|
41 | 41 | "input":{"shape":"CancelPolicyGenerationRequest"}, |
42 | 42 | "output":{"shape":"CancelPolicyGenerationResponse"}, |
43 | 43 | "errors":[ |
44 | | - {"shape":"ValidationException"}, |
45 | 44 | {"shape":"InternalServerException"}, |
| 45 | + {"shape":"ValidationException"}, |
46 | 46 | {"shape":"ThrottlingException"}, |
47 | 47 | {"shape":"AccessDeniedException"} |
48 | 48 | ], |
|
59 | 59 | "input":{"shape":"CheckAccessNotGrantedRequest"}, |
60 | 60 | "output":{"shape":"CheckAccessNotGrantedResponse"}, |
61 | 61 | "errors":[ |
62 | | - {"shape":"ValidationException"}, |
63 | 62 | {"shape":"InternalServerException"}, |
| 63 | + {"shape":"ValidationException"}, |
64 | 64 | {"shape":"InvalidParameterException"}, |
65 | 65 | {"shape":"UnprocessableEntityException"}, |
66 | 66 | {"shape":"ThrottlingException"}, |
|
78 | 78 | "input":{"shape":"CheckNoNewAccessRequest"}, |
79 | 79 | "output":{"shape":"CheckNoNewAccessResponse"}, |
80 | 80 | "errors":[ |
81 | | - {"shape":"ValidationException"}, |
82 | 81 | {"shape":"InternalServerException"}, |
| 82 | + {"shape":"ValidationException"}, |
83 | 83 | {"shape":"InvalidParameterException"}, |
84 | 84 | {"shape":"UnprocessableEntityException"}, |
85 | 85 | {"shape":"ThrottlingException"}, |
|
97 | 97 | "input":{"shape":"CheckNoPublicAccessRequest"}, |
98 | 98 | "output":{"shape":"CheckNoPublicAccessResponse"}, |
99 | 99 | "errors":[ |
100 | | - {"shape":"ValidationException"}, |
101 | 100 | {"shape":"InternalServerException"}, |
| 101 | + {"shape":"ValidationException"}, |
102 | 102 | {"shape":"InvalidParameterException"}, |
103 | 103 | {"shape":"UnprocessableEntityException"}, |
104 | 104 | {"shape":"ThrottlingException"}, |
|
116 | 116 | "input":{"shape":"CreateAccessPreviewRequest"}, |
117 | 117 | "output":{"shape":"CreateAccessPreviewResponse"}, |
118 | 118 | "errors":[ |
119 | | - {"shape":"ResourceNotFoundException"}, |
120 | 119 | {"shape":"ConflictException"}, |
121 | | - {"shape":"ValidationException"}, |
| 120 | + {"shape":"ResourceNotFoundException"}, |
122 | 121 | {"shape":"InternalServerException"}, |
| 122 | + {"shape":"ValidationException"}, |
123 | 123 | {"shape":"ServiceQuotaExceededException"}, |
124 | 124 | {"shape":"ThrottlingException"}, |
125 | 125 | {"shape":"AccessDeniedException"} |
|
156 | 156 | }, |
157 | 157 | "input":{"shape":"CreateArchiveRuleRequest"}, |
158 | 158 | "errors":[ |
159 | | - {"shape":"ResourceNotFoundException"}, |
160 | 159 | {"shape":"ConflictException"}, |
| 160 | + {"shape":"ResourceNotFoundException"}, |
161 | 161 | {"shape":"ValidationException"}, |
162 | 162 | {"shape":"InternalServerException"}, |
163 | 163 | {"shape":"ServiceQuotaExceededException"}, |
|
212 | 212 | }, |
213 | 213 | "input":{"shape":"GenerateFindingRecommendationRequest"}, |
214 | 214 | "errors":[ |
215 | | - {"shape":"ValidationException"}, |
216 | 215 | {"shape":"InternalServerException"}, |
| 216 | + {"shape":"ValidationException"}, |
217 | 217 | {"shape":"ThrottlingException"}, |
218 | 218 | {"shape":"AccessDeniedException"} |
219 | 219 | ], |
|
230 | 230 | "output":{"shape":"GetAccessPreviewResponse"}, |
231 | 231 | "errors":[ |
232 | 232 | {"shape":"ResourceNotFoundException"}, |
233 | | - {"shape":"ValidationException"}, |
234 | 233 | {"shape":"InternalServerException"}, |
| 234 | + {"shape":"ValidationException"}, |
235 | 235 | {"shape":"ThrottlingException"}, |
236 | 236 | {"shape":"AccessDeniedException"} |
237 | 237 | ], |
|
373 | 373 | "input":{"shape":"GetGeneratedPolicyRequest"}, |
374 | 374 | "output":{"shape":"GetGeneratedPolicyResponse"}, |
375 | 375 | "errors":[ |
376 | | - {"shape":"ValidationException"}, |
377 | 376 | {"shape":"InternalServerException"}, |
| 377 | + {"shape":"ValidationException"}, |
378 | 378 | {"shape":"ThrottlingException"}, |
379 | 379 | {"shape":"AccessDeniedException"} |
380 | 380 | ], |
|
390 | 390 | "input":{"shape":"ListAccessPreviewFindingsRequest"}, |
391 | 391 | "output":{"shape":"ListAccessPreviewFindingsResponse"}, |
392 | 392 | "errors":[ |
393 | | - {"shape":"ResourceNotFoundException"}, |
394 | 393 | {"shape":"ConflictException"}, |
