|
73 | 73 | {"shape":"ServiceUnavailableException"}, |
74 | 74 | {"shape":"InternalServiceError"}, |
75 | 75 | {"shape":"InvalidRequestException"}, |
76 | | - {"shape":"ResourceNotFoundException"} |
| 76 | + {"shape":"ResourceNotFoundException"}, |
| 77 | + {"shape":"ThrottlingException"} |
77 | 78 | ], |
78 | 79 | "documentation":"<p>Deletes a user's Secure Shell (SSH) public key.</p> <p>No response is returned from this operation.</p>" |
79 | 80 | }, |
|
137 | 138 | {"shape":"InternalServiceError"}, |
138 | 139 | {"shape":"InvalidRequestException"}, |
139 | 140 | {"shape":"ResourceExistsException"}, |
140 | | - {"shape":"ResourceNotFoundException"} |
| 141 | + {"shape":"ResourceNotFoundException"}, |
| 142 | + {"shape":"ThrottlingException"} |
141 | 143 | ], |
142 | 144 | "documentation":"<p>Adds a Secure Shell (SSH) public key to a user account identified by a <code>UserName</code> value assigned to a specific server, identified by <code>ServerId</code>.</p> <p>The response returns the <code>UserName</code> value, the <code>ServerId</code> value, and the name of the <code>SshPublicKeyId</code>.</p>" |
143 | 145 | }, |
|
201 | 203 | {"shape":"ServiceUnavailableException"}, |
202 | 204 | {"shape":"InternalServiceError"}, |
203 | 205 | {"shape":"InvalidRequestException"}, |
204 | | - {"shape":"ResourceNotFoundException"} |
| 206 | + {"shape":"ResourceNotFoundException"}, |
| 207 | + {"shape":"ThrottlingException"} |
205 | 208 | ], |
206 | 209 | "documentation":"<p>Changes the state of a Secure File Transfer Protocol (SFTP) server from <code>OFFLINE</code> to <code>ONLINE</code>. It has no impact on an SFTP server that is already <code>ONLINE</code>. An <code>ONLINE</code> server can accept and process file transfer jobs.</p> <p>The state of <code>STARTING</code> indicates that the server is in an intermediate state, either not fully able to respond, or not fully online. The values of <code>START_FAILED</code> can indicate an error condition. </p> <p>No response is returned from this call.</p>" |
207 | 210 | }, |
|
216 | 219 | {"shape":"ServiceUnavailableException"}, |
217 | 220 | {"shape":"InternalServiceError"}, |
218 | 221 | {"shape":"InvalidRequestException"}, |
219 | | - {"shape":"ResourceNotFoundException"} |
| 222 | + {"shape":"ResourceNotFoundException"}, |
| 223 | + {"shape":"ThrottlingException"} |
220 | 224 | ], |
221 | 225 | "documentation":"<p>Changes the state of an SFTP server from <code>ONLINE</code> to <code>OFFLINE</code>. An <code>OFFLINE</code> server cannot accept and process file transfer jobs. Information tied to your server such as server and user properties are not affected by stopping your server. Stopping a server will not reduce or impact your Secure File Transfer Protocol (SFTP) endpoint billing.</p> <p>The state of <code>STOPPING</code> indicates that the server is in an intermediate state, either not fully able to respond, or not fully offline. The values of <code>STOP_FAILED</code> can indicate an error condition.</p> <p>No response is returned from this call.</p>" |
222 | 226 | }, |
|
230 | 234 | "errors":[ |
231 | 235 | {"shape":"ServiceUnavailableException"}, |
232 | 236 | {"shape":"InternalServiceError"}, |
233 | | - {"shape":"InvalidRequestException"} |
| 237 | + {"shape":"InvalidRequestException"}, |
| 238 | + {"shape":"ResourceNotFoundException"} |
234 | 239 | ], |
