From e1af1c7236c8be2fd71e8a2a57de65edc01634b4 Mon Sep 17 00:00:00 2001 From: awssdkgo Date: Fri, 8 Nov 2019 19:31:00 +0000 Subject: [PATCH] Release v1.25.31 (2019-11-08) === ### Service Client Updates * `service/cognito-identity`: Updates service API and documentation * `service/ecr`: Updates service documentation * This release contains ticket fixes for Amazon ECR. ### SDK Bugs * `aws/request`: Ensure New request handles nil retryer ([#2934](https://github.com/aws/aws-sdk-go/pull/2934)) * Adds additional default behavior to the SDK's New request constructor, to handle the case where a nil Retryer was passed in. This error could occur when the SDK's Request type was being used to create requests directly, not through one of the SDK's client. * Fixes [#2889](https://github.com/aws/aws-sdk-go/issues/2889) --- CHANGELOG.md | 13 ++++++ CHANGELOG_PENDING.md | 3 -- aws/endpoints/defaults.go | 1 + aws/version.go | 2 +- .../cognito-identity/2014-06-30/api-2.json | 15 +++++-- .../cognito-identity/2014-06-30/docs-2.json | 11 ++++- models/apis/ecr/2015-09-21/docs-2.json | 4 +- models/endpoints/endpoints.json | 1 + service/cognitoidentity/api.go | 43 +++++++++++++++++-- service/ecr/api.go | 11 ++++- 10 files changed, 87 insertions(+), 17 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 26f0460367..ae04d0a41c 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,16 @@ +Release v1.25.31 (2019-11-08) +=== + +### Service Client Updates +* `service/cognito-identity`: Updates service API and documentation +* `service/ecr`: Updates service documentation + * This release contains ticket fixes for Amazon ECR. + +### SDK Bugs +* `aws/request`: Ensure New request handles nil retryer ([#2934](https://github.com/aws/aws-sdk-go/pull/2934)) + * Adds additional default behavior to the SDK's New request constructor, to handle the case where a nil Retryer was passed in. This error could occur when the SDK's Request type was being used to create requests directly, not through one of the SDK's client. + * Fixes [#2889](https://github.com/aws/aws-sdk-go/issues/2889) + Release v1.25.30 (2019-11-07) === diff --git a/CHANGELOG_PENDING.md b/CHANGELOG_PENDING.md index fa4a3f6c04..8a1927a39c 100644 --- a/CHANGELOG_PENDING.md +++ b/CHANGELOG_PENDING.md @@ -3,6 +3,3 @@ ### SDK Enhancements ### SDK Bugs -* `aws/request`: Ensure New request handles nil retryer ([#2934](https://github.com/aws/aws-sdk-go/pull/2934)) - * Adds additional default behavior to the SDK's New request constructor, to handle the case where a nil Retryer was passed in. This error could occur when the SDK's Request type was being used to create requests directly, not through one of the SDK's client. - * Fixes [#2889](https://github.com/aws/aws-sdk-go/issues/2889) diff --git a/aws/endpoints/defaults.go b/aws/endpoints/defaults.go