Creates an archive of events with the specified settings. When you create an archive, incoming events might not immediately start being sent to the archive. Allow a short period of time for changes to take effect. If you do not specify a pattern to filter events sent to the archive, all events are sent to the archive except replayed events. Replayed events are not sent to an archive.
" + "documentation":"Creates an archive of events with the specified settings. When you create an archive, incoming events might not immediately start being sent to the archive. Allow a short period of time for changes to take effect. If you do not specify a pattern to filter events sent to the archive, all events are sent to the archive except replayed events. Replayed events are not sent to an archive.
Archives and schema discovery are not supported for event buses encrypted using a customer managed key. EventBridge returns an error if:
You call CreateArchive on an event bus set to use a customer managed key for encryption.
You call CreateDiscoverer on an event bus set to use a customer managed key for encryption.
You call UpdatedEventBus to set a customer managed key on an event bus with an archives or schema discovery enabled.
To enable archives or schema discovery on an event bus, choose to use an Amazon Web Services owned key. For more information, see Data encryption in EventBridge in the Amazon EventBridge User Guide.
Delete an existing global endpoint. For more information about global endpoints, see Making applications Regional-fault tolerant with global endpoints and event replication in the Amazon EventBridge User Guide.
" + "documentation":"Delete an existing global endpoint. For more information about global endpoints, see Making applications Regional-fault tolerant with global endpoints and event replication in the Amazon EventBridge User Guide .
" }, "DeleteEventBus":{ "name":"DeleteEventBus", @@ -332,7 +333,7 @@ {"shape":"ResourceNotFoundException"}, {"shape":"InternalException"} ], - "documentation":"Get the information about an existing global endpoint. For more information about global endpoints, see Making applications Regional-fault tolerant with global endpoints and event replication in the Amazon EventBridge User Guide.
" + "documentation":"Get the information about an existing global endpoint. For more information about global endpoints, see Making applications Regional-fault tolerant with global endpoints and event replication in the Amazon EventBridge User Guide .
" }, "DescribeEventBus":{ "name":"DescribeEventBus", @@ -487,7 +488,7 @@ "errors":[ {"shape":"InternalException"} ], - "documentation":"List the global endpoints associated with this account. For more information about global endpoints, see Making applications Regional-fault tolerant with global endpoints and event replication in the Amazon EventBridge User Guide.
" + "documentation":"List the global endpoints associated with this account. For more information about global endpoints, see Making applications Regional-fault tolerant with global endpoints and event replication in the Amazon EventBridge User Guide .
" }, "ListEventBuses":{ "name":"ListEventBuses", @@ -625,7 +626,7 @@ "errors":[ {"shape":"InternalException"} ], - "documentation":"Sends custom events to Amazon EventBridge so that they can be matched to rules.
The maximum size for a PutEvents event entry is 256 KB. Entry size is calculated including the event and any necessary characters and keys of the JSON representation of the event. To learn more, see Calculating PutEvents event entry size in the Amazon EventBridge User Guide
PutEvents accepts the data in JSON format. For the JSON number (integer) data type, the constraints are: a minimum value of -9,223,372,036,854,775,808 and a maximum value of 9,223,372,036,854,775,807.
PutEvents will only process nested JSON up to 1100 levels deep.
Sends custom events to Amazon EventBridge so that they can be matched to rules.
The maximum size for a PutEvents event entry is 256 KB. Entry size is calculated including the event and any necessary characters and keys of the JSON representation of the event. To learn more, see Calculating PutEvents event entry size in the Amazon EventBridge User Guide
PutEvents accepts the data in JSON format. For the JSON number (integer) data type, the constraints are: a minimum value of -9,223,372,036,854,775,808 and a maximum value of 9,223,372,036,854,775,807.
PutEvents will only process nested JSON up to 1100 levels deep.
Adds the specified targets to the specified rule, or updates the targets if they are already associated with the rule.
Targets are the resources that are invoked when a rule is triggered.
The maximum number of entries per request is 10.
Each rule can have up to five (5) targets associated with it at one time.
For a list of services you can configure as targets for events, see EventBridge targets in the Amazon EventBridge User Guide.
Creating rules with built-in targets is supported only in the Amazon Web Services Management Console. The built-in targets are:
Amazon EBS CreateSnapshot API call
Amazon EC2 RebootInstances API call
Amazon EC2 StopInstances API call
Amazon EC2 TerminateInstances API call
For some target types, PutTargets provides target-specific parameters. If the target is a Kinesis data stream, you can optionally specify which shard the event goes to by using the KinesisParameters argument. To invoke a command on multiple EC2 instances with one rule, you can use the RunCommandParameters field.
To be able to make API calls against the resources that you own, Amazon EventBridge needs the appropriate permissions:
For Lambda and Amazon SNS resources, EventBridge relies on resource-based policies.
