diff --git a/CHANGELOG.md b/CHANGELOG.md index 8483b3d497..1e3d9fa56f 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,13 @@ +Release v1.36.12 (2020-12-18) +=== + +### Service Client Updates +* `service/ec2`: Updates service API and documentation + * EBS io2 volumes now supports Multi-Attach +* `service/personalize-runtime`: Updates service API +* `service/rds`: Updates service API and documentation + * Adds IAM DB authentication information to the PendingModifiedValues output of the DescribeDBInstances API. Adds ClusterPendingModifiedValues information to the output of the DescribeDBClusters API. + Release v1.36.11 (2020-12-17) === diff --git a/aws/endpoints/defaults.go b/aws/endpoints/defaults.go index d191a20a54..72dcdfad24 100644 --- a/aws/endpoints/defaults.go +++ b/aws/endpoints/defaults.go @@ -1379,6 +1379,21 @@ var awsPartition = partition{ }, }, }, + "codeguru-reviewer": service{ + + Endpoints: endpoints{ + "ap-northeast-1": endpoint{}, + "ap-southeast-1": endpoint{}, + "ap-southeast-2": endpoint{}, + "eu-central-1": endpoint{}, + "eu-north-1": endpoint{}, + "eu-west-1": endpoint{}, + "eu-west-2": endpoint{}, + "us-east-1": endpoint{}, + "us-east-2": endpoint{}, + "us-west-2": endpoint{}, + }, + }, "codepipeline": service{ Endpoints: endpoints{ diff --git a/aws/version.go b/aws/version.go index 5e4429065c..70325bd761 100644 --- a/aws/version.go +++ b/aws/version.go @@ -5,4 +5,4 @@ package aws const SDKName = "aws-sdk-go" // SDKVersion is the version of this SDK -const SDKVersion = "1.36.11" +const SDKVersion = "1.36.12" diff --git a/models/apis/ec2/2016-11-15/api-2.json b/models/apis/ec2/2016-11-15/api-2.json index d8c9da7e51..3278a81e03 100755 --- a/models/apis/ec2/2016-11-15/api-2.json +++ b/models/apis/ec2/2016-11-15/api-2.json @@ -22791,7 +22791,8 @@ "Size":{"shape":"Integer"}, "VolumeType":{"shape":"VolumeType"}, "Iops":{"shape":"Integer"}, - "Throughput":{"shape":"Integer"} + "Throughput":{"shape":"Integer"}, + "MultiAttachEnabled":{"shape":"Boolean"} } }, "ModifyVolumeResult":{ @@ -31839,6 +31840,10 @@ "shape":"Integer", "locationName":"targetThroughput" }, + "TargetMultiAttachEnabled":{ + "shape":"Boolean", + "locationName":"targetMultiAttachEnabled" + }, "OriginalSize":{ "shape":"Integer", "locationName":"originalSize" @@ -31855,6 +31860,10 @@ "shape":"Integer", "locationName":"originalThroughput" }, + "OriginalMultiAttachEnabled":{ + "shape":"Boolean", + "locationName":"originalMultiAttachEnabled" + }, "Progress":{ "shape":"Long", "locationName":"progress" diff --git a/models/apis/ec2/2016-11-15/docs-2.json b/models/apis/ec2/2016-11-15/docs-2.json index 2ec9d8907d..c3c4d6f4f5 100755 --- a/models/apis/ec2/2016-11-15/docs-2.json +++ b/models/apis/ec2/2016-11-15/docs-2.json @@ -1402,7 +1402,7 @@ "CreateTransitGatewayVpcAttachmentRequest$DryRun": "
Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation
. Otherwise, it is UnauthorizedOperation
.
Indicates whether the volume should be encrypted. The effect of setting the encryption state to true
depends on the volume origin (new or from a snapshot), starting encryption state, ownership, and whether encryption by default is enabled. For more information, see Encryption by default in the Amazon Elastic Compute Cloud User Guide.
