feat(client-ec2): Adds support for Customer Managed Key encryption for Amazon Verified Access resources

Author: awstools

clients/client-ec2/src/commands/AttachVerifiedAccessTrustProviderCommand.ts

@@ -89,6 +89,10 @@ export interface AttachVerifiedAccessTrustProviderCommandOutput
  * //         Value: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //       CustomerManagedKeyEnabled: true || false,
+ * //       KmsKeyArn: "STRING_VALUE",
+ * //     },
  * //   },
  * //   VerifiedAccessInstance: { // VerifiedAccessInstance
  * //     VerifiedAccessInstanceId: "STRING_VALUE",

clients/client-ec2/src/commands/CreatePlacementGroupCommand.ts

@@ -15,7 +15,8 @@ import {
 } from "@smithy/types";
 
 import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client";
-import { CreatePlacementGroupRequest, CreatePlacementGroupResult } from "../models/models_1";
+import { CreatePlacementGroupRequest } from "../models/models_1";
+import { CreatePlacementGroupResult } from "../models/models_2";
 import { de_CreatePlacementGroupCommand, se_CreatePlacementGroupCommand } from "../protocols/Aws_ec2";
 
 /**

clients/client-ec2/src/commands/CreateVerifiedAccessEndpointCommand.ts

@@ -84,6 +84,10 @@ export interface CreateVerifiedAccessEndpointCommandOutput
  *   ],
  *   ClientToken: "STRING_VALUE",
  *   DryRun: true || false,
+ *   SseSpecification: { // VerifiedAccessSseSpecificationRequest
+ *     CustomerManagedKeyEnabled: true || false,
+ *     KmsKeyArn: "STRING_VALUE",
+ *   },
  * };
  * const command = new CreateVerifiedAccessEndpointCommand(input);
  * const response = await client.send(command);
@@ -128,6 +132,10 @@ export interface CreateVerifiedAccessEndpointCommandOutput
  * //         Value: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //       CustomerManagedKeyEnabled: true || false,
+ * //       KmsKeyArn: "STRING_VALUE",
+ * //     },
  * //   },
  * // };
  *

clients/client-ec2/src/commands/CreateVerifiedAccessGroupCommand.ts

@@ -64,6 +64,10 @@ export interface CreateVerifiedAccessGroupCommandOutput extends CreateVerifiedAc
  *   ],
  *   ClientToken: "STRING_VALUE",
  *   DryRun: true || false,
+ *   SseSpecification: { // VerifiedAccessSseSpecificationRequest
+ *     CustomerManagedKeyEnabled: true || false,
+ *     KmsKeyArn: "STRING_VALUE",
+ *   },
  * };
  * const command = new CreateVerifiedAccessGroupCommand(input);
  * const response = await client.send(command);
@@ -83,6 +87,10 @@ export interface CreateVerifiedAccessGroupCommandOutput extends CreateVerifiedAc
  * //         Value: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //       CustomerManagedKeyEnabled: true || false,
+ * //       KmsKeyArn: "STRING_VALUE",
+ * //     },
  * //   },
  * // };
  *

clients/client-ec2/src/commands/CreateVerifiedAccessTrustProviderCommand.ts

@@ -88,6 +88,10 @@ export interface CreateVerifiedAccessTrustProviderCommandOutput
  *   ],
  *   ClientToken: "STRING_VALUE",
  *   DryRun: true || false,
+ *   SseSpecification: { // VerifiedAccessSseSpecificationRequest
+ *     CustomerManagedKeyEnabled: true || false,
+ *     KmsKeyArn: "STRING_VALUE",
+ *   },
  * };
  * const command = new CreateVerifiedAccessTrustProviderCommand(input);
  * const response = await client.send(command);
@@ -119,6 +123,10 @@ export interface CreateVerifiedAccessTrustProviderCommandOutput
  * //         Value: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //       CustomerManagedKeyEnabled: true || false,
+ * //       KmsKeyArn: "STRING_VALUE",
+ * //     },
  * //   },
  * // };
  *

clients/client-ec2/src/commands/DeletePublicIpv4PoolCommand.ts

@@ -15,7 +15,8 @@ import {
 } from "@smithy/types";
 
 import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client";
-import { DeletePublicIpv4PoolRequest, DeletePublicIpv4PoolResult } from "../models/models_2";
+import { DeletePublicIpv4PoolRequest } from "../models/models_2";
+import { DeletePublicIpv4PoolResult } from "../models/models_3";
 import { de_DeletePublicIpv4PoolCommand, se_DeletePublicIpv4PoolCommand } from "../protocols/Aws_ec2";
 
