diff --git a/.changes/2.1295.0.json b/.changes/2.1295.0.json new file mode 100644 index 0000000000..c936b14268 --- /dev/null +++ b/.changes/2.1295.0.json @@ -0,0 +1,27 @@ +[ + { + "type": "bugfix", + "category": "Endpoints", + "description": "Use correct FIPS endpoint for CloudFormation in GovCloud" + }, + { + "type": "feature", + "category": "Connect", + "description": "This release updates the responses of UpdateContactFlowContent, UpdateContactFlowMetadata, UpdateContactFlowName and DeleteContactFlow API with empty responses." + }, + { + "type": "feature", + "category": "EC2", + "description": "Documentation updates for EC2." + }, + { + "type": "feature", + "category": "Outposts", + "description": "This release adds POWER_30_KVA as an option for PowerDrawKva. PowerDrawKva is part of the RackPhysicalProperties structure in the CreateSite request." + }, + { + "type": "feature", + "category": "ResourceGroups", + "description": "AWS Resource Groups customers can now turn on Group Lifecycle Events in their AWS account. When you turn this on, Resource Groups monitors your groups for changes to group state or membership. Those changes are sent to Amazon EventBridge as events that you can respond to using rules you create." + } +] \ No newline at end of file diff --git a/.changes/next-release/bugfix-Endpoints-edafef26.json b/.changes/next-release/bugfix-Endpoints-edafef26.json deleted file mode 100644 index 17d11a0942..0000000000 --- a/.changes/next-release/bugfix-Endpoints-edafef26.json +++ /dev/null @@ -1,5 +0,0 @@ -{ - "type": "bugfix", - "category": "Endpoints", - "description": "Use correct FIPS endpoint for CloudFormation in GovCloud" -} \ No newline at end of file diff --git a/CHANGELOG.md b/CHANGELOG.md index 6ba7ec7c90..7a7f745147 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,7 +1,14 @@ # Changelog for AWS SDK for JavaScript - + +## 2.1295.0 +* bugfix: Endpoints: Use correct FIPS endpoint for CloudFormation in GovCloud +* feature: Connect: This release updates the responses of UpdateContactFlowContent, UpdateContactFlowMetadata, UpdateContactFlowName and DeleteContactFlow API with empty responses. +* feature: EC2: Documentation updates for EC2. +* feature: Outposts: This release adds POWER_30_KVA as an option for PowerDrawKva. PowerDrawKva is part of the RackPhysicalProperties structure in the CreateSite request. +* feature: ResourceGroups: AWS Resource Groups customers can now turn on Group Lifecycle Events in their AWS account. When you turn this on, Resource Groups monitors your groups for changes to group state or membership. Those changes are sent to Amazon EventBridge as events that you can respond to using rules you create. + ## 2.1294.0 * feature: CleanRooms: Initial release of AWS Clean Rooms * feature: CloudWatchLogs: Bug fix: logGroupName is now not a required field in GetLogEvents, FilterLogEvents, GetLogGroupFields, and DescribeLogStreams APIs as logGroupIdentifier can be provided instead diff --git a/README.md b/README.md index 885d76dc44..126bc18aa9 100644 --- a/README.md +++ b/README.md @@ -57,7 +57,7 @@ for further details. To use the SDK in the browser, simply add the following script tag to your HTML pages: - + You can also build a custom browser SDK with your specified set of AWS services. This can allow you to reduce the SDK's size, specify different API versions of diff --git a/apis/connect-2017-08-08.min.json b/apis/connect-2017-08-08.min.json index b9a2ada8dc..e9d38a14b8 100644 --- a/apis/connect-2017-08-08.min.json +++ b/apis/connect-2017-08-08.min.json @@ -957,6 +957,10 @@ "locationName": "ContactFlowId" } } + }, + "output": { + "type": "structure", + "members": {} } }, "DeleteContactFlowModule": { @@ -1600,7 +1604,7 @@ "type": "structure", "members": { "Attribute": { - "shape": "S7y" + "shape": "S7z" } } } @@ -1712,7 +1716,7 @@ "type": "structure", "members": { "Queue": { - "shape": "S8c" + "shape": "S8d" } } } @@ -1786,7 +1790,7 @@ "type": "structure", "members": { "RoutingProfile": { - "shape": "S8j" + "shape": "S8k" } } } @@ -2031,19 +2035,19 @@ "type": "structure", "members": { "LevelOne": { - "shape": "S95" + "shape": "S96" }, "LevelTwo": { - "shape": "S95" + "shape": "S96" }, "LevelThree": { - "shape": "S95" + "shape": "S96" }, "LevelFour": { - "shape": "S95" + "shape": "S96" }, "LevelFive": { - "shape": "S95" + "shape": "S96" } } }, @@ -2079,19 +2083,19 @@ "type": "structure", "members": { "LevelOne": { - "shape": "S99" + "shape": "S9a" }, "LevelTwo": { - "shape": "S99" + "shape": "S9a" }, "LevelThree": { - "shape": "S99" + "shape": "S9a" }, "LevelFour": { - "shape": "S99" + "shape": "S9a" }, "LevelFive": { - "shape": "S99" + "shape": "S9a" } } } @@ -2435,7 +2439,7 @@ "type": "structure", "members": { "Attributes": { - "shape": "S9u" + "shape": "S9v" } } } @@ -2457,15 +2461,15 @@ "locationName": "InstanceId" }, "Filters": { - "shape": "S9y" + "shape": "S9z" }, "Groupings": { - "shape": "Sa2" + "shape": "Sa3" }, "CurrentMetrics": { "type": "list", "member": { - "shape": "Sa5" + "shape": "Sa6" } }, "NextToken": {}, @@ -2494,7 +2498,7 @@ "type": "structure", "members": { "Dimensions": { - "shape": "Sag" + "shape": "Sah" }, "Collections": { "type": "list", @@ -2502,7 +2506,7 @@ "type": "structure", "members": { "Metric": { - "shape": "Sa5" + "shape": "Sa6" }, "Value": { "type": "double" @@ -2541,7 +2545,7 @@ "type": "structure", "members": { "Queues": { - "shape": "S9z" + "shape": "Sa0" }, "ContactFilter": { "type": "structure", @@ -2553,7 +2557,7 @@ } }, "RoutingProfiles": { - "shape": "Sa1" + "shape": "Sa2" }, "Agents": { "type": "list", @@ -2588,25 +2592,25 @@ } }, "RoutingProfile": { - "shape": "Sai" + "shape": "Saj" }, "HierarchyPath": { "type": "structure", "members": { "LevelOne": { - "shape": "Saz" + "shape": "Sb0" }, "LevelTwo": { - "shape": "Saz" + "shape": "Sb0" }, "LevelThree": { - "shape": "Saz" + "shape": "Sb0" }, "LevelFour": { - "shape": "Saz" + "shape": "Sb0" }, "LevelFive": { - "shape": "Saz" + "shape": "Sb0" } } }, @@ -2621,13 +2625,13 @@ } }, "AvailableSlotsByChannel": { - "shape": "Sb1" + "shape": "Sb2" }, "MaxSlotsByChannel": { - "shape": "Sb1" + "shape": "Sb2" }, "ActiveSlotsByChannel": { - "shape": "Sb1" + "shape": "Sb2" }, "Contacts": { "type": "list", @@ -2645,7 +2649,7 @@ "type": "timestamp" }, "Queue": { - "shape": "Sah" + "shape": "Sai" } } } @@ -2684,13 +2688,13 @@ "type": "structure", "members": { "AccessToken": { - "shape": "Sb8" + "shape": "Sb9" }, "AccessTokenExpiration": { "type": "timestamp" }, "RefreshToken": { - "shape": "Sb8" + "shape": "Sb9" }, "RefreshTokenExpiration": { "type": "timestamp" @@ -2728,15 +2732,15 @@ "type": "timestamp" }, "Filters": { - "shape": "S9y" + "shape": "S9z" }, "Groupings": { - "shape": "Sa2" + "shape": "Sa3" }, "HistoricalMetrics": { "type": "list", "member": { - "shape": "Sbc" + "shape": "Sbd" } }, "NextToken": {}, @@ -2755,7 +2759,7 @@ "type": "structure", "members": { "Dimensions": { - "shape": "Sag" + "shape": "Sah" }, "Collections": { "type": "list", @@ -2763,7 +2767,7 @@ "type": "structure", "members": { "Metric": { - "shape": "Sbc" + "shape": "Sbd" }, "Value": { "type": "double" @@ -2860,7 +2864,7 @@ "type": "structure", "members": { "TelephonyConfig": { - "shape": "Sbs" + "shape": "Sbt" }, "Id": {}, "Arn": {} @@ -3325,7 +3329,7 @@ "Attributes": { "type": "list", "member": { - "shape": "S7y" + "shape": "S7z" } }, "NextToken": {} @@ -3572,12 +3576,12 @@ "locationName": "InstanceId" }, "PhoneNumberTypes": { - "shape": "Sdu", + "shape": "Sdv", "location": "querystring", "locationName": "phoneNumberTypes" }, "PhoneNumberCountryCodes": { - "shape": "Sdv", + "shape": "Sdw", "location": "querystring", "locationName": "phoneNumberCountryCodes" }, @@ -3625,10 +3629,10 @@ }, "NextToken": {}, "PhoneNumberCountryCodes": { - "shape": "Sdv" + "shape": "Sdw" }, "PhoneNumberTypes": { - "shape": "Sdu" + "shape": "Sdv" }, "PhoneNumberPrefix": {} } @@ -3734,7 +3738,7 @@ "members": { "NextToken": {}, "QuickConnectSummaryList": { - "shape": "Sed" + "shape": "See" } } } @@ -3826,7 +3830,7 @@ "type": "structure", "members": { "QuickConnectSummaryList": { - "shape": "Sed" + "shape": "See" }, "NextToken": {} } @@ -4366,7 +4370,7 @@ "UserHierarchyGroupSummaryList": { "type": "list", "member": { - "shape": "S95" + "shape": "S96" } }, "NextToken": {} @@ -4615,12 +4619,12 @@ "type": "structure", "members": { "TagFilter": { - "shape": "Sgi" + "shape": "Sgj" } } }, "SearchCriteria": { - "shape": "Sgm" + "shape": "Sgn" } } }, @@ -4630,7 +4634,7 @@ "Queues": { "type": "list", "member": { - "shape": "S8c" + "shape": "S8d" } }, "NextToken": {}, @@ -4659,12 +4663,12 @@ "type": "structure", "members": { "TagFilter": { - "shape": "Sgi" + "shape": "Sgj" } } }, "SearchCriteria": { - "shape": "Sgv" + "shape": "Sgw" } } }, @@ -4674,7 +4678,7 @@ "RoutingProfiles": { "type": "list", "member": { - "shape": "S8j" + "shape": "S8k" } }, "NextToken": {}, @@ -4700,13 +4704,13 @@ "type": "integer" }, "SearchCriteria": { - "shape": "Sh0" + "shape": "Sh1" }, "SearchFilter": { "type": "structure", "members": { "TagFilter": { - "shape": "Sgi" + "shape": "Sgj" } } } @@ -4754,12 +4758,12 @@ "type": "structure", "members": { "TagFilter": { - "shape": "Sgi" + "shape": "Sgj" } } }, "SearchCriteria": { - "shape": "Sh8" + "shape": "Sh9" } } }, @@ -4874,7 +4878,7 @@ "InstanceId": {}, "ContactFlowId": {}, "Attributes": { - "shape": "S9u" + "shape": "S9v" }, "ParticipantDetails": { "type": "structure", @@ -5007,7 +5011,7 @@ "SourcePhoneNumber": {}, "QueueId": {}, "Attributes": { - "shape": "S9u" + "shape": "S9v" }, "AnswerMachineDetectionConfig": { "type": "structure", @@ -5047,7 +5051,7 @@ "PreviousContactId": {}, "ContactFlowId": {}, "Attributes": { - "shape": "S9u" + "shape": "S9v" }, "Name": {}, "References": { @@ -5310,7 +5314,7 @@ "InitialContactId": {}, "InstanceId": {}, "Attributes": { - "shape": "S9u" + "shape": "S9v" } } }, @@ -5341,6 +5345,10 @@ }, "Content": {} } + }, + "output": { + "type": "structure", + "members": {} } }, "UpdateContactFlowMetadata": { @@ -5366,6 +5374,10 @@ "Description": {}, "ContactFlowState": {} } + }, + "output": { + "type": "structure", + "members": {} } }, "UpdateContactFlowModuleContent": { @@ -5447,6 +5459,10 @@ "Name": {}, "Description": {} } + }, + "output": { + "type": "structure", + "members": {} } }, "UpdateContactSchedule": { @@ -6069,7 +6085,7 @@ "locationName": "Id" }, "TelephonyConfig": { - "shape": "Sbs" + "shape": "Sbt" } } }, @@ -6140,19 +6156,19 @@ "type": "structure", "members": { "LevelOne": { - "shape": "Sk8" + "shape": "Skc" }, "LevelTwo": { - "shape": "Sk8" + "shape": "Skc" }, "LevelThree": { - "shape": "Sk8" + "shape": "Skc" }, "LevelFour": { - "shape": "Sk8" + "shape": "Skc" }, "LevelFive": { - "shape": "Sk8" + "shape": "Skc" } } }, @@ -6713,14 +6729,14 @@ "type": "list", "member": {} }, - "S7y": { + "S7z": { "type": "structure", "members": { "AttributeType": {}, "Value": {} } }, - "S8c": { + "S8d": { "type": "structure", "members": { "Name": {}, @@ -6740,7 +6756,7 @@ } } }, - "S8j": { + "S8k": { "type": "structure", "members": { "InstanceId": {}, @@ -6763,7 +6779,7 @@ } } }, - "S95": { + "S96": { "type": "structure", "members": { "Id": {}, @@ -6771,7 +6787,7 @@ "Name": {} } }, - "S99": { + "S9a": { "type": "structure", "members": { "Id": {}, @@ -6779,90 +6795,90 @@ "Name": {} } }, - "S9u": { + "S9v": { "type": "map", "key": {}, "value": {} }, - "S9y": { + "S9z": { "type": "structure", "members": { "Queues": { - "shape": "S9z" + "shape": "Sa0" }, "Channels": { "type": "list", "member": {} }, "RoutingProfiles": { - "shape": "Sa1" + "shape": "Sa2" } } }, - "S9z": { + "Sa0": { "type": "list", "member": {} }, - "Sa1": { + "Sa2": { "type": "list", "member": {} }, - "Sa2": { + "Sa3": { "type": "list", "member": {} }, - "Sa5": { + "Sa6": { "type": "structure", "members": { "Name": {}, "Unit": {} } }, - "Sag": { + "Sah": { "type": "structure", "members": { "Queue": { - "shape": "Sah" + "shape": "Sai" }, "Channel": {}, "RoutingProfile": { - "shape": "Sai" + "shape": "Saj" } } }, - "Sah": { + "Sai": { "type": "structure", "members": { "Id": {}, "Arn": {} } }, - "Sai": { + "Saj": { "type": "structure", "members": { "Id": {}, "Arn": {} } }, - "Saz": { + "Sb0": { "type": "structure", "members": { "Id": {}, "Arn": {} } }, - "Sb1": { + "Sb2": { "type": "map", "key": {}, "value": { "type": "integer" } }, - "Sb8": { + "Sb9": { "type": "string", "sensitive": true }, - "Sbc": { + "Sbd": { "type": "structure", "members": { "Name": {}, @@ -6879,7 +6895,7 @@ "Unit": {} } }, - "Sbs": { + "Sbt": { "type": "structure", "required": [ "Distributions" @@ -6903,15 +6919,15 @@ } } }, - "Sdu": { + "Sdv": { "type": "list", "member": {} }, - "Sdv": { + "Sdw": { "type": "list", "member": {} }, - "Sed": { + "See": { "type": "list", "member": { "type": "structure", @@ -6923,58 +6939,58 @@ } } }, - "Sgi": { + "Sgj": { "type": "structure", "members": { "OrConditions": { "type": "list", "member": { - "shape": "Sgk" + "shape": "Sgl" } }, "AndConditions": { - "shape": "Sgk" + "shape": "Sgl" }, "TagCondition": { - "shape": "Sgl" + "shape": "Sgm" } } }, - "Sgk": { + "Sgl": { "type": "list", "member": { - "shape": "Sgl" + "shape": "Sgm" } }, - "Sgl": { + "Sgm": { "type": "structure", "members": { "TagKey": {}, "TagValue": {} } }, - "Sgm": { + "Sgn": { "type": "structure", "members": { "OrConditions": { - "shape": "Sgn" + "shape": "Sgo" }, "AndConditions": { - "shape": "Sgn" + "shape": "Sgo" }, "StringCondition": { - "shape": "Sgo" + "shape": "Sgp" }, "QueueTypeCondition": {} } }, - "Sgn": { + "Sgo": { "type": "list", "member": { - "shape": "Sgm" + "shape": "Sgn" } }, - "Sgo": { + "Sgp": { "type": "structure", "members": { "FieldName": {}, @@ -6982,57 +6998,57 @@ "ComparisonType": {} } }, - "Sgv": { + "Sgw": { "type": "structure", "members": { "OrConditions": { - "shape": "Sgw" + "shape": "Sgx" }, "AndConditions": { - "shape": "Sgw" + "shape": "Sgx" }, "StringCondition": { - "shape": "Sgo" + "shape": "Sgp" } } }, - "Sgw": { + "Sgx": { "type": "list", "member": { - "shape": "Sgv" + "shape": "Sgw" } }, - "Sh0": { + "Sh1": { "type": "structure", "members": { "OrConditions": { - "shape": "Sh1" + "shape": "Sh2" }, "AndConditions": { - "shape": "Sh1" + "shape": "Sh2" }, "StringCondition": { - "shape": "Sgo" + "shape": "Sgp" } } }, - "Sh1": { + "Sh2": { "type": "list", "member": { - "shape": "Sh0" + "shape": "Sh1" } }, - "Sh8": { + "Sh9": { "type": "structure", "members": { "OrConditions": { - "shape": "Sh9" + "shape": "Sha" }, "AndConditions": { - "shape": "Sh9" + "shape": "Sha" }, "StringCondition": { - "shape": "Sgo" + "shape": "Sgp" }, "HierarchyGroupCondition": { "type": "structure", @@ -7043,13 +7059,13 @@ } } }, - "Sh9": { + "Sha": { "type": "list", "member": { - "shape": "Sh8" + "shape": "Sh9" } }, - "Sk8": { + "Skc": { "type": "structure", "required": [ "Name" diff --git a/apis/connect-2017-08-08.normal.json b/apis/connect-2017-08-08.normal.json index 9a1616748b..a04e558830 100644 --- a/apis/connect-2017-08-08.normal.json +++ b/apis/connect-2017-08-08.normal.json @@ -1004,6 +1004,9 @@ "input": { "shape": "DeleteContactFlowRequest" }, + "output": { + "shape": "DeleteContactFlowResponse" + }, "errors": [ { "shape": "AccessDeniedException" @@ -4277,6 +4280,9 @@ "input": { "shape": "UpdateContactFlowContentRequest" }, + "output": { + "shape": "UpdateContactFlowContentResponse" + }, "errors": [ { "shape": "InvalidRequestException" @@ -4308,6 +4314,9 @@ "input": { "shape": "UpdateContactFlowMetadataRequest" }, + "output": { + "shape": "UpdateContactFlowMetadataResponse" + }, "errors": [ { "shape": "InvalidRequestException" @@ -4410,6 +4419,9 @@ "input": { "shape": "UpdateContactFlowNameRequest" }, + "output": { + "shape": "UpdateContactFlowNameResponse" + }, "errors": [ { "shape": "InvalidRequestException" @@ -7577,6 +7589,10 @@ } } }, + "DeleteContactFlowResponse": { + "type": "structure", + "members": {} + }, "DeleteHoursOfOperationRequest": { "type": "structure", "required": [ @@ -14837,6 +14853,10 @@ } } }, + "UpdateContactFlowContentResponse": { + "type": "structure", + "members": {} + }, "UpdateContactFlowMetadataRequest": { "type": "structure", "required": [ @@ -14870,6 +14890,10 @@ } } }, + "UpdateContactFlowMetadataResponse": { + "type": "structure", + "members": {} + }, "UpdateContactFlowModuleContentRequest": { "type": "structure", "required": [ @@ -14966,6 +14990,10 @@ } } }, + "UpdateContactFlowNameResponse": { + "type": "structure", + "members": {} + }, "UpdateContactRequest": { "type": "structure", "required": [ diff --git a/apis/ec2-2016-11-15.normal.json b/apis/ec2-2016-11-15.normal.json index c430f84dde..cd3403d196 100644 --- a/apis/ec2-2016-11-15.normal.json +++ b/apis/ec2-2016-11-15.normal.json @@ -94,7 +94,7 @@ "output": { "shape": "AcceptVpcEndpointConnectionsResult" }, - "documentation": "
Accepts one or more interface VPC endpoint connection requests to your VPC endpoint service.