Encrypted Amazon EBS volumes must be attached to instances that support Amazon EBS encryption. For more information, see Supported instance types.
", "CreateVolumeRequest$DryRun": "Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation
. Otherwise, it is UnauthorizedOperation
.
Indicates whether to enable Amazon EBS Multi-Attach. If you enable Multi-Attach, you can attach the volume to up to 16 Instances built on the Nitro System in the same Availability Zone. This parameter is supported with io1
volumes only. For more information, see Amazon EBS Multi-Attach in the Amazon Elastic Compute Cloud User Guide.
Indicates whether to enable Amazon EBS Multi-Attach. If you enable Multi-Attach, you can attach the volume to up to 16 Instances built on the Nitro System in the same Availability Zone. This parameter is supported with io1
and io2
volumes only. For more information, see Amazon EBS Multi-Attach in the Amazon Elastic Compute Cloud User Guide.
Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation
. Otherwise, it is UnauthorizedOperation
.
Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation
. Otherwise, it is UnauthorizedOperation
.
(Interface endpoint) Indicates whether to associate a private hosted zone with the specified VPC. The private hosted zone contains a record set for the default public DNS name for the service for the Region (for example, kinesis.us-east-1.amazonaws.com
), which resolves to the private IP addresses of the endpoint network interfaces in the VPC. This enables you to make requests to the default public DNS name for the service instead of the public DNS names that are automatically generated by the VPC endpoint service.
To use a private hosted zone, you must set the following VPC attributes to true
: enableDnsHostnames
and enableDnsSupport
. Use ModifyVpcAttribute to set the VPC attributes.
Default: true
Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation
. Otherwise, it is UnauthorizedOperation
.
Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation
. Otherwise, it is UnauthorizedOperation
.
Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation
. Otherwise, it is UnauthorizedOperation
.
Specifies whether to enable Amazon EBS Multi-Attach. If you enable Multi-Attach, you can attach the volume to up to 16 Nitro-based instances in the same Availability Zone. This parameter is supported with io1
and io2
volumes only. For more information, see Amazon EBS Multi-Attach in the Amazon Elastic Compute Cloud User Guide.
Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation
. Otherwise, it is UnauthorizedOperation
.
Returns true
if the request succeeds; otherwise, it returns an error.
Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation
. Otherwise, it is UnauthorizedOperation
.
Indicates whether the volume was created using fast snapshot restore.
", "Volume$MultiAttachEnabled": "Indicates whether Amazon EBS Multi-Attach is enabled.
", "VolumeAttachment$DeleteOnTermination": "Indicates whether the EBS volume is deleted on instance termination.
", + "VolumeModification$TargetMultiAttachEnabled": "The target setting for Amazon EBS Multi-Attach.
", + "VolumeModification$OriginalMultiAttachEnabled": "The original setting for Amazon EBS Multi-Attach.
", "Vpc$IsDefault": "Indicates whether the VPC is the default VPC.
", "VpcClassicLink$ClassicLinkEnabled": "Indicates whether the VPC is enabled for ClassicLink.
", "VpcEndpoint$PrivateDnsEnabled": "(Interface endpoint) Indicates whether the VPC is associated with a private hosted zone.
