diff --git a/VERSION b/VERSION index d2bc1d0df76..89989d0bbed 100644 --- a/VERSION +++ b/VERSION @@ -1 +1 @@ -1.11.301 \ No newline at end of file +1.11.302 \ No newline at end of file diff --git a/generated/src/aws-cpp-sdk-quicksight/include/aws/quicksight/model/AllSheetsFilterScopeConfiguration.h b/generated/src/aws-cpp-sdk-quicksight/include/aws/quicksight/model/AllSheetsFilterScopeConfiguration.h index 7949f2c647b..6b40dee1fae 100644 --- a/generated/src/aws-cpp-sdk-quicksight/include/aws/quicksight/model/AllSheetsFilterScopeConfiguration.h +++ b/generated/src/aws-cpp-sdk-quicksight/include/aws/quicksight/model/AllSheetsFilterScopeConfiguration.h @@ -22,10 +22,12 @@ namespace Model { /** - *

The configuration for applying a filter to all sheets. You can apply this - * filter to all visuals on every sheet.

This is a union type structure. For - * this structure to be valid, only one of the attributes can be - * defined.

See Also:

An empty object that represents that the AllSheets option is the + * chosen value for the FilterScopeConfiguration parameter. This + * structure applies the filter to all visuals on all sheets of an Analysis, + * Dashboard, or Template.

This is a union type structure. For this + * structure to be valid, only one of the attributes can be defined.

See + * Also:

AWS * API Reference

*/ diff --git a/generated/src/aws-cpp-sdk-quicksight/include/aws/quicksight/model/CreateAccountSubscriptionRequest.h b/generated/src/aws-cpp-sdk-quicksight/include/aws/quicksight/model/CreateAccountSubscriptionRequest.h index 445d6482601..51443f5619d 100644 --- a/generated/src/aws-cpp-sdk-quicksight/include/aws/quicksight/model/CreateAccountSubscriptionRequest.h +++ b/generated/src/aws-cpp-sdk-quicksight/include/aws/quicksight/model/CreateAccountSubscriptionRequest.h @@ -1123,6 +1123,47 @@ namespace Model */ inline CreateAccountSubscriptionRequest& WithContactNumber(const char* value) { SetContactNumber(value); return *this;} + + /** + *

The Amazon Resource Name (ARN) for the IAM Identity Center instance.

+ */ + inline const Aws::String& GetIAMIdentityCenterInstanceArn() const{ return m_iAMIdentityCenterInstanceArn; } + + /** + *

The Amazon Resource Name (ARN) for the IAM Identity Center instance.

+ */ + inline bool IAMIdentityCenterInstanceArnHasBeenSet() const { return m_iAMIdentityCenterInstanceArnHasBeenSet; } + + /** + *

The Amazon Resource Name (ARN) for the IAM Identity Center instance.

+ */ + inline void SetIAMIdentityCenterInstanceArn(const Aws::String& value) { m_iAMIdentityCenterInstanceArnHasBeenSet = true; m_iAMIdentityCenterInstanceArn = value; } + + /** + *

The Amazon Resource Name (ARN) for the IAM Identity Center instance.

+ */ + inline void SetIAMIdentityCenterInstanceArn(Aws::String&& value) { m_iAMIdentityCenterInstanceArnHasBeenSet = true; m_iAMIdentityCenterInstanceArn = std::move(value); } + + /** + *

The Amazon Resource Name (ARN) for the IAM Identity Center instance.

+ */ + inline void SetIAMIdentityCenterInstanceArn(const char* value) { m_iAMIdentityCenterInstanceArnHasBeenSet = true; m_iAMIdentityCenterInstanceArn.assign(value); } + + /** + *

The Amazon Resource Name (ARN) for the IAM Identity Center instance.

+ */ + inline CreateAccountSubscriptionRequest& WithIAMIdentityCenterInstanceArn(const Aws::String& value) { SetIAMIdentityCenterInstanceArn(value); return *this;} + + /** + *

The Amazon Resource Name (ARN) for the IAM Identity Center instance.

+ */ + inline CreateAccountSubscriptionRequest& WithIAMIdentityCenterInstanceArn(Aws::String&& value) { SetIAMIdentityCenterInstanceArn(std::move(value)); return *this;} + + /** + *

The Amazon Resource Name (ARN) for the IAM Identity Center instance.

+ */ + inline CreateAccountSubscriptionRequest& WithIAMIdentityCenterInstanceArn(const char* value) { SetIAMIdentityCenterInstanceArn(value); return *this;} + private: Edition m_edition; @@ -1169,6 +1210,9 @@ namespace Model Aws::String m_contactNumber; bool m_contactNumberHasBeenSet = false; + + Aws::String m_iAMIdentityCenterInstanceArn; + bool m_iAMIdentityCenterInstanceArnHasBeenSet = false; }; } // namespace Model diff --git a/generated/src/aws-cpp-sdk-quicksight/include/aws/quicksight/model/FilterScopeConfiguration.h b/generated/src/aws-cpp-sdk-quicksight/include/aws/quicksight/model/FilterScopeConfiguration.h index 69553e13d68..9cca1feb339 100644 --- a/generated/src/aws-cpp-sdk-quicksight/include/aws/quicksight/model/FilterScopeConfiguration.h +++ b/generated/src/aws-cpp-sdk-quicksight/include/aws/quicksight/model/FilterScopeConfiguration.h @@ -72,32 +72,50 @@ namespace Model /** - *

The configuration for applying a filter to all sheets.

+ *

The configuration that applies a filter to all sheets. When you choose + * AllSheets as the value for a FilterScopeConfiguration, + * this filter is applied to all visuals of all sheets in an Analysis, Dashboard, + * or Template. The AllSheetsFilterScopeConfiguration is chosen.

*/ inline const AllSheetsFilterScopeConfiguration& GetAllSheets() const{ return m_allSheets; } /** - *

The configuration for applying a filter to all sheets.

+ *

The configuration that applies a filter to all sheets. When you choose + * AllSheets as the value for a FilterScopeConfiguration, + * this filter is applied to all visuals of all sheets in an Analysis, Dashboard, + * or Template. The AllSheetsFilterScopeConfiguration is chosen.

*/ inline bool AllSheetsHasBeenSet() const { return m_allSheetsHasBeenSet; } /** - *

The configuration for applying a filter to all sheets.

+ *

The configuration that applies a filter to all sheets. When you choose + * AllSheets as the value for a FilterScopeConfiguration, + * this filter is applied to all visuals of all sheets in an Analysis, Dashboard, + * or Template. The AllSheetsFilterScopeConfiguration is chosen.

*/ inline void SetAllSheets(const AllSheetsFilterScopeConfiguration& value) { m_allSheetsHasBeenSet = true; m_allSheets = value; } /** - *

The configuration for applying a filter to all sheets.

+ *

The configuration that applies a filter to all sheets. When you choose + * AllSheets as the value for a FilterScopeConfiguration, + * this filter is applied to all visuals of all sheets in an Analysis, Dashboard, + * or Template. The AllSheetsFilterScopeConfiguration is chosen.

*/ inline void SetAllSheets(AllSheetsFilterScopeConfiguration&& value) { m_allSheetsHasBeenSet = true; m_allSheets = std::move(value); } /** - *

The configuration for applying a filter to all sheets.

+ *

The configuration that applies a filter to all sheets. When you choose + * AllSheets as the value for a FilterScopeConfiguration, + * this filter is applied to all visuals of all sheets in an Analysis, Dashboard, + * or Template. The AllSheetsFilterScopeConfiguration is chosen.

*/ inline FilterScopeConfiguration& WithAllSheets(const AllSheetsFilterScopeConfiguration& value) { SetAllSheets(value); return *this;} /** - *

The configuration for applying a filter to all sheets.

+ *

The configuration that applies a filter to all sheets. When you choose + * AllSheets as the value for a FilterScopeConfiguration, + * this filter is applied to all visuals of all sheets in an Analysis, Dashboard, + * or Template. The AllSheetsFilterScopeConfiguration is chosen.

*/ inline FilterScopeConfiguration& WithAllSheets(AllSheetsFilterScopeConfiguration&& value) { SetAllSheets(std::move(value)); return *this;} diff --git a/generated/src/aws-cpp-sdk-quicksight/source/model/CreateAccountSubscriptionRequest.cpp b/generated/src/aws-cpp-sdk-quicksight/source/model/CreateAccountSubscriptionRequest.cpp index 72df9b4f6ba..040f6c1bb64 100644 --- a/generated/src/aws-cpp-sdk-quicksight/source/model/CreateAccountSubscriptionRequest.cpp +++ b/generated/src/aws-cpp-sdk-quicksight/source/model/CreateAccountSubscriptionRequest.cpp @@ -29,7 +29,8 @@ CreateAccountSubscriptionRequest::CreateAccountSubscriptionRequest() : m_firstNameHasBeenSet(false), m_lastNameHasBeenSet(false), m_emailAddressHasBeenSet(false), - m_contactNumberHasBeenSet(false) + m_contactNumberHasBeenSet(false), + m_iAMIdentityCenterInstanceArnHasBeenSet(false) { } @@ -134,6 +135,12 @@ Aws::String CreateAccountSubscriptionRequest::SerializePayload() const } + if(m_iAMIdentityCenterInstanceArnHasBeenSet) + { + payload.WithString("IAMIdentityCenterInstanceArn", m_iAMIdentityCenterInstanceArn); + + } + return payload.View().WriteReadable(); } diff --git a/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/CreateGroupRequest.h b/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/CreateGroupRequest.h index 406c772d9f3..90ef8ab2ced 100644 --- a/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/CreateGroupRequest.h +++ b/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/CreateGroupRequest.h @@ -40,9 +40,10 @@ namespace Model *

The name of the group, which is the identifier of the group in other * operations. You can't change the name of a resource group after you create it. A * resource group name can consist of letters, numbers, hyphens, periods, and - * underscores. The name cannot start with AWS or aws; - * these are reserved. A resource group name must be unique within each Amazon Web - * Services Region in your Amazon Web Services account.

+ * underscores. The name cannot start with AWS, aws, or + * any other possible capitalization; these are reserved. A resource group name + * must be unique within each Amazon Web Services Region in your Amazon Web + * Services account.

*/ inline const Aws::String& GetName() const{ return m_name; } @@ -50,9 +51,10 @@ namespace Model *

The name of the group, which is the identifier of the group in other * operations. You can't change the name of a resource group after you create it. A * resource group name can consist of letters, numbers, hyphens, periods, and - * underscores. The name cannot start with AWS or aws; - * these are reserved. A resource group name must be unique within each Amazon Web - * Services Region in your Amazon Web Services account.

+ * underscores. The name cannot start with AWS, aws, or + * any other possible capitalization; these are reserved. A resource group name + * must be unique within each Amazon Web Services Region in your Amazon Web + * Services account.

*/ inline bool NameHasBeenSet() const { return m_nameHasBeenSet; } @@ -60,9 +62,10 @@ namespace Model *

The name of the group, which is the identifier of the group in other * operations. You can't change the name of a resource group after you create it. A * resource group name can consist of letters, numbers, hyphens, periods, and - * underscores. The name cannot start with AWS or aws; - * these are reserved. A resource group name must be unique within each Amazon Web - * Services Region in your Amazon Web Services account.

+ * underscores. The name cannot start with AWS, aws, or + * any other possible capitalization; these are reserved. A resource group name + * must be unique within each Amazon Web Services Region in your Amazon Web + * Services account.

*/ inline void SetName(const Aws::String& value) { m_nameHasBeenSet = true; m_name = value; } @@ -70,9 +73,10 @@ namespace Model *

The name of the group, which is the identifier of the group in other * operations. You can't change the name of a resource group after you create it. A * resource group name can consist of letters, numbers, hyphens, periods, and - * underscores. The name cannot start with AWS or aws; - * these are reserved. A resource group name must be unique within each Amazon Web - * Services Region in your Amazon Web Services account.

+ * underscores. The name cannot start with AWS, aws, or + * any other possible capitalization; these are reserved. A resource group name + * must be unique within each Amazon Web Services Region in your Amazon Web + * Services account.

*/ inline void SetName(Aws::String&& value) { m_nameHasBeenSet = true; m_name = std::move(value); } @@ -80,9 +84,10 @@ namespace Model *

The name of the group, which is the identifier of the group in other * operations. You can't change the name of a resource group after you create it. A * resource group name can consist of letters, numbers, hyphens, periods, and - * underscores. The name cannot start with AWS or aws; - * these are reserved. A resource group name must be unique within each Amazon Web - * Services Region in your Amazon Web Services account.

+ * underscores. The name cannot start with AWS, aws, or + * any other possible capitalization; these are reserved. A resource group name + * must be unique within each Amazon Web Services Region in your Amazon Web + * Services account.

*/ inline void SetName(const char* value) { m_nameHasBeenSet = true; m_name.assign(value); } @@ -90,9 +95,10 @@ namespace Model *

The name of the group, which is the identifier of the group in other * operations. You can't change the name of a resource group after you create it. A * resource group name can consist of letters, numbers, hyphens, periods, and - * underscores. The name cannot start with AWS or aws; - * these are reserved. A resource group name must be unique within each Amazon Web - * Services Region in your Amazon Web Services account.

+ * underscores. The name cannot start with AWS, aws, or + * any other possible capitalization; these are reserved. A resource group name + * must be unique within each Amazon Web Services Region in your Amazon Web + * Services account.

*/ inline CreateGroupRequest& WithName(const Aws::String& value) { SetName(value); return *this;} @@ -100,9 +106,10 @@ namespace Model *

The name of the group, which is the identifier of the group in other * operations. You can't change the name of a resource group after you create it. A * resource group name can consist of letters, numbers, hyphens, periods, and - * underscores. The name cannot start with AWS or aws; - * these are reserved. A resource group name must be unique within each Amazon Web - * Services Region in your Amazon Web Services account.

+ * underscores. The name cannot start with AWS, aws, or + * any other possible capitalization; these are reserved. A resource group name + * must be unique within each Amazon Web Services Region in your Amazon Web + * Services account.

*/ inline CreateGroupRequest& WithName(Aws::String&& value) { SetName(std::move(value)); return *this;} @@ -110,9 +117,10 @@ namespace Model *

The name of the group, which is the identifier of the group in other * operations. You can't change the name of a resource group after you create it. A * resource group name can consist of letters, numbers, hyphens, periods, and - * underscores. The name cannot start with AWS or aws; - * these are reserved. A resource group name must be unique within each Amazon Web - * Services Region in your Amazon Web Services account.

+ * underscores. The name cannot start with AWS, aws, or + * any other possible capitalization; these are reserved. A resource group name + * must be unique within each Amazon Web Services Region in your Amazon Web + * Services account.

*/ inline CreateGroupRequest& WithName(const char* value) { SetName(value); return *this;} diff --git a/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/ListGroupResourcesResult.h b/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/ListGroupResourcesResult.h index b6b382c2fe6..84b25ec206a 100644 --- a/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/ListGroupResourcesResult.h +++ b/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/ListGroupResourcesResult.h @@ -143,58 +143,72 @@ namespace Model /** - *

A list of QueryError objects. Each error is an object that - * contains ErrorCode and Message structures. Possible - * values for ErrorCode are CLOUDFORMATION_STACK_INACTIVE - * and CLOUDFORMATION_STACK_NOT_EXISTING.

+ *

A list of QueryError objects. Each error contains an + * ErrorCode and Message. Possible values for ErrorCode + * are CLOUDFORMATION_STACK_INACTIVE, + * CLOUDFORMATION_STACK_NOT_EXISTING, + * CLOUDFORMATION_STACK_UNASSUMABLE_ROLE and + * RESOURCE_TYPE_NOT_SUPPORTED.

*/ inline const Aws::Vector& GetQueryErrors() const{ return m_queryErrors; } /** - *

A list of QueryError objects. Each error is an object that - * contains ErrorCode and Message structures. Possible - * values for ErrorCode are CLOUDFORMATION_STACK_INACTIVE - * and CLOUDFORMATION_STACK_NOT_EXISTING.

+ *

A list of QueryError objects. Each error contains an + * ErrorCode and Message. Possible values for ErrorCode + * are CLOUDFORMATION_STACK_INACTIVE, + * CLOUDFORMATION_STACK_NOT_EXISTING, + * CLOUDFORMATION_STACK_UNASSUMABLE_ROLE and + * RESOURCE_TYPE_NOT_SUPPORTED.

*/ inline void SetQueryErrors(const Aws::Vector& value) { m_queryErrors = value; } /** - *

A list of QueryError objects. Each error is an object that - * contains ErrorCode and Message structures. Possible - * values for ErrorCode are CLOUDFORMATION_STACK_INACTIVE - * and CLOUDFORMATION_STACK_NOT_EXISTING.

+ *

A list of QueryError objects. Each error contains an + * ErrorCode and Message. Possible values for ErrorCode + * are CLOUDFORMATION_STACK_INACTIVE, + * CLOUDFORMATION_STACK_NOT_EXISTING, + * CLOUDFORMATION_STACK_UNASSUMABLE_ROLE and + * RESOURCE_TYPE_NOT_SUPPORTED.

*/ inline void SetQueryErrors(Aws::Vector&& value) { m_queryErrors = std::move(value); } /** - *

A list of QueryError objects. Each error is an object that - * contains ErrorCode and Message structures. Possible - * values for ErrorCode are CLOUDFORMATION_STACK_INACTIVE - * and CLOUDFORMATION_STACK_NOT_EXISTING.

+ *

A list of QueryError objects. Each error contains an + * ErrorCode and Message. Possible values for ErrorCode + * are CLOUDFORMATION_STACK_INACTIVE, + * CLOUDFORMATION_STACK_NOT_EXISTING, + * CLOUDFORMATION_STACK_UNASSUMABLE_ROLE and + * RESOURCE_TYPE_NOT_SUPPORTED.

*/ inline ListGroupResourcesResult& WithQueryErrors(const Aws::Vector& value) { SetQueryErrors(value); return *this;} /** - *

A list of QueryError objects. Each error is an object that - * contains ErrorCode and Message structures. Possible - * values for ErrorCode are CLOUDFORMATION_STACK_INACTIVE - * and CLOUDFORMATION_STACK_NOT_EXISTING.

+ *

A list of QueryError objects. Each error contains an + * ErrorCode and Message. Possible values for ErrorCode + * are CLOUDFORMATION_STACK_INACTIVE, + * CLOUDFORMATION_STACK_NOT_EXISTING, + * CLOUDFORMATION_STACK_UNASSUMABLE_ROLE and + * RESOURCE_TYPE_NOT_SUPPORTED.

*/ inline ListGroupResourcesResult& WithQueryErrors(Aws::Vector&& value) { SetQueryErrors(std::move(value)); return *this;} /** - *

A list of QueryError objects. Each error is an object that - * contains ErrorCode and Message structures. Possible - * values for ErrorCode are CLOUDFORMATION_STACK_INACTIVE - * and CLOUDFORMATION_STACK_NOT_EXISTING.

+ *

A list of QueryError objects. Each error contains an + * ErrorCode and Message. Possible values for ErrorCode + * are CLOUDFORMATION_STACK_INACTIVE, + * CLOUDFORMATION_STACK_NOT_EXISTING, + * CLOUDFORMATION_STACK_UNASSUMABLE_ROLE and + * RESOURCE_TYPE_NOT_SUPPORTED.

*/ inline ListGroupResourcesResult& AddQueryErrors(const QueryError& value) { m_queryErrors.push_back(value); return *this; } /** - *

A list of QueryError objects. Each error is an object that - * contains ErrorCode and Message structures. Possible - * values for ErrorCode are CLOUDFORMATION_STACK_INACTIVE - * and CLOUDFORMATION_STACK_NOT_EXISTING.

+ *

A list of QueryError objects. Each error contains an + * ErrorCode and Message. Possible values for ErrorCode + * are CLOUDFORMATION_STACK_INACTIVE, + * CLOUDFORMATION_STACK_NOT_EXISTING, + * CLOUDFORMATION_STACK_UNASSUMABLE_ROLE and + * RESOURCE_TYPE_NOT_SUPPORTED.

*/ inline ListGroupResourcesResult& AddQueryErrors(QueryError&& value) { m_queryErrors.push_back(std::move(value)); return *this; } diff --git a/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/ListGroupsRequest.h b/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/ListGroupsRequest.h index 97e2ff509f0..68ded484f3c 100644 --- a/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/ListGroupsRequest.h +++ b/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/ListGroupsRequest.h @@ -43,120 +43,160 @@ namespace Model /** *

Filters, formatted as GroupFilter objects, that you want to apply to a * ListGroups operation.

  • resource-type - * - Filter the results to include only those of the specified resource types. - * Specify up to five resource types in the format - * AWS::ServiceCode::ResourceType . For example, - * AWS::EC2::Instance, or AWS::S3::Bucket.

  • - *

    configuration-type - Filter the results to include only those + * - Filter the results to include only those resource groups that have the + * specified resource type in their ResourceTypeFilter. For example, + * AWS::EC2::Instance would return any resource group with a + * ResourceTypeFilter that includes + * AWS::EC2::Instance.

