feat(client-sts): API updates for the AWS Security Token Service

clients/client-sts/src/commands/AssumeRoleCommand.ts

@@ -14,7 +14,7 @@ import {
 import { HttpRequest as __HttpRequest, HttpResponse as __HttpResponse } from "@smithy/protocol-http";
 import { SerdeContext as __SerdeContext } from "@smithy/types";
 
-import { AssumeRoleRequest, AssumeRoleResponse } from "../models/models_0";
+import { AssumeRoleRequest, AssumeRoleResponse, AssumeRoleResponseFilterSensitiveLog } from "../models/models_0";
 import { de_AssumeRoleCommand, se_AssumeRoleCommand } from "../protocols/Aws_query";
 import { ServiceInputTypes, ServiceOutputTypes, STSClientResolvedConfig } from "../STSClient";
 
@@ -302,7 +302,7 @@ export class AssumeRoleCommand extends $Command<
       clientName,
       commandName,
       inputFilterSensitiveLog: (_: any) => _,
-      outputFilterSensitiveLog: (_: any) => _,
+      outputFilterSensitiveLog: AssumeRoleResponseFilterSensitiveLog,
     };
     const { requestHandler } = configuration;
     return stack.resolve(

clients/client-sts/src/commands/AssumeRoleWithSAMLCommand.ts

@@ -13,7 +13,12 @@ import {
 import { HttpRequest as __HttpRequest, HttpResponse as __HttpResponse } from "@smithy/protocol-http";
 import { SerdeContext as __SerdeContext } from "@smithy/types";
 
-import { AssumeRoleWithSAMLRequest, AssumeRoleWithSAMLResponse } from "../models/models_0";
+import {
+  AssumeRoleWithSAMLRequest,
+  AssumeRoleWithSAMLRequestFilterSensitiveLog,
+  AssumeRoleWithSAMLResponse,
+  AssumeRoleWithSAMLResponseFilterSensitiveLog,
+} from "../models/models_0";
 import { de_AssumeRoleWithSAMLCommand, se_AssumeRoleWithSAMLCommand } from "../protocols/Aws_query";
 import { ServiceInputTypes, ServiceOutputTypes, STSClientResolvedConfig } from "../STSClient";
 
@@ -332,8 +337,8 @@ export class AssumeRoleWithSAMLCommand extends $Command<
       logger,
       clientName,
       commandName,
-      inputFilterSensitiveLog: (_: any) => _,
-      outputFilterSensitiveLog: (_: any) => _,
+      inputFilterSensitiveLog: AssumeRoleWithSAMLRequestFilterSensitiveLog,
+      outputFilterSensitiveLog: AssumeRoleWithSAMLResponseFilterSensitiveLog,
     };
     const { requestHandler } = configuration;
     return stack.resolve(

clients/client-sts/src/commands/AssumeRoleWithWebIdentityCommand.ts

@@ -13,7 +13,12 @@ import {
 import { HttpRequest as __HttpRequest, HttpResponse as __HttpResponse } from "@smithy/protocol-http";
 import { SerdeContext as __SerdeContext } from "@smithy/types";
 
-import { AssumeRoleWithWebIdentityRequest, AssumeRoleWithWebIdentityResponse } from "../models/models_0";
+import {
+  AssumeRoleWithWebIdentityRequest,
+  AssumeRoleWithWebIdentityRequestFilterSensitiveLog,
+  AssumeRoleWithWebIdentityResponse,
+  AssumeRoleWithWebIdentityResponseFilterSensitiveLog,
+} from "../models/models_0";
 import { de_AssumeRoleWithWebIdentityCommand, se_AssumeRoleWithWebIdentityCommand } from "../protocols/Aws_query";
 import { ServiceInputTypes, ServiceOutputTypes, STSClientResolvedConfig } from "../STSClient";
 
@@ -341,8 +346,8 @@ export class AssumeRoleWithWebIdentityCommand extends $Command<
       logger,
       clientName,
       commandName,
-      inputFilterSensitiveLog: (_: any) => _,
-      outputFilterSensitiveLog: (_: any) => _,
+      inputFilterSensitiveLog: AssumeRoleWithWebIdentityRequestFilterSensitiveLog,
+      outputFilterSensitiveLog: AssumeRoleWithWebIdentityResponseFilterSensitiveLog,
     };
     const { requestHandler } = configuration;
     return stack.resolve(

clients/client-sts/src/commands/GetFederationTokenCommand.ts

@@ -14,7 +14,11 @@ import {
 import { HttpRequest as __HttpRequest, HttpResponse as __HttpResponse } from "@smithy/protocol-http";
 import { SerdeContext as __SerdeContext } from "@smithy/types";
 
