucketEncryption",
@@ -262808,12 +263342,12 @@
},
"bucketName": {
"type": "string",
- "description": "Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.",
+ "description": "Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.",
"replaceOnChanges": true
},
"dataRedundancy": {
"$ref": "#/types/aws-native:s3express:DirectoryBucketDataRedundancy",
- "description": "Specifies the number of Availability Zone that's used for redundancy for the bucket.",
+ "description": "Specifies the number of Availability Zone or Local Zone that's used for redundancy for the bucket.",
"replaceOnChanges": true
},
"lifecycleConfiguration": {
@@ -262822,7 +263356,7 @@
},
"locationName": {
"type": "string",
- "description": "Specifies the AZ ID of the Availability Zone where the directory bucket will be created. An example AZ ID value is 'use1-az5'.",
+ "description": "Specifies the Zone ID of the Availability Zone or Local Zone where the directory bucket will be created. An example Availability Zone ID value is 'use1-az5'.",
"replaceOnChanges": true
}
},
@@ -262840,11 +263374,11 @@
},
"bucketName": {
"type": "string",
- "description": "Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name."
+ "description": "Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name."
},
"dataRedundancy": {
"$ref": "#/types/aws-native:s3express:DirectoryBucketDataRedundancy",
- "description": "Specifies the number of Availability Zone that's used for redundancy for the bucket."
+ "description": "Specifies the number of Availability Zone or Local Zone that's used for redundancy for the bucket."
},
"lifecycleConfiguration": {
"$ref": "#/types/aws-native:s3express:DirectoryBucketLifecycleConfiguration",
@@ -262852,7 +263386,7 @@
},
"locationName": {
"type": "string",
- "description": "Specifies the AZ ID of the Availability Zone where the directory bucket will be created. An example AZ ID value is 'use1-az5'."
+ "description": "Specifies the Zone ID of the Availability Zone or Local Zone where the directory bucket will be created. An example Availability Zone ID value is 'use1-az5'."
}
},
"requiredInputs": [
@@ -263201,6 +263735,63 @@
"subnetId"
]
},
+ "aws-native:s3tables:TableBucket": {
+ "description": "Creates an Amazon S3 Tables table bucket in the same AWS Region where you create the AWS CloudFormation stack.",
+ "properties": {
+ "tableBucketArn": {
+ "type": "string"
+ },
+ "tableBucketName": {
+ "type": "string",
+ "replaceOnChanges": true
+ },
+ "unreferencedFileRemoval": {
+ "$ref": "#/types/aws-native:s3tables:TableBucketUnreferencedFileRemoval"
+ }
+ },
+ "type": "object",
+ "required": [
+ "tableBucketArn",
+ "tableBucketName"
+ ],
+ "inputProperties": {
+ "tableBucketName": {
+ "type": "string"
+ },
+ "unreferencedFileRemoval": {
+ "$ref": "#/types/aws-native:s3tables:TableBucketUnreferencedFileRemoval"
+ }
+ }
+ },
+ "aws-native:s3tables:TableBucketPolicy": {
+ "description": "Applies an IAM resource policy to a table bucket.",
+ "properties": {
+ "resourcePolicy": {
+ "$ref": "#/types/aws-native:s3tables:TableBucketPolicyResourcePolicy"
+ },
+ "tableBucketArn": {
+ "type": "string",
+ "replaceOnChanges": true
+ }
+ },
+ "type": "object",
+ "required": [
+ "resourcePolicy",
+ "tableBucketArn"
+ ],
+ "inputProperties": {
+ "resourcePolicy": {
+ "$ref": "#/types/aws-native:s3tables:TableBucketPolicyResourcePolicy"
+ },
+ "tableBucketArn": {
+ "type": "string"
+ }
+ },
+ "requiredInputs": [
+ "resourcePolicy",
+ "tableBucketArn"
+ ]
+ },
"aws-native:sagemaker:App": {
"description": "Resource Type definition for AWS::SageMaker::App",
"properties": {
@@ -278634,10 +279225,6 @@
"type": "string",
"description": "The domain name ID."
},
- "managementPolicy": {
- "$ref": "pulumi.json#/Any",
- "description": "Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property."
- },
"policy": {
"$ref": "pulumi.json#/Any",
"description": "A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .\n\nSearch the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property."
@@ -287479,7 +288066,7 @@
},
"useCognitoProvidedValues": {
"type": "boolean",
- "description": "When true, applies the default branding style options. This option reverts to a \"blank\" style that you can modify later in the branding designer."
+ "description": "When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.\n\nWhen you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request."
}
}
}
@@ -287512,7 +288099,7 @@
"items": {
"type": "string"
},
- "description": "Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* ."
+ "description": "Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* . For more information about alias attributes, see [Customizing sign-in attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-aliases) ."
},
"arn": {
"type": "string",
@@ -287523,7 +288110,7 @@
"items": {
"type": "string"
},
- "description": "The attributes to be auto-verified. Possible values: *email* , *phone_number* ."
+ "description": "The attributes that you want your user pool to automatically verify. Possible values: *email* , *phone_number* . For more information see [Verifying contact information at sign-up](https://docs.aws.amazon.com/cognito/latest/developerguide/signing-up-users-in-your-app.html#allowing-users-to-sign-up-and-confirm-themselves) ."
},
"deletionProtection": {
"type": "string",
@@ -287531,7 +288118,7 @@
},
"deviceConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolDeviceConfiguration",
- "description": "The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool.\n\n\u003e When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature."
+ "description": "The device-remembering configuration for a user pool. Device remembering or device tracking is a \"Remember me on this device\" option for user pools that perform authentication with the device key of a trusted device in the back end, instead of a user-provided MFA code. For more information about device authentication, see [Working with user devices in your user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-device-tracking.html) . A null value indicates that you have deactivated device remembering in your user pool.\n\n\u003e When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature. For more infor"
},
"emailAuthenticationMessage": {
"type": "string"
@@ -287576,7 +288163,7 @@
"items": {
"$ref": "#/types/aws-native:cognito:UserPoolSchemaAttribute"
},
- "description": "An array of schema attributes for the new user pool. These attributes can be standard or custom attributes."
+ "description": "An array of attributes for the new user pool. You can add custom attributes and modify the properties of default attributes. The specifications in this parameter set the required attributes in your user pool. For more information, see [Working with user attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html) ."
},
"smsAuthenticationMessage": {
"type": "string",
@@ -287584,7 +288171,7 @@
},
"smsConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolSmsConfiguration",
- "description": "The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account ."
+ "description": "The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account . For more information see [SMS message settings](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-sms-settings.html) ."
},
"smsVerificationMessage": {
"type": "string",
@@ -287604,7 +288191,7 @@
},
"userPoolName": {
"type": "string",
- "description": "A string used to name the user pool."
+ "description": "A friendlhy name for your user pool."
},
"userPoolTags": {
"type": "object",
@@ -287626,17 +288213,19 @@
},
"usernameConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolUsernameConfiguration",
- "description": "Case sensitivity on the username input for the selected sign-in option. When case sensitivity is set to `False` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `False` (case insensitive) as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.\n\nThis configuration is immutable after you set it. For more information, see [UsernameConfigurationType](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UsernameConfigurationType.html) ."
+ "description": "Sets the case sensitivity option for sign-in usernames. When `CaseSensitive` is `false` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `false` as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.\n\nWhen `CaseSensitive` is `true` (case sensitive), Amazon Cognito interprets `USERNAME` and `UserName` as distinct users.\n\nThis configuration is immutable after you set it."
},
"verificationMessageTemplate": {
"$ref": "#/types/aws-native:cognito:UserPoolVerificationMessageTemplate",
"description": "The template for the verification message that your user pool delivers to users who set an email address or phone number attribute.\n\nSet the email message type that corresponds to your `DefaultEmailOption` selection. For `CONFIRM_WITH_LINK` , specify an `EmailMessageByLink` and leave `EmailMessage` blank. For `CONFIRM_WITH_CODE` , specify an `EmailMessage` and leave `EmailMessageByLink` blank. When you supply both parameters with either choice, Amazon Cognito returns an error."
},
"webAuthnRelyingPartyId": {
- "type": "string"
+ "type": "string",
+ "description": "Sets or displays the authentication domain, typically your user pool domain, that passkey providers must use as a relying party (RP) in their configuration.\n\nUnder the following conditions, the passkey relying party ID must be the fully-qualified domain name of your custom domain:\n\n- The user pool is configured for passkey authentication.\n- The user pool has a custom domain, whether or not it also has a prefix domain.\n- Your application performs authentication with managed login or the classic hosted UI."
},
"webAuthnUserVerification": {
- "type": "string"
+ "type": "string",
+ "description": "When `required` , users can only register and sign in users with passkeys that are capable of [user verification](https://docs.aws.amazon.com/https://www.w3.org/TR/webauthn-2/#enum-userVerificationRequirement) . When `preferred` , your user pool doesn't require the use of authenticators with user verification but encourages it."
}
}
}
@@ -287651,7 +288240,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool where you want to create a user pool client."
+ "description": "The ID of the user pool where you want to create an app client."
}
},
"required": [
@@ -287681,11 +288270,11 @@
"items": {
"type": "string"
},
- "description": "The allowed OAuth scopes. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported."
+ "description": "The OAuth 2.0 scopes that you want to permit your app client to authorize. Scopes govern access control to user pool self-service API operations, user data from the `userInfo` endpoint, and third-party APIs. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported."
},
"analyticsConfiguration": {
"$ref": "#/types/aws-native:cognito:UserPoolClientAnalyticsConfiguration",
- "description": "The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.\n\n\u003e In AWS Regions where Amazon Pinpoint isn't available, user pools only support sending events to Amazon Pinpoint projects in AWS Region us-east-1. In Regions where Amazon Pinpoint is available, user pools support sending events to Amazon Pinpoint projects within that same Region."
+ "description": "The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.\n\nIn AWS Regions where Amazon Pinpoint isn't available, user pools might not have access to analytics or might be configurable with campaigns in the US East (N. Virginia) Region. For more information, see [Using Amazon Pinpoint analytics](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-pinpoint-integration.html) ."
},
"authSessionValidity": {
"type": "integer",
@@ -287696,7 +288285,7 @@
"items": {
"type": "string"
},
- "description": "A list of allowed redirect (callback) URLs for the IdPs.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server.\n- Not include a fragment component.\n\nSee [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
+ "description": "A list of allowed redirect (callback) URLs for the IdPs.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server. Amazon Cognito doesn't accept authorization requests with `redirect_uri` values that aren't in the list of `CallbackURLs` that you provide in this parameter.\n- Not include a fragment component.\n\nSee [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
},
"clientId": {
"type": "string",
@@ -287704,14 +288293,14 @@
},
"clientName": {
"type": "string",
- "description": "The client name for the user pool client you would like to create."
+ "description": "A friendly name for the app client that you want to create."
},
"clientSecret": {
"type": "string"
},
"defaultRedirectUri": {
"type": "string",
- "description": "The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list.\n\nA redirect URI must:\n\n- Be an absolute URI.\n- Be registered with the authorization server.\n- Not include a fragment component.\n\nFor more information, see [Default redirect URI](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#cognito-user-pools-app-idp-settings-about) .\n\nAmazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.\n\nApp callback URLs such as myapp://example are also supported."
+ "description": "The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list."
},
"enablePropagateAdditionalUserContextData": {
"type": "boolean",
@@ -287737,7 +288326,7 @@
"items": {
"type": "string"
},
- "description": "A list of allowed logout URLs for the IdPs."
+ "description": "A list of allowed logout URLs for managed login authentication. For more information, see [Logout endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/logout-endpoint.html) ."
},
"name": {
"type": "string"
@@ -287762,11 +288351,11 @@
"items": {
"type": "string"
},
- "description": "A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .\n\nThis setting applies to providers that you can access with the [hosted UI and OAuth 2.0 authorization server](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-app-integration.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) ."
+ "description": "A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .\n\nThis setting applies to providers that you can access with [managed login](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managed-login.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) ."
},
"tokenValidityUnits": {
"$ref": "#/types/aws-native:cognito:UserPoolClientTokenValidityUnits",
- "description": "The units in which the validity times are represented. The default unit for RefreshToken is days, and default for ID and access tokens are hours."
+ "description": "The units that validity times are represented in. The default unit for refresh tokens is days, and the default for ID and access tokens are hours."
},
"writeAttributes": {
"type": "array",
@@ -287818,11 +288407,11 @@
"properties": {
"groupName": {
"type": "string",
- "description": "The name of the group. Must be unique."
+ "description": "A name for the group. This name must be unique in your user pool."
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool."
+ "description": "The ID of the user pool where you want to create a user group."
}
},
"required": [
@@ -287834,7 +288423,7 @@
"properties": {
"description": {
"type": "string",
- "description": "A string containing the description of the group."
+ "description": "A description of the group that you're creating."
},
"precedence": {
"type": "integer",
@@ -287842,7 +288431,7 @@
},
"roleArn": {
"type": "string",
- "description": "The role Amazon Resource Name (ARN) for the group."
+ "description": "The Amazon Resource Name (ARN) for the IAM role that you want to associate with the group. A group role primarily declares a preferred role for the credentials that you get from an identity pool. Amazon Cognito ID tokens have a `cognito:preferred_role` claim that presents the highest-precedence group that a user belongs to. Both ID and access tokens also contain a `cognito:groups` claim that list all the groups that a user is a member of."
}
}
}
@@ -287853,11 +288442,11 @@
"properties": {
"providerName": {
"type": "string",
- "description": "The IdP name."
+ "description": "The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP."
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID."
+ "description": "The Id of the user pool where you want to create an IdP."
}
},
"required": [
@@ -287872,14 +288461,14 @@
"additionalProperties": {
"type": "string"
},
- "description": "A mapping of IdP attributes to standard and custom user pool attributes."
+ "description": "A mapping of IdP attributes to standard and custom user pool attributes. Specify a user pool attribute as the key of the key-value pair, and the IdP attribute claim name as the value."
},
"idpIdentifiers": {
"type": "array",
"items": {
"type": "string"
},
- "description": "A list of IdP identifiers."
+ "description": "An array of IdP identifiers, for example `\"IdPIdentifiers\": [ \"MyIdP\", \"MyIdP2\" ]` . Identifiers are friendly names that you can pass in the `idp_identifier` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP. Identifiers in a domain format also enable the use of [email-address matching with SAML providers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managing-saml-idp-naming.html) ."
},
"providerDetails": {
"type": "object",
@@ -287901,7 +288490,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool."
+ "description": "The ID of the user pool where you want to create a resource server."
}
},
"required": [
@@ -287970,7 +288559,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool."
+ "description": "The ID of the user pool."
}
},
"required": [
@@ -289268,6 +289857,10 @@
"type": "string",
"description": "The name of the task template."
},
+ "selfAssignContactFlowArn": {
+ "type": "string",
+ "description": "The identifier of the contact flow."
+ },
"status": {
"$ref": "#/types/aws-native:connect:TaskTemplateStatus",
"description": "The status of the task template."
@@ -303762,7 +304355,7 @@
},
"healthEventsConfig": {
"$ref": "#/types/aws-native:internetmonitor:MonitorHealthEventsConfig",
- "description": "A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.\n\nDefines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.\n\nYou can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.\n\nIf you don't set a health event threshold, the default value is 95%.\n\nFor local thresholds, you also set a minimum percentage of overall traffic that is impacted by an issue before Internet Monitor creates an event. In addition, you can disable local thresholds, for performance scores, availability scores, or both.\n\nFor more information, see [Change health event thresholds](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-IM-overview.html#IMUpdateThresholdFromOverview) in the Internet Monitor section of the *CloudWatch User Guide* ."
+ "description": "A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.\n\nDefines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.\n\nYou can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.\n\nIf you don't set a health event threshold, the default value is 95%.\n\nFor local thresholds, you also set a minimum percentage of overall traffic that is impacted by an issue before Internet Monitor creates an event. In addition, you can disable local thresholds, for performance scores, availability scores, or both.\n\nFor more information, see [Change health event thresholds](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-IM-overview.html#IMUpdateThresholdFromOverview) in the Internet Monitor section of the *CloudWatch User Guide* ."
},
"internetMeasurementsLogDelivery": {
"$ref": "#/types/aws-native:internetmonitor:MonitorInternetMeasurementsLogDelivery",
@@ -303818,7 +304411,8 @@
"inputs": {
"properties": {
"invoiceUnitArn": {
- "type": "string"
+ "type": "string",
+ "description": "The ARN to identify an invoice unit. This information can't be modified or deleted."
}
},
"required": [
@@ -303828,25 +304422,31 @@
"outputs": {
"properties": {
"description": {
- "type": "string"
+ "type": "string",
+ "description": "The assigned description for an invoice unit. This information can't be modified or deleted."
},
"invoiceUnitArn": {
- "type": "string"
+ "type": "string",
+ "description": "The ARN to identify an invoice unit. This information can't be modified or deleted."
},
"lastModified": {
- "type": "number"
+ "type": "number",
+ "description": "The last time the invoice unit was updated. This is important to determine the version of invoice unit configuration used to create the invoices. Any invoice created after this modified time will use this invoice unit configuration."
},
"resourceTags": {
"type": "array",
"items": {
"$ref": "#/types/aws-native:index:Tag"
- }
+ },
+ "description": "The tag structure that contains a tag key and value."
},
"rule": {
- "$ref": "#/types/aws-native:invoicing:InvoiceUnitRule"
+ "$ref": "#/types/aws-native:invoicing:InvoiceUnitRule",
+ "description": "An `InvoiceUnitRule` object used the categorize invoice units."
},
"taxInheritanceDisabled": {
- "type": "boolean"
+ "type": "boolean",
+ "description": "Whether the invoice unit based tax inheritance is/ should be enabled or disabled."
}
}
}
@@ -304085,6 +304685,74 @@
}
}
},
+ "aws-native:iot:getCommand": {
+ "description": "Represents the resource definition of AWS IoT Command.",
+ "inputs": {
+ "properties": {
+ "commandId": {
+ "type": "string",
+ "description": "The unique identifier for the command."
+ }
+ },
+ "required": [
+ "commandId"
+ ]
+ },
+ "outputs": {
+ "properties": {
+ "commandArn": {
+ "type": "string",
+ "description": "The Amazon Resource Name (ARN) of the command."
+ },
+ "createdAt": {
+ "type": "string",
+ "description": "The date and time when the command was created."
+ },
+ "deprecated": {
+ "type": "boolean",
+ "description": "A flag indicating whether the command is deprecated."
+ },
+ "description": {
+ "type": "string",
+ "description": "The description of the command."
+ },
+ "displayName": {
+ "type": "string",
+ "description": "The display name for the command."
+ },
+ "mandatoryParameters": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:iot:CommandParameter"
+ },
+ "description": "The list of mandatory parameters for the command."
+ },
+ "namespace": {
+ "$ref": "#/types/aws-native:iot:CommandNamespace",
+ "description": "The namespace to which the command belongs."
+ },
+ "payload": {
+ "$ref": "#/types/aws-native:iot:CommandPayload",
+ "description": "The payload associated with the command."
+ },
+ "pendingDeletion": {
+ "type": "boolean",
+ "description": "A flag indicating whether the command is pending deletion."
+ },
+ "roleArn": {
+ "type": "string",
+ "description": "The customer role associated with the command."
+ },
+ "tags": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:index:Tag"
+ },
+ "description": "The tags to be associated with the command."
+ }
+ }
+ }
+ },
"aws-native:iot:getCustomMetric": {
"description": "A custom metric published by your devices to Device Defender.",
"inputs": {
@@ -317352,6 +318020,43 @@
}
}
},
+ "aws-native:ram:getResourceShare": {
+ "description": "Resource type definition for AWS::RAM::ResourceShare",
+ "inputs": {
+ "properties": {
+ "arn": {
+ "type": "string",
+ "description": "The Amazon Resource Name (ARN) of the resource share."
+ }
+ },
+ "required": [
+ "arn"
+ ]
+ },
+ "outputs": {
+ "properties": {
+ "allowExternalPrincipals": {
+ "type": "boolean",
+ "description": "Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`."
+ },
+ "arn": {
+ "type": "string",
+ "description": "The Amazon Resource Name (ARN) of the resource share."
+ },
+ "name": {
+ "type": "string",
+ "description": "Specifies the name of the resource share."
+ },
+ "tags": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:index:Tag"
+ },
+ "description": "Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share."
+ }
+ }
+ }
+ },
"aws-native:rbin:getRule": {
"description": "Resource Type definition for AWS::Rbin::Rule",
"inputs": {
@@ -317416,16 +318121,16 @@
}
},
"aws-native:rds:getCustomDbEngineVersion": {
- "description": "The AWS::RDS::CustomDBEngineVersion resource creates an Amazon RDS custom DB engine version.",
+ "description": "Creates a custom DB engine version (CEV).",
"inputs": {
"properties": {
"engine": {
"type": "string",
- "description": "The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`."
+ "description": "The database engine to use for your custom engine version (CEV).\n Valid values:\n + ``custom-oracle-ee`` \n + ``custom-oracle-ee-cdb``"
},
"engineVersion": {
"type": "string",
- "description": "The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region."
+ "description": "The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.\n *Constraints:* Minimum length is 1. Maximum length is 60.\n *Pattern:* ``^[a-z0-9_.-]{1,60$``}"
}
},
"required": [
@@ -317445,14 +318150,14 @@
},
"status": {
"$ref": "#/types/aws-native:rds:CustomDbEngineVersionStatus",
- "description": "The availability status to be assigned to the CEV."
+ "description": "A value that indicates the status of a custom engine version (CEV)."
},
"tags": {
"type": "array",
"items": {
"$ref": "#/types/aws-native:index:Tag"
},
- "description": "An array of key-value pairs to apply to this resource."
+ "description": "A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*"
}
}
}
@@ -319027,6 +319732,10 @@
"type": "integer",
"description": "The custom port to use when connecting to a workgroup. Valid port ranges are 5431-5455 and 8191-8215. The default is 5439."
},
+ "pricePerformanceTarget": {
+ "$ref": "#/types/aws-native:redshiftserverless:WorkgroupPerformanceTarget",
+ "description": "A property that represents the price performance target settings for the workgroup."
+ },
"publiclyAccessible": {
"type": "boolean",
"description": "A value that specifies whether the workgroup can be accessible from a public network."
@@ -321298,6 +322007,9 @@
"$ref": "#/types/aws-native:s3:BucketLoggingConfiguration",
"description": "Settings that define where logs are stored."
},
+ "metadataTableConfiguration": {
+ "$ref": "#/types/aws-native:s3:BucketMetadataTableConfiguration"
+ },
"metricsConfigurations": {
"type": "array",
"items": {
@@ -321490,7 +322202,7 @@
"properties": {
"bucketName": {
"type": "string",
- "description": "Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name."
+ "description": "Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name."
}
},
"required": [
@@ -321505,7 +322217,7 @@
},
"availabilityZoneName": {
"type": "string",
- "description": "Returns the code for the Availability Zone where the directory bucket was created."
+ "description": "Returns the code for the Availability Zone or Local Zone where the directory bucket was created. An example for the code of an Availability Zone is 'us-east-1f'."
},
"bucketEncryption": {
"$ref": "#/types/aws-native:s3express:DirectoryBucketBucketEncryption",
@@ -321710,6 +322422,49 @@
}
}
},
+ "aws-native:s3tables:getTableBucket": {
+ "description": "Creates an Amazon S3 Tables table bucket in the same AWS Region where you create the AWS CloudFormation stack.",
+ "inputs": {
+ "properties": {
+ "tableBucketArn": {
+ "type": "string"
+ }
+ },
+ "required": [
+ "tableBucketArn"
+ ]
+ },
+ "outputs": {
+ "properties": {
+ "tableBucketArn": {
+ "type": "string"
+ },
+ "unreferencedFileRemoval": {
+ "$ref": "#/types/aws-native:s3tables:TableBucketUnreferencedFileRemoval"
+ }
+ }
+ }
+ },
+ "aws-native:s3tables:getTableBucketPolicy": {
+ "description": "Applies an IAM resource policy to a table bucket.",
+ "inputs": {
+ "properties": {
+ "tableBucketArn": {
+ "type": "string"
+ }
+ },
+ "required": [
+ "tableBucketArn"
+ ]
+ },
+ "outputs": {
+ "properties": {
+ "resourcePolicy": {
+ "$ref": "#/types/aws-native:s3tables:TableBucketPolicyResourcePolicy"
+ }
+ }
+ }
+ },
"aws-native:sagemaker:getApp": {
"description": "Resource Type definition for AWS::SageMaker::App",
"inputs": {
diff --git a/reports/missedAutonaming.json b/reports/missedAutonaming.json
index 82a5949114..4b1f451587 100644
--- a/reports/missedAutonaming.json
+++ b/reports/missedAutonaming.json
@@ -336,10 +336,6 @@
"$ref": "#/types/aws-native:apigateway:DomainNameV2EndpointConfiguration",
"description": "The endpoint configuration to indicate the types of endpoints an API (RestApi) or its custom domain name (DomainName) has."
},
- "managementPolicy": {
- "$ref": "pulumi.json#/Any",
- "description": "Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property."
- },
"policy": {
"$ref": "pulumi.json#/Any",
"description": "A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .\n\nSearch the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property."
@@ -2194,10 +2190,12 @@
"description": "An array of image files that you want to apply to roles like backgrounds, logos, and icons. Each object must also indicate whether it is for dark mode, light mode, or browser-adaptive mode."
},
"clientId": {
- "type": "string"
+ "type": "string",
+ "description": "The app client that's assigned to the branding style that you want more information about."
},
"returnMergedResources": {
- "type": "boolean"
+ "type": "boolean",
+ "description": "When `true` , returns values for branding options that are unchanged from Amazon Cognito defaults. When `false` or when you omit this parameter, returns only values that you customized in your branding style."
},
"settings": {
"$ref": "pulumi.json#/Any",
@@ -2205,7 +2203,7 @@
},
"useCognitoProvidedValues": {
"type": "boolean",
- "description": "When true, applies the default branding style options. This option reverts to a \"blank\" style that you can modify later in the branding designer."
+ "description": "When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.\n\nWhen you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request."
},
"userPoolId": {
"type": "string",
@@ -2272,7 +2270,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool."
+ "description": "The ID of the user pool."
}
}
},
@@ -2285,7 +2283,7 @@
},
"userPoolId": {
"type": "string",
- "description": "The user pool ID for the user pool."
+ "description": "The ID of the user pool that contains the group that you want to add the user to."
},
"username": {
"type": "string",
@@ -6430,6 +6428,9 @@
"type": "string",
"description": "The number of ``cpu`` units used by the task. If you use the EC2 launch type, this field is optional. Any value can be used. If you use the Fargate launch type, this field is required. You must use one of the following values. The value that you choose determines your range of valid values for the ``memory`` parameter.\n If you use the EC2 launch type, this field is optional. Supported values are between ``128`` CPU units (``0.125`` vCPUs) and ``10240`` CPU units (``10`` vCPUs).\n The CPU units cannot be less than 1 vCPU when you use Windows containers on Fargate.\n + 256 (.25 vCPU) - Available ``memory`` values: 512 (0.5 GB), 1024 (1 GB), 2048 (2 GB)\n + 512 (.5 vCPU) - Available ``memory`` values: 1024 (1 GB), 2048 (2 GB), 3072 (3 GB), 4096 (4 GB)\n + 1024 (1 vCPU) - Available ``memory`` values: 2048 (2 GB), 3072 (3 GB), 4096 (4 GB), 5120 (5 GB), 6144 (6 GB), 7168 (7 GB), 8192 (8 GB)\n + 2048 (2 vCPU) - Available ``memory`` values: 4096 (4 GB) and 16384 (16 GB) in increments of 1024 (1 GB)\n + 4096 (4 vCPU) - Available ``memory`` values: 8192 (8 GB) and 30720 (30 GB) in increments of 1024 (1 GB)\n + 8192 (8 vCPU) - Available ``memory`` values: 16 GB and 60 GB in 4 GB increments\n This option requires Linux platform ``1.4.0`` or later.\n + 16384 (16vCPU) - Available ``memory`` values: 32GB and 120 GB in 8 GB increments\n This option requires Linux platform ``1.4.0`` or later."
},
+ "enableFaultInjection": {
+ "type": "boolean"
+ },
"ephemeralStorage": {
"$ref": "#/types/aws-native:ecs:TaskDefinitionEphemeralStorage",
"description": "The ephemeral storage settings to use for tasks run with the task definition."
@@ -7929,6 +7930,65 @@
}
}
},
+ "aws-native:iot:Command": {
+ "cfTypeName": "AWS::IoT::Command",
+ "properties": {
+ "commandId": {
+ "type": "string",
+ "description": "The unique identifier for the command."
+ },
+ "createdAt": {
+ "type": "string",
+ "description": "The date and time when the command was created."
+ },
+ "deprecated": {
+ "type": "boolean",
+ "description": "A flag indicating whether the command is deprecated."
+ },
+ "description": {
+ "type": "string",
+ "description": "The description of the command."
+ },
+ "displayName": {
+ "type": "string",
+ "description": "The display name for the command."
+ },
+ "lastUpdatedAt": {
+ "type": "string",
+ "description": "The date and time when the command was last updated."
+ },
+ "mandatoryParameters": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:iot:CommandParameter"
+ },
+ "description": "The list of mandatory parameters for the command."
+ },
+ "namespace": {
+ "$ref": "#/types/aws-native:iot:CommandNamespace",
+ "description": "The namespace to which the command belongs."
+ },
+ "payload": {
+ "$ref": "#/types/aws-native:iot:CommandPayload",
+ "description": "The payload associated with the command."
+ },
+ "pendingDeletion": {
+ "type": "boolean",
+ "description": "A flag indicating whether the command is pending deletion."
+ },
+ "roleArn": {
+ "type": "string",
+ "description": "The customer role associated with the command."
+ },
+ "tags": {
+ "type": "array",
+ "items": {
+ "$ref": "#/types/aws-native:index:Tag"
+ },
+ "description": "The tags to be associated with the command."
+ }
+ }
+ },
"aws-native:iot:JobTemplate": {
"cfTypeName": "AWS::IoT::JobTemplate",
"properties": {
@@ -10215,7 +10275,8 @@
"type": "array",
"items": {
"type": "string"
- }
+ },
+ "description": "The OIDC client ID for a Amazon Q Business application."
},
"description": {
"type": "string",
@@ -10615,11 +10676,11 @@
"properties": {
"databaseInstallationFilesS3BucketName": {
"type": "string",
- "description": "The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is `my-custom-installation-files`."
+ "description": "The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is ``my-custom-installation-files``."
},
"databaseInstallationFilesS3Prefix": {
"type": "string",
- "description": "The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is `123456789012/cev1`. If this setting isn't specified, no prefix is assumed."
+ "description": "The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is ``123456789012/cev1``. If this setting isn't specified, no prefix is assumed."
},
"description": {
"type": "string",
@@ -10627,42 +10688,42 @@
},
"engine": {
"type": "string",
- "description": "The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`."
+ "description": "The database engine to use for your custom engine version (CEV).\n Valid values:\n + ``custom-oracle-ee`` \n + ``custom-oracle-ee-cdb``"
},
"engineVersion": {
"type": "string",
- "description": "The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region."
+ "description": "The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.\n *Constraints:* Minimum length is 1. Maximum length is 60.\n *Pattern:* ``^[a-z0-9_.-]{1,60$``}"
},
"imageId": {
"type": "string",
- "description": "The identifier of Amazon Machine Image (AMI) used for CEV."
+ "description": "A value that indicates the ID of the AMI."
},
"kmsKeyId": {
"type": "string",
- "description": "The AWS KMS key identifier for an encrypted CEV. A symmetric KMS key is required for RDS Custom, but optional for Amazon RDS."
+ "description": "The AWS KMS key identifier for an encrypted CEV. A symmetric encryption KMS key is required for RDS Custom, but optional for Amazon RDS.\n If you have an existing symmetric encryption KMS key in your account, you can use it with RDS Custom. No further action is necessary. If you don't already have a symmetric encryption KMS key in your account, follow the instructions in [Creating a symmetric encryption KMS key](https://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html#create-symmetric-cmk) in the *Key Management Service Developer Guide*.\n You can choose the same symmetric encryption key when you create a CEV and a DB instance, or choose different keys."
},
"manifest": {
"type": "string",
- "description": "The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed."
+ "description": "The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.\n The following JSON fields are valid:\n + MediaImportTemplateVersion Version of the CEV manifest. The date is in the format YYYY-MM-DD. + databaseInstallationFileNames Ordered list of installation files for the CEV. + opatchFileNames Ordered list of OPatch installers used for the Oracle DB engine. + psuRuPatchFileNames The PSU and RU patches for this CEV. + OtherPatchFileNames The patches that are not in the list of PSU and RU patches. Amazon RDS applies these patches after applying the PSU and RU patches. \n For more information, see [Creating the CEV manifest](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/custom-cev.html#custom-cev.preparing.manifest) in the *Amazon RDS User Guide*."
},
"sourceCustomDbEngineVersionIdentifier": {
"type": "string",
- "description": "The identifier of the source custom engine version."
+ "description": "The ARN of a CEV to use as a source for creating a new CEV. You can specify a different Amazon Machine Imagine (AMI) by using either ``Source`` or ``UseAwsProvidedLatestImage``. You can't specify a different JSON manifest when you specify ``SourceCustomDbEngineVersionIdentifier``."
},
"status": {
"$ref": "#/types/aws-native:rds:CustomDbEngineVersionStatus",
- "description": "The availability status to be assigned to the CEV."
+ "description": "A value that indicates the status of a custom engine version (CEV)."
},
"tags": {
"type": "array",
"items": {
"$ref": "#/types/aws-native:index:Tag"
},
- "description": "An array of key-value pairs to apply to this resource."
+ "description": "A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*"
},
"useAwsProvidedLatestImage": {
"type": "boolean",
- "description": "A value that indicates whether AWS provided latest image is applied automatically to the Custom Engine Version. By default, AWS provided latest image is applied automatically. This value is only applied on create."
+ "description": "Specifies whether to use the latest service-provided Amazon Machine Image (AMI) for the CEV. If you specify ``UseAwsProvidedLatestImage``, you can't also specify ``ImageId``."
}
}
},
@@ -12031,6 +12092,17 @@
}
}
},
+ "aws-native:s3tables:TableBucketPolicy": {
+ "cfTypeName": "AWS::S3Tables::TableBucketPolicy",
+ "properties": {
+ "resourcePolicy": {
+ "$ref": "#/types/aws-native:s3tables:TableBucketPolicyResourcePolicy"
+ },
+ "tableBucketArn": {
+ "type": "string"
+ }
+ }
+ },
"aws-native:sagemaker:Device": {
"cfTypeName": "AWS::SageMaker::Device",
"properties": {
diff --git a/sdk/dotnet/ApiGateway/DomainNameV2.cs b/sdk/dotnet/ApiGateway/DomainNameV2.cs
index be54fdf668..bf5defa62d 100644
--- a/sdk/dotnet/ApiGateway/DomainNameV2.cs
+++ b/sdk/dotnet/ApiGateway/DomainNameV2.cs
@@ -45,12 +45,6 @@ public partial class DomainNameV2 : global::Pulumi.CustomResource
[Output("endpointConfiguration")]
public Output EndpointConfiguration { get; private set; } = null!;
- ///
- /// Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
- ///
- [Output("managementPolicy")]
- public Output ManagementPolicy { get; private set; } = null!;
-
///
/// A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .
///
@@ -140,12 +134,6 @@ public sealed class DomainNameV2Args : global::Pulumi.ResourceArgs
[Input("endpointConfiguration")]
public Input? EndpointConfiguration { get; set; }
- ///
- /// Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
- ///
- [Input("managementPolicy")]
- public Input
public readonly ImmutableArray SecurityGroups;
///
- /// The tags to apply to resources that are created during instance launch.
+ /// The tags to apply to the resources that are created during instance launch.
+ /// To tag a resource after it has been created, see [CreateTags](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateTags.html).
/// To tag the launch template itself, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-tagspecifications).
///
public readonly ImmutableArray TagSpecifications;
@@ -223,8 +222,6 @@ private LaunchTemplateData(
ImmutableArray networkInterfaces,
- object? networkPerformanceOptions,
-
Outputs.LaunchTemplatePlacement? placement,
Outputs.LaunchTemplatePrivateDnsNameOptions? privateDnsNameOptions,
@@ -263,7 +260,6 @@ private LaunchTemplateData(
MetadataOptions = metadataOptions;
Monitoring = monitoring;
NetworkInterfaces = networkInterfaces;
- NetworkPerformanceOptions = networkPerformanceOptions;
Placement = placement;
PrivateDnsNameOptions = privateDnsNameOptions;
RamDiskId = ramDiskId;
diff --git a/sdk/dotnet/Ec2/Outputs/LaunchTemplateEbs.cs b/sdk/dotnet/Ec2/Outputs/LaunchTemplateEbs.cs
index b19589e051..cbb5c074c7 100644
--- a/sdk/dotnet/Ec2/Outputs/LaunchTemplateEbs.cs
+++ b/sdk/dotnet/Ec2/Outputs/LaunchTemplateEbs.cs
@@ -37,7 +37,7 @@ public sealed class LaunchTemplateEbs
///
public readonly int? Iops;
///
- /// Identifier (key ID, key alias, key ARN, or alias ARN) of the customer managed KMS key to use for EBS encryption.
+ /// The ARN of the symmetric KMSlong (KMS) CMK used for encryption.
///
public readonly string? KmsKeyId;
///
diff --git a/sdk/dotnet/Ec2/Outputs/LaunchTemplateInstanceRequirements.cs b/sdk/dotnet/Ec2/Outputs/LaunchTemplateInstanceRequirements.cs
index befa41313f..73e24602a7 100644
--- a/sdk/dotnet/Ec2/Outputs/LaunchTemplateInstanceRequirements.cs
+++ b/sdk/dotnet/Ec2/Outputs/LaunchTemplateInstanceRequirements.cs
@@ -20,7 +20,7 @@ namespace Pulumi.AwsNative.Ec2.Outputs
///
/// If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.
/// Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.
- /// For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
+ /// For more information, see [Attribute-based instance type selection for EC2 Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html), [Attribute-based instance type selection for Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-attribute-based-instance-type-selection.html), and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
///
[OutputType]
public sealed class LaunchTemplateInstanceRequirements
@@ -69,6 +69,7 @@ public sealed class LaunchTemplateInstanceRequirements
/// The accelerator types that must be on the instance type.
/// + For instance types with GPU accelerators, specify ``gpu``.
/// + For instance types with FPGA accelerators, specify ``fpga``.
+ /// + For instance types with inference accelerators, specify ``inference``.
///
/// Default: Any accelerator type
///
@@ -96,7 +97,7 @@ public sealed class LaunchTemplateInstanceRequirements
///
public readonly Outputs.LaunchTemplateBaselineEbsBandwidthMbps? BaselineEbsBandwidthMbps;
///
- /// The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide*.
+ /// The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide* .
///
public readonly Outputs.LaunchTemplateBaselinePerformanceFactors? BaselinePerformanceFactors;
///
@@ -113,7 +114,6 @@ public sealed class LaunchTemplateInstanceRequirements
/// + For instance types with Intel CPUs, specify ``intel``.
/// + For instance types with AMD CPUs, specify ``amd``.
/// + For instance types with AWS CPUs, specify ``amazon-web-services``.
- /// + For instance types with Apple CPUs, specify ``apple``.
///
/// Don't confuse the CPU manufacturer with the CPU architecture. Instances will be launched with a compatible CPU architecture based on the Amazon Machine Image (AMI) that you specify in your launch template.
/// Default: Any manufacturer
diff --git a/sdk/dotnet/Ec2/Outputs/LaunchTemplateNetworkInterface.cs b/sdk/dotnet/Ec2/Outputs/LaunchTemplateNetworkInterface.cs
index a47f0467e5..114940fd31 100644
--- a/sdk/dotnet/Ec2/Outputs/LaunchTemplateNetworkInterface.cs
+++ b/sdk/dotnet/Ec2/Outputs/LaunchTemplateNetworkInterface.cs
@@ -52,10 +52,9 @@ public sealed class LaunchTemplateNetworkInterface
///
public readonly ImmutableArray Groups;
///
- /// The type of network interface. To create an Elastic Fabric Adapter (EFA), specify ``efa`` or ``efa``. For more information, see [Elastic Fabric Adapter](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide*.
+ /// The type of network interface. To create an Elastic Fabric Adapter (EFA), specify ``efa``. For more information, see [Elastic Fabric Adapter](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide*.
/// If you are not creating an EFA, specify ``interface`` or omit this parameter.
- /// If you specify ``efa-only``, do not assign any IP addresses to the network interface. EFA-only network interfaces do not support IP addresses.
- /// Valid values: ``interface`` | ``efa`` | ``efa-only``
+ /// Valid values: ``interface`` | ``efa``
///
public readonly string? InterfaceType;
///
diff --git a/sdk/dotnet/Ec2/Outputs/LaunchTemplateReference.cs b/sdk/dotnet/Ec2/Outputs/LaunchTemplateReference.cs
index 20f7aeff5a..057becbcb8 100644
--- a/sdk/dotnet/Ec2/Outputs/LaunchTemplateReference.cs
+++ b/sdk/dotnet/Ec2/Outputs/LaunchTemplateReference.cs
@@ -13,6 +13,9 @@ namespace Pulumi.AwsNative.Ec2.Outputs
[OutputType]
public sealed class LaunchTemplateReference
{
+ ///
+ /// The instance family to refer. Ensure that you specify the correct family name. For example, C6i and C6g are valid values, but C6 is not.
+ ///
public readonly string? InstanceFamily;
[OutputConstructor]
diff --git a/sdk/dotnet/Ec2/Outputs/LaunchTemplateTagSpecification.cs b/sdk/dotnet/Ec2/Outputs/LaunchTemplateTagSpecification.cs
index c1244679d8..ae0d3f4adf 100644
--- a/sdk/dotnet/Ec2/Outputs/LaunchTemplateTagSpecification.cs
+++ b/sdk/dotnet/Ec2/Outputs/LaunchTemplateTagSpecification.cs
@@ -12,7 +12,6 @@ namespace Pulumi.AwsNative.Ec2.Outputs
///
/// Specifies the tags to apply to the launch template during creation.
- /// To specify the tags for the resources that are created during instance launch, use [AWS::EC2::LaunchTemplate TagSpecification](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-tagspecification.html).
/// ``LaunchTemplateTagSpecification`` is a property of [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html).
///
[OutputType]
diff --git a/sdk/dotnet/Ec2/Outputs/SpotFleetInstanceNetworkInterfaceSpecification.cs b/sdk/dotnet/Ec2/Outputs/SpotFleetInstanceNetworkInterfaceSpecification.cs
index 777e43a3be..4faeca5946 100644
--- a/sdk/dotnet/Ec2/Outputs/SpotFleetInstanceNetworkInterfaceSpecification.cs
+++ b/sdk/dotnet/Ec2/Outputs/SpotFleetInstanceNetworkInterfaceSpecification.cs
@@ -56,7 +56,7 @@ public sealed class SpotFleetInstanceNetworkInterfaceSpecification
///
public readonly ImmutableArray PrivateIpAddresses;
///
- /// The number of secondary private IPv4 addresses. You can't specify this option and specify more than one private IP address using the private IP addresses option. You cannot specify this option if you're launching more than one instance in a [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) request.
+ /// The number of secondary private IPv4 addresses. You can’t specify this parameter and also specify a secondary private IP address using the `PrivateIpAddress` parameter.
///
public readonly int? SecondaryPrivateIpAddressCount;
///
diff --git a/sdk/dotnet/Ec2/Outputs/TagSpecification.cs b/sdk/dotnet/Ec2/Outputs/TagSpecification.cs
index 88f2d76c36..2539fb61d0 100644
--- a/sdk/dotnet/Ec2/Outputs/TagSpecification.cs
+++ b/sdk/dotnet/Ec2/Outputs/TagSpecification.cs
@@ -11,7 +11,7 @@ namespace Pulumi.AwsNative.Ec2.Outputs
{
///
- /// Specifies the tags to apply to resources that are created during instance launch.
+ /// Specifies the tags to apply to a resource when the resource is created for the launch template.
/// ``TagSpecification`` is a property type of [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications). [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications) is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
///
[OutputType]
diff --git a/sdk/dotnet/Ecs/Enums.cs b/sdk/dotnet/Ecs/Enums.cs
index 01cfc6c062..20c582a1a2 100644
--- a/sdk/dotnet/Ecs/Enums.cs
+++ b/sdk/dotnet/Ecs/Enums.cs
@@ -494,7 +494,7 @@ private TaskDefinitionAuthorizationConfigIam(string value)
}
///
- /// Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is `enabled` . If you set the value for a container as `disabled` , Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide* .
+ /// Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is ``enabled``. If you set the value for a container as ``disabled``, Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide*.
///
[EnumType]
public readonly struct TaskDefinitionContainerDefinitionVersionConsistency : IEquatable
diff --git a/sdk/dotnet/Ecs/Inputs/TaskDefinitionContainerDefinitionArgs.cs b/sdk/dotnet/Ecs/Inputs/TaskDefinitionContainerDefinitionArgs.cs
index 7e706273d5..b11f5fa69d 100644
--- a/sdk/dotnet/Ecs/Inputs/TaskDefinitionContainerDefinitionArgs.cs
+++ b/sdk/dotnet/Ecs/Inputs/TaskDefinitionContainerDefinitionArgs.cs
@@ -445,7 +445,7 @@ public InputList Ulimits
public Input? User { get; set; }
///
- /// Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is `enabled` . If you set the value for a container as `disabled` , Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide* .
+ /// Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is ``enabled``. If you set the value for a container as ``disabled``, Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide*.
///
[Input("versionConsistency")]
public Input? VersionConsistency { get; set; }
diff --git a/sdk/dotnet/Ecs/Outputs/TaskDefinitionContainerDefinition.cs b/sdk/dotnet/Ecs/Outputs/TaskDefinitionContainerDefinition.cs
index f1495dadaa..17608198c1 100644
--- a/sdk/dotnet/Ecs/Outputs/TaskDefinitionContainerDefinition.cs
+++ b/sdk/dotnet/Ecs/Outputs/TaskDefinitionContainerDefinition.cs
@@ -260,7 +260,7 @@ public sealed class TaskDefinitionContainerDefinition
///
public readonly string? User;
///
- /// Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is `enabled` . If you set the value for a container as `disabled` , Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide* .
+ /// Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is ``enabled``. If you set the value for a container as ``disabled``, Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide*.
///
public readonly Pulumi.AwsNative.Ecs.TaskDefinitionContainerDefinitionVersionConsistency? VersionConsistency;
///
diff --git a/sdk/dotnet/Ecs/TaskDefinition.cs b/sdk/dotnet/Ecs/TaskDefinition.cs
index efdb36ee56..159d342e22 100644
--- a/sdk/dotnet/Ecs/TaskDefinition.cs
+++ b/sdk/dotnet/Ecs/TaskDefinition.cs
@@ -332,6 +332,9 @@ public partial class TaskDefinition : global::Pulumi.CustomResource
[Output("cpu")]
public Output Cpu { get; private set; } = null!;
+ [Output("enableFaultInjection")]
+ public Output EnableFaultInjection { get; private set; } = null!;
+
///
/// The ephemeral storage settings to use for tasks run with the task definition.
///
@@ -498,6 +501,7 @@ private static CustomResourceOptions MakeResourceOptions(CustomResourceOptions?
{
"containerDefinitions[*]",
"cpu",
+ "enableFaultInjection",
"ephemeralStorage",
"executionRoleArn",
"family",
@@ -564,6 +568,9 @@ public InputList ContainerDefiniti
[Input("cpu")]
public Input? Cpu { get; set; }
+ [Input("enableFaultInjection")]
+ public Input? EnableFaultInjection { get; set; }
+
///
/// The ephemeral storage settings to use for tasks run with the task definition.
///
diff --git a/sdk/dotnet/Events/Inputs/ConnectionAuthParametersArgs.cs b/sdk/dotnet/Events/Inputs/ConnectionAuthParametersArgs.cs
index 78dc86110d..5ff64779be 100644
--- a/sdk/dotnet/Events/Inputs/ConnectionAuthParametersArgs.cs
+++ b/sdk/dotnet/Events/Inputs/ConnectionAuthParametersArgs.cs
@@ -24,6 +24,11 @@ public sealed class ConnectionAuthParametersArgs : global::Pulumi.ResourceArgs
[Input("basicAuthParameters")]
public Input? BasicAuthParameters { get; set; }
+ ///
+ /// For private OAuth authentication endpoints. The parameters EventBridge uses to authenticate against the endpoint.
+ ///
+ /// For more information, see [Authorization methods for connections](https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-target-connection-auth.html) in the **Amazon EventBridge User Guide** .
+ ///
[Input("connectivityParameters")]
public Input? ConnectivityParameters { get; set; }
diff --git a/sdk/dotnet/Events/Inputs/ConnectionConnectivityParametersArgs.cs b/sdk/dotnet/Events/Inputs/ConnectionConnectivityParametersArgs.cs
index 52e57eb71e..8890a2e524 100644
--- a/sdk/dotnet/Events/Inputs/ConnectionConnectivityParametersArgs.cs
+++ b/sdk/dotnet/Events/Inputs/ConnectionConnectivityParametersArgs.cs
@@ -12,6 +12,9 @@ namespace Pulumi.AwsNative.Events.Inputs
public sealed class ConnectionConnectivityParametersArgs : global::Pulumi.ResourceArgs
{
+ ///
+ /// The parameters for EventBridge to use when invoking the resource endpoint.
+ ///
[Input("resourceParameters", required: true)]
public Input ResourceParameters { get; set; } = null!;
diff --git a/sdk/dotnet/Events/Inputs/ConnectionResourceParametersArgs.cs b/sdk/dotnet/Events/Inputs/ConnectionResourceParametersArgs.cs
index c601580df7..def3384f1e 100644
--- a/sdk/dotnet/Events/Inputs/ConnectionResourceParametersArgs.cs
+++ b/sdk/dotnet/Events/Inputs/ConnectionResourceParametersArgs.cs
@@ -12,9 +12,17 @@ namespace Pulumi.AwsNative.Events.Inputs
public sealed class ConnectionResourceParametersArgs : global::Pulumi.ResourceArgs
{
+ ///
+ /// For connections to private APIs, the Amazon Resource Name (ARN) of the resource association EventBridge created between the connection and the private API's resource configuration.
+ ///
+ /// > The value of this property is set by EventBridge . Any value you specify in your template is ignored.
+ ///
[Input("resourceAssociationArn")]
public Input? ResourceAssociationArn { get; set; }
+ ///
+ /// The Amazon Resource Name (ARN) of the Amazon VPC Lattice resource configuration for the resource endpoint.
+ ///
[Input("resourceConfigurationArn", required: true)]
public Input ResourceConfigurationArn { get; set; } = null!;
diff --git a/sdk/dotnet/Events/Inputs/InvocationConnectivityParametersPropertiesArgs.cs b/sdk/dotnet/Events/Inputs/InvocationConnectivityParametersPropertiesArgs.cs
index 9bdff81f32..0006602f5b 100644
--- a/sdk/dotnet/Events/Inputs/InvocationConnectivityParametersPropertiesArgs.cs
+++ b/sdk/dotnet/Events/Inputs/InvocationConnectivityParametersPropertiesArgs.cs
@@ -15,6 +15,9 @@ namespace Pulumi.AwsNative.Events.Inputs
///
public sealed class InvocationConnectivityParametersPropertiesArgs : global::Pulumi.ResourceArgs
{
+ ///
+ /// The parameters for EventBridge to use when invoking the resource endpoint.
+ ///
[Input("resourceParameters", required: true)]
public Input ResourceParameters { get; set; } = null!;
diff --git a/sdk/dotnet/Events/Outputs/ConnectionAuthParameters.cs b/sdk/dotnet/Events/Outputs/ConnectionAuthParameters.cs
index f754600082..9e50ee8b0c 100644
--- a/sdk/dotnet/Events/Outputs/ConnectionAuthParameters.cs
+++ b/sdk/dotnet/Events/Outputs/ConnectionAuthParameters.cs
@@ -21,6 +21,11 @@ public sealed class ConnectionAuthParameters
/// The authorization parameters for Basic authorization.
///
public readonly Outputs.ConnectionBasicAuthParameters? BasicAuthParameters;
+ ///
+ /// For private OAuth authentication endpoints. The parameters EventBridge uses to authenticate against the endpoint.
+ ///
+ /// For more information, see [Authorization methods for connections](https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-target-connection-auth.html) in the **Amazon EventBridge User Guide** .
+ ///
public readonly Outputs.ConnectionConnectivityParameters? ConnectivityParameters;
///
/// Additional parameters for the connection that are passed through with every invocation to the HTTP endpoint.
diff --git a/sdk/dotnet/Events/Outputs/ConnectionConnectivityParameters.cs b/sdk/dotnet/Events/Outputs/ConnectionConnectivityParameters.cs
index 945dcccaba..7cb50e14bf 100644
--- a/sdk/dotnet/Events/Outputs/ConnectionConnectivityParameters.cs
+++ b/sdk/dotnet/Events/Outputs/ConnectionConnectivityParameters.cs
@@ -13,6 +13,9 @@ namespace Pulumi.AwsNative.Events.Outputs
[OutputType]
public sealed class ConnectionConnectivityParameters
{
+ ///
+ /// The parameters for EventBridge to use when invoking the resource endpoint.
+ ///
public readonly Outputs.ConnectionResourceParameters ResourceParameters;
[OutputConstructor]
diff --git a/sdk/dotnet/Events/Outputs/ConnectionResourceParameters.cs b/sdk/dotnet/Events/Outputs/ConnectionResourceParameters.cs
index bf5b4565e3..cad411da54 100644
--- a/sdk/dotnet/Events/Outputs/ConnectionResourceParameters.cs
+++ b/sdk/dotnet/Events/Outputs/ConnectionResourceParameters.cs
@@ -13,7 +13,15 @@ namespace Pulumi.AwsNative.Events.Outputs
[OutputType]
public sealed class ConnectionResourceParameters
{
+ ///
+ /// For connections to private APIs, the Amazon Resource Name (ARN) of the resource association EventBridge created between the connection and the private API's resource configuration.
+ ///
+ /// > The value of this property is set by EventBridge . Any value you specify in your template is ignored.
+ ///
public readonly string? ResourceAssociationArn;
+ ///
+ /// The Amazon Resource Name (ARN) of the Amazon VPC Lattice resource configuration for the resource endpoint.
+ ///
public readonly string ResourceConfigurationArn;
[OutputConstructor]
diff --git a/sdk/dotnet/Events/Outputs/InvocationConnectivityParametersProperties.cs b/sdk/dotnet/Events/Outputs/InvocationConnectivityParametersProperties.cs
index b9a453535f..99cd42b064 100644
--- a/sdk/dotnet/Events/Outputs/InvocationConnectivityParametersProperties.cs
+++ b/sdk/dotnet/Events/Outputs/InvocationConnectivityParametersProperties.cs
@@ -16,6 +16,9 @@ namespace Pulumi.AwsNative.Events.Outputs
[OutputType]
public sealed class InvocationConnectivityParametersProperties
{
+ ///
+ /// The parameters for EventBridge to use when invoking the resource endpoint.
+ ///
public readonly Outputs.ConnectionResourceParameters ResourceParameters;
[OutputConstructor]
diff --git a/sdk/dotnet/InternetMonitor/GetMonitor.cs b/sdk/dotnet/InternetMonitor/GetMonitor.cs
index 671ae18b02..40e480954a 100644
--- a/sdk/dotnet/InternetMonitor/GetMonitor.cs
+++ b/sdk/dotnet/InternetMonitor/GetMonitor.cs
@@ -64,7 +64,7 @@ public sealed class GetMonitorResult
///
/// A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.
///
- /// Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
+ /// Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
///
/// You can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.
///
diff --git a/sdk/dotnet/InternetMonitor/Monitor.cs b/sdk/dotnet/InternetMonitor/Monitor.cs
index 497ca3fcec..c67953fab5 100644
--- a/sdk/dotnet/InternetMonitor/Monitor.cs
+++ b/sdk/dotnet/InternetMonitor/Monitor.cs
@@ -24,7 +24,7 @@ public partial class Monitor : global::Pulumi.CustomResource
///
/// A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.
///
- /// Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
+ /// Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
///
/// You can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.
///
@@ -191,7 +191,7 @@ public sealed class MonitorArgs : global::Pulumi.ResourceArgs
///
/// A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.
///
- /// Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
+ /// Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
///
/// You can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.
///
diff --git a/sdk/dotnet/Invoicing/GetInvoiceUnit.cs b/sdk/dotnet/Invoicing/GetInvoiceUnit.cs
index 49f50ac730..75ccb4345e 100644
--- a/sdk/dotnet/Invoicing/GetInvoiceUnit.cs
+++ b/sdk/dotnet/Invoicing/GetInvoiceUnit.cs
@@ -27,6 +27,9 @@ public static Output Invoke(GetInvoiceUnitInvokeArgs args,
public sealed class GetInvoiceUnitArgs : global::Pulumi.InvokeArgs
{
+ ///
+ /// The ARN to identify an invoice unit. This information can't be modified or deleted.
+ ///
[Input("invoiceUnitArn", required: true)]
public string InvoiceUnitArn { get; set; } = null!;
@@ -38,6 +41,9 @@ public GetInvoiceUnitArgs()
public sealed class GetInvoiceUnitInvokeArgs : global::Pulumi.InvokeArgs
{
+ ///
+ /// The ARN to identify an invoice unit. This information can't be modified or deleted.
+ ///
[Input("invoiceUnitArn", required: true)]
public Input InvoiceUnitArn { get; set; } = null!;
@@ -51,11 +57,29 @@ public GetInvoiceUnitInvokeArgs()
[OutputType]
public sealed class GetInvoiceUnitResult
{
+ ///
+ /// The assigned description for an invoice unit. This information can't be modified or deleted.
+ ///
public readonly string? Description;
+ ///
+ /// The ARN to identify an invoice unit. This information can't be modified or deleted.
+ ///
public readonly string? InvoiceUnitArn;
+ ///
+ /// The last time the invoice unit was updated. This is important to determine the version of invoice unit configuration used to create the invoices. Any invoice created after this modified time will use this invoice unit configuration.
+ ///
public readonly double? LastModified;
+ ///
+ /// The tag structure that contains a tag key and value.
+ ///
public readonly ImmutableArray ResourceTags;
+ ///
+ /// An `InvoiceUnitRule` object used the categorize invoice units.
+ ///
public readonly Outputs.InvoiceUnitRule? Rule;
+ ///
+ /// Whether the invoice unit based tax inheritance is/ should be enabled or disabled.
+ ///
public readonly bool? TaxInheritanceDisabled;
[OutputConstructor]
diff --git a/sdk/dotnet/Invoicing/Inputs/InvoiceUnitRuleArgs.cs b/sdk/dotnet/Invoicing/Inputs/InvoiceUnitRuleArgs.cs
index 0f74340f83..d05c86d4c1 100644
--- a/sdk/dotnet/Invoicing/Inputs/InvoiceUnitRuleArgs.cs
+++ b/sdk/dotnet/Invoicing/Inputs/InvoiceUnitRuleArgs.cs
@@ -14,6 +14,10 @@ public sealed class InvoiceUnitRuleArgs : global::Pulumi.ResourceArgs
{
[Input("linkedAccounts", required: true)]
private InputList? _linkedAccounts;
+
+ ///
+ /// The list of `LINKED_ACCOUNT` IDs where charges are included within the invoice unit.
+ ///
public InputList LinkedAccounts
{
get => _linkedAccounts ?? (_linkedAccounts = new InputList());
diff --git a/sdk/dotnet/Invoicing/InvoiceUnit.cs b/sdk/dotnet/Invoicing/InvoiceUnit.cs
index c1ed81436f..ad422db5f6 100644
--- a/sdk/dotnet/Invoicing/InvoiceUnit.cs
+++ b/sdk/dotnet/Invoicing/InvoiceUnit.cs
@@ -15,27 +15,51 @@ namespace Pulumi.AwsNative.Invoicing
[AwsNativeResourceType("aws-native:invoicing:InvoiceUnit")]
public partial class InvoiceUnit : global::Pulumi.CustomResource
{
+ ///
+ /// The assigned description for an invoice unit. This information can't be modified or deleted.
+ ///
[Output("description")]
public Output Description { get; private set; } = null!;
+ ///
+ /// The account that receives invoices related to the invoice unit.
+ ///
[Output("invoiceReceiver")]
public Output InvoiceReceiver { get; private set; } = null!;
+ ///
+ /// The ARN to identify an invoice unit. This information can't be modified or deleted.
+ ///
[Output("invoiceUnitArn")]
public Output InvoiceUnitArn { get; private set; } = null!;
+ ///
+ /// The last time the invoice unit was updated. This is important to determine the version of invoice unit configuration used to create the invoices. Any invoice created after this modified time will use this invoice unit configuration.
+ ///
[Output("lastModified")]
public Output LastModified { get; private set; } = null!;
+ ///
+ /// A unique name that is distinctive within your AWS .
+ ///
[Output("name")]
public Output Name { get; private set; } = null!;
+ ///
+ /// The tag structure that contains a tag key and value.
+ ///
[Output("resourceTags")]
public Output> ResourceTags { get; private set; } = null!;
+ ///
+ /// An `InvoiceUnitRule` object used the categorize invoice units.
+ ///
[Output("rule")]
public Output Rule { get; private set; } = null!;
+ ///
+ /// Whether the invoice unit based tax inheritance is/ should be enabled or disabled.
+ ///
[Output("taxInheritanceDisabled")]
public Output TaxInheritanceDisabled { get; private set; } = null!;
@@ -89,26 +113,45 @@ public static InvoiceUnit Get(string name, Input id, CustomResourceOptio
public sealed class InvoiceUnitArgs : global::Pulumi.ResourceArgs
{
+ ///
+ /// The assigned description for an invoice unit. This information can't be modified or deleted.
+ ///
[Input("description")]
public Input? Description { get; set; }
+ ///
+ /// The account that receives invoices related to the invoice unit.
+ ///
[Input("invoiceReceiver", required: true)]
public Input InvoiceReceiver { get; set; } = null!;
+ ///
+ /// A unique name that is distinctive within your AWS .
+ ///
[Input("name")]
public Input? Name { get; set; }
[Input("resourceTags")]
private InputList? _resourceTags;
+
+ ///
+ /// The tag structure that contains a tag key and value.
+ ///
public InputList ResourceTags
{
get => _resourceTags ?? (_resourceTags = new InputList());
set => _resourceTags = value;
}
+ ///
+ /// An `InvoiceUnitRule` object used the categorize invoice units.
+ ///
[Input("rule", required: true)]
public Input Rule { get; set; } = null!;
+ ///
+ /// Whether the invoice unit based tax inheritance is/ should be enabled or disabled.
+ ///
[Input("taxInheritanceDisabled")]
public Input? TaxInheritanceDisabled { get; set; }
diff --git a/sdk/dotnet/Invoicing/Outputs/InvoiceUnitRule.cs b/sdk/dotnet/Invoicing/Outputs/InvoiceUnitRule.cs
index a845fa942b..c90f8b4db1 100644
--- a/sdk/dotnet/Invoicing/Outputs/InvoiceUnitRule.cs
+++ b/sdk/dotnet/Invoicing/Outputs/InvoiceUnitRule.cs
@@ -13,6 +13,9 @@ namespace Pulumi.AwsNative.Invoicing.Outputs
[OutputType]
public sealed class InvoiceUnitRule
{
+ ///
+ /// The list of `LINKED_ACCOUNT` IDs where charges are included within the invoice unit.
+ ///
public readonly ImmutableArray LinkedAccounts;
[OutputConstructor]
diff --git a/sdk/dotnet/IoT/Command.cs b/sdk/dotnet/IoT/Command.cs
new file mode 100644
index 0000000000..034ae6e9c9
--- /dev/null
+++ b/sdk/dotnet/IoT/Command.cs
@@ -0,0 +1,234 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.IoT
+{
+ ///
+ /// Represents the resource definition of AWS IoT Command.
+ ///
+ [AwsNativeResourceType("aws-native:iot:Command")]
+ public partial class Command : global::Pulumi.CustomResource
+ {
+ ///
+ /// The Amazon Resource Name (ARN) of the command.
+ ///
+ [Output("commandArn")]
+ public Output CommandArn { get; private set; } = null!;
+
+ ///
+ /// The unique identifier for the command.
+ ///
+ [Output("commandId")]
+ public Output CommandId { get; private set; } = null!;
+
+ ///
+ /// The date and time when the command was created.
+ ///
+ [Output("createdAt")]
+ public Output CreatedAt { get; private set; } = null!;
+
+ ///
+ /// A flag indicating whether the command is deprecated.
+ ///
+ [Output("deprecated")]
+ public Output Deprecated { get; private set; } = null!;
+
+ ///
+ /// The description of the command.
+ ///
+ [Output("description")]
+ public Output Description { get; private set; } = null!;
+
+ ///
+ /// The display name for the command.
+ ///
+ [Output("displayName")]
+ public Output DisplayName { get; private set; } = null!;
+
+ ///
+ /// The date and time when the command was last updated.
+ ///
+ [Output("lastUpdatedAt")]
+ public Output LastUpdatedAt { get; private set; } = null!;
+
+ ///
+ /// The list of mandatory parameters for the command.
+ ///
+ [Output("mandatoryParameters")]
+ public Output> MandatoryParameters { get; private set; } = null!;
+
+ ///
+ /// The namespace to which the command belongs.
+ ///
+ [Output("namespace")]
+ public Output Namespace { get; private set; } = null!;
+
+ ///
+ /// The payload associated with the command.
+ ///
+ [Output("payload")]
+ public Output Payload { get; private set; } = null!;
+
+ ///
+ /// A flag indicating whether the command is pending deletion.
+ ///
+ [Output("pendingDeletion")]
+ public Output PendingDeletion { get; private set; } = null!;
+
+ ///
+ /// The customer role associated with the command.
+ ///
+ [Output("roleArn")]
+ public Output RoleArn { get; private set; } = null!;
+
+ ///
+ /// The tags to be associated with the command.
+ ///
+ [Output("tags")]
+ public Output> Tags { get; private set; } = null!;
+
+
+ ///
+ /// Create a Command resource with the given unique name, arguments, and options.
+ ///
+ ///
+ /// The unique name of the resource
+ /// The arguments used to populate this resource's properties
+ /// A bag of options that control this resource's behavior
+ public Command(string name, CommandArgs args, CustomResourceOptions? options = null)
+ : base("aws-native:iot:Command", name, args ?? new CommandArgs(), MakeResourceOptions(options, ""))
+ {
+ }
+
+ private Command(string name, Input id, CustomResourceOptions? options = null)
+ : base("aws-native:iot:Command", name, null, MakeResourceOptions(options, id))
+ {
+ }
+
+ private static CustomResourceOptions MakeResourceOptions(CustomResourceOptions? options, Input? id)
+ {
+ var defaultOptions = new CustomResourceOptions
+ {
+ Version = Utilities.Version,
+ ReplaceOnChanges =
+ {
+ "commandId",
+ },
+ };
+ var merged = CustomResourceOptions.Merge(defaultOptions, options);
+ // Override the ID if one was specified for consistency with other language SDKs.
+ merged.Id = id ?? merged.Id;
+ return merged;
+ }
+ ///
+ /// Get an existing Command resource's state with the given name, ID, and optional extra
+ /// properties used to qualify the lookup.
+ ///
+ ///
+ /// The unique name of the resulting resource.
+ /// The unique provider ID of the resource to lookup.
+ /// A bag of options that control this resource's behavior
+ public static Command Get(string name, Input id, CustomResourceOptions? options = null)
+ {
+ return new Command(name, id, options);
+ }
+ }
+
+ public sealed class CommandArgs : global::Pulumi.ResourceArgs
+ {
+ ///
+ /// The unique identifier for the command.
+ ///
+ [Input("commandId", required: true)]
+ public Input CommandId { get; set; } = null!;
+
+ ///
+ /// The date and time when the command was created.
+ ///
+ [Input("createdAt")]
+ public Input? CreatedAt { get; set; }
+
+ ///
+ /// A flag indicating whether the command is deprecated.
+ ///
+ [Input("deprecated")]
+ public Input? Deprecated { get; set; }
+
+ ///
+ /// The description of the command.
+ ///
+ [Input("description")]
+ public Input? Description { get; set; }
+
+ ///
+ /// The display name for the command.
+ ///
+ [Input("displayName")]
+ public Input? DisplayName { get; set; }
+
+ ///
+ /// The date and time when the command was last updated.
+ ///
+ [Input("lastUpdatedAt")]
+ public Input? LastUpdatedAt { get; set; }
+
+ [Input("mandatoryParameters")]
+ private InputList? _mandatoryParameters;
+
+ ///
+ /// The list of mandatory parameters for the command.
+ ///
+ public InputList MandatoryParameters
+ {
+ get => _mandatoryParameters ?? (_mandatoryParameters = new InputList());
+ set => _mandatoryParameters = value;
+ }
+
+ ///
+ /// The namespace to which the command belongs.
+ ///
+ [Input("namespace")]
+ public Input? Namespace { get; set; }
+
+ ///
+ /// The payload associated with the command.
+ ///
+ [Input("payload")]
+ public Input? Payload { get; set; }
+
+ ///
+ /// A flag indicating whether the command is pending deletion.
+ ///
+ [Input("pendingDeletion")]
+ public Input? PendingDeletion { get; set; }
+
+ ///
+ /// The customer role associated with the command.
+ ///
+ [Input("roleArn")]
+ public Input? RoleArn { get; set; }
+
+ [Input("tags")]
+ private InputList? _tags;
+
+ ///
+ /// The tags to be associated with the command.
+ ///
+ public InputList Tags
+ {
+ get => _tags ?? (_tags = new InputList());
+ set => _tags = value;
+ }
+
+ public CommandArgs()
+ {
+ }
+ public static new CommandArgs Empty => new CommandArgs();
+ }
+}
diff --git a/sdk/dotnet/IoT/Enums.cs b/sdk/dotnet/IoT/Enums.cs
index e1a8b23569..fb378b6608 100644
--- a/sdk/dotnet/IoT/Enums.cs
+++ b/sdk/dotnet/IoT/Enums.cs
@@ -239,6 +239,37 @@ private CertificateStatus(string value)
public override string ToString() => _value;
}
+ ///
+ /// The namespace to which the command belongs.
+ ///
+ [EnumType]
+ public readonly struct CommandNamespace : IEquatable
+ {
+ private readonly string _value;
+
+ private CommandNamespace(string value)
+ {
+ _value = value ?? throw new ArgumentNullException(nameof(value));
+ }
+
+ public static CommandNamespace AwsIoT { get; } = new CommandNamespace("AWS-IoT");
+ public static CommandNamespace AwsIoTFleetWise { get; } = new CommandNamespace("AWS-IoT-FleetWise");
+
+ public static bool operator ==(CommandNamespace left, CommandNamespace right) => left.Equals(right);
+ public static bool operator !=(CommandNamespace left, CommandNamespace right) => !left.Equals(right);
+
+ public static explicit operator string(CommandNamespace value) => value._value;
+
+ [EditorBrowsable(EditorBrowsableState.Never)]
+ public override bool Equals(object? obj) => obj is CommandNamespace other && Equals(other);
+ public bool Equals(CommandNamespace other) => string.Equals(_value, other._value, StringComparison.Ordinal);
+
+ [EditorBrowsable(EditorBrowsableState.Never)]
+ public override int GetHashCode() => _value?.GetHashCode() ?? 0;
+
+ public override string ToString() => _value;
+ }
+
///
/// The type of the custom metric. Types include string-list, ip-address-list, number-list, and number.
///
diff --git a/sdk/dotnet/IoT/GetCommand.cs b/sdk/dotnet/IoT/GetCommand.cs
new file mode 100644
index 0000000000..235aa1f9cb
--- /dev/null
+++ b/sdk/dotnet/IoT/GetCommand.cs
@@ -0,0 +1,142 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.IoT
+{
+ public static class GetCommand
+ {
+ ///
+ /// Represents the resource definition of AWS IoT Command.
+ ///
+ public static Task InvokeAsync(GetCommandArgs args, InvokeOptions? options = null)
+ => global::Pulumi.Deployment.Instance.InvokeAsync("aws-native:iot:getCommand", args ?? new GetCommandArgs(), options.WithDefaults());
+
+ ///
+ /// Represents the resource definition of AWS IoT Command.
+ ///
+ public static Output Invoke(GetCommandInvokeArgs args, InvokeOptions? options = null)
+ => global::Pulumi.Deployment.Instance.Invoke("aws-native:iot:getCommand", args ?? new GetCommandInvokeArgs(), options.WithDefaults());
+ }
+
+
+ public sealed class GetCommandArgs : global::Pulumi.InvokeArgs
+ {
+ ///
+ /// The unique identifier for the command.
+ ///
+ [Input("commandId", required: true)]
+ public string CommandId { get; set; } = null!;
+
+ public GetCommandArgs()
+ {
+ }
+ public static new GetCommandArgs Empty => new GetCommandArgs();
+ }
+
+ public sealed class GetCommandInvokeArgs : global::Pulumi.InvokeArgs
+ {
+ ///
+ /// The unique identifier for the command.
+ ///
+ [Input("commandId", required: true)]
+ public Input CommandId { get; set; } = null!;
+
+ public GetCommandInvokeArgs()
+ {
+ }
+ public static new GetCommandInvokeArgs Empty => new GetCommandInvokeArgs();
+ }
+
+
+ [OutputType]
+ public sealed class GetCommandResult
+ {
+ ///
+ /// The Amazon Resource Name (ARN) of the command.
+ ///
+ public readonly string? CommandArn;
+ ///
+ /// The date and time when the command was created.
+ ///
+ public readonly string? CreatedAt;
+ ///
+ /// A flag indicating whether the command is deprecated.
+ ///
+ public readonly bool? Deprecated;
+ ///
+ /// The description of the command.
+ ///
+ public readonly string? Description;
+ ///
+ /// The display name for the command.
+ ///
+ public readonly string? DisplayName;
+ ///
+ /// The list of mandatory parameters for the command.
+ ///
+ public readonly ImmutableArray MandatoryParameters;
+ ///
+ /// The namespace to which the command belongs.
+ ///
+ public readonly Pulumi.AwsNative.IoT.CommandNamespace? Namespace;
+ ///
+ /// The payload associated with the command.
+ ///
+ public readonly Outputs.CommandPayload? Payload;
+ ///
+ /// A flag indicating whether the command is pending deletion.
+ ///
+ public readonly bool? PendingDeletion;
+ ///
+ /// The customer role associated with the command.
+ ///
+ public readonly string? RoleArn;
+ ///
+ /// The tags to be associated with the command.
+ ///
+ public readonly ImmutableArray Tags;
+
+ [OutputConstructor]
+ private GetCommandResult(
+ string? commandArn,
+
+ string? createdAt,
+
+ bool? deprecated,
+
+ string? description,
+
+ string? displayName,
+
+ ImmutableArray mandatoryParameters,
+
+ Pulumi.AwsNative.IoT.CommandNamespace? @namespace,
+
+ Outputs.CommandPayload? payload,
+
+ bool? pendingDeletion,
+
+ string? roleArn,
+
+ ImmutableArray tags)
+ {
+ CommandArn = commandArn;
+ CreatedAt = createdAt;
+ Deprecated = deprecated;
+ Description = description;
+ DisplayName = displayName;
+ MandatoryParameters = mandatoryParameters;
+ Namespace = @namespace;
+ Payload = payload;
+ PendingDeletion = pendingDeletion;
+ RoleArn = roleArn;
+ Tags = tags;
+ }
+ }
+}
diff --git a/sdk/dotnet/IoT/Inputs/CommandParameterArgs.cs b/sdk/dotnet/IoT/Inputs/CommandParameterArgs.cs
new file mode 100644
index 0000000000..7937109f81
--- /dev/null
+++ b/sdk/dotnet/IoT/Inputs/CommandParameterArgs.cs
@@ -0,0 +1,32 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.IoT.Inputs
+{
+
+ public sealed class CommandParameterArgs : global::Pulumi.ResourceArgs
+ {
+ [Input("defaultValue")]
+ public Input? DefaultValue { get; set; }
+
+ [Input("description")]
+ public Input? Description { get; set; }
+
+ [Input("name", required: true)]
+ public Input Name { get; set; } = null!;
+
+ [Input("value")]
+ public Input? Value { get; set; }
+
+ public CommandParameterArgs()
+ {
+ }
+ public static new CommandParameterArgs Empty => new CommandParameterArgs();
+ }
+}
diff --git a/sdk/dotnet/IoT/Inputs/CommandParameterValueArgs.cs b/sdk/dotnet/IoT/Inputs/CommandParameterValueArgs.cs
new file mode 100644
index 0000000000..fc621b90c7
--- /dev/null
+++ b/sdk/dotnet/IoT/Inputs/CommandParameterValueArgs.cs
@@ -0,0 +1,41 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.IoT.Inputs
+{
+
+ public sealed class CommandParameterValueArgs : global::Pulumi.ResourceArgs
+ {
+ [Input("b")]
+ public Input? B { get; set; }
+
+ [Input("bin")]
+ public Input? Bin { get; set; }
+
+ [Input("d")]
+ public Input? D { get; set; }
+
+ [Input("i")]
+ public Input? I { get; set; }
+
+ [Input("l")]
+ public Input? L { get; set; }
+
+ [Input("s")]
+ public Input? S { get; set; }
+
+ [Input("ul")]
+ public Input? Ul { get; set; }
+
+ public CommandParameterValueArgs()
+ {
+ }
+ public static new CommandParameterValueArgs Empty => new CommandParameterValueArgs();
+ }
+}
diff --git a/sdk/dotnet/IoT/Inputs/CommandPayloadArgs.cs b/sdk/dotnet/IoT/Inputs/CommandPayloadArgs.cs
new file mode 100644
index 0000000000..a39b3d65d0
--- /dev/null
+++ b/sdk/dotnet/IoT/Inputs/CommandPayloadArgs.cs
@@ -0,0 +1,26 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.IoT.Inputs
+{
+
+ public sealed class CommandPayloadArgs : global::Pulumi.ResourceArgs
+ {
+ [Input("content")]
+ public Input? Content { get; set; }
+
+ [Input("contentType")]
+ public Input? ContentType { get; set; }
+
+ public CommandPayloadArgs()
+ {
+ }
+ public static new CommandPayloadArgs Empty => new CommandPayloadArgs();
+ }
+}
diff --git a/sdk/dotnet/IoT/Outputs/CommandParameter.cs b/sdk/dotnet/IoT/Outputs/CommandParameter.cs
new file mode 100644
index 0000000000..f82e241fd0
--- /dev/null
+++ b/sdk/dotnet/IoT/Outputs/CommandParameter.cs
@@ -0,0 +1,37 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.IoT.Outputs
+{
+
+ [OutputType]
+ public sealed class CommandParameter
+ {
+ public readonly Outputs.CommandParameterValue? DefaultValue;
+ public readonly string? Description;
+ public readonly string Name;
+ public readonly Outputs.CommandParameterValue? Value;
+
+ [OutputConstructor]
+ private CommandParameter(
+ Outputs.CommandParameterValue? defaultValue,
+
+ string? description,
+
+ string name,
+
+ Outputs.CommandParameterValue? value)
+ {
+ DefaultValue = defaultValue;
+ Description = description;
+ Name = name;
+ Value = value;
+ }
+ }
+}
diff --git a/sdk/dotnet/IoT/Outputs/CommandParameterValue.cs b/sdk/dotnet/IoT/Outputs/CommandParameterValue.cs
new file mode 100644
index 0000000000..8bc9811c34
--- /dev/null
+++ b/sdk/dotnet/IoT/Outputs/CommandParameterValue.cs
@@ -0,0 +1,49 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.IoT.Outputs
+{
+
+ [OutputType]
+ public sealed class CommandParameterValue
+ {
+ public readonly bool? B;
+ public readonly string? Bin;
+ public readonly double? D;
+ public readonly int? I;
+ public readonly string? L;
+ public readonly string? S;
+ public readonly string? Ul;
+
+ [OutputConstructor]
+ private CommandParameterValue(
+ bool? b,
+
+ string? bin,
+
+ double? d,
+
+ int? i,
+
+ string? l,
+
+ string? s,
+
+ string? ul)
+ {
+ B = b;
+ Bin = bin;
+ D = d;
+ I = i;
+ L = l;
+ S = s;
+ Ul = ul;
+ }
+ }
+}
diff --git a/sdk/dotnet/IoT/Outputs/CommandPayload.cs b/sdk/dotnet/IoT/Outputs/CommandPayload.cs
new file mode 100644
index 0000000000..8b1584a365
--- /dev/null
+++ b/sdk/dotnet/IoT/Outputs/CommandPayload.cs
@@ -0,0 +1,29 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.IoT.Outputs
+{
+
+ [OutputType]
+ public sealed class CommandPayload
+ {
+ public readonly string? Content;
+ public readonly string? ContentType;
+
+ [OutputConstructor]
+ private CommandPayload(
+ string? content,
+
+ string? contentType)
+ {
+ Content = content;
+ ContentType = contentType;
+ }
+ }
+}
diff --git a/sdk/dotnet/Organizations/Enums.cs b/sdk/dotnet/Organizations/Enums.cs
index 01ae4ba639..34080022ac 100644
--- a/sdk/dotnet/Organizations/Enums.cs
+++ b/sdk/dotnet/Organizations/Enums.cs
@@ -102,7 +102,7 @@ private OrganizationFeatureSet(string value)
}
///
- /// The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY
+ /// The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY,DECLARATIVE_POLICY_EC2
///
[EnumType]
public readonly struct PolicyType : IEquatable
@@ -120,6 +120,7 @@ private PolicyType(string value)
public static PolicyType TagPolicy { get; } = new PolicyType("TAG_POLICY");
public static PolicyType ChatbotPolicy { get; } = new PolicyType("CHATBOT_POLICY");
public static PolicyType ResourceControlPolicy { get; } = new PolicyType("RESOURCE_CONTROL_POLICY");
+ public static PolicyType DeclarativePolicyEc2 { get; } = new PolicyType("DECLARATIVE_POLICY_EC2");
public static bool operator ==(PolicyType left, PolicyType right) => left.Equals(right);
public static bool operator !=(PolicyType left, PolicyType right) => !left.Equals(right);
diff --git a/sdk/dotnet/Organizations/Policy.cs b/sdk/dotnet/Organizations/Policy.cs
index 4786d325f9..ab1007485d 100644
--- a/sdk/dotnet/Organizations/Policy.cs
+++ b/sdk/dotnet/Organizations/Policy.cs
@@ -66,7 +66,7 @@ public partial class Policy : global::Pulumi.CustomResource
public Output> TargetIds { get; private set; } = null!;
///
- /// The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY
+ /// The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY,DECLARATIVE_POLICY_EC2
///
[Output("type")]
public Output Type { get; private set; } = null!;
@@ -165,7 +165,7 @@ public InputList TargetIds
}
///
- /// The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY
+ /// The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY,DECLARATIVE_POLICY_EC2
///
[Input("type", required: true)]
public Input Type { get; set; } = null!;
diff --git a/sdk/dotnet/QBusiness/Application.cs b/sdk/dotnet/QBusiness/Application.cs
index 5b465fe5c3..19bfecd3ad 100644
--- a/sdk/dotnet/QBusiness/Application.cs
+++ b/sdk/dotnet/QBusiness/Application.cs
@@ -39,6 +39,9 @@ public partial class Application : global::Pulumi.CustomResource
[Output("autoSubscriptionConfiguration")]
public Output AutoSubscriptionConfiguration { get; private set; } = null!;
+ ///
+ /// The OIDC client ID for a Amazon Q Business application.
+ ///
[Output("clientIdsForOidc")]
public Output> ClientIdsForOidc { get; private set; } = null!;
@@ -198,6 +201,10 @@ public sealed class ApplicationArgs : global::Pulumi.ResourceArgs
[Input("clientIdsForOidc")]
private InputList? _clientIdsForOidc;
+
+ ///
+ /// The OIDC client ID for a Amazon Q Business application.
+ ///
public InputList ClientIdsForOidc
{
get => _clientIdsForOidc ?? (_clientIdsForOidc = new InputList());
diff --git a/sdk/dotnet/Ram/GetResourceShare.cs b/sdk/dotnet/Ram/GetResourceShare.cs
new file mode 100644
index 0000000000..3f1a060413
--- /dev/null
+++ b/sdk/dotnet/Ram/GetResourceShare.cs
@@ -0,0 +1,93 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.Ram
+{
+ public static class GetResourceShare
+ {
+ ///
+ /// Resource type definition for AWS::RAM::ResourceShare
+ ///
+ public static Task InvokeAsync(GetResourceShareArgs args, InvokeOptions? options = null)
+ => global::Pulumi.Deployment.Instance.InvokeAsync("aws-native:ram:getResourceShare", args ?? new GetResourceShareArgs(), options.WithDefaults());
+
+ ///
+ /// Resource type definition for AWS::RAM::ResourceShare
+ ///
+ public static Output Invoke(GetResourceShareInvokeArgs args, InvokeOptions? options = null)
+ => global::Pulumi.Deployment.Instance.Invoke("aws-native:ram:getResourceShare", args ?? new GetResourceShareInvokeArgs(), options.WithDefaults());
+ }
+
+
+ public sealed class GetResourceShareArgs : global::Pulumi.InvokeArgs
+ {
+ ///
+ /// The Amazon Resource Name (ARN) of the resource share.
+ ///
+ [Input("arn", required: true)]
+ public string Arn { get; set; } = null!;
+
+ public GetResourceShareArgs()
+ {
+ }
+ public static new GetResourceShareArgs Empty => new GetResourceShareArgs();
+ }
+
+ public sealed class GetResourceShareInvokeArgs : global::Pulumi.InvokeArgs
+ {
+ ///
+ /// The Amazon Resource Name (ARN) of the resource share.
+ ///
+ [Input("arn", required: true)]
+ public Input Arn { get; set; } = null!;
+
+ public GetResourceShareInvokeArgs()
+ {
+ }
+ public static new GetResourceShareInvokeArgs Empty => new GetResourceShareInvokeArgs();
+ }
+
+
+ [OutputType]
+ public sealed class GetResourceShareResult
+ {
+ ///
+ /// Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`.
+ ///
+ public readonly bool? AllowExternalPrincipals;
+ ///
+ /// The Amazon Resource Name (ARN) of the resource share.
+ ///
+ public readonly string? Arn;
+ ///
+ /// Specifies the name of the resource share.
+ ///
+ public readonly string? Name;
+ ///
+ /// Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share.
+ ///
+ public readonly ImmutableArray Tags;
+
+ [OutputConstructor]
+ private GetResourceShareResult(
+ bool? allowExternalPrincipals,
+
+ string? arn,
+
+ string? name,
+
+ ImmutableArray tags)
+ {
+ AllowExternalPrincipals = allowExternalPrincipals;
+ Arn = arn;
+ Name = name;
+ Tags = tags;
+ }
+ }
+}
diff --git a/sdk/dotnet/Ram/ResourceShare.cs b/sdk/dotnet/Ram/ResourceShare.cs
new file mode 100644
index 0000000000..f6edb5b972
--- /dev/null
+++ b/sdk/dotnet/Ram/ResourceShare.cs
@@ -0,0 +1,288 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.Ram
+{
+ ///
+ /// Resource type definition for AWS::RAM::ResourceShare
+ ///
+ /// ## Example Usage
+ /// ### Example
+ /// ```csharp
+ /// using System.Collections.Generic;
+ /// using System.Linq;
+ /// using Pulumi;
+ /// using AwsNative = Pulumi.AwsNative;
+ ///
+ /// return await Deployment.RunAsync(() =>
+ /// {
+ /// var myresourceshare = new AwsNative.Ram.ResourceShare("myresourceshare", new()
+ /// {
+ /// Name = "My Resource Share",
+ /// ResourceArns = new[]
+ /// {
+ /// "arn:aws:ec2:us-east-1:123456789012:resource-type/12345678-1234-1234-1234-12345678",
+ /// },
+ /// Principals = new[]
+ /// {
+ /// "210987654321",
+ /// },
+ /// Tags = new[]
+ /// {
+ /// new AwsNative.Inputs.TagArgs
+ /// {
+ /// Key = "Key1",
+ /// Value = "Value1",
+ /// },
+ /// new AwsNative.Inputs.TagArgs
+ /// {
+ /// Key = "Key2",
+ /// Value = "Value2",
+ /// },
+ /// },
+ /// });
+ ///
+ /// });
+ ///
+ ///
+ /// ```
+ /// ### Example
+ /// ```csharp
+ /// using System.Collections.Generic;
+ /// using System.Linq;
+ /// using Pulumi;
+ /// using AwsNative = Pulumi.AwsNative;
+ ///
+ /// return await Deployment.RunAsync(() =>
+ /// {
+ /// var myresourceshare = new AwsNative.Ram.ResourceShare("myresourceshare", new()
+ /// {
+ /// Name = "My Resource Share",
+ /// ResourceArns = new[]
+ /// {
+ /// "arn:aws:ec2:us-east-1:123456789012:resource-type/12345678-1234-1234-1234-12345678",
+ /// },
+ /// Principals = new[]
+ /// {
+ /// "210987654321",
+ /// },
+ /// Tags = new[]
+ /// {
+ /// new AwsNative.Inputs.TagArgs
+ /// {
+ /// Key = "Key1",
+ /// Value = "Value1",
+ /// },
+ /// new AwsNative.Inputs.TagArgs
+ /// {
+ /// Key = "Key2",
+ /// Value = "Value2",
+ /// },
+ /// },
+ /// });
+ ///
+ /// });
+ ///
+ ///
+ /// ```
+ ///
+ [AwsNativeResourceType("aws-native:ram:ResourceShare")]
+ public partial class ResourceShare : global::Pulumi.CustomResource
+ {
+ ///
+ /// Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`.
+ ///
+ [Output("allowExternalPrincipals")]
+ public Output AllowExternalPrincipals { get; private set; } = null!;
+
+ ///
+ /// The Amazon Resource Name (ARN) of the resource share.
+ ///
+ [Output("arn")]
+ public Output Arn { get; private set; } = null!;
+
+ ///
+ /// Specifies the name of the resource share.
+ ///
+ [Output("name")]
+ public Output Name { get; private set; } = null!;
+
+ ///
+ /// Specifies the [Amazon Resource Names (ARNs)](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) of the AWS RAM permission to associate with the resource share. If you do not specify an ARN for the permission, AWS RAM automatically attaches the default version of the permission for each resource type. You can associate only one permission with each resource type included in the resource share.
+ ///
+ [Output("permissionArns")]
+ public Output> PermissionArns { get; private set; } = null!;
+
+ ///
+ /// Specifies the principals to associate with the resource share. The possible values are:
+ ///
+ /// - An AWS account ID
+ ///
+ /// - An Amazon Resource Name (ARN) of an organization in AWS Organizations
+ ///
+ /// - An ARN of an organizational unit (OU) in AWS Organizations
+ ///
+ /// - An ARN of an IAM role
+ ///
+ /// - An ARN of an IAM user
+ ///
+ [Output("principals")]
+ public Output> Principals { get; private set; } = null!;
+
+ ///
+ /// Specifies a list of one or more ARNs of the resources to associate with the resource share.
+ ///
+ [Output("resourceArns")]
+ public Output> ResourceArns { get; private set; } = null!;
+
+ ///
+ /// Specifies from which source accounts the service principal has access to the resources in this resource share.
+ ///
+ [Output("sources")]
+ public Output> Sources { get; private set; } = null!;
+
+ ///
+ /// Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share.
+ ///
+ [Output("tags")]
+ public Output> Tags { get; private set; } = null!;
+
+
+ ///
+ /// Create a ResourceShare resource with the given unique name, arguments, and options.
+ ///
+ ///
+ /// The unique name of the resource
+ /// The arguments used to populate this resource's properties
+ /// A bag of options that control this resource's behavior
+ public ResourceShare(string name, ResourceShareArgs? args = null, CustomResourceOptions? options = null)
+ : base("aws-native:ram:ResourceShare", name, args ?? new ResourceShareArgs(), MakeResourceOptions(options, ""))
+ {
+ }
+
+ private ResourceShare(string name, Input id, CustomResourceOptions? options = null)
+ : base("aws-native:ram:ResourceShare", name, null, MakeResourceOptions(options, id))
+ {
+ }
+
+ private static CustomResourceOptions MakeResourceOptions(CustomResourceOptions? options, Input? id)
+ {
+ var defaultOptions = new CustomResourceOptions
+ {
+ Version = Utilities.Version,
+ };
+ var merged = CustomResourceOptions.Merge(defaultOptions, options);
+ // Override the ID if one was specified for consistency with other language SDKs.
+ merged.Id = id ?? merged.Id;
+ return merged;
+ }
+ ///
+ /// Get an existing ResourceShare resource's state with the given name, ID, and optional extra
+ /// properties used to qualify the lookup.
+ ///
+ ///
+ /// The unique name of the resulting resource.
+ /// The unique provider ID of the resource to lookup.
+ /// A bag of options that control this resource's behavior
+ public static ResourceShare Get(string name, Input id, CustomResourceOptions? options = null)
+ {
+ return new ResourceShare(name, id, options);
+ }
+ }
+
+ public sealed class ResourceShareArgs : global::Pulumi.ResourceArgs
+ {
+ ///
+ /// Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`.
+ ///
+ [Input("allowExternalPrincipals")]
+ public Input? AllowExternalPrincipals { get; set; }
+
+ ///
+ /// Specifies the name of the resource share.
+ ///
+ [Input("name")]
+ public Input? Name { get; set; }
+
+ [Input("permissionArns")]
+ private InputList? _permissionArns;
+
+ ///
+ /// Specifies the [Amazon Resource Names (ARNs)](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) of the AWS RAM permission to associate with the resource share. If you do not specify an ARN for the permission, AWS RAM automatically attaches the default version of the permission for each resource type. You can associate only one permission with each resource type included in the resource share.
+ ///
+ public InputList PermissionArns
+ {
+ get => _permissionArns ?? (_permissionArns = new InputList());
+ set => _permissionArns = value;
+ }
+
+ [Input("principals")]
+ private InputList? _principals;
+
+ ///
+ /// Specifies the principals to associate with the resource share. The possible values are:
+ ///
+ /// - An AWS account ID
+ ///
+ /// - An Amazon Resource Name (ARN) of an organization in AWS Organizations
+ ///
+ /// - An ARN of an organizational unit (OU) in AWS Organizations
+ ///
+ /// - An ARN of an IAM role
+ ///
+ /// - An ARN of an IAM user
+ ///
+ public InputList Principals
+ {
+ get => _principals ?? (_principals = new InputList());
+ set => _principals = value;
+ }
+
+ [Input("resourceArns")]
+ private InputList? _resourceArns;
+
+ ///
+ /// Specifies a list of one or more ARNs of the resources to associate with the resource share.
+ ///
+ public InputList ResourceArns
+ {
+ get => _resourceArns ?? (_resourceArns = new InputList());
+ set => _resourceArns = value;
+ }
+
+ [Input("sources")]
+ private InputList? _sources;
+
+ ///
+ /// Specifies from which source accounts the service principal has access to the resources in this resource share.