235 | 240 | "documentation":"<p>Attaches a key-value pair to a resource, as identified by its Amazon Resource Name (ARN). Resources are users, servers, roles, and other entities.</p> <p>There is no response returned from this call.</p>" |
236 | 241 | }, |
|
260 | 265 | "errors":[ |
261 | 266 | {"shape":"ServiceUnavailableException"}, |
262 | 267 | {"shape":"InternalServiceError"}, |
263 | | - {"shape":"InvalidRequestException"} |
| 268 | + {"shape":"InvalidRequestException"}, |
| 269 | + {"shape":"ResourceNotFoundException"} |
264 | 270 | ], |
265 | 271 | "documentation":"<p>Detaches a key-value pair from a resource, as identified by its Amazon Resource Name (ARN). Resources are users, servers, roles, and other entities.</p> <p>No response is returned from this call.</p>" |
266 | 272 | }, |
|
276 | 282 | {"shape":"ServiceUnavailableException"}, |
277 | 283 | {"shape":"InternalServiceError"}, |
278 | 284 | {"shape":"InvalidRequestException"}, |
279 | | - {"shape":"ResourceNotFoundException"} |
| 285 | + {"shape":"ResourceExistsException"}, |
| 286 | + {"shape":"ResourceNotFoundException"}, |
| 287 | + {"shape":"ThrottlingException"} |
280 | 288 | ], |
281 | 289 | "documentation":"<p>Updates the server properties after that server has been created.</p> <p>The <code>UpdateServer</code> call returns the <code>ServerId</code> of the Secure File Transfer Protocol (SFTP) server you updated.</p>" |
282 | 290 | }, |
|
292 | 300 | {"shape":"ServiceUnavailableException"}, |
293 | 301 | {"shape":"InternalServiceError"}, |
294 | 302 | {"shape":"InvalidRequestException"}, |
295 | | - {"shape":"ResourceNotFoundException"} |
| 303 | + {"shape":"ResourceNotFoundException"}, |
| 304 | + {"shape":"ThrottlingException"} |
296 | 305 | ], |
297 | 306 | "documentation":"<p>Assigns new properties to a user. Parameters you pass modify any or all of the following: the home directory, role, and policy for the <code>UserName</code> and <code>ServerId</code> you specify.</p> <p>The response returns the <code>ServerId</code> and the <code>UserName</code> for the updated user.</p>" |
298 | 307 | } |
|
301 | 310 | "Arn":{ |
302 | 311 | "type":"string", |
303 | 312 | "max":1600, |
304 | | - "min":20 |
| 313 | + "min":20, |
| 314 | + "pattern":"arn:.*" |
305 | 315 | }, |
306 | 316 | "CreateServerRequest":{ |
307 | 317 | "type":"structure", |
|
316 | 326 | }, |
317 | 327 | "HostKey":{ |
318 | 328 | "shape":"HostKey", |
319 | | - "documentation":"<p>The RSA private key as generated by the <code>ssh-keygen -N \"\" -f my-new-server-key</code> command.</p> <important> <p>If you aren't planning to migrate existing users from an existing SFTP server to a new AWS SFTP server, don't update the host key. Accidentally changing a server's host key can be disruptive.</p> </important> <p> For more information, see \"https://docs.aws.amazon.com/transfer/latest/userguide/change-host-key\" in the <i>AWS SFTP User Guide.</i> </p>" |
| 329 | + "documentation":"<p>The RSA private key as generated by the <code>ssh-keygen -N \"\" -f my-new-server-key</code> command.</p> <important> <p>If you aren't planning to migrate existing users from an existing SFTP server to a new AWS SFTP server, don't update the host key. Accidentally changing a server's host key can be disruptive.</p> </important> <p> For more information, see \"https://alpha-docs-aws.amazon.com/transfer/latest/userguide/configuring-servers.html#change-host-key\" in the <i>AWS SFTP User Guide.</i> </p>" |
