Amazon Security Lake Update: Add capability to update the Data Lake's MetaStoreManager Role in order to perform required data lake updates to use Iceberg table format in their data lake or update the role for any other reason.

Author: AWS

.changes/next-release/feature-AmazonSecurityLake-3e676d2.json

@@ -0,0 +1,6 @@
+{
+    "type": "feature",
+    "category": "Amazon Security Lake",
+    "contributor": "",
+    "description": "Add capability to update the Data Lake's MetaStoreManager Role in order to perform required data lake updates to use Iceberg table format in their data lake or update the role for any other reason."
+}

services/securitylake/src/main/resources/codegen-resources/service-2.json

@@ -707,7 +707,7 @@
       "type":"list",
       "member":{"shape":"AwsLogSourceConfiguration"},
       "max":50,
-      "min":0
+      "min":1
     },
     "AwsLogSourceName":{
       "type":"string",
@@ -717,7 +717,9 @@
         "SH_FINDINGS",
         "CLOUD_TRAIL_MGMT",
         "LAMBDA_EXECUTION",
-        "S3_DATA"
+        "S3_DATA",
+        "EKS_AUDIT",
+        "WAF"
       ]
     },
     "AwsLogSourceResource":{
@@ -736,7 +738,8 @@
     },
     "AwsLogSourceResourceList":{
       "type":"list",
-      "member":{"shape":"AwsLogSourceResource"}
+      "member":{"shape":"AwsLogSourceResource"},
+      "min":1
     },
     "AwsLogSourceVersion":{
       "type":"string",
@@ -799,7 +802,10 @@
     },
     "CreateCustomLogSourceRequest":{
       "type":"structure",
-      "required":["sourceName"],
+      "required":[
+        "configuration",
+        "sourceName"
+      ],
       "members":{
         "configuration":{
           "shape":"CustomLogSourceConfiguration",
@@ -861,7 +867,6 @@
     },
     "CreateDataLakeOrganizationConfigurationRequest":{
       "type":"structure",
-      "required":["autoEnableNewAccount"],
       "members":{
         "autoEnableNewAccount":{
           "shape":"DataLakeAutoEnableNewAccountConfigurationList",
@@ -1095,7 +1100,8 @@
     },
     "DataLakeAutoEnableNewAccountConfigurationList":{
       "type":"list",
-      "member":{"shape":"DataLakeAutoEnableNewAccountConfiguration"}
+      "member":{"shape":"DataLakeAutoEnableNewAccountConfiguration"},
+      "min":1
     },
     "DataLakeConfiguration":{
       "type":"structure",
@@ -1122,7 +1128,8 @@
     },
     "DataLakeConfigurationList":{
       "type":"list",
-      "member":{"shape":"DataLakeConfiguration"}
+      "member":{"shape":"DataLakeConfiguration"},
+      "min":1
     },
     "DataLakeEncryptionConfiguration":{
       "type":"structure",
@@ -1412,7 +1419,6 @@
     },
     "DeleteDataLakeOrganizationConfigurationRequest":{
       "type":"structure",
-      "required":["autoEnableNewAccount"],
       "members":{
         "autoEnableNewAccount":{
           "shape":"DataLakeAutoEnableNewAccountConfigurationList",
@@ -1765,7 +1771,7 @@
       "members":{
         "resourceArn":{
           "shape":"AmazonResourceName",
-          "documentation":"<p>The Amazon Resource Name (ARN) of the Amazon Security Lake resource to retrieve the tags for.</p>",
+          "documentation":"<p>The Amazon Resource Name (ARN) of the Amazon Security Lake resource for which you want to retrieve the tags.</p>",
           "location":"uri",
           "locationName":"resourceArn"
         }
@@ -1909,7 +1915,7 @@
     },
     "RoleArn":{
       "type":"string",
-      "pattern":"^arn:.*$"
+      "pattern":"^arn:(aws[a-zA-Z-]*)?:iam::\\d{12}:role/?[a-zA-Z_0-9+=,.@\\-_/]+$"
     },
     "S3BucketArn":{"type":"string"},
     "S3URI":{
@@ -2191,6 +2197,10 @@
         "configurations":{
           "shape":"DataLakeConfigurationList",
           "documentation":"<p>Specify the Region or Regions that will contribute data to the rollup region.</p>"
+        },
+        "metaStoreManagerRoleArn":{
+          "shape":"RoleArn",
+          "documentation":"<p>The Amazon Resource Name (ARN) used to create and update the Glue table. This table contains partitions generated by the ingestion and normalization of Amazon Web Services log sources and custom sources.</p>"
         }
       }
     },