", diff --git a/models/apis/personalize-runtime/2018-05-22/api-2.json b/models/apis/personalize-runtime/2018-05-22/api-2.json index ae2091f496..dcd9d0a59c 100644 --- a/models/apis/personalize-runtime/2018-05-22/api-2.json +++ b/models/apis/personalize-runtime/2018-05-22/api-2.json @@ -67,7 +67,7 @@ "FilterAttributeName":{ "type":"string", "max":50, - "pattern":"[A-Za-z0-9]+" + "pattern":"[A-Za-z0-9_]+" }, "FilterAttributeValue":{ "type":"string", diff --git a/models/apis/rds/2014-10-31/api-2.json b/models/apis/rds/2014-10-31/api-2.json index a4cbbde3ec..dfeab3f282 100644 --- a/models/apis/rds/2014-10-31/api-2.json +++ b/models/apis/rds/2014-10-31/api-2.json @@ -2616,6 +2616,16 @@ "DisableLogTypes":{"shape":"LogTypeList"} } }, + "ClusterPendingModifiedValues":{ + "type":"structure", + "members":{ + "PendingCloudwatchLogsExports":{"shape":"PendingCloudwatchLogsExports"}, + "DBClusterIdentifier":{"shape":"String"}, + "MasterUserPassword":{"shape":"String"}, + "IAMDatabaseAuthenticationEnabled":{"shape":"BooleanOptional"}, + "EngineVersion":{"shape":"String"} + } + }, "ConnectionPoolConfiguration":{ "type":"structure", "members":{ @@ -3248,7 +3258,8 @@ "DomainMemberships":{"shape":"DomainMembershipList"}, "TagList":{"shape":"TagList"}, "GlobalWriteForwardingStatus":{"shape":"WriteForwardingStatus"}, - "GlobalWriteForwardingRequested":{"shape":"BooleanOptional"} + "GlobalWriteForwardingRequested":{"shape":"BooleanOptional"}, + "PendingModifiedValues":{"shape":"ClusterPendingModifiedValues"} }, "wrapper":true }, @@ -6597,7 +6608,8 @@ "CACertificateIdentifier":{"shape":"String"}, "DBSubnetGroupName":{"shape":"String"}, "PendingCloudwatchLogsExports":{"shape":"PendingCloudwatchLogsExports"}, - "ProcessorFeatures":{"shape":"ProcessorFeatureList"} + "ProcessorFeatures":{"shape":"ProcessorFeatureList"}, + "IAMDatabaseAuthenticationEnabled":{"shape":"BooleanOptional"} } }, "PointInTimeRestoreNotEnabledFault":{ diff --git a/models/apis/rds/2014-10-31/docs-2.json b/models/apis/rds/2014-10-31/docs-2.json index f616d84c7f..a45d912d19 100644 --- a/models/apis/rds/2014-10-31/docs-2.json +++ b/models/apis/rds/2014-10-31/docs-2.json @@ -386,6 +386,7 @@ "BacktrackDBClusterMessage$Force": "A value that indicates whether to force the DB cluster to backtrack when binary logging is enabled. Otherwise, an error occurs when binary logging is enabled.
", "BacktrackDBClusterMessage$UseEarliestTimeOnPointInTimeUnavailable": "A value that indicates whether to backtrack the DB cluster to the earliest possible backtrack time when BacktrackTo is set to a timestamp earlier than the earliest backtrack time. When this parameter is disabled and BacktrackTo is set to a timestamp earlier than the earliest backtrack time, an error occurs.
", "Certificate$CustomerOverride": "Whether there is an override for the default certificate identifier.
", + "ClusterPendingModifiedValues$IAMDatabaseAuthenticationEnabled": "Whether mapping of AWS Identity and Access Management (IAM) accounts to database accounts is enabled.
", "CopyDBClusterSnapshotMessage$CopyTags": "A value that indicates whether to copy all tags from the source DB cluster snapshot to the target DB cluster snapshot. By default, tags are not copied.
", "CopyDBSnapshotMessage$CopyTags": "A value that indicates whether to copy all tags from the source DB snapshot to the target DB snapshot. By default, tags are not copied.
", "CreateDBClusterMessage$StorageEncrypted": "A value that indicates whether the DB cluster is encrypted.
", @@ -452,7 +453,8 @@ "OptionGroupOption$SupportsOptionVersionDowngrade": "If true, you can change the option to an earlier version of the option. This only applies to options that have different versions available.
", "OrderableDBInstanceOption$SupportsStorageAutoscaling": "Whether Amazon RDS can automatically scale storage for DB instances that use the specified DB instance class.