  • + * configuration-type - Filter the results to include only those * groups that have the specified configuration types attached. The current * supported values are:

    • + * AWS::AppRegistry::Application

    • + * AWS::AppRegistry::ApplicationResourceGroups

    • + * AWS::CloudFormation::Stack

    • * AWS::EC2::CapacityReservationPool

    • - * AWS::EC2::HostManagement

+ * AWS::EC2::HostManagement

  • + * AWS::NetworkFirewall::RuleGroup

    • */ inline const Aws::Vector& GetFilters() const{ return m_filters; } /** *

    Filters, formatted as GroupFilter objects, that you want to apply to a * ListGroups operation.

    • resource-type - * - Filter the results to include only those of the specified resource types. - * Specify up to five resource types in the format - * AWS::ServiceCode::ResourceType . For example, - * AWS::EC2::Instance, or AWS::S3::Bucket.

    • - *

      configuration-type - Filter the results to include only those + * - Filter the results to include only those resource groups that have the + * specified resource type in their ResourceTypeFilter. For example, + * AWS::EC2::Instance would return any resource group with a + * ResourceTypeFilter that includes + * AWS::EC2::Instance.

    • + * configuration-type - Filter the results to include only those * groups that have the specified configuration types attached. The current * supported values are:

      • + * AWS::AppRegistry::Application

      • + * AWS::AppRegistry::ApplicationResourceGroups

      • + * AWS::CloudFormation::Stack

      • * AWS::EC2::CapacityReservationPool

      • - * AWS::EC2::HostManagement

    + * AWS::EC2::HostManagement

  • + * AWS::NetworkFirewall::RuleGroup

    • */ inline bool FiltersHasBeenSet() const { return m_filtersHasBeenSet; } /** *

    Filters, formatted as GroupFilter objects, that you want to apply to a * ListGroups operation.

    • resource-type - * - Filter the results to include only those of the specified resource types. - * Specify up to five resource types in the format - * AWS::ServiceCode::ResourceType . For example, - * AWS::EC2::Instance, or AWS::S3::Bucket.

    • - *

      configuration-type - Filter the results to include only those + * - Filter the results to include only those resource groups that have the + * specified resource type in their ResourceTypeFilter. For example, + * AWS::EC2::Instance would return any resource group with a + * ResourceTypeFilter that includes + * AWS::EC2::Instance.

    • + * configuration-type - Filter the results to include only those * groups that have the specified configuration types attached. The current * supported values are:

      • + * AWS::AppRegistry::Application

      • + * AWS::AppRegistry::ApplicationResourceGroups

      • + * AWS::CloudFormation::Stack

      • * AWS::EC2::CapacityReservationPool

      • - * AWS::EC2::HostManagement

    + * AWS::EC2::HostManagement

  • + * AWS::NetworkFirewall::RuleGroup

    • */ inline void SetFilters(const Aws::Vector& value) { m_filtersHasBeenSet = true; m_filters = value; } /** *

    Filters, formatted as GroupFilter objects, that you want to apply to a * ListGroups operation.

    • resource-type - * - Filter the results to include only those of the specified resource types. - * Specify up to five resource types in the format - * AWS::ServiceCode::ResourceType . For example, - * AWS::EC2::Instance, or AWS::S3::Bucket.

    • - *

      configuration-type - Filter the results to include only those + * - Filter the results to include only those resource groups that have the + * specified resource type in their ResourceTypeFilter. For example, + * AWS::EC2::Instance would return any resource group with a + * ResourceTypeFilter that includes + * AWS::EC2::Instance.

    • + * configuration-type - Filter the results to include only those * groups that have the specified configuration types attached. The current * supported values are:

      • + * AWS::AppRegistry::Application

      • + * AWS::AppRegistry::ApplicationResourceGroups

      • + * AWS::CloudFormation::Stack

      • * AWS::EC2::CapacityReservationPool

      • - * AWS::EC2::HostManagement

    + * AWS::EC2::HostManagement

  • + * AWS::NetworkFirewall::RuleGroup

    • */ inline void SetFilters(Aws::Vector&& value) { m_filtersHasBeenSet = true; m_filters = std::move(value); } /** *

    Filters, formatted as GroupFilter objects, that you want to apply to a * ListGroups operation.

    • resource-type - * - Filter the results to include only those of the specified resource types. - * Specify up to five resource types in the format - * AWS::ServiceCode::ResourceType . For example, - * AWS::EC2::Instance, or AWS::S3::Bucket.

    • - *

      configuration-type - Filter the results to include only those + * - Filter the results to include only those resource groups that have the + * specified resource type in their ResourceTypeFilter. For example, + * AWS::EC2::Instance would return any resource group with a + * ResourceTypeFilter that includes + * AWS::EC2::Instance.

    • + * configuration-type - Filter the results to include only those * groups that have the specified configuration types attached. The current * supported values are:

      • + * AWS::AppRegistry::Application

      • + * AWS::AppRegistry::ApplicationResourceGroups

      • + * AWS::CloudFormation::Stack

      • * AWS::EC2::CapacityReservationPool

      • - * AWS::EC2::HostManagement

    + * AWS::EC2::HostManagement

  • + * AWS::NetworkFirewall::RuleGroup

    • */ inline ListGroupsRequest& WithFilters(const Aws::Vector& value) { SetFilters(value); return *this;} /** *

    Filters, formatted as GroupFilter objects, that you want to apply to a * ListGroups operation.

    • resource-type - * - Filter the results to include only those of the specified resource types. - * Specify up to five resource types in the format - * AWS::ServiceCode::ResourceType . For example, - * AWS::EC2::Instance, or AWS::S3::Bucket.

    • - *

      configuration-type - Filter the results to include only those + * - Filter the results to include only those resource groups that have the + * specified resource type in their ResourceTypeFilter. For example, + * AWS::EC2::Instance would return any resource group with a + * ResourceTypeFilter that includes + * AWS::EC2::Instance.

    • + * configuration-type - Filter the results to include only those * groups that have the specified configuration types attached. The current * supported values are:

      • + * AWS::AppRegistry::Application

      • + * AWS::AppRegistry::ApplicationResourceGroups

      • + * AWS::CloudFormation::Stack

      • * AWS::EC2::CapacityReservationPool

      • - * AWS::EC2::HostManagement

    + * AWS::EC2::HostManagement

  • + * AWS::NetworkFirewall::RuleGroup

    • */ inline ListGroupsRequest& WithFilters(Aws::Vector&& value) { SetFilters(std::move(value)); return *this;} /** *

    Filters, formatted as GroupFilter objects, that you want to apply to a * ListGroups operation.

    • resource-type - * - Filter the results to include only those of the specified resource types. - * Specify up to five resource types in the format - * AWS::ServiceCode::ResourceType . For example, - * AWS::EC2::Instance, or AWS::S3::Bucket.

    • - *

      configuration-type - Filter the results to include only those + * - Filter the results to include only those resource groups that have the + * specified resource type in their ResourceTypeFilter. For example, + * AWS::EC2::Instance would return any resource group with a + * ResourceTypeFilter that includes + * AWS::EC2::Instance.

    • + * configuration-type - Filter the results to include only those * groups that have the specified configuration types attached. The current * supported values are:

      • + * AWS::AppRegistry::Application

      • + * AWS::AppRegistry::ApplicationResourceGroups

      • + * AWS::CloudFormation::Stack

      • * AWS::EC2::CapacityReservationPool

      • - * AWS::EC2::HostManagement

    + * AWS::EC2::HostManagement

  • + * AWS::NetworkFirewall::RuleGroup

    • */ inline ListGroupsRequest& AddFilters(const GroupFilter& value) { m_filtersHasBeenSet = true; m_filters.push_back(value); return *this; } /** *

    Filters, formatted as GroupFilter objects, that you want to apply to a * ListGroups operation.

    • resource-type - * - Filter the results to include only those of the specified resource types. - * Specify up to five resource types in the format - * AWS::ServiceCode::ResourceType . For example, - * AWS::EC2::Instance, or AWS::S3::Bucket.

    • - *

      configuration-type - Filter the results to include only those + * - Filter the results to include only those resource groups that have the + * specified resource type in their ResourceTypeFilter. For example, + * AWS::EC2::Instance would return any resource group with a + * ResourceTypeFilter that includes + * AWS::EC2::Instance.

    • + * configuration-type - Filter the results to include only those * groups that have the specified configuration types attached. The current * supported values are:

      • + * AWS::AppRegistry::Application

      • + * AWS::AppRegistry::ApplicationResourceGroups

      • + * AWS::CloudFormation::Stack

      • * AWS::EC2::CapacityReservationPool

      • - * AWS::EC2::HostManagement

    + * AWS::EC2::HostManagement

  • + * AWS::NetworkFirewall::RuleGroup

    • */ inline ListGroupsRequest& AddFilters(GroupFilter&& value) { m_filtersHasBeenSet = true; m_filters.push_back(std::move(value)); return *this; } diff --git a/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/QueryError.h b/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/QueryError.h index 6f3655e8efb..2505efa1a86 100644 --- a/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/QueryError.h +++ b/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/QueryError.h @@ -26,12 +26,7 @@ namespace Model /** *

    A two-part error structure that can occur in ListGroupResources - * or SearchResources operations on CloudFront stack-based queries. - * The error occurs if the CloudFront stack on which the query is based either does - * not exist, or has a status that renders the stack inactive. A - * QueryError occurrence does not necessarily mean that Resource - * Groups could not complete the operation, but the resulting group might have no - * member resources.

    See Also:

    SearchResources.

    See Also:

    AWS * API Reference

    */ @@ -76,74 +71,42 @@ namespace Model /** - *

    A message that explains the ErrorCode value. Messages might - * state that the specified CloudFront stack does not exist (or no longer exists). - * For CLOUDFORMATION_STACK_INACTIVE, the message typically states - * that the CloudFront stack has a status that is not (or no longer) active, such - * as CREATE_FAILED.

    + *

    A message that explains the ErrorCode.

    */ inline const Aws::String& GetMessage() const{ return m_message; } /** - *

    A message that explains the ErrorCode value. Messages might - * state that the specified CloudFront stack does not exist (or no longer exists). - * For CLOUDFORMATION_STACK_INACTIVE, the message typically states - * that the CloudFront stack has a status that is not (or no longer) active, such - * as CREATE_FAILED.

    + *

    A message that explains the ErrorCode.

    */ inline bool MessageHasBeenSet() const { return m_messageHasBeenSet; } /** - *

    A message that explains the ErrorCode value. Messages might - * state that the specified CloudFront stack does not exist (or no longer exists). - * For CLOUDFORMATION_STACK_INACTIVE, the message typically states - * that the CloudFront stack has a status that is not (or no longer) active, such - * as CREATE_FAILED.

    + *

    A message that explains the ErrorCode.

    */ inline void SetMessage(const Aws::String& value) { m_messageHasBeenSet = true; m_message = value; } /** - *

    A message that explains the ErrorCode value. Messages might - * state that the specified CloudFront stack does not exist (or no longer exists). - * For CLOUDFORMATION_STACK_INACTIVE, the message typically states - * that the CloudFront stack has a status that is not (or no longer) active, such - * as CREATE_FAILED.

    + *

    A message that explains the ErrorCode.

    */ inline void SetMessage(Aws::String&& value) { m_messageHasBeenSet = true; m_message = std::move(value); } /** - *

    A message that explains the ErrorCode value. Messages might - * state that the specified CloudFront stack does not exist (or no longer exists). - * For CLOUDFORMATION_STACK_INACTIVE, the message typically states - * that the CloudFront stack has a status that is not (or no longer) active, such - * as CREATE_FAILED.

    + *

    A message that explains the ErrorCode.

    */ inline void SetMessage(const char* value) { m_messageHasBeenSet = true; m_message.assign(value); } /** - *

    A message that explains the ErrorCode value. Messages might - * state that the specified CloudFront stack does not exist (or no longer exists). - * For CLOUDFORMATION_STACK_INACTIVE, the message typically states - * that the CloudFront stack has a status that is not (or no longer) active, such - * as CREATE_FAILED.

    + *

    A message that explains the ErrorCode.

    */ inline QueryError& WithMessage(const Aws::String& value) { SetMessage(value); return *this;} /** - *

    A message that explains the ErrorCode value. Messages might - * state that the specified CloudFront stack does not exist (or no longer exists). - * For CLOUDFORMATION_STACK_INACTIVE, the message typically states - * that the CloudFront stack has a status that is not (or no longer) active, such - * as CREATE_FAILED.

    + *

    A message that explains the ErrorCode.

    */ inline QueryError& WithMessage(Aws::String&& value) { SetMessage(std::move(value)); return *this;} /** - *

    A message that explains the ErrorCode value. Messages might - * state that the specified CloudFront stack does not exist (or no longer exists). - * For CLOUDFORMATION_STACK_INACTIVE, the message typically states - * that the CloudFront stack has a status that is not (or no longer) active, such - * as CREATE_FAILED.

    + *

    A message that explains the ErrorCode.

    */ inline QueryError& WithMessage(const char* value) { SetMessage(value); return *this;} diff --git a/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/QueryErrorCode.h b/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/QueryErrorCode.h index ecc7447fc1a..759c72cb7cc 100644 --- a/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/QueryErrorCode.h +++ b/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/QueryErrorCode.h @@ -18,7 +18,8 @@ namespace Model NOT_SET, CLOUDFORMATION_STACK_INACTIVE, CLOUDFORMATION_STACK_NOT_EXISTING, - CLOUDFORMATION_STACK_UNASSUMABLE_ROLE + CLOUDFORMATION_STACK_UNASSUMABLE_ROLE, + RESOURCE_TYPE_NOT_SUPPORTED }; namespace QueryErrorCodeMapper diff --git a/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/SearchResourcesResult.h b/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/SearchResourcesResult.h index fa5145003bd..697f9356614 100644 --- a/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/SearchResourcesResult.h +++ b/generated/src/aws-cpp-sdk-resource-groups/include/aws/resource-groups/model/SearchResourcesResult.h @@ -143,65 +143,72 @@ namespace Model /** - *

    A list of QueryError objects. Each error is an object that - * contains ErrorCode and Message structures.

    - *

    Possible values for ErrorCode:

    • + *

      A list of QueryError objects. Each error contains an + * ErrorCode and Message.

      Possible values for + * ErrorCode:

      • * CLOUDFORMATION_STACK_INACTIVE

      • - * CLOUDFORMATION_STACK_NOT_EXISTING

      + * CLOUDFORMATION_STACK_NOT_EXISTING

    • + * CLOUDFORMATION_STACK_UNASSUMABLE_ROLE

    */ inline const Aws::Vector& GetQueryErrors() const{ return m_queryErrors; } /** - *

    A list of QueryError objects. Each error is an object that - * contains ErrorCode and Message structures.

    - *

    Possible values for ErrorCode:

    • + *

      A list of QueryError objects. Each error contains an + * ErrorCode and Message.

      Possible values for + * ErrorCode:

      • * CLOUDFORMATION_STACK_INACTIVE

      • - * CLOUDFORMATION_STACK_NOT_EXISTING

      + * CLOUDFORMATION_STACK_NOT_EXISTING

    • + * CLOUDFORMATION_STACK_UNASSUMABLE_ROLE

    */ inline void SetQueryErrors(const Aws::Vector& value) { m_queryErrors = value; } /** - *

    A list of QueryError objects. Each error is an object that - * contains ErrorCode and Message structures.

    - *

    Possible values for ErrorCode:

    • + *

      A list of QueryError objects. Each error contains an + * ErrorCode and Message.

      Possible values for + * ErrorCode:

      • * CLOUDFORMATION_STACK_INACTIVE

      • - * CLOUDFORMATION_STACK_NOT_EXISTING

      + * CLOUDFORMATION_STACK_NOT_EXISTING

    • + * CLOUDFORMATION_STACK_UNASSUMABLE_ROLE

    */ inline void SetQueryErrors(Aws::Vector&& value) { m_queryErrors = std::move(value); } /** - *

    A list of QueryError objects. Each error is an object that - * contains ErrorCode and Message structures.

    - *

    Possible values for ErrorCode:

    • + *

      A list of QueryError objects. Each error contains an + * ErrorCode and Message.

      Possible values for + * ErrorCode:

      • * CLOUDFORMATION_STACK_INACTIVE

      • - * CLOUDFORMATION_STACK_NOT_EXISTING

      + * CLOUDFORMATION_STACK_NOT_EXISTING

    • + * CLOUDFORMATION_STACK_UNASSUMABLE_ROLE

    */ inline SearchResourcesResult& WithQueryErrors(const Aws::Vector& value) { SetQueryErrors(value); return *this;} /** - *

    A list of QueryError objects. Each error is an object that - * contains ErrorCode and Message structures.

    - *

    Possible values for ErrorCode:

    • + *

      A list of QueryError objects. Each error contains an + * ErrorCode and Message.

      Possible values for + * ErrorCode:

      • * CLOUDFORMATION_STACK_INACTIVE

      • - * CLOUDFORMATION_STACK_NOT_EXISTING

      + * CLOUDFORMATION_STACK_NOT_EXISTING

    • + * CLOUDFORMATION_STACK_UNASSUMABLE_ROLE

    */ inline SearchResourcesResult& WithQueryErrors(Aws::Vector&& value) { SetQueryErrors(std::move(value)); return *this;} /** - *

    A list of QueryError objects. Each error is an object that - * contains ErrorCode and Message structures.

    - *

    Possible values for ErrorCode:

    • + *

      A list of QueryError objects. Each error contains an + * ErrorCode and Message.

      Possible values for + * ErrorCode:

      • * CLOUDFORMATION_STACK_INACTIVE

      • - * CLOUDFORMATION_STACK_NOT_EXISTING

      + * CLOUDFORMATION_STACK_NOT_EXISTING

    • + * CLOUDFORMATION_STACK_UNASSUMABLE_ROLE

    */ inline SearchResourcesResult& AddQueryErrors(const QueryError& value) { m_queryErrors.push_back(value); return *this; } /** - *

    A list of QueryError objects. Each error is an object that - * contains ErrorCode and Message structures.

    - *

    Possible values for ErrorCode:

    • + *

      A list of QueryError objects. Each error contains an + * ErrorCode and Message.

      Possible values for + * ErrorCode:

