feat(client-verifiedpermissions): Adds Cedar JSON format support for entities and context data in authorization requests

awstools · awstools · commit 46d4d66bde04 · 2025-01-30T19:25:39.000Z
diff --git a/clients/client-verifiedpermissions/src/commands/BatchIsAuthorizedCommand.ts b/clients/client-verifiedpermissions/src/commands/BatchIsAuthorizedCommand.ts
@@ -110,6 +110,7 @@ export interface BatchIsAuthorizedCommandOutput extends BatchIsAuthorizedOutput,
  *         ],
  *       },
  *     ],
+ *     cedarJson: "STRING_VALUE",
  *   },
  *   requests: [ // BatchIsAuthorizedInputList // required
  *     { // BatchIsAuthorizedInputItem
@@ -123,6 +124,7 @@ export interface BatchIsAuthorizedCommandOutput extends BatchIsAuthorizedOutput,
  *         contextMap: { // ContextMap
  *           "<keys>": "<AttributeValue>",
  *         },
+ *         cedarJson: "STRING_VALUE",
  *       },
  *     },
  *   ],
@@ -178,6 +180,7 @@ export interface BatchIsAuthorizedCommandOutput extends BatchIsAuthorizedOutput,
  * //               decimal: "STRING_VALUE",
  * //             },
  * //           },
+ * //           cedarJson: "STRING_VALUE",
  * //         },
  * //       },
  * //       decision: "ALLOW" || "DENY", // required
diff --git a/clients/client-verifiedpermissions/src/commands/BatchIsAuthorizedWithTokenCommand.ts b/clients/client-verifiedpermissions/src/commands/BatchIsAuthorizedWithTokenCommand.ts
@@ -110,6 +110,7 @@ export interface BatchIsAuthorizedWithTokenCommandOutput extends BatchIsAuthoriz
  *         ],
  *       },
  *     ],
+ *     cedarJson: "STRING_VALUE",
  *   },
  *   requests: [ // BatchIsAuthorizedWithTokenInputList // required
  *     { // BatchIsAuthorizedWithTokenInputItem
@@ -122,6 +123,7 @@ export interface BatchIsAuthorizedWithTokenCommandOutput extends BatchIsAuthoriz
  *         contextMap: { // ContextMap
  *           "<keys>": "<AttributeValue>",
  *         },
+ *         cedarJson: "STRING_VALUE",
  *       },
  *     },
  *   ],
@@ -174,6 +176,7 @@ export interface BatchIsAuthorizedWithTokenCommandOutput extends BatchIsAuthoriz
  * //               decimal: "STRING_VALUE",
  * //             },
  * //           },
+ * //           cedarJson: "STRING_VALUE",
  * //         },
  * //       },
  * //       decision: "ALLOW" || "DENY", // required
diff --git a/clients/client-verifiedpermissions/src/commands/IsAuthorizedCommand.ts b/clients/client-verifiedpermissions/src/commands/IsAuthorizedCommand.ts
@@ -96,6 +96,7 @@ export interface IsAuthorizedCommandOutput extends IsAuthorizedOutput, __Metadat
  *         decimal: "STRING_VALUE",
  *       },
  *     },
+ *     cedarJson: "STRING_VALUE",
  *   },
  *   entities: { // EntitiesDefinition Union: only one key present
  *     entityList: [ // EntityList
@@ -109,6 +110,7 @@ export interface IsAuthorizedCommandOutput extends IsAuthorizedOutput, __Metadat
  *         ],
  *       },
  *     ],
+ *     cedarJson: "STRING_VALUE",
  *   },
  * };
  * const command = new IsAuthorizedCommand(input);
diff --git a/clients/client-verifiedpermissions/src/commands/IsAuthorizedWithTokenCommand.ts b/clients/client-verifiedpermissions/src/commands/IsAuthorizedWithTokenCommand.ts
@@ -102,6 +102,7 @@ export interface IsAuthorizedWithTokenCommandOutput extends IsAuthorizedWithToke
  *         decimal: "STRING_VALUE",
  *       },
  *     },
+ *     cedarJson: "STRING_VALUE",
  *   },
  *   entities: { // EntitiesDefinition Union: only one key present
  *     entityList: [ // EntityList
@@ -115,6 +116,7 @@ export interface IsAuthorizedWithTokenCommandOutput extends IsAuthorizedWithToke
  *         ],
  *       },
  *     ],
+ *     cedarJson: "STRING_VALUE",
  *   },
  * };
  * const command = new IsAuthorizedWithTokenCommand(input);
diff --git a/clients/client-verifiedpermissions/src/models/models_0.ts b/clients/client-verifiedpermissions/src/models/models_0.ts
diff --git a/clients/client-verifiedpermissions/src/protocols/Aws_json1_0.ts b/clients/client-verifiedpermissions/src/protocols/Aws_json1_0.ts
@@ -1334,6 +1334,7 @@ const se_BatchIsAuthorizedWithTokenInputList = (
  */
 const se_ContextDefinition = (input: ContextDefinition, context: __SerdeContext): any => {
   return ContextDefinition.visit(input, {
+    cedarJson: (value) => ({ cedarJson: value }),
     contextMap: (value) => ({ contextMap: se_ContextMap(value, context) }),
     _: (name, value) => ({ name: value } as any),
   });
@@ -1411,6 +1412,7 @@ const se_CreatePolicyTemplateInput = (input: CreatePolicyTemplateInput, context:
  */
 const se_EntitiesDefinition = (input: EntitiesDefinition, context: __SerdeContext): any => {
   return EntitiesDefinition.visit(input, {
+    cedarJson: (value) => ({ cedarJson: value }),
     entityList: (value) => ({ entityList: se_EntityList(value, context) }),
     _: (name, value) => ({ name: value } as any),
   });
@@ -1791,6 +1793,9 @@ const de_BatchIsAuthorizedWithTokenOutputList = (
  * deserializeAws_json1_0ContextDefinition
  */
 const de_ContextDefinition = (output: any, context: __SerdeContext): ContextDefinition => {
+  if (__expectString(output.cedarJson) !== undefined) {
+    return { cedarJson: __expectString(output.cedarJson) as any };
+  }
   if (output.contextMap != null) {
     return {
       contextMap: de_ContextMap(output.contextMap, context),
diff --git a/codegen/sdk-codegen/aws-models/verifiedpermissions.json b/codegen/sdk-codegen/aws-models/verifiedpermissions.json