", "OrderableDBInstanceOption$SupportsKerberosAuthentication": "Whether a DB instance supports Kerberos Authentication.
", - "PendingModifiedValues$MultiAZ": "Indicates that the Single-AZ DB instance is to change to a Multi-AZ deployment.
", + "PendingModifiedValues$MultiAZ": "Indicates that the Single-AZ DB instance will change to a Multi-AZ deployment.
", + "PendingModifiedValues$IAMDatabaseAuthenticationEnabled": "Whether mapping of AWS Identity and Access Management (IAM) accounts to database accounts is enabled.
", "RebootDBInstanceMessage$ForceFailover": "A value that indicates whether the reboot is conducted through a Multi-AZ failover.
Constraint: You can't enable force failover if the instance isn't configured for Multi-AZ.
", "RestoreDBClusterFromS3Message$StorageEncrypted": "A value that indicates whether the restored DB cluster is encrypted.
", "RestoreDBClusterFromS3Message$EnableIAMDatabaseAuthentication": "A value that indicates whether to enable mapping of AWS Identity and Access Management (IAM) accounts to database accounts. By default, mapping is disabled.
For more information, see IAM Database Authentication in the Amazon Aurora User Guide.
", @@ -535,6 +537,12 @@ "ModifyDBInstanceMessage$CloudwatchLogsExportConfiguration": "The configuration setting for the log types to be enabled for export to CloudWatch Logs for a specific DB instance.
A change to the CloudwatchLogsExportConfiguration
parameter is always applied to the DB instance immediately. Therefore, the ApplyImmediately
parameter has no effect.
This data type is used as a response element in the ModifyDBCluster
operation and contains changes that will be applied during the next maintenance window.
Specifies that changes to the DB cluster are pending. This element is only included when changes are pending. Specific changes are identified by subelements.
" + } + }, "ConnectionPoolConfiguration": { "base": "Specifies the settings that control the size and behavior of the connection pool associated with a DBProxyTargetGroup
.
The GlobalClusterIdentifier
already exists. Choose a new global database identifier (unique name) to create a new global database cluster.
The GlobalClusterIdentifier
doesn't refer to an existing global database cluster.
The number of global database clusters for this account is already at the maximum allowed.
", "refs": { } }, @@ -2353,10 +2361,10 @@ "OrderableDBInstanceOption$MaxStorageSize": "Maximum storage size for a DB instance.
", "OrderableDBInstanceOption$MinIopsPerDbInstance": "Minimum total provisioned IOPS for a DB instance.
", "OrderableDBInstanceOption$MaxIopsPerDbInstance": "Maximum total provisioned IOPS for a DB instance.
", - "PendingModifiedValues$AllocatedStorage": " Contains the new AllocatedStorage
size for the DB instance that will be applied or is currently being applied.
Specifies the pending port for the DB instance.
", - "PendingModifiedValues$BackupRetentionPeriod": "Specifies the pending number of days for which automated backups are retained.
", - "PendingModifiedValues$Iops": "Specifies the new Provisioned IOPS value for the DB instance that will be applied or is currently being applied.
", + "PendingModifiedValues$AllocatedStorage": "The allocated storage size for the DB instance specified in gibibytes .
", + "PendingModifiedValues$Port": "The port for the DB instance.
", + "PendingModifiedValues$BackupRetentionPeriod": "The number of days for which automated backups are retained.
", + "PendingModifiedValues$Iops": "The Provisioned IOPS value for the DB instance.
", "PromoteReadReplicaMessage$BackupRetentionPeriod": "The number of days for which automated backups are retained. Setting this parameter to a positive number enables backups. Setting this parameter to 0 disables automated backups.
Default: 1
Constraints:
Must be a value from 0 to 35.
Can't be set to 0 if the DB instance is a source to read replicas.
The number of instances to reserve.
Default: 1
The step value for the range. For example, if you have a range of 5,000 to 10,000, with a step value of 1,000, the valid values start at 5,000 and step up by 1,000. Even though 7,500 is within the range, it isn't a valid value for the range. The valid values are 5,000, 6,000, 7,000, 8,000...
