Skip to content

Commit

Permalink
feat(client-acm-pca): This release adds support for waiters to fail o…
Browse files Browse the repository at this point in the history 
…n AccessDeniedException when having insufficient permissions
  • Loading branch information
awstools committed May 16, 2024
1 parent bd7756b commit d4c2ced
Show file tree
Hide file tree
Showing 4 changed files with 31 additions and 1 deletion.
3 changes: 3 additions & 0 deletions clients/client-acm-pca/src/waiters/waitForAuditReportCreated.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,6 +33,9 @@ const checkState = async (
} catch (e) {}
} catch (exception) {
reason = exception;
if (exception.name && exception.name == "AccessDeniedException") {
return { state: WaiterState.FAILURE, reason };
}
}
return { state: WaiterState.RETRY, reason };
};
Expand Down
3 changes: 3 additions & 0 deletions clients/client-acm-pca/src/waiters/waitForCertificateAuthorityCSRCreated.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,9 @@ const checkState = async (
if (exception.name && exception.name == "RequestInProgressException") {
return { state: WaiterState.RETRY, reason };
}
if (exception.name && exception.name == "AccessDeniedException") {
return { state: WaiterState.FAILURE, reason };
}
}
return { state: WaiterState.RETRY, reason };
};
Expand Down
3 changes: 3 additions & 0 deletions clients/client-acm-pca/src/waiters/waitForCertificateIssued.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,9 @@ const checkState = async (client: ACMPCAClient, input: GetCertificateCommandInpu
if (exception.name && exception.name == "RequestInProgressException") {
return { state: WaiterState.RETRY, reason };
}
if (exception.name && exception.name == "AccessDeniedException") {
return { state: WaiterState.FAILURE, reason };
}
}
return { state: WaiterState.RETRY, reason };
};
Expand Down
23 changes: 22 additions & 1 deletion codegen/sdk-codegen/aws-models/acm-pca.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -108,7 +108,7 @@
"sdkId": "ACM PCA",
"arnNamespace": "acm-pca",
"cloudFormationName": "ACMPCA",
"cloudTrailEventSource": "acmpca.amazonaws.com",
"cloudTrailEventSource": "acm-pca.amazonaws.com",
"endpointPrefix": "acm-pca"
},
"aws.auth#sigv4": {
Expand Down Expand Up @@ -2360,6 +2360,7 @@
],
"traits": {
"smithy.api#documentation": "<p>Lists information about a specific audit report created by calling the <a href=\"https://docs.aws.amazon.com/privateca/latest/APIReference/API_CreateCertificateAuthorityAuditReport.html\">CreateCertificateAuthorityAuditReport</a> action. Audit information is created\n\t\t\tevery time the certificate authority (CA) private key is used. The private key is used\n\t\t\twhen you call the <a href=\"https://docs.aws.amazon.com/privateca/latest/APIReference/API_IssueCertificate.html\">IssueCertificate</a> action or the\n\t\t\t\t<a href=\"https://docs.aws.amazon.com/privateca/latest/APIReference/API_RevokeCertificate.html\">RevokeCertificate</a> action. </p>",
"smithy.api#suppress": ["WaitableTraitInvalidErrorType"],
"smithy.waiters#waitable": {
"AuditReportCreated": {
"documentation": "Wait until a Audit Report is created",
Expand All @@ -2383,6 +2384,12 @@
"comparator": "stringEquals"
}
}
},
{
"state": "failure",
"matcher": {
"errorType": "AccessDeniedException"
}
}
],
"minDelay": 3
Expand Down Expand Up @@ -2735,6 +2742,7 @@
],
"traits": {
"smithy.api#documentation": "<p>Retrieves a certificate from your private CA or one that has been shared with you. The\n\t\t\tARN of the certificate is returned when you call the <a href=\"https://docs.aws.amazon.com/privateca/latest/APIReference/API_IssueCertificate.html\">IssueCertificate</a> action. You\n\t\t\tmust specify both the ARN of your private CA and the ARN of the issued certificate when\n\t\t\tcalling the <b>GetCertificate</b> action. You can retrieve the\n\t\t\tcertificate if it is in the <b>ISSUED</b> state. You can call\n\t\t\tthe <a href=\"https://docs.aws.amazon.com/privateca/latest/APIReference/API_CreateCertificateAuthorityAuditReport.html\">CreateCertificateAuthorityAuditReport</a> action to create a report that\n\t\t\tcontains information about all of the certificates issued and revoked by your private\n\t\t\tCA. </p>",
"smithy.api#suppress": ["WaitableTraitInvalidErrorType"],
"smithy.waiters#waitable": {
"CertificateIssued": {
"documentation": "Wait until a certificate is issued",
Expand All @@ -2750,6 +2758,12 @@
"matcher": {
"errorType": "RequestInProgressException"
}
},
{
"state": "failure",
"matcher": {
"errorType": "AccessDeniedException"
}
}
],
"minDelay": 1
Expand Down Expand Up @@ -2842,6 +2856,7 @@
],
"traits": {
"smithy.api#documentation": "<p>Retrieves the certificate signing request (CSR) for your private certificate authority\n\t\t\t(CA). The CSR is created when you call the <a href=\"https://docs.aws.amazon.com/privateca/latest/APIReference/API_CreateCertificateAuthority.html\">CreateCertificateAuthority</a> action. Sign the CSR with your Amazon Web Services Private CA-hosted\n\t\t\tor on-premises root or subordinate CA. Then import the signed certificate back into\n\t\t\tAmazon Web Services Private CA by calling the <a href=\"https://docs.aws.amazon.com/privateca/latest/APIReference/API_ImportCertificateAuthorityCertificate.html\">ImportCertificateAuthorityCertificate</a> action. The CSR is returned as a\n\t\t\tbase64 PEM-encoded string. </p>",
"smithy.api#suppress": ["WaitableTraitInvalidErrorType"],
"smithy.waiters#waitable": {
"CertificateAuthorityCSRCreated": {
"documentation": "Wait until a Certificate Authority CSR is created",
Expand All @@ -2857,6 +2872,12 @@
"matcher": {
"errorType": "RequestInProgressException"
}
},
{
"state": "failure",
"matcher": {
"errorType": "AccessDeniedException"
}
}
],
"minDelay": 3
Expand Down

0 comments on commit d4c2ced

Please sign in to comment.