      • * CLOUDFORMATION_STACK_INACTIVE

      • - * CLOUDFORMATION_STACK_NOT_EXISTING

      + * CLOUDFORMATION_STACK_NOT_EXISTING

    • + * CLOUDFORMATION_STACK_UNASSUMABLE_ROLE

    */ inline SearchResourcesResult& AddQueryErrors(QueryError&& value) { m_queryErrors.push_back(std::move(value)); return *this; } diff --git a/generated/src/aws-cpp-sdk-resource-groups/source/ResourceGroupsEndpointRules.cpp b/generated/src/aws-cpp-sdk-resource-groups/source/ResourceGroupsEndpointRules.cpp index 414c3f677e9..344f5fe5322 100644 --- a/generated/src/aws-cpp-sdk-resource-groups/source/ResourceGroupsEndpointRules.cpp +++ b/generated/src/aws-cpp-sdk-resource-groups/source/ResourceGroupsEndpointRules.cpp @@ -51,117 +51,117 @@ static constexpr RulesBlobT RulesBlob = {{ ',','"','t','y','p','e','"',':','"','S','t','r','i','n','g','"','}','}',',','"','r','u','l','e','s', '"',':','[','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[','{','"','f','n','"',':','"', 'i','s','S','e','t','"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','E','n', -'d','p','o','i','n','t','"','}',']','}',']',',','"','t','y','p','e','"',':','"','t','r','e','e','"', -',','"','r','u','l','e','s','"',':','[','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[', -'{','"','f','n','"',':','"','b','o','o','l','e','a','n','E','q','u','a','l','s','"',',','"','a','r', -'g','v','"',':','[','{','"','r','e','f','"',':','"','U','s','e','F','I','P','S','"','}',',','t','r', -'u','e',']','}',']',',','"','e','r','r','o','r','"',':','"','I','n','v','a','l','i','d',' ','C','o', -'n','f','i','g','u','r','a','t','i','o','n',':',' ','F','I','P','S',' ','a','n','d',' ','c','u','s', -'t','o','m',' ','e','n','d','p','o','i','n','t',' ','a','r','e',' ','n','o','t',' ','s','u','p','p', -'o','r','t','e','d','"',',','"','t','y','p','e','"',':','"','e','r','r','o','r','"','}',',','{','"', -'c','o','n','d','i','t','i','o','n','s','"',':','[','{','"','f','n','"',':','"','b','o','o','l','e', +'d','p','o','i','n','t','"','}',']','}',']',',','"','r','u','l','e','s','"',':','[','{','"','c','o', +'n','d','i','t','i','o','n','s','"',':','[','{','"','f','n','"',':','"','b','o','o','l','e','a','n', +'E','q','u','a','l','s','"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','U', +'s','e','F','I','P','S','"','}',',','t','r','u','e',']','}',']',',','"','e','r','r','o','r','"',':', +'"','I','n','v','a','l','i','d',' ','C','o','n','f','i','g','u','r','a','t','i','o','n',':',' ','F', +'I','P','S',' ','a','n','d',' ','c','u','s','t','o','m',' ','e','n','d','p','o','i','n','t',' ','a', +'r','e',' ','n','o','t',' ','s','u','p','p','o','r','t','e','d','"',',','"','t','y','p','e','"',':', +'"','e','r','r','o','r','"','}',',','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[','{', +'"','f','n','"',':','"','b','o','o','l','e','a','n','E','q','u','a','l','s','"',',','"','a','r','g', +'v','"',':','[','{','"','r','e','f','"',':','"','U','s','e','D','u','a','l','S','t','a','c','k','"', +'}',',','t','r','u','e',']','}',']',',','"','e','r','r','o','r','"',':','"','I','n','v','a','l','i', +'d',' ','C','o','n','f','i','g','u','r','a','t','i','o','n',':',' ','D','u','a','l','s','t','a','c', +'k',' ','a','n','d',' ','c','u','s','t','o','m',' ','e','n','d','p','o','i','n','t',' ','a','r','e', +' ','n','o','t',' ','s','u','p','p','o','r','t','e','d','"',',','"','t','y','p','e','"',':','"','e', +'r','r','o','r','"','}',',','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[',']',',','"', +'e','n','d','p','o','i','n','t','"',':','{','"','u','r','l','"',':','{','"','r','e','f','"',':','"', +'E','n','d','p','o','i','n','t','"','}',',','"','p','r','o','p','e','r','t','i','e','s','"',':','{', +'}',',','"','h','e','a','d','e','r','s','"',':','{','}','}',',','"','t','y','p','e','"',':','"','e', +'n','d','p','o','i','n','t','"','}',']',',','"','t','y','p','e','"',':','"','t','r','e','e','"','}', +',','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[','{','"','f','n','"',':','"','i','s', +'S','e','t','"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','R','e','g','i', +'o','n','"','}',']','}',']',',','"','r','u','l','e','s','"',':','[','{','"','c','o','n','d','i','t', +'i','o','n','s','"',':','[','{','"','f','n','"',':','"','a','w','s','.','p','a','r','t','i','t','i', +'o','n','"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','R','e','g','i','o', +'n','"','}',']',',','"','a','s','s','i','g','n','"',':','"','P','a','r','t','i','t','i','o','n','R', +'e','s','u','l','t','"','}',']',',','"','r','u','l','e','s','"',':','[','{','"','c','o','n','d','i', +'t','i','o','n','s','"',':','[','{','"','f','n','"',':','"','b','o','o','l','e','a','n','E','q','u', +'a','l','s','"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','U','s','e','F', +'I','P','S','"','}',',','t','r','u','e',']','}',',','{','"','f','n','"',':','"','b','o','o','l','e', 'a','n','E','q','u','a','l','s','"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':', '"','U','s','e','D','u','a','l','S','t','a','c','k','"','}',',','t','r','u','e',']','}',']',',','"', -'e','r','r','o','r','"',':','"','I','n','v','a','l','i','d',' ','C','o','n','f','i','g','u','r','a', -'t','i','o','n',':',' ','D','u','a','l','s','t','a','c','k',' ','a','n','d',' ','c','u','s','t','o', -'m',' ','e','n','d','p','o','i','n','t',' ','a','r','e',' ','n','o','t',' ','s','u','p','p','o','r', -'t','e','d','"',',','"','t','y','p','e','"',':','"','e','r','r','o','r','"','}',',','{','"','c','o', +'r','u','l','e','s','"',':','[','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[','{','"', +'f','n','"',':','"','b','o','o','l','e','a','n','E','q','u','a','l','s','"',',','"','a','r','g','v', +'"',':','[','t','r','u','e',',','{','"','f','n','"',':','"','g','e','t','A','t','t','r','"',',','"', +'a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','P','a','r','t','i','t','i','o','n','R', +'e','s','u','l','t','"','}',',','"','s','u','p','p','o','r','t','s','F','I','P','S','"',']','}',']', +'}',',','{','"','f','n','"',':','"','b','o','o','l','e','a','n','E','q','u','a','l','s','"',',','"', +'a','r','g','v','"',':','[','t','r','u','e',',','{','"','f','n','"',':','"','g','e','t','A','t','t', +'r','"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','P','a','r','t','i','t', +'i','o','n','R','e','s','u','l','t','"','}',',','"','s','u','p','p','o','r','t','s','D','u','a','l', +'S','t','a','c','k','"',']','}',']','}',']',',','"','r','u','l','e','s','"',':','[','{','"','c','o', 'n','d','i','t','i','o','n','s','"',':','[',']',',','"','e','n','d','p','o','i','n','t','"',':','{', -'"','u','r','l','"',':','{','"','r','e','f','"',':','"','E','n','d','p','o','i','n','t','"','}',',', -'"','p','r','o','p','e','r','t','i','e','s','"',':','{','}',',','"','h','e','a','d','e','r','s','"', -':','{','}','}',',','"','t','y','p','e','"',':','"','e','n','d','p','o','i','n','t','"','}',']','}', -',','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[','{','"','f','n','"',':','"','i','s', -'S','e','t','"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','R','e','g','i', -'o','n','"','}',']','}',']',',','"','t','y','p','e','"',':','"','t','r','e','e','"',',','"','r','u', -'l','e','s','"',':','[','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[','{','"','f','n', -'"',':','"','a','w','s','.','p','a','r','t','i','t','i','o','n','"',',','"','a','r','g','v','"',':', -'[','{','"','r','e','f','"',':','"','R','e','g','i','o','n','"','}',']',',','"','a','s','s','i','g', -'n','"',':','"','P','a','r','t','i','t','i','o','n','R','e','s','u','l','t','"','}',']',',','"','t', -'y','p','e','"',':','"','t','r','e','e','"',',','"','r','u','l','e','s','"',':','[','{','"','c','o', -'n','d','i','t','i','o','n','s','"',':','[','{','"','f','n','"',':','"','b','o','o','l','e','a','n', -'E','q','u','a','l','s','"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','U', -'s','e','F','I','P','S','"','}',',','t','r','u','e',']','}',',','{','"','f','n','"',':','"','b','o', -'o','l','e','a','n','E','q','u','a','l','s','"',',','"','a','r','g','v','"',':','[','{','"','r','e', -'f','"',':','"','U','s','e','D','u','a','l','S','t','a','c','k','"','}',',','t','r','u','e',']','}', -']',',','"','t','y','p','e','"',':','"','t','r','e','e','"',',','"','r','u','l','e','s','"',':','[', +'"','u','r','l','"',':','"','h','t','t','p','s',':','/','/','r','e','s','o','u','r','c','e','-','g', +'r','o','u','p','s','-','f','i','p','s','.','{','R','e','g','i','o','n','}','.','{','P','a','r','t', +'i','t','i','o','n','R','e','s','u','l','t','#','d','u','a','l','S','t','a','c','k','D','n','s','S', +'u','f','f','i','x','}','"',',','"','p','r','o','p','e','r','t','i','e','s','"',':','{','}',',','"', +'h','e','a','d','e','r','s','"',':','{','}','}',',','"','t','y','p','e','"',':','"','e','n','d','p', +'o','i','n','t','"','}',']',',','"','t','y','p','e','"',':','"','t','r','e','e','"','}',',','{','"', +'c','o','n','d','i','t','i','o','n','s','"',':','[',']',',','"','e','r','r','o','r','"',':','"','F', +'I','P','S',' ','a','n','d',' ','D','u','a','l','S','t','a','c','k',' ','a','r','e',' ','e','n','a', +'b','l','e','d',',',' ','b','u','t',' ','t','h','i','s',' ','p','a','r','t','i','t','i','o','n',' ', +'d','o','e','s',' ','n','o','t',' ','s','u','p','p','o','r','t',' ','o','n','e',' ','o','r',' ','b', +'o','t','h','"',',','"','t','y','p','e','"',':','"','e','r','r','o','r','"','}',']',',','"','t','y', +'p','e','"',':','"','t','r','e','e','"','}',',','{','"','c','o','n','d','i','t','i','o','n','s','"', +':','[','{','"','f','n','"',':','"','b','o','o','l','e','a','n','E','q','u','a','l','s','"',',','"', +'a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','U','s','e','F','I','P','S','"','}',',', +'t','r','u','e',']','}',']',',','"','r','u','l','e','s','"',':','[','{','"','c','o','n','d','i','t', +'i','o','n','s','"',':','[','{','"','f','n','"',':','"','b','o','o','l','e','a','n','E','q','u','a', +'l','s','"',',','"','a','r','g','v','"',':','[','{','"','f','n','"',':','"','g','e','t','A','t','t', +'r','"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','P','a','r','t','i','t', +'i','o','n','R','e','s','u','l','t','"','}',',','"','s','u','p','p','o','r','t','s','F','I','P','S', +'"',']','}',',','t','r','u','e',']','}',']',',','"','r','u','l','e','s','"',':','[','{','"','c','o', +'n','d','i','t','i','o','n','s','"',':','[','{','"','f','n','"',':','"','s','t','r','i','n','g','E', +'q','u','a','l','s','"',',','"','a','r','g','v','"',':','[','{','"','f','n','"',':','"','g','e','t', +'A','t','t','r','"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','P','a','r', +'t','i','t','i','o','n','R','e','s','u','l','t','"','}',',','"','n','a','m','e','"',']','}',',','"', +'a','w','s','-','u','s','-','g','o','v','"',']','}',']',',','"','e','n','d','p','o','i','n','t','"', +':','{','"','u','r','l','"',':','"','h','t','t','p','s',':','/','/','r','e','s','o','u','r','c','e', +'-','g','r','o','u','p','s','.','{','R','e','g','i','o','n','}','.','a','m','a','z','o','n','a','w', +'s','.','c','o','m','"',',','"','p','r','o','p','e','r','t','i','e','s','"',':','{','}',',','"','h', +'e','a','d','e','r','s','"',':','{','}','}',',','"','t','y','p','e','"',':','"','e','n','d','p','o', +'i','n','t','"','}',',','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[',']',',','"','e', +'n','d','p','o','i','n','t','"',':','{','"','u','r','l','"',':','"','h','t','t','p','s',':','/','/', +'r','e','s','o','u','r','c','e','-','g','r','o','u','p','s','-','f','i','p','s','.','{','R','e','g', +'i','o','n','}','.','{','P','a','r','t','i','t','i','o','n','R','e','s','u','l','t','#','d','n','s', +'S','u','f','f','i','x','}','"',',','"','p','r','o','p','e','r','t','i','e','s','"',':','{','}',',', +'"','h','e','a','d','e','r','s','"',':','{','}','}',',','"','t','y','p','e','"',':','"','e','n','d', +'p','o','i','n','t','"','}',']',',','"','t','y','p','e','"',':','"','t','r','e','e','"','}',',','{', +'"','c','o','n','d','i','t','i','o','n','s','"',':','[',']',',','"','e','r','r','o','r','"',':','"', +'F','I','P','S',' ','i','s',' ','e','n','a','b','l','e','d',' ','b','u','t',' ','t','h','i','s',' ', +'p','a','r','t','i','t','i','o','n',' ','d','o','e','s',' ','n','o','t',' ','s','u','p','p','o','r', +'t',' ','F','I','P','S','"',',','"','t','y','p','e','"',':','"','e','r','r','o','r','"','}',']',',', +'"','t','y','p','e','"',':','"','t','r','e','e','"','}',',','{','"','c','o','n','d','i','t','i','o', +'n','s','"',':','[','{','"','f','n','"',':','"','b','o','o','l','e','a','n','E','q','u','a','l','s', +'"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','U','s','e','D','u','a','l', +'S','t','a','c','k','"','}',',','t','r','u','e',']','}',']',',','"','r','u','l','e','s','"',':','[', '{','"','c','o','n','d','i','t','i','o','n','s','"',':','[','{','"','f','n','"',':','"','b','o','o', 'l','e','a','n','E','q','u','a','l','s','"',',','"','a','r','g','v','"',':','[','t','r','u','e',',', '{','"','f','n','"',':','"','g','e','t','A','t','t','r','"',',','"','a','r','g','v','"',':','[','{', '"','r','e','f','"',':','"','P','a','r','t','i','t','i','o','n','R','e','s','u','l','t','"','}',',', -'"','s','u','p','p','o','r','t','s','F','I','P','S','"',']','}',']','}',',','{','"','f','n','"',':', -'"','b','o','o','l','e','a','n','E','q','u','a','l','s','"',',','"','a','r','g','v','"',':','[','t', -'r','u','e',',','{','"','f','n','"',':','"','g','e','t','A','t','t','r','"',',','"','a','r','g','v', -'"',':','[','{','"','r','e','f','"',':','"','P','a','r','t','i','t','i','o','n','R','e','s','u','l', -'t','"','}',',','"','s','u','p','p','o','r','t','s','D','u','a','l','S','t','a','c','k','"',']','}', -']','}',']',',','"','t','y','p','e','"',':','"','t','r','e','e','"',',','"','r','u','l','e','s','"', -':','[','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[',']',',','"','e','n','d','p','o', -'i','n','t','"',':','{','"','u','r','l','"',':','"','h','t','t','p','s',':','/','/','r','e','s','o', -'u','r','c','e','-','g','r','o','u','p','s','-','f','i','p','s','.','{','R','e','g','i','o','n','}', -'.','{','P','a','r','t','i','t','i','o','n','R','e','s','u','l','t','#','d','u','a','l','S','t','a', -'c','k','D','n','s','S','u','f','f','i','x','}','"',',','"','p','r','o','p','e','r','t','i','e','s', -'"',':','{','}',',','"','h','e','a','d','e','r','s','"',':','{','}','}',',','"','t','y','p','e','"', -':','"','e','n','d','p','o','i','n','t','"','}',']','}',',','{','"','c','o','n','d','i','t','i','o', -'n','s','"',':','[',']',',','"','e','r','r','o','r','"',':','"','F','I','P','S',' ','a','n','d',' ', -'D','u','a','l','S','t','a','c','k',' ','a','r','e',' ','e','n','a','b','l','e','d',',',' ','b','u', -'t',' ','t','h','i','s',' ','p','a','r','t','i','t','i','o','n',' ','d','o','e','s',' ','n','o','t', -' ','s','u','p','p','o','r','t',' ','o','n','e',' ','o','r',' ','b','o','t','h','"',',','"','t','y', -'p','e','"',':','"','e','r','r','o','r','"','}',']','}',',','{','"','c','o','n','d','i','t','i','o', -'n','s','"',':','[','{','"','f','n','"',':','"','b','o','o','l','e','a','n','E','q','u','a','l','s', -'"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','U','s','e','F','I','P','S', -'"','}',',','t','r','u','e',']','}',']',',','"','t','y','p','e','"',':','"','t','r','e','e','"',',', -'"','r','u','l','e','s','"',':','[','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[','{', -'"','f','n','"',':','"','b','o','o','l','e','a','n','E','q','u','a','l','s','"',',','"','a','r','g', -'v','"',':','[','t','r','u','e',',','{','"','f','n','"',':','"','g','e','t','A','t','t','r','"',',', -'"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','P','a','r','t','i','t','i','o','n', -'R','e','s','u','l','t','"','}',',','"','s','u','p','p','o','r','t','s','F','I','P','S','"',']','}', -']','}',']',',','"','t','y','p','e','"',':','"','t','r','e','e','"',',','"','r','u','l','e','s','"', -':','[','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[','{','"','f','n','"',':','"','s', -'t','r','i','n','g','E','q','u','a','l','s','"',',','"','a','r','g','v','"',':','[','"','a','w','s', -'-','u','s','-','g','o','v','"',',','{','"','f','n','"',':','"','g','e','t','A','t','t','r','"',',', -'"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','P','a','r','t','i','t','i','o','n', -'R','e','s','u','l','t','"','}',',','"','n','a','m','e','"',']','}',']','}',']',',','"','e','n','d', -'p','o','i','n','t','"',':','{','"','u','r','l','"',':','"','h','t','t','p','s',':','/','/','r','e', -'s','o','u','r','c','e','-','g','r','o','u','p','s','.','{','R','e','g','i','o','n','}','.','a','m', -'a','z','o','n','a','w','s','.','c','o','m','"',',','"','p','r','o','p','e','r','t','i','e','s','"', -':','{','}',',','"','h','e','a','d','e','r','s','"',':','{','}','}',',','"','t','y','p','e','"',':', -'"','e','n','d','p','o','i','n','t','"','}',',','{','"','c','o','n','d','i','t','i','o','n','s','"', -':','[',']',',','"','e','n','d','p','o','i','n','t','"',':','{','"','u','r','l','"',':','"','h','t', -'t','p','s',':','/','/','r','e','s','o','u','r','c','e','-','g','r','o','u','p','s','-','f','i','p', -'s','.','{','R','e','g','i','o','n','}','.','{','P','a','r','t','i','t','i','o','n','R','e','s','u', -'l','t','#','d','n','s','S','u','f','f','i','x','}','"',',','"','p','r','o','p','e','r','t','i','e', -'s','"',':','{','}',',','"','h','e','a','d','e','r','s','"',':','{','}','}',',','"','t','y','p','e', -'"',':','"','e','n','d','p','o','i','n','t','"','}',']','}',',','{','"','c','o','n','d','i','t','i', -'o','n','s','"',':','[',']',',','"','e','r','r','o','r','"',':','"','F','I','P','S',' ','i','s',' ', -'e','n','a','b','l','e','d',' ','b','u','t',' ','t','h','i','s',' ','p','a','r','t','i','t','i','o', -'n',' ','d','o','e','s',' ','n','o','t',' ','s','u','p','p','o','r','t',' ','F','I','P','S','"',',', -'"','t','y','p','e','"',':','"','e','r','r','o','r','"','}',']','}',',','{','"','c','o','n','d','i', -'t','i','o','n','s','"',':','[','{','"','f','n','"',':','"','b','o','o','l','e','a','n','E','q','u', -'a','l','s','"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','U','s','e','D', -'u','a','l','S','t','a','c','k','"','}',',','t','r','u','e',']','}',']',',','"','t','y','p','e','"', -':','"','t','r','e','e','"',',','"','r','u','l','e','s','"',':','[','{','"','c','o','n','d','i','t', -'i','o','n','s','"',':','[','{','"','f','n','"',':','"','b','o','o','l','e','a','n','E','q','u','a', -'l','s','"',',','"','a','r','g','v','"',':','[','t','r','u','e',',','{','"','f','n','"',':','"','g', -'e','t','A','t','t','r','"',',','"','a','r','g','v','"',':','[','{','"','r','e','f','"',':','"','P', -'a','r','t','i','t','i','o','n','R','e','s','u','l','t','"','}',',','"','s','u','p','p','o','r','t', -'s','D','u','a','l','S','t','a','c','k','"',']','}',']','}',']',',','"','t','y','p','e','"',':','"', -'t','r','e','e','"',',','"','r','u','l','e','s','"',':','[','{','"','c','o','n','d','i','t','i','o', -'n','s','"',':','[',']',',','"','e','n','d','p','o','i','n','t','"',':','{','"','u','r','l','"',':', -'"','h','t','t','p','s',':','/','/','r','e','s','o','u','r','c','e','-','g','r','o','u','p','s','.', -'{','R','e','g','i','o','n','}','.','{','P','a','r','t','i','t','i','o','n','R','e','s','u','l','t', -'#','d','u','a','l','S','t','a','c','k','D','n','s','S','u','f','f','i','x','}','"',',','"','p','r', -'o','p','e','r','t','i','e','s','"',':','{','}',',','"','h','e','a','d','e','r','s','"',':','{','}', -'}',',','"','t','y','p','e','"',':','"','e','n','d','p','o','i','n','t','"','}',']','}',',','{','"', -'c','o','n','d','i','t','i','o','n','s','"',':','[',']',',','"','e','r','r','o','r','"',':','"','D', -'u','a','l','S','t','a','c','k',' ','i','s',' ','e','n','a','b','l','e','d',' ','b','u','t',' ','t', -'h','i','s',' ','p','a','r','t','i','t','i','o','n',' ','d','o','e','s',' ','n','o','t',' ','s','u', -'p','p','o','r','t',' ','D','u','a','l','S','t','a','c','k','"',',','"','t','y','p','e','"',':','"', -'e','r','r','o','r','"','}',']','}',',','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[', -']',',','"','e','n','d','p','o','i','n','t','"',':','{','"','u','r','l','"',':','"','h','t','t','p', -'s',':','/','/','r','e','s','o','u','r','c','e','-','g','r','o','u','p','s','.','{','R','e','g','i', -'o','n','}','.','{','P','a','r','t','i','t','i','o','n','R','e','s','u','l','t','#','d','n','s','S', -'u','f','f','i','x','}','"',',','"','p','r','o','p','e','r','t','i','e','s','"',':','{','}',',','"', -'h','e','a','d','e','r','s','"',':','{','}','}',',','"','t','y','p','e','"',':','"','e','n','d','p', -'o','i','n','t','"','}',']','}',']','}',',','{','"','c','o','n','d','i','t','i','o','n','s','"',':', +'"','s','u','p','p','o','r','t','s','D','u','a','l','S','t','a','c','k','"',']','}',']','}',']',',', +'"','r','u','l','e','s','"',':','[','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[',']', +',','"','e','n','d','p','o','i','n','t','"',':','{','"','u','r','l','"',':','"','h','t','t','p','s', +':','/','/','r','e','s','o','u','r','c','e','-','g','r','o','u','p','s','.','{','R','e','g','i','o', +'n','}','.','{','P','a','r','t','i','t','i','o','n','R','e','s','u','l','t','#','d','u','a','l','S', +'t','a','c','k','D','n','s','S','u','f','f','i','x','}','"',',','"','p','r','o','p','e','r','t','i', +'e','s','"',':','{','}',',','"','h','e','a','d','e','r','s','"',':','{','}','}',',','"','t','y','p', +'e','"',':','"','e','n','d','p','o','i','n','t','"','}',']',',','"','t','y','p','e','"',':','"','t', +'r','e','e','"','}',',','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[',']',',','"','e', +'r','r','o','r','"',':','"','D','u','a','l','S','t','a','c','k',' ','i','s',' ','e','n','a','b','l', +'e','d',' ','b','u','t',' ','t','h','i','s',' ','p','a','r','t','i','t','i','o','n',' ','d','o','e', +'s',' ','n','o','t',' ','s','u','p','p','o','r','t',' ','D','u','a','l','S','t','a','c','k','"',',', +'"','t','y','p','e','"',':','"','e','r','r','o','r','"','}',']',',','"','t','y','p','e','"',':','"', +'t','r','e','e','"','}',',','{','"','c','o','n','d','i','t','i','o','n','s','"',':','[',']',',','"', +'e','n','d','p','o','i','n','t','"',':','{','"','u','r','l','"',':','"','h','t','t','p','s',':','/', +'/','r','e','s','o','u','r','c','e','-','g','r','o','u','p','s','.','{','R','e','g','i','o','n','}', +'.','{','P','a','r','t','i','t','i','o','n','R','e','s','u','l','t','#','d','n','s','S','u','f','f', +'i','x','}','"',',','"','p','r','o','p','e','r','t','i','e','s','"',':','{','}',',','"','h','e','a', +'d','e','r','s','"',':','{','}','}',',','"','t','y','p','e','"',':','"','e','n','d','p','o','i','n', +'t','"','}',']',',','"','t','y','p','e','"',':','"','t','r','e','e','"','}',']',',','"','t','y','p', +'e','"',':','"','t','r','e','e','"','}',',','{','"','c','o','n','d','i','t','i','o','n','s','"',':', '[',']',',','"','e','r','r','o','r','"',':','"','I','n','v','a','l','i','d',' ','C','o','n','f','i', 'g','u','r','a','t','i','o','n',':',' ','M','i','s','s','i','n','g',' ','R','e','g','i','o','n','"', ',','"','t','y','p','e','"',':','"','e','r','r','o','r','"','}',']','}','\0' diff --git a/generated/src/aws-cpp-sdk-resource-groups/source/model/QueryErrorCode.cpp b/generated/src/aws-cpp-sdk-resource-groups/source/model/QueryErrorCode.cpp index 131186eb986..f97b5608164 100644 --- a/generated/src/aws-cpp-sdk-resource-groups/source/model/QueryErrorCode.cpp +++ b/generated/src/aws-cpp-sdk-resource-groups/source/model/QueryErrorCode.cpp @@ -23,6 +23,7 @@ namespace Aws static const int CLOUDFORMATION_STACK_INACTIVE_HASH = HashingUtils::HashString("CLOUDFORMATION_STACK_INACTIVE"); static const int CLOUDFORMATION_STACK_NOT_EXISTING_HASH = HashingUtils::HashString("CLOUDFORMATION_STACK_NOT_EXISTING"); static const int CLOUDFORMATION_STACK_UNASSUMABLE_ROLE_HASH = HashingUtils::HashString("CLOUDFORMATION_STACK_UNASSUMABLE_ROLE"); + static const int RESOURCE_TYPE_NOT_SUPPORTED_HASH = HashingUtils::HashString("RESOURCE_TYPE_NOT_SUPPORTED"); QueryErrorCode GetQueryErrorCodeForName(const Aws::String& name) @@ -40,6 +41,10 @@ namespace Aws { return QueryErrorCode::CLOUDFORMATION_STACK_UNASSUMABLE_ROLE; } + else if (hashCode == RESOURCE_TYPE_NOT_SUPPORTED_HASH) + { + return QueryErrorCode::RESOURCE_TYPE_NOT_SUPPORTED; + } EnumParseOverflowContainer* overflowContainer = Aws::GetEnumOverflowContainer(); if(overflowContainer) { @@ -62,6 +67,8 @@ namespace Aws return "CLOUDFORMATION_STACK_NOT_EXISTING"; case QueryErrorCode::CLOUDFORMATION_STACK_UNASSUMABLE_ROLE: return "CLOUDFORMATION_STACK_UNASSUMABLE_ROLE"; + case QueryErrorCode::RESOURCE_TYPE_NOT_SUPPORTED: + return "RESOURCE_TYPE_NOT_SUPPORTED"; default: EnumParseOverflowContainer* overflowContainer = Aws::GetEnumOverflowContainer(); if(overflowContainer) diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/VerifiedPermissionsClient.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/VerifiedPermissionsClient.h index 2af8fd23f16..31ea6b6328b 100644 --- a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/VerifiedPermissionsClient.h +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/VerifiedPermissionsClient.h @@ -167,6 +167,48 @@ namespace VerifiedPermissions return SubmitAsync(&VerifiedPermissionsClient::BatchIsAuthorized, request, handler, context); } + /** + *