+ ///
+ public InputList Sources
+ {
+ get => _sources ?? (_sources = new InputList());
+ set => _sources = value;
+ }
+
+ [Input("tags")]
+ private InputList? _tags;
+
+ ///
+ /// Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share.
+ ///
+ public InputList Tags
+ {
+ get => _tags ?? (_tags = new InputList());
+ set => _tags = value;
+ }
+
+ public ResourceShareArgs()
+ {
+ }
+ public static new ResourceShareArgs Empty => new ResourceShareArgs();
+ }
+}
diff --git a/sdk/dotnet/Rds/CustomDbEngineVersion.cs b/sdk/dotnet/Rds/CustomDbEngineVersion.cs
index 89079ef123..09712f3e70 100644
--- a/sdk/dotnet/Rds/CustomDbEngineVersion.cs
+++ b/sdk/dotnet/Rds/CustomDbEngineVersion.cs
@@ -10,19 +10,19 @@
namespace Pulumi.AwsNative.Rds
{
///
- /// The AWS::RDS::CustomDBEngineVersion resource creates an Amazon RDS custom DB engine version.
+ /// Creates a custom DB engine version (CEV).
///
[AwsNativeResourceType("aws-native:rds:CustomDbEngineVersion")]
public partial class CustomDbEngineVersion : global::Pulumi.CustomResource
{
///
- /// The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is `my-custom-installation-files`.
+ /// The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is ``my-custom-installation-files``.
///
[Output("databaseInstallationFilesS3BucketName")]
public Output DatabaseInstallationFilesS3BucketName { get; private set; } = null!;
///
- /// The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is `123456789012/cev1`. If this setting isn't specified, no prefix is assumed.
+ /// The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is ``123456789012/cev1``. If this setting isn't specified, no prefix is assumed.
///
[Output("databaseInstallationFilesS3Prefix")]
public Output DatabaseInstallationFilesS3Prefix { get; private set; } = null!;
@@ -40,55 +40,65 @@ public partial class CustomDbEngineVersion : global::Pulumi.CustomResource
public Output Description { get; private set; } = null!;
///
- /// The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`.
+ /// The database engine to use for your custom engine version (CEV).
+ /// Valid values:
+ /// + ``custom-oracle-ee``
+ /// + ``custom-oracle-ee-cdb``
///
[Output("engine")]
public Output Engine { get; private set; } = null!;
///
- /// The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region.
+ /// The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.
+ /// *Constraints:* Minimum length is 1. Maximum length is 60.
+ /// *Pattern:* ``^[a-z0-9_.-]{1,60$``}
///
[Output("engineVersion")]
public Output EngineVersion { get; private set; } = null!;
///
- /// The identifier of Amazon Machine Image (AMI) used for CEV.
+ /// A value that indicates the ID of the AMI.
///
[Output("imageId")]
public Output ImageId { get; private set; } = null!;
///
- /// The AWS KMS key identifier for an encrypted CEV. A symmetric KMS key is required for RDS Custom, but optional for Amazon RDS.
+ /// The AWS KMS key identifier for an encrypted CEV. A symmetric encryption KMS key is required for RDS Custom, but optional for Amazon RDS.
+ /// If you have an existing symmetric encryption KMS key in your account, you can use it with RDS Custom. No further action is necessary. If you don't already have a symmetric encryption KMS key in your account, follow the instructions in [Creating a symmetric encryption KMS key](https://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html#create-symmetric-cmk) in the *Key Management Service Developer Guide*.
+ /// You can choose the same symmetric encryption key when you create a CEV and a DB instance, or choose different keys.
///
[Output("kmsKeyId")]
public Output KmsKeyId { get; private set; } = null!;
///
/// The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.
+ /// The following JSON fields are valid:
+ /// + MediaImportTemplateVersion Version of the CEV manifest. The date is in the format YYYY-MM-DD. + databaseInstallationFileNames Ordered list of installation files for the CEV. + opatchFileNames Ordered list of OPatch installers used for the Oracle DB engine. + psuRuPatchFileNames The PSU and RU patches for this CEV. + OtherPatchFileNames The patches that are not in the list of PSU and RU patches. Amazon RDS applies these patches after applying the PSU and RU patches.
+ /// For more information, see [Creating the CEV manifest](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/custom-cev.html#custom-cev.preparing.manifest) in the *Amazon RDS User Guide*.
///
[Output("manifest")]
public Output Manifest { get; private set; } = null!;
///
- /// The identifier of the source custom engine version.
+ /// The ARN of a CEV to use as a source for creating a new CEV. You can specify a different Amazon Machine Imagine (AMI) by using either ``Source`` or ``UseAwsProvidedLatestImage``. You can't specify a different JSON manifest when you specify ``SourceCustomDbEngineVersionIdentifier``.
///
[Output("sourceCustomDbEngineVersionIdentifier")]
public Output SourceCustomDbEngineVersionIdentifier { get; private set; } = null!;
///
- /// The availability status to be assigned to the CEV.
+ /// A value that indicates the status of a custom engine version (CEV).
///
[Output("status")]
public Output Status { get; private set; } = null!;
///
- /// An array of key-value pairs to apply to this resource.
+ /// A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*
///
[Output("tags")]
public Output> Tags { get; private set; } = null!;
///
- /// A value that indicates whether AWS provided latest image is applied automatically to the Custom Engine Version. By default, AWS provided latest image is applied automatically. This value is only applied on create.
+ /// Specifies whether to use the latest service-provided Amazon Machine Image (AMI) for the CEV. If you specify ``UseAwsProvidedLatestImage``, you can't also specify ``ImageId``.
///
[Output("useAwsProvidedLatestImage")]
public Output UseAwsProvidedLatestImage { get; private set; } = null!;
@@ -151,13 +161,13 @@ public static CustomDbEngineVersion Get(string name, Input id, CustomRes
public sealed class CustomDbEngineVersionArgs : global::Pulumi.ResourceArgs
{
///
- /// The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is `my-custom-installation-files`.
+ /// The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is ``my-custom-installation-files``.
///
[Input("databaseInstallationFilesS3BucketName")]
public Input? DatabaseInstallationFilesS3BucketName { get; set; }
///
- /// The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is `123456789012/cev1`. If this setting isn't specified, no prefix is assumed.
+ /// The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is ``123456789012/cev1``. If this setting isn't specified, no prefix is assumed.
///
[Input("databaseInstallationFilesS3Prefix")]
public Input? DatabaseInstallationFilesS3Prefix { get; set; }
@@ -169,43 +179,53 @@ public sealed class CustomDbEngineVersionArgs : global::Pulumi.ResourceArgs
public Input? Description { get; set; }
///
- /// The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`.
+ /// The database engine to use for your custom engine version (CEV).
+ /// Valid values:
+ /// + ``custom-oracle-ee``
+ /// + ``custom-oracle-ee-cdb``
///
[Input("engine", required: true)]
public Input Engine { get; set; } = null!;
///
- /// The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region.
+ /// The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.
+ /// *Constraints:* Minimum length is 1. Maximum length is 60.
+ /// *Pattern:* ``^[a-z0-9_.-]{1,60$``}
///
[Input("engineVersion", required: true)]
public Input EngineVersion { get; set; } = null!;
///
- /// The identifier of Amazon Machine Image (AMI) used for CEV.
+ /// A value that indicates the ID of the AMI.
///
[Input("imageId")]
public Input? ImageId { get; set; }
///
- /// The AWS KMS key identifier for an encrypted CEV. A symmetric KMS key is required for RDS Custom, but optional for Amazon RDS.
+ /// The AWS KMS key identifier for an encrypted CEV. A symmetric encryption KMS key is required for RDS Custom, but optional for Amazon RDS.
+ /// If you have an existing symmetric encryption KMS key in your account, you can use it with RDS Custom. No further action is necessary. If you don't already have a symmetric encryption KMS key in your account, follow the instructions in [Creating a symmetric encryption KMS key](https://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html#create-symmetric-cmk) in the *Key Management Service Developer Guide*.
+ /// You can choose the same symmetric encryption key when you create a CEV and a DB instance, or choose different keys.
///
[Input("kmsKeyId")]
public Input? KmsKeyId { get; set; }
///
/// The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.
+ /// The following JSON fields are valid:
+ /// + MediaImportTemplateVersion Version of the CEV manifest. The date is in the format YYYY-MM-DD. + databaseInstallationFileNames Ordered list of installation files for the CEV. + opatchFileNames Ordered list of OPatch installers used for the Oracle DB engine. + psuRuPatchFileNames The PSU and RU patches for this CEV. + OtherPatchFileNames The patches that are not in the list of PSU and RU patches. Amazon RDS applies these patches after applying the PSU and RU patches.
+ /// For more information, see [Creating the CEV manifest](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/custom-cev.html#custom-cev.preparing.manifest) in the *Amazon RDS User Guide*.
///
[Input("manifest")]
public Input? Manifest { get; set; }
///
- /// The identifier of the source custom engine version.
+ /// The ARN of a CEV to use as a source for creating a new CEV. You can specify a different Amazon Machine Imagine (AMI) by using either ``Source`` or ``UseAwsProvidedLatestImage``. You can't specify a different JSON manifest when you specify ``SourceCustomDbEngineVersionIdentifier``.
///
[Input("sourceCustomDbEngineVersionIdentifier")]
public Input? SourceCustomDbEngineVersionIdentifier { get; set; }
///
- /// The availability status to be assigned to the CEV.
+ /// A value that indicates the status of a custom engine version (CEV).
///
[Input("status")]
public Input? Status { get; set; }
@@ -214,7 +234,7 @@ public sealed class CustomDbEngineVersionArgs : global::Pulumi.ResourceArgs
private InputList? _tags;
///
- /// An array of key-value pairs to apply to this resource.
+ /// A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*
///
public InputList Tags
{
@@ -223,7 +243,7 @@ public InputList Tags
}
///
- /// A value that indicates whether AWS provided latest image is applied automatically to the Custom Engine Version. By default, AWS provided latest image is applied automatically. This value is only applied on create.
+ /// Specifies whether to use the latest service-provided Amazon Machine Image (AMI) for the CEV. If you specify ``UseAwsProvidedLatestImage``, you can't also specify ``ImageId``.
///
[Input("useAwsProvidedLatestImage")]
public Input? UseAwsProvidedLatestImage { get; set; }
diff --git a/sdk/dotnet/Rds/Enums.cs b/sdk/dotnet/Rds/Enums.cs
index 1ffe793954..69a26c5c50 100644
--- a/sdk/dotnet/Rds/Enums.cs
+++ b/sdk/dotnet/Rds/Enums.cs
@@ -8,7 +8,7 @@
namespace Pulumi.AwsNative.Rds
{
///
- /// The availability status to be assigned to the CEV.
+ /// A value that indicates the status of a custom engine version (CEV).
///
[EnumType]
public readonly struct CustomDbEngineVersionStatus : IEquatable
diff --git a/sdk/dotnet/Rds/GetCustomDbEngineVersion.cs b/sdk/dotnet/Rds/GetCustomDbEngineVersion.cs
index b424e95b5b..ca471db498 100644
--- a/sdk/dotnet/Rds/GetCustomDbEngineVersion.cs
+++ b/sdk/dotnet/Rds/GetCustomDbEngineVersion.cs
@@ -12,13 +12,13 @@ namespace Pulumi.AwsNative.Rds
public static class GetCustomDbEngineVersion
{
///
- /// The AWS::RDS::CustomDBEngineVersion resource creates an Amazon RDS custom DB engine version.
+ /// Creates a custom DB engine version (CEV).
///
public static Task InvokeAsync(GetCustomDbEngineVersionArgs args, InvokeOptions? options = null)
=> global::Pulumi.Deployment.Instance.InvokeAsync("aws-native:rds:getCustomDbEngineVersion", args ?? new GetCustomDbEngineVersionArgs(), options.WithDefaults());
///
- /// The AWS::RDS::CustomDBEngineVersion resource creates an Amazon RDS custom DB engine version.
+ /// Creates a custom DB engine version (CEV).
///
public static Output Invoke(GetCustomDbEngineVersionInvokeArgs args, InvokeOptions? options = null)
=> global::Pulumi.Deployment.Instance.Invoke("aws-native:rds:getCustomDbEngineVersion", args ?? new GetCustomDbEngineVersionInvokeArgs(), options.WithDefaults());
@@ -28,13 +28,18 @@ public static Output Invoke(GetCustomDbEngineVer
public sealed class GetCustomDbEngineVersionArgs : global::Pulumi.InvokeArgs
{
///
- /// The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`.
+ /// The database engine to use for your custom engine version (CEV).
+ /// Valid values:
+ /// + ``custom-oracle-ee``
+ /// + ``custom-oracle-ee-cdb``
///
[Input("engine", required: true)]
public string Engine { get; set; } = null!;
///
- /// The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region.
+ /// The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.
+ /// *Constraints:* Minimum length is 1. Maximum length is 60.
+ /// *Pattern:* ``^[a-z0-9_.-]{1,60$``}
///
[Input("engineVersion", required: true)]
public string EngineVersion { get; set; } = null!;
@@ -48,13 +53,18 @@ public GetCustomDbEngineVersionArgs()
public sealed class GetCustomDbEngineVersionInvokeArgs : global::Pulumi.InvokeArgs
{
///
- /// The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`.
+ /// The database engine to use for your custom engine version (CEV).
+ /// Valid values:
+ /// + ``custom-oracle-ee``
+ /// + ``custom-oracle-ee-cdb``
///
[Input("engine", required: true)]
public Input Engine { get; set; } = null!;
///
- /// The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region.
+ /// The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.
+ /// *Constraints:* Minimum length is 1. Maximum length is 60.
+ /// *Pattern:* ``^[a-z0-9_.-]{1,60$``}
///
[Input("engineVersion", required: true)]
public Input EngineVersion { get; set; } = null!;
@@ -78,11 +88,11 @@ public sealed class GetCustomDbEngineVersionResult
///
public readonly string? Description;
///
- /// The availability status to be assigned to the CEV.
+ /// A value that indicates the status of a custom engine version (CEV).
///
public readonly Pulumi.AwsNative.Rds.CustomDbEngineVersionStatus? Status;
///
- /// An array of key-value pairs to apply to this resource.
+ /// A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*
///
public readonly ImmutableArray Tags;
diff --git a/sdk/dotnet/RedshiftServerless/Enums.cs b/sdk/dotnet/RedshiftServerless/Enums.cs
index df2ef6a427..5e16c28d77 100644
--- a/sdk/dotnet/RedshiftServerless/Enums.cs
+++ b/sdk/dotnet/RedshiftServerless/Enums.cs
@@ -65,6 +65,34 @@ private NamespaceStatus(string value)
public override string ToString() => _value;
}
+ [EnumType]
+ public readonly struct WorkgroupPerformanceTargetStatus : IEquatable
+ {
+ private readonly string _value;
+
+ private WorkgroupPerformanceTargetStatus(string value)
+ {
+ _value = value ?? throw new ArgumentNullException(nameof(value));
+ }
+
+ public static WorkgroupPerformanceTargetStatus Enabled { get; } = new WorkgroupPerformanceTargetStatus("ENABLED");
+ public static WorkgroupPerformanceTargetStatus Disabled { get; } = new WorkgroupPerformanceTargetStatus("DISABLED");
+
+ public static bool operator ==(WorkgroupPerformanceTargetStatus left, WorkgroupPerformanceTargetStatus right) => left.Equals(right);
+ public static bool operator !=(WorkgroupPerformanceTargetStatus left, WorkgroupPerformanceTargetStatus right) => !left.Equals(right);
+
+ public static explicit operator string(WorkgroupPerformanceTargetStatus value) => value._value;
+
+ [EditorBrowsable(EditorBrowsableState.Never)]
+ public override bool Equals(object? obj) => obj is WorkgroupPerformanceTargetStatus other && Equals(other);
+ public bool Equals(WorkgroupPerformanceTargetStatus other) => string.Equals(_value, other._value, StringComparison.Ordinal);
+
+ [EditorBrowsable(EditorBrowsableState.Never)]
+ public override int GetHashCode() => _value?.GetHashCode() ?? 0;
+
+ public override string ToString() => _value;
+ }
+
[EnumType]
public readonly struct WorkgroupStatus : IEquatable
{
diff --git a/sdk/dotnet/RedshiftServerless/GetWorkgroup.cs b/sdk/dotnet/RedshiftServerless/GetWorkgroup.cs
index d7bfeae5bb..cfdfccc0d5 100644
--- a/sdk/dotnet/RedshiftServerless/GetWorkgroup.cs
+++ b/sdk/dotnet/RedshiftServerless/GetWorkgroup.cs
@@ -66,6 +66,10 @@ public sealed class GetWorkgroupResult
///
public readonly int? Port;
///
+ /// A property that represents the price performance target settings for the workgroup.
+ ///
+ public readonly Outputs.WorkgroupPerformanceTarget? PricePerformanceTarget;
+ ///
/// A value that specifies whether the workgroup can be accessible from a public network.
///
public readonly bool? PubliclyAccessible;
@@ -84,6 +88,8 @@ private GetWorkgroupResult(
int? port,
+ Outputs.WorkgroupPerformanceTarget? pricePerformanceTarget,
+
bool? publiclyAccessible,
ImmutableArray tags,
@@ -92,6 +98,7 @@ private GetWorkgroupResult(
{
EnhancedVpcRouting = enhancedVpcRouting;
Port = port;
+ PricePerformanceTarget = pricePerformanceTarget;
PubliclyAccessible = publiclyAccessible;
Tags = tags;
WorkgroupValue = workgroup;
diff --git a/sdk/dotnet/RedshiftServerless/Inputs/WorkgroupPerformanceTargetArgs.cs b/sdk/dotnet/RedshiftServerless/Inputs/WorkgroupPerformanceTargetArgs.cs
new file mode 100644
index 0000000000..c5fb15ebad
--- /dev/null
+++ b/sdk/dotnet/RedshiftServerless/Inputs/WorkgroupPerformanceTargetArgs.cs
@@ -0,0 +1,26 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.RedshiftServerless.Inputs
+{
+
+ public sealed class WorkgroupPerformanceTargetArgs : global::Pulumi.ResourceArgs
+ {
+ [Input("level")]
+ public Input? Level { get; set; }
+
+ [Input("status")]
+ public Input? Status { get; set; }
+
+ public WorkgroupPerformanceTargetArgs()
+ {
+ }
+ public static new WorkgroupPerformanceTargetArgs Empty => new WorkgroupPerformanceTargetArgs();
+ }
+}
diff --git a/sdk/dotnet/RedshiftServerless/Outputs/Workgroup.cs b/sdk/dotnet/RedshiftServerless/Outputs/Workgroup.cs
index d9cf9d6094..6a184ebe57 100644
--- a/sdk/dotnet/RedshiftServerless/Outputs/Workgroup.cs
+++ b/sdk/dotnet/RedshiftServerless/Outputs/Workgroup.cs
@@ -41,6 +41,7 @@ public sealed class Workgroup
/// The namespace the workgroup is associated with.
///
public readonly string? NamespaceName;
+ public readonly Outputs.WorkgroupPerformanceTarget? PricePerformanceTarget;
///
/// A value that specifies whether the workgroup can be accessible from a public network.
///
@@ -86,6 +87,8 @@ private Workgroup(
string? namespaceName,
+ Outputs.WorkgroupPerformanceTarget? pricePerformanceTarget,
+
bool? publiclyAccessible,
ImmutableArray securityGroupIds,
@@ -107,6 +110,7 @@ private Workgroup(
EnhancedVpcRouting = enhancedVpcRouting;
MaxCapacity = maxCapacity;
NamespaceName = namespaceName;
+ PricePerformanceTarget = pricePerformanceTarget;
PubliclyAccessible = publiclyAccessible;
SecurityGroupIds = securityGroupIds;
Status = status;
diff --git a/sdk/dotnet/RedshiftServerless/Outputs/WorkgroupPerformanceTarget.cs b/sdk/dotnet/RedshiftServerless/Outputs/WorkgroupPerformanceTarget.cs
new file mode 100644
index 0000000000..1fbcc6340c
--- /dev/null
+++ b/sdk/dotnet/RedshiftServerless/Outputs/WorkgroupPerformanceTarget.cs
@@ -0,0 +1,29 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.RedshiftServerless.Outputs
+{
+
+ [OutputType]
+ public sealed class WorkgroupPerformanceTarget
+ {
+ public readonly int? Level;
+ public readonly Pulumi.AwsNative.RedshiftServerless.WorkgroupPerformanceTargetStatus? Status;
+
+ [OutputConstructor]
+ private WorkgroupPerformanceTarget(
+ int? level,
+
+ Pulumi.AwsNative.RedshiftServerless.WorkgroupPerformanceTargetStatus? status)
+ {
+ Level = level;
+ Status = status;
+ }
+ }
+}
diff --git a/sdk/dotnet/RedshiftServerless/Workgroup.cs b/sdk/dotnet/RedshiftServerless/Workgroup.cs
index a08a8b738e..4017326335 100644
--- a/sdk/dotnet/RedshiftServerless/Workgroup.cs
+++ b/sdk/dotnet/RedshiftServerless/Workgroup.cs
@@ -51,6 +51,12 @@ public partial class Workgroup : global::Pulumi.CustomResource
[Output("port")]
public Output Port { get; private set; } = null!;
+ ///
+ /// A property that represents the price performance target settings for the workgroup.
+ ///
+ [Output("pricePerformanceTarget")]
+ public Output PricePerformanceTarget { get; private set; } = null!;
+
///
/// A value that specifies whether the workgroup can be accessible from a public network.
///
@@ -179,6 +185,12 @@ public InputList ConfigParameters
[Input("port")]
public Input? Port { get; set; }
+ ///
+ /// A property that represents the price performance target settings for the workgroup.
+ ///
+ [Input("pricePerformanceTarget")]
+ public Input? PricePerformanceTarget { get; set; }
+
///
/// A value that specifies whether the workgroup can be accessible from a public network.
///
diff --git a/sdk/dotnet/S3/Bucket.cs b/sdk/dotnet/S3/Bucket.cs
index 606224dcac..1cbbfea36b 100644
--- a/sdk/dotnet/S3/Bucket.cs
+++ b/sdk/dotnet/S3/Bucket.cs
@@ -948,6 +948,9 @@ public partial class Bucket : global::Pulumi.CustomResource
[Output("loggingConfiguration")]
public Output LoggingConfiguration { get; private set; } = null!;
+ [Output("metadataTableConfiguration")]
+ public Output MetadataTableConfiguration { get; private set; } = null!;
+
///
/// Specifies a metrics configuration for the CloudWatch request metrics (specified by the metrics configuration ID) from an Amazon S3 bucket. If you're updating an existing metrics configuration, note that this is a full replacement of the existing metrics configuration. If you don't include the elements you want to keep, they are erased. For more information, see [PutBucketMetricsConfiguration](https://docs.aws.amazon.com/AmazonS3/latest/API/RESTBucketPUTMetricConfiguration.html).
///
@@ -1163,6 +1166,9 @@ public InputList InventoryConfiguration
[Input("loggingConfiguration")]
public Input? LoggingConfiguration { get; set; }
+ [Input("metadataTableConfiguration")]
+ public Input? MetadataTableConfiguration { get; set; }
+
[Input("metricsConfigurations")]
private InputList? _metricsConfigurations;
diff --git a/sdk/dotnet/S3/GetBucket.cs b/sdk/dotnet/S3/GetBucket.cs
index 2d31f18ac3..23e50d13d2 100644
--- a/sdk/dotnet/S3/GetBucket.cs
+++ b/sdk/dotnet/S3/GetBucket.cs
@@ -115,6 +115,7 @@ public sealed class GetBucketResult
/// Settings that define where logs are stored.
///
public readonly Outputs.BucketLoggingConfiguration? LoggingConfiguration;
+ public readonly Outputs.BucketMetadataTableConfiguration? MetadataTableConfiguration;
///
/// Specifies a metrics configuration for the CloudWatch request metrics (specified by the metrics configuration ID) from an Amazon S3 bucket. If you're updating an existing metrics configuration, note that this is a full replacement of the existing metrics configuration. If you don't include the elements you want to keep, they are erased. For more information, see [PutBucketMetricsConfiguration](https://docs.aws.amazon.com/AmazonS3/latest/API/RESTBucketPUTMetricConfiguration.html).
///
@@ -200,6 +201,8 @@ private GetBucketResult(
Outputs.BucketLoggingConfiguration? loggingConfiguration,
+ Outputs.BucketMetadataTableConfiguration? metadataTableConfiguration,
+
ImmutableArray metricsConfigurations,
Outputs.BucketNotificationConfiguration? notificationConfiguration,
@@ -235,6 +238,7 @@ private GetBucketResult(
InventoryConfigurations = inventoryConfigurations;
LifecycleConfiguration = lifecycleConfiguration;
LoggingConfiguration = loggingConfiguration;
+ MetadataTableConfiguration = metadataTableConfiguration;
MetricsConfigurations = metricsConfigurations;
NotificationConfiguration = notificationConfiguration;
ObjectLockConfiguration = objectLockConfiguration;
diff --git a/sdk/dotnet/S3/Inputs/BucketMetadataTableConfigurationArgs.cs b/sdk/dotnet/S3/Inputs/BucketMetadataTableConfigurationArgs.cs
new file mode 100644
index 0000000000..352d2f8186
--- /dev/null
+++ b/sdk/dotnet/S3/Inputs/BucketMetadataTableConfigurationArgs.cs
@@ -0,0 +1,35 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.S3.Inputs
+{
+
+ public sealed class BucketMetadataTableConfigurationArgs : global::Pulumi.ResourceArgs
+ {
+ ///
+ /// Returns the <code>Error</code> value of the GetBucketMetadataTableConfiguration response.
+ ///
+ [Input("error")]
+ public Input? Error { get; set; }
+
+ [Input("s3TablesDestination", required: true)]
+ public Input S3TablesDestination { get; set; } = null!;
+
+ ///
+ /// Returns the <code>Status</code> value of the <code>GetBucketMetadataTableConfigurationResult</code> response. This value indicates the status of the metadata table. The status values are:<br/><code>CREATING</code> - The metadata table is in the process of being created in the specified table bucket.<br/><code>ACTIVE</code> - The metadata table has been created successfully and records are being delivered to the table.<br/><code>FAILED</code> - Amazon S3 is unable to create the metadata table, or Amazon S3 is unable to deliver records.
+ ///
+ [Input("status")]
+ public Input? Status { get; set; }
+
+ public BucketMetadataTableConfigurationArgs()
+ {
+ }
+ public static new BucketMetadataTableConfigurationArgs Empty => new BucketMetadataTableConfigurationArgs();
+ }
+}
diff --git a/sdk/dotnet/S3/Inputs/BucketMetadataTableErrorArgs.cs b/sdk/dotnet/S3/Inputs/BucketMetadataTableErrorArgs.cs
new file mode 100644
index 0000000000..ccd338c169
--- /dev/null
+++ b/sdk/dotnet/S3/Inputs/BucketMetadataTableErrorArgs.cs
@@ -0,0 +1,32 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.S3.Inputs
+{
+
+ public sealed class BucketMetadataTableErrorArgs : global::Pulumi.ResourceArgs
+ {
+ ///
+ /// If the <code>CreateBucketMetadataTableConfiguration</code> request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows:<br/><code>AccessDeniedCreatingResources</code> - You don't have sufficient permissions to create the required resources. Make sure that you have <code>s3tables:CreateNamespace</code>, <code>s3tables:CreateTable</code>, <code>s3tables:GetTable</code> and <code>s3tables:PutTablePolicy</code> permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>AccessDeniedWritingToTable</code> - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>DestinationTableNotFound</code> - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>ServerInternalError</code> - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>TableAlreadyExists</code> - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>TableBucketNotFound</code> - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.
+ ///
+ [Input("errorCode", required: true)]
+ public Input ErrorCode { get; set; } = null!;
+
+ ///
+ /// If the <code>CreateBucketMetadataTableConfiguration</code> request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows:<br/><code>AccessDeniedCreatingResources</code> - You don't have sufficient permissions to create the required resources. Make sure that you have <code>s3tables:CreateNamespace</code>, <code>s3tables:CreateTable</code>, <code>s3tables:GetTable</code> and <code>s3tables:PutTablePolicy</code> permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>AccessDeniedWritingToTable</code> - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>DestinationTableNotFound</code> - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>ServerInternalError</code> - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>TableAlreadyExists</code> - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>TableBucketNotFound</code> - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.
+ ///
+ [Input("errorMessage", required: true)]
+ public Input ErrorMessage { get; set; } = null!;
+
+ public BucketMetadataTableErrorArgs()
+ {
+ }
+ public static new BucketMetadataTableErrorArgs Empty => new BucketMetadataTableErrorArgs();
+ }
+}
diff --git a/sdk/dotnet/S3/Inputs/BucketS3TablesDestinationArgs.cs b/sdk/dotnet/S3/Inputs/BucketS3TablesDestinationArgs.cs
new file mode 100644
index 0000000000..a40c005204
--- /dev/null
+++ b/sdk/dotnet/S3/Inputs/BucketS3TablesDestinationArgs.cs
@@ -0,0 +1,44 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.S3.Inputs
+{
+
+ public sealed class BucketS3TablesDestinationArgs : global::Pulumi.ResourceArgs
+ {
+ ///
+ /// The Amazon Resource Name (ARN) for the metadata table in the metadata table configuration. The specified metadata table name must be unique within the <code>aws_s3_metadata</code> namespace in the destination table bucket.
+ ///
+ [Input("tableArn")]
+ public Input? TableArn { get; set; }
+
+ ///
+ /// The Amazon Resource Name (ARN) for the table bucket that's specified as the destination in the metadata table configuration. The destination table bucket must be in the same Region and AWS account as the general purpose bucket.
+ ///
+ [Input("tableBucketArn", required: true)]
+ public Input TableBucketArn { get; set; } = null!;
+
+ ///
+ /// The name for the metadata table in your metadata table configuration. The specified metadata table name must be unique within the <code>aws_s3_metadata</code> namespace in the destination table bucket.
+ ///
+ [Input("tableName", required: true)]
+ public Input TableName { get; set; } = null!;
+
+ ///
+ /// The table bucket namespace for the metadata table in your metadata table configuration. This value is always <code>aws_s3_metadata</code>.
+ ///
+ [Input("tableNamespace")]
+ public Input? TableNamespace { get; set; }
+
+ public BucketS3TablesDestinationArgs()
+ {
+ }
+ public static new BucketS3TablesDestinationArgs Empty => new BucketS3TablesDestinationArgs();
+ }
+}
diff --git a/sdk/dotnet/S3/Outputs/BucketMetadataTableConfiguration.cs b/sdk/dotnet/S3/Outputs/BucketMetadataTableConfiguration.cs
new file mode 100644
index 0000000000..933aadd41b
--- /dev/null
+++ b/sdk/dotnet/S3/Outputs/BucketMetadataTableConfiguration.cs
@@ -0,0 +1,39 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.S3.Outputs
+{
+
+ [OutputType]
+ public sealed class BucketMetadataTableConfiguration
+ {
+ ///
+ /// Returns the <code>Error</code> value of the GetBucketMetadataTableConfiguration response.
+ ///
+ public readonly Outputs.BucketMetadataTableError? Error;
+ public readonly Outputs.BucketS3TablesDestination S3TablesDestination;
+ ///
+ /// Returns the <code>Status</code> value of the <code>GetBucketMetadataTableConfigurationResult</code> response. This value indicates the status of the metadata table. The status values are:<br/><code>CREATING</code> - The metadata table is in the process of being created in the specified table bucket.<br/><code>ACTIVE</code> - The metadata table has been created successfully and records are being delivered to the table.<br/><code>FAILED</code> - Amazon S3 is unable to create the metadata table, or Amazon S3 is unable to deliver records.
+ ///
+ public readonly string? Status;
+
+ [OutputConstructor]
+ private BucketMetadataTableConfiguration(
+ Outputs.BucketMetadataTableError? error,
+
+ Outputs.BucketS3TablesDestination s3TablesDestination,
+
+ string? status)
+ {
+ Error = error;
+ S3TablesDestination = s3TablesDestination;
+ Status = status;
+ }
+ }
+}
diff --git a/sdk/dotnet/S3/Outputs/BucketMetadataTableError.cs b/sdk/dotnet/S3/Outputs/BucketMetadataTableError.cs
new file mode 100644
index 0000000000..061afdc2f1
--- /dev/null
+++ b/sdk/dotnet/S3/Outputs/BucketMetadataTableError.cs
@@ -0,0 +1,35 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.S3.Outputs
+{
+
+ [OutputType]
+ public sealed class BucketMetadataTableError
+ {
+ ///
+ /// If the <code>CreateBucketMetadataTableConfiguration</code> request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows:<br/><code>AccessDeniedCreatingResources</code> - You don't have sufficient permissions to create the required resources. Make sure that you have <code>s3tables:CreateNamespace</code>, <code>s3tables:CreateTable</code>, <code>s3tables:GetTable</code> and <code>s3tables:PutTablePolicy</code> permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>AccessDeniedWritingToTable</code> - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>DestinationTableNotFound</code> - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>ServerInternalError</code> - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>TableAlreadyExists</code> - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>TableBucketNotFound</code> - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.
+ ///
+ public readonly string ErrorCode;
+ ///
+ /// If the <code>CreateBucketMetadataTableConfiguration</code> request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows:<br/><code>AccessDeniedCreatingResources</code> - You don't have sufficient permissions to create the required resources. Make sure that you have <code>s3tables:CreateNamespace</code>, <code>s3tables:CreateTable</code>, <code>s3tables:GetTable</code> and <code>s3tables:PutTablePolicy</code> permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>AccessDeniedWritingToTable</code> - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>DestinationTableNotFound</code> - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>ServerInternalError</code> - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>TableAlreadyExists</code> - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.<br/><code>TableBucketNotFound</code> - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.
+ ///
+ public readonly string ErrorMessage;
+
+ [OutputConstructor]
+ private BucketMetadataTableError(
+ string errorCode,
+
+ string errorMessage)
+ {
+ ErrorCode = errorCode;
+ ErrorMessage = errorMessage;
+ }
+ }
+}
diff --git a/sdk/dotnet/S3/Outputs/BucketS3TablesDestination.cs b/sdk/dotnet/S3/Outputs/BucketS3TablesDestination.cs
new file mode 100644
index 0000000000..afe8a95ce7
--- /dev/null
+++ b/sdk/dotnet/S3/Outputs/BucketS3TablesDestination.cs
@@ -0,0 +1,49 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.S3.Outputs
+{
+
+ [OutputType]
+ public sealed class BucketS3TablesDestination
+ {
+ ///
+ /// The Amazon Resource Name (ARN) for the metadata table in the metadata table configuration. The specified metadata table name must be unique within the <code>aws_s3_metadata</code> namespace in the destination table bucket.
+ ///
+ public readonly string? TableArn;
+ ///
+ /// The Amazon Resource Name (ARN) for the table bucket that's specified as the destination in the metadata table configuration. The destination table bucket must be in the same Region and AWS account as the general purpose bucket.
+ ///
+ public readonly string TableBucketArn;
+ ///
+ /// The name for the metadata table in your metadata table configuration. The specified metadata table name must be unique within the <code>aws_s3_metadata</code> namespace in the destination table bucket.
+ ///
+ public readonly string TableName;
+ ///
+ /// The table bucket namespace for the metadata table in your metadata table configuration. This value is always <code>aws_s3_metadata</code>.
+ ///
+ public readonly string? TableNamespace;
+
+ [OutputConstructor]
+ private BucketS3TablesDestination(
+ string? tableArn,
+
+ string tableBucketArn,
+
+ string tableName,
+
+ string? tableNamespace)
+ {
+ TableArn = tableArn;
+ TableBucketArn = tableBucketArn;
+ TableName = tableName;
+ TableNamespace = tableNamespace;
+ }
+ }
+}
diff --git a/sdk/dotnet/S3Express/DirectoryBucket.cs b/sdk/dotnet/S3Express/DirectoryBucket.cs
index 334afa7971..eb3a527acf 100644
--- a/sdk/dotnet/S3Express/DirectoryBucket.cs
+++ b/sdk/dotnet/S3Express/DirectoryBucket.cs
@@ -22,7 +22,7 @@ public partial class DirectoryBucket : global::Pulumi.CustomResource
public Output Arn { get; private set; } = null!;
///
- /// Returns the code for the Availability Zone where the directory bucket was created.
+ /// Returns the code for the Availability Zone or Local Zone where the directory bucket was created. An example for the code of an Availability Zone is 'us-east-1f'.
///
[Output("availabilityZoneName")]
public Output AvailabilityZoneName { get; private set; } = null!;
@@ -34,13 +34,13 @@ public partial class DirectoryBucket : global::Pulumi.CustomResource
public Output BucketEncryption { get; private set; } = null!;
///
- /// Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
+ /// Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
///
[Output("bucketName")]
public Output BucketName { get; private set; } = null!;
///
- /// Specifies the number of Availability Zone that's used for redundancy for the bucket.
+ /// Specifies the number of Availability Zone or Local Zone that's used for redundancy for the bucket.
///
[Output("dataRedundancy")]
public Output DataRedundancy { get; private set; } = null!;
@@ -52,7 +52,7 @@ public partial class DirectoryBucket : global::Pulumi.CustomResource
public Output LifecycleConfiguration { get; private set; } = null!;
///
- /// Specifies the AZ ID of the Availability Zone where the directory bucket will be created. An example AZ ID value is 'use1-az5'.
+ /// Specifies the Zone ID of the Availability Zone or Local Zone where the directory bucket will be created. An example Availability Zone ID value is 'use1-az5'.
///
[Output("locationName")]
public Output LocationName { get; private set; } = null!;
@@ -115,13 +115,13 @@ public sealed class DirectoryBucketArgs : global::Pulumi.ResourceArgs
public Input? BucketEncryption { get; set; }
///
- /// Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
+ /// Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
///
[Input("bucketName")]
public Input? BucketName { get; set; }
///
- /// Specifies the number of Availability Zone that's used for redundancy for the bucket.
+ /// Specifies the number of Availability Zone or Local Zone that's used for redundancy for the bucket.
///
[Input("dataRedundancy", required: true)]
public Input DataRedundancy { get; set; } = null!;
@@ -133,7 +133,7 @@ public sealed class DirectoryBucketArgs : global::Pulumi.ResourceArgs
public Input? LifecycleConfiguration { get; set; }
///
- /// Specifies the AZ ID of the Availability Zone where the directory bucket will be created. An example AZ ID value is 'use1-az5'.
+ /// Specifies the Zone ID of the Availability Zone or Local Zone where the directory bucket will be created. An example Availability Zone ID value is 'use1-az5'.
///
[Input("locationName", required: true)]
public Input LocationName { get; set; } = null!;
diff --git a/sdk/dotnet/S3Express/Enums.cs b/sdk/dotnet/S3Express/Enums.cs
index 37ec5b0b90..480f3fedfe 100644
--- a/sdk/dotnet/S3Express/Enums.cs
+++ b/sdk/dotnet/S3Express/Enums.cs
@@ -8,7 +8,7 @@
namespace Pulumi.AwsNative.S3Express
{
///
- /// Specifies the number of Availability Zone that's used for redundancy for the bucket.
+ /// Specifies the number of Availability Zone or Local Zone that's used for redundancy for the bucket.
///
[EnumType]
public readonly struct DirectoryBucketDataRedundancy : IEquatable
@@ -21,6 +21,7 @@ private DirectoryBucketDataRedundancy(string value)
}
public static DirectoryBucketDataRedundancy SingleAvailabilityZone { get; } = new DirectoryBucketDataRedundancy("SingleAvailabilityZone");
+ public static DirectoryBucketDataRedundancy SingleLocalZone { get; } = new DirectoryBucketDataRedundancy("SingleLocalZone");
public static bool operator ==(DirectoryBucketDataRedundancy left, DirectoryBucketDataRedundancy right) => left.Equals(right);
public static bool operator !=(DirectoryBucketDataRedundancy left, DirectoryBucketDataRedundancy right) => !left.Equals(right);
diff --git a/sdk/dotnet/S3Express/GetDirectoryBucket.cs b/sdk/dotnet/S3Express/GetDirectoryBucket.cs
index 8b5e64ae6c..923a274c6b 100644
--- a/sdk/dotnet/S3Express/GetDirectoryBucket.cs
+++ b/sdk/dotnet/S3Express/GetDirectoryBucket.cs
@@ -28,7 +28,7 @@ public static Output Invoke(GetDirectoryBucketInvokeAr
public sealed class GetDirectoryBucketArgs : global::Pulumi.InvokeArgs
{
///
- /// Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
+ /// Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
///
[Input("bucketName", required: true)]
public string BucketName { get; set; } = null!;
@@ -42,7 +42,7 @@ public GetDirectoryBucketArgs()
public sealed class GetDirectoryBucketInvokeArgs : global::Pulumi.InvokeArgs
{
///
- /// Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
+ /// Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
///
[Input("bucketName", required: true)]
public Input BucketName { get; set; } = null!;
@@ -62,7 +62,7 @@ public sealed class GetDirectoryBucketResult
///
public readonly string? Arn;
///
- /// Returns the code for the Availability Zone where the directory bucket was created.
+ /// Returns the code for the Availability Zone or Local Zone where the directory bucket was created. An example for the code of an Availability Zone is 'us-east-1f'.
///
public readonly string? AvailabilityZoneName;
///
diff --git a/sdk/dotnet/S3Tables/Enums.cs b/sdk/dotnet/S3Tables/Enums.cs
new file mode 100644
index 0000000000..9ba37c8c08
--- /dev/null
+++ b/sdk/dotnet/S3Tables/Enums.cs
@@ -0,0 +1,40 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.ComponentModel;
+using Pulumi;
+
+namespace Pulumi.AwsNative.S3Tables
+{
+ ///
+ /// Indicates whether the Unreferenced File Removal maintenance action is enabled.
+ ///
+ [EnumType]
+ public readonly struct TableBucketUnreferencedFileRemovalStatus : IEquatable
+ {
+ private readonly string _value;
+
+ private TableBucketUnreferencedFileRemovalStatus(string value)
+ {
+ _value = value ?? throw new ArgumentNullException(nameof(value));
+ }
+
+ public static TableBucketUnreferencedFileRemovalStatus Enabled { get; } = new TableBucketUnreferencedFileRemovalStatus("Enabled");
+ public static TableBucketUnreferencedFileRemovalStatus Disabled { get; } = new TableBucketUnreferencedFileRemovalStatus("Disabled");
+
+ public static bool operator ==(TableBucketUnreferencedFileRemovalStatus left, TableBucketUnreferencedFileRemovalStatus right) => left.Equals(right);
+ public static bool operator !=(TableBucketUnreferencedFileRemovalStatus left, TableBucketUnreferencedFileRemovalStatus right) => !left.Equals(right);
+
+ public static explicit operator string(TableBucketUnreferencedFileRemovalStatus value) => value._value;
+
+ [EditorBrowsable(EditorBrowsableState.Never)]
+ public override bool Equals(object? obj) => obj is TableBucketUnreferencedFileRemovalStatus other && Equals(other);
+ public bool Equals(TableBucketUnreferencedFileRemovalStatus other) => string.Equals(_value, other._value, StringComparison.Ordinal);
+
+ [EditorBrowsable(EditorBrowsableState.Never)]
+ public override int GetHashCode() => _value?.GetHashCode() ?? 0;
+
+ public override string ToString() => _value;
+ }
+}
diff --git a/sdk/dotnet/S3Tables/GetTableBucket.cs b/sdk/dotnet/S3Tables/GetTableBucket.cs
new file mode 100644
index 0000000000..bcc68b7b66
--- /dev/null
+++ b/sdk/dotnet/S3Tables/GetTableBucket.cs
@@ -0,0 +1,67 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.S3Tables
+{
+ public static class GetTableBucket
+ {
+ ///
+ /// Creates an Amazon S3 Tables table bucket in the same AWS Region where you create the AWS CloudFormation stack.
+ ///
+ public static Task InvokeAsync(GetTableBucketArgs args, InvokeOptions? options = null)
+ => global::Pulumi.Deployment.Instance.InvokeAsync("aws-native:s3tables:getTableBucket", args ?? new GetTableBucketArgs(), options.WithDefaults());
+
+ ///
+ /// Creates an Amazon S3 Tables table bucket in the same AWS Region where you create the AWS CloudFormation stack.
+ ///
+ public static Output Invoke(GetTableBucketInvokeArgs args, InvokeOptions? options = null)
+ => global::Pulumi.Deployment.Instance.Invoke("aws-native:s3tables:getTableBucket", args ?? new GetTableBucketInvokeArgs(), options.WithDefaults());
+ }
+
+
+ public sealed class GetTableBucketArgs : global::Pulumi.InvokeArgs
+ {
+ [Input("tableBucketArn", required: true)]
+ public string TableBucketArn { get; set; } = null!;
+
+ public GetTableBucketArgs()
+ {
+ }
+ public static new GetTableBucketArgs Empty => new GetTableBucketArgs();
+ }
+
+ public sealed class GetTableBucketInvokeArgs : global::Pulumi.InvokeArgs
+ {
+ [Input("tableBucketArn", required: true)]
+ public Input TableBucketArn { get; set; } = null!;
+
+ public GetTableBucketInvokeArgs()
+ {
+ }
+ public static new GetTableBucketInvokeArgs Empty => new GetTableBucketInvokeArgs();
+ }
+
+
+ [OutputType]
+ public sealed class GetTableBucketResult
+ {
+ public readonly string? TableBucketArn;
+ public readonly Outputs.TableBucketUnreferencedFileRemoval? UnreferencedFileRemoval;
+
+ [OutputConstructor]
+ private GetTableBucketResult(
+ string? tableBucketArn,
+
+ Outputs.TableBucketUnreferencedFileRemoval? unreferencedFileRemoval)
+ {
+ TableBucketArn = tableBucketArn;
+ UnreferencedFileRemoval = unreferencedFileRemoval;
+ }
+ }
+}
diff --git a/sdk/dotnet/S3Tables/GetTableBucketPolicy.cs b/sdk/dotnet/S3Tables/GetTableBucketPolicy.cs
new file mode 100644
index 0000000000..fda2cbaa54
--- /dev/null
+++ b/sdk/dotnet/S3Tables/GetTableBucketPolicy.cs
@@ -0,0 +1,62 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.S3Tables
+{
+ public static class GetTableBucketPolicy
+ {
+ ///
+ /// Applies an IAM resource policy to a table bucket.
+ ///
+ public static Task InvokeAsync(GetTableBucketPolicyArgs args, InvokeOptions? options = null)
+ => global::Pulumi.Deployment.Instance.InvokeAsync("aws-native:s3tables:getTableBucketPolicy", args ?? new GetTableBucketPolicyArgs(), options.WithDefaults());
+
+ ///
+ /// Applies an IAM resource policy to a table bucket.
+ ///
+ public static Output Invoke(GetTableBucketPolicyInvokeArgs args, InvokeOptions? options = null)
+ => global::Pulumi.Deployment.Instance.Invoke("aws-native:s3tables:getTableBucketPolicy", args ?? new GetTableBucketPolicyInvokeArgs(), options.WithDefaults());
+ }
+
+
+ public sealed class GetTableBucketPolicyArgs : global::Pulumi.InvokeArgs
+ {
+ [Input("tableBucketArn", required: true)]
+ public string TableBucketArn { get; set; } = null!;
+
+ public GetTableBucketPolicyArgs()
+ {
+ }
+ public static new GetTableBucketPolicyArgs Empty => new GetTableBucketPolicyArgs();
+ }
+
+ public sealed class GetTableBucketPolicyInvokeArgs : global::Pulumi.InvokeArgs
+ {
+ [Input("tableBucketArn", required: true)]
+ public Input TableBucketArn { get; set; } = null!;
+
+ public GetTableBucketPolicyInvokeArgs()
+ {
+ }
+ public static new GetTableBucketPolicyInvokeArgs Empty => new GetTableBucketPolicyInvokeArgs();
+ }
+
+
+ [OutputType]
+ public sealed class GetTableBucketPolicyResult
+ {
+ public readonly Outputs.TableBucketPolicyResourcePolicy? ResourcePolicy;
+
+ [OutputConstructor]
+ private GetTableBucketPolicyResult(Outputs.TableBucketPolicyResourcePolicy? resourcePolicy)
+ {
+ ResourcePolicy = resourcePolicy;
+ }
+ }
+}
diff --git a/sdk/dotnet/S3Tables/Inputs/TableBucketPolicyResourcePolicyArgs.cs b/sdk/dotnet/S3Tables/Inputs/TableBucketPolicyResourcePolicyArgs.cs
new file mode 100644
index 0000000000..3f98c23e35
--- /dev/null
+++ b/sdk/dotnet/S3Tables/Inputs/TableBucketPolicyResourcePolicyArgs.cs
@@ -0,0 +1,23 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.S3Tables.Inputs
+{
+
+ ///
+ /// A policy document containing permissions to add to the specified table bucket. In IAM, you must provide policy documents in JSON format. However, in CloudFormation you can provide the policy in JSON or YAML format because CloudFormation converts YAML to JSON before submitting it to IAM.
+ ///
+ public sealed class TableBucketPolicyResourcePolicyArgs : global::Pulumi.ResourceArgs
+ {
+ public TableBucketPolicyResourcePolicyArgs()
+ {
+ }
+ public static new TableBucketPolicyResourcePolicyArgs Empty => new TableBucketPolicyResourcePolicyArgs();
+ }
+}
diff --git a/sdk/dotnet/S3Tables/Inputs/TableBucketUnreferencedFileRemovalArgs.cs b/sdk/dotnet/S3Tables/Inputs/TableBucketUnreferencedFileRemovalArgs.cs
new file mode 100644
index 0000000000..b6a32b061d
--- /dev/null
+++ b/sdk/dotnet/S3Tables/Inputs/TableBucketUnreferencedFileRemovalArgs.cs
@@ -0,0 +1,41 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.S3Tables.Inputs
+{
+
+ ///
+ /// Settings governing the Unreferenced File Removal maintenance action. Unreferenced file removal identifies and deletes all objects that are not referenced by any table snapshots.
+ ///
+ public sealed class TableBucketUnreferencedFileRemovalArgs : global::Pulumi.ResourceArgs
+ {
+ ///
+ /// S3 permanently deletes noncurrent objects after the number of days specified by the NoncurrentDays property.
+ ///
+ [Input("noncurrentDays")]
+ public Input? NoncurrentDays { get; set; }
+
+ ///
+ /// Indicates whether the Unreferenced File Removal maintenance action is enabled.
+ ///
+ [Input("status")]
+ public Input? Status { get; set; }
+
+ ///
+ /// For any object not referenced by your table and older than the UnreferencedDays property, S3 creates a delete marker and marks the object version as noncurrent.
+ ///
+ [Input("unreferencedDays")]
+ public Input? UnreferencedDays { get; set; }
+
+ public TableBucketUnreferencedFileRemovalArgs()
+ {
+ }
+ public static new TableBucketUnreferencedFileRemovalArgs Empty => new TableBucketUnreferencedFileRemovalArgs();
+ }
+}
diff --git a/sdk/dotnet/S3Tables/Outputs/TableBucketPolicyResourcePolicy.cs b/sdk/dotnet/S3Tables/Outputs/TableBucketPolicyResourcePolicy.cs
new file mode 100644
index 0000000000..6fee345788
--- /dev/null
+++ b/sdk/dotnet/S3Tables/Outputs/TableBucketPolicyResourcePolicy.cs
@@ -0,0 +1,24 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.S3Tables.Outputs
+{
+
+ ///
+ /// A policy document containing permissions to add to the specified table bucket. In IAM, you must provide policy documents in JSON format. However, in CloudFormation you can provide the policy in JSON or YAML format because CloudFormation converts YAML to JSON before submitting it to IAM.
+ ///
+ [OutputType]
+ public sealed class TableBucketPolicyResourcePolicy
+ {
+ [OutputConstructor]
+ private TableBucketPolicyResourcePolicy()
+ {
+ }
+ }
+}
diff --git a/sdk/dotnet/S3Tables/Outputs/TableBucketUnreferencedFileRemoval.cs b/sdk/dotnet/S3Tables/Outputs/TableBucketUnreferencedFileRemoval.cs
new file mode 100644
index 0000000000..d668afb643
--- /dev/null
+++ b/sdk/dotnet/S3Tables/Outputs/TableBucketUnreferencedFileRemoval.cs
@@ -0,0 +1,45 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.S3Tables.Outputs
+{
+
+ ///
+ /// Settings governing the Unreferenced File Removal maintenance action. Unreferenced file removal identifies and deletes all objects that are not referenced by any table snapshots.
+ ///
+ [OutputType]
+ public sealed class TableBucketUnreferencedFileRemoval
+ {
+ ///
+ /// S3 permanently deletes noncurrent objects after the number of days specified by the NoncurrentDays property.
+ ///
+ public readonly int? NoncurrentDays;
+ ///
+ /// Indicates whether the Unreferenced File Removal maintenance action is enabled.
+ ///
+ public readonly Pulumi.AwsNative.S3Tables.TableBucketUnreferencedFileRemovalStatus? Status;
+ ///
+ /// For any object not referenced by your table and older than the UnreferencedDays property, S3 creates a delete marker and marks the object version as noncurrent.
+ ///
+ public readonly int? UnreferencedDays;
+
+ [OutputConstructor]
+ private TableBucketUnreferencedFileRemoval(
+ int? noncurrentDays,
+
+ Pulumi.AwsNative.S3Tables.TableBucketUnreferencedFileRemovalStatus? status,
+
+ int? unreferencedDays)
+ {
+ NoncurrentDays = noncurrentDays;
+ Status = status;
+ UnreferencedDays = unreferencedDays;
+ }
+ }
+}
diff --git a/sdk/dotnet/S3Tables/README.md b/sdk/dotnet/S3Tables/README.md
new file mode 100644
index 0000000000..77b2f47ec2
--- /dev/null
+++ b/sdk/dotnet/S3Tables/README.md
@@ -0,0 +1 @@
+A native Pulumi package for creating and managing Amazon Web Services (AWS) resources.
diff --git a/sdk/dotnet/S3Tables/TableBucket.cs b/sdk/dotnet/S3Tables/TableBucket.cs
new file mode 100644
index 0000000000..3595b4525e
--- /dev/null
+++ b/sdk/dotnet/S3Tables/TableBucket.cs
@@ -0,0 +1,87 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.S3Tables
+{
+ ///
+ /// Creates an Amazon S3 Tables table bucket in the same AWS Region where you create the AWS CloudFormation stack.
+ ///
+ [AwsNativeResourceType("aws-native:s3tables:TableBucket")]
+ public partial class TableBucket : global::Pulumi.CustomResource
+ {
+ [Output("tableBucketArn")]
+ public Output TableBucketArn { get; private set; } = null!;
+
+ [Output("tableBucketName")]
+ public Output TableBucketName { get; private set; } = null!;
+
+ [Output("unreferencedFileRemoval")]
+ public Output UnreferencedFileRemoval { get; private set; } = null!;
+
+
+ ///
+ /// Create a TableBucket resource with the given unique name, arguments, and options.
+ ///
+ ///
+ /// The unique name of the resource
+ /// The arguments used to populate this resource's properties
+ /// A bag of options that control this resource's behavior
+ public TableBucket(string name, TableBucketArgs? args = null, CustomResourceOptions? options = null)
+ : base("aws-native:s3tables:TableBucket", name, args ?? new TableBucketArgs(), MakeResourceOptions(options, ""))
+ {
+ }
+
+ private TableBucket(string name, Input id, CustomResourceOptions? options = null)
+ : base("aws-native:s3tables:TableBucket", name, null, MakeResourceOptions(options, id))
+ {
+ }
+
+ private static CustomResourceOptions MakeResourceOptions(CustomResourceOptions? options, Input? id)
+ {
+ var defaultOptions = new CustomResourceOptions
+ {
+ Version = Utilities.Version,
+ ReplaceOnChanges =
+ {
+ "tableBucketName",
+ },
+ };
+ var merged = CustomResourceOptions.Merge(defaultOptions, options);
+ // Override the ID if one was specified for consistency with other language SDKs.
+ merged.Id = id ?? merged.Id;
+ return merged;
+ }
+ ///
+ /// Get an existing TableBucket resource's state with the given name, ID, and optional extra
+ /// properties used to qualify the lookup.
+ ///
+ ///
+ /// The unique name of the resulting resource.
+ /// The unique provider ID of the resource to lookup.
+ /// A bag of options that control this resource's behavior
+ public static TableBucket Get(string name, Input id, CustomResourceOptions? options = null)
+ {
+ return new TableBucket(name, id, options);
+ }
+ }
+
+ public sealed class TableBucketArgs : global::Pulumi.ResourceArgs
+ {
+ [Input("tableBucketName")]
+ public Input? TableBucketName { get; set; }
+
+ [Input("unreferencedFileRemoval")]
+ public Input? UnreferencedFileRemoval { get; set; }
+
+ public TableBucketArgs()
+ {
+ }
+ public static new TableBucketArgs Empty => new TableBucketArgs();
+ }
+}
diff --git a/sdk/dotnet/S3Tables/TableBucketPolicy.cs b/sdk/dotnet/S3Tables/TableBucketPolicy.cs
new file mode 100644
index 0000000000..5fea7bad89
--- /dev/null
+++ b/sdk/dotnet/S3Tables/TableBucketPolicy.cs
@@ -0,0 +1,84 @@
+// *** WARNING: this file was generated by pulumi. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+using System;
+using System.Collections.Generic;
+using System.Collections.Immutable;
+using System.Threading.Tasks;
+using Pulumi.Serialization;
+
+namespace Pulumi.AwsNative.S3Tables
+{
+ ///
+ /// Applies an IAM resource policy to a table bucket.
+ ///
+ [AwsNativeResourceType("aws-native:s3tables:TableBucketPolicy")]
+ public partial class TableBucketPolicy : global::Pulumi.CustomResource
+ {
+ [Output("resourcePolicy")]
+ public Output ResourcePolicy { get; private set; } = null!;
+
+ [Output("tableBucketArn")]
+ public Output TableBucketArn { get; private set; } = null!;
+
+
+ ///
+ /// Create a TableBucketPolicy resource with the given unique name, arguments, and options.
+ ///
+ ///
+ /// The unique name of the resource
+ /// The arguments used to populate this resource's properties
+ /// A bag of options that control this resource's behavior
+ public TableBucketPolicy(string name, TableBucketPolicyArgs args, CustomResourceOptions? options = null)
+ : base("aws-native:s3tables:TableBucketPolicy", name, args ?? new TableBucketPolicyArgs(), MakeResourceOptions(options, ""))
+ {
+ }
+
+ private TableBucketPolicy(string name, Input id, CustomResourceOptions? options = null)
+ : base("aws-native:s3tables:TableBucketPolicy", name, null, MakeResourceOptions(options, id))
+ {
+ }
+
+ private static CustomResourceOptions MakeResourceOptions(CustomResourceOptions? options, Input? id)
+ {
+ var defaultOptions = new CustomResourceOptions
+ {
+ Version = Utilities.Version,
+ ReplaceOnChanges =
+ {
+ "tableBucketArn",
+ },
+ };
+ var merged = CustomResourceOptions.Merge(defaultOptions, options);
+ // Override the ID if one was specified for consistency with other language SDKs.
+ merged.Id = id ?? merged.Id;
+ return merged;
+ }
+ ///
+ /// Get an existing TableBucketPolicy resource's state with the given name, ID, and optional extra
+ /// properties used to qualify the lookup.
+ ///
+ ///
+ /// The unique name of the resulting resource.
+ /// The unique provider ID of the resource to lookup.
+ /// A bag of options that control this resource's behavior
+ public static TableBucketPolicy Get(string name, Input id, CustomResourceOptions? options = null)
+ {
+ return new TableBucketPolicy(name, id, options);
+ }
+ }
+
+ public sealed class TableBucketPolicyArgs : global::Pulumi.ResourceArgs
+ {
+ [Input("resourcePolicy", required: true)]
+ public Input ResourcePolicy { get; set; } = null!;
+
+ [Input("tableBucketArn", required: true)]
+ public Input TableBucketArn { get; set; } = null!;
+
+ public TableBucketPolicyArgs()
+ {
+ }
+ public static new TableBucketPolicyArgs Empty => new TableBucketPolicyArgs();
+ }
+}
diff --git a/sdk/go/aws/apigateway/domainNameV2.go b/sdk/go/aws/apigateway/domainNameV2.go
index 2e193b3809..01c3284357 100644
--- a/sdk/go/aws/apigateway/domainNameV2.go
+++ b/sdk/go/aws/apigateway/domainNameV2.go
@@ -26,8 +26,6 @@ type DomainNameV2 struct {
DomainNameId pulumi.StringOutput `pulumi:"domainNameId"`
// The endpoint configuration to indicate the types of endpoints an API (RestApi) or its custom domain name (DomainName) has.
EndpointConfiguration DomainNameV2EndpointConfigurationPtrOutput `pulumi:"endpointConfiguration"`
- // Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
- ManagementPolicy pulumi.AnyOutput `pulumi:"managementPolicy"`
// A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .
//
// Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
@@ -90,8 +88,6 @@ type domainNameV2Args struct {
DomainName *string `pulumi:"domainName"`
// The endpoint configuration to indicate the types of endpoints an API (RestApi) or its custom domain name (DomainName) has.
EndpointConfiguration *DomainNameV2EndpointConfiguration `pulumi:"endpointConfiguration"`
- // Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
- ManagementPolicy interface{} `pulumi:"managementPolicy"`
// A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .
//
// Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
@@ -110,8 +106,6 @@ type DomainNameV2Args struct {
DomainName pulumi.StringPtrInput
// The endpoint configuration to indicate the types of endpoints an API (RestApi) or its custom domain name (DomainName) has.
EndpointConfiguration DomainNameV2EndpointConfigurationPtrInput
- // Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
- ManagementPolicy pulumi.Input
// A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .
//
// Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
@@ -184,11 +178,6 @@ func (o DomainNameV2Output) EndpointConfiguration() DomainNameV2EndpointConfigur
return o.ApplyT(func(v *DomainNameV2) DomainNameV2EndpointConfigurationPtrOutput { return v.EndpointConfiguration }).(DomainNameV2EndpointConfigurationPtrOutput)
}
-// Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
-func (o DomainNameV2Output) ManagementPolicy() pulumi.AnyOutput {
- return o.ApplyT(func(v *DomainNameV2) pulumi.AnyOutput { return v.ManagementPolicy }).(pulumi.AnyOutput)
-}
-
// A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .
//
// Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
diff --git a/sdk/go/aws/apigateway/getDomainNameV2.go b/sdk/go/aws/apigateway/getDomainNameV2.go
index 5e6d3103da..7c23f14830 100644
--- a/sdk/go/aws/apigateway/getDomainNameV2.go
+++ b/sdk/go/aws/apigateway/getDomainNameV2.go
@@ -35,8 +35,6 @@ type LookupDomainNameV2Result struct {
DomainNameArn *string `pulumi:"domainNameArn"`
// The domain name ID.
DomainNameId *string `pulumi:"domainNameId"`
- // Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
- ManagementPolicy interface{} `pulumi:"managementPolicy"`
// A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .
//
// Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
@@ -102,11 +100,6 @@ func (o LookupDomainNameV2ResultOutput) DomainNameId() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupDomainNameV2Result) *string { return v.DomainNameId }).(pulumi.StringPtrOutput)
}
-// Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
-func (o LookupDomainNameV2ResultOutput) ManagementPolicy() pulumi.AnyOutput {
- return o.ApplyT(func(v LookupDomainNameV2Result) interface{} { return v.ManagementPolicy }).(pulumi.AnyOutput)
-}
-
// A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .
//
// Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
diff --git a/sdk/go/aws/applicationautoscaling/pulumiTypes.go b/sdk/go/aws/applicationautoscaling/pulumiTypes.go
index 4acaabbcae..79160c8309 100644
--- a/sdk/go/aws/applicationautoscaling/pulumiTypes.go
+++ b/sdk/go/aws/applicationautoscaling/pulumiTypes.go
@@ -1108,6 +1108,7 @@ func (o ScalingPolicyPredefinedMetricSpecificationPtrOutput) ResourceLabel() pul
}).(pulumi.StringPtrOutput)
}
+// Represents a CloudWatch metric of your choosing for a predictive scaling policy.
type ScalingPolicyPredictiveScalingCustomizedCapacityMetric struct {
// One or more metric data queries to provide data points for a metric specification.
MetricDataQueries []ScalingPolicyPredictiveScalingMetricDataQuery `pulumi:"metricDataQueries"`
@@ -1124,6 +1125,7 @@ type ScalingPolicyPredictiveScalingCustomizedCapacityMetricInput interface {
ToScalingPolicyPredictiveScalingCustomizedCapacityMetricOutputWithContext(context.Context) ScalingPolicyPredictiveScalingCustomizedCapacityMetricOutput
}
+// Represents a CloudWatch metric of your choosing for a predictive scaling policy.
type ScalingPolicyPredictiveScalingCustomizedCapacityMetricArgs struct {
// One or more metric data queries to provide data points for a metric specification.
MetricDataQueries ScalingPolicyPredictiveScalingMetricDataQueryArrayInput `pulumi:"metricDataQueries"`
@@ -1182,6 +1184,7 @@ func (i *scalingPolicyPredictiveScalingCustomizedCapacityMetricPtrType) ToScalin
return pulumi.ToOutputWithContext(ctx, i).(ScalingPolicyPredictiveScalingCustomizedCapacityMetricPtrOutput)
}
+// Represents a CloudWatch metric of your choosing for a predictive scaling policy.
type ScalingPolicyPredictiveScalingCustomizedCapacityMetricOutput struct{ *pulumi.OutputState }
func (ScalingPolicyPredictiveScalingCustomizedCapacityMetricOutput) ElementType() reflect.Type {
@@ -1247,6 +1250,7 @@ func (o ScalingPolicyPredictiveScalingCustomizedCapacityMetricPtrOutput) MetricD
}).(ScalingPolicyPredictiveScalingMetricDataQueryArrayOutput)
}
+// The customized load metric specification.
type ScalingPolicyPredictiveScalingCustomizedLoadMetric struct {
MetricDataQueries []ScalingPolicyPredictiveScalingMetricDataQuery `pulumi:"metricDataQueries"`
}
@@ -1262,6 +1266,7 @@ type ScalingPolicyPredictiveScalingCustomizedLoadMetricInput interface {
ToScalingPolicyPredictiveScalingCustomizedLoadMetricOutputWithContext(context.Context) ScalingPolicyPredictiveScalingCustomizedLoadMetricOutput
}
+// The customized load metric specification.
type ScalingPolicyPredictiveScalingCustomizedLoadMetricArgs struct {
MetricDataQueries ScalingPolicyPredictiveScalingMetricDataQueryArrayInput `pulumi:"metricDataQueries"`
}
@@ -1319,6 +1324,7 @@ func (i *scalingPolicyPredictiveScalingCustomizedLoadMetricPtrType) ToScalingPol
return pulumi.ToOutputWithContext(ctx, i).(ScalingPolicyPredictiveScalingCustomizedLoadMetricPtrOutput)
}
+// The customized load metric specification.
type ScalingPolicyPredictiveScalingCustomizedLoadMetricOutput struct{ *pulumi.OutputState }
func (ScalingPolicyPredictiveScalingCustomizedLoadMetricOutput) ElementType() reflect.Type {
@@ -1382,6 +1388,7 @@ func (o ScalingPolicyPredictiveScalingCustomizedLoadMetricPtrOutput) MetricDataQ
}).(ScalingPolicyPredictiveScalingMetricDataQueryArrayOutput)
}
+// One or more metric data queries to provide data points for a metric specification.
type ScalingPolicyPredictiveScalingCustomizedScalingMetric struct {
// One or more metric data queries to provide data points for a metric specification.
MetricDataQueries []ScalingPolicyPredictiveScalingMetricDataQuery `pulumi:"metricDataQueries"`
@@ -1398,6 +1405,7 @@ type ScalingPolicyPredictiveScalingCustomizedScalingMetricInput interface {
ToScalingPolicyPredictiveScalingCustomizedScalingMetricOutputWithContext(context.Context) ScalingPolicyPredictiveScalingCustomizedScalingMetricOutput
}
+// One or more metric data queries to provide data points for a metric specification.
type ScalingPolicyPredictiveScalingCustomizedScalingMetricArgs struct {
// One or more metric data queries to provide data points for a metric specification.
MetricDataQueries ScalingPolicyPredictiveScalingMetricDataQueryArrayInput `pulumi:"metricDataQueries"`
@@ -1456,6 +1464,7 @@ func (i *scalingPolicyPredictiveScalingCustomizedScalingMetricPtrType) ToScaling
return pulumi.ToOutputWithContext(ctx, i).(ScalingPolicyPredictiveScalingCustomizedScalingMetricPtrOutput)
}
+// One or more metric data queries to provide data points for a metric specification.
type ScalingPolicyPredictiveScalingCustomizedScalingMetricOutput struct{ *pulumi.OutputState }
func (ScalingPolicyPredictiveScalingCustomizedScalingMetricOutput) ElementType() reflect.Type {
@@ -1521,8 +1530,9 @@ func (o ScalingPolicyPredictiveScalingCustomizedScalingMetricPtrOutput) MetricDa
}).(ScalingPolicyPredictiveScalingMetricDataQueryArrayOutput)
}
+// Describes the scaling metric.
type ScalingPolicyPredictiveScalingMetric struct {
- // The dimensions for the metric.
+ // Describes the dimensions of the metric.
Dimensions []ScalingPolicyPredictiveScalingMetricDimension `pulumi:"dimensions"`
// The name of the metric.
MetricName *string `pulumi:"metricName"`
@@ -1541,8 +1551,9 @@ type ScalingPolicyPredictiveScalingMetricInput interface {
ToScalingPolicyPredictiveScalingMetricOutputWithContext(context.Context) ScalingPolicyPredictiveScalingMetricOutput
}
+// Describes the scaling metric.
type ScalingPolicyPredictiveScalingMetricArgs struct {
- // The dimensions for the metric.
+ // Describes the dimensions of the metric.
Dimensions ScalingPolicyPredictiveScalingMetricDimensionArrayInput `pulumi:"dimensions"`
// The name of the metric.
MetricName pulumi.StringPtrInput `pulumi:"metricName"`
@@ -1603,6 +1614,7 @@ func (i *scalingPolicyPredictiveScalingMetricPtrType) ToScalingPolicyPredictiveS
return pulumi.ToOutputWithContext(ctx, i).(ScalingPolicyPredictiveScalingMetricPtrOutput)
}
+// Describes the scaling metric.
type ScalingPolicyPredictiveScalingMetricOutput struct{ *pulumi.OutputState }
func (ScalingPolicyPredictiveScalingMetricOutput) ElementType() reflect.Type {
@@ -1627,7 +1639,7 @@ func (o ScalingPolicyPredictiveScalingMetricOutput) ToScalingPolicyPredictiveSca
}).(ScalingPolicyPredictiveScalingMetricPtrOutput)
}
-// The dimensions for the metric.
+// Describes the dimensions of the metric.
func (o ScalingPolicyPredictiveScalingMetricOutput) Dimensions() ScalingPolicyPredictiveScalingMetricDimensionArrayOutput {
return o.ApplyT(func(v ScalingPolicyPredictiveScalingMetric) []ScalingPolicyPredictiveScalingMetricDimension {
return v.Dimensions
@@ -1668,7 +1680,7 @@ func (o ScalingPolicyPredictiveScalingMetricPtrOutput) Elem() ScalingPolicyPredi
}).(ScalingPolicyPredictiveScalingMetricOutput)
}
-// The dimensions for the metric.
+// Describes the dimensions of the metric.
func (o ScalingPolicyPredictiveScalingMetricPtrOutput) Dimensions() ScalingPolicyPredictiveScalingMetricDimensionArrayOutput {
return o.ApplyT(func(v *ScalingPolicyPredictiveScalingMetric) []ScalingPolicyPredictiveScalingMetricDimension {
if v == nil {
@@ -1698,16 +1710,21 @@ func (o ScalingPolicyPredictiveScalingMetricPtrOutput) Namespace() pulumi.String
}).(pulumi.StringPtrOutput)
}
+// The metric data to return. Also defines whether this call is returning data for one metric only, or whether it is performing a math expression on the values of returned metric statistics to create a new time series. A time series is a series of data points, each of which is associated with a timestamp.
type ScalingPolicyPredictiveScalingMetricDataQuery struct {
- // The math expression to perform on the returned data, if this object is performing a math expression.
+ // The math expression to perform on the returned data, if this object is performing a math expression. This expression can use the ``Id`` of the other metrics to refer to those metrics, and can also use the ``Id`` of other expressions to use the result of those expressions.
+ // Conditional: Within each ``MetricDataQuery`` object, you must specify either ``Expression`` or ``MetricStat``, but not both.
Expression *string `pulumi:"expression"`
- // A short name that identifies the object's results in the response.
+ // A short name that identifies the object's results in the response. This name must be unique among all ``MetricDataQuery`` objects specified for a single scaling policy. If you are performing math expressions on this set of data, this name represents that data and can serve as a variable in the mathematical expression. The valid characters are letters, numbers, and underscores. The first character must be a lowercase letter.
Id *string `pulumi:"id"`
// A human-readable label for this metric or expression. This is especially useful if this is a math expression, so that you know what the value represents.
Label *string `pulumi:"label"`
// Information about the metric data to return.
+ // Conditional: Within each ``MetricDataQuery`` object, you must specify either ``Expression`` or ``MetricStat``, but not both.
MetricStat *ScalingPolicyPredictiveScalingMetricStat `pulumi:"metricStat"`
// Indicates whether to return the timestamps and raw data values of this metric.
+ // If you use any math expressions, specify ``true`` for this value for only the final math expression that the metric specification is based on. You must specify ``false`` for ``ReturnData`` for all the other metrics and expressions used in the metric specification.
+ // If you are only retrieving metrics and not performing any math expressions, do not specify anything for ``ReturnData``. This sets it to its default (``true``).
ReturnData *bool `pulumi:"returnData"`
}
@@ -1722,16 +1739,21 @@ type ScalingPolicyPredictiveScalingMetricDataQueryInput interface {
ToScalingPolicyPredictiveScalingMetricDataQueryOutputWithContext(context.Context) ScalingPolicyPredictiveScalingMetricDataQueryOutput
}
+// The metric data to return. Also defines whether this call is returning data for one metric only, or whether it is performing a math expression on the values of returned metric statistics to create a new time series. A time series is a series of data points, each of which is associated with a timestamp.
type ScalingPolicyPredictiveScalingMetricDataQueryArgs struct {
- // The math expression to perform on the returned data, if this object is performing a math expression.
+ // The math expression to perform on the returned data, if this object is performing a math expression. This expression can use the ``Id`` of the other metrics to refer to those metrics, and can also use the ``Id`` of other expressions to use the result of those expressions.
+ // Conditional: Within each ``MetricDataQuery`` object, you must specify either ``Expression`` or ``MetricStat``, but not both.
Expression pulumi.StringPtrInput `pulumi:"expression"`
- // A short name that identifies the object's results in the response.
+ // A short name that identifies the object's results in the response. This name must be unique among all ``MetricDataQuery`` objects specified for a single scaling policy. If you are performing math expressions on this set of data, this name represents that data and can serve as a variable in the mathematical expression. The valid characters are letters, numbers, and underscores. The first character must be a lowercase letter.
Id pulumi.StringPtrInput `pulumi:"id"`
// A human-readable label for this metric or expression. This is especially useful if this is a math expression, so that you know what the value represents.
Label pulumi.StringPtrInput `pulumi:"label"`
// Information about the metric data to return.
+ // Conditional: Within each ``MetricDataQuery`` object, you must specify either ``Expression`` or ``MetricStat``, but not both.
MetricStat ScalingPolicyPredictiveScalingMetricStatPtrInput `pulumi:"metricStat"`
// Indicates whether to return the timestamps and raw data values of this metric.
+ // If you use any math expressions, specify ``true`` for this value for only the final math expression that the metric specification is based on. You must specify ``false`` for ``ReturnData`` for all the other metrics and expressions used in the metric specification.
+ // If you are only retrieving metrics and not performing any math expressions, do not specify anything for ``ReturnData``. This sets it to its default (``true``).
ReturnData pulumi.BoolPtrInput `pulumi:"returnData"`
}
@@ -1772,6 +1794,7 @@ func (i ScalingPolicyPredictiveScalingMetricDataQueryArray) ToScalingPolicyPredi
return pulumi.ToOutputWithContext(ctx, i).(ScalingPolicyPredictiveScalingMetricDataQueryArrayOutput)
}
+// The metric data to return. Also defines whether this call is returning data for one metric only, or whether it is performing a math expression on the values of returned metric statistics to create a new time series. A time series is a series of data points, each of which is associated with a timestamp.
type ScalingPolicyPredictiveScalingMetricDataQueryOutput struct{ *pulumi.OutputState }
func (ScalingPolicyPredictiveScalingMetricDataQueryOutput) ElementType() reflect.Type {
@@ -1786,12 +1809,14 @@ func (o ScalingPolicyPredictiveScalingMetricDataQueryOutput) ToScalingPolicyPred
return o
}
-// The math expression to perform on the returned data, if this object is performing a math expression.
+// The math expression to perform on the returned data, if this object is performing a math expression. This expression can use the “Id“ of the other metrics to refer to those metrics, and can also use the “Id“ of other expressions to use the result of those expressions.
+//
+// Conditional: Within each ``MetricDataQuery`` object, you must specify either ``Expression`` or ``MetricStat``, but not both.
func (o ScalingPolicyPredictiveScalingMetricDataQueryOutput) Expression() pulumi.StringPtrOutput {
return o.ApplyT(func(v ScalingPolicyPredictiveScalingMetricDataQuery) *string { return v.Expression }).(pulumi.StringPtrOutput)
}
-// A short name that identifies the object's results in the response.
+// A short name that identifies the object's results in the response. This name must be unique among all “MetricDataQuery“ objects specified for a single scaling policy. If you are performing math expressions on this set of data, this name represents that data and can serve as a variable in the mathematical expression. The valid characters are letters, numbers, and underscores. The first character must be a lowercase letter.
func (o ScalingPolicyPredictiveScalingMetricDataQueryOutput) Id() pulumi.StringPtrOutput {
return o.ApplyT(func(v ScalingPolicyPredictiveScalingMetricDataQuery) *string { return v.Id }).(pulumi.StringPtrOutput)
}
@@ -1802,6 +1827,8 @@ func (o ScalingPolicyPredictiveScalingMetricDataQueryOutput) Label() pulumi.Stri
}
// Information about the metric data to return.
+//
+// Conditional: Within each ``MetricDataQuery`` object, you must specify either ``Expression`` or ``MetricStat``, but not both.
func (o ScalingPolicyPredictiveScalingMetricDataQueryOutput) MetricStat() ScalingPolicyPredictiveScalingMetricStatPtrOutput {
return o.ApplyT(func(v ScalingPolicyPredictiveScalingMetricDataQuery) *ScalingPolicyPredictiveScalingMetricStat {
return v.MetricStat
@@ -1809,6 +1836,9 @@ func (o ScalingPolicyPredictiveScalingMetricDataQueryOutput) MetricStat() Scalin
}
// Indicates whether to return the timestamps and raw data values of this metric.
+//
+// If you use any math expressions, specify ``true`` for this value for only the final math expression that the metric specification is based on. You must specify ``false`` for ``ReturnData`` for all the other metrics and expressions used in the metric specification.
+// If you are only retrieving metrics and not performing any math expressions, do not specify anything for ``ReturnData``. This sets it to its default (``true``).
func (o ScalingPolicyPredictiveScalingMetricDataQueryOutput) ReturnData() pulumi.BoolPtrOutput {
return o.ApplyT(func(v ScalingPolicyPredictiveScalingMetricDataQuery) *bool { return v.ReturnData }).(pulumi.BoolPtrOutput)
}
@@ -1833,6 +1863,7 @@ func (o ScalingPolicyPredictiveScalingMetricDataQueryArrayOutput) Index(i pulumi
}).(ScalingPolicyPredictiveScalingMetricDataQueryOutput)
}
+// Describes the dimension of a metric.
type ScalingPolicyPredictiveScalingMetricDimension struct {
// The name of the dimension.
Name *string `pulumi:"name"`
@@ -1851,6 +1882,7 @@ type ScalingPolicyPredictiveScalingMetricDimensionInput interface {
ToScalingPolicyPredictiveScalingMetricDimensionOutputWithContext(context.Context) ScalingPolicyPredictiveScalingMetricDimensionOutput
}
+// Describes the dimension of a metric.
type ScalingPolicyPredictiveScalingMetricDimensionArgs struct {
// The name of the dimension.
Name pulumi.StringPtrInput `pulumi:"name"`
@@ -1895,6 +1927,7 @@ func (i ScalingPolicyPredictiveScalingMetricDimensionArray) ToScalingPolicyPredi
return pulumi.ToOutputWithContext(ctx, i).(ScalingPolicyPredictiveScalingMetricDimensionArrayOutput)
}
+// Describes the dimension of a metric.
type ScalingPolicyPredictiveScalingMetricDimensionOutput struct{ *pulumi.OutputState }
func (ScalingPolicyPredictiveScalingMetricDimensionOutput) ElementType() reflect.Type {
@@ -1939,6 +1972,9 @@ func (o ScalingPolicyPredictiveScalingMetricDimensionArrayOutput) Index(i pulumi
}).(ScalingPolicyPredictiveScalingMetricDimensionOutput)
}
+// This structure specifies the metrics and target utilization settings for a predictive scaling policy.
+//
+// You must specify either a metric pair, or a load metric and a scaling metric individually. Specifying a metric pair instead of individual metrics provides a simpler way to configure metrics for a scaling policy. You choose the metric pair, and the policy automatically knows the correct sum and average statistics to use for the load metric and the scaling metric.
type ScalingPolicyPredictiveScalingMetricSpecification struct {
// The customized capacity metric specification.
CustomizedCapacityMetricSpecification *ScalingPolicyPredictiveScalingCustomizedCapacityMetric `pulumi:"customizedCapacityMetricSpecification"`
@@ -1967,6 +2003,9 @@ type ScalingPolicyPredictiveScalingMetricSpecificationInput interface {
ToScalingPolicyPredictiveScalingMetricSpecificationOutputWithContext(context.Context) ScalingPolicyPredictiveScalingMetricSpecificationOutput
}
+// This structure specifies the metrics and target utilization settings for a predictive scaling policy.
+//
+// You must specify either a metric pair, or a load metric and a scaling metric individually. Specifying a metric pair instead of individual metrics provides a simpler way to configure metrics for a scaling policy. You choose the metric pair, and the policy automatically knows the correct sum and average statistics to use for the load metric and the scaling metric.
type ScalingPolicyPredictiveScalingMetricSpecificationArgs struct {
// The customized capacity metric specification.
CustomizedCapacityMetricSpecification ScalingPolicyPredictiveScalingCustomizedCapacityMetricPtrInput `pulumi:"customizedCapacityMetricSpecification"`
@@ -2021,6 +2060,9 @@ func (i ScalingPolicyPredictiveScalingMetricSpecificationArray) ToScalingPolicyP
return pulumi.ToOutputWithContext(ctx, i).(ScalingPolicyPredictiveScalingMetricSpecificationArrayOutput)
}
+// This structure specifies the metrics and target utilization settings for a predictive scaling policy.
+//
+// You must specify either a metric pair, or a load metric and a scaling metric individually. Specifying a metric pair instead of individual metrics provides a simpler way to configure metrics for a scaling policy. You choose the metric pair, and the policy automatically knows the correct sum and average statistics to use for the load metric and the scaling metric.
type ScalingPolicyPredictiveScalingMetricSpecificationOutput struct{ *pulumi.OutputState }
func (ScalingPolicyPredictiveScalingMetricSpecificationOutput) ElementType() reflect.Type {
@@ -2102,12 +2144,14 @@ func (o ScalingPolicyPredictiveScalingMetricSpecificationArrayOutput) Index(i pu
}).(ScalingPolicyPredictiveScalingMetricSpecificationOutput)
}
+// This structure defines the CloudWatch metric to return, along with the statistic and unit.
type ScalingPolicyPredictiveScalingMetricStat struct {
- // The CloudWatch metric to return, including the metric name, namespace, and dimensions.
+ // The CloudWatch metric to return, including the metric name, namespace, and dimensions. To get the exact metric name, namespace, and dimensions, inspect the [Metric](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_Metric.html) object that is returned by a call to [ListMetrics](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_ListMetrics.html).
Metric *ScalingPolicyPredictiveScalingMetric `pulumi:"metric"`
- // The statistic to return. It can include any CloudWatch statistic or extended statistic.
+ // The statistic to return. It can include any CloudWatch statistic or extended statistic. For a list of valid values, see the table in [Statistics](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/cloudwatch_concepts.html#Statistic) in the *Amazon CloudWatch User Guide*.
+ // The most commonly used metrics for predictive scaling are ``Average`` and ``Sum``.
Stat *string `pulumi:"stat"`
- // The unit to use for the returned data points.
+ // The unit to use for the returned data points. For a complete list of the units that CloudWatch supports, see the [MetricDatum](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_MetricDatum.html) data type in the *Amazon CloudWatch API Reference*.
Unit *string `pulumi:"unit"`
}
@@ -2122,12 +2166,14 @@ type ScalingPolicyPredictiveScalingMetricStatInput interface {
ToScalingPolicyPredictiveScalingMetricStatOutputWithContext(context.Context) ScalingPolicyPredictiveScalingMetricStatOutput
}
+// This structure defines the CloudWatch metric to return, along with the statistic and unit.
type ScalingPolicyPredictiveScalingMetricStatArgs struct {
- // The CloudWatch metric to return, including the metric name, namespace, and dimensions.
+ // The CloudWatch metric to return, including the metric name, namespace, and dimensions. To get the exact metric name, namespace, and dimensions, inspect the [Metric](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_Metric.html) object that is returned by a call to [ListMetrics](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_ListMetrics.html).
Metric ScalingPolicyPredictiveScalingMetricPtrInput `pulumi:"metric"`
- // The statistic to return. It can include any CloudWatch statistic or extended statistic.
+ // The statistic to return. It can include any CloudWatch statistic or extended statistic. For a list of valid values, see the table in [Statistics](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/cloudwatch_concepts.html#Statistic) in the *Amazon CloudWatch User Guide*.
+ // The most commonly used metrics for predictive scaling are ``Average`` and ``Sum``.
Stat pulumi.StringPtrInput `pulumi:"stat"`
- // The unit to use for the returned data points.
+ // The unit to use for the returned data points. For a complete list of the units that CloudWatch supports, see the [MetricDatum](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_MetricDatum.html) data type in the *Amazon CloudWatch API Reference*.
Unit pulumi.StringPtrInput `pulumi:"unit"`
}
@@ -2184,6 +2230,7 @@ func (i *scalingPolicyPredictiveScalingMetricStatPtrType) ToScalingPolicyPredict
return pulumi.ToOutputWithContext(ctx, i).(ScalingPolicyPredictiveScalingMetricStatPtrOutput)
}
+// This structure defines the CloudWatch metric to return, along with the statistic and unit.
type ScalingPolicyPredictiveScalingMetricStatOutput struct{ *pulumi.OutputState }
func (ScalingPolicyPredictiveScalingMetricStatOutput) ElementType() reflect.Type {
@@ -2208,19 +2255,21 @@ func (o ScalingPolicyPredictiveScalingMetricStatOutput) ToScalingPolicyPredictiv
}).(ScalingPolicyPredictiveScalingMetricStatPtrOutput)
}
-// The CloudWatch metric to return, including the metric name, namespace, and dimensions.
+// The CloudWatch metric to return, including the metric name, namespace, and dimensions. To get the exact metric name, namespace, and dimensions, inspect the [Metric](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_Metric.html) object that is returned by a call to [ListMetrics](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_ListMetrics.html).
func (o ScalingPolicyPredictiveScalingMetricStatOutput) Metric() ScalingPolicyPredictiveScalingMetricPtrOutput {
return o.ApplyT(func(v ScalingPolicyPredictiveScalingMetricStat) *ScalingPolicyPredictiveScalingMetric {
return v.Metric
}).(ScalingPolicyPredictiveScalingMetricPtrOutput)
}
-// The statistic to return. It can include any CloudWatch statistic or extended statistic.
+// The statistic to return. It can include any CloudWatch statistic or extended statistic. For a list of valid values, see the table in [Statistics](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/cloudwatch_concepts.html#Statistic) in the *Amazon CloudWatch User Guide*.
+//
+// The most commonly used metrics for predictive scaling are ``Average`` and ``Sum``.
func (o ScalingPolicyPredictiveScalingMetricStatOutput) Stat() pulumi.StringPtrOutput {
return o.ApplyT(func(v ScalingPolicyPredictiveScalingMetricStat) *string { return v.Stat }).(pulumi.StringPtrOutput)
}
-// The unit to use for the returned data points.
+// The unit to use for the returned data points. For a complete list of the units that CloudWatch supports, see the [MetricDatum](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_MetricDatum.html) data type in the *Amazon CloudWatch API Reference*.
func (o ScalingPolicyPredictiveScalingMetricStatOutput) Unit() pulumi.StringPtrOutput {
return o.ApplyT(func(v ScalingPolicyPredictiveScalingMetricStat) *string { return v.Unit }).(pulumi.StringPtrOutput)
}
@@ -2249,7 +2298,7 @@ func (o ScalingPolicyPredictiveScalingMetricStatPtrOutput) Elem() ScalingPolicyP
}).(ScalingPolicyPredictiveScalingMetricStatOutput)
}
-// The CloudWatch metric to return, including the metric name, namespace, and dimensions.
+// The CloudWatch metric to return, including the metric name, namespace, and dimensions. To get the exact metric name, namespace, and dimensions, inspect the [Metric](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_Metric.html) object that is returned by a call to [ListMetrics](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_ListMetrics.html).
func (o ScalingPolicyPredictiveScalingMetricStatPtrOutput) Metric() ScalingPolicyPredictiveScalingMetricPtrOutput {
return o.ApplyT(func(v *ScalingPolicyPredictiveScalingMetricStat) *ScalingPolicyPredictiveScalingMetric {
if v == nil {
@@ -2259,7 +2308,9 @@ func (o ScalingPolicyPredictiveScalingMetricStatPtrOutput) Metric() ScalingPolic
}).(ScalingPolicyPredictiveScalingMetricPtrOutput)
}
-// The statistic to return. It can include any CloudWatch statistic or extended statistic.
+// The statistic to return. It can include any CloudWatch statistic or extended statistic. For a list of valid values, see the table in [Statistics](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/cloudwatch_concepts.html#Statistic) in the *Amazon CloudWatch User Guide*.
+//
+// The most commonly used metrics for predictive scaling are ``Average`` and ``Sum``.
func (o ScalingPolicyPredictiveScalingMetricStatPtrOutput) Stat() pulumi.StringPtrOutput {
return o.ApplyT(func(v *ScalingPolicyPredictiveScalingMetricStat) *string {
if v == nil {
@@ -2269,7 +2320,7 @@ func (o ScalingPolicyPredictiveScalingMetricStatPtrOutput) Stat() pulumi.StringP
}).(pulumi.StringPtrOutput)
}
-// The unit to use for the returned data points.
+// The unit to use for the returned data points. For a complete list of the units that CloudWatch supports, see the [MetricDatum](https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_MetricDatum.html) data type in the *Amazon CloudWatch API Reference*.
func (o ScalingPolicyPredictiveScalingMetricStatPtrOutput) Unit() pulumi.StringPtrOutput {
return o.ApplyT(func(v *ScalingPolicyPredictiveScalingMetricStat) *string {
if v == nil {
@@ -2279,22 +2330,20 @@ func (o ScalingPolicyPredictiveScalingMetricStatPtrOutput) Unit() pulumi.StringP
}).(pulumi.StringPtrOutput)
}
+// Represents a predictive scaling policy configuration.
type ScalingPolicyPredictiveScalingPolicyConfiguration struct {
- // Defines the behavior that should be applied if the forecast capacity approaches or exceeds the maximum capacity. Defaults to `HonorMaxCapacity` if not specified.
+ // Defines the behavior that should be applied if the forecast capacity approaches or exceeds the maximum capacity. Defaults to ``HonorMaxCapacity`` if not specified.
MaxCapacityBreachBehavior *string `pulumi:"maxCapacityBreachBehavior"`
// The size of the capacity buffer to use when the forecast capacity is close to or exceeds the maximum capacity. The value is specified as a percentage relative to the forecast capacity. For example, if the buffer is 10, this means a 10 percent buffer, such that if the forecast capacity is 50, and the maximum capacity is 40, then the effective maximum capacity is 55.
- //
- // Required if the `MaxCapacityBreachBehavior` property is set to `IncreaseMaxCapacity` , and cannot be used otherwise.
+ // Required if the ``MaxCapacityBreachBehavior`` property is set to ``IncreaseMaxCapacity``, and cannot be used otherwise.
MaxCapacityBuffer *int `pulumi:"maxCapacityBuffer"`
// This structure includes the metrics and target utilization to use for predictive scaling.
- //
- // This is an array, but we currently only support a single metric specification. That is, you can specify a target value and a single metric pair, or a target value and one scaling metric and one load metric.
+ // This is an array, but we currently only support a single metric specification. That is, you can specify a target value and a single metric pair, or a target value and one scaling metric and one load metric.
MetricSpecifications []ScalingPolicyPredictiveScalingMetricSpecification `pulumi:"metricSpecifications"`
- // The predictive scaling mode. Defaults to `ForecastOnly` if not specified.
+ // The predictive scaling mode. Defaults to ``ForecastOnly`` if not specified.
Mode *string `pulumi:"mode"`
// The amount of time, in seconds, that the start time can be advanced.
- //
- // The value must be less than the forecast interval duration of 3600 seconds (60 minutes). Defaults to 300 seconds if not specified.
+ // The value must be less than the forecast interval duration of 3600 seconds (60 minutes). Defaults to 300 seconds if not specified.
SchedulingBufferTime *int `pulumi:"schedulingBufferTime"`
}
@@ -2309,22 +2358,20 @@ type ScalingPolicyPredictiveScalingPolicyConfigurationInput interface {
ToScalingPolicyPredictiveScalingPolicyConfigurationOutputWithContext(context.Context) ScalingPolicyPredictiveScalingPolicyConfigurationOutput
}
+// Represents a predictive scaling policy configuration.
type ScalingPolicyPredictiveScalingPolicyConfigurationArgs struct {
- // Defines the behavior that should be applied if the forecast capacity approaches or exceeds the maximum capacity. Defaults to `HonorMaxCapacity` if not specified.
+ // Defines the behavior that should be applied if the forecast capacity approaches or exceeds the maximum capacity. Defaults to ``HonorMaxCapacity`` if not specified.
MaxCapacityBreachBehavior pulumi.StringPtrInput `pulumi:"maxCapacityBreachBehavior"`
// The size of the capacity buffer to use when the forecast capacity is close to or exceeds the maximum capacity. The value is specified as a percentage relative to the forecast capacity. For example, if the buffer is 10, this means a 10 percent buffer, such that if the forecast capacity is 50, and the maximum capacity is 40, then the effective maximum capacity is 55.
- //
- // Required if the `MaxCapacityBreachBehavior` property is set to `IncreaseMaxCapacity` , and cannot be used otherwise.
+ // Required if the ``MaxCapacityBreachBehavior`` property is set to ``IncreaseMaxCapacity``, and cannot be used otherwise.