 /**

clients/client-ec2/src/commands/DeleteQueuedReservedInstancesCommand.ts

@@ -15,8 +15,7 @@ import {
 } from "@smithy/types";
 
 import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client";
-import { DeleteQueuedReservedInstancesRequest } from "../models/models_2";
-import { DeleteQueuedReservedInstancesResult } from "../models/models_3";
+import { DeleteQueuedReservedInstancesRequest, DeleteQueuedReservedInstancesResult } from "../models/models_3";
 import { de_DeleteQueuedReservedInstancesCommand, se_DeleteQueuedReservedInstancesCommand } from "../protocols/Aws_ec2";
 
 /**

clients/client-ec2/src/commands/DeleteVerifiedAccessEndpointCommand.ts

@@ -94,6 +94,10 @@ export interface DeleteVerifiedAccessEndpointCommandOutput
  * //         Value: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //       CustomerManagedKeyEnabled: true || false,
+ * //       KmsKeyArn: "STRING_VALUE",
+ * //     },
  * //   },
  * // };
  *

clients/client-ec2/src/commands/DeleteVerifiedAccessGroupCommand.ts

@@ -67,6 +67,10 @@ export interface DeleteVerifiedAccessGroupCommandOutput extends DeleteVerifiedAc
  * //         Value: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //       CustomerManagedKeyEnabled: true || false,
+ * //       KmsKeyArn: "STRING_VALUE",
+ * //     },
  * //   },
  * // };
  *

clients/client-ec2/src/commands/DeleteVerifiedAccessTrustProviderCommand.ts

@@ -88,6 +88,10 @@ export interface DeleteVerifiedAccessTrustProviderCommandOutput
  * //         Value: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //       CustomerManagedKeyEnabled: true || false,
+ * //       KmsKeyArn: "STRING_VALUE",
+ * //     },
  * //   },
  * // };
  *

clients/client-ec2/src/commands/DescribeVerifiedAccessEndpointsCommand.ts

@@ -111,6 +111,10 @@ export interface DescribeVerifiedAccessEndpointsCommandOutput
  * //           Value: "STRING_VALUE",
  * //         },
  * //       ],
+ * //       SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //         CustomerManagedKeyEnabled: true || false,
+ * //         KmsKeyArn: "STRING_VALUE",
+ * //       },
  * //     },
  * //   ],
  * //   NextToken: "STRING_VALUE",

clients/client-ec2/src/commands/DescribeVerifiedAccessGroupsCommand.ts

@@ -15,7 +15,7 @@ import {
 } from "@smithy/types";
 
 import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client";
-import { DescribeVerifiedAccessGroupsRequest, DescribeVerifiedAccessGroupsResult } from "../models/models_4";
+import { DescribeVerifiedAccessGroupsRequest, DescribeVerifiedAccessGroupsResult } from "../models/models_5";
 import { de_DescribeVerifiedAccessGroupsCommand, se_DescribeVerifiedAccessGroupsCommand } from "../protocols/Aws_ec2";
 
 /**
@@ -82,6 +82,10 @@ export interface DescribeVerifiedAccessGroupsCommandOutput
  * //           Value: "STRING_VALUE",
  * //         },
  * //       ],
+ * //       SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //         CustomerManagedKeyEnabled: true || false,
+ * //         KmsKeyArn: "STRING_VALUE",
+ * //       },
  * //     },
  * //   ],
  * //   NextToken: "STRING_VALUE",

clients/client-ec2/src/commands/DescribeVerifiedAccessTrustProvidersCommand.ts

@@ -100,6 +100,10 @@ export interface DescribeVerifiedAccessTrustProvidersCommandOutput
  * //           Value: "STRING_VALUE",
  * //         },
  * //       ],
+ * //       SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //         CustomerManagedKeyEnabled: true || false,
+ * //         KmsKeyArn: "STRING_VALUE",
+ * //       },
  * //     },
  * //   ],
  * //   NextToken: "STRING_VALUE",

