docs(client-sts): Documentation updates for AWS Security Token Service.

Author: awstools

clients/client-sts/src/STS.ts

@@ -65,9 +65,9 @@ export class STS extends STSClient {
    *          operations.</p>
    *          <p>(Optional) You can pass inline or managed <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#policies_session">session policies</a> to
    *          this operation. You can pass a single JSON policy document to use as an inline session
-   *          policy. You can also specify up to 10 managed policies to use as managed session policies.
-   *          The plaintext that you use for both inline and managed session policies can't exceed 2,048
-   *          characters. Passing policies to this operation returns new
+   *          policy. You can also specify up to 10 managed policy Amazon Resource Names (ARNs) to use as
+   *          managed session policies. The plaintext that you use for both inline and managed session
+   *          policies can't exceed 2,048 characters. Passing policies to this operation returns new
    *          temporary credentials. The resulting session's permissions are the intersection of the
    *          role's identity-based policy and the session policies. You can use the role's temporary
    *          credentials in subsequent Amazon Web Services API calls to access resources in the account that owns
@@ -210,9 +210,9 @@ export class STS extends STSClient {
    *          operations.</p>
    *          <p>(Optional) You can pass inline or managed <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#policies_session">session policies</a> to
    *          this operation. You can pass a single JSON policy document to use as an inline session
-   *          policy. You can also specify up to 10 managed policies to use as managed session policies.
-   *          The plaintext that you use for both inline and managed session policies can't exceed 2,048
-   *          characters. Passing policies to this operation returns new
+   *          policy. You can also specify up to 10 managed policy Amazon Resource Names (ARNs) to use as
+   *          managed session policies. The plaintext that you use for both inline and managed session
+   *          policies can't exceed 2,048 characters. Passing policies to this operation returns new
    *          temporary credentials. The resulting session's permissions are the intersection of the
    *          role's identity-based policy and the session policies. You can use the role's temporary
    *          credentials in subsequent Amazon Web Services API calls to access resources in the account that owns
@@ -244,12 +244,11 @@ export class STS extends STSClient {
    *             and STS Character Limits</a> in the <i>IAM User Guide</i>.</p>
    *
    *          <note>
-   *             <p>An Amazon Web Services conversion compresses the passed session policies and session tags into a
-   *             packed binary format that has a separate limit. Your request can fail for this limit
-   *             even if your plaintext meets the other requirements. The <code>PackedPolicySize</code>
-   *             response element indicates by percentage how close the policies and tags for your
-   *             request are to the upper size limit.
-   *             </p>
+   *             <p>An Amazon Web Services conversion compresses the passed inline session policy, managed policy ARNs,
+   *             and session tags into a packed binary format that has a separate limit. Your request can
+   *             fail for this limit even if your plaintext meets the other requirements. The
+   *                <code>PackedPolicySize</code> response element indicates by percentage how close the
+   *             policies and tags for your request are to the upper size limit.</p>
    *          </note>
    *
    *          <p>You can pass a session tag with the same key as a tag that is attached to the role. When
@@ -376,9 +375,9 @@ export class STS extends STSClient {
    *          operations.</p>
    *          <p>(Optional) You can pass inline or managed <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#policies_session">session policies</a> to
    *          this operation. You can pass a single JSON policy document to use as an inline session
-   *          policy. You can also specify up to 10 managed policies to use as managed session policies.
-   *          The plaintext that you use for both inline and managed session policies can't exceed 2,048
-   *          characters. Passing policies to this operation returns new
+   *          policy. You can also specify up to 10 managed policy Amazon Resource Names (ARNs) to use as
+   *          managed session policies. The plaintext that you use for both inline and managed session
+   *          policies can't exceed 2,048 characters. Passing policies to this operation returns new
    *          temporary credentials. The resulting session's permissions are the intersection of the
    *          role's identity-based policy and the session policies. You can use the role's temporary
    *          credentials in subsequent Amazon Web Services API calls to access resources in the account that owns
@@ -399,12 +398,11 @@ export class STS extends STSClient {
    *             and STS Character Limits</a> in the <i>IAM User Guide</i>.</p>
    *
    *          <note>
-   *             <p>An Amazon Web Services conversion compresses the passed session policies and session tags into a
-   *             packed binary format that has a separate limit. Your request can fail for this limit
-   *             even if your plaintext meets the other requirements. The <code>PackedPolicySize</code>
-   *             response element indicates by percentage how close the policies and tags for your
-   *             request are to the upper size limit.
-   *             </p>
+   *             <p>An Amazon Web Services conversion compresses the passed inline session policy, managed policy ARNs,
+   *             and session tags into a packed binary format that has a separate limit. Your request can
+   *             fail for this limit even if your plaintext meets the other requirements. The
+   *                <code>PackedPolicySize</code> response element indicates by percentage how close the
+   *             policies and tags for your request are to the upper size limit.</p>
    *          </note>
    *
    *          <p>You can pass a session tag with the same key as a tag that is attached to the role. When
@@ -695,9 +693,9 @@ export class STS extends STSClient {
    *          </ul>
    *          <p>You must pass an inline or managed <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#policies_session">session policy</a> to
    *          this operation. You can pass a single JSON policy document to use as an inline session
-   *          policy. You can also specify up to 10 managed policies to use as managed session policies.
-   *          The plaintext that you use for both inline and managed session policies can't exceed 2,048
-   *          characters.</p>
+   *          policy. You can also specify up to 10 managed policy Amazon Resource Names (ARNs) to use as
+   *          managed session policies. The plaintext that you use for both inline and managed session
+   *          policies can't exceed 2,048 characters.</p>
    *          <p>Though the session policy parameters are optional, if you do not pass a policy, then the
    *          resulting federated user session has no permissions. When you pass session policies, the
    *          session permissions are the intersection of the IAM user policies and the session