", @@ -2471,7 +2479,7 @@ } }, "InvalidGlobalClusterStateFault": { - "base": "", + "base": "The global cluster is in an invalid state and can't perform the requested operation.
", "refs": { } }, @@ -2914,6 +2922,7 @@ "PendingCloudwatchLogsExports": { "base": "A list of the log types whose configuration is still pending. In other words, these log types are in the process of being activated or deactivated.
", "refs": { + "ClusterPendingModifiedValues$PendingCloudwatchLogsExports": null, "PendingModifiedValues$PendingCloudwatchLogsExports": null } }, @@ -2941,7 +2950,7 @@ } }, "PendingModifiedValues": { - "base": " This data type is used as a response element in the ModifyDBInstance
action.
This data type is used as a response element in the ModifyDBInstance
action and contains changes that will be applied during the next maintenance window.
Specifies that changes to the DB instance are pending. This element is only included when changes are pending. Specific changes are identified by subelements.
" } @@ -3478,6 +3487,9 @@ "CertificateMessage$Marker": " An optional pagination token provided by a previous DescribeCertificates
request. If this parameter is specified, the response includes only records beyond the marker, up to the value specified by MaxRecords
.
The name of the character set.
", "CharacterSet$CharacterSetDescription": "The description of the character set.
", + "ClusterPendingModifiedValues$DBClusterIdentifier": "The DBClusterIdentifier for the DB cluster.
", + "ClusterPendingModifiedValues$MasterUserPassword": "The master credentials for the DB cluster.
", + "ClusterPendingModifiedValues$EngineVersion": "The database engine version.
", "ConnectionPoolConfiguration$InitQuery": " One or more SQL statements for the proxy to run when opening each new database connection. Typically used with SET
statements to make sure that each connection has identical settings such as time zone and character set. For multiple statements, use semicolons as the separator. You can also include multiple variables in a single SET
statement, such as SET x=1, y=2
.
Default: no initialization query
", "ConnectionPoolConfigurationInfo$InitQuery": " One or more SQL statements for the proxy to run when opening each new database connection. Typically used with SET
statements to make sure that each connection has identical settings such as time zone and character set. This setting is empty by default. For multiple statements, use semicolons as the separator. You can also include multiple variables in a single SET
statement, such as SET x=1, y=2
.
The identifier or Amazon Resource Name (ARN) for the source DB cluster parameter group. For information about creating an ARN, see Constructing an ARN for Amazon RDS in the Amazon Aurora User Guide.
Constraints:
Must specify a valid DB cluster parameter group.
If the source DB cluster parameter group is in the same AWS Region as the copy, specify a valid DB parameter group identifier, for example my-db-cluster-param-group
, or a valid ARN.
If the source DB parameter group is in a different AWS Region than the copy, specify a valid DB cluster parameter group ARN, for example arn:aws:rds:us-east-1:123456789012:cluster-pg:custom-cluster-group1
.
The description for the DB cluster parameter group.
", "CreateDBClusterSnapshotMessage$DBClusterSnapshotIdentifier": "The identifier of the DB cluster snapshot. This parameter is stored as a lowercase string.
Constraints:
Must contain from 1 to 63 letters, numbers, or hyphens.
First character must be a letter.
Can't end with a hyphen or contain two consecutive hyphens.
Example: my-cluster1-snapshot1
The identifier of the DB cluster to create a snapshot for. This parameter isn't case-sensitive.
Constraints:
Must match the identifier of an existing DBCluster.
Example: my-cluster1
The meaning of this parameter differs according to the database engine you use.
MySQL
The name of the database to create when the DB instance is created. If this parameter isn't specified, no database is created in the DB instance.
Constraints:
Must contain 1 to 64 letters or numbers.
Must begin with a letter. Subsequent characters can be letters, underscores, or digits (0-9).