320 | 330 | }, |
321 | 331 | "IdentityProviderDetails":{ |
322 | 332 | "shape":"IdentityProviderDetails", |
|
356 | 366 | "members":{ |
357 | 367 | "HomeDirectory":{ |
358 | 368 | "shape":"HomeDirectory", |
359 | | - "documentation":"<p>The landing directory (folder) for a user when they log in to the server using their SFTP client. An example is <code>/home/<i>username</i> </code>.</p>" |
| 369 | + "documentation":"<p>The landing directory (folder) for a user when they log in to the server using their SFTP client. </p> <p>An example is <<code>your-Amazon-S3-bucket-name>/home/username</code>.</p>" |
| 370 | + }, |
| 371 | + "HomeDirectoryType":{ |
| 372 | + "shape":"HomeDirectoryType", |
| 373 | + "documentation":"<p>The type of landing directory (folder) you want your users' home directory to be when they log into the SFTP server. If you set it to <code>PATH</code>, the user will see the absolute Amazon S3 bucket paths as is in their SFTP clients. If you set it <code>LOGICAL</code>, you will need to provide mappings in the <code>HomeDirectoryMappings</code> for how you want to make S3 paths visible to your user.</p>" |
| 374 | + }, |
| 375 | + "HomeDirectoryMappings":{ |
| 376 | + "shape":"HomeDirectoryMappings", |
| 377 | + "documentation":"<p>Logical directory mappings that specify what S3 paths and keys should be visible to your user and how you want to make them visible. You will need to specify the \"<code>Entry</code>\" and \"<code>Target</code>\" pair, where <code>Entry</code> shows how the path is made visible and <code>Target</code> is the actual S3 path. If you only specify a target, it will be displayed as is. You will need to also make sure that your AWS IAM Role provides access to paths in <code>Target</code>. The following is an example.</p> <p> <code>'[ \"/bucket2/documentation\", { \"Entry\": \"your-personal-report.pdf\", \"Target\": \"/bucket3/customized-reports/${transfer:UserName}.pdf\" } ]'</code> </p> <p>In most cases, you can use this value instead of the scope down policy to lock your user down to the designated home directory (\"chroot\"). To do this, you can set <code>Entry</code> to '/' and set <code>Target</code> to the HomeDirectory parameter value. </p>" |
360 | 378 | }, |
361 | 379 | "Policy":{ |
362 | 380 | "shape":"Policy", |
|
566 | 584 | }, |
567 | 585 | "HomeDirectory":{ |
568 | 586 | "shape":"HomeDirectory", |
569 | | - "documentation":"<p>This property specifies the landing directory (or folder), which is the location that files are written to or read from in an Amazon S3 bucket for the described user. An example is <code>/<i>bucket_name</i>/home/<i>username</i> </code>.</p>" |
| 587 | + "documentation":"<p>This property specifies the landing directory (or folder), which is the location that files are written to or read from in an Amazon S3 bucket for the described user. An example is <code>/<i>your s3 bucket name</i>/home/<i>username</i> </code>.</p>" |
| 588 | + }, |
| 589 | + "HomeDirectoryMappings":{ |
| 590 | + "shape":"HomeDirectoryMappings", |