" + "documentation": "Accepts connection requests to your VPC endpoint service.
" }, "AcceptVpcPeeringConnection": { "name": "AcceptVpcPeeringConnection", @@ -1409,7 +1409,7 @@ "output": { "shape": "CreateSubnetResult" }, - "documentation": "Creates a subnet in a specified VPC.
You must specify an IPv4 CIDR block for the subnet. After you create a subnet, you can't change its CIDR block. The allowed block size is between a /16 netmask (65,536 IP addresses) and /28 netmask (16 IP addresses). The CIDR block must not overlap with the CIDR block of an existing subnet in the VPC.
If you've associated an IPv6 CIDR block with your VPC, you can create a subnet with an IPv6 CIDR block that uses a /64 prefix length.
Amazon Web Services reserves both the first four and the last IPv4 address in each subnet's CIDR block. They're not available for use.
If you add more than one subnet to a VPC, they're set up in a star topology with a logical router in the middle.
When you stop an instance in a subnet, it retains its private IPv4 address. It's therefore possible to have a subnet with no running instances (they're all stopped), but no remaining IP addresses available.
For more information about subnets, see Your VPC and subnets in the Amazon Virtual Private Cloud User Guide.
" + "documentation": "Creates a subnet in the specified VPC. For an IPv4 only subnet, specify an IPv4 CIDR block. If the VPC has an IPv6 CIDR block, you can create an IPv6 only subnet or a dual stack subnet instead. For an IPv6 only subnet, specify an IPv6 CIDR block. For a dual stack subnet, specify both an IPv4 CIDR block and an IPv6 CIDR block.
A subnet CIDR block must not overlap the CIDR block of an existing subnet in the VPC. After you create a subnet, you can't change its CIDR block.
The allowed size for an IPv4 subnet is between a /28 netmask (16 IP addresses) and a /16 netmask (65,536 IP addresses). Amazon Web Services reserves both the first four and the last IPv4 address in each subnet's CIDR block. They're not available for your use.
If you've associated an IPv6 CIDR block with your VPC, you can associate an IPv6 CIDR block with a subnet when you create it. The allowed block size for an IPv6 subnet is a /64 netmask.
If you add more than one subnet to a VPC, they're set up in a star topology with a logical router in the middle.
When you stop an instance in a subnet, it retains its private IPv4 address. It's therefore possible to have a subnet with no running instances (they're all stopped), but no remaining IP addresses available.
For more information, see Subnets in the Amazon Virtual Private Cloud User Guide.
" }, "CreateSubnetCidrReservation": { "name": "CreateSubnetCidrReservation", @@ -1728,7 +1728,7 @@ "output": { "shape": "CreateVpcResult" }, - "documentation": "Creates a VPC with the specified IPv4 CIDR block. The smallest VPC you can create uses a /28 netmask (16 IPv4 addresses), and the largest uses a /16 netmask (65,536 IPv4 addresses). For more information about how large to make your VPC, see Your VPC and subnets in the Amazon Virtual Private Cloud User Guide.
You can optionally request an IPv6 CIDR block for the VPC. You can request an Amazon-provided IPv6 CIDR block from Amazon's pool of IPv6 addresses, or an IPv6 CIDR block from an IPv6 address pool that you provisioned through bring your own IP addresses (BYOIP).
By default, each instance you launch in the VPC has the default DHCP options, which include only a default DNS server that we provide (AmazonProvidedDNS). For more information, see DHCP options sets in the Amazon Virtual Private Cloud User Guide.
You can specify the instance tenancy value for the VPC when you create it. You can't change this value for the VPC after you create it. For more information, see Dedicated Instances in the Amazon Elastic Compute Cloud User Guide.
" + "documentation": "Creates a VPC with the specified CIDR blocks. For more information, see VPC CIDR blocks in the Amazon Virtual Private Cloud User Guide.
You can optionally request an IPv6 CIDR block for the VPC. You can request an Amazon-provided IPv6 CIDR block from Amazon's pool of IPv6 addresses, or an IPv6 CIDR block from an IPv6 address pool that you provisioned through bring your own IP addresses (BYOIP).
By default, each instance that you launch in the VPC has the default DHCP options, which include only a default DNS server that we provide (AmazonProvidedDNS). For more information, see DHCP option sets in the Amazon Virtual Private Cloud User Guide.
You can specify the instance tenancy value for the VPC when you create it. You can't change this value for the VPC after you create it. For more information, see Dedicated Instances in the Amazon Elastic Compute Cloud User Guide.
" }, "CreateVpcEndpoint": { "name": "CreateVpcEndpoint", @@ -1770,7 +1770,7 @@ "output": { "shape": "CreateVpcEndpointServiceConfigurationResult" }, - "documentation": "Creates a VPC endpoint service to which service consumers (Amazon Web Services accounts, IAM users, and IAM roles) can connect.
Before you create an endpoint service, you must create one of the following for your service:
A Network Load Balancer. Service consumers connect to your service using an interface endpoint.
A Gateway Load Balancer. Service consumers connect to your service using a Gateway Load Balancer endpoint.
If you set the private DNS name, you must prove that you own the private DNS domain name.
For more information, see the Amazon Web Services PrivateLink Guide.
" + "documentation": "Creates a VPC endpoint service to which service consumers (Amazon Web Services accounts, users, and IAM roles) can connect.
Before you create an endpoint service, you must create one of the following for your service:
A Network Load Balancer. Service consumers connect to your service using an interface endpoint.
A Gateway Load Balancer. Service consumers connect to your service using a Gateway Load Balancer endpoint.
If you set the private DNS name, you must prove that you own the private DNS domain name.
For more information, see the Amazon Web Services PrivateLink Guide.
" }, "CreateVpcPeeringConnection": { "name": "CreateVpcPeeringConnection", @@ -2696,7 +2696,7 @@ "output": { "shape": "DeleteVpcEndpointConnectionNotificationsResult" }, - "documentation": "Deletes one or more VPC endpoint connection notifications.
" + "documentation": "Deletes the specified VPC endpoint connection notifications.
" }, "DeleteVpcEndpointServiceConfigurations": { "name": "DeleteVpcEndpointServiceConfigurations", @@ -2710,7 +2710,7 @@ "output": { "shape": "DeleteVpcEndpointServiceConfigurationsResult" }, - "documentation": "Deletes one or more VPC endpoint service configurations in your account. Before you delete the endpoint service configuration, you must reject any Available
or PendingAcceptance
interface endpoint connections that are attached to the service.
Deletes the specified VPC endpoint service configurations. Before you can delete an endpoint service configuration, you must reject any Available
or PendingAcceptance
interface endpoint connections that are attached to the service.
Deletes one or more specified VPC endpoints. You can delete any of the following types of VPC endpoints.
Gateway endpoint,
Gateway Load Balancer endpoint,
Interface endpoint
The following rules apply when you delete a VPC endpoint:
When you delete a gateway endpoint, we delete the endpoint routes in the route tables that are associated with the endpoint.
When you delete a Gateway Load Balancer endpoint, we delete the endpoint network interfaces.
You can only delete Gateway Load Balancer endpoints when the routes that are associated with the endpoint are deleted.
When you delete an interface endpoint, we delete the endpoint network interfaces.
Deletes the specified VPC endpoints.
When you delete a gateway endpoint, we delete the endpoint routes in the route tables for the endpoint.
When you delete a Gateway Load Balancer endpoint, we delete its endpoint network interfaces. You can only delete Gateway Load Balancer endpoints when the routes that are associated with the endpoint are deleted.
When you delete an interface endpoint, we delete its endpoint network interfaces.
" }, "DeleteVpcPeeringConnection": { "name": "DeleteVpcPeeringConnection", @@ -4798,7 +4798,7 @@ "output": { "shape": "DescribeVpcEndpointsResult" }, - "documentation": "Describes one or more of your VPC endpoints.
" + "documentation": "Describes your VPC endpoints.
" }, "DescribeVpcPeeringConnections": { "name": "DescribeVpcPeeringConnections", @@ -6945,7 +6945,7 @@ "output": { "shape": "ModifyVpcEndpointServicePermissionsResult" }, - "documentation": "Modifies the permissions for your VPC endpoint service. You can add or remove permissions for service consumers (IAM users, IAM roles, and Amazon Web Services accounts) to connect to your endpoint service.
If you grant permissions to all principals, the service is public. Any users who know the name of a public service can send a request to attach an endpoint. If the service does not require manual approval, attachments are automatically approved.
" + "documentation": "Modifies the permissions for your VPC endpoint service. You can add or remove permissions for service consumers (Amazon Web Services accounts, users, and IAM roles) to connect to your endpoint service.
If you grant permissions to all principals, the service is public. Any users who know the name of a public service can send a request to attach an endpoint. If the service does not require manual approval, attachments are automatically approved.
" }, "ModifyVpcPeeringConnectionOptions": { "name": "ModifyVpcPeeringConnectionOptions", @@ -7278,7 +7278,7 @@ "output": { "shape": "RejectVpcEndpointConnectionsResult" }, - "documentation": "Rejects one or more VPC endpoint connection requests to your VPC endpoint service.
" + "documentation": "Rejects VPC endpoint connection requests to your VPC endpoint service.
" }, "RejectVpcPeeringConnection": { "name": "RejectVpcPeeringConnection", @@ -8187,7 +8187,7 @@ }, "VpcEndpointIds": { "shape": "VpcEndpointIdList", - "documentation": "The IDs of one or more interface VPC endpoints.
", + "documentation": "The IDs of the interface VPC endpoints.
", "locationName": "VpcEndpointId" } } @@ -10581,7 +10581,7 @@ }, "FromPort": { "shape": "Integer", - "documentation": "The start of port range for the TCP and UDP protocols, or an ICMP type number. For the ICMP type number, use -1
to specify all types. If you specify all ICMP types, you must specify all codes.
Alternatively, use a set of IP permissions to specify multiple rules and a description for the rule.
" + "documentation": "If the protocol is TCP or UDP, this is the start of the port range. If the protocol is ICMP, this is the type number. A value of -1 indicates all ICMP types. If you specify all ICMP types, you must specify all ICMP codes.
Alternatively, use a set of IP permissions to specify multiple rules and a description for the rule.
" }, "GroupId": { "shape": "SecurityGroupId", @@ -10609,7 +10609,7 @@ }, "ToPort": { "shape": "Integer", - "documentation": "The end of port range for the TCP and UDP protocols, or an ICMP code number. For the ICMP code number, use -1
to specify all codes. If you specify all ICMP types, you must specify all codes.
Alternatively, use a set of IP permissions to specify multiple rules and a description for the rule.
" + "documentation": "If the protocol is TCP or UDP, this is the end of the port range. If the protocol is ICMP, this is the code. A value of -1 indicates all ICMP codes. If you specify all ICMP types, you must specify all ICMP codes.
Alternatively, use a set of IP permissions to specify multiple rules and a description for the rule.
" }, "DryRun": { "shape": "Boolean", @@ -13620,7 +13620,7 @@ "members": { "ClientCidrBlock": { "shape": "String", - "documentation": "The IPv4 address range, in CIDR notation, from which to assign client IP addresses. The address range cannot overlap with the local CIDR of the VPC in which the associated subnet is located, or the routes that you add manually. The address range cannot be changed after the Client VPN endpoint has been created. The CIDR block should be /22 or greater.
" + "documentation": "The IPv4 address range, in CIDR notation, from which to assign client IP addresses. The address range cannot overlap with the local CIDR of the VPC in which the associated subnet is located, or the routes that you add manually. The address range cannot be changed after the Client VPN endpoint has been created. Client CIDR range must have a size of at least /22 and must not be greater than /12.
" }, "ServerCertificateArn": { "shape": "String", @@ -17128,7 +17128,7 @@ }, "ConnectionEvents": { "shape": "ValueStringList", - "documentation": "One or more endpoint events for which to receive notifications. Valid values are Accept
, Connect
, Delete
, and Reject
.
The endpoint events for which to receive notifications. Valid values are Accept
, Connect
, Delete
, and Reject
.
The ID of the VPC in which the endpoint will be used.
" + "documentation": "The ID of the VPC for the endpoint.
" }, "ServiceName": { "shape": "String", - "documentation": "The service name. To get a list of available services, use the DescribeVpcEndpointServices request, or get the name from the service provider.
" + "documentation": "The service name.
" }, "PolicyDocument": { "shape": "String", @@ -17180,17 +17180,17 @@ }, "RouteTableIds": { "shape": "VpcEndpointRouteTableIdList", - "documentation": "(Gateway endpoint) One or more route table IDs.