395 | | - {"shape":"ValidationException"}, |
| 394 | + {"shape":"ResourceNotFoundException"}, |
396 | 395 | {"shape":"InternalServerException"}, |
| 396 | + {"shape":"ValidationException"}, |
397 | 397 | {"shape":"ThrottlingException"}, |
398 | 398 | {"shape":"AccessDeniedException"} |
399 | 399 | ], |
|
410 | 410 | "output":{"shape":"ListAccessPreviewsResponse"}, |
411 | 411 | "errors":[ |
412 | 412 | {"shape":"ResourceNotFoundException"}, |
413 | | - {"shape":"ValidationException"}, |
414 | 413 | {"shape":"InternalServerException"}, |
| 414 | + {"shape":"ValidationException"}, |
415 | 415 | {"shape":"ThrottlingException"}, |
416 | 416 | {"shape":"AccessDeniedException"} |
417 | 417 | ], |
|
515 | 515 | "input":{"shape":"ListPolicyGenerationsRequest"}, |
516 | 516 | "output":{"shape":"ListPolicyGenerationsResponse"}, |
517 | 517 | "errors":[ |
518 | | - {"shape":"ValidationException"}, |
519 | 518 | {"shape":"InternalServerException"}, |
| 519 | + {"shape":"ValidationException"}, |
520 | 520 | {"shape":"ThrottlingException"}, |
521 | 521 | {"shape":"AccessDeniedException"} |
522 | 522 | ], |
|
533 | 533 | "output":{"shape":"ListTagsForResourceResponse"}, |
534 | 534 | "errors":[ |
535 | 535 | {"shape":"ResourceNotFoundException"}, |
536 | | - {"shape":"ValidationException"}, |
537 | 536 | {"shape":"InternalServerException"}, |
| 537 | + {"shape":"ValidationException"}, |
538 | 538 | {"shape":"ThrottlingException"}, |
539 | 539 | {"shape":"AccessDeniedException"} |
540 | 540 | ], |
|
551 | 551 | "output":{"shape":"StartPolicyGenerationResponse"}, |
552 | 552 | "errors":[ |
553 | 553 | {"shape":"ConflictException"}, |
554 | | - {"shape":"ValidationException"}, |
555 | 554 | {"shape":"InternalServerException"}, |
| 555 | + {"shape":"ValidationException"}, |
556 | 556 | {"shape":"ServiceQuotaExceededException"}, |
557 | 557 | {"shape":"ThrottlingException"}, |
558 | 558 | {"shape":"AccessDeniedException"} |
|
588 | 588 | "output":{"shape":"TagResourceResponse"}, |
589 | 589 | "errors":[ |
590 | 590 | {"shape":"ResourceNotFoundException"}, |
591 | | - {"shape":"ValidationException"}, |
592 | 591 | {"shape":"InternalServerException"}, |
| 592 | + {"shape":"ValidationException"}, |
593 | 593 | {"shape":"ThrottlingException"}, |
594 | 594 | {"shape":"AccessDeniedException"} |
595 | 595 | ], |
|
607 | 607 | "output":{"shape":"UntagResourceResponse"}, |
608 | 608 | "errors":[ |
609 | 609 | {"shape":"ResourceNotFoundException"}, |
610 | | - {"shape":"ValidationException"}, |
611 | 610 | {"shape":"InternalServerException"}, |
| 611 | + {"shape":"ValidationException"}, |
612 | 612 | {"shape":"ThrottlingException"}, |
613 | 613 | {"shape":"AccessDeniedException"} |
614 | 614 | ], |
|
681 | 681 | "input":{"shape":"ValidatePolicyRequest"}, |
682 | 682 | "output":{"shape":"ValidatePolicyResponse"}, |
683 | 683 | "errors":[ |
684 | | - {"shape":"ValidationException"}, |
685 | 684 | {"shape":"InternalServerException"}, |
| 685 | + {"shape":"ValidationException"}, |
686 | 686 | {"shape":"ThrottlingException"}, |
687 | 687 | {"shape":"AccessDeniedException"} |
688 | 688 | ], |
|
741 | 741 | "AWS::SecretsManager::Secret", |
742 | 742 | "AWS::SNS::Topic", |
743 | 743 | "AWS::SQS::Queue", |
744 | | - "AWS::IAM::AssumeRolePolicyDocument" |
| 744 | + "AWS::IAM::AssumeRolePolicyDocument", |
| 745 | + "AWS::S3Tables::TableBucket", |
| 746 | + "AWS::ApiGateway::RestApi", |
| 747 | + "AWS::CodeArtifact::Domain", |
| 748 | + "AWS::Backup::BackupVault", |
| 749 | + "AWS::CloudTrail::Dashboard", |
| 750 | + "AWS::CloudTrail::EventDataStore", |
| 751 | + "AWS::S3Tables::Table", |
| 752 | + "AWS::S3Express::AccessPoint" |
745 | 753 | ] |
746 | 754 | }, |
747 | 755 | "AccessDeniedException":{ |
|
3345 | 3353 | "documentation":"<p>The configuration for the Amazon S3 access point or multi-region access point with an <code>Internet</code> origin.</p>" |
3346 | 3354 | } |
3347 | 3355 | }, |