Can't be a word reserved by the specified database engine
MariaDB
The name of the database to create when the DB instance is created. If this parameter isn't specified, no database is created in the DB instance.
Constraints:
Must contain 1 to 64 letters or numbers.
Must begin with a letter. Subsequent characters can be letters, underscores, or digits (0-9).
Can't be a word reserved by the specified database engine
PostgreSQL
The name of the database to create when the DB instance is created. If this parameter isn't specified, the default \"postgres\" database is created in the DB instance.
Constraints:
Must contain 1 to 63 letters, numbers, or underscores.
Must begin with a letter. Subsequent characters can be letters, underscores, or digits (0-9).
Can't be a word reserved by the specified database engine
Oracle
The Oracle System ID (SID) of the created DB instance. If you specify null
, the default value ORCL
is used. You can't specify the string NULL, or any other reserved word, for DBName
.
Default: ORCL
Constraints:
Can't be longer than 8 characters
SQL Server
Not applicable. Must be null.
Amazon Aurora
The name of the database to create when the primary instance of the DB cluster is created. If this parameter isn't specified, no database is created in the DB instance.
Constraints:
Must contain 1 to 64 letters or numbers.
Can't be a word reserved by the specified database engine
The meaning of this parameter differs according to the database engine you use.
MySQL
The name of the database to create when the DB instance is created. If this parameter isn't specified, no database is created in the DB instance.
Constraints:
Must contain 1 to 64 letters or numbers.
Must begin with a letter. Subsequent characters can be letters, underscores, or digits (0-9).
Can't be a word reserved by the specified database engine
MariaDB
The name of the database to create when the DB instance is created. If this parameter isn't specified, no database is created in the DB instance.
Constraints:
Must contain 1 to 64 letters or numbers.
Must begin with a letter. Subsequent characters can be letters, underscores, or digits (0-9).
Can't be a word reserved by the specified database engine
PostgreSQL
The name of the database to create when the DB instance is created. If this parameter isn't specified, no database is created in the DB instance.
Constraints:
Must contain 1 to 63 letters, numbers, or underscores.
Must begin with a letter. Subsequent characters can be letters, underscores, or digits (0-9).
Can't be a word reserved by the specified database engine
Oracle
The Oracle System ID (SID) of the created DB instance. If you specify null
, the default value ORCL
is used. You can't specify the string NULL, or any other reserved word, for DBName
.
Default: ORCL
Constraints:
Can't be longer than 8 characters
SQL Server
Not applicable. Must be null.
Amazon Aurora
The name of the database to create when the primary instance of the DB cluster is created. If this parameter isn't specified, no database is created in the DB instance.
Constraints:
Must contain 1 to 64 letters or numbers.
Can't be a word reserved by the specified database engine
The DB instance identifier. This parameter is stored as a lowercase string.
Constraints:
Must contain from 1 to 63 letters, numbers, or hyphens.
First character must be a letter.
Can't end with a hyphen or contain two consecutive hyphens.
Example: mydbinstance
The compute and memory capacity of the DB instance, for example, db.m4.large
. Not all DB instance classes are available in all AWS Regions, or for all database engines. For the full list of DB instance classes, and availability for your engine, see DB Instance Class in the Amazon RDS User Guide.
The name of the database engine to be used for this instance.
Not every database engine is available for every AWS Region.
Valid Values:
aurora
(for MySQL 5.6-compatible Aurora)
aurora-mysql
(for MySQL 5.7-compatible Aurora)
aurora-postgresql
mariadb
mysql
oracle-ee
oracle-se2
oracle-se1
oracle-se
postgres
sqlserver-ee
sqlserver-se
sqlserver-ex
sqlserver-web
Specifies a DB subnet group for the DB instance. The new DB instance is created in the VPC associated with the DB subnet group. If no DB subnet group is specified, then the new DB instance isn't created in a VPC.
Constraints:
Can only be specified if the source DB instance identifier specifies a DB instance in another AWS Region.
