Release v1.25.31 (2019-11-08) (#2937)

Release v1.25.31 (2019-11-08) === ### Service Client Updates * `service/cognito-identity`: Updates service API and documentation * `service/ecr`: Updates service documentation * This release contains ticket fixes for Amazon ECR. ### SDK Bugs * `aws/request`: Ensure New request handles nil retryer ([#2934](#2934)) * Adds additional default behavior to the SDK's New request constructor, to handle the case where a nil Retryer was passed in. This error could occur when the SDK's Request type was being used to create requests directly, not through one of the SDK's client. * Fixes [#2889](#2889)
aws · Nov 8, 2019 · b8ebb17 · b8ebb17
1 parent ab596ec
commit b8ebb17
Show file tree

Hide file tree

Showing 10 changed files with 87 additions and 17 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,3 +1,16 @@
+Release v1.25.31 (2019-11-08)
+===
+
+### Service Client Updates
+* `service/cognito-identity`: Updates service API and documentation
+* `service/ecr`: Updates service documentation
+  * This release contains ticket fixes for Amazon ECR.
+
+### SDK Bugs
+* `aws/request`: Ensure New request handles nil retryer ([#2934](https://github.com/aws/aws-sdk-go/pull/2934))
+  * Adds additional default behavior to the SDK's New request constructor, to handle the case where a nil Retryer was passed in. This error could occur when the SDK's Request type was being used to create requests directly, not through one of the SDK's client.
+  * Fixes [#2889](https://github.com/aws/aws-sdk-go/issues/2889)
+
 Release v1.25.30 (2019-11-07)
 ===
 

diff --git a/CHANGELOG_PENDING.md b/CHANGELOG_PENDING.md
@@ -3,6 +3,3 @@
 ### SDK Enhancements
 
 ### SDK Bugs
-* `aws/request`: Ensure New request handles nil retryer ([#2934](https://github.com/aws/aws-sdk-go/pull/2934))
-  * Adds additional default behavior to the SDK's New request constructor, to handle the case where a nil Retryer was passed in. This error could occur when the SDK's Request type was being used to create requests directly, not through one of the SDK's client.
-  * Fixes [#2889](https://github.com/aws/aws-sdk-go/issues/2889)
diff --git a/aws/endpoints/defaults.go b/aws/endpoints/defaults.go
diff --git a/aws/version.go b/aws/version.go
@@ -5,4 +5,4 @@ package aws
 const SDKName = "aws-sdk-go"
 
 // SDKVersion is the version of this SDK
-const SDKVersion = "1.25.30"
+const SDKVersion = "1.25.31"
diff --git a/models/apis/cognito-identity/2014-06-30/api-2.json b/models/apis/cognito-identity/2014-06-30/api-2.json
@@ -396,6 +396,7 @@
       "max":128,
       "min":1
     },
+    "ClassicFlow":{"type":"boolean"},
     "CognitoIdentityProvider":{
       "type":"structure",
       "members":{
@@ -440,6 +441,7 @@
       "members":{
         "IdentityPoolName":{"shape":"IdentityPoolName"},
         "AllowUnauthenticatedIdentities":{"shape":"IdentityPoolUnauthenticated"},
+        "AllowClassicFlow":{"shape":"ClassicFlow"},
         "SupportedLoginProviders":{"shape":"IdentityProviders"},
         "DeveloperProviderName":{"shape":"DeveloperProviderName"},
         "OpenIdConnectProviderARNs":{"shape":"OIDCProviderList"},
@@ -646,6 +648,7 @@
         "IdentityPoolId":{"shape":"IdentityPoolId"},
         "IdentityPoolName":{"shape":"IdentityPoolName"},
         "AllowUnauthenticatedIdentities":{"shape":"IdentityPoolUnauthenticated"},
+        "AllowClassicFlow":{"shape":"ClassicFlow"},
         "SupportedLoginProviders":{"shape":"IdentityProviders"},
         "DeveloperProviderName":{"shape":"DeveloperProviderName"},
         "OpenIdConnectProviderARNs":{"shape":"OIDCProviderList"},
@@ -664,7 +667,7 @@
       "type":"string",
       "max":128,
       "min":1,
-      "pattern":"[\\w ]+"
+      "pattern":"[\\w\\s+=,.@-]+"
     },
     "IdentityPoolShortDescription":{
       "type":"structure",
@@ -968,7 +971,10 @@
     },
     "TagResourceInput":{
       "type":"structure",
-      "required":["ResourceArn"],
+      "required":[
+        "ResourceArn",
+        "Tags"
+      ],
       "members":{
         "ResourceArn":{"shape":"ARNString"},
         "Tags":{"shape":"IdentityPoolTagsType"}
@@ -1038,7 +1044,10 @@
     },
     "UntagResourceInput":{
       "type":"structure",
-      "required":["ResourceArn"],
+      "required":[
+        "ResourceArn",
+        "TagKeys"
+      ],
       "members":{
         "ResourceArn":{"shape":"ARNString"},
         "TagKeys":{"shape":"IdentityPoolTagsListType"}