3348 | | - "documentation":"<p>The proposed <code>InternetConfiguration</code> or <code>VpcConfiguration</code> to apply to the Amazon S3 access point. <code>VpcConfiguration</code> does not apply to multi-region access points. You can make the access point accessible from the internet, or you can specify that all requests made through that access point must originate from a specific virtual private cloud (VPC). You can specify only one type of network configuration. For more information, see <a href=\"https://docs.aws.amazon.com/AmazonS3/latest/dev/creating-access-points.html\">Creating access points</a>.</p>", |
| 3356 | + "documentation":"<p>The proposed <code>InternetConfiguration</code> or <code>VpcConfiguration</code> to apply to the Amazon S3 access point. You can make the access point accessible from the internet, or you can specify that all requests made through that access point must originate from a specific virtual private cloud (VPC). You can specify only one type of network configuration. For more information, see <a href=\"https://docs.aws.amazon.com/AmazonS3/latest/dev/creating-access-points.html\">Creating access points</a>.</p>", |
3349 | 3357 | "union":true |
3350 | 3358 | }, |
3351 | 3359 | "OrderBy":{ |
|
3726 | 3734 | }, |
3727 | 3735 | "networkOrigin":{ |
3728 | 3736 | "shape":"NetworkOriginConfiguration", |
3729 | | - "documentation":"<p>The proposed <code>Internet</code> and <code>VpcConfiguration</code> to apply to this Amazon S3 access point. <code>VpcConfiguration</code> does not apply to multi-region access points. If the access preview is for a new resource and neither is specified, the access preview uses <code>Internet</code> for the network origin. If the access preview is for an existing resource and neither is specified, the access preview uses the exiting network origin.</p>" |
| 3737 | + "documentation":"<p>The proposed <code>Internet</code> and <code>VpcConfiguration</code> to apply to this Amazon S3 access point. <code>VpcConfiguration</code> does not apply to multi-region access points. If the access preview is for a new resource and neither is specified, the access preview uses <code>Internet</code> for the network origin. If the access preview is for an existing resource and neither is specified, the access preview uses the existing network origin.</p>" |
3730 | 3738 | } |
3731 | 3739 | }, |
3732 | 3740 | "documentation":"<p>The configuration for an Amazon S3 access point or multi-region access point for the bucket. You can propose up to 10 access points or multi-region access points per bucket. If the proposed Amazon S3 access point configuration is for an existing bucket, the access preview uses the proposed access point configuration in place of the existing access points. To propose an access point without a policy, you can provide an empty string as the access point policy. For more information, see <a href=\"https://docs.aws.amazon.com/AmazonS3/latest/dev/creating-access-points.html\">Creating access points</a>. For more information about access point policy limits, see <a href=\"https://docs.aws.amazon.com/AmazonS3/latest/dev/access-points-restrictions-limitations.html\">Access points restrictions and limitations</a>.</p>" |
|
3781 | 3789 | "documentation":"<p>Proposed access control configuration for an Amazon S3 bucket. You can propose a configuration for a new Amazon S3 bucket or an existing Amazon S3 bucket that you own by specifying the Amazon S3 bucket policy, bucket ACLs, bucket BPA settings, Amazon S3 access points, and multi-region access points attached to the bucket. If the configuration is for an existing Amazon S3 bucket and you do not specify the Amazon S3 bucket policy, the access preview uses the existing policy attached to the bucket. If the access preview is for a new resource and you do not specify the Amazon S3 bucket policy, the access preview assumes a bucket without a policy. To propose deletion of an existing bucket policy, you can specify an empty string. For more information about bucket policy limits, see <a href=\"https://docs.aws.amazon.com/AmazonS3/latest/dev/example-bucket-policies.html\">Bucket Policy Examples</a>.</p>" |
3782 | 3790 | }, |
3783 | 3791 | "S3BucketPolicy":{"type":"string"}, |
| 3792 | + "S3ExpressDirectoryAccessPointArn":{ |
| 3793 | + "type":"string", |
| 3794 | + "pattern":"arn:[^:]*:s3express:[^:]*:[^:]*:accesspoint/.*" |