If supplied, must match the name of an existing DBSubnetGroup.
The specified DB subnet group must be in the same AWS Region in which the operation is running.
All read replicas in one AWS Region that are created from the same source DB instance must either:>
Specify DB subnet groups from the same VPC. All these read replicas are created in the same VPC.
Not specify a DB subnet group. All these read replicas are created outside of any VPC.
Example: mySubnetgroup
Specifies the storage type to be associated with the read replica.
Valid values: standard | gp2 | io1
If you specify io1
, you must also include a value for the Iops
parameter.
Default: io1
if the Iops
parameter is specified, otherwise gp2
The ARN for the IAM role that permits RDS to send enhanced monitoring metrics to Amazon CloudWatch Logs. For example, arn:aws:iam:123456789012:role/emaccess
. For information on creating a monitoring role, go to To create an IAM role for Amazon RDS Enhanced Monitoring in the Amazon RDS User Guide.
If MonitoringInterval
is set to a value other than 0, then you must supply a MonitoringRoleArn
value.
The AWS KMS key identifier for an encrypted read replica.
The AWS KMS key identifier is the key ARN, key ID, alias ARN, or alias name for the AWS KMS CMK.
If you create an encrypted read replica in the same AWS Region as the source DB instance, then you do not have to specify a value for this parameter. The read replica is encrypted with the same AWS KMS CMK as the source DB instance.
If you create an encrypted read replica in a different AWS Region, then you must specify a AWS KMS key identifier for the destination AWS Region. AWS KMS CMKs are specific to the AWS Region that they are created in, and you can't use CMKs from one AWS Region in another AWS Region.
You can't create an encrypted read replica from an unencrypted DB instance.
", + "CreateDBInstanceReadReplicaMessage$KmsKeyId": "The AWS KMS key identifier for an encrypted read replica.
The AWS KMS key identifier is the key ARN, key ID, alias ARN, or alias name for the AWS KMS CMK.
If you create an encrypted read replica in the same AWS Region as the source DB instance, then do not specify a value for this parameter. A read replica in the same Region is always encrypted with the same AWS KMS CMK as the source DB instance.
If you create an encrypted read replica in a different AWS Region, then you must specify a AWS KMS key identifier for the destination AWS Region. AWS KMS CMKs are specific to the AWS Region that they are created in, and you can't use CMKs from one AWS Region in another AWS Region.
You can't create an encrypted read replica from an unencrypted DB instance.
", "CreateDBInstanceReadReplicaMessage$PreSignedUrl": "The URL that contains a Signature Version 4 signed request for the CreateDBInstanceReadReplica
API action in the source AWS Region that contains the source DB instance.
You must specify this parameter when you create an encrypted read replica from another AWS Region by using the Amazon RDS API. Don't specify PreSignedUrl
when you are creating an encrypted read replica in the same AWS Region.
The presigned URL must be a valid request for the CreateDBInstanceReadReplica
API action that can be executed in the source AWS Region that contains the encrypted source DB instance. The presigned URL request must contain the following parameter values:
DestinationRegion
- The AWS Region that the encrypted read replica is created in. This AWS Region is the same one where the CreateDBInstanceReadReplica
action is called that contains this presigned URL.
For example, if you create an encrypted DB instance in the us-west-1 AWS Region, from a source DB instance in the us-east-2 AWS Region, then you call the CreateDBInstanceReadReplica
action in the us-east-1 AWS Region and provide a presigned URL that contains a call to the CreateDBInstanceReadReplica
action in the us-west-2 AWS Region. For this example, the DestinationRegion
in the presigned URL must be set to the us-east-1 AWS Region.
KmsKeyId
- The AWS KMS key identifier for the key to use to encrypt the read replica in the destination AWS Region. This is the same identifier for both the CreateDBInstanceReadReplica
action that is called in the destination AWS Region, and the action contained in the presigned URL.