index ae37831890..f63449788a 100644 --- a/aws/endpoints/defaults.go +++ b/aws/endpoints/defaults.go @@ -1677,6 +1677,7 @@ var awsPartition = partition{ "eu-west-1": endpoint{}, "eu-west-2": endpoint{}, "eu-west-3": endpoint{}, + "me-south-1": endpoint{}, "sa-east-1": endpoint{}, "us-east-1": endpoint{}, "us-east-2": endpoint{}, diff --git a/aws/version.go b/aws/version.go index 31787f59a1..199dbfee58 100644 --- a/aws/version.go +++ b/aws/version.go @@ -5,4 +5,4 @@ package aws const SDKName = "aws-sdk-go" // SDKVersion is the version of this SDK -const SDKVersion = "1.25.30" +const SDKVersion = "1.25.31" diff --git a/models/apis/cognito-identity/2014-06-30/api-2.json b/models/apis/cognito-identity/2014-06-30/api-2.json index 475b3e65a5..48c8a213ed 100644 --- a/models/apis/cognito-identity/2014-06-30/api-2.json +++ b/models/apis/cognito-identity/2014-06-30/api-2.json @@ -396,6 +396,7 @@ "max":128, "min":1 }, + "ClassicFlow":{"type":"boolean"}, "CognitoIdentityProvider":{ "type":"structure", "members":{ @@ -440,6 +441,7 @@ "members":{ "IdentityPoolName":{"shape":"IdentityPoolName"}, "AllowUnauthenticatedIdentities":{"shape":"IdentityPoolUnauthenticated"}, + "AllowClassicFlow":{"shape":"ClassicFlow"}, "SupportedLoginProviders":{"shape":"IdentityProviders"}, "DeveloperProviderName":{"shape":"DeveloperProviderName"}, "OpenIdConnectProviderARNs":{"shape":"OIDCProviderList"}, @@ -646,6 +648,7 @@ "IdentityPoolId":{"shape":"IdentityPoolId"}, "IdentityPoolName":{"shape":"IdentityPoolName"}, "AllowUnauthenticatedIdentities":{"shape":"IdentityPoolUnauthenticated"}, + "AllowClassicFlow":{"shape":"ClassicFlow"}, "SupportedLoginProviders":{"shape":"IdentityProviders"}, "DeveloperProviderName":{"shape":"DeveloperProviderName"}, "OpenIdConnectProviderARNs":{"shape":"OIDCProviderList"}, @@ -664,7 +667,7 @@ "type":"string", "max":128, "min":1, - "pattern":"[\\w ]+" + "pattern":"[\\w\\s+=,.@-]+" }, "IdentityPoolShortDescription":{ "type":"structure", @@ -968,7 +971,10 @@ }, "TagResourceInput":{ "type":"structure", - "required":["ResourceArn"], + "required":[ + "ResourceArn", + "Tags" + ], "members":{ "ResourceArn":{"shape":"ARNString"}, "Tags":{"shape":"IdentityPoolTagsType"} @@ -1038,7 +1044,10 @@ }, "UntagResourceInput":{ "type":"structure", - "required":["ResourceArn"], + "required":[ + "ResourceArn", + "TagKeys" + ], "members":{ "ResourceArn":{"shape":"ARNString"}, "TagKeys":{"shape":"IdentityPoolTagsListType"} diff --git a/models/apis/cognito-identity/2014-06-30/docs-2.json b/models/apis/cognito-identity/2014-06-30/docs-2.json index 0f76f6cb2b..12915162c9 100644 --- a/models/apis/cognito-identity/2014-06-30/docs-2.json +++ b/models/apis/cognito-identity/2014-06-30/docs-2.json @@ -2,7 +2,7 @@ "version": "2.0", "service": "Amazon Cognito Federated Identities