clients/client-ec2/src/commands/DetachVerifiedAccessTrustProviderCommand.ts

@@ -89,6 +89,10 @@ export interface DetachVerifiedAccessTrustProviderCommandOutput
  * //         Value: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //       CustomerManagedKeyEnabled: true || false,
+ * //       KmsKeyArn: "STRING_VALUE",
+ * //     },
  * //   },
  * //   VerifiedAccessInstance: { // VerifiedAccessInstance
  * //     VerifiedAccessInstanceId: "STRING_VALUE",

clients/client-ec2/src/commands/GetVerifiedAccessGroupPolicyCommand.ts

@@ -15,7 +15,7 @@ import {
 } from "@smithy/types";
 
 import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client";
-import { GetVerifiedAccessGroupPolicyRequest, GetVerifiedAccessGroupPolicyResult } from "../models/models_5";
+import { GetVerifiedAccessGroupPolicyRequest, GetVerifiedAccessGroupPolicyResult } from "../models/models_6";
 import { de_GetVerifiedAccessGroupPolicyCommand, se_GetVerifiedAccessGroupPolicyCommand } from "../protocols/Aws_ec2";
 
 /**

clients/client-ec2/src/commands/ModifyVerifiedAccessEndpointCommand.ts

@@ -107,6 +107,10 @@ export interface ModifyVerifiedAccessEndpointCommandOutput
  * //         Value: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //       CustomerManagedKeyEnabled: true || false,
+ * //       KmsKeyArn: "STRING_VALUE",
+ * //     },
  * //   },
  * // };
  *

clients/client-ec2/src/commands/ModifyVerifiedAccessEndpointPolicyCommand.ts

@@ -54,16 +54,24 @@ export interface ModifyVerifiedAccessEndpointPolicyCommandOutput
  * const client = new EC2Client(config);
  * const input = { // ModifyVerifiedAccessEndpointPolicyRequest
  *   VerifiedAccessEndpointId: "STRING_VALUE", // required
- *   PolicyEnabled: true || false, // required
+ *   PolicyEnabled: true || false,
  *   PolicyDocument: "STRING_VALUE",
  *   ClientToken: "STRING_VALUE",
  *   DryRun: true || false,
+ *   SseSpecification: { // VerifiedAccessSseSpecificationRequest
+ *     CustomerManagedKeyEnabled: true || false,
+ *     KmsKeyArn: "STRING_VALUE",
+ *   },
  * };
  * const command = new ModifyVerifiedAccessEndpointPolicyCommand(input);
  * const response = await client.send(command);
  * // { // ModifyVerifiedAccessEndpointPolicyResult
  * //   PolicyEnabled: true || false,
  * //   PolicyDocument: "STRING_VALUE",
+ * //   SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //     CustomerManagedKeyEnabled: true || false,
+ * //     KmsKeyArn: "STRING_VALUE",
+ * //   },
  * // };
  *
  * ```

clients/client-ec2/src/commands/ModifyVerifiedAccessGroupCommand.ts

@@ -69,6 +69,10 @@ export interface ModifyVerifiedAccessGroupCommandOutput extends ModifyVerifiedAc
  * //         Value: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //       CustomerManagedKeyEnabled: true || false,
+ * //       KmsKeyArn: "STRING_VALUE",
+ * //     },
  * //   },
  * // };
  *

clients/client-ec2/src/commands/ModifyVerifiedAccessGroupPolicyCommand.ts

@@ -51,16 +51,24 @@ export interface ModifyVerifiedAccessGroupPolicyCommandOutput
  * const client = new EC2Client(config);
  * const input = { // ModifyVerifiedAccessGroupPolicyRequest
  *   VerifiedAccessGroupId: "STRING_VALUE", // required
- *   PolicyEnabled: true || false, // required
+ *   PolicyEnabled: true || false,
  *   PolicyDocument: "STRING_VALUE",
  *   ClientToken: "STRING_VALUE",
  *   DryRun: true || false,
+ *   SseSpecification: { // VerifiedAccessSseSpecificationRequest
+ *     CustomerManagedKeyEnabled: true || false,
+ *     KmsKeyArn: "STRING_VALUE",
+ *   },
  * };
  * const command = new ModifyVerifiedAccessGroupPolicyCommand(input);
  * const response = await client.send(command);
  * // { // ModifyVerifiedAccessGroupPolicyResult
  * //   PolicyEnabled: true || false,
  * //   PolicyDocument: "STRING_VALUE",
+ * //   SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //     CustomerManagedKeyEnabled: true || false,
+ * //     KmsKeyArn: "STRING_VALUE",
+ * //   },
  * // };
  *
  * ```