MaxCapacityBuffer pulumi.IntPtrInput `pulumi:"maxCapacityBuffer"`
// This structure includes the metrics and target utilization to use for predictive scaling.
- //
- // This is an array, but we currently only support a single metric specification. That is, you can specify a target value and a single metric pair, or a target value and one scaling metric and one load metric.
+ // This is an array, but we currently only support a single metric specification. That is, you can specify a target value and a single metric pair, or a target value and one scaling metric and one load metric.
MetricSpecifications ScalingPolicyPredictiveScalingMetricSpecificationArrayInput `pulumi:"metricSpecifications"`
- // The predictive scaling mode. Defaults to `ForecastOnly` if not specified.
+ // The predictive scaling mode. Defaults to ``ForecastOnly`` if not specified.
Mode pulumi.StringPtrInput `pulumi:"mode"`
// The amount of time, in seconds, that the start time can be advanced.
- //
- // The value must be less than the forecast interval duration of 3600 seconds (60 minutes). Defaults to 300 seconds if not specified.
+ // The value must be less than the forecast interval duration of 3600 seconds (60 minutes). Defaults to 300 seconds if not specified.
SchedulingBufferTime pulumi.IntPtrInput `pulumi:"schedulingBufferTime"`
}
@@ -2381,6 +2428,7 @@ func (i *scalingPolicyPredictiveScalingPolicyConfigurationPtrType) ToScalingPoli
return pulumi.ToOutputWithContext(ctx, i).(ScalingPolicyPredictiveScalingPolicyConfigurationPtrOutput)
}
+// Represents a predictive scaling policy configuration.
type ScalingPolicyPredictiveScalingPolicyConfigurationOutput struct{ *pulumi.OutputState }
func (ScalingPolicyPredictiveScalingPolicyConfigurationOutput) ElementType() reflect.Type {
@@ -2405,35 +2453,35 @@ func (o ScalingPolicyPredictiveScalingPolicyConfigurationOutput) ToScalingPolicy
}).(ScalingPolicyPredictiveScalingPolicyConfigurationPtrOutput)
}
-// Defines the behavior that should be applied if the forecast capacity approaches or exceeds the maximum capacity. Defaults to `HonorMaxCapacity` if not specified.
+// Defines the behavior that should be applied if the forecast capacity approaches or exceeds the maximum capacity. Defaults to “HonorMaxCapacity“ if not specified.
func (o ScalingPolicyPredictiveScalingPolicyConfigurationOutput) MaxCapacityBreachBehavior() pulumi.StringPtrOutput {
return o.ApplyT(func(v ScalingPolicyPredictiveScalingPolicyConfiguration) *string { return v.MaxCapacityBreachBehavior }).(pulumi.StringPtrOutput)
}
// The size of the capacity buffer to use when the forecast capacity is close to or exceeds the maximum capacity. The value is specified as a percentage relative to the forecast capacity. For example, if the buffer is 10, this means a 10 percent buffer, such that if the forecast capacity is 50, and the maximum capacity is 40, then the effective maximum capacity is 55.
//
-// Required if the `MaxCapacityBreachBehavior` property is set to `IncreaseMaxCapacity` , and cannot be used otherwise.
+// Required if the ``MaxCapacityBreachBehavior`` property is set to ``IncreaseMaxCapacity``, and cannot be used otherwise.
func (o ScalingPolicyPredictiveScalingPolicyConfigurationOutput) MaxCapacityBuffer() pulumi.IntPtrOutput {
return o.ApplyT(func(v ScalingPolicyPredictiveScalingPolicyConfiguration) *int { return v.MaxCapacityBuffer }).(pulumi.IntPtrOutput)
}
// This structure includes the metrics and target utilization to use for predictive scaling.
//
-// This is an array, but we currently only support a single metric specification. That is, you can specify a target value and a single metric pair, or a target value and one scaling metric and one load metric.
+// This is an array, but we currently only support a single metric specification. That is, you can specify a target value and a single metric pair, or a target value and one scaling metric and one load metric.
func (o ScalingPolicyPredictiveScalingPolicyConfigurationOutput) MetricSpecifications() ScalingPolicyPredictiveScalingMetricSpecificationArrayOutput {
return o.ApplyT(func(v ScalingPolicyPredictiveScalingPolicyConfiguration) []ScalingPolicyPredictiveScalingMetricSpecification {
return v.MetricSpecifications
}).(ScalingPolicyPredictiveScalingMetricSpecificationArrayOutput)
}
-// The predictive scaling mode. Defaults to `ForecastOnly` if not specified.
+// The predictive scaling mode. Defaults to “ForecastOnly“ if not specified.
func (o ScalingPolicyPredictiveScalingPolicyConfigurationOutput) Mode() pulumi.StringPtrOutput {
return o.ApplyT(func(v ScalingPolicyPredictiveScalingPolicyConfiguration) *string { return v.Mode }).(pulumi.StringPtrOutput)
}
// The amount of time, in seconds, that the start time can be advanced.
//
-// The value must be less than the forecast interval duration of 3600 seconds (60 minutes). Defaults to 300 seconds if not specified.
+// The value must be less than the forecast interval duration of 3600 seconds (60 minutes). Defaults to 300 seconds if not specified.
func (o ScalingPolicyPredictiveScalingPolicyConfigurationOutput) SchedulingBufferTime() pulumi.IntPtrOutput {
return o.ApplyT(func(v ScalingPolicyPredictiveScalingPolicyConfiguration) *int { return v.SchedulingBufferTime }).(pulumi.IntPtrOutput)
}
@@ -2462,7 +2510,7 @@ func (o ScalingPolicyPredictiveScalingPolicyConfigurationPtrOutput) Elem() Scali
}).(ScalingPolicyPredictiveScalingPolicyConfigurationOutput)
}
-// Defines the behavior that should be applied if the forecast capacity approaches or exceeds the maximum capacity. Defaults to `HonorMaxCapacity` if not specified.
+// Defines the behavior that should be applied if the forecast capacity approaches or exceeds the maximum capacity. Defaults to “HonorMaxCapacity“ if not specified.
func (o ScalingPolicyPredictiveScalingPolicyConfigurationPtrOutput) MaxCapacityBreachBehavior() pulumi.StringPtrOutput {
return o.ApplyT(func(v *ScalingPolicyPredictiveScalingPolicyConfiguration) *string {
if v == nil {
@@ -2474,7 +2522,7 @@ func (o ScalingPolicyPredictiveScalingPolicyConfigurationPtrOutput) MaxCapacityB
// The size of the capacity buffer to use when the forecast capacity is close to or exceeds the maximum capacity. The value is specified as a percentage relative to the forecast capacity. For example, if the buffer is 10, this means a 10 percent buffer, such that if the forecast capacity is 50, and the maximum capacity is 40, then the effective maximum capacity is 55.
//
-// Required if the `MaxCapacityBreachBehavior` property is set to `IncreaseMaxCapacity` , and cannot be used otherwise.
+// Required if the ``MaxCapacityBreachBehavior`` property is set to ``IncreaseMaxCapacity``, and cannot be used otherwise.
func (o ScalingPolicyPredictiveScalingPolicyConfigurationPtrOutput) MaxCapacityBuffer() pulumi.IntPtrOutput {
return o.ApplyT(func(v *ScalingPolicyPredictiveScalingPolicyConfiguration) *int {
if v == nil {
@@ -2486,7 +2534,7 @@ func (o ScalingPolicyPredictiveScalingPolicyConfigurationPtrOutput) MaxCapacityB
// This structure includes the metrics and target utilization to use for predictive scaling.
//
-// This is an array, but we currently only support a single metric specification. That is, you can specify a target value and a single metric pair, or a target value and one scaling metric and one load metric.
+// This is an array, but we currently only support a single metric specification. That is, you can specify a target value and a single metric pair, or a target value and one scaling metric and one load metric.
func (o ScalingPolicyPredictiveScalingPolicyConfigurationPtrOutput) MetricSpecifications() ScalingPolicyPredictiveScalingMetricSpecificationArrayOutput {
return o.ApplyT(func(v *ScalingPolicyPredictiveScalingPolicyConfiguration) []ScalingPolicyPredictiveScalingMetricSpecification {
if v == nil {
@@ -2496,7 +2544,7 @@ func (o ScalingPolicyPredictiveScalingPolicyConfigurationPtrOutput) MetricSpecif
}).(ScalingPolicyPredictiveScalingMetricSpecificationArrayOutput)
}
-// The predictive scaling mode. Defaults to `ForecastOnly` if not specified.
+// The predictive scaling mode. Defaults to “ForecastOnly“ if not specified.
func (o ScalingPolicyPredictiveScalingPolicyConfigurationPtrOutput) Mode() pulumi.StringPtrOutput {
return o.ApplyT(func(v *ScalingPolicyPredictiveScalingPolicyConfiguration) *string {
if v == nil {
@@ -2508,7 +2556,7 @@ func (o ScalingPolicyPredictiveScalingPolicyConfigurationPtrOutput) Mode() pulum
// The amount of time, in seconds, that the start time can be advanced.
//
-// The value must be less than the forecast interval duration of 3600 seconds (60 minutes). Defaults to 300 seconds if not specified.
+// The value must be less than the forecast interval duration of 3600 seconds (60 minutes). Defaults to 300 seconds if not specified.
func (o ScalingPolicyPredictiveScalingPolicyConfigurationPtrOutput) SchedulingBufferTime() pulumi.IntPtrOutput {
return o.ApplyT(func(v *ScalingPolicyPredictiveScalingPolicyConfiguration) *int {
if v == nil {
@@ -2518,6 +2566,9 @@ func (o ScalingPolicyPredictiveScalingPolicyConfigurationPtrOutput) SchedulingBu
}).(pulumi.IntPtrOutput)
}
+// Describes a load metric for a predictive scaling policy.
+//
+// When returned in the output of ``DescribePolicies``, it indicates that a predictive scaling policy uses individually specified load and scaling metrics instead of a metric pair.
type ScalingPolicyPredictiveScalingPredefinedLoadMetric struct {
// The metric type.
PredefinedMetricType string `pulumi:"predefinedMetricType"`
@@ -2536,6 +2587,9 @@ type ScalingPolicyPredictiveScalingPredefinedLoadMetricInput interface {
ToScalingPolicyPredictiveScalingPredefinedLoadMetricOutputWithContext(context.Context) ScalingPolicyPredictiveScalingPredefinedLoadMetricOutput
}
+// Describes a load metric for a predictive scaling policy.
+//
+// When returned in the output of ``DescribePolicies``, it indicates that a predictive scaling policy uses individually specified load and scaling metrics instead of a metric pair.
type ScalingPolicyPredictiveScalingPredefinedLoadMetricArgs struct {
// The metric type.
PredefinedMetricType pulumi.StringInput `pulumi:"predefinedMetricType"`
@@ -2596,6 +2650,9 @@ func (i *scalingPolicyPredictiveScalingPredefinedLoadMetricPtrType) ToScalingPol
return pulumi.ToOutputWithContext(ctx, i).(ScalingPolicyPredictiveScalingPredefinedLoadMetricPtrOutput)
}
+// Describes a load metric for a predictive scaling policy.
+//
+// When returned in the output of ``DescribePolicies``, it indicates that a predictive scaling policy uses individually specified load and scaling metrics instead of a metric pair.
type ScalingPolicyPredictiveScalingPredefinedLoadMetricOutput struct{ *pulumi.OutputState }
func (ScalingPolicyPredictiveScalingPredefinedLoadMetricOutput) ElementType() reflect.Type {
@@ -2674,6 +2731,7 @@ func (o ScalingPolicyPredictiveScalingPredefinedLoadMetricPtrOutput) ResourceLab
}).(pulumi.StringPtrOutput)
}
+// Represents a metric pair for a predictive scaling policy.
type ScalingPolicyPredictiveScalingPredefinedMetricPair struct {
// Indicates which metrics to use. There are two different types of metrics for each metric type: one is a load metric and one is a scaling metric.
PredefinedMetricType string `pulumi:"predefinedMetricType"`
@@ -2692,6 +2750,7 @@ type ScalingPolicyPredictiveScalingPredefinedMetricPairInput interface {
ToScalingPolicyPredictiveScalingPredefinedMetricPairOutputWithContext(context.Context) ScalingPolicyPredictiveScalingPredefinedMetricPairOutput
}
+// Represents a metric pair for a predictive scaling policy.
type ScalingPolicyPredictiveScalingPredefinedMetricPairArgs struct {
// Indicates which metrics to use. There are two different types of metrics for each metric type: one is a load metric and one is a scaling metric.
PredefinedMetricType pulumi.StringInput `pulumi:"predefinedMetricType"`
@@ -2752,6 +2811,7 @@ func (i *scalingPolicyPredictiveScalingPredefinedMetricPairPtrType) ToScalingPol
return pulumi.ToOutputWithContext(ctx, i).(ScalingPolicyPredictiveScalingPredefinedMetricPairPtrOutput)
}
+// Represents a metric pair for a predictive scaling policy.
type ScalingPolicyPredictiveScalingPredefinedMetricPairOutput struct{ *pulumi.OutputState }
func (ScalingPolicyPredictiveScalingPredefinedMetricPairOutput) ElementType() reflect.Type {
@@ -2830,6 +2890,9 @@ func (o ScalingPolicyPredictiveScalingPredefinedMetricPairPtrOutput) ResourceLab
}).(pulumi.StringPtrOutput)
}
+// Describes a scaling metric for a predictive scaling policy.
+//
+// When returned in the output of ``DescribePolicies``, it indicates that a predictive scaling policy uses individually specified load and scaling metrics instead of a metric pair.
type ScalingPolicyPredictiveScalingPredefinedScalingMetric struct {
// The metric type.
PredefinedMetricType string `pulumi:"predefinedMetricType"`
@@ -2848,6 +2911,9 @@ type ScalingPolicyPredictiveScalingPredefinedScalingMetricInput interface {
ToScalingPolicyPredictiveScalingPredefinedScalingMetricOutputWithContext(context.Context) ScalingPolicyPredictiveScalingPredefinedScalingMetricOutput
}
+// Describes a scaling metric for a predictive scaling policy.
+//
+// When returned in the output of ``DescribePolicies``, it indicates that a predictive scaling policy uses individually specified load and scaling metrics instead of a metric pair.
type ScalingPolicyPredictiveScalingPredefinedScalingMetricArgs struct {
// The metric type.
PredefinedMetricType pulumi.StringInput `pulumi:"predefinedMetricType"`
@@ -2908,6 +2974,9 @@ func (i *scalingPolicyPredictiveScalingPredefinedScalingMetricPtrType) ToScaling
return pulumi.ToOutputWithContext(ctx, i).(ScalingPolicyPredictiveScalingPredefinedScalingMetricPtrOutput)
}
+// Describes a scaling metric for a predictive scaling policy.
+//
+// When returned in the output of ``DescribePolicies``, it indicates that a predictive scaling policy uses individually specified load and scaling metrics instead of a metric pair.
type ScalingPolicyPredictiveScalingPredefinedScalingMetricOutput struct{ *pulumi.OutputState }
func (ScalingPolicyPredictiveScalingPredefinedScalingMetricOutput) ElementType() reflect.Type {
diff --git a/sdk/go/aws/bedrock/pulumiTypes.go b/sdk/go/aws/bedrock/pulumiTypes.go
index 8f84856947..c9b1bdea54 100644
--- a/sdk/go/aws/bedrock/pulumiTypes.go
+++ b/sdk/go/aws/bedrock/pulumiTypes.go
@@ -4442,7 +4442,7 @@ func (o DataSourceIntermediateStoragePtrOutput) S3Location() DataSourceS3Locatio
// Settings for parsing document contents
type DataSourceParsingConfiguration struct {
- // Settings for a foundation model used to parse documents for a data source.
+ // If you specify `BEDROCK_FOUNDATION_MODEL` as the parsing strategy for ingesting your data source, use this object to modify configurations for using a foundation model to parse documents.
BedrockFoundationModelConfiguration *DataSourceBedrockFoundationModelConfiguration `pulumi:"bedrockFoundationModelConfiguration"`
// The parsing strategy for the data source.
ParsingStrategy DataSourceParsingStrategy `pulumi:"parsingStrategy"`
@@ -4461,7 +4461,7 @@ type DataSourceParsingConfigurationInput interface {
// Settings for parsing document contents
type DataSourceParsingConfigurationArgs struct {
- // Settings for a foundation model used to parse documents for a data source.
+ // If you specify `BEDROCK_FOUNDATION_MODEL` as the parsing strategy for ingesting your data source, use this object to modify configurations for using a foundation model to parse documents.
BedrockFoundationModelConfiguration DataSourceBedrockFoundationModelConfigurationPtrInput `pulumi:"bedrockFoundationModelConfiguration"`
// The parsing strategy for the data source.
ParsingStrategy DataSourceParsingStrategyInput `pulumi:"parsingStrategy"`
@@ -4545,7 +4545,7 @@ func (o DataSourceParsingConfigurationOutput) ToDataSourceParsingConfigurationPt
}).(DataSourceParsingConfigurationPtrOutput)
}
-// Settings for a foundation model used to parse documents for a data source.
+// If you specify `BEDROCK_FOUNDATION_MODEL` as the parsing strategy for ingesting your data source, use this object to modify configurations for using a foundation model to parse documents.
func (o DataSourceParsingConfigurationOutput) BedrockFoundationModelConfiguration() DataSourceBedrockFoundationModelConfigurationPtrOutput {
return o.ApplyT(func(v DataSourceParsingConfiguration) *DataSourceBedrockFoundationModelConfiguration {
return v.BedrockFoundationModelConfiguration
@@ -4581,7 +4581,7 @@ func (o DataSourceParsingConfigurationPtrOutput) Elem() DataSourceParsingConfigu
}).(DataSourceParsingConfigurationOutput)
}
-// Settings for a foundation model used to parse documents for a data source.
+// If you specify `BEDROCK_FOUNDATION_MODEL` as the parsing strategy for ingesting your data source, use this object to modify configurations for using a foundation model to parse documents.
func (o DataSourceParsingConfigurationPtrOutput) BedrockFoundationModelConfiguration() DataSourceBedrockFoundationModelConfigurationPtrOutput {
return o.ApplyT(func(v *DataSourceParsingConfiguration) *DataSourceBedrockFoundationModelConfiguration {
if v == nil {
@@ -7125,7 +7125,7 @@ type DataSourceVectorIngestionConfiguration struct {
ChunkingConfiguration *DataSourceChunkingConfiguration `pulumi:"chunkingConfiguration"`
// A custom document transformer for parsed data source documents.
CustomTransformationConfiguration *DataSourceCustomTransformationConfiguration `pulumi:"customTransformationConfiguration"`
- // A custom parser for data source documents.
+ // Configurations for a parser to use for parsing documents in your data source. If you exclude this field, the default parser will be used.
ParsingConfiguration *DataSourceParsingConfiguration `pulumi:"parsingConfiguration"`
}
@@ -7146,7 +7146,7 @@ type DataSourceVectorIngestionConfigurationArgs struct {
ChunkingConfiguration DataSourceChunkingConfigurationPtrInput `pulumi:"chunkingConfiguration"`
// A custom document transformer for parsed data source documents.
CustomTransformationConfiguration DataSourceCustomTransformationConfigurationPtrInput `pulumi:"customTransformationConfiguration"`
- // A custom parser for data source documents.
+ // Configurations for a parser to use for parsing documents in your data source. If you exclude this field, the default parser will be used.
ParsingConfiguration DataSourceParsingConfigurationPtrInput `pulumi:"parsingConfiguration"`
}
@@ -7242,7 +7242,7 @@ func (o DataSourceVectorIngestionConfigurationOutput) CustomTransformationConfig
}).(DataSourceCustomTransformationConfigurationPtrOutput)
}
-// A custom parser for data source documents.
+// Configurations for a parser to use for parsing documents in your data source. If you exclude this field, the default parser will be used.
func (o DataSourceVectorIngestionConfigurationOutput) ParsingConfiguration() DataSourceParsingConfigurationPtrOutput {
return o.ApplyT(func(v DataSourceVectorIngestionConfiguration) *DataSourceParsingConfiguration {
return v.ParsingConfiguration
@@ -7293,7 +7293,7 @@ func (o DataSourceVectorIngestionConfigurationPtrOutput) CustomTransformationCon
}).(DataSourceCustomTransformationConfigurationPtrOutput)
}
-// A custom parser for data source documents.
+// Configurations for a parser to use for parsing documents in your data source. If you exclude this field, the default parser will be used.
func (o DataSourceVectorIngestionConfigurationPtrOutput) ParsingConfiguration() DataSourceParsingConfigurationPtrOutput {
return o.ApplyT(func(v *DataSourceVectorIngestionConfiguration) *DataSourceParsingConfiguration {
if v == nil {
@@ -18651,7 +18651,7 @@ type GuardrailPiiEntityConfig struct {
// A physical address, such as "100 Main Street, Anytown, USA" or "Suite #12, Building 123". An address can include information such as the street, building, location, city, state, country, county, zip code, precinct, and neighborhood.
// - *AGE*
//
- // An individual's age, including the quantity and unit of time. For example, in the phrase "I am 40 years old," Guarrails recognizes "40 years" as an age.
+ // An individual's age, including the quantity and unit of time. For example, in the phrase "I am 40 years old," Guardrails recognizes "40 years" as an age.
// - *NAME*
//
// An individual's name. This entity type does not include titles, such as Dr., Mr., Mrs., or Miss. guardrails doesn't apply this entity type to names that are part of organizations or addresses. For example, guardrails recognizes the "John Doe Organization" as an organization, and it recognizes "Jane Doe Street" as an address.
@@ -18678,7 +18678,7 @@ type GuardrailPiiEntityConfig struct {
// A Vehicle Identification Number (VIN) uniquely identifies a vehicle. VIN content and format are defined in the *ISO 3779* specification. Each country has specific codes and formats for VINs.
// - *Finance*
//
- // - *REDIT_DEBIT_CARD_CVV*
+ // - *CREDIT_DEBIT_CARD_CVV*
//
// A three-digit card verification code (CVV) that is present on VISA, MasterCard, and Discover credit and debit cards. For American Express credit or debit cards, the CVV is a four-digit numeric code.
// - *CREDIT_DEBIT_CARD_EXPIRY*
@@ -18787,7 +18787,7 @@ type GuardrailPiiEntityConfigArgs struct {
// A physical address, such as "100 Main Street, Anytown, USA" or "Suite #12, Building 123". An address can include information such as the street, building, location, city, state, country, county, zip code, precinct, and neighborhood.
// - *AGE*
//
- // An individual's age, including the quantity and unit of time. For example, in the phrase "I am 40 years old," Guarrails recognizes "40 years" as an age.
+ // An individual's age, including the quantity and unit of time. For example, in the phrase "I am 40 years old," Guardrails recognizes "40 years" as an age.
// - *NAME*
//
// An individual's name. This entity type does not include titles, such as Dr., Mr., Mrs., or Miss. guardrails doesn't apply this entity type to names that are part of organizations or addresses. For example, guardrails recognizes the "John Doe Organization" as an organization, and it recognizes "Jane Doe Street" as an address.
@@ -18814,7 +18814,7 @@ type GuardrailPiiEntityConfigArgs struct {
// A Vehicle Identification Number (VIN) uniquely identifies a vehicle. VIN content and format are defined in the *ISO 3779* specification. Each country has specific codes and formats for VINs.
// - *Finance*
//
- // - *REDIT_DEBIT_CARD_CVV*
+ // - *CREDIT_DEBIT_CARD_CVV*
//
// A three-digit card verification code (CVV) that is present on VISA, MasterCard, and Discover credit and debit cards. For American Express credit or debit cards, the CVV is a four-digit numeric code.
// - *CREDIT_DEBIT_CARD_EXPIRY*
@@ -18965,7 +18965,7 @@ func (o GuardrailPiiEntityConfigOutput) Action() GuardrailSensitiveInformationAc
// A physical address, such as "100 Main Street, Anytown, USA" or "Suite #12, Building 123". An address can include information such as the street, building, location, city, state, country, county, zip code, precinct, and neighborhood.
// - *AGE*
//
-// An individual's age, including the quantity and unit of time. For example, in the phrase "I am 40 years old," Guarrails recognizes "40 years" as an age.
+// An individual's age, including the quantity and unit of time. For example, in the phrase "I am 40 years old," Guardrails recognizes "40 years" as an age.
// - *NAME*
//
// An individual's name. This entity type does not include titles, such as Dr., Mr., Mrs., or Miss. guardrails doesn't apply this entity type to names that are part of organizations or addresses. For example, guardrails recognizes the "John Doe Organization" as an organization, and it recognizes "Jane Doe Street" as an address.
@@ -18992,7 +18992,7 @@ func (o GuardrailPiiEntityConfigOutput) Action() GuardrailSensitiveInformationAc
// A Vehicle Identification Number (VIN) uniquely identifies a vehicle. VIN content and format are defined in the *ISO 3779* specification. Each country has specific codes and formats for VINs.
// - *Finance*
//
-// - *REDIT_DEBIT_CARD_CVV*
+// - *CREDIT_DEBIT_CARD_CVV*
//
// A three-digit card verification code (CVV) that is present on VISA, MasterCard, and Discover credit and debit cards. For American Express credit or debit cards, the CVV is a four-digit numeric code.
// - *CREDIT_DEBIT_CARD_EXPIRY*
diff --git a/sdk/go/aws/cognito/getManagedLoginBranding.go b/sdk/go/aws/cognito/getManagedLoginBranding.go
index 0ce8945f27..7d216a0123 100644
--- a/sdk/go/aws/cognito/getManagedLoginBranding.go
+++ b/sdk/go/aws/cognito/getManagedLoginBranding.go
@@ -38,7 +38,9 @@ type LookupManagedLoginBrandingResult struct {
//
// Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::Cognito::ManagedLoginBranding` for more information about the expected schema for this property.
Settings interface{} `pulumi:"settings"`
- // When true, applies the default branding style options. This option reverts to a "blank" style that you can modify later in the branding designer.
+ // When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.
+ //
+ // When you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request.
UseCognitoProvidedValues *bool `pulumi:"useCognitoProvidedValues"`
}
@@ -103,7 +105,9 @@ func (o LookupManagedLoginBrandingResultOutput) Settings() pulumi.AnyOutput {
return o.ApplyT(func(v LookupManagedLoginBrandingResult) interface{} { return v.Settings }).(pulumi.AnyOutput)
}
-// When true, applies the default branding style options. This option reverts to a "blank" style that you can modify later in the branding designer.
+// When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.
+//
+// When you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request.
func (o LookupManagedLoginBrandingResultOutput) UseCognitoProvidedValues() pulumi.BoolPtrOutput {
return o.ApplyT(func(v LookupManagedLoginBrandingResult) *bool { return v.UseCognitoProvidedValues }).(pulumi.BoolPtrOutput)
}
diff --git a/sdk/go/aws/cognito/getUserPool.go b/sdk/go/aws/cognito/getUserPool.go
index e614d42530..ccd4bbff8d 100644
--- a/sdk/go/aws/cognito/getUserPool.go
+++ b/sdk/go/aws/cognito/getUserPool.go
@@ -34,11 +34,11 @@ type LookupUserPoolResult struct {
//
// This data type is a request and response parameter of [CreateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_CreateUserPool.html) and [UpdateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserPool.html) , and a response parameter of [DescribeUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_DescribeUserPool.html) .
AdminCreateUserConfig *UserPoolAdminCreateUserConfig `pulumi:"adminCreateUserConfig"`
- // Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* .
+ // Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* . For more information about alias attributes, see [Customizing sign-in attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-aliases) .
AliasAttributes []string `pulumi:"aliasAttributes"`
// The Amazon Resource Name (ARN) of the user pool, such as `arn:aws:cognito-idp:us-east-1:123412341234:userpool/us-east-1_123412341` .
Arn *string `pulumi:"arn"`
- // The attributes to be auto-verified. Possible values: *email* , *phone_number* .
+ // The attributes that you want your user pool to automatically verify. Possible values: *email* , *phone_number* . For more information see [Verifying contact information at sign-up](https://docs.aws.amazon.com/cognito/latest/developerguide/signing-up-users-in-your-app.html#allowing-users-to-sign-up-and-confirm-themselves) .
AutoVerifiedAttributes []string `pulumi:"autoVerifiedAttributes"`
// When active, `DeletionProtection` prevents accidental deletion of your user
// pool. Before you can delete a user pool that you have protected against deletion, you
@@ -46,9 +46,9 @@ type LookupUserPoolResult struct {
//
// When you try to delete a protected user pool in a `DeleteUserPool` API request, Amazon Cognito returns an `InvalidParameterException` error. To delete a protected user pool, send a new `DeleteUserPool` request after you deactivate deletion protection in an `UpdateUserPool` API request.
DeletionProtection *string `pulumi:"deletionProtection"`
- // The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool.
+ // The device-remembering configuration for a user pool. Device remembering or device tracking is a "Remember me on this device" option for user pools that perform authentication with the device key of a trusted device in the back end, instead of a user-provided MFA code. For more information about device authentication, see [Working with user devices in your user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-device-tracking.html) . A null value indicates that you have deactivated device remembering in your user pool.
//
- // > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature.
+ // > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature. For more infor
DeviceConfiguration *UserPoolDeviceConfiguration `pulumi:"deviceConfiguration"`
EmailAuthenticationMessage *string `pulumi:"emailAuthenticationMessage"`
EmailAuthenticationSubject *string `pulumi:"emailAuthenticationSubject"`
@@ -74,11 +74,11 @@ type LookupUserPoolResult struct {
ProviderName *string `pulumi:"providerName"`
// The URL of the provider of the Amazon Cognito user pool, specified as a `String` .
ProviderUrl *string `pulumi:"providerUrl"`
- // An array of schema attributes for the new user pool. These attributes can be standard or custom attributes.
+ // An array of attributes for the new user pool. You can add custom attributes and modify the properties of default attributes. The specifications in this parameter set the required attributes in your user pool. For more information, see [Working with user attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html) .
Schema []UserPoolSchemaAttribute `pulumi:"schema"`
// The contents of the SMS authentication message.
SmsAuthenticationMessage *string `pulumi:"smsAuthenticationMessage"`
- // The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account .
+ // The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account . For more information see [SMS message settings](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-sms-settings.html) .
SmsConfiguration *UserPoolSmsConfiguration `pulumi:"smsConfiguration"`
// This parameter is no longer used. See [VerificationMessageTemplateType](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cognito-userpool-verificationmessagetemplate.html) .
SmsVerificationMessage *string `pulumi:"smsVerificationMessage"`
@@ -92,7 +92,7 @@ type LookupUserPoolResult struct {
UserPoolAddOns *UserPoolAddOns `pulumi:"userPoolAddOns"`
// The ID of the user pool.
UserPoolId *string `pulumi:"userPoolId"`
- // A string used to name the user pool.
+ // A friendlhy name for your user pool.
UserPoolName *string `pulumi:"userPoolName"`
// The tag keys and values to assign to the user pool. A tag is a label that you can use to categorize and manage user pools in different ways, such as by purpose, owner, environment, or other criteria.
UserPoolTags map[string]string `pulumi:"userPoolTags"`
@@ -100,16 +100,26 @@ type LookupUserPoolResult struct {
UserPoolTier *UserPoolTier `pulumi:"userPoolTier"`
// Specifies whether a user can use an email address or phone number as a username when they sign up.
UsernameAttributes []string `pulumi:"usernameAttributes"`
- // Case sensitivity on the username input for the selected sign-in option. When case sensitivity is set to `False` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `False` (case insensitive) as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
+ // Sets the case sensitivity option for sign-in usernames. When `CaseSensitive` is `false` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `false` as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
//
- // This configuration is immutable after you set it. For more information, see [UsernameConfigurationType](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UsernameConfigurationType.html) .
+ // When `CaseSensitive` is `true` (case sensitive), Amazon Cognito interprets `USERNAME` and `UserName` as distinct users.
+ //
+ // This configuration is immutable after you set it.
UsernameConfiguration *UserPoolUsernameConfiguration `pulumi:"usernameConfiguration"`
// The template for the verification message that your user pool delivers to users who set an email address or phone number attribute.
//
// Set the email message type that corresponds to your `DefaultEmailOption` selection. For `CONFIRM_WITH_LINK` , specify an `EmailMessageByLink` and leave `EmailMessage` blank. For `CONFIRM_WITH_CODE` , specify an `EmailMessage` and leave `EmailMessageByLink` blank. When you supply both parameters with either choice, Amazon Cognito returns an error.
VerificationMessageTemplate *UserPoolVerificationMessageTemplate `pulumi:"verificationMessageTemplate"`
- WebAuthnRelyingPartyId *string `pulumi:"webAuthnRelyingPartyId"`
- WebAuthnUserVerification *string `pulumi:"webAuthnUserVerification"`
+ // Sets or displays the authentication domain, typically your user pool domain, that passkey providers must use as a relying party (RP) in their configuration.
+ //
+ // Under the following conditions, the passkey relying party ID must be the fully-qualified domain name of your custom domain:
+ //
+ // - The user pool is configured for passkey authentication.
+ // - The user pool has a custom domain, whether or not it also has a prefix domain.
+ // - Your application performs authentication with managed login or the classic hosted UI.
+ WebAuthnRelyingPartyId *string `pulumi:"webAuthnRelyingPartyId"`
+ // When `required` , users can only register and sign in users with passkeys that are capable of [user verification](https://docs.aws.amazon.com/https://www.w3.org/TR/webauthn-2/#enum-userVerificationRequirement) . When `preferred` , your user pool doesn't require the use of authenticators with user verification but encourages it.
+ WebAuthnUserVerification *string `pulumi:"webAuthnUserVerification"`
}
func LookupUserPoolOutput(ctx *pulumi.Context, args LookupUserPoolOutputArgs, opts ...pulumi.InvokeOption) LookupUserPoolResultOutput {
@@ -166,7 +176,7 @@ func (o LookupUserPoolResultOutput) AdminCreateUserConfig() UserPoolAdminCreateU
return o.ApplyT(func(v LookupUserPoolResult) *UserPoolAdminCreateUserConfig { return v.AdminCreateUserConfig }).(UserPoolAdminCreateUserConfigPtrOutput)
}
-// Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* .
+// Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* . For more information about alias attributes, see [Customizing sign-in attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-aliases) .
func (o LookupUserPoolResultOutput) AliasAttributes() pulumi.StringArrayOutput {
return o.ApplyT(func(v LookupUserPoolResult) []string { return v.AliasAttributes }).(pulumi.StringArrayOutput)
}
@@ -176,7 +186,7 @@ func (o LookupUserPoolResultOutput) Arn() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupUserPoolResult) *string { return v.Arn }).(pulumi.StringPtrOutput)
}
-// The attributes to be auto-verified. Possible values: *email* , *phone_number* .
+// The attributes that you want your user pool to automatically verify. Possible values: *email* , *phone_number* . For more information see [Verifying contact information at sign-up](https://docs.aws.amazon.com/cognito/latest/developerguide/signing-up-users-in-your-app.html#allowing-users-to-sign-up-and-confirm-themselves) .
func (o LookupUserPoolResultOutput) AutoVerifiedAttributes() pulumi.StringArrayOutput {
return o.ApplyT(func(v LookupUserPoolResult) []string { return v.AutoVerifiedAttributes }).(pulumi.StringArrayOutput)
}
@@ -190,9 +200,9 @@ func (o LookupUserPoolResultOutput) DeletionProtection() pulumi.StringPtrOutput
return o.ApplyT(func(v LookupUserPoolResult) *string { return v.DeletionProtection }).(pulumi.StringPtrOutput)
}
-// The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool.
+// The device-remembering configuration for a user pool. Device remembering or device tracking is a "Remember me on this device" option for user pools that perform authentication with the device key of a trusted device in the back end, instead of a user-provided MFA code. For more information about device authentication, see [Working with user devices in your user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-device-tracking.html) . A null value indicates that you have deactivated device remembering in your user pool.
//
-// > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature.
+// > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature. For more infor
func (o LookupUserPoolResultOutput) DeviceConfiguration() UserPoolDeviceConfigurationPtrOutput {
return o.ApplyT(func(v LookupUserPoolResult) *UserPoolDeviceConfiguration { return v.DeviceConfiguration }).(UserPoolDeviceConfigurationPtrOutput)
}
@@ -251,7 +261,7 @@ func (o LookupUserPoolResultOutput) ProviderUrl() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupUserPoolResult) *string { return v.ProviderUrl }).(pulumi.StringPtrOutput)
}
-// An array of schema attributes for the new user pool. These attributes can be standard or custom attributes.
+// An array of attributes for the new user pool. You can add custom attributes and modify the properties of default attributes. The specifications in this parameter set the required attributes in your user pool. For more information, see [Working with user attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html) .
func (o LookupUserPoolResultOutput) Schema() UserPoolSchemaAttributeArrayOutput {
return o.ApplyT(func(v LookupUserPoolResult) []UserPoolSchemaAttribute { return v.Schema }).(UserPoolSchemaAttributeArrayOutput)
}
@@ -261,7 +271,7 @@ func (o LookupUserPoolResultOutput) SmsAuthenticationMessage() pulumi.StringPtrO
return o.ApplyT(func(v LookupUserPoolResult) *string { return v.SmsAuthenticationMessage }).(pulumi.StringPtrOutput)
}
-// The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account .
+// The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account . For more information see [SMS message settings](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-sms-settings.html) .
func (o LookupUserPoolResultOutput) SmsConfiguration() UserPoolSmsConfigurationPtrOutput {
return o.ApplyT(func(v LookupUserPoolResult) *UserPoolSmsConfiguration { return v.SmsConfiguration }).(UserPoolSmsConfigurationPtrOutput)
}
@@ -292,7 +302,7 @@ func (o LookupUserPoolResultOutput) UserPoolId() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupUserPoolResult) *string { return v.UserPoolId }).(pulumi.StringPtrOutput)
}
-// A string used to name the user pool.
+// A friendlhy name for your user pool.
func (o LookupUserPoolResultOutput) UserPoolName() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupUserPoolResult) *string { return v.UserPoolName }).(pulumi.StringPtrOutput)
}
@@ -312,9 +322,11 @@ func (o LookupUserPoolResultOutput) UsernameAttributes() pulumi.StringArrayOutpu
return o.ApplyT(func(v LookupUserPoolResult) []string { return v.UsernameAttributes }).(pulumi.StringArrayOutput)
}
-// Case sensitivity on the username input for the selected sign-in option. When case sensitivity is set to `False` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `False` (case insensitive) as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
+// Sets the case sensitivity option for sign-in usernames. When `CaseSensitive` is `false` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `false` as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
//
-// This configuration is immutable after you set it. For more information, see [UsernameConfigurationType](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UsernameConfigurationType.html) .
+// When `CaseSensitive` is `true` (case sensitive), Amazon Cognito interprets `USERNAME` and `UserName` as distinct users.
+//
+// This configuration is immutable after you set it.
func (o LookupUserPoolResultOutput) UsernameConfiguration() UserPoolUsernameConfigurationPtrOutput {
return o.ApplyT(func(v LookupUserPoolResult) *UserPoolUsernameConfiguration { return v.UsernameConfiguration }).(UserPoolUsernameConfigurationPtrOutput)
}
@@ -328,10 +340,18 @@ func (o LookupUserPoolResultOutput) VerificationMessageTemplate() UserPoolVerifi
}).(UserPoolVerificationMessageTemplatePtrOutput)
}
+// Sets or displays the authentication domain, typically your user pool domain, that passkey providers must use as a relying party (RP) in their configuration.
+//
+// Under the following conditions, the passkey relying party ID must be the fully-qualified domain name of your custom domain:
+//
+// - The user pool is configured for passkey authentication.
+// - The user pool has a custom domain, whether or not it also has a prefix domain.
+// - Your application performs authentication with managed login or the classic hosted UI.
func (o LookupUserPoolResultOutput) WebAuthnRelyingPartyId() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupUserPoolResult) *string { return v.WebAuthnRelyingPartyId }).(pulumi.StringPtrOutput)
}
+// When `required` , users can only register and sign in users with passkeys that are capable of [user verification](https://docs.aws.amazon.com/https://www.w3.org/TR/webauthn-2/#enum-userVerificationRequirement) . When `preferred` , your user pool doesn't require the use of authenticators with user verification but encourages it.
func (o LookupUserPoolResultOutput) WebAuthnUserVerification() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupUserPoolResult) *string { return v.WebAuthnUserVerification }).(pulumi.StringPtrOutput)
}
diff --git a/sdk/go/aws/cognito/getUserPoolClient.go b/sdk/go/aws/cognito/getUserPoolClient.go
index f883fd7baf..b06368c730 100644
--- a/sdk/go/aws/cognito/getUserPoolClient.go
+++ b/sdk/go/aws/cognito/getUserPoolClient.go
@@ -25,7 +25,7 @@ func LookupUserPoolClient(ctx *pulumi.Context, args *LookupUserPoolClientArgs, o
type LookupUserPoolClientArgs struct {
// The ID of the app client, for example `1example23456789` .
ClientId string `pulumi:"clientId"`
- // The user pool ID for the user pool where you want to create a user pool client.
+ // The ID of the user pool where you want to create an app client.
UserPoolId string `pulumi:"userPoolId"`
}
@@ -57,11 +57,11 @@ type LookupUserPoolClientResult struct {
//
// To use OAuth 2.0 features, configure one of these features in the Amazon Cognito console or set `AllowedOAuthFlowsUserPoolClient` to `true` in a `CreateUserPoolClient` or `UpdateUserPoolClient` API request. If you don't set a value for `AllowedOAuthFlowsUserPoolClient` in a request with the AWS CLI or SDKs, it defaults to `false` .
AllowedOAuthFlowsUserPoolClient *bool `pulumi:"allowedOAuthFlowsUserPoolClient"`
- // The allowed OAuth scopes. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
+ // The OAuth 2.0 scopes that you want to permit your app client to authorize. Scopes govern access control to user pool self-service API operations, user data from the `userInfo` endpoint, and third-party APIs. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
AllowedOAuthScopes []string `pulumi:"allowedOAuthScopes"`
// The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.
//
- // > In AWS Regions where Amazon Pinpoint isn't available, user pools only support sending events to Amazon Pinpoint projects in AWS Region us-east-1. In Regions where Amazon Pinpoint is available, user pools support sending events to Amazon Pinpoint projects within that same Region.
+ // In AWS Regions where Amazon Pinpoint isn't available, user pools might not have access to analytics or might be configurable with campaigns in the US East (N. Virginia) Region. For more information, see [Using Amazon Pinpoint analytics](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-pinpoint-integration.html) .
AnalyticsConfiguration *UserPoolClientAnalyticsConfiguration `pulumi:"analyticsConfiguration"`
// Amazon Cognito creates a session token for each API request in an authentication flow. `AuthSessionValidity` is the duration, in minutes, of that session token. Your user pool native user must respond to each authentication challenge before the session expires.
AuthSessionValidity *int `pulumi:"authSessionValidity"`
@@ -70,7 +70,7 @@ type LookupUserPoolClientResult struct {
// A redirect URI must:
//
// - Be an absolute URI.
- // - Be registered with the authorization server.
+ // - Be registered with the authorization server. Amazon Cognito doesn't accept authorization requests with `redirect_uri` values that aren't in the list of `CallbackURLs` that you provide in this parameter.
// - Not include a fragment component.
//
// See [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .
@@ -81,22 +81,10 @@ type LookupUserPoolClientResult struct {
CallbackUrls []string `pulumi:"callbackUrls"`
// The ID of the app client, for example `1example23456789` .
ClientId *string `pulumi:"clientId"`
- // The client name for the user pool client you would like to create.
+ // A friendly name for the app client that you want to create.
ClientName *string `pulumi:"clientName"`
ClientSecret *string `pulumi:"clientSecret"`
// The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list.
- //
- // A redirect URI must:
- //
- // - Be an absolute URI.
- // - Be registered with the authorization server.
- // - Not include a fragment component.
- //
- // For more information, see [Default redirect URI](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#cognito-user-pools-app-idp-settings-about) .
- //
- // Amazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.
- //
- // App callback URLs such as myapp://example are also supported.
DefaultRedirectUri *string `pulumi:"defaultRedirectUri"`
// Activates the propagation of additional user context data. For more information about propagation of user context data, see [Adding advanced security to a user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pool-settings-threat-protection.html) . If you don’t include this parameter, you can't send device fingerprint information, including source IP address, to Amazon Cognito advanced security. You can only activate `EnablePropagateAdditionalUserContextData` in an app client that has a client secret.
EnablePropagateAdditionalUserContextData *bool `pulumi:"enablePropagateAdditionalUserContextData"`
@@ -129,7 +117,7 @@ type LookupUserPoolClientResult struct {
// If you don't specify otherwise in the configuration of your app client, your ID
// tokens are valid for one hour.
IdTokenValidity *int `pulumi:"idTokenValidity"`
- // A list of allowed logout URLs for the IdPs.
+ // A list of allowed logout URLs for managed login authentication. For more information, see [Logout endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/logout-endpoint.html) .
LogoutUrls []string `pulumi:"logoutUrls"`
Name *string `pulumi:"name"`
// Errors and responses that you want Amazon Cognito APIs to return during authentication, account confirmation, and password recovery when the user doesn't exist in the user pool. When set to `ENABLED` and the user doesn't exist, authentication returns an error indicating either the username or password was incorrect. Account confirmation and password recovery return a response indicating a code was sent to a simulated destination. When set to `LEGACY` , those APIs return a `UserNotFoundException` exception if the user doesn't exist in the user pool.
@@ -157,9 +145,9 @@ type LookupUserPoolClientResult struct {
RefreshTokenValidity *int `pulumi:"refreshTokenValidity"`
// A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .
//
- // This setting applies to providers that you can access with the [hosted UI and OAuth 2.0 authorization server](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-app-integration.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
+ // This setting applies to providers that you can access with [managed login](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managed-login.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
SupportedIdentityProviders []string `pulumi:"supportedIdentityProviders"`
- // The units in which the validity times are represented. The default unit for RefreshToken is days, and default for ID and access tokens are hours.
+ // The units that validity times are represented in. The default unit for refresh tokens is days, and the default for ID and access tokens are hours.
TokenValidityUnits *UserPoolClientTokenValidityUnits `pulumi:"tokenValidityUnits"`
// The list of user attributes that you want your app client to have write access to. After your user authenticates in your app, their access token authorizes them to set or modify their own attribute value for any attribute in this list. An example of this kind of activity is when you present your user with a form to update their profile information and they change their last name. Your app then makes an [UpdateUserAttributes](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserAttributes.html) API request and sets `family_name` to the new value.
//
@@ -191,7 +179,7 @@ func LookupUserPoolClientOutput(ctx *pulumi.Context, args LookupUserPoolClientOu
type LookupUserPoolClientOutputArgs struct {
// The ID of the app client, for example `1example23456789` .
ClientId pulumi.StringInput `pulumi:"clientId"`
- // The user pool ID for the user pool where you want to create a user pool client.
+ // The ID of the user pool where you want to create an app client.
UserPoolId pulumi.StringInput `pulumi:"userPoolId"`
}
@@ -249,14 +237,14 @@ func (o LookupUserPoolClientResultOutput) AllowedOAuthFlowsUserPoolClient() pulu
return o.ApplyT(func(v LookupUserPoolClientResult) *bool { return v.AllowedOAuthFlowsUserPoolClient }).(pulumi.BoolPtrOutput)
}
-// The allowed OAuth scopes. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
+// The OAuth 2.0 scopes that you want to permit your app client to authorize. Scopes govern access control to user pool self-service API operations, user data from the `userInfo` endpoint, and third-party APIs. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
func (o LookupUserPoolClientResultOutput) AllowedOAuthScopes() pulumi.StringArrayOutput {
return o.ApplyT(func(v LookupUserPoolClientResult) []string { return v.AllowedOAuthScopes }).(pulumi.StringArrayOutput)
}
// The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.
//
-// > In AWS Regions where Amazon Pinpoint isn't available, user pools only support sending events to Amazon Pinpoint projects in AWS Region us-east-1. In Regions where Amazon Pinpoint is available, user pools support sending events to Amazon Pinpoint projects within that same Region.
+// In AWS Regions where Amazon Pinpoint isn't available, user pools might not have access to analytics or might be configurable with campaigns in the US East (N. Virginia) Region. For more information, see [Using Amazon Pinpoint analytics](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-pinpoint-integration.html) .
func (o LookupUserPoolClientResultOutput) AnalyticsConfiguration() UserPoolClientAnalyticsConfigurationPtrOutput {
return o.ApplyT(func(v LookupUserPoolClientResult) *UserPoolClientAnalyticsConfiguration {
return v.AnalyticsConfiguration
@@ -273,7 +261,7 @@ func (o LookupUserPoolClientResultOutput) AuthSessionValidity() pulumi.IntPtrOut
// A redirect URI must:
//
// - Be an absolute URI.
-// - Be registered with the authorization server.
+// - Be registered with the authorization server. Amazon Cognito doesn't accept authorization requests with `redirect_uri` values that aren't in the list of `CallbackURLs` that you provide in this parameter.
// - Not include a fragment component.
//
// See [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .
@@ -290,7 +278,7 @@ func (o LookupUserPoolClientResultOutput) ClientId() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupUserPoolClientResult) *string { return v.ClientId }).(pulumi.StringPtrOutput)
}
-// The client name for the user pool client you would like to create.
+// A friendly name for the app client that you want to create.
func (o LookupUserPoolClientResultOutput) ClientName() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupUserPoolClientResult) *string { return v.ClientName }).(pulumi.StringPtrOutput)
}
@@ -300,18 +288,6 @@ func (o LookupUserPoolClientResultOutput) ClientSecret() pulumi.StringPtrOutput
}
// The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list.
-//
-// A redirect URI must:
-//
-// - Be an absolute URI.
-// - Be registered with the authorization server.
-// - Not include a fragment component.
-//
-// For more information, see [Default redirect URI](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#cognito-user-pools-app-idp-settings-about) .
-//
-// Amazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.
-//
-// App callback URLs such as myapp://example are also supported.
func (o LookupUserPoolClientResultOutput) DefaultRedirectUri() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupUserPoolClientResult) *string { return v.DefaultRedirectUri }).(pulumi.StringPtrOutput)
}
@@ -359,7 +335,7 @@ func (o LookupUserPoolClientResultOutput) IdTokenValidity() pulumi.IntPtrOutput
return o.ApplyT(func(v LookupUserPoolClientResult) *int { return v.IdTokenValidity }).(pulumi.IntPtrOutput)
}
-// A list of allowed logout URLs for the IdPs.
+// A list of allowed logout URLs for managed login authentication. For more information, see [Logout endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/logout-endpoint.html) .
func (o LookupUserPoolClientResultOutput) LogoutUrls() pulumi.StringArrayOutput {
return o.ApplyT(func(v LookupUserPoolClientResult) []string { return v.LogoutUrls }).(pulumi.StringArrayOutput)
}
@@ -402,12 +378,12 @@ func (o LookupUserPoolClientResultOutput) RefreshTokenValidity() pulumi.IntPtrOu
// A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .
//
-// This setting applies to providers that you can access with the [hosted UI and OAuth 2.0 authorization server](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-app-integration.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
+// This setting applies to providers that you can access with [managed login](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managed-login.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
func (o LookupUserPoolClientResultOutput) SupportedIdentityProviders() pulumi.StringArrayOutput {
return o.ApplyT(func(v LookupUserPoolClientResult) []string { return v.SupportedIdentityProviders }).(pulumi.StringArrayOutput)
}
-// The units in which the validity times are represented. The default unit for RefreshToken is days, and default for ID and access tokens are hours.
+// The units that validity times are represented in. The default unit for refresh tokens is days, and the default for ID and access tokens are hours.
func (o LookupUserPoolClientResultOutput) TokenValidityUnits() UserPoolClientTokenValidityUnitsPtrOutput {
return o.ApplyT(func(v LookupUserPoolClientResult) *UserPoolClientTokenValidityUnits { return v.TokenValidityUnits }).(UserPoolClientTokenValidityUnitsPtrOutput)
}
diff --git a/sdk/go/aws/cognito/getUserPoolGroup.go b/sdk/go/aws/cognito/getUserPoolGroup.go
index fd74bd2093..643f309b87 100644
--- a/sdk/go/aws/cognito/getUserPoolGroup.go
+++ b/sdk/go/aws/cognito/getUserPoolGroup.go
@@ -23,14 +23,14 @@ func LookupUserPoolGroup(ctx *pulumi.Context, args *LookupUserPoolGroupArgs, opt
}
type LookupUserPoolGroupArgs struct {
- // The name of the group. Must be unique.
+ // A name for the group. This name must be unique in your user pool.
GroupName string `pulumi:"groupName"`
- // The user pool ID for the user pool.
+ // The ID of the user pool where you want to create a user group.
UserPoolId string `pulumi:"userPoolId"`
}
type LookupUserPoolGroupResult struct {
- // A string containing the description of the group.
+ // A description of the group that you're creating.
Description *string `pulumi:"description"`
// A non-negative integer value that specifies the precedence of this group relative to the other groups that a user can belong to in the user pool. Zero is the highest precedence value. Groups with lower `Precedence` values take precedence over groups with higher or null `Precedence` values. If a user belongs to two or more groups, it is the group with the lowest precedence value whose role ARN is given in the user's tokens for the `cognito:roles` and `cognito:preferred_role` claims.
//
@@ -38,7 +38,7 @@ type LookupUserPoolGroupResult struct {
//
// The default `Precedence` value is null. The maximum `Precedence` value is `2^31-1` .
Precedence *int `pulumi:"precedence"`
- // The role Amazon Resource Name (ARN) for the group.
+ // The Amazon Resource Name (ARN) for the IAM role that you want to associate with the group. A group role primarily declares a preferred role for the credentials that you get from an identity pool. Amazon Cognito ID tokens have a `cognito:preferred_role` claim that presents the highest-precedence group that a user belongs to. Both ID and access tokens also contain a `cognito:groups` claim that list all the groups that a user is a member of.
RoleArn *string `pulumi:"roleArn"`
}
@@ -62,9 +62,9 @@ func LookupUserPoolGroupOutput(ctx *pulumi.Context, args LookupUserPoolGroupOutp
}
type LookupUserPoolGroupOutputArgs struct {
- // The name of the group. Must be unique.
+ // A name for the group. This name must be unique in your user pool.
GroupName pulumi.StringInput `pulumi:"groupName"`
- // The user pool ID for the user pool.
+ // The ID of the user pool where you want to create a user group.
UserPoolId pulumi.StringInput `pulumi:"userPoolId"`
}
@@ -86,7 +86,7 @@ func (o LookupUserPoolGroupResultOutput) ToLookupUserPoolGroupResultOutputWithCo
return o
}
-// A string containing the description of the group.
+// A description of the group that you're creating.
func (o LookupUserPoolGroupResultOutput) Description() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupUserPoolGroupResult) *string { return v.Description }).(pulumi.StringPtrOutput)
}
@@ -100,7 +100,7 @@ func (o LookupUserPoolGroupResultOutput) Precedence() pulumi.IntPtrOutput {
return o.ApplyT(func(v LookupUserPoolGroupResult) *int { return v.Precedence }).(pulumi.IntPtrOutput)
}
-// The role Amazon Resource Name (ARN) for the group.
+// The Amazon Resource Name (ARN) for the IAM role that you want to associate with the group. A group role primarily declares a preferred role for the credentials that you get from an identity pool. Amazon Cognito ID tokens have a `cognito:preferred_role` claim that presents the highest-precedence group that a user belongs to. Both ID and access tokens also contain a `cognito:groups` claim that list all the groups that a user is a member of.
func (o LookupUserPoolGroupResultOutput) RoleArn() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupUserPoolGroupResult) *string { return v.RoleArn }).(pulumi.StringPtrOutput)
}
diff --git a/sdk/go/aws/cognito/getUserPoolIdentityProvider.go b/sdk/go/aws/cognito/getUserPoolIdentityProvider.go
index 1bf1f5b2a4..74e7b534fa 100644
--- a/sdk/go/aws/cognito/getUserPoolIdentityProvider.go
+++ b/sdk/go/aws/cognito/getUserPoolIdentityProvider.go
@@ -23,16 +23,16 @@ func LookupUserPoolIdentityProvider(ctx *pulumi.Context, args *LookupUserPoolIde
}
type LookupUserPoolIdentityProviderArgs struct {
- // The IdP name.
+ // The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP.
ProviderName string `pulumi:"providerName"`
- // The user pool ID.
+ // The Id of the user pool where you want to create an IdP.
UserPoolId string `pulumi:"userPoolId"`
}
type LookupUserPoolIdentityProviderResult struct {
- // A mapping of IdP attributes to standard and custom user pool attributes.
+ // A mapping of IdP attributes to standard and custom user pool attributes. Specify a user pool attribute as the key of the key-value pair, and the IdP attribute claim name as the value.
AttributeMapping map[string]string `pulumi:"attributeMapping"`
- // A list of IdP identifiers.
+ // An array of IdP identifiers, for example `"IdPIdentifiers": [ "MyIdP", "MyIdP2" ]` . Identifiers are friendly names that you can pass in the `idp_identifier` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP. Identifiers in a domain format also enable the use of [email-address matching with SAML providers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managing-saml-idp-naming.html) .
IdpIdentifiers []string `pulumi:"idpIdentifiers"`
// The scopes, URLs, and identifiers for your external identity provider. The following
// examples describe the provider detail keys for each IdP type. These values and their
@@ -86,9 +86,9 @@ func LookupUserPoolIdentityProviderOutput(ctx *pulumi.Context, args LookupUserPo
}
type LookupUserPoolIdentityProviderOutputArgs struct {
- // The IdP name.
+ // The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP.
ProviderName pulumi.StringInput `pulumi:"providerName"`
- // The user pool ID.
+ // The Id of the user pool where you want to create an IdP.
UserPoolId pulumi.StringInput `pulumi:"userPoolId"`
}
@@ -110,12 +110,12 @@ func (o LookupUserPoolIdentityProviderResultOutput) ToLookupUserPoolIdentityProv
return o
}
-// A mapping of IdP attributes to standard and custom user pool attributes.
+// A mapping of IdP attributes to standard and custom user pool attributes. Specify a user pool attribute as the key of the key-value pair, and the IdP attribute claim name as the value.
func (o LookupUserPoolIdentityProviderResultOutput) AttributeMapping() pulumi.StringMapOutput {
return o.ApplyT(func(v LookupUserPoolIdentityProviderResult) map[string]string { return v.AttributeMapping }).(pulumi.StringMapOutput)
}
-// A list of IdP identifiers.
+// An array of IdP identifiers, for example `"IdPIdentifiers": [ "MyIdP", "MyIdP2" ]` . Identifiers are friendly names that you can pass in the `idp_identifier` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP. Identifiers in a domain format also enable the use of [email-address matching with SAML providers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managing-saml-idp-naming.html) .
func (o LookupUserPoolIdentityProviderResultOutput) IdpIdentifiers() pulumi.StringArrayOutput {
return o.ApplyT(func(v LookupUserPoolIdentityProviderResult) []string { return v.IdpIdentifiers }).(pulumi.StringArrayOutput)
}
diff --git a/sdk/go/aws/cognito/getUserPoolResourceServer.go b/sdk/go/aws/cognito/getUserPoolResourceServer.go
index 625d596ce0..739315b53d 100644
--- a/sdk/go/aws/cognito/getUserPoolResourceServer.go
+++ b/sdk/go/aws/cognito/getUserPoolResourceServer.go
@@ -27,7 +27,7 @@ type LookupUserPoolResourceServerArgs struct {
//
// Amazon Cognito represents scopes in the access token in the format `$resource-server-identifier/$scope` . Longer scope-identifier strings increase the size of your access tokens.
Identifier string `pulumi:"identifier"`
- // The user pool ID for the user pool.
+ // The ID of the user pool where you want to create a resource server.
UserPoolId string `pulumi:"userPoolId"`
}
@@ -62,7 +62,7 @@ type LookupUserPoolResourceServerOutputArgs struct {
//
// Amazon Cognito represents scopes in the access token in the format `$resource-server-identifier/$scope` . Longer scope-identifier strings increase the size of your access tokens.
Identifier pulumi.StringInput `pulumi:"identifier"`
- // The user pool ID for the user pool.
+ // The ID of the user pool where you want to create a resource server.
UserPoolId pulumi.StringInput `pulumi:"userPoolId"`
}
diff --git a/sdk/go/aws/cognito/getUserPoolUiCustomizationAttachment.go b/sdk/go/aws/cognito/getUserPoolUiCustomizationAttachment.go
index ce1f906e42..5f87292695 100644
--- a/sdk/go/aws/cognito/getUserPoolUiCustomizationAttachment.go
+++ b/sdk/go/aws/cognito/getUserPoolUiCustomizationAttachment.go
@@ -25,7 +25,7 @@ func LookupUserPoolUiCustomizationAttachment(ctx *pulumi.Context, args *LookupUs
type LookupUserPoolUiCustomizationAttachmentArgs struct {
// The app client ID for your UI customization. When this value isn't present, the customization applies to all user pool app clients that don't have client-level settings..
ClientId string `pulumi:"clientId"`
- // The user pool ID for the user pool.
+ // The ID of the user pool.
UserPoolId string `pulumi:"userPoolId"`
}
@@ -56,7 +56,7 @@ func LookupUserPoolUiCustomizationAttachmentOutput(ctx *pulumi.Context, args Loo
type LookupUserPoolUiCustomizationAttachmentOutputArgs struct {
// The app client ID for your UI customization. When this value isn't present, the customization applies to all user pool app clients that don't have client-level settings..
ClientId pulumi.StringInput `pulumi:"clientId"`
- // The user pool ID for the user pool.
+ // The ID of the user pool.
UserPoolId pulumi.StringInput `pulumi:"userPoolId"`
}
diff --git a/sdk/go/aws/cognito/managedLoginBranding.go b/sdk/go/aws/cognito/managedLoginBranding.go
index 4f6e3ea273..d72204de09 100644
--- a/sdk/go/aws/cognito/managedLoginBranding.go
+++ b/sdk/go/aws/cognito/managedLoginBranding.go
@@ -17,16 +17,20 @@ type ManagedLoginBranding struct {
pulumi.CustomResourceState
// An array of image files that you want to apply to roles like backgrounds, logos, and icons. Each object must also indicate whether it is for dark mode, light mode, or browser-adaptive mode.
- Assets ManagedLoginBrandingAssetTypeArrayOutput `pulumi:"assets"`
- ClientId pulumi.StringPtrOutput `pulumi:"clientId"`
+ Assets ManagedLoginBrandingAssetTypeArrayOutput `pulumi:"assets"`
+ // The app client that's assigned to the branding style that you want more information about.
+ ClientId pulumi.StringPtrOutput `pulumi:"clientId"`
// The ID of the managed login branding style.
- ManagedLoginBrandingId pulumi.StringOutput `pulumi:"managedLoginBrandingId"`
- ReturnMergedResources pulumi.BoolPtrOutput `pulumi:"returnMergedResources"`
+ ManagedLoginBrandingId pulumi.StringOutput `pulumi:"managedLoginBrandingId"`
+ // When `true` , returns values for branding options that are unchanged from Amazon Cognito defaults. When `false` or when you omit this parameter, returns only values that you customized in your branding style.
+ ReturnMergedResources pulumi.BoolPtrOutput `pulumi:"returnMergedResources"`
// A JSON file, encoded as a `Document` type, with the the settings that you want to apply to your style.
//
// Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::Cognito::ManagedLoginBranding` for more information about the expected schema for this property.
Settings pulumi.AnyOutput `pulumi:"settings"`
- // When true, applies the default branding style options. This option reverts to a "blank" style that you can modify later in the branding designer.
+ // When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.
+ //
+ // When you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request.
UseCognitoProvidedValues pulumi.BoolPtrOutput `pulumi:"useCognitoProvidedValues"`
// The user pool where the branding style is assigned.
UserPoolId pulumi.StringOutput `pulumi:"userPoolId"`
@@ -81,14 +85,18 @@ func (ManagedLoginBrandingState) ElementType() reflect.Type {
type managedLoginBrandingArgs struct {
// An array of image files that you want to apply to roles like backgrounds, logos, and icons. Each object must also indicate whether it is for dark mode, light mode, or browser-adaptive mode.
- Assets []ManagedLoginBrandingAssetType `pulumi:"assets"`
- ClientId *string `pulumi:"clientId"`
- ReturnMergedResources *bool `pulumi:"returnMergedResources"`
+ Assets []ManagedLoginBrandingAssetType `pulumi:"assets"`
+ // The app client that's assigned to the branding style that you want more information about.
+ ClientId *string `pulumi:"clientId"`
+ // When `true` , returns values for branding options that are unchanged from Amazon Cognito defaults. When `false` or when you omit this parameter, returns only values that you customized in your branding style.
+ ReturnMergedResources *bool `pulumi:"returnMergedResources"`
// A JSON file, encoded as a `Document` type, with the the settings that you want to apply to your style.
//
// Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::Cognito::ManagedLoginBranding` for more information about the expected schema for this property.
Settings interface{} `pulumi:"settings"`
- // When true, applies the default branding style options. This option reverts to a "blank" style that you can modify later in the branding designer.
+ // When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.
+ //
+ // When you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request.
UseCognitoProvidedValues *bool `pulumi:"useCognitoProvidedValues"`
// The user pool where the branding style is assigned.
UserPoolId string `pulumi:"userPoolId"`
@@ -97,14 +105,18 @@ type managedLoginBrandingArgs struct {
// The set of arguments for constructing a ManagedLoginBranding resource.
type ManagedLoginBrandingArgs struct {
// An array of image files that you want to apply to roles like backgrounds, logos, and icons. Each object must also indicate whether it is for dark mode, light mode, or browser-adaptive mode.
- Assets ManagedLoginBrandingAssetTypeArrayInput
- ClientId pulumi.StringPtrInput
+ Assets ManagedLoginBrandingAssetTypeArrayInput
+ // The app client that's assigned to the branding style that you want more information about.
+ ClientId pulumi.StringPtrInput
+ // When `true` , returns values for branding options that are unchanged from Amazon Cognito defaults. When `false` or when you omit this parameter, returns only values that you customized in your branding style.
ReturnMergedResources pulumi.BoolPtrInput
// A JSON file, encoded as a `Document` type, with the the settings that you want to apply to your style.
//
// Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::Cognito::ManagedLoginBranding` for more information about the expected schema for this property.
Settings pulumi.Input
- // When true, applies the default branding style options. This option reverts to a "blank" style that you can modify later in the branding designer.
+ // When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.
+ //
+ // When you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request.
UseCognitoProvidedValues pulumi.BoolPtrInput
// The user pool where the branding style is assigned.
UserPoolId pulumi.StringInput
@@ -152,6 +164,7 @@ func (o ManagedLoginBrandingOutput) Assets() ManagedLoginBrandingAssetTypeArrayO
return o.ApplyT(func(v *ManagedLoginBranding) ManagedLoginBrandingAssetTypeArrayOutput { return v.Assets }).(ManagedLoginBrandingAssetTypeArrayOutput)
}
+// The app client that's assigned to the branding style that you want more information about.
func (o ManagedLoginBrandingOutput) ClientId() pulumi.StringPtrOutput {
return o.ApplyT(func(v *ManagedLoginBranding) pulumi.StringPtrOutput { return v.ClientId }).(pulumi.StringPtrOutput)
}
@@ -161,6 +174,7 @@ func (o ManagedLoginBrandingOutput) ManagedLoginBrandingId() pulumi.StringOutput
return o.ApplyT(func(v *ManagedLoginBranding) pulumi.StringOutput { return v.ManagedLoginBrandingId }).(pulumi.StringOutput)
}
+// When `true` , returns values for branding options that are unchanged from Amazon Cognito defaults. When `false` or when you omit this parameter, returns only values that you customized in your branding style.
func (o ManagedLoginBrandingOutput) ReturnMergedResources() pulumi.BoolPtrOutput {
return o.ApplyT(func(v *ManagedLoginBranding) pulumi.BoolPtrOutput { return v.ReturnMergedResources }).(pulumi.BoolPtrOutput)
}
@@ -172,7 +186,9 @@ func (o ManagedLoginBrandingOutput) Settings() pulumi.AnyOutput {
return o.ApplyT(func(v *ManagedLoginBranding) pulumi.AnyOutput { return v.Settings }).(pulumi.AnyOutput)
}
-// When true, applies the default branding style options. This option reverts to a "blank" style that you can modify later in the branding designer.
+// When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.
+//
+// When you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request.
func (o ManagedLoginBrandingOutput) UseCognitoProvidedValues() pulumi.BoolPtrOutput {
return o.ApplyT(func(v *ManagedLoginBranding) pulumi.BoolPtrOutput { return v.UseCognitoProvidedValues }).(pulumi.BoolPtrOutput)
}
diff --git a/sdk/go/aws/cognito/pulumiTypes.go b/sdk/go/aws/cognito/pulumiTypes.go
index 1e1eb9ed25..df6464e4c0 100644
--- a/sdk/go/aws/cognito/pulumiTypes.go
+++ b/sdk/go/aws/cognito/pulumiTypes.go
@@ -1619,6 +1619,7 @@ func (o UserPoolAccountRecoverySettingPtrOutput) RecoveryMechanisms() UserPoolRe
}
type UserPoolAddOns struct {
+ // Advanced security configuration options for additional authentication types in your user pool, including custom authentication.
AdvancedSecurityAdditionalFlows *UserPoolAdvancedSecurityAdditionalFlows `pulumi:"advancedSecurityAdditionalFlows"`
// The operating mode of advanced security features for standard authentication types in your user pool, including username-password and secure remote password (SRP) authentication.
AdvancedSecurityMode *string `pulumi:"advancedSecurityMode"`
@@ -1636,6 +1637,7 @@ type UserPoolAddOnsInput interface {
}
type UserPoolAddOnsArgs struct {
+ // Advanced security configuration options for additional authentication types in your user pool, including custom authentication.
AdvancedSecurityAdditionalFlows UserPoolAdvancedSecurityAdditionalFlowsPtrInput `pulumi:"advancedSecurityAdditionalFlows"`
// The operating mode of advanced security features for standard authentication types in your user pool, including username-password and secure remote password (SRP) authentication.
AdvancedSecurityMode pulumi.StringPtrInput `pulumi:"advancedSecurityMode"`
@@ -1718,6 +1720,7 @@ func (o UserPoolAddOnsOutput) ToUserPoolAddOnsPtrOutputWithContext(ctx context.C
}).(UserPoolAddOnsPtrOutput)
}
+// Advanced security configuration options for additional authentication types in your user pool, including custom authentication.
func (o UserPoolAddOnsOutput) AdvancedSecurityAdditionalFlows() UserPoolAdvancedSecurityAdditionalFlowsPtrOutput {
return o.ApplyT(func(v UserPoolAddOns) *UserPoolAdvancedSecurityAdditionalFlows {
return v.AdvancedSecurityAdditionalFlows
@@ -1753,6 +1756,7 @@ func (o UserPoolAddOnsPtrOutput) Elem() UserPoolAddOnsOutput {
}).(UserPoolAddOnsOutput)
}
+// Advanced security configuration options for additional authentication types in your user pool, including custom authentication.
func (o UserPoolAddOnsPtrOutput) AdvancedSecurityAdditionalFlows() UserPoolAdvancedSecurityAdditionalFlowsPtrOutput {
return o.ApplyT(func(v *UserPoolAddOns) *UserPoolAdvancedSecurityAdditionalFlows {
if v == nil {
@@ -1972,6 +1976,7 @@ func (o UserPoolAdminCreateUserConfigPtrOutput) UnusedAccountValidityDays() pulu
}
type UserPoolAdvancedSecurityAdditionalFlows struct {
+ // The operating mode of advanced security features in custom authentication with [Custom authentication challenge Lambda triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-lambda-challenge.html) .
CustomAuthMode *string `pulumi:"customAuthMode"`
}
@@ -1987,6 +1992,7 @@ type UserPoolAdvancedSecurityAdditionalFlowsInput interface {
}
type UserPoolAdvancedSecurityAdditionalFlowsArgs struct {
+ // The operating mode of advanced security features in custom authentication with [Custom authentication challenge Lambda triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-lambda-challenge.html) .
CustomAuthMode pulumi.StringPtrInput `pulumi:"customAuthMode"`
}
@@ -2067,6 +2073,7 @@ func (o UserPoolAdvancedSecurityAdditionalFlowsOutput) ToUserPoolAdvancedSecurit
}).(UserPoolAdvancedSecurityAdditionalFlowsPtrOutput)
}
+// The operating mode of advanced security features in custom authentication with [Custom authentication challenge Lambda triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-lambda-challenge.html) .
func (o UserPoolAdvancedSecurityAdditionalFlowsOutput) CustomAuthMode() pulumi.StringPtrOutput {
return o.ApplyT(func(v UserPoolAdvancedSecurityAdditionalFlows) *string { return v.CustomAuthMode }).(pulumi.StringPtrOutput)
}
@@ -2095,6 +2102,7 @@ func (o UserPoolAdvancedSecurityAdditionalFlowsPtrOutput) Elem() UserPoolAdvance
}).(UserPoolAdvancedSecurityAdditionalFlowsOutput)
}
+// The operating mode of advanced security features in custom authentication with [Custom authentication challenge Lambda triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-lambda-challenge.html) .
func (o UserPoolAdvancedSecurityAdditionalFlowsPtrOutput) CustomAuthMode() pulumi.StringPtrOutput {
return o.ApplyT(func(v *UserPoolAdvancedSecurityAdditionalFlows) *string {
if v == nil {
@@ -4411,7 +4419,10 @@ func (o UserPoolPasswordPolicyPtrOutput) TemporaryPasswordValidityDays() pulumi.
type UserPoolPolicies struct {
// The password policy settings for a user pool, including complexity, history, and length requirements.
PasswordPolicy *UserPoolPasswordPolicy `pulumi:"passwordPolicy"`
- SignInPolicy *UserPoolSignInPolicy `pulumi:"signInPolicy"`
+ // The policy for allowed types of authentication in a user pool.
+ //
+ // This data type is a request and response parameter of [CreateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_CreateUserPool.html) and [UpdateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserPool.html) , and a response parameter of [DescribeUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_DescribeUserPool.html) .
+ SignInPolicy *UserPoolSignInPolicy `pulumi:"signInPolicy"`
}
// UserPoolPoliciesInput is an input type that accepts UserPoolPoliciesArgs and UserPoolPoliciesOutput values.
@@ -4428,7 +4439,10 @@ type UserPoolPoliciesInput interface {
type UserPoolPoliciesArgs struct {
// The password policy settings for a user pool, including complexity, history, and length requirements.
PasswordPolicy UserPoolPasswordPolicyPtrInput `pulumi:"passwordPolicy"`
- SignInPolicy UserPoolSignInPolicyPtrInput `pulumi:"signInPolicy"`
+ // The policy for allowed types of authentication in a user pool.
+ //
+ // This data type is a request and response parameter of [CreateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_CreateUserPool.html) and [UpdateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserPool.html) , and a response parameter of [DescribeUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_DescribeUserPool.html) .
+ SignInPolicy UserPoolSignInPolicyPtrInput `pulumi:"signInPolicy"`
}
func (UserPoolPoliciesArgs) ElementType() reflect.Type {
@@ -4513,6 +4527,9 @@ func (o UserPoolPoliciesOutput) PasswordPolicy() UserPoolPasswordPolicyPtrOutput
return o.ApplyT(func(v UserPoolPolicies) *UserPoolPasswordPolicy { return v.PasswordPolicy }).(UserPoolPasswordPolicyPtrOutput)
}
+// The policy for allowed types of authentication in a user pool.
+//
+// This data type is a request and response parameter of [CreateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_CreateUserPool.html) and [UpdateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserPool.html) , and a response parameter of [DescribeUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_DescribeUserPool.html) .
func (o UserPoolPoliciesOutput) SignInPolicy() UserPoolSignInPolicyPtrOutput {
return o.ApplyT(func(v UserPoolPolicies) *UserPoolSignInPolicy { return v.SignInPolicy }).(UserPoolSignInPolicyPtrOutput)
}
@@ -4551,6 +4568,9 @@ func (o UserPoolPoliciesPtrOutput) PasswordPolicy() UserPoolPasswordPolicyPtrOut
}).(UserPoolPasswordPolicyPtrOutput)
}
+// The policy for allowed types of authentication in a user pool.
+//
+// This data type is a request and response parameter of [CreateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_CreateUserPool.html) and [UpdateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserPool.html) , and a response parameter of [DescribeUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_DescribeUserPool.html) .
func (o UserPoolPoliciesPtrOutput) SignInPolicy() UserPoolSignInPolicyPtrOutput {
return o.ApplyT(func(v *UserPoolPolicies) *UserPoolSignInPolicy {
if v == nil {
@@ -6493,6 +6513,9 @@ func (o UserPoolSchemaAttributeArrayOutput) Index(i pulumi.IntInput) UserPoolSch
}
type UserPoolSignInPolicy struct {
+ // The sign-in methods that a user pool supports as the first factor. You can permit users to start authentication with a standard username and password, or with other one-time password and hardware factors.
+ //
+ // Supports values of `EMAIL_OTP` , `SMS_OTP` , `WEB_AUTHN` and `PASSWORD` ,
AllowedFirstAuthFactors []string `pulumi:"allowedFirstAuthFactors"`
}
@@ -6508,6 +6531,9 @@ type UserPoolSignInPolicyInput interface {
}
type UserPoolSignInPolicyArgs struct {
+ // The sign-in methods that a user pool supports as the first factor. You can permit users to start authentication with a standard username and password, or with other one-time password and hardware factors.
+ //
+ // Supports values of `EMAIL_OTP` , `SMS_OTP` , `WEB_AUTHN` and `PASSWORD` ,
AllowedFirstAuthFactors pulumi.StringArrayInput `pulumi:"allowedFirstAuthFactors"`
}
@@ -6588,6 +6614,9 @@ func (o UserPoolSignInPolicyOutput) ToUserPoolSignInPolicyPtrOutputWithContext(c
}).(UserPoolSignInPolicyPtrOutput)
}
+// The sign-in methods that a user pool supports as the first factor. You can permit users to start authentication with a standard username and password, or with other one-time password and hardware factors.
+//
+// Supports values of `EMAIL_OTP` , `SMS_OTP` , `WEB_AUTHN` and `PASSWORD` ,
func (o UserPoolSignInPolicyOutput) AllowedFirstAuthFactors() pulumi.StringArrayOutput {
return o.ApplyT(func(v UserPoolSignInPolicy) []string { return v.AllowedFirstAuthFactors }).(pulumi.StringArrayOutput)
}
@@ -6616,6 +6645,9 @@ func (o UserPoolSignInPolicyPtrOutput) Elem() UserPoolSignInPolicyOutput {
}).(UserPoolSignInPolicyOutput)
}
+// The sign-in methods that a user pool supports as the first factor. You can permit users to start authentication with a standard username and password, or with other one-time password and hardware factors.
+//
+// Supports values of `EMAIL_OTP` , `SMS_OTP` , `WEB_AUTHN` and `PASSWORD` ,
func (o UserPoolSignInPolicyPtrOutput) AllowedFirstAuthFactors() pulumi.StringArrayOutput {
return o.ApplyT(func(v *UserPoolSignInPolicy) []string {
if v == nil {
diff --git a/sdk/go/aws/cognito/userPool.go b/sdk/go/aws/cognito/userPool.go
index 193d43f909..b45f0d5934 100644
--- a/sdk/go/aws/cognito/userPool.go
+++ b/sdk/go/aws/cognito/userPool.go
@@ -21,11 +21,11 @@ type UserPool struct {
//
// This data type is a request and response parameter of [CreateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_CreateUserPool.html) and [UpdateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserPool.html) , and a response parameter of [DescribeUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_DescribeUserPool.html) .
AdminCreateUserConfig UserPoolAdminCreateUserConfigPtrOutput `pulumi:"adminCreateUserConfig"`
- // Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* .
+ // Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* . For more information about alias attributes, see [Customizing sign-in attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-aliases) .
AliasAttributes pulumi.StringArrayOutput `pulumi:"aliasAttributes"`
// The Amazon Resource Name (ARN) of the user pool, such as `arn:aws:cognito-idp:us-east-1:123412341234:userpool/us-east-1_123412341` .
Arn pulumi.StringOutput `pulumi:"arn"`
- // The attributes to be auto-verified. Possible values: *email* , *phone_number* .
+ // The attributes that you want your user pool to automatically verify. Possible values: *email* , *phone_number* . For more information see [Verifying contact information at sign-up](https://docs.aws.amazon.com/cognito/latest/developerguide/signing-up-users-in-your-app.html#allowing-users-to-sign-up-and-confirm-themselves) .
AutoVerifiedAttributes pulumi.StringArrayOutput `pulumi:"autoVerifiedAttributes"`
// When active, `DeletionProtection` prevents accidental deletion of your user
// pool. Before you can delete a user pool that you have protected against deletion, you
@@ -33,9 +33,9 @@ type UserPool struct {
//
// When you try to delete a protected user pool in a `DeleteUserPool` API request, Amazon Cognito returns an `InvalidParameterException` error. To delete a protected user pool, send a new `DeleteUserPool` request after you deactivate deletion protection in an `UpdateUserPool` API request.
DeletionProtection pulumi.StringPtrOutput `pulumi:"deletionProtection"`
- // The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool.
+ // The device-remembering configuration for a user pool. Device remembering or device tracking is a "Remember me on this device" option for user pools that perform authentication with the device key of a trusted device in the back end, instead of a user-provided MFA code. For more information about device authentication, see [Working with user devices in your user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-device-tracking.html) . A null value indicates that you have deactivated device remembering in your user pool.
//
- // > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature.
+ // > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature. For more infor
DeviceConfiguration UserPoolDeviceConfigurationPtrOutput `pulumi:"deviceConfiguration"`
EmailAuthenticationMessage pulumi.StringPtrOutput `pulumi:"emailAuthenticationMessage"`
EmailAuthenticationSubject pulumi.StringPtrOutput `pulumi:"emailAuthenticationSubject"`
@@ -69,11 +69,11 @@ type UserPool struct {
ProviderName pulumi.StringOutput `pulumi:"providerName"`
// The URL of the provider of the Amazon Cognito user pool, specified as a `String` .
ProviderUrl pulumi.StringOutput `pulumi:"providerUrl"`
- // An array of schema attributes for the new user pool. These attributes can be standard or custom attributes.
+ // An array of attributes for the new user pool. You can add custom attributes and modify the properties of default attributes. The specifications in this parameter set the required attributes in your user pool. For more information, see [Working with user attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html) .
Schema UserPoolSchemaAttributeArrayOutput `pulumi:"schema"`
// The contents of the SMS authentication message.
SmsAuthenticationMessage pulumi.StringPtrOutput `pulumi:"smsAuthenticationMessage"`
- // The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account .
+ // The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account . For more information see [SMS message settings](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-sms-settings.html) .
SmsConfiguration UserPoolSmsConfigurationPtrOutput `pulumi:"smsConfiguration"`
// This parameter is no longer used. See [VerificationMessageTemplateType](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cognito-userpool-verificationmessagetemplate.html) .
SmsVerificationMessage pulumi.StringPtrOutput `pulumi:"smsVerificationMessage"`
@@ -87,7 +87,7 @@ type UserPool struct {
UserPoolAddOns UserPoolAddOnsPtrOutput `pulumi:"userPoolAddOns"`
// The ID of the user pool.
UserPoolId pulumi.StringOutput `pulumi:"userPoolId"`
- // A string used to name the user pool.
+ // A friendlhy name for your user pool.
UserPoolName pulumi.StringPtrOutput `pulumi:"userPoolName"`
// The tag keys and values to assign to the user pool. A tag is a label that you can use to categorize and manage user pools in different ways, such as by purpose, owner, environment, or other criteria.
UserPoolTags pulumi.StringMapOutput `pulumi:"userPoolTags"`
@@ -95,16 +95,26 @@ type UserPool struct {
UserPoolTier UserPoolTierPtrOutput `pulumi:"userPoolTier"`
// Specifies whether a user can use an email address or phone number as a username when they sign up.
UsernameAttributes pulumi.StringArrayOutput `pulumi:"usernameAttributes"`
- // Case sensitivity on the username input for the selected sign-in option. When case sensitivity is set to `False` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `False` (case insensitive) as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
+ // Sets the case sensitivity option for sign-in usernames. When `CaseSensitive` is `false` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `false` as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
//
- // This configuration is immutable after you set it. For more information, see [UsernameConfigurationType](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UsernameConfigurationType.html) .
+ // When `CaseSensitive` is `true` (case sensitive), Amazon Cognito interprets `USERNAME` and `UserName` as distinct users.
+ //
+ // This configuration is immutable after you set it.
UsernameConfiguration UserPoolUsernameConfigurationPtrOutput `pulumi:"usernameConfiguration"`
// The template for the verification message that your user pool delivers to users who set an email address or phone number attribute.
//
// Set the email message type that corresponds to your `DefaultEmailOption` selection. For `CONFIRM_WITH_LINK` , specify an `EmailMessageByLink` and leave `EmailMessage` blank. For `CONFIRM_WITH_CODE` , specify an `EmailMessage` and leave `EmailMessageByLink` blank. When you supply both parameters with either choice, Amazon Cognito returns an error.
VerificationMessageTemplate UserPoolVerificationMessageTemplatePtrOutput `pulumi:"verificationMessageTemplate"`
- WebAuthnRelyingPartyId pulumi.StringPtrOutput `pulumi:"webAuthnRelyingPartyId"`
- WebAuthnUserVerification pulumi.StringPtrOutput `pulumi:"webAuthnUserVerification"`
+ // Sets or displays the authentication domain, typically your user pool domain, that passkey providers must use as a relying party (RP) in their configuration.
+ //
+ // Under the following conditions, the passkey relying party ID must be the fully-qualified domain name of your custom domain:
+ //
+ // - The user pool is configured for passkey authentication.
+ // - The user pool has a custom domain, whether or not it also has a prefix domain.
+ // - Your application performs authentication with managed login or the classic hosted UI.
+ WebAuthnRelyingPartyId pulumi.StringPtrOutput `pulumi:"webAuthnRelyingPartyId"`
+ // When `required` , users can only register and sign in users with passkeys that are capable of [user verification](https://docs.aws.amazon.com/https://www.w3.org/TR/webauthn-2/#enum-userVerificationRequirement) . When `preferred` , your user pool doesn't require the use of authenticators with user verification but encourages it.
+ WebAuthnUserVerification pulumi.StringPtrOutput `pulumi:"webAuthnUserVerification"`
}
// NewUserPool registers a new resource with the given unique name, arguments, and options.
@@ -153,9 +163,9 @@ type userPoolArgs struct {
//
// This data type is a request and response parameter of [CreateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_CreateUserPool.html) and [UpdateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserPool.html) , and a response parameter of [DescribeUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_DescribeUserPool.html) .
AdminCreateUserConfig *UserPoolAdminCreateUserConfig `pulumi:"adminCreateUserConfig"`
- // Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* .
+ // Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* . For more information about alias attributes, see [Customizing sign-in attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-aliases) .
AliasAttributes []string `pulumi:"aliasAttributes"`
- // The attributes to be auto-verified. Possible values: *email* , *phone_number* .
+ // The attributes that you want your user pool to automatically verify. Possible values: *email* , *phone_number* . For more information see [Verifying contact information at sign-up](https://docs.aws.amazon.com/cognito/latest/developerguide/signing-up-users-in-your-app.html#allowing-users-to-sign-up-and-confirm-themselves) .
AutoVerifiedAttributes []string `pulumi:"autoVerifiedAttributes"`
// When active, `DeletionProtection` prevents accidental deletion of your user
// pool. Before you can delete a user pool that you have protected against deletion, you
@@ -163,9 +173,9 @@ type userPoolArgs struct {
//
// When you try to delete a protected user pool in a `DeleteUserPool` API request, Amazon Cognito returns an `InvalidParameterException` error. To delete a protected user pool, send a new `DeleteUserPool` request after you deactivate deletion protection in an `UpdateUserPool` API request.
DeletionProtection *string `pulumi:"deletionProtection"`
- // The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool.
+ // The device-remembering configuration for a user pool. Device remembering or device tracking is a "Remember me on this device" option for user pools that perform authentication with the device key of a trusted device in the back end, instead of a user-provided MFA code. For more information about device authentication, see [Working with user devices in your user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-device-tracking.html) . A null value indicates that you have deactivated device remembering in your user pool.
//
- // > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature.
+ // > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature. For more infor
DeviceConfiguration *UserPoolDeviceConfiguration `pulumi:"deviceConfiguration"`
EmailAuthenticationMessage *string `pulumi:"emailAuthenticationMessage"`
EmailAuthenticationSubject *string `pulumi:"emailAuthenticationSubject"`
@@ -195,11 +205,11 @@ type userPoolArgs struct {
//
// This data type is a request and response parameter of [CreateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_CreateUserPool.html) and [UpdateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserPool.html) , and a response parameter of [DescribeUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_DescribeUserPool.html) .
Policies *UserPoolPolicies `pulumi:"policies"`
- // An array of schema attributes for the new user pool. These attributes can be standard or custom attributes.
+ // An array of attributes for the new user pool. You can add custom attributes and modify the properties of default attributes. The specifications in this parameter set the required attributes in your user pool. For more information, see [Working with user attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html) .
Schema []UserPoolSchemaAttribute `pulumi:"schema"`
// The contents of the SMS authentication message.
SmsAuthenticationMessage *string `pulumi:"smsAuthenticationMessage"`
- // The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account .
+ // The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account . For more information see [SMS message settings](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-sms-settings.html) .
SmsConfiguration *UserPoolSmsConfiguration `pulumi:"smsConfiguration"`
// This parameter is no longer used. See [VerificationMessageTemplateType](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cognito-userpool-verificationmessagetemplate.html) .
SmsVerificationMessage *string `pulumi:"smsVerificationMessage"`
@@ -211,7 +221,7 @@ type userPoolArgs struct {
//
// For more information, see [Adding advanced security to a user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pool-settings-advanced-security.html) .
UserPoolAddOns *UserPoolAddOns `pulumi:"userPoolAddOns"`
- // A string used to name the user pool.
+ // A friendlhy name for your user pool.
UserPoolName *string `pulumi:"userPoolName"`
// The tag keys and values to assign to the user pool. A tag is a label that you can use to categorize and manage user pools in different ways, such as by purpose, owner, environment, or other criteria.
UserPoolTags map[string]string `pulumi:"userPoolTags"`
@@ -219,16 +229,26 @@ type userPoolArgs struct {
UserPoolTier *UserPoolTier `pulumi:"userPoolTier"`
// Specifies whether a user can use an email address or phone number as a username when they sign up.
UsernameAttributes []string `pulumi:"usernameAttributes"`
- // Case sensitivity on the username input for the selected sign-in option. When case sensitivity is set to `False` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `False` (case insensitive) as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
+ // Sets the case sensitivity option for sign-in usernames. When `CaseSensitive` is `false` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `false` as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
//
- // This configuration is immutable after you set it. For more information, see [UsernameConfigurationType](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UsernameConfigurationType.html) .
+ // When `CaseSensitive` is `true` (case sensitive), Amazon Cognito interprets `USERNAME` and `UserName` as distinct users.
+ //
+ // This configuration is immutable after you set it.
UsernameConfiguration *UserPoolUsernameConfiguration `pulumi:"usernameConfiguration"`
// The template for the verification message that your user pool delivers to users who set an email address or phone number attribute.
//
// Set the email message type that corresponds to your `DefaultEmailOption` selection. For `CONFIRM_WITH_LINK` , specify an `EmailMessageByLink` and leave `EmailMessage` blank. For `CONFIRM_WITH_CODE` , specify an `EmailMessage` and leave `EmailMessageByLink` blank. When you supply both parameters with either choice, Amazon Cognito returns an error.
VerificationMessageTemplate *UserPoolVerificationMessageTemplate `pulumi:"verificationMessageTemplate"`
- WebAuthnRelyingPartyId *string `pulumi:"webAuthnRelyingPartyId"`
- WebAuthnUserVerification *string `pulumi:"webAuthnUserVerification"`
+ // Sets or displays the authentication domain, typically your user pool domain, that passkey providers must use as a relying party (RP) in their configuration.
+ //
+ // Under the following conditions, the passkey relying party ID must be the fully-qualified domain name of your custom domain:
+ //
+ // - The user pool is configured for passkey authentication.
+ // - The user pool has a custom domain, whether or not it also has a prefix domain.
+ // - Your application performs authentication with managed login or the classic hosted UI.
+ WebAuthnRelyingPartyId *string `pulumi:"webAuthnRelyingPartyId"`
+ // When `required` , users can only register and sign in users with passkeys that are capable of [user verification](https://docs.aws.amazon.com/https://www.w3.org/TR/webauthn-2/#enum-userVerificationRequirement) . When `preferred` , your user pool doesn't require the use of authenticators with user verification but encourages it.
+ WebAuthnUserVerification *string `pulumi:"webAuthnUserVerification"`
}
// The set of arguments for constructing a UserPool resource.
@@ -239,9 +259,9 @@ type UserPoolArgs struct {
//
// This data type is a request and response parameter of [CreateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_CreateUserPool.html) and [UpdateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserPool.html) , and a response parameter of [DescribeUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_DescribeUserPool.html) .
AdminCreateUserConfig UserPoolAdminCreateUserConfigPtrInput
- // Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* .
+ // Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* . For more information about alias attributes, see [Customizing sign-in attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-aliases) .
AliasAttributes pulumi.StringArrayInput
- // The attributes to be auto-verified. Possible values: *email* , *phone_number* .
+ // The attributes that you want your user pool to automatically verify. Possible values: *email* , *phone_number* . For more information see [Verifying contact information at sign-up](https://docs.aws.amazon.com/cognito/latest/developerguide/signing-up-users-in-your-app.html#allowing-users-to-sign-up-and-confirm-themselves) .
AutoVerifiedAttributes pulumi.StringArrayInput
// When active, `DeletionProtection` prevents accidental deletion of your user
// pool. Before you can delete a user pool that you have protected against deletion, you
@@ -249,9 +269,9 @@ type UserPoolArgs struct {
//
// When you try to delete a protected user pool in a `DeleteUserPool` API request, Amazon Cognito returns an `InvalidParameterException` error. To delete a protected user pool, send a new `DeleteUserPool` request after you deactivate deletion protection in an `UpdateUserPool` API request.
DeletionProtection pulumi.StringPtrInput
- // The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool.
+ // The device-remembering configuration for a user pool. Device remembering or device tracking is a "Remember me on this device" option for user pools that perform authentication with the device key of a trusted device in the back end, instead of a user-provided MFA code. For more information about device authentication, see [Working with user devices in your user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-device-tracking.html) . A null value indicates that you have deactivated device remembering in your user pool.
//
- // > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature.
+ // > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature. For more infor
DeviceConfiguration UserPoolDeviceConfigurationPtrInput
EmailAuthenticationMessage pulumi.StringPtrInput
EmailAuthenticationSubject pulumi.StringPtrInput
@@ -281,11 +301,11 @@ type UserPoolArgs struct {
//
// This data type is a request and response parameter of [CreateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_CreateUserPool.html) and [UpdateUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserPool.html) , and a response parameter of [DescribeUserPool](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_DescribeUserPool.html) .
Policies UserPoolPoliciesPtrInput
- // An array of schema attributes for the new user pool. These attributes can be standard or custom attributes.