    Makes a series of decisions about multiple authorization requests for one + * token. The principal in this request comes from an external identity source in + * the form of an identity or access token, formatted as a JSON web token (JWT). The + * information in the parameters can also define additional context that Verified + * Permissions can include in the evaluations.

    The request is evaluated + * against all policies in the specified policy store that match the entities that + * you provide in the entities declaration and in the token. The result of the + * decisions is a series of Allow or Deny responses, + * along with the IDs of the policies that produced each decision.

    The + * entities of a BatchIsAuthorizedWithToken API request + * can contain up to 100 resources and up to 99 user groups. The + * requests of a BatchIsAuthorizedWithToken API request + * can contain up to 30 requests.

    The + * BatchIsAuthorizedWithToken operation doesn't have its own IAM + * permission. To authorize this operation for Amazon Web Services principals, + * include the permission verifiedpermissions:IsAuthorizedWithToken in + * their IAM policies.

    See Also:

    AWS + * API Reference

    + */ + virtual Model::BatchIsAuthorizedWithTokenOutcome BatchIsAuthorizedWithToken(const Model::BatchIsAuthorizedWithTokenRequest& request) const; + + /** + * A Callable wrapper for BatchIsAuthorizedWithToken that returns a future to the operation so that it can be executed in parallel to other requests. + */ + template + Model::BatchIsAuthorizedWithTokenOutcomeCallable BatchIsAuthorizedWithTokenCallable(const BatchIsAuthorizedWithTokenRequestT& request) const + { + return SubmitCallable(&VerifiedPermissionsClient::BatchIsAuthorizedWithToken, request); + } + + /** + * An Async wrapper for BatchIsAuthorizedWithToken that queues the request into a thread executor and triggers associated callback when operation has finished. + */ + template + void BatchIsAuthorizedWithTokenAsync(const BatchIsAuthorizedWithTokenRequestT& request, const BatchIsAuthorizedWithTokenResponseReceivedHandler& handler, const std::shared_ptr& context = nullptr) const + { + return SubmitAsync(&VerifiedPermissionsClient::BatchIsAuthorizedWithToken, request, handler, context); + } + /** *

    Creates a reference to an Amazon Cognito user pool as an external identity * provider (IdP).

    After you create an identity source, you can use the @@ -611,19 +653,12 @@ namespace VerifiedPermissions * Permissions can include in the evaluation. The request is evaluated against all * matching policies in the specified policy store. The result of the decision is * either Allow or Deny, along with a list of the - * policies that resulted in the decision.

    If you specify the - * identityToken parameter, then this operation derives the principal - * from that token. You must not also include that principal in the - * entities parameter or the operation fails and reports a conflict - * between the two entity sources.

    If you provide only an - * accessToken, then you can include the entity as part of the - * entities parameter to provide additional attributes.

    - *

    At this time, Verified Permissions accepts tokens from only - * Amazon Cognito.

    Verified Permissions validates each token that is - * specified in a request by checking its expiration date and its signature.

    - *

    If you delete a Amazon Cognito user pool or user, tokens from - * that deleted pool or that deleted user continue to be usable until they - * expire.

    See Also:

    At this time, Verified + * Permissions accepts tokens from only Amazon Cognito.

    Verified Permissions + * validates each token that is specified in a request by checking its expiration + * date and its signature.

    If you delete a Amazon Cognito user + * pool or user, tokens from that deleted pool or that deleted user continue to be + * usable until they expire.

    See Also:

    AWS * API Reference

    */ diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/VerifiedPermissionsServiceClientModel.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/VerifiedPermissionsServiceClientModel.h index 4f3348cb860..7d6c88805d6 100644 --- a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/VerifiedPermissionsServiceClientModel.h +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/VerifiedPermissionsServiceClientModel.h @@ -19,6 +19,7 @@ /* Service model headers required in VerifiedPermissionsClient header */ #include +#include #include #include #include @@ -84,6 +85,7 @@ namespace Aws { /* Service model forward declarations required in VerifiedPermissionsClient header */ class BatchIsAuthorizedRequest; + class BatchIsAuthorizedWithTokenRequest; class CreateIdentitySourceRequest; class CreatePolicyRequest; class CreatePolicyStoreRequest; @@ -112,6 +114,7 @@ namespace Aws /* Service model Outcome class definitions */ typedef Aws::Utils::Outcome BatchIsAuthorizedOutcome; + typedef Aws::Utils::Outcome BatchIsAuthorizedWithTokenOutcome; typedef Aws::Utils::Outcome CreateIdentitySourceOutcome; typedef Aws::Utils::Outcome CreatePolicyOutcome; typedef Aws::Utils::Outcome CreatePolicyStoreOutcome; @@ -140,6 +143,7 @@ namespace Aws /* Service model Outcome callable definitions */ typedef std::future BatchIsAuthorizedOutcomeCallable; + typedef std::future BatchIsAuthorizedWithTokenOutcomeCallable; typedef std::future CreateIdentitySourceOutcomeCallable; typedef std::future CreatePolicyOutcomeCallable; typedef std::future CreatePolicyStoreOutcomeCallable; @@ -171,6 +175,7 @@ namespace Aws /* Service model async handlers definitions */ typedef std::function&) > BatchIsAuthorizedResponseReceivedHandler; + typedef std::function&) > BatchIsAuthorizedWithTokenResponseReceivedHandler; typedef std::function&) > CreateIdentitySourceResponseReceivedHandler; typedef std::function&) > CreatePolicyResponseReceivedHandler; typedef std::function&) > CreatePolicyStoreResponseReceivedHandler; diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/BatchIsAuthorizedWithTokenInputItem.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/BatchIsAuthorizedWithTokenInputItem.h new file mode 100644 index 00000000000..c30f5081681 --- /dev/null +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/BatchIsAuthorizedWithTokenInputItem.h @@ -0,0 +1,168 @@ +/** + * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. + * SPDX-License-Identifier: Apache-2.0. + */ + +#pragma once +#include +#include +#include +#include +#include + +namespace Aws +{ +namespace Utils +{ +namespace Json +{ + class JsonValue; + class JsonView; +} // namespace Json +} // namespace Utils +namespace VerifiedPermissions +{ +namespace Model +{ + + /** + *

    An authorization request that you include in a + * BatchIsAuthorizedWithToken API request.

    See Also:

    + * AWS + * API Reference

    + */ + class BatchIsAuthorizedWithTokenInputItem + { + public: + AWS_VERIFIEDPERMISSIONS_API BatchIsAuthorizedWithTokenInputItem(); + AWS_VERIFIEDPERMISSIONS_API BatchIsAuthorizedWithTokenInputItem(Aws::Utils::Json::JsonView jsonValue); + AWS_VERIFIEDPERMISSIONS_API BatchIsAuthorizedWithTokenInputItem& operator=(Aws::Utils::Json::JsonView jsonValue); + AWS_VERIFIEDPERMISSIONS_API Aws::Utils::Json::JsonValue Jsonize() const; + + + /** + *

    Specifies the requested action to be authorized. For example, + * PhotoFlash::ReadPhoto.

    + */ + inline const ActionIdentifier& GetAction() const{ return m_action; } + + /** + *

    Specifies the requested action to be authorized. For example, + * PhotoFlash::ReadPhoto.

    + */ + inline bool ActionHasBeenSet() const { return m_actionHasBeenSet; } + + /** + *

    Specifies the requested action to be authorized. For example, + * PhotoFlash::ReadPhoto.

    + */ + inline void SetAction(const ActionIdentifier& value) { m_actionHasBeenSet = true; m_action = value; } + + /** + *

    Specifies the requested action to be authorized. For example, + * PhotoFlash::ReadPhoto.

    + */ + inline void SetAction(ActionIdentifier&& value) { m_actionHasBeenSet = true; m_action = std::move(value); } + + /** + *

    Specifies the requested action to be authorized. For example, + * PhotoFlash::ReadPhoto.

    + */ + inline BatchIsAuthorizedWithTokenInputItem& WithAction(const ActionIdentifier& value) { SetAction(value); return *this;} + + /** + *

    Specifies the requested action to be authorized. For example, + * PhotoFlash::ReadPhoto.

    + */ + inline BatchIsAuthorizedWithTokenInputItem& WithAction(ActionIdentifier&& value) { SetAction(std::move(value)); return *this;} + + + /** + *

    Specifies the resource that you want an authorization decision for. For + * example, PhotoFlash::Photo.

    + */ + inline const EntityIdentifier& GetResource() const{ return m_resource; } + + /** + *

    Specifies the resource that you want an authorization decision for. For + * example, PhotoFlash::Photo.

    + */ + inline bool ResourceHasBeenSet() const { return m_resourceHasBeenSet; } + + /** + *

    Specifies the resource that you want an authorization decision for. For + * example, PhotoFlash::Photo.

    + */ + inline void SetResource(const EntityIdentifier& value) { m_resourceHasBeenSet = true; m_resource = value; } + + /** + *

    Specifies the resource that you want an authorization decision for. For + * example, PhotoFlash::Photo.

    + */ + inline void SetResource(EntityIdentifier&& value) { m_resourceHasBeenSet = true; m_resource = std::move(value); } + + /** + *

    Specifies the resource that you want an authorization decision for. For + * example, PhotoFlash::Photo.

    + */ + inline BatchIsAuthorizedWithTokenInputItem& WithResource(const EntityIdentifier& value) { SetResource(value); return *this;} + + /** + *

    Specifies the resource that you want an authorization decision for. For + * example, PhotoFlash::Photo.

    + */ + inline BatchIsAuthorizedWithTokenInputItem& WithResource(EntityIdentifier&& value) { SetResource(std::move(value)); return *this;} + + + /** + *

    Specifies additional context that can be used to make more granular + * authorization decisions.

    + */ + inline const ContextDefinition& GetContext() const{ return m_context; } + + /** + *

    Specifies additional context that can be used to make more granular + * authorization decisions.

    + */ + inline bool ContextHasBeenSet() const { return m_contextHasBeenSet; } + + /** + *

    Specifies additional context that can be used to make more granular + * authorization decisions.

    + */ + inline void SetContext(const ContextDefinition& value) { m_contextHasBeenSet = true; m_context = value; } + + /** + *

    Specifies additional context that can be used to make more granular + * authorization decisions.

    + */ + inline void SetContext(ContextDefinition&& value) { m_contextHasBeenSet = true; m_context = std::move(value); } + + /** + *

    Specifies additional context that can be used to make more granular + * authorization decisions.

    + */ + inline BatchIsAuthorizedWithTokenInputItem& WithContext(const ContextDefinition& value) { SetContext(value); return *this;} + + /** + *

    Specifies additional context that can be used to make more granular + * authorization decisions.

    + */ + inline BatchIsAuthorizedWithTokenInputItem& WithContext(ContextDefinition&& value) { SetContext(std::move(value)); return *this;} + + private: + + ActionIdentifier m_action; + bool m_actionHasBeenSet = false; + + EntityIdentifier m_resource; + bool m_resourceHasBeenSet = false; + + ContextDefinition m_context; + bool m_contextHasBeenSet = false; + }; + +} // namespace Model +} // namespace VerifiedPermissions +} // namespace Aws diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/BatchIsAuthorizedWithTokenOutputItem.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/BatchIsAuthorizedWithTokenOutputItem.h new file mode 100644 index 00000000000..7cb4ce27994 --- /dev/null +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/BatchIsAuthorizedWithTokenOutputItem.h @@ -0,0 +1,268 @@ +/** + * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. + * SPDX-License-Identifier: Apache-2.0. + */ + +#pragma once +#include +#include +#include +#include +#include +#include +#include + +namespace Aws +{ +namespace Utils +{ +namespace Json +{ + class JsonValue; + class JsonView; +} // namespace Json +} // namespace Utils +namespace VerifiedPermissions +{ +namespace Model +{ + + /** + *

    The decision, based on policy evaluation, from an individual authorization + * request in a BatchIsAuthorizedWithToken API request.

    See + * Also:

    AWS + * API Reference

    + */ + class BatchIsAuthorizedWithTokenOutputItem + { + public: + AWS_VERIFIEDPERMISSIONS_API BatchIsAuthorizedWithTokenOutputItem(); + AWS_VERIFIEDPERMISSIONS_API BatchIsAuthorizedWithTokenOutputItem(Aws::Utils::Json::JsonView jsonValue); + AWS_VERIFIEDPERMISSIONS_API BatchIsAuthorizedWithTokenOutputItem& operator=(Aws::Utils::Json::JsonView jsonValue); + AWS_VERIFIEDPERMISSIONS_API Aws::Utils::Json::JsonValue Jsonize() const; + + + /** + *

    The authorization request that initiated the decision.

    + */ + inline const BatchIsAuthorizedWithTokenInputItem& GetRequest() const{ return m_request; } + + /** + *

    The authorization request that initiated the decision.

    + */ + inline bool RequestHasBeenSet() const { return m_requestHasBeenSet; } + + /** + *

    The authorization request that initiated the decision.

    + */ + inline void SetRequest(const BatchIsAuthorizedWithTokenInputItem& value) { m_requestHasBeenSet = true; m_request = value; } + + /** + *

    The authorization request that initiated the decision.

    + */ + inline void SetRequest(BatchIsAuthorizedWithTokenInputItem&& value) { m_requestHasBeenSet = true; m_request = std::move(value); } + + /** + *

    The authorization request that initiated the decision.

    + */ + inline BatchIsAuthorizedWithTokenOutputItem& WithRequest(const BatchIsAuthorizedWithTokenInputItem& value) { SetRequest(value); return *this;} + + /** + *

    The authorization request that initiated the decision.

    + */ + inline BatchIsAuthorizedWithTokenOutputItem& WithRequest(BatchIsAuthorizedWithTokenInputItem&& value) { SetRequest(std::move(value)); return *this;} + + + /** + *

    An authorization decision that indicates if the authorization request should + * be allowed or denied.

    + */ + inline const Decision& GetDecision() const{ return m_decision; } + + /** + *

    An authorization decision that indicates if the authorization request should + * be allowed or denied.

    + */ + inline bool DecisionHasBeenSet() const { return m_decisionHasBeenSet; } + + /** + *

    An authorization decision that indicates if the authorization request should + * be allowed or denied.

    + */ + inline void SetDecision(const Decision& value) { m_decisionHasBeenSet = true; m_decision = value; } + + /** + *

    An authorization decision that indicates if the authorization request should + * be allowed or denied.

    + */ + inline void SetDecision(Decision&& value) { m_decisionHasBeenSet = true; m_decision = std::move(value); } + + /** + *

    An authorization decision that indicates if the authorization request should + * be allowed or denied.

    + */ + inline BatchIsAuthorizedWithTokenOutputItem& WithDecision(const Decision& value) { SetDecision(value); return *this;} + + /** + *

    An authorization decision that indicates if the authorization request should + * be allowed or denied.

    + */ + inline BatchIsAuthorizedWithTokenOutputItem& WithDecision(Decision&& value) { SetDecision(std::move(value)); return *this;} + + + /** + *

    The list of determining policies used to make the authorization decision. For + * example, if there are two matching policies, where one is a forbid and the other + * is a permit, then the forbid policy will be the determining policy. In the case + * of multiple matching permit policies then there would be multiple determining + * policies. In the case that no policies match, and hence the response is DENY, + * there would be no determining policies.

    + */ + inline const Aws::Vector& GetDeterminingPolicies() const{ return m_determiningPolicies; } + + /** + *

    The list of determining policies used to make the authorization decision. For + * example, if there are two matching policies, where one is a forbid and the other + * is a permit, then the forbid policy will be the determining policy. In the case + * of multiple matching permit policies then there would be multiple determining + * policies. In the case that no policies match, and hence the response is DENY, + * there would be no determining policies.

    + */ + inline bool DeterminingPoliciesHasBeenSet() const { return m_determiningPoliciesHasBeenSet; } + + /** + *

    The list of determining policies used to make the authorization decision. For + * example, if there are two matching policies, where one is a forbid and the other + * is a permit, then the forbid policy will be the determining policy. In the case + * of multiple matching permit policies then there would be multiple determining + * policies. In the case that no policies match, and hence the response is DENY, + * there would be no determining policies.

    + */ + inline void SetDeterminingPolicies(const Aws::Vector& value) { m_determiningPoliciesHasBeenSet = true; m_determiningPolicies = value; } + + /** + *

    The list of determining policies used to make the authorization decision. For + * example, if there are two matching policies, where one is a forbid and the other + * is a permit, then the forbid policy will be the determining policy. In the case + * of multiple matching permit policies then there would be multiple determining + * policies. In the case that no policies match, and hence the response is DENY, + * there would be no determining policies.

    + */ + inline void SetDeterminingPolicies(Aws::Vector&& value) { m_determiningPoliciesHasBeenSet = true; m_determiningPolicies = std::move(value); } + + /** + *

    The list of determining policies used to make the authorization decision. For + * example, if there are two matching policies, where one is a forbid and the other + * is a permit, then the forbid policy will be the determining policy. In the case + * of multiple matching permit policies then there would be multiple determining + * policies. In the case that no policies match, and hence the response is DENY, + * there would be no determining policies.

    + */ + inline BatchIsAuthorizedWithTokenOutputItem& WithDeterminingPolicies(const Aws::Vector& value) { SetDeterminingPolicies(value); return *this;} + + /** + *

    The list of determining policies used to make the authorization decision. For + * example, if there are two matching policies, where one is a forbid and the other + * is a permit, then the forbid policy will be the determining policy. In the case + * of multiple matching permit policies then there would be multiple determining + * policies. In the case that no policies match, and hence the response is DENY, + * there would be no determining policies.

    + */ + inline BatchIsAuthorizedWithTokenOutputItem& WithDeterminingPolicies(Aws::Vector&& value) { SetDeterminingPolicies(std::move(value)); return *this;} + + /** + *

    The list of determining policies used to make the authorization decision. For + * example, if there are two matching policies, where one is a forbid and the other + * is a permit, then the forbid policy will be the determining policy. In the case + * of multiple matching permit policies then there would be multiple determining + * policies. In the case that no policies match, and hence the response is DENY, + * there would be no determining policies.

    + */ + inline BatchIsAuthorizedWithTokenOutputItem& AddDeterminingPolicies(const DeterminingPolicyItem& value) { m_determiningPoliciesHasBeenSet = true; m_determiningPolicies.push_back(value); return *this; } + + /** + *

    The list of determining policies used to make the authorization decision. For + * example, if there are two matching policies, where one is a forbid and the other + * is a permit, then the forbid policy will be the determining policy. In the case + * of multiple matching permit policies then there would be multiple determining + * policies. In the case that no policies match, and hence the response is DENY, + * there would be no determining policies.

    + */ + inline BatchIsAuthorizedWithTokenOutputItem& AddDeterminingPolicies(DeterminingPolicyItem&& value) { m_determiningPoliciesHasBeenSet = true; m_determiningPolicies.push_back(std::move(value)); return *this; } + + + /** + *

    Errors that occurred while making an authorization decision. For example, a + * policy might reference an entity or attribute that doesn't exist in the + * request.

    + */ + inline const Aws::Vector& GetErrors() const{ return m_errors; } + + /** + *

    Errors that occurred while making an authorization decision. For example, a + * policy might reference an entity or attribute that doesn't exist in the + * request.

    + */ + inline bool ErrorsHasBeenSet() const { return m_errorsHasBeenSet; } + + /** + *

    Errors that occurred while making an authorization decision. For example, a + * policy might reference an entity or attribute that doesn't exist in the + * request.

    + */ + inline void SetErrors(const Aws::Vector& value) { m_errorsHasBeenSet = true; m_errors = value; } + + /** + *

    Errors that occurred while making an authorization decision. For example, a + * policy might reference an entity or attribute that doesn't exist in the + * request.

    + */ + inline void SetErrors(Aws::Vector&& value) { m_errorsHasBeenSet = true; m_errors = std::move(value); } + + /** + *

    Errors that occurred while making an authorization decision. For example, a + * policy might reference an entity or attribute that doesn't exist in the + * request.

    + */ + inline BatchIsAuthorizedWithTokenOutputItem& WithErrors(const Aws::Vector& value) { SetErrors(value); return *this;} + + /** + *

    Errors that occurred while making an authorization decision. For example, a + * policy might reference an entity or attribute that doesn't exist in the + * request.

    + */ + inline BatchIsAuthorizedWithTokenOutputItem& WithErrors(Aws::Vector&& value) { SetErrors(std::move(value)); return *this;} + + /** + *

    Errors that occurred while making an authorization decision. For example, a + * policy might reference an entity or attribute that doesn't exist in the + * request.

    + */ + inline BatchIsAuthorizedWithTokenOutputItem& AddErrors(const EvaluationErrorItem& value) { m_errorsHasBeenSet = true; m_errors.push_back(value); return *this; } + + /** + *

    Errors that occurred while making an authorization decision. For example, a + * policy might reference an entity or attribute that doesn't exist in the + * request.

    + */ + inline BatchIsAuthorizedWithTokenOutputItem& AddErrors(EvaluationErrorItem&& value) { m_errorsHasBeenSet = true; m_errors.push_back(std::move(value)); return *this; } + + private: + + BatchIsAuthorizedWithTokenInputItem m_request; + bool m_requestHasBeenSet = false; + + Decision m_decision; + bool m_decisionHasBeenSet = false; + + Aws::Vector m_determiningPolicies; + bool m_determiningPoliciesHasBeenSet = false; + + Aws::Vector m_errors; + bool m_errorsHasBeenSet = false; + }; + +} // namespace Model +} // namespace VerifiedPermissions +} // namespace Aws diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/BatchIsAuthorizedWithTokenRequest.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/BatchIsAuthorizedWithTokenRequest.h new file mode 100644 index 00000000000..b6e708027a7 --- /dev/null +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/BatchIsAuthorizedWithTokenRequest.h @@ -0,0 +1,412 @@ +/** + * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. + * SPDX-License-Identifier: Apache-2.0. + */ + +#pragma once +#include +#include +#include +#include +#include +#include +#include + +namespace Aws +{ +namespace VerifiedPermissions +{ +namespace Model +{ + + /** + */ + class BatchIsAuthorizedWithTokenRequest : public VerifiedPermissionsRequest + { + public: + AWS_VERIFIEDPERMISSIONS_API BatchIsAuthorizedWithTokenRequest(); + + // Service request name is the Operation name which will send this request out, + // each operation should has unique request name, so that we can get operation's name from this request. + // Note: this is not true for response, multiple operations may have the same response name, + // so we can not get operation's name from response. + inline virtual const char* GetServiceRequestName() const override { return "BatchIsAuthorizedWithToken"; } + + AWS_VERIFIEDPERMISSIONS_API Aws::String SerializePayload() const override; + + AWS_VERIFIEDPERMISSIONS_API Aws::Http::HeaderValueCollection GetRequestSpecificHeaders() const override; + + + /** + *

    Specifies the ID of the policy store. Policies in this policy store will be + * used to make an authorization decision for the input.

    + */ + inline const Aws::String& GetPolicyStoreId() const{ return m_policyStoreId; } + + /** + *

    Specifies the ID of the policy store. Policies in this policy store will be + * used to make an authorization decision for the input.

    + */ + inline bool PolicyStoreIdHasBeenSet() const { return m_policyStoreIdHasBeenSet; } + + /** + *

    Specifies the ID of the policy store. Policies in this policy store will be + * used to make an authorization decision for the input.

    + */ + inline void SetPolicyStoreId(const Aws::String& value) { m_policyStoreIdHasBeenSet = true; m_policyStoreId = value; } + + /** + *

    Specifies the ID of the policy store. Policies in this policy store will be + * used to make an authorization decision for the input.

    + */ + inline void SetPolicyStoreId(Aws::String&& value) { m_policyStoreIdHasBeenSet = true; m_policyStoreId = std::move(value); } + + /** + *

    Specifies the ID of the policy store. Policies in this policy store will be + * used to make an authorization decision for the input.

    + */ + inline void SetPolicyStoreId(const char* value) { m_policyStoreIdHasBeenSet = true; m_policyStoreId.assign(value); } + + /** + *

    Specifies the ID of the policy store. Policies in this policy store will be + * used to make an authorization decision for the input.

    + */ + inline BatchIsAuthorizedWithTokenRequest& WithPolicyStoreId(const Aws::String& value) { SetPolicyStoreId(value); return *this;} + + /** + *

    Specifies the ID of the policy store. Policies in this policy store will be + * used to make an authorization decision for the input.

    + */ + inline BatchIsAuthorizedWithTokenRequest& WithPolicyStoreId(Aws::String&& value) { SetPolicyStoreId(std::move(value)); return *this;} + + /** + *

    Specifies the ID of the policy store. Policies in this policy store will be + * used to make an authorization decision for the input.

    + */ + inline BatchIsAuthorizedWithTokenRequest& WithPolicyStoreId(const char* value) { SetPolicyStoreId(value); return *this;} + + + /** + *

    Specifies an identity (ID) token for the principal that you want to authorize + * in each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an ID token. Verified Permissions returns an error if the token_use + * claim in the submitted token isn't id.

    + */ + inline const Aws::String& GetIdentityToken() const{ return m_identityToken; } + + /** + *

    Specifies an identity (ID) token for the principal that you want to authorize + * in each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an ID token. Verified Permissions returns an error if the token_use + * claim in the submitted token isn't id.

    + */ + inline bool IdentityTokenHasBeenSet() const { return m_identityTokenHasBeenSet; } + + /** + *

    Specifies an identity (ID) token for the principal that you want to authorize + * in each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an ID token. Verified Permissions returns an error if the token_use + * claim in the submitted token isn't id.

    + */ + inline void SetIdentityToken(const Aws::String& value) { m_identityTokenHasBeenSet = true; m_identityToken = value; } + + /** + *

    Specifies an identity (ID) token for the principal that you want to authorize + * in each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an ID token. Verified Permissions returns an error if the token_use + * claim in the submitted token isn't id.

    + */ + inline void SetIdentityToken(Aws::String&& value) { m_identityTokenHasBeenSet = true; m_identityToken = std::move(value); } + + /** + *

    Specifies an identity (ID) token for the principal that you want to authorize + * in each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an ID token. Verified Permissions returns an error if the token_use + * claim in the submitted token isn't id.

    + */ + inline void SetIdentityToken(const char* value) { m_identityTokenHasBeenSet = true; m_identityToken.assign(value); } + + /** + *

    Specifies an identity (ID) token for the principal that you want to authorize + * in each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an ID token. Verified Permissions returns an error if the token_use + * claim in the submitted token isn't id.

    + */ + inline BatchIsAuthorizedWithTokenRequest& WithIdentityToken(const Aws::String& value) { SetIdentityToken(value); return *this;} + + /** + *

    Specifies an identity (ID) token for the principal that you want to authorize + * in each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an ID token. Verified Permissions returns an error if the token_use + * claim in the submitted token isn't id.

    + */ + inline BatchIsAuthorizedWithTokenRequest& WithIdentityToken(Aws::String&& value) { SetIdentityToken(std::move(value)); return *this;} + + /** + *

    Specifies an identity (ID) token for the principal that you want to authorize + * in each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an ID token. Verified Permissions returns an error if the token_use + * claim in the submitted token isn't id.

    + */ + inline BatchIsAuthorizedWithTokenRequest& WithIdentityToken(const char* value) { SetIdentityToken(value); return *this;} + + + /** + *

    Specifies an access token for the principal that you want to authorize in + * each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an access token. Verified Permissions returns an error if the + * token_use claim in the submitted token isn't + * access.

    + */ + inline const Aws::String& GetAccessToken() const{ return m_accessToken; } + + /** + *

    Specifies an access token for the principal that you want to authorize in + * each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an access token. Verified Permissions returns an error if the + * token_use claim in the submitted token isn't + * access.

    + */ + inline bool AccessTokenHasBeenSet() const { return m_accessTokenHasBeenSet; } + + /** + *

    Specifies an access token for the principal that you want to authorize in + * each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an access token. Verified Permissions returns an error if the + * token_use claim in the submitted token isn't + * access.

    + */ + inline void SetAccessToken(const Aws::String& value) { m_accessTokenHasBeenSet = true; m_accessToken = value; } + + /** + *

    Specifies an access token for the principal that you want to authorize in + * each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an access token. Verified Permissions returns an error if the + * token_use claim in the submitted token isn't + * access.

    + */ + inline void SetAccessToken(Aws::String&& value) { m_accessTokenHasBeenSet = true; m_accessToken = std::move(value); } + + /** + *

    Specifies an access token for the principal that you want to authorize in + * each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an access token. Verified Permissions returns an error if the + * token_use claim in the submitted token isn't + * access.

    + */ + inline void SetAccessToken(const char* value) { m_accessTokenHasBeenSet = true; m_accessToken.assign(value); } + + /** + *

    Specifies an access token for the principal that you want to authorize in + * each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an access token. Verified Permissions returns an error if the + * token_use claim in the submitted token isn't + * access.

    + */ + inline BatchIsAuthorizedWithTokenRequest& WithAccessToken(const Aws::String& value) { SetAccessToken(value); return *this;} + + /** + *

    Specifies an access token for the principal that you want to authorize in + * each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an access token. Verified Permissions returns an error if the + * token_use claim in the submitted token isn't + * access.

    + */ + inline BatchIsAuthorizedWithTokenRequest& WithAccessToken(Aws::String&& value) { SetAccessToken(std::move(value)); return *this;} + + /** + *

    Specifies an access token for the principal that you want to authorize in + * each request. This token is provided to you by the identity provider (IdP) + * associated with the specified identity source. You must specify either an + * accessToken, an identityToken, or both.

    Must be + * an access token. Verified Permissions returns an error if the + * token_use claim in the submitted token isn't + * access.

    + */ + inline BatchIsAuthorizedWithTokenRequest& WithAccessToken(const char* value) { SetAccessToken(value); return *this;} + + + /** + *

    Specifies the list of resources and their associated attributes that Verified + * Permissions can examine when evaluating the policies.

    You + * can't include principals in this parameter, only resource and action entities. + * This parameter can't include any entities of a type that matches the user or + * group entity types that you defined in your identity source.

    • + *

      The BatchIsAuthorizedWithToken operation takes principal + * attributes from only the identityToken or + * accessToken passed to the operation.

    • For action + * entities, you can include only their Identifier and + * EntityType.

    + */ + inline const EntitiesDefinition& GetEntities() const{ return m_entities; } + + /** + *

    Specifies the list of resources and their associated attributes that Verified + * Permissions can examine when evaluating the policies.

    You + * can't include principals in this parameter, only resource and action entities. + * This parameter can't include any entities of a type that matches the user or + * group entity types that you defined in your identity source.

    • + *

      The BatchIsAuthorizedWithToken operation takes principal + * attributes from only the identityToken or + * accessToken passed to the operation.

    • For action + * entities, you can include only their Identifier and + * EntityType.

    + */ + inline bool EntitiesHasBeenSet() const { return m_entitiesHasBeenSet; } + + /** + *

    Specifies the list of resources and their associated attributes that Verified + * Permissions can examine when evaluating the policies.

    You + * can't include principals in this parameter, only resource and action entities. + * This parameter can't include any entities of a type that matches the user or + * group entity types that you defined in your identity source.

    • + *

      The BatchIsAuthorizedWithToken operation takes principal + * attributes from only the identityToken or + * accessToken passed to the operation.

    • For action + * entities, you can include only their Identifier and + * EntityType.

    + */ + inline void SetEntities(const EntitiesDefinition& value) { m_entitiesHasBeenSet = true; m_entities = value; } + + /** + *

    Specifies the list of resources and their associated attributes that Verified + * Permissions can examine when evaluating the policies.

    You + * can't include principals in this parameter, only resource and action entities. + * This parameter can't include any entities of a type that matches the user or + * group entity types that you defined in your identity source.

    • + *

      The BatchIsAuthorizedWithToken operation takes principal + * attributes from only the identityToken or + * accessToken passed to the operation.

    • For action + * entities, you can include only their Identifier and + * EntityType.

    + */ + inline void SetEntities(EntitiesDefinition&& value) { m_entitiesHasBeenSet = true; m_entities = std::move(value); } + + /** + *

    Specifies the list of resources and their associated attributes that Verified + * Permissions can examine when evaluating the policies.

    You + * can't include principals in this parameter, only resource and action entities. + * This parameter can't include any entities of a type that matches the user or + * group entity types that you defined in your identity source.

    • + *

      The BatchIsAuthorizedWithToken operation takes principal + * attributes from only the identityToken or + * accessToken passed to the operation.

    • For action + * entities, you can include only their Identifier and + * EntityType.

    + */ + inline BatchIsAuthorizedWithTokenRequest& WithEntities(const EntitiesDefinition& value) { SetEntities(value); return *this;} + + /** + *

    Specifies the list of resources and their associated attributes that Verified + * Permissions can examine when evaluating the policies.

    You + * can't include principals in this parameter, only resource and action entities. + * This parameter can't include any entities of a type that matches the user or + * group entity types that you defined in your identity source.

    • + *

      The BatchIsAuthorizedWithToken operation takes principal + * attributes from only the identityToken or + * accessToken passed to the operation.

    • For action + * entities, you can include only their Identifier and + * EntityType.

    + */ + inline BatchIsAuthorizedWithTokenRequest& WithEntities(EntitiesDefinition&& value) { SetEntities(std::move(value)); return *this;} + + + /** + *

    An array of up to 30 requests that you want Verified Permissions to + * evaluate.

    + */ + inline const Aws::Vector& GetRequests() const{ return m_requests; } + + /** + *

    An array of up to 30 requests that you want Verified Permissions to + * evaluate.

    + */ + inline bool RequestsHasBeenSet() const { return m_requestsHasBeenSet; } + + /** + *

    An array of up to 30 requests that you want Verified Permissions to + * evaluate.

    + */ + inline void SetRequests(const Aws::Vector& value) { m_requestsHasBeenSet = true; m_requests = value; } + + /** + *

    An array of up to 30 requests that you want Verified Permissions to + * evaluate.

    + */ + inline void SetRequests(Aws::Vector&& value) { m_requestsHasBeenSet = true; m_requests = std::move(value); } + + /** + *

    An array of up to 30 requests that you want Verified Permissions to + * evaluate.

    + */ + inline BatchIsAuthorizedWithTokenRequest& WithRequests(const Aws::Vector& value) { SetRequests(value); return *this;} + + /** + *

    An array of up to 30 requests that you want Verified Permissions to + * evaluate.

    + */ + inline BatchIsAuthorizedWithTokenRequest& WithRequests(Aws::Vector&& value) { SetRequests(std::move(value)); return *this;} + + /** + *

    An array of up to 30 requests that you want Verified Permissions to + * evaluate.

    + */ + inline BatchIsAuthorizedWithTokenRequest& AddRequests(const BatchIsAuthorizedWithTokenInputItem& value) { m_requestsHasBeenSet = true; m_requests.push_back(value); return *this; } + + /** + *

    An array of up to 30 requests that you want Verified Permissions to + * evaluate.

    + */ + inline BatchIsAuthorizedWithTokenRequest& AddRequests(BatchIsAuthorizedWithTokenInputItem&& value) { m_requestsHasBeenSet = true; m_requests.push_back(std::move(value)); return *this; } + + private: + + Aws::String m_policyStoreId; + bool m_policyStoreIdHasBeenSet = false; + + Aws::String m_identityToken; + bool m_identityTokenHasBeenSet = false; + + Aws::String m_accessToken; + bool m_accessTokenHasBeenSet = false; + + EntitiesDefinition m_entities; + bool m_entitiesHasBeenSet = false; + + Aws::Vector m_requests; + bool m_requestsHasBeenSet = false; + }; + +} // namespace Model +} // namespace VerifiedPermissions +} // namespace Aws diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/BatchIsAuthorizedWithTokenResult.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/BatchIsAuthorizedWithTokenResult.h new file mode 100644 index 00000000000..16dda501664 --- /dev/null +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/BatchIsAuthorizedWithTokenResult.h @@ -0,0 +1,139 @@ +/** + * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. + * SPDX-License-Identifier: Apache-2.0. + */ + +#pragma once +#include +#include +#include +#include +#include +#include + +namespace Aws +{ +template +class AmazonWebServiceResult; + +namespace Utils +{ +namespace Json +{ + class JsonValue; +} // namespace Json +} // namespace Utils +namespace VerifiedPermissions +{ +namespace Model +{ + class BatchIsAuthorizedWithTokenResult + { + public: + AWS_VERIFIEDPERMISSIONS_API BatchIsAuthorizedWithTokenResult(); + AWS_VERIFIEDPERMISSIONS_API BatchIsAuthorizedWithTokenResult(const Aws::AmazonWebServiceResult& result); + AWS_VERIFIEDPERMISSIONS_API BatchIsAuthorizedWithTokenResult& operator=(const Aws::AmazonWebServiceResult& result); + + + /** + *

    The identifier of the principal in the ID or access token.

    + */ + inline const EntityIdentifier& GetPrincipal() const{ return m_principal; } + + /** + *

    The identifier of the principal in the ID or access token.

    + */ + inline void SetPrincipal(const EntityIdentifier& value) { m_principal = value; } + + /** + *

    The identifier of the principal in the ID or access token.

    + */ + inline void SetPrincipal(EntityIdentifier&& value) { m_principal = std::move(value); } + + /** + *

    The identifier of the principal in the ID or access token.

    + */ + inline BatchIsAuthorizedWithTokenResult& WithPrincipal(const EntityIdentifier& value) { SetPrincipal(value); return *this;} + + /** + *

    The identifier of the principal in the ID or access token.

    + */ + inline BatchIsAuthorizedWithTokenResult& WithPrincipal(EntityIdentifier&& value) { SetPrincipal(std::move(value)); return *this;} + + + /** + *

    A series of Allow or Deny decisions for each + * request, and the policies that produced them.

    + */ + inline const Aws::Vector& GetResults() const{ return m_results; } + + /** + *

    A series of Allow or Deny decisions for each + * request, and the policies that produced them.

    + */ + inline void SetResults(const Aws::Vector& value) { m_results = value; } + + /** + *

    A series of Allow or Deny decisions for each + * request, and the policies that produced them.

    + */ + inline void SetResults(Aws::Vector&& value) { m_results = std::move(value); } + + /** + *

    A series of Allow or Deny decisions for each + * request, and the policies that produced them.

    + */ + inline BatchIsAuthorizedWithTokenResult& WithResults(const Aws::Vector& value) { SetResults(value); return *this;} + + /** + *

    A series of Allow or Deny decisions for each + * request, and the policies that produced them.

    + */ + inline BatchIsAuthorizedWithTokenResult& WithResults(Aws::Vector&& value) { SetResults(std::move(value)); return *this;} + + /** + *

    A series of Allow or Deny decisions for each + * request, and the policies that produced them.

    + */ + inline BatchIsAuthorizedWithTokenResult& AddResults(const BatchIsAuthorizedWithTokenOutputItem& value) { m_results.push_back(value); return *this; } + + /** + *

    A series of Allow or Deny decisions for each + * request, and the policies that produced them.

    + */ + inline BatchIsAuthorizedWithTokenResult& AddResults(BatchIsAuthorizedWithTokenOutputItem&& value) { m_results.push_back(std::move(value)); return *this; } + + + + inline const Aws::String& GetRequestId() const{ return m_requestId; } + + + inline void SetRequestId(const Aws::String& value) { m_requestId = value; } + + + inline void SetRequestId(Aws::String&& value) { m_requestId = std::move(value); } + + + inline void SetRequestId(const char* value) { m_requestId.assign(value); } + + + inline BatchIsAuthorizedWithTokenResult& WithRequestId(const Aws::String& value) { SetRequestId(value); return *this;} + + + inline BatchIsAuthorizedWithTokenResult& WithRequestId(Aws::String&& value) { SetRequestId(std::move(value)); return *this;} + + + inline BatchIsAuthorizedWithTokenResult& WithRequestId(const char* value) { SetRequestId(value); return *this;} + + private: + + EntityIdentifier m_principal; + + Aws::Vector m_results; + + Aws::String m_requestId; + }; + +} // namespace Model +} // namespace VerifiedPermissions +} // namespace Aws diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoGroupConfiguration.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoGroupConfiguration.h index 83d961c2fc9..8528f39b212 100644 --- a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoGroupConfiguration.h +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoGroupConfiguration.h @@ -24,8 +24,8 @@ namespace Model { /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    This data type is part of a A list of user groups and entities from an Amazon Cognito user pool identity + * source.

    This data type is part of a CognitoUserPoolConfiguration * structure and is a request parameter in CreateIdentitySource.

    See diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoGroupConfigurationDetail.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoGroupConfigurationDetail.h index 43403c3d431..b6243353f3b 100644 --- a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoGroupConfigurationDetail.h +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoGroupConfigurationDetail.h @@ -24,8 +24,8 @@ namespace Model { /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    This data type is part of an A list of user groups and entities from an Amazon Cognito user pool identity + * source.

    This data type is part of an CognitoUserPoolConfigurationDetail * structure and is a response parameter to GetIdentitySource.

    See diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoGroupConfigurationItem.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoGroupConfigurationItem.h index 3605241ea1c..c5a1470da6d 100644 --- a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoGroupConfigurationItem.h +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoGroupConfigurationItem.h @@ -24,8 +24,8 @@ namespace Model { /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    This data type is part of an A list of user groups and entities from an Amazon Cognito user pool identity + * source.

    This data type is part of an CognitoUserPoolConfigurationItem * structure and is a response parameter to ListIdentitySources.

    See diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoUserPoolConfiguration.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoUserPoolConfiguration.h index 74072857b25..9e619e05000 100644 --- a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoUserPoolConfiguration.h +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoUserPoolConfiguration.h @@ -33,8 +33,7 @@ namespace Model * structure that is used as a parameter to CreateIdentitySource.

    *

    Example:"CognitoUserPoolConfiguration":{"UserPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","ClientIds": - * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": - * "MyCorp::Group"}}

    See Also:

    See Also:

    AWS * API Reference

    */ @@ -193,38 +192,38 @@ namespace Model /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline const CognitoGroupConfiguration& GetGroupConfiguration() const{ return m_groupConfiguration; } /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline bool GroupConfigurationHasBeenSet() const { return m_groupConfigurationHasBeenSet; } /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline void SetGroupConfiguration(const CognitoGroupConfiguration& value) { m_groupConfigurationHasBeenSet = true; m_groupConfiguration = value; } /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline void SetGroupConfiguration(CognitoGroupConfiguration&& value) { m_groupConfigurationHasBeenSet = true; m_groupConfiguration = std::move(value); } /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline CognitoUserPoolConfiguration& WithGroupConfiguration(const CognitoGroupConfiguration& value) { SetGroupConfiguration(value); return *this;} /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline CognitoUserPoolConfiguration& WithGroupConfiguration(CognitoGroupConfiguration&& value) { SetGroupConfiguration(std::move(value)); return *this;} diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoUserPoolConfigurationDetail.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoUserPoolConfigurationDetail.h index f8764ba0842..ac0f33e7974 100644 --- a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoUserPoolConfigurationDetail.h +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoUserPoolConfigurationDetail.h @@ -33,8 +33,7 @@ namespace Model * structure that is part of the response to GetIdentitySource.

    *

    Example:"CognitoUserPoolConfiguration":{"UserPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","ClientIds": - * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": - * "MyCorp::Group"}}

    See Also:

    See Also:

    AWS * API Reference

    */ @@ -258,38 +257,38 @@ namespace Model /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline const CognitoGroupConfigurationDetail& GetGroupConfiguration() const{ return m_groupConfiguration; } /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline bool GroupConfigurationHasBeenSet() const { return m_groupConfigurationHasBeenSet; } /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline void SetGroupConfiguration(const CognitoGroupConfigurationDetail& value) { m_groupConfigurationHasBeenSet = true; m_groupConfiguration = value; } /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline void SetGroupConfiguration(CognitoGroupConfigurationDetail&& value) { m_groupConfigurationHasBeenSet = true; m_groupConfiguration = std::move(value); } /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline CognitoUserPoolConfigurationDetail& WithGroupConfiguration(const CognitoGroupConfigurationDetail& value) { SetGroupConfiguration(value); return *this;} /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline CognitoUserPoolConfigurationDetail& WithGroupConfiguration(CognitoGroupConfigurationDetail&& value) { SetGroupConfiguration(std::move(value)); return *this;} diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoUserPoolConfigurationItem.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoUserPoolConfigurationItem.h index 5a7f9a09dcc..3503c18ce98 100644 --- a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoUserPoolConfigurationItem.h +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/CognitoUserPoolConfigurationItem.h @@ -33,8 +33,7 @@ namespace Model * structure that is part of the response to ListIdentitySources.

    *

    Example:"CognitoUserPoolConfiguration":{"UserPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","ClientIds": - * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": - * "MyCorp::Group"}}

    See Also:

    See Also:

    AWS * API Reference

    */ @@ -258,38 +257,38 @@ namespace Model /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline const CognitoGroupConfigurationItem& GetGroupConfiguration() const{ return m_groupConfiguration; } /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline bool GroupConfigurationHasBeenSet() const { return m_groupConfigurationHasBeenSet; } /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline void SetGroupConfiguration(const CognitoGroupConfigurationItem& value) { m_groupConfigurationHasBeenSet = true; m_groupConfiguration = value; } /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline void SetGroupConfiguration(CognitoGroupConfigurationItem&& value) { m_groupConfigurationHasBeenSet = true; m_groupConfiguration = std::move(value); } /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline CognitoUserPoolConfigurationItem& WithGroupConfiguration(const CognitoGroupConfigurationItem& value) { SetGroupConfiguration(value); return *this;} /** - *

    The type of entity that a policy store maps to groups from an Amazon Cognito - * user pool identity source.

    + *

    The configuration of the user groups from an Amazon Cognito user pool + * identity source.

    */ inline CognitoUserPoolConfigurationItem& WithGroupConfiguration(CognitoGroupConfigurationItem&& value) { SetGroupConfiguration(std::move(value)); return *this;} diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/Configuration.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/Configuration.h index 0f83b451706..6e1a26b9d40 100644 --- a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/Configuration.h +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/Configuration.h @@ -26,10 +26,9 @@ namespace Model /** *

    Contains configuration information used when creating a new identity * source.

    At this time, the only valid member of this structure is a - * Amazon Cognito user pool configuration.

    Specifies a - * userPoolArn, a groupConfiguration, and a - * ClientId.

    This data type is used as a request - * parameter for the

    You must specify a + * userPoolArn, and optionally, a ClientId.

    + *

    This data type is used as a request parameter for the CreateIdentitySource * operation.

    See Also:

    AWS diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/ConfigurationDetail.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/ConfigurationDetail.h index 429910cd6c1..3b047fa3bd1 100644 --- a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/ConfigurationDetail.h +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/ConfigurationDetail.h @@ -45,9 +45,8 @@ namespace Model * Permissions can use as a source of authenticated identities as entities. It * specifies the Amazon - * Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity - * that you want to assign to user groups, and one or more application client - * IDs.

    Example: + * Resource Name (ARN) of a Amazon Cognito user pool and one or more + * application client IDs.

    Example: * "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": * "MyCorp::Group"}}}

    @@ -59,9 +58,8 @@ namespace Model * Permissions can use as a source of authenticated identities as entities. It * specifies the Amazon - * Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity - * that you want to assign to user groups, and one or more application client - * IDs.

    Example: + * Resource Name (ARN) of a Amazon Cognito user pool and one or more + * application client IDs.

    Example: * "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": * "MyCorp::Group"}}}

    @@ -73,9 +71,8 @@ namespace Model * Permissions can use as a source of authenticated identities as entities. It * specifies the Amazon - * Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity - * that you want to assign to user groups, and one or more application client - * IDs.

    Example: + * Resource Name (ARN) of a Amazon Cognito user pool and one or more + * application client IDs.

    Example: * "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": * "MyCorp::Group"}}}

    @@ -87,9 +84,8 @@ namespace Model * Permissions can use as a source of authenticated identities as entities. It * specifies the Amazon - * Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity - * that you want to assign to user groups, and one or more application client - * IDs.

    Example: + * Resource Name (ARN) of a Amazon Cognito user pool and one or more + * application client IDs.

    Example: * "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": * "MyCorp::Group"}}}

    @@ -101,9 +97,8 @@ namespace Model * Permissions can use as a source of authenticated identities as entities. It * specifies the Amazon - * Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity - * that you want to assign to user groups, and one or more application client - * IDs.

    Example: + * Resource Name (ARN) of a Amazon Cognito user pool and one or more + * application client IDs.

    Example: * "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": * "MyCorp::Group"}}}

    @@ -115,9 +110,8 @@ namespace Model * Permissions can use as a source of authenticated identities as entities. It * specifies the Amazon - * Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity - * that you want to assign to user groups, and one or more application client - * IDs.

    Example: + * Resource Name (ARN) of a Amazon Cognito user pool and one or more + * application client IDs.

    Example: * "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": * "MyCorp::Group"}}}

    diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/ConfigurationItem.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/ConfigurationItem.h index 1b219c3e434..f647f15d9a6 100644 --- a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/ConfigurationItem.h +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/ConfigurationItem.h @@ -45,9 +45,8 @@ namespace Model * Permissions can use as a source of authenticated identities as entities. It * specifies the Amazon - * Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity - * that you want to assign to user groups, and one or more application client - * IDs.

    Example: + * Resource Name (ARN) of a Amazon Cognito user pool and one or more + * application client IDs.

    Example: * "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": * "MyCorp::Group"}}}

    @@ -59,9 +58,8 @@ namespace Model * Permissions can use as a source of authenticated identities as entities. It * specifies the Amazon - * Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity - * that you want to assign to user groups, and one or more application client - * IDs.

    Example: + * Resource Name (ARN) of a Amazon Cognito user pool and one or more + * application client IDs.

    Example: * "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": * "MyCorp::Group"}}}

    @@ -73,9 +71,8 @@ namespace Model * Permissions can use as a source of authenticated identities as entities. It * specifies the Amazon - * Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity - * that you want to assign to user groups, and one or more application client - * IDs.

    Example: + * Resource Name (ARN) of a Amazon Cognito user pool and one or more + * application client IDs.

    Example: * "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": * "MyCorp::Group"}}}

    @@ -87,9 +84,8 @@ namespace Model * Permissions can use as a source of authenticated identities as entities. It * specifies the Amazon - * Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity - * that you want to assign to user groups, and one or more application client - * IDs.

    Example: + * Resource Name (ARN) of a Amazon Cognito user pool and one or more + * application client IDs.

    Example: * "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": * "MyCorp::Group"}}}

    @@ -101,9 +97,8 @@ namespace Model * Permissions can use as a source of authenticated identities as entities. It * specifies the Amazon - * Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity - * that you want to assign to user groups, and one or more application client - * IDs.

    Example: + * Resource Name (ARN) of a Amazon Cognito user pool and one or more + * application client IDs.

    Example: * "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": * "MyCorp::Group"}}}

    @@ -115,9 +110,8 @@ namespace Model * Permissions can use as a source of authenticated identities as entities. It * specifies the Amazon - * Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity - * that you want to assign to user groups, and one or more application client - * IDs.

    Example: + * Resource Name (ARN) of a Amazon Cognito user pool and one or more + * application client IDs.

    Example: * "configuration":{"cognitoUserPoolConfiguration":{"userPoolArn":"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5","clientIds": * ["a1b2c3d4e5f6g7h8i9j0kalbmc"],"groupConfiguration": {"groupEntityType": * "MyCorp::Group"}}}

    diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/IsAuthorizedWithTokenRequest.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/IsAuthorizedWithTokenRequest.h index 1c66af7a3b0..860a3bae0ab 100644 --- a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/IsAuthorizedWithTokenRequest.h +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/IsAuthorizedWithTokenRequest.h @@ -362,73 +362,85 @@ namespace Model /** *

    Specifies the list of resources and their associated attributes that Verified - * Permissions can examine when evaluating the policies.

    You can - * include only resource and action entities in this parameter; you can't include - * principals.

    • The IsAuthorizedWithToken operation - * takes principal attributes from only the - * identityToken or accessToken passed to the - * operation.

    • For action entities, you can include only their - * Identifier and EntityType.

    + * Permissions can examine when evaluating the policies.

    You + * can't include principals in this parameter, only resource and action entities. + * This parameter can't include any entities of a type that matches the user or + * group entity types that you defined in your identity source.

    • + *

      The IsAuthorizedWithToken operation takes principal attributes + * from only the identityToken or + * accessToken passed to the operation.

    • For action + * entities, you can include only their Identifier and + * EntityType.

    */ inline const EntitiesDefinition& GetEntities() const{ return m_entities; } /** *

    Specifies the list of resources and their associated attributes that Verified - * Permissions can examine when evaluating the policies.

    You can - * include only resource and action entities in this parameter; you can't include - * principals.

    • The IsAuthorizedWithToken operation - * takes principal attributes from only the - * identityToken or accessToken passed to the - * operation.

    • For action entities, you can include only their - * Identifier and EntityType.

    + * Permissions can examine when evaluating the policies.

    You + * can't include principals in this parameter, only resource and action entities. + * This parameter can't include any entities of a type that matches the user or + * group entity types that you defined in your identity source.

    • + *

      The IsAuthorizedWithToken operation takes principal attributes + * from only the identityToken or + * accessToken passed to the operation.

    • For action + * entities, you can include only their Identifier and + * EntityType.

    */ inline bool EntitiesHasBeenSet() const { return m_entitiesHasBeenSet; } /** *

    Specifies the list of resources and their associated attributes that Verified - * Permissions can examine when evaluating the policies.

    You can - * include only resource and action entities in this parameter; you can't include - * principals.

    • The IsAuthorizedWithToken operation - * takes principal attributes from only the - * identityToken or accessToken passed to the - * operation.

    • For action entities, you can include only their - * Identifier and EntityType.

    + * Permissions can examine when evaluating the policies.

    You + * can't include principals in this parameter, only resource and action entities. + * This parameter can't include any entities of a type that matches the user or + * group entity types that you defined in your identity source.

    • + *

      The IsAuthorizedWithToken operation takes principal attributes + * from only the identityToken or + * accessToken passed to the operation.

    • For action + * entities, you can include only their Identifier and + * EntityType.

    */ inline void SetEntities(const EntitiesDefinition& value) { m_entitiesHasBeenSet = true; m_entities = value; } /** *

    Specifies the list of resources and their associated attributes that Verified - * Permissions can examine when evaluating the policies.

    You can - * include only resource and action entities in this parameter; you can't include - * principals.

    • The IsAuthorizedWithToken operation - * takes principal attributes from only the - * identityToken or accessToken passed to the - * operation.

    • For action entities, you can include only their - * Identifier and EntityType.

    + * Permissions can examine when evaluating the policies.

    You + * can't include principals in this parameter, only resource and action entities. + * This parameter can't include any entities of a type that matches the user or + * group entity types that you defined in your identity source.

    • + *

      The IsAuthorizedWithToken operation takes principal attributes + * from only the identityToken or + * accessToken passed to the operation.

    • For action + * entities, you can include only their Identifier and + * EntityType.

    */ inline void SetEntities(EntitiesDefinition&& value) { m_entitiesHasBeenSet = true; m_entities = std::move(value); } /** *

    Specifies the list of resources and their associated attributes that Verified - * Permissions can examine when evaluating the policies.

    You can - * include only resource and action entities in this parameter; you can't include - * principals.

    • The IsAuthorizedWithToken operation - * takes principal attributes from only the - * identityToken or accessToken passed to the - * operation.

    • For action entities, you can include only their - * Identifier and EntityType.

    + * Permissions can examine when evaluating the policies.

    You + * can't include principals in this parameter, only resource and action entities. + * This parameter can't include any entities of a type that matches the user or + * group entity types that you defined in your identity source.

    • + *

      The IsAuthorizedWithToken operation takes principal attributes + * from only the identityToken or + * accessToken passed to the operation.

    • For action + * entities, you can include only their Identifier and + * EntityType.

    */ inline IsAuthorizedWithTokenRequest& WithEntities(const EntitiesDefinition& value) { SetEntities(value); return *this;} /** *

    Specifies the list of resources and their associated attributes that Verified - * Permissions can examine when evaluating the policies.

    You can - * include only resource and action entities in this parameter; you can't include - * principals.

    • The IsAuthorizedWithToken operation - * takes principal attributes from only the - * identityToken or accessToken passed to the - * operation.

    • For action entities, you can include only their - * Identifier and EntityType.

    + * Permissions can examine when evaluating the policies.

    You + * can't include principals in this parameter, only resource and action entities. + * This parameter can't include any entities of a type that matches the user or + * group entity types that you defined in your identity source.

    • + *

      The IsAuthorizedWithToken operation takes principal attributes + * from only the identityToken or + * accessToken passed to the operation.

    • For action + * entities, you can include only their Identifier and + * EntityType.

    */ inline IsAuthorizedWithTokenRequest& WithEntities(EntitiesDefinition&& value) { SetEntities(std::move(value)); return *this;} diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/UpdateCognitoGroupConfiguration.h b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/UpdateCognitoGroupConfiguration.h index f6265d6cf6d..a028f6dd8a8 100644 --- a/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/UpdateCognitoGroupConfiguration.h +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/include/aws/verifiedpermissions/model/UpdateCognitoGroupConfiguration.h @@ -24,7 +24,7 @@ namespace Model { /** - *

    The user group entities from an Amazon Cognito user pool identity + *

    A list of user groups and entities from an Amazon Cognito user pool identity * source.

