AWS SDK for Java 1.11.928

CHANGELOG.md

@@ -1,3 +1,12 @@
+# __1.11.928__ __2020-12-29__
+## __AWS Certificate Manager Private Certificate Authority__
+  - ### Features
+    - This release adds a new parameter "CsrExtensions" in the "CertificateAuthorityConfiguration" data structure, which allows customers to add the addition of KU and SIA into the CA CSR.
+
+## __AmazonApiGatewayV2__
+  - ### Features
+    - Amazon API Gateway now supports data mapping for HTTP APIs which allows customers to modify HTTP Request before sending it to their integration and HTTP Response before sending it to the invoker.
+
 # __1.11.927__ __2020-12-28__
 ## __Amazon CloudFront__
   - ### Features

README.md

@@ -48,7 +48,7 @@ dependencies.
     <dependency>
       <groupId>com.amazonaws</groupId>
       <artifactId>aws-java-sdk-bom</artifactId>
-      <version>1.11.927</version>
+      <version>1.11.928</version>
       <type>pom</type>
       <scope>import</scope>
     </dependency>

aws-java-sdk-accessanalyzer/pom.xml

@@ -5,7 +5,7 @@
   <parent>
     <groupId>com.amazonaws</groupId>
     <artifactId>aws-java-sdk-pom</artifactId>
-    <version>1.11.927</version>
+    <version>1.11.928</version>
   </parent>
   <groupId>com.amazonaws</groupId>
   <artifactId>aws-java-sdk-accessanalyzer</artifactId>

aws-java-sdk-acm/pom.xml

@@ -5,7 +5,7 @@
   <parent>
     <groupId>com.amazonaws</groupId>
     <artifactId>aws-java-sdk-pom</artifactId>
-    <version>1.11.927</version>
+    <version>1.11.928</version>
   </parent>
   <groupId>com.amazonaws</groupId>
   <artifactId>aws-java-sdk-acm</artifactId>

aws-java-sdk-acmpca/pom.xml

@@ -5,7 +5,7 @@
   <parent>
     <groupId>com.amazonaws</groupId>
     <artifactId>aws-java-sdk-pom</artifactId>
-    <version>1.11.927</version>
+    <version>1.11.928</version>
   </parent>
   <groupId>com.amazonaws</groupId>
   <artifactId>aws-java-sdk-acmpca</artifactId>

aws-java-sdk-acmpca/src/main/java/com/amazonaws/services/acmpca/AWSACMPCA.java

@@ -27,9 +27,6 @@
  * {@link com.amazonaws.services.acmpca.AbstractAWSACMPCA} instead.
  * </p>
  * <p>
- * <note>
- * <p/>
- * </note>
  * <p>
  * This is the <i>ACM Private CA API Reference</i>. It provides descriptions, syntax, and usage examples for each of the
  * actions and data types involved in creating and managing private certificate authorities (CA) for your organization.
@@ -89,8 +86,8 @@ public interface AWSACMPCA {
      *         One or more of the specified arguments was not valid.
      * @throws InvalidPolicyException
      *         The resource policy is invalid or is missing a required statement. For general information about IAM
-     *         policy and statement structure, see <a href=
-     *         "https://docs.aws.amazon.com/https:/docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#access_policies-json"
+     *         policy and statement structure, see <a
+     *         href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#access_policies-json"
      *         >Overview of JSON Policies</a>.
      * @throws InvalidTagException
      *         The tag associated with the CA is not valid. The invalid argument is contained in the message field.
@@ -181,7 +178,8 @@ CreateCertificateAuthorityAuditReportResult createCertificateAuthorityAuditRepor
      * If the private CA and the ACM certificates reside in different accounts, then permissions cannot be used to
      * enable automatic renewals. Instead, the ACM certificate owner must set up a resource-based policy to enable
      * cross-account issuance and renewals. For more information, see <a
-     * href="acm-pca/latest/userguide/pca-rbp.html">Using a Resource Based Policy with ACM Private CA</a>.
+     * href="https://docs.aws.amazon.com/acm-pca/latest/userguide/pca-rbp.html">Using a Resource Based Policy with ACM
+     * Private CA</a>.
      * </p>
      * </li>
      * </ul>
@@ -297,7 +295,8 @@ CreateCertificateAuthorityAuditReportResult createCertificateAuthorityAuditRepor
      * If the private CA and the ACM certificates reside in different accounts, then permissions cannot be used to
      * enable automatic renewals. Instead, the ACM certificate owner must set up a resource-based policy to enable
      * cross-account issuance and renewals. For more information, see <a
-     * href="acm-pca/latest/userguide/pca-rbp.html">Using a Resource Based Policy with ACM Private CA</a>.
+     * href="https://docs.aws.amazon.com/acm-pca/latest/userguide/pca-rbp.html">Using a Resource Based Policy with ACM
+     * Private CA</a>.
      * </p>
      * </li>
      * </ul>
@@ -344,7 +343,8 @@ CreateCertificateAuthorityAuditReportResult createCertificateAuthorityAuditRepor
      * <p>
      * A policy grants access on a private CA to an AWS customer account, to AWS Organizations, or to an AWS
      * Organizations unit. Policies are under the control of a CA administrator. For more information, see <a
-     * href="acm-pca/latest/userguide/pca-rbp.html">Using a Resource Based Policy with ACM Private CA</a>.
+     * href="https://docs.aws.amazon.com/acm-pca/latest/userguide/pca-rbp.html">Using a Resource Based Policy with ACM
+     * Private CA</a>.
      * </p>
      * </li>
      * <li>
@@ -364,7 +364,8 @@ CreateCertificateAuthorityAuditReportResult createCertificateAuthorityAuditRepor
      * <li>
      * <p>
      * Updates made in AWS Resource Manager (RAM) are reflected in policies. For more information, see <a
-     * href="acm-pca/latest/userguide/pca-ram.html">Using AWS Resource Access Manager (RAM) with ACM Private CA</a>.
+     * href="https://docs.aws.amazon.com/acm-pca/latest/userguide/pca-ram.html">Attach a Policy for Cross-Account
+     * Access</a>.
      * </p>
      * </li>
      * </ul>
@@ -566,7 +567,7 @@ GetCertificateAuthorityCertificateResult getCertificateAuthorityCertificate(
      * <p>
      * The policy can be attached or updated with <a
      * href="https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_PutPolicy.html">PutPolicy</a> and removed with
-     * <a href="acm-pca/latest/APIReference/API_DeletePolicy.html">DeletePolicy</a>.
+     * <a href="https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_DeletePolicy.html">DeletePolicy</a>.
      * </p>
      * <p class="title">
      * <b>About Policies</b>
@@ -576,7 +577,8 @@ GetCertificateAuthorityCertificateResult getCertificateAuthorityCertificate(
      * <p>
      * A policy grants access on a private CA to an AWS customer account, to AWS Organizations, or to an AWS
      * Organizations unit. Policies are under the control of a CA administrator. For more information, see <a
-     * href="acm-pca/latest/userguide/pca-rbp.html">Using a Resource Based Policy with ACM Private CA</a>.
+     * href="https://docs.aws.amazon.com/acm-pca/latest/userguide/pca-rbp.html">Using a Resource Based Policy with ACM
+     * Private CA</a>.
      * </p>
      * </li>
      * <li>
@@ -596,7 +598,8 @@ GetCertificateAuthorityCertificateResult getCertificateAuthorityCertificate(
      * <li>
      * <p>
      * Updates made in AWS Resource Manager (RAM) are reflected in policies. For more information, see <a
-     * href="acm-pca/latest/userguide/pca-ram.html">Using AWS Resource Access Manager (RAM) with ACM Private CA</a>.
+     * href="https://docs.aws.amazon.com/acm-pca/latest/userguide/pca-ram.html">Attach a Policy for Cross-Account
+     * Access</a>.
      * </p>
      * </li>
      * </ul>
@@ -650,17 +653,37 @@ GetCertificateAuthorityCertificateResult getCertificateAuthorityCertificate(
      * </li>
      * </ol>
      * <p>
-     * The following requirements apply when you import a CA certificate.
+     * ACM Private CA supports three scenarios for installing a CA certificate:
+     * </p>
+     * <ul>
+     * <li>
+     * <p>
+     * Installing a certificate for a root CA hosted by ACM Private CA.
+     * </p>
+     * </li>
+     * <li>
+     * <p>
+     * Installing a subordinate CA certificate whose parent authority is hosted by ACM Private CA.
+     * </p>
+     * </li>
+     * <li>
+     * <p>
+     * Installing a subordinate CA certificate whose parent authority is externally hosted.
+     * </p>
+     * </li>
+     * </ul>
+     * <p>
+     * The following addtitional requirements apply when you import a CA certificate.
      * </p>
      * <ul>
      * <li>
      * <p>
-     * You cannot import a non-self-signed certificate for use as a root CA.
+     * Only a self-signed certificate can be imported as a root CA.
      * </p>
      * </li>
      * <li>
      * <p>
-     * You cannot import a self-signed certificate for use as a subordinate CA.
+     * A self-signed certificate cannot be imported as a subordinate CA.
      * </p>
      * </li>
      * <li>
@@ -670,9 +693,9 @@ GetCertificateAuthorityCertificateResult getCertificateAuthorityCertificate(
      * </li>
      * <li>
      * <p>
-     * Your ACM Private CA-hosted or on-premises CA certificate must be the last certificate in your chain. The
-     * subordinate certificate, if any, that your root CA signed must be next to last. The subordinate certificate
-     * signed by the preceding subordinate CA must come next, and so on until your chain is built.
+     * Your root CA must be the last certificate in your chain. The subordinate certificate, if any, that your root CA
+     * signed must be next to last. The subordinate certificate signed by the preceding subordinate CA must come next,
+     * and so on until your chain is built.
      * </p>
      * </li>
      * <li>
@@ -916,7 +939,8 @@ ImportCertificateAuthorityCertificateResult importCertificateAuthorityCertificat
      * If the private CA and the ACM certificates reside in different accounts, then permissions cannot be used to
      * enable automatic renewals. Instead, the ACM certificate owner must set up a resource-based policy to enable
      * cross-account issuance and renewals. For more information, see <a
-     * href="acm-pca/latest/userguide/pca-rbp.html">Using a Resource Based Policy with ACM Private CA</a>.
+     * href="https://docs.aws.amazon.com/acm-pca/latest/userguide/pca-rbp.html">Using a Resource Based Policy with ACM
+     * Private CA</a>.
      * </p>
      * </li>
      * </ul>
@@ -971,9 +995,9 @@ ImportCertificateAuthorityCertificateResult importCertificateAuthorityCertificat
      * Attaches a resource-based policy to a private CA.
      * </p>
      * <p>
-     * A policy can also be applied by <a
-     * href="https://docs.aws.amazon.com/acm-pca/latest/userguide/pca-ram.html">sharing</a> a private CA through AWS
-     * Resource Access Manager (RAM).
+     * A policy can also be applied by sharing a private CA through AWS Resource Access Manager (RAM). For more
+     * information, see <a href="https://docs.aws.amazon.com/acm-pca/latest/userguide/pca-ram.html">Attach a Policy for
+     * Cross-Account Access</a>.
      * </p>
      * <p>
      * The policy can be displayed with <a
@@ -988,7 +1012,8 @@ ImportCertificateAuthorityCertificateResult importCertificateAuthorityCertificat
      * <p>
      * A policy grants access on a private CA to an AWS customer account, to AWS Organizations, or to an AWS
      * Organizations unit. Policies are under the control of a CA administrator. For more information, see <a
-     * href="acm-pca/latest/userguide/pca-rbp.html">Using a Resource Based Policy with ACM Private CA</a>.
+     * href="https://docs.aws.amazon.com/acm-pca/latest/userguide/pca-rbp.html">Using a Resource Based Policy with ACM
+     * Private CA</a>.
      * </p>
      * </li>
      * <li>
@@ -1008,7 +1033,8 @@ ImportCertificateAuthorityCertificateResult importCertificateAuthorityCertificat
      * <li>
      * <p>
      * Updates made in AWS Resource Manager (RAM) are reflected in policies. For more information, see <a
-     * href="acm-pca/latest/userguide/pca-ram.html">Using AWS Resource Access Manager (RAM) with ACM Private CA</a>.
+     * href="https://docs.aws.amazon.com/acm-pca/latest/userguide/pca-ram.html">Attach a Policy for Cross-Account
+     * Access</a>.
      * </p>
      * </li>
      * </ul>
@@ -1023,8 +1049,8 @@ ImportCertificateAuthorityCertificateResult importCertificateAuthorityCertificat
      *         The state of the private CA does not allow this action to occur.
      * @throws InvalidPolicyException
      *         The resource policy is invalid or is missing a required statement. For general information about IAM
-     *         policy and statement structure, see <a href=
-     *         "https://docs.aws.amazon.com/https:/docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#access_policies-json"
+     *         policy and statement structure, see <a
+     *         href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#access_policies-json"
      *         >Overview of JSON Policies</a>.
      * @throws LockoutPreventedException
      *         The current action was prevented because it would lock the caller out from performing subsequent actions.
@@ -1219,8 +1245,8 @@ ImportCertificateAuthorityCertificateResult importCertificateAuthorityCertificat
      *         The state of the private CA does not allow this action to occur.
      * @throws InvalidPolicyException
      *         The resource policy is invalid or is missing a required statement. For general information about IAM
-     *         policy and statement structure, see <a href=
-     *         "https://docs.aws.amazon.com/https:/docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#access_policies-json"
+     *         policy and statement structure, see <a
+     *         href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#access_policies-json"
      *         >Overview of JSON Policies</a>.
      * @sample AWSACMPCA.UpdateCertificateAuthority
      * @see <a href="http://docs.aws.amazon.com/goto/WebAPI/acm-pca-2017-08-22/UpdateCertificateAuthority"