| 591 | + "documentation":"<p>Logical directory mappings that you specified for what S3 paths and keys should be visible to your user and how you want to make them visible. You will need to specify the \"<code>Entry</code>\" and \"<code>Target</code>\" pair, where <code>Entry</code> shows how the path is made visible and <code>Target</code> is the actual S3 path. If you only specify a target, it will be displayed as is. You will need to also make sure that your AWS IAM Role provides access to paths in <code>Target</code>.</p> <p>In most cases, you can use this value instead of the scope down policy to lock your user down to the designated home directory (\"chroot\"). To do this, you can set <code>Entry</code> to '/' and set <code>Target</code> to the HomeDirectory parameter value. </p> <p>In most cases, you can use this value instead of the scope down policy to lock your user down to the designated home directory (\"chroot\"). To do this, you can set <code>Entry</code> to '/' and set <code>Target</code> to the HomeDirectory parameter value.</p>" |
| 592 | + }, |
| 593 | + "HomeDirectoryType":{ |
| 594 | + "shape":"HomeDirectoryType", |
| 595 | + "documentation":"<p>The type of landing directory (folder) you mapped for your users' to see when they log into the SFTP server. If you set it to <code>PATH</code>, the user will see the absolute Amazon S3 bucket paths as is in their SFTP clients. If you set it <code>LOGICAL</code>, you will need to provide mappings in the <code>HomeDirectoryMappings</code> for how you want to make S3 paths visible to your user.</p>" |
570 | 596 | }, |
571 | 597 | "Policy":{ |
572 | 598 | "shape":"Policy", |
|
613 | 639 | "max":1024, |
614 | 640 | "pattern":"^$|/.*" |
615 | 641 | }, |
| 642 | + "HomeDirectoryMapEntry":{ |
| 643 | + "type":"structure", |
| 644 | + "required":[ |
| 645 | + "Entry", |
| 646 | + "Target" |
| 647 | + ], |
| 648 | + "members":{ |
| 649 | + "Entry":{ |
| 650 | + "shape":"MapEntry", |
| 651 | + "documentation":"<p>Represents an entry and a target for <code>HomeDirectoryMappings</code>.</p>" |
| 652 | + }, |
| 653 | + "Target":{ |
| 654 | + "shape":"MapTarget", |
| 655 | + "documentation":"<p>Represents the map target that is used in a <code>HomeDirectorymapEntry</code>.</p>" |
| 656 | + } |
| 657 | + }, |
| 658 | + "documentation":"<p>Represents an object that contains entries and a targets for <code>HomeDirectoryMappings</code>.</p>" |
| 659 | + }, |
| 660 | + "HomeDirectoryMappings":{ |
| 661 | + "type":"list", |
| 662 | + "member":{"shape":"HomeDirectoryMapEntry"}, |
| 663 | + "max":50, |
| 664 | + "min":1 |
| 665 | + }, |
| 666 | + "HomeDirectoryType":{ |
| 667 | + "type":"string", |
| 668 | + "enum":[ |
| 669 | + "PATH", |
| 670 | + "LOGICAL" |
| 671 | + ] |
| 672 | + }, |
616 | 673 | "HostKey":{ |
617 | 674 | "type":"string", |
618 | 675 | "max":4096, |
|
866 | 923 | "shape":"HomeDirectory", |
867 | 924 | "documentation":"<p>This value specifies the location that files are written to or read from an Amazon S3 bucket for the user you specify by their ARN.</p>" |
868 | 925 | }, |
| 926 | + "HomeDirectoryType":{ |
| 927 | + "shape":"HomeDirectoryType", |
| 928 | + "documentation":"<p>The type of landing directory (folder) you mapped for your users' home directory. If you set it to <code>PATH</code>, the user will see the absolute Amazon S3 bucket paths as is in their SFTP clients. If you set it <code>LOGICAL</code>, you will need to provide mappings in the <code>HomeDirectoryMappings</code> for how you want to make S3 paths visible to your user.</p>" |
| 929 | + }, |
869 | 930 | "Role":{ |
870 | 931 | "shape":"Role", |
871 | 932 | "documentation":"<p>The role in use by this user. A <i>role</i> is an AWS Identity and Access Management (IAM) entity that, in this case, allows the SFTP server to act on a user's behalf. It allows the server to inherit the trust relationship that enables that user to perform file operations to their Amazon S3 bucket.</p>" |
|
885 | 946 | "type":"list", |
886 | 947 | "member":{"shape":"ListedUser"} |
887 | 948 | }, |
| 949 | + "MapEntry":{ |
| 950 | + "type":"string", |
| 951 | + "max":1024, |
| 952 | + "pattern":"^/.*" |
| 953 | + }, |
| 954 | + "MapTarget":{ |
| 955 | + "type":"string", |
| 956 | + "max":1024, |
| 957 | + "pattern":"^/.*" |
| 958 | + }, |
888 | 959 | "MaxResults":{ |
889 | 960 | "type":"integer", |
890 | 961 | "max":1000, |
|
898 | 969 | }, |
899 | 970 | "NullableRole":{ |
900 | 971 | "type":"string", |
| 972 | + "max":2048, |
901 | 973 | "pattern":"^$|arn:.*role/.*" |
902 | 974 | }, |
903 | | - "Policy":{"type":"string"}, |
| 975 | + "Policy":{ |
| 976 | + "type":"string", |
| 977 | + "max":2048 |
| 978 | + }, |
904 | 979 | "Resource":{"type":"string"}, |
905 | 980 | "ResourceExistsException":{ |
906 | 981 | "type":"structure", |
|
934 | 1009 | }, |
935 | 1010 | "ResourceType":{"type":"string"}, |
936 | 1011 | "Response":{"type":"string"}, |
| 1012 | + "RetryAfterSeconds":{"type":"string"}, |
937 | 1013 | "Role":{ |
938 | 1014 | "type":"string", |
| 1015 | + "max":2048, |
| 1016 | + "min":20, |
939 | 1017 | "pattern":"arn:.*role/.*" |
940 | 1018 | }, |
941 | 1019 | "ServerId":{ |
942 | 1020 | "type":"string", |
| 1021 | + "max":19, |
| 1022 | + "min":19, |
943 | 1023 | "pattern":"^s-([0-9a-f]{17})$" |
944 | 1024 | }, |
945 | 1025 | "ServiceErrorMessage":{"type":"string"}, |
|
984 | 1064 | "SshPublicKeyCount":{"type":"integer"}, |
985 | 1065 | "SshPublicKeyId":{ |
986 | 1066 | "type":"string", |
| 1067 | + "max":21, |
| 1068 | + "min":21, |
987 | 1069 | "pattern":"^key-[0-9a-f]{17}$" |
988 | 1070 | }, |
989 | 1071 | "SshPublicKeys":{ |
|
1042 | 1124 | }, |
1043 | 1125 | "documentation":"<p>Creates a key-value pair for a specific resource. Tags are metadata that you can use to search for and group a resource for various purposes. You can apply tags to servers, users, and roles. A tag key can take more than one value. For example, to group servers for accounting purposes, you might create a tag called <code>Group</code> and assign the values <code>Research</code> and <code>Accounting</code> to that group.</p>" |
1044 | 1126 | }, |
1045 | | - "TagKey":{"type":"string"}, |
| 1127 | + "TagKey":{ |
| 1128 | + "type":"string", |
| 1129 | + "max":128 |
| 1130 | + }, |
1046 | 1131 | "TagKeys":{ |
1047 | 1132 | "type":"list", |
1048 | 1133 | "member":{"shape":"TagKey"}, |
|
1066 | 1151 | } |
1067 | 1152 | } |
1068 | 1153 | }, |
1069 | | - "TagValue":{"type":"string"}, |
| 1154 | + "TagValue":{ |
| 1155 | + "type":"string", |
| 1156 | + "max":256 |
| 1157 | + }, |
1070 | 1158 | "Tags":{ |
1071 | 1159 | "type":"list", |
1072 | 1160 | "member":{"shape":"Tag"}, |
|
1119 | 1207 | } |
1120 | 1208 | } |
1121 | 1209 | }, |
| 1210 | + "ThrottlingException":{ |
| 1211 | + "type":"structure", |
| 1212 | + "members":{ |
| 1213 | + "RetryAfterSeconds":{"shape":"RetryAfterSeconds"} |
| 1214 | + }, |
| 1215 | + "documentation":"<p>The request was denied due to request throttling.</p> <p> HTTP Status Code: 400</p>", |