+ // An array of attributes for the new user pool. You can add custom attributes and modify the properties of default attributes. The specifications in this parameter set the required attributes in your user pool. For more information, see [Working with user attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html) .
Schema UserPoolSchemaAttributeArrayInput
// The contents of the SMS authentication message.
SmsAuthenticationMessage pulumi.StringPtrInput
- // The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account .
+ // The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account . For more information see [SMS message settings](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-sms-settings.html) .
SmsConfiguration UserPoolSmsConfigurationPtrInput
// This parameter is no longer used. See [VerificationMessageTemplateType](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-cognito-userpool-verificationmessagetemplate.html) .
SmsVerificationMessage pulumi.StringPtrInput
@@ -297,7 +317,7 @@ type UserPoolArgs struct {
//
// For more information, see [Adding advanced security to a user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pool-settings-advanced-security.html) .
UserPoolAddOns UserPoolAddOnsPtrInput
- // A string used to name the user pool.
+ // A friendlhy name for your user pool.
UserPoolName pulumi.StringPtrInput
// The tag keys and values to assign to the user pool. A tag is a label that you can use to categorize and manage user pools in different ways, such as by purpose, owner, environment, or other criteria.
UserPoolTags pulumi.StringMapInput
@@ -305,16 +325,26 @@ type UserPoolArgs struct {
UserPoolTier UserPoolTierPtrInput
// Specifies whether a user can use an email address or phone number as a username when they sign up.
UsernameAttributes pulumi.StringArrayInput
- // Case sensitivity on the username input for the selected sign-in option. When case sensitivity is set to `False` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `False` (case insensitive) as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
+ // Sets the case sensitivity option for sign-in usernames. When `CaseSensitive` is `false` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `false` as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
//
- // This configuration is immutable after you set it. For more information, see [UsernameConfigurationType](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UsernameConfigurationType.html) .
+ // When `CaseSensitive` is `true` (case sensitive), Amazon Cognito interprets `USERNAME` and `UserName` as distinct users.
+ //
+ // This configuration is immutable after you set it.
UsernameConfiguration UserPoolUsernameConfigurationPtrInput
// The template for the verification message that your user pool delivers to users who set an email address or phone number attribute.
//
// Set the email message type that corresponds to your `DefaultEmailOption` selection. For `CONFIRM_WITH_LINK` , specify an `EmailMessageByLink` and leave `EmailMessage` blank. For `CONFIRM_WITH_CODE` , specify an `EmailMessage` and leave `EmailMessageByLink` blank. When you supply both parameters with either choice, Amazon Cognito returns an error.
VerificationMessageTemplate UserPoolVerificationMessageTemplatePtrInput
- WebAuthnRelyingPartyId pulumi.StringPtrInput
- WebAuthnUserVerification pulumi.StringPtrInput
+ // Sets or displays the authentication domain, typically your user pool domain, that passkey providers must use as a relying party (RP) in their configuration.
+ //
+ // Under the following conditions, the passkey relying party ID must be the fully-qualified domain name of your custom domain:
+ //
+ // - The user pool is configured for passkey authentication.
+ // - The user pool has a custom domain, whether or not it also has a prefix domain.
+ // - Your application performs authentication with managed login or the classic hosted UI.
+ WebAuthnRelyingPartyId pulumi.StringPtrInput
+ // When `required` , users can only register and sign in users with passkeys that are capable of [user verification](https://docs.aws.amazon.com/https://www.w3.org/TR/webauthn-2/#enum-userVerificationRequirement) . When `preferred` , your user pool doesn't require the use of authenticators with user verification but encourages it.
+ WebAuthnUserVerification pulumi.StringPtrInput
}
func (UserPoolArgs) ElementType() reflect.Type {
@@ -366,7 +396,7 @@ func (o UserPoolOutput) AdminCreateUserConfig() UserPoolAdminCreateUserConfigPtr
return o.ApplyT(func(v *UserPool) UserPoolAdminCreateUserConfigPtrOutput { return v.AdminCreateUserConfig }).(UserPoolAdminCreateUserConfigPtrOutput)
}
-// Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* .
+// Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* . For more information about alias attributes, see [Customizing sign-in attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-aliases) .
func (o UserPoolOutput) AliasAttributes() pulumi.StringArrayOutput {
return o.ApplyT(func(v *UserPool) pulumi.StringArrayOutput { return v.AliasAttributes }).(pulumi.StringArrayOutput)
}
@@ -376,7 +406,7 @@ func (o UserPoolOutput) Arn() pulumi.StringOutput {
return o.ApplyT(func(v *UserPool) pulumi.StringOutput { return v.Arn }).(pulumi.StringOutput)
}
-// The attributes to be auto-verified. Possible values: *email* , *phone_number* .
+// The attributes that you want your user pool to automatically verify. Possible values: *email* , *phone_number* . For more information see [Verifying contact information at sign-up](https://docs.aws.amazon.com/cognito/latest/developerguide/signing-up-users-in-your-app.html#allowing-users-to-sign-up-and-confirm-themselves) .
func (o UserPoolOutput) AutoVerifiedAttributes() pulumi.StringArrayOutput {
return o.ApplyT(func(v *UserPool) pulumi.StringArrayOutput { return v.AutoVerifiedAttributes }).(pulumi.StringArrayOutput)
}
@@ -390,9 +420,9 @@ func (o UserPoolOutput) DeletionProtection() pulumi.StringPtrOutput {
return o.ApplyT(func(v *UserPool) pulumi.StringPtrOutput { return v.DeletionProtection }).(pulumi.StringPtrOutput)
}
-// The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool.
+// The device-remembering configuration for a user pool. Device remembering or device tracking is a "Remember me on this device" option for user pools that perform authentication with the device key of a trusted device in the back end, instead of a user-provided MFA code. For more information about device authentication, see [Working with user devices in your user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-device-tracking.html) . A null value indicates that you have deactivated device remembering in your user pool.
//
-// > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature.
+// > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature. For more infor
func (o UserPoolOutput) DeviceConfiguration() UserPoolDeviceConfigurationPtrOutput {
return o.ApplyT(func(v *UserPool) UserPoolDeviceConfigurationPtrOutput { return v.DeviceConfiguration }).(UserPoolDeviceConfigurationPtrOutput)
}
@@ -462,7 +492,7 @@ func (o UserPoolOutput) ProviderUrl() pulumi.StringOutput {
return o.ApplyT(func(v *UserPool) pulumi.StringOutput { return v.ProviderUrl }).(pulumi.StringOutput)
}
-// An array of schema attributes for the new user pool. These attributes can be standard or custom attributes.
+// An array of attributes for the new user pool. You can add custom attributes and modify the properties of default attributes. The specifications in this parameter set the required attributes in your user pool. For more information, see [Working with user attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html) .
func (o UserPoolOutput) Schema() UserPoolSchemaAttributeArrayOutput {
return o.ApplyT(func(v *UserPool) UserPoolSchemaAttributeArrayOutput { return v.Schema }).(UserPoolSchemaAttributeArrayOutput)
}
@@ -472,7 +502,7 @@ func (o UserPoolOutput) SmsAuthenticationMessage() pulumi.StringPtrOutput {
return o.ApplyT(func(v *UserPool) pulumi.StringPtrOutput { return v.SmsAuthenticationMessage }).(pulumi.StringPtrOutput)
}
-// The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account .
+// The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account . For more information see [SMS message settings](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-sms-settings.html) .
func (o UserPoolOutput) SmsConfiguration() UserPoolSmsConfigurationPtrOutput {
return o.ApplyT(func(v *UserPool) UserPoolSmsConfigurationPtrOutput { return v.SmsConfiguration }).(UserPoolSmsConfigurationPtrOutput)
}
@@ -501,7 +531,7 @@ func (o UserPoolOutput) UserPoolId() pulumi.StringOutput {
return o.ApplyT(func(v *UserPool) pulumi.StringOutput { return v.UserPoolId }).(pulumi.StringOutput)
}
-// A string used to name the user pool.
+// A friendlhy name for your user pool.
func (o UserPoolOutput) UserPoolName() pulumi.StringPtrOutput {
return o.ApplyT(func(v *UserPool) pulumi.StringPtrOutput { return v.UserPoolName }).(pulumi.StringPtrOutput)
}
@@ -521,9 +551,11 @@ func (o UserPoolOutput) UsernameAttributes() pulumi.StringArrayOutput {
return o.ApplyT(func(v *UserPool) pulumi.StringArrayOutput { return v.UsernameAttributes }).(pulumi.StringArrayOutput)
}
-// Case sensitivity on the username input for the selected sign-in option. When case sensitivity is set to `False` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `False` (case insensitive) as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
+// Sets the case sensitivity option for sign-in usernames. When `CaseSensitive` is `false` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `false` as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
//
-// This configuration is immutable after you set it. For more information, see [UsernameConfigurationType](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UsernameConfigurationType.html) .
+// When `CaseSensitive` is `true` (case sensitive), Amazon Cognito interprets `USERNAME` and `UserName` as distinct users.
+//
+// This configuration is immutable after you set it.
func (o UserPoolOutput) UsernameConfiguration() UserPoolUsernameConfigurationPtrOutput {
return o.ApplyT(func(v *UserPool) UserPoolUsernameConfigurationPtrOutput { return v.UsernameConfiguration }).(UserPoolUsernameConfigurationPtrOutput)
}
@@ -535,10 +567,18 @@ func (o UserPoolOutput) VerificationMessageTemplate() UserPoolVerificationMessag
return o.ApplyT(func(v *UserPool) UserPoolVerificationMessageTemplatePtrOutput { return v.VerificationMessageTemplate }).(UserPoolVerificationMessageTemplatePtrOutput)
}
+// Sets or displays the authentication domain, typically your user pool domain, that passkey providers must use as a relying party (RP) in their configuration.
+//
+// Under the following conditions, the passkey relying party ID must be the fully-qualified domain name of your custom domain:
+//
+// - The user pool is configured for passkey authentication.
+// - The user pool has a custom domain, whether or not it also has a prefix domain.
+// - Your application performs authentication with managed login or the classic hosted UI.
func (o UserPoolOutput) WebAuthnRelyingPartyId() pulumi.StringPtrOutput {
return o.ApplyT(func(v *UserPool) pulumi.StringPtrOutput { return v.WebAuthnRelyingPartyId }).(pulumi.StringPtrOutput)
}
+// When `required` , users can only register and sign in users with passkeys that are capable of [user verification](https://docs.aws.amazon.com/https://www.w3.org/TR/webauthn-2/#enum-userVerificationRequirement) . When `preferred` , your user pool doesn't require the use of authenticators with user verification but encourages it.
func (o UserPoolOutput) WebAuthnUserVerification() pulumi.StringPtrOutput {
return o.ApplyT(func(v *UserPool) pulumi.StringPtrOutput { return v.WebAuthnUserVerification }).(pulumi.StringPtrOutput)
}
diff --git a/sdk/go/aws/cognito/userPoolClient.go b/sdk/go/aws/cognito/userPoolClient.go
index d6d088c08e..39ca4f34ee 100644
--- a/sdk/go/aws/cognito/userPoolClient.go
+++ b/sdk/go/aws/cognito/userPoolClient.go
@@ -43,11 +43,11 @@ type UserPoolClient struct {
//
// To use OAuth 2.0 features, configure one of these features in the Amazon Cognito console or set `AllowedOAuthFlowsUserPoolClient` to `true` in a `CreateUserPoolClient` or `UpdateUserPoolClient` API request. If you don't set a value for `AllowedOAuthFlowsUserPoolClient` in a request with the AWS CLI or SDKs, it defaults to `false` .
AllowedOAuthFlowsUserPoolClient pulumi.BoolPtrOutput `pulumi:"allowedOAuthFlowsUserPoolClient"`
- // The allowed OAuth scopes. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
+ // The OAuth 2.0 scopes that you want to permit your app client to authorize. Scopes govern access control to user pool self-service API operations, user data from the `userInfo` endpoint, and third-party APIs. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
AllowedOAuthScopes pulumi.StringArrayOutput `pulumi:"allowedOAuthScopes"`
// The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.
//
- // > In AWS Regions where Amazon Pinpoint isn't available, user pools only support sending events to Amazon Pinpoint projects in AWS Region us-east-1. In Regions where Amazon Pinpoint is available, user pools support sending events to Amazon Pinpoint projects within that same Region.
+ // In AWS Regions where Amazon Pinpoint isn't available, user pools might not have access to analytics or might be configurable with campaigns in the US East (N. Virginia) Region. For more information, see [Using Amazon Pinpoint analytics](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-pinpoint-integration.html) .
AnalyticsConfiguration UserPoolClientAnalyticsConfigurationPtrOutput `pulumi:"analyticsConfiguration"`
// Amazon Cognito creates a session token for each API request in an authentication flow. `AuthSessionValidity` is the duration, in minutes, of that session token. Your user pool native user must respond to each authentication challenge before the session expires.
AuthSessionValidity pulumi.IntPtrOutput `pulumi:"authSessionValidity"`
@@ -56,7 +56,7 @@ type UserPoolClient struct {
// A redirect URI must:
//
// - Be an absolute URI.
- // - Be registered with the authorization server.
+ // - Be registered with the authorization server. Amazon Cognito doesn't accept authorization requests with `redirect_uri` values that aren't in the list of `CallbackURLs` that you provide in this parameter.
// - Not include a fragment component.
//
// See [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .
@@ -67,22 +67,10 @@ type UserPoolClient struct {
CallbackUrls pulumi.StringArrayOutput `pulumi:"callbackUrls"`
// The ID of the app client, for example `1example23456789` .
ClientId pulumi.StringOutput `pulumi:"clientId"`
- // The client name for the user pool client you would like to create.
+ // A friendly name for the app client that you want to create.
ClientName pulumi.StringPtrOutput `pulumi:"clientName"`
ClientSecret pulumi.StringOutput `pulumi:"clientSecret"`
// The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list.
- //
- // A redirect URI must:
- //
- // - Be an absolute URI.
- // - Be registered with the authorization server.
- // - Not include a fragment component.
- //
- // For more information, see [Default redirect URI](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#cognito-user-pools-app-idp-settings-about) .
- //
- // Amazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.
- //
- // App callback URLs such as myapp://example are also supported.
DefaultRedirectUri pulumi.StringPtrOutput `pulumi:"defaultRedirectUri"`
// Activates the propagation of additional user context data. For more information about propagation of user context data, see [Adding advanced security to a user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pool-settings-threat-protection.html) . If you don’t include this parameter, you can't send device fingerprint information, including source IP address, to Amazon Cognito advanced security. You can only activate `EnablePropagateAdditionalUserContextData` in an app client that has a client secret.
EnablePropagateAdditionalUserContextData pulumi.BoolPtrOutput `pulumi:"enablePropagateAdditionalUserContextData"`
@@ -106,7 +94,7 @@ type UserPoolClient struct {
// In some environments, you will see the values `ADMIN_NO_SRP_AUTH` , `CUSTOM_AUTH_FLOW_ONLY` , or `USER_PASSWORD_AUTH` . You can't assign these legacy `ExplicitAuthFlows` values to user pool clients at the same time as values that begin with `ALLOW_` ,
// like `ALLOW_USER_SRP_AUTH` .
ExplicitAuthFlows pulumi.StringArrayOutput `pulumi:"explicitAuthFlows"`
- // Boolean to specify whether you want to generate a secret for the user pool client being created.
+ // When `true` , generates a client secret for the app client. Client secrets are used with server-side and machine-to-machine applications. For more information, see [App client types](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#user-pool-settings-client-app-client-types) .
GenerateSecret pulumi.BoolPtrOutput `pulumi:"generateSecret"`
// The ID token time limit. After this limit expires, your user can't use their ID token. To specify the time unit for `IdTokenValidity` as `seconds` , `minutes` , `hours` , or `days` , set a `TokenValidityUnits` value in your API request.
//
@@ -117,7 +105,7 @@ type UserPoolClient struct {
// If you don't specify otherwise in the configuration of your app client, your ID
// tokens are valid for one hour.
IdTokenValidity pulumi.IntPtrOutput `pulumi:"idTokenValidity"`
- // A list of allowed logout URLs for the IdPs.
+ // A list of allowed logout URLs for managed login authentication. For more information, see [Logout endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/logout-endpoint.html) .
LogoutUrls pulumi.StringArrayOutput `pulumi:"logoutUrls"`
Name pulumi.StringOutput `pulumi:"name"`
// Errors and responses that you want Amazon Cognito APIs to return during authentication, account confirmation, and password recovery when the user doesn't exist in the user pool. When set to `ENABLED` and the user doesn't exist, authentication returns an error indicating either the username or password was incorrect. Account confirmation and password recovery return a response indicating a code was sent to a simulated destination. When set to `LEGACY` , those APIs return a `UserNotFoundException` exception if the user doesn't exist in the user pool.
@@ -145,11 +133,11 @@ type UserPoolClient struct {
RefreshTokenValidity pulumi.IntPtrOutput `pulumi:"refreshTokenValidity"`
// A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .
//
- // This setting applies to providers that you can access with the [hosted UI and OAuth 2.0 authorization server](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-app-integration.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
+ // This setting applies to providers that you can access with [managed login](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managed-login.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
SupportedIdentityProviders pulumi.StringArrayOutput `pulumi:"supportedIdentityProviders"`
- // The units in which the validity times are represented. The default unit for RefreshToken is days, and default for ID and access tokens are hours.
+ // The units that validity times are represented in. The default unit for refresh tokens is days, and the default for ID and access tokens are hours.
TokenValidityUnits UserPoolClientTokenValidityUnitsPtrOutput `pulumi:"tokenValidityUnits"`
- // The user pool ID for the user pool where you want to create a user pool client.
+ // The ID of the user pool where you want to create an app client.
UserPoolId pulumi.StringOutput `pulumi:"userPoolId"`
// The list of user attributes that you want your app client to have write access to. After your user authenticates in your app, their access token authorizes them to set or modify their own attribute value for any attribute in this list. An example of this kind of activity is when you present your user with a form to update their profile information and they change their last name. Your app then makes an [UpdateUserAttributes](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserAttributes.html) API request and sets `family_name` to the new value.
//
@@ -234,11 +222,11 @@ type userPoolClientArgs struct {
//
// To use OAuth 2.0 features, configure one of these features in the Amazon Cognito console or set `AllowedOAuthFlowsUserPoolClient` to `true` in a `CreateUserPoolClient` or `UpdateUserPoolClient` API request. If you don't set a value for `AllowedOAuthFlowsUserPoolClient` in a request with the AWS CLI or SDKs, it defaults to `false` .
AllowedOAuthFlowsUserPoolClient *bool `pulumi:"allowedOAuthFlowsUserPoolClient"`
- // The allowed OAuth scopes. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
+ // The OAuth 2.0 scopes that you want to permit your app client to authorize. Scopes govern access control to user pool self-service API operations, user data from the `userInfo` endpoint, and third-party APIs. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
AllowedOAuthScopes []string `pulumi:"allowedOAuthScopes"`
// The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.
//
- // > In AWS Regions where Amazon Pinpoint isn't available, user pools only support sending events to Amazon Pinpoint projects in AWS Region us-east-1. In Regions where Amazon Pinpoint is available, user pools support sending events to Amazon Pinpoint projects within that same Region.
+ // In AWS Regions where Amazon Pinpoint isn't available, user pools might not have access to analytics or might be configurable with campaigns in the US East (N. Virginia) Region. For more information, see [Using Amazon Pinpoint analytics](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-pinpoint-integration.html) .
AnalyticsConfiguration *UserPoolClientAnalyticsConfiguration `pulumi:"analyticsConfiguration"`
// Amazon Cognito creates a session token for each API request in an authentication flow. `AuthSessionValidity` is the duration, in minutes, of that session token. Your user pool native user must respond to each authentication challenge before the session expires.
AuthSessionValidity *int `pulumi:"authSessionValidity"`
@@ -247,7 +235,7 @@ type userPoolClientArgs struct {
// A redirect URI must:
//
// - Be an absolute URI.
- // - Be registered with the authorization server.
+ // - Be registered with the authorization server. Amazon Cognito doesn't accept authorization requests with `redirect_uri` values that aren't in the list of `CallbackURLs` that you provide in this parameter.
// - Not include a fragment component.
//
// See [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .
@@ -256,21 +244,9 @@ type userPoolClientArgs struct {
//
// App callback URLs such as myapp://example are also supported.
CallbackUrls []string `pulumi:"callbackUrls"`
- // The client name for the user pool client you would like to create.
+ // A friendly name for the app client that you want to create.
ClientName *string `pulumi:"clientName"`
// The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list.
- //
- // A redirect URI must:
- //
- // - Be an absolute URI.
- // - Be registered with the authorization server.
- // - Not include a fragment component.
- //
- // For more information, see [Default redirect URI](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#cognito-user-pools-app-idp-settings-about) .
- //
- // Amazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.
- //
- // App callback URLs such as myapp://example are also supported.
DefaultRedirectUri *string `pulumi:"defaultRedirectUri"`
// Activates the propagation of additional user context data. For more information about propagation of user context data, see [Adding advanced security to a user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pool-settings-threat-protection.html) . If you don’t include this parameter, you can't send device fingerprint information, including source IP address, to Amazon Cognito advanced security. You can only activate `EnablePropagateAdditionalUserContextData` in an app client that has a client secret.
EnablePropagateAdditionalUserContextData *bool `pulumi:"enablePropagateAdditionalUserContextData"`
@@ -294,7 +270,7 @@ type userPoolClientArgs struct {
// In some environments, you will see the values `ADMIN_NO_SRP_AUTH` , `CUSTOM_AUTH_FLOW_ONLY` , or `USER_PASSWORD_AUTH` . You can't assign these legacy `ExplicitAuthFlows` values to user pool clients at the same time as values that begin with `ALLOW_` ,
// like `ALLOW_USER_SRP_AUTH` .
ExplicitAuthFlows []string `pulumi:"explicitAuthFlows"`
- // Boolean to specify whether you want to generate a secret for the user pool client being created.
+ // When `true` , generates a client secret for the app client. Client secrets are used with server-side and machine-to-machine applications. For more information, see [App client types](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#user-pool-settings-client-app-client-types) .
GenerateSecret *bool `pulumi:"generateSecret"`
// The ID token time limit. After this limit expires, your user can't use their ID token. To specify the time unit for `IdTokenValidity` as `seconds` , `minutes` , `hours` , or `days` , set a `TokenValidityUnits` value in your API request.
//
@@ -305,7 +281,7 @@ type userPoolClientArgs struct {
// If you don't specify otherwise in the configuration of your app client, your ID
// tokens are valid for one hour.
IdTokenValidity *int `pulumi:"idTokenValidity"`
- // A list of allowed logout URLs for the IdPs.
+ // A list of allowed logout URLs for managed login authentication. For more information, see [Logout endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/logout-endpoint.html) .
LogoutUrls []string `pulumi:"logoutUrls"`
// Errors and responses that you want Amazon Cognito APIs to return during authentication, account confirmation, and password recovery when the user doesn't exist in the user pool. When set to `ENABLED` and the user doesn't exist, authentication returns an error indicating either the username or password was incorrect. Account confirmation and password recovery return a response indicating a code was sent to a simulated destination. When set to `LEGACY` , those APIs return a `UserNotFoundException` exception if the user doesn't exist in the user pool.
//
@@ -332,11 +308,11 @@ type userPoolClientArgs struct {
RefreshTokenValidity *int `pulumi:"refreshTokenValidity"`
// A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .
//
- // This setting applies to providers that you can access with the [hosted UI and OAuth 2.0 authorization server](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-app-integration.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
+ // This setting applies to providers that you can access with [managed login](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managed-login.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
SupportedIdentityProviders []string `pulumi:"supportedIdentityProviders"`
- // The units in which the validity times are represented. The default unit for RefreshToken is days, and default for ID and access tokens are hours.
+ // The units that validity times are represented in. The default unit for refresh tokens is days, and the default for ID and access tokens are hours.
TokenValidityUnits *UserPoolClientTokenValidityUnits `pulumi:"tokenValidityUnits"`
- // The user pool ID for the user pool where you want to create a user pool client.
+ // The ID of the user pool where you want to create an app client.
UserPoolId string `pulumi:"userPoolId"`
// The list of user attributes that you want your app client to have write access to. After your user authenticates in your app, their access token authorizes them to set or modify their own attribute value for any attribute in this list. An example of this kind of activity is when you present your user with a form to update their profile information and they change their last name. Your app then makes an [UpdateUserAttributes](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserAttributes.html) API request and sets `family_name` to the new value.
//
@@ -375,11 +351,11 @@ type UserPoolClientArgs struct {
//
// To use OAuth 2.0 features, configure one of these features in the Amazon Cognito console or set `AllowedOAuthFlowsUserPoolClient` to `true` in a `CreateUserPoolClient` or `UpdateUserPoolClient` API request. If you don't set a value for `AllowedOAuthFlowsUserPoolClient` in a request with the AWS CLI or SDKs, it defaults to `false` .
AllowedOAuthFlowsUserPoolClient pulumi.BoolPtrInput
- // The allowed OAuth scopes. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
+ // The OAuth 2.0 scopes that you want to permit your app client to authorize. Scopes govern access control to user pool self-service API operations, user data from the `userInfo` endpoint, and third-party APIs. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
AllowedOAuthScopes pulumi.StringArrayInput
// The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.
//
- // > In AWS Regions where Amazon Pinpoint isn't available, user pools only support sending events to Amazon Pinpoint projects in AWS Region us-east-1. In Regions where Amazon Pinpoint is available, user pools support sending events to Amazon Pinpoint projects within that same Region.
+ // In AWS Regions where Amazon Pinpoint isn't available, user pools might not have access to analytics or might be configurable with campaigns in the US East (N. Virginia) Region. For more information, see [Using Amazon Pinpoint analytics](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-pinpoint-integration.html) .
AnalyticsConfiguration UserPoolClientAnalyticsConfigurationPtrInput
// Amazon Cognito creates a session token for each API request in an authentication flow. `AuthSessionValidity` is the duration, in minutes, of that session token. Your user pool native user must respond to each authentication challenge before the session expires.
AuthSessionValidity pulumi.IntPtrInput
@@ -388,7 +364,7 @@ type UserPoolClientArgs struct {
// A redirect URI must:
//
// - Be an absolute URI.
- // - Be registered with the authorization server.
+ // - Be registered with the authorization server. Amazon Cognito doesn't accept authorization requests with `redirect_uri` values that aren't in the list of `CallbackURLs` that you provide in this parameter.
// - Not include a fragment component.
//
// See [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .
@@ -397,21 +373,9 @@ type UserPoolClientArgs struct {
//
// App callback URLs such as myapp://example are also supported.
CallbackUrls pulumi.StringArrayInput
- // The client name for the user pool client you would like to create.
+ // A friendly name for the app client that you want to create.
ClientName pulumi.StringPtrInput
// The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list.
- //
- // A redirect URI must:
- //
- // - Be an absolute URI.
- // - Be registered with the authorization server.
- // - Not include a fragment component.
- //
- // For more information, see [Default redirect URI](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#cognito-user-pools-app-idp-settings-about) .
- //
- // Amazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.
- //
- // App callback URLs such as myapp://example are also supported.
DefaultRedirectUri pulumi.StringPtrInput
// Activates the propagation of additional user context data. For more information about propagation of user context data, see [Adding advanced security to a user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pool-settings-threat-protection.html) . If you don’t include this parameter, you can't send device fingerprint information, including source IP address, to Amazon Cognito advanced security. You can only activate `EnablePropagateAdditionalUserContextData` in an app client that has a client secret.
EnablePropagateAdditionalUserContextData pulumi.BoolPtrInput
@@ -435,7 +399,7 @@ type UserPoolClientArgs struct {
// In some environments, you will see the values `ADMIN_NO_SRP_AUTH` , `CUSTOM_AUTH_FLOW_ONLY` , or `USER_PASSWORD_AUTH` . You can't assign these legacy `ExplicitAuthFlows` values to user pool clients at the same time as values that begin with `ALLOW_` ,
// like `ALLOW_USER_SRP_AUTH` .
ExplicitAuthFlows pulumi.StringArrayInput
- // Boolean to specify whether you want to generate a secret for the user pool client being created.
+ // When `true` , generates a client secret for the app client. Client secrets are used with server-side and machine-to-machine applications. For more information, see [App client types](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#user-pool-settings-client-app-client-types) .
GenerateSecret pulumi.BoolPtrInput
// The ID token time limit. After this limit expires, your user can't use their ID token. To specify the time unit for `IdTokenValidity` as `seconds` , `minutes` , `hours` , or `days` , set a `TokenValidityUnits` value in your API request.
//
@@ -446,7 +410,7 @@ type UserPoolClientArgs struct {
// If you don't specify otherwise in the configuration of your app client, your ID
// tokens are valid for one hour.
IdTokenValidity pulumi.IntPtrInput
- // A list of allowed logout URLs for the IdPs.
+ // A list of allowed logout URLs for managed login authentication. For more information, see [Logout endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/logout-endpoint.html) .
LogoutUrls pulumi.StringArrayInput
// Errors and responses that you want Amazon Cognito APIs to return during authentication, account confirmation, and password recovery when the user doesn't exist in the user pool. When set to `ENABLED` and the user doesn't exist, authentication returns an error indicating either the username or password was incorrect. Account confirmation and password recovery return a response indicating a code was sent to a simulated destination. When set to `LEGACY` , those APIs return a `UserNotFoundException` exception if the user doesn't exist in the user pool.
//
@@ -473,11 +437,11 @@ type UserPoolClientArgs struct {
RefreshTokenValidity pulumi.IntPtrInput
// A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .
//
- // This setting applies to providers that you can access with the [hosted UI and OAuth 2.0 authorization server](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-app-integration.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
+ // This setting applies to providers that you can access with [managed login](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managed-login.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
SupportedIdentityProviders pulumi.StringArrayInput
- // The units in which the validity times are represented. The default unit for RefreshToken is days, and default for ID and access tokens are hours.
+ // The units that validity times are represented in. The default unit for refresh tokens is days, and the default for ID and access tokens are hours.
TokenValidityUnits UserPoolClientTokenValidityUnitsPtrInput
- // The user pool ID for the user pool where you want to create a user pool client.
+ // The ID of the user pool where you want to create an app client.
UserPoolId pulumi.StringInput
// The list of user attributes that you want your app client to have write access to. After your user authenticates in your app, their access token authorizes them to set or modify their own attribute value for any attribute in this list. An example of this kind of activity is when you present your user with a form to update their profile information and they change their last name. Your app then makes an [UpdateUserAttributes](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UpdateUserAttributes.html) API request and sets `family_name` to the new value.
//
@@ -560,14 +524,14 @@ func (o UserPoolClientOutput) AllowedOAuthFlowsUserPoolClient() pulumi.BoolPtrOu
return o.ApplyT(func(v *UserPoolClient) pulumi.BoolPtrOutput { return v.AllowedOAuthFlowsUserPoolClient }).(pulumi.BoolPtrOutput)
}
-// The allowed OAuth scopes. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
+// The OAuth 2.0 scopes that you want to permit your app client to authorize. Scopes govern access control to user pool self-service API operations, user data from the `userInfo` endpoint, and third-party APIs. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
func (o UserPoolClientOutput) AllowedOAuthScopes() pulumi.StringArrayOutput {
return o.ApplyT(func(v *UserPoolClient) pulumi.StringArrayOutput { return v.AllowedOAuthScopes }).(pulumi.StringArrayOutput)
}
// The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.
//
-// > In AWS Regions where Amazon Pinpoint isn't available, user pools only support sending events to Amazon Pinpoint projects in AWS Region us-east-1. In Regions where Amazon Pinpoint is available, user pools support sending events to Amazon Pinpoint projects within that same Region.
+// In AWS Regions where Amazon Pinpoint isn't available, user pools might not have access to analytics or might be configurable with campaigns in the US East (N. Virginia) Region. For more information, see [Using Amazon Pinpoint analytics](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-pinpoint-integration.html) .
func (o UserPoolClientOutput) AnalyticsConfiguration() UserPoolClientAnalyticsConfigurationPtrOutput {
return o.ApplyT(func(v *UserPoolClient) UserPoolClientAnalyticsConfigurationPtrOutput { return v.AnalyticsConfiguration }).(UserPoolClientAnalyticsConfigurationPtrOutput)
}
@@ -582,7 +546,7 @@ func (o UserPoolClientOutput) AuthSessionValidity() pulumi.IntPtrOutput {
// A redirect URI must:
//
// - Be an absolute URI.
-// - Be registered with the authorization server.
+// - Be registered with the authorization server. Amazon Cognito doesn't accept authorization requests with `redirect_uri` values that aren't in the list of `CallbackURLs` that you provide in this parameter.
// - Not include a fragment component.
//
// See [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .
@@ -599,7 +563,7 @@ func (o UserPoolClientOutput) ClientId() pulumi.StringOutput {
return o.ApplyT(func(v *UserPoolClient) pulumi.StringOutput { return v.ClientId }).(pulumi.StringOutput)
}
-// The client name for the user pool client you would like to create.
+// A friendly name for the app client that you want to create.
func (o UserPoolClientOutput) ClientName() pulumi.StringPtrOutput {
return o.ApplyT(func(v *UserPoolClient) pulumi.StringPtrOutput { return v.ClientName }).(pulumi.StringPtrOutput)
}
@@ -609,18 +573,6 @@ func (o UserPoolClientOutput) ClientSecret() pulumi.StringOutput {
}
// The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list.
-//
-// A redirect URI must:
-//
-// - Be an absolute URI.
-// - Be registered with the authorization server.
-// - Not include a fragment component.
-//
-// For more information, see [Default redirect URI](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#cognito-user-pools-app-idp-settings-about) .
-//
-// Amazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.
-//
-// App callback URLs such as myapp://example are also supported.
func (o UserPoolClientOutput) DefaultRedirectUri() pulumi.StringPtrOutput {
return o.ApplyT(func(v *UserPoolClient) pulumi.StringPtrOutput { return v.DefaultRedirectUri }).(pulumi.StringPtrOutput)
}
@@ -656,7 +608,7 @@ func (o UserPoolClientOutput) ExplicitAuthFlows() pulumi.StringArrayOutput {
return o.ApplyT(func(v *UserPoolClient) pulumi.StringArrayOutput { return v.ExplicitAuthFlows }).(pulumi.StringArrayOutput)
}
-// Boolean to specify whether you want to generate a secret for the user pool client being created.
+// When `true` , generates a client secret for the app client. Client secrets are used with server-side and machine-to-machine applications. For more information, see [App client types](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#user-pool-settings-client-app-client-types) .
func (o UserPoolClientOutput) GenerateSecret() pulumi.BoolPtrOutput {
return o.ApplyT(func(v *UserPoolClient) pulumi.BoolPtrOutput { return v.GenerateSecret }).(pulumi.BoolPtrOutput)
}
@@ -673,7 +625,7 @@ func (o UserPoolClientOutput) IdTokenValidity() pulumi.IntPtrOutput {
return o.ApplyT(func(v *UserPoolClient) pulumi.IntPtrOutput { return v.IdTokenValidity }).(pulumi.IntPtrOutput)
}
-// A list of allowed logout URLs for the IdPs.
+// A list of allowed logout URLs for managed login authentication. For more information, see [Logout endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/logout-endpoint.html) .
func (o UserPoolClientOutput) LogoutUrls() pulumi.StringArrayOutput {
return o.ApplyT(func(v *UserPoolClient) pulumi.StringArrayOutput { return v.LogoutUrls }).(pulumi.StringArrayOutput)
}
@@ -716,17 +668,17 @@ func (o UserPoolClientOutput) RefreshTokenValidity() pulumi.IntPtrOutput {
// A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .
//
-// This setting applies to providers that you can access with the [hosted UI and OAuth 2.0 authorization server](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-app-integration.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
+// This setting applies to providers that you can access with [managed login](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managed-login.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
func (o UserPoolClientOutput) SupportedIdentityProviders() pulumi.StringArrayOutput {
return o.ApplyT(func(v *UserPoolClient) pulumi.StringArrayOutput { return v.SupportedIdentityProviders }).(pulumi.StringArrayOutput)
}
-// The units in which the validity times are represented. The default unit for RefreshToken is days, and default for ID and access tokens are hours.
+// The units that validity times are represented in. The default unit for refresh tokens is days, and the default for ID and access tokens are hours.
func (o UserPoolClientOutput) TokenValidityUnits() UserPoolClientTokenValidityUnitsPtrOutput {
return o.ApplyT(func(v *UserPoolClient) UserPoolClientTokenValidityUnitsPtrOutput { return v.TokenValidityUnits }).(UserPoolClientTokenValidityUnitsPtrOutput)
}
-// The user pool ID for the user pool where you want to create a user pool client.
+// The ID of the user pool where you want to create an app client.
func (o UserPoolClientOutput) UserPoolId() pulumi.StringOutput {
return o.ApplyT(func(v *UserPoolClient) pulumi.StringOutput { return v.UserPoolId }).(pulumi.StringOutput)
}
diff --git a/sdk/go/aws/cognito/userPoolGroup.go b/sdk/go/aws/cognito/userPoolGroup.go
index 5553f04747..3a92762133 100644
--- a/sdk/go/aws/cognito/userPoolGroup.go
+++ b/sdk/go/aws/cognito/userPoolGroup.go
@@ -16,9 +16,9 @@ import (
type UserPoolGroup struct {
pulumi.CustomResourceState
- // A string containing the description of the group.
+ // A description of the group that you're creating.
Description pulumi.StringPtrOutput `pulumi:"description"`
- // The name of the group. Must be unique.
+ // A name for the group. This name must be unique in your user pool.
GroupName pulumi.StringPtrOutput `pulumi:"groupName"`
// A non-negative integer value that specifies the precedence of this group relative to the other groups that a user can belong to in the user pool. Zero is the highest precedence value. Groups with lower `Precedence` values take precedence over groups with higher or null `Precedence` values. If a user belongs to two or more groups, it is the group with the lowest precedence value whose role ARN is given in the user's tokens for the `cognito:roles` and `cognito:preferred_role` claims.
//
@@ -26,9 +26,9 @@ type UserPoolGroup struct {
//
// The default `Precedence` value is null. The maximum `Precedence` value is `2^31-1` .
Precedence pulumi.IntPtrOutput `pulumi:"precedence"`
- // The role Amazon Resource Name (ARN) for the group.
+ // The Amazon Resource Name (ARN) for the IAM role that you want to associate with the group. A group role primarily declares a preferred role for the credentials that you get from an identity pool. Amazon Cognito ID tokens have a `cognito:preferred_role` claim that presents the highest-precedence group that a user belongs to. Both ID and access tokens also contain a `cognito:groups` claim that list all the groups that a user is a member of.
RoleArn pulumi.StringPtrOutput `pulumi:"roleArn"`
- // The user pool ID for the user pool.
+ // The ID of the user pool where you want to create a user group.
UserPoolId pulumi.StringOutput `pulumi:"userPoolId"`
}
@@ -80,9 +80,9 @@ func (UserPoolGroupState) ElementType() reflect.Type {
}
type userPoolGroupArgs struct {
- // A string containing the description of the group.
+ // A description of the group that you're creating.
Description *string `pulumi:"description"`
- // The name of the group. Must be unique.
+ // A name for the group. This name must be unique in your user pool.
GroupName *string `pulumi:"groupName"`
// A non-negative integer value that specifies the precedence of this group relative to the other groups that a user can belong to in the user pool. Zero is the highest precedence value. Groups with lower `Precedence` values take precedence over groups with higher or null `Precedence` values. If a user belongs to two or more groups, it is the group with the lowest precedence value whose role ARN is given in the user's tokens for the `cognito:roles` and `cognito:preferred_role` claims.
//
@@ -90,17 +90,17 @@ type userPoolGroupArgs struct {
//
// The default `Precedence` value is null. The maximum `Precedence` value is `2^31-1` .
Precedence *int `pulumi:"precedence"`
- // The role Amazon Resource Name (ARN) for the group.
+ // The Amazon Resource Name (ARN) for the IAM role that you want to associate with the group. A group role primarily declares a preferred role for the credentials that you get from an identity pool. Amazon Cognito ID tokens have a `cognito:preferred_role` claim that presents the highest-precedence group that a user belongs to. Both ID and access tokens also contain a `cognito:groups` claim that list all the groups that a user is a member of.
RoleArn *string `pulumi:"roleArn"`
- // The user pool ID for the user pool.
+ // The ID of the user pool where you want to create a user group.
UserPoolId string `pulumi:"userPoolId"`
}
// The set of arguments for constructing a UserPoolGroup resource.
type UserPoolGroupArgs struct {
- // A string containing the description of the group.
+ // A description of the group that you're creating.
Description pulumi.StringPtrInput
- // The name of the group. Must be unique.
+ // A name for the group. This name must be unique in your user pool.
GroupName pulumi.StringPtrInput
// A non-negative integer value that specifies the precedence of this group relative to the other groups that a user can belong to in the user pool. Zero is the highest precedence value. Groups with lower `Precedence` values take precedence over groups with higher or null `Precedence` values. If a user belongs to two or more groups, it is the group with the lowest precedence value whose role ARN is given in the user's tokens for the `cognito:roles` and `cognito:preferred_role` claims.
//
@@ -108,9 +108,9 @@ type UserPoolGroupArgs struct {
//
// The default `Precedence` value is null. The maximum `Precedence` value is `2^31-1` .
Precedence pulumi.IntPtrInput
- // The role Amazon Resource Name (ARN) for the group.
+ // The Amazon Resource Name (ARN) for the IAM role that you want to associate with the group. A group role primarily declares a preferred role for the credentials that you get from an identity pool. Amazon Cognito ID tokens have a `cognito:preferred_role` claim that presents the highest-precedence group that a user belongs to. Both ID and access tokens also contain a `cognito:groups` claim that list all the groups that a user is a member of.
RoleArn pulumi.StringPtrInput
- // The user pool ID for the user pool.
+ // The ID of the user pool where you want to create a user group.
UserPoolId pulumi.StringInput
}
@@ -151,12 +151,12 @@ func (o UserPoolGroupOutput) ToUserPoolGroupOutputWithContext(ctx context.Contex
return o
}
-// A string containing the description of the group.
+// A description of the group that you're creating.
func (o UserPoolGroupOutput) Description() pulumi.StringPtrOutput {
return o.ApplyT(func(v *UserPoolGroup) pulumi.StringPtrOutput { return v.Description }).(pulumi.StringPtrOutput)
}
-// The name of the group. Must be unique.
+// A name for the group. This name must be unique in your user pool.
func (o UserPoolGroupOutput) GroupName() pulumi.StringPtrOutput {
return o.ApplyT(func(v *UserPoolGroup) pulumi.StringPtrOutput { return v.GroupName }).(pulumi.StringPtrOutput)
}
@@ -170,12 +170,12 @@ func (o UserPoolGroupOutput) Precedence() pulumi.IntPtrOutput {
return o.ApplyT(func(v *UserPoolGroup) pulumi.IntPtrOutput { return v.Precedence }).(pulumi.IntPtrOutput)
}
-// The role Amazon Resource Name (ARN) for the group.
+// The Amazon Resource Name (ARN) for the IAM role that you want to associate with the group. A group role primarily declares a preferred role for the credentials that you get from an identity pool. Amazon Cognito ID tokens have a `cognito:preferred_role` claim that presents the highest-precedence group that a user belongs to. Both ID and access tokens also contain a `cognito:groups` claim that list all the groups that a user is a member of.
func (o UserPoolGroupOutput) RoleArn() pulumi.StringPtrOutput {
return o.ApplyT(func(v *UserPoolGroup) pulumi.StringPtrOutput { return v.RoleArn }).(pulumi.StringPtrOutput)
}
-// The user pool ID for the user pool.
+// The ID of the user pool where you want to create a user group.
func (o UserPoolGroupOutput) UserPoolId() pulumi.StringOutput {
return o.ApplyT(func(v *UserPoolGroup) pulumi.StringOutput { return v.UserPoolId }).(pulumi.StringOutput)
}
diff --git a/sdk/go/aws/cognito/userPoolIdentityProvider.go b/sdk/go/aws/cognito/userPoolIdentityProvider.go
index 616d22f13f..6900d6c6f0 100644
--- a/sdk/go/aws/cognito/userPoolIdentityProvider.go
+++ b/sdk/go/aws/cognito/userPoolIdentityProvider.go
@@ -16,9 +16,9 @@ import (
type UserPoolIdentityProvider struct {
pulumi.CustomResourceState
- // A mapping of IdP attributes to standard and custom user pool attributes.
+ // A mapping of IdP attributes to standard and custom user pool attributes. Specify a user pool attribute as the key of the key-value pair, and the IdP attribute claim name as the value.
AttributeMapping pulumi.StringMapOutput `pulumi:"attributeMapping"`
- // A list of IdP identifiers.
+ // An array of IdP identifiers, for example `"IdPIdentifiers": [ "MyIdP", "MyIdP2" ]` . Identifiers are friendly names that you can pass in the `idp_identifier` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP. Identifiers in a domain format also enable the use of [email-address matching with SAML providers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managing-saml-idp-naming.html) .
IdpIdentifiers pulumi.StringArrayOutput `pulumi:"idpIdentifiers"`
// The scopes, URLs, and identifiers for your external identity provider. The following
// examples describe the provider detail keys for each IdP type. These values and their
@@ -50,11 +50,11 @@ type UserPoolIdentityProvider struct {
//
// Describe response: `"ProviderDetails": { "api_version": "v17.0", "attributes_url": "https://graph.facebook.com/v17.0/me?fields=", "attributes_url_add_attributes": "true", "authorize_scopes": "public_profile, email", "authorize_url": "https://www.facebook.com/v17.0/dialog/oauth", "client_id": "1example23456789", "client_secret": "provider-app-client-secret", "token_request_method": "GET", "token_url": "https://graph.facebook.com/v17.0/oauth/access_token" }`
ProviderDetails pulumi.StringMapOutput `pulumi:"providerDetails"`
- // The IdP name.
+ // The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP.
ProviderName pulumi.StringOutput `pulumi:"providerName"`
- // The IdP type.
+ // The type of IdP that you want to add. Amazon Cognito supports OIDC, SAML 2.0, Login With Amazon, Sign In With Apple, Google, and Facebook IdPs.
ProviderType pulumi.StringOutput `pulumi:"providerType"`
- // The user pool ID.
+ // The Id of the user pool where you want to create an IdP.
UserPoolId pulumi.StringOutput `pulumi:"userPoolId"`
}
@@ -113,9 +113,9 @@ func (UserPoolIdentityProviderState) ElementType() reflect.Type {
}
type userPoolIdentityProviderArgs struct {
- // A mapping of IdP attributes to standard and custom user pool attributes.
+ // A mapping of IdP attributes to standard and custom user pool attributes. Specify a user pool attribute as the key of the key-value pair, and the IdP attribute claim name as the value.
AttributeMapping map[string]string `pulumi:"attributeMapping"`
- // A list of IdP identifiers.
+ // An array of IdP identifiers, for example `"IdPIdentifiers": [ "MyIdP", "MyIdP2" ]` . Identifiers are friendly names that you can pass in the `idp_identifier` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP. Identifiers in a domain format also enable the use of [email-address matching with SAML providers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managing-saml-idp-naming.html) .
IdpIdentifiers []string `pulumi:"idpIdentifiers"`
// The scopes, URLs, and identifiers for your external identity provider. The following
// examples describe the provider detail keys for each IdP type. These values and their
@@ -147,19 +147,19 @@ type userPoolIdentityProviderArgs struct {
//
// Describe response: `"ProviderDetails": { "api_version": "v17.0", "attributes_url": "https://graph.facebook.com/v17.0/me?fields=", "attributes_url_add_attributes": "true", "authorize_scopes": "public_profile, email", "authorize_url": "https://www.facebook.com/v17.0/dialog/oauth", "client_id": "1example23456789", "client_secret": "provider-app-client-secret", "token_request_method": "GET", "token_url": "https://graph.facebook.com/v17.0/oauth/access_token" }`
ProviderDetails map[string]string `pulumi:"providerDetails"`
- // The IdP name.
+ // The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP.
ProviderName *string `pulumi:"providerName"`
- // The IdP type.
+ // The type of IdP that you want to add. Amazon Cognito supports OIDC, SAML 2.0, Login With Amazon, Sign In With Apple, Google, and Facebook IdPs.
ProviderType string `pulumi:"providerType"`
- // The user pool ID.
+ // The Id of the user pool where you want to create an IdP.
UserPoolId string `pulumi:"userPoolId"`
}
// The set of arguments for constructing a UserPoolIdentityProvider resource.
type UserPoolIdentityProviderArgs struct {
- // A mapping of IdP attributes to standard and custom user pool attributes.
+ // A mapping of IdP attributes to standard and custom user pool attributes. Specify a user pool attribute as the key of the key-value pair, and the IdP attribute claim name as the value.
AttributeMapping pulumi.StringMapInput
- // A list of IdP identifiers.
+ // An array of IdP identifiers, for example `"IdPIdentifiers": [ "MyIdP", "MyIdP2" ]` . Identifiers are friendly names that you can pass in the `idp_identifier` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP. Identifiers in a domain format also enable the use of [email-address matching with SAML providers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managing-saml-idp-naming.html) .
IdpIdentifiers pulumi.StringArrayInput
// The scopes, URLs, and identifiers for your external identity provider. The following
// examples describe the provider detail keys for each IdP type. These values and their
@@ -191,11 +191,11 @@ type UserPoolIdentityProviderArgs struct {
//
// Describe response: `"ProviderDetails": { "api_version": "v17.0", "attributes_url": "https://graph.facebook.com/v17.0/me?fields=", "attributes_url_add_attributes": "true", "authorize_scopes": "public_profile, email", "authorize_url": "https://www.facebook.com/v17.0/dialog/oauth", "client_id": "1example23456789", "client_secret": "provider-app-client-secret", "token_request_method": "GET", "token_url": "https://graph.facebook.com/v17.0/oauth/access_token" }`
ProviderDetails pulumi.StringMapInput
- // The IdP name.
+ // The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP.
ProviderName pulumi.StringPtrInput
- // The IdP type.
+ // The type of IdP that you want to add. Amazon Cognito supports OIDC, SAML 2.0, Login With Amazon, Sign In With Apple, Google, and Facebook IdPs.
ProviderType pulumi.StringInput
- // The user pool ID.
+ // The Id of the user pool where you want to create an IdP.
UserPoolId pulumi.StringInput
}
@@ -236,12 +236,12 @@ func (o UserPoolIdentityProviderOutput) ToUserPoolIdentityProviderOutputWithCont
return o
}
-// A mapping of IdP attributes to standard and custom user pool attributes.
+// A mapping of IdP attributes to standard and custom user pool attributes. Specify a user pool attribute as the key of the key-value pair, and the IdP attribute claim name as the value.
func (o UserPoolIdentityProviderOutput) AttributeMapping() pulumi.StringMapOutput {
return o.ApplyT(func(v *UserPoolIdentityProvider) pulumi.StringMapOutput { return v.AttributeMapping }).(pulumi.StringMapOutput)
}
-// A list of IdP identifiers.
+// An array of IdP identifiers, for example `"IdPIdentifiers": [ "MyIdP", "MyIdP2" ]` . Identifiers are friendly names that you can pass in the `idp_identifier` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP. Identifiers in a domain format also enable the use of [email-address matching with SAML providers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managing-saml-idp-naming.html) .
func (o UserPoolIdentityProviderOutput) IdpIdentifiers() pulumi.StringArrayOutput {
return o.ApplyT(func(v *UserPoolIdentityProvider) pulumi.StringArrayOutput { return v.IdpIdentifiers }).(pulumi.StringArrayOutput)
}
@@ -279,17 +279,17 @@ func (o UserPoolIdentityProviderOutput) ProviderDetails() pulumi.StringMapOutput
return o.ApplyT(func(v *UserPoolIdentityProvider) pulumi.StringMapOutput { return v.ProviderDetails }).(pulumi.StringMapOutput)
}
-// The IdP name.
+// The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP.
func (o UserPoolIdentityProviderOutput) ProviderName() pulumi.StringOutput {
return o.ApplyT(func(v *UserPoolIdentityProvider) pulumi.StringOutput { return v.ProviderName }).(pulumi.StringOutput)
}
-// The IdP type.
+// The type of IdP that you want to add. Amazon Cognito supports OIDC, SAML 2.0, Login With Amazon, Sign In With Apple, Google, and Facebook IdPs.
func (o UserPoolIdentityProviderOutput) ProviderType() pulumi.StringOutput {
return o.ApplyT(func(v *UserPoolIdentityProvider) pulumi.StringOutput { return v.ProviderType }).(pulumi.StringOutput)
}
-// The user pool ID.
+// The Id of the user pool where you want to create an IdP.
func (o UserPoolIdentityProviderOutput) UserPoolId() pulumi.StringOutput {
return o.ApplyT(func(v *UserPoolIdentityProvider) pulumi.StringOutput { return v.UserPoolId }).(pulumi.StringOutput)
}
diff --git a/sdk/go/aws/cognito/userPoolResourceServer.go b/sdk/go/aws/cognito/userPoolResourceServer.go
index 657b899f81..4452d56ed8 100644
--- a/sdk/go/aws/cognito/userPoolResourceServer.go
+++ b/sdk/go/aws/cognito/userPoolResourceServer.go
@@ -24,7 +24,7 @@ type UserPoolResourceServer struct {
Name pulumi.StringOutput `pulumi:"name"`
// A list of scopes. Each scope is a map with keys `ScopeName` and `ScopeDescription` .
Scopes UserPoolResourceServerResourceServerScopeTypeArrayOutput `pulumi:"scopes"`
- // The user pool ID for the user pool.
+ // The ID of the user pool where you want to create a resource server.
UserPoolId pulumi.StringOutput `pulumi:"userPoolId"`
}
@@ -87,7 +87,7 @@ type userPoolResourceServerArgs struct {
Name *string `pulumi:"name"`
// A list of scopes. Each scope is a map with keys `ScopeName` and `ScopeDescription` .
Scopes []UserPoolResourceServerResourceServerScopeType `pulumi:"scopes"`
- // The user pool ID for the user pool.
+ // The ID of the user pool where you want to create a resource server.
UserPoolId string `pulumi:"userPoolId"`
}
@@ -101,7 +101,7 @@ type UserPoolResourceServerArgs struct {
Name pulumi.StringPtrInput
// A list of scopes. Each scope is a map with keys `ScopeName` and `ScopeDescription` .
Scopes UserPoolResourceServerResourceServerScopeTypeArrayInput
- // The user pool ID for the user pool.
+ // The ID of the user pool where you want to create a resource server.
UserPoolId pulumi.StringInput
}
@@ -161,7 +161,7 @@ func (o UserPoolResourceServerOutput) Scopes() UserPoolResourceServerResourceSer
}).(UserPoolResourceServerResourceServerScopeTypeArrayOutput)
}
-// The user pool ID for the user pool.
+// The ID of the user pool where you want to create a resource server.
func (o UserPoolResourceServerOutput) UserPoolId() pulumi.StringOutput {
return o.ApplyT(func(v *UserPoolResourceServer) pulumi.StringOutput { return v.UserPoolId }).(pulumi.StringOutput)
}
diff --git a/sdk/go/aws/cognito/userPoolUiCustomizationAttachment.go b/sdk/go/aws/cognito/userPoolUiCustomizationAttachment.go
index 5ac37084f8..2e4fd1cbca 100644
--- a/sdk/go/aws/cognito/userPoolUiCustomizationAttachment.go
+++ b/sdk/go/aws/cognito/userPoolUiCustomizationAttachment.go
@@ -20,7 +20,7 @@ type UserPoolUiCustomizationAttachment struct {
ClientId pulumi.StringOutput `pulumi:"clientId"`
// The CSS values in the UI customization.
Css pulumi.StringPtrOutput `pulumi:"css"`
- // The user pool ID for the user pool.
+ // The ID of the user pool.
UserPoolId pulumi.StringOutput `pulumi:"userPoolId"`
}
@@ -79,7 +79,7 @@ type userPoolUiCustomizationAttachmentArgs struct {
ClientId string `pulumi:"clientId"`
// The CSS values in the UI customization.
Css *string `pulumi:"css"`
- // The user pool ID for the user pool.
+ // The ID of the user pool.
UserPoolId string `pulumi:"userPoolId"`
}
@@ -89,7 +89,7 @@ type UserPoolUiCustomizationAttachmentArgs struct {
ClientId pulumi.StringInput
// The CSS values in the UI customization.
Css pulumi.StringPtrInput
- // The user pool ID for the user pool.
+ // The ID of the user pool.
UserPoolId pulumi.StringInput
}
@@ -140,7 +140,7 @@ func (o UserPoolUiCustomizationAttachmentOutput) Css() pulumi.StringPtrOutput {
return o.ApplyT(func(v *UserPoolUiCustomizationAttachment) pulumi.StringPtrOutput { return v.Css }).(pulumi.StringPtrOutput)
}
-// The user pool ID for the user pool.
+// The ID of the user pool.
func (o UserPoolUiCustomizationAttachmentOutput) UserPoolId() pulumi.StringOutput {
return o.ApplyT(func(v *UserPoolUiCustomizationAttachment) pulumi.StringOutput { return v.UserPoolId }).(pulumi.StringOutput)
}
diff --git a/sdk/go/aws/cognito/userPoolUser.go b/sdk/go/aws/cognito/userPoolUser.go
index d23efefed6..bea179e395 100644
--- a/sdk/go/aws/cognito/userPoolUser.go
+++ b/sdk/go/aws/cognito/userPoolUser.go
@@ -18,24 +18,24 @@ type UserPoolUser struct {
// A map of custom key-value pairs that you can provide as input for any custom workflows that this action triggers.
//
- // You create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `clientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.
+ // You create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `ClientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.
//
// For more information, see [Customizing user pool Workflows with Lambda Triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html) in the *Amazon Cognito Developer Guide* .
//
- // > When you use the ClientMetadata parameter, remember that Amazon Cognito won't do the following:
- // > - Store the ClientMetadata value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the ClientMetadata parameter serves no purpose.
- // > - Validate the ClientMetadata value.
- // > - Encrypt the ClientMetadata value. Don't use Amazon Cognito to provide sensitive information.
+ // > When you use the `ClientMetadata` parameter, note that Amazon Cognito won't do the following:
+ // > - Store the `ClientMetadata` value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the `ClientMetadata` parameter serves no purpose.
+ // > - Validate the `ClientMetadata` value.
+ // > - Encrypt the `ClientMetadata` value. Don't send sensitive information in this parameter.
ClientMetadata pulumi.StringMapOutput `pulumi:"clientMetadata"`
- // Specify `"EMAIL"` if email will be used to send the welcome message. Specify `"SMS"` if the phone number will be used. The default value is `"SMS"` . You can specify more than one value.
+ // Specify `EMAIL` if email will be used to send the welcome message. Specify `SMS` if the phone number will be used. The default value is `SMS` . You can specify more than one value.
DesiredDeliveryMediums pulumi.StringArrayOutput `pulumi:"desiredDeliveryMediums"`
// This parameter is used only if the `phone_number_verified` or `email_verified` attribute is set to `True` . Otherwise, it is ignored.
//
- // If this parameter is set to `True` and the phone number or email address specified in the UserAttributes parameter already exists as an alias with a different user, the API call will migrate the alias from the previous user to the newly created user. The previous user will no longer be able to log in using that alias.
+ // If this parameter is set to `True` and the phone number or email address specified in the `UserAttributes` parameter already exists as an alias with a different user, this request migrates the alias from the previous user to the newly-created user. The previous user will no longer be able to log in using that alias.
//
// If this parameter is set to `False` , the API throws an `AliasExistsException` error if the alias already exists. The default value is `False` .
ForceAliasCreation pulumi.BoolPtrOutput `pulumi:"forceAliasCreation"`
- // Set to `RESEND` to resend the invitation message to a user that already exists and reset the expiration limit on the user's account. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.
+ // Set to `RESEND` to resend the invitation message to a user that already exists, and to reset the temporary-password duration with a new temporary password. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.
MessageAction pulumi.StringPtrOutput `pulumi:"messageAction"`
// An array of name-value pairs that contain user attributes and attribute values to be set for the user to be created. You can create a user without specifying any attributes other than `Username` . However, any attributes that you specify as required (when creating a user pool or in the *Attributes* tab of the console) either you should supply (in your call to `AdminCreateUser` ) or the user should supply (when they sign up in response to your welcome message).
//
@@ -50,7 +50,7 @@ type UserPoolUser struct {
// - *email* : The email address of the user to whom the message that contains the code and username will be sent. Required if the `email_verified` attribute is set to `True` , or if `"EMAIL"` is specified in the `DesiredDeliveryMediums` parameter.
// - *phone_number* : The phone number of the user to whom the message that contains the code and username will be sent. Required if the `phone_number_verified` attribute is set to `True` , or if `"SMS"` is specified in the `DesiredDeliveryMediums` parameter.
UserAttributes UserPoolUserAttributeTypeArrayOutput `pulumi:"userAttributes"`
- // The user pool ID for the user pool where the user will be created.
+ // The ID of the user pool where you want to create a user.
UserPoolId pulumi.StringOutput `pulumi:"userPoolId"`
// The value that you want to set as the username sign-in attribute. The following conditions apply to the username parameter.
//
@@ -122,24 +122,24 @@ func (UserPoolUserState) ElementType() reflect.Type {
type userPoolUserArgs struct {
// A map of custom key-value pairs that you can provide as input for any custom workflows that this action triggers.
//
- // You create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `clientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.
+ // You create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `ClientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.
//
// For more information, see [Customizing user pool Workflows with Lambda Triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html) in the *Amazon Cognito Developer Guide* .
//
- // > When you use the ClientMetadata parameter, remember that Amazon Cognito won't do the following:
- // > - Store the ClientMetadata value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the ClientMetadata parameter serves no purpose.
- // > - Validate the ClientMetadata value.
- // > - Encrypt the ClientMetadata value. Don't use Amazon Cognito to provide sensitive information.
+ // > When you use the `ClientMetadata` parameter, note that Amazon Cognito won't do the following:
+ // > - Store the `ClientMetadata` value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the `ClientMetadata` parameter serves no purpose.
+ // > - Validate the `ClientMetadata` value.
+ // > - Encrypt the `ClientMetadata` value. Don't send sensitive information in this parameter.
ClientMetadata map[string]string `pulumi:"clientMetadata"`
- // Specify `"EMAIL"` if email will be used to send the welcome message. Specify `"SMS"` if the phone number will be used. The default value is `"SMS"` . You can specify more than one value.
+ // Specify `EMAIL` if email will be used to send the welcome message. Specify `SMS` if the phone number will be used. The default value is `SMS` . You can specify more than one value.
DesiredDeliveryMediums []string `pulumi:"desiredDeliveryMediums"`
// This parameter is used only if the `phone_number_verified` or `email_verified` attribute is set to `True` . Otherwise, it is ignored.
//
- // If this parameter is set to `True` and the phone number or email address specified in the UserAttributes parameter already exists as an alias with a different user, the API call will migrate the alias from the previous user to the newly created user. The previous user will no longer be able to log in using that alias.
+ // If this parameter is set to `True` and the phone number or email address specified in the `UserAttributes` parameter already exists as an alias with a different user, this request migrates the alias from the previous user to the newly-created user. The previous user will no longer be able to log in using that alias.
//
// If this parameter is set to `False` , the API throws an `AliasExistsException` error if the alias already exists. The default value is `False` .
ForceAliasCreation *bool `pulumi:"forceAliasCreation"`
- // Set to `RESEND` to resend the invitation message to a user that already exists and reset the expiration limit on the user's account. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.
+ // Set to `RESEND` to resend the invitation message to a user that already exists, and to reset the temporary-password duration with a new temporary password. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.
MessageAction *string `pulumi:"messageAction"`
// An array of name-value pairs that contain user attributes and attribute values to be set for the user to be created. You can create a user without specifying any attributes other than `Username` . However, any attributes that you specify as required (when creating a user pool or in the *Attributes* tab of the console) either you should supply (in your call to `AdminCreateUser` ) or the user should supply (when they sign up in response to your welcome message).
//
@@ -154,7 +154,7 @@ type userPoolUserArgs struct {
// - *email* : The email address of the user to whom the message that contains the code and username will be sent. Required if the `email_verified` attribute is set to `True` , or if `"EMAIL"` is specified in the `DesiredDeliveryMediums` parameter.
// - *phone_number* : The phone number of the user to whom the message that contains the code and username will be sent. Required if the `phone_number_verified` attribute is set to `True` , or if `"SMS"` is specified in the `DesiredDeliveryMediums` parameter.
UserAttributes []UserPoolUserAttributeType `pulumi:"userAttributes"`
- // The user pool ID for the user pool where the user will be created.
+ // The ID of the user pool where you want to create a user.
UserPoolId string `pulumi:"userPoolId"`
// The value that you want to set as the username sign-in attribute. The following conditions apply to the username parameter.
//
@@ -174,24 +174,24 @@ type userPoolUserArgs struct {
type UserPoolUserArgs struct {
// A map of custom key-value pairs that you can provide as input for any custom workflows that this action triggers.
//
- // You create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `clientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.
+ // You create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `ClientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.
//
// For more information, see [Customizing user pool Workflows with Lambda Triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html) in the *Amazon Cognito Developer Guide* .
//
- // > When you use the ClientMetadata parameter, remember that Amazon Cognito won't do the following:
- // > - Store the ClientMetadata value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the ClientMetadata parameter serves no purpose.
- // > - Validate the ClientMetadata value.
- // > - Encrypt the ClientMetadata value. Don't use Amazon Cognito to provide sensitive information.
+ // > When you use the `ClientMetadata` parameter, note that Amazon Cognito won't do the following:
+ // > - Store the `ClientMetadata` value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the `ClientMetadata` parameter serves no purpose.
+ // > - Validate the `ClientMetadata` value.
+ // > - Encrypt the `ClientMetadata` value. Don't send sensitive information in this parameter.
ClientMetadata pulumi.StringMapInput
- // Specify `"EMAIL"` if email will be used to send the welcome message. Specify `"SMS"` if the phone number will be used. The default value is `"SMS"` . You can specify more than one value.
+ // Specify `EMAIL` if email will be used to send the welcome message. Specify `SMS` if the phone number will be used. The default value is `SMS` . You can specify more than one value.
DesiredDeliveryMediums pulumi.StringArrayInput
// This parameter is used only if the `phone_number_verified` or `email_verified` attribute is set to `True` . Otherwise, it is ignored.
//
- // If this parameter is set to `True` and the phone number or email address specified in the UserAttributes parameter already exists as an alias with a different user, the API call will migrate the alias from the previous user to the newly created user. The previous user will no longer be able to log in using that alias.
+ // If this parameter is set to `True` and the phone number or email address specified in the `UserAttributes` parameter already exists as an alias with a different user, this request migrates the alias from the previous user to the newly-created user. The previous user will no longer be able to log in using that alias.
//
// If this parameter is set to `False` , the API throws an `AliasExistsException` error if the alias already exists. The default value is `False` .
ForceAliasCreation pulumi.BoolPtrInput
- // Set to `RESEND` to resend the invitation message to a user that already exists and reset the expiration limit on the user's account. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.
+ // Set to `RESEND` to resend the invitation message to a user that already exists, and to reset the temporary-password duration with a new temporary password. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.
MessageAction pulumi.StringPtrInput
// An array of name-value pairs that contain user attributes and attribute values to be set for the user to be created. You can create a user without specifying any attributes other than `Username` . However, any attributes that you specify as required (when creating a user pool or in the *Attributes* tab of the console) either you should supply (in your call to `AdminCreateUser` ) or the user should supply (when they sign up in response to your welcome message).
//
@@ -206,7 +206,7 @@ type UserPoolUserArgs struct {
// - *email* : The email address of the user to whom the message that contains the code and username will be sent. Required if the `email_verified` attribute is set to `True` , or if `"EMAIL"` is specified in the `DesiredDeliveryMediums` parameter.
// - *phone_number* : The phone number of the user to whom the message that contains the code and username will be sent. Required if the `phone_number_verified` attribute is set to `True` , or if `"SMS"` is specified in the `DesiredDeliveryMediums` parameter.
UserAttributes UserPoolUserAttributeTypeArrayInput
- // The user pool ID for the user pool where the user will be created.
+ // The ID of the user pool where you want to create a user.
UserPoolId pulumi.StringInput
// The value that you want to set as the username sign-in attribute. The following conditions apply to the username parameter.
//
@@ -261,33 +261,33 @@ func (o UserPoolUserOutput) ToUserPoolUserOutputWithContext(ctx context.Context)
// A map of custom key-value pairs that you can provide as input for any custom workflows that this action triggers.
//
-// You create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `clientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.
+// You create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `ClientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.
//
// For more information, see [Customizing user pool Workflows with Lambda Triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html) in the *Amazon Cognito Developer Guide* .
//
-// > When you use the ClientMetadata parameter, remember that Amazon Cognito won't do the following:
-// > - Store the ClientMetadata value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the ClientMetadata parameter serves no purpose.
-// > - Validate the ClientMetadata value.
-// > - Encrypt the ClientMetadata value. Don't use Amazon Cognito to provide sensitive information.
+// > When you use the `ClientMetadata` parameter, note that Amazon Cognito won't do the following:
+// > - Store the `ClientMetadata` value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the `ClientMetadata` parameter serves no purpose.
+// > - Validate the `ClientMetadata` value.
+// > - Encrypt the `ClientMetadata` value. Don't send sensitive information in this parameter.
func (o UserPoolUserOutput) ClientMetadata() pulumi.StringMapOutput {
return o.ApplyT(func(v *UserPoolUser) pulumi.StringMapOutput { return v.ClientMetadata }).(pulumi.StringMapOutput)
}
-// Specify `"EMAIL"` if email will be used to send the welcome message. Specify `"SMS"` if the phone number will be used. The default value is `"SMS"` . You can specify more than one value.
+// Specify `EMAIL` if email will be used to send the welcome message. Specify `SMS` if the phone number will be used. The default value is `SMS` . You can specify more than one value.
func (o UserPoolUserOutput) DesiredDeliveryMediums() pulumi.StringArrayOutput {
return o.ApplyT(func(v *UserPoolUser) pulumi.StringArrayOutput { return v.DesiredDeliveryMediums }).(pulumi.StringArrayOutput)
}
// This parameter is used only if the `phone_number_verified` or `email_verified` attribute is set to `True` . Otherwise, it is ignored.
//
-// If this parameter is set to `True` and the phone number or email address specified in the UserAttributes parameter already exists as an alias with a different user, the API call will migrate the alias from the previous user to the newly created user. The previous user will no longer be able to log in using that alias.
+// If this parameter is set to `True` and the phone number or email address specified in the `UserAttributes` parameter already exists as an alias with a different user, this request migrates the alias from the previous user to the newly-created user. The previous user will no longer be able to log in using that alias.
//
// If this parameter is set to `False` , the API throws an `AliasExistsException` error if the alias already exists. The default value is `False` .
func (o UserPoolUserOutput) ForceAliasCreation() pulumi.BoolPtrOutput {
return o.ApplyT(func(v *UserPoolUser) pulumi.BoolPtrOutput { return v.ForceAliasCreation }).(pulumi.BoolPtrOutput)
}
-// Set to `RESEND` to resend the invitation message to a user that already exists and reset the expiration limit on the user's account. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.
+// Set to `RESEND` to resend the invitation message to a user that already exists, and to reset the temporary-password duration with a new temporary password. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.
func (o UserPoolUserOutput) MessageAction() pulumi.StringPtrOutput {
return o.ApplyT(func(v *UserPoolUser) pulumi.StringPtrOutput { return v.MessageAction }).(pulumi.StringPtrOutput)
}
@@ -308,7 +308,7 @@ func (o UserPoolUserOutput) UserAttributes() UserPoolUserAttributeTypeArrayOutpu
return o.ApplyT(func(v *UserPoolUser) UserPoolUserAttributeTypeArrayOutput { return v.UserAttributes }).(UserPoolUserAttributeTypeArrayOutput)
}
-// The user pool ID for the user pool where the user will be created.
+// The ID of the user pool where you want to create a user.
func (o UserPoolUserOutput) UserPoolId() pulumi.StringOutput {
return o.ApplyT(func(v *UserPoolUser) pulumi.StringOutput { return v.UserPoolId }).(pulumi.StringOutput)
}
diff --git a/sdk/go/aws/cognito/userPoolUserToGroupAttachment.go b/sdk/go/aws/cognito/userPoolUserToGroupAttachment.go
index ac977ce734..ea5432d36f 100644
--- a/sdk/go/aws/cognito/userPoolUserToGroupAttachment.go
+++ b/sdk/go/aws/cognito/userPoolUserToGroupAttachment.go
@@ -18,7 +18,7 @@ type UserPoolUserToGroupAttachment struct {
// The name of the group that you want to add your user to.
GroupName pulumi.StringOutput `pulumi:"groupName"`
- // The user pool ID for the user pool.
+ // The ID of the user pool that contains the group that you want to add the user to.
UserPoolId pulumi.StringOutput `pulumi:"userPoolId"`
// The user's username.
Username pulumi.StringOutput `pulumi:"username"`
@@ -81,7 +81,7 @@ func (UserPoolUserToGroupAttachmentState) ElementType() reflect.Type {
type userPoolUserToGroupAttachmentArgs struct {
// The name of the group that you want to add your user to.
GroupName string `pulumi:"groupName"`
- // The user pool ID for the user pool.
+ // The ID of the user pool that contains the group that you want to add the user to.
UserPoolId string `pulumi:"userPoolId"`
// The user's username.
Username string `pulumi:"username"`
@@ -91,7 +91,7 @@ type userPoolUserToGroupAttachmentArgs struct {
type UserPoolUserToGroupAttachmentArgs struct {
// The name of the group that you want to add your user to.
GroupName pulumi.StringInput
- // The user pool ID for the user pool.
+ // The ID of the user pool that contains the group that you want to add the user to.
UserPoolId pulumi.StringInput
// The user's username.
Username pulumi.StringInput
@@ -139,7 +139,7 @@ func (o UserPoolUserToGroupAttachmentOutput) GroupName() pulumi.StringOutput {
return o.ApplyT(func(v *UserPoolUserToGroupAttachment) pulumi.StringOutput { return v.GroupName }).(pulumi.StringOutput)
}
-// The user pool ID for the user pool.
+// The ID of the user pool that contains the group that you want to add the user to.
func (o UserPoolUserToGroupAttachmentOutput) UserPoolId() pulumi.StringOutput {
return o.ApplyT(func(v *UserPoolUserToGroupAttachment) pulumi.StringOutput { return v.UserPoolId }).(pulumi.StringOutput)
}
diff --git a/sdk/go/aws/connect/getTaskTemplate.go b/sdk/go/aws/connect/getTaskTemplate.go
index 56c01b8eda..ccf5b26653 100644
--- a/sdk/go/aws/connect/getTaskTemplate.go
+++ b/sdk/go/aws/connect/getTaskTemplate.go
@@ -47,6 +47,8 @@ type LookupTaskTemplateResult struct {
InstanceArn *string `pulumi:"instanceArn"`
// The name of the task template.
Name *string `pulumi:"name"`
+ // The identifier of the contact flow.
+ SelfAssignContactFlowArn *string `pulumi:"selfAssignContactFlowArn"`
// The status of the task template.
Status *TaskTemplateStatus `pulumi:"status"`
// One or more tags.
@@ -140,6 +142,11 @@ func (o LookupTaskTemplateResultOutput) Name() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupTaskTemplateResult) *string { return v.Name }).(pulumi.StringPtrOutput)
}
+// The identifier of the contact flow.
+func (o LookupTaskTemplateResultOutput) SelfAssignContactFlowArn() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v LookupTaskTemplateResult) *string { return v.SelfAssignContactFlowArn }).(pulumi.StringPtrOutput)
+}
+
// The status of the task template.
func (o LookupTaskTemplateResultOutput) Status() TaskTemplateStatusPtrOutput {
return o.ApplyT(func(v LookupTaskTemplateResult) *TaskTemplateStatus { return v.Status }).(TaskTemplateStatusPtrOutput)
diff --git a/sdk/go/aws/connect/taskTemplate.go b/sdk/go/aws/connect/taskTemplate.go
index ca8316beb9..dad64333e6 100644
--- a/sdk/go/aws/connect/taskTemplate.go
+++ b/sdk/go/aws/connect/taskTemplate.go
@@ -35,6 +35,8 @@ type TaskTemplate struct {
InstanceArn pulumi.StringOutput `pulumi:"instanceArn"`
// The name of the task template.
Name pulumi.StringPtrOutput `pulumi:"name"`
+ // The identifier of the contact flow.
+ SelfAssignContactFlowArn pulumi.StringPtrOutput `pulumi:"selfAssignContactFlowArn"`
// The status of the task template.
Status TaskTemplateStatusPtrOutput `pulumi:"status"`
// One or more tags.
@@ -100,6 +102,8 @@ type taskTemplateArgs struct {
InstanceArn string `pulumi:"instanceArn"`
// The name of the task template.
Name *string `pulumi:"name"`
+ // The identifier of the contact flow.
+ SelfAssignContactFlowArn *string `pulumi:"selfAssignContactFlowArn"`
// The status of the task template.
Status *TaskTemplateStatus `pulumi:"status"`
// One or more tags.
@@ -124,6 +128,8 @@ type TaskTemplateArgs struct {
InstanceArn pulumi.StringInput
// The name of the task template.
Name pulumi.StringPtrInput
+ // The identifier of the contact flow.
+ SelfAssignContactFlowArn pulumi.StringPtrInput
// The status of the task template.
Status TaskTemplateStatusPtrInput
// One or more tags.
@@ -212,6 +218,11 @@ func (o TaskTemplateOutput) Name() pulumi.StringPtrOutput {
return o.ApplyT(func(v *TaskTemplate) pulumi.StringPtrOutput { return v.Name }).(pulumi.StringPtrOutput)
}
+// The identifier of the contact flow.
+func (o TaskTemplateOutput) SelfAssignContactFlowArn() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *TaskTemplate) pulumi.StringPtrOutput { return v.SelfAssignContactFlowArn }).(pulumi.StringPtrOutput)
+}
+
// The status of the task template.
func (o TaskTemplateOutput) Status() TaskTemplateStatusPtrOutput {
return o.ApplyT(func(v *TaskTemplate) TaskTemplateStatusPtrOutput { return v.Status }).(TaskTemplateStatusPtrOutput)
diff --git a/sdk/go/aws/dynamodb/table.go b/sdk/go/aws/dynamodb/table.go
index 2b002b7adf..1a059a0372 100644
--- a/sdk/go/aws/dynamodb/table.go
+++ b/sdk/go/aws/dynamodb/table.go
@@ -306,8 +306,8 @@ type Table struct {
// + If you update either the contributor insights specification or the provisioned throughput values of global secondary indexes, you can update the table without interruption.
// + You can delete or add one global secondary index without interruption. If you do both in the same update (for example, by changing the index's logical ID), the update fails.
GlobalSecondaryIndexes TableGlobalSecondaryIndexArrayOutput `pulumi:"globalSecondaryIndexes"`
- // Specifies the properties of data being imported from the S3 bucket source to the table.
- // If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, or the ``DeletionProtectionEnabled`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.
+ // Specifies the properties of data being imported from the S3 bucket source to the" table.
+ // If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, the ``DeletionProtectionEnabled`` property, or the ``WarmThroughput`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.
ImportSourceSpecification TableImportSourceSpecificationPtrOutput `pulumi:"importSourceSpecification"`
// Specifies the attributes that make up the primary key for the table. The attributes in the ``KeySchema`` property must also be defined in the ``AttributeDefinitions`` property.
KeySchema pulumi.AnyOutput `pulumi:"keySchema"`
@@ -418,8 +418,8 @@ type tableArgs struct {
// + If you update either the contributor insights specification or the provisioned throughput values of global secondary indexes, you can update the table without interruption.
// + You can delete or add one global secondary index without interruption. If you do both in the same update (for example, by changing the index's logical ID), the update fails.
GlobalSecondaryIndexes []TableGlobalSecondaryIndex `pulumi:"globalSecondaryIndexes"`
- // Specifies the properties of data being imported from the S3 bucket source to the table.
- // If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, or the ``DeletionProtectionEnabled`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.
+ // Specifies the properties of data being imported from the S3 bucket source to the" table.
+ // If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, the ``DeletionProtectionEnabled`` property, or the ``WarmThroughput`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.
ImportSourceSpecification *TableImportSourceSpecification `pulumi:"importSourceSpecification"`
// Specifies the attributes that make up the primary key for the table. The attributes in the ``KeySchema`` property must also be defined in the ``AttributeDefinitions`` property.
KeySchema interface{} `pulumi:"keySchema"`
@@ -480,8 +480,8 @@ type TableArgs struct {
// + If you update either the contributor insights specification or the provisioned throughput values of global secondary indexes, you can update the table without interruption.
// + You can delete or add one global secondary index without interruption. If you do both in the same update (for example, by changing the index's logical ID), the update fails.
GlobalSecondaryIndexes TableGlobalSecondaryIndexArrayInput
- // Specifies the properties of data being imported from the S3 bucket source to the table.
- // If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, or the ``DeletionProtectionEnabled`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.
+ // Specifies the properties of data being imported from the S3 bucket source to the" table.
+ // If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, the ``DeletionProtectionEnabled`` property, or the ``WarmThroughput`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.
ImportSourceSpecification TableImportSourceSpecificationPtrInput
// Specifies the attributes that make up the primary key for the table. The attributes in the ``KeySchema`` property must also be defined in the ``AttributeDefinitions`` property.
KeySchema pulumi.Input
@@ -602,9 +602,9 @@ func (o TableOutput) GlobalSecondaryIndexes() TableGlobalSecondaryIndexArrayOutp
return o.ApplyT(func(v *Table) TableGlobalSecondaryIndexArrayOutput { return v.GlobalSecondaryIndexes }).(TableGlobalSecondaryIndexArrayOutput)
}
-// Specifies the properties of data being imported from the S3 bucket source to the table.
+// Specifies the properties of data being imported from the S3 bucket source to the" table.
//
-// If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, or the ``DeletionProtectionEnabled`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.
+// If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, the ``DeletionProtectionEnabled`` property, or the ``WarmThroughput`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.
func (o TableOutput) ImportSourceSpecification() TableImportSourceSpecificationPtrOutput {
return o.ApplyT(func(v *Table) TableImportSourceSpecificationPtrOutput { return v.ImportSourceSpecification }).(TableImportSourceSpecificationPtrOutput)
}
diff --git a/sdk/go/aws/ec2/launchTemplate.go b/sdk/go/aws/ec2/launchTemplate.go
index 0156de971b..c539695716 100644
--- a/sdk/go/aws/ec2/launchTemplate.go
+++ b/sdk/go/aws/ec2/launchTemplate.go
@@ -36,7 +36,7 @@ type LaunchTemplate struct {
// A name for the launch template.
LaunchTemplateName pulumi.StringPtrOutput `pulumi:"launchTemplateName"`
// The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.
- // To specify the tags for resources that are created during instance launch, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications).
+ // To specify the tags for the resources that are created when an instance is launched, you must use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications).
TagSpecifications LaunchTemplateTagSpecificationArrayOutput `pulumi:"tagSpecifications"`
// A description for the first version of the launch template.
VersionDescription pulumi.StringPtrOutput `pulumi:"versionDescription"`
@@ -94,7 +94,7 @@ type launchTemplateArgs struct {
// A name for the launch template.
LaunchTemplateName *string `pulumi:"launchTemplateName"`
// The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.
- // To specify the tags for resources that are created during instance launch, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications).
+ // To specify the tags for the resources that are created when an instance is launched, you must use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications).
TagSpecifications []LaunchTemplateTagSpecification `pulumi:"tagSpecifications"`
// A description for the first version of the launch template.
VersionDescription *string `pulumi:"versionDescription"`
@@ -107,7 +107,7 @@ type LaunchTemplateArgs struct {
// A name for the launch template.
LaunchTemplateName pulumi.StringPtrInput
// The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.
- // To specify the tags for resources that are created during instance launch, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications).
+ // To specify the tags for the resources that are created when an instance is launched, you must use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications).
TagSpecifications LaunchTemplateTagSpecificationArrayInput
// A description for the first version of the launch template.
VersionDescription pulumi.StringPtrInput
@@ -179,7 +179,7 @@ func (o LaunchTemplateOutput) LaunchTemplateName() pulumi.StringPtrOutput {
// The tags to apply to the launch template on creation. To tag the launch template, the resource type must be “launch-template“.
//
-// To specify the tags for resources that are created during instance launch, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications).
+// To specify the tags for the resources that are created when an instance is launched, you must use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications).
func (o LaunchTemplateOutput) TagSpecifications() LaunchTemplateTagSpecificationArrayOutput {
return o.ApplyT(func(v *LaunchTemplate) LaunchTemplateTagSpecificationArrayOutput { return v.TagSpecifications }).(LaunchTemplateTagSpecificationArrayOutput)
}
diff --git a/sdk/go/aws/ec2/pulumiTypes.go b/sdk/go/aws/ec2/pulumiTypes.go
index f1908716a6..0179c1ac13 100644
--- a/sdk/go/aws/ec2/pulumiTypes.go
+++ b/sdk/go/aws/ec2/pulumiTypes.go
@@ -9351,9 +9351,6 @@ func (o LaunchTemplateBaselineEbsBandwidthMbpsPtrOutput) Min() pulumi.IntPtrOutp
}).(pulumi.IntPtrOutput)
}
-// The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application.
-//
-// Currently, this parameter only supports CPU performance as a baseline performance factor. For example, specifying ``c6i`` would use the CPU performance of the ``c6i`` family as the baseline reference.
type LaunchTemplateBaselinePerformanceFactors struct {
// The CPU performance to consider, using an instance family as the baseline reference.
Cpu *LaunchTemplateCpu `pulumi:"cpu"`
@@ -9370,9 +9367,6 @@ type LaunchTemplateBaselinePerformanceFactorsInput interface {
ToLaunchTemplateBaselinePerformanceFactorsOutputWithContext(context.Context) LaunchTemplateBaselinePerformanceFactorsOutput
}
-// The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application.
-//
-// Currently, this parameter only supports CPU performance as a baseline performance factor. For example, specifying ``c6i`` would use the CPU performance of the ``c6i`` family as the baseline reference.
type LaunchTemplateBaselinePerformanceFactorsArgs struct {
// The CPU performance to consider, using an instance family as the baseline reference.
Cpu LaunchTemplateCpuPtrInput `pulumi:"cpu"`
@@ -9431,9 +9425,6 @@ func (i *launchTemplateBaselinePerformanceFactorsPtrType) ToLaunchTemplateBaseli
return pulumi.ToOutputWithContext(ctx, i).(LaunchTemplateBaselinePerformanceFactorsPtrOutput)
}
-// The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application.
-//
-// Currently, this parameter only supports CPU performance as a baseline performance factor. For example, specifying ``c6i`` would use the CPU performance of the ``c6i`` family as the baseline reference.
type LaunchTemplateBaselinePerformanceFactorsOutput struct{ *pulumi.OutputState }
func (LaunchTemplateBaselinePerformanceFactorsOutput) ElementType() reflect.Type {
@@ -9635,8 +9626,7 @@ func (o LaunchTemplateBlockDeviceMappingArrayOutput) Index(i pulumi.IntInput) La
// ``CapacityReservationSpecification`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
type LaunchTemplateCapacityReservationSpecification struct {
// Indicates the instance's Capacity Reservation preferences. Possible preferences include:
- // + ``capacity-reservations-only`` - The instance will only run in a Capacity Reservation or Capacity Reservation group. If capacity isn't available, the instance will fail to launch.
- // + ``open`` - The instance can run in any ``open`` Capacity Reservation that has matching attributes (instance type, platform, Availability Zone, tenancy).
+ // + ``open`` - The instance can run in any ``open`` Capacity Reservation that has matching attributes (instance type, platform, Availability Zone).
// + ``none`` - The instance avoids running in a Capacity Reservation even if one is available. The instance runs in On-Demand capacity.
CapacityReservationPreference *string `pulumi:"capacityReservationPreference"`
// Information about the target Capacity Reservation or Capacity Reservation group.
@@ -9659,8 +9649,7 @@ type LaunchTemplateCapacityReservationSpecificationInput interface {
// ``CapacityReservationSpecification`` is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
type LaunchTemplateCapacityReservationSpecificationArgs struct {
// Indicates the instance's Capacity Reservation preferences. Possible preferences include:
- // + ``capacity-reservations-only`` - The instance will only run in a Capacity Reservation or Capacity Reservation group. If capacity isn't available, the instance will fail to launch.
- // + ``open`` - The instance can run in any ``open`` Capacity Reservation that has matching attributes (instance type, platform, Availability Zone, tenancy).
+ // + ``open`` - The instance can run in any ``open`` Capacity Reservation that has matching attributes (instance type, platform, Availability Zone).
// + ``none`` - The instance avoids running in a Capacity Reservation even if one is available. The instance runs in On-Demand capacity.
CapacityReservationPreference pulumi.StringPtrInput `pulumi:"capacityReservationPreference"`
// Information about the target Capacity Reservation or Capacity Reservation group.
@@ -9748,8 +9737,7 @@ func (o LaunchTemplateCapacityReservationSpecificationOutput) ToLaunchTemplateCa
}
// Indicates the instance's Capacity Reservation preferences. Possible preferences include:
-// - “capacity-reservations-only“ - The instance will only run in a Capacity Reservation or Capacity Reservation group. If capacity isn't available, the instance will fail to launch.
-// - “open“ - The instance can run in any “open“ Capacity Reservation that has matching attributes (instance type, platform, Availability Zone, tenancy).
+// - “open“ - The instance can run in any “open“ Capacity Reservation that has matching attributes (instance type, platform, Availability Zone).
// - “none“ - The instance avoids running in a Capacity Reservation even if one is available. The instance runs in On-Demand capacity.
func (o LaunchTemplateCapacityReservationSpecificationOutput) CapacityReservationPreference() pulumi.StringPtrOutput {
return o.ApplyT(func(v LaunchTemplateCapacityReservationSpecification) *string { return v.CapacityReservationPreference }).(pulumi.StringPtrOutput)
@@ -9787,8 +9775,7 @@ func (o LaunchTemplateCapacityReservationSpecificationPtrOutput) Elem() LaunchTe
}
// Indicates the instance's Capacity Reservation preferences. Possible preferences include:
-// - “capacity-reservations-only“ - The instance will only run in a Capacity Reservation or Capacity Reservation group. If capacity isn't available, the instance will fail to launch.
-// - “open“ - The instance can run in any “open“ Capacity Reservation that has matching attributes (instance type, platform, Availability Zone, tenancy).
+// - “open“ - The instance can run in any “open“ Capacity Reservation that has matching attributes (instance type, platform, Availability Zone).
// - “none“ - The instance avoids running in a Capacity Reservation even if one is available. The instance runs in On-Demand capacity.
func (o LaunchTemplateCapacityReservationSpecificationPtrOutput) CapacityReservationPreference() pulumi.StringPtrOutput {
return o.ApplyT(func(v *LaunchTemplateCapacityReservationSpecification) *string {
@@ -10642,8 +10629,7 @@ type LaunchTemplateData struct {
// Deprecated.
// Amazon Elastic Graphics reached end of life on January 8, 2024. For workloads that require graphics acceleration, we recommend that you use Amazon EC2 G4ad, G4dn, or G5 instances.
ElasticGpuSpecifications []LaunchTemplateElasticGpuSpecification `pulumi:"elasticGpuSpecifications"`
- // Amazon Elastic Inference is no longer available.
- // An elastic inference accelerator to associate with the instance. Elastic inference accelerators are a resource you can attach to your Amazon EC2 instances to accelerate your Deep Learning (DL) inference workloads.
+ // An elastic inference accelerator to associate with the instance. Elastic inference accelerators are a resource you can attach to your Amazon EC2 instances to accelerate your Deep Learning (DL) inference workloads.
// You cannot specify accelerators from different generations in the same request.
// Starting April 15, 2023, AWS will not onboard new customers to Amazon Elastic Inference (EI), and will help current customers migrate their workloads to options that offer better price and performance. After April 15, 2023, new customers will not be able to launch instances with Amazon EI accelerators in Amazon SageMaker, Amazon ECS, or Amazon EC2. However, customers who have used Amazon EI at least once during the past 30-day period are considered current customers and will be able to continue using the service.
ElasticInferenceAccelerators []LaunchTemplateElasticInferenceAccelerator `pulumi:"elasticInferenceAccelerators"`
@@ -10677,7 +10663,7 @@ type LaunchTemplateData struct {
//
// If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.
// Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.
- // For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
+ // For more information, see [Attribute-based instance type selection for EC2 Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html), [Attribute-based instance type selection for Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-attribute-based-instance-type-selection.html), and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
InstanceRequirements *LaunchTemplateInstanceRequirements `pulumi:"instanceRequirements"`
// The instance type. For more information, see [Amazon EC2 instance types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html) in the *Amazon EC2 User Guide*.
// If you specify ``InstanceType``, you can't specify ``InstanceRequirements``.
@@ -10697,8 +10683,7 @@ type LaunchTemplateData struct {
// The monitoring for the instance.
Monitoring *LaunchTemplateMonitoring `pulumi:"monitoring"`
// The network interfaces for the instance.
- NetworkInterfaces []LaunchTemplateNetworkInterface `pulumi:"networkInterfaces"`
- NetworkPerformanceOptions interface{} `pulumi:"networkPerformanceOptions"`
+ NetworkInterfaces []LaunchTemplateNetworkInterface `pulumi:"networkInterfaces"`
// The placement for the instance.
Placement *LaunchTemplatePlacement `pulumi:"placement"`
// The hostname type for EC2 instances launched into this subnet and how DNS A and AAAA record queries should be handled. For more information, see [Amazon EC2 instance hostname types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-naming.html) in the *User Guide*.
@@ -10712,7 +10697,8 @@ type LaunchTemplateData struct {
// The names of the security groups. For a nondefault VPC, you must use security group IDs instead.
// If you specify a network interface, you must specify any security groups as part of the network interface instead of using this parameter.
SecurityGroups []string `pulumi:"securityGroups"`
- // The tags to apply to resources that are created during instance launch.
+ // The tags to apply to the resources that are created during instance launch.
+ // To tag a resource after it has been created, see [CreateTags](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateTags.html).
// To tag the launch template itself, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-tagspecifications).
TagSpecifications []TagSpecification `pulumi:"tagSpecifications"`
// The user data to make available to the instance. You must provide base64-encoded text. User data is limited to 16 KB. For more information, see [Run commands on your Amazon EC2 instance at launch](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/user-data.html) in the *Amazon EC2 User Guide*.
@@ -10752,8 +10738,7 @@ type LaunchTemplateDataArgs struct {
// Deprecated.
// Amazon Elastic Graphics reached end of life on January 8, 2024. For workloads that require graphics acceleration, we recommend that you use Amazon EC2 G4ad, G4dn, or G5 instances.
ElasticGpuSpecifications LaunchTemplateElasticGpuSpecificationArrayInput `pulumi:"elasticGpuSpecifications"`
- // Amazon Elastic Inference is no longer available.
- // An elastic inference accelerator to associate with the instance. Elastic inference accelerators are a resource you can attach to your Amazon EC2 instances to accelerate your Deep Learning (DL) inference workloads.