clients/client-ec2/src/commands/ModifyVerifiedAccessTrustProviderCommand.ts

@@ -68,6 +68,10 @@ export interface ModifyVerifiedAccessTrustProviderCommandOutput
  *   Description: "STRING_VALUE",
  *   DryRun: true || false,
  *   ClientToken: "STRING_VALUE",
+ *   SseSpecification: { // VerifiedAccessSseSpecificationRequest
+ *     CustomerManagedKeyEnabled: true || false,
+ *     KmsKeyArn: "STRING_VALUE",
+ *   },
  * };
  * const command = new ModifyVerifiedAccessTrustProviderCommand(input);
  * const response = await client.send(command);
@@ -99,6 +103,10 @@ export interface ModifyVerifiedAccessTrustProviderCommandOutput
  * //         Value: "STRING_VALUE",
  * //       },
  * //     ],
+ * //     SseSpecification: { // VerifiedAccessSseSpecificationResponse
+ * //       CustomerManagedKeyEnabled: true || false,
+ * //       KmsKeyArn: "STRING_VALUE",
+ * //     },
  * //   },
  * // };
  *

clients/client-ec2/src/models/models_0.ts

@@ -5710,9 +5710,7 @@ export interface VerifiedAccessInstance {
 
   /**
    * @public
-   * <p>
-   * 		  Describes if support for Federal Information Processing Standards (FIPS) is enabled on the instance.
-   * 	   </p>
+   * <p>Describes whether support for Federal Information Processing Standards (FIPS) is enabled on the instance.</p>
    */
   FipsEnabled?: boolean;
 }
@@ -5778,6 +5776,32 @@ export interface OidcOptions {
   Scope?: string;
 }
 
+/**
+ * @public
+ * <p>
+ *          Describes the options in use for server side encryption.
+ *       </p>
+ */
+export interface VerifiedAccessSseSpecificationResponse {
+  /**
+   * @public
+   * <p>
+   *          Describes the use of customer managed KMS keys for server side encryption.
+   *       </p>
+   *          <p>Valid values: <code>True</code> | <code>False</code>
+   *          </p>
+   */
+  CustomerManagedKeyEnabled?: boolean;
+
+  /**
+   * @public
+   * <p>
+   *          Describes the ARN of the KMS key.
+   *       </p>
+   */
+  KmsKeyArn?: string;
+}
+
 /**
  * @public
  * <p>Describes a Verified Access trust provider.</p>
@@ -5848,6 +5872,14 @@ export interface VerifiedAccessTrustProvider {
    * <p>The tags.</p>
    */
   Tags?: Tag[];
+
+  /**
+   * @public
+   * <p>
+   *          Describes the options in use for server side encryption.
+   *       </p>
+   */
+  SseSpecification?: VerifiedAccessSseSpecificationResponse;
 }
 
 /**
@@ -9570,19 +9602,6 @@ export interface FederatedAuthenticationRequest {
   SelfServiceSAMLProviderArn?: string;
 }
 
-/**
- * @public
- * <p>Information about the client certificate to be used for authentication.</p>
- */
-export interface CertificateAuthenticationRequest {
-  /**
-   * @public
-   * <p>The ARN of the client certificate. The certificate must be signed by a certificate
-   * 			authority (CA) and it must be provisioned in Certificate Manager (ACM).</p>
-   */
-  ClientRootCertificateChainArn?: string;
-}
-
 /**
  * @internal
  */