    See Also:

    AWS * API Reference

    diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/source/VerifiedPermissionsClient.cpp b/generated/src/aws-cpp-sdk-verifiedpermissions/source/VerifiedPermissionsClient.cpp index 8e624e7a33f..088853a08ec 100644 --- a/generated/src/aws-cpp-sdk-verifiedpermissions/source/VerifiedPermissionsClient.cpp +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/source/VerifiedPermissionsClient.cpp @@ -22,6 +22,7 @@ #include #include #include +#include #include #include #include @@ -213,6 +214,32 @@ BatchIsAuthorizedOutcome VerifiedPermissionsClient::BatchIsAuthorized(const Batc {{TracingUtils::SMITHY_METHOD_DIMENSION, request.GetServiceRequestName()}, {TracingUtils::SMITHY_SERVICE_DIMENSION, this->GetServiceClientName()}}); } +BatchIsAuthorizedWithTokenOutcome VerifiedPermissionsClient::BatchIsAuthorizedWithToken(const BatchIsAuthorizedWithTokenRequest& request) const +{ + AWS_OPERATION_GUARD(BatchIsAuthorizedWithToken); + AWS_OPERATION_CHECK_PTR(m_endpointProvider, BatchIsAuthorizedWithToken, CoreErrors, CoreErrors::ENDPOINT_RESOLUTION_FAILURE); + AWS_OPERATION_CHECK_PTR(m_telemetryProvider, BatchIsAuthorizedWithToken, CoreErrors, CoreErrors::NOT_INITIALIZED); + auto tracer = m_telemetryProvider->getTracer(this->GetServiceClientName(), {}); + auto meter = m_telemetryProvider->getMeter(this->GetServiceClientName(), {}); + AWS_OPERATION_CHECK_PTR(meter, BatchIsAuthorizedWithToken, CoreErrors, CoreErrors::NOT_INITIALIZED); + auto span = tracer->CreateSpan(Aws::String(this->GetServiceClientName()) + ".BatchIsAuthorizedWithToken", + {{ TracingUtils::SMITHY_METHOD_DIMENSION, request.GetServiceRequestName() }, { TracingUtils::SMITHY_SERVICE_DIMENSION, this->GetServiceClientName() }, { TracingUtils::SMITHY_SYSTEM_DIMENSION, TracingUtils::SMITHY_METHOD_AWS_VALUE }}, + smithy::components::tracing::SpanKind::CLIENT); + return TracingUtils::MakeCallWithTiming( + [&]()-> BatchIsAuthorizedWithTokenOutcome { + auto endpointResolutionOutcome = TracingUtils::MakeCallWithTiming( + [&]() -> ResolveEndpointOutcome { return m_endpointProvider->ResolveEndpoint(request.GetEndpointContextParams()); }, + TracingUtils::SMITHY_CLIENT_ENDPOINT_RESOLUTION_METRIC, + *meter, + {{TracingUtils::SMITHY_METHOD_DIMENSION, request.GetServiceRequestName()}, {TracingUtils::SMITHY_SERVICE_DIMENSION, this->GetServiceClientName()}}); + AWS_OPERATION_CHECK_SUCCESS(endpointResolutionOutcome, BatchIsAuthorizedWithToken, CoreErrors, CoreErrors::ENDPOINT_RESOLUTION_FAILURE, endpointResolutionOutcome.GetError().GetMessage()); + return BatchIsAuthorizedWithTokenOutcome(MakeRequest(request, endpointResolutionOutcome.GetResult(), Aws::Http::HttpMethod::HTTP_POST, Aws::Auth::SIGV4_SIGNER)); + }, + TracingUtils::SMITHY_CLIENT_DURATION_METRIC, + *meter, + {{TracingUtils::SMITHY_METHOD_DIMENSION, request.GetServiceRequestName()}, {TracingUtils::SMITHY_SERVICE_DIMENSION, this->GetServiceClientName()}}); +} + CreateIdentitySourceOutcome VerifiedPermissionsClient::CreateIdentitySource(const CreateIdentitySourceRequest& request) const { AWS_OPERATION_GUARD(CreateIdentitySource); diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/source/model/BatchIsAuthorizedWithTokenInputItem.cpp b/generated/src/aws-cpp-sdk-verifiedpermissions/source/model/BatchIsAuthorizedWithTokenInputItem.cpp new file mode 100644 index 00000000000..a86d6957e99 --- /dev/null +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/source/model/BatchIsAuthorizedWithTokenInputItem.cpp @@ -0,0 +1,89 @@ +/** + * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. + * SPDX-License-Identifier: Apache-2.0. + */ + +#include +#include + +#include + +using namespace Aws::Utils::Json; +using namespace Aws::Utils; + +namespace Aws +{ +namespace VerifiedPermissions +{ +namespace Model +{ + +BatchIsAuthorizedWithTokenInputItem::BatchIsAuthorizedWithTokenInputItem() : + m_actionHasBeenSet(false), + m_resourceHasBeenSet(false), + m_contextHasBeenSet(false) +{ +} + +BatchIsAuthorizedWithTokenInputItem::BatchIsAuthorizedWithTokenInputItem(JsonView jsonValue) : + m_actionHasBeenSet(false), + m_resourceHasBeenSet(false), + m_contextHasBeenSet(false) +{ + *this = jsonValue; +} + +BatchIsAuthorizedWithTokenInputItem& BatchIsAuthorizedWithTokenInputItem::operator =(JsonView jsonValue) +{ + if(jsonValue.ValueExists("action")) + { + m_action = jsonValue.GetObject("action"); + + m_actionHasBeenSet = true; + } + + if(jsonValue.ValueExists("resource")) + { + m_resource = jsonValue.GetObject("resource"); + + m_resourceHasBeenSet = true; + } + + if(jsonValue.ValueExists("context")) + { + m_context = jsonValue.GetObject("context"); + + m_contextHasBeenSet = true; + } + + return *this; +} + +JsonValue BatchIsAuthorizedWithTokenInputItem::Jsonize() const +{ + JsonValue payload; + + if(m_actionHasBeenSet) + { + payload.WithObject("action", m_action.Jsonize()); + + } + + if(m_resourceHasBeenSet) + { + payload.WithObject("resource", m_resource.Jsonize()); + + } + + if(m_contextHasBeenSet) + { + payload.WithObject("context", m_context.Jsonize()); + + } + + return payload; +} + +} // namespace Model +} // namespace VerifiedPermissions +} // namespace Aws diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/source/model/BatchIsAuthorizedWithTokenOutputItem.cpp b/generated/src/aws-cpp-sdk-verifiedpermissions/source/model/BatchIsAuthorizedWithTokenOutputItem.cpp new file mode 100644 index 00000000000..27365941ddc --- /dev/null +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/source/model/BatchIsAuthorizedWithTokenOutputItem.cpp @@ -0,0 +1,121 @@ +/** + * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. + * SPDX-License-Identifier: Apache-2.0. + */ + +#include +#include + +#include + +using namespace Aws::Utils::Json; +using namespace Aws::Utils; + +namespace Aws +{ +namespace VerifiedPermissions +{ +namespace Model +{ + +BatchIsAuthorizedWithTokenOutputItem::BatchIsAuthorizedWithTokenOutputItem() : + m_requestHasBeenSet(false), + m_decision(Decision::NOT_SET), + m_decisionHasBeenSet(false), + m_determiningPoliciesHasBeenSet(false), + m_errorsHasBeenSet(false) +{ +} + +BatchIsAuthorizedWithTokenOutputItem::BatchIsAuthorizedWithTokenOutputItem(JsonView jsonValue) : + m_requestHasBeenSet(false), + m_decision(Decision::NOT_SET), + m_decisionHasBeenSet(false), + m_determiningPoliciesHasBeenSet(false), + m_errorsHasBeenSet(false) +{ + *this = jsonValue; +} + +BatchIsAuthorizedWithTokenOutputItem& BatchIsAuthorizedWithTokenOutputItem::operator =(JsonView jsonValue) +{ + if(jsonValue.ValueExists("request")) + { + m_request = jsonValue.GetObject("request"); + + m_requestHasBeenSet = true; + } + + if(jsonValue.ValueExists("decision")) + { + m_decision = DecisionMapper::GetDecisionForName(jsonValue.GetString("decision")); + + m_decisionHasBeenSet = true; + } + + if(jsonValue.ValueExists("determiningPolicies")) + { + Aws::Utils::Array determiningPoliciesJsonList = jsonValue.GetArray("determiningPolicies"); + for(unsigned determiningPoliciesIndex = 0; determiningPoliciesIndex < determiningPoliciesJsonList.GetLength(); ++determiningPoliciesIndex) + { + m_determiningPolicies.push_back(determiningPoliciesJsonList[determiningPoliciesIndex].AsObject()); + } + m_determiningPoliciesHasBeenSet = true; + } + + if(jsonValue.ValueExists("errors")) + { + Aws::Utils::Array errorsJsonList = jsonValue.GetArray("errors"); + for(unsigned errorsIndex = 0; errorsIndex < errorsJsonList.GetLength(); ++errorsIndex) + { + m_errors.push_back(errorsJsonList[errorsIndex].AsObject()); + } + m_errorsHasBeenSet = true; + } + + return *this; +} + +JsonValue BatchIsAuthorizedWithTokenOutputItem::Jsonize() const +{ + JsonValue payload; + + if(m_requestHasBeenSet) + { + payload.WithObject("request", m_request.Jsonize()); + + } + + if(m_decisionHasBeenSet) + { + payload.WithString("decision", DecisionMapper::GetNameForDecision(m_decision)); + } + + if(m_determiningPoliciesHasBeenSet) + { + Aws::Utils::Array determiningPoliciesJsonList(m_determiningPolicies.size()); + for(unsigned determiningPoliciesIndex = 0; determiningPoliciesIndex < determiningPoliciesJsonList.GetLength(); ++determiningPoliciesIndex) + { + determiningPoliciesJsonList[determiningPoliciesIndex].AsObject(m_determiningPolicies[determiningPoliciesIndex].Jsonize()); + } + payload.WithArray("determiningPolicies", std::move(determiningPoliciesJsonList)); + + } + + if(m_errorsHasBeenSet) + { + Aws::Utils::Array errorsJsonList(m_errors.size()); + for(unsigned errorsIndex = 0; errorsIndex < errorsJsonList.GetLength(); ++errorsIndex) + { + errorsJsonList[errorsIndex].AsObject(m_errors[errorsIndex].Jsonize()); + } + payload.WithArray("errors", std::move(errorsJsonList)); + + } + + return payload; +} + +} // namespace Model +} // namespace VerifiedPermissions +} // namespace Aws diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/source/model/BatchIsAuthorizedWithTokenRequest.cpp b/generated/src/aws-cpp-sdk-verifiedpermissions/source/model/BatchIsAuthorizedWithTokenRequest.cpp new file mode 100644 index 00000000000..60f2497c107 --- /dev/null +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/source/model/BatchIsAuthorizedWithTokenRequest.cpp @@ -0,0 +1,76 @@ +/** + * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. + * SPDX-License-Identifier: Apache-2.0. + */ + +#include +#include + +#include + +using namespace Aws::VerifiedPermissions::Model; +using namespace Aws::Utils::Json; +using namespace Aws::Utils; + +BatchIsAuthorizedWithTokenRequest::BatchIsAuthorizedWithTokenRequest() : + m_policyStoreIdHasBeenSet(false), + m_identityTokenHasBeenSet(false), + m_accessTokenHasBeenSet(false), + m_entitiesHasBeenSet(false), + m_requestsHasBeenSet(false) +{ +} + +Aws::String BatchIsAuthorizedWithTokenRequest::SerializePayload() const +{ + JsonValue payload; + + if(m_policyStoreIdHasBeenSet) + { + payload.WithString("policyStoreId", m_policyStoreId); + + } + + if(m_identityTokenHasBeenSet) + { + payload.WithString("identityToken", m_identityToken); + + } + + if(m_accessTokenHasBeenSet) + { + payload.WithString("accessToken", m_accessToken); + + } + + if(m_entitiesHasBeenSet) + { + payload.WithObject("entities", m_entities.Jsonize()); + + } + + if(m_requestsHasBeenSet) + { + Aws::Utils::Array requestsJsonList(m_requests.size()); + for(unsigned requestsIndex = 0; requestsIndex < requestsJsonList.GetLength(); ++requestsIndex) + { + requestsJsonList[requestsIndex].AsObject(m_requests[requestsIndex].Jsonize()); + } + payload.WithArray("requests", std::move(requestsJsonList)); + + } + + return payload.View().WriteReadable(); +} + +Aws::Http::HeaderValueCollection BatchIsAuthorizedWithTokenRequest::GetRequestSpecificHeaders() const +{ + Aws::Http::HeaderValueCollection headers; + headers.insert(Aws::Http::HeaderValuePair("X-Amz-Target", "VerifiedPermissions.BatchIsAuthorizedWithToken")); + return headers; + +} + + + + diff --git a/generated/src/aws-cpp-sdk-verifiedpermissions/source/model/BatchIsAuthorizedWithTokenResult.cpp b/generated/src/aws-cpp-sdk-verifiedpermissions/source/model/BatchIsAuthorizedWithTokenResult.cpp new file mode 100644 index 00000000000..1ec7ba205f5 --- /dev/null +++ b/generated/src/aws-cpp-sdk-verifiedpermissions/source/model/BatchIsAuthorizedWithTokenResult.cpp @@ -0,0 +1,57 @@ +/** + * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. + * SPDX-License-Identifier: Apache-2.0. + */ + +#include +#include +#include +#include +#include +#include + +#include + +using namespace Aws::VerifiedPermissions::Model; +using namespace Aws::Utils::Json; +using namespace Aws::Utils; +using namespace Aws; + +BatchIsAuthorizedWithTokenResult::BatchIsAuthorizedWithTokenResult() +{ +} + +BatchIsAuthorizedWithTokenResult::BatchIsAuthorizedWithTokenResult(const Aws::AmazonWebServiceResult& result) +{ + *this = result; +} + +BatchIsAuthorizedWithTokenResult& BatchIsAuthorizedWithTokenResult::operator =(const Aws::AmazonWebServiceResult& result) +{ + JsonView jsonValue = result.GetPayload().View(); + if(jsonValue.ValueExists("principal")) + { + m_principal = jsonValue.GetObject("principal"); + + } + + if(jsonValue.ValueExists("results")) + { + Aws::Utils::Array resultsJsonList = jsonValue.GetArray("results"); + for(unsigned resultsIndex = 0; resultsIndex < resultsJsonList.GetLength(); ++resultsIndex) + { + m_results.push_back(resultsJsonList[resultsIndex].AsObject()); + } + } + + + const auto& headers = result.GetHeaderValueCollection(); + const auto& requestIdIter = headers.find("x-amzn-requestid"); + if(requestIdIter != headers.end()) + { + m_requestId = requestIdIter->second; + } + + + return *this; +} diff --git a/src/aws-cpp-sdk-core/include/aws/core/VersionConfig.h b/src/aws-cpp-sdk-core/include/aws/core/VersionConfig.h index f512a69acee..4e53adf0488 100644 --- a/src/aws-cpp-sdk-core/include/aws/core/VersionConfig.h +++ b/src/aws-cpp-sdk-core/include/aws/core/VersionConfig.h @@ -4,7 +4,7 @@ */ #pragma once -#define AWS_SDK_VERSION_STRING "1.11.301" +#define AWS_SDK_VERSION_STRING "1.11.302" #define AWS_SDK_VERSION_MAJOR 1 #define AWS_SDK_VERSION_MINOR 11 -#define AWS_SDK_VERSION_PATCH 301 +#define AWS_SDK_VERSION_PATCH 302 diff --git a/tools/code-generation/api-descriptions/quicksight-2018-04-01.normal.json b/tools/code-generation/api-descriptions/quicksight-2018-04-01.normal.json index edffce4f761..ab8a4af9179 100644 --- a/tools/code-generation/api-descriptions/quicksight-2018-04-01.normal.json +++ b/tools/code-generation/api-descriptions/quicksight-2018-04-01.normal.json @@ -3417,7 +3417,7 @@ "type":"structure", "members":{ }, - "documentation":"

    The configuration for applying a filter to all sheets. You can apply this filter to all visuals on every sheet.

    This is a union type structure. For this structure to be valid, only one of the attributes can be defined.

    " + "documentation":"

    An empty object that represents that the AllSheets option is the chosen value for the FilterScopeConfiguration parameter. This structure applies the filter to all visuals on all sheets of an Analysis, Dashboard, or Template.

    This is a union type structure. For this structure to be valid, only one of the attributes can be defined.

    " }, "AmazonElasticsearchParameters":{ "type":"structure", @@ -7227,6 +7227,10 @@ "ContactNumber":{ "shape":"String", "documentation":"

    A 10-digit phone number for the author of the Amazon QuickSight account to use for future communications. This field is required if ENTERPPRISE_AND_Q is the selected edition of the new Amazon QuickSight account.

    " + }, + "IAMIdentityCenterInstanceArn":{ + "shape":"String", + "documentation":"

    The Amazon Resource Name (ARN) for the IAM Identity Center instance.

    " } } }, @@ -15413,7 +15417,7 @@ }, "AllSheets":{ "shape":"AllSheetsFilterScopeConfiguration", - "documentation":"

    The configuration for applying a filter to all sheets.

    " + "documentation":"

    The configuration that applies a filter to all sheets. When you choose AllSheets as the value for a FilterScopeConfiguration, this filter is applied to all visuals of all sheets in an Analysis, Dashboard, or Template. The AllSheetsFilterScopeConfiguration is chosen.

    " } }, "documentation":"

    The scope configuration for a FilterGroup.

    This is a union type structure. For this structure to be valid, only one of the attributes can be defined.

    " diff --git a/tools/code-generation/api-descriptions/resource-groups-2017-11-27.normal.json b/tools/code-generation/api-descriptions/resource-groups-2017-11-27.normal.json index bd4e81ccc3e..62ecc5a9404 100644 --- a/tools/code-generation/api-descriptions/resource-groups-2017-11-27.normal.json +++ b/tools/code-generation/api-descriptions/resource-groups-2017-11-27.normal.json @@ -368,7 +368,7 @@ "members":{ "Name":{ "shape":"GroupName", - "documentation":"

    The name of the group, which is the identifier of the group in other operations. You can't change the name of a resource group after you create it. A resource group name can consist of letters, numbers, hyphens, periods, and underscores. The name cannot start with AWS or aws; these are reserved. A resource group name must be unique within each Amazon Web Services Region in your Amazon Web Services account.

    " + "documentation":"

    The name of the group, which is the identifier of the group in other operations. You can't change the name of a resource group after you create it. A resource group name can consist of letters, numbers, hyphens, periods, and underscores. The name cannot start with AWS, aws, or any other possible capitalization; these are reserved. A resource group name must be unique within each Amazon Web Services Region in your Amazon Web Services account.

    " }, "Description":{ "shape":"Description", @@ -916,7 +916,7 @@ }, "QueryErrors":{ "shape":"QueryErrorList", - "documentation":"

    A list of QueryError objects. Each error is an object that contains ErrorCode and Message structures. Possible values for ErrorCode are CLOUDFORMATION_STACK_INACTIVE and CLOUDFORMATION_STACK_NOT_EXISTING.

    " + "documentation":"

    A list of QueryError objects. Each error contains an ErrorCode and Message. Possible values for ErrorCode are CLOUDFORMATION_STACK_INACTIVE, CLOUDFORMATION_STACK_NOT_EXISTING, CLOUDFORMATION_STACK_UNASSUMABLE_ROLE and RESOURCE_TYPE_NOT_SUPPORTED.

    " } } }, @@ -925,7 +925,7 @@ "members":{ "Filters":{ "shape":"GroupFilterList", - "documentation":"

    Filters, formatted as GroupFilter objects, that you want to apply to a ListGroups operation.

    • resource-type - Filter the results to include only those of the specified resource types. Specify up to five resource types in the format AWS::ServiceCode::ResourceType . For example, AWS::EC2::Instance, or AWS::S3::Bucket.

    • configuration-type - Filter the results to include only those groups that have the specified configuration types attached. The current supported values are:

      • AWS::EC2::CapacityReservationPool

      • AWS::EC2::HostManagement

    " + "documentation":"

    Filters, formatted as GroupFilter objects, that you want to apply to a ListGroups operation.

    • resource-type - Filter the results to include only those resource groups that have the specified resource type in their ResourceTypeFilter. For example, AWS::EC2::Instance would return any resource group with a ResourceTypeFilter that includes AWS::EC2::Instance.

    • configuration-type - Filter the results to include only those groups that have the specified configuration types attached. The current supported values are:

      • AWS::AppRegistry::Application

      • AWS::AppRegistry::ApplicationResourceGroups

      • AWS::CloudFormation::Stack

      • AWS::EC2::CapacityReservationPool

      • AWS::EC2::HostManagement

      • AWS::NetworkFirewall::RuleGroup

    " }, "MaxResults":{ "shape":"MaxResults", @@ -1035,17 +1035,18 @@ }, "Message":{ "shape":"QueryErrorMessage", - "documentation":"

    A message that explains the ErrorCode value. Messages might state that the specified CloudFront stack does not exist (or no longer exists). For CLOUDFORMATION_STACK_INACTIVE, the message typically states that the CloudFront stack has a status that is not (or no longer) active, such as CREATE_FAILED.

    " + "documentation":"

    A message that explains the ErrorCode.

    " } }, - "documentation":"

    A two-part error structure that can occur in ListGroupResources or SearchResources operations on CloudFront stack-based queries. The error occurs if the CloudFront stack on which the query is based either does not exist, or has a status that renders the stack inactive. A QueryError occurrence does not necessarily mean that Resource Groups could not complete the operation, but the resulting group might have no member resources.

    " + "documentation":"

    A two-part error structure that can occur in ListGroupResources or SearchResources.

    " }, "QueryErrorCode":{ "type":"string", "enum":[ "CLOUDFORMATION_STACK_INACTIVE", "CLOUDFORMATION_STACK_NOT_EXISTING", - "CLOUDFORMATION_STACK_UNASSUMABLE_ROLE" + "CLOUDFORMATION_STACK_UNASSUMABLE_ROLE", + "RESOURCE_TYPE_NOT_SUPPORTED" ] }, "QueryErrorList":{ @@ -1196,7 +1197,7 @@ }, "QueryErrors":{ "shape":"QueryErrorList", - "documentation":"

    A list of QueryError objects. Each error is an object that contains ErrorCode and Message structures.

    Possible values for ErrorCode:

    • CLOUDFORMATION_STACK_INACTIVE

    • CLOUDFORMATION_STACK_NOT_EXISTING

    " + "documentation":"

    A list of QueryError objects. Each error contains an ErrorCode and Message.