clients/client-sts/src/commands/AssumeRoleCommand.ts

@@ -44,9 +44,9 @@ export interface AssumeRoleCommandOutput extends AssumeRoleResponse, __MetadataB
  *          operations.</p>
  *          <p>(Optional) You can pass inline or managed <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#policies_session">session policies</a> to
  *          this operation. You can pass a single JSON policy document to use as an inline session
- *          policy. You can also specify up to 10 managed policies to use as managed session policies.
- *          The plaintext that you use for both inline and managed session policies can't exceed 2,048
- *          characters. Passing policies to this operation returns new
+ *          policy. You can also specify up to 10 managed policy Amazon Resource Names (ARNs) to use as
+ *          managed session policies. The plaintext that you use for both inline and managed session
+ *          policies can't exceed 2,048 characters. Passing policies to this operation returns new
  *          temporary credentials. The resulting session's permissions are the intersection of the
  *          role's identity-based policy and the session policies. You can use the role's temporary
  *          credentials in subsequent Amazon Web Services API calls to access resources in the account that owns

clients/client-sts/src/commands/AssumeRoleWithSAMLCommand.ts

@@ -76,9 +76,9 @@ export interface AssumeRoleWithSAMLCommandOutput extends AssumeRoleWithSAMLRespo
  *          operations.</p>
  *          <p>(Optional) You can pass inline or managed <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#policies_session">session policies</a> to
  *          this operation. You can pass a single JSON policy document to use as an inline session
- *          policy. You can also specify up to 10 managed policies to use as managed session policies.
- *          The plaintext that you use for both inline and managed session policies can't exceed 2,048
- *          characters. Passing policies to this operation returns new
+ *          policy. You can also specify up to 10 managed policy Amazon Resource Names (ARNs) to use as
+ *          managed session policies. The plaintext that you use for both inline and managed session
+ *          policies can't exceed 2,048 characters. Passing policies to this operation returns new
  *          temporary credentials. The resulting session's permissions are the intersection of the
  *          role's identity-based policy and the session policies. You can use the role's temporary
  *          credentials in subsequent Amazon Web Services API calls to access resources in the account that owns
@@ -110,12 +110,11 @@ export interface AssumeRoleWithSAMLCommandOutput extends AssumeRoleWithSAMLRespo
  *             and STS Character Limits</a> in the <i>IAM User Guide</i>.</p>
  *
  *          <note>
- *             <p>An Amazon Web Services conversion compresses the passed session policies and session tags into a
- *             packed binary format that has a separate limit. Your request can fail for this limit
- *             even if your plaintext meets the other requirements. The <code>PackedPolicySize</code>
- *             response element indicates by percentage how close the policies and tags for your
- *             request are to the upper size limit.
- *             </p>
+ *             <p>An Amazon Web Services conversion compresses the passed inline session policy, managed policy ARNs,
+ *             and session tags into a packed binary format that has a separate limit. Your request can
+ *             fail for this limit even if your plaintext meets the other requirements. The
+ *                <code>PackedPolicySize</code> response element indicates by percentage how close the
+ *             policies and tags for your request are to the upper size limit.</p>
  *          </note>
  *
  *          <p>You can pass a session tag with the same key as a tag that is attached to the role. When

clients/client-sts/src/commands/AssumeRoleWithWebIdentityCommand.ts

@@ -79,9 +79,9 @@ export interface AssumeRoleWithWebIdentityCommandOutput extends AssumeRoleWithWe
  *          operations.</p>
  *          <p>(Optional) You can pass inline or managed <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#policies_session">session policies</a> to
  *          this operation. You can pass a single JSON policy document to use as an inline session
- *          policy. You can also specify up to 10 managed policies to use as managed session policies.
- *          The plaintext that you use for both inline and managed session policies can't exceed 2,048
- *          characters. Passing policies to this operation returns new
+ *          policy. You can also specify up to 10 managed policy Amazon Resource Names (ARNs) to use as
+ *          managed session policies. The plaintext that you use for both inline and managed session
+ *          policies can't exceed 2,048 characters. Passing policies to this operation returns new
  *          temporary credentials. The resulting session's permissions are the intersection of the
  *          role's identity-based policy and the session policies. You can use the role's temporary
  *          credentials in subsequent Amazon Web Services API calls to access resources in the account that owns
@@ -102,12 +102,11 @@ export interface AssumeRoleWithWebIdentityCommandOutput extends AssumeRoleWithWe
  *             and STS Character Limits</a> in the <i>IAM User Guide</i>.</p>
  *
  *          <note>
- *             <p>An Amazon Web Services conversion compresses the passed session policies and session tags into a
- *             packed binary format that has a separate limit. Your request can fail for this limit
- *             even if your plaintext meets the other requirements. The <code>PackedPolicySize</code>
- *             response element indicates by percentage how close the policies and tags for your
- *             request are to the upper size limit.
- *             </p>
+ *             <p>An Amazon Web Services conversion compresses the passed inline session policy, managed policy ARNs,
+ *             and session tags into a packed binary format that has a separate limit. Your request can
+ *             fail for this limit even if your plaintext meets the other requirements. The
+ *                <code>PackedPolicySize</code> response element indicates by percentage how close the
+ *             policies and tags for your request are to the upper size limit.</p>
  *          </note>
  *
  *          <p>You can pass a session tag with the same key as a tag that is attached to the role. When

clients/client-sts/src/commands/GetFederationTokenCommand.ts

@@ -75,9 +75,9 @@ export interface GetFederationTokenCommandOutput extends GetFederationTokenRespo
  *          </ul>
  *          <p>You must pass an inline or managed <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#policies_session">session policy</a> to
  *          this operation. You can pass a single JSON policy document to use as an inline session
- *          policy. You can also specify up to 10 managed policies to use as managed session policies.
- *          The plaintext that you use for both inline and managed session policies can't exceed 2,048
- *          characters.</p>
+ *          policy. You can also specify up to 10 managed policy Amazon Resource Names (ARNs) to use as
+ *          managed session policies. The plaintext that you use for both inline and managed session
+ *          policies can't exceed 2,048 characters.</p>
  *          <p>Though the session policy parameters are optional, if you do not pass a policy, then the
  *          resulting federated user session has no permissions. When you pass session policies, the
  *          session permissions are the intersection of the IAM user policies and the session

clients/client-sts/src/endpoint/ruleset.ts

@@ -855,8 +855,8 @@ export const ruleSet: RuleSetObject = {
                   authSchemes: [
                     {
                       name: "sigv4",
-                      signingName: "sts",
                       signingRegion: "us-east-1",
+                      signingName: "sts",
                     },
                   ],
                 },