For EC2 instances, Kinesis Data Streams, Step Functions state machines and API Gateway APIs, EventBridge relies on IAM roles that you specify in the RoleARN argument in PutTargets.
For more information, see Authentication and Access Control in the Amazon EventBridge User Guide.
If another Amazon Web Services account is in the same region and has granted you permission (using PutPermission), you can send events to that account. Set that account's event bus as a target of the rules in your account. To send the matched events to the other account, specify that account's event bus as the Arn value when you run PutTargets. If your account sends events to another account, your account is charged for each sent event. Each event sent to another account is charged as a custom event. The account receiving the event is not charged. For more information, see Amazon EventBridge Pricing.
Input, InputPath, and InputTransformer are not available with PutTarget if the target is an event bus of a different Amazon Web Services account.
If you are setting the event bus of another account as the target, and that account granted permission to your account through an organization instead of directly by the account ID, then you must specify a RoleArn with proper permissions in the Target structure. For more information, see Sending and Receiving Events Between Amazon Web Services Accounts in the Amazon EventBridge User Guide.
If you have an IAM role on a cross-account event bus target, a PutTargets call without a role on the same target (same Id and Arn) will not remove the role.
For more information about enabling cross-account events, see PutPermission.
Input, InputPath, and InputTransformer are mutually exclusive and optional parameters of a target. When a rule is triggered due to a matched event:
If none of the following arguments are specified for a target, then the entire event is passed to the target in JSON format (unless the target is Amazon EC2 Run Command or Amazon ECS task, in which case nothing from the event is passed to the target).
If Input is specified in the form of valid JSON, then the matched event is overridden with this constant.
If InputPath is specified in the form of JSONPath (for example, $.detail), then only the part of the event specified in the path is passed to the target (for example, only the detail part of the event is passed).
If InputTransformer is specified, then one or more specified JSONPaths are extracted from the event and used as values in a template that you specify as the input to the target.
When you specify InputPath or InputTransformer, you must use JSON dot notation, not bracket notation.
When you add targets to a rule and the associated rule triggers soon after, new or updated targets might not be immediately invoked. Allow a short period of time for changes to take effect.
This action can partially fail if too many requests are made at the same time. If that happens, FailedEntryCount is non-zero in the response and each entry in FailedEntries provides the ID of the failed target and the error code.
Adds the specified targets to the specified rule, or updates the targets if they are already associated with the rule.
Targets are the resources that are invoked when a rule is triggered.
The maximum number of entries per request is 10.
Each rule can have up to five (5) targets associated with it at one time.
For a list of services you can configure as targets for events, see EventBridge targets in the Amazon EventBridge User Guide .
Creating rules with built-in targets is supported only in the Amazon Web Services Management Console. The built-in targets are:
Amazon EBS CreateSnapshot API call
Amazon EC2 RebootInstances API call
Amazon EC2 StopInstances API call
Amazon EC2 TerminateInstances API call
For some target types, PutTargets provides target-specific parameters. If the target is a Kinesis data stream, you can optionally specify which shard the event goes to by using the KinesisParameters argument. To invoke a command on multiple EC2 instances with one rule, you can use the RunCommandParameters field.
To be able to make API calls against the resources that you own, Amazon EventBridge needs the appropriate permissions:
For Lambda and Amazon SNS resources, EventBridge relies on resource-based policies.
For EC2 instances, Kinesis Data Streams, Step Functions state machines and API Gateway APIs, EventBridge relies on IAM roles that you specify in the RoleARN argument in PutTargets.
For more information, see Authentication and Access Control in the Amazon EventBridge User Guide .
If another Amazon Web Services account is in the same region and has granted you permission (using PutPermission), you can send events to that account. Set that account's event bus as a target of the rules in your account. To send the matched events to the other account, specify that account's event bus as the Arn value when you run PutTargets. If your account sends events to another account, your account is charged for each sent event. Each event sent to another account is charged as a custom event. The account receiving the event is not charged. For more information, see Amazon EventBridge Pricing.
Input, InputPath, and InputTransformer are not available with PutTarget if the target is an event bus of a different Amazon Web Services account.
If you are setting the event bus of another account as the target, and that account granted permission to your account through an organization instead of directly by the account ID, then you must specify a RoleArn with proper permissions in the Target structure. For more information, see Sending and Receiving Events Between Amazon Web Services Accounts in the Amazon EventBridge User Guide.
If you have an IAM role on a cross-account event bus target, a PutTargets call without a role on the same target (same Id and Arn) will not remove the role.
For more information about enabling cross-account events, see PutPermission.
Input, InputPath, and InputTransformer are mutually exclusive and optional parameters of a target. When a rule is triggered due to a matched event:
If none of the following arguments are specified for a target, then the entire event is passed to the target in JSON format (unless the target is Amazon EC2 Run Command or Amazon ECS task, in which case nothing from the event is passed to the target).