    Possible values for ErrorCode:

    • CLOUDFORMATION_STACK_INACTIVE

    • CLOUDFORMATION_STACK_NOT_EXISTING

    • CLOUDFORMATION_STACK_UNASSUMABLE_ROLE

    " } } }, diff --git a/tools/code-generation/api-descriptions/verifiedpermissions-2021-12-01.normal.json b/tools/code-generation/api-descriptions/verifiedpermissions-2021-12-01.normal.json index 180f4b7393d..18db6cbabbb 100644 --- a/tools/code-generation/api-descriptions/verifiedpermissions-2021-12-01.normal.json +++ b/tools/code-generation/api-descriptions/verifiedpermissions-2021-12-01.normal.json @@ -30,6 +30,23 @@ ], "documentation":"

    Makes a series of decisions about multiple authorization requests for one principal or resource. Each request contains the equivalent content of an IsAuthorized request: principal, action, resource, and context. Either the principal or the resource parameter must be identical across all requests. For example, Verified Permissions won't evaluate a pair of requests where bob views photo1 and alice views photo2. Authorization of bob to view photo1 and photo2, or bob and alice to view photo1, are valid batches.

    The request is evaluated against all policies in the specified policy store that match the entities that you declare. The result of the decisions is a series of Allow or Deny responses, along with the IDs of the policies that produced each decision.

    The entities of a BatchIsAuthorized API request can contain up to 100 principals and up to 100 resources. The requests of a BatchIsAuthorized API request can contain up to 30 requests.

    The BatchIsAuthorized operation doesn't have its own IAM permission. To authorize this operation for Amazon Web Services principals, include the permission verifiedpermissions:IsAuthorized in their IAM policies.

    " }, + "BatchIsAuthorizedWithToken":{ + "name":"BatchIsAuthorizedWithToken", + "http":{ + "method":"POST", + "requestUri":"/" + }, + "input":{"shape":"BatchIsAuthorizedWithTokenInput"}, + "output":{"shape":"BatchIsAuthorizedWithTokenOutput"}, + "errors":[ + {"shape":"ValidationException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"ThrottlingException"}, + {"shape":"InternalServerException"} + ], + "documentation":"

    Makes a series of decisions about multiple authorization requests for one token. The principal in this request comes from an external identity source in the form of an identity or access token, formatted as a JSON web token (JWT). The information in the parameters can also define additional context that Verified Permissions can include in the evaluations.

    The request is evaluated against all policies in the specified policy store that match the entities that you provide in the entities declaration and in the token. The result of the decisions is a series of Allow or Deny responses, along with the IDs of the policies that produced each decision.

    The entities of a BatchIsAuthorizedWithToken API request can contain up to 100 resources and up to 99 user groups. The requests of a BatchIsAuthorizedWithToken API request can contain up to 30 requests.

    The BatchIsAuthorizedWithToken operation doesn't have its own IAM permission. To authorize this operation for Amazon Web Services principals, include the permission verifiedpermissions:IsAuthorizedWithToken in their IAM policies.

    " + }, "CreateIdentitySource":{ "name":"CreateIdentitySource", "http":{ @@ -300,7 +317,7 @@ {"shape":"ThrottlingException"}, {"shape":"InternalServerException"} ], - "documentation":"

    Makes an authorization decision about a service request described in the parameters. The principal in this request comes from an external identity source in the form of an identity token formatted as a JSON web token (JWT). The information in the parameters can also define additional context that Verified Permissions can include in the evaluation. The request is evaluated against all matching policies in the specified policy store. The result of the decision is either Allow or Deny, along with a list of the policies that resulted in the decision.

    If you specify the identityToken parameter, then this operation derives the principal from that token. You must not also include that principal in the entities parameter or the operation fails and reports a conflict between the two entity sources.

    If you provide only an accessToken, then you can include the entity as part of the entities parameter to provide additional attributes.

    At this time, Verified Permissions accepts tokens from only Amazon Cognito.

    Verified Permissions validates each token that is specified in a request by checking its expiration date and its signature.

    If you delete a Amazon Cognito user pool or user, tokens from that deleted pool or that deleted user continue to be usable until they expire.

    " + "documentation":"

    Makes an authorization decision about a service request described in the parameters. The principal in this request comes from an external identity source in the form of an identity token formatted as a JSON web token (JWT). The information in the parameters can also define additional context that Verified Permissions can include in the evaluation. The request is evaluated against all matching policies in the specified policy store. The result of the decision is either Allow or Deny, along with a list of the policies that resulted in the decision.

    At this time, Verified Permissions accepts tokens from only Amazon Cognito.

    Verified Permissions validates each token that is specified in a request by checking its expiration date and its signature.

    If you delete a Amazon Cognito user pool or user, tokens from that deleted pool or that deleted user continue to be usable until they expire.

    " }, "ListIdentitySources":{ "name":"ListIdentitySources", @@ -630,6 +647,104 @@ "type":"list", "member":{"shape":"BatchIsAuthorizedOutputItem"} }, + "BatchIsAuthorizedWithTokenInput":{ + "type":"structure", + "required":[ + "policyStoreId", + "requests" + ], + "members":{ + "policyStoreId":{ + "shape":"PolicyStoreId", + "documentation":"

    Specifies the ID of the policy store. Policies in this policy store will be used to make an authorization decision for the input.

    " + }, + "identityToken":{ + "shape":"Token", + "documentation":"

    Specifies an identity (ID) token for the principal that you want to authorize in each request. This token is provided to you by the identity provider (IdP) associated with the specified identity source. You must specify either an accessToken, an identityToken, or both.

    Must be an ID token. Verified Permissions returns an error if the token_use claim in the submitted token isn't id.

    " + }, + "accessToken":{ + "shape":"Token", + "documentation":"

    Specifies an access token for the principal that you want to authorize in each request. This token is provided to you by the identity provider (IdP) associated with the specified identity source. You must specify either an accessToken, an identityToken, or both.

    Must be an access token. Verified Permissions returns an error if the token_use claim in the submitted token isn't access.

    " + }, + "entities":{ + "shape":"EntitiesDefinition", + "documentation":"

    Specifies the list of resources and their associated attributes that Verified Permissions can examine when evaluating the policies.

    You can't include principals in this parameter, only resource and action entities. This parameter can't include any entities of a type that matches the user or group entity types that you defined in your identity source.

    • The BatchIsAuthorizedWithToken operation takes principal attributes from only the identityToken or accessToken passed to the operation.

    • For action entities, you can include only their Identifier and EntityType.

    " + }, + "requests":{ + "shape":"BatchIsAuthorizedWithTokenInputList", + "documentation":"

    An array of up to 30 requests that you want Verified Permissions to evaluate.

    " + } + } + }, + "BatchIsAuthorizedWithTokenInputItem":{ + "type":"structure", + "members":{ + "action":{ + "shape":"ActionIdentifier", + "documentation":"

    Specifies the requested action to be authorized. For example, PhotoFlash::ReadPhoto.

    " + }, + "resource":{ + "shape":"EntityIdentifier", + "documentation":"

    Specifies the resource that you want an authorization decision for. For example, PhotoFlash::Photo.

    " + }, + "context":{ + "shape":"ContextDefinition", + "documentation":"

    Specifies additional context that can be used to make more granular authorization decisions.

    " + } + }, + "documentation":"

    An authorization request that you include in a BatchIsAuthorizedWithToken API request.

    " + }, + "BatchIsAuthorizedWithTokenInputList":{ + "type":"list", + "member":{"shape":"BatchIsAuthorizedWithTokenInputItem"}, + "min":1 + }, + "BatchIsAuthorizedWithTokenOutput":{ + "type":"structure", + "required":["results"], + "members":{ + "principal":{ + "shape":"EntityIdentifier", + "documentation":"

    The identifier of the principal in the ID or access token.

    " + }, + "results":{ + "shape":"BatchIsAuthorizedWithTokenOutputList", + "documentation":"

    A series of Allow or Deny decisions for each request, and the policies that produced them.

    " + } + } + }, + "BatchIsAuthorizedWithTokenOutputItem":{ + "type":"structure", + "required":[ + "request", + "decision", + "determiningPolicies", + "errors" + ], + "members":{ + "request":{ + "shape":"BatchIsAuthorizedWithTokenInputItem", + "documentation":"

    The authorization request that initiated the decision.

    " + }, + "decision":{ + "shape":"Decision", + "documentation":"

    An authorization decision that indicates if the authorization request should be allowed or denied.

    " + }, + "determiningPolicies":{ + "shape":"DeterminingPolicyList", + "documentation":"

    The list of determining policies used to make the authorization decision. For example, if there are two matching policies, where one is a forbid and the other is a permit, then the forbid policy will be the determining policy. In the case of multiple matching permit policies then there would be multiple determining policies. In the case that no policies match, and hence the response is DENY, there would be no determining policies.

    " + }, + "errors":{ + "shape":"EvaluationErrorList", + "documentation":"

    Errors that occurred while making an authorization decision. For example, a policy might reference an entity or attribute that doesn't exist in the request.

    " + } + }, + "documentation":"

    The decision, based on policy evaluation, from an individual authorization request in a BatchIsAuthorizedWithToken API request.

    " + }, + "BatchIsAuthorizedWithTokenOutputList":{ + "type":"list", + "member":{"shape":"BatchIsAuthorizedWithTokenOutputItem"} + }, "Boolean":{ "type":"boolean", "box":true @@ -661,7 +776,7 @@ "documentation":"

    The name of the schema entity type that's mapped to the user pool group. Defaults to AWS::CognitoGroup.

    " } }, - "documentation":"

    The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.

    This data type is part of a CognitoUserPoolConfiguration structure and is a request parameter in CreateIdentitySource.

    " + "documentation":"

    A list of user groups and entities from an Amazon Cognito user pool identity source.

    This data type is part of a CognitoUserPoolConfiguration structure and is a request parameter in CreateIdentitySource.

    " }, "CognitoGroupConfigurationDetail":{ "type":"structure", @@ -671,7 +786,7 @@ "documentation":"

    The name of the schema entity type that's mapped to the user pool group. Defaults to AWS::CognitoGroup.

    " } }, - "documentation":"

    The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.

    This data type is part of an CognitoUserPoolConfigurationDetail structure and is a response parameter to GetIdentitySource.

    " + "documentation":"

    A list of user groups and entities from an Amazon Cognito user pool identity source.

    This data type is part of an CognitoUserPoolConfigurationDetail structure and is a response parameter to GetIdentitySource.

    " }, "CognitoGroupConfigurationItem":{ "type":"structure", @@ -681,7 +796,7 @@ "documentation":"

    The name of the schema entity type that's mapped to the user pool group. Defaults to AWS::CognitoGroup.

    " } }, - "documentation":"

    The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.

    This data type is part of an CognitoUserPoolConfigurationItem structure and is a response parameter to ListIdentitySources.

    " + "documentation":"

    A list of user groups and entities from an Amazon Cognito user pool identity source.

    This data type is part of an CognitoUserPoolConfigurationItem structure and is a response parameter to ListIdentitySources.

    " }, "CognitoUserPoolConfiguration":{ "type":"structure", @@ -697,10 +812,10 @@ }, "groupConfiguration":{ "shape":"CognitoGroupConfiguration", - "documentation":"

    The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.

    " + "documentation":"

    The configuration of the user groups from an Amazon Cognito user pool identity source.

    " } }, - "documentation":"

    The configuration for an identity source that represents a connection to an Amazon Cognito user pool used as an identity provider for Verified Permissions.

    This data type is used as a field that is part of an Configuration structure that is used as a parameter to CreateIdentitySource.

    Example:\"CognitoUserPoolConfiguration\":{\"UserPoolArn\":\"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5\",\"ClientIds\": [\"a1b2c3d4e5f6g7h8i9j0kalbmc\"],\"groupConfiguration\": {\"groupEntityType\": \"MyCorp::Group\"}}

    " + "documentation":"

    The configuration for an identity source that represents a connection to an Amazon Cognito user pool used as an identity provider for Verified Permissions.

    This data type is used as a field that is part of an Configuration structure that is used as a parameter to CreateIdentitySource.

    Example:\"CognitoUserPoolConfiguration\":{\"UserPoolArn\":\"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5\",\"ClientIds\": [\"a1b2c3d4e5f6g7h8i9j0kalbmc\"]}

    " }, "CognitoUserPoolConfigurationDetail":{ "type":"structure", @@ -724,10 +839,10 @@ }, "groupConfiguration":{ "shape":"CognitoGroupConfigurationDetail", - "documentation":"

    The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.

    " + "documentation":"

    The configuration of the user groups from an Amazon Cognito user pool identity source.

    " } }, - "documentation":"

    The configuration for an identity source that represents a connection to an Amazon Cognito user pool used as an identity provider for Verified Permissions.

    This data type is used as a field that is part of an ConfigurationDetail structure that is part of the response to GetIdentitySource.

    Example:\"CognitoUserPoolConfiguration\":{\"UserPoolArn\":\"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5\",\"ClientIds\": [\"a1b2c3d4e5f6g7h8i9j0kalbmc\"],\"groupConfiguration\": {\"groupEntityType\": \"MyCorp::Group\"}}

    " + "documentation":"

    The configuration for an identity source that represents a connection to an Amazon Cognito user pool used as an identity provider for Verified Permissions.

    This data type is used as a field that is part of an ConfigurationDetail structure that is part of the response to GetIdentitySource.

    Example:\"CognitoUserPoolConfiguration\":{\"UserPoolArn\":\"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5\",\"ClientIds\": [\"a1b2c3d4e5f6g7h8i9j0kalbmc\"]}

    " }, "CognitoUserPoolConfigurationItem":{ "type":"structure", @@ -751,10 +866,10 @@ }, "groupConfiguration":{ "shape":"CognitoGroupConfigurationItem", - "documentation":"

    The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.

    " + "documentation":"

    The configuration of the user groups from an Amazon Cognito user pool identity source.

    " } }, - "documentation":"

    The configuration for an identity source that represents a connection to an Amazon Cognito user pool used as an identity provider for Verified Permissions.

    This data type is used as a field that is part of the ConfigurationItem structure that is part of the response to ListIdentitySources.

    Example:\"CognitoUserPoolConfiguration\":{\"UserPoolArn\":\"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5\",\"ClientIds\": [\"a1b2c3d4e5f6g7h8i9j0kalbmc\"],\"groupConfiguration\": {\"groupEntityType\": \"MyCorp::Group\"}}

    " + "documentation":"

    The configuration for an identity source that represents a connection to an Amazon Cognito user pool used as an identity provider for Verified Permissions.

    This data type is used as a field that is part of the ConfigurationItem structure that is part of the response to ListIdentitySources.

    Example:\"CognitoUserPoolConfiguration\":{\"UserPoolArn\":\"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5\",\"ClientIds\": [\"a1b2c3d4e5f6g7h8i9j0kalbmc\"]}

    " }, "Configuration":{ "type":"structure", @@ -764,7 +879,7 @@ "documentation":"

    Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool and one or more application client IDs.

    Example: \"configuration\":{\"cognitoUserPoolConfiguration\":{\"userPoolArn\":\"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5\",\"clientIds\": [\"a1b2c3d4e5f6g7h8i9j0kalbmc\"],\"groupConfiguration\": {\"groupEntityType\": \"MyCorp::Group\"}}}

    " } }, - "documentation":"

    Contains configuration information used when creating a new identity source.

    At this time, the only valid member of this structure is a Amazon Cognito user pool configuration.

    Specifies a userPoolArn, a groupConfiguration, and a ClientId.

    This data type is used as a request parameter for the CreateIdentitySource operation.

    ", + "documentation":"

    Contains configuration information used when creating a new identity source.

    At this time, the only valid member of this structure is a Amazon Cognito user pool configuration.

    You must specify a userPoolArn, and optionally, a ClientId.

    This data type is used as a request parameter for the CreateIdentitySource operation.

    ", "union":true }, "ConfigurationDetail":{ @@ -772,7 +887,7 @@ "members":{ "cognitoUserPoolConfiguration":{ "shape":"CognitoUserPoolConfigurationDetail", - "documentation":"

    Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity that you want to assign to user groups, and one or more application client IDs.

    Example: \"configuration\":{\"cognitoUserPoolConfiguration\":{\"userPoolArn\":\"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5\",\"clientIds\": [\"a1b2c3d4e5f6g7h8i9j0kalbmc\"],\"groupConfiguration\": {\"groupEntityType\": \"MyCorp::Group\"}}}

    " + "documentation":"

    Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool and one or more application client IDs.

    Example: \"configuration\":{\"cognitoUserPoolConfiguration\":{\"userPoolArn\":\"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5\",\"clientIds\": [\"a1b2c3d4e5f6g7h8i9j0kalbmc\"],\"groupConfiguration\": {\"groupEntityType\": \"MyCorp::Group\"}}}

    " } }, "documentation":"

    Contains configuration information about an identity source.

    This data type is a response parameter to the GetIdentitySource operation.

    ", @@ -783,7 +898,7 @@ "members":{ "cognitoUserPoolConfiguration":{ "shape":"CognitoUserPoolConfigurationItem", - "documentation":"

    Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool, the policy store entity that you want to assign to user groups, and one or more application client IDs.

    Example: \"configuration\":{\"cognitoUserPoolConfiguration\":{\"userPoolArn\":\"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5\",\"clientIds\": [\"a1b2c3d4e5f6g7h8i9j0kalbmc\"],\"groupConfiguration\": {\"groupEntityType\": \"MyCorp::Group\"}}}

    " + "documentation":"

    Contains configuration details of a Amazon Cognito user pool that Verified Permissions can use as a source of authenticated identities as entities. It specifies the Amazon Resource Name (ARN) of a Amazon Cognito user pool and one or more application client IDs.

    Example: \"configuration\":{\"cognitoUserPoolConfiguration\":{\"userPoolArn\":\"arn:aws:cognito-idp:us-east-1:123456789012:userpool/us-east-1_1a2b3c4d5\",\"clientIds\": [\"a1b2c3d4e5f6g7h8i9j0kalbmc\"],\"groupConfiguration\": {\"groupEntityType\": \"MyCorp::Group\"}}}

    " } }, "documentation":"

    Contains configuration information about an identity source.

    This data type is a response parameter to the ListIdentitySources operation.

    ", @@ -1746,7 +1861,7 @@ }, "entities":{ "shape":"EntitiesDefinition", - "documentation":"

    Specifies the list of resources and their associated attributes that Verified Permissions can examine when evaluating the policies.

    You can include only resource and action entities in this parameter; you can't include principals.

    • The IsAuthorizedWithToken operation takes principal attributes from only the identityToken or accessToken passed to the operation.

    • For action entities, you can include only their Identifier and EntityType.

    " + "documentation":"

    Specifies the list of resources and their associated attributes that Verified Permissions can examine when evaluating the policies.

    You can't include principals in this parameter, only resource and action entities. This parameter can't include any entities of a type that matches the user or group entity types that you defined in your identity source.

    • The IsAuthorizedWithToken operation takes principal attributes from only the identityToken or accessToken passed to the operation.

    • For action entities, you can include only their Identifier and EntityType.

    " } } }, @@ -2496,7 +2611,7 @@ "documentation":"

    The name of the schema entity type that's mapped to the user pool group. Defaults to AWS::CognitoGroup.

    " } }, - "documentation":"

    The user group entities from an Amazon Cognito user pool identity source.

    " + "documentation":"

    A list of user groups and entities from an Amazon Cognito user pool identity source.

    " }, "UpdateCognitoUserPoolConfiguration":{ "type":"structure", diff --git a/tools/code-generation/endpoints/resource-groups-2017-11-27.endpoint-rule-set.json b/tools/code-generation/endpoints/resource-groups-2017-11-27.endpoint-rule-set.json index bc91afc6cdc..4f188f4a0e7 100644 --- a/tools/code-generation/endpoints/resource-groups-2017-11-27.endpoint-rule-set.json +++ b/tools/code-generation/endpoints/resource-groups-2017-11-27.endpoint-rule-set.json @@ -40,7 +40,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ @@ -83,7 +82,8 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" }, { "conditions": [ @@ -96,7 +96,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ @@ -110,7 +109,6 @@ "assign": "PartitionResult" } ], - "type": "tree", "rules": [ { "conditions": [ @@ -133,7 +131,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ @@ -168,7 +165,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [], @@ -179,14 +175,16 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" }, { "conditions": [], "error": "FIPS and DualStack are enabled, but this partition does not support one or both", "type": "error" } - ] + ], + "type": "tree" }, { "conditions": [ @@ -200,14 +198,12 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ { "fn": "booleanEquals", "argv": [ - true, { "fn": "getAttr", "argv": [ @@ -216,18 +212,17 @@ }, "supportsFIPS" ] - } + }, + true ] } ], - "type": "tree", "rules": [ { "conditions": [ { "fn": "stringEquals", "argv": [ - "aws-us-gov", { "fn": "getAttr", "argv": [ @@ -236,7 +231,8 @@ }, "name" ] - } + }, + "aws-us-gov" ] } ], @@ -256,14 +252,16 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" }, { "conditions": [], "error": "FIPS is enabled but this partition does not support FIPS", "type": "error" } - ] + ], + "type": "tree" }, { "conditions": [ @@ -277,7 +275,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ @@ -297,7 +294,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [], @@ -308,14 +304,16 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" }, { "conditions": [], "error": "DualStack is enabled but this partition does not support DualStack", "type": "error" } - ] + ], + "type": "tree" }, { "conditions": [], @@ -326,9 +324,11 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" } - ] + ], + "type": "tree" }, { "conditions": [],