| 1216 | + "exception":true |
| 1217 | + }, |
1122 | 1218 | "UntagResourceRequest":{ |
1123 | 1219 | "type":"structure", |
1124 | 1220 | "required":[ |
|
1185 | 1281 | "members":{ |
1186 | 1282 | "HomeDirectory":{ |
1187 | 1283 | "shape":"HomeDirectory", |
1188 | | - "documentation":"<p>A parameter that specifies the landing directory (folder) for a user when they log in to the server using their client. An example is <code>/home/<i>username</i> </code>.</p>" |
| 1284 | + "documentation":"<p>A parameter that specifies the landing directory (folder) for a user when they log in to the server using their client. </p> <p>An example is <code><your-Amazon-S3-bucket-name>/home/username</code>.</p>" |
| 1285 | + }, |
| 1286 | + "HomeDirectoryType":{ |
| 1287 | + "shape":"HomeDirectoryType", |
| 1288 | + "documentation":"<p>The type of landing directory (folder) you want your users' home directory to be when they log into the SFTP serve. If you set it to <code>PATH</code>, the user will see the absolute Amazon S3 bucket paths as is in their SFTP clients. If you set it <code>LOGICAL</code>, you will need to provide mappings in the <code>HomeDirectoryMappings</code> for how you want to make S3 paths visible to your user.</p>" |
| 1289 | + }, |
| 1290 | + "HomeDirectoryMappings":{ |
| 1291 | + "shape":"HomeDirectoryMappings", |
| 1292 | + "documentation":"<p>Logical directory mappings that specify what S3 paths and keys should be visible to your user and how you want to make them visible. You will need to specify the \"<code>Entry</code>\" and \"<code>Target</code>\" pair, where <code>Entry</code> shows how the path is made visible and <code>Target</code> is the actual S3 path. If you only specify a target, it will be displayed as is. You will need to also make sure that your AWS IAM Role provides access to paths in <code>Target</code>. The following is an example.</p> <p> <code>'[ \"/bucket2/documentation\", { \"Entry\": \"your-personal-report.pdf\", \"Target\": \"/bucket3/customized-reports/${transfer:UserName}.pdf\" } ]'</code> </p> <p>In most cases, you can use this value instead of the scope down policy to lock your user down to the designated home directory (\"chroot\"). To do this, you can set <code>Entry</code> to '/' and set <code>Target</code> to the HomeDirectory parameter value. </p> <p> </p>" |
1189 | 1293 | }, |
1190 | 1294 | "Policy":{ |
1191 | 1295 | "shape":"Policy", |
|
1223 | 1327 | }, |
1224 | 1328 | "documentation":"<p> <code>UpdateUserResponse</code> returns the user name and server identifier for the request to update a user's properties.</p>" |
1225 | 1329 | }, |
1226 | | - "Url":{"type":"string"}, |
| 1330 | + "Url":{ |
| 1331 | + "type":"string", |
| 1332 | + "max":255 |
| 1333 | + }, |
1227 | 1334 | "UserCount":{"type":"integer"}, |
1228 | 1335 | "UserName":{ |
1229 | 1336 | "type":"string", |
| 1337 | + "max":32, |
| 1338 | + "min":3, |
1230 | 1339 | "pattern":"^[a-zA-Z0-9_][a-zA-Z0-9_-]{2,31}$" |
1231 | 1340 | }, |
1232 | 1341 | "UserPassword":{ |
1233 | 1342 | "type":"string", |
| 1343 | + "max":2048, |
1234 | 1344 | "sensitive":true |
1235 | 1345 | }, |
1236 | 1346 | "VpcEndpointId":{ |
1237 | 1347 | "type":"string", |
| 1348 | + "max":22, |
| 1349 | + "min":22, |
1238 | 1350 | "pattern":"^vpce-[0-9a-f]{17}$" |
1239 | 1351 | } |
1240 | 1352 | }, |
|
0 commit comments