+ // An elastic inference accelerator to associate with the instance. Elastic inference accelerators are a resource you can attach to your Amazon EC2 instances to accelerate your Deep Learning (DL) inference workloads.
// You cannot specify accelerators from different generations in the same request.
// Starting April 15, 2023, AWS will not onboard new customers to Amazon Elastic Inference (EI), and will help current customers migrate their workloads to options that offer better price and performance. After April 15, 2023, new customers will not be able to launch instances with Amazon EI accelerators in Amazon SageMaker, Amazon ECS, or Amazon EC2. However, customers who have used Amazon EI at least once during the past 30-day period are considered current customers and will be able to continue using the service.
ElasticInferenceAccelerators LaunchTemplateElasticInferenceAcceleratorArrayInput `pulumi:"elasticInferenceAccelerators"`
@@ -10787,7 +10772,7 @@ type LaunchTemplateDataArgs struct {
//
// If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.
// Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.
- // For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
+ // For more information, see [Attribute-based instance type selection for EC2 Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html), [Attribute-based instance type selection for Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-attribute-based-instance-type-selection.html), and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
InstanceRequirements LaunchTemplateInstanceRequirementsPtrInput `pulumi:"instanceRequirements"`
// The instance type. For more information, see [Amazon EC2 instance types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html) in the *Amazon EC2 User Guide*.
// If you specify ``InstanceType``, you can't specify ``InstanceRequirements``.
@@ -10807,8 +10792,7 @@ type LaunchTemplateDataArgs struct {
// The monitoring for the instance.
Monitoring LaunchTemplateMonitoringPtrInput `pulumi:"monitoring"`
// The network interfaces for the instance.
- NetworkInterfaces LaunchTemplateNetworkInterfaceArrayInput `pulumi:"networkInterfaces"`
- NetworkPerformanceOptions pulumi.Input `pulumi:"networkPerformanceOptions"`
+ NetworkInterfaces LaunchTemplateNetworkInterfaceArrayInput `pulumi:"networkInterfaces"`
// The placement for the instance.
Placement LaunchTemplatePlacementPtrInput `pulumi:"placement"`
// The hostname type for EC2 instances launched into this subnet and how DNS A and AAAA record queries should be handled. For more information, see [Amazon EC2 instance hostname types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-naming.html) in the *User Guide*.
@@ -10822,7 +10806,8 @@ type LaunchTemplateDataArgs struct {
// The names of the security groups. For a nondefault VPC, you must use security group IDs instead.
// If you specify a network interface, you must specify any security groups as part of the network interface instead of using this parameter.
SecurityGroups pulumi.StringArrayInput `pulumi:"securityGroups"`
- // The tags to apply to resources that are created during instance launch.
+ // The tags to apply to the resources that are created during instance launch.
+ // To tag a resource after it has been created, see [CreateTags](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateTags.html).
// To tag the launch template itself, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-tagspecifications).
TagSpecifications TagSpecificationArrayInput `pulumi:"tagSpecifications"`
// The user data to make available to the instance. You must provide base64-encoded text. User data is limited to 16 KB. For more information, see [Run commands on your Amazon EC2 instance at launch](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/user-data.html) in the *Amazon EC2 User Guide*.
@@ -10903,9 +10888,8 @@ func (o LaunchTemplateDataOutput) ElasticGpuSpecifications() LaunchTemplateElast
return o.ApplyT(func(v LaunchTemplateData) []LaunchTemplateElasticGpuSpecification { return v.ElasticGpuSpecifications }).(LaunchTemplateElasticGpuSpecificationArrayOutput)
}
-// Amazon Elastic Inference is no longer available.
+// An elastic inference accelerator to associate with the instance. Elastic inference accelerators are a resource you can attach to your Amazon EC2 instances to accelerate your Deep Learning (DL) inference workloads.
//
-// An elastic inference accelerator to associate with the instance. Elastic inference accelerators are a resource you can attach to your Amazon EC2 instances to accelerate your Deep Learning (DL) inference workloads.
// You cannot specify accelerators from different generations in the same request.
// Starting April 15, 2023, AWS will not onboard new customers to Amazon Elastic Inference (EI), and will help current customers migrate their workloads to options that offer better price and performance. After April 15, 2023, new customers will not be able to launch instances with Amazon EI accelerators in Amazon SageMaker, Amazon ECS, or Amazon EC2. However, customers who have used Amazon EI at least once during the past 30-day period are considered current customers and will be able to continue using the service.
func (o LaunchTemplateDataOutput) ElasticInferenceAccelerators() LaunchTemplateElasticInferenceAcceleratorArrayOutput {
@@ -10966,7 +10950,7 @@ func (o LaunchTemplateDataOutput) InstanceMarketOptions() LaunchTemplateInstance
//
// If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.
// Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.
-// For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
+// For more information, see [Attribute-based instance type selection for EC2 Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html), [Attribute-based instance type selection for Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-attribute-based-instance-type-selection.html), and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
func (o LaunchTemplateDataOutput) InstanceRequirements() LaunchTemplateInstanceRequirementsPtrOutput {
return o.ApplyT(func(v LaunchTemplateData) *LaunchTemplateInstanceRequirements { return v.InstanceRequirements }).(LaunchTemplateInstanceRequirementsPtrOutput)
}
@@ -11017,10 +11001,6 @@ func (o LaunchTemplateDataOutput) NetworkInterfaces() LaunchTemplateNetworkInter
return o.ApplyT(func(v LaunchTemplateData) []LaunchTemplateNetworkInterface { return v.NetworkInterfaces }).(LaunchTemplateNetworkInterfaceArrayOutput)
}
-func (o LaunchTemplateDataOutput) NetworkPerformanceOptions() pulumi.AnyOutput {
- return o.ApplyT(func(v LaunchTemplateData) interface{} { return v.NetworkPerformanceOptions }).(pulumi.AnyOutput)
-}
-
// The placement for the instance.
func (o LaunchTemplateDataOutput) Placement() LaunchTemplatePlacementPtrOutput {
return o.ApplyT(func(v LaunchTemplateData) *LaunchTemplatePlacement { return v.Placement }).(LaunchTemplatePlacementPtrOutput)
@@ -11052,8 +11032,9 @@ func (o LaunchTemplateDataOutput) SecurityGroups() pulumi.StringArrayOutput {
return o.ApplyT(func(v LaunchTemplateData) []string { return v.SecurityGroups }).(pulumi.StringArrayOutput)
}
-// The tags to apply to resources that are created during instance launch.
+// The tags to apply to the resources that are created during instance launch.
//
+// To tag a resource after it has been created, see [CreateTags](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateTags.html).
// To tag the launch template itself, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html#cfn-ec2-launchtemplate-tagspecifications).
func (o LaunchTemplateDataOutput) TagSpecifications() TagSpecificationArrayOutput {
return o.ApplyT(func(v LaunchTemplateData) []TagSpecification { return v.TagSpecifications }).(TagSpecificationArrayOutput)
@@ -11083,7 +11064,7 @@ type LaunchTemplateEbs struct {
// For ``io2`` volumes, you can achieve up to 256,000 IOPS on [instances built on the Nitro System](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html#ec2-nitro-instances). On other instances, you can achieve performance up to 32,000 IOPS.
// This parameter is supported for ``io1``, ``io2``, and ``gp3`` volumes only.
Iops *int `pulumi:"iops"`
- // Identifier (key ID, key alias, key ARN, or alias ARN) of the customer managed KMS key to use for EBS encryption.
+ // The ARN of the symmetric KMSlong (KMS) CMK used for encryption.
KmsKeyId *string `pulumi:"kmsKeyId"`
// The ID of the snapshot.
SnapshotId *string `pulumi:"snapshotId"`
@@ -11129,7 +11110,7 @@ type LaunchTemplateEbsArgs struct {
// For ``io2`` volumes, you can achieve up to 256,000 IOPS on [instances built on the Nitro System](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html#ec2-nitro-instances). On other instances, you can achieve performance up to 32,000 IOPS.
// This parameter is supported for ``io1``, ``io2``, and ``gp3`` volumes only.
Iops pulumi.IntPtrInput `pulumi:"iops"`
- // Identifier (key ID, key alias, key ARN, or alias ARN) of the customer managed KMS key to use for EBS encryption.
+ // The ARN of the symmetric KMSlong (KMS) CMK used for encryption.
KmsKeyId pulumi.StringPtrInput `pulumi:"kmsKeyId"`
// The ID of the snapshot.
SnapshotId pulumi.StringPtrInput `pulumi:"snapshotId"`
@@ -11250,7 +11231,7 @@ func (o LaunchTemplateEbsOutput) Iops() pulumi.IntPtrOutput {
return o.ApplyT(func(v LaunchTemplateEbs) *int { return v.Iops }).(pulumi.IntPtrOutput)
}
-// Identifier (key ID, key alias, key ARN, or alias ARN) of the customer managed KMS key to use for EBS encryption.
+// The ARN of the symmetric KMSlong (KMS) CMK used for encryption.
func (o LaunchTemplateEbsOutput) KmsKeyId() pulumi.StringPtrOutput {
return o.ApplyT(func(v LaunchTemplateEbs) *string { return v.KmsKeyId }).(pulumi.StringPtrOutput)
}
@@ -11344,7 +11325,7 @@ func (o LaunchTemplateEbsPtrOutput) Iops() pulumi.IntPtrOutput {
}).(pulumi.IntPtrOutput)
}
-// Identifier (key ID, key alias, key ARN, or alias ARN) of the customer managed KMS key to use for EBS encryption.
+// The ARN of the symmetric KMSlong (KMS) CMK used for encryption.
func (o LaunchTemplateEbsPtrOutput) KmsKeyId() pulumi.StringPtrOutput {
return o.ApplyT(func(v *LaunchTemplateEbs) *string {
if v == nil {
@@ -12571,7 +12552,7 @@ func (o LaunchTemplateInstanceMarketOptionsPtrOutput) SpotOptions() LaunchTempla
//
// If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.
// Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.
-// For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
+// For more information, see [Attribute-based instance type selection for EC2 Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html), [Attribute-based instance type selection for Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-attribute-based-instance-type-selection.html), and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
type LaunchTemplateInstanceRequirements struct {
// The minimum and maximum number of accelerators (GPUs, FPGAs, or AWS Inferentia chips) on an instance.
// To exclude accelerator-enabled instance types, set ``Max`` to ``0``.
@@ -12608,6 +12589,7 @@ type LaunchTemplateInstanceRequirements struct {
// The accelerator types that must be on the instance type.
// + For instance types with GPU accelerators, specify ``gpu``.
// + For instance types with FPGA accelerators, specify ``fpga``.
+ // + For instance types with inference accelerators, specify ``inference``.
//
// Default: Any accelerator type
AcceleratorTypes []string `pulumi:"acceleratorTypes"`
@@ -12627,7 +12609,7 @@ type LaunchTemplateInstanceRequirements struct {
// The minimum and maximum baseline bandwidth to Amazon EBS, in Mbps. For more information, see [Amazon EBS–optimized instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-optimized.html) in the *Amazon EC2 User Guide*.
// Default: No minimum or maximum limits
BaselineEbsBandwidthMbps *LaunchTemplateBaselineEbsBandwidthMbps `pulumi:"baselineEbsBandwidthMbps"`
- // The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide*.
+ // The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide* .
BaselinePerformanceFactors *LaunchTemplateBaselinePerformanceFactors `pulumi:"baselinePerformanceFactors"`
// Indicates whether burstable performance T instance types are included, excluded, or required. For more information, see [Burstable performance instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/burstable-performance-instances.html).
// + To include burstable performance instance types, specify ``included``.
@@ -12640,7 +12622,6 @@ type LaunchTemplateInstanceRequirements struct {
// + For instance types with Intel CPUs, specify ``intel``.
// + For instance types with AMD CPUs, specify ``amd``.
// + For instance types with AWS CPUs, specify ``amazon-web-services``.
- // + For instance types with Apple CPUs, specify ``apple``.
//
// Don't confuse the CPU manufacturer with the CPU architecture. Instances will be launched with a compatible CPU architecture based on the Amazon Machine Image (AMI) that you specify in your launch template.
// Default: Any manufacturer
@@ -12731,7 +12712,7 @@ type LaunchTemplateInstanceRequirementsInput interface {
//
// If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.
// Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.
-// For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
+// For more information, see [Attribute-based instance type selection for EC2 Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html), [Attribute-based instance type selection for Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-attribute-based-instance-type-selection.html), and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
type LaunchTemplateInstanceRequirementsArgs struct {
// The minimum and maximum number of accelerators (GPUs, FPGAs, or AWS Inferentia chips) on an instance.
// To exclude accelerator-enabled instance types, set ``Max`` to ``0``.
@@ -12768,6 +12749,7 @@ type LaunchTemplateInstanceRequirementsArgs struct {
// The accelerator types that must be on the instance type.
// + For instance types with GPU accelerators, specify ``gpu``.
// + For instance types with FPGA accelerators, specify ``fpga``.
+ // + For instance types with inference accelerators, specify ``inference``.
//
// Default: Any accelerator type
AcceleratorTypes pulumi.StringArrayInput `pulumi:"acceleratorTypes"`
@@ -12787,7 +12769,7 @@ type LaunchTemplateInstanceRequirementsArgs struct {
// The minimum and maximum baseline bandwidth to Amazon EBS, in Mbps. For more information, see [Amazon EBS–optimized instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-optimized.html) in the *Amazon EC2 User Guide*.
// Default: No minimum or maximum limits
BaselineEbsBandwidthMbps LaunchTemplateBaselineEbsBandwidthMbpsPtrInput `pulumi:"baselineEbsBandwidthMbps"`
- // The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide*.
+ // The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide* .
BaselinePerformanceFactors LaunchTemplateBaselinePerformanceFactorsPtrInput `pulumi:"baselinePerformanceFactors"`
// Indicates whether burstable performance T instance types are included, excluded, or required. For more information, see [Burstable performance instances](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/burstable-performance-instances.html).
// + To include burstable performance instance types, specify ``included``.
@@ -12800,7 +12782,6 @@ type LaunchTemplateInstanceRequirementsArgs struct {
// + For instance types with Intel CPUs, specify ``intel``.
// + For instance types with AMD CPUs, specify ``amd``.
// + For instance types with AWS CPUs, specify ``amazon-web-services``.
- // + For instance types with Apple CPUs, specify ``apple``.
//
// Don't confuse the CPU manufacturer with the CPU architecture. Instances will be launched with a compatible CPU architecture based on the Amazon Machine Image (AMI) that you specify in your launch template.
// Default: Any manufacturer
@@ -12933,7 +12914,7 @@ func (i *launchTemplateInstanceRequirementsPtrType) ToLaunchTemplateInstanceRequ
//
// If you specify ``InstanceRequirements``, you can't specify ``InstanceType``.
// Attribute-based instance type selection is only supported when using Auto Scaling groups, EC2 Fleet, and Spot Fleet to launch instances. If you plan to use the launch template in the [launch instance wizard](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-launch-instance-wizard.html), or with the [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) API or [AWS::EC2::Instance](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-instance.html) AWS CloudFormation resource, you can't specify ``InstanceRequirements``.
-// For more information, see [Specify attributes for instance type selection for EC2 Fleet or Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html) and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
+// For more information, see [Attribute-based instance type selection for EC2 Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html), [Attribute-based instance type selection for Spot Fleet](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-fleet-attribute-based-instance-type-selection.html), and [Spot placement score](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/spot-placement-score.html) in the *Amazon EC2 User Guide*.
type LaunchTemplateInstanceRequirementsOutput struct{ *pulumi.OutputState }
func (LaunchTemplateInstanceRequirementsOutput) ElementType() reflect.Type {
@@ -13029,6 +13010,8 @@ func (o LaunchTemplateInstanceRequirementsOutput) AcceleratorTotalMemoryMiB() La
//
// - For instance types with FPGA accelerators, specify “fpga“.
//
+// - For instance types with inference accelerators, specify “inference“.
+//
// Default: Any accelerator type
func (o LaunchTemplateInstanceRequirementsOutput) AcceleratorTypes() pulumi.StringArrayOutput {
return o.ApplyT(func(v LaunchTemplateInstanceRequirements) []string { return v.AcceleratorTypes }).(pulumi.StringArrayOutput)
@@ -13066,7 +13049,7 @@ func (o LaunchTemplateInstanceRequirementsOutput) BaselineEbsBandwidthMbps() Lau
}).(LaunchTemplateBaselineEbsBandwidthMbpsPtrOutput)
}
-// The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide*.
+// The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide* .
func (o LaunchTemplateInstanceRequirementsOutput) BaselinePerformanceFactors() LaunchTemplateBaselinePerformanceFactorsPtrOutput {
return o.ApplyT(func(v LaunchTemplateInstanceRequirements) *LaunchTemplateBaselinePerformanceFactors {
return v.BaselinePerformanceFactors
@@ -13094,8 +13077,6 @@ func (o LaunchTemplateInstanceRequirementsOutput) BurstablePerformance() pulumi.
//
// - For instance types with AWS CPUs, specify “amazon-web-services“.
//
-// - For instance types with Apple CPUs, specify “apple“.
-//
// Don't confuse the CPU manufacturer with the CPU architecture. Instances will be launched with a compatible CPU architecture based on the Amazon Machine Image (AMI) that you specify in your launch template.
// Default: Any manufacturer
func (o LaunchTemplateInstanceRequirementsOutput) CpuManufacturers() pulumi.StringArrayOutput {
@@ -13343,6 +13324,8 @@ func (o LaunchTemplateInstanceRequirementsPtrOutput) AcceleratorTotalMemoryMiB()
//
// - For instance types with FPGA accelerators, specify “fpga“.
//
+// - For instance types with inference accelerators, specify “inference“.
+//
// Default: Any accelerator type
func (o LaunchTemplateInstanceRequirementsPtrOutput) AcceleratorTypes() pulumi.StringArrayOutput {
return o.ApplyT(func(v *LaunchTemplateInstanceRequirements) []string {
@@ -13398,7 +13381,7 @@ func (o LaunchTemplateInstanceRequirementsPtrOutput) BaselineEbsBandwidthMbps()
}).(LaunchTemplateBaselineEbsBandwidthMbpsPtrOutput)
}
-// The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide*.
+// The baseline performance to consider, using an instance family as a baseline reference. The instance family establishes the lowest acceptable level of performance. Amazon EC2 uses this baseline to guide instance type selection, but there is no guarantee that the selected instance types will always exceed the baseline for every application. Currently, this parameter only supports CPU performance as a baseline performance factor. For more information, see [Performance protection](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-fleet-attribute-based-instance-type-selection.html#ec2fleet-abis-performance-protection) in the *Amazon EC2 User Guide* .
func (o LaunchTemplateInstanceRequirementsPtrOutput) BaselinePerformanceFactors() LaunchTemplateBaselinePerformanceFactorsPtrOutput {
return o.ApplyT(func(v *LaunchTemplateInstanceRequirements) *LaunchTemplateBaselinePerformanceFactors {
if v == nil {
@@ -13434,8 +13417,6 @@ func (o LaunchTemplateInstanceRequirementsPtrOutput) BurstablePerformance() pulu
//
// - For instance types with AWS CPUs, specify “amazon-web-services“.
//
-// - For instance types with Apple CPUs, specify “apple“.
-//
// Don't confuse the CPU manufacturer with the CPU architecture. Instances will be launched with a compatible CPU architecture based on the Amazon Machine Image (AMI) that you specify in your launch template.
// Default: Any manufacturer
func (o LaunchTemplateInstanceRequirementsPtrOutput) CpuManufacturers() pulumi.StringArrayOutput {
@@ -15122,10 +15103,9 @@ type LaunchTemplateNetworkInterface struct {
EnaSrdSpecification *LaunchTemplateEnaSrdSpecification `pulumi:"enaSrdSpecification"`
// The IDs of one or more security groups.
Groups []string `pulumi:"groups"`
- // The type of network interface. To create an Elastic Fabric Adapter (EFA), specify ``efa`` or ``efa``. For more information, see [Elastic Fabric Adapter](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide*.
+ // The type of network interface. To create an Elastic Fabric Adapter (EFA), specify ``efa``. For more information, see [Elastic Fabric Adapter](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide*.
// If you are not creating an EFA, specify ``interface`` or omit this parameter.
- // If you specify ``efa-only``, do not assign any IP addresses to the network interface. EFA-only network interfaces do not support IP addresses.
- // Valid values: ``interface`` | ``efa`` | ``efa-only``
+ // Valid values: ``interface`` | ``efa``
InterfaceType *string `pulumi:"interfaceType"`
// The number of IPv4 prefixes to be automatically assigned to the network interface. You cannot use this option if you use the ``Ipv4Prefix`` option.
Ipv4PrefixCount *int `pulumi:"ipv4PrefixCount"`
@@ -15188,10 +15168,9 @@ type LaunchTemplateNetworkInterfaceArgs struct {
EnaSrdSpecification LaunchTemplateEnaSrdSpecificationPtrInput `pulumi:"enaSrdSpecification"`
// The IDs of one or more security groups.
Groups pulumi.StringArrayInput `pulumi:"groups"`
- // The type of network interface. To create an Elastic Fabric Adapter (EFA), specify ``efa`` or ``efa``. For more information, see [Elastic Fabric Adapter](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide*.
+ // The type of network interface. To create an Elastic Fabric Adapter (EFA), specify ``efa``. For more information, see [Elastic Fabric Adapter](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide*.
// If you are not creating an EFA, specify ``interface`` or omit this parameter.
- // If you specify ``efa-only``, do not assign any IP addresses to the network interface. EFA-only network interfaces do not support IP addresses.
- // Valid values: ``interface`` | ``efa`` | ``efa-only``
+ // Valid values: ``interface`` | ``efa``
InterfaceType pulumi.StringPtrInput `pulumi:"interfaceType"`
// The number of IPv4 prefixes to be automatically assigned to the network interface. You cannot use this option if you use the ``Ipv4Prefix`` option.
Ipv4PrefixCount pulumi.IntPtrInput `pulumi:"ipv4PrefixCount"`
@@ -15323,11 +15302,10 @@ func (o LaunchTemplateNetworkInterfaceOutput) Groups() pulumi.StringArrayOutput
return o.ApplyT(func(v LaunchTemplateNetworkInterface) []string { return v.Groups }).(pulumi.StringArrayOutput)
}
-// The type of network interface. To create an Elastic Fabric Adapter (EFA), specify “efa“ or “efa“. For more information, see [Elastic Fabric Adapter](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide*.
+// The type of network interface. To create an Elastic Fabric Adapter (EFA), specify “efa“. For more information, see [Elastic Fabric Adapter](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/efa.html) in the *Amazon EC2 User Guide*.
//
// If you are not creating an EFA, specify ``interface`` or omit this parameter.
-// If you specify ``efa-only``, do not assign any IP addresses to the network interface. EFA-only network interfaces do not support IP addresses.
-// Valid values: ``interface`` | ``efa`` | ``efa-only``
+// Valid values: ``interface`` | ``efa``
func (o LaunchTemplateNetworkInterfaceOutput) InterfaceType() pulumi.StringPtrOutput {
return o.ApplyT(func(v LaunchTemplateNetworkInterface) *string { return v.InterfaceType }).(pulumi.StringPtrOutput)
}
@@ -16168,6 +16146,7 @@ func (o LaunchTemplatePrivateIpAddArrayOutput) Index(i pulumi.IntInput) LaunchTe
}
type LaunchTemplateReference struct {
+ // The instance family to refer. Ensure that you specify the correct family name. For example, C6i and C6g are valid values, but C6 is not.
InstanceFamily *string `pulumi:"instanceFamily"`
}
@@ -16183,6 +16162,7 @@ type LaunchTemplateReferenceInput interface {
}
type LaunchTemplateReferenceArgs struct {
+ // The instance family to refer. Ensure that you specify the correct family name. For example, C6i and C6g are valid values, but C6 is not.
InstanceFamily pulumi.StringPtrInput `pulumi:"instanceFamily"`
}
@@ -16237,6 +16217,7 @@ func (o LaunchTemplateReferenceOutput) ToLaunchTemplateReferenceOutputWithContex
return o
}
+// The instance family to refer. Ensure that you specify the correct family name. For example, C6i and C6g are valid values, but C6 is not.
func (o LaunchTemplateReferenceOutput) InstanceFamily() pulumi.StringPtrOutput {
return o.ApplyT(func(v LaunchTemplateReference) *string { return v.InstanceFamily }).(pulumi.StringPtrOutput)
}
@@ -16626,8 +16607,7 @@ func (o LaunchTemplateTagArrayOutput) Index(i pulumi.IntInput) LaunchTemplateTag
// Specifies the tags to apply to the launch template during creation.
//
-// To specify the tags for the resources that are created during instance launch, use [AWS::EC2::LaunchTemplate TagSpecification](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-tagspecification.html).
-// ``LaunchTemplateTagSpecification`` is a property of [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html).
+// ``LaunchTemplateTagSpecification`` is a property of [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html).
type LaunchTemplateTagSpecification struct {
// The type of resource. To tag a launch template, ``ResourceType`` must be ``launch-template``.
ResourceType *string `pulumi:"resourceType"`
@@ -16648,8 +16628,7 @@ type LaunchTemplateTagSpecificationInput interface {
// Specifies the tags to apply to the launch template during creation.
//
-// To specify the tags for the resources that are created during instance launch, use [AWS::EC2::LaunchTemplate TagSpecification](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-tagspecification.html).
-// ``LaunchTemplateTagSpecification`` is a property of [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html).
+// ``LaunchTemplateTagSpecification`` is a property of [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html).
type LaunchTemplateTagSpecificationArgs struct {
// The type of resource. To tag a launch template, ``ResourceType`` must be ``launch-template``.
ResourceType pulumi.StringPtrInput `pulumi:"resourceType"`
@@ -16696,8 +16675,7 @@ func (i LaunchTemplateTagSpecificationArray) ToLaunchTemplateTagSpecificationArr
// Specifies the tags to apply to the launch template during creation.
//
-// To specify the tags for the resources that are created during instance launch, use [AWS::EC2::LaunchTemplate TagSpecification](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-tagspecification.html).
-// ``LaunchTemplateTagSpecification`` is a property of [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html).
+// ``LaunchTemplateTagSpecification`` is a property of [AWS::EC2::LaunchTemplate](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-launchtemplate.html).
type LaunchTemplateTagSpecificationOutput struct{ *pulumi.OutputState }
func (LaunchTemplateTagSpecificationOutput) ElementType() reflect.Type {
@@ -23818,7 +23796,7 @@ type SpotFleetInstanceNetworkInterfaceSpecification struct {
NetworkInterfaceId *string `pulumi:"networkInterfaceId"`
// The private IPv4 addresses to assign to the network interface. Only one private IPv4 address can be designated as primary. You cannot specify this option if you're launching more than one instance in a [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) request.
PrivateIpAddresses []SpotFleetPrivateIpAddressSpecification `pulumi:"privateIpAddresses"`
- // The number of secondary private IPv4 addresses. You can't specify this option and specify more than one private IP address using the private IP addresses option. You cannot specify this option if you're launching more than one instance in a [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) request.
+ // The number of secondary private IPv4 addresses. You can’t specify this parameter and also specify a secondary private IP address using the `PrivateIpAddress` parameter.
SecondaryPrivateIpAddressCount *int `pulumi:"secondaryPrivateIpAddressCount"`
// The ID of the subnet associated with the network interface.
SubnetId *string `pulumi:"subnetId"`
@@ -23860,7 +23838,7 @@ type SpotFleetInstanceNetworkInterfaceSpecificationArgs struct {
NetworkInterfaceId pulumi.StringPtrInput `pulumi:"networkInterfaceId"`
// The private IPv4 addresses to assign to the network interface. Only one private IPv4 address can be designated as primary. You cannot specify this option if you're launching more than one instance in a [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) request.
PrivateIpAddresses SpotFleetPrivateIpAddressSpecificationArrayInput `pulumi:"privateIpAddresses"`
- // The number of secondary private IPv4 addresses. You can't specify this option and specify more than one private IP address using the private IP addresses option. You cannot specify this option if you're launching more than one instance in a [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) request.
+ // The number of secondary private IPv4 addresses. You can’t specify this parameter and also specify a secondary private IP address using the `PrivateIpAddress` parameter.
SecondaryPrivateIpAddressCount pulumi.IntPtrInput `pulumi:"secondaryPrivateIpAddressCount"`
// The ID of the subnet associated with the network interface.
SubnetId pulumi.StringPtrInput `pulumi:"subnetId"`
@@ -23972,7 +23950,7 @@ func (o SpotFleetInstanceNetworkInterfaceSpecificationOutput) PrivateIpAddresses
}).(SpotFleetPrivateIpAddressSpecificationArrayOutput)
}
-// The number of secondary private IPv4 addresses. You can't specify this option and specify more than one private IP address using the private IP addresses option. You cannot specify this option if you're launching more than one instance in a [RunInstances](https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RunInstances.html) request.
+// The number of secondary private IPv4 addresses. You can’t specify this parameter and also specify a secondary private IP address using the `PrivateIpAddress` parameter.
func (o SpotFleetInstanceNetworkInterfaceSpecificationOutput) SecondaryPrivateIpAddressCount() pulumi.IntPtrOutput {
return o.ApplyT(func(v SpotFleetInstanceNetworkInterfaceSpecification) *int { return v.SecondaryPrivateIpAddressCount }).(pulumi.IntPtrOutput)
}
@@ -28805,7 +28783,7 @@ type SubnetTag struct {
Value string `pulumi:"value"`
}
-// Specifies the tags to apply to resources that are created during instance launch.
+// Specifies the tags to apply to a resource when the resource is created for the launch template.
//
// ``TagSpecification`` is a property type of [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications). [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications) is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
type TagSpecification struct {
@@ -28827,7 +28805,7 @@ type TagSpecificationInput interface {
ToTagSpecificationOutputWithContext(context.Context) TagSpecificationOutput
}
-// Specifies the tags to apply to resources that are created during instance launch.
+// Specifies the tags to apply to a resource when the resource is created for the launch template.
//
// ``TagSpecification`` is a property type of [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications). [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications) is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
type TagSpecificationArgs struct {
@@ -28875,7 +28853,7 @@ func (i TagSpecificationArray) ToTagSpecificationArrayOutputWithContext(ctx cont
return pulumi.ToOutputWithContext(ctx, i).(TagSpecificationArrayOutput)
}
-// Specifies the tags to apply to resources that are created during instance launch.
+// Specifies the tags to apply to a resource when the resource is created for the launch template.
//
// ``TagSpecification`` is a property type of [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications). [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications) is a property of [AWS::EC2::LaunchTemplate LaunchTemplateData](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html).
type TagSpecificationOutput struct{ *pulumi.OutputState }
diff --git a/sdk/go/aws/ecs/pulumiEnums.go b/sdk/go/aws/ecs/pulumiEnums.go
index 8986b1f9c0..cd02344845 100644
--- a/sdk/go/aws/ecs/pulumiEnums.go
+++ b/sdk/go/aws/ecs/pulumiEnums.go
@@ -2368,7 +2368,7 @@ func (in *taskDefinitionAuthorizationConfigIamPtr) ToTaskDefinitionAuthorization
return pulumi.ToOutputWithContext(ctx, in).(TaskDefinitionAuthorizationConfigIamPtrOutput)
}
-// Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is `enabled` . If you set the value for a container as `disabled` , Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide* .
+// Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is “enabled“. If you set the value for a container as “disabled“, Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide*.
type TaskDefinitionContainerDefinitionVersionConsistency string
const (
diff --git a/sdk/go/aws/ecs/pulumiTypes.go b/sdk/go/aws/ecs/pulumiTypes.go
index 013c31cc6e..789d5a804a 100644
--- a/sdk/go/aws/ecs/pulumiTypes.go
+++ b/sdk/go/aws/ecs/pulumiTypes.go
@@ -6182,7 +6182,7 @@ type TaskDefinitionContainerDefinition struct {
//
// This parameter is not supported for Windows containers.
User *string `pulumi:"user"`
- // Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is `enabled` . If you set the value for a container as `disabled` , Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide* .
+ // Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is ``enabled``. If you set the value for a container as ``disabled``, Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide*.
VersionConsistency *TaskDefinitionContainerDefinitionVersionConsistency `pulumi:"versionConsistency"`
// Data volumes to mount from another container. This parameter maps to ``VolumesFrom`` in the docker container create command and the ``--volumes-from`` option to docker run.
VolumesFrom []TaskDefinitionVolumeFrom `pulumi:"volumesFrom"`
@@ -6368,7 +6368,7 @@ type TaskDefinitionContainerDefinitionArgs struct {
//
// This parameter is not supported for Windows containers.
User pulumi.StringPtrInput `pulumi:"user"`
- // Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is `enabled` . If you set the value for a container as `disabled` , Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide* .
+ // Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is ``enabled``. If you set the value for a container as ``disabled``, Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide*.
VersionConsistency TaskDefinitionContainerDefinitionVersionConsistencyPtrInput `pulumi:"versionConsistency"`
// Data volumes to mount from another container. This parameter maps to ``VolumesFrom`` in the docker container create command and the ``--volumes-from`` option to docker run.
VolumesFrom TaskDefinitionVolumeFromArrayInput `pulumi:"volumesFrom"`
@@ -6742,7 +6742,7 @@ func (o TaskDefinitionContainerDefinitionOutput) User() pulumi.StringPtrOutput {
return o.ApplyT(func(v TaskDefinitionContainerDefinition) *string { return v.User }).(pulumi.StringPtrOutput)
}
-// Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is `enabled` . If you set the value for a container as `disabled` , Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide* .
+// Specifies whether Amazon ECS will resolve the container image tag provided in the container definition to an image digest. By default, the value is “enabled“. If you set the value for a container as “disabled“, Amazon ECS will not resolve the provided container image tag to a digest and will use the original image URI specified in the container definition for deployment. For more information about container image resolution, see [Container image resolution](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/deployment-type-ecs.html#deployment-container-image-stability) in the *Amazon ECS Developer Guide*.
func (o TaskDefinitionContainerDefinitionOutput) VersionConsistency() TaskDefinitionContainerDefinitionVersionConsistencyPtrOutput {
return o.ApplyT(func(v TaskDefinitionContainerDefinition) *TaskDefinitionContainerDefinitionVersionConsistency {
return v.VersionConsistency
diff --git a/sdk/go/aws/ecs/taskDefinition.go b/sdk/go/aws/ecs/taskDefinition.go
index 4dfc2bc740..d223a9b83e 100644
--- a/sdk/go/aws/ecs/taskDefinition.go
+++ b/sdk/go/aws/ecs/taskDefinition.go
@@ -301,7 +301,8 @@ type TaskDefinition struct {
// This option requires Linux platform ``1.4.0`` or later.
// + 16384 (16vCPU) - Available ``memory`` values: 32GB and 120 GB in 8 GB increments
// This option requires Linux platform ``1.4.0`` or later.
- Cpu pulumi.StringPtrOutput `pulumi:"cpu"`
+ Cpu pulumi.StringPtrOutput `pulumi:"cpu"`
+ EnableFaultInjection pulumi.BoolPtrOutput `pulumi:"enableFaultInjection"`
// The ephemeral storage settings to use for tasks run with the task definition.
EphemeralStorage TaskDefinitionEphemeralStoragePtrOutput `pulumi:"ephemeralStorage"`
// The Amazon Resource Name (ARN) of the task execution role that grants the Amazon ECS container agent permission to make AWS API calls on your behalf. For informationabout the required IAM roles for Amazon ECS, see [IAM roles for Amazon ECS](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/security-ecs-iam-role-overview.html) in the *Amazon Elastic Container Service Developer Guide*.
@@ -389,6 +390,7 @@ func NewTaskDefinition(ctx *pulumi.Context,
replaceOnChanges := pulumi.ReplaceOnChanges([]string{
"containerDefinitions[*]",
"cpu",
+ "enableFaultInjection",
"ephemeralStorage",
"executionRoleArn",
"family",
@@ -452,7 +454,8 @@ type taskDefinitionArgs struct {
// This option requires Linux platform ``1.4.0`` or later.
// + 16384 (16vCPU) - Available ``memory`` values: 32GB and 120 GB in 8 GB increments
// This option requires Linux platform ``1.4.0`` or later.
- Cpu *string `pulumi:"cpu"`
+ Cpu *string `pulumi:"cpu"`
+ EnableFaultInjection *bool `pulumi:"enableFaultInjection"`
// The ephemeral storage settings to use for tasks run with the task definition.
EphemeralStorage *TaskDefinitionEphemeralStorage `pulumi:"ephemeralStorage"`
// The Amazon Resource Name (ARN) of the task execution role that grants the Amazon ECS container agent permission to make AWS API calls on your behalf. For informationabout the required IAM roles for Amazon ECS, see [IAM roles for Amazon ECS](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/security-ecs-iam-role-overview.html) in the *Amazon Elastic Container Service Developer Guide*.
@@ -544,7 +547,8 @@ type TaskDefinitionArgs struct {
// This option requires Linux platform ``1.4.0`` or later.
// + 16384 (16vCPU) - Available ``memory`` values: 32GB and 120 GB in 8 GB increments
// This option requires Linux platform ``1.4.0`` or later.
- Cpu pulumi.StringPtrInput
+ Cpu pulumi.StringPtrInput
+ EnableFaultInjection pulumi.BoolPtrInput
// The ephemeral storage settings to use for tasks run with the task definition.
EphemeralStorage TaskDefinitionEphemeralStoragePtrInput
// The Amazon Resource Name (ARN) of the task execution role that grants the Amazon ECS container agent permission to make AWS API calls on your behalf. For informationabout the required IAM roles for Amazon ECS, see [IAM roles for Amazon ECS](https://docs.aws.amazon.com/AmazonECS/latest/developerguide/security-ecs-iam-role-overview.html) in the *Amazon Elastic Container Service Developer Guide*.
@@ -679,6 +683,10 @@ func (o TaskDefinitionOutput) Cpu() pulumi.StringPtrOutput {
return o.ApplyT(func(v *TaskDefinition) pulumi.StringPtrOutput { return v.Cpu }).(pulumi.StringPtrOutput)
}
+func (o TaskDefinitionOutput) EnableFaultInjection() pulumi.BoolPtrOutput {
+ return o.ApplyT(func(v *TaskDefinition) pulumi.BoolPtrOutput { return v.EnableFaultInjection }).(pulumi.BoolPtrOutput)
+}
+
// The ephemeral storage settings to use for tasks run with the task definition.
func (o TaskDefinitionOutput) EphemeralStorage() TaskDefinitionEphemeralStoragePtrOutput {
return o.ApplyT(func(v *TaskDefinition) TaskDefinitionEphemeralStoragePtrOutput { return v.EphemeralStorage }).(TaskDefinitionEphemeralStoragePtrOutput)
diff --git a/sdk/go/aws/events/pulumiTypes.go b/sdk/go/aws/events/pulumiTypes.go
index cc8877a7f2..bc66a605ce 100644
--- a/sdk/go/aws/events/pulumiTypes.go
+++ b/sdk/go/aws/events/pulumiTypes.go
@@ -173,7 +173,10 @@ type ConnectionAuthParameters struct {
// The API Key parameters to use for authorization.
ApiKeyAuthParameters *ConnectionApiKeyAuthParameters `pulumi:"apiKeyAuthParameters"`
// The authorization parameters for Basic authorization.
- BasicAuthParameters *ConnectionBasicAuthParameters `pulumi:"basicAuthParameters"`
+ BasicAuthParameters *ConnectionBasicAuthParameters `pulumi:"basicAuthParameters"`
+ // For private OAuth authentication endpoints. The parameters EventBridge uses to authenticate against the endpoint.
+ //
+ // For more information, see [Authorization methods for connections](https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-target-connection-auth.html) in the **Amazon EventBridge User Guide** .
ConnectivityParameters *ConnectionConnectivityParameters `pulumi:"connectivityParameters"`
// Additional parameters for the connection that are passed through with every invocation to the HTTP endpoint.
InvocationHttpParameters *ConnectionHttpParameters `pulumi:"invocationHttpParameters"`
@@ -196,7 +199,10 @@ type ConnectionAuthParametersArgs struct {
// The API Key parameters to use for authorization.
ApiKeyAuthParameters ConnectionApiKeyAuthParametersPtrInput `pulumi:"apiKeyAuthParameters"`
// The authorization parameters for Basic authorization.
- BasicAuthParameters ConnectionBasicAuthParametersPtrInput `pulumi:"basicAuthParameters"`
+ BasicAuthParameters ConnectionBasicAuthParametersPtrInput `pulumi:"basicAuthParameters"`
+ // For private OAuth authentication endpoints. The parameters EventBridge uses to authenticate against the endpoint.
+ //
+ // For more information, see [Authorization methods for connections](https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-target-connection-auth.html) in the **Amazon EventBridge User Guide** .
ConnectivityParameters ConnectionConnectivityParametersPtrInput `pulumi:"connectivityParameters"`
// Additional parameters for the connection that are passed through with every invocation to the HTTP endpoint.
InvocationHttpParameters ConnectionHttpParametersPtrInput `pulumi:"invocationHttpParameters"`
@@ -291,6 +297,9 @@ func (o ConnectionAuthParametersOutput) BasicAuthParameters() ConnectionBasicAut
return o.ApplyT(func(v ConnectionAuthParameters) *ConnectionBasicAuthParameters { return v.BasicAuthParameters }).(ConnectionBasicAuthParametersPtrOutput)
}
+// For private OAuth authentication endpoints. The parameters EventBridge uses to authenticate against the endpoint.
+//
+// For more information, see [Authorization methods for connections](https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-target-connection-auth.html) in the **Amazon EventBridge User Guide** .
func (o ConnectionAuthParametersOutput) ConnectivityParameters() ConnectionConnectivityParametersPtrOutput {
return o.ApplyT(func(v ConnectionAuthParameters) *ConnectionConnectivityParameters { return v.ConnectivityParameters }).(ConnectionConnectivityParametersPtrOutput)
}
@@ -349,6 +358,9 @@ func (o ConnectionAuthParametersPtrOutput) BasicAuthParameters() ConnectionBasic
}).(ConnectionBasicAuthParametersPtrOutput)
}
+// For private OAuth authentication endpoints. The parameters EventBridge uses to authenticate against the endpoint.
+//
+// For more information, see [Authorization methods for connections](https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-target-connection-auth.html) in the **Amazon EventBridge User Guide** .
func (o ConnectionAuthParametersPtrOutput) ConnectivityParameters() ConnectionConnectivityParametersPtrOutput {
return o.ApplyT(func(v *ConnectionAuthParameters) *ConnectionConnectivityParameters {
if v == nil {
@@ -691,6 +703,7 @@ func (o ConnectionClientParametersPtrOutput) ClientSecret() pulumi.StringPtrOutp
}
type ConnectionConnectivityParameters struct {
+ // The parameters for EventBridge to use when invoking the resource endpoint.
ResourceParameters ConnectionResourceParameters `pulumi:"resourceParameters"`
}
@@ -706,6 +719,7 @@ type ConnectionConnectivityParametersInput interface {
}
type ConnectionConnectivityParametersArgs struct {
+ // The parameters for EventBridge to use when invoking the resource endpoint.
ResourceParameters ConnectionResourceParametersInput `pulumi:"resourceParameters"`
}
@@ -786,6 +800,7 @@ func (o ConnectionConnectivityParametersOutput) ToConnectionConnectivityParamete
}).(ConnectionConnectivityParametersPtrOutput)
}
+// The parameters for EventBridge to use when invoking the resource endpoint.
func (o ConnectionConnectivityParametersOutput) ResourceParameters() ConnectionResourceParametersOutput {
return o.ApplyT(func(v ConnectionConnectivityParameters) ConnectionResourceParameters { return v.ResourceParameters }).(ConnectionResourceParametersOutput)
}
@@ -814,6 +829,7 @@ func (o ConnectionConnectivityParametersPtrOutput) Elem() ConnectionConnectivity
}).(ConnectionConnectivityParametersOutput)
}
+// The parameters for EventBridge to use when invoking the resource endpoint.
func (o ConnectionConnectivityParametersPtrOutput) ResourceParameters() ConnectionResourceParametersPtrOutput {
return o.ApplyT(func(v *ConnectionConnectivityParameters) *ConnectionResourceParameters {
if v == nil {
@@ -1308,8 +1324,12 @@ func (o ConnectionParameterArrayOutput) Index(i pulumi.IntInput) ConnectionParam
}
type ConnectionResourceParameters struct {
- ResourceAssociationArn *string `pulumi:"resourceAssociationArn"`
- ResourceConfigurationArn string `pulumi:"resourceConfigurationArn"`
+ // For connections to private APIs, the Amazon Resource Name (ARN) of the resource association EventBridge created between the connection and the private API's resource configuration.
+ //
+ // > The value of this property is set by EventBridge . Any value you specify in your template is ignored.
+ ResourceAssociationArn *string `pulumi:"resourceAssociationArn"`
+ // The Amazon Resource Name (ARN) of the Amazon VPC Lattice resource configuration for the resource endpoint.
+ ResourceConfigurationArn string `pulumi:"resourceConfigurationArn"`
}
// ConnectionResourceParametersInput is an input type that accepts ConnectionResourceParametersArgs and ConnectionResourceParametersOutput values.
@@ -1324,8 +1344,12 @@ type ConnectionResourceParametersInput interface {
}
type ConnectionResourceParametersArgs struct {
- ResourceAssociationArn pulumi.StringPtrInput `pulumi:"resourceAssociationArn"`
- ResourceConfigurationArn pulumi.StringInput `pulumi:"resourceConfigurationArn"`
+ // For connections to private APIs, the Amazon Resource Name (ARN) of the resource association EventBridge created between the connection and the private API's resource configuration.
+ //
+ // > The value of this property is set by EventBridge . Any value you specify in your template is ignored.
+ ResourceAssociationArn pulumi.StringPtrInput `pulumi:"resourceAssociationArn"`
+ // The Amazon Resource Name (ARN) of the Amazon VPC Lattice resource configuration for the resource endpoint.
+ ResourceConfigurationArn pulumi.StringInput `pulumi:"resourceConfigurationArn"`
}
func (ConnectionResourceParametersArgs) ElementType() reflect.Type {
@@ -1405,10 +1429,14 @@ func (o ConnectionResourceParametersOutput) ToConnectionResourceParametersPtrOut
}).(ConnectionResourceParametersPtrOutput)
}
+// For connections to private APIs, the Amazon Resource Name (ARN) of the resource association EventBridge created between the connection and the private API's resource configuration.
+//
+// > The value of this property is set by EventBridge . Any value you specify in your template is ignored.
func (o ConnectionResourceParametersOutput) ResourceAssociationArn() pulumi.StringPtrOutput {
return o.ApplyT(func(v ConnectionResourceParameters) *string { return v.ResourceAssociationArn }).(pulumi.StringPtrOutput)
}
+// The Amazon Resource Name (ARN) of the Amazon VPC Lattice resource configuration for the resource endpoint.
func (o ConnectionResourceParametersOutput) ResourceConfigurationArn() pulumi.StringOutput {
return o.ApplyT(func(v ConnectionResourceParameters) string { return v.ResourceConfigurationArn }).(pulumi.StringOutput)
}
@@ -1437,6 +1465,9 @@ func (o ConnectionResourceParametersPtrOutput) Elem() ConnectionResourceParamete
}).(ConnectionResourceParametersOutput)
}
+// For connections to private APIs, the Amazon Resource Name (ARN) of the resource association EventBridge created between the connection and the private API's resource configuration.
+//
+// > The value of this property is set by EventBridge . Any value you specify in your template is ignored.
func (o ConnectionResourceParametersPtrOutput) ResourceAssociationArn() pulumi.StringPtrOutput {
return o.ApplyT(func(v *ConnectionResourceParameters) *string {
if v == nil {
@@ -1446,6 +1477,7 @@ func (o ConnectionResourceParametersPtrOutput) ResourceAssociationArn() pulumi.S
}).(pulumi.StringPtrOutput)
}
+// The Amazon Resource Name (ARN) of the Amazon VPC Lattice resource configuration for the resource endpoint.
func (o ConnectionResourceParametersPtrOutput) ResourceConfigurationArn() pulumi.StringPtrOutput {
return o.ApplyT(func(v *ConnectionResourceParameters) *string {
if v == nil {
@@ -2198,6 +2230,7 @@ type EventBusTag struct {
// The private resource the HTTP request will be sent to.
type InvocationConnectivityParametersProperties struct {
+ // The parameters for EventBridge to use when invoking the resource endpoint.
ResourceParameters ConnectionResourceParameters `pulumi:"resourceParameters"`
}
@@ -2214,6 +2247,7 @@ type InvocationConnectivityParametersPropertiesInput interface {
// The private resource the HTTP request will be sent to.
type InvocationConnectivityParametersPropertiesArgs struct {
+ // The parameters for EventBridge to use when invoking the resource endpoint.
ResourceParameters ConnectionResourceParametersInput `pulumi:"resourceParameters"`
}
@@ -2295,6 +2329,7 @@ func (o InvocationConnectivityParametersPropertiesOutput) ToInvocationConnectivi
}).(InvocationConnectivityParametersPropertiesPtrOutput)
}
+// The parameters for EventBridge to use when invoking the resource endpoint.
func (o InvocationConnectivityParametersPropertiesOutput) ResourceParameters() ConnectionResourceParametersOutput {
return o.ApplyT(func(v InvocationConnectivityParametersProperties) ConnectionResourceParameters {
return v.ResourceParameters
@@ -2325,6 +2360,7 @@ func (o InvocationConnectivityParametersPropertiesPtrOutput) Elem() InvocationCo
}).(InvocationConnectivityParametersPropertiesOutput)
}
+// The parameters for EventBridge to use when invoking the resource endpoint.
func (o InvocationConnectivityParametersPropertiesPtrOutput) ResourceParameters() ConnectionResourceParametersPtrOutput {
return o.ApplyT(func(v *InvocationConnectivityParametersProperties) *ConnectionResourceParameters {
if v == nil {
diff --git a/sdk/go/aws/internetmonitor/getMonitor.go b/sdk/go/aws/internetmonitor/getMonitor.go
index c9b843573a..cdd73b2fae 100644
--- a/sdk/go/aws/internetmonitor/getMonitor.go
+++ b/sdk/go/aws/internetmonitor/getMonitor.go
@@ -33,7 +33,7 @@ type LookupMonitorResult struct {
CreatedAt *string `pulumi:"createdAt"`
// A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.
//
- // Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
+ // Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
//
// You can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.
//
@@ -118,7 +118,7 @@ func (o LookupMonitorResultOutput) CreatedAt() pulumi.StringPtrOutput {
// A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.
//
-// Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
+// Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
//
// You can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.
//
diff --git a/sdk/go/aws/internetmonitor/monitor.go b/sdk/go/aws/internetmonitor/monitor.go
index 2a1efc2e0c..836327999a 100644
--- a/sdk/go/aws/internetmonitor/monitor.go
+++ b/sdk/go/aws/internetmonitor/monitor.go
@@ -20,7 +20,7 @@ type Monitor struct {
CreatedAt pulumi.StringOutput `pulumi:"createdAt"`
// A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.
//
- // Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
+ // Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
//
// You can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.
//
@@ -120,7 +120,7 @@ func (MonitorState) ElementType() reflect.Type {
type monitorArgs struct {
// A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.
//
- // Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
+ // Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
//
// You can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.
//
@@ -170,7 +170,7 @@ type monitorArgs struct {
type MonitorArgs struct {
// A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.
//
- // Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
+ // Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
//
// You can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.
//
@@ -260,7 +260,7 @@ func (o MonitorOutput) CreatedAt() pulumi.StringOutput {
// A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.
//
-// Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
+// Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
//
// You can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.
//
diff --git a/sdk/go/aws/invoicing/getInvoiceUnit.go b/sdk/go/aws/invoicing/getInvoiceUnit.go
index 2064599ac3..9b8246f7ee 100644
--- a/sdk/go/aws/invoicing/getInvoiceUnit.go
+++ b/sdk/go/aws/invoicing/getInvoiceUnit.go
@@ -24,16 +24,23 @@ func LookupInvoiceUnit(ctx *pulumi.Context, args *LookupInvoiceUnitArgs, opts ..
}
type LookupInvoiceUnitArgs struct {
+ // The ARN to identify an invoice unit. This information can't be modified or deleted.
InvoiceUnitArn string `pulumi:"invoiceUnitArn"`
}
type LookupInvoiceUnitResult struct {
- Description *string `pulumi:"description"`
- InvoiceUnitArn *string `pulumi:"invoiceUnitArn"`
- LastModified *float64 `pulumi:"lastModified"`
- ResourceTags []aws.Tag `pulumi:"resourceTags"`
- Rule *InvoiceUnitRule `pulumi:"rule"`
- TaxInheritanceDisabled *bool `pulumi:"taxInheritanceDisabled"`
+ // The assigned description for an invoice unit. This information can't be modified or deleted.
+ Description *string `pulumi:"description"`
+ // The ARN to identify an invoice unit. This information can't be modified or deleted.
+ InvoiceUnitArn *string `pulumi:"invoiceUnitArn"`
+ // The last time the invoice unit was updated. This is important to determine the version of invoice unit configuration used to create the invoices. Any invoice created after this modified time will use this invoice unit configuration.
+ LastModified *float64 `pulumi:"lastModified"`
+ // The tag structure that contains a tag key and value.
+ ResourceTags []aws.Tag `pulumi:"resourceTags"`
+ // An `InvoiceUnitRule` object used the categorize invoice units.
+ Rule *InvoiceUnitRule `pulumi:"rule"`
+ // Whether the invoice unit based tax inheritance is/ should be enabled or disabled.
+ TaxInheritanceDisabled *bool `pulumi:"taxInheritanceDisabled"`
}
func LookupInvoiceUnitOutput(ctx *pulumi.Context, args LookupInvoiceUnitOutputArgs, opts ...pulumi.InvokeOption) LookupInvoiceUnitResultOutput {
@@ -56,6 +63,7 @@ func LookupInvoiceUnitOutput(ctx *pulumi.Context, args LookupInvoiceUnitOutputAr
}
type LookupInvoiceUnitOutputArgs struct {
+ // The ARN to identify an invoice unit. This information can't be modified or deleted.
InvoiceUnitArn pulumi.StringInput `pulumi:"invoiceUnitArn"`
}
@@ -77,26 +85,32 @@ func (o LookupInvoiceUnitResultOutput) ToLookupInvoiceUnitResultOutputWithContex
return o
}
+// The assigned description for an invoice unit. This information can't be modified or deleted.
func (o LookupInvoiceUnitResultOutput) Description() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupInvoiceUnitResult) *string { return v.Description }).(pulumi.StringPtrOutput)
}
+// The ARN to identify an invoice unit. This information can't be modified or deleted.
func (o LookupInvoiceUnitResultOutput) InvoiceUnitArn() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupInvoiceUnitResult) *string { return v.InvoiceUnitArn }).(pulumi.StringPtrOutput)
}
+// The last time the invoice unit was updated. This is important to determine the version of invoice unit configuration used to create the invoices. Any invoice created after this modified time will use this invoice unit configuration.
func (o LookupInvoiceUnitResultOutput) LastModified() pulumi.Float64PtrOutput {
return o.ApplyT(func(v LookupInvoiceUnitResult) *float64 { return v.LastModified }).(pulumi.Float64PtrOutput)
}
+// The tag structure that contains a tag key and value.
func (o LookupInvoiceUnitResultOutput) ResourceTags() aws.TagArrayOutput {
return o.ApplyT(func(v LookupInvoiceUnitResult) []aws.Tag { return v.ResourceTags }).(aws.TagArrayOutput)
}
+// An `InvoiceUnitRule` object used the categorize invoice units.
func (o LookupInvoiceUnitResultOutput) Rule() InvoiceUnitRulePtrOutput {
return o.ApplyT(func(v LookupInvoiceUnitResult) *InvoiceUnitRule { return v.Rule }).(InvoiceUnitRulePtrOutput)
}
+// Whether the invoice unit based tax inheritance is/ should be enabled or disabled.
func (o LookupInvoiceUnitResultOutput) TaxInheritanceDisabled() pulumi.BoolPtrOutput {
return o.ApplyT(func(v LookupInvoiceUnitResult) *bool { return v.TaxInheritanceDisabled }).(pulumi.BoolPtrOutput)
}
diff --git a/sdk/go/aws/invoicing/invoiceUnit.go b/sdk/go/aws/invoicing/invoiceUnit.go
index a677e1f30c..a15d8230b5 100644
--- a/sdk/go/aws/invoicing/invoiceUnit.go
+++ b/sdk/go/aws/invoicing/invoiceUnit.go
@@ -17,14 +17,22 @@ import (
type InvoiceUnit struct {
pulumi.CustomResourceState
- Description pulumi.StringPtrOutput `pulumi:"description"`
- InvoiceReceiver pulumi.StringOutput `pulumi:"invoiceReceiver"`
- InvoiceUnitArn pulumi.StringOutput `pulumi:"invoiceUnitArn"`
- LastModified pulumi.Float64Output `pulumi:"lastModified"`
- Name pulumi.StringOutput `pulumi:"name"`
- ResourceTags aws.TagArrayOutput `pulumi:"resourceTags"`
- Rule InvoiceUnitRuleOutput `pulumi:"rule"`
- TaxInheritanceDisabled pulumi.BoolPtrOutput `pulumi:"taxInheritanceDisabled"`
+ // The assigned description for an invoice unit. This information can't be modified or deleted.
+ Description pulumi.StringPtrOutput `pulumi:"description"`
+ // The account that receives invoices related to the invoice unit.
+ InvoiceReceiver pulumi.StringOutput `pulumi:"invoiceReceiver"`
+ // The ARN to identify an invoice unit. This information can't be modified or deleted.
+ InvoiceUnitArn pulumi.StringOutput `pulumi:"invoiceUnitArn"`
+ // The last time the invoice unit was updated. This is important to determine the version of invoice unit configuration used to create the invoices. Any invoice created after this modified time will use this invoice unit configuration.
+ LastModified pulumi.Float64Output `pulumi:"lastModified"`
+ // A unique name that is distinctive within your AWS .
+ Name pulumi.StringOutput `pulumi:"name"`
+ // The tag structure that contains a tag key and value.
+ ResourceTags aws.TagArrayOutput `pulumi:"resourceTags"`
+ // An `InvoiceUnitRule` object used the categorize invoice units.
+ Rule InvoiceUnitRuleOutput `pulumi:"rule"`
+ // Whether the invoice unit based tax inheritance is/ should be enabled or disabled.
+ TaxInheritanceDisabled pulumi.BoolPtrOutput `pulumi:"taxInheritanceDisabled"`
}
// NewInvoiceUnit registers a new resource with the given unique name, arguments, and options.
@@ -78,21 +86,33 @@ func (InvoiceUnitState) ElementType() reflect.Type {
}
type invoiceUnitArgs struct {
- Description *string `pulumi:"description"`
- InvoiceReceiver string `pulumi:"invoiceReceiver"`
- Name *string `pulumi:"name"`
- ResourceTags []aws.Tag `pulumi:"resourceTags"`
- Rule InvoiceUnitRule `pulumi:"rule"`
- TaxInheritanceDisabled *bool `pulumi:"taxInheritanceDisabled"`
+ // The assigned description for an invoice unit. This information can't be modified or deleted.
+ Description *string `pulumi:"description"`
+ // The account that receives invoices related to the invoice unit.
+ InvoiceReceiver string `pulumi:"invoiceReceiver"`
+ // A unique name that is distinctive within your AWS .
+ Name *string `pulumi:"name"`
+ // The tag structure that contains a tag key and value.
+ ResourceTags []aws.Tag `pulumi:"resourceTags"`
+ // An `InvoiceUnitRule` object used the categorize invoice units.
+ Rule InvoiceUnitRule `pulumi:"rule"`
+ // Whether the invoice unit based tax inheritance is/ should be enabled or disabled.
+ TaxInheritanceDisabled *bool `pulumi:"taxInheritanceDisabled"`
}
// The set of arguments for constructing a InvoiceUnit resource.
type InvoiceUnitArgs struct {
- Description pulumi.StringPtrInput
- InvoiceReceiver pulumi.StringInput
- Name pulumi.StringPtrInput
- ResourceTags aws.TagArrayInput
- Rule InvoiceUnitRuleInput
+ // The assigned description for an invoice unit. This information can't be modified or deleted.
+ Description pulumi.StringPtrInput
+ // The account that receives invoices related to the invoice unit.
+ InvoiceReceiver pulumi.StringInput
+ // A unique name that is distinctive within your AWS .
+ Name pulumi.StringPtrInput
+ // The tag structure that contains a tag key and value.
+ ResourceTags aws.TagArrayInput
+ // An `InvoiceUnitRule` object used the categorize invoice units.
+ Rule InvoiceUnitRuleInput
+ // Whether the invoice unit based tax inheritance is/ should be enabled or disabled.
TaxInheritanceDisabled pulumi.BoolPtrInput
}
@@ -133,34 +153,42 @@ func (o InvoiceUnitOutput) ToInvoiceUnitOutputWithContext(ctx context.Context) I
return o
}
+// The assigned description for an invoice unit. This information can't be modified or deleted.
func (o InvoiceUnitOutput) Description() pulumi.StringPtrOutput {
return o.ApplyT(func(v *InvoiceUnit) pulumi.StringPtrOutput { return v.Description }).(pulumi.StringPtrOutput)
}
+// The account that receives invoices related to the invoice unit.
func (o InvoiceUnitOutput) InvoiceReceiver() pulumi.StringOutput {
return o.ApplyT(func(v *InvoiceUnit) pulumi.StringOutput { return v.InvoiceReceiver }).(pulumi.StringOutput)
}
+// The ARN to identify an invoice unit. This information can't be modified or deleted.
func (o InvoiceUnitOutput) InvoiceUnitArn() pulumi.StringOutput {
return o.ApplyT(func(v *InvoiceUnit) pulumi.StringOutput { return v.InvoiceUnitArn }).(pulumi.StringOutput)
}
+// The last time the invoice unit was updated. This is important to determine the version of invoice unit configuration used to create the invoices. Any invoice created after this modified time will use this invoice unit configuration.
func (o InvoiceUnitOutput) LastModified() pulumi.Float64Output {
return o.ApplyT(func(v *InvoiceUnit) pulumi.Float64Output { return v.LastModified }).(pulumi.Float64Output)
}
+// A unique name that is distinctive within your AWS .
func (o InvoiceUnitOutput) Name() pulumi.StringOutput {
return o.ApplyT(func(v *InvoiceUnit) pulumi.StringOutput { return v.Name }).(pulumi.StringOutput)
}
+// The tag structure that contains a tag key and value.
func (o InvoiceUnitOutput) ResourceTags() aws.TagArrayOutput {
return o.ApplyT(func(v *InvoiceUnit) aws.TagArrayOutput { return v.ResourceTags }).(aws.TagArrayOutput)
}
+// An `InvoiceUnitRule` object used the categorize invoice units.
func (o InvoiceUnitOutput) Rule() InvoiceUnitRuleOutput {
return o.ApplyT(func(v *InvoiceUnit) InvoiceUnitRuleOutput { return v.Rule }).(InvoiceUnitRuleOutput)
}
+// Whether the invoice unit based tax inheritance is/ should be enabled or disabled.
func (o InvoiceUnitOutput) TaxInheritanceDisabled() pulumi.BoolPtrOutput {
return o.ApplyT(func(v *InvoiceUnit) pulumi.BoolPtrOutput { return v.TaxInheritanceDisabled }).(pulumi.BoolPtrOutput)
}
diff --git a/sdk/go/aws/invoicing/pulumiTypes.go b/sdk/go/aws/invoicing/pulumiTypes.go
index 6c94211112..834d6fe82c 100644
--- a/sdk/go/aws/invoicing/pulumiTypes.go
+++ b/sdk/go/aws/invoicing/pulumiTypes.go
@@ -19,6 +19,7 @@ type InvoiceUnitResourceTag struct {
}
type InvoiceUnitRule struct {
+ // The list of `LINKED_ACCOUNT` IDs where charges are included within the invoice unit.
LinkedAccounts []string `pulumi:"linkedAccounts"`
}
@@ -34,6 +35,7 @@ type InvoiceUnitRuleInput interface {
}
type InvoiceUnitRuleArgs struct {
+ // The list of `LINKED_ACCOUNT` IDs where charges are included within the invoice unit.
LinkedAccounts pulumi.StringArrayInput `pulumi:"linkedAccounts"`
}
@@ -63,6 +65,7 @@ func (o InvoiceUnitRuleOutput) ToInvoiceUnitRuleOutputWithContext(ctx context.Co
return o
}
+// The list of `LINKED_ACCOUNT` IDs where charges are included within the invoice unit.
func (o InvoiceUnitRuleOutput) LinkedAccounts() pulumi.StringArrayOutput {
return o.ApplyT(func(v InvoiceUnitRule) []string { return v.LinkedAccounts }).(pulumi.StringArrayOutput)
}
@@ -91,6 +94,7 @@ func (o InvoiceUnitRulePtrOutput) Elem() InvoiceUnitRuleOutput {
}).(InvoiceUnitRuleOutput)
}
+// The list of `LINKED_ACCOUNT` IDs where charges are included within the invoice unit.
func (o InvoiceUnitRulePtrOutput) LinkedAccounts() pulumi.StringArrayOutput {
return o.ApplyT(func(v *InvoiceUnitRule) []string {
if v == nil {
diff --git a/sdk/go/aws/iot/command.go b/sdk/go/aws/iot/command.go
new file mode 100644
index 0000000000..95c726020c
--- /dev/null
+++ b/sdk/go/aws/iot/command.go
@@ -0,0 +1,254 @@
+// Code generated by pulumi-language-go DO NOT EDIT.
+// *** WARNING: Do not edit by hand unless you're certain you know what you are doing! ***
+
+package iot
+
+import (
+ "context"
+ "reflect"
+
+ "errors"
+ "github.com/pulumi/pulumi-aws-native/sdk/go/aws"
+ "github.com/pulumi/pulumi-aws-native/sdk/go/aws/internal"
+ "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
+)
+
+// Represents the resource definition of AWS IoT Command.
+type Command struct {
+ pulumi.CustomResourceState
+
+ // The Amazon Resource Name (ARN) of the command.
+ CommandArn pulumi.StringOutput `pulumi:"commandArn"`
+ // The unique identifier for the command.
+ CommandId pulumi.StringOutput `pulumi:"commandId"`
+ // The date and time when the command was created.
+ CreatedAt pulumi.StringPtrOutput `pulumi:"createdAt"`
+ // A flag indicating whether the command is deprecated.
+ Deprecated pulumi.BoolPtrOutput `pulumi:"deprecated"`
+ // The description of the command.
+ Description pulumi.StringPtrOutput `pulumi:"description"`
+ // The display name for the command.
+ DisplayName pulumi.StringPtrOutput `pulumi:"displayName"`
+ // The date and time when the command was last updated.
+ LastUpdatedAt pulumi.StringPtrOutput `pulumi:"lastUpdatedAt"`
+ // The list of mandatory parameters for the command.
+ MandatoryParameters CommandParameterArrayOutput `pulumi:"mandatoryParameters"`
+ // The namespace to which the command belongs.
+ Namespace CommandNamespacePtrOutput `pulumi:"namespace"`
+ // The payload associated with the command.
+ Payload CommandPayloadPtrOutput `pulumi:"payload"`
+ // A flag indicating whether the command is pending deletion.
+ PendingDeletion pulumi.BoolPtrOutput `pulumi:"pendingDeletion"`
+ // The customer role associated with the command.
+ RoleArn pulumi.StringPtrOutput `pulumi:"roleArn"`
+ // The tags to be associated with the command.
+ Tags aws.TagArrayOutput `pulumi:"tags"`
+}
+
+// NewCommand registers a new resource with the given unique name, arguments, and options.
+func NewCommand(ctx *pulumi.Context,
+ name string, args *CommandArgs, opts ...pulumi.ResourceOption) (*Command, error) {
+ if args == nil {
+ return nil, errors.New("missing one or more required arguments")
+ }
+
+ if args.CommandId == nil {
+ return nil, errors.New("invalid value for required argument 'CommandId'")
+ }
+ replaceOnChanges := pulumi.ReplaceOnChanges([]string{
+ "commandId",
+ })
+ opts = append(opts, replaceOnChanges)
+ opts = internal.PkgResourceDefaultOpts(opts)
+ var resource Command
+ err := ctx.RegisterResource("aws-native:iot:Command", name, args, &resource, opts...)
+ if err != nil {
+ return nil, err
+ }
+ return &resource, nil
+}
+
+// GetCommand gets an existing Command resource's state with the given name, ID, and optional
+// state properties that are used to uniquely qualify the lookup (nil if not required).
+func GetCommand(ctx *pulumi.Context,
+ name string, id pulumi.IDInput, state *CommandState, opts ...pulumi.ResourceOption) (*Command, error) {
+ var resource Command
+ err := ctx.ReadResource("aws-native:iot:Command", name, id, state, &resource, opts...)
+ if err != nil {
+ return nil, err
+ }
+ return &resource, nil
+}
+
+// Input properties used for looking up and filtering Command resources.
+type commandState struct {
+}
+
+type CommandState struct {
+}
+
+func (CommandState) ElementType() reflect.Type {
+ return reflect.TypeOf((*commandState)(nil)).Elem()
+}
+
+type commandArgs struct {
+ // The unique identifier for the command.
+ CommandId string `pulumi:"commandId"`
+ // The date and time when the command was created.
+ CreatedAt *string `pulumi:"createdAt"`
+ // A flag indicating whether the command is deprecated.
+ Deprecated *bool `pulumi:"deprecated"`
+ // The description of the command.
+ Description *string `pulumi:"description"`
+ // The display name for the command.
+ DisplayName *string `pulumi:"displayName"`
+ // The date and time when the command was last updated.
+ LastUpdatedAt *string `pulumi:"lastUpdatedAt"`
+ // The list of mandatory parameters for the command.
+ MandatoryParameters []CommandParameter `pulumi:"mandatoryParameters"`
+ // The namespace to which the command belongs.
+ Namespace *CommandNamespace `pulumi:"namespace"`
+ // The payload associated with the command.
+ Payload *CommandPayload `pulumi:"payload"`
+ // A flag indicating whether the command is pending deletion.
+ PendingDeletion *bool `pulumi:"pendingDeletion"`
+ // The customer role associated with the command.
+ RoleArn *string `pulumi:"roleArn"`
+ // The tags to be associated with the command.
+ Tags []aws.Tag `pulumi:"tags"`
+}
+
+// The set of arguments for constructing a Command resource.
+type CommandArgs struct {
+ // The unique identifier for the command.
+ CommandId pulumi.StringInput
+ // The date and time when the command was created.
+ CreatedAt pulumi.StringPtrInput
+ // A flag indicating whether the command is deprecated.
+ Deprecated pulumi.BoolPtrInput
+ // The description of the command.
+ Description pulumi.StringPtrInput
+ // The display name for the command.
+ DisplayName pulumi.StringPtrInput
+ // The date and time when the command was last updated.
+ LastUpdatedAt pulumi.StringPtrInput
+ // The list of mandatory parameters for the command.
+ MandatoryParameters CommandParameterArrayInput
+ // The namespace to which the command belongs.
+ Namespace CommandNamespacePtrInput
+ // The payload associated with the command.
+ Payload CommandPayloadPtrInput
+ // A flag indicating whether the command is pending deletion.
+ PendingDeletion pulumi.BoolPtrInput
+ // The customer role associated with the command.
+ RoleArn pulumi.StringPtrInput
+ // The tags to be associated with the command.
+ Tags aws.TagArrayInput
+}
+
+func (CommandArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*commandArgs)(nil)).Elem()
+}
+
+type CommandInput interface {
+ pulumi.Input
+
+ ToCommandOutput() CommandOutput
+ ToCommandOutputWithContext(ctx context.Context) CommandOutput
+}
+
+func (*Command) ElementType() reflect.Type {
+ return reflect.TypeOf((**Command)(nil)).Elem()
+}
+
+func (i *Command) ToCommandOutput() CommandOutput {
+ return i.ToCommandOutputWithContext(context.Background())
+}
+
+func (i *Command) ToCommandOutputWithContext(ctx context.Context) CommandOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(CommandOutput)
+}
+
+type CommandOutput struct{ *pulumi.OutputState }
+
+func (CommandOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**Command)(nil)).Elem()
+}
+
+func (o CommandOutput) ToCommandOutput() CommandOutput {
+ return o
+}
+
+func (o CommandOutput) ToCommandOutputWithContext(ctx context.Context) CommandOutput {
+ return o
+}
+
+// The Amazon Resource Name (ARN) of the command.
+func (o CommandOutput) CommandArn() pulumi.StringOutput {
+ return o.ApplyT(func(v *Command) pulumi.StringOutput { return v.CommandArn }).(pulumi.StringOutput)
+}
+
+// The unique identifier for the command.
+func (o CommandOutput) CommandId() pulumi.StringOutput {
+ return o.ApplyT(func(v *Command) pulumi.StringOutput { return v.CommandId }).(pulumi.StringOutput)
+}
+
+// The date and time when the command was created.
+func (o CommandOutput) CreatedAt() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *Command) pulumi.StringPtrOutput { return v.CreatedAt }).(pulumi.StringPtrOutput)
+}
+
+// A flag indicating whether the command is deprecated.
+func (o CommandOutput) Deprecated() pulumi.BoolPtrOutput {
+ return o.ApplyT(func(v *Command) pulumi.BoolPtrOutput { return v.Deprecated }).(pulumi.BoolPtrOutput)
+}
+
+// The description of the command.
+func (o CommandOutput) Description() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *Command) pulumi.StringPtrOutput { return v.Description }).(pulumi.StringPtrOutput)
+}
+
+// The display name for the command.
+func (o CommandOutput) DisplayName() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *Command) pulumi.StringPtrOutput { return v.DisplayName }).(pulumi.StringPtrOutput)
+}
+
+// The date and time when the command was last updated.
+func (o CommandOutput) LastUpdatedAt() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *Command) pulumi.StringPtrOutput { return v.LastUpdatedAt }).(pulumi.StringPtrOutput)
+}
+
+// The list of mandatory parameters for the command.
+func (o CommandOutput) MandatoryParameters() CommandParameterArrayOutput {
+ return o.ApplyT(func(v *Command) CommandParameterArrayOutput { return v.MandatoryParameters }).(CommandParameterArrayOutput)
+}
+
+// The namespace to which the command belongs.
+func (o CommandOutput) Namespace() CommandNamespacePtrOutput {
+ return o.ApplyT(func(v *Command) CommandNamespacePtrOutput { return v.Namespace }).(CommandNamespacePtrOutput)
+}
+
+// The payload associated with the command.
+func (o CommandOutput) Payload() CommandPayloadPtrOutput {
+ return o.ApplyT(func(v *Command) CommandPayloadPtrOutput { return v.Payload }).(CommandPayloadPtrOutput)
+}
+
+// A flag indicating whether the command is pending deletion.
+func (o CommandOutput) PendingDeletion() pulumi.BoolPtrOutput {
+ return o.ApplyT(func(v *Command) pulumi.BoolPtrOutput { return v.PendingDeletion }).(pulumi.BoolPtrOutput)
+}
+
+// The customer role associated with the command.
+func (o CommandOutput) RoleArn() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *Command) pulumi.StringPtrOutput { return v.RoleArn }).(pulumi.StringPtrOutput)
+}
+
+// The tags to be associated with the command.
+func (o CommandOutput) Tags() aws.TagArrayOutput {
+ return o.ApplyT(func(v *Command) aws.TagArrayOutput { return v.Tags }).(aws.TagArrayOutput)
+}
+
+func init() {
+ pulumi.RegisterInputType(reflect.TypeOf((*CommandInput)(nil)).Elem(), &Command{})
+ pulumi.RegisterOutputType(CommandOutput{})
+}
diff --git a/sdk/go/aws/iot/getCommand.go b/sdk/go/aws/iot/getCommand.go
new file mode 100644
index 0000000000..1db3f6bc10
--- /dev/null
+++ b/sdk/go/aws/iot/getCommand.go
@@ -0,0 +1,155 @@
+// Code generated by pulumi-language-go DO NOT EDIT.
+// *** WARNING: Do not edit by hand unless you're certain you know what you are doing! ***
+
+package iot
+
+import (
+ "context"
+ "reflect"
+
+ "github.com/pulumi/pulumi-aws-native/sdk/go/aws"
+ "github.com/pulumi/pulumi-aws-native/sdk/go/aws/internal"
+ "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
+)
+
+// Represents the resource definition of AWS IoT Command.
+func LookupCommand(ctx *pulumi.Context, args *LookupCommandArgs, opts ...pulumi.InvokeOption) (*LookupCommandResult, error) {
+ opts = internal.PkgInvokeDefaultOpts(opts)
+ var rv LookupCommandResult
+ err := ctx.Invoke("aws-native:iot:getCommand", args, &rv, opts...)
+ if err != nil {
+ return nil, err
+ }
+ return &rv, nil
+}
+
+type LookupCommandArgs struct {
+ // The unique identifier for the command.
+ CommandId string `pulumi:"commandId"`
+}
+
+type LookupCommandResult struct {
+ // The Amazon Resource Name (ARN) of the command.
+ CommandArn *string `pulumi:"commandArn"`
+ // The date and time when the command was created.
+ CreatedAt *string `pulumi:"createdAt"`
+ // A flag indicating whether the command is deprecated.
+ Deprecated *bool `pulumi:"deprecated"`
+ // The description of the command.
+ Description *string `pulumi:"description"`
+ // The display name for the command.
+ DisplayName *string `pulumi:"displayName"`
+ // The list of mandatory parameters for the command.
+ MandatoryParameters []CommandParameter `pulumi:"mandatoryParameters"`
+ // The namespace to which the command belongs.
+ Namespace *CommandNamespace `pulumi:"namespace"`
+ // The payload associated with the command.
+ Payload *CommandPayload `pulumi:"payload"`
+ // A flag indicating whether the command is pending deletion.
+ PendingDeletion *bool `pulumi:"pendingDeletion"`
+ // The customer role associated with the command.
+ RoleArn *string `pulumi:"roleArn"`
+ // The tags to be associated with the command.
+ Tags []aws.Tag `pulumi:"tags"`
+}
+
+func LookupCommandOutput(ctx *pulumi.Context, args LookupCommandOutputArgs, opts ...pulumi.InvokeOption) LookupCommandResultOutput {
+ return pulumi.ToOutputWithContext(context.Background(), args).
+ ApplyT(func(v interface{}) (LookupCommandResultOutput, error) {
+ args := v.(LookupCommandArgs)
+ opts = internal.PkgInvokeDefaultOpts(opts)
+ var rv LookupCommandResult
+ secret, err := ctx.InvokePackageRaw("aws-native:iot:getCommand", args, &rv, "", opts...)
+ if err != nil {
+ return LookupCommandResultOutput{}, err
+ }
+
+ output := pulumi.ToOutput(rv).(LookupCommandResultOutput)
+ if secret {
+ return pulumi.ToSecret(output).(LookupCommandResultOutput), nil
+ }
+ return output, nil
+ }).(LookupCommandResultOutput)
+}
+
+type LookupCommandOutputArgs struct {
+ // The unique identifier for the command.
+ CommandId pulumi.StringInput `pulumi:"commandId"`
+}
+
+func (LookupCommandOutputArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*LookupCommandArgs)(nil)).Elem()
+}
+
+type LookupCommandResultOutput struct{ *pulumi.OutputState }
+
+func (LookupCommandResultOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*LookupCommandResult)(nil)).Elem()
+}
+
+func (o LookupCommandResultOutput) ToLookupCommandResultOutput() LookupCommandResultOutput {
+ return o
+}
+
+func (o LookupCommandResultOutput) ToLookupCommandResultOutputWithContext(ctx context.Context) LookupCommandResultOutput {
+ return o
+}
+
+// The Amazon Resource Name (ARN) of the command.
+func (o LookupCommandResultOutput) CommandArn() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v LookupCommandResult) *string { return v.CommandArn }).(pulumi.StringPtrOutput)
+}
+
+// The date and time when the command was created.
+func (o LookupCommandResultOutput) CreatedAt() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v LookupCommandResult) *string { return v.CreatedAt }).(pulumi.StringPtrOutput)
+}
+
+// A flag indicating whether the command is deprecated.
+func (o LookupCommandResultOutput) Deprecated() pulumi.BoolPtrOutput {
+ return o.ApplyT(func(v LookupCommandResult) *bool { return v.Deprecated }).(pulumi.BoolPtrOutput)
+}
+
+// The description of the command.
+func (o LookupCommandResultOutput) Description() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v LookupCommandResult) *string { return v.Description }).(pulumi.StringPtrOutput)
+}
+
+// The display name for the command.
+func (o LookupCommandResultOutput) DisplayName() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v LookupCommandResult) *string { return v.DisplayName }).(pulumi.StringPtrOutput)
+}
+
+// The list of mandatory parameters for the command.
+func (o LookupCommandResultOutput) MandatoryParameters() CommandParameterArrayOutput {
+ return o.ApplyT(func(v LookupCommandResult) []CommandParameter { return v.MandatoryParameters }).(CommandParameterArrayOutput)
+}
+
+// The namespace to which the command belongs.
+func (o LookupCommandResultOutput) Namespace() CommandNamespacePtrOutput {
+ return o.ApplyT(func(v LookupCommandResult) *CommandNamespace { return v.Namespace }).(CommandNamespacePtrOutput)
+}
+
+// The payload associated with the command.
+func (o LookupCommandResultOutput) Payload() CommandPayloadPtrOutput {
+ return o.ApplyT(func(v LookupCommandResult) *CommandPayload { return v.Payload }).(CommandPayloadPtrOutput)
+}
+
+// A flag indicating whether the command is pending deletion.
+func (o LookupCommandResultOutput) PendingDeletion() pulumi.BoolPtrOutput {
+ return o.ApplyT(func(v LookupCommandResult) *bool { return v.PendingDeletion }).(pulumi.BoolPtrOutput)
+}
+
+// The customer role associated with the command.
+func (o LookupCommandResultOutput) RoleArn() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v LookupCommandResult) *string { return v.RoleArn }).(pulumi.StringPtrOutput)
+}
+
+// The tags to be associated with the command.
+func (o LookupCommandResultOutput) Tags() aws.TagArrayOutput {
+ return o.ApplyT(func(v LookupCommandResult) []aws.Tag { return v.Tags }).(aws.TagArrayOutput)
+}
+
+func init() {
+ pulumi.RegisterOutputType(LookupCommandResultOutput{})
+}
diff --git a/sdk/go/aws/iot/init.go b/sdk/go/aws/iot/init.go
index 597fd94a27..eae7d015b8 100644
--- a/sdk/go/aws/iot/init.go
+++ b/sdk/go/aws/iot/init.go
@@ -33,6 +33,8 @@ func (m *module) Construct(ctx *pulumi.Context, name, typ, urn string) (r pulumi
r = &Certificate{}
case "aws-native:iot:CertificateProvider":
r = &CertificateProvider{}
+ case "aws-native:iot:Command":
+ r = &Command{}
case "aws-native:iot:CustomMetric":
r = &CustomMetric{}
case "aws-native:iot:Dimension":
diff --git a/sdk/go/aws/iot/pulumiEnums.go b/sdk/go/aws/iot/pulumiEnums.go
index 274a18510e..f4676fc813 100644
--- a/sdk/go/aws/iot/pulumiEnums.go
+++ b/sdk/go/aws/iot/pulumiEnums.go
@@ -1236,6 +1236,172 @@ func (in *certificateStatusPtr) ToCertificateStatusPtrOutputWithContext(ctx cont
return pulumi.ToOutputWithContext(ctx, in).(CertificateStatusPtrOutput)
}
+// The namespace to which the command belongs.
+type CommandNamespace string
+
+const (
+ CommandNamespaceAwsIoT = CommandNamespace("AWS-IoT")
+ CommandNamespaceAwsIoTFleetWise = CommandNamespace("AWS-IoT-FleetWise")
+)
+
+func (CommandNamespace) ElementType() reflect.Type {
+ return reflect.TypeOf((*CommandNamespace)(nil)).Elem()
+}
+
+func (e CommandNamespace) ToCommandNamespaceOutput() CommandNamespaceOutput {
+ return pulumi.ToOutput(e).(CommandNamespaceOutput)
+}
+
+func (e CommandNamespace) ToCommandNamespaceOutputWithContext(ctx context.Context) CommandNamespaceOutput {
+ return pulumi.ToOutputWithContext(ctx, e).(CommandNamespaceOutput)
+}
+
+func (e CommandNamespace) ToCommandNamespacePtrOutput() CommandNamespacePtrOutput {
+ return e.ToCommandNamespacePtrOutputWithContext(context.Background())
+}
+
+func (e CommandNamespace) ToCommandNamespacePtrOutputWithContext(ctx context.Context) CommandNamespacePtrOutput {
+ return CommandNamespace(e).ToCommandNamespaceOutputWithContext(ctx).ToCommandNamespacePtrOutputWithContext(ctx)
+}
+
+func (e CommandNamespace) ToStringOutput() pulumi.StringOutput {
+ return pulumi.ToOutput(pulumi.String(e)).(pulumi.StringOutput)
+}
+
+func (e CommandNamespace) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput {
+ return pulumi.ToOutputWithContext(ctx, pulumi.String(e)).(pulumi.StringOutput)
+}
+
+func (e CommandNamespace) ToStringPtrOutput() pulumi.StringPtrOutput {
+ return pulumi.String(e).ToStringPtrOutputWithContext(context.Background())
+}
+
+func (e CommandNamespace) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput {
+ return pulumi.String(e).ToStringOutputWithContext(ctx).ToStringPtrOutputWithContext(ctx)
+}
+
+type CommandNamespaceOutput struct{ *pulumi.OutputState }
+
+func (CommandNamespaceOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*CommandNamespace)(nil)).Elem()
+}
+
+func (o CommandNamespaceOutput) ToCommandNamespaceOutput() CommandNamespaceOutput {
+ return o
+}
+
+func (o CommandNamespaceOutput) ToCommandNamespaceOutputWithContext(ctx context.Context) CommandNamespaceOutput {
+ return o
+}
+
+func (o CommandNamespaceOutput) ToCommandNamespacePtrOutput() CommandNamespacePtrOutput {
+ return o.ToCommandNamespacePtrOutputWithContext(context.Background())
+}
+
+func (o CommandNamespaceOutput) ToCommandNamespacePtrOutputWithContext(ctx context.Context) CommandNamespacePtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, v CommandNamespace) *CommandNamespace {
+ return &v
+ }).(CommandNamespacePtrOutput)
+}
+
+func (o CommandNamespaceOutput) ToStringOutput() pulumi.StringOutput {
+ return o.ToStringOutputWithContext(context.Background())
+}
+
+func (o CommandNamespaceOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, e CommandNamespace) string {
+ return string(e)
+ }).(pulumi.StringOutput)
+}
+
+func (o CommandNamespaceOutput) ToStringPtrOutput() pulumi.StringPtrOutput {
+ return o.ToStringPtrOutputWithContext(context.Background())
+}
+
+func (o CommandNamespaceOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, e CommandNamespace) *string {
+ v := string(e)
+ return &v
+ }).(pulumi.StringPtrOutput)
+}
+
+type CommandNamespacePtrOutput struct{ *pulumi.OutputState }
+
+func (CommandNamespacePtrOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**CommandNamespace)(nil)).Elem()
+}
+
+func (o CommandNamespacePtrOutput) ToCommandNamespacePtrOutput() CommandNamespacePtrOutput {
+ return o
+}
+
+func (o CommandNamespacePtrOutput) ToCommandNamespacePtrOutputWithContext(ctx context.Context) CommandNamespacePtrOutput {
+ return o
+}
+
+func (o CommandNamespacePtrOutput) Elem() CommandNamespaceOutput {
+ return o.ApplyT(func(v *CommandNamespace) CommandNamespace {
+ if v != nil {
+ return *v
+ }
+ var ret CommandNamespace
+ return ret
+ }).(CommandNamespaceOutput)
+}
+
+func (o CommandNamespacePtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput {
+ return o.ToStringPtrOutputWithContext(context.Background())
+}
+
+func (o CommandNamespacePtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, e *CommandNamespace) *string {
+ if e == nil {
+ return nil
+ }
+ v := string(*e)
+ return &v
+ }).(pulumi.StringPtrOutput)
+}
+
+// CommandNamespaceInput is an input type that accepts values of the CommandNamespace enum
+// A concrete instance of `CommandNamespaceInput` can be one of the following:
+//
+// CommandNamespaceAwsIoT
+// CommandNamespaceAwsIoTFleetWise
+type CommandNamespaceInput interface {
+ pulumi.Input
+
+ ToCommandNamespaceOutput() CommandNamespaceOutput
+ ToCommandNamespaceOutputWithContext(context.Context) CommandNamespaceOutput
+}
+
+var commandNamespacePtrType = reflect.TypeOf((**CommandNamespace)(nil)).Elem()
+
+type CommandNamespacePtrInput interface {
+ pulumi.Input
+
+ ToCommandNamespacePtrOutput() CommandNamespacePtrOutput
+ ToCommandNamespacePtrOutputWithContext(context.Context) CommandNamespacePtrOutput
+}
+
+type commandNamespacePtr string
+
+func CommandNamespacePtr(v string) CommandNamespacePtrInput {
+ return (*commandNamespacePtr)(&v)
+}
+
+func (*commandNamespacePtr) ElementType() reflect.Type {
+ return commandNamespacePtrType
+}
+
+func (in *commandNamespacePtr) ToCommandNamespacePtrOutput() CommandNamespacePtrOutput {
+ return pulumi.ToOutput(in).(CommandNamespacePtrOutput)
+}
+
+func (in *commandNamespacePtr) ToCommandNamespacePtrOutputWithContext(ctx context.Context) CommandNamespacePtrOutput {
+ return pulumi.ToOutputWithContext(ctx, in).(CommandNamespacePtrOutput)
+}
+
// The type of the custom metric. Types include string-list, ip-address-list, number-list, and number.
type CustomMetricMetricType string
@@ -5951,6 +6117,8 @@ func init() {
pulumi.RegisterInputType(reflect.TypeOf((*CertificateProviderOperationArrayInput)(nil)).Elem(), CertificateProviderOperationArray{})
pulumi.RegisterInputType(reflect.TypeOf((*CertificateStatusInput)(nil)).Elem(), CertificateStatus("ACTIVE"))
pulumi.RegisterInputType(reflect.TypeOf((*CertificateStatusPtrInput)(nil)).Elem(), CertificateStatus("ACTIVE"))
+ pulumi.RegisterInputType(reflect.TypeOf((*CommandNamespaceInput)(nil)).Elem(), CommandNamespace("AWS-IoT"))
+ pulumi.RegisterInputType(reflect.TypeOf((*CommandNamespacePtrInput)(nil)).Elem(), CommandNamespace("AWS-IoT"))
pulumi.RegisterInputType(reflect.TypeOf((*CustomMetricMetricTypeInput)(nil)).Elem(), CustomMetricMetricType("string-list"))
pulumi.RegisterInputType(reflect.TypeOf((*CustomMetricMetricTypePtrInput)(nil)).Elem(), CustomMetricMetricType("string-list"))
pulumi.RegisterInputType(reflect.TypeOf((*DimensionTypeInput)(nil)).Elem(), DimensionType("TOPIC_FILTER"))
@@ -6018,6 +6186,8 @@ func init() {
pulumi.RegisterOutputType(CertificateProviderOperationArrayOutput{})
pulumi.RegisterOutputType(CertificateStatusOutput{})
pulumi.RegisterOutputType(CertificateStatusPtrOutput{})
+ pulumi.RegisterOutputType(CommandNamespaceOutput{})
+ pulumi.RegisterOutputType(CommandNamespacePtrOutput{})
pulumi.RegisterOutputType(CustomMetricMetricTypeOutput{})
pulumi.RegisterOutputType(CustomMetricMetricTypePtrOutput{})
pulumi.RegisterOutputType(DimensionTypeOutput{})
diff --git a/sdk/go/aws/iot/pulumiTypes.go b/sdk/go/aws/iot/pulumiTypes.go
index 2b20fc43d9..5ea49653ac 100644
--- a/sdk/go/aws/iot/pulumiTypes.go
+++ b/sdk/go/aws/iot/pulumiTypes.go
@@ -1362,6 +1362,497 @@ type CertificateProviderTag struct {
Value string `pulumi:"value"`
}
+type CommandParameter struct {
+ DefaultValue *CommandParameterValue `pulumi:"defaultValue"`
+ Description *string `pulumi:"description"`
+ Name string `pulumi:"name"`
+ Value *CommandParameterValue `pulumi:"value"`
+}
+
+// CommandParameterInput is an input type that accepts CommandParameterArgs and CommandParameterOutput values.
+// You can construct a concrete instance of `CommandParameterInput` via:
+//
+// CommandParameterArgs{...}
+type CommandParameterInput interface {
+ pulumi.Input
+
+ ToCommandParameterOutput() CommandParameterOutput
+ ToCommandParameterOutputWithContext(context.Context) CommandParameterOutput
+}
+
+type CommandParameterArgs struct {
+ DefaultValue CommandParameterValuePtrInput `pulumi:"defaultValue"`
+ Description pulumi.StringPtrInput `pulumi:"description"`
+ Name pulumi.StringInput `pulumi:"name"`
+ Value CommandParameterValuePtrInput `pulumi:"value"`
+}
+
+func (CommandParameterArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*CommandParameter)(nil)).Elem()
+}
+
+func (i CommandParameterArgs) ToCommandParameterOutput() CommandParameterOutput {
+ return i.ToCommandParameterOutputWithContext(context.Background())
+}
+
+func (i CommandParameterArgs) ToCommandParameterOutputWithContext(ctx context.Context) CommandParameterOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(CommandParameterOutput)
+}
+
+// CommandParameterArrayInput is an input type that accepts CommandParameterArray and CommandParameterArrayOutput values.