If Input is specified in the form of valid JSON, then the matched event is overridden with this constant.
If InputPath is specified in the form of JSONPath (for example, $.detail), then only the part of the event specified in the path is passed to the target (for example, only the detail part of the event is passed).
If InputTransformer is specified, then one or more specified JSONPaths are extracted from the event and used as values in a template that you specify as the input to the target.
When you specify InputPath or InputTransformer, you must use JSON dot notation, not bracket notation.
When you add targets to a rule and the associated rule triggers soon after, new or updated targets might not be immediately invoked. Allow a short period of time for changes to take effect.
This action can partially fail if too many requests are made at the same time. If that happens, FailedEntryCount is non-zero in the response and each entry in FailedEntries provides the ID of the failed target and the error code.
Update an existing endpoint. For more information about global endpoints, see Making applications Regional-fault tolerant with global endpoints and event replication in the Amazon EventBridge User Guide.
" + "documentation":"Update an existing endpoint. For more information about global endpoints, see Making applications Regional-fault tolerant with global endpoints and event replication in the Amazon EventBridge User Guide .
" + }, + "UpdateEventBus":{ + "name":"UpdateEventBus", + "http":{ + "method":"POST", + "requestUri":"/" + }, + "input":{"shape":"UpdateEventBusRequest"}, + "output":{"shape":"UpdateEventBusResponse"}, + "errors":[ + {"shape":"ResourceNotFoundException"}, + {"shape":"InternalException"}, + {"shape":"ConcurrentModificationException"}, + {"shape":"OperationDisabledException"} + ], + "documentation":"Updates the specified event bus.
" } }, "shapes":{ @@ -1823,6 +1840,15 @@ "shape":"EventSourceName", "documentation":"If you are creating a partner event bus, this specifies the partner event source that the new event bus will be matched with.
" }, + "Description":{ + "shape":"EventBusDescription", + "documentation":"The event bus description.
" + }, + "KmsKeyIdentifier":{ + "shape":"KmsKeyIdentifier", + "documentation":"The identifier of the KMS customer managed key for EventBridge to use, if you choose to use a customer managed key to encrypt events on this event bus. The identifier can be the key Amazon Resource Name (ARN), KeyId, key alias, or key alias ARN.
If you do not specify a customer managed key identifier, EventBridge uses an Amazon Web Services owned key to encrypt events on the event bus.
For more information, see Managing keys in the Key Management Service Developer Guide.
Archives and schema discovery are not supported for event buses encrypted using a customer managed key. EventBridge returns an error if:
You call CreateArchive on an event bus set to use a customer managed key for encryption.
You call CreateDiscoverer on an event bus set to use a customer managed key for encryption.
You call UpdatedEventBus to set a customer managed key on an event bus with an archives or schema discovery enabled.
To enable archives or schema discovery on an event bus, choose to use an Amazon Web Services owned key. For more information, see Data encryption in EventBridge in the Amazon EventBridge User Guide.
Tags to associate with the event bus.
" @@ -1835,7 +1861,16 @@ "EventBusArn":{ "shape":"String", "documentation":"The ARN of the new event bus.
" - } + }, + "Description":{ + "shape":"EventBusDescription", + "documentation":"The event bus description.
" + }, + "KmsKeyIdentifier":{ + "shape":"KmsKeyIdentifier", + "documentation":"The identifier of the KMS customer managed key for EventBridge to use to encrypt events on this event bus, if one has been specified.
For more information, see Data encryption in EventBridge in the Amazon EventBridge User Guide.
" + }, + "DeadLetterConfig":{"shape":"DeadLetterConfig"} } }, "CreatePartnerEventSourceRequest":{ @@ -1899,7 +1934,7 @@ "documentation":"The ARN of the SQS queue specified as the target for the dead-letter queue.
" } }, - "documentation":"A DeadLetterConfig object that contains information about a dead-letter queue configuration.
Configuration details of the Amazon SQS queue for EventBridge to use as a dead-letter queue (DLQ).
For more information, see Event retry policy and using dead-letter queues in the EventBridge User Guide.
" }, "DeauthorizeConnectionRequest":{ "type":"structure", @@ -2325,9 +2360,26 @@ "shape":"String", "documentation":"The Amazon Resource Name (ARN) of the account permitted to write events to the current account.
" }, + "Description":{ + "shape":"EventBusDescription", + "documentation":"The event bus description.
" + }, + "KmsKeyIdentifier":{ + "shape":"KmsKeyIdentifier", + "documentation":"The identifier of the KMS customer managed key for EventBridge to use to encrypt events on this event bus, if one has been specified.
For more information, see Data encryption in EventBridge in the Amazon EventBridge User Guide.
" + }, + "DeadLetterConfig":{"shape":"DeadLetterConfig"}, "Policy":{ "shape":"String", "documentation":"The policy that enables the external account to send events to your account.
" + }, + "CreationTime":{ + "shape":"Timestamp", + "documentation":"The time the event bus was created.
" + }, + "LastModifiedTime":{ + "shape":"Timestamp", + "documentation":"The time the event bus was last modified.
" } } }, @@ -2483,7 +2535,7 @@ }, "EventPattern":{ "shape":"EventPattern", - "documentation":"The event pattern. For more information, see Events and Event Patterns in the Amazon EventBridge User Guide.
" + "documentation":"The event pattern. For more information, see Events and Event Patterns in the Amazon EventBridge User Guide .
" }, "ScheduleExpression":{ "shape":"ScheduleExpression", @@ -2662,7 +2714,7 @@ "documentation":"The last time the endpoint was modified.
" } }, - "documentation":"A global endpoint used to improve your application's availability by making it regional-fault tolerant. For more information about global endpoints, see Making applications Regional-fault tolerant with global endpoints and event replication in the Amazon EventBridge User Guide.
" + "documentation":"A global endpoint used to improve your application's availability by making it regional-fault tolerant. For more information about global endpoints, see Making applications Regional-fault tolerant with global endpoints and event replication in the Amazon EventBridge User Guide .
" }, "EndpointArn":{ "type":"string", @@ -2745,13 +2797,29 @@ "shape":"String", "documentation":"The ARN of the event bus.
" }, + "Description":{ + "shape":"EventBusDescription", + "documentation":"The event bus description.
" + }, "Policy":{ "shape":"String", "documentation":"The permissions policy of the event bus, describing which other Amazon Web Services accounts can write events to this event bus.
" + }, + "CreationTime":{ + "shape":"Timestamp", + "documentation":"The time the event bus was created.
" + }, + "LastModifiedTime":{ + "shape":"Timestamp", + "documentation":"The time the event bus was last modified.
" } }, "documentation":"An event bus receives events from a source, uses rules to evaluate them, applies any configured input transformation, and routes them to the appropriate target(s). Your account's default event bus receives events from Amazon Web Services services. A custom event bus can receive events from your custom applications and services. A partner event bus receives events from an event source created by an SaaS partner. These events come from the partners services or applications.
" }, + "EventBusDescription":{ + "type":"string", + "max":512 + }, "EventBusList":{ "type":"list", "member":{"shape":"EventBus"} @@ -2988,6 +3056,10 @@ }, "documentation":"This object enables you to specify a JSON path to extract from the event and use as the partition key for the Amazon Kinesis data stream, so that you can control the shard to which the event goes. If you do not include this parameter, the default is to use the eventId as the partition key.
The event pattern. For more information, see Amazon EventBridge event patterns in the Amazon EventBridge User Guide.
" + "documentation":"The event pattern. For more information, see Amazon EventBridge event patterns in the Amazon EventBridge User Guide .
" }, "State":{ "shape":"RuleState", - "documentation":"Indicates whether the rule is enabled or disabled.
" + "documentation":"The state of the rule.
Valid values include:
DISABLED: The rule is disabled. EventBridge does not match any events against the rule.
ENABLED: The rule is enabled. EventBridge matches events against the rule, except for Amazon Web Services management events delivered through CloudTrail.
ENABLED_WITH_ALL_CLOUDTRAIL_MANAGEMENT_EVENTS: The rule is enabled for all events, including Amazon Web Services management events delivered through CloudTrail.
Management events provide visibility into management operations that are performed on resources in your Amazon Web Services account. These are also known as control plane operations. For more information, see Logging management events in the CloudTrail User Guide, and Filtering management events from Amazon Web Services services in the Amazon EventBridge User Guide .
This value is only valid for rules on the default event bus or custom event buses. It does not apply to partner event buses.
The event pattern of the rule. For more information, see Events and Event Patterns in the Amazon EventBridge User Guide.
" + "documentation":"The event pattern of the rule. For more information, see Events and Event Patterns in the Amazon EventBridge User Guide .
" }, "State":{ "shape":"RuleState", - "documentation":"The state of the rule.
" + "documentation":"The state of the rule.
Valid values include:
DISABLED: The rule is disabled. EventBridge does not match any events against the rule.
ENABLED: The rule is enabled. EventBridge matches events against the rule, except for Amazon Web Services management events delivered through CloudTrail.
ENABLED_WITH_ALL_CLOUDTRAIL_MANAGEMENT_EVENTS: The rule is enabled for all events, including Amazon Web Services management events delivered through CloudTrail.
Management events provide visibility into management operations that are performed on resources in your Amazon Web Services account. These are also known as control plane operations. For more information, see Logging management events in the CloudTrail User Guide, and Filtering management events from Amazon Web Services services in the Amazon EventBