diff --git a/clients/client-quicksight/src/commands/DescribeIpRestrictionCommand.ts b/clients/client-quicksight/src/commands/DescribeIpRestrictionCommand.ts index a8116b884df9..51f9b567efb5 100644 --- a/clients/client-quicksight/src/commands/DescribeIpRestrictionCommand.ts +++ b/clients/client-quicksight/src/commands/DescribeIpRestrictionCommand.ts @@ -44,6 +44,12 @@ export interface DescribeIpRestrictionCommandOutput extends DescribeIpRestrictio * // IpRestrictionRuleMap: { // IpRestrictionRuleMap * // "": "STRING_VALUE", * // }, + * // VpcIdRestrictionRuleMap: { // VpcIdRestrictionRuleMap + * // "": "STRING_VALUE", + * // }, + * // VpcEndpointIdRestrictionRuleMap: { // VpcEndpointIdRestrictionRuleMap + * // "": "STRING_VALUE", + * // }, * // Enabled: true || false, * // RequestId: "STRING_VALUE", * // Status: Number("int"), diff --git a/clients/client-quicksight/src/commands/UpdateIpRestrictionCommand.ts b/clients/client-quicksight/src/commands/UpdateIpRestrictionCommand.ts index e7018f592a80..17d572891382 100644 --- a/clients/client-quicksight/src/commands/UpdateIpRestrictionCommand.ts +++ b/clients/client-quicksight/src/commands/UpdateIpRestrictionCommand.ts @@ -27,10 +27,7 @@ export interface UpdateIpRestrictionCommandInput extends UpdateIpRestrictionRequ export interface UpdateIpRestrictionCommandOutput extends UpdateIpRestrictionResponse, __MetadataBearer {} /** - *

Updates the content and status of IP rules. To use this operation, you - * must - * provide the entire map of rules. You can use the DescribeIpRestriction - * operation to get the current rule map.

+ *

Updates the content and status of IP rules. Traffic from a source is allowed when the source satisfies either the IpRestrictionRule, VpcIdRestrictionRule, or VpcEndpointIdRestrictionRule. To use this operation, you must provide the entire map of rules. You can use the DescribeIpRestriction operation to get the current rule map.

* @example * Use a bare-bones client and the command you need to make an API call. * ```javascript @@ -42,6 +39,12 @@ export interface UpdateIpRestrictionCommandOutput extends UpdateIpRestrictionRes * IpRestrictionRuleMap: { // IpRestrictionRuleMap * "": "STRING_VALUE", * }, + * VpcIdRestrictionRuleMap: { // VpcIdRestrictionRuleMap + * "": "STRING_VALUE", + * }, + * VpcEndpointIdRestrictionRuleMap: { // VpcEndpointIdRestrictionRuleMap + * "": "STRING_VALUE", + * }, * Enabled: true || false, * }; * const command = new UpdateIpRestrictionCommand(input); diff --git a/clients/client-quicksight/src/models/models_2.ts b/clients/client-quicksight/src/models/models_2.ts index 208680481535..14960cc2d6ac 100644 --- a/clients/client-quicksight/src/models/models_2.ts +++ b/clients/client-quicksight/src/models/models_2.ts @@ -5523,7 +5523,7 @@ export interface StringDatasetParameter { } /** - *

A dataset parameter.

+ *

A parameter that is created in a dataset. The parameter can be a string, integer, decimal, or datetime data type.

* @public */ export interface DatasetParameter { diff --git a/clients/client-quicksight/src/models/models_3.ts b/clients/client-quicksight/src/models/models_3.ts index 8e5c71fa90f2..962ef2c3e281 100644 --- a/clients/client-quicksight/src/models/models_3.ts +++ b/clients/client-quicksight/src/models/models_3.ts @@ -5756,6 +5756,18 @@ export interface DescribeIpRestrictionResponse { */ IpRestrictionRuleMap?: Record; + /** + *

A map of allowed VPC IDs and their rule descriptions.

+ * @public + */ + VpcIdRestrictionRuleMap?: Record; + + /** + *

A map of allowed VPC endpoint IDs and their rule descriptions.

+ * @public + */ + VpcEndpointIdRestrictionRuleMap?: Record; + /** *

A value that specifies whether IP rules are turned on.

* @public @@ -7637,8 +7649,8 @@ export interface GenerateEmbedUrlForAnonymousUserRequest { * is authorized to access during the lifetime of the session.

*

If you choose Dashboard embedding experience, pass the list of dashboard ARNs in the * account that you want the user to be able to view.

- *

Currently, you can pass up to 25 - * dashboard ARNs in each API call.

+ *

If you want to make changes to the theme of your embedded content, pass a list of theme ARNs that the anonymous users need access to.

+ *

Currently, you can pass up to 25 theme ARNs in each API call.

* @public */ AuthorizedResourceArns: string[] | undefined; diff --git a/clients/client-quicksight/src/models/models_4.ts b/clients/client-quicksight/src/models/models_4.ts index ddfbfb0bd037..32aafcacadf5 100644 --- a/clients/client-quicksight/src/models/models_4.ts +++ b/clients/client-quicksight/src/models/models_4.ts @@ -3519,6 +3519,18 @@ export interface UpdateIpRestrictionRequest { */ IpRestrictionRuleMap?: Record; + /** + *

A map of VPC IDs and their corresponding rules. When you configure this parameter, traffic from all VPC endpoints that are present in the specified VPC is allowed.

+ * @public + */ + VpcIdRestrictionRuleMap?: Record; + + /** + *

A map of allowed VPC endpoint IDs and their corresponding rule descriptions.

+ * @public + */ + VpcEndpointIdRestrictionRuleMap?: Record; + /** *

A value that specifies whether IP rules are turned on.

* @public diff --git a/clients/client-quicksight/src/protocols/Aws_restJson1.ts b/clients/client-quicksight/src/protocols/Aws_restJson1.ts index 3229cee2c1ac..6b86757acc1b 100644 --- a/clients/client-quicksight/src/protocols/Aws_restJson1.ts +++ b/clients/client-quicksight/src/protocols/Aws_restJson1.ts @@ -4619,6 +4619,8 @@ export const se_UpdateIpRestrictionCommand = async ( take(input, { Enabled: [], IpRestrictionRuleMap: (_) => _json(_), + VpcEndpointIdRestrictionRuleMap: (_) => _json(_), + VpcIdRestrictionRuleMap: (_) => _json(_), }) ); b.m("POST").h(headers).b(body); @@ -6959,6 +6961,8 @@ export const de_DescribeIpRestrictionCommand = async ( Enabled: __expectBoolean, IpRestrictionRuleMap: _json, RequestId: __expectString, + VpcEndpointIdRestrictionRuleMap: _json, + VpcIdRestrictionRuleMap: _json, }); Object.assign(contents, doc); map(contents, { @@ -14566,6 +14570,10 @@ const se_VisualList = (input: Visual[], context: __SerdeContext): any => { // se_VpcConnectionProperties omitted. +// se_VpcEndpointIdRestrictionRuleMap omitted. + +// se_VpcIdRestrictionRuleMap omitted. + /** * serializeAws_restJson1WaterfallChartAggregatedFieldWells */ @@ -20113,6 +20121,10 @@ const de_VPCConnectionSummaryList = (output: any, context: __SerdeContext): VPCC return retVal; }; +// de_VpcEndpointIdRestrictionRuleMap omitted. + +// de_VpcIdRestrictionRuleMap omitted. + /** * deserializeAws_restJson1WaterfallChartAggregatedFieldWells */ diff --git a/codegen/sdk-codegen/aws-models/quicksight.json b/codegen/sdk-codegen/aws-models/quicksight.json index c2653702f128..bb76a8f1385e 100644 --- a/codegen/sdk-codegen/aws-models/quicksight.json +++ b/codegen/sdk-codegen/aws-models/quicksight.json @@ -12461,7 +12461,7 @@ } }, "traits": { - "smithy.api#documentation": "

A dataset parameter.

" + "smithy.api#documentation": "

A parameter that is created in a dataset. The parameter can be a string, integer, decimal, or datetime data type.

" } }, "com.amazonaws.quicksight#DatasetParameterId": { @@ -12511,6 +12511,9 @@ "smithy.api#enumValue": "SINGLE_VALUED" } } + }, + "traits": { + "smithy.api#documentation": "

The value type of the parameter. The value type is used to validate the parameter before it is evaluated.

" } }, "com.amazonaws.quicksight#Datasets": { @@ -18820,6 +18823,18 @@ "smithy.api#documentation": "

A map that describes the IP rules with CIDR range and description.

" } }, + "VpcIdRestrictionRuleMap": { + "target": "com.amazonaws.quicksight#VpcIdRestrictionRuleMap", + "traits": { + "smithy.api#documentation": "

A map of allowed VPC IDs and their rule descriptions.

" + } + }, + "VpcEndpointIdRestrictionRuleMap": { + "target": "com.amazonaws.quicksight#VpcEndpointIdRestrictionRuleMap", + "traits": { + "smithy.api#documentation": "

A map of allowed VPC endpoint IDs and their rule descriptions.

" + } + }, "Enabled": { "target": "com.amazonaws.quicksight#NullableBoolean", "traits": { @@ -23800,7 +23815,7 @@ "AuthorizedResourceArns": { "target": "com.amazonaws.quicksight#ArnList", "traits": { - "smithy.api#documentation": "

The Amazon Resource Names (ARNs) for the Amazon QuickSight resources that the user\n is authorized to access during the lifetime of the session.

\n

If you choose Dashboard embedding experience, pass the list of dashboard ARNs in the\n account that you want the user to be able to view.

\n

Currently, you can pass up to 25\n dashboard ARNs in each API call.

", + "smithy.api#documentation": "

The Amazon Resource Names (ARNs) for the Amazon QuickSight resources that the user\n is authorized to access during the lifetime of the session.

\n

If you choose Dashboard embedding experience, pass the list of dashboard ARNs in the\n account that you want the user to be able to view.

\n

If you want to make changes to the theme of your embedded content, pass a list of theme ARNs that the anonymous users need access to.

\n

Currently, you can pass up to 25 theme ARNs in each API call.

", "smithy.api#required": {} } }, @@ -42719,7 +42734,7 @@ "traits": { "smithy.api#length": { "min": 1, - "max": 65536 + "max": 168000 } } }, @@ -50107,7 +50122,7 @@ } ], "traits": { - "smithy.api#documentation": "

Updates the content and status of IP rules. To use this operation, you\n\t\t\tmust\n\t\t\tprovide the entire map of rules. You can use the DescribeIpRestriction\n\t\t\toperation to get the current rule map.

", + "smithy.api#documentation": "

Updates the content and status of IP rules. Traffic from a source is allowed when the source satisfies either the IpRestrictionRule, VpcIdRestrictionRule, or VpcEndpointIdRestrictionRule. To use this operation, you must provide the entire map of rules. You can use the DescribeIpRestriction operation to get the current rule map.

", "smithy.api#http": { "method": "POST", "uri": "/accounts/{AwsAccountId}/ip-restriction", @@ -50132,6 +50147,18 @@ "smithy.api#documentation": "

A map that describes the updated IP rules with CIDR ranges and descriptions.

" } }, + "VpcIdRestrictionRuleMap": { + "target": "com.amazonaws.quicksight#VpcIdRestrictionRuleMap", + "traits": { + "smithy.api#documentation": "

A map of VPC IDs and their corresponding rules. When you configure this parameter, traffic from all VPC endpoints that are present in the specified VPC is allowed.

" + } + }, + "VpcEndpointIdRestrictionRuleMap": { + "target": "com.amazonaws.quicksight#VpcEndpointIdRestrictionRuleMap", + "traits": { + "smithy.api#documentation": "

A map of allowed VPC endpoint IDs and their corresponding rule descriptions.

" + } + }, "Enabled": { "target": "com.amazonaws.quicksight#NullableBoolean", "traits": { @@ -52830,6 +52857,62 @@ "smithy.api#documentation": "

VPC connection properties.

" } }, + "com.amazonaws.quicksight#VpcEndpointId": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 255 + }, + "smithy.api#pattern": "^vpce-[0-9a-z]*$" + } + }, + "com.amazonaws.quicksight#VpcEndpointIdRestrictionRuleDescription": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 0, + "max": 150 + } + } + }, + "com.amazonaws.quicksight#VpcEndpointIdRestrictionRuleMap": { + "type": "map", + "key": { + "target": "com.amazonaws.quicksight#VpcEndpointId" + }, + "value": { + "target": "com.amazonaws.quicksight#VpcEndpointIdRestrictionRuleDescription" + } + }, + "com.amazonaws.quicksight#VpcId": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 255 + }, + "smithy.api#pattern": "^vpc-[0-9a-z]*$" + } + }, + "com.amazonaws.quicksight#VpcIdRestrictionRuleDescription": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 0, + "max": 150 + } + } + }, + "com.amazonaws.quicksight#VpcIdRestrictionRuleMap": { + "type": "map", + "key": { + "target": "com.amazonaws.quicksight#VpcId" + }, + "value": { + "target": "com.amazonaws.quicksight#VpcIdRestrictionRuleDescription" + } + }, "com.amazonaws.quicksight#Warehouse": { "type": "string", "traits": {