SourceDBInstanceIdentifier
- The DB instance identifier for the encrypted DB instance to be replicated. This identifier must be in the Amazon Resource Name (ARN) format for the source AWS Region. For example, if you are creating an encrypted read replica from a DB instance in the us-west-2 AWS Region, then your SourceDBInstanceIdentifier
looks like the following example: arn:aws:rds:us-west-2:123456789012:instance:mysql-instance1-20161115
.
To learn how to generate a Signature Version 4 signed request, see Authenticating Requests: Using Query Parameters (AWS Signature Version 4) and Signature Version 4 Signing Process.
If you are using an AWS SDK tool or the AWS CLI, you can specify SourceRegion
(or --source-region
for the AWS CLI) instead of specifying PreSignedUrl
manually. Specifying SourceRegion
autogenerates a presigned URL that is a valid request for the operation that can be executed in the source AWS Region.
SourceRegion
isn't supported for SQL Server, because SQL Server on Amazon RDS doesn't support cross-region read replicas.
The AWS KMS key identifier for encryption of Performance Insights data.
The AWS KMS key identifier is the key ARN, key ID, alias ARN, or alias name for the AWS KMS customer master key (CMK).
If you do not specify a value for PerformanceInsightsKMSKeyId
, then Amazon RDS uses your default CMK. There is a default CMK for your AWS account. Your AWS account has a different default CMK for each AWS Region.
The Active Directory directory ID to create the DB instance in. Currently, only MySQL, Microsoft SQL Server, Oracle, and PostgreSQL DB instances can be created in an Active Directory Domain.
For more information, see Kerberos Authentication in the Amazon RDS User Guide.
", @@ -4106,14 +4118,14 @@ "PendingMaintenanceAction$OptInStatus": "Indicates the type of opt-in request that has been received for the resource.
", "PendingMaintenanceAction$Description": "A description providing more detail about the maintenance action.
", "PendingMaintenanceActionsMessage$Marker": " An optional pagination token provided by a previous DescribePendingMaintenanceActions
request. If this parameter is specified, the response includes only records beyond the marker, up to a number of records specified by MaxRecords
.
Contains the new DBInstanceClass
for the DB instance that will be applied or is currently being applied.
Contains the pending or currently-in-progress change of the master credentials for the DB instance.
", - "PendingModifiedValues$EngineVersion": "Indicates the database engine version.
", + "PendingModifiedValues$DBInstanceClass": "The name of the compute and memory capacity class for the DB instance.
", + "PendingModifiedValues$MasterUserPassword": "The master credentials for the DB instance.
", + "PendingModifiedValues$EngineVersion": "The database engine version.
", "PendingModifiedValues$LicenseModel": "The license model for the DB instance.
Valid values: license-included
| bring-your-own-license
| general-public-license
Contains the new DBInstanceIdentifier
for the DB instance that will be applied or is currently being applied.
Specifies the storage type to be associated with the DB instance.
", - "PendingModifiedValues$CACertificateIdentifier": "Specifies the identifier of the CA certificate for the DB instance.
", - "PendingModifiedValues$DBSubnetGroupName": "The new DB subnet group for the DB instance.
", + "PendingModifiedValues$DBInstanceIdentifier": "The database identifier for the DB instance.
", + "PendingModifiedValues$StorageType": "The storage type of the DB instance.
", + "PendingModifiedValues$CACertificateIdentifier": "The identifier of the CA certificate for the DB instance.
", + "PendingModifiedValues$DBSubnetGroupName": "The DB subnet group for the DB instance.
", "ProcessorFeature$Name": "The name of the processor feature. Valid names are coreCount
and threadsPerCore
.
The value of a processor feature name.
", "PromoteReadReplicaDBClusterMessage$DBClusterIdentifier": "The identifier of the DB cluster read replica to promote. This parameter isn't case-sensitive.
Constraints:
Must match the identifier of an existing DB cluster read replica.
Example: my-cluster-replica1