+// You can construct a concrete instance of `CommandParameterArrayInput` via:
+//
+// CommandParameterArray{ CommandParameterArgs{...} }
+type CommandParameterArrayInput interface {
+ pulumi.Input
+
+ ToCommandParameterArrayOutput() CommandParameterArrayOutput
+ ToCommandParameterArrayOutputWithContext(context.Context) CommandParameterArrayOutput
+}
+
+type CommandParameterArray []CommandParameterInput
+
+func (CommandParameterArray) ElementType() reflect.Type {
+ return reflect.TypeOf((*[]CommandParameter)(nil)).Elem()
+}
+
+func (i CommandParameterArray) ToCommandParameterArrayOutput() CommandParameterArrayOutput {
+ return i.ToCommandParameterArrayOutputWithContext(context.Background())
+}
+
+func (i CommandParameterArray) ToCommandParameterArrayOutputWithContext(ctx context.Context) CommandParameterArrayOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(CommandParameterArrayOutput)
+}
+
+type CommandParameterOutput struct{ *pulumi.OutputState }
+
+func (CommandParameterOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*CommandParameter)(nil)).Elem()
+}
+
+func (o CommandParameterOutput) ToCommandParameterOutput() CommandParameterOutput {
+ return o
+}
+
+func (o CommandParameterOutput) ToCommandParameterOutputWithContext(ctx context.Context) CommandParameterOutput {
+ return o
+}
+
+func (o CommandParameterOutput) DefaultValue() CommandParameterValuePtrOutput {
+ return o.ApplyT(func(v CommandParameter) *CommandParameterValue { return v.DefaultValue }).(CommandParameterValuePtrOutput)
+}
+
+func (o CommandParameterOutput) Description() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v CommandParameter) *string { return v.Description }).(pulumi.StringPtrOutput)
+}
+
+func (o CommandParameterOutput) Name() pulumi.StringOutput {
+ return o.ApplyT(func(v CommandParameter) string { return v.Name }).(pulumi.StringOutput)
+}
+
+func (o CommandParameterOutput) Value() CommandParameterValuePtrOutput {
+ return o.ApplyT(func(v CommandParameter) *CommandParameterValue { return v.Value }).(CommandParameterValuePtrOutput)
+}
+
+type CommandParameterArrayOutput struct{ *pulumi.OutputState }
+
+func (CommandParameterArrayOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*[]CommandParameter)(nil)).Elem()
+}
+
+func (o CommandParameterArrayOutput) ToCommandParameterArrayOutput() CommandParameterArrayOutput {
+ return o
+}
+
+func (o CommandParameterArrayOutput) ToCommandParameterArrayOutputWithContext(ctx context.Context) CommandParameterArrayOutput {
+ return o
+}
+
+func (o CommandParameterArrayOutput) Index(i pulumi.IntInput) CommandParameterOutput {
+ return pulumi.All(o, i).ApplyT(func(vs []interface{}) CommandParameter {
+ return vs[0].([]CommandParameter)[vs[1].(int)]
+ }).(CommandParameterOutput)
+}
+
+type CommandParameterValue struct {
+ B *bool `pulumi:"b"`
+ Bin *string `pulumi:"bin"`
+ D *float64 `pulumi:"d"`
+ I *int `pulumi:"i"`
+ L *string `pulumi:"l"`
+ S *string `pulumi:"s"`
+ Ul *string `pulumi:"ul"`
+}
+
+// CommandParameterValueInput is an input type that accepts CommandParameterValueArgs and CommandParameterValueOutput values.
+// You can construct a concrete instance of `CommandParameterValueInput` via:
+//
+// CommandParameterValueArgs{...}
+type CommandParameterValueInput interface {
+ pulumi.Input
+
+ ToCommandParameterValueOutput() CommandParameterValueOutput
+ ToCommandParameterValueOutputWithContext(context.Context) CommandParameterValueOutput
+}
+
+type CommandParameterValueArgs struct {
+ B pulumi.BoolPtrInput `pulumi:"b"`
+ Bin pulumi.StringPtrInput `pulumi:"bin"`
+ D pulumi.Float64PtrInput `pulumi:"d"`
+ I pulumi.IntPtrInput `pulumi:"i"`
+ L pulumi.StringPtrInput `pulumi:"l"`
+ S pulumi.StringPtrInput `pulumi:"s"`
+ Ul pulumi.StringPtrInput `pulumi:"ul"`
+}
+
+func (CommandParameterValueArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*CommandParameterValue)(nil)).Elem()
+}
+
+func (i CommandParameterValueArgs) ToCommandParameterValueOutput() CommandParameterValueOutput {
+ return i.ToCommandParameterValueOutputWithContext(context.Background())
+}
+
+func (i CommandParameterValueArgs) ToCommandParameterValueOutputWithContext(ctx context.Context) CommandParameterValueOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(CommandParameterValueOutput)
+}
+
+func (i CommandParameterValueArgs) ToCommandParameterValuePtrOutput() CommandParameterValuePtrOutput {
+ return i.ToCommandParameterValuePtrOutputWithContext(context.Background())
+}
+
+func (i CommandParameterValueArgs) ToCommandParameterValuePtrOutputWithContext(ctx context.Context) CommandParameterValuePtrOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(CommandParameterValueOutput).ToCommandParameterValuePtrOutputWithContext(ctx)
+}
+
+// CommandParameterValuePtrInput is an input type that accepts CommandParameterValueArgs, CommandParameterValuePtr and CommandParameterValuePtrOutput values.
+// You can construct a concrete instance of `CommandParameterValuePtrInput` via:
+//
+// CommandParameterValueArgs{...}
+//
+// or:
+//
+// nil
+type CommandParameterValuePtrInput interface {
+ pulumi.Input
+
+ ToCommandParameterValuePtrOutput() CommandParameterValuePtrOutput
+ ToCommandParameterValuePtrOutputWithContext(context.Context) CommandParameterValuePtrOutput
+}
+
+type commandParameterValuePtrType CommandParameterValueArgs
+
+func CommandParameterValuePtr(v *CommandParameterValueArgs) CommandParameterValuePtrInput {
+ return (*commandParameterValuePtrType)(v)
+}
+
+func (*commandParameterValuePtrType) ElementType() reflect.Type {
+ return reflect.TypeOf((**CommandParameterValue)(nil)).Elem()
+}
+
+func (i *commandParameterValuePtrType) ToCommandParameterValuePtrOutput() CommandParameterValuePtrOutput {
+ return i.ToCommandParameterValuePtrOutputWithContext(context.Background())
+}
+
+func (i *commandParameterValuePtrType) ToCommandParameterValuePtrOutputWithContext(ctx context.Context) CommandParameterValuePtrOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(CommandParameterValuePtrOutput)
+}
+
+type CommandParameterValueOutput struct{ *pulumi.OutputState }
+
+func (CommandParameterValueOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*CommandParameterValue)(nil)).Elem()
+}
+
+func (o CommandParameterValueOutput) ToCommandParameterValueOutput() CommandParameterValueOutput {
+ return o
+}
+
+func (o CommandParameterValueOutput) ToCommandParameterValueOutputWithContext(ctx context.Context) CommandParameterValueOutput {
+ return o
+}
+
+func (o CommandParameterValueOutput) ToCommandParameterValuePtrOutput() CommandParameterValuePtrOutput {
+ return o.ToCommandParameterValuePtrOutputWithContext(context.Background())
+}
+
+func (o CommandParameterValueOutput) ToCommandParameterValuePtrOutputWithContext(ctx context.Context) CommandParameterValuePtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, v CommandParameterValue) *CommandParameterValue {
+ return &v
+ }).(CommandParameterValuePtrOutput)
+}
+
+func (o CommandParameterValueOutput) B() pulumi.BoolPtrOutput {
+ return o.ApplyT(func(v CommandParameterValue) *bool { return v.B }).(pulumi.BoolPtrOutput)
+}
+
+func (o CommandParameterValueOutput) Bin() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v CommandParameterValue) *string { return v.Bin }).(pulumi.StringPtrOutput)
+}
+
+func (o CommandParameterValueOutput) D() pulumi.Float64PtrOutput {
+ return o.ApplyT(func(v CommandParameterValue) *float64 { return v.D }).(pulumi.Float64PtrOutput)
+}
+
+func (o CommandParameterValueOutput) I() pulumi.IntPtrOutput {
+ return o.ApplyT(func(v CommandParameterValue) *int { return v.I }).(pulumi.IntPtrOutput)
+}
+
+func (o CommandParameterValueOutput) L() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v CommandParameterValue) *string { return v.L }).(pulumi.StringPtrOutput)
+}
+
+func (o CommandParameterValueOutput) S() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v CommandParameterValue) *string { return v.S }).(pulumi.StringPtrOutput)
+}
+
+func (o CommandParameterValueOutput) Ul() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v CommandParameterValue) *string { return v.Ul }).(pulumi.StringPtrOutput)
+}
+
+type CommandParameterValuePtrOutput struct{ *pulumi.OutputState }
+
+func (CommandParameterValuePtrOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**CommandParameterValue)(nil)).Elem()
+}
+
+func (o CommandParameterValuePtrOutput) ToCommandParameterValuePtrOutput() CommandParameterValuePtrOutput {
+ return o
+}
+
+func (o CommandParameterValuePtrOutput) ToCommandParameterValuePtrOutputWithContext(ctx context.Context) CommandParameterValuePtrOutput {
+ return o
+}
+
+func (o CommandParameterValuePtrOutput) Elem() CommandParameterValueOutput {
+ return o.ApplyT(func(v *CommandParameterValue) CommandParameterValue {
+ if v != nil {
+ return *v
+ }
+ var ret CommandParameterValue
+ return ret
+ }).(CommandParameterValueOutput)
+}
+
+func (o CommandParameterValuePtrOutput) B() pulumi.BoolPtrOutput {
+ return o.ApplyT(func(v *CommandParameterValue) *bool {
+ if v == nil {
+ return nil
+ }
+ return v.B
+ }).(pulumi.BoolPtrOutput)
+}
+
+func (o CommandParameterValuePtrOutput) Bin() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *CommandParameterValue) *string {
+ if v == nil {
+ return nil
+ }
+ return v.Bin
+ }).(pulumi.StringPtrOutput)
+}
+
+func (o CommandParameterValuePtrOutput) D() pulumi.Float64PtrOutput {
+ return o.ApplyT(func(v *CommandParameterValue) *float64 {
+ if v == nil {
+ return nil
+ }
+ return v.D
+ }).(pulumi.Float64PtrOutput)
+}
+
+func (o CommandParameterValuePtrOutput) I() pulumi.IntPtrOutput {
+ return o.ApplyT(func(v *CommandParameterValue) *int {
+ if v == nil {
+ return nil
+ }
+ return v.I
+ }).(pulumi.IntPtrOutput)
+}
+
+func (o CommandParameterValuePtrOutput) L() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *CommandParameterValue) *string {
+ if v == nil {
+ return nil
+ }
+ return v.L
+ }).(pulumi.StringPtrOutput)
+}
+
+func (o CommandParameterValuePtrOutput) S() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *CommandParameterValue) *string {
+ if v == nil {
+ return nil
+ }
+ return v.S
+ }).(pulumi.StringPtrOutput)
+}
+
+func (o CommandParameterValuePtrOutput) Ul() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *CommandParameterValue) *string {
+ if v == nil {
+ return nil
+ }
+ return v.Ul
+ }).(pulumi.StringPtrOutput)
+}
+
+type CommandPayload struct {
+ Content *string `pulumi:"content"`
+ ContentType *string `pulumi:"contentType"`
+}
+
+// CommandPayloadInput is an input type that accepts CommandPayloadArgs and CommandPayloadOutput values.
+// You can construct a concrete instance of `CommandPayloadInput` via:
+//
+// CommandPayloadArgs{...}
+type CommandPayloadInput interface {
+ pulumi.Input
+
+ ToCommandPayloadOutput() CommandPayloadOutput
+ ToCommandPayloadOutputWithContext(context.Context) CommandPayloadOutput
+}
+
+type CommandPayloadArgs struct {
+ Content pulumi.StringPtrInput `pulumi:"content"`
+ ContentType pulumi.StringPtrInput `pulumi:"contentType"`
+}
+
+func (CommandPayloadArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*CommandPayload)(nil)).Elem()
+}
+
+func (i CommandPayloadArgs) ToCommandPayloadOutput() CommandPayloadOutput {
+ return i.ToCommandPayloadOutputWithContext(context.Background())
+}
+
+func (i CommandPayloadArgs) ToCommandPayloadOutputWithContext(ctx context.Context) CommandPayloadOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(CommandPayloadOutput)
+}
+
+func (i CommandPayloadArgs) ToCommandPayloadPtrOutput() CommandPayloadPtrOutput {
+ return i.ToCommandPayloadPtrOutputWithContext(context.Background())
+}
+
+func (i CommandPayloadArgs) ToCommandPayloadPtrOutputWithContext(ctx context.Context) CommandPayloadPtrOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(CommandPayloadOutput).ToCommandPayloadPtrOutputWithContext(ctx)
+}
+
+// CommandPayloadPtrInput is an input type that accepts CommandPayloadArgs, CommandPayloadPtr and CommandPayloadPtrOutput values.
+// You can construct a concrete instance of `CommandPayloadPtrInput` via:
+//
+// CommandPayloadArgs{...}
+//
+// or:
+//
+// nil
+type CommandPayloadPtrInput interface {
+ pulumi.Input
+
+ ToCommandPayloadPtrOutput() CommandPayloadPtrOutput
+ ToCommandPayloadPtrOutputWithContext(context.Context) CommandPayloadPtrOutput
+}
+
+type commandPayloadPtrType CommandPayloadArgs
+
+func CommandPayloadPtr(v *CommandPayloadArgs) CommandPayloadPtrInput {
+ return (*commandPayloadPtrType)(v)
+}
+
+func (*commandPayloadPtrType) ElementType() reflect.Type {
+ return reflect.TypeOf((**CommandPayload)(nil)).Elem()
+}
+
+func (i *commandPayloadPtrType) ToCommandPayloadPtrOutput() CommandPayloadPtrOutput {
+ return i.ToCommandPayloadPtrOutputWithContext(context.Background())
+}
+
+func (i *commandPayloadPtrType) ToCommandPayloadPtrOutputWithContext(ctx context.Context) CommandPayloadPtrOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(CommandPayloadPtrOutput)
+}
+
+type CommandPayloadOutput struct{ *pulumi.OutputState }
+
+func (CommandPayloadOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*CommandPayload)(nil)).Elem()
+}
+
+func (o CommandPayloadOutput) ToCommandPayloadOutput() CommandPayloadOutput {
+ return o
+}
+
+func (o CommandPayloadOutput) ToCommandPayloadOutputWithContext(ctx context.Context) CommandPayloadOutput {
+ return o
+}
+
+func (o CommandPayloadOutput) ToCommandPayloadPtrOutput() CommandPayloadPtrOutput {
+ return o.ToCommandPayloadPtrOutputWithContext(context.Background())
+}
+
+func (o CommandPayloadOutput) ToCommandPayloadPtrOutputWithContext(ctx context.Context) CommandPayloadPtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, v CommandPayload) *CommandPayload {
+ return &v
+ }).(CommandPayloadPtrOutput)
+}
+
+func (o CommandPayloadOutput) Content() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v CommandPayload) *string { return v.Content }).(pulumi.StringPtrOutput)
+}
+
+func (o CommandPayloadOutput) ContentType() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v CommandPayload) *string { return v.ContentType }).(pulumi.StringPtrOutput)
+}
+
+type CommandPayloadPtrOutput struct{ *pulumi.OutputState }
+
+func (CommandPayloadPtrOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**CommandPayload)(nil)).Elem()
+}
+
+func (o CommandPayloadPtrOutput) ToCommandPayloadPtrOutput() CommandPayloadPtrOutput {
+ return o
+}
+
+func (o CommandPayloadPtrOutput) ToCommandPayloadPtrOutputWithContext(ctx context.Context) CommandPayloadPtrOutput {
+ return o
+}
+
+func (o CommandPayloadPtrOutput) Elem() CommandPayloadOutput {
+ return o.ApplyT(func(v *CommandPayload) CommandPayload {
+ if v != nil {
+ return *v
+ }
+ var ret CommandPayload
+ return ret
+ }).(CommandPayloadOutput)
+}
+
+func (o CommandPayloadPtrOutput) Content() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *CommandPayload) *string {
+ if v == nil {
+ return nil
+ }
+ return v.Content
+ }).(pulumi.StringPtrOutput)
+}
+
+func (o CommandPayloadPtrOutput) ContentType() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *CommandPayload) *string {
+ if v == nil {
+ return nil
+ }
+ return v.ContentType
+ }).(pulumi.StringPtrOutput)
+}
+
+// A key-value pair to associate with a resource.
+type CommandTag struct {
+ // The tag's key.
+ Key string `pulumi:"key"`
+ // The tag's value.
+ Value string `pulumi:"value"`
+}
+
// A key-value pair to associate with a resource.
type CustomMetricTag struct {
// The tag's key.
@@ -14545,6 +15036,12 @@ func init() {
pulumi.RegisterInputType(reflect.TypeOf((*BillingGroupPropertiesPropertiesPtrInput)(nil)).Elem(), BillingGroupPropertiesPropertiesArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*CaCertificateRegistrationConfigInput)(nil)).Elem(), CaCertificateRegistrationConfigArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*CaCertificateRegistrationConfigPtrInput)(nil)).Elem(), CaCertificateRegistrationConfigArgs{})
+ pulumi.RegisterInputType(reflect.TypeOf((*CommandParameterInput)(nil)).Elem(), CommandParameterArgs{})
+ pulumi.RegisterInputType(reflect.TypeOf((*CommandParameterArrayInput)(nil)).Elem(), CommandParameterArray{})
+ pulumi.RegisterInputType(reflect.TypeOf((*CommandParameterValueInput)(nil)).Elem(), CommandParameterValueArgs{})
+ pulumi.RegisterInputType(reflect.TypeOf((*CommandParameterValuePtrInput)(nil)).Elem(), CommandParameterValueArgs{})
+ pulumi.RegisterInputType(reflect.TypeOf((*CommandPayloadInput)(nil)).Elem(), CommandPayloadArgs{})
+ pulumi.RegisterInputType(reflect.TypeOf((*CommandPayloadPtrInput)(nil)).Elem(), CommandPayloadArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*DomainConfigurationAuthorizerConfigInput)(nil)).Elem(), DomainConfigurationAuthorizerConfigArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*DomainConfigurationAuthorizerConfigPtrInput)(nil)).Elem(), DomainConfigurationAuthorizerConfigArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*DomainConfigurationClientCertificateConfigInput)(nil)).Elem(), DomainConfigurationClientCertificateConfigArgs{})
@@ -14710,6 +15207,12 @@ func init() {
pulumi.RegisterOutputType(BillingGroupPropertiesPropertiesPtrOutput{})
pulumi.RegisterOutputType(CaCertificateRegistrationConfigOutput{})
pulumi.RegisterOutputType(CaCertificateRegistrationConfigPtrOutput{})
+ pulumi.RegisterOutputType(CommandParameterOutput{})
+ pulumi.RegisterOutputType(CommandParameterArrayOutput{})
+ pulumi.RegisterOutputType(CommandParameterValueOutput{})
+ pulumi.RegisterOutputType(CommandParameterValuePtrOutput{})
+ pulumi.RegisterOutputType(CommandPayloadOutput{})
+ pulumi.RegisterOutputType(CommandPayloadPtrOutput{})
pulumi.RegisterOutputType(DomainConfigurationAuthorizerConfigOutput{})
pulumi.RegisterOutputType(DomainConfigurationAuthorizerConfigPtrOutput{})
pulumi.RegisterOutputType(DomainConfigurationClientCertificateConfigOutput{})
diff --git a/sdk/go/aws/organizations/policy.go b/sdk/go/aws/organizations/policy.go
index 0435c09875..6f31674665 100644
--- a/sdk/go/aws/organizations/policy.go
+++ b/sdk/go/aws/organizations/policy.go
@@ -35,7 +35,7 @@ type Policy struct {
Tags aws.TagArrayOutput `pulumi:"tags"`
// List of unique identifiers (IDs) of the root, OU, or account that you want to attach the policy to
TargetIds pulumi.StringArrayOutput `pulumi:"targetIds"`
- // The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY
+ // The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY,DECLARATIVE_POLICY_EC2
Type PolicyTypeOutput `pulumi:"type"`
}
@@ -101,7 +101,7 @@ type policyArgs struct {
Tags []aws.Tag `pulumi:"tags"`
// List of unique identifiers (IDs) of the root, OU, or account that you want to attach the policy to
TargetIds []string `pulumi:"targetIds"`
- // The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY
+ // The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY,DECLARATIVE_POLICY_EC2
Type PolicyType `pulumi:"type"`
}
@@ -119,7 +119,7 @@ type PolicyArgs struct {
Tags aws.TagArrayInput
// List of unique identifiers (IDs) of the root, OU, or account that you want to attach the policy to
TargetIds pulumi.StringArrayInput
- // The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY
+ // The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY,DECLARATIVE_POLICY_EC2
Type PolicyTypeInput
}
@@ -202,7 +202,7 @@ func (o PolicyOutput) TargetIds() pulumi.StringArrayOutput {
return o.ApplyT(func(v *Policy) pulumi.StringArrayOutput { return v.TargetIds }).(pulumi.StringArrayOutput)
}
-// The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY
+// The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY,DECLARATIVE_POLICY_EC2
func (o PolicyOutput) Type() PolicyTypeOutput {
return o.ApplyT(func(v *Policy) PolicyTypeOutput { return v.Type }).(PolicyTypeOutput)
}
diff --git a/sdk/go/aws/organizations/pulumiEnums.go b/sdk/go/aws/organizations/pulumiEnums.go
index a4454928e8..7046c3048d 100644
--- a/sdk/go/aws/organizations/pulumiEnums.go
+++ b/sdk/go/aws/organizations/pulumiEnums.go
@@ -359,7 +359,7 @@ func (in *organizationFeatureSetPtr) ToOrganizationFeatureSetPtrOutputWithContex
return pulumi.ToOutputWithContext(ctx, in).(OrganizationFeatureSetPtrOutput)
}
-// The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY
+// The type of policy to create. You can specify one of the following values: AISERVICES_OPT_OUT_POLICY, BACKUP_POLICY, SERVICE_CONTROL_POLICY, TAG_POLICY, CHATBOT_POLICY, RESOURCE_CONTROL_POLICY,DECLARATIVE_POLICY_EC2
type PolicyType string
const (
@@ -369,6 +369,7 @@ const (
PolicyTypeTagPolicy = PolicyType("TAG_POLICY")
PolicyTypeChatbotPolicy = PolicyType("CHATBOT_POLICY")
PolicyTypeResourceControlPolicy = PolicyType("RESOURCE_CONTROL_POLICY")
+ PolicyTypeDeclarativePolicyEc2 = PolicyType("DECLARATIVE_POLICY_EC2")
)
func (PolicyType) ElementType() reflect.Type {
@@ -499,6 +500,7 @@ func (o PolicyTypePtrOutput) ToStringPtrOutputWithContext(ctx context.Context) p
// PolicyTypeTagPolicy
// PolicyTypeChatbotPolicy
// PolicyTypeResourceControlPolicy
+// PolicyTypeDeclarativePolicyEc2
type PolicyTypeInput interface {
pulumi.Input
diff --git a/sdk/go/aws/qbusiness/application.go b/sdk/go/aws/qbusiness/application.go
index 5393535195..905ac22eb6 100644
--- a/sdk/go/aws/qbusiness/application.go
+++ b/sdk/go/aws/qbusiness/application.go
@@ -25,7 +25,8 @@ type Application struct {
AttachmentsConfiguration ApplicationAttachmentsConfigurationPtrOutput `pulumi:"attachmentsConfiguration"`
// Subscription configuration information for an Amazon Q Business application using IAM identity federation for user management.
AutoSubscriptionConfiguration ApplicationAutoSubscriptionConfigurationPtrOutput `pulumi:"autoSubscriptionConfiguration"`
- ClientIdsForOidc pulumi.StringArrayOutput `pulumi:"clientIdsForOidc"`
+ // The OIDC client ID for a Amazon Q Business application.
+ ClientIdsForOidc pulumi.StringArrayOutput `pulumi:"clientIdsForOidc"`
// The Unix timestamp when the Amazon Q Business application was created.
CreatedAt pulumi.StringOutput `pulumi:"createdAt"`
// A description for the Amazon Q Business application.
@@ -114,7 +115,8 @@ type applicationArgs struct {
AttachmentsConfiguration *ApplicationAttachmentsConfiguration `pulumi:"attachmentsConfiguration"`
// Subscription configuration information for an Amazon Q Business application using IAM identity federation for user management.
AutoSubscriptionConfiguration *ApplicationAutoSubscriptionConfiguration `pulumi:"autoSubscriptionConfiguration"`
- ClientIdsForOidc []string `pulumi:"clientIdsForOidc"`
+ // The OIDC client ID for a Amazon Q Business application.
+ ClientIdsForOidc []string `pulumi:"clientIdsForOidc"`
// A description for the Amazon Q Business application.
Description *string `pulumi:"description"`
// The name of the Amazon Q Business application.
@@ -146,7 +148,8 @@ type ApplicationArgs struct {
AttachmentsConfiguration ApplicationAttachmentsConfigurationPtrInput
// Subscription configuration information for an Amazon Q Business application using IAM identity federation for user management.
AutoSubscriptionConfiguration ApplicationAutoSubscriptionConfigurationPtrInput
- ClientIdsForOidc pulumi.StringArrayInput
+ // The OIDC client ID for a Amazon Q Business application.
+ ClientIdsForOidc pulumi.StringArrayInput
// A description for the Amazon Q Business application.
Description pulumi.StringPtrInput
// The name of the Amazon Q Business application.
@@ -231,6 +234,7 @@ func (o ApplicationOutput) AutoSubscriptionConfiguration() ApplicationAutoSubscr
}).(ApplicationAutoSubscriptionConfigurationPtrOutput)
}
+// The OIDC client ID for a Amazon Q Business application.
func (o ApplicationOutput) ClientIdsForOidc() pulumi.StringArrayOutput {
return o.ApplyT(func(v *Application) pulumi.StringArrayOutput { return v.ClientIdsForOidc }).(pulumi.StringArrayOutput)
}
diff --git a/sdk/go/aws/ram/getResourceShare.go b/sdk/go/aws/ram/getResourceShare.go
new file mode 100644
index 0000000000..d77e4bd9a6
--- /dev/null
+++ b/sdk/go/aws/ram/getResourceShare.go
@@ -0,0 +1,106 @@
+// Code generated by pulumi-language-go DO NOT EDIT.
+// *** WARNING: Do not edit by hand unless you're certain you know what you are doing! ***
+
+package ram
+
+import (
+ "context"
+ "reflect"
+
+ "github.com/pulumi/pulumi-aws-native/sdk/go/aws"
+ "github.com/pulumi/pulumi-aws-native/sdk/go/aws/internal"
+ "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
+)
+
+// Resource type definition for AWS::RAM::ResourceShare
+func LookupResourceShare(ctx *pulumi.Context, args *LookupResourceShareArgs, opts ...pulumi.InvokeOption) (*LookupResourceShareResult, error) {
+ opts = internal.PkgInvokeDefaultOpts(opts)
+ var rv LookupResourceShareResult
+ err := ctx.Invoke("aws-native:ram:getResourceShare", args, &rv, opts...)
+ if err != nil {
+ return nil, err
+ }
+ return &rv, nil
+}
+
+type LookupResourceShareArgs struct {
+ // The Amazon Resource Name (ARN) of the resource share.
+ Arn string `pulumi:"arn"`
+}
+
+type LookupResourceShareResult struct {
+ // Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`.
+ AllowExternalPrincipals *bool `pulumi:"allowExternalPrincipals"`
+ // The Amazon Resource Name (ARN) of the resource share.
+ Arn *string `pulumi:"arn"`
+ // Specifies the name of the resource share.
+ Name *string `pulumi:"name"`
+ // Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share.
+ Tags []aws.Tag `pulumi:"tags"`
+}
+
+func LookupResourceShareOutput(ctx *pulumi.Context, args LookupResourceShareOutputArgs, opts ...pulumi.InvokeOption) LookupResourceShareResultOutput {
+ return pulumi.ToOutputWithContext(context.Background(), args).
+ ApplyT(func(v interface{}) (LookupResourceShareResultOutput, error) {
+ args := v.(LookupResourceShareArgs)
+ opts = internal.PkgInvokeDefaultOpts(opts)
+ var rv LookupResourceShareResult
+ secret, err := ctx.InvokePackageRaw("aws-native:ram:getResourceShare", args, &rv, "", opts...)
+ if err != nil {
+ return LookupResourceShareResultOutput{}, err
+ }
+
+ output := pulumi.ToOutput(rv).(LookupResourceShareResultOutput)
+ if secret {
+ return pulumi.ToSecret(output).(LookupResourceShareResultOutput), nil
+ }
+ return output, nil
+ }).(LookupResourceShareResultOutput)
+}
+
+type LookupResourceShareOutputArgs struct {
+ // The Amazon Resource Name (ARN) of the resource share.
+ Arn pulumi.StringInput `pulumi:"arn"`
+}
+
+func (LookupResourceShareOutputArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*LookupResourceShareArgs)(nil)).Elem()
+}
+
+type LookupResourceShareResultOutput struct{ *pulumi.OutputState }
+
+func (LookupResourceShareResultOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*LookupResourceShareResult)(nil)).Elem()
+}
+
+func (o LookupResourceShareResultOutput) ToLookupResourceShareResultOutput() LookupResourceShareResultOutput {
+ return o
+}
+
+func (o LookupResourceShareResultOutput) ToLookupResourceShareResultOutputWithContext(ctx context.Context) LookupResourceShareResultOutput {
+ return o
+}
+
+// Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`.
+func (o LookupResourceShareResultOutput) AllowExternalPrincipals() pulumi.BoolPtrOutput {
+ return o.ApplyT(func(v LookupResourceShareResult) *bool { return v.AllowExternalPrincipals }).(pulumi.BoolPtrOutput)
+}
+
+// The Amazon Resource Name (ARN) of the resource share.
+func (o LookupResourceShareResultOutput) Arn() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v LookupResourceShareResult) *string { return v.Arn }).(pulumi.StringPtrOutput)
+}
+
+// Specifies the name of the resource share.
+func (o LookupResourceShareResultOutput) Name() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v LookupResourceShareResult) *string { return v.Name }).(pulumi.StringPtrOutput)
+}
+
+// Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share.
+func (o LookupResourceShareResultOutput) Tags() aws.TagArrayOutput {
+ return o.ApplyT(func(v LookupResourceShareResult) []aws.Tag { return v.Tags }).(aws.TagArrayOutput)
+}
+
+func init() {
+ pulumi.RegisterOutputType(LookupResourceShareResultOutput{})
+}
diff --git a/sdk/go/aws/ram/init.go b/sdk/go/aws/ram/init.go
index 4ff620621b..b512687e6e 100644
--- a/sdk/go/aws/ram/init.go
+++ b/sdk/go/aws/ram/init.go
@@ -23,6 +23,8 @@ func (m *module) Construct(ctx *pulumi.Context, name, typ, urn string) (r pulumi
switch typ {
case "aws-native:ram:Permission":
r = &Permission{}
+ case "aws-native:ram:ResourceShare":
+ r = &ResourceShare{}
default:
return nil, fmt.Errorf("unknown resource type: %s", typ)
}
diff --git a/sdk/go/aws/ram/pulumiTypes.go b/sdk/go/aws/ram/pulumiTypes.go
index 453ff4cb02..93b1bb6dfc 100644
--- a/sdk/go/aws/ram/pulumiTypes.go
+++ b/sdk/go/aws/ram/pulumiTypes.go
@@ -16,5 +16,13 @@ type PermissionTag struct {
Value string `pulumi:"value"`
}
+// A key-value pair to associate with a resource.
+type ResourceShareTag struct {
+ // The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
+ Key string `pulumi:"key"`
+ // The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
+ Value string `pulumi:"value"`
+}
+
func init() {
}
diff --git a/sdk/go/aws/ram/resourceShare.go b/sdk/go/aws/ram/resourceShare.go
new file mode 100644
index 0000000000..cfdd50b1f1
--- /dev/null
+++ b/sdk/go/aws/ram/resourceShare.go
@@ -0,0 +1,317 @@
+// Code generated by pulumi-language-go DO NOT EDIT.
+// *** WARNING: Do not edit by hand unless you're certain you know what you are doing! ***
+
+package ram
+
+import (
+ "context"
+ "reflect"
+
+ "github.com/pulumi/pulumi-aws-native/sdk/go/aws"
+ "github.com/pulumi/pulumi-aws-native/sdk/go/aws/internal"
+ "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
+)
+
+// Resource type definition for AWS::RAM::ResourceShare
+//
+// ## Example Usage
+// ### Example
+//
+// ```go
+// package main
+//
+// import (
+//
+// awsnative "github.com/pulumi/pulumi-aws-native/sdk/go/aws"
+// "github.com/pulumi/pulumi-aws-native/sdk/go/aws/ram"
+// "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
+//
+// )
+//
+// func main() {
+// pulumi.Run(func(ctx *pulumi.Context) error {
+// _, err := ram.NewResourceShare(ctx, "myresourceshare", &ram.ResourceShareArgs{
+// Name: pulumi.String("My Resource Share"),
+// ResourceArns: pulumi.StringArray{
+// pulumi.String("arn:aws:ec2:us-east-1:123456789012:resource-type/12345678-1234-1234-1234-12345678"),
+// },
+// Principals: pulumi.StringArray{
+// pulumi.String("210987654321"),
+// },
+// Tags: aws.TagArray{
+// &aws.TagArgs{
+// Key: pulumi.String("Key1"),
+// Value: pulumi.String("Value1"),
+// },
+// &aws.TagArgs{
+// Key: pulumi.String("Key2"),
+// Value: pulumi.String("Value2"),
+// },
+// },
+// })
+// if err != nil {
+// return err
+// }
+// return nil
+// })
+// }
+//
+// ```
+// ### Example
+//
+// ```go
+// package main
+//
+// import (
+//
+// awsnative "github.com/pulumi/pulumi-aws-native/sdk/go/aws"
+// "github.com/pulumi/pulumi-aws-native/sdk/go/aws/ram"
+// "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
+//
+// )
+//
+// func main() {
+// pulumi.Run(func(ctx *pulumi.Context) error {
+// _, err := ram.NewResourceShare(ctx, "myresourceshare", &ram.ResourceShareArgs{
+// Name: pulumi.String("My Resource Share"),
+// ResourceArns: pulumi.StringArray{
+// pulumi.String("arn:aws:ec2:us-east-1:123456789012:resource-type/12345678-1234-1234-1234-12345678"),
+// },
+// Principals: pulumi.StringArray{
+// pulumi.String("210987654321"),
+// },
+// Tags: aws.TagArray{
+// &aws.TagArgs{
+// Key: pulumi.String("Key1"),
+// Value: pulumi.String("Value1"),
+// },
+// &aws.TagArgs{
+// Key: pulumi.String("Key2"),
+// Value: pulumi.String("Value2"),
+// },
+// },
+// })
+// if err != nil {
+// return err
+// }
+// return nil
+// })
+// }
+//
+// ```
+type ResourceShare struct {
+ pulumi.CustomResourceState
+
+ // Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`.
+ AllowExternalPrincipals pulumi.BoolPtrOutput `pulumi:"allowExternalPrincipals"`
+ // The Amazon Resource Name (ARN) of the resource share.
+ Arn pulumi.StringOutput `pulumi:"arn"`
+ // Specifies the name of the resource share.
+ Name pulumi.StringOutput `pulumi:"name"`
+ // Specifies the [Amazon Resource Names (ARNs)](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) of the AWS RAM permission to associate with the resource share. If you do not specify an ARN for the permission, AWS RAM automatically attaches the default version of the permission for each resource type. You can associate only one permission with each resource type included in the resource share.
+ PermissionArns pulumi.StringArrayOutput `pulumi:"permissionArns"`
+ // Specifies the principals to associate with the resource share. The possible values are:
+ //
+ // - An AWS account ID
+ //
+ // - An Amazon Resource Name (ARN) of an organization in AWS Organizations
+ //
+ // - An ARN of an organizational unit (OU) in AWS Organizations
+ //
+ // - An ARN of an IAM role
+ //
+ // - An ARN of an IAM user
+ Principals pulumi.StringArrayOutput `pulumi:"principals"`
+ // Specifies a list of one or more ARNs of the resources to associate with the resource share.
+ ResourceArns pulumi.StringArrayOutput `pulumi:"resourceArns"`
+ // Specifies from which source accounts the service principal has access to the resources in this resource share.
+ Sources pulumi.StringArrayOutput `pulumi:"sources"`
+ // Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share.
+ Tags aws.TagArrayOutput `pulumi:"tags"`
+}
+
+// NewResourceShare registers a new resource with the given unique name, arguments, and options.
+func NewResourceShare(ctx *pulumi.Context,
+ name string, args *ResourceShareArgs, opts ...pulumi.ResourceOption) (*ResourceShare, error) {
+ if args == nil {
+ args = &ResourceShareArgs{}
+ }
+
+ opts = internal.PkgResourceDefaultOpts(opts)
+ var resource ResourceShare
+ err := ctx.RegisterResource("aws-native:ram:ResourceShare", name, args, &resource, opts...)
+ if err != nil {
+ return nil, err
+ }
+ return &resource, nil
+}
+
+// GetResourceShare gets an existing ResourceShare resource's state with the given name, ID, and optional
+// state properties that are used to uniquely qualify the lookup (nil if not required).
+func GetResourceShare(ctx *pulumi.Context,
+ name string, id pulumi.IDInput, state *ResourceShareState, opts ...pulumi.ResourceOption) (*ResourceShare, error) {
+ var resource ResourceShare
+ err := ctx.ReadResource("aws-native:ram:ResourceShare", name, id, state, &resource, opts...)
+ if err != nil {
+ return nil, err
+ }
+ return &resource, nil
+}
+
+// Input properties used for looking up and filtering ResourceShare resources.
+type resourceShareState struct {
+}
+
+type ResourceShareState struct {
+}
+
+func (ResourceShareState) ElementType() reflect.Type {
+ return reflect.TypeOf((*resourceShareState)(nil)).Elem()
+}
+
+type resourceShareArgs struct {
+ // Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`.
+ AllowExternalPrincipals *bool `pulumi:"allowExternalPrincipals"`
+ // Specifies the name of the resource share.
+ Name *string `pulumi:"name"`
+ // Specifies the [Amazon Resource Names (ARNs)](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) of the AWS RAM permission to associate with the resource share. If you do not specify an ARN for the permission, AWS RAM automatically attaches the default version of the permission for each resource type. You can associate only one permission with each resource type included in the resource share.
+ PermissionArns []string `pulumi:"permissionArns"`
+ // Specifies the principals to associate with the resource share. The possible values are:
+ //
+ // - An AWS account ID
+ //
+ // - An Amazon Resource Name (ARN) of an organization in AWS Organizations
+ //
+ // - An ARN of an organizational unit (OU) in AWS Organizations
+ //
+ // - An ARN of an IAM role
+ //
+ // - An ARN of an IAM user
+ Principals []string `pulumi:"principals"`
+ // Specifies a list of one or more ARNs of the resources to associate with the resource share.
+ ResourceArns []string `pulumi:"resourceArns"`
+ // Specifies from which source accounts the service principal has access to the resources in this resource share.
+ Sources []string `pulumi:"sources"`
+ // Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share.
+ Tags []aws.Tag `pulumi:"tags"`
+}
+
+// The set of arguments for constructing a ResourceShare resource.
+type ResourceShareArgs struct {
+ // Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`.
+ AllowExternalPrincipals pulumi.BoolPtrInput
+ // Specifies the name of the resource share.
+ Name pulumi.StringPtrInput
+ // Specifies the [Amazon Resource Names (ARNs)](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) of the AWS RAM permission to associate with the resource share. If you do not specify an ARN for the permission, AWS RAM automatically attaches the default version of the permission for each resource type. You can associate only one permission with each resource type included in the resource share.
+ PermissionArns pulumi.StringArrayInput
+ // Specifies the principals to associate with the resource share. The possible values are:
+ //
+ // - An AWS account ID
+ //
+ // - An Amazon Resource Name (ARN) of an organization in AWS Organizations
+ //
+ // - An ARN of an organizational unit (OU) in AWS Organizations
+ //
+ // - An ARN of an IAM role
+ //
+ // - An ARN of an IAM user
+ Principals pulumi.StringArrayInput
+ // Specifies a list of one or more ARNs of the resources to associate with the resource share.
+ ResourceArns pulumi.StringArrayInput
+ // Specifies from which source accounts the service principal has access to the resources in this resource share.
+ Sources pulumi.StringArrayInput
+ // Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share.
+ Tags aws.TagArrayInput
+}
+
+func (ResourceShareArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*resourceShareArgs)(nil)).Elem()
+}
+
+type ResourceShareInput interface {
+ pulumi.Input
+
+ ToResourceShareOutput() ResourceShareOutput
+ ToResourceShareOutputWithContext(ctx context.Context) ResourceShareOutput
+}
+
+func (*ResourceShare) ElementType() reflect.Type {
+ return reflect.TypeOf((**ResourceShare)(nil)).Elem()
+}
+
+func (i *ResourceShare) ToResourceShareOutput() ResourceShareOutput {
+ return i.ToResourceShareOutputWithContext(context.Background())
+}
+
+func (i *ResourceShare) ToResourceShareOutputWithContext(ctx context.Context) ResourceShareOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(ResourceShareOutput)
+}
+
+type ResourceShareOutput struct{ *pulumi.OutputState }
+
+func (ResourceShareOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**ResourceShare)(nil)).Elem()
+}
+
+func (o ResourceShareOutput) ToResourceShareOutput() ResourceShareOutput {
+ return o
+}
+
+func (o ResourceShareOutput) ToResourceShareOutputWithContext(ctx context.Context) ResourceShareOutput {
+ return o
+}
+
+// Specifies whether principals outside your organization in AWS Organizations can be associated with a resource share. A value of `true` lets you share with individual AWS accounts that are not in your organization. A value of `false` only has meaning if your account is a member of an AWS Organization. The default value is `true`.
+func (o ResourceShareOutput) AllowExternalPrincipals() pulumi.BoolPtrOutput {
+ return o.ApplyT(func(v *ResourceShare) pulumi.BoolPtrOutput { return v.AllowExternalPrincipals }).(pulumi.BoolPtrOutput)
+}
+
+// The Amazon Resource Name (ARN) of the resource share.
+func (o ResourceShareOutput) Arn() pulumi.StringOutput {
+ return o.ApplyT(func(v *ResourceShare) pulumi.StringOutput { return v.Arn }).(pulumi.StringOutput)
+}
+
+// Specifies the name of the resource share.
+func (o ResourceShareOutput) Name() pulumi.StringOutput {
+ return o.ApplyT(func(v *ResourceShare) pulumi.StringOutput { return v.Name }).(pulumi.StringOutput)
+}
+
+// Specifies the [Amazon Resource Names (ARNs)](https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) of the AWS RAM permission to associate with the resource share. If you do not specify an ARN for the permission, AWS RAM automatically attaches the default version of the permission for each resource type. You can associate only one permission with each resource type included in the resource share.
+func (o ResourceShareOutput) PermissionArns() pulumi.StringArrayOutput {
+ return o.ApplyT(func(v *ResourceShare) pulumi.StringArrayOutput { return v.PermissionArns }).(pulumi.StringArrayOutput)
+}
+
+// Specifies the principals to associate with the resource share. The possible values are:
+//
+// - An AWS account ID
+//
+// - An Amazon Resource Name (ARN) of an organization in AWS Organizations
+//
+// - An ARN of an organizational unit (OU) in AWS Organizations
+//
+// - An ARN of an IAM role
+//
+// - An ARN of an IAM user
+func (o ResourceShareOutput) Principals() pulumi.StringArrayOutput {
+ return o.ApplyT(func(v *ResourceShare) pulumi.StringArrayOutput { return v.Principals }).(pulumi.StringArrayOutput)
+}
+
+// Specifies a list of one or more ARNs of the resources to associate with the resource share.
+func (o ResourceShareOutput) ResourceArns() pulumi.StringArrayOutput {
+ return o.ApplyT(func(v *ResourceShare) pulumi.StringArrayOutput { return v.ResourceArns }).(pulumi.StringArrayOutput)
+}
+
+// Specifies from which source accounts the service principal has access to the resources in this resource share.
+func (o ResourceShareOutput) Sources() pulumi.StringArrayOutput {
+ return o.ApplyT(func(v *ResourceShare) pulumi.StringArrayOutput { return v.Sources }).(pulumi.StringArrayOutput)
+}
+
+// Specifies one or more tags to attach to the resource share itself. It doesn't attach the tags to the resources associated with the resource share.
+func (o ResourceShareOutput) Tags() aws.TagArrayOutput {
+ return o.ApplyT(func(v *ResourceShare) aws.TagArrayOutput { return v.Tags }).(aws.TagArrayOutput)
+}
+
+func init() {
+ pulumi.RegisterInputType(reflect.TypeOf((*ResourceShareInput)(nil)).Elem(), &ResourceShare{})
+ pulumi.RegisterOutputType(ResourceShareOutput{})
+}
diff --git a/sdk/go/aws/rds/customDbEngineVersion.go b/sdk/go/aws/rds/customDbEngineVersion.go
index ed6b70468e..1614d4dc3d 100644
--- a/sdk/go/aws/rds/customDbEngineVersion.go
+++ b/sdk/go/aws/rds/customDbEngineVersion.go
@@ -13,35 +13,45 @@ import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
-// The AWS::RDS::CustomDBEngineVersion resource creates an Amazon RDS custom DB engine version.
+// Creates a custom DB engine version (CEV).
type CustomDbEngineVersion struct {
pulumi.CustomResourceState
- // The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is `my-custom-installation-files`.
+ // The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is ``my-custom-installation-files``.
DatabaseInstallationFilesS3BucketName pulumi.StringPtrOutput `pulumi:"databaseInstallationFilesS3BucketName"`
- // The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is `123456789012/cev1`. If this setting isn't specified, no prefix is assumed.
+ // The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is ``123456789012/cev1``. If this setting isn't specified, no prefix is assumed.
DatabaseInstallationFilesS3Prefix pulumi.StringPtrOutput `pulumi:"databaseInstallationFilesS3Prefix"`
// The ARN of the custom engine version.
DbEngineVersionArn pulumi.StringOutput `pulumi:"dbEngineVersionArn"`
// An optional description of your CEV.
Description pulumi.StringPtrOutput `pulumi:"description"`
- // The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`.
+ // The database engine to use for your custom engine version (CEV).
+ // Valid values:
+ // + ``custom-oracle-ee``
+ // + ``custom-oracle-ee-cdb``
Engine pulumi.StringOutput `pulumi:"engine"`
- // The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region.
+ // The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.
+ // *Constraints:* Minimum length is 1. Maximum length is 60.
+ // *Pattern:* ``^[a-z0-9_.-]{1,60$``}
EngineVersion pulumi.StringOutput `pulumi:"engineVersion"`
- // The identifier of Amazon Machine Image (AMI) used for CEV.
+ // A value that indicates the ID of the AMI.
ImageId pulumi.StringPtrOutput `pulumi:"imageId"`
- // The AWS KMS key identifier for an encrypted CEV. A symmetric KMS key is required for RDS Custom, but optional for Amazon RDS.
+ // The AWS KMS key identifier for an encrypted CEV. A symmetric encryption KMS key is required for RDS Custom, but optional for Amazon RDS.
+ // If you have an existing symmetric encryption KMS key in your account, you can use it with RDS Custom. No further action is necessary. If you don't already have a symmetric encryption KMS key in your account, follow the instructions in [Creating a symmetric encryption KMS key](https://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html#create-symmetric-cmk) in the *Key Management Service Developer Guide*.
+ // You can choose the same symmetric encryption key when you create a CEV and a DB instance, or choose different keys.
KmsKeyId pulumi.StringPtrOutput `pulumi:"kmsKeyId"`
// The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.
+ // The following JSON fields are valid:
+ // + MediaImportTemplateVersion Version of the CEV manifest. The date is in the format YYYY-MM-DD. + databaseInstallationFileNames Ordered list of installation files for the CEV. + opatchFileNames Ordered list of OPatch installers used for the Oracle DB engine. + psuRuPatchFileNames The PSU and RU patches for this CEV. + OtherPatchFileNames The patches that are not in the list of PSU and RU patches. Amazon RDS applies these patches after applying the PSU and RU patches.
+ // For more information, see [Creating the CEV manifest](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/custom-cev.html#custom-cev.preparing.manifest) in the *Amazon RDS User Guide*.
Manifest pulumi.StringPtrOutput `pulumi:"manifest"`
- // The identifier of the source custom engine version.
+ // The ARN of a CEV to use as a source for creating a new CEV. You can specify a different Amazon Machine Imagine (AMI) by using either ``Source`` or ``UseAwsProvidedLatestImage``. You can't specify a different JSON manifest when you specify ``SourceCustomDbEngineVersionIdentifier``.
SourceCustomDbEngineVersionIdentifier pulumi.StringPtrOutput `pulumi:"sourceCustomDbEngineVersionIdentifier"`
- // The availability status to be assigned to the CEV.
+ // A value that indicates the status of a custom engine version (CEV).
Status CustomDbEngineVersionStatusPtrOutput `pulumi:"status"`
- // An array of key-value pairs to apply to this resource.
+ // A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*
Tags aws.TagArrayOutput `pulumi:"tags"`
- // A value that indicates whether AWS provided latest image is applied automatically to the Custom Engine Version. By default, AWS provided latest image is applied automatically. This value is only applied on create.
+ // Specifies whether to use the latest service-provided Amazon Machine Image (AMI) for the CEV. If you specify ``UseAwsProvidedLatestImage``, you can't also specify ``ImageId``.
UseAwsProvidedLatestImage pulumi.BoolPtrOutput `pulumi:"useAwsProvidedLatestImage"`
}
@@ -103,57 +113,77 @@ func (CustomDbEngineVersionState) ElementType() reflect.Type {
}
type customDbEngineVersionArgs struct {
- // The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is `my-custom-installation-files`.
+ // The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is ``my-custom-installation-files``.
DatabaseInstallationFilesS3BucketName *string `pulumi:"databaseInstallationFilesS3BucketName"`
- // The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is `123456789012/cev1`. If this setting isn't specified, no prefix is assumed.
+ // The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is ``123456789012/cev1``. If this setting isn't specified, no prefix is assumed.
DatabaseInstallationFilesS3Prefix *string `pulumi:"databaseInstallationFilesS3Prefix"`
// An optional description of your CEV.
Description *string `pulumi:"description"`
- // The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`.
+ // The database engine to use for your custom engine version (CEV).
+ // Valid values:
+ // + ``custom-oracle-ee``
+ // + ``custom-oracle-ee-cdb``
Engine string `pulumi:"engine"`
- // The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region.
+ // The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.
+ // *Constraints:* Minimum length is 1. Maximum length is 60.
+ // *Pattern:* ``^[a-z0-9_.-]{1,60$``}
EngineVersion string `pulumi:"engineVersion"`
- // The identifier of Amazon Machine Image (AMI) used for CEV.
+ // A value that indicates the ID of the AMI.
ImageId *string `pulumi:"imageId"`
- // The AWS KMS key identifier for an encrypted CEV. A symmetric KMS key is required for RDS Custom, but optional for Amazon RDS.
+ // The AWS KMS key identifier for an encrypted CEV. A symmetric encryption KMS key is required for RDS Custom, but optional for Amazon RDS.
+ // If you have an existing symmetric encryption KMS key in your account, you can use it with RDS Custom. No further action is necessary. If you don't already have a symmetric encryption KMS key in your account, follow the instructions in [Creating a symmetric encryption KMS key](https://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html#create-symmetric-cmk) in the *Key Management Service Developer Guide*.
+ // You can choose the same symmetric encryption key when you create a CEV and a DB instance, or choose different keys.
KmsKeyId *string `pulumi:"kmsKeyId"`
// The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.
+ // The following JSON fields are valid:
+ // + MediaImportTemplateVersion Version of the CEV manifest. The date is in the format YYYY-MM-DD. + databaseInstallationFileNames Ordered list of installation files for the CEV. + opatchFileNames Ordered list of OPatch installers used for the Oracle DB engine. + psuRuPatchFileNames The PSU and RU patches for this CEV. + OtherPatchFileNames The patches that are not in the list of PSU and RU patches. Amazon RDS applies these patches after applying the PSU and RU patches.
+ // For more information, see [Creating the CEV manifest](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/custom-cev.html#custom-cev.preparing.manifest) in the *Amazon RDS User Guide*.
Manifest *string `pulumi:"manifest"`
- // The identifier of the source custom engine version.
+ // The ARN of a CEV to use as a source for creating a new CEV. You can specify a different Amazon Machine Imagine (AMI) by using either ``Source`` or ``UseAwsProvidedLatestImage``. You can't specify a different JSON manifest when you specify ``SourceCustomDbEngineVersionIdentifier``.
SourceCustomDbEngineVersionIdentifier *string `pulumi:"sourceCustomDbEngineVersionIdentifier"`
- // The availability status to be assigned to the CEV.
+ // A value that indicates the status of a custom engine version (CEV).
Status *CustomDbEngineVersionStatus `pulumi:"status"`
- // An array of key-value pairs to apply to this resource.
+ // A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*
Tags []aws.Tag `pulumi:"tags"`
- // A value that indicates whether AWS provided latest image is applied automatically to the Custom Engine Version. By default, AWS provided latest image is applied automatically. This value is only applied on create.
+ // Specifies whether to use the latest service-provided Amazon Machine Image (AMI) for the CEV. If you specify ``UseAwsProvidedLatestImage``, you can't also specify ``ImageId``.
UseAwsProvidedLatestImage *bool `pulumi:"useAwsProvidedLatestImage"`
}
// The set of arguments for constructing a CustomDbEngineVersion resource.
type CustomDbEngineVersionArgs struct {
- // The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is `my-custom-installation-files`.
+ // The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is ``my-custom-installation-files``.
DatabaseInstallationFilesS3BucketName pulumi.StringPtrInput
- // The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is `123456789012/cev1`. If this setting isn't specified, no prefix is assumed.
+ // The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is ``123456789012/cev1``. If this setting isn't specified, no prefix is assumed.
DatabaseInstallationFilesS3Prefix pulumi.StringPtrInput
// An optional description of your CEV.
Description pulumi.StringPtrInput
- // The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`.
+ // The database engine to use for your custom engine version (CEV).
+ // Valid values:
+ // + ``custom-oracle-ee``
+ // + ``custom-oracle-ee-cdb``
Engine pulumi.StringInput
- // The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region.
+ // The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.
+ // *Constraints:* Minimum length is 1. Maximum length is 60.
+ // *Pattern:* ``^[a-z0-9_.-]{1,60$``}
EngineVersion pulumi.StringInput
- // The identifier of Amazon Machine Image (AMI) used for CEV.
+ // A value that indicates the ID of the AMI.
ImageId pulumi.StringPtrInput
- // The AWS KMS key identifier for an encrypted CEV. A symmetric KMS key is required for RDS Custom, but optional for Amazon RDS.
+ // The AWS KMS key identifier for an encrypted CEV. A symmetric encryption KMS key is required for RDS Custom, but optional for Amazon RDS.
+ // If you have an existing symmetric encryption KMS key in your account, you can use it with RDS Custom. No further action is necessary. If you don't already have a symmetric encryption KMS key in your account, follow the instructions in [Creating a symmetric encryption KMS key](https://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html#create-symmetric-cmk) in the *Key Management Service Developer Guide*.
+ // You can choose the same symmetric encryption key when you create a CEV and a DB instance, or choose different keys.
KmsKeyId pulumi.StringPtrInput
// The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.
+ // The following JSON fields are valid:
+ // + MediaImportTemplateVersion Version of the CEV manifest. The date is in the format YYYY-MM-DD. + databaseInstallationFileNames Ordered list of installation files for the CEV. + opatchFileNames Ordered list of OPatch installers used for the Oracle DB engine. + psuRuPatchFileNames The PSU and RU patches for this CEV. + OtherPatchFileNames The patches that are not in the list of PSU and RU patches. Amazon RDS applies these patches after applying the PSU and RU patches.
+ // For more information, see [Creating the CEV manifest](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/custom-cev.html#custom-cev.preparing.manifest) in the *Amazon RDS User Guide*.
Manifest pulumi.StringPtrInput
- // The identifier of the source custom engine version.
+ // The ARN of a CEV to use as a source for creating a new CEV. You can specify a different Amazon Machine Imagine (AMI) by using either ``Source`` or ``UseAwsProvidedLatestImage``. You can't specify a different JSON manifest when you specify ``SourceCustomDbEngineVersionIdentifier``.
SourceCustomDbEngineVersionIdentifier pulumi.StringPtrInput
- // The availability status to be assigned to the CEV.
+ // A value that indicates the status of a custom engine version (CEV).
Status CustomDbEngineVersionStatusPtrInput
- // An array of key-value pairs to apply to this resource.
+ // A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*
Tags aws.TagArrayInput
- // A value that indicates whether AWS provided latest image is applied automatically to the Custom Engine Version. By default, AWS provided latest image is applied automatically. This value is only applied on create.
+ // Specifies whether to use the latest service-provided Amazon Machine Image (AMI) for the CEV. If you specify ``UseAwsProvidedLatestImage``, you can't also specify ``ImageId``.
UseAwsProvidedLatestImage pulumi.BoolPtrInput
}
@@ -194,12 +224,12 @@ func (o CustomDbEngineVersionOutput) ToCustomDbEngineVersionOutputWithContext(ct
return o
}
-// The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is `my-custom-installation-files`.
+// The name of an Amazon S3 bucket that contains database installation files for your CEV. For example, a valid bucket name is “my-custom-installation-files“.
func (o CustomDbEngineVersionOutput) DatabaseInstallationFilesS3BucketName() pulumi.StringPtrOutput {
return o.ApplyT(func(v *CustomDbEngineVersion) pulumi.StringPtrOutput { return v.DatabaseInstallationFilesS3BucketName }).(pulumi.StringPtrOutput)
}
-// The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is `123456789012/cev1`. If this setting isn't specified, no prefix is assumed.
+// The Amazon S3 directory that contains the database installation files for your CEV. For example, a valid bucket name is “123456789012/cev1“. If this setting isn't specified, no prefix is assumed.
func (o CustomDbEngineVersionOutput) DatabaseInstallationFilesS3Prefix() pulumi.StringPtrOutput {
return o.ApplyT(func(v *CustomDbEngineVersion) pulumi.StringPtrOutput { return v.DatabaseInstallationFilesS3Prefix }).(pulumi.StringPtrOutput)
}
@@ -214,47 +244,61 @@ func (o CustomDbEngineVersionOutput) Description() pulumi.StringPtrOutput {
return o.ApplyT(func(v *CustomDbEngineVersion) pulumi.StringPtrOutput { return v.Description }).(pulumi.StringPtrOutput)
}
-// The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`.
+// The database engine to use for your custom engine version (CEV).
+//
+// Valid values:
+// + ``custom-oracle-ee``
+// + ``custom-oracle-ee-cdb``
func (o CustomDbEngineVersionOutput) Engine() pulumi.StringOutput {
return o.ApplyT(func(v *CustomDbEngineVersion) pulumi.StringOutput { return v.Engine }).(pulumi.StringOutput)
}
-// The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region.
+// The name of your CEV. The name format is “major version.customized_string“. For example, a valid CEV name is “19.my_cev1“. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of “Engine“ and “EngineVersion“ is unique per customer per Region.
+//
+// *Constraints:* Minimum length is 1. Maximum length is 60.
+// *Pattern:* ``^[a-z0-9_.-]{1,60$``}
func (o CustomDbEngineVersionOutput) EngineVersion() pulumi.StringOutput {
return o.ApplyT(func(v *CustomDbEngineVersion) pulumi.StringOutput { return v.EngineVersion }).(pulumi.StringOutput)
}
-// The identifier of Amazon Machine Image (AMI) used for CEV.
+// A value that indicates the ID of the AMI.
func (o CustomDbEngineVersionOutput) ImageId() pulumi.StringPtrOutput {
return o.ApplyT(func(v *CustomDbEngineVersion) pulumi.StringPtrOutput { return v.ImageId }).(pulumi.StringPtrOutput)
}
-// The AWS KMS key identifier for an encrypted CEV. A symmetric KMS key is required for RDS Custom, but optional for Amazon RDS.
+// The AWS KMS key identifier for an encrypted CEV. A symmetric encryption KMS key is required for RDS Custom, but optional for Amazon RDS.
+//
+// If you have an existing symmetric encryption KMS key in your account, you can use it with RDS Custom. No further action is necessary. If you don't already have a symmetric encryption KMS key in your account, follow the instructions in [Creating a symmetric encryption KMS key](https://docs.aws.amazon.com/kms/latest/developerguide/create-keys.html#create-symmetric-cmk) in the *Key Management Service Developer Guide*.
+// You can choose the same symmetric encryption key when you create a CEV and a DB instance, or choose different keys.
func (o CustomDbEngineVersionOutput) KmsKeyId() pulumi.StringPtrOutput {
return o.ApplyT(func(v *CustomDbEngineVersion) pulumi.StringPtrOutput { return v.KmsKeyId }).(pulumi.StringPtrOutput)
}
// The CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3. Specify the name/value pairs in a file or a quoted string. RDS Custom applies the patches in the order in which they are listed.
+//
+// The following JSON fields are valid:
+// + MediaImportTemplateVersion Version of the CEV manifest. The date is in the format YYYY-MM-DD. + databaseInstallationFileNames Ordered list of installation files for the CEV. + opatchFileNames Ordered list of OPatch installers used for the Oracle DB engine. + psuRuPatchFileNames The PSU and RU patches for this CEV. + OtherPatchFileNames The patches that are not in the list of PSU and RU patches. Amazon RDS applies these patches after applying the PSU and RU patches.
+// For more information, see [Creating the CEV manifest](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/custom-cev.html#custom-cev.preparing.manifest) in the *Amazon RDS User Guide*.
func (o CustomDbEngineVersionOutput) Manifest() pulumi.StringPtrOutput {
return o.ApplyT(func(v *CustomDbEngineVersion) pulumi.StringPtrOutput { return v.Manifest }).(pulumi.StringPtrOutput)
}
-// The identifier of the source custom engine version.
+// The ARN of a CEV to use as a source for creating a new CEV. You can specify a different Amazon Machine Imagine (AMI) by using either “Source“ or “UseAwsProvidedLatestImage“. You can't specify a different JSON manifest when you specify “SourceCustomDbEngineVersionIdentifier“.
func (o CustomDbEngineVersionOutput) SourceCustomDbEngineVersionIdentifier() pulumi.StringPtrOutput {
return o.ApplyT(func(v *CustomDbEngineVersion) pulumi.StringPtrOutput { return v.SourceCustomDbEngineVersionIdentifier }).(pulumi.StringPtrOutput)
}
-// The availability status to be assigned to the CEV.
+// A value that indicates the status of a custom engine version (CEV).
func (o CustomDbEngineVersionOutput) Status() CustomDbEngineVersionStatusPtrOutput {
return o.ApplyT(func(v *CustomDbEngineVersion) CustomDbEngineVersionStatusPtrOutput { return v.Status }).(CustomDbEngineVersionStatusPtrOutput)
}
-// An array of key-value pairs to apply to this resource.
+// A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*
func (o CustomDbEngineVersionOutput) Tags() aws.TagArrayOutput {
return o.ApplyT(func(v *CustomDbEngineVersion) aws.TagArrayOutput { return v.Tags }).(aws.TagArrayOutput)
}
-// A value that indicates whether AWS provided latest image is applied automatically to the Custom Engine Version. By default, AWS provided latest image is applied automatically. This value is only applied on create.
+// Specifies whether to use the latest service-provided Amazon Machine Image (AMI) for the CEV. If you specify “UseAwsProvidedLatestImage“, you can't also specify “ImageId“.
func (o CustomDbEngineVersionOutput) UseAwsProvidedLatestImage() pulumi.BoolPtrOutput {
return o.ApplyT(func(v *CustomDbEngineVersion) pulumi.BoolPtrOutput { return v.UseAwsProvidedLatestImage }).(pulumi.BoolPtrOutput)
}
diff --git a/sdk/go/aws/rds/getCustomDbEngineVersion.go b/sdk/go/aws/rds/getCustomDbEngineVersion.go
index 0d8f92d6a1..e9a935af78 100644
--- a/sdk/go/aws/rds/getCustomDbEngineVersion.go
+++ b/sdk/go/aws/rds/getCustomDbEngineVersion.go
@@ -12,7 +12,7 @@ import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
-// The AWS::RDS::CustomDBEngineVersion resource creates an Amazon RDS custom DB engine version.
+// Creates a custom DB engine version (CEV).
func LookupCustomDbEngineVersion(ctx *pulumi.Context, args *LookupCustomDbEngineVersionArgs, opts ...pulumi.InvokeOption) (*LookupCustomDbEngineVersionResult, error) {
opts = internal.PkgInvokeDefaultOpts(opts)
var rv LookupCustomDbEngineVersionResult
@@ -24,9 +24,14 @@ func LookupCustomDbEngineVersion(ctx *pulumi.Context, args *LookupCustomDbEngine
}
type LookupCustomDbEngineVersionArgs struct {
- // The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`.
+ // The database engine to use for your custom engine version (CEV).
+ // Valid values:
+ // + ``custom-oracle-ee``
+ // + ``custom-oracle-ee-cdb``
Engine string `pulumi:"engine"`
- // The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region.
+ // The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.
+ // *Constraints:* Minimum length is 1. Maximum length is 60.
+ // *Pattern:* ``^[a-z0-9_.-]{1,60$``}
EngineVersion string `pulumi:"engineVersion"`
}
@@ -35,9 +40,9 @@ type LookupCustomDbEngineVersionResult struct {
DbEngineVersionArn *string `pulumi:"dbEngineVersionArn"`
// An optional description of your CEV.
Description *string `pulumi:"description"`
- // The availability status to be assigned to the CEV.
+ // A value that indicates the status of a custom engine version (CEV).
Status *CustomDbEngineVersionStatus `pulumi:"status"`
- // An array of key-value pairs to apply to this resource.
+ // A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*
Tags []aws.Tag `pulumi:"tags"`
}
@@ -61,9 +66,14 @@ func LookupCustomDbEngineVersionOutput(ctx *pulumi.Context, args LookupCustomDbE
}
type LookupCustomDbEngineVersionOutputArgs struct {
- // The database engine to use for your custom engine version (CEV). The only supported value is `custom-oracle-ee`.
+ // The database engine to use for your custom engine version (CEV).
+ // Valid values:
+ // + ``custom-oracle-ee``
+ // + ``custom-oracle-ee-cdb``
Engine pulumi.StringInput `pulumi:"engine"`
- // The name of your CEV. The name format is 19.customized_string . For example, a valid name is 19.my_cev1. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of Engine and EngineVersion is unique per customer per Region.
+ // The name of your CEV. The name format is ``major version.customized_string``. For example, a valid CEV name is ``19.my_cev1``. This setting is required for RDS Custom for Oracle, but optional for Amazon RDS. The combination of ``Engine`` and ``EngineVersion`` is unique per customer per Region.
+ // *Constraints:* Minimum length is 1. Maximum length is 60.
+ // *Pattern:* ``^[a-z0-9_.-]{1,60$``}
EngineVersion pulumi.StringInput `pulumi:"engineVersion"`
}
@@ -95,12 +105,12 @@ func (o LookupCustomDbEngineVersionResultOutput) Description() pulumi.StringPtrO
return o.ApplyT(func(v LookupCustomDbEngineVersionResult) *string { return v.Description }).(pulumi.StringPtrOutput)
}
-// The availability status to be assigned to the CEV.
+// A value that indicates the status of a custom engine version (CEV).
func (o LookupCustomDbEngineVersionResultOutput) Status() CustomDbEngineVersionStatusPtrOutput {
return o.ApplyT(func(v LookupCustomDbEngineVersionResult) *CustomDbEngineVersionStatus { return v.Status }).(CustomDbEngineVersionStatusPtrOutput)
}
-// An array of key-value pairs to apply to this resource.
+// A list of tags. For more information, see [Tagging Amazon RDS Resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide.*
func (o LookupCustomDbEngineVersionResultOutput) Tags() aws.TagArrayOutput {
return o.ApplyT(func(v LookupCustomDbEngineVersionResult) []aws.Tag { return v.Tags }).(aws.TagArrayOutput)
}
diff --git a/sdk/go/aws/rds/pulumiEnums.go b/sdk/go/aws/rds/pulumiEnums.go
index 5b37535ad0..6e40fbbb94 100644
--- a/sdk/go/aws/rds/pulumiEnums.go
+++ b/sdk/go/aws/rds/pulumiEnums.go
@@ -10,7 +10,7 @@ import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
-// The availability status to be assigned to the CEV.
+// A value that indicates the status of a custom engine version (CEV).
type CustomDbEngineVersionStatus string
const (
diff --git a/sdk/go/aws/rds/pulumiTypes.go b/sdk/go/aws/rds/pulumiTypes.go
index 8a4355ecb9..38d1f34772 100644
--- a/sdk/go/aws/rds/pulumiTypes.go
+++ b/sdk/go/aws/rds/pulumiTypes.go
@@ -13,11 +13,13 @@ import (
var _ = internal.GetEnvOrDefault
-// A key-value pair to associate with a resource.
+// Metadata assigned to an Amazon RDS resource consisting of a key-value pair.
+//
+// For more information, see [Tagging Amazon RDS resources](https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/USER_Tagging.html) in the *Amazon RDS User Guide* or [Tagging Amazon Aurora and Amazon RDS resources](https://docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/USER_Tagging.html) in the *Amazon Aurora User Guide*.
type CustomDbEngineVersionTag struct {
- // The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
+ // A key is the required name of the tag. The string value can be from 1 to 128 Unicode characters in length and can't be prefixed with ``aws:`` or ``rds:``. The string can only contain only the set of Unicode letters, digits, white-space, '_', '.', ':', '/', '=', '+', '-', '@' (Java regex: "^([\\p{L}\\p{Z}\\p{N}_.:/=+\\-@]*)$").
Key string `pulumi:"key"`
- // The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
+ // A value is the optional value of the tag. The string value can be from 1 to 256 Unicode characters in length and can't be prefixed with ``aws:`` or ``rds:``. The string can only contain only the set of Unicode letters, digits, white-space, '_', '.', ':', '/', '=', '+', '-', '@' (Java regex: "^([\\p{L}\\p{Z}\\p{N}_.:/=+\\-@]*)$").
Value *string `pulumi:"value"`
}
diff --git a/sdk/go/aws/redshiftserverless/getWorkgroup.go b/sdk/go/aws/redshiftserverless/getWorkgroup.go
index 73b6913274..eab2c7bfa5 100644
--- a/sdk/go/aws/redshiftserverless/getWorkgroup.go
+++ b/sdk/go/aws/redshiftserverless/getWorkgroup.go
@@ -33,6 +33,8 @@ type LookupWorkgroupResult struct {
EnhancedVpcRouting *bool `pulumi:"enhancedVpcRouting"`
// The custom port to use when connecting to a workgroup. Valid port ranges are 5431-5455 and 8191-8215. The default is 5439.
Port *int `pulumi:"port"`
+ // A property that represents the price performance target settings for the workgroup.
+ PricePerformanceTarget *WorkgroupPerformanceTarget `pulumi:"pricePerformanceTarget"`
// A value that specifies whether the workgroup can be accessible from a public network.
PubliclyAccessible *bool `pulumi:"publiclyAccessible"`
// The map of the key-value pairs used to tag the workgroup.
@@ -93,6 +95,11 @@ func (o LookupWorkgroupResultOutput) Port() pulumi.IntPtrOutput {
return o.ApplyT(func(v LookupWorkgroupResult) *int { return v.Port }).(pulumi.IntPtrOutput)
}
+// A property that represents the price performance target settings for the workgroup.
+func (o LookupWorkgroupResultOutput) PricePerformanceTarget() WorkgroupPerformanceTargetPtrOutput {
+ return o.ApplyT(func(v LookupWorkgroupResult) *WorkgroupPerformanceTarget { return v.PricePerformanceTarget }).(WorkgroupPerformanceTargetPtrOutput)
+}
+
// A value that specifies whether the workgroup can be accessible from a public network.
func (o LookupWorkgroupResultOutput) PubliclyAccessible() pulumi.BoolPtrOutput {
return o.ApplyT(func(v LookupWorkgroupResult) *bool { return v.PubliclyAccessible }).(pulumi.BoolPtrOutput)
diff --git a/sdk/go/aws/redshiftserverless/pulumiEnums.go b/sdk/go/aws/redshiftserverless/pulumiEnums.go
index 12db4e80bc..e75f4cec0e 100644
--- a/sdk/go/aws/redshiftserverless/pulumiEnums.go
+++ b/sdk/go/aws/redshiftserverless/pulumiEnums.go
@@ -313,6 +313,171 @@ func (o NamespaceStatusPtrOutput) ToStringPtrOutputWithContext(ctx context.Conte
}).(pulumi.StringPtrOutput)
}
+type WorkgroupPerformanceTargetStatus string
+
+const (
+ WorkgroupPerformanceTargetStatusEnabled = WorkgroupPerformanceTargetStatus("ENABLED")
+ WorkgroupPerformanceTargetStatusDisabled = WorkgroupPerformanceTargetStatus("DISABLED")
+)
+
+func (WorkgroupPerformanceTargetStatus) ElementType() reflect.Type {
+ return reflect.TypeOf((*WorkgroupPerformanceTargetStatus)(nil)).Elem()
+}
+
+func (e WorkgroupPerformanceTargetStatus) ToWorkgroupPerformanceTargetStatusOutput() WorkgroupPerformanceTargetStatusOutput {
+ return pulumi.ToOutput(e).(WorkgroupPerformanceTargetStatusOutput)
+}
+
+func (e WorkgroupPerformanceTargetStatus) ToWorkgroupPerformanceTargetStatusOutputWithContext(ctx context.Context) WorkgroupPerformanceTargetStatusOutput {
+ return pulumi.ToOutputWithContext(ctx, e).(WorkgroupPerformanceTargetStatusOutput)
+}
+
+func (e WorkgroupPerformanceTargetStatus) ToWorkgroupPerformanceTargetStatusPtrOutput() WorkgroupPerformanceTargetStatusPtrOutput {
+ return e.ToWorkgroupPerformanceTargetStatusPtrOutputWithContext(context.Background())
+}
+
+func (e WorkgroupPerformanceTargetStatus) ToWorkgroupPerformanceTargetStatusPtrOutputWithContext(ctx context.Context) WorkgroupPerformanceTargetStatusPtrOutput {
+ return WorkgroupPerformanceTargetStatus(e).ToWorkgroupPerformanceTargetStatusOutputWithContext(ctx).ToWorkgroupPerformanceTargetStatusPtrOutputWithContext(ctx)
+}
+
+func (e WorkgroupPerformanceTargetStatus) ToStringOutput() pulumi.StringOutput {
+ return pulumi.ToOutput(pulumi.String(e)).(pulumi.StringOutput)
+}
+
+func (e WorkgroupPerformanceTargetStatus) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput {
+ return pulumi.ToOutputWithContext(ctx, pulumi.String(e)).(pulumi.StringOutput)
+}
+
+func (e WorkgroupPerformanceTargetStatus) ToStringPtrOutput() pulumi.StringPtrOutput {
+ return pulumi.String(e).ToStringPtrOutputWithContext(context.Background())
+}
+
+func (e WorkgroupPerformanceTargetStatus) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput {
+ return pulumi.String(e).ToStringOutputWithContext(ctx).ToStringPtrOutputWithContext(ctx)
+}
+
+type WorkgroupPerformanceTargetStatusOutput struct{ *pulumi.OutputState }
+
+func (WorkgroupPerformanceTargetStatusOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*WorkgroupPerformanceTargetStatus)(nil)).Elem()
+}
+
+func (o WorkgroupPerformanceTargetStatusOutput) ToWorkgroupPerformanceTargetStatusOutput() WorkgroupPerformanceTargetStatusOutput {
+ return o
+}
+
+func (o WorkgroupPerformanceTargetStatusOutput) ToWorkgroupPerformanceTargetStatusOutputWithContext(ctx context.Context) WorkgroupPerformanceTargetStatusOutput {
+ return o
+}
+
+func (o WorkgroupPerformanceTargetStatusOutput) ToWorkgroupPerformanceTargetStatusPtrOutput() WorkgroupPerformanceTargetStatusPtrOutput {
+ return o.ToWorkgroupPerformanceTargetStatusPtrOutputWithContext(context.Background())
+}
+
+func (o WorkgroupPerformanceTargetStatusOutput) ToWorkgroupPerformanceTargetStatusPtrOutputWithContext(ctx context.Context) WorkgroupPerformanceTargetStatusPtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, v WorkgroupPerformanceTargetStatus) *WorkgroupPerformanceTargetStatus {
+ return &v
+ }).(WorkgroupPerformanceTargetStatusPtrOutput)
+}
+
+func (o WorkgroupPerformanceTargetStatusOutput) ToStringOutput() pulumi.StringOutput {
+ return o.ToStringOutputWithContext(context.Background())
+}
+
+func (o WorkgroupPerformanceTargetStatusOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, e WorkgroupPerformanceTargetStatus) string {
+ return string(e)
+ }).(pulumi.StringOutput)
+}
+
+func (o WorkgroupPerformanceTargetStatusOutput) ToStringPtrOutput() pulumi.StringPtrOutput {
+ return o.ToStringPtrOutputWithContext(context.Background())
+}
+
+func (o WorkgroupPerformanceTargetStatusOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, e WorkgroupPerformanceTargetStatus) *string {
+ v := string(e)
+ return &v
+ }).(pulumi.StringPtrOutput)
+}
+
+type WorkgroupPerformanceTargetStatusPtrOutput struct{ *pulumi.OutputState }
+
+func (WorkgroupPerformanceTargetStatusPtrOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**WorkgroupPerformanceTargetStatus)(nil)).Elem()
+}
+
+func (o WorkgroupPerformanceTargetStatusPtrOutput) ToWorkgroupPerformanceTargetStatusPtrOutput() WorkgroupPerformanceTargetStatusPtrOutput {
+ return o
+}
+
+func (o WorkgroupPerformanceTargetStatusPtrOutput) ToWorkgroupPerformanceTargetStatusPtrOutputWithContext(ctx context.Context) WorkgroupPerformanceTargetStatusPtrOutput {
+ return o
+}
+
+func (o WorkgroupPerformanceTargetStatusPtrOutput) Elem() WorkgroupPerformanceTargetStatusOutput {
+ return o.ApplyT(func(v *WorkgroupPerformanceTargetStatus) WorkgroupPerformanceTargetStatus {
+ if v != nil {
+ return *v
+ }
+ var ret WorkgroupPerformanceTargetStatus
+ return ret
+ }).(WorkgroupPerformanceTargetStatusOutput)
+}
+
+func (o WorkgroupPerformanceTargetStatusPtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput {
+ return o.ToStringPtrOutputWithContext(context.Background())
+}
+
+func (o WorkgroupPerformanceTargetStatusPtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, e *WorkgroupPerformanceTargetStatus) *string {
+ if e == nil {
+ return nil
+ }
+ v := string(*e)
+ return &v
+ }).(pulumi.StringPtrOutput)
+}
+
+// WorkgroupPerformanceTargetStatusInput is an input type that accepts values of the WorkgroupPerformanceTargetStatus enum
+// A concrete instance of `WorkgroupPerformanceTargetStatusInput` can be one of the following:
+//
+// WorkgroupPerformanceTargetStatusEnabled
+// WorkgroupPerformanceTargetStatusDisabled
+type WorkgroupPerformanceTargetStatusInput interface {
+ pulumi.Input
+
+ ToWorkgroupPerformanceTargetStatusOutput() WorkgroupPerformanceTargetStatusOutput
+ ToWorkgroupPerformanceTargetStatusOutputWithContext(context.Context) WorkgroupPerformanceTargetStatusOutput
+}
+
+var workgroupPerformanceTargetStatusPtrType = reflect.TypeOf((**WorkgroupPerformanceTargetStatus)(nil)).Elem()
+
+type WorkgroupPerformanceTargetStatusPtrInput interface {
+ pulumi.Input
+
+ ToWorkgroupPerformanceTargetStatusPtrOutput() WorkgroupPerformanceTargetStatusPtrOutput
+ ToWorkgroupPerformanceTargetStatusPtrOutputWithContext(context.Context) WorkgroupPerformanceTargetStatusPtrOutput
+}
+
+type workgroupPerformanceTargetStatusPtr string
+
+func WorkgroupPerformanceTargetStatusPtr(v string) WorkgroupPerformanceTargetStatusPtrInput {
+ return (*workgroupPerformanceTargetStatusPtr)(&v)
+}
+
+func (*workgroupPerformanceTargetStatusPtr) ElementType() reflect.Type {
+ return workgroupPerformanceTargetStatusPtrType
+}
+
+func (in *workgroupPerformanceTargetStatusPtr) ToWorkgroupPerformanceTargetStatusPtrOutput() WorkgroupPerformanceTargetStatusPtrOutput {
+ return pulumi.ToOutput(in).(WorkgroupPerformanceTargetStatusPtrOutput)
+}
+
+func (in *workgroupPerformanceTargetStatusPtr) ToWorkgroupPerformanceTargetStatusPtrOutputWithContext(ctx context.Context) WorkgroupPerformanceTargetStatusPtrOutput {
+ return pulumi.ToOutputWithContext(ctx, in).(WorkgroupPerformanceTargetStatusPtrOutput)
+}
+
type WorkgroupStatus string
const (
@@ -409,11 +574,15 @@ func init() {
pulumi.RegisterInputType(reflect.TypeOf((*NamespaceLogExportInput)(nil)).Elem(), NamespaceLogExport("useractivitylog"))
pulumi.RegisterInputType(reflect.TypeOf((*NamespaceLogExportPtrInput)(nil)).Elem(), NamespaceLogExport("useractivitylog"))
pulumi.RegisterInputType(reflect.TypeOf((*NamespaceLogExportArrayInput)(nil)).Elem(), NamespaceLogExportArray{})
+ pulumi.RegisterInputType(reflect.TypeOf((*WorkgroupPerformanceTargetStatusInput)(nil)).Elem(), WorkgroupPerformanceTargetStatus("ENABLED"))
+ pulumi.RegisterInputType(reflect.TypeOf((*WorkgroupPerformanceTargetStatusPtrInput)(nil)).Elem(), WorkgroupPerformanceTargetStatus("ENABLED"))
pulumi.RegisterOutputType(NamespaceLogExportOutput{})
pulumi.RegisterOutputType(NamespaceLogExportPtrOutput{})
pulumi.RegisterOutputType(NamespaceLogExportArrayOutput{})
pulumi.RegisterOutputType(NamespaceStatusOutput{})
pulumi.RegisterOutputType(NamespaceStatusPtrOutput{})
+ pulumi.RegisterOutputType(WorkgroupPerformanceTargetStatusOutput{})
+ pulumi.RegisterOutputType(WorkgroupPerformanceTargetStatusPtrOutput{})
pulumi.RegisterOutputType(WorkgroupStatusOutput{})
pulumi.RegisterOutputType(WorkgroupStatusPtrOutput{})
}
diff --git a/sdk/go/aws/redshiftserverless/pulumiTypes.go b/sdk/go/aws/redshiftserverless/pulumiTypes.go
index b68a3a5967..ab90961f2b 100644
--- a/sdk/go/aws/redshiftserverless/pulumiTypes.go
+++ b/sdk/go/aws/redshiftserverless/pulumiTypes.go
@@ -411,7 +411,8 @@ type WorkgroupType struct {
// The maximum data-warehouse capacity Amazon Redshift Serverless uses to serve queries. The max capacity is specified in RPUs.
MaxCapacity *int `pulumi:"maxCapacity"`
// The namespace the workgroup is associated with.
- NamespaceName *string `pulumi:"namespaceName"`
+ NamespaceName *string `pulumi:"namespaceName"`
+ PricePerformanceTarget *WorkgroupPerformanceTarget `pulumi:"pricePerformanceTarget"`
// A value that specifies whether the workgroup can be accessible from a public network.
PubliclyAccessible *bool `pulumi:"publiclyAccessible"`
// An array of security group IDs to associate with the workgroup.
@@ -477,6 +478,10 @@ func (o WorkgroupTypeOutput) NamespaceName() pulumi.StringPtrOutput {
return o.ApplyT(func(v WorkgroupType) *string { return v.NamespaceName }).(pulumi.StringPtrOutput)
}
+func (o WorkgroupTypeOutput) PricePerformanceTarget() WorkgroupPerformanceTargetPtrOutput {
+ return o.ApplyT(func(v WorkgroupType) *WorkgroupPerformanceTarget { return v.PricePerformanceTarget }).(WorkgroupPerformanceTargetPtrOutput)
+}
+
// A value that specifies whether the workgroup can be accessible from a public network.
func (o WorkgroupTypeOutput) PubliclyAccessible() pulumi.BoolPtrOutput {
return o.ApplyT(func(v WorkgroupType) *bool { return v.PubliclyAccessible }).(pulumi.BoolPtrOutput)
@@ -606,6 +611,15 @@ func (o WorkgroupTypePtrOutput) NamespaceName() pulumi.StringPtrOutput {
}).(pulumi.StringPtrOutput)
}
+func (o WorkgroupTypePtrOutput) PricePerformanceTarget() WorkgroupPerformanceTargetPtrOutput {
+ return o.ApplyT(func(v *WorkgroupType) *WorkgroupPerformanceTarget {
+ if v == nil {
+ return nil
+ }
+ return v.PricePerformanceTarget
+ }).(WorkgroupPerformanceTargetPtrOutput)
+}
+
// A value that specifies whether the workgroup can be accessible from a public network.
func (o WorkgroupTypePtrOutput) PubliclyAccessible() pulumi.BoolPtrOutput {
return o.ApplyT(func(v *WorkgroupType) *bool {
@@ -939,6 +953,154 @@ func (o WorkgroupNetworkInterfaceArrayOutput) Index(i pulumi.IntInput) Workgroup
}).(WorkgroupNetworkInterfaceOutput)
}
+type WorkgroupPerformanceTarget struct {
+ Level *int `pulumi:"level"`
+ Status *WorkgroupPerformanceTargetStatus `pulumi:"status"`
+}
+
+// WorkgroupPerformanceTargetInput is an input type that accepts WorkgroupPerformanceTargetArgs and WorkgroupPerformanceTargetOutput values.
+// You can construct a concrete instance of `WorkgroupPerformanceTargetInput` via:
+//
+// WorkgroupPerformanceTargetArgs{...}
+type WorkgroupPerformanceTargetInput interface {
+ pulumi.Input
+
+ ToWorkgroupPerformanceTargetOutput() WorkgroupPerformanceTargetOutput
+ ToWorkgroupPerformanceTargetOutputWithContext(context.Context) WorkgroupPerformanceTargetOutput
+}
+
+type WorkgroupPerformanceTargetArgs struct {
+ Level pulumi.IntPtrInput `pulumi:"level"`
+ Status WorkgroupPerformanceTargetStatusPtrInput `pulumi:"status"`
+}
+
+func (WorkgroupPerformanceTargetArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*WorkgroupPerformanceTarget)(nil)).Elem()
+}
+
+func (i WorkgroupPerformanceTargetArgs) ToWorkgroupPerformanceTargetOutput() WorkgroupPerformanceTargetOutput {
+ return i.ToWorkgroupPerformanceTargetOutputWithContext(context.Background())
+}
+
+func (i WorkgroupPerformanceTargetArgs) ToWorkgroupPerformanceTargetOutputWithContext(ctx context.Context) WorkgroupPerformanceTargetOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(WorkgroupPerformanceTargetOutput)
+}
+
+func (i WorkgroupPerformanceTargetArgs) ToWorkgroupPerformanceTargetPtrOutput() WorkgroupPerformanceTargetPtrOutput {
+ return i.ToWorkgroupPerformanceTargetPtrOutputWithContext(context.Background())
+}
+
+func (i WorkgroupPerformanceTargetArgs) ToWorkgroupPerformanceTargetPtrOutputWithContext(ctx context.Context) WorkgroupPerformanceTargetPtrOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(WorkgroupPerformanceTargetOutput).ToWorkgroupPerformanceTargetPtrOutputWithContext(ctx)
+}
+
+// WorkgroupPerformanceTargetPtrInput is an input type that accepts WorkgroupPerformanceTargetArgs, WorkgroupPerformanceTargetPtr and WorkgroupPerformanceTargetPtrOutput values.
+// You can construct a concrete instance of `WorkgroupPerformanceTargetPtrInput` via:
+//
+// WorkgroupPerformanceTargetArgs{...}
+//
+// or:
+//
+// nil
+type WorkgroupPerformanceTargetPtrInput interface {
+ pulumi.Input
+
+ ToWorkgroupPerformanceTargetPtrOutput() WorkgroupPerformanceTargetPtrOutput
+ ToWorkgroupPerformanceTargetPtrOutputWithContext(context.Context) WorkgroupPerformanceTargetPtrOutput
+}
+
+type workgroupPerformanceTargetPtrType WorkgroupPerformanceTargetArgs
+
+func WorkgroupPerformanceTargetPtr(v *WorkgroupPerformanceTargetArgs) WorkgroupPerformanceTargetPtrInput {
+ return (*workgroupPerformanceTargetPtrType)(v)
+}
+
+func (*workgroupPerformanceTargetPtrType) ElementType() reflect.Type {
+ return reflect.TypeOf((**WorkgroupPerformanceTarget)(nil)).Elem()
+}
+
+func (i *workgroupPerformanceTargetPtrType) ToWorkgroupPerformanceTargetPtrOutput() WorkgroupPerformanceTargetPtrOutput {
+ return i.ToWorkgroupPerformanceTargetPtrOutputWithContext(context.Background())
+}
+
+func (i *workgroupPerformanceTargetPtrType) ToWorkgroupPerformanceTargetPtrOutputWithContext(ctx context.Context) WorkgroupPerformanceTargetPtrOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(WorkgroupPerformanceTargetPtrOutput)
+}
+
+type WorkgroupPerformanceTargetOutput struct{ *pulumi.OutputState }
+
+func (WorkgroupPerformanceTargetOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*WorkgroupPerformanceTarget)(nil)).Elem()
+}
+
+func (o WorkgroupPerformanceTargetOutput) ToWorkgroupPerformanceTargetOutput() WorkgroupPerformanceTargetOutput {
+ return o
+}
+
+func (o WorkgroupPerformanceTargetOutput) ToWorkgroupPerformanceTargetOutputWithContext(ctx context.Context) WorkgroupPerformanceTargetOutput {
+ return o
+}
+
+func (o WorkgroupPerformanceTargetOutput) ToWorkgroupPerformanceTargetPtrOutput() WorkgroupPerformanceTargetPtrOutput {
+ return o.ToWorkgroupPerformanceTargetPtrOutputWithContext(context.Background())
+}
+
+func (o WorkgroupPerformanceTargetOutput) ToWorkgroupPerformanceTargetPtrOutputWithContext(ctx context.Context) WorkgroupPerformanceTargetPtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, v WorkgroupPerformanceTarget) *WorkgroupPerformanceTarget {
+ return &v
+ }).(WorkgroupPerformanceTargetPtrOutput)
+}
+
+func (o WorkgroupPerformanceTargetOutput) Level() pulumi.IntPtrOutput {
+ return o.ApplyT(func(v WorkgroupPerformanceTarget) *int { return v.Level }).(pulumi.IntPtrOutput)
+}
+
+func (o WorkgroupPerformanceTargetOutput) Status() WorkgroupPerformanceTargetStatusPtrOutput {
+ return o.ApplyT(func(v WorkgroupPerformanceTarget) *WorkgroupPerformanceTargetStatus { return v.Status }).(WorkgroupPerformanceTargetStatusPtrOutput)
+}
+
+type WorkgroupPerformanceTargetPtrOutput struct{ *pulumi.OutputState }
+
+func (WorkgroupPerformanceTargetPtrOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**WorkgroupPerformanceTarget)(nil)).Elem()
+}
+
+func (o WorkgroupPerformanceTargetPtrOutput) ToWorkgroupPerformanceTargetPtrOutput() WorkgroupPerformanceTargetPtrOutput {
+ return o
+}
+
+func (o WorkgroupPerformanceTargetPtrOutput) ToWorkgroupPerformanceTargetPtrOutputWithContext(ctx context.Context) WorkgroupPerformanceTargetPtrOutput {
+ return o
+}
+
+func (o WorkgroupPerformanceTargetPtrOutput) Elem() WorkgroupPerformanceTargetOutput {
+ return o.ApplyT(func(v *WorkgroupPerformanceTarget) WorkgroupPerformanceTarget {
+ if v != nil {
+ return *v
+ }
+ var ret WorkgroupPerformanceTarget
+ return ret
+ }).(WorkgroupPerformanceTargetOutput)
+}
+
+func (o WorkgroupPerformanceTargetPtrOutput) Level() pulumi.IntPtrOutput {
+ return o.ApplyT(func(v *WorkgroupPerformanceTarget) *int {
+ if v == nil {
+ return nil
+ }
+ return v.Level
+ }).(pulumi.IntPtrOutput)
+}
+
+func (o WorkgroupPerformanceTargetPtrOutput) Status() WorkgroupPerformanceTargetStatusPtrOutput {
+ return o.ApplyT(func(v *WorkgroupPerformanceTarget) *WorkgroupPerformanceTargetStatus {
+ if v == nil {
+ return nil
+ }
+ return v.Status
+ }).(WorkgroupPerformanceTargetStatusPtrOutput)
+}
+
type WorkgroupTag struct {
// The key to use in the tag.
Key string `pulumi:"key"`
@@ -1009,6 +1171,8 @@ func init() {
pulumi.RegisterInputType(reflect.TypeOf((*NamespaceSnapshotCopyConfigurationArrayInput)(nil)).Elem(), NamespaceSnapshotCopyConfigurationArray{})
pulumi.RegisterInputType(reflect.TypeOf((*WorkgroupConfigParameterInput)(nil)).Elem(), WorkgroupConfigParameterArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*WorkgroupConfigParameterArrayInput)(nil)).Elem(), WorkgroupConfigParameterArray{})
+ pulumi.RegisterInputType(reflect.TypeOf((*WorkgroupPerformanceTargetInput)(nil)).Elem(), WorkgroupPerformanceTargetArgs{})
+ pulumi.RegisterInputType(reflect.TypeOf((*WorkgroupPerformanceTargetPtrInput)(nil)).Elem(), WorkgroupPerformanceTargetArgs{})
pulumi.RegisterOutputType(NamespaceTypeOutput{})
pulumi.RegisterOutputType(NamespaceTypePtrOutput{})
pulumi.RegisterOutputType(NamespaceSnapshotCopyConfigurationOutput{})
@@ -1021,6 +1185,8 @@ func init() {
pulumi.RegisterOutputType(WorkgroupEndpointPtrOutput{})
pulumi.RegisterOutputType(WorkgroupNetworkInterfaceOutput{})
pulumi.RegisterOutputType(WorkgroupNetworkInterfaceArrayOutput{})
+ pulumi.RegisterOutputType(WorkgroupPerformanceTargetOutput{})
+ pulumi.RegisterOutputType(WorkgroupPerformanceTargetPtrOutput{})
pulumi.RegisterOutputType(WorkgroupVpcEndpointOutput{})
pulumi.RegisterOutputType(WorkgroupVpcEndpointArrayOutput{})
}
diff --git a/sdk/go/aws/redshiftserverless/workgroup.go b/sdk/go/aws/redshiftserverless/workgroup.go
index 58667dcaf2..346e2dc6e5 100644
--- a/sdk/go/aws/redshiftserverless/workgroup.go
+++ b/sdk/go/aws/redshiftserverless/workgroup.go
@@ -28,6 +28,8 @@ type Workgroup struct {
NamespaceName pulumi.StringPtrOutput `pulumi:"namespaceName"`
// The custom port to use when connecting to a workgroup. Valid port ranges are 5431-5455 and 8191-8215. The default is 5439.
Port pulumi.IntPtrOutput `pulumi:"port"`
+ // A property that represents the price performance target settings for the workgroup.
+ PricePerformanceTarget WorkgroupPerformanceTargetPtrOutput `pulumi:"pricePerformanceTarget"`
// A value that specifies whether the workgroup can be accessible from a public network.
PubliclyAccessible pulumi.BoolPtrOutput `pulumi:"publiclyAccessible"`
// A list of security group IDs to associate with the workgroup.