", + "documentation": "(Gateway endpoint) The route table IDs.
", "locationName": "RouteTableId" }, "SubnetIds": { "shape": "VpcEndpointSubnetIdList", - "documentation": "(Interface and Gateway Load Balancer endpoints) The ID of one or more subnets in which to create an endpoint network interface. For a Gateway Load Balancer endpoint, you can specify one subnet only.
", + "documentation": "(Interface and Gateway Load Balancer endpoints) The IDs of the subnets in which to create an endpoint network interface. For a Gateway Load Balancer endpoint, you can specify only one subnet.
", "locationName": "SubnetId" }, "SecurityGroupIds": { "shape": "VpcEndpointSecurityGroupIdList", - "documentation": "(Interface endpoint) The ID of one or more security groups to associate with the endpoint network interface.
", + "documentation": "(Interface endpoint) The IDs of the security groups to associate with the endpoint network interface. If this parameter is not specified, we use the default security group for the VPC.
", "locationName": "SecurityGroupId" }, "IpAddressType": { @@ -17214,8 +17214,7 @@ "documentation": "The tags to associate with the endpoint.
", "locationName": "TagSpecification" } - }, - "documentation": "Contains the parameters for CreateVpcEndpoint.
" + } }, "CreateVpcEndpointResult": { "type": "structure", @@ -17230,8 +17229,7 @@ "documentation": "Unique, case-sensitive identifier that you provide to ensure the idempotency of the request.
", "locationName": "clientToken" } - }, - "documentation": "Contains the output of CreateVpcEndpoint.
" + } }, "CreateVpcEndpointServiceConfigurationRequest": { "type": "structure", @@ -17250,12 +17248,12 @@ }, "NetworkLoadBalancerArns": { "shape": "ValueStringList", - "documentation": "The Amazon Resource Names (ARNs) of one or more Network Load Balancers for your service.
", + "documentation": "The Amazon Resource Names (ARNs) of the Network Load Balancers.
", "locationName": "NetworkLoadBalancerArn" }, "GatewayLoadBalancerArns": { "shape": "ValueStringList", - "documentation": "The Amazon Resource Names (ARNs) of one or more Gateway Load Balancers.
", + "documentation": "The Amazon Resource Names (ARNs) of the Gateway Load Balancers.
", "locationName": "GatewayLoadBalancerArn" }, "SupportedIpAddressTypes": { @@ -17641,11 +17639,11 @@ }, "Metric": { "shape": "MetricType", - "documentation": "The aggregation metric used for the data query. Currently only aggregation-latency
is supported, indicating network latency.
The metric, aggregation-latency
, indicating that network latency is aggregated for the query. This is the only supported metric.
Metric data aggregations over specified periods of time. The following are the supported Infrastructure Performance statistics:
p50
- The median value of the metric aggregated over a specified start and end time. For example, a metric of five_minutes
is the median of all the data points gathered within those five minutes.
The metric data aggregation period, p50
, between the specified startDate
and endDate
. For example, a metric of five_minutes
is the median of all the data points gathered within those five minutes. p50
is the only supported metric.
The metric used for the network performance request. Currently only aggregate-latency
is supported, showing network latency during a specified period.
The metric used for the network performance request. Only aggregate-latency
is supported, which shows network latency during a specified period.
One or more notification IDs.
", + "documentation": "The IDs of the notifications.
", "locationName": "ConnectionNotificationId" } } @@ -19614,7 +19612,7 @@ }, "ServiceIds": { "shape": "VpcEndpointServiceIdList", - "documentation": "The IDs of one or more services.
", + "documentation": "The IDs of the services.
", "locationName": "ServiceId" } } @@ -19641,11 +19639,10 @@ }, "VpcEndpointIds": { "shape": "VpcEndpointIdList", - "documentation": "One or more VPC endpoint IDs.
", + "documentation": "The IDs of the VPC endpoints.
", "locationName": "VpcEndpointId" } - }, - "documentation": "Contains the parameters for DeleteVpcEndpoints.
" + } }, "DeleteVpcEndpointsResult": { "type": "structure", @@ -19655,8 +19652,7 @@ "documentation": "Information about the VPC endpoints that were not successfully deleted.
", "locationName": "unsuccessful" } - }, - "documentation": "Contains the output of DeleteVpcEndpoints.
" + } }, "DeleteVpcPeeringConnectionRequest": { "type": "structure", @@ -22255,7 +22251,7 @@ "members": { "Filters": { "shape": "FilterList", - "documentation": "The filters.
affinity
- The affinity setting for an instance running on a Dedicated Host (default
| host
).
architecture
- The instance architecture (i386
| x86_64
| arm64
).
availability-zone
- The Availability Zone of the instance.
block-device-mapping.attach-time
- The attach time for an EBS volume mapped to the instance, for example, 2010-09-15T17:15:20.000Z
.
block-device-mapping.delete-on-termination
- A Boolean that indicates whether the EBS volume is deleted on instance termination.
block-device-mapping.device-name
- The device name specified in the block device mapping (for example, /dev/sdh
or xvdh
).
block-device-mapping.status
- The status for the EBS volume (attaching
| attached
| detaching
| detached
).
block-device-mapping.volume-id
- The volume ID of the EBS volume.
capacity-reservation-id
- The ID of the Capacity Reservation into which the instance was launched.
client-token
- The idempotency token you provided when you launched the instance.
dns-name
- The public DNS name of the instance.
group-id
- The ID of the security group for the instance. EC2-Classic only.
group-name
- The name of the security group for the instance. EC2-Classic only.
hibernation-options.configured
- A Boolean that indicates whether the instance is enabled for hibernation. A value of true
means that the instance is enabled for hibernation.
host-id
- The ID of the Dedicated Host on which the instance is running, if applicable.
hypervisor
- The hypervisor type of the instance (ovm
| xen
). The value xen
is used for both Xen and Nitro hypervisors.
iam-instance-profile.arn
- The instance profile associated with the instance. Specified as an ARN.
image-id
- The ID of the image used to launch the instance.
instance-id
- The ID of the instance.
instance-lifecycle
- Indicates whether this is a Spot Instance or a Scheduled Instance (spot
| scheduled
).
instance-state-code
- The state of the instance, as a 16-bit unsigned integer. The high byte is used for internal purposes and should be ignored. The low byte is set based on the state represented. The valid values are: 0 (pending), 16 (running), 32 (shutting-down), 48 (terminated), 64 (stopping), and 80 (stopped).
instance-state-name
- The state of the instance (pending
| running
| shutting-down
| terminated
| stopping
| stopped
).
instance-type
- The type of instance (for example, t2.micro
).
instance.group-id
- The ID of the security group for the instance.
instance.group-name
- The name of the security group for the instance.
ip-address
- The public IPv4 address of the instance.
kernel-id
- The kernel ID.
key-name
- The name of the key pair used when the instance was launched.
launch-index
- When launching multiple instances, this is the index for the instance in the launch group (for example, 0, 1, 2, and so on).
launch-time
- The time when the instance was launched, in the ISO 8601 format in the UTC time zone (YYYY-MM-DDThh:mm:ss.sssZ), for example, 2021-09-29T11:04:43.305Z
. You can use a wildcard (*
), for example, 2021-09-29T*
, which matches an entire day.
metadata-options.http-tokens
- The metadata request authorization state (optional
| required
)
metadata-options.http-put-response-hop-limit
- The http metadata request put response hop limit (integer, possible values 1
to 64
)
metadata-options.http-endpoint
- Enable or disable metadata access on http endpoint (enabled
| disabled
)
monitoring-state
- Indicates whether detailed monitoring is enabled (disabled
| enabled
).
network-interface.addresses.private-ip-address
- The private IPv4 address associated with the network interface.
network-interface.addresses.primary
- Specifies whether the IPv4 address of the network interface is the primary private IPv4 address.
network-interface.addresses.association.public-ip
- The ID of the association of an Elastic IP address (IPv4) with a network interface.
network-interface.addresses.association.ip-owner-id
- The owner ID of the private IPv4 address associated with the network interface.
network-interface.association.public-ip
- The address of the Elastic IP address (IPv4) bound to the network interface.
network-interface.association.ip-owner-id
- The owner of the Elastic IP address (IPv4) associated with the network interface.
network-interface.association.allocation-id
- The allocation ID returned when you allocated the Elastic IP address (IPv4) for your network interface.
network-interface.association.association-id
- The association ID returned when the network interface was associated with an IPv4 address.
network-interface.attachment.attachment-id
- The ID of the interface attachment.
network-interface.attachment.instance-id
- The ID of the instance to which the network interface is attached.
network-interface.attachment.instance-owner-id
- The owner ID of the instance to which the network interface is attached.
network-interface.attachment.device-index
- The device index to which the network interface is attached.
network-interface.attachment.status
- The status of the attachment (attaching
| attached
| detaching
| detached
).
network-interface.attachment.attach-time
- The time that the network interface was attached to an instance.
network-interface.attachment.delete-on-termination
- Specifies whether the attachment is deleted when an instance is terminated.
network-interface.availability-zone
- The Availability Zone for the network interface.
network-interface.description
- The description of the network interface.
network-interface.group-id
- The ID of a security group associated with the network interface.
network-interface.group-name
- The name of a security group associated with the network interface.
network-interface.ipv6-addresses.ipv6-address
- The IPv6 address associated with the network interface.
network-interface.mac-address
- The MAC address of the network interface.
network-interface.network-interface-id
- The ID of the network interface.
network-interface.owner-id
- The ID of the owner of the network interface.
network-interface.private-dns-name
- The private DNS name of the network interface.
network-interface.requester-id
- The requester ID for the network interface.
network-interface.requester-managed
- Indicates whether the network interface is being managed by Amazon Web Services.
network-interface.status
- The status of the network interface (available
) | in-use
).
network-interface.source-dest-check
- Whether the network interface performs source/destination checking. A value of true
means that checking is enabled, and false
means that checking is disabled. The value must be false
for the network interface to perform network address translation (NAT) in your VPC.
network-interface.subnet-id
- The ID of the subnet for the network interface.
network-interface.vpc-id
- The ID of the VPC for the network interface.
outpost-arn
- The Amazon Resource Name (ARN) of the Outpost.
owner-id
- The Amazon Web Services account ID of the instance owner.
placement-group-name
- The name of the placement group for the instance.
placement-partition-number
- The partition in which the instance is located.
platform
- The platform. To list only Windows instances, use windows
.
private-dns-name
- The private IPv4 DNS name of the instance.
private-ip-address
- The private IPv4 address of the instance.
product-code
- The product code associated with the AMI used to launch the instance.
product-code.type
- The type of product code (devpay
| marketplace
).
ramdisk-id
- The RAM disk ID.
reason
- The reason for the current state of the instance (for example, shows \"User Initiated [date]\" when you stop or terminate the instance). Similar to the state-reason-code filter.
requester-id
- The ID of the entity that launched the instance on your behalf (for example, Amazon Web Services Management Console, Auto Scaling, and so on).
reservation-id
- The ID of the instance's reservation. A reservation ID is created any time you launch an instance. A reservation ID has a one-to-one relationship with an instance launch request, but can be associated with more than one instance if you launch multiple instances using the same launch request. For example, if you launch one instance, you get one reservation ID. If you launch ten instances using the same launch request, you also get one reservation ID.
root-device-name
- The device name of the root device volume (for example, /dev/sda1
).
root-device-type
- The type of the root device volume (ebs
| instance-store
).
source-dest-check
- Indicates whether the instance performs source/destination checking. A value of true
means that checking is enabled, and false
means that checking is disabled. The value must be false
for the instance to perform network address translation (NAT) in your VPC.
spot-instance-request-id
- The ID of the Spot Instance request.
state-reason-code
- The reason code for the state change.
state-reason-message
- A message that describes the state change.
subnet-id
- The ID of the subnet for the instance.
tag:<key>
- The key/value combination of a tag assigned to the resource. Use the tag key in the filter name and the tag value as the filter value. For example, to find all resources that have a tag with the key Owner
and the value TeamA
, specify tag:Owner
for the filter name and TeamA
for the filter value.
tag-key
- The key of a tag assigned to the resource. Use this filter to find all resources that have a tag with a specific key, regardless of the tag value.
tenancy
- The tenancy of an instance (dedicated
| default
| host
).
virtualization-type
- The virtualization type of the instance (paravirtual
| hvm
).
vpc-id
- The ID of the VPC that the instance is running in.
The filters.
affinity
- The affinity setting for an instance running on a Dedicated Host (default
| host
).
architecture
- The instance architecture (i386
| x86_64
| arm64
).
availability-zone
- The Availability Zone of the instance.
block-device-mapping.attach-time
- The attach time for an EBS volume mapped to the instance, for example, 2010-09-15T17:15:20.000Z
.
block-device-mapping.delete-on-termination
- A Boolean that indicates whether the EBS volume is deleted on instance termination.
block-device-mapping.device-name
- The device name specified in the block device mapping (for example, /dev/sdh
or xvdh
).
block-device-mapping.status
- The status for the EBS volume (attaching
| attached
| detaching
| detached
).
block-device-mapping.volume-id
- The volume ID of the EBS volume.
capacity-reservation-id
- The ID of the Capacity Reservation into which the instance was launched.
client-token
- The idempotency token you provided when you launched the instance.
dns-name
- The public DNS name of the instance.
group-id
- The ID of the security group for the instance. EC2-Classic only.
group-name
- The name of the security group for the instance. EC2-Classic only.
hibernation-options.configured
- A Boolean that indicates whether the instance is enabled for hibernation. A value of true
means that the instance is enabled for hibernation.
host-id
- The ID of the Dedicated Host on which the instance is running, if applicable.
hypervisor
- The hypervisor type of the instance (ovm
| xen
). The value xen
is used for both Xen and Nitro hypervisors.
iam-instance-profile.arn
- The instance profile associated with the instance. Specified as an ARN.
image-id
- The ID of the image used to launch the instance.
instance-id
- The ID of the instance.
instance-lifecycle
- Indicates whether this is a Spot Instance or a Scheduled Instance (spot
| scheduled
).
instance-state-code
- The state of the instance, as a 16-bit unsigned integer. The high byte is used for internal purposes and should be ignored. The low byte is set based on the state represented. The valid values are: 0 (pending), 16 (running), 32 (shutting-down), 48 (terminated), 64 (stopping), and 80 (stopped).
instance-state-name
- The state of the instance (pending
| running
| shutting-down
| terminated
| stopping
| stopped
).
instance-type
- The type of instance (for example, t2.micro
).
instance.group-id
- The ID of the security group for the instance.
instance.group-name
- The name of the security group for the instance.
ip-address
- The public IPv4 address of the instance.
kernel-id
- The kernel ID.
key-name
- The name of the key pair used when the instance was launched.
launch-index
- When launching multiple instances, this is the index for the instance in the launch group (for example, 0, 1, 2, and so on).
launch-time
- The time when the instance was launched, in the ISO 8601 format in the UTC time zone (YYYY-MM-DDThh:mm:ss.sssZ), for example, 2021-09-29T11:04:43.305Z
. You can use a wildcard (*
), for example, 2021-09-29T*
, which matches an entire day.
metadata-options.http-tokens
- The metadata request authorization state (optional
| required
)
metadata-options.http-put-response-hop-limit
- The HTTP metadata request put response hop limit (integer, possible values 1
to 64
)
metadata-options.http-endpoint
- The status of access to the HTTP metadata endpoint on your instance (enabled
| disabled
)
metadata-options.instance-metadata-tags
- The status of access to instance tags from the instance metadata (enabled
| disabled
)
monitoring-state
- Indicates whether detailed monitoring is enabled (disabled
| enabled
).
network-interface.addresses.private-ip-address
- The private IPv4 address associated with the network interface.
network-interface.addresses.primary
- Specifies whether the IPv4 address of the network interface is the primary private IPv4 address.
network-interface.addresses.association.public-ip
- The ID of the association of an Elastic IP address (IPv4) with a network interface.
network-interface.addresses.association.ip-owner-id
- The owner ID of the private IPv4 address associated with the network interface.
network-interface.association.public-ip
- The address of the Elastic IP address (IPv4) bound to the network interface.
network-interface.association.ip-owner-id
- The owner of the Elastic IP address (IPv4) associated with the network interface.
network-interface.association.allocation-id
- The allocation ID returned when you allocated the Elastic IP address (IPv4) for your network interface.
network-interface.association.association-id
- The association ID returned when the network interface was associated with an IPv4 address.
network-interface.attachment.attachment-id
- The ID of the interface attachment.
network-interface.attachment.instance-id
- The ID of the instance to which the network interface is attached.
network-interface.attachment.instance-owner-id
- The owner ID of the instance to which the network interface is attached.
network-interface.attachment.device-index
- The device index to which the network interface is attached.
network-interface.attachment.status
- The status of the attachment (attaching
| attached
| detaching
| detached
).
network-interface.attachment.attach-time
- The time that the network interface was attached to an instance.
network-interface.attachment.delete-on-termination
- Specifies whether the attachment is deleted when an instance is terminated.
network-interface.availability-zone
- The Availability Zone for the network interface.
network-interface.description
- The description of the network interface.
network-interface.group-id
- The ID of a security group associated with the network interface.
network-interface.group-name
- The name of a security group associated with the network interface.
network-interface.ipv6-addresses.ipv6-address
- The IPv6 address associated with the network interface.
network-interface.mac-address
- The MAC address of the network interface.
network-interface.network-interface-id
- The ID of the network interface.
network-interface.owner-id
- The ID of the owner of the network interface.
network-interface.private-dns-name
- The private DNS name of the network interface.
network-interface.requester-id
- The requester ID for the network interface.
network-interface.requester-managed
- Indicates whether the network interface is being managed by Amazon Web Services.
network-interface.status
- The status of the network interface (available
) | in-use
).
network-interface.source-dest-check
- Whether the network interface performs source/destination checking. A value of true
means that checking is enabled, and false
means that checking is disabled. The value must be false
for the network interface to perform network address translation (NAT) in your VPC.
network-interface.subnet-id
- The ID of the subnet for the network interface.
network-interface.vpc-id
- The ID of the VPC for the network interface.
outpost-arn
- The Amazon Resource Name (ARN) of the Outpost.
owner-id
- The Amazon Web Services account ID of the instance owner.
placement-group-name
- The name of the placement group for the instance.
placement-partition-number
- The partition in which the instance is located.
platform
- The platform. To list only Windows instances, use windows
.
private-dns-name
- The private IPv4 DNS name of the instance.
private-ip-address
- The private IPv4 address of the instance.
product-code
- The product code associated with the AMI used to launch the instance.
product-code.type
- The type of product code (devpay
| marketplace
).
ramdisk-id
- The RAM disk ID.
reason
- The reason for the current state of the instance (for example, shows \"User Initiated [date]\" when you stop or terminate the instance). Similar to the state-reason-code filter.
requester-id
- The ID of the entity that launched the instance on your behalf (for example, Amazon Web Services Management Console, Auto Scaling, and so on).
reservation-id
- The ID of the instance's reservation. A reservation ID is created any time you launch an instance. A reservation ID has a one-to-one relationship with an instance launch request, but can be associated with more than one instance if you launch multiple instances using the same launch request. For example, if you launch one instance, you get one reservation ID. If you launch ten instances using the same launch request, you also get one reservation ID.
root-device-name
- The device name of the root device volume (for example, /dev/sda1
).
root-device-type
- The type of the root device volume (ebs
| instance-store
).
source-dest-check
- Indicates whether the instance performs source/destination checking. A value of true
means that checking is enabled, and false
means that checking is disabled. The value must be false
for the instance to perform network address translation (NAT) in your VPC.
spot-instance-request-id
- The ID of the Spot Instance request.
state-reason-code
- The reason code for the state change.
state-reason-message
- A message that describes the state change.
subnet-id
- The ID of the subnet for the instance.
tag:<key>
- The key/value combination of a tag assigned to the resource. Use the tag key in the filter name and the tag value as the filter value. For example, to find all resources that have a tag with the key Owner
and the value TeamA
, specify tag:Owner
for the filter name and TeamA
for the filter value.
tag-key
- The key of a tag assigned to the resource. Use this filter to find all resources that have a tag with a specific key, regardless of the tag value.
tenancy
- The tenancy of an instance (dedicated
| default
| host
).
virtualization-type
- The virtualization type of the instance (paravirtual
| hvm
).
vpc-id
- The ID of the VPC that the instance is running in.
One or more filters.
connection-notification-arn
- The ARN of the SNS topic for the notification.
connection-notification-id
- The ID of the notification.
connection-notification-state
- The state of the notification (Enabled
| Disabled
).
connection-notification-type
- The type of notification (Topic
).
service-id
- The ID of the endpoint service.
vpc-endpoint-id
- The ID of the VPC endpoint.
The filters.
connection-notification-arn
- The ARN of the SNS topic for the notification.
connection-notification-id
- The ID of the notification.
connection-notification-state
- The state of the notification (Enabled
| Disabled
).
connection-notification-type
- The type of notification (Topic
).
service-id
- The ID of the endpoint service.
vpc-endpoint-id
- The ID of the VPC endpoint.
One or more notifications.
", + "documentation": "The notifications.
", "locationName": "connectionNotificationSet" }, "NextToken": { @@ -25963,7 +25959,7 @@ }, "Filters": { "shape": "FilterList", - "documentation": "One or more filters.
ip-address-type
- The IP address type (ipv4
| ipv6
).
service-id
- The ID of the service.
vpc-endpoint-owner
- The ID of the Amazon Web Services account ID that owns the endpoint.
vpc-endpoint-state
- The state of the endpoint (pendingAcceptance
| pending
| available
| deleting
| deleted
| rejected
| failed
).
vpc-endpoint-id
- The ID of the endpoint.
The filters.
ip-address-type
- The IP address type (ipv4
| ipv6
).
service-id
- The ID of the service.
vpc-endpoint-owner
- The ID of the Amazon Web Services account ID that owns the endpoint.
vpc-endpoint-state
- The state of the endpoint (pendingAcceptance
| pending
| available
| deleting
| deleted
| rejected
| failed
).
vpc-endpoint-id
- The ID of the endpoint.
Information about one or more VPC endpoint connections.
", + "documentation": "Information about the VPC endpoint connections.
", "locationName": "vpcEndpointConnectionSet" }, "NextToken": { @@ -26000,12 +25996,12 @@ }, "ServiceIds": { "shape": "VpcEndpointServiceIdList", - "documentation": "The IDs of one or more services.
", + "documentation": "The IDs of the endpoint services.
", "locationName": "ServiceId" }, "Filters": { "shape": "FilterList", - "documentation": "One or more filters.
service-name
- The name of the service.
service-id
- The ID of the service.
service-state
- The state of the service (Pending
| Available
| Deleting
| Deleted
| Failed
).
supported-ip-address-types
- The IP address type (ipv4
| ipv6
).
tag
:<key> - The key/value combination of a tag assigned to the resource. Use the tag key in the filter name and the tag value as the filter value. For example, to find all resources that have a tag with the key Owner
and the value TeamA
, specify tag:Owner
for the filter name and TeamA
for the filter value.
tag-key
- The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
The filters.
service-name
- The name of the service.
service-id
- The ID of the service.
service-state
- The state of the service (Pending
| Available
| Deleting
| Deleted
| Failed
).
supported-ip-address-types
- The IP address type (ipv4
| ipv6
).
tag
:<key> - The key/value combination of a tag assigned to the resource. Use the tag key in the filter name and the tag value as the filter value. For example, to find all resources that have a tag with the key Owner
and the value TeamA
, specify tag:Owner
for the filter name and TeamA
for the filter value.
tag-key
- The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
Information about one or more services.
", + "documentation": "Information about the services.
", "locationName": "serviceConfigurationSet" }, "NextToken": { @@ -26049,7 +26045,7 @@ }, "Filters": { "shape": "FilterList", - "documentation": "One or more filters.
principal
- The ARN of the principal.
principal-type
- The principal type (All
| Service
| OrganizationUnit
| Account
| User
| Role
).
The filters.
principal
- The ARN of the principal.
principal-type
- The principal type (All
| Service
| OrganizationUnit
| Account
| User
| Role
).
Information about one or more allowed principals.
", + "documentation": "Information about the allowed principals.
", "locationName": "allowedPrincipals" }, "NextToken": { @@ -26086,12 +26082,12 @@ }, "ServiceNames": { "shape": "ValueStringList", - "documentation": "One or more service names.
", + "documentation": "The service names.
", "locationName": "ServiceName" }, "Filters": { "shape": "FilterList", - "documentation": "One or more filters.
owner
- The ID or alias of the Amazon Web Services account that owns the service.
service-name
- The name of the service.
service-type
- The type of service (Interface
| Gateway
| GatewayLoadBalancer
).
supported-ip-address-types
- The IP address type (ipv4
| ipv6
).
tag
:<key> - The key/value combination of a tag assigned to the resource. Use the tag key in the filter name and the tag value as the filter value. For example, to find all resources that have a tag with the key Owner
and the value TeamA
, specify tag:Owner
for the filter name and TeamA
for the filter value.
tag-key
- The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
The filters.
owner
- The ID or alias of the Amazon Web Services account that owns the service.
service-name
- The name of the service.
service-type
- The type of service (Interface
| Gateway
| GatewayLoadBalancer
).
supported-ip-address-types
- The IP address type (ipv4
| ipv6
).
tag
:<key> - The key/value combination of a tag assigned to the resource. Use the tag key in the filter name and the tag value as the filter value. For example, to find all resources that have a tag with the key Owner
and the value TeamA
, specify tag:Owner
for the filter name and TeamA
for the filter value.
tag-key
- The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
The token for the next set of items to return. (You received this token from a prior call.)
" } - }, - "documentation": "Contains the parameters for DescribeVpcEndpointServices.
" + } }, "DescribeVpcEndpointServicesResult": { "type": "structure", "members": { "ServiceNames": { "shape": "ValueStringList", - "documentation": "A list of supported services.
", + "documentation": "The supported services.
", "locationName": "serviceNameSet" }, "ServiceDetails": { @@ -26123,8 +26118,7 @@ "documentation": "The token to use when requesting the next set of items. If there are no additional items to return, the string is empty.
", "locationName": "nextToken" } - }, - "documentation": "Contains the output of DescribeVpcEndpointServices.
" + } }, "DescribeVpcEndpointsRequest": { "type": "structure", @@ -26135,12 +26129,12 @@ }, "VpcEndpointIds": { "shape": "VpcEndpointIdList", - "documentation": "One or more endpoint IDs.
", + "documentation": "The IDs of the VPC endpoints.
", "locationName": "VpcEndpointId" }, "Filters": { "shape": "FilterList", - "documentation": "One or more filters.
ip-address-type
- The IP address type (ipv4
| ipv6
).
service-name
- The name of the service.
tag
:<key> - The key/value combination of a tag assigned to the resource. Use the tag key in the filter name and the tag value as the filter value. For example, to find all resources that have a tag with the key Owner
and the value TeamA
, specify tag:Owner
for the filter name and TeamA
for the filter value.
tag-key
- The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
vpc-id
- The ID of the VPC in which the endpoint resides.
vpc-endpoint-id
- The ID of the endpoint.
vpc-endpoint-state
- The state of the endpoint (pendingAcceptance
| pending
| available
| deleting
| deleted
| rejected
| failed
).
vpc-endpoint-type
- The type of VPC endpoint (Interface
| Gateway
| GatewayLoadBalancer
).
The filters.
ip-address-type
- The IP address type (ipv4
| ipv6
).
service-name
- The name of the service.
tag
:<key> - The key/value combination of a tag assigned to the resource. Use the tag key in the filter name and the tag value as the filter value. For example, to find all resources that have a tag with the key Owner
and the value TeamA
, specify tag:Owner
for the filter name and TeamA
for the filter value.
tag-key
- The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.
vpc-id
- The ID of the VPC in which the endpoint resides.
vpc-endpoint-id
- The ID of the endpoint.
vpc-endpoint-state
- The state of the endpoint (pendingAcceptance
| pending
| available
| deleting
| deleted
| rejected
| failed
).
vpc-endpoint-type
- The type of VPC endpoint (Interface
| Gateway
| GatewayLoadBalancer
).
The token for the next set of items to return. (You received this token from a prior call.)
" } - }, - "documentation": "Contains the parameters for DescribeVpcEndpoints.
" + } }, "DescribeVpcEndpointsResult": { "type": "structure", @@ -26167,8 +26160,7 @@ "documentation": "The token to use when requesting the next set of items. If there are no additional items to return, the string is empty.
", "locationName": "nextToken" } - }, - "documentation": "Contains the output of DescribeVpcEndpoints.
" + } }, "DescribeVpcPeeringConnectionsMaxResults": { "type": "integer", @@ -30573,6 +30565,7 @@ }, "InstanceTypes": { "shape": "InstanceTypesList", + "documentation": "The instance types supported by the AFI.
", "locationName": "instanceTypes" } }, @@ -35240,7 +35233,7 @@ "members": { "HttpTokens": { "shape": "HttpTokensState", - "documentation": "The state of token usage for your instance metadata requests.
If the state is optional
, you can choose to retrieve instance metadata with or without a session token on your request. If you retrieve the IAM role credentials without a token, the version 1.0 role credentials are returned. If you retrieve the IAM role credentials using a valid session token, the version 2.0 role credentials are returned.
If the state is required
, you must send a session token with any instance metadata retrieval requests. In this state, retrieving the IAM role credentials always returns the version 2.0 credentials; the version 1.0 credentials are not available.
Default: optional
IMDSv2 uses token-backed sessions. Set the use of HTTP tokens to optional
(in other words, set the use of IMDSv2 to optional
) or required
(in other words, set the use of IMDSv2 to required
).
optional
- When IMDSv2 is optional, you can choose to retrieve instance metadata with or without a session token in your request. If you retrieve the IAM role credentials without a token, the IMDSv1 role credentials are returned. If you retrieve the IAM role credentials using a valid session token, the IMDSv2 role credentials are returned.
required
- When IMDSv2 is required, you must send a session token with any instance metadata retrieval requests. In this state, retrieving the IAM role credentials always returns IMDSv2 credentials; IMDSv1 credentials are not available.
Default: optional
The state of token usage for your instance metadata requests.
If the state is optional
, you can choose to retrieve instance metadata with or without a session token on your request. If you retrieve the IAM role credentials without a token, the version 1.0 role credentials are returned. If you retrieve the IAM role credentials using a valid session token, the version 2.0 role credentials are returned.
If the state is required
, you must send a session token with any instance metadata retrieval requests. In this state, retrieving the IAM role credentials always returns the version 2.0 credentials; the version 1.0 credentials are not available.
Default: optional
IMDSv2 uses token-backed sessions. Indicates whether the use of HTTP tokens is optional
(in other words, indicates whether the use of IMDSv2 is optional
) or required
(in other words, indicates whether the use of IMDSv2 is required
).
optional
- When IMDSv2 is optional, you can choose to retrieve instance metadata with or without a session token in your request. If you retrieve the IAM role credentials without a token, the IMDSv1 role credentials are returned. If you retrieve the IAM role credentials using a valid session token, the IMDSv2 role credentials are returned.
required
- When IMDSv2 is required, you must send a session token with any instance metadata retrieval requests. In this state, retrieving the IAM role credentials always returns IMDSv2 credentials; IMDSv1 credentials are not available.
Default: optional
The start of port range for the TCP and UDP protocols, or an ICMP/ICMPv6 type number. A value of -1
indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6 types, you must specify all codes.
If the protocol is TCP or UDP, this is the start of the port range. If the protocol is ICMP or ICMPv6, this is the type number. A value of -1 indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6 types, you must specify all ICMP/ICMPv6 codes.
", "locationName": "fromPort" }, "IpProtocol": { @@ -37126,7 +37119,7 @@ }, "ToPort": { "shape": "Integer", - "documentation": "The end of port range for the TCP and UDP protocols, or an ICMP/ICMPv6 code. A value of -1
indicates all ICMP/ICMPv6 codes. If you specify all ICMP/ICMPv6 types, you must specify all codes.
If the protocol is TCP or UDP, this is the end of the port range. If the protocol is ICMP or ICMPv6, this is the code. A value of -1 indicates all ICMP/ICMPv6 codes. If you specify all ICMP/ICMPv6 types, you must specify all ICMP/ICMPv6 codes.
", "locationName": "toPort" }, "UserIdGroupPairs": { @@ -38939,7 +38932,7 @@ }, "HttpTokens": { "shape": "LaunchTemplateHttpTokensState", - "documentation": "The state of token usage for your instance metadata requests. If the parameter is not specified in the request, the default state is optional
.
If the state is optional
, you can choose to retrieve instance metadata with or without a signed token header on your request. If you retrieve the IAM role credentials without a token, the version 1.0 role credentials are returned. If you retrieve the IAM role credentials using a valid signed token, the version 2.0 role credentials are returned.
If the state is required
, you must send a signed token header with any instance metadata retrieval requests. In this state, retrieving the IAM role credentials always returns the version 2.0 credentials; the version 1.0 credentials are not available.
Indicates whether IMDSv2 is optional
or required
.
optional
- When IMDSv2 is optional, you can choose to retrieve instance metadata with or without a session token in your request. If you retrieve the IAM role credentials without a token, the IMDSv1 role credentials are returned. If you retrieve the IAM role credentials using a valid session token, the IMDSv2 role credentials are returned.
required
- When IMDSv2 is required, you must send a session token with any instance metadata retrieval requests. In this state, retrieving the IAM role credentials always returns IMDSv2 credentials; IMDSv1 credentials are not available.
Default: optional
The state of token usage for your instance metadata requests. If the parameter is not specified in the request, the default state is optional
.
If the state is optional
, you can choose to retrieve instance metadata with or without a signed token header on your request. If you retrieve the IAM role credentials without a token, the version 1.0 role credentials are returned. If you retrieve the IAM role credentials using a valid signed token, the version 2.0 role credentials are returned.
If the state is required
, you must send a signed token header with any instance metadata retrieval requests. In this state, retrieving the IAM role credentials always returns the version 2.0 credentials; the version 1.0 credentials are not available.
IMDSv2 uses token-backed sessions. Set the use of HTTP tokens to optional
(in other words, set the use of IMDSv2 to optional
) or required
(in other words, set the use of IMDSv2 to required
).
optional
- When IMDSv2 is optional, you can choose to retrieve instance metadata with or without a session token in your request. If you retrieve the IAM role credentials without a token, the IMDSv1 role credentials are returned. If you retrieve the IAM role credentials using a valid session token, the IMDSv2 role credentials are returned.
required
- When IMDSv2 is required, you must send a session token with any instance metadata retrieval requests. In this state, retrieving the IAM role credentials always returns IMDSv2 credentials; IMDSv1 credentials are not available.
Default: optional
Indicates whether the network was healthy or unhealthy at a particular point. The value is aggregated from the startDate
to the endDate
. Currently only five_minutes
is supported.
Indicates whether the network was healthy or degraded at a particular point. The value is aggregated from the startDate
to the endDate
. Currently only five_minutes
is supported.
The state of token usage for your instance metadata requests. If the parameter is not specified in the request, the default state is optional
.
If the state is optional
, you can choose to retrieve instance metadata with or without a session token on your request. If you retrieve the IAM role credentials without a token, the version 1.0 role credentials are returned. If you retrieve the IAM role credentials using a valid session token, the version 2.0 role credentials are returned.
If the state is required
, you must send a session token with any instance metadata retrieval requests. In this state, retrieving the IAM role credentials always returns the version 2.0 credentials; the version 1.0 credentials are not available.
IMDSv2 uses token-backed sessions. Set the use of HTTP tokens to optional
(in other words, set the use of IMDSv2 to optional
) or required
(in other words, set the use of IMDSv2 to required
).
optional
- When IMDSv2 is optional, you can choose to retrieve instance metadata with or without a session token in your request. If you retrieve the IAM role credentials without a token, the IMDSv1 role credentials are returned. If you retrieve the IAM role credentials using a valid session token, the IMDSv2 role credentials are returned.
required
- When IMDSv2 is required, you must send a session token with any instance metadata retrieval requests. In this state, retrieving the IAM role credentials always returns IMDSv2 credentials; IMDSv1 credentials are not available.
Default: optional
One or more events for the endpoint. Valid values are Accept
, Connect
, Delete
, and Reject
.
The events for the endpoint. Valid values are Accept
, Connect
, Delete
, and Reject
.
(Gateway endpoint) One or more route tables IDs to associate with the endpoint.
", + "documentation": "(Gateway endpoint) The IDs of the route tables to associate with the endpoint.
", "locationName": "AddRouteTableId" }, "RemoveRouteTableIds": { "shape": "VpcEndpointRouteTableIdList", - "documentation": "(Gateway endpoint) One or more route table IDs to disassociate from the endpoint.
", + "documentation": "(Gateway endpoint) The IDs of the route tables to disassociate from the endpoint.
", "locationName": "RemoveRouteTableId" }, "AddSubnetIds": { "shape": "VpcEndpointSubnetIdList", - "documentation": "(Interface and Gateway Load Balancer endpoints) One or more subnet IDs in which to serve the endpoint. For a Gateway Load Balancer endpoint, you can specify only one subnet.
", + "documentation": "(Interface and Gateway Load Balancer endpoints) The IDs of the subnets in which to serve the endpoint. For a Gateway Load Balancer endpoint, you can specify only one subnet.
", "locationName": "AddSubnetId" }, "RemoveSubnetIds": { "shape": "VpcEndpointSubnetIdList", - "documentation": "(Interface endpoint) One or more subnets IDs in which to remove the endpoint.
", + "documentation": "(Interface endpoint) The IDs of the subnets from which to remove the endpoint.
", "locationName": "RemoveSubnetId" }, "AddSecurityGroupIds": { "shape": "VpcEndpointSecurityGroupIdList", - "documentation": "(Interface endpoint) One or more security group IDs to associate with the network interface.
", + "documentation": "(Interface endpoint) The IDs of the security groups to associate with the network interface.
", "locationName": "AddSecurityGroupId" }, "RemoveSecurityGroupIds": { "shape": "VpcEndpointSecurityGroupIdList", - "documentation": "(Interface endpoint) One or more security group IDs to disassociate from the network interface.
", + "documentation": "(Interface endpoint) The IDs of the security groups to disassociate from the network interface.
", "locationName": "RemoveSecurityGroupId" }, "IpAddressType": { @@ -42969,8 +42962,7 @@ "shape": "Boolean", "documentation": "(Interface endpoint) Indicates whether a private hosted zone is associated with the VPC.
" } - }, - "documentation": "Contains the parameters for ModifyVpcEndpoint.
" + } }, "ModifyVpcEndpointResult": { "type": "structure", @@ -43097,11 +43089,11 @@ }, "AddAllowedPrincipals": { "shape": "ValueStringList", - "documentation": "The Amazon Resource Names (ARN) of one or more principals. Permissions are granted to the principals in this list. To grant permissions to all principals, specify an asterisk (*).
" + "documentation": "The Amazon Resource Names (ARN) of the principals. Permissions are granted to the principals in this list. To grant permissions to all principals, specify an asterisk (*).
" }, "RemoveAllowedPrincipals": { "shape": "ValueStringList", - "documentation": "The Amazon Resource Names (ARN) of one or more principals. Permissions are revoked for principals in this list.
" + "documentation": "The Amazon Resource Names (ARN) of the principals. Permissions are revoked for principals in this list.
" } } }, @@ -47237,7 +47229,7 @@ }, "VpcEndpointIds": { "shape": "VpcEndpointIdList", - "documentation": "The IDs of one or more VPC endpoints.
", + "documentation": "The IDs of the VPC endpoints.
", "locationName": "VpcEndpointId" } } @@ -48021,7 +48013,7 @@ }, "DisableApiStop": { "shape": "Boolean", - "documentation": "Indicates whether to enable the instance for stop protection. For more information, see Stop Protection.
" + "documentation": "Indicates whether to enable the instance for stop protection. For more information, see Stop protection in the Amazon Elastic Compute Cloud User Guide.
" } }, "documentation": "The information to include in the launch template.
You must specify at least one parameter for the launch template data.
Indicates whether the instance is enabled for stop protection. For more information, see Stop Protection.
", + "documentation": "Indicates whether the instance is enabled for stop protection. For more information, see Stop protection in the Amazon Elastic Compute Cloud User Guide.
", "locationName": "disableApiStop" } }, @@ -49689,7 +49681,7 @@ }, "FromPort": { "shape": "Integer", - "documentation": "The start of port range for the TCP and UDP protocols, or an ICMP type number. For the ICMP type number, use -1
to specify all ICMP types.
If the protocol is TCP or UDP, this is the start of the port range. If the protocol is ICMP, this is the type number. A value of -1 indicates all ICMP types.
" }, "GroupId": { "shape": "SecurityGroupId", @@ -49717,7 +49709,7 @@ }, "ToPort": { "shape": "Integer", - "documentation": "The end of port range for the TCP and UDP protocols, or an ICMP code number. For the ICMP code number, use -1
to specify all ICMP codes for the ICMP type.
If the protocol is TCP or UDP, this is the end of the port range. If the protocol is ICMP, this is the code. A value of -1 indicates all ICMP codes.
" }, "DryRun": { "shape": "Boolean", @@ -50086,7 +50078,7 @@ }, "SecurityGroups": { "shape": "SecurityGroupStringList", - "documentation": "[EC2-Classic, default VPC] The names of the security groups. For a nondefault VPC, you must use security group IDs instead.
If you specify a network interface, you must specify any security groups as part of the network interface.
Default: Amazon EC2 uses the default security group.
", + "documentation": "[EC2-Classic, default VPC] The names of the security groups.
If you specify a network interface, you must specify any security groups as part of the network interface.
Default: Amazon EC2 uses the default security group.
", "locationName": "SecurityGroup" }, "SubnetId": { @@ -51079,12 +51071,12 @@ }, "FromPort": { "shape": "Integer", - "documentation": "The start of port range for the TCP and UDP protocols, or an ICMP/ICMPv6 type. A value of -1 indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6 types, you must specify all codes.
", + "documentation": "If the protocol is TCP or UDP, this is the start of the port range. If the protocol is ICMP or ICMPv6, this is the type number. A value of -1 indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6 types, you must specify all ICMP/ICMPv6 codes.
", "locationName": "fromPort" }, "ToPort": { "shape": "Integer", - "documentation": "The end of port range for the TCP and UDP protocols, or an ICMP/ICMPv6 code. A value of -1
indicates all ICMP/ICMPv6 codes. If you specify all ICMP/ICMPv6 types, you must specify all codes.
If the protocol is TCP or UDP, this is the end of the port range. If the protocol is ICMP or ICMPv6, this is the type number. A value of -1 indicates all ICMP/ICMPv6 codes. If you specify all ICMP/ICMPv6 types, you must specify all ICMP/ICMPv6 codes.
", "locationName": "toPort" }, "CidrIpv4": { @@ -51167,11 +51159,11 @@ }, "FromPort": { "shape": "Integer", - "documentation": "The start of port range for the TCP and UDP protocols, or an ICMP/ICMPv6 type. A value of -1 indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6 types, you must specify all codes.
" + "documentation": "If the protocol is TCP or UDP, this is the start of the port range. If the protocol is ICMP or ICMPv6, this is the type number. A value of -1 indicates all ICMP/ICMPv6 types. If you specify all ICMP/ICMPv6 types, you must specify all ICMP/ICMPv6 codes.
" }, "ToPort": { "shape": "Integer", - "documentation": "The end of port range for the TCP and UDP protocols, or an ICMP/ICMPv6 code. A value of -1
indicates all ICMP/ICMPv6 codes. If you specify all ICMP/ICMPv6 types, you must specify all codes.
If the protocol is TCP or UDP, this is the end of the port range. If the protocol is ICMP or ICMPv6, this is the code. A value of -1 indicates all ICMP/ICMPv6 codes. If you specify all ICMP/ICMPv6 types, you must specify all ICMP/ICMPv6 codes.
" }, "CidrIpv4": { "shape": "String", @@ -51326,7 +51318,7 @@ }, "Tags": { "shape": "TagList", - "documentation": "Any tags assigned to the service.
", + "documentation": "The tags assigned to the service.
", "locationName": "tagSet" } }, @@ -51411,7 +51403,7 @@ }, "Tags": { "shape": "TagList", - "documentation": "Any tags assigned to the service.
", + "documentation": "The tags assigned to the service.
", "locationName": "tagSet" }, "PrivateDnsNameVerificationState": { @@ -52286,7 +52278,7 @@ }, "TargetCapacityUnitType": { "shape": "TargetCapacityUnitType", - "documentation": "The unit for the target capacity.
Default: units
(translates to number of instances)
The unit for the target capacity. TargetCapacityUnitType
can only be specified when InstanceRequirements
is specified.
Default: units
(translates to number of instances)
The start of the port range for the TCP and UDP protocols, or an ICMP type number. A value of -1
indicates all ICMP types.
The start of the port range for the TCP and UDP protocols, or an ICMP type number. A value of -1 indicates all ICMP types.
", "locationName": "fromPort" }, "IpProtocol": { @@ -53641,7 +53633,7 @@ }, "TargetCapacityUnitType": { "shape": "TargetCapacityUnitType", - "documentation": "The unit for the target capacity.
Default: units
(translates to number of instances)
The unit for the target capacity. TargetCapacityUnitType
can only be specified when InstanceRequirements
is specified.
Default: units
(translates to number of instances)
The unit for the target capacity.
Default: units
(translates to number of instances)
The unit for the target capacity. TargetCapacityUnitType
can only be specified when InstanceRequirements
is specified.
Default: units
(translates to number of instances)
The number of units to request. You can choose to set the target capacity as the number of instances. Or you can set the target capacity to a performance characteristic that is important to your application workload, such as vCPUs, memory, or I/O. If the request type is maintain
, you can specify a target capacity of 0 and add capacity later.
You can use the On-Demand Instance MaxTotalPrice
parameter, the Spot Instance MaxTotalPrice
parameter, or both parameters to ensure that your fleet cost does not exceed your budget. If you set a maximum price per hour for the On-Demand Instances and Spot Instances in your request, EC2 Fleet will launch instances until it reaches the maximum amount that you're willing to pay. When the maximum amount you're willing to pay is reached, the fleet stops launching instances even if it hasn’t met the target capacity. The MaxTotalPrice
parameters are located in OnDemandOptionsRequest and SpotOptionsRequest.
(Gateway endpoint) One or more route tables associated with the endpoint.
", + "documentation": "(Gateway endpoint) The IDs of the route tables associated with the endpoint.
", "locationName": "routeTableIdSet" }, "SubnetIds": { @@ -58316,7 +58308,7 @@ }, "NetworkInterfaceIds": { "shape": "ValueStringList", - "documentation": "(Interface endpoint) One or more network interfaces for the endpoint.
", + "documentation": "(Interface endpoint) The network interfaces for the endpoint.
", "locationName": "networkInterfaceIdSet" }, "DnsEntries": { @@ -58331,7 +58323,7 @@ }, "Tags": { "shape": "TagList", - "documentation": "Any tags assigned to the endpoint.
", + "documentation": "The tags assigned to the endpoint.
", "locationName": "tagSet" }, "OwnerId": { @@ -59234,5 +59226,5 @@ "type": "integer" } }, - "documentation": "Amazon Elastic Compute Cloud (Amazon EC2) provides secure and resizable computing capacity in the Amazon Web Services Cloud. Using Amazon EC2 eliminates the need to invest in hardware up front, so you can develop and deploy applications faster. Amazon Virtual Private Cloud (Amazon VPC) enables you to provision a logically isolated section of the Amazon Web Services Cloud where you can launch Amazon Web Services resources in a virtual network that you've defined. Amazon Elastic Block Store (Amazon EBS) provides block level storage volumes for use with EC2 instances. EBS volumes are highly available and reliable storage volumes that can be attached to any running instance and used like a hard drive.
To learn more, see the following resources:
Amazon EC2: AmazonEC2 product page, Amazon EC2 documentation
Amazon EBS: Amazon EBS product page, Amazon EBS documentation
Amazon VPC: Amazon VPC product page, Amazon VPC documentation
Amazon Web Services VPN: Amazon Web Services VPN product page, Amazon Web Services VPN documentation
Amazon Elastic Compute Cloud (Amazon EC2) provides secure and resizable computing capacity in the Amazon Web Services Cloud. Using Amazon EC2 eliminates the need to invest in hardware up front, so you can develop and deploy applications faster. Amazon Virtual Private Cloud (Amazon VPC) enables you to provision a logically isolated section of the Amazon Web Services Cloud where you can launch Amazon Web Services resources in a virtual network that you've defined. Amazon Elastic Block Store (Amazon EBS) provides block level storage volumes for use with EC2 instances. EBS volumes are highly available and reliable storage volumes that can be attached to any running instance and used like a hard drive.
To learn more, see the following resources:
Amazon EC2: Amazon EC2 product page, Amazon EC2 documentation
Amazon EBS: Amazon EBS product page, Amazon EBS documentation
Amazon VPC: Amazon VPC product page, Amazon VPC documentation
Creates a resource group with the specified name and description. You can optionally include a resource query, or a service configuration. For more information about constructing a resource query, see Create a tag-based group in Resource Groups. For more information about service configurations, see Service configurations for resource groups.
Minimum permissions
To run this command, you must have the following permissions:
resource-groups:CreateGroup
Creates a resource group with the specified name and description. You can optionally include either a resource query or a service configuration. For more information about constructing a resource query, see Build queries and groups in Resource Groups in the Resource Groups User Guide. For more information about service-linked groups and service configurations, see Service configurations for Resource Groups.
Minimum permissions
To run this command, you must have the following permissions:
resource-groups:CreateGroup
Deletes the specified resource group. Deleting a resource group does not delete any resources that are members of the group; it only deletes the group structure.
Minimum permissions
To run this command, you must have the following permissions:
resource-groups:DeleteGroup
Retrieves the current status of optional features in Resource Groups.
" + }, "GetGroup": { "name": "GetGroup", "http": { @@ -143,7 +171,7 @@ "shape": "InternalServerErrorException" } ], - "documentation": "Returns the service configuration associated with the specified resource group. For details about the service configuration syntax, see Service configurations for resource groups.
Minimum permissions
To run this command, you must have the following permissions:
resource-groups:GetGroupConfiguration
Retrieves the service configuration associated with the specified resource group. For details about the service configuration syntax, see Service configurations for Resource Groups.
Minimum permissions
To run this command, you must have the following permissions:
resource-groups:GetGroupConfiguration
Adds the specified resources to the specified group.
Minimum permissions
To run this command, you must have the following permissions:
resource-groups:GroupResources
Adds the specified resources to the specified group.
You can use this operation with only resource groups that are configured with the following types:
AWS::EC2::HostManagement
AWS::EC2::CapacityReservationPool
Other resource group type and resource types aren't currently supported by this operation.
Minimum permissions
To run this command, you must have the following permissions:
resource-groups:GroupResources
Returns a list of existing resource groups in your account.
Minimum permissions
To run this command, you must have the following permissions:
resource-groups:ListGroups
Returns a list of existing Resource Groups in your account.
Minimum permissions
To run this command, you must have the following permissions:
resource-groups:ListGroups
Returns a list of AWS resource identifiers that matches the specified query. The query uses the same format as a resource query in a CreateGroup or UpdateGroupQuery operation.
Minimum permissions
To run this command, you must have the following permissions:
resource-groups:SearchResources
cloudformation:DescribeStacks
cloudformation:ListStackResources
tag:GetResources
Returns a list of Amazon Web Services resource identifiers that matches the specified query. The query uses the same format as a resource query in a CreateGroup or UpdateGroupQuery operation.
Minimum permissions
To run this command, you must have the following permissions:
resource-groups:SearchResources
cloudformation:DescribeStacks
cloudformation:ListStackResources
tag:GetResources
Removes the specified resources from the specified group.
Minimum permissions
To run this command, you must have the following permissions:
resource-groups:UngroupResources
Removes the specified resources from the specified group. This operation works only with static groups that you populated using the GroupResources operation. It doesn't work with any resource groups that are automatically populated by tag-based or CloudFormation stack-based queries.
Minimum permissions
To run this command, you must have the following permissions:
resource-groups:UngroupResources
Deletes tags from a specified resource group.
Minimum permissions
To run this command, you must have the following permissions:
resource-groups:Untag
Turns on or turns off optional features in Resource Groups.
The preceding example shows that the request to turn on group lifecycle events is IN_PROGRESS
. You can call the GetAccountSettings operation to check for completion by looking for GroupLifecycleEventsStatus
to change to ACTIVE
.
The desired target status of the group lifecycle events feature. If
" + }, + "GroupLifecycleEventsStatus": { + "shape": "GroupLifecycleEventsStatus", + "documentation": "The current status of the group lifecycle events feature.
" + }, + "GroupLifecycleEventsStatusMessage": { + "shape": "GroupLifecycleEventsStatusMessage", + "documentation": "The text of any error message occurs during an attempt to turn group lifecycle events on or off.
" + } + }, + "documentation": "The Resource Groups settings for this Amazon Web Services account.
" + }, "CreateGroupInput": { "type": "structure", "required": [ @@ -564,7 +641,7 @@ "members": { "Name": { "shape": "GroupName", - "documentation": "The name of the group, which is the identifier of the group in other operations. You can't change the name of a resource group after you create it. A resource group name can consist of letters, numbers, hyphens, periods, and underscores. The name cannot start with AWS
or aws
; these are reserved. A resource group name must be unique within each AWS Region in your AWS account.
The name of the group, which is the identifier of the group in other operations. You can't change the name of a resource group after you create it. A resource group name can consist of letters, numbers, hyphens, periods, and underscores. The name cannot start with AWS
or aws
; these are reserved. A resource group name must be unique within each Amazon Web Services Region in your Amazon Web Services account.
The resource query that determines which AWS resources are members of this group. For more information about resource queries, see Create a tag-based group in Resource Groups.
A resource group can contain either a ResourceQuery
or a Configuration
, but not both.
The resource query that determines which Amazon Web Services resources are members of this group. For more information about resource queries, see Create a tag-based group in Resource Groups.
A resource group can contain either a ResourceQuery
or a Configuration
, but not both.
A configuration associates the resource group with an AWS service and specifies how the service can interact with the resources in the group. A configuration is an array of GroupConfigurationItem elements. For details about the syntax of service configurations, see Service configurations for resource groups.
A resource group can contain either a Configuration
or a ResourceQuery
, but not both.
A configuration associates the resource group with an Amazon Web Services service and specifies how the service can interact with the resources in the group. A configuration is an array of GroupConfigurationItem elements. For details about the syntax of service configurations, see Service configurations for Resource Groups.
A resource group can contain either a Configuration
or a ResourceQuery
, but not both.
The service configuration associated with the resource group. For details about the syntax of a service configuration, see Service configurations for resource groups.
" + "documentation": "The service configuration associated with the resource group. For details about the syntax of a service configuration, see Service configurations for Resource Groups.
" } } }, @@ -631,7 +708,7 @@ }, "Description": { "type": "string", - "max": 512, + "max": 1024, "pattern": "[\\sa-zA-Z0-9_\\.-]*" }, "ErrorCode": { @@ -668,12 +745,21 @@ "shape": "FailedResource" } }, + "GetAccountSettingsOutput": { + "type": "structure", + "members": { + "AccountSettings": { + "shape": "AccountSettings", + "documentation": "The current settings for the optional features in Resource Groups.
" + } + } + }, "GetGroupConfigurationInput": { "type": "structure", "members": { "Group": { "shape": "GroupString", - "documentation": "The name or the ARN of the resource group.
" + "documentation": "The name or the ARN of the resource group for which you want to retrive the service configuration.
" } } }, @@ -682,7 +768,7 @@ "members": { "GroupConfiguration": { "shape": "GroupConfiguration", - "documentation": "The service configuration associated with the specified group. For details about the service configuration syntax, see Service configurations for resource groups.
" + "documentation": "A structure that describes the service configuration attached with the specified group. For details about the service configuration syntax, see Service configurations for Resource Groups.
" } } }, @@ -706,7 +792,7 @@ "members": { "Group": { "shape": "Group", - "documentation": "A full description of the resource group.
" + "documentation": "A structure that contains the metadata details for the specified resource group. Use GetGroupQuery and GetGroupConfiguration to get those additional details of the resource group.
" } } }, @@ -781,13 +867,13 @@ "documentation": "The description of the resource group.
" } }, - "documentation": "A resource group that contains AWS resources. You can assign resources to the group by associating either of the following elements with the group:
ResourceQuery - Use a resource query to specify a set of tag keys and values. All resources in the same AWS Region and AWS account that have those keys with the same values are included in the group. You can add a resource query when you create the group, or later by using the PutGroupConfiguration operation.
GroupConfiguration - Use a service configuration to associate the group with an AWS service. The configuration specifies which resource types can be included in the group.
A resource group that contains Amazon Web Services resources. You can assign resources to the group by associating either of the following elements with the group:
ResourceQuery - Use a resource query to specify a set of tag keys and values. All resources in the same Amazon Web Services Region and Amazon Web Services account that have those keys with the same values are included in the group. You can add a resource query when you create the group, or later by using the PutGroupConfiguration operation.
GroupConfiguration - Use a service configuration to associate the group with an Amazon Web Services service. The configuration specifies which resource types can be included in the group.
If present, the reason why a request to update the group configuration failed.
" } }, - "documentation": "A service configuration associated with a resource group. The configuration options are determined by the AWS service that defines the Type
, and specifies which resources can be included in the group. You can add a service configuration when you create the group by using CreateGroup, or later by using the PutGroupConfiguration operation. For details about group service configuration syntax, see Service configurations for resource groups.
A service configuration associated with a resource group. The configuration options are determined by the Amazon Web Services service that defines the Type
, and specifies which resources can be included in the group. You can add a service configuration when you create the group by using CreateGroup, or later by using the PutGroupConfiguration operation. For details about group service configuration syntax, see Service configurations for resource groups.
The resource query that determines which AWS resources are members of the associated resource group.
" + "documentation": "The resource query that determines which Amazon Web Services resources are members of the associated resource group.
" } }, - "documentation": "A mapping of a query attached to a resource group that determines the AWS resources that are members of the group.
" + "documentation": "A mapping of a query attached to a resource group that determines the Amazon Web Services resources that are members of the group.
" }, "GroupResourcesInput": { "type": "structure", @@ -1000,7 +1107,7 @@ }, "ResourceArns": { "shape": "ResourceArnList", - "documentation": "The list of ARNs for resources to be added to the group.
" + "documentation": "The list of ARNs of the resources to be added to the group.
" } } }, @@ -1009,15 +1116,15 @@ "members": { "Succeeded": { "shape": "ResourceArnList", - "documentation": "A list of ARNs of resources that were successfully added to the group by this operation.
" + "documentation": "A list of ARNs of the resources that this operation successfully added to the group.
" }, "Failed": { "shape": "FailedResourceList", - "documentation": "A list of ARNs of any resources that failed to be added to the group by this operation.
" + "documentation": "A list of ARNs of any resources that this operation failed to add to the group.
" }, "Pending": { "shape": "PendingResourceList", - "documentation": "A list of ARNs of any resources that are still in the process of being added to the group by this operation. These pending additions continue asynchronously. You can check the status of pending additions by using the ListGroupResources
operation, and checking the Resources
array in the response and the Status
field of each object in that array.
A list of ARNs of any resources that this operation is still in the process adding to the group. These pending additions continue asynchronously. You can check the status of pending additions by using the ListGroupResources
operation, and checking the Resources
array in the response and the Status
field of each object in that array.
Filters, formatted as ResourceFilter objects, that you want to apply to a ListGroupResources
operation. Filters the results to include only those of the specified resource types.
resource-type
- Filter resources by their type. Specify up to five resource types in the format AWS::ServiceCode::ResourceType
. For example, AWS::EC2::Instance
, or AWS::S3::Bucket
.
When you specify a resource-type
filter for ListGroupResources
, AWS Resource Groups validates your filter resource types against the types that are defined in the query associated with the group. For example, if a group contains only S3 buckets because its query specifies only that resource type, but your resource-type
filter includes EC2 instances, AWS Resource Groups does not filter for EC2 instances. In this case, a ListGroupResources
request returns a BadRequestException
error with a message similar to the following:
The resource types specified as filters in the request are not valid.
The error includes a list of resource types that failed the validation because they are not part of the query associated with the group. This validation doesn't occur when the group query specifies AWS::AllSupported
, because a group based on such a query can contain any of the allowed resource types for the query type (tag-based or AWS CloudFormation stack-based queries).
Filters, formatted as ResourceFilter objects, that you want to apply to a ListGroupResources
operation. Filters the results to include only those of the specified resource types.
resource-type
- Filter resources by their type. Specify up to five resource types in the format AWS::ServiceCode::ResourceType
. For example, AWS::EC2::Instance
, or AWS::S3::Bucket
.
When you specify a resource-type
filter for ListGroupResources
, Resource Groups validates your filter resource types against the types that are defined in the query associated with the group. For example, if a group contains only S3 buckets because its query specifies only that resource type, but your resource-type
filter includes EC2 instances, AWS Resource Groups does not filter for EC2 instances. In this case, a ListGroupResources
request returns a BadRequestException
error with a message similar to the following:
The resource types specified as filters in the request are not valid.
The error includes a list of resource types that failed the validation because they are not part of the query associated with the group. This validation doesn't occur when the group query specifies AWS::AllSupported
, because a group based on such a query can contain any of the allowed resource types for the query type (tag-based or Amazon CloudFront stack-based queries).
Filters, formatted as GroupFilter objects, that you want to apply to a ListGroups
operation.
resource-type
- Filter the results to include only those of the specified resource types. Specify up to five resource types in the format AWS::ServiceCode::ResourceType
. For example, AWS::EC2::Instance
, or AWS::S3::Bucket
.
configuration-type
- Filter the results to include only those groups that have the specified configuration types attached. The current supported values are:
AWS:EC2::CapacityReservationPool
AWS:EC2::HostManagement
Filters, formatted as GroupFilter objects, that you want to apply to a ListGroups
operation.
resource-type
- Filter the results to include only those of the specified resource types. Specify up to five resource types in the format AWS::ServiceCode::ResourceType
. For example, AWS::EC2::Instance
, or AWS::S3::Bucket
.
configuration-type
- Filter the results to include only those groups that have the specified configuration types attached. The current supported values are:
AWS::EC2::CapacityReservationPool
AWS::EC2::HostManagement
The new configuration to associate with the specified group. A configuration associates the resource group with an AWS service and specifies how the service can interact with the resources in the group. A configuration is an array of GroupConfigurationItem elements.
For information about the syntax of a service configuration, see Service configurations for resource groups.
A resource group can contain either a Configuration
or a ResourceQuery
, but not both.
The new configuration to associate with the specified group. A configuration associates the resource group with an Amazon Web Services service and specifies how the service can interact with the resources in the group. A configuration is an array of GroupConfigurationItem elements.
For information about the syntax of a service configuration, see Service configurations for Resource Groups.
A resource group can contain either a Configuration
or a ResourceQuery
, but not both.
Possible values are CLOUDFORMATION_STACK_INACTIVE
and CLOUDFORMATION_STACK_NOT_EXISTING
.
Specifies the error code that was raised.
" }, "Message": { "shape": "QueryErrorMessage", - "documentation": "A message that explains the ErrorCode
value. Messages might state that the specified CloudFormation stack does not exist (or no longer exists). For CLOUDFORMATION_STACK_INACTIVE
, the message typically states that the CloudFormation stack has a status that is not (or no longer) active, such as CREATE_FAILED
.
A message that explains the ErrorCode
value. Messages might state that the specified CloudFront stack does not exist (or no longer exists). For CLOUDFORMATION_STACK_INACTIVE
, the message typically states that the CloudFront stack has a status that is not (or no longer) active, such as CREATE_FAILED
.
A two-part error structure that can occur in ListGroupResources
or SearchResources
operations on CloudFormation stack-based queries. The error occurs if the CloudFormation stack on which the query is based either does not exist, or has a status that renders the stack inactive. A QueryError
occurrence does not necessarily mean that AWS Resource Groups could not complete the operation, but the resulting group might have no member resources.
A two-part error structure that can occur in ListGroupResources
or SearchResources
operations on CloudFront stack-based queries. The error occurs if the CloudFront stack on which the query is based either does not exist, or has a status that renders the stack inactive. A QueryError
occurrence does not necessarily mean that Resource Groups could not complete the operation, but the resulting group might have no member resources.
The type of the query. You can use the following values:
CLOUDFORMATION_STACK_1_0:
Specifies that the Query
contains an ARN for a CloudFormation stack.
TAG_FILTERS_1_0:
Specifies that the Query
parameter contains a JSON string that represents a collection of simple tag filters for resource types and tags. The JSON string uses a syntax similar to the GetResources
operation, but uses only the ResourceTypeFilters
and TagFilters
fields. If you specify more than one tag key, only resources that match all tag keys, and at least one value of each specified tag key, are returned in your query. If you specify more than one value for a tag key, a resource matches the filter if it has a tag key value that matches any of the specified values.
For example, consider the following sample query for resources that have two tags, Stage
and Version
, with two values each:
[{\"Stage\":[\"Test\",\"Deploy\"]},{\"Version\":[\"1\",\"2\"]}]
The results of this query could include the following.
An EC2 instance that has the following two tags: {\"Stage\":\"Deploy\"}
, and {\"Version\":\"2\"}
An S3 bucket that has the following two tags: {\"Stage\":\"Test\"}
, and {\"Version\":\"1\"}
The query would not include the following items in the results, however.
An EC2 instance that has only the following tag: {\"Stage\":\"Deploy\"}
.
The instance does not have all of the tag keys specified in the filter, so it is excluded from the results.
An RDS database that has the following two tags: {\"Stage\":\"Archived\"}
and {\"Version\":\"4\"}
The database has all of the tag keys, but none of those keys has an associated value that matches at least one of the specified values in the filter.
The type of the query to perform. This can have one of two values:
CLOUDFORMATION_STACK_1_0:
Specifies that you want the group to contain the members of an CloudFormation stack. The Query
contains a StackIdentifier
element with an ARN for a CloudFormation stack.
TAG_FILTERS_1_0:
Specifies that you want the group to include resource that have tags that match the query.
The query that defines a group or a search.
" + "documentation": "The query that defines a group or a search. The contents depends on the value of the Type
element.
ResourceTypeFilters
– Applies to all ResourceQuery
objects of either Type
. This element contains one of the following two items:
The value AWS::AllSupported
. This causes the ResourceQuery to match resources of any resource type that also match the query.
A list (a JSON array) of resource type identifiers that limit the query to only resources of the specified types. For the complete list of resource types that you can use in the array value for ResourceTypeFilters
, see Resources you can use with Resource Groups and Tag Editor in the Resource Groups User Guide.
Example: \"ResourceTypeFilters\": [\"AWS::AllSupported\"]
or \"ResourceTypeFilters\": [\"AWS::EC2::Instance\", \"AWS::S3::Bucket\"]
TagFilters
– applicable only if Type
= TAG_FILTERS_1_0
. The Query
contains a JSON string that represents a collection of simple tag filters. The JSON string uses a syntax similar to the GetResources
operation, but uses only the ResourceTypeFilters
and TagFilters
fields. If you specify more than one tag key, only resources that match all tag keys, and at least one value of each specified tag key, are returned in your query. If you specify more than one value for a tag key, a resource matches the filter if it has a tag key value that matches any of the specified values.
For example, consider the following sample query for resources that have two tags, Stage
and Version
, with two values each:
[{\"Stage\":[\"Test\",\"Deploy\"]},{\"Version\":[\"1\",\"2\"]}]
The results of this resource query could include the following.
An Amazon EC2 instance that has the following two tags: {\"Stage\":\"Deploy\"}
, and {\"Version\":\"2\"}
An S3 bucket that has the following two tags: {\"Stage\":\"Test\"}
, and {\"Version\":\"1\"}
The resource query results would not include the following items in the results, however.
An Amazon EC2 instance that has only the following tag: {\"Stage\":\"Deploy\"}
.
The instance does not have all of the tag keys specified in the filter, so it is excluded from the results.
An RDS database that has the following two tags: {\"Stage\":\"Archived\"}
and {\"Version\":\"4\"}
The database has all of the tag keys, but none of those keys has an associated value that matches at least one of the specified values in the filter.
Example: \"TagFilters\": [ { \"Key\": \"Stage\", \"Values\": [ \"Gamma\", \"Beta\" ] }
StackIdentifier
– applicable only if Type
= CLOUDFORMATION_STACK_1_0
. The value of this parameter is the Amazon Resource Name (ARN) of the CloudFormation stack whose resources you want included in the group.
The query that is used to define a resource group or a search for resources. A query specifies both a query type and a query string as a JSON object. See the examples section for example JSON strings.
The examples that follow are shown as standard JSON strings. If you include such a string as a parameter to the AWS CLI or an SDK API, you might need to 'escape' the string into a single line. For example, see the Quoting strings in the AWS CLI User Guide.
Example 1
The following generic example shows a resource query JSON string that includes only resources that meet the following criteria:
The resource type must be either resource_type1
or resource_type2
.
The resource must have a tag Key1
with a value of either ValueA
or ValueB
.
The resource must have a tag Key2
with a value of either ValueC
or ValueD
.
{ \"Type\": \"TAG_FILTERS_1_0\", \"Query\": { \"ResourceTypeFilters\": [ \"resource_type1\", \"resource_type2\"], \"TagFilters\": [ { \"Key\": \"Key1\", \"Values\": [\"ValueA\",\"ValueB\"] }, { \"Key\":\"Key2\", \"Values\":[\"ValueC\",\"ValueD\"] } ] } }
This has the equivalent \"shortcut\" syntax of the following:
{ \"Type\": \"TAG_FILTERS_1_0\", \"Query\": { \"ResourceTypeFilters\": [ \"resource_type1\", \"resource_type2\"], \"TagFilters\": [ { \"Key1\": [\"ValueA\",\"ValueB\"] }, { \"Key2\": [\"ValueC\",\"ValueD\"] } ] } }
Example 2
The following example shows a resource query JSON string that includes only Amazon EC2 instances that are tagged Stage
with a value of Test
.
{ \"Type\": \"TAG_FILTERS_1_0\", \"Query\": \"{ \"ResourceTypeFilters\": \"AWS::EC2::Instance\", \"TagFilters\": { \"Stage\": \"Test\" } } }
Example 3
The following example shows a resource query JSON string that includes resource of any supported type as long as it is tagged Stage
with a value of Prod
.
{ \"Type\": \"TAG_FILTERS_1_0\", \"Query\": { \"ResourceTypeFilters\": \"AWS::AllSupported\", \"TagFilters\": { \"Stage\": \"Prod\" } } }
Example 4
The following example shows a resource query JSON string that includes only Amazon EC2 instances and Amazon S3 buckets that are part of the specified AWS CloudFormation stack.
{ \"Type\": \"CLOUDFORMATION_STACK_1_0\", \"Query\": { \"ResourceTypeFilters\": [ \"AWS::EC2::Instance\", \"AWS::S3::Bucket\" ], \"StackIdentifier\": \"arn:aws:cloudformation:us-west-2:123456789012:stack/AWStestuseraccount/fb0d5000-aba8-00e8-aa9e-50d5cEXAMPLE\" } }
The query you can use to define a resource group or a search for resources. A ResourceQuery
specifies both a query Type
and a Query
string as JSON string objects. See the examples section for example JSON strings. For more information about creating a resource group with a resource query, see Build queries and groups in Resource Groups in the Resource Groups User Guide
When you combine all of the elements together into a single string, any double quotes that are embedded inside another double quote pair must be escaped by preceding the embedded double quote with a backslash character (\\). For example, a complete ResourceQuery
parameter must be formatted like the following CLI parameter example:
--resource-query '{\"Type\":\"TAG_FILTERS_1_0\",\"Query\":\"{\\\"ResourceTypeFilters\\\":[\\\"AWS::AllSupported\\\"],\\\"TagFilters\\\":[{\\\"Key\\\":\\\"Stage\\\",\\\"Values\\\":[\\\"Test\\\"]}]}\"}'
In the preceding example, all of the double quote characters in the value part of the Query
element must be escaped because the value itself is surrounded by double quotes. For more information, see Quoting strings in the Command Line Interface User Guide.
For the complete list of resource types that you can use in the array value for ResourceTypeFilters
, see Resources you can use with Resource Groups and Tag Editor in the Resource Groups User Guide. For example:
\"ResourceTypeFilters\":[\"AWS::S3::Bucket\", \"AWS::EC2::Instance\"]
A list of QueryError
objects. Each error is an object that contains ErrorCode
and Message
structures. Possible values for ErrorCode
are CLOUDFORMATION_STACK_INACTIVE
and CLOUDFORMATION_STACK_NOT_EXISTING
.
A list of QueryError
objects. Each error is an object that contains ErrorCode
and Message
structures.
Possible values for ErrorCode
:
CLOUDFORMATION_STACK_INACTIVE
CLOUDFORMATION_STACK_NOT_EXISTING
Specifies whether you want to turn group lifecycle events on or off.
" + } + } + }, + "UpdateAccountSettingsOutput": { + "type": "structure", + "members": { + "AccountSettings": { + "shape": "AccountSettings", + "documentation": "A structure that displays the status of the optional features in the account.
" + } + } + }, "UpdateGroupInput": { "type": "structure", "members": { @@ -1547,7 +1673,7 @@ }, "ResourceQuery": { "shape": "ResourceQuery", - "documentation": "The resource query to determine which AWS resources are members of this resource group.
A resource group can contain either a Configuration
or a ResourceQuery
, but not both.
The resource query to determine which Amazon Web Services resources are members of this resource group.
A resource group can contain either a Configuration
or a ResourceQuery
, but not both.
AWS Resource Groups lets you organize AWS resources such as Amazon EC2 instances, Amazon Relational Database Service databases, and Amazon S3 buckets into groups using criteria that you define as tags. A resource group is a collection of resources that match the resource types specified in a query, and share one or more tags or portions of tags. You can create a group of resources based on their roles in your cloud infrastructure, lifecycle stages, regions, application layers, or virtually any criteria. Resource Groups enable you to automate management tasks, such as those in AWS Systems Manager Automation documents, on tag-related resources in AWS Systems Manager. Groups of tagged resources also let you quickly view a custom console in AWS Systems Manager that shows AWS Config compliance and other monitoring data about member resources.
To create a resource group, build a resource query, and specify tags that identify the criteria that members of the group have in common. Tags are key-value pairs.
For more information about Resource Groups, see the AWS Resource Groups User Guide.
AWS Resource Groups uses a REST-compliant API that you can use to perform the following types of operations.
Create, Read, Update, and Delete (CRUD) operations on resource groups and resource query entities
Applying, editing, and removing tags from resource groups
Resolving resource group member ARNs so they can be returned as search results
Getting data about resources that are members of a group
Searching AWS resources based on a resource query
Resource Groups lets you organize Amazon Web Services resources such as Amazon Elastic Compute Cloud instances, Amazon Relational Database Service databases, and Amazon Simple Storage Service buckets into groups using criteria that you define as tags. A resource group is a collection of resources that match the resource types specified in a query, and share one or more tags or portions of tags. You can create a group of resources based on their roles in your cloud infrastructure, lifecycle stages, regions, application layers, or virtually any criteria. Resource Groups enable you to automate management tasks, such as those in Amazon Web Services Systems Manager Automation documents, on tag-related resources in Amazon Web Services Systems Manager. Groups of tagged resources also let you quickly view a custom console in Amazon Web Services Systems Manager that shows Config compliance and other monitoring data about member resources.
To create a resource group, build a resource query, and specify tags that identify the criteria that members of the group have in common. Tags are key-value pairs.
For more information about Resource Groups, see the Resource Groups User Guide.
Resource Groups uses a REST-compliant API that you can use to perform the following types of operations.
Create, Read, Update, and Delete (CRUD) operations on resource groups and resource query entities
Applying, editing, and removing tags from resource groups
Resolving resource group member ARNs so they can be returned as search results
Getting data about resources that are members of a group
Searching Amazon Web Services resources based on a resource query
>1,l=23===i?Math.pow(2,-24)-Math.pow(2,-77):0,d=a?0:s-1,y=a?1:-1,b=t<0||0===t&&1/t<0?1:0;for(t=Math.abs(t),isNaN(t)||t===1/0?(n=isNaN(t)?1:0,o=m):(o=Math.floor(Math.log(t)/Math.LN2),t*(u=Math.pow(2,-o))<1&&(o--,u*=2),t+=o+c>=1?l/u:l*Math.pow(2,1-c),t*u>=2&&(o++,u/=2),o+c>=m?(n=0,o=m):o+c>=1?(n=(t*u-1)*Math.pow(2,i),o+=c):(n=t*Math.pow(2,c-1)*Math.pow(2,i),o=0));i>=8;e[r+d]=255&n,d+=y,n/=256,i-=8);for(o=o<0;e[r+d]=255&o,d+=y,o/=256,p-=8);e[r+d-y]|=128*b}},{}],437:[function(e,t,r){var a={}.toString;t.exports=Array.isArray||function(e){return"[object Array]"==a.call(e)}},{}],438:[function(e,t,r){!function(e){"use strict";function t(e){return null!==e&&"[object Array]"===Object.prototype.toString.call(e)}function r(e){return null!==e&&"[object Object]"===Object.prototype.toString.call(e)}function a(e,i){if(e===i)return!0;if(Object.prototype.toString.call(e)!==Object.prototype.toString.call(i))return!1;if(!0===t(e)){if(e.length!==i.length)return!1;for(var s=0;s =0?this.expression(e):"Lbracket"===t?(this._match("Lbracket"),this._parseMultiselectList()):"Lbrace"===t?(this._match("Lbrace"),this._parseMultiselectHash()):void 0},_parseProjectionRHS:function(e){var t;if(P[this._lookahead(0)]<10)t={type:"Identity"};else if("Lbracket"===this._lookahead(0))t=this.expression(e);else if("Filter"===this._lookahead(0))t=this.expression(e);else{if("Dot"!==this._lookahead(0)){var r=this._lookaheadToken(0),a=new Error("Sytanx error, unexpected token: "+r.value+"("+r.type+")");throw a.name="ParserError",a}this._match("Dot"),t=this._parseDotRHS(e)}return t},_parseMultiselectList:function(){for(var e=[];"Rbracket"!==this._lookahead(0);){var t=this.expression(0);if(e.push(t),"Comma"===this._lookahead(0)&&(this._match("Comma"),"Rbracket"===this._lookahead(0)))throw new Error("Unexpected token Rbracket")}return this._match("Rbracket"),{type:"MultiSelectList",children:e}},_parseMultiselectHash:function(){for(var e,t,r,a,i=[],s=["UnquotedIdentifier","QuotedIdentifier"];;){if(e=this._lookaheadToken(0),s.indexOf(e.type)<0)throw new Error("Expecting an identifier token, got: "+e.type);if(t=e.value,this._advance(),this._match("Colon"),r=this.expression(0),a={type:"KeyValuePair",name:t,value:r},i.push(a),"Comma"===this._lookahead(0))this._match("Comma");else if("Rbrace"===this._lookahead(0)){this._match("Rbrace");break}}return{type:"MultiSelectHash",children:i}}},c.prototype={search:function(e,t){return this.visit(e,t)},visit:function(e,o){var n,u,p,m,c,l,d,y,b;switch(e.type){case"Field":return null!==o&&r(o)?(l=o[e.name],void 0===l?null:l):null;case"Subexpression":for(p=this.visit(e.children[0],o),b=1;b G((f-r)/g)&&i("overflow"),r+=(p-t)*g,t=p,u=0;u =0?(c=b.substr(0,S),l=b.substr(S+1)):(c=b,l=""),d=decodeURIComponent(c),y=decodeURIComponent(l),a(o,d)?i(o[d])?o[d].push(y):o[d]=[o[d],y]:o[d]=y}return o};var i=Array.isArray||function(e){return"[object Array]"===Object.prototype.toString.call(e)}},{}],442:[function(e,t,r){"use strict";function a(e,t){if(e.map)return e.map(t);for(var r=[],a=0;a >1,l=23===i?Math.pow(2,-24)-Math.pow(2,-77):0,d=a?0:s-1,y=a?1:-1,b=t<0||0===t&&1/t<0?1:0;for(t=Math.abs(t),isNaN(t)||t===1/0?(n=isNaN(t)?1:0,o=m):(o=Math.floor(Math.log(t)/Math.LN2),t*(u=Math.pow(2,-o))<1&&(o--,u*=2),t+=o+c>=1?l/u:l*Math.pow(2,1-c),t*u>=2&&(o++,u/=2),o+c>=m?(n=0,o=m):o+c>=1?(n=(t*u-1)*Math.pow(2,i),o+=c):(n=t*Math.pow(2,c-1)*Math.pow(2,i),o=0));i>=8;e[r+d]=255&n,d+=y,n/=256,i-=8);for(o=o<0;e[r+d]=255&o,d+=y,o/=256,p-=8);e[r+d-y]|=128*b}},{}],437:[function(e,t,r){var a={}.toString;t.exports=Array.isArray||function(e){return"[object Array]"==a.call(e)}},{}],438:[function(e,t,r){!function(e){"use strict";function t(e){return null!==e&&"[object Array]"===Object.prototype.toString.call(e)}function r(e){return null!==e&&"[object Object]"===Object.prototype.toString.call(e)}function a(e,i){if(e===i)return!0;if(Object.prototype.toString.call(e)!==Object.prototype.toString.call(i))return!1;if(!0===t(e)){if(e.length!==i.length)return!1;for(var s=0;s =0?this.expression(e):"Lbracket"===t?(this._match("Lbracket"),this._parseMultiselectList()):"Lbrace"===t?(this._match("Lbrace"),this._parseMultiselectHash()):void 0},_parseProjectionRHS:function(e){var t;if(P[this._lookahead(0)]<10)t={type:"Identity"};else if("Lbracket"===this._lookahead(0))t=this.expression(e);else if("Filter"===this._lookahead(0))t=this.expression(e);else{if("Dot"!==this._lookahead(0)){var r=this._lookaheadToken(0),a=new Error("Sytanx error, unexpected token: "+r.value+"("+r.type+")");throw a.name="ParserError",a}this._match("Dot"),t=this._parseDotRHS(e)}return t},_parseMultiselectList:function(){for(var e=[];"Rbracket"!==this._lookahead(0);){var t=this.expression(0);if(e.push(t),"Comma"===this._lookahead(0)&&(this._match("Comma"),"Rbracket"===this._lookahead(0)))throw new Error("Unexpected token Rbracket")}return this._match("Rbracket"),{type:"MultiSelectList",children:e}},_parseMultiselectHash:function(){for(var e,t,r,a,i=[],s=["UnquotedIdentifier","QuotedIdentifier"];;){if(e=this._lookaheadToken(0),s.indexOf(e.type)<0)throw new Error("Expecting an identifier token, got: "+e.type);if(t=e.value,this._advance(),this._match("Colon"),r=this.expression(0),a={type:"KeyValuePair",name:t,value:r},i.push(a),"Comma"===this._lookahead(0))this._match("Comma");else if("Rbrace"===this._lookahead(0)){this._match("Rbrace");break}}return{type:"MultiSelectHash",children:i}}},c.prototype={search:function(e,t){return this.visit(e,t)},visit:function(e,o){var n,u,p,m,c,l,d,y,b;switch(e.type){case"Field":return null!==o&&r(o)?(l=o[e.name],void 0===l?null:l):null;case"Subexpression":for(p=this.visit(e.children[0],o),b=1;b G((f-r)/g)&&i("overflow"),r+=(p-t)*g,t=p,u=0;u =0?(c=b.substr(0,S),l=b.substr(S+1)):(c=b,l=""),d=decodeURIComponent(c),y=decodeURIComponent(l),a(o,d)?i(o[d])?o[d].push(y):o[d]=[o[d],y]:o[d]=y}return o};var i=Array.isArray||function(e){return"[object Array]"===Object.prototype.toString.call(e)}},{}],442:[function(e,t,r){"use strict";function a(e,t){if(e.map)return e.map(t);for(var r=[],a=0;a=55296&&t<=56319&&i65535&&(e-=65536,t+=w(e>>>10&1023|55296),e=56320|1023&e),t+=w(e)}).join("")}function p(e){return e-48<10?e-22:e-65<26?e-65:e-97<26?e-97:T}function m(e,t){return e+22+75*(e<26)-((0!=t)<<5)}function c(e,t,r){var a=0;for(e=r?G(e/R):e>>1,e+=G(e/t);e>L*k>>1;a+=T)e=G(e/L);return G(a+(L+1)*e/(e+A))}function l(e){var t,r,a,s,o,n,m,l,d,y,b=[],S=e.length,g=0,h=v,N=D;for(r=e.lastIndexOf(P),r<0&&(r=0),a=0;a=S&&i("invalid-input"),l=p(e.charCodeAt(s++)),(l>=T||l>G((f-g)/n))&&i("overflow"),g+=l*n,d=m<=N?C:m>=N+k?k:m-N,!(l=t&&bf&&i("overflow"),b==t){for(l=r,d=T;y=d<=o?C:d>=o+k?k:d-o,!(l=0&&delete e.httpRequest.headers["Content-Length"]}function i(e){var t=new l,r=e.service.api.operations[e.operation].input;if(r.payload){var a={},i=r.members[r.payload];a=e.params[r.payload],"structure"===i.type?(e.httpRequest.body=t.build(a||{},i),s(e)):void 0!==a&&(e.httpRequest.body=a,("binary"===i.type||i.isStreaming)&&s(e,!0))}else e.httpRequest.body=t.build(e.params,r),s(e)}function s(e,t){if(!e.httpRequest.headers["Content-Type"]){var r=t?"binary/octet-stream":"application/json";e.httpRequest.headers["Content-Type"]=r}}function o(e){m.buildRequest(e),y.indexOf(e.httpRequest.method)<0&&i(e)}function n(e){c.extractError(e)}function u(e){m.extractData(e);var t,r=e.request,a=r.service.api.operations[r.operation],i=r.service.api.operations[r.operation].output||{};a.hasEventOutput;if(i.payload){var s=i.members[i.payload],o=e.httpResponse.body;if(s.isEventStream)t=new d,e.data[payload]=p.createEventStream(2===AWS.HttpClient.streamsApiVersion?e.httpResponse.stream:o,t,s);else if("structure"===s.type||"list"===s.type){var t=new d;e.data[i.payload]=t.parse(o,s)}else"binary"===s.type||s.isStreaming?e.data[i.payload]=o:e.data[i.payload]=s.toType(o)}else{var n=e.data;c.extractData(e),e.data=p.merge(n,e.data)}}var p=e("../util"),m=e("./rest"),c=e("./json"),l=e("../json/builder"),d=e("../json/parser"),y=["GET","HEAD","DELETE"];t.exports={buildRequest:o,extractError:n,extractData:u,unsetContentLength:a}},{"../json/builder":369,"../json/parser":370,"../util":422,"./json":380,"./rest":382}],384:[function(e,t,r){function a(e){var t=e.service.api.operations[e.operation].input,r=new n.XML.Builder,a=e.params,i=t.payload;if(i){var s=t.members[i];if(void 0===(a=a[i]))return;if("structure"===s.type){var o=s.name;e.httpRequest.body=r.toXML(a,s,o,!0)}else e.httpRequest.body=a}else e.httpRequest.body=r.toXML(a,t,t.name||t.shape||u.string.upperFirst(e.operation)+"Request")}function i(e){p.buildRequest(e),["GET","HEAD"].indexOf(e.httpRequest.method)<0&&a(e)}function s(e){p.extractError(e);var t;try{t=(new n.XML.Parser).parse(e.httpResponse.body.toString())}catch(r){t={Code:e.httpResponse.statusCode,Message:e.httpResponse.statusMessage}}t.Errors&&(t=t.Errors),t.Error&&(t=t.Error),t.Code?e.error=u.error(new Error,{code:t.Code,message:t.Message}):e.error=u.error(new Error,{code:e.httpResponse.statusCode,message:null})}function o(e){p.extractData(e);var t,r=e.request,a=e.httpResponse.body,i=r.service.api.operations[r.operation],s=i.output,o=(i.hasEventOutput,s.payload);if(o){var m=s.members[o];m.isEventStream?(t=new n.XML.Parser,e.data[o]=u.createEventStream(2===n.HttpClient.streamsApiVersion?e.httpResponse.stream:e.httpResponse.body,t,m)):"structure"===m.type?(t=new n.XML.Parser,e.data[o]=t.parse(a.toString(),m)):"binary"===m.type||m.isStreaming?e.data[o]=a:e.data[o]=m.toType(a)}else if(a.length>0){t=new n.XML.Parser;var c=t.parse(a.toString(),s);u.update(e.data,c)}}var n=e("../core"),u=e("../util"),p=e("./rest");t.exports={buildRequest:i,extractError:s,extractData:o}},{"../core":345,"../util":422,"./rest":382}],385:[function(e,t,r){function a(){}function i(e){return e.isQueryName||"ec2"!==e.api.protocol?e.name:e.name[0].toUpperCase()+e.name.substr(1)}function s(e,t,r,a){p.each(r.members,function(r,s){var o=t[r];if(null!==o&&void 0!==o){var n=i(s);n=e?e+"."+n:n,u(n,o,s,a)}})}function o(e,t,r,a){var i=1;p.each(t,function(t,s){var o=r.flattened?".":".entry.",n=o+i+++".",p=n+(r.key.name||"key"),m=n+(r.value.name||"value");u(e+p,t,r.key,a),u(e+m,s,r.value,a)})}function n(e,t,r,a){var s=r.member||{};if(0===t.length)return void a.call(this,e,null);p.arrayEach(t,function(t,o){var n="."+(o+1);if("ec2"===r.api.protocol)n+="";else if(r.flattened){if(s.name){var p=e.split(".");p.pop(),p.push(i(s)),e=p.join(".")}}else n="."+(s.name?s.name:"member")+n;u(e+n,t,s,a)})}function u(e,t,r,a){null!==t&&void 0!==t&&("structure"===r.type?s(e,t,r,a):"list"===r.type?n(e,t,r,a):"map"===r.type?o(e,t,r,a):a(e,r.toWireFormat(t).toString()))}var p=e("../util");a.prototype.serialize=function(e,t,r){s("",e,t,r)},t.exports=a},{"../util":422}],386:[function(e,t,r){var a=e("../core"),i=null,s={signatureVersion:"v4",signingName:"rds-db",operations:{}},o={region:"string",hostname:"string",port:"number",username:"string"};a.RDS.Signer=a.util.inherit({constructor:function(e){this.options=e||{}},convertUrlToAuthToken:function(e){if(0===e.indexOf("https://"))return e.substring("https://".length)},getAuthToken:function(e,t){"function"==typeof e&&void 0===t&&(t=e,e={});var r=this,o="function"==typeof t;e=a.util.merge(this.options,e);var n=this.validateAuthTokenOptions(e);if(!0!==n){if(o)return t(n,null);throw n}var u={region:e.region,endpoint:new a.Endpoint(e.hostname+":"+e.port),paramValidation:!1,signatureVersion:"v4"};e.credentials&&(u.credentials=e.credentials),i=new a.Service(u),i.api=s;var p=i.makeRequest();if(this.modifyRequestForAuthToken(p,e),!o){var m=p.presign(900);return this.convertUrlToAuthToken(m)}p.presign(900,function(e,a){a&&(a=r.convertUrlToAuthToken(a)),t(e,a)})},modifyRequestForAuthToken:function(e,t){e.on("build",e.buildAsGet),e.httpRequest.body=a.util.queryParamsToString({Action:"connect",DBUser:t.username})},
+validateAuthTokenOptions:function(e){var t="";e=e||{};for(var r in o)Object.prototype.hasOwnProperty.call(o,r)&&typeof e[r]!==o[r]&&(t+="option '"+r+"' should have been type '"+o[r]+"', was '"+typeof e[r]+"'.\n");return!t.length||a.util.error(new Error,{code:"InvalidParameter",message:t})}})},{"../core":345}],387:[function(e,t,r){t.exports={now:function(){return"undefined"!=typeof performance&&"function"==typeof performance.now?performance.now():Date.now()}}},{}],388:[function(e,t,r){function a(e){return"string"==typeof e&&(e.startsWith("fips-")||e.endsWith("-fips"))}function i(e){return"string"==typeof e&&["aws-global","aws-us-gov-global"].includes(e)}function s(e){return["fips-aws-global","aws-fips","aws-global"].includes(e)?"us-east-1":["fips-aws-us-gov-global","aws-us-gov-global"].includes(e)?"us-gov-west-1":e.replace(/fips-(dkr-|prod-)?|-fips/,"")}t.exports={isFipsRegion:a,isGlobalRegion:i,getRealRegion:s}},{}],389:[function(e,t,r){function a(e){if(!e)return null;var t=e.split("-");return t.length<3?null:t.slice(0,t.length-2).join("-")+"-*"}function i(e){var t=e.config.region,r=a(t),i=e.api.endpointPrefix;return[[t,i],[r,i],[t,"*"],[r,"*"],["*",i],["*","*"]].map(function(e){return e[0]&&e[1]?e.join("/"):null})}function s(e,t){u.each(t,function(t,r){"globalEndpoint"!==t&&(void 0!==e.config[t]&&null!==e.config[t]||(e.config[t]=r))})}function o(e){for(var t=i(e),r=e.config.useFipsEndpoint,a=e.config.useDualstackEndpoint,o=0;o=a())throw new RangeError("Attempt to allocate Buffer larger than maximum size: 0x"+a().toString(16)+" bytes");return 0|e}function b(e){return+e!=e&&(e=0),s.alloc(+e)}function S(e,t){if(s.isBuffer(e))return e.length;if("undefined"!=typeof ArrayBuffer&&"function"==typeof ArrayBuffer.isView&&(ArrayBuffer.isView(e)||e instanceof ArrayBuffer))return e.byteLength;"string"!=typeof e&&(e=""+e);var r=e.length;if(0===r)return 0;for(var a=!1;;)switch(t){case"ascii":case"latin1":case"binary":return r;case"utf8":case"utf-8":case void 0:return K(e).length;case"ucs2":case"ucs-2":case"utf16le":case"utf-16le":return 2*r;case"hex":return r>>>1;case"base64":return H(e).length;default:if(a)return K(e).length;t=(""+t).toLowerCase(),a=!0}}function g(e,t,r){var a=!1;if((void 0===t||t<0)&&(t=0),t>this.length)return"";if((void 0===r||r>this.length)&&(r=this.length),r<=0)return"";if(r>>>=0,t>>>=0,r<=t)return"";for(e||(e="utf8");;)switch(e){case"hex":return E(this,t,r);case"utf8":case"utf-8":return v(this,t,r);case"ascii":return x(this,t,r);case"latin1":case"binary":return q(this,t,r);case"base64":return D(this,t,r);case"ucs2":case"ucs-2":case"utf16le":case"utf-16le":return M(this,t,r);default:if(a)throw new TypeError("Unknown encoding: "+e);e=(e+"").toLowerCase(),a=!0}}function h(e,t,r){var a=e[t];e[t]=e[r],e[r]=a}function N(e,t,r,a,i){if(0===e.length)return-1;if("string"==typeof r?(a=r,r=0):r>2147483647?r=2147483647:r<-2147483648&&(r=-2147483648),r=+r,isNaN(r)&&(r=i?0:e.length-1),r<0&&(r=e.length+r),r>=e.length){if(i)return-1;r=e.length-1}else if(r<0){if(!i)return-1;r=0}if("string"==typeof t&&(t=s.from(t,a)),s.isBuffer(t))return 0===t.length?-1:I(e,t,r,a,i);if("number"==typeof t)return t&=255,s.TYPED_ARRAY_SUPPORT&&"function"==typeof Uint8Array.prototype.indexOf?i?Uint8Array.prototype.indexOf.call(e,t,r):Uint8Array.prototype.lastIndexOf.call(e,t,r):I(e,[t],r,a,i);throw new TypeError("val must be string, number or Buffer")}function I(e,t,r,a,i){function s(e,t){return 1===o?e[t]:e.readUInt16BE(t*o)}var o=1,n=e.length,u=t.length;if(void 0!==a&&("ucs2"===(a=String(a).toLowerCase())||"ucs-2"===a||"utf16le"===a||"utf-16le"===a)){if(e.length<2||t.length<2)return-1;o=2,n/=2,u/=2,r/=2}var p;if(i){var m=-1;for(p=r;p>>8*(a?i:1-i)}function B(e,t,r,a){t<0&&(t=4294967295+t+1);for(var i=0,s=Math.min(e.length-r,4);i>>8*(a?i:3-i)&255}function U(e,t,r,a,i,s){if(r+a>e.length)throw new RangeError("Index out of range");if(r<0)throw new RangeError("Index out of range")}function _(e,t,r,a,i){return i||U(e,t,r,4,3.4028234663852886e38,-3.4028234663852886e38),X.write(e,t,r,a,23,4),r+4}function F(e,t,r,a,i){return i||U(e,t,r,8,1.7976931348623157e308,-1.7976931348623157e308),X.write(e,t,r,a,52,8),r+8}function O(e){if(e=V(e).replace(ee,""),e.length<2)return"";for(;e.length%4!=0;)e+="=";return e}function V(e){return e.trim?e.trim():e.replace(/^\s+|\s+$/g,"")}function z(e){return e<16?"0"+e.toString(16):e.toString(16)}function K(e,t){t=t||1/0;for(var r,a=e.length,i=null,s=[],o=0;o55295&&r<57344){if(!i){if(r>56319){(t-=3)>-1&&s.push(239,191,189);continue}if(o+1===a){(t-=3)>-1&&s.push(239,191,189);continue}i=r;continue}if(r<56320){(t-=3)>-1&&s.push(239,191,189),i=r;continue}r=65536+(i-55296<<10|r-56320)}else i&&(t-=3)>-1&&s.push(239,191,189);if(i=null,r<128){if((t-=1)<0)break;s.push(r)}else if(r<2048){if((t-=2)<0)break;s.push(r>>6|192,63&r|128)}else if(r<65536){if((t-=3)<0)break;s.push(r>>12|224,r>>6&63|128,63&r|128)}else{if(!(r<1114112))throw new Error("Invalid code point");if((t-=4)<0)break;s.push(r>>18|240,r>>12&63|128,r>>6&63|128,63&r|128)}}return s}function j(e){for(var t=[],r=0;r=55296&&t<=56319&&i65535&&(e-=65536,t+=w(e>>>10&1023|55296),e=56320|1023&e),t+=w(e)}).join("")}function p(e){return e-48<10?e-22:e-65<26?e-65:e-97<26?e-97:T}function m(e,t){return e+22+75*(e<26)-((0!=t)<<5)}function c(e,t,r){var a=0;for(e=r?G(e/R):e>>1,e+=G(e/t);e>L*k>>1;a+=T)e=G(e/L);return G(a+(L+1)*e/(e+A))}function l(e){var t,r,a,s,o,n,m,l,d,y,b=[],S=e.length,g=0,h=v,N=D;for(r=e.lastIndexOf(P),r<0&&(r=0),a=0;a=S&&i("invalid-input"),l=p(e.charCodeAt(s++)),(l>=T||l>G((f-g)/n))&&i("overflow"),g+=l*n,d=m<=N?C:m>=N+k?k:m-N,!(l=t&&bf&&i("overflow"),b==t){for(l=r,d=T;y=d<=o?C:d>=o+k?k:d-o,!(l