| 3795 | + }, |
| 3796 | + "S3ExpressDirectoryAccessPointConfiguration":{ |
| 3797 | + "type":"structure", |
| 3798 | + "members":{ |
| 3799 | + "accessPointPolicy":{ |
| 3800 | + "shape":"AccessPointPolicy", |
| 3801 | + "documentation":"<p>The proposed access point policy for an Amazon S3 directory bucket access point.</p>" |
| 3802 | + }, |
| 3803 | + "networkOrigin":{"shape":"NetworkOriginConfiguration"} |
| 3804 | + }, |
| 3805 | + "documentation":"<p>Proposed configuration for an access point attached to an Amazon S3 directory bucket. You can propose up to 10 access points per bucket. If the proposed access point configuration is for an existing Amazon S3 directory bucket, the access preview uses the proposed access point configuration in place of the existing access points. To propose an access point without a policy, you can provide an empty string as the access point policy. For more information about access points for Amazon S3 directory buckets, see <a href=\"https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-points-directory-buckets.html\">Managing access to directory buckets with access points</a> in the Amazon Simple Storage Service User Guide.</p>" |
| 3806 | + }, |
| 3807 | + "S3ExpressDirectoryAccessPointConfigurationsMap":{ |
| 3808 | + "type":"map", |
| 3809 | + "key":{"shape":"S3ExpressDirectoryAccessPointArn"}, |
| 3810 | + "value":{"shape":"S3ExpressDirectoryAccessPointConfiguration"} |
| 3811 | + }, |
3784 | 3812 | "S3ExpressDirectoryBucketConfiguration":{ |
3785 | 3813 | "type":"structure", |
3786 | 3814 | "members":{ |
3787 | 3815 | "bucketPolicy":{ |
3788 | 3816 | "shape":"S3ExpressDirectoryBucketPolicy", |
3789 | 3817 | "documentation":"<p>The proposed bucket policy for the Amazon S3 directory bucket.</p>" |
| 3818 | + }, |
| 3819 | + "accessPoints":{ |
| 3820 | + "shape":"S3ExpressDirectoryAccessPointConfigurationsMap", |
| 3821 | + "documentation":"<p>The proposed access points for the Amazon S3 directory bucket.</p>" |
3790 | 3822 | } |
3791 | 3823 | }, |
3792 | | - "documentation":"<p>Proposed access control configuration for an Amazon S3 directory bucket. You can propose a configuration for a new Amazon S3 directory bucket or an existing Amazon S3 directory bucket that you own by specifying the Amazon S3 bucket policy. If the configuration is for an existing Amazon S3 directory bucket and you do not specify the Amazon S3 bucket policy, the access preview uses the existing policy attached to the directory bucket. If the access preview is for a new resource and you do not specify the Amazon S3 bucket policy, the access preview assumes an directory bucket without a policy. To propose deletion of an existing bucket policy, you can specify an empty string. For more information about Amazon S3 directory bucket policies, see <a href=\"https://docs.aws.amazon.com/AmazonS3/latest/userguide/s3-express-security-iam-example-bucket-policies.html\">Example directory bucket policies for S3 Express One Zone</a>.</p>" |
| 3824 | + "documentation":"<p>Proposed access control configuration for an Amazon S3 directory bucket. You can propose a configuration for a new Amazon S3 directory bucket or an existing Amazon S3 directory bucket that you own by specifying the Amazon S3 bucket policy. If the configuration is for an existing Amazon S3 directory bucket and you do not specify the Amazon S3 bucket policy, the access preview uses the existing policy attached to the directory bucket. If the access preview is for a new resource and you do not specify the Amazon S3 bucket policy, the access preview assumes an directory bucket without a policy. To propose deletion of an existing bucket policy, you can specify an empty string. For more information about Amazon S3 directory bucket policies, see <a href=\"https://docs.aws.amazon.com/AmazonS3/latest/userguide/s3-express-security-iam-example-bucket-policies.html\">Example bucket policies for directory buckets</a> in the Amazon Simple Storage Service User Guide.</p>" |
3793 | 3825 | }, |
3794 | 3826 | "S3ExpressDirectoryBucketPolicy":{"type":"string"}, |
3795 | 3827 | "S3PublicAccessBlockConfiguration":{ |
|
0 commit comments