Amazon Cognito Federated Identities is a web service that delivers scoped temporary credentials to mobile devices and other untrusted environments. It uniquely identifies a device and supplies the user with a consistent identity over the lifetime of an application.

Using Amazon Cognito Federated Identities, you can enable authentication with one or more third-party identity providers (Facebook, Google, or Login with Amazon) or an Amazon Cognito user pool, and you can also choose to support unauthenticated access from your app. Cognito delivers a unique identifier for each user and acts as an OpenID token provider trusted by AWS Security Token Service (STS) to access temporary, limited-privilege AWS credentials.

For a description of the authentication flow from the Amazon Cognito Developer Guide see Authentication Flow.

For more information see Amazon Cognito Federated Identities.

", "operations": { - "CreateIdentityPool": "

Creates a new identity pool. The identity pool is a store of user identity information that is specific to your AWS account. The limit on identity pools is 60 per account. The keys for SupportedLoginProviders are as follows:

You must use AWS Developer credentials to call this API.

", + "CreateIdentityPool": "

Creates a new identity pool. The identity pool is a store of user identity information that is specific to your AWS account. The keys for SupportedLoginProviders are as follows:

You must use AWS Developer credentials to call this API.

", "DeleteIdentities": "

Deletes identities from an identity pool. You can specify a list of 1-60 identities that you want to delete.

You must use AWS Developer credentials to call this API.

", "DeleteIdentityPool": "

Deletes an identity pool. Once a pool is deleted, users will not be able to authenticate with the pool.

You must use AWS Developer credentials to call this API.

", "DescribeIdentity": "

Returns metadata related to the given identity, including when the identity was created and any associated linked logins.

You must use AWS Developer credentials to call this API.

", @@ -68,6 +68,13 @@ "MappingRule$Value": "

A brief string that the claim must match, for example, \"paid\" or \"yes\".

" } }, + "ClassicFlow": { + "base": null, + "refs": { + "CreateIdentityPoolInput$AllowClassicFlow": "

Enables or disables the Basic (Classic) authentication flow. For more information, see Identity Pools (Federated Identities) Authentication Flow in the Amazon Cognito Developer Guide.

", + "IdentityPool$AllowClassicFlow": "

Enables or disables the Basic (Classic) authentication flow. For more information, see Identity Pools (Federated Identities) Authentication Flow in the Amazon Cognito Developer Guide.

" + } + }, "CognitoIdentityProvider": { "base": "

A provider representing an Amazon Cognito user pool and its client ID.

", "refs": { @@ -635,7 +642,7 @@ "TokenDuration": { "base": null, "refs": { - "GetOpenIdTokenForDeveloperIdentityInput$TokenDuration": "

The expiration time of the token, in seconds. You can specify a custom expiration time for the token so that you can cache it. If you don't provide an expiration time, the token is valid for 15 minutes. You can exchange the token with Amazon STS for temporary AWS credentials, which are valid for a maximum of one hour. The maximum token duration you can set is 24 hours. You should take care in setting the expiration time for a token, as there are significant security implications: an attacker could use a leaked token to access your AWS resources for the token's duration.

" + "GetOpenIdTokenForDeveloperIdentityInput$TokenDuration": "

The expiration time of the token, in seconds. You can specify a custom expiration time for the token so that you can cache it. If you don't provide an expiration time, the token is valid for 15 minutes. You can exchange the token with Amazon STS for temporary AWS credentials, which are valid for a maximum of one hour. The maximum token duration you can set is 24 hours. You should take care in setting the expiration time for a token, as there are significant security implications: an attacker could use a leaked token to access your AWS resources for the token's duration.

Please provide for a small grace period, usually no more than 5 minutes, to account for clock skew.

" } }, "TooManyRequestsException": { diff --git a/models/apis/ecr/2015-09-21/docs-2.json b/models/apis/ecr/2015-09-21/docs-2.json index 4db02c356e..ed3c426e5a 100644 --- a/models/apis/ecr/2015-09-21/docs-2.json +++ b/models/apis/ecr/2015-09-21/docs-2.json @@ -23,10 +23,10 @@ "ListTagsForResource": "

List the tags for an Amazon ECR resource.

", "PutImage": "

Creates or updates the image manifest and tags associated with an image.

This operation is used by the Amazon ECR proxy, and it is not intended for general use by customers for pulling and pushing images. In most cases, you should use the docker CLI to pull, tag, and push images.

", "PutImageScanningConfiguration": "

Updates the image scanning configuration for a repository.

", - "PutImageTagMutability": "

Updates the image tag mutability settings for a repository.

", + "PutImageTagMutability": "

Updates the image tag mutability settings for a repository. When a repository is configured with tag immutability, all image tags within the repository will be prevented them from being overwritten. For more information, see Image Tag Mutability in the Amazon Elastic Container Registry User Guide.

", "PutLifecyclePolicy": "

Creates or updates a lifecycle policy. For information about lifecycle policy syntax, see Lifecycle Policy Template.

", "SetRepositoryPolicy": "

Applies a repository policy on a specified repository to control access permissions. For more information, see Amazon ECR Repository Policies in the Amazon Elastic Container Registry User Guide.

", - "StartImageScan": "

Starts an image vulnerability scan.

", + "StartImageScan": "

Starts an image vulnerability scan. An image scan can only be started once per day on an individual image. This limit includes if an image was scanned on initial push. For more information, see Image Scanning in the Amazon Elastic Container Registry User Guide.

", "StartLifecyclePolicyPreview": "

Starts a preview of the specified lifecycle policy. This allows you to see the results before creating the lifecycle policy.

", "TagResource": "

Adds specified tags to a resource with the specified ARN. Existing tags on a resource are not changed if they are not specified in the request parameters.

", "UntagResource": "

Deletes specified tags from a resource.

", diff --git a/models/endpoints/endpoints.json b/models/endpoints/endpoints.json index a83dd852e6..b7b1e1051b 100644 --- a/models/endpoints/endpoints.json +++ b/models/endpoints/endpoints.json @@ -1546,6 +1546,7 @@ "eu-west-1" : { }, "eu-west-2" : { }, "eu-west-3" : { }, + "me-south-1" : { }, "sa-east-1" : { }, "us-east-1" : { }, "us-east-2" : { }, diff --git a/service/cognitoidentity/api.go b/service/cognitoidentity/api.go index bd6f3f9839..5b2bc74801 100644 --- a/service/cognitoidentity/api.go +++ b/service/cognitoidentity/api.go @@ -59,8 +59,8 @@ func (c *CognitoIdentity) CreateIdentityPoolRequest(input *CreateIdentityPoolInp // CreateIdentityPool API operation for Amazon Cognito Identity. // // Creates a new identity pool. The identity pool is a store of user identity -// information that is specific to your AWS account. The limit on identity pools -// is 60 per account. The keys for SupportedLoginProviders are as follows: +// information that is specific to your AWS account. The keys for SupportedLoginProviders +// are as follows: // // * Facebook: graph.facebook.com // @@ -2163,6 +2163,11 @@ func (c *CognitoIdentity) UpdateIdentityPoolWithContext(ctx aws.Context, input * type CreateIdentityPoolInput struct { _ struct{} `type:"structure"` + // Enables or disables the Basic (Classic) authentication flow. For more information, + // see Identity Pools (Federated Identities) Authentication Flow (https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html) + // in the Amazon Cognito Developer Guide. + AllowClassicFlow *bool `type:"boolean"` + // TRUE if the identity pool supports unauthenticated logins. // // AllowUnauthenticatedIdentities is a required field @@ -2243,6 +2248,12 @@ func (s *CreateIdentityPoolInput) Validate() error { return nil } +// SetAllowClassicFlow sets the AllowClassicFlow field's value. +func (s *CreateIdentityPoolInput) SetAllowClassicFlow(v bool) *CreateIdentityPoolInput { + s.AllowClassicFlow = &v + return s +} + // SetAllowUnauthenticatedIdentities sets the AllowUnauthenticatedIdentities field's value. func (s *CreateIdentityPoolInput) SetAllowUnauthenticatedIdentities(v bool) *CreateIdentityPoolInput { s.AllowUnauthenticatedIdentities = &v @@ -2878,6 +2889,9 @@ type GetOpenIdTokenForDeveloperIdentityInput struct { // take care in setting the expiration time for a token, as there are significant // security implications: an attacker could use a leaked token to access your // AWS resources for the token's duration. + // + // Please provide for a small grace period, usually no more than 5 minutes, + // to account for clock skew. TokenDuration *int64 `min:"1" type:"long"` } @@ -3117,6 +3131,11 @@ func (s *IdentityDescription) SetLogins(v []*string) *IdentityDescription { type IdentityPool struct { _ struct{} `type:"structure"` + // Enables or disables the Basic (Classic) authentication flow. For more information, + // see Identity Pools (Federated Identities) Authentication Flow (https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html) + // in the Amazon Cognito Developer Guide. + AllowClassicFlow *bool `type:"boolean"` + // TRUE if the identity pool supports unauthenticated logins. // // AllowUnauthenticatedIdentities is a required field @@ -3202,6 +3221,12 @@ func (s *IdentityPool) Validate() error { return nil } +// SetAllowClassicFlow sets the AllowClassicFlow field's value. +func (s *IdentityPool) SetAllowClassicFlow(v bool) *IdentityPool { + s.AllowClassicFlow = &v + return s +} + // SetAllowUnauthenticatedIdentities sets the AllowUnauthenticatedIdentities field's value. func (s *IdentityPool) SetAllowUnauthenticatedIdentities(v bool) *IdentityPool { s.AllowUnauthenticatedIdentities = &v @@ -4220,7 +4245,9 @@ type TagResourceInput struct { ResourceArn *string `min:"20" type:"string" required:"true"` // The tags to assign to the identity pool. - Tags map[string]*string `type:"map"` + // + // Tags is a required field + Tags map[string]*string `type:"map" required:"true"` } // String returns the string representation @@ -4242,6 +4269,9 @@ func (s *TagResourceInput) Validate() error { if s.ResourceArn != nil && len(*s.ResourceArn) < 20 { invalidParams.Add(request.NewErrParamMinLen("ResourceArn", 20)) } + if s.Tags == nil { + invalidParams.Add(request.NewErrParamRequired("Tags")) + } if invalidParams.Len() > 0 { return invalidParams @@ -4510,7 +4540,9 @@ type UntagResourceInput struct { ResourceArn *string `min:"20" type:"string" required:"true"` // The keys of the tags to remove from the user pool. - TagKeys []*string `type:"list"` + // + // TagKeys is a required field + TagKeys []*string `type:"list" required:"true"` } // String returns the string representation @@ -4532,6 +4564,9 @@ func (s *UntagResourceInput) Validate() error { if s.ResourceArn != nil && len(*s.ResourceArn) < 20 { invalidParams.Add(request.NewErrParamMinLen("ResourceArn", 20)) } + if s.TagKeys == nil { + invalidParams.Add(request.NewErrParamRequired("TagKeys")) + } if invalidParams.Len() > 0 { return invalidParams diff --git a/service/ecr/api.go b/service/ecr/api.go index 74ca7bb8e2..f66d4f001f 100644 --- a/service/ecr/api.go +++ b/service/ecr/api.go @@ -2304,7 +2304,11 @@ func (c *ECR) PutImageTagMutabilityRequest(input *PutImageTagMutabilityInput) (r // PutImageTagMutability API operation for Amazon EC2 Container Registry. // -// Updates the image tag mutability settings for a repository. +// Updates the image tag mutability settings for a repository. When a repository +// is configured with tag immutability, all image tags within the repository +// will be prevented them from being overwritten. For more information, see +// Image Tag Mutability (https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-tag-mutability.html) +// in the Amazon Elastic Container Registry User Guide. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about @@ -2568,7 +2572,10 @@ func (c *ECR) StartImageScanRequest(input *StartImageScanInput) (req *request.Re // StartImageScan API operation for Amazon EC2 Container Registry. // -// Starts an image vulnerability scan. +// Starts an image vulnerability scan. An image scan can only be started once +// per day on an individual image. This limit includes if an image was scanned +// on initial push. For more information, see Image Scanning (https://docs.aws.amazon.com/AmazonECR/latest/userguide/image-scanning.html) +// in the Amazon Elastic Container Registry User Guide. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about