-import { GetFederationTokenRequest, GetFederationTokenResponse } from "../models/models_0";
+import {
+  GetFederationTokenRequest,
+  GetFederationTokenResponse,
+  GetFederationTokenResponseFilterSensitiveLog,
+} from "../models/models_0";
 import { de_GetFederationTokenCommand, se_GetFederationTokenCommand } from "../protocols/Aws_query";
 import { ServiceInputTypes, ServiceOutputTypes, STSClientResolvedConfig } from "../STSClient";
 
@@ -278,7 +282,7 @@ export class GetFederationTokenCommand extends $Command<
       clientName,
       commandName,
       inputFilterSensitiveLog: (_: any) => _,
-      outputFilterSensitiveLog: (_: any) => _,
+      outputFilterSensitiveLog: GetFederationTokenResponseFilterSensitiveLog,
     };
     const { requestHandler } = configuration;
     return stack.resolve(

clients/client-sts/src/commands/GetSessionTokenCommand.ts

@@ -14,7 +14,11 @@ import {
 import { HttpRequest as __HttpRequest, HttpResponse as __HttpResponse } from "@smithy/protocol-http";
 import { SerdeContext as __SerdeContext } from "@smithy/types";
 
-import { GetSessionTokenRequest, GetSessionTokenResponse } from "../models/models_0";
+import {
+  GetSessionTokenRequest,
+  GetSessionTokenResponse,
+  GetSessionTokenResponseFilterSensitiveLog,
+} from "../models/models_0";
 import { de_GetSessionTokenCommand, se_GetSessionTokenCommand } from "../protocols/Aws_query";
 import { ServiceInputTypes, ServiceOutputTypes, STSClientResolvedConfig } from "../STSClient";
 
@@ -205,7 +209,7 @@ export class GetSessionTokenCommand extends $Command<
       clientName,
       commandName,
       inputFilterSensitiveLog: (_: any) => _,
-      outputFilterSensitiveLog: (_: any) => _,
+      outputFilterSensitiveLog: GetSessionTokenResponseFilterSensitiveLog,
     };
     const { requestHandler } = configuration;
     return stack.resolve(

clients/client-sts/src/models/models_0.ts

@@ -1,5 +1,5 @@
 // smithy-typescript generated code
-import { ExceptionOptionType as __ExceptionOptionType } from "@aws-sdk/smithy-client";
+import { ExceptionOptionType as __ExceptionOptionType, SENSITIVE_STRING } from "@aws-sdk/smithy-client";
 
 import { STSServiceException as __BaseException } from "./STSServiceException";
 
@@ -1216,3 +1216,67 @@ export interface GetSessionTokenResponse {
    */
   Credentials?: Credentials;
 }
+
+/**
+ * @internal
+ */
+export const CredentialsFilterSensitiveLog = (obj: Credentials): any => ({
+  ...obj,
+  ...(obj.SecretAccessKey && { SecretAccessKey: SENSITIVE_STRING }),
+});
+
+/**
+ * @internal
+ */
+export const AssumeRoleResponseFilterSensitiveLog = (obj: AssumeRoleResponse): any => ({
+  ...obj,
+  ...(obj.Credentials && { Credentials: CredentialsFilterSensitiveLog(obj.Credentials) }),
+});
+
+/**
+ * @internal
+ */
+export const AssumeRoleWithSAMLRequestFilterSensitiveLog = (obj: AssumeRoleWithSAMLRequest): any => ({
+  ...obj,
+  ...(obj.SAMLAssertion && { SAMLAssertion: SENSITIVE_STRING }),
+});
+
+/**
+ * @internal
+ */
+export const AssumeRoleWithSAMLResponseFilterSensitiveLog = (obj: AssumeRoleWithSAMLResponse): any => ({
+  ...obj,
+  ...(obj.Credentials && { Credentials: CredentialsFilterSensitiveLog(obj.Credentials) }),
+});
+
+/**
+ * @internal
+ */
+export const AssumeRoleWithWebIdentityRequestFilterSensitiveLog = (obj: AssumeRoleWithWebIdentityRequest): any => ({
+  ...obj,
+  ...(obj.WebIdentityToken && { WebIdentityToken: SENSITIVE_STRING }),
+});
+
+/**
+ * @internal
+ */
+export const AssumeRoleWithWebIdentityResponseFilterSensitiveLog = (obj: AssumeRoleWithWebIdentityResponse): any => ({
+  ...obj,
+  ...(obj.Credentials && { Credentials: CredentialsFilterSensitiveLog(obj.Credentials) }),
+});
+
+/**
+ * @internal
+ */
+export const GetFederationTokenResponseFilterSensitiveLog = (obj: GetFederationTokenResponse): any => ({
+  ...obj,
+  ...(obj.Credentials && { Credentials: CredentialsFilterSensitiveLog(obj.Credentials) }),
+});
+
+/**
+ * @internal
+ */
+export const GetSessionTokenResponseFilterSensitiveLog = (obj: GetSessionTokenResponse): any => ({
+  ...obj,
+  ...(obj.Credentials && { Credentials: CredentialsFilterSensitiveLog(obj.Credentials) }),
+});