@@ -99,6 +101,8 @@ type workgroupArgs struct {
NamespaceName *string `pulumi:"namespaceName"`
// The custom port to use when connecting to a workgroup. Valid port ranges are 5431-5455 and 8191-8215. The default is 5439.
Port *int `pulumi:"port"`
+ // A property that represents the price performance target settings for the workgroup.
+ PricePerformanceTarget *WorkgroupPerformanceTarget `pulumi:"pricePerformanceTarget"`
// A value that specifies whether the workgroup can be accessible from a public network.
PubliclyAccessible *bool `pulumi:"publiclyAccessible"`
// A list of security group IDs to associate with the workgroup.
@@ -125,6 +129,8 @@ type WorkgroupArgs struct {
NamespaceName pulumi.StringPtrInput
// The custom port to use when connecting to a workgroup. Valid port ranges are 5431-5455 and 8191-8215. The default is 5439.
Port pulumi.IntPtrInput
+ // A property that represents the price performance target settings for the workgroup.
+ PricePerformanceTarget WorkgroupPerformanceTargetPtrInput
// A value that specifies whether the workgroup can be accessible from a public network.
PubliclyAccessible pulumi.BoolPtrInput
// A list of security group IDs to associate with the workgroup.
@@ -204,6 +210,11 @@ func (o WorkgroupOutput) Port() pulumi.IntPtrOutput {
return o.ApplyT(func(v *Workgroup) pulumi.IntPtrOutput { return v.Port }).(pulumi.IntPtrOutput)
}
+// A property that represents the price performance target settings for the workgroup.
+func (o WorkgroupOutput) PricePerformanceTarget() WorkgroupPerformanceTargetPtrOutput {
+ return o.ApplyT(func(v *Workgroup) WorkgroupPerformanceTargetPtrOutput { return v.PricePerformanceTarget }).(WorkgroupPerformanceTargetPtrOutput)
+}
+
// A value that specifies whether the workgroup can be accessible from a public network.
func (o WorkgroupOutput) PubliclyAccessible() pulumi.BoolPtrOutput {
return o.ApplyT(func(v *Workgroup) pulumi.BoolPtrOutput { return v.PubliclyAccessible }).(pulumi.BoolPtrOutput)
diff --git a/sdk/go/aws/s3/bucket.go b/sdk/go/aws/s3/bucket.go
index 7f6e4382e5..4c764e2581 100644
--- a/sdk/go/aws/s3/bucket.go
+++ b/sdk/go/aws/s3/bucket.go
@@ -820,7 +820,8 @@ type Bucket struct {
// Specifies the lifecycle configuration for objects in an Amazon S3 bucket. For more information, see [Object Lifecycle Management](https://docs.aws.amazon.com/AmazonS3/latest/dev/object-lifecycle-mgmt.html) in the *Amazon S3 User Guide*.
LifecycleConfiguration BucketLifecycleConfigurationPtrOutput `pulumi:"lifecycleConfiguration"`
// Settings that define where logs are stored.
- LoggingConfiguration BucketLoggingConfigurationPtrOutput `pulumi:"loggingConfiguration"`
+ LoggingConfiguration BucketLoggingConfigurationPtrOutput `pulumi:"loggingConfiguration"`
+ MetadataTableConfiguration BucketMetadataTableConfigurationPtrOutput `pulumi:"metadataTableConfiguration"`
// Specifies a metrics configuration for the CloudWatch request metrics (specified by the metrics configuration ID) from an Amazon S3 bucket. If you're updating an existing metrics configuration, note that this is a full replacement of the existing metrics configuration. If you don't include the elements you want to keep, they are erased. For more information, see [PutBucketMetricsConfiguration](https://docs.aws.amazon.com/AmazonS3/latest/API/RESTBucketPUTMetricConfiguration.html).
MetricsConfigurations BucketMetricsConfigurationArrayOutput `pulumi:"metricsConfigurations"`
// Configuration that defines how Amazon S3 handles bucket notifications.
@@ -926,7 +927,8 @@ type bucketArgs struct {
// Specifies the lifecycle configuration for objects in an Amazon S3 bucket. For more information, see [Object Lifecycle Management](https://docs.aws.amazon.com/AmazonS3/latest/dev/object-lifecycle-mgmt.html) in the *Amazon S3 User Guide*.
LifecycleConfiguration *BucketLifecycleConfiguration `pulumi:"lifecycleConfiguration"`
// Settings that define where logs are stored.
- LoggingConfiguration *BucketLoggingConfiguration `pulumi:"loggingConfiguration"`
+ LoggingConfiguration *BucketLoggingConfiguration `pulumi:"loggingConfiguration"`
+ MetadataTableConfiguration *BucketMetadataTableConfiguration `pulumi:"metadataTableConfiguration"`
// Specifies a metrics configuration for the CloudWatch request metrics (specified by the metrics configuration ID) from an Amazon S3 bucket. If you're updating an existing metrics configuration, note that this is a full replacement of the existing metrics configuration. If you don't include the elements you want to keep, they are erased. For more information, see [PutBucketMetricsConfiguration](https://docs.aws.amazon.com/AmazonS3/latest/API/RESTBucketPUTMetricConfiguration.html).
MetricsConfigurations []BucketMetricsConfiguration `pulumi:"metricsConfigurations"`
// Configuration that defines how Amazon S3 handles bucket notifications.
@@ -980,7 +982,8 @@ type BucketArgs struct {
// Specifies the lifecycle configuration for objects in an Amazon S3 bucket. For more information, see [Object Lifecycle Management](https://docs.aws.amazon.com/AmazonS3/latest/dev/object-lifecycle-mgmt.html) in the *Amazon S3 User Guide*.
LifecycleConfiguration BucketLifecycleConfigurationPtrInput
// Settings that define where logs are stored.
- LoggingConfiguration BucketLoggingConfigurationPtrInput
+ LoggingConfiguration BucketLoggingConfigurationPtrInput
+ MetadataTableConfiguration BucketMetadataTableConfigurationPtrInput
// Specifies a metrics configuration for the CloudWatch request metrics (specified by the metrics configuration ID) from an Amazon S3 bucket. If you're updating an existing metrics configuration, note that this is a full replacement of the existing metrics configuration. If you don't include the elements you want to keep, they are erased. For more information, see [PutBucketMetricsConfiguration](https://docs.aws.amazon.com/AmazonS3/latest/API/RESTBucketPUTMetricConfiguration.html).
MetricsConfigurations BucketMetricsConfigurationArrayInput
// Configuration that defines how Amazon S3 handles bucket notifications.
@@ -1127,6 +1130,10 @@ func (o BucketOutput) LoggingConfiguration() BucketLoggingConfigurationPtrOutput
return o.ApplyT(func(v *Bucket) BucketLoggingConfigurationPtrOutput { return v.LoggingConfiguration }).(BucketLoggingConfigurationPtrOutput)
}
+func (o BucketOutput) MetadataTableConfiguration() BucketMetadataTableConfigurationPtrOutput {
+ return o.ApplyT(func(v *Bucket) BucketMetadataTableConfigurationPtrOutput { return v.MetadataTableConfiguration }).(BucketMetadataTableConfigurationPtrOutput)
+}
+
// Specifies a metrics configuration for the CloudWatch request metrics (specified by the metrics configuration ID) from an Amazon S3 bucket. If you're updating an existing metrics configuration, note that this is a full replacement of the existing metrics configuration. If you don't include the elements you want to keep, they are erased. For more information, see [PutBucketMetricsConfiguration](https://docs.aws.amazon.com/AmazonS3/latest/API/RESTBucketPUTMetricConfiguration.html).
func (o BucketOutput) MetricsConfigurations() BucketMetricsConfigurationArrayOutput {
return o.ApplyT(func(v *Bucket) BucketMetricsConfigurationArrayOutput { return v.MetricsConfigurations }).(BucketMetricsConfigurationArrayOutput)
diff --git a/sdk/go/aws/s3/getBucket.go b/sdk/go/aws/s3/getBucket.go
index 2e49cb1152..158af14f64 100644
--- a/sdk/go/aws/s3/getBucket.go
+++ b/sdk/go/aws/s3/getBucket.go
@@ -62,7 +62,8 @@ type LookupBucketResult struct {
// Specifies the lifecycle configuration for objects in an Amazon S3 bucket. For more information, see [Object Lifecycle Management](https://docs.aws.amazon.com/AmazonS3/latest/dev/object-lifecycle-mgmt.html) in the *Amazon S3 User Guide*.
LifecycleConfiguration *BucketLifecycleConfiguration `pulumi:"lifecycleConfiguration"`
// Settings that define where logs are stored.
- LoggingConfiguration *BucketLoggingConfiguration `pulumi:"loggingConfiguration"`
+ LoggingConfiguration *BucketLoggingConfiguration `pulumi:"loggingConfiguration"`
+ MetadataTableConfiguration *BucketMetadataTableConfiguration `pulumi:"metadataTableConfiguration"`
// Specifies a metrics configuration for the CloudWatch request metrics (specified by the metrics configuration ID) from an Amazon S3 bucket. If you're updating an existing metrics configuration, note that this is a full replacement of the existing metrics configuration. If you don't include the elements you want to keep, they are erased. For more information, see [PutBucketMetricsConfiguration](https://docs.aws.amazon.com/AmazonS3/latest/API/RESTBucketPUTMetricConfiguration.html).
MetricsConfigurations []BucketMetricsConfiguration `pulumi:"metricsConfigurations"`
// Configuration that defines how Amazon S3 handles bucket notifications.
@@ -209,6 +210,10 @@ func (o LookupBucketResultOutput) LoggingConfiguration() BucketLoggingConfigurat
return o.ApplyT(func(v LookupBucketResult) *BucketLoggingConfiguration { return v.LoggingConfiguration }).(BucketLoggingConfigurationPtrOutput)
}
+func (o LookupBucketResultOutput) MetadataTableConfiguration() BucketMetadataTableConfigurationPtrOutput {
+ return o.ApplyT(func(v LookupBucketResult) *BucketMetadataTableConfiguration { return v.MetadataTableConfiguration }).(BucketMetadataTableConfigurationPtrOutput)
+}
+
// Specifies a metrics configuration for the CloudWatch request metrics (specified by the metrics configuration ID) from an Amazon S3 bucket. If you're updating an existing metrics configuration, note that this is a full replacement of the existing metrics configuration. If you don't include the elements you want to keep, they are erased. For more information, see [PutBucketMetricsConfiguration](https://docs.aws.amazon.com/AmazonS3/latest/API/RESTBucketPUTMetricConfiguration.html).
func (o LookupBucketResultOutput) MetricsConfigurations() BucketMetricsConfigurationArrayOutput {
return o.ApplyT(func(v LookupBucketResult) []BucketMetricsConfiguration { return v.MetricsConfigurations }).(BucketMetricsConfigurationArrayOutput)
diff --git a/sdk/go/aws/s3/pulumiTypes.go b/sdk/go/aws/s3/pulumiTypes.go
index ccbb58bc82..64a6b27868 100644
--- a/sdk/go/aws/s3/pulumiTypes.go
+++ b/sdk/go/aws/s3/pulumiTypes.go
@@ -3481,6 +3481,333 @@ func (o BucketLoggingConfigurationPtrOutput) TargetObjectKeyFormat() BucketTarge
}).(BucketTargetObjectKeyFormatPtrOutput)
}
+type BucketMetadataTableConfiguration struct {
+ // Returns the Error value of the GetBucketMetadataTableConfiguration response.
+ Error *BucketMetadataTableError `pulumi:"error"`
+ S3TablesDestination BucketS3TablesDestination `pulumi:"s3TablesDestination"`
+ // Returns the Status value of the GetBucketMetadataTableConfigurationResult response. This value indicates the status of the metadata table. The status values are: CREATING - The metadata table is in the process of being created in the specified table bucket. ACTIVE - The metadata table has been created successfully and records are being delivered to the table. FAILED - Amazon S3 is unable to create the metadata table, or Amazon S3 is unable to deliver records.
+ Status *string `pulumi:"status"`
+}
+
+// BucketMetadataTableConfigurationInput is an input type that accepts BucketMetadataTableConfigurationArgs and BucketMetadataTableConfigurationOutput values.
+// You can construct a concrete instance of `BucketMetadataTableConfigurationInput` via:
+//
+// BucketMetadataTableConfigurationArgs{...}
+type BucketMetadataTableConfigurationInput interface {
+ pulumi.Input
+
+ ToBucketMetadataTableConfigurationOutput() BucketMetadataTableConfigurationOutput
+ ToBucketMetadataTableConfigurationOutputWithContext(context.Context) BucketMetadataTableConfigurationOutput
+}
+
+type BucketMetadataTableConfigurationArgs struct {
+ // Returns the Error value of the GetBucketMetadataTableConfiguration response.
+ Error BucketMetadataTableErrorPtrInput `pulumi:"error"`
+ S3TablesDestination BucketS3TablesDestinationInput `pulumi:"s3TablesDestination"`
+ // Returns the Status value of the GetBucketMetadataTableConfigurationResult response. This value indicates the status of the metadata table. The status values are: CREATING - The metadata table is in the process of being created in the specified table bucket. ACTIVE - The metadata table has been created successfully and records are being delivered to the table. FAILED - Amazon S3 is unable to create the metadata table, or Amazon S3 is unable to deliver records.
+ Status pulumi.StringPtrInput `pulumi:"status"`
+}
+
+func (BucketMetadataTableConfigurationArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*BucketMetadataTableConfiguration)(nil)).Elem()
+}
+
+func (i BucketMetadataTableConfigurationArgs) ToBucketMetadataTableConfigurationOutput() BucketMetadataTableConfigurationOutput {
+ return i.ToBucketMetadataTableConfigurationOutputWithContext(context.Background())
+}
+
+func (i BucketMetadataTableConfigurationArgs) ToBucketMetadataTableConfigurationOutputWithContext(ctx context.Context) BucketMetadataTableConfigurationOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(BucketMetadataTableConfigurationOutput)
+}
+
+func (i BucketMetadataTableConfigurationArgs) ToBucketMetadataTableConfigurationPtrOutput() BucketMetadataTableConfigurationPtrOutput {
+ return i.ToBucketMetadataTableConfigurationPtrOutputWithContext(context.Background())
+}
+
+func (i BucketMetadataTableConfigurationArgs) ToBucketMetadataTableConfigurationPtrOutputWithContext(ctx context.Context) BucketMetadataTableConfigurationPtrOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(BucketMetadataTableConfigurationOutput).ToBucketMetadataTableConfigurationPtrOutputWithContext(ctx)
+}
+
+// BucketMetadataTableConfigurationPtrInput is an input type that accepts BucketMetadataTableConfigurationArgs, BucketMetadataTableConfigurationPtr and BucketMetadataTableConfigurationPtrOutput values.
+// You can construct a concrete instance of `BucketMetadataTableConfigurationPtrInput` via:
+//
+// BucketMetadataTableConfigurationArgs{...}
+//
+// or:
+//
+// nil
+type BucketMetadataTableConfigurationPtrInput interface {
+ pulumi.Input
+
+ ToBucketMetadataTableConfigurationPtrOutput() BucketMetadataTableConfigurationPtrOutput
+ ToBucketMetadataTableConfigurationPtrOutputWithContext(context.Context) BucketMetadataTableConfigurationPtrOutput
+}
+
+type bucketMetadataTableConfigurationPtrType BucketMetadataTableConfigurationArgs
+
+func BucketMetadataTableConfigurationPtr(v *BucketMetadataTableConfigurationArgs) BucketMetadataTableConfigurationPtrInput {
+ return (*bucketMetadataTableConfigurationPtrType)(v)
+}
+
+func (*bucketMetadataTableConfigurationPtrType) ElementType() reflect.Type {
+ return reflect.TypeOf((**BucketMetadataTableConfiguration)(nil)).Elem()
+}
+
+func (i *bucketMetadataTableConfigurationPtrType) ToBucketMetadataTableConfigurationPtrOutput() BucketMetadataTableConfigurationPtrOutput {
+ return i.ToBucketMetadataTableConfigurationPtrOutputWithContext(context.Background())
+}
+
+func (i *bucketMetadataTableConfigurationPtrType) ToBucketMetadataTableConfigurationPtrOutputWithContext(ctx context.Context) BucketMetadataTableConfigurationPtrOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(BucketMetadataTableConfigurationPtrOutput)
+}
+
+type BucketMetadataTableConfigurationOutput struct{ *pulumi.OutputState }
+
+func (BucketMetadataTableConfigurationOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*BucketMetadataTableConfiguration)(nil)).Elem()
+}
+
+func (o BucketMetadataTableConfigurationOutput) ToBucketMetadataTableConfigurationOutput() BucketMetadataTableConfigurationOutput {
+ return o
+}
+
+func (o BucketMetadataTableConfigurationOutput) ToBucketMetadataTableConfigurationOutputWithContext(ctx context.Context) BucketMetadataTableConfigurationOutput {
+ return o
+}
+
+func (o BucketMetadataTableConfigurationOutput) ToBucketMetadataTableConfigurationPtrOutput() BucketMetadataTableConfigurationPtrOutput {
+ return o.ToBucketMetadataTableConfigurationPtrOutputWithContext(context.Background())
+}
+
+func (o BucketMetadataTableConfigurationOutput) ToBucketMetadataTableConfigurationPtrOutputWithContext(ctx context.Context) BucketMetadataTableConfigurationPtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, v BucketMetadataTableConfiguration) *BucketMetadataTableConfiguration {
+ return &v
+ }).(BucketMetadataTableConfigurationPtrOutput)
+}
+
+// Returns the Error value of the GetBucketMetadataTableConfiguration response.
+func (o BucketMetadataTableConfigurationOutput) Error() BucketMetadataTableErrorPtrOutput {
+ return o.ApplyT(func(v BucketMetadataTableConfiguration) *BucketMetadataTableError { return v.Error }).(BucketMetadataTableErrorPtrOutput)
+}
+
+func (o BucketMetadataTableConfigurationOutput) S3TablesDestination() BucketS3TablesDestinationOutput {
+ return o.ApplyT(func(v BucketMetadataTableConfiguration) BucketS3TablesDestination { return v.S3TablesDestination }).(BucketS3TablesDestinationOutput)
+}
+
+// Returns the Status value of the GetBucketMetadataTableConfigurationResult response. This value indicates the status of the metadata table. The status values are: CREATING - The metadata table is in the process of being created in the specified table bucket. ACTIVE - The metadata table has been created successfully and records are being delivered to the table. FAILED - Amazon S3 is unable to create the metadata table, or Amazon S3 is unable to deliver records.
+func (o BucketMetadataTableConfigurationOutput) Status() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v BucketMetadataTableConfiguration) *string { return v.Status }).(pulumi.StringPtrOutput)
+}
+
+type BucketMetadataTableConfigurationPtrOutput struct{ *pulumi.OutputState }
+
+func (BucketMetadataTableConfigurationPtrOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**BucketMetadataTableConfiguration)(nil)).Elem()
+}
+
+func (o BucketMetadataTableConfigurationPtrOutput) ToBucketMetadataTableConfigurationPtrOutput() BucketMetadataTableConfigurationPtrOutput {
+ return o
+}
+
+func (o BucketMetadataTableConfigurationPtrOutput) ToBucketMetadataTableConfigurationPtrOutputWithContext(ctx context.Context) BucketMetadataTableConfigurationPtrOutput {
+ return o
+}
+
+func (o BucketMetadataTableConfigurationPtrOutput) Elem() BucketMetadataTableConfigurationOutput {
+ return o.ApplyT(func(v *BucketMetadataTableConfiguration) BucketMetadataTableConfiguration {
+ if v != nil {
+ return *v
+ }
+ var ret BucketMetadataTableConfiguration
+ return ret
+ }).(BucketMetadataTableConfigurationOutput)
+}
+
+// Returns the Error value of the GetBucketMetadataTableConfiguration response.
+func (o BucketMetadataTableConfigurationPtrOutput) Error() BucketMetadataTableErrorPtrOutput {
+ return o.ApplyT(func(v *BucketMetadataTableConfiguration) *BucketMetadataTableError {
+ if v == nil {
+ return nil
+ }
+ return v.Error
+ }).(BucketMetadataTableErrorPtrOutput)
+}
+
+func (o BucketMetadataTableConfigurationPtrOutput) S3TablesDestination() BucketS3TablesDestinationPtrOutput {
+ return o.ApplyT(func(v *BucketMetadataTableConfiguration) *BucketS3TablesDestination {
+ if v == nil {
+ return nil
+ }
+ return &v.S3TablesDestination
+ }).(BucketS3TablesDestinationPtrOutput)
+}
+
+// Returns the Status value of the GetBucketMetadataTableConfigurationResult response. This value indicates the status of the metadata table. The status values are: CREATING - The metadata table is in the process of being created in the specified table bucket. ACTIVE - The metadata table has been created successfully and records are being delivered to the table. FAILED - Amazon S3 is unable to create the metadata table, or Amazon S3 is unable to deliver records.
+func (o BucketMetadataTableConfigurationPtrOutput) Status() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *BucketMetadataTableConfiguration) *string {
+ if v == nil {
+ return nil
+ }
+ return v.Status
+ }).(pulumi.StringPtrOutput)
+}
+
+type BucketMetadataTableError struct {
+ // If the CreateBucketMetadataTableConfiguration request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows: AccessDeniedCreatingResources - You don't have sufficient permissions to create the required resources. Make sure that you have s3tables:CreateNamespace, s3tables:CreateTable, s3tables:GetTable and s3tables:PutTablePolicy permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. AccessDeniedWritingToTable - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. DestinationTableNotFound - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. ServerInternalError - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableAlreadyExists - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableBucketNotFound - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.
+ ErrorCode string `pulumi:"errorCode"`
+ // If the CreateBucketMetadataTableConfiguration request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows: AccessDeniedCreatingResources - You don't have sufficient permissions to create the required resources. Make sure that you have s3tables:CreateNamespace, s3tables:CreateTable, s3tables:GetTable and s3tables:PutTablePolicy permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. AccessDeniedWritingToTable - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. DestinationTableNotFound - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. ServerInternalError - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableAlreadyExists - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableBucketNotFound - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.
+ ErrorMessage string `pulumi:"errorMessage"`
+}
+
+// BucketMetadataTableErrorInput is an input type that accepts BucketMetadataTableErrorArgs and BucketMetadataTableErrorOutput values.
+// You can construct a concrete instance of `BucketMetadataTableErrorInput` via:
+//
+// BucketMetadataTableErrorArgs{...}
+type BucketMetadataTableErrorInput interface {
+ pulumi.Input
+
+ ToBucketMetadataTableErrorOutput() BucketMetadataTableErrorOutput
+ ToBucketMetadataTableErrorOutputWithContext(context.Context) BucketMetadataTableErrorOutput
+}
+
+type BucketMetadataTableErrorArgs struct {
+ // If the CreateBucketMetadataTableConfiguration request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows: AccessDeniedCreatingResources - You don't have sufficient permissions to create the required resources. Make sure that you have s3tables:CreateNamespace, s3tables:CreateTable, s3tables:GetTable and s3tables:PutTablePolicy permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. AccessDeniedWritingToTable - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. DestinationTableNotFound - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. ServerInternalError - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableAlreadyExists - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableBucketNotFound - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.
+ ErrorCode pulumi.StringInput `pulumi:"errorCode"`
+ // If the CreateBucketMetadataTableConfiguration request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows: AccessDeniedCreatingResources - You don't have sufficient permissions to create the required resources. Make sure that you have s3tables:CreateNamespace, s3tables:CreateTable, s3tables:GetTable and s3tables:PutTablePolicy permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. AccessDeniedWritingToTable - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. DestinationTableNotFound - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. ServerInternalError - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableAlreadyExists - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableBucketNotFound - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.
+ ErrorMessage pulumi.StringInput `pulumi:"errorMessage"`
+}
+
+func (BucketMetadataTableErrorArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*BucketMetadataTableError)(nil)).Elem()
+}
+
+func (i BucketMetadataTableErrorArgs) ToBucketMetadataTableErrorOutput() BucketMetadataTableErrorOutput {
+ return i.ToBucketMetadataTableErrorOutputWithContext(context.Background())
+}
+
+func (i BucketMetadataTableErrorArgs) ToBucketMetadataTableErrorOutputWithContext(ctx context.Context) BucketMetadataTableErrorOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(BucketMetadataTableErrorOutput)
+}
+
+func (i BucketMetadataTableErrorArgs) ToBucketMetadataTableErrorPtrOutput() BucketMetadataTableErrorPtrOutput {
+ return i.ToBucketMetadataTableErrorPtrOutputWithContext(context.Background())
+}
+
+func (i BucketMetadataTableErrorArgs) ToBucketMetadataTableErrorPtrOutputWithContext(ctx context.Context) BucketMetadataTableErrorPtrOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(BucketMetadataTableErrorOutput).ToBucketMetadataTableErrorPtrOutputWithContext(ctx)
+}
+
+// BucketMetadataTableErrorPtrInput is an input type that accepts BucketMetadataTableErrorArgs, BucketMetadataTableErrorPtr and BucketMetadataTableErrorPtrOutput values.
+// You can construct a concrete instance of `BucketMetadataTableErrorPtrInput` via:
+//
+// BucketMetadataTableErrorArgs{...}
+//
+// or:
+//
+// nil
+type BucketMetadataTableErrorPtrInput interface {
+ pulumi.Input
+
+ ToBucketMetadataTableErrorPtrOutput() BucketMetadataTableErrorPtrOutput
+ ToBucketMetadataTableErrorPtrOutputWithContext(context.Context) BucketMetadataTableErrorPtrOutput
+}
+
+type bucketMetadataTableErrorPtrType BucketMetadataTableErrorArgs
+
+func BucketMetadataTableErrorPtr(v *BucketMetadataTableErrorArgs) BucketMetadataTableErrorPtrInput {
+ return (*bucketMetadataTableErrorPtrType)(v)
+}
+
+func (*bucketMetadataTableErrorPtrType) ElementType() reflect.Type {
+ return reflect.TypeOf((**BucketMetadataTableError)(nil)).Elem()
+}
+
+func (i *bucketMetadataTableErrorPtrType) ToBucketMetadataTableErrorPtrOutput() BucketMetadataTableErrorPtrOutput {
+ return i.ToBucketMetadataTableErrorPtrOutputWithContext(context.Background())
+}
+
+func (i *bucketMetadataTableErrorPtrType) ToBucketMetadataTableErrorPtrOutputWithContext(ctx context.Context) BucketMetadataTableErrorPtrOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(BucketMetadataTableErrorPtrOutput)
+}
+
+type BucketMetadataTableErrorOutput struct{ *pulumi.OutputState }
+
+func (BucketMetadataTableErrorOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*BucketMetadataTableError)(nil)).Elem()
+}
+
+func (o BucketMetadataTableErrorOutput) ToBucketMetadataTableErrorOutput() BucketMetadataTableErrorOutput {
+ return o
+}
+
+func (o BucketMetadataTableErrorOutput) ToBucketMetadataTableErrorOutputWithContext(ctx context.Context) BucketMetadataTableErrorOutput {
+ return o
+}
+
+func (o BucketMetadataTableErrorOutput) ToBucketMetadataTableErrorPtrOutput() BucketMetadataTableErrorPtrOutput {
+ return o.ToBucketMetadataTableErrorPtrOutputWithContext(context.Background())
+}
+
+func (o BucketMetadataTableErrorOutput) ToBucketMetadataTableErrorPtrOutputWithContext(ctx context.Context) BucketMetadataTableErrorPtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, v BucketMetadataTableError) *BucketMetadataTableError {
+ return &v
+ }).(BucketMetadataTableErrorPtrOutput)
+}
+
+// If the CreateBucketMetadataTableConfiguration request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows: AccessDeniedCreatingResources - You don't have sufficient permissions to create the required resources. Make sure that you have s3tables:CreateNamespace, s3tables:CreateTable, s3tables:GetTable and s3tables:PutTablePolicy permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. AccessDeniedWritingToTable - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. DestinationTableNotFound - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. ServerInternalError - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableAlreadyExists - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableBucketNotFound - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.
+func (o BucketMetadataTableErrorOutput) ErrorCode() pulumi.StringOutput {
+ return o.ApplyT(func(v BucketMetadataTableError) string { return v.ErrorCode }).(pulumi.StringOutput)
+}
+
+// If the CreateBucketMetadataTableConfiguration request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows: AccessDeniedCreatingResources - You don't have sufficient permissions to create the required resources. Make sure that you have s3tables:CreateNamespace, s3tables:CreateTable, s3tables:GetTable and s3tables:PutTablePolicy permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. AccessDeniedWritingToTable - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. DestinationTableNotFound - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. ServerInternalError - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableAlreadyExists - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableBucketNotFound - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.
+func (o BucketMetadataTableErrorOutput) ErrorMessage() pulumi.StringOutput {
+ return o.ApplyT(func(v BucketMetadataTableError) string { return v.ErrorMessage }).(pulumi.StringOutput)
+}
+
+type BucketMetadataTableErrorPtrOutput struct{ *pulumi.OutputState }
+
+func (BucketMetadataTableErrorPtrOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**BucketMetadataTableError)(nil)).Elem()
+}
+
+func (o BucketMetadataTableErrorPtrOutput) ToBucketMetadataTableErrorPtrOutput() BucketMetadataTableErrorPtrOutput {
+ return o
+}
+
+func (o BucketMetadataTableErrorPtrOutput) ToBucketMetadataTableErrorPtrOutputWithContext(ctx context.Context) BucketMetadataTableErrorPtrOutput {
+ return o
+}
+
+func (o BucketMetadataTableErrorPtrOutput) Elem() BucketMetadataTableErrorOutput {
+ return o.ApplyT(func(v *BucketMetadataTableError) BucketMetadataTableError {
+ if v != nil {
+ return *v
+ }
+ var ret BucketMetadataTableError
+ return ret
+ }).(BucketMetadataTableErrorOutput)
+}
+
+// If the CreateBucketMetadataTableConfiguration request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows: AccessDeniedCreatingResources - You don't have sufficient permissions to create the required resources. Make sure that you have s3tables:CreateNamespace, s3tables:CreateTable, s3tables:GetTable and s3tables:PutTablePolicy permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. AccessDeniedWritingToTable - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. DestinationTableNotFound - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. ServerInternalError - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableAlreadyExists - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableBucketNotFound - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.
+func (o BucketMetadataTableErrorPtrOutput) ErrorCode() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *BucketMetadataTableError) *string {
+ if v == nil {
+ return nil
+ }
+ return &v.ErrorCode
+ }).(pulumi.StringPtrOutput)
+}
+
+// If the CreateBucketMetadataTableConfiguration request succeeds, but S3 Metadata was unable to create the table, this structure contains the error code. The possible error codes and error messages are as follows: AccessDeniedCreatingResources - You don't have sufficient permissions to create the required resources. Make sure that you have s3tables:CreateNamespace, s3tables:CreateTable, s3tables:GetTable and s3tables:PutTablePolicy permissions, and then try again. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. AccessDeniedWritingToTable - Unable to write to the metadata table because of missing resource permissions. To fix the resource policy, Amazon S3 needs to create a new metadata table. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. DestinationTableNotFound - The destination table doesn't exist. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. ServerInternalError - An internal error has occurred. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableAlreadyExists - The table that you specified already exists in the table bucket's namespace. Specify a different table name. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration. TableBucketNotFound - The table bucket that you specified doesn't exist in this AWS Region and account. Create or choose a different table bucket. To create a new metadata table, you must delete the metadata configuration for this bucket, and then create a new metadata configuration.
+func (o BucketMetadataTableErrorPtrOutput) ErrorMessage() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *BucketMetadataTableError) *string {
+ if v == nil {
+ return nil
+ }
+ return &v.ErrorMessage
+ }).(pulumi.StringPtrOutput)
+}
+
// A container specifying replication metrics-related settings enabling replication metrics and events.
type BucketMetrics struct {
// A container specifying the time threshold for emitting the ``s3:Replication:OperationMissedThreshold`` event.
@@ -7626,6 +7953,200 @@ func (o BucketS3KeyFilterPtrOutput) Rules() BucketFilterRuleArrayOutput {
}).(BucketFilterRuleArrayOutput)
}
+type BucketS3TablesDestination struct {
+ // The Amazon Resource Name (ARN) for the metadata table in the metadata table configuration. The specified metadata table name must be unique within the aws_s3_metadata namespace in the destination table bucket.
+ TableArn *string `pulumi:"tableArn"`
+ // The Amazon Resource Name (ARN) for the table bucket that's specified as the destination in the metadata table configuration. The destination table bucket must be in the same Region and AWS account as the general purpose bucket.
+ TableBucketArn string `pulumi:"tableBucketArn"`
+ // The name for the metadata table in your metadata table configuration. The specified metadata table name must be unique within the aws_s3_metadata namespace in the destination table bucket.
+ TableName string `pulumi:"tableName"`
+ // The table bucket namespace for the metadata table in your metadata table configuration. This value is always aws_s3_metadata.
+ TableNamespace *string `pulumi:"tableNamespace"`
+}
+
+// BucketS3TablesDestinationInput is an input type that accepts BucketS3TablesDestinationArgs and BucketS3TablesDestinationOutput values.
+// You can construct a concrete instance of `BucketS3TablesDestinationInput` via:
+//
+// BucketS3TablesDestinationArgs{...}
+type BucketS3TablesDestinationInput interface {
+ pulumi.Input
+
+ ToBucketS3TablesDestinationOutput() BucketS3TablesDestinationOutput
+ ToBucketS3TablesDestinationOutputWithContext(context.Context) BucketS3TablesDestinationOutput
+}
+
+type BucketS3TablesDestinationArgs struct {
+ // The Amazon Resource Name (ARN) for the metadata table in the metadata table configuration. The specified metadata table name must be unique within the aws_s3_metadata namespace in the destination table bucket.
+ TableArn pulumi.StringPtrInput `pulumi:"tableArn"`
+ // The Amazon Resource Name (ARN) for the table bucket that's specified as the destination in the metadata table configuration. The destination table bucket must be in the same Region and AWS account as the general purpose bucket.
+ TableBucketArn pulumi.StringInput `pulumi:"tableBucketArn"`
+ // The name for the metadata table in your metadata table configuration. The specified metadata table name must be unique within the aws_s3_metadata namespace in the destination table bucket.
+ TableName pulumi.StringInput `pulumi:"tableName"`
+ // The table bucket namespace for the metadata table in your metadata table configuration. This value is always aws_s3_metadata.
+ TableNamespace pulumi.StringPtrInput `pulumi:"tableNamespace"`
+}
+
+func (BucketS3TablesDestinationArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*BucketS3TablesDestination)(nil)).Elem()
+}
+
+func (i BucketS3TablesDestinationArgs) ToBucketS3TablesDestinationOutput() BucketS3TablesDestinationOutput {
+ return i.ToBucketS3TablesDestinationOutputWithContext(context.Background())
+}
+
+func (i BucketS3TablesDestinationArgs) ToBucketS3TablesDestinationOutputWithContext(ctx context.Context) BucketS3TablesDestinationOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(BucketS3TablesDestinationOutput)
+}
+
+func (i BucketS3TablesDestinationArgs) ToBucketS3TablesDestinationPtrOutput() BucketS3TablesDestinationPtrOutput {
+ return i.ToBucketS3TablesDestinationPtrOutputWithContext(context.Background())
+}
+
+func (i BucketS3TablesDestinationArgs) ToBucketS3TablesDestinationPtrOutputWithContext(ctx context.Context) BucketS3TablesDestinationPtrOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(BucketS3TablesDestinationOutput).ToBucketS3TablesDestinationPtrOutputWithContext(ctx)
+}
+
+// BucketS3TablesDestinationPtrInput is an input type that accepts BucketS3TablesDestinationArgs, BucketS3TablesDestinationPtr and BucketS3TablesDestinationPtrOutput values.
+// You can construct a concrete instance of `BucketS3TablesDestinationPtrInput` via:
+//
+// BucketS3TablesDestinationArgs{...}
+//
+// or:
+//
+// nil
+type BucketS3TablesDestinationPtrInput interface {
+ pulumi.Input
+
+ ToBucketS3TablesDestinationPtrOutput() BucketS3TablesDestinationPtrOutput
+ ToBucketS3TablesDestinationPtrOutputWithContext(context.Context) BucketS3TablesDestinationPtrOutput
+}
+
+type bucketS3TablesDestinationPtrType BucketS3TablesDestinationArgs
+
+func BucketS3TablesDestinationPtr(v *BucketS3TablesDestinationArgs) BucketS3TablesDestinationPtrInput {
+ return (*bucketS3TablesDestinationPtrType)(v)
+}
+
+func (*bucketS3TablesDestinationPtrType) ElementType() reflect.Type {
+ return reflect.TypeOf((**BucketS3TablesDestination)(nil)).Elem()
+}
+
+func (i *bucketS3TablesDestinationPtrType) ToBucketS3TablesDestinationPtrOutput() BucketS3TablesDestinationPtrOutput {
+ return i.ToBucketS3TablesDestinationPtrOutputWithContext(context.Background())
+}
+
+func (i *bucketS3TablesDestinationPtrType) ToBucketS3TablesDestinationPtrOutputWithContext(ctx context.Context) BucketS3TablesDestinationPtrOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(BucketS3TablesDestinationPtrOutput)
+}
+
+type BucketS3TablesDestinationOutput struct{ *pulumi.OutputState }
+
+func (BucketS3TablesDestinationOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*BucketS3TablesDestination)(nil)).Elem()
+}
+
+func (o BucketS3TablesDestinationOutput) ToBucketS3TablesDestinationOutput() BucketS3TablesDestinationOutput {
+ return o
+}
+
+func (o BucketS3TablesDestinationOutput) ToBucketS3TablesDestinationOutputWithContext(ctx context.Context) BucketS3TablesDestinationOutput {
+ return o
+}
+
+func (o BucketS3TablesDestinationOutput) ToBucketS3TablesDestinationPtrOutput() BucketS3TablesDestinationPtrOutput {
+ return o.ToBucketS3TablesDestinationPtrOutputWithContext(context.Background())
+}
+
+func (o BucketS3TablesDestinationOutput) ToBucketS3TablesDestinationPtrOutputWithContext(ctx context.Context) BucketS3TablesDestinationPtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, v BucketS3TablesDestination) *BucketS3TablesDestination {
+ return &v
+ }).(BucketS3TablesDestinationPtrOutput)
+}
+
+// The Amazon Resource Name (ARN) for the metadata table in the metadata table configuration. The specified metadata table name must be unique within the aws_s3_metadata namespace in the destination table bucket.
+func (o BucketS3TablesDestinationOutput) TableArn() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v BucketS3TablesDestination) *string { return v.TableArn }).(pulumi.StringPtrOutput)
+}
+
+// The Amazon Resource Name (ARN) for the table bucket that's specified as the destination in the metadata table configuration. The destination table bucket must be in the same Region and AWS account as the general purpose bucket.
+func (o BucketS3TablesDestinationOutput) TableBucketArn() pulumi.StringOutput {
+ return o.ApplyT(func(v BucketS3TablesDestination) string { return v.TableBucketArn }).(pulumi.StringOutput)
+}
+
+// The name for the metadata table in your metadata table configuration. The specified metadata table name must be unique within the aws_s3_metadata namespace in the destination table bucket.
+func (o BucketS3TablesDestinationOutput) TableName() pulumi.StringOutput {
+ return o.ApplyT(func(v BucketS3TablesDestination) string { return v.TableName }).(pulumi.StringOutput)
+}
+
+// The table bucket namespace for the metadata table in your metadata table configuration. This value is always aws_s3_metadata.
+func (o BucketS3TablesDestinationOutput) TableNamespace() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v BucketS3TablesDestination) *string { return v.TableNamespace }).(pulumi.StringPtrOutput)
+}
+
+type BucketS3TablesDestinationPtrOutput struct{ *pulumi.OutputState }
+
+func (BucketS3TablesDestinationPtrOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**BucketS3TablesDestination)(nil)).Elem()
+}
+
+func (o BucketS3TablesDestinationPtrOutput) ToBucketS3TablesDestinationPtrOutput() BucketS3TablesDestinationPtrOutput {
+ return o
+}
+
+func (o BucketS3TablesDestinationPtrOutput) ToBucketS3TablesDestinationPtrOutputWithContext(ctx context.Context) BucketS3TablesDestinationPtrOutput {
+ return o
+}
+
+func (o BucketS3TablesDestinationPtrOutput) Elem() BucketS3TablesDestinationOutput {
+ return o.ApplyT(func(v *BucketS3TablesDestination) BucketS3TablesDestination {
+ if v != nil {
+ return *v
+ }
+ var ret BucketS3TablesDestination
+ return ret
+ }).(BucketS3TablesDestinationOutput)
+}
+
+// The Amazon Resource Name (ARN) for the metadata table in the metadata table configuration. The specified metadata table name must be unique within the aws_s3_metadata namespace in the destination table bucket.
+func (o BucketS3TablesDestinationPtrOutput) TableArn() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *BucketS3TablesDestination) *string {
+ if v == nil {
+ return nil
+ }
+ return v.TableArn
+ }).(pulumi.StringPtrOutput)
+}
+
+// The Amazon Resource Name (ARN) for the table bucket that's specified as the destination in the metadata table configuration. The destination table bucket must be in the same Region and AWS account as the general purpose bucket.
+func (o BucketS3TablesDestinationPtrOutput) TableBucketArn() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *BucketS3TablesDestination) *string {
+ if v == nil {
+ return nil
+ }
+ return &v.TableBucketArn
+ }).(pulumi.StringPtrOutput)
+}
+
+// The name for the metadata table in your metadata table configuration. The specified metadata table name must be unique within the aws_s3_metadata namespace in the destination table bucket.
+func (o BucketS3TablesDestinationPtrOutput) TableName() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *BucketS3TablesDestination) *string {
+ if v == nil {
+ return nil
+ }
+ return &v.TableName
+ }).(pulumi.StringPtrOutput)
+}
+
+// The table bucket namespace for the metadata table in your metadata table configuration. This value is always aws_s3_metadata.
+func (o BucketS3TablesDestinationPtrOutput) TableNamespace() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v *BucketS3TablesDestination) *string {
+ if v == nil {
+ return nil
+ }
+ return v.TableNamespace
+ }).(pulumi.StringPtrOutput)
+}
+
// Describes the default server-side encryption to apply to new objects in the bucket. If a PUT Object request doesn't specify any server-side encryption, this default encryption will be applied. For more information, see [PutBucketEncryption](https://docs.aws.amazon.com/AmazonS3/latest/API/RESTBucketPUTencryption.html).
// - *General purpose buckets* - If you don't specify a customer managed key at configuration, Amazon S3 automatically creates an AWS KMS key (“aws/s3“) in your AWS account the first time that you add an object encrypted with SSE-KMS to a bucket. By default, Amazon S3 uses this KMS key for SSE-KMS.
// - *Directory buckets* - Your SSE-KMS configuration can only support 1 [customer managed key](https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#customer-cmk) per directory bucket for the lifetime of the bucket. The [managed key](https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-managed-cmk) (“aws/s3“) isn't supported.
@@ -13575,6 +14096,10 @@ func init() {
pulumi.RegisterInputType(reflect.TypeOf((*BucketLifecycleConfigurationPtrInput)(nil)).Elem(), BucketLifecycleConfigurationArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*BucketLoggingConfigurationInput)(nil)).Elem(), BucketLoggingConfigurationArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*BucketLoggingConfigurationPtrInput)(nil)).Elem(), BucketLoggingConfigurationArgs{})
+ pulumi.RegisterInputType(reflect.TypeOf((*BucketMetadataTableConfigurationInput)(nil)).Elem(), BucketMetadataTableConfigurationArgs{})
+ pulumi.RegisterInputType(reflect.TypeOf((*BucketMetadataTableConfigurationPtrInput)(nil)).Elem(), BucketMetadataTableConfigurationArgs{})
+ pulumi.RegisterInputType(reflect.TypeOf((*BucketMetadataTableErrorInput)(nil)).Elem(), BucketMetadataTableErrorArgs{})
+ pulumi.RegisterInputType(reflect.TypeOf((*BucketMetadataTableErrorPtrInput)(nil)).Elem(), BucketMetadataTableErrorArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*BucketMetricsInput)(nil)).Elem(), BucketMetricsArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*BucketMetricsPtrInput)(nil)).Elem(), BucketMetricsArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*BucketMetricsConfigurationInput)(nil)).Elem(), BucketMetricsConfigurationArgs{})
@@ -13626,6 +14151,8 @@ func init() {
pulumi.RegisterInputType(reflect.TypeOf((*BucketRuleArrayInput)(nil)).Elem(), BucketRuleArray{})
pulumi.RegisterInputType(reflect.TypeOf((*BucketS3KeyFilterInput)(nil)).Elem(), BucketS3KeyFilterArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*BucketS3KeyFilterPtrInput)(nil)).Elem(), BucketS3KeyFilterArgs{})
+ pulumi.RegisterInputType(reflect.TypeOf((*BucketS3TablesDestinationInput)(nil)).Elem(), BucketS3TablesDestinationArgs{})
+ pulumi.RegisterInputType(reflect.TypeOf((*BucketS3TablesDestinationPtrInput)(nil)).Elem(), BucketS3TablesDestinationArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*BucketServerSideEncryptionByDefaultInput)(nil)).Elem(), BucketServerSideEncryptionByDefaultArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*BucketServerSideEncryptionByDefaultPtrInput)(nil)).Elem(), BucketServerSideEncryptionByDefaultArgs{})
pulumi.RegisterInputType(reflect.TypeOf((*BucketServerSideEncryptionRuleInput)(nil)).Elem(), BucketServerSideEncryptionRuleArgs{})
@@ -13745,6 +14272,10 @@ func init() {
pulumi.RegisterOutputType(BucketLifecycleConfigurationPtrOutput{})
pulumi.RegisterOutputType(BucketLoggingConfigurationOutput{})
pulumi.RegisterOutputType(BucketLoggingConfigurationPtrOutput{})
+ pulumi.RegisterOutputType(BucketMetadataTableConfigurationOutput{})
+ pulumi.RegisterOutputType(BucketMetadataTableConfigurationPtrOutput{})
+ pulumi.RegisterOutputType(BucketMetadataTableErrorOutput{})
+ pulumi.RegisterOutputType(BucketMetadataTableErrorPtrOutput{})
pulumi.RegisterOutputType(BucketMetricsOutput{})
pulumi.RegisterOutputType(BucketMetricsPtrOutput{})
pulumi.RegisterOutputType(BucketMetricsConfigurationOutput{})
@@ -13796,6 +14327,8 @@ func init() {
pulumi.RegisterOutputType(BucketRuleArrayOutput{})
pulumi.RegisterOutputType(BucketS3KeyFilterOutput{})
pulumi.RegisterOutputType(BucketS3KeyFilterPtrOutput{})
+ pulumi.RegisterOutputType(BucketS3TablesDestinationOutput{})
+ pulumi.RegisterOutputType(BucketS3TablesDestinationPtrOutput{})
pulumi.RegisterOutputType(BucketServerSideEncryptionByDefaultOutput{})
pulumi.RegisterOutputType(BucketServerSideEncryptionByDefaultPtrOutput{})
pulumi.RegisterOutputType(BucketServerSideEncryptionRuleOutput{})
diff --git a/sdk/go/aws/s3express/directoryBucket.go b/sdk/go/aws/s3express/directoryBucket.go
index 943bdeff26..bc64ee0873 100644
--- a/sdk/go/aws/s3express/directoryBucket.go
+++ b/sdk/go/aws/s3express/directoryBucket.go
@@ -18,17 +18,17 @@ type DirectoryBucket struct {
// Returns the Amazon Resource Name (ARN) of the specified bucket.
Arn pulumi.StringOutput `pulumi:"arn"`
- // Returns the code for the Availability Zone where the directory bucket was created.
+ // Returns the code for the Availability Zone or Local Zone where the directory bucket was created. An example for the code of an Availability Zone is 'us-east-1f'.
AvailabilityZoneName pulumi.StringOutput `pulumi:"availabilityZoneName"`
// Specifies default encryption for a bucket using server-side encryption with Amazon S3 managed keys (SSE-S3) or AWS KMS keys (SSE-KMS). For information about default encryption for directory buckets, see [Setting and monitoring default encryption for directory buckets](https://docs.aws.amazon.com/AmazonS3/latest/userguide/s3-express-bucket-encryption.html) in the *Amazon S3 User Guide* .
BucketEncryption DirectoryBucketBucketEncryptionPtrOutput `pulumi:"bucketEncryption"`
- // Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
+ // Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
BucketName pulumi.StringPtrOutput `pulumi:"bucketName"`
- // Specifies the number of Availability Zone that's used for redundancy for the bucket.
+ // Specifies the number of Availability Zone or Local Zone that's used for redundancy for the bucket.
DataRedundancy DirectoryBucketDataRedundancyOutput `pulumi:"dataRedundancy"`
// Lifecycle rules that define how Amazon S3 Express manages objects during their lifetime.
LifecycleConfiguration DirectoryBucketLifecycleConfigurationPtrOutput `pulumi:"lifecycleConfiguration"`
- // Specifies the AZ ID of the Availability Zone where the directory bucket will be created. An example AZ ID value is 'use1-az5'.
+ // Specifies the Zone ID of the Availability Zone or Local Zone where the directory bucket will be created. An example Availability Zone ID value is 'use1-az5'.
LocationName pulumi.StringOutput `pulumi:"locationName"`
}
@@ -86,13 +86,13 @@ func (DirectoryBucketState) ElementType() reflect.Type {
type directoryBucketArgs struct {
// Specifies default encryption for a bucket using server-side encryption with Amazon S3 managed keys (SSE-S3) or AWS KMS keys (SSE-KMS). For information about default encryption for directory buckets, see [Setting and monitoring default encryption for directory buckets](https://docs.aws.amazon.com/AmazonS3/latest/userguide/s3-express-bucket-encryption.html) in the *Amazon S3 User Guide* .
BucketEncryption *DirectoryBucketBucketEncryption `pulumi:"bucketEncryption"`
- // Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
+ // Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
BucketName *string `pulumi:"bucketName"`
- // Specifies the number of Availability Zone that's used for redundancy for the bucket.
+ // Specifies the number of Availability Zone or Local Zone that's used for redundancy for the bucket.
DataRedundancy DirectoryBucketDataRedundancy `pulumi:"dataRedundancy"`
// Lifecycle rules that define how Amazon S3 Express manages objects during their lifetime.
LifecycleConfiguration *DirectoryBucketLifecycleConfiguration `pulumi:"lifecycleConfiguration"`
- // Specifies the AZ ID of the Availability Zone where the directory bucket will be created. An example AZ ID value is 'use1-az5'.
+ // Specifies the Zone ID of the Availability Zone or Local Zone where the directory bucket will be created. An example Availability Zone ID value is 'use1-az5'.
LocationName string `pulumi:"locationName"`
}
@@ -100,13 +100,13 @@ type directoryBucketArgs struct {
type DirectoryBucketArgs struct {
// Specifies default encryption for a bucket using server-side encryption with Amazon S3 managed keys (SSE-S3) or AWS KMS keys (SSE-KMS). For information about default encryption for directory buckets, see [Setting and monitoring default encryption for directory buckets](https://docs.aws.amazon.com/AmazonS3/latest/userguide/s3-express-bucket-encryption.html) in the *Amazon S3 User Guide* .
BucketEncryption DirectoryBucketBucketEncryptionPtrInput
- // Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
+ // Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
BucketName pulumi.StringPtrInput
- // Specifies the number of Availability Zone that's used for redundancy for the bucket.
+ // Specifies the number of Availability Zone or Local Zone that's used for redundancy for the bucket.
DataRedundancy DirectoryBucketDataRedundancyInput
// Lifecycle rules that define how Amazon S3 Express manages objects during their lifetime.
LifecycleConfiguration DirectoryBucketLifecycleConfigurationPtrInput
- // Specifies the AZ ID of the Availability Zone where the directory bucket will be created. An example AZ ID value is 'use1-az5'.
+ // Specifies the Zone ID of the Availability Zone or Local Zone where the directory bucket will be created. An example Availability Zone ID value is 'use1-az5'.
LocationName pulumi.StringInput
}
@@ -152,7 +152,7 @@ func (o DirectoryBucketOutput) Arn() pulumi.StringOutput {
return o.ApplyT(func(v *DirectoryBucket) pulumi.StringOutput { return v.Arn }).(pulumi.StringOutput)
}
-// Returns the code for the Availability Zone where the directory bucket was created.
+// Returns the code for the Availability Zone or Local Zone where the directory bucket was created. An example for the code of an Availability Zone is 'us-east-1f'.
func (o DirectoryBucketOutput) AvailabilityZoneName() pulumi.StringOutput {
return o.ApplyT(func(v *DirectoryBucket) pulumi.StringOutput { return v.AvailabilityZoneName }).(pulumi.StringOutput)
}
@@ -162,12 +162,12 @@ func (o DirectoryBucketOutput) BucketEncryption() DirectoryBucketBucketEncryptio
return o.ApplyT(func(v *DirectoryBucket) DirectoryBucketBucketEncryptionPtrOutput { return v.BucketEncryption }).(DirectoryBucketBucketEncryptionPtrOutput)
}
-// Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
+// Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
func (o DirectoryBucketOutput) BucketName() pulumi.StringPtrOutput {
return o.ApplyT(func(v *DirectoryBucket) pulumi.StringPtrOutput { return v.BucketName }).(pulumi.StringPtrOutput)
}
-// Specifies the number of Availability Zone that's used for redundancy for the bucket.
+// Specifies the number of Availability Zone or Local Zone that's used for redundancy for the bucket.
func (o DirectoryBucketOutput) DataRedundancy() DirectoryBucketDataRedundancyOutput {
return o.ApplyT(func(v *DirectoryBucket) DirectoryBucketDataRedundancyOutput { return v.DataRedundancy }).(DirectoryBucketDataRedundancyOutput)
}
@@ -179,7 +179,7 @@ func (o DirectoryBucketOutput) LifecycleConfiguration() DirectoryBucketLifecycle
}).(DirectoryBucketLifecycleConfigurationPtrOutput)
}
-// Specifies the AZ ID of the Availability Zone where the directory bucket will be created. An example AZ ID value is 'use1-az5'.
+// Specifies the Zone ID of the Availability Zone or Local Zone where the directory bucket will be created. An example Availability Zone ID value is 'use1-az5'.
func (o DirectoryBucketOutput) LocationName() pulumi.StringOutput {
return o.ApplyT(func(v *DirectoryBucket) pulumi.StringOutput { return v.LocationName }).(pulumi.StringOutput)
}
diff --git a/sdk/go/aws/s3express/getDirectoryBucket.go b/sdk/go/aws/s3express/getDirectoryBucket.go
index d44971ab63..2cbbccbe84 100644
--- a/sdk/go/aws/s3express/getDirectoryBucket.go
+++ b/sdk/go/aws/s3express/getDirectoryBucket.go
@@ -23,14 +23,14 @@ func LookupDirectoryBucket(ctx *pulumi.Context, args *LookupDirectoryBucketArgs,
}
type LookupDirectoryBucketArgs struct {
- // Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
+ // Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
BucketName string `pulumi:"bucketName"`
}
type LookupDirectoryBucketResult struct {
// Returns the Amazon Resource Name (ARN) of the specified bucket.
Arn *string `pulumi:"arn"`
- // Returns the code for the Availability Zone where the directory bucket was created.
+ // Returns the code for the Availability Zone or Local Zone where the directory bucket was created. An example for the code of an Availability Zone is 'us-east-1f'.
AvailabilityZoneName *string `pulumi:"availabilityZoneName"`
// Specifies default encryption for a bucket using server-side encryption with Amazon S3 managed keys (SSE-S3) or AWS KMS keys (SSE-KMS). For information about default encryption for directory buckets, see [Setting and monitoring default encryption for directory buckets](https://docs.aws.amazon.com/AmazonS3/latest/userguide/s3-express-bucket-encryption.html) in the *Amazon S3 User Guide* .
BucketEncryption *DirectoryBucketBucketEncryption `pulumi:"bucketEncryption"`
@@ -58,7 +58,7 @@ func LookupDirectoryBucketOutput(ctx *pulumi.Context, args LookupDirectoryBucket
}
type LookupDirectoryBucketOutputArgs struct {
- // Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone. The bucket name must also follow the format 'bucket_base_name--az_id--x-s3' (for example, 'DOC-EXAMPLE-BUCKET--usw2-az1--x-s3'). If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
+ // Specifies a name for the bucket. The bucket name must contain only lowercase letters, numbers, and hyphens (-). A directory bucket name must be unique in the chosen Availability Zone or Local Zone. The bucket name must also follow the format 'bucket_base_name--zone_id--x-s3'. The zone_id can be the ID of an Availability Zone or a Local Zone. If you don't specify a name, AWS CloudFormation generates a unique physical ID and uses that ID for the bucket name.
BucketName pulumi.StringInput `pulumi:"bucketName"`
}
@@ -85,7 +85,7 @@ func (o LookupDirectoryBucketResultOutput) Arn() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupDirectoryBucketResult) *string { return v.Arn }).(pulumi.StringPtrOutput)
}
-// Returns the code for the Availability Zone where the directory bucket was created.
+// Returns the code for the Availability Zone or Local Zone where the directory bucket was created. An example for the code of an Availability Zone is 'us-east-1f'.
func (o LookupDirectoryBucketResultOutput) AvailabilityZoneName() pulumi.StringPtrOutput {
return o.ApplyT(func(v LookupDirectoryBucketResult) *string { return v.AvailabilityZoneName }).(pulumi.StringPtrOutput)
}
diff --git a/sdk/go/aws/s3express/pulumiEnums.go b/sdk/go/aws/s3express/pulumiEnums.go
index 3f0bc018a2..3534c375ae 100644
--- a/sdk/go/aws/s3express/pulumiEnums.go
+++ b/sdk/go/aws/s3express/pulumiEnums.go
@@ -10,11 +10,12 @@ import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
-// Specifies the number of Availability Zone that's used for redundancy for the bucket.
+// Specifies the number of Availability Zone or Local Zone that's used for redundancy for the bucket.
type DirectoryBucketDataRedundancy string
const (
DirectoryBucketDataRedundancySingleAvailabilityZone = DirectoryBucketDataRedundancy("SingleAvailabilityZone")
+ DirectoryBucketDataRedundancySingleLocalZone = DirectoryBucketDataRedundancy("SingleLocalZone")
)
func (DirectoryBucketDataRedundancy) ElementType() reflect.Type {
@@ -140,6 +141,7 @@ func (o DirectoryBucketDataRedundancyPtrOutput) ToStringPtrOutputWithContext(ctx
// A concrete instance of `DirectoryBucketDataRedundancyInput` can be one of the following:
//
// DirectoryBucketDataRedundancySingleAvailabilityZone
+// DirectoryBucketDataRedundancySingleLocalZone
type DirectoryBucketDataRedundancyInput interface {
pulumi.Input
diff --git a/sdk/go/aws/s3tables/getTableBucket.go b/sdk/go/aws/s3tables/getTableBucket.go
new file mode 100644
index 0000000000..d12f696c9f
--- /dev/null
+++ b/sdk/go/aws/s3tables/getTableBucket.go
@@ -0,0 +1,85 @@
+// Code generated by pulumi-language-go DO NOT EDIT.
+// *** WARNING: Do not edit by hand unless you're certain you know what you are doing! ***
+
+package s3tables
+
+import (
+ "context"
+ "reflect"
+
+ "github.com/pulumi/pulumi-aws-native/sdk/go/aws/internal"
+ "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
+)
+
+// Creates an Amazon S3 Tables table bucket in the same AWS Region where you create the AWS CloudFormation stack.
+func LookupTableBucket(ctx *pulumi.Context, args *LookupTableBucketArgs, opts ...pulumi.InvokeOption) (*LookupTableBucketResult, error) {
+ opts = internal.PkgInvokeDefaultOpts(opts)
+ var rv LookupTableBucketResult
+ err := ctx.Invoke("aws-native:s3tables:getTableBucket", args, &rv, opts...)
+ if err != nil {
+ return nil, err
+ }
+ return &rv, nil
+}
+
+type LookupTableBucketArgs struct {
+ TableBucketArn string `pulumi:"tableBucketArn"`
+}
+
+type LookupTableBucketResult struct {
+ TableBucketArn *string `pulumi:"tableBucketArn"`
+ UnreferencedFileRemoval *TableBucketUnreferencedFileRemoval `pulumi:"unreferencedFileRemoval"`
+}
+
+func LookupTableBucketOutput(ctx *pulumi.Context, args LookupTableBucketOutputArgs, opts ...pulumi.InvokeOption) LookupTableBucketResultOutput {
+ return pulumi.ToOutputWithContext(context.Background(), args).
+ ApplyT(func(v interface{}) (LookupTableBucketResultOutput, error) {
+ args := v.(LookupTableBucketArgs)
+ opts = internal.PkgInvokeDefaultOpts(opts)
+ var rv LookupTableBucketResult
+ secret, err := ctx.InvokePackageRaw("aws-native:s3tables:getTableBucket", args, &rv, "", opts...)
+ if err != nil {
+ return LookupTableBucketResultOutput{}, err
+ }
+
+ output := pulumi.ToOutput(rv).(LookupTableBucketResultOutput)
+ if secret {
+ return pulumi.ToSecret(output).(LookupTableBucketResultOutput), nil
+ }
+ return output, nil
+ }).(LookupTableBucketResultOutput)
+}
+
+type LookupTableBucketOutputArgs struct {
+ TableBucketArn pulumi.StringInput `pulumi:"tableBucketArn"`
+}
+
+func (LookupTableBucketOutputArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*LookupTableBucketArgs)(nil)).Elem()
+}
+
+type LookupTableBucketResultOutput struct{ *pulumi.OutputState }
+
+func (LookupTableBucketResultOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*LookupTableBucketResult)(nil)).Elem()
+}
+
+func (o LookupTableBucketResultOutput) ToLookupTableBucketResultOutput() LookupTableBucketResultOutput {
+ return o
+}
+
+func (o LookupTableBucketResultOutput) ToLookupTableBucketResultOutputWithContext(ctx context.Context) LookupTableBucketResultOutput {
+ return o
+}
+
+func (o LookupTableBucketResultOutput) TableBucketArn() pulumi.StringPtrOutput {
+ return o.ApplyT(func(v LookupTableBucketResult) *string { return v.TableBucketArn }).(pulumi.StringPtrOutput)
+}
+
+func (o LookupTableBucketResultOutput) UnreferencedFileRemoval() TableBucketUnreferencedFileRemovalPtrOutput {
+ return o.ApplyT(func(v LookupTableBucketResult) *TableBucketUnreferencedFileRemoval { return v.UnreferencedFileRemoval }).(TableBucketUnreferencedFileRemovalPtrOutput)
+}
+
+func init() {
+ pulumi.RegisterOutputType(LookupTableBucketResultOutput{})
+}
diff --git a/sdk/go/aws/s3tables/getTableBucketPolicy.go b/sdk/go/aws/s3tables/getTableBucketPolicy.go
new file mode 100644
index 0000000000..950226827c
--- /dev/null
+++ b/sdk/go/aws/s3tables/getTableBucketPolicy.go
@@ -0,0 +1,80 @@
+// Code generated by pulumi-language-go DO NOT EDIT.
+// *** WARNING: Do not edit by hand unless you're certain you know what you are doing! ***
+
+package s3tables
+
+import (
+ "context"
+ "reflect"
+
+ "github.com/pulumi/pulumi-aws-native/sdk/go/aws/internal"
+ "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
+)
+
+// Applies an IAM resource policy to a table bucket.
+func LookupTableBucketPolicy(ctx *pulumi.Context, args *LookupTableBucketPolicyArgs, opts ...pulumi.InvokeOption) (*LookupTableBucketPolicyResult, error) {
+ opts = internal.PkgInvokeDefaultOpts(opts)
+ var rv LookupTableBucketPolicyResult
+ err := ctx.Invoke("aws-native:s3tables:getTableBucketPolicy", args, &rv, opts...)
+ if err != nil {
+ return nil, err
+ }
+ return &rv, nil
+}
+
+type LookupTableBucketPolicyArgs struct {
+ TableBucketArn string `pulumi:"tableBucketArn"`
+}
+
+type LookupTableBucketPolicyResult struct {
+ ResourcePolicy *TableBucketPolicyResourcePolicy `pulumi:"resourcePolicy"`
+}
+
+func LookupTableBucketPolicyOutput(ctx *pulumi.Context, args LookupTableBucketPolicyOutputArgs, opts ...pulumi.InvokeOption) LookupTableBucketPolicyResultOutput {
+ return pulumi.ToOutputWithContext(context.Background(), args).
+ ApplyT(func(v interface{}) (LookupTableBucketPolicyResultOutput, error) {
+ args := v.(LookupTableBucketPolicyArgs)
+ opts = internal.PkgInvokeDefaultOpts(opts)
+ var rv LookupTableBucketPolicyResult
+ secret, err := ctx.InvokePackageRaw("aws-native:s3tables:getTableBucketPolicy", args, &rv, "", opts...)
+ if err != nil {
+ return LookupTableBucketPolicyResultOutput{}, err
+ }
+
+ output := pulumi.ToOutput(rv).(LookupTableBucketPolicyResultOutput)
+ if secret {
+ return pulumi.ToSecret(output).(LookupTableBucketPolicyResultOutput), nil
+ }
+ return output, nil
+ }).(LookupTableBucketPolicyResultOutput)
+}
+
+type LookupTableBucketPolicyOutputArgs struct {
+ TableBucketArn pulumi.StringInput `pulumi:"tableBucketArn"`
+}
+
+func (LookupTableBucketPolicyOutputArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*LookupTableBucketPolicyArgs)(nil)).Elem()
+}
+
+type LookupTableBucketPolicyResultOutput struct{ *pulumi.OutputState }
+
+func (LookupTableBucketPolicyResultOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*LookupTableBucketPolicyResult)(nil)).Elem()
+}
+
+func (o LookupTableBucketPolicyResultOutput) ToLookupTableBucketPolicyResultOutput() LookupTableBucketPolicyResultOutput {
+ return o
+}
+
+func (o LookupTableBucketPolicyResultOutput) ToLookupTableBucketPolicyResultOutputWithContext(ctx context.Context) LookupTableBucketPolicyResultOutput {
+ return o
+}
+
+func (o LookupTableBucketPolicyResultOutput) ResourcePolicy() TableBucketPolicyResourcePolicyPtrOutput {
+ return o.ApplyT(func(v LookupTableBucketPolicyResult) *TableBucketPolicyResourcePolicy { return v.ResourcePolicy }).(TableBucketPolicyResourcePolicyPtrOutput)
+}
+
+func init() {
+ pulumi.RegisterOutputType(LookupTableBucketPolicyResultOutput{})
+}
diff --git a/sdk/go/aws/s3tables/init.go b/sdk/go/aws/s3tables/init.go
new file mode 100644
index 0000000000..6d51d0ef19
--- /dev/null
+++ b/sdk/go/aws/s3tables/init.go
@@ -0,0 +1,46 @@
+// Code generated by pulumi-language-go DO NOT EDIT.
+// *** WARNING: Do not edit by hand unless you're certain you know what you are doing! ***
+
+package s3tables
+
+import (
+ "fmt"
+
+ "github.com/blang/semver"
+ "github.com/pulumi/pulumi-aws-native/sdk/go/aws/internal"
+ "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
+)
+
+type module struct {
+ version semver.Version
+}
+
+func (m *module) Version() semver.Version {
+ return m.version
+}
+
+func (m *module) Construct(ctx *pulumi.Context, name, typ, urn string) (r pulumi.Resource, err error) {
+ switch typ {
+ case "aws-native:s3tables:TableBucket":
+ r = &TableBucket{}
+ case "aws-native:s3tables:TableBucketPolicy":
+ r = &TableBucketPolicy{}
+ default:
+ return nil, fmt.Errorf("unknown resource type: %s", typ)
+ }
+
+ err = ctx.RegisterResource(typ, name, nil, r, pulumi.URN_(urn))
+ return
+}
+
+func init() {
+ version, err := internal.PkgVersion()
+ if err != nil {
+ version = semver.Version{Major: 1}
+ }
+ pulumi.RegisterResourceModule(
+ "aws-native",
+ "s3tables",
+ &module{version},
+ )
+}
diff --git a/sdk/go/aws/s3tables/pulumiEnums.go b/sdk/go/aws/s3tables/pulumiEnums.go
new file mode 100644
index 0000000000..15b5167ac4
--- /dev/null
+++ b/sdk/go/aws/s3tables/pulumiEnums.go
@@ -0,0 +1,184 @@
+// Code generated by pulumi-language-go DO NOT EDIT.
+// *** WARNING: Do not edit by hand unless you're certain you know what you are doing! ***
+
+package s3tables
+
+import (
+ "context"
+ "reflect"
+
+ "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
+)
+
+// Indicates whether the Unreferenced File Removal maintenance action is enabled.
+type TableBucketUnreferencedFileRemovalStatus string
+
+const (
+ TableBucketUnreferencedFileRemovalStatusEnabled = TableBucketUnreferencedFileRemovalStatus("Enabled")
+ TableBucketUnreferencedFileRemovalStatusDisabled = TableBucketUnreferencedFileRemovalStatus("Disabled")
+)
+
+func (TableBucketUnreferencedFileRemovalStatus) ElementType() reflect.Type {
+ return reflect.TypeOf((*TableBucketUnreferencedFileRemovalStatus)(nil)).Elem()
+}
+
+func (e TableBucketUnreferencedFileRemovalStatus) ToTableBucketUnreferencedFileRemovalStatusOutput() TableBucketUnreferencedFileRemovalStatusOutput {
+ return pulumi.ToOutput(e).(TableBucketUnreferencedFileRemovalStatusOutput)
+}
+
+func (e TableBucketUnreferencedFileRemovalStatus) ToTableBucketUnreferencedFileRemovalStatusOutputWithContext(ctx context.Context) TableBucketUnreferencedFileRemovalStatusOutput {
+ return pulumi.ToOutputWithContext(ctx, e).(TableBucketUnreferencedFileRemovalStatusOutput)
+}
+
+func (e TableBucketUnreferencedFileRemovalStatus) ToTableBucketUnreferencedFileRemovalStatusPtrOutput() TableBucketUnreferencedFileRemovalStatusPtrOutput {
+ return e.ToTableBucketUnreferencedFileRemovalStatusPtrOutputWithContext(context.Background())
+}
+
+func (e TableBucketUnreferencedFileRemovalStatus) ToTableBucketUnreferencedFileRemovalStatusPtrOutputWithContext(ctx context.Context) TableBucketUnreferencedFileRemovalStatusPtrOutput {
+ return TableBucketUnreferencedFileRemovalStatus(e).ToTableBucketUnreferencedFileRemovalStatusOutputWithContext(ctx).ToTableBucketUnreferencedFileRemovalStatusPtrOutputWithContext(ctx)
+}
+
+func (e TableBucketUnreferencedFileRemovalStatus) ToStringOutput() pulumi.StringOutput {
+ return pulumi.ToOutput(pulumi.String(e)).(pulumi.StringOutput)
+}
+
+func (e TableBucketUnreferencedFileRemovalStatus) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput {
+ return pulumi.ToOutputWithContext(ctx, pulumi.String(e)).(pulumi.StringOutput)
+}
+
+func (e TableBucketUnreferencedFileRemovalStatus) ToStringPtrOutput() pulumi.StringPtrOutput {
+ return pulumi.String(e).ToStringPtrOutputWithContext(context.Background())
+}
+
+func (e TableBucketUnreferencedFileRemovalStatus) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput {
+ return pulumi.String(e).ToStringOutputWithContext(ctx).ToStringPtrOutputWithContext(ctx)
+}
+
+type TableBucketUnreferencedFileRemovalStatusOutput struct{ *pulumi.OutputState }
+
+func (TableBucketUnreferencedFileRemovalStatusOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*TableBucketUnreferencedFileRemovalStatus)(nil)).Elem()
+}
+
+func (o TableBucketUnreferencedFileRemovalStatusOutput) ToTableBucketUnreferencedFileRemovalStatusOutput() TableBucketUnreferencedFileRemovalStatusOutput {
+ return o
+}
+
+func (o TableBucketUnreferencedFileRemovalStatusOutput) ToTableBucketUnreferencedFileRemovalStatusOutputWithContext(ctx context.Context) TableBucketUnreferencedFileRemovalStatusOutput {
+ return o
+}
+
+func (o TableBucketUnreferencedFileRemovalStatusOutput) ToTableBucketUnreferencedFileRemovalStatusPtrOutput() TableBucketUnreferencedFileRemovalStatusPtrOutput {
+ return o.ToTableBucketUnreferencedFileRemovalStatusPtrOutputWithContext(context.Background())
+}
+
+func (o TableBucketUnreferencedFileRemovalStatusOutput) ToTableBucketUnreferencedFileRemovalStatusPtrOutputWithContext(ctx context.Context) TableBucketUnreferencedFileRemovalStatusPtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, v TableBucketUnreferencedFileRemovalStatus) *TableBucketUnreferencedFileRemovalStatus {
+ return &v
+ }).(TableBucketUnreferencedFileRemovalStatusPtrOutput)
+}
+
+func (o TableBucketUnreferencedFileRemovalStatusOutput) ToStringOutput() pulumi.StringOutput {
+ return o.ToStringOutputWithContext(context.Background())
+}
+
+func (o TableBucketUnreferencedFileRemovalStatusOutput) ToStringOutputWithContext(ctx context.Context) pulumi.StringOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, e TableBucketUnreferencedFileRemovalStatus) string {
+ return string(e)
+ }).(pulumi.StringOutput)
+}
+
+func (o TableBucketUnreferencedFileRemovalStatusOutput) ToStringPtrOutput() pulumi.StringPtrOutput {
+ return o.ToStringPtrOutputWithContext(context.Background())
+}
+
+func (o TableBucketUnreferencedFileRemovalStatusOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, e TableBucketUnreferencedFileRemovalStatus) *string {
+ v := string(e)
+ return &v
+ }).(pulumi.StringPtrOutput)
+}
+
+type TableBucketUnreferencedFileRemovalStatusPtrOutput struct{ *pulumi.OutputState }
+
+func (TableBucketUnreferencedFileRemovalStatusPtrOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**TableBucketUnreferencedFileRemovalStatus)(nil)).Elem()
+}
+
+func (o TableBucketUnreferencedFileRemovalStatusPtrOutput) ToTableBucketUnreferencedFileRemovalStatusPtrOutput() TableBucketUnreferencedFileRemovalStatusPtrOutput {
+ return o
+}
+
+func (o TableBucketUnreferencedFileRemovalStatusPtrOutput) ToTableBucketUnreferencedFileRemovalStatusPtrOutputWithContext(ctx context.Context) TableBucketUnreferencedFileRemovalStatusPtrOutput {
+ return o
+}
+
+func (o TableBucketUnreferencedFileRemovalStatusPtrOutput) Elem() TableBucketUnreferencedFileRemovalStatusOutput {
+ return o.ApplyT(func(v *TableBucketUnreferencedFileRemovalStatus) TableBucketUnreferencedFileRemovalStatus {
+ if v != nil {
+ return *v
+ }
+ var ret TableBucketUnreferencedFileRemovalStatus
+ return ret
+ }).(TableBucketUnreferencedFileRemovalStatusOutput)
+}
+
+func (o TableBucketUnreferencedFileRemovalStatusPtrOutput) ToStringPtrOutput() pulumi.StringPtrOutput {
+ return o.ToStringPtrOutputWithContext(context.Background())
+}
+
+func (o TableBucketUnreferencedFileRemovalStatusPtrOutput) ToStringPtrOutputWithContext(ctx context.Context) pulumi.StringPtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, e *TableBucketUnreferencedFileRemovalStatus) *string {
+ if e == nil {
+ return nil
+ }
+ v := string(*e)
+ return &v
+ }).(pulumi.StringPtrOutput)
+}
+
+// TableBucketUnreferencedFileRemovalStatusInput is an input type that accepts values of the TableBucketUnreferencedFileRemovalStatus enum
+// A concrete instance of `TableBucketUnreferencedFileRemovalStatusInput` can be one of the following:
+//
+// TableBucketUnreferencedFileRemovalStatusEnabled
+// TableBucketUnreferencedFileRemovalStatusDisabled
+type TableBucketUnreferencedFileRemovalStatusInput interface {
+ pulumi.Input
+
+ ToTableBucketUnreferencedFileRemovalStatusOutput() TableBucketUnreferencedFileRemovalStatusOutput
+ ToTableBucketUnreferencedFileRemovalStatusOutputWithContext(context.Context) TableBucketUnreferencedFileRemovalStatusOutput
+}
+
+var tableBucketUnreferencedFileRemovalStatusPtrType = reflect.TypeOf((**TableBucketUnreferencedFileRemovalStatus)(nil)).Elem()
+
+type TableBucketUnreferencedFileRemovalStatusPtrInput interface {
+ pulumi.Input
+
+ ToTableBucketUnreferencedFileRemovalStatusPtrOutput() TableBucketUnreferencedFileRemovalStatusPtrOutput
+ ToTableBucketUnreferencedFileRemovalStatusPtrOutputWithContext(context.Context) TableBucketUnreferencedFileRemovalStatusPtrOutput
+}
+
+type tableBucketUnreferencedFileRemovalStatusPtr string
+
+func TableBucketUnreferencedFileRemovalStatusPtr(v string) TableBucketUnreferencedFileRemovalStatusPtrInput {
+ return (*tableBucketUnreferencedFileRemovalStatusPtr)(&v)
+}
+
+func (*tableBucketUnreferencedFileRemovalStatusPtr) ElementType() reflect.Type {
+ return tableBucketUnreferencedFileRemovalStatusPtrType
+}
+
+func (in *tableBucketUnreferencedFileRemovalStatusPtr) ToTableBucketUnreferencedFileRemovalStatusPtrOutput() TableBucketUnreferencedFileRemovalStatusPtrOutput {
+ return pulumi.ToOutput(in).(TableBucketUnreferencedFileRemovalStatusPtrOutput)
+}
+
+func (in *tableBucketUnreferencedFileRemovalStatusPtr) ToTableBucketUnreferencedFileRemovalStatusPtrOutputWithContext(ctx context.Context) TableBucketUnreferencedFileRemovalStatusPtrOutput {
+ return pulumi.ToOutputWithContext(ctx, in).(TableBucketUnreferencedFileRemovalStatusPtrOutput)
+}
+
+func init() {
+ pulumi.RegisterInputType(reflect.TypeOf((*TableBucketUnreferencedFileRemovalStatusInput)(nil)).Elem(), TableBucketUnreferencedFileRemovalStatus("Enabled"))
+ pulumi.RegisterInputType(reflect.TypeOf((*TableBucketUnreferencedFileRemovalStatusPtrInput)(nil)).Elem(), TableBucketUnreferencedFileRemovalStatus("Enabled"))
+ pulumi.RegisterOutputType(TableBucketUnreferencedFileRemovalStatusOutput{})
+ pulumi.RegisterOutputType(TableBucketUnreferencedFileRemovalStatusPtrOutput{})
+}
diff --git a/sdk/go/aws/s3tables/pulumiTypes.go b/sdk/go/aws/s3tables/pulumiTypes.go
new file mode 100644
index 0000000000..795ac6286b
--- /dev/null
+++ b/sdk/go/aws/s3tables/pulumiTypes.go
@@ -0,0 +1,272 @@
+// Code generated by pulumi-language-go DO NOT EDIT.
+// *** WARNING: Do not edit by hand unless you're certain you know what you are doing! ***
+
+package s3tables
+
+import (
+ "context"
+ "reflect"
+
+ "github.com/pulumi/pulumi-aws-native/sdk/go/aws/internal"
+ "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
+)
+
+var _ = internal.GetEnvOrDefault
+
+// A policy document containing permissions to add to the specified table bucket. In IAM, you must provide policy documents in JSON format. However, in CloudFormation you can provide the policy in JSON or YAML format because CloudFormation converts YAML to JSON before submitting it to IAM.
+type TableBucketPolicyResourcePolicy struct {
+}
+
+// TableBucketPolicyResourcePolicyInput is an input type that accepts TableBucketPolicyResourcePolicyArgs and TableBucketPolicyResourcePolicyOutput values.
+// You can construct a concrete instance of `TableBucketPolicyResourcePolicyInput` via:
+//
+// TableBucketPolicyResourcePolicyArgs{...}
+type TableBucketPolicyResourcePolicyInput interface {
+ pulumi.Input
+
+ ToTableBucketPolicyResourcePolicyOutput() TableBucketPolicyResourcePolicyOutput
+ ToTableBucketPolicyResourcePolicyOutputWithContext(context.Context) TableBucketPolicyResourcePolicyOutput
+}
+
+// A policy document containing permissions to add to the specified table bucket. In IAM, you must provide policy documents in JSON format. However, in CloudFormation you can provide the policy in JSON or YAML format because CloudFormation converts YAML to JSON before submitting it to IAM.
+type TableBucketPolicyResourcePolicyArgs struct {
+}
+
+func (TableBucketPolicyResourcePolicyArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*TableBucketPolicyResourcePolicy)(nil)).Elem()
+}
+
+func (i TableBucketPolicyResourcePolicyArgs) ToTableBucketPolicyResourcePolicyOutput() TableBucketPolicyResourcePolicyOutput {
+ return i.ToTableBucketPolicyResourcePolicyOutputWithContext(context.Background())
+}
+
+func (i TableBucketPolicyResourcePolicyArgs) ToTableBucketPolicyResourcePolicyOutputWithContext(ctx context.Context) TableBucketPolicyResourcePolicyOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(TableBucketPolicyResourcePolicyOutput)
+}
+
+// A policy document containing permissions to add to the specified table bucket. In IAM, you must provide policy documents in JSON format. However, in CloudFormation you can provide the policy in JSON or YAML format because CloudFormation converts YAML to JSON before submitting it to IAM.
+type TableBucketPolicyResourcePolicyOutput struct{ *pulumi.OutputState }
+
+func (TableBucketPolicyResourcePolicyOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*TableBucketPolicyResourcePolicy)(nil)).Elem()
+}
+
+func (o TableBucketPolicyResourcePolicyOutput) ToTableBucketPolicyResourcePolicyOutput() TableBucketPolicyResourcePolicyOutput {
+ return o
+}
+
+func (o TableBucketPolicyResourcePolicyOutput) ToTableBucketPolicyResourcePolicyOutputWithContext(ctx context.Context) TableBucketPolicyResourcePolicyOutput {
+ return o
+}
+
+type TableBucketPolicyResourcePolicyPtrOutput struct{ *pulumi.OutputState }
+
+func (TableBucketPolicyResourcePolicyPtrOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**TableBucketPolicyResourcePolicy)(nil)).Elem()
+}
+
+func (o TableBucketPolicyResourcePolicyPtrOutput) ToTableBucketPolicyResourcePolicyPtrOutput() TableBucketPolicyResourcePolicyPtrOutput {
+ return o
+}
+
+func (o TableBucketPolicyResourcePolicyPtrOutput) ToTableBucketPolicyResourcePolicyPtrOutputWithContext(ctx context.Context) TableBucketPolicyResourcePolicyPtrOutput {
+ return o
+}
+
+func (o TableBucketPolicyResourcePolicyPtrOutput) Elem() TableBucketPolicyResourcePolicyOutput {
+ return o.ApplyT(func(v *TableBucketPolicyResourcePolicy) TableBucketPolicyResourcePolicy {
+ if v != nil {
+ return *v
+ }
+ var ret TableBucketPolicyResourcePolicy
+ return ret
+ }).(TableBucketPolicyResourcePolicyOutput)
+}
+
+// Settings governing the Unreferenced File Removal maintenance action. Unreferenced file removal identifies and deletes all objects that are not referenced by any table snapshots.
+type TableBucketUnreferencedFileRemoval struct {
+ // S3 permanently deletes noncurrent objects after the number of days specified by the NoncurrentDays property.
+ NoncurrentDays *int `pulumi:"noncurrentDays"`
+ // Indicates whether the Unreferenced File Removal maintenance action is enabled.
+ Status *TableBucketUnreferencedFileRemovalStatus `pulumi:"status"`
+ // For any object not referenced by your table and older than the UnreferencedDays property, S3 creates a delete marker and marks the object version as noncurrent.
+ UnreferencedDays *int `pulumi:"unreferencedDays"`
+}
+
+// TableBucketUnreferencedFileRemovalInput is an input type that accepts TableBucketUnreferencedFileRemovalArgs and TableBucketUnreferencedFileRemovalOutput values.
+// You can construct a concrete instance of `TableBucketUnreferencedFileRemovalInput` via:
+//
+// TableBucketUnreferencedFileRemovalArgs{...}
+type TableBucketUnreferencedFileRemovalInput interface {
+ pulumi.Input
+
+ ToTableBucketUnreferencedFileRemovalOutput() TableBucketUnreferencedFileRemovalOutput
+ ToTableBucketUnreferencedFileRemovalOutputWithContext(context.Context) TableBucketUnreferencedFileRemovalOutput
+}
+
+// Settings governing the Unreferenced File Removal maintenance action. Unreferenced file removal identifies and deletes all objects that are not referenced by any table snapshots.
+type TableBucketUnreferencedFileRemovalArgs struct {
+ // S3 permanently deletes noncurrent objects after the number of days specified by the NoncurrentDays property.
+ NoncurrentDays pulumi.IntPtrInput `pulumi:"noncurrentDays"`
+ // Indicates whether the Unreferenced File Removal maintenance action is enabled.
+ Status TableBucketUnreferencedFileRemovalStatusPtrInput `pulumi:"status"`
+ // For any object not referenced by your table and older than the UnreferencedDays property, S3 creates a delete marker and marks the object version as noncurrent.
+ UnreferencedDays pulumi.IntPtrInput `pulumi:"unreferencedDays"`
+}
+
+func (TableBucketUnreferencedFileRemovalArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*TableBucketUnreferencedFileRemoval)(nil)).Elem()
+}
+
+func (i TableBucketUnreferencedFileRemovalArgs) ToTableBucketUnreferencedFileRemovalOutput() TableBucketUnreferencedFileRemovalOutput {
+ return i.ToTableBucketUnreferencedFileRemovalOutputWithContext(context.Background())
+}
+
+func (i TableBucketUnreferencedFileRemovalArgs) ToTableBucketUnreferencedFileRemovalOutputWithContext(ctx context.Context) TableBucketUnreferencedFileRemovalOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(TableBucketUnreferencedFileRemovalOutput)
+}
+
+func (i TableBucketUnreferencedFileRemovalArgs) ToTableBucketUnreferencedFileRemovalPtrOutput() TableBucketUnreferencedFileRemovalPtrOutput {
+ return i.ToTableBucketUnreferencedFileRemovalPtrOutputWithContext(context.Background())
+}
+
+func (i TableBucketUnreferencedFileRemovalArgs) ToTableBucketUnreferencedFileRemovalPtrOutputWithContext(ctx context.Context) TableBucketUnreferencedFileRemovalPtrOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(TableBucketUnreferencedFileRemovalOutput).ToTableBucketUnreferencedFileRemovalPtrOutputWithContext(ctx)
+}
+
+// TableBucketUnreferencedFileRemovalPtrInput is an input type that accepts TableBucketUnreferencedFileRemovalArgs, TableBucketUnreferencedFileRemovalPtr and TableBucketUnreferencedFileRemovalPtrOutput values.
+// You can construct a concrete instance of `TableBucketUnreferencedFileRemovalPtrInput` via:
+//
+// TableBucketUnreferencedFileRemovalArgs{...}
+//
+// or:
+//
+// nil
+type TableBucketUnreferencedFileRemovalPtrInput interface {
+ pulumi.Input
+
+ ToTableBucketUnreferencedFileRemovalPtrOutput() TableBucketUnreferencedFileRemovalPtrOutput
+ ToTableBucketUnreferencedFileRemovalPtrOutputWithContext(context.Context) TableBucketUnreferencedFileRemovalPtrOutput
+}
+
+type tableBucketUnreferencedFileRemovalPtrType TableBucketUnreferencedFileRemovalArgs
+
+func TableBucketUnreferencedFileRemovalPtr(v *TableBucketUnreferencedFileRemovalArgs) TableBucketUnreferencedFileRemovalPtrInput {
+ return (*tableBucketUnreferencedFileRemovalPtrType)(v)
+}
+
+func (*tableBucketUnreferencedFileRemovalPtrType) ElementType() reflect.Type {
+ return reflect.TypeOf((**TableBucketUnreferencedFileRemoval)(nil)).Elem()
+}
+
+func (i *tableBucketUnreferencedFileRemovalPtrType) ToTableBucketUnreferencedFileRemovalPtrOutput() TableBucketUnreferencedFileRemovalPtrOutput {
+ return i.ToTableBucketUnreferencedFileRemovalPtrOutputWithContext(context.Background())
+}
+
+func (i *tableBucketUnreferencedFileRemovalPtrType) ToTableBucketUnreferencedFileRemovalPtrOutputWithContext(ctx context.Context) TableBucketUnreferencedFileRemovalPtrOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(TableBucketUnreferencedFileRemovalPtrOutput)
+}
+
+// Settings governing the Unreferenced File Removal maintenance action. Unreferenced file removal identifies and deletes all objects that are not referenced by any table snapshots.
+type TableBucketUnreferencedFileRemovalOutput struct{ *pulumi.OutputState }
+
+func (TableBucketUnreferencedFileRemovalOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((*TableBucketUnreferencedFileRemoval)(nil)).Elem()
+}
+
+func (o TableBucketUnreferencedFileRemovalOutput) ToTableBucketUnreferencedFileRemovalOutput() TableBucketUnreferencedFileRemovalOutput {
+ return o
+}
+
+func (o TableBucketUnreferencedFileRemovalOutput) ToTableBucketUnreferencedFileRemovalOutputWithContext(ctx context.Context) TableBucketUnreferencedFileRemovalOutput {
+ return o
+}
+
+func (o TableBucketUnreferencedFileRemovalOutput) ToTableBucketUnreferencedFileRemovalPtrOutput() TableBucketUnreferencedFileRemovalPtrOutput {
+ return o.ToTableBucketUnreferencedFileRemovalPtrOutputWithContext(context.Background())
+}
+
+func (o TableBucketUnreferencedFileRemovalOutput) ToTableBucketUnreferencedFileRemovalPtrOutputWithContext(ctx context.Context) TableBucketUnreferencedFileRemovalPtrOutput {
+ return o.ApplyTWithContext(ctx, func(_ context.Context, v TableBucketUnreferencedFileRemoval) *TableBucketUnreferencedFileRemoval {
+ return &v
+ }).(TableBucketUnreferencedFileRemovalPtrOutput)
+}
+
+// S3 permanently deletes noncurrent objects after the number of days specified by the NoncurrentDays property.
+func (o TableBucketUnreferencedFileRemovalOutput) NoncurrentDays() pulumi.IntPtrOutput {
+ return o.ApplyT(func(v TableBucketUnreferencedFileRemoval) *int { return v.NoncurrentDays }).(pulumi.IntPtrOutput)
+}
+
+// Indicates whether the Unreferenced File Removal maintenance action is enabled.
+func (o TableBucketUnreferencedFileRemovalOutput) Status() TableBucketUnreferencedFileRemovalStatusPtrOutput {
+ return o.ApplyT(func(v TableBucketUnreferencedFileRemoval) *TableBucketUnreferencedFileRemovalStatus { return v.Status }).(TableBucketUnreferencedFileRemovalStatusPtrOutput)
+}
+
+// For any object not referenced by your table and older than the UnreferencedDays property, S3 creates a delete marker and marks the object version as noncurrent.
+func (o TableBucketUnreferencedFileRemovalOutput) UnreferencedDays() pulumi.IntPtrOutput {
+ return o.ApplyT(func(v TableBucketUnreferencedFileRemoval) *int { return v.UnreferencedDays }).(pulumi.IntPtrOutput)
+}
+
+type TableBucketUnreferencedFileRemovalPtrOutput struct{ *pulumi.OutputState }
+
+func (TableBucketUnreferencedFileRemovalPtrOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**TableBucketUnreferencedFileRemoval)(nil)).Elem()
+}
+
+func (o TableBucketUnreferencedFileRemovalPtrOutput) ToTableBucketUnreferencedFileRemovalPtrOutput() TableBucketUnreferencedFileRemovalPtrOutput {
+ return o
+}
+
+func (o TableBucketUnreferencedFileRemovalPtrOutput) ToTableBucketUnreferencedFileRemovalPtrOutputWithContext(ctx context.Context) TableBucketUnreferencedFileRemovalPtrOutput {
+ return o
+}
+
+func (o TableBucketUnreferencedFileRemovalPtrOutput) Elem() TableBucketUnreferencedFileRemovalOutput {
+ return o.ApplyT(func(v *TableBucketUnreferencedFileRemoval) TableBucketUnreferencedFileRemoval {
+ if v != nil {
+ return *v
+ }
+ var ret TableBucketUnreferencedFileRemoval
+ return ret
+ }).(TableBucketUnreferencedFileRemovalOutput)
+}
+
+// S3 permanently deletes noncurrent objects after the number of days specified by the NoncurrentDays property.
+func (o TableBucketUnreferencedFileRemovalPtrOutput) NoncurrentDays() pulumi.IntPtrOutput {
+ return o.ApplyT(func(v *TableBucketUnreferencedFileRemoval) *int {
+ if v == nil {
+ return nil
+ }
+ return v.NoncurrentDays
+ }).(pulumi.IntPtrOutput)
+}
+
+// Indicates whether the Unreferenced File Removal maintenance action is enabled.
+func (o TableBucketUnreferencedFileRemovalPtrOutput) Status() TableBucketUnreferencedFileRemovalStatusPtrOutput {
+ return o.ApplyT(func(v *TableBucketUnreferencedFileRemoval) *TableBucketUnreferencedFileRemovalStatus {
+ if v == nil {
+ return nil
+ }
+ return v.Status
+ }).(TableBucketUnreferencedFileRemovalStatusPtrOutput)
+}
+
+// For any object not referenced by your table and older than the UnreferencedDays property, S3 creates a delete marker and marks the object version as noncurrent.
+func (o TableBucketUnreferencedFileRemovalPtrOutput) UnreferencedDays() pulumi.IntPtrOutput {
+ return o.ApplyT(func(v *TableBucketUnreferencedFileRemoval) *int {
+ if v == nil {
+ return nil
+ }
+ return v.UnreferencedDays
+ }).(pulumi.IntPtrOutput)
+}
+
+func init() {
+ pulumi.RegisterInputType(reflect.TypeOf((*TableBucketPolicyResourcePolicyInput)(nil)).Elem(), TableBucketPolicyResourcePolicyArgs{})
+ pulumi.RegisterInputType(reflect.TypeOf((*TableBucketUnreferencedFileRemovalInput)(nil)).Elem(), TableBucketUnreferencedFileRemovalArgs{})
+ pulumi.RegisterInputType(reflect.TypeOf((*TableBucketUnreferencedFileRemovalPtrInput)(nil)).Elem(), TableBucketUnreferencedFileRemovalArgs{})
+ pulumi.RegisterOutputType(TableBucketPolicyResourcePolicyOutput{})
+ pulumi.RegisterOutputType(TableBucketPolicyResourcePolicyPtrOutput{})
+ pulumi.RegisterOutputType(TableBucketUnreferencedFileRemovalOutput{})
+ pulumi.RegisterOutputType(TableBucketUnreferencedFileRemovalPtrOutput{})
+}
diff --git a/sdk/go/aws/s3tables/tableBucket.go b/sdk/go/aws/s3tables/tableBucket.go
new file mode 100644
index 0000000000..dc673a5403
--- /dev/null
+++ b/sdk/go/aws/s3tables/tableBucket.go
@@ -0,0 +1,129 @@
+// Code generated by pulumi-language-go DO NOT EDIT.