diff --git a/models/apis/cognito-identity/2014-06-30/docs-2.json b/models/apis/cognito-identity/2014-06-30/docs-2.json
@@ -2,7 +2,7 @@
   "version": "2.0",
   "service": "<fullname>Amazon Cognito Federated Identities</fullname> <p>Amazon Cognito Federated Identities is a web service that delivers scoped temporary credentials to mobile devices and other untrusted environments. It uniquely identifies a device and supplies the user with a consistent identity over the lifetime of an application.</p> <p>Using Amazon Cognito Federated Identities, you can enable authentication with one or more third-party identity providers (Facebook, Google, or Login with Amazon) or an Amazon Cognito user pool, and you can also choose to support unauthenticated access from your app. Cognito delivers a unique identifier for each user and acts as an OpenID token provider trusted by AWS Security Token Service (STS) to access temporary, limited-privilege AWS credentials.</p> <p>For a description of the authentication flow from the Amazon Cognito Developer Guide see <a href=\"https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html\">Authentication Flow</a>.</p> <p>For more information see <a href=\"https://docs.aws.amazon.com/cognito/latest/developerguide/cognito-identity.html\">Amazon Cognito Federated Identities</a>.</p>",
   "operations": {
-    "CreateIdentityPool": "<p>Creates a new identity pool. The identity pool is a store of user identity information that is specific to your AWS account. The limit on identity pools is 60 per account. The keys for <code>SupportedLoginProviders</code> are as follows:</p> <ul> <li> <p>Facebook: <code>graph.facebook.com</code> </p> </li> <li> <p>Google: <code>accounts.google.com</code> </p> </li> <li> <p>Amazon: <code>www.amazon.com</code> </p> </li> <li> <p>Twitter: <code>api.twitter.com</code> </p> </li> <li> <p>Digits: <code>www.digits.com</code> </p> </li> </ul> <p>You must use AWS Developer credentials to call this API.</p>",
+    "CreateIdentityPool": "<p>Creates a new identity pool. The identity pool is a store of user identity information that is specific to your AWS account. The keys for <code>SupportedLoginProviders</code> are as follows:</p> <ul> <li> <p>Facebook: <code>graph.facebook.com</code> </p> </li> <li> <p>Google: <code>accounts.google.com</code> </p> </li> <li> <p>Amazon: <code>www.amazon.com</code> </p> </li> <li> <p>Twitter: <code>api.twitter.com</code> </p> </li> <li> <p>Digits: <code>www.digits.com</code> </p> </li> </ul> <p>You must use AWS Developer credentials to call this API.</p>",
     "DeleteIdentities": "<p>Deletes identities from an identity pool. You can specify a list of 1-60 identities that you want to delete.</p> <p>You must use AWS Developer credentials to call this API.</p>",
     "DeleteIdentityPool": "<p>Deletes an identity pool. Once a pool is deleted, users will not be able to authenticate with the pool.</p> <p>You must use AWS Developer credentials to call this API.</p>",
     "DescribeIdentity": "<p>Returns metadata related to the given identity, including when the identity was created and any associated linked logins.</p> <p>You must use AWS Developer credentials to call this API.</p>",
@@ -68,6 +68,13 @@
         "MappingRule$Value": "<p>A brief string that the claim must match, for example, \"paid\" or \"yes\".</p>"
       }
     },
+    "ClassicFlow": {
+      "base": null,
+      "refs": {
+        "CreateIdentityPoolInput$AllowClassicFlow": "<p>Enables or disables the Basic (Classic) authentication flow. For more information, see <a href=\"https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html\">Identity Pools (Federated Identities) Authentication Flow</a> in the <i>Amazon Cognito Developer Guide</i>.</p>",
+        "IdentityPool$AllowClassicFlow": "<p>Enables or disables the Basic (Classic) authentication flow. For more information, see <a href=\"https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html\">Identity Pools (Federated Identities) Authentication Flow</a> in the <i>Amazon Cognito Developer Guide</i>.</p>"
+      }
+    },
     "CognitoIdentityProvider": {
       "base": "<p>A provider representing an Amazon Cognito user pool and its client ID.</p>",
       "refs": {
@@ -635,7 +642,7 @@
     "TokenDuration": {
       "base": null,
       "refs": {
-        "GetOpenIdTokenForDeveloperIdentityInput$TokenDuration": "<p>The expiration time of the token, in seconds. You can specify a custom expiration time for the token so that you can cache it. If you don't provide an expiration time, the token is valid for 15 minutes. You can exchange the token with Amazon STS for temporary AWS credentials, which are valid for a maximum of one hour. The maximum token duration you can set is 24 hours. You should take care in setting the expiration time for a token, as there are significant security implications: an attacker could use a leaked token to access your AWS resources for the token's duration.</p>"
+        "GetOpenIdTokenForDeveloperIdentityInput$TokenDuration": "<p>The expiration time of the token, in seconds. You can specify a custom expiration time for the token so that you can cache it. If you don't provide an expiration time, the token is valid for 15 minutes. You can exchange the token with Amazon STS for temporary AWS credentials, which are valid for a maximum of one hour. The maximum token duration you can set is 24 hours. You should take care in setting the expiration time for a token, as there are significant security implications: an attacker could use a leaked token to access your AWS resources for the token's duration.</p> <note> <p>Please provide for a small grace period, usually no more than 5 minutes, to account for clock skew.</p> </note>"
       }
     },
     "TooManyRequestsException": {

diff --git a/models/apis/ecr/2015-09-21/docs-2.json b/models/apis/ecr/2015-09-21/docs-2.json
@@ -23,10 +23,10 @@
     "ListTagsForResource": "<p>List the tags for an Amazon ECR resource.</p>",
     "PutImage": "<p>Creates or updates the image manifest and tags associated with an image.</p> <note> <p>This operation is used by the Amazon ECR proxy, and it is not intended for general use by customers for pulling and pushing images. In most cases, you should use the <code>docker</code> CLI to pull, tag, and push images.</p> </note>",
     "PutImageScanningConfiguration": "<p>Updates the image scanning configuration for a repository.</p>",
-    "PutImageTagMutability": "<p>Updates the image tag mutability settings for a repository.</p>",
+    "PutImageTagMutability": "<p>Updates the image tag mutability settings for a repository. When a repository is configured with tag immutability, all image tags within the repository will be prevented them from being overwritten. For more information, see <a href=\"https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-tag-mutability.html\">Image Tag Mutability</a> in the <i>Amazon Elastic Container Registry User Guide</i>.</p>",
     "PutLifecyclePolicy": "<p>Creates or updates a lifecycle policy. For information about lifecycle policy syntax, see <a href=\"https://docs.aws.amazon.com/AmazonECR/latest/userguide/LifecyclePolicies.html\">Lifecycle Policy Template</a>.</p>",
     "SetRepositoryPolicy": "<p>Applies a repository policy on a specified repository to control access permissions. For more information, see <a href=\"https://docs.aws.amazon.com/AmazonECR/latest/userguide/RepositoryPolicies.html\">Amazon ECR Repository Policies</a> in the <i>Amazon Elastic Container Registry User Guide</i>.</p>",
-    "StartImageScan": "<p>Starts an image vulnerability scan.</p>",
+    "StartImageScan": "<p>Starts an image vulnerability scan. An image scan can only be started once per day on an individual image. This limit includes if an image was scanned on initial push. For more information, see <a href=\"https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning.html\">Image Scanning</a> in the <i>Amazon Elastic Container Registry User Guide</i>.</p>",
     "StartLifecyclePolicyPreview": "<p>Starts a preview of the specified lifecycle policy. This allows you to see the results before creating the lifecycle policy.</p>",
     "TagResource": "<p>Adds specified tags to a resource with the specified ARN. Existing tags on a resource are not changed if they are not specified in the request parameters.</p>",
     "UntagResource": "<p>Deletes specified tags from a resource.</p>",

diff --git a/models/endpoints/endpoints.json b/models/endpoints/endpoints.json
@@ -1546,6 +1546,7 @@
           "eu-west-1" : { },
           "eu-west-2" : { },
           "eu-west-3" : { },
+          "me-south-1" : { },
           "sa-east-1" : { },
           "us-east-1" : { },
           "us-east-2" : { },

diff --git a/service/cognitoidentity/api.go b/service/cognitoidentity/api.go
diff --git a/service/ecr/api.go b/service/ecr/api.go