+// *** WARNING: Do not edit by hand unless you're certain you know what you are doing! ***
+
+package s3tables
+
+import (
+ "context"
+ "reflect"
+
+ "github.com/pulumi/pulumi-aws-native/sdk/go/aws/internal"
+ "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
+)
+
+// Creates an Amazon S3 Tables table bucket in the same AWS Region where you create the AWS CloudFormation stack.
+type TableBucket struct {
+ pulumi.CustomResourceState
+
+ TableBucketArn pulumi.StringOutput `pulumi:"tableBucketArn"`
+ TableBucketName pulumi.StringOutput `pulumi:"tableBucketName"`
+ UnreferencedFileRemoval TableBucketUnreferencedFileRemovalPtrOutput `pulumi:"unreferencedFileRemoval"`
+}
+
+// NewTableBucket registers a new resource with the given unique name, arguments, and options.
+func NewTableBucket(ctx *pulumi.Context,
+ name string, args *TableBucketArgs, opts ...pulumi.ResourceOption) (*TableBucket, error) {
+ if args == nil {
+ args = &TableBucketArgs{}
+ }
+
+ replaceOnChanges := pulumi.ReplaceOnChanges([]string{
+ "tableBucketName",
+ })
+ opts = append(opts, replaceOnChanges)
+ opts = internal.PkgResourceDefaultOpts(opts)
+ var resource TableBucket
+ err := ctx.RegisterResource("aws-native:s3tables:TableBucket", name, args, &resource, opts...)
+ if err != nil {
+ return nil, err
+ }
+ return &resource, nil
+}
+
+// GetTableBucket gets an existing TableBucket resource's state with the given name, ID, and optional
+// state properties that are used to uniquely qualify the lookup (nil if not required).
+func GetTableBucket(ctx *pulumi.Context,
+ name string, id pulumi.IDInput, state *TableBucketState, opts ...pulumi.ResourceOption) (*TableBucket, error) {
+ var resource TableBucket
+ err := ctx.ReadResource("aws-native:s3tables:TableBucket", name, id, state, &resource, opts...)
+ if err != nil {
+ return nil, err
+ }
+ return &resource, nil
+}
+
+// Input properties used for looking up and filtering TableBucket resources.
+type tableBucketState struct {
+}
+
+type TableBucketState struct {
+}
+
+func (TableBucketState) ElementType() reflect.Type {
+ return reflect.TypeOf((*tableBucketState)(nil)).Elem()
+}
+
+type tableBucketArgs struct {
+ TableBucketName *string `pulumi:"tableBucketName"`
+ UnreferencedFileRemoval *TableBucketUnreferencedFileRemoval `pulumi:"unreferencedFileRemoval"`
+}
+
+// The set of arguments for constructing a TableBucket resource.
+type TableBucketArgs struct {
+ TableBucketName pulumi.StringPtrInput
+ UnreferencedFileRemoval TableBucketUnreferencedFileRemovalPtrInput
+}
+
+func (TableBucketArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*tableBucketArgs)(nil)).Elem()
+}
+
+type TableBucketInput interface {
+ pulumi.Input
+
+ ToTableBucketOutput() TableBucketOutput
+ ToTableBucketOutputWithContext(ctx context.Context) TableBucketOutput
+}
+
+func (*TableBucket) ElementType() reflect.Type {
+ return reflect.TypeOf((**TableBucket)(nil)).Elem()
+}
+
+func (i *TableBucket) ToTableBucketOutput() TableBucketOutput {
+ return i.ToTableBucketOutputWithContext(context.Background())
+}
+
+func (i *TableBucket) ToTableBucketOutputWithContext(ctx context.Context) TableBucketOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(TableBucketOutput)
+}
+
+type TableBucketOutput struct{ *pulumi.OutputState }
+
+func (TableBucketOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**TableBucket)(nil)).Elem()
+}
+
+func (o TableBucketOutput) ToTableBucketOutput() TableBucketOutput {
+ return o
+}
+
+func (o TableBucketOutput) ToTableBucketOutputWithContext(ctx context.Context) TableBucketOutput {
+ return o
+}
+
+func (o TableBucketOutput) TableBucketArn() pulumi.StringOutput {
+ return o.ApplyT(func(v *TableBucket) pulumi.StringOutput { return v.TableBucketArn }).(pulumi.StringOutput)
+}
+
+func (o TableBucketOutput) TableBucketName() pulumi.StringOutput {
+ return o.ApplyT(func(v *TableBucket) pulumi.StringOutput { return v.TableBucketName }).(pulumi.StringOutput)
+}
+
+func (o TableBucketOutput) UnreferencedFileRemoval() TableBucketUnreferencedFileRemovalPtrOutput {
+ return o.ApplyT(func(v *TableBucket) TableBucketUnreferencedFileRemovalPtrOutput { return v.UnreferencedFileRemoval }).(TableBucketUnreferencedFileRemovalPtrOutput)
+}
+
+func init() {
+ pulumi.RegisterInputType(reflect.TypeOf((*TableBucketInput)(nil)).Elem(), &TableBucket{})
+ pulumi.RegisterOutputType(TableBucketOutput{})
+}
diff --git a/sdk/go/aws/s3tables/tableBucketPolicy.go b/sdk/go/aws/s3tables/tableBucketPolicy.go
new file mode 100644
index 0000000000..6f4b7b20d0
--- /dev/null
+++ b/sdk/go/aws/s3tables/tableBucketPolicy.go
@@ -0,0 +1,131 @@
+// Code generated by pulumi-language-go DO NOT EDIT.
+// *** WARNING: Do not edit by hand unless you're certain you know what you are doing! ***
+
+package s3tables
+
+import (
+ "context"
+ "reflect"
+
+ "errors"
+ "github.com/pulumi/pulumi-aws-native/sdk/go/aws/internal"
+ "github.com/pulumi/pulumi/sdk/v3/go/pulumi"
+)
+
+// Applies an IAM resource policy to a table bucket.
+type TableBucketPolicy struct {
+ pulumi.CustomResourceState
+
+ ResourcePolicy TableBucketPolicyResourcePolicyOutput `pulumi:"resourcePolicy"`
+ TableBucketArn pulumi.StringOutput `pulumi:"tableBucketArn"`
+}
+
+// NewTableBucketPolicy registers a new resource with the given unique name, arguments, and options.
+func NewTableBucketPolicy(ctx *pulumi.Context,
+ name string, args *TableBucketPolicyArgs, opts ...pulumi.ResourceOption) (*TableBucketPolicy, error) {
+ if args == nil {
+ return nil, errors.New("missing one or more required arguments")
+ }
+
+ if args.ResourcePolicy == nil {
+ return nil, errors.New("invalid value for required argument 'ResourcePolicy'")
+ }
+ if args.TableBucketArn == nil {
+ return nil, errors.New("invalid value for required argument 'TableBucketArn'")
+ }
+ replaceOnChanges := pulumi.ReplaceOnChanges([]string{
+ "tableBucketArn",
+ })
+ opts = append(opts, replaceOnChanges)
+ opts = internal.PkgResourceDefaultOpts(opts)
+ var resource TableBucketPolicy
+ err := ctx.RegisterResource("aws-native:s3tables:TableBucketPolicy", name, args, &resource, opts...)
+ if err != nil {
+ return nil, err
+ }
+ return &resource, nil
+}
+
+// GetTableBucketPolicy gets an existing TableBucketPolicy resource's state with the given name, ID, and optional
+// state properties that are used to uniquely qualify the lookup (nil if not required).
+func GetTableBucketPolicy(ctx *pulumi.Context,
+ name string, id pulumi.IDInput, state *TableBucketPolicyState, opts ...pulumi.ResourceOption) (*TableBucketPolicy, error) {
+ var resource TableBucketPolicy
+ err := ctx.ReadResource("aws-native:s3tables:TableBucketPolicy", name, id, state, &resource, opts...)
+ if err != nil {
+ return nil, err
+ }
+ return &resource, nil
+}
+
+// Input properties used for looking up and filtering TableBucketPolicy resources.
+type tableBucketPolicyState struct {
+}
+
+type TableBucketPolicyState struct {
+}
+
+func (TableBucketPolicyState) ElementType() reflect.Type {
+ return reflect.TypeOf((*tableBucketPolicyState)(nil)).Elem()
+}
+
+type tableBucketPolicyArgs struct {
+ ResourcePolicy TableBucketPolicyResourcePolicy `pulumi:"resourcePolicy"`
+ TableBucketArn string `pulumi:"tableBucketArn"`
+}
+
+// The set of arguments for constructing a TableBucketPolicy resource.
+type TableBucketPolicyArgs struct {
+ ResourcePolicy TableBucketPolicyResourcePolicyInput
+ TableBucketArn pulumi.StringInput
+}
+
+func (TableBucketPolicyArgs) ElementType() reflect.Type {
+ return reflect.TypeOf((*tableBucketPolicyArgs)(nil)).Elem()
+}
+
+type TableBucketPolicyInput interface {
+ pulumi.Input
+
+ ToTableBucketPolicyOutput() TableBucketPolicyOutput
+ ToTableBucketPolicyOutputWithContext(ctx context.Context) TableBucketPolicyOutput
+}
+
+func (*TableBucketPolicy) ElementType() reflect.Type {
+ return reflect.TypeOf((**TableBucketPolicy)(nil)).Elem()
+}
+
+func (i *TableBucketPolicy) ToTableBucketPolicyOutput() TableBucketPolicyOutput {
+ return i.ToTableBucketPolicyOutputWithContext(context.Background())
+}
+
+func (i *TableBucketPolicy) ToTableBucketPolicyOutputWithContext(ctx context.Context) TableBucketPolicyOutput {
+ return pulumi.ToOutputWithContext(ctx, i).(TableBucketPolicyOutput)
+}
+
+type TableBucketPolicyOutput struct{ *pulumi.OutputState }
+
+func (TableBucketPolicyOutput) ElementType() reflect.Type {
+ return reflect.TypeOf((**TableBucketPolicy)(nil)).Elem()
+}
+
+func (o TableBucketPolicyOutput) ToTableBucketPolicyOutput() TableBucketPolicyOutput {
+ return o
+}
+
+func (o TableBucketPolicyOutput) ToTableBucketPolicyOutputWithContext(ctx context.Context) TableBucketPolicyOutput {
+ return o
+}
+
+func (o TableBucketPolicyOutput) ResourcePolicy() TableBucketPolicyResourcePolicyOutput {
+ return o.ApplyT(func(v *TableBucketPolicy) TableBucketPolicyResourcePolicyOutput { return v.ResourcePolicy }).(TableBucketPolicyResourcePolicyOutput)
+}
+
+func (o TableBucketPolicyOutput) TableBucketArn() pulumi.StringOutput {
+ return o.ApplyT(func(v *TableBucketPolicy) pulumi.StringOutput { return v.TableBucketArn }).(pulumi.StringOutput)
+}
+
+func init() {
+ pulumi.RegisterInputType(reflect.TypeOf((*TableBucketPolicyInput)(nil)).Elem(), &TableBucketPolicy{})
+ pulumi.RegisterOutputType(TableBucketPolicyOutput{})
+}
diff --git a/sdk/nodejs/apigateway/domainNameV2.ts b/sdk/nodejs/apigateway/domainNameV2.ts
index e2d78aee0a..10e6eba6f3 100644
--- a/sdk/nodejs/apigateway/domainNameV2.ts
+++ b/sdk/nodejs/apigateway/domainNameV2.ts
@@ -57,10 +57,6 @@ export class DomainNameV2 extends pulumi.CustomResource {
* The endpoint configuration to indicate the types of endpoints an API (RestApi) or its custom domain name (DomainName) has.
*/
public readonly endpointConfiguration!: pulumi.Output;
- /**
- * Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
- */
- public readonly managementPolicy!: pulumi.Output;
/**
* A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .
*
@@ -90,7 +86,6 @@ export class DomainNameV2 extends pulumi.CustomResource {
resourceInputs["certificateArn"] = args ? args.certificateArn : undefined;
resourceInputs["domainName"] = args ? args.domainName : undefined;
resourceInputs["endpointConfiguration"] = args ? args.endpointConfiguration : undefined;
- resourceInputs["managementPolicy"] = args ? args.managementPolicy : undefined;
resourceInputs["policy"] = args ? args.policy : undefined;
resourceInputs["securityPolicy"] = args ? args.securityPolicy : undefined;
resourceInputs["tags"] = args ? args.tags : undefined;
@@ -102,7 +97,6 @@ export class DomainNameV2 extends pulumi.CustomResource {
resourceInputs["domainNameArn"] = undefined /*out*/;
resourceInputs["domainNameId"] = undefined /*out*/;
resourceInputs["endpointConfiguration"] = undefined /*out*/;
- resourceInputs["managementPolicy"] = undefined /*out*/;
resourceInputs["policy"] = undefined /*out*/;
resourceInputs["securityPolicy"] = undefined /*out*/;
resourceInputs["tags"] = undefined /*out*/;
@@ -130,10 +124,6 @@ export interface DomainNameV2Args {
* The endpoint configuration to indicate the types of endpoints an API (RestApi) or its custom domain name (DomainName) has.
*/
endpointConfiguration?: pulumi.Input;
- /**
- * Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
- */
- managementPolicy?: any;
/**
* A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .
*
diff --git a/sdk/nodejs/apigateway/getDomainNameV2.ts b/sdk/nodejs/apigateway/getDomainNameV2.ts
index 881150f9bf..542ce1d70c 100644
--- a/sdk/nodejs/apigateway/getDomainNameV2.ts
+++ b/sdk/nodejs/apigateway/getDomainNameV2.ts
@@ -37,10 +37,6 @@ export interface GetDomainNameV2Result {
* The domain name ID.
*/
readonly domainNameId?: string;
- /**
- * Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::ApiGateway::DomainNameV2` for more information about the expected schema for this property.
- */
- readonly managementPolicy?: any;
/**
* A stringified JSON policy document that applies to the `execute-api` service for this DomainName regardless of the caller and Method configuration. You can use `Fn::ToJsonString` to enter your `policy` . For more information, see [Fn::ToJsonString](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/intrinsic-function-reference-ToJsonString.html) .
*
diff --git a/sdk/nodejs/cognito/getManagedLoginBranding.ts b/sdk/nodejs/cognito/getManagedLoginBranding.ts
index 1499edc57c..f9abb61c12 100644
--- a/sdk/nodejs/cognito/getManagedLoginBranding.ts
+++ b/sdk/nodejs/cognito/getManagedLoginBranding.ts
@@ -45,7 +45,9 @@ export interface GetManagedLoginBrandingResult {
*/
readonly settings?: any;
/**
- * When true, applies the default branding style options. This option reverts to a "blank" style that you can modify later in the branding designer.
+ * When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.
+ *
+ * When you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request.
*/
readonly useCognitoProvidedValues?: boolean;
}
diff --git a/sdk/nodejs/cognito/getUserPool.ts b/sdk/nodejs/cognito/getUserPool.ts
index 364b2ac6c3..fcf25fab1e 100644
--- a/sdk/nodejs/cognito/getUserPool.ts
+++ b/sdk/nodejs/cognito/getUserPool.ts
@@ -36,7 +36,7 @@ export interface GetUserPoolResult {
*/
readonly adminCreateUserConfig?: outputs.cognito.UserPoolAdminCreateUserConfig;
/**
- * Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* .
+ * Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* . For more information about alias attributes, see [Customizing sign-in attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-aliases) .
*/
readonly aliasAttributes?: string[];
/**
@@ -44,7 +44,7 @@ export interface GetUserPoolResult {
*/
readonly arn?: string;
/**
- * The attributes to be auto-verified. Possible values: *email* , *phone_number* .
+ * The attributes that you want your user pool to automatically verify. Possible values: *email* , *phone_number* . For more information see [Verifying contact information at sign-up](https://docs.aws.amazon.com/cognito/latest/developerguide/signing-up-users-in-your-app.html#allowing-users-to-sign-up-and-confirm-themselves) .
*/
readonly autoVerifiedAttributes?: string[];
/**
@@ -56,9 +56,9 @@ export interface GetUserPoolResult {
*/
readonly deletionProtection?: string;
/**
- * The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool.
+ * The device-remembering configuration for a user pool. Device remembering or device tracking is a "Remember me on this device" option for user pools that perform authentication with the device key of a trusted device in the back end, instead of a user-provided MFA code. For more information about device authentication, see [Working with user devices in your user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-device-tracking.html) . A null value indicates that you have deactivated device remembering in your user pool.
*
- * > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature.
+ * > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature. For more infor
*/
readonly deviceConfiguration?: outputs.cognito.UserPoolDeviceConfiguration;
readonly emailAuthenticationMessage?: string;
@@ -102,7 +102,7 @@ export interface GetUserPoolResult {
*/
readonly providerUrl?: string;
/**
- * An array of schema attributes for the new user pool. These attributes can be standard or custom attributes.
+ * An array of attributes for the new user pool. You can add custom attributes and modify the properties of default attributes. The specifications in this parameter set the required attributes in your user pool. For more information, see [Working with user attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html) .
*/
readonly schema?: outputs.cognito.UserPoolSchemaAttribute[];
/**
@@ -110,7 +110,7 @@ export interface GetUserPoolResult {
*/
readonly smsAuthenticationMessage?: string;
/**
- * The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account .
+ * The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account . For more information see [SMS message settings](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-sms-settings.html) .
*/
readonly smsConfiguration?: outputs.cognito.UserPoolSmsConfiguration;
/**
@@ -134,7 +134,7 @@ export interface GetUserPoolResult {
*/
readonly userPoolId?: string;
/**
- * A string used to name the user pool.
+ * A friendlhy name for your user pool.
*/
readonly userPoolName?: string;
/**
@@ -150,9 +150,11 @@ export interface GetUserPoolResult {
*/
readonly usernameAttributes?: string[];
/**
- * Case sensitivity on the username input for the selected sign-in option. When case sensitivity is set to `False` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `False` (case insensitive) as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
+ * Sets the case sensitivity option for sign-in usernames. When `CaseSensitive` is `false` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `false` as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
*
- * This configuration is immutable after you set it. For more information, see [UsernameConfigurationType](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UsernameConfigurationType.html) .
+ * When `CaseSensitive` is `true` (case sensitive), Amazon Cognito interprets `USERNAME` and `UserName` as distinct users.
+ *
+ * This configuration is immutable after you set it.
*/
readonly usernameConfiguration?: outputs.cognito.UserPoolUsernameConfiguration;
/**
@@ -161,7 +163,19 @@ export interface GetUserPoolResult {
* Set the email message type that corresponds to your `DefaultEmailOption` selection. For `CONFIRM_WITH_LINK` , specify an `EmailMessageByLink` and leave `EmailMessage` blank. For `CONFIRM_WITH_CODE` , specify an `EmailMessage` and leave `EmailMessageByLink` blank. When you supply both parameters with either choice, Amazon Cognito returns an error.
*/
readonly verificationMessageTemplate?: outputs.cognito.UserPoolVerificationMessageTemplate;
+ /**
+ * Sets or displays the authentication domain, typically your user pool domain, that passkey providers must use as a relying party (RP) in their configuration.
+ *
+ * Under the following conditions, the passkey relying party ID must be the fully-qualified domain name of your custom domain:
+ *
+ * - The user pool is configured for passkey authentication.
+ * - The user pool has a custom domain, whether or not it also has a prefix domain.
+ * - Your application performs authentication with managed login or the classic hosted UI.
+ */
readonly webAuthnRelyingPartyId?: string;
+ /**
+ * When `required` , users can only register and sign in users with passkeys that are capable of [user verification](https://docs.aws.amazon.com/https://www.w3.org/TR/webauthn-2/#enum-userVerificationRequirement) . When `preferred` , your user pool doesn't require the use of authenticators with user verification but encourages it.
+ */
readonly webAuthnUserVerification?: string;
}
/**
diff --git a/sdk/nodejs/cognito/getUserPoolClient.ts b/sdk/nodejs/cognito/getUserPoolClient.ts
index 9d23ef022f..860106b214 100644
--- a/sdk/nodejs/cognito/getUserPoolClient.ts
+++ b/sdk/nodejs/cognito/getUserPoolClient.ts
@@ -24,7 +24,7 @@ export interface GetUserPoolClientArgs {
*/
clientId: string;
/**
- * The user pool ID for the user pool where you want to create a user pool client.
+ * The ID of the user pool where you want to create an app client.
*/
userPoolId: string;
}
@@ -64,13 +64,13 @@ export interface GetUserPoolClientResult {
*/
readonly allowedOAuthFlowsUserPoolClient?: boolean;
/**
- * The allowed OAuth scopes. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
+ * The OAuth 2.0 scopes that you want to permit your app client to authorize. Scopes govern access control to user pool self-service API operations, user data from the `userInfo` endpoint, and third-party APIs. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
*/
readonly allowedOAuthScopes?: string[];
/**
* The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.
*
- * > In AWS Regions where Amazon Pinpoint isn't available, user pools only support sending events to Amazon Pinpoint projects in AWS Region us-east-1. In Regions where Amazon Pinpoint is available, user pools support sending events to Amazon Pinpoint projects within that same Region.
+ * In AWS Regions where Amazon Pinpoint isn't available, user pools might not have access to analytics or might be configurable with campaigns in the US East (N. Virginia) Region. For more information, see [Using Amazon Pinpoint analytics](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-pinpoint-integration.html) .
*/
readonly analyticsConfiguration?: outputs.cognito.UserPoolClientAnalyticsConfiguration;
/**
@@ -83,7 +83,7 @@ export interface GetUserPoolClientResult {
* A redirect URI must:
*
* - Be an absolute URI.
- * - Be registered with the authorization server.
+ * - Be registered with the authorization server. Amazon Cognito doesn't accept authorization requests with `redirect_uri` values that aren't in the list of `CallbackURLs` that you provide in this parameter.
* - Not include a fragment component.
*
* See [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .
@@ -98,24 +98,12 @@ export interface GetUserPoolClientResult {
*/
readonly clientId?: string;
/**
- * The client name for the user pool client you would like to create.
+ * A friendly name for the app client that you want to create.
*/
readonly clientName?: string;
readonly clientSecret?: string;
/**
* The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list.
- *
- * A redirect URI must:
- *
- * - Be an absolute URI.
- * - Be registered with the authorization server.
- * - Not include a fragment component.
- *
- * For more information, see [Default redirect URI](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#cognito-user-pools-app-idp-settings-about) .
- *
- * Amazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.
- *
- * App callback URLs such as myapp://example are also supported.
*/
readonly defaultRedirectUri?: string;
/**
@@ -158,7 +146,7 @@ export interface GetUserPoolClientResult {
*/
readonly idTokenValidity?: number;
/**
- * A list of allowed logout URLs for the IdPs.
+ * A list of allowed logout URLs for managed login authentication. For more information, see [Logout endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/logout-endpoint.html) .
*/
readonly logoutUrls?: string[];
readonly name?: string;
@@ -194,11 +182,11 @@ export interface GetUserPoolClientResult {
/**
* A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .
*
- * This setting applies to providers that you can access with the [hosted UI and OAuth 2.0 authorization server](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-app-integration.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
+ * This setting applies to providers that you can access with [managed login](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managed-login.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
*/
readonly supportedIdentityProviders?: string[];
/**
- * The units in which the validity times are represented. The default unit for RefreshToken is days, and default for ID and access tokens are hours.
+ * The units that validity times are represented in. The default unit for refresh tokens is days, and the default for ID and access tokens are hours.
*/
readonly tokenValidityUnits?: outputs.cognito.UserPoolClientTokenValidityUnits;
/**
@@ -227,7 +215,7 @@ export interface GetUserPoolClientOutputArgs {
*/
clientId: pulumi.Input;
/**
- * The user pool ID for the user pool where you want to create a user pool client.
+ * The ID of the user pool where you want to create an app client.
*/
userPoolId: pulumi.Input;
}
diff --git a/sdk/nodejs/cognito/getUserPoolGroup.ts b/sdk/nodejs/cognito/getUserPoolGroup.ts
index d9ab5fe574..921b9b7b43 100644
--- a/sdk/nodejs/cognito/getUserPoolGroup.ts
+++ b/sdk/nodejs/cognito/getUserPoolGroup.ts
@@ -17,18 +17,18 @@ export function getUserPoolGroup(args: GetUserPoolGroupArgs, opts?: pulumi.Invok
export interface GetUserPoolGroupArgs {
/**
- * The name of the group. Must be unique.
+ * A name for the group. This name must be unique in your user pool.
*/
groupName: string;
/**
- * The user pool ID for the user pool.
+ * The ID of the user pool where you want to create a user group.
*/
userPoolId: string;
}
export interface GetUserPoolGroupResult {
/**
- * A string containing the description of the group.
+ * A description of the group that you're creating.
*/
readonly description?: string;
/**
@@ -40,7 +40,7 @@ export interface GetUserPoolGroupResult {
*/
readonly precedence?: number;
/**
- * The role Amazon Resource Name (ARN) for the group.
+ * The Amazon Resource Name (ARN) for the IAM role that you want to associate with the group. A group role primarily declares a preferred role for the credentials that you get from an identity pool. Amazon Cognito ID tokens have a `cognito:preferred_role` claim that presents the highest-precedence group that a user belongs to. Both ID and access tokens also contain a `cognito:groups` claim that list all the groups that a user is a member of.
*/
readonly roleArn?: string;
}
@@ -57,11 +57,11 @@ export function getUserPoolGroupOutput(args: GetUserPoolGroupOutputArgs, opts?:
export interface GetUserPoolGroupOutputArgs {
/**
- * The name of the group. Must be unique.
+ * A name for the group. This name must be unique in your user pool.
*/
groupName: pulumi.Input;
/**
- * The user pool ID for the user pool.
+ * The ID of the user pool where you want to create a user group.
*/
userPoolId: pulumi.Input;
}
diff --git a/sdk/nodejs/cognito/getUserPoolIdentityProvider.ts b/sdk/nodejs/cognito/getUserPoolIdentityProvider.ts
index 85c1840ed5..6d84693cf6 100644
--- a/sdk/nodejs/cognito/getUserPoolIdentityProvider.ts
+++ b/sdk/nodejs/cognito/getUserPoolIdentityProvider.ts
@@ -17,22 +17,22 @@ export function getUserPoolIdentityProvider(args: GetUserPoolIdentityProviderArg
export interface GetUserPoolIdentityProviderArgs {
/**
- * The IdP name.
+ * The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP.
*/
providerName: string;
/**
- * The user pool ID.
+ * The Id of the user pool where you want to create an IdP.
*/
userPoolId: string;
}
export interface GetUserPoolIdentityProviderResult {
/**
- * A mapping of IdP attributes to standard and custom user pool attributes.
+ * A mapping of IdP attributes to standard and custom user pool attributes. Specify a user pool attribute as the key of the key-value pair, and the IdP attribute claim name as the value.
*/
readonly attributeMapping?: {[key: string]: string};
/**
- * A list of IdP identifiers.
+ * An array of IdP identifiers, for example `"IdPIdentifiers": [ "MyIdP", "MyIdP2" ]` . Identifiers are friendly names that you can pass in the `idp_identifier` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP. Identifiers in a domain format also enable the use of [email-address matching with SAML providers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managing-saml-idp-naming.html) .
*/
readonly idpIdentifiers?: string[];
/**
@@ -81,11 +81,11 @@ export function getUserPoolIdentityProviderOutput(args: GetUserPoolIdentityProvi
export interface GetUserPoolIdentityProviderOutputArgs {
/**
- * The IdP name.
+ * The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP.
*/
providerName: pulumi.Input;
/**
- * The user pool ID.
+ * The Id of the user pool where you want to create an IdP.
*/
userPoolId: pulumi.Input;
}
diff --git a/sdk/nodejs/cognito/getUserPoolResourceServer.ts b/sdk/nodejs/cognito/getUserPoolResourceServer.ts
index 0d0876ab83..2f52218a65 100644
--- a/sdk/nodejs/cognito/getUserPoolResourceServer.ts
+++ b/sdk/nodejs/cognito/getUserPoolResourceServer.ts
@@ -26,7 +26,7 @@ export interface GetUserPoolResourceServerArgs {
*/
identifier: string;
/**
- * The user pool ID for the user pool.
+ * The ID of the user pool where you want to create a resource server.
*/
userPoolId: string;
}
@@ -60,7 +60,7 @@ export interface GetUserPoolResourceServerOutputArgs {
*/
identifier: pulumi.Input;
/**
- * The user pool ID for the user pool.
+ * The ID of the user pool where you want to create a resource server.
*/
userPoolId: pulumi.Input;
}
diff --git a/sdk/nodejs/cognito/getUserPoolUiCustomizationAttachment.ts b/sdk/nodejs/cognito/getUserPoolUiCustomizationAttachment.ts
index 8f61689fbd..327b91f477 100644
--- a/sdk/nodejs/cognito/getUserPoolUiCustomizationAttachment.ts
+++ b/sdk/nodejs/cognito/getUserPoolUiCustomizationAttachment.ts
@@ -21,7 +21,7 @@ export interface GetUserPoolUiCustomizationAttachmentArgs {
*/
clientId: string;
/**
- * The user pool ID for the user pool.
+ * The ID of the user pool.
*/
userPoolId: string;
}
@@ -49,7 +49,7 @@ export interface GetUserPoolUiCustomizationAttachmentOutputArgs {
*/
clientId: pulumi.Input;
/**
- * The user pool ID for the user pool.
+ * The ID of the user pool.
*/
userPoolId: pulumi.Input;
}
diff --git a/sdk/nodejs/cognito/managedLoginBranding.ts b/sdk/nodejs/cognito/managedLoginBranding.ts
index 011cdc8302..947b554044 100644
--- a/sdk/nodejs/cognito/managedLoginBranding.ts
+++ b/sdk/nodejs/cognito/managedLoginBranding.ts
@@ -41,11 +41,17 @@ export class ManagedLoginBranding extends pulumi.CustomResource {
* An array of image files that you want to apply to roles like backgrounds, logos, and icons. Each object must also indicate whether it is for dark mode, light mode, or browser-adaptive mode.
*/
public readonly assets!: pulumi.Output;
+ /**
+ * The app client that's assigned to the branding style that you want more information about.
+ */
public readonly clientId!: pulumi.Output;
/**
* The ID of the managed login branding style.
*/
public /*out*/ readonly managedLoginBrandingId!: pulumi.Output;
+ /**
+ * When `true` , returns values for branding options that are unchanged from Amazon Cognito defaults. When `false` or when you omit this parameter, returns only values that you customized in your branding style.
+ */
public readonly returnMergedResources!: pulumi.Output;
/**
* A JSON file, encoded as a `Document` type, with the the settings that you want to apply to your style.
@@ -54,7 +60,9 @@ export class ManagedLoginBranding extends pulumi.CustomResource {
*/
public readonly settings!: pulumi.Output;
/**
- * When true, applies the default branding style options. This option reverts to a "blank" style that you can modify later in the branding designer.
+ * When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.
+ *
+ * When you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request.
*/
public readonly useCognitoProvidedValues!: pulumi.Output;
/**
@@ -107,7 +115,13 @@ export interface ManagedLoginBrandingArgs {
* An array of image files that you want to apply to roles like backgrounds, logos, and icons. Each object must also indicate whether it is for dark mode, light mode, or browser-adaptive mode.
*/
assets?: pulumi.Input[]>;
+ /**
+ * The app client that's assigned to the branding style that you want more information about.
+ */
clientId?: pulumi.Input;
+ /**
+ * When `true` , returns values for branding options that are unchanged from Amazon Cognito defaults. When `false` or when you omit this parameter, returns only values that you customized in your branding style.
+ */
returnMergedResources?: pulumi.Input;
/**
* A JSON file, encoded as a `Document` type, with the the settings that you want to apply to your style.
@@ -116,7 +130,9 @@ export interface ManagedLoginBrandingArgs {
*/
settings?: any;
/**
- * When true, applies the default branding style options. This option reverts to a "blank" style that you can modify later in the branding designer.
+ * When true, applies the default branding style options. This option reverts to default style options that are managed by Amazon Cognito. You can modify them later in the branding designer.
+ *
+ * When you specify `true` for this option, you must also omit values for `Settings` and `Assets` in the request.
*/
useCognitoProvidedValues?: pulumi.Input;
/**
diff --git a/sdk/nodejs/cognito/userPool.ts b/sdk/nodejs/cognito/userPool.ts
index 9989fa21ce..0158ccc7d5 100644
--- a/sdk/nodejs/cognito/userPool.ts
+++ b/sdk/nodejs/cognito/userPool.ts
@@ -48,7 +48,7 @@ export class UserPool extends pulumi.CustomResource {
*/
public readonly adminCreateUserConfig!: pulumi.Output;
/**
- * Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* .
+ * Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* . For more information about alias attributes, see [Customizing sign-in attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-aliases) .
*/
public readonly aliasAttributes!: pulumi.Output;
/**
@@ -56,7 +56,7 @@ export class UserPool extends pulumi.CustomResource {
*/
public /*out*/ readonly arn!: pulumi.Output;
/**
- * The attributes to be auto-verified. Possible values: *email* , *phone_number* .
+ * The attributes that you want your user pool to automatically verify. Possible values: *email* , *phone_number* . For more information see [Verifying contact information at sign-up](https://docs.aws.amazon.com/cognito/latest/developerguide/signing-up-users-in-your-app.html#allowing-users-to-sign-up-and-confirm-themselves) .
*/
public readonly autoVerifiedAttributes!: pulumi.Output;
/**
@@ -68,9 +68,9 @@ export class UserPool extends pulumi.CustomResource {
*/
public readonly deletionProtection!: pulumi.Output;
/**
- * The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool.
+ * The device-remembering configuration for a user pool. Device remembering or device tracking is a "Remember me on this device" option for user pools that perform authentication with the device key of a trusted device in the back end, instead of a user-provided MFA code. For more information about device authentication, see [Working with user devices in your user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-device-tracking.html) . A null value indicates that you have deactivated device remembering in your user pool.
*
- * > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature.
+ * > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature. For more infor
*/
public readonly deviceConfiguration!: pulumi.Output;
public readonly emailAuthenticationMessage!: pulumi.Output;
@@ -124,7 +124,7 @@ export class UserPool extends pulumi.CustomResource {
*/
public /*out*/ readonly providerUrl!: pulumi.Output;
/**
- * An array of schema attributes for the new user pool. These attributes can be standard or custom attributes.
+ * An array of attributes for the new user pool. You can add custom attributes and modify the properties of default attributes. The specifications in this parameter set the required attributes in your user pool. For more information, see [Working with user attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html) .
*/
public readonly schema!: pulumi.Output;
/**
@@ -132,7 +132,7 @@ export class UserPool extends pulumi.CustomResource {
*/
public readonly smsAuthenticationMessage!: pulumi.Output;
/**
- * The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account .
+ * The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account . For more information see [SMS message settings](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-sms-settings.html) .
*/
public readonly smsConfiguration!: pulumi.Output;
/**
@@ -156,7 +156,7 @@ export class UserPool extends pulumi.CustomResource {
*/
public /*out*/ readonly userPoolId!: pulumi.Output;
/**
- * A string used to name the user pool.
+ * A friendlhy name for your user pool.
*/
public readonly userPoolName!: pulumi.Output;
/**
@@ -172,9 +172,11 @@ export class UserPool extends pulumi.CustomResource {
*/
public readonly usernameAttributes!: pulumi.Output;
/**
- * Case sensitivity on the username input for the selected sign-in option. When case sensitivity is set to `False` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `False` (case insensitive) as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
+ * Sets the case sensitivity option for sign-in usernames. When `CaseSensitive` is `false` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `false` as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
*
- * This configuration is immutable after you set it. For more information, see [UsernameConfigurationType](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UsernameConfigurationType.html) .
+ * When `CaseSensitive` is `true` (case sensitive), Amazon Cognito interprets `USERNAME` and `UserName` as distinct users.
+ *
+ * This configuration is immutable after you set it.
*/
public readonly usernameConfiguration!: pulumi.Output;
/**
@@ -183,7 +185,19 @@ export class UserPool extends pulumi.CustomResource {
* Set the email message type that corresponds to your `DefaultEmailOption` selection. For `CONFIRM_WITH_LINK` , specify an `EmailMessageByLink` and leave `EmailMessage` blank. For `CONFIRM_WITH_CODE` , specify an `EmailMessage` and leave `EmailMessageByLink` blank. When you supply both parameters with either choice, Amazon Cognito returns an error.
*/
public readonly verificationMessageTemplate!: pulumi.Output;
+ /**
+ * Sets or displays the authentication domain, typically your user pool domain, that passkey providers must use as a relying party (RP) in their configuration.
+ *
+ * Under the following conditions, the passkey relying party ID must be the fully-qualified domain name of your custom domain:
+ *
+ * - The user pool is configured for passkey authentication.
+ * - The user pool has a custom domain, whether or not it also has a prefix domain.
+ * - Your application performs authentication with managed login or the classic hosted UI.
+ */
public readonly webAuthnRelyingPartyId!: pulumi.Output;
+ /**
+ * When `required` , users can only register and sign in users with passkeys that are capable of [user verification](https://docs.aws.amazon.com/https://www.w3.org/TR/webauthn-2/#enum-userVerificationRequirement) . When `preferred` , your user pool doesn't require the use of authenticators with user verification but encourages it.
+ */
public readonly webAuthnUserVerification!: pulumi.Output;
/**
@@ -285,11 +299,11 @@ export interface UserPoolArgs {
*/
adminCreateUserConfig?: pulumi.Input;
/**
- * Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* .
+ * Attributes supported as an alias for this user pool. Possible values: *phone_number* , *email* , or *preferred_username* . For more information about alias attributes, see [Customizing sign-in attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html#user-pool-settings-aliases) .
*/
aliasAttributes?: pulumi.Input[]>;
/**
- * The attributes to be auto-verified. Possible values: *email* , *phone_number* .
+ * The attributes that you want your user pool to automatically verify. Possible values: *email* , *phone_number* . For more information see [Verifying contact information at sign-up](https://docs.aws.amazon.com/cognito/latest/developerguide/signing-up-users-in-your-app.html#allowing-users-to-sign-up-and-confirm-themselves) .
*/
autoVerifiedAttributes?: pulumi.Input[]>;
/**
@@ -301,9 +315,9 @@ export interface UserPoolArgs {
*/
deletionProtection?: pulumi.Input;
/**
- * The device-remembering configuration for a user pool. A null value indicates that you have deactivated device remembering in your user pool.
+ * The device-remembering configuration for a user pool. Device remembering or device tracking is a "Remember me on this device" option for user pools that perform authentication with the device key of a trusted device in the back end, instead of a user-provided MFA code. For more information about device authentication, see [Working with user devices in your user pool](https://docs.aws.amazon.com/cognito/latest/developerguide/amazon-cognito-user-pools-device-tracking.html) . A null value indicates that you have deactivated device remembering in your user pool.
*
- * > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature.
+ * > When you provide a value for any `DeviceConfiguration` field, you activate the Amazon Cognito device-remembering feature. For more infor
*/
deviceConfiguration?: pulumi.Input;
emailAuthenticationMessage?: pulumi.Input;
@@ -349,7 +363,7 @@ export interface UserPoolArgs {
*/
policies?: pulumi.Input;
/**
- * An array of schema attributes for the new user pool. These attributes can be standard or custom attributes.
+ * An array of attributes for the new user pool. You can add custom attributes and modify the properties of default attributes. The specifications in this parameter set the required attributes in your user pool. For more information, see [Working with user attributes](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-attributes.html) .
*/
schema?: pulumi.Input[]>;
/**
@@ -357,7 +371,7 @@ export interface UserPoolArgs {
*/
smsAuthenticationMessage?: pulumi.Input;
/**
- * The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account .
+ * The SMS configuration with the settings that your Amazon Cognito user pool must use to send an SMS message from your AWS account through Amazon Simple Notification Service. To send SMS messages with Amazon SNS in the AWS Region that you want, the Amazon Cognito user pool uses an AWS Identity and Access Management (IAM) role in your AWS account . For more information see [SMS message settings](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-sms-settings.html) .
*/
smsConfiguration?: pulumi.Input;
/**
@@ -377,7 +391,7 @@ export interface UserPoolArgs {
*/
userPoolAddOns?: pulumi.Input;
/**
- * A string used to name the user pool.
+ * A friendlhy name for your user pool.
*/
userPoolName?: pulumi.Input;
/**
@@ -393,9 +407,11 @@ export interface UserPoolArgs {
*/
usernameAttributes?: pulumi.Input[]>;
/**
- * Case sensitivity on the username input for the selected sign-in option. When case sensitivity is set to `False` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `False` (case insensitive) as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
+ * Sets the case sensitivity option for sign-in usernames. When `CaseSensitive` is `false` (case insensitive), users can sign in with any combination of capital and lowercase letters. For example, `username` , `USERNAME` , or `UserName` , or for email, `email@example.com` or `EMaiL@eXamplE.Com` . For most use cases, set case sensitivity to `false` as a best practice. When usernames and email addresses are case insensitive, Amazon Cognito treats any variation in case as the same user, and prevents a case variation from being assigned to the same attribute for a different user.
*
- * This configuration is immutable after you set it. For more information, see [UsernameConfigurationType](https://docs.aws.amazon.com/cognito-user-identity-pools/latest/APIReference/API_UsernameConfigurationType.html) .
+ * When `CaseSensitive` is `true` (case sensitive), Amazon Cognito interprets `USERNAME` and `UserName` as distinct users.
+ *
+ * This configuration is immutable after you set it.
*/
usernameConfiguration?: pulumi.Input;
/**
@@ -404,6 +420,18 @@ export interface UserPoolArgs {
* Set the email message type that corresponds to your `DefaultEmailOption` selection. For `CONFIRM_WITH_LINK` , specify an `EmailMessageByLink` and leave `EmailMessage` blank. For `CONFIRM_WITH_CODE` , specify an `EmailMessage` and leave `EmailMessageByLink` blank. When you supply both parameters with either choice, Amazon Cognito returns an error.
*/
verificationMessageTemplate?: pulumi.Input;
+ /**
+ * Sets or displays the authentication domain, typically your user pool domain, that passkey providers must use as a relying party (RP) in their configuration.
+ *
+ * Under the following conditions, the passkey relying party ID must be the fully-qualified domain name of your custom domain:
+ *
+ * - The user pool is configured for passkey authentication.
+ * - The user pool has a custom domain, whether or not it also has a prefix domain.
+ * - Your application performs authentication with managed login or the classic hosted UI.
+ */
webAuthnRelyingPartyId?: pulumi.Input;
+ /**
+ * When `required` , users can only register and sign in users with passkeys that are capable of [user verification](https://docs.aws.amazon.com/https://www.w3.org/TR/webauthn-2/#enum-userVerificationRequirement) . When `preferred` , your user pool doesn't require the use of authenticators with user verification but encourages it.
+ */
webAuthnUserVerification?: pulumi.Input;
}
diff --git a/sdk/nodejs/cognito/userPoolClient.ts b/sdk/nodejs/cognito/userPoolClient.ts
index 654bfdeff3..a967d1b49f 100644
--- a/sdk/nodejs/cognito/userPoolClient.ts
+++ b/sdk/nodejs/cognito/userPoolClient.ts
@@ -71,13 +71,13 @@ export class UserPoolClient extends pulumi.CustomResource {
*/
public readonly allowedOAuthFlowsUserPoolClient!: pulumi.Output;
/**
- * The allowed OAuth scopes. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
+ * The OAuth 2.0 scopes that you want to permit your app client to authorize. Scopes govern access control to user pool self-service API operations, user data from the `userInfo` endpoint, and third-party APIs. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
*/
public readonly allowedOAuthScopes!: pulumi.Output;
/**
* The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.
*
- * > In AWS Regions where Amazon Pinpoint isn't available, user pools only support sending events to Amazon Pinpoint projects in AWS Region us-east-1. In Regions where Amazon Pinpoint is available, user pools support sending events to Amazon Pinpoint projects within that same Region.
+ * In AWS Regions where Amazon Pinpoint isn't available, user pools might not have access to analytics or might be configurable with campaigns in the US East (N. Virginia) Region. For more information, see [Using Amazon Pinpoint analytics](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-pinpoint-integration.html) .
*/
public readonly analyticsConfiguration!: pulumi.Output;
/**
@@ -90,7 +90,7 @@ export class UserPoolClient extends pulumi.CustomResource {
* A redirect URI must:
*
* - Be an absolute URI.
- * - Be registered with the authorization server.
+ * - Be registered with the authorization server. Amazon Cognito doesn't accept authorization requests with `redirect_uri` values that aren't in the list of `CallbackURLs` that you provide in this parameter.
* - Not include a fragment component.
*
* See [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .
@@ -105,24 +105,12 @@ export class UserPoolClient extends pulumi.CustomResource {
*/
public /*out*/ readonly clientId!: pulumi.Output;
/**
- * The client name for the user pool client you would like to create.
+ * A friendly name for the app client that you want to create.
*/
public readonly clientName!: pulumi.Output;
public /*out*/ readonly clientSecret!: pulumi.Output;
/**
* The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list.
- *
- * A redirect URI must:
- *
- * - Be an absolute URI.
- * - Be registered with the authorization server.
- * - Not include a fragment component.
- *
- * For more information, see [Default redirect URI](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#cognito-user-pools-app-idp-settings-about) .
- *
- * Amazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.
- *
- * App callback URLs such as myapp://example are also supported.
*/
public readonly defaultRedirectUri!: pulumi.Output;
/**
@@ -154,7 +142,7 @@ export class UserPoolClient extends pulumi.CustomResource {
*/
public readonly explicitAuthFlows!: pulumi.Output;
/**
- * Boolean to specify whether you want to generate a secret for the user pool client being created.
+ * When `true` , generates a client secret for the app client. Client secrets are used with server-side and machine-to-machine applications. For more information, see [App client types](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#user-pool-settings-client-app-client-types) .
*/
public readonly generateSecret!: pulumi.Output;
/**
@@ -169,7 +157,7 @@ export class UserPoolClient extends pulumi.CustomResource {
*/
public readonly idTokenValidity!: pulumi.Output;
/**
- * A list of allowed logout URLs for the IdPs.
+ * A list of allowed logout URLs for managed login authentication. For more information, see [Logout endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/logout-endpoint.html) .
*/
public readonly logoutUrls!: pulumi.Output;
public /*out*/ readonly name!: pulumi.Output;
@@ -205,15 +193,15 @@ export class UserPoolClient extends pulumi.CustomResource {
/**
* A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .
*
- * This setting applies to providers that you can access with the [hosted UI and OAuth 2.0 authorization server](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-app-integration.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
+ * This setting applies to providers that you can access with [managed login](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managed-login.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
*/
public readonly supportedIdentityProviders!: pulumi.Output;
/**
- * The units in which the validity times are represented. The default unit for RefreshToken is days, and default for ID and access tokens are hours.
+ * The units that validity times are represented in. The default unit for refresh tokens is days, and the default for ID and access tokens are hours.
*/
public readonly tokenValidityUnits!: pulumi.Output;
/**
- * The user pool ID for the user pool where you want to create a user pool client.
+ * The ID of the user pool where you want to create an app client.
*/
public readonly userPoolId!: pulumi.Output;
/**
@@ -336,13 +324,13 @@ export interface UserPoolClientArgs {
*/
allowedOAuthFlowsUserPoolClient?: pulumi.Input;
/**
- * The allowed OAuth scopes. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
+ * The OAuth 2.0 scopes that you want to permit your app client to authorize. Scopes govern access control to user pool self-service API operations, user data from the `userInfo` endpoint, and third-party APIs. Possible values provided by OAuth are `phone` , `email` , `openid` , and `profile` . Possible values provided by AWS are `aws.cognito.signin.user.admin` . Custom scopes created in Resource Servers are also supported.
*/
allowedOAuthScopes?: pulumi.Input[]>;
/**
* The user pool analytics configuration for collecting metrics and sending them to your Amazon Pinpoint campaign.
*
- * > In AWS Regions where Amazon Pinpoint isn't available, user pools only support sending events to Amazon Pinpoint projects in AWS Region us-east-1. In Regions where Amazon Pinpoint is available, user pools support sending events to Amazon Pinpoint projects within that same Region.
+ * In AWS Regions where Amazon Pinpoint isn't available, user pools might not have access to analytics or might be configurable with campaigns in the US East (N. Virginia) Region. For more information, see [Using Amazon Pinpoint analytics](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-pinpoint-integration.html) .
*/
analyticsConfiguration?: pulumi.Input;
/**
@@ -355,7 +343,7 @@ export interface UserPoolClientArgs {
* A redirect URI must:
*
* - Be an absolute URI.
- * - Be registered with the authorization server.
+ * - Be registered with the authorization server. Amazon Cognito doesn't accept authorization requests with `redirect_uri` values that aren't in the list of `CallbackURLs` that you provide in this parameter.
* - Not include a fragment component.
*
* See [OAuth 2.0 - Redirection Endpoint](https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6749#section-3.1.2) .
@@ -366,23 +354,11 @@ export interface UserPoolClientArgs {
*/
callbackUrls?: pulumi.Input[]>;
/**
- * The client name for the user pool client you would like to create.
+ * A friendly name for the app client that you want to create.
*/
clientName?: pulumi.Input;
/**
* The default redirect URI. In app clients with one assigned IdP, replaces `redirect_uri` in authentication requests. Must be in the `CallbackURLs` list.
- *
- * A redirect URI must:
- *
- * - Be an absolute URI.
- * - Be registered with the authorization server.
- * - Not include a fragment component.
- *
- * For more information, see [Default redirect URI](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#cognito-user-pools-app-idp-settings-about) .
- *
- * Amazon Cognito requires HTTPS over HTTP except for http://localhost for testing purposes only.
- *
- * App callback URLs such as myapp://example are also supported.
*/
defaultRedirectUri?: pulumi.Input;
/**
@@ -414,7 +390,7 @@ export interface UserPoolClientArgs {
*/
explicitAuthFlows?: pulumi.Input[]>;
/**
- * Boolean to specify whether you want to generate a secret for the user pool client being created.
+ * When `true` , generates a client secret for the app client. Client secrets are used with server-side and machine-to-machine applications. For more information, see [App client types](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-settings-client-apps.html#user-pool-settings-client-app-client-types) .
*/
generateSecret?: pulumi.Input;
/**
@@ -429,7 +405,7 @@ export interface UserPoolClientArgs {
*/
idTokenValidity?: pulumi.Input;
/**
- * A list of allowed logout URLs for the IdPs.
+ * A list of allowed logout URLs for managed login authentication. For more information, see [Logout endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/logout-endpoint.html) .
*/
logoutUrls?: pulumi.Input[]>;
/**
@@ -464,15 +440,15 @@ export interface UserPoolClientArgs {
/**
* A list of provider names for the identity providers (IdPs) that are supported on this client. The following are supported: `COGNITO` , `Facebook` , `Google` , `SignInWithApple` , and `LoginWithAmazon` . You can also specify the names that you configured for the SAML and OIDC IdPs in your user pool, for example `MySAMLIdP` or `MyOIDCIdP` .
*
- * This setting applies to providers that you can access with the [hosted UI and OAuth 2.0 authorization server](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-app-integration.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
+ * This setting applies to providers that you can access with [managed login](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managed-login.html) . The removal of `COGNITO` from this list doesn't prevent authentication operations for local users with the user pools API in an AWS SDK. The only way to prevent API-based authentication is to block access with a [AWS WAF rule](https://docs.aws.amazon.com/cognito/latest/developerguide/user-pool-waf.html) .
*/
supportedIdentityProviders?: pulumi.Input[]>;
/**
- * The units in which the validity times are represented. The default unit for RefreshToken is days, and default for ID and access tokens are hours.
+ * The units that validity times are represented in. The default unit for refresh tokens is days, and the default for ID and access tokens are hours.
*/
tokenValidityUnits?: pulumi.Input;
/**
- * The user pool ID for the user pool where you want to create a user pool client.
+ * The ID of the user pool where you want to create an app client.
*/
userPoolId: pulumi.Input;
/**
diff --git a/sdk/nodejs/cognito/userPoolGroup.ts b/sdk/nodejs/cognito/userPoolGroup.ts
index 656271164c..e2f80ff93a 100644
--- a/sdk/nodejs/cognito/userPoolGroup.ts
+++ b/sdk/nodejs/cognito/userPoolGroup.ts
@@ -35,11 +35,11 @@ export class UserPoolGroup extends pulumi.CustomResource {
}
/**
- * A string containing the description of the group.
+ * A description of the group that you're creating.
*/
public readonly description!: pulumi.Output;
/**
- * The name of the group. Must be unique.
+ * A name for the group. This name must be unique in your user pool.
*/
public readonly groupName!: pulumi.Output;
/**
@@ -51,11 +51,11 @@ export class UserPoolGroup extends pulumi.CustomResource {
*/
public readonly precedence!: pulumi.Output;
/**
- * The role Amazon Resource Name (ARN) for the group.
+ * The Amazon Resource Name (ARN) for the IAM role that you want to associate with the group. A group role primarily declares a preferred role for the credentials that you get from an identity pool. Amazon Cognito ID tokens have a `cognito:preferred_role` claim that presents the highest-precedence group that a user belongs to. Both ID and access tokens also contain a `cognito:groups` claim that list all the groups that a user is a member of.
*/
public readonly roleArn!: pulumi.Output;
/**
- * The user pool ID for the user pool.
+ * The ID of the user pool where you want to create a user group.
*/
public readonly userPoolId!: pulumi.Output;
@@ -97,11 +97,11 @@ export class UserPoolGroup extends pulumi.CustomResource {
*/
export interface UserPoolGroupArgs {
/**
- * A string containing the description of the group.
+ * A description of the group that you're creating.
*/
description?: pulumi.Input;
/**
- * The name of the group. Must be unique.
+ * A name for the group. This name must be unique in your user pool.
*/
groupName?: pulumi.Input;
/**
@@ -113,11 +113,11 @@ export interface UserPoolGroupArgs {
*/
precedence?: pulumi.Input;
/**
- * The role Amazon Resource Name (ARN) for the group.
+ * The Amazon Resource Name (ARN) for the IAM role that you want to associate with the group. A group role primarily declares a preferred role for the credentials that you get from an identity pool. Amazon Cognito ID tokens have a `cognito:preferred_role` claim that presents the highest-precedence group that a user belongs to. Both ID and access tokens also contain a `cognito:groups` claim that list all the groups that a user is a member of.
*/
roleArn?: pulumi.Input;
/**
- * The user pool ID for the user pool.
+ * The ID of the user pool where you want to create a user group.
*/
userPoolId: pulumi.Input;
}
diff --git a/sdk/nodejs/cognito/userPoolIdentityProvider.ts b/sdk/nodejs/cognito/userPoolIdentityProvider.ts
index c41167628f..7e4d357079 100644
--- a/sdk/nodejs/cognito/userPoolIdentityProvider.ts
+++ b/sdk/nodejs/cognito/userPoolIdentityProvider.ts
@@ -35,11 +35,11 @@ export class UserPoolIdentityProvider extends pulumi.CustomResource {
}
/**
- * A mapping of IdP attributes to standard and custom user pool attributes.
+ * A mapping of IdP attributes to standard and custom user pool attributes. Specify a user pool attribute as the key of the key-value pair, and the IdP attribute claim name as the value.
*/
public readonly attributeMapping!: pulumi.Output<{[key: string]: string} | undefined>;
/**
- * A list of IdP identifiers.
+ * An array of IdP identifiers, for example `"IdPIdentifiers": [ "MyIdP", "MyIdP2" ]` . Identifiers are friendly names that you can pass in the `idp_identifier` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP. Identifiers in a domain format also enable the use of [email-address matching with SAML providers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managing-saml-idp-naming.html) .
*/
public readonly idpIdentifiers!: pulumi.Output;
/**
@@ -75,15 +75,15 @@ export class UserPoolIdentityProvider extends pulumi.CustomResource {
*/
public readonly providerDetails!: pulumi.Output<{[key: string]: string}>;
/**
- * The IdP name.
+ * The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP.
*/
public readonly providerName!: pulumi.Output;
/**
- * The IdP type.
+ * The type of IdP that you want to add. Amazon Cognito supports OIDC, SAML 2.0, Login With Amazon, Sign In With Apple, Google, and Facebook IdPs.
*/
public readonly providerType!: pulumi.Output;
/**
- * The user pool ID.
+ * The Id of the user pool where you want to create an IdP.
*/
public readonly userPoolId!: pulumi.Output;
@@ -133,11 +133,11 @@ export class UserPoolIdentityProvider extends pulumi.CustomResource {
*/
export interface UserPoolIdentityProviderArgs {
/**
- * A mapping of IdP attributes to standard and custom user pool attributes.
+ * A mapping of IdP attributes to standard and custom user pool attributes. Specify a user pool attribute as the key of the key-value pair, and the IdP attribute claim name as the value.
*/
attributeMapping?: pulumi.Input<{[key: string]: pulumi.Input}>;
/**
- * A list of IdP identifiers.
+ * An array of IdP identifiers, for example `"IdPIdentifiers": [ "MyIdP", "MyIdP2" ]` . Identifiers are friendly names that you can pass in the `idp_identifier` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP. Identifiers in a domain format also enable the use of [email-address matching with SAML providers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-managing-saml-idp-naming.html) .
*/
idpIdentifiers?: pulumi.Input[]>;
/**
@@ -173,15 +173,15 @@ export interface UserPoolIdentityProviderArgs {
*/
providerDetails: pulumi.Input<{[key: string]: pulumi.Input}>;
/**
- * The IdP name.
+ * The name that you want to assign to the IdP. You can pass the identity provider name in the `identity_provider` query parameter of requests to the [Authorize endpoint](https://docs.aws.amazon.com/cognito/latest/developerguide/authorization-endpoint.html) to silently redirect to sign-in with the associated IdP.
*/
providerName?: pulumi.Input;
/**
- * The IdP type.
+ * The type of IdP that you want to add. Amazon Cognito supports OIDC, SAML 2.0, Login With Amazon, Sign In With Apple, Google, and Facebook IdPs.
*/
providerType: pulumi.Input;
/**
- * The user pool ID.
+ * The Id of the user pool where you want to create an IdP.
*/
userPoolId: pulumi.Input;
}
diff --git a/sdk/nodejs/cognito/userPoolResourceServer.ts b/sdk/nodejs/cognito/userPoolResourceServer.ts
index 66b74c37da..a3b9688d87 100644
--- a/sdk/nodejs/cognito/userPoolResourceServer.ts
+++ b/sdk/nodejs/cognito/userPoolResourceServer.ts
@@ -52,7 +52,7 @@ export class UserPoolResourceServer extends pulumi.CustomResource {
*/
public readonly scopes!: pulumi.Output;
/**
- * The user pool ID for the user pool.
+ * The ID of the user pool where you want to create a resource server.
*/
public readonly userPoolId!: pulumi.Output;
@@ -109,7 +109,7 @@ export interface UserPoolResourceServerArgs {
*/
scopes?: pulumi.Input[]>;
/**
- * The user pool ID for the user pool.
+ * The ID of the user pool where you want to create a resource server.
*/
userPoolId: pulumi.Input;
}
diff --git a/sdk/nodejs/cognito/userPoolUiCustomizationAttachment.ts b/sdk/nodejs/cognito/userPoolUiCustomizationAttachment.ts
index 55a8516ce5..ee2ee5fb92 100644
--- a/sdk/nodejs/cognito/userPoolUiCustomizationAttachment.ts
+++ b/sdk/nodejs/cognito/userPoolUiCustomizationAttachment.ts
@@ -43,7 +43,7 @@ export class UserPoolUiCustomizationAttachment extends pulumi.CustomResource {
*/
public readonly css!: pulumi.Output;
/**
- * The user pool ID for the user pool.
+ * The ID of the user pool.
*/
public readonly userPoolId!: pulumi.Output;
@@ -92,7 +92,7 @@ export interface UserPoolUiCustomizationAttachmentArgs {
*/
css?: pulumi.Input;
/**
- * The user pool ID for the user pool.
+ * The ID of the user pool.
*/
userPoolId: pulumi.Input;
}
diff --git a/sdk/nodejs/cognito/userPoolUser.ts b/sdk/nodejs/cognito/userPoolUser.ts
index 51ae335690..aa25f9f7c6 100644
--- a/sdk/nodejs/cognito/userPoolUser.ts
+++ b/sdk/nodejs/cognito/userPoolUser.ts
@@ -40,31 +40,31 @@ export class UserPoolUser extends pulumi.CustomResource {
/**
* A map of custom key-value pairs that you can provide as input for any custom workflows that this action triggers.
*
- * You create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `clientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.
+ * You create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `ClientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.
*
* For more information, see [Customizing user pool Workflows with Lambda Triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html) in the *Amazon Cognito Developer Guide* .
*
- * > When you use the ClientMetadata parameter, remember that Amazon Cognito won't do the following:
+ * > When you use the `ClientMetadata` parameter, note that Amazon Cognito won't do the following:
* >
- * > - Store the ClientMetadata value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the ClientMetadata parameter serves no purpose.
- * > - Validate the ClientMetadata value.
- * > - Encrypt the ClientMetadata value. Don't use Amazon Cognito to provide sensitive information.
+ * > - Store the `ClientMetadata` value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the `ClientMetadata` parameter serves no purpose.
+ * > - Validate the `ClientMetadata` value.
+ * > - Encrypt the `ClientMetadata` value. Don't send sensitive information in this parameter.
*/
public readonly clientMetadata!: pulumi.Output<{[key: string]: string} | undefined>;
/**
- * Specify `"EMAIL"` if email will be used to send the welcome message. Specify `"SMS"` if the phone number will be used. The default value is `"SMS"` . You can specify more than one value.
+ * Specify `EMAIL` if email will be used to send the welcome message. Specify `SMS` if the phone number will be used. The default value is `SMS` . You can specify more than one value.
*/
public readonly desiredDeliveryMediums!: pulumi.Output;
/**
* This parameter is used only if the `phone_number_verified` or `email_verified` attribute is set to `True` . Otherwise, it is ignored.
*
- * If this parameter is set to `True` and the phone number or email address specified in the UserAttributes parameter already exists as an alias with a different user, the API call will migrate the alias from the previous user to the newly created user. The previous user will no longer be able to log in using that alias.
+ * If this parameter is set to `True` and the phone number or email address specified in the `UserAttributes` parameter already exists as an alias with a different user, this request migrates the alias from the previous user to the newly-created user. The previous user will no longer be able to log in using that alias.
*
* If this parameter is set to `False` , the API throws an `AliasExistsException` error if the alias already exists. The default value is `False` .
*/
public readonly forceAliasCreation!: pulumi.Output;
/**
- * Set to `RESEND` to resend the invitation message to a user that already exists and reset the expiration limit on the user's account. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.
+ * Set to `RESEND` to resend the invitation message to a user that already exists, and to reset the temporary-password duration with a new temporary password. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.
*/
public readonly messageAction!: pulumi.Output;
/**
@@ -83,7 +83,7 @@ export class UserPoolUser extends pulumi.CustomResource {
*/
public readonly userAttributes!: pulumi.Output;
/**
- * The user pool ID for the user pool where the user will be created.
+ * The ID of the user pool where you want to create a user.
*/
public readonly userPoolId!: pulumi.Output;
/**
@@ -149,31 +149,31 @@ export interface UserPoolUserArgs {
/**
* A map of custom key-value pairs that you can provide as input for any custom workflows that this action triggers.
*
- * You create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `clientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.
+ * You create custom workflows by assigning AWS Lambda functions to user pool triggers. When you use the AdminCreateUser API action, Amazon Cognito invokes the function that is assigned to the *pre sign-up* trigger. When Amazon Cognito invokes this function, it passes a JSON payload, which the function receives as input. This payload contains a `ClientMetadata` attribute, which provides the data that you assigned to the ClientMetadata parameter in your AdminCreateUser request. In your function code in AWS Lambda , you can process the `clientMetadata` value to enhance your workflow for your specific needs.
*
* For more information, see [Customizing user pool Workflows with Lambda Triggers](https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-identity-pools-working-with-aws-lambda-triggers.html) in the *Amazon Cognito Developer Guide* .
*
- * > When you use the ClientMetadata parameter, remember that Amazon Cognito won't do the following:
+ * > When you use the `ClientMetadata` parameter, note that Amazon Cognito won't do the following:
* >
- * > - Store the ClientMetadata value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the ClientMetadata parameter serves no purpose.
- * > - Validate the ClientMetadata value.
- * > - Encrypt the ClientMetadata value. Don't use Amazon Cognito to provide sensitive information.
+ * > - Store the `ClientMetadata` value. This data is available only to AWS Lambda triggers that are assigned to a user pool to support custom workflows. If your user pool configuration doesn't include triggers, the `ClientMetadata` parameter serves no purpose.
+ * > - Validate the `ClientMetadata` value.
+ * > - Encrypt the `ClientMetadata` value. Don't send sensitive information in this parameter.
*/
clientMetadata?: pulumi.Input<{[key: string]: pulumi.Input}>;
/**
- * Specify `"EMAIL"` if email will be used to send the welcome message. Specify `"SMS"` if the phone number will be used. The default value is `"SMS"` . You can specify more than one value.
+ * Specify `EMAIL` if email will be used to send the welcome message. Specify `SMS` if the phone number will be used. The default value is `SMS` . You can specify more than one value.
*/
desiredDeliveryMediums?: pulumi.Input[]>;
/**
* This parameter is used only if the `phone_number_verified` or `email_verified` attribute is set to `True` . Otherwise, it is ignored.
*
- * If this parameter is set to `True` and the phone number or email address specified in the UserAttributes parameter already exists as an alias with a different user, the API call will migrate the alias from the previous user to the newly created user. The previous user will no longer be able to log in using that alias.
+ * If this parameter is set to `True` and the phone number or email address specified in the `UserAttributes` parameter already exists as an alias with a different user, this request migrates the alias from the previous user to the newly-created user. The previous user will no longer be able to log in using that alias.
*
* If this parameter is set to `False` , the API throws an `AliasExistsException` error if the alias already exists. The default value is `False` .
*/
forceAliasCreation?: pulumi.Input;
/**
- * Set to `RESEND` to resend the invitation message to a user that already exists and reset the expiration limit on the user's account. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.
+ * Set to `RESEND` to resend the invitation message to a user that already exists, and to reset the temporary-password duration with a new temporary password. Set to `SUPPRESS` to suppress sending the message. You can specify only one value.
*/
messageAction?: pulumi.Input;
/**
@@ -192,7 +192,7 @@ export interface UserPoolUserArgs {
*/
userAttributes?: pulumi.Input[]>;
/**
- * The user pool ID for the user pool where the user will be created.
+ * The ID of the user pool where you want to create a user.
*/
userPoolId: pulumi.Input;
/**
diff --git a/sdk/nodejs/cognito/userPoolUserToGroupAttachment.ts b/sdk/nodejs/cognito/userPoolUserToGroupAttachment.ts
index 3ccd5130b1..c99c0dc332 100644
--- a/sdk/nodejs/cognito/userPoolUserToGroupAttachment.ts
+++ b/sdk/nodejs/cognito/userPoolUserToGroupAttachment.ts
@@ -39,7 +39,7 @@ export class UserPoolUserToGroupAttachment extends pulumi.CustomResource {
*/
public readonly groupName!: pulumi.Output;
/**
- * The user pool ID for the user pool.
+ * The ID of the user pool that contains the group that you want to add the user to.
*/
public readonly userPoolId!: pulumi.Output;
/**
@@ -91,7 +91,7 @@ export interface UserPoolUserToGroupAttachmentArgs {
*/
groupName: pulumi.Input;
/**
- * The user pool ID for the user pool.
+ * The ID of the user pool that contains the group that you want to add the user to.
*/
userPoolId: pulumi.Input;
/**
diff --git a/sdk/nodejs/connect/getTaskTemplate.ts b/sdk/nodejs/connect/getTaskTemplate.ts
index 1218ffe852..7c25f73df8 100644
--- a/sdk/nodejs/connect/getTaskTemplate.ts
+++ b/sdk/nodejs/connect/getTaskTemplate.ts
@@ -61,6 +61,10 @@ export interface GetTaskTemplateResult {
* The name of the task template.
*/
readonly name?: string;
+ /**
+ * The identifier of the contact flow.
+ */
+ readonly selfAssignContactFlowArn?: string;
/**
* The status of the task template.
*/
diff --git a/sdk/nodejs/connect/taskTemplate.ts b/sdk/nodejs/connect/taskTemplate.ts
index 5a3336da73..f882e328d3 100644
--- a/sdk/nodejs/connect/taskTemplate.ts
+++ b/sdk/nodejs/connect/taskTemplate.ts
@@ -73,6 +73,10 @@ export class TaskTemplate extends pulumi.CustomResource {
* The name of the task template.
*/
public readonly name!: pulumi.Output;
+ /**
+ * The identifier of the contact flow.
+ */
+ public readonly selfAssignContactFlowArn!: pulumi.Output;
/**
* The status of the task template.
*/
@@ -104,6 +108,7 @@ export class TaskTemplate extends pulumi.CustomResource {
resourceInputs["fields"] = args ? args.fields : undefined;
resourceInputs["instanceArn"] = args ? args.instanceArn : undefined;
resourceInputs["name"] = args ? args.name : undefined;
+ resourceInputs["selfAssignContactFlowArn"] = args ? args.selfAssignContactFlowArn : undefined;
resourceInputs["status"] = args ? args.status : undefined;
resourceInputs["tags"] = args ? args.tags : undefined;
resourceInputs["arn"] = undefined /*out*/;
@@ -117,6 +122,7 @@ export class TaskTemplate extends pulumi.CustomResource {
resourceInputs["fields"] = undefined /*out*/;
resourceInputs["instanceArn"] = undefined /*out*/;
resourceInputs["name"] = undefined /*out*/;
+ resourceInputs["selfAssignContactFlowArn"] = undefined /*out*/;
resourceInputs["status"] = undefined /*out*/;
resourceInputs["tags"] = undefined /*out*/;
}
@@ -161,6 +167,10 @@ export interface TaskTemplateArgs {
* The name of the task template.
*/
name?: pulumi.Input;
+ /**
+ * The identifier of the contact flow.
+ */
+ selfAssignContactFlowArn?: pulumi.Input;
/**
* The status of the task template.
*/
diff --git a/sdk/nodejs/dynamodb/table.ts b/sdk/nodejs/dynamodb/table.ts
index ca197f314d..9748690e50 100644
--- a/sdk/nodejs/dynamodb/table.ts
+++ b/sdk/nodejs/dynamodb/table.ts
@@ -306,8 +306,8 @@ export class Table extends pulumi.CustomResource {
*/
public readonly globalSecondaryIndexes!: pulumi.Output;
/**
- * Specifies the properties of data being imported from the S3 bucket source to the table.
- * If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, or the ``DeletionProtectionEnabled`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.
+ * Specifies the properties of data being imported from the S3 bucket source to the" table.
+ * If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, the ``DeletionProtectionEnabled`` property, or the ``WarmThroughput`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.
*/
public readonly importSourceSpecification!: pulumi.Output;
/**
@@ -482,8 +482,8 @@ export interface TableArgs {
*/
globalSecondaryIndexes?: pulumi.Input[]>;
/**
- * Specifies the properties of data being imported from the S3 bucket source to the table.
- * If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, or the ``DeletionProtectionEnabled`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.
+ * Specifies the properties of data being imported from the S3 bucket source to the" table.
+ * If you specify the ``ImportSourceSpecification`` property, and also specify either the ``StreamSpecification``, the ``TableClass`` property, the ``DeletionProtectionEnabled`` property, or the ``WarmThroughput`` property, the IAM entity creating/updating stack must have ``UpdateTable`` permission.
*/
importSourceSpecification?: pulumi.Input;
/**
diff --git a/sdk/nodejs/ec2/launchTemplate.ts b/sdk/nodejs/ec2/launchTemplate.ts
index 9f8891347c..a0a732adbd 100644
--- a/sdk/nodejs/ec2/launchTemplate.ts
+++ b/sdk/nodejs/ec2/launchTemplate.ts
@@ -67,7 +67,7 @@ export class LaunchTemplate extends pulumi.CustomResource {
public readonly launchTemplateName!: pulumi.Output;
/**
* The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.
- * To specify the tags for resources that are created during instance launch, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications).
+ * To specify the tags for the resources that are created when an instance is launched, you must use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications).
*/
public readonly tagSpecifications!: pulumi.Output;
/**
@@ -126,7 +126,7 @@ export interface LaunchTemplateArgs {
launchTemplateName?: pulumi.Input;
/**
* The tags to apply to the launch template on creation. To tag the launch template, the resource type must be ``launch-template``.
- * To specify the tags for resources that are created during instance launch, use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications).
+ * To specify the tags for the resources that are created when an instance is launched, you must use [TagSpecifications](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2-launchtemplate-launchtemplatedata-tagspecifications).
*/
tagSpecifications?: pulumi.Input[]>;
/**
diff --git a/sdk/nodejs/ecs/taskDefinition.ts b/sdk/nodejs/ecs/taskDefinition.ts
index 05e9a864ff..6b8826f3c6 100644
--- a/sdk/nodejs/ecs/taskDefinition.ts
+++ b/sdk/nodejs/ecs/taskDefinition.ts
@@ -238,6 +238,7 @@ export class TaskDefinition extends pulumi.CustomResource {
* This option requires Linux platform ``1.4.0`` or later.
*/
public readonly cpu!: pulumi.Output;
+ public readonly enableFaultInjection!: pulumi.Output;
/**
* The ephemeral storage settings to use for tasks run with the task definition.
*/
@@ -359,6 +360,7 @@ export class TaskDefinition extends pulumi.CustomResource {
if (!opts.id) {
resourceInputs["containerDefinitions"] = args ? args.containerDefinitions : undefined;
resourceInputs["cpu"] = args ? args.cpu : undefined;
+ resourceInputs["enableFaultInjection"] = args ? args.enableFaultInjection : undefined;
resourceInputs["ephemeralStorage"] = args ? args.ephemeralStorage : undefined;
resourceInputs["executionRoleArn"] = args ? args.executionRoleArn : undefined;
resourceInputs["family"] = args ? args.family : undefined;
@@ -378,6 +380,7 @@ export class TaskDefinition extends pulumi.CustomResource {
} else {
resourceInputs["containerDefinitions"] = undefined /*out*/;
resourceInputs["cpu"] = undefined /*out*/;
+ resourceInputs["enableFaultInjection"] = undefined /*out*/;
resourceInputs["ephemeralStorage"] = undefined /*out*/;
resourceInputs["executionRoleArn"] = undefined /*out*/;
resourceInputs["family"] = undefined /*out*/;
@@ -396,7 +399,7 @@ export class TaskDefinition extends pulumi.CustomResource {
resourceInputs["volumes"] = undefined /*out*/;
}
opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
- const replaceOnChanges = { replaceOnChanges: ["containerDefinitions[*]", "cpu", "ephemeralStorage", "executionRoleArn", "family", "inferenceAccelerators[*]", "ipcMode", "memory", "networkMode", "pidMode", "placementConstraints[*]", "proxyConfiguration", "requiresCompatibilities[*]", "runtimePlatform", "taskRoleArn", "volumes[*]"] };
+ const replaceOnChanges = { replaceOnChanges: ["containerDefinitions[*]", "cpu", "enableFaultInjection", "ephemeralStorage", "executionRoleArn", "family", "inferenceAccelerators[*]", "ipcMode", "memory", "networkMode", "pidMode", "placementConstraints[*]", "proxyConfiguration", "requiresCompatibilities[*]", "runtimePlatform", "taskRoleArn", "volumes[*]"] };
opts = pulumi.mergeOptions(opts, replaceOnChanges);
super(TaskDefinition.__pulumiType, name, resourceInputs, opts);
}
@@ -425,6 +428,7 @@ export interface TaskDefinitionArgs {
* This option requires Linux platform ``1.4.0`` or later.
*/
cpu?: pulumi.Input;
+ enableFaultInjection?: pulumi.Input;
/**
* The ephemeral storage settings to use for tasks run with the task definition.
*/
diff --git a/sdk/nodejs/index.ts b/sdk/nodejs/index.ts
index 2d538fdd6c..2f0891a8f2 100644
--- a/sdk/nodejs/index.ts
+++ b/sdk/nodejs/index.ts
@@ -252,6 +252,7 @@ import * as s3 from "./s3";
import * as s3express from "./s3express";
import * as s3objectlambda from "./s3objectlambda";
import * as s3outposts from "./s3outposts";
+import * as s3tables from "./s3tables";
import * as sagemaker from "./sagemaker";
import * as scheduler from "./scheduler";
import * as secretsmanager from "./secretsmanager";
@@ -475,6 +476,7 @@ export {
s3express,
s3objectlambda,
s3outposts,
+ s3tables,
sagemaker,
scheduler,
secretsmanager,
diff --git a/sdk/nodejs/internetmonitor/getMonitor.ts b/sdk/nodejs/internetmonitor/getMonitor.ts
index b46f128de5..3ab54e4d50 100644
--- a/sdk/nodejs/internetmonitor/getMonitor.ts
+++ b/sdk/nodejs/internetmonitor/getMonitor.ts
@@ -32,7 +32,7 @@ export interface GetMonitorResult {
/**
* A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.
*
- * Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
+ * Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
*
* You can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.
*
diff --git a/sdk/nodejs/internetmonitor/monitor.ts b/sdk/nodejs/internetmonitor/monitor.ts
index 0ca01db82c..4d4161fff7 100644
--- a/sdk/nodejs/internetmonitor/monitor.ts
+++ b/sdk/nodejs/internetmonitor/monitor.ts
@@ -44,7 +44,7 @@ export class Monitor extends pulumi.CustomResource {
/**
* A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.
*
- * Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
+ * Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
*
* You can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.
*
@@ -189,7 +189,7 @@ export interface MonitorArgs {
/**
* A complex type with the configuration information that determines the threshold and other conditions for when Internet Monitor creates a health event for an overall performance or availability issue, across an application's geographies.
*
- * Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Amazon CloudWatch Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
+ * Defines the percentages, for overall performance scores and availability scores for an application, that are the thresholds for when Internet Monitor creates a health event. You can override the defaults to set a custom threshold for overall performance or availability scores, or both.
*
* You can also set thresholds for local health scores,, where Internet Monitor creates a health event when scores cross a threshold for one or more city-networks, in addition to creating an event when an overall score crosses a threshold.
*
diff --git a/sdk/nodejs/invoicing/getInvoiceUnit.ts b/sdk/nodejs/invoicing/getInvoiceUnit.ts
index 6a908294e2..78d00dd2c4 100644
--- a/sdk/nodejs/invoicing/getInvoiceUnit.ts
+++ b/sdk/nodejs/invoicing/getInvoiceUnit.ts
@@ -18,15 +18,36 @@ export function getInvoiceUnit(args: GetInvoiceUnitArgs, opts?: pulumi.InvokeOpt
}
export interface GetInvoiceUnitArgs {
+ /**
+ * The ARN to identify an invoice unit. This information can't be modified or deleted.
+ */
invoiceUnitArn: string;
}
export interface GetInvoiceUnitResult {
+ /**
+ * The assigned description for an invoice unit. This information can't be modified or deleted.
+ */
readonly description?: string;
+ /**
+ * The ARN to identify an invoice unit. This information can't be modified or deleted.
+ */
readonly invoiceUnitArn?: string;
+ /**
+ * The last time the invoice unit was updated. This is important to determine the version of invoice unit configuration used to create the invoices. Any invoice created after this modified time will use this invoice unit configuration.
+ */
readonly lastModified?: number;
+ /**
+ * The tag structure that contains a tag key and value.
+ */
readonly resourceTags?: outputs.Tag[];
+ /**
+ * An `InvoiceUnitRule` object used the categorize invoice units.
+ */
readonly rule?: outputs.invoicing.InvoiceUnitRule;
+ /**
+ * Whether the invoice unit based tax inheritance is/ should be enabled or disabled.
+ */
readonly taxInheritanceDisabled?: boolean;
}
/**
@@ -40,5 +61,8 @@ export function getInvoiceUnitOutput(args: GetInvoiceUnitOutputArgs, opts?: pulu
}
export interface GetInvoiceUnitOutputArgs {
+ /**
+ * The ARN to identify an invoice unit. This information can't be modified or deleted.
+ */
invoiceUnitArn: pulumi.Input;
}
diff --git a/sdk/nodejs/invoicing/invoiceUnit.ts b/sdk/nodejs/invoicing/invoiceUnit.ts
index e875a6bf00..112d34e75b 100644
--- a/sdk/nodejs/invoicing/invoiceUnit.ts
+++ b/sdk/nodejs/invoicing/invoiceUnit.ts
@@ -37,13 +37,37 @@ export class InvoiceUnit extends pulumi.CustomResource {
return obj['__pulumiType'] === InvoiceUnit.__pulumiType;
}
+ /**
+ * The assigned description for an invoice unit. This information can't be modified or deleted.
+ */
public readonly description!: pulumi.Output;
+ /**
+ * The account that receives invoices related to the invoice unit.
+ */
public readonly invoiceReceiver!: pulumi.Output;
+ /**
+ * The ARN to identify an invoice unit. This information can't be modified or deleted.
+ */
public /*out*/ readonly invoiceUnitArn!: pulumi.Output;
+ /**
+ * The last time the invoice unit was updated. This is important to determine the version of invoice unit configuration used to create the invoices. Any invoice created after this modified time will use this invoice unit configuration.
+ */
public /*out*/ readonly lastModified!: pulumi.Output;
+ /**
+ * A unique name that is distinctive within your AWS .
+ */
public readonly name!: pulumi.Output;
+ /**
+ * The tag structure that contains a tag key and value.
+ */
public readonly resourceTags!: pulumi.Output;
+ /**
+ * An `InvoiceUnitRule` object used the categorize invoice units.
+ */
public readonly rule!: pulumi.Output;
+ /**
+ * Whether the invoice unit based tax inheritance is/ should be enabled or disabled.
+ */
public readonly taxInheritanceDisabled!: pulumi.Output;
/**
@@ -92,10 +116,28 @@ export class InvoiceUnit extends pulumi.CustomResource {
* The set of arguments for constructing a InvoiceUnit resource.
*/
export interface InvoiceUnitArgs {
+ /**
+ * The assigned description for an invoice unit. This information can't be modified or deleted.
+ */
description?: pulumi.Input;
+ /**
+ * The account that receives invoices related to the invoice unit.
+ */
invoiceReceiver: pulumi.Input;
+ /**
+ * A unique name that is distinctive within your AWS .
+ */
name?: pulumi.Input;
+ /**
+ * The tag structure that contains a tag key and value.
+ */
resourceTags?: pulumi.Input[]>;
+ /**
+ * An `InvoiceUnitRule` object used the categorize invoice units.
+ */
rule: pulumi.Input;
+ /**
+ * Whether the invoice unit based tax inheritance is/ should be enabled or disabled.
+ */
taxInheritanceDisabled?: pulumi.Input;
}
diff --git a/sdk/nodejs/iot/command.ts b/sdk/nodejs/iot/command.ts
new file mode 100644
index 0000000000..84a406b8d6
--- /dev/null
+++ b/sdk/nodejs/iot/command.ts
@@ -0,0 +1,194 @@
+// *** WARNING: this file was generated by pulumi-language-nodejs. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+import * as pulumi from "@pulumi/pulumi";
+import * as inputs from "../types/input";
+import * as outputs from "../types/output";
+import * as enums from "../types/enums";
+import * as utilities from "../utilities";
+
+/**
+ * Represents the resource definition of AWS IoT Command.
+ */
+export class Command extends pulumi.CustomResource {
+ /**
+ * Get an existing Command resource's state with the given name, ID, and optional extra
+ * properties used to qualify the lookup.
+ *
+ * @param name The _unique_ name of the resulting resource.
+ * @param id The _unique_ provider ID of the resource to lookup.
+ * @param opts Optional settings to control the behavior of the CustomResource.
+ */
+ public static get(name: string, id: pulumi.Input, opts?: pulumi.CustomResourceOptions): Command {
+ return new Command(name, undefined as any, { ...opts, id: id });
+ }
+
+ /** @internal */
+ public static readonly __pulumiType = 'aws-native:iot:Command';
+
+ /**
+ * Returns true if the given object is an instance of Command. This is designed to work even
+ * when multiple copies of the Pulumi SDK have been loaded into the same process.
+ */
+ public static isInstance(obj: any): obj is Command {
+ if (obj === undefined || obj === null) {
+ return false;
+ }
+ return obj['__pulumiType'] === Command.__pulumiType;
+ }
+
+ /**
+ * The Amazon Resource Name (ARN) of the command.
+ */
+ public /*out*/ readonly commandArn!: pulumi.Output;
+ /**
+ * The unique identifier for the command.
+ */
+ public readonly commandId!: pulumi.Output;
+ /**
+ * The date and time when the command was created.
+ */
+ public readonly createdAt!: pulumi.Output;
+ /**
+ * A flag indicating whether the command is deprecated.
+ */
+ public readonly deprecated!: pulumi.Output;
+ /**
+ * The description of the command.
+ */
+ public readonly description!: pulumi.Output;
+ /**
+ * The display name for the command.
+ */
+ public readonly displayName!: pulumi.Output;
+ /**
+ * The date and time when the command was last updated.
+ */
+ public readonly lastUpdatedAt!: pulumi.Output;
+ /**
+ * The list of mandatory parameters for the command.
+ */
+ public readonly mandatoryParameters!: pulumi.Output;
+ /**
+ * The namespace to which the command belongs.
+ */
+ public readonly namespace!: pulumi.Output;
+ /**
+ * The payload associated with the command.
+ */
+ public readonly payload!: pulumi.Output;
+ /**
+ * A flag indicating whether the command is pending deletion.
+ */
+ public readonly pendingDeletion!: pulumi.Output;
+ /**
+ * The customer role associated with the command.
+ */
+ public readonly roleArn!: pulumi.Output;
+ /**
+ * The tags to be associated with the command.
+ */
+ public readonly tags!: pulumi.Output;
+
+ /**
+ * Create a Command resource with the given unique name, arguments, and options.
+ *
+ * @param name The _unique_ name of the resource.
+ * @param args The arguments to use to populate this resource's properties.
+ * @param opts A bag of options that control this resource's behavior.
+ */
+ constructor(name: string, args: CommandArgs, opts?: pulumi.CustomResourceOptions) {
+ let resourceInputs: pulumi.Inputs = {};
+ opts = opts || {};
+ if (!opts.id) {
+ if ((!args || args.commandId === undefined) && !opts.urn) {
+ throw new Error("Missing required property 'commandId'");
+ }
+ resourceInputs["commandId"] = args ? args.commandId : undefined;
+ resourceInputs["createdAt"] = args ? args.createdAt : undefined;
+ resourceInputs["deprecated"] = args ? args.deprecated : undefined;
+ resourceInputs["description"] = args ? args.description : undefined;
+ resourceInputs["displayName"] = args ? args.displayName : undefined;
+ resourceInputs["lastUpdatedAt"] = args ? args.lastUpdatedAt : undefined;
+ resourceInputs["mandatoryParameters"] = args ? args.mandatoryParameters : undefined;
+ resourceInputs["namespace"] = args ? args.namespace : undefined;
+ resourceInputs["payload"] = args ? args.payload : undefined;
+ resourceInputs["pendingDeletion"] = args ? args.pendingDeletion : undefined;
+ resourceInputs["roleArn"] = args ? args.roleArn : undefined;
+ resourceInputs["tags"] = args ? args.tags : undefined;
+ resourceInputs["commandArn"] = undefined /*out*/;
+ } else {
+ resourceInputs["commandArn"] = undefined /*out*/;
+ resourceInputs["commandId"] = undefined /*out*/;
+ resourceInputs["createdAt"] = undefined /*out*/;
+ resourceInputs["deprecated"] = undefined /*out*/;
+ resourceInputs["description"] = undefined /*out*/;
+ resourceInputs["displayName"] = undefined /*out*/;
+ resourceInputs["lastUpdatedAt"] = undefined /*out*/;
+ resourceInputs["mandatoryParameters"] = undefined /*out*/;
+ resourceInputs["namespace"] = undefined /*out*/;
+ resourceInputs["payload"] = undefined /*out*/;
+ resourceInputs["pendingDeletion"] = undefined /*out*/;
+ resourceInputs["roleArn"] = undefined /*out*/;
+ resourceInputs["tags"] = undefined /*out*/;
+ }
+ opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts);
+ const replaceOnChanges = { replaceOnChanges: ["commandId"] };
+ opts = pulumi.mergeOptions(opts, replaceOnChanges);
+ super(Command.__pulumiType, name, resourceInputs, opts);
+ }
+}
+
+/**
+ * The set of arguments for constructing a Command resource.
+ */
+export interface CommandArgs {
+ /**
+ * The unique identifier for the command.
+ */
+ commandId: pulumi.Input;
+ /**
+ * The date and time when the command was created.
+ */
+ createdAt?: pulumi.Input;
+ /**
+ * A flag indicating whether the command is deprecated.
+ */
+ deprecated?: pulumi.Input;
+ /**
+ * The description of the command.
+ */
+ description?: pulumi.Input;
+ /**
+ * The display name for the command.
+ */
+ displayName?: pulumi.Input;
+ /**
+ * The date and time when the command was last updated.
+ */
+ lastUpdatedAt?: pulumi.Input;
+ /**
+ * The list of mandatory parameters for the command.
+ */
+ mandatoryParameters?: pulumi.Input[]>;
+ /**
+ * The namespace to which the command belongs.
+ */
+ namespace?: pulumi.Input;
+ /**
+ * The payload associated with the command.
+ */
+ payload?: pulumi.Input;
+ /**
+ * A flag indicating whether the command is pending deletion.
+ */
+ pendingDeletion?: pulumi.Input;
+ /**
+ * The customer role associated with the command.
+ */
+ roleArn?: pulumi.Input;
+ /**
+ * The tags to be associated with the command.
+ */
+ tags?: pulumi.Input[]>;
+}
diff --git a/sdk/nodejs/iot/getCommand.ts b/sdk/nodejs/iot/getCommand.ts
new file mode 100644
index 0000000000..79a20457cb
--- /dev/null
+++ b/sdk/nodejs/iot/getCommand.ts
@@ -0,0 +1,88 @@
+// *** WARNING: this file was generated by pulumi-language-nodejs. ***
+// *** Do not edit by hand unless you're certain you know what you are doing! ***
+
+import * as pulumi from "@pulumi/pulumi";
+import * as inputs from "../types/input";
+import * as outputs from "../types/output";
+import * as enums from "../types/enums";
+import * as utilities from "../utilities";
+
+/**
+ * Represents the resource definition of AWS IoT Command.
+ */
+export function getCommand(args: GetCommandArgs, opts?: pulumi.InvokeOptions): Promise {
+ opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts || {});
+ return pulumi.runtime.invoke("aws-native:iot:getCommand", {
+ "commandId": args.commandId,
+ }, opts);
+}
+
+export interface GetCommandArgs {
+ /**
+ * The unique identifier for the command.
+ */
+ commandId: string;
+}
+
+export interface GetCommandResult {
+ /**
+ * The Amazon Resource Name (ARN) of the command.
+ */
+ readonly commandArn?: string;
+ /**
+ * The date and time when the command was created.
+ */
+ readonly createdAt?: string;
+ /**
+ * A flag indicating whether the command is deprecated.
+ */
+ readonly deprecated?: boolean;
+ /**
+ * The description of the command.
+ */
+ readonly description?: string;
+ /**
+ * The display name for the command.
+ */
+ readonly displayName?: string;
+ /**
+ * The list of mandatory parameters for the command.
+ */
+ readonly mandatoryParameters?: outputs.iot.CommandParameter[];
+ /**
+ * The namespace to which the command belongs.
+ */
+ readonly namespace?: enums.iot.CommandNamespace;
+ /**
+ * The payload associated with the command.
+ */
+ readonly payload?: outputs.iot.CommandPayload;
+ /**
+ * A flag indicating whether the command is pending deletion.
+ */
+ readonly pendingDeletion?: boolean;
+ /**
+ * The customer role associated with the command.
+ */
+ readonly roleArn?: string;
+ /**
+ * The tags to be associated with the command.
+ */
+ readonly tags?: outputs.Tag[];
+}
+/**
+ * Represents the resource definition of AWS IoT Command.
+ */
+export function getCommandOutput(args: GetCommandOutputArgs, opts?: pulumi.InvokeOutputOptions): pulumi.Output {
+ opts = pulumi.mergeOptions(utilities.resourceOptsDefaults(), opts || {});
+ return pulumi.runtime.invokeOutput("aws-native:iot:getCommand", {
+ "commandId": args.commandId,
+ }, opts);
+}
+
+export interface GetCommandOutputArgs {
+ /**
+ * The unique identifier for the command.
+ */
+ commandId: pulumi.Input;
+}
diff --git a/sdk/nodejs/iot/index.ts b/sdk/nodejs/iot/index.ts
index 179e3f1166..b4c747012c 100644
--- a/sdk/nodejs/iot/index.ts
+++ b/sdk/nodejs/iot/index.ts
@@ -35,6 +35,11 @@ export type CertificateProvider = import("./certificateProvider").CertificatePro
export const CertificateProvider: typeof import("./certificateProvider").CertificateProvider = null as any;
utilities.lazyLoad(exports, ["CertificateProvider"], () => require("./certificateProvider"));
+export { CommandArgs } from "./command";
+export type Command = import("./command").Command;
+export const Command: typeof import("./command").Command = null as any;
+utilities.lazyLoad(exports, ["Command"], () => require("./command"));
+
export { CustomMetricArgs } from "./customMetric";
export type CustomMetric = import("./customMetric").CustomMetric;
export const CustomMetric: typeof import("./customMetric").CustomMetric = null as any;
@@ -85,6 +90,11 @@ export const getCertificateProvider: typeof import("./getCertificateProvider").g
export const getCertificateProviderOutput: typeof import("./getCertificateProvider").getCertificateProviderOutput = null as any;
utilities.lazyLoad(exports, ["getCertificateProvider","getCertificateProviderOutput"], () => require("./getCertificateProvider"));
+export { GetCommandArgs, GetCommandResult, GetCommandOutputArgs } from "./getCommand";
+export const getCommand: typeof import("./getCommand").getCommand = null as any;
+export const getCommandOutput: typeof import("./getCommand").getCommandOutput = null as any;
+utilities.lazyLoad(exports, ["getCommand","getCommandOutput"], () => require("./getCommand"));
+
export { GetCustomMetricArgs, GetCustomMetricResult, GetCustomMetricOutputArgs } from "./getCustomMetric";
export const getCustomMetric: typeof import("./getCustomMetric").getCustomMetric = null as any;
export const getCustomMetricOutput: typeof import("./getCustomMetric").getCustomMetricOutput = null as any;
@@ -285,6 +295,8 @@ const _module = {
return new Certificate(name, undefined, { urn })
case "aws-native:iot:CertificateProvider":
return new CertificateProvider(name, undefined, { urn })
+ case "aws-native:iot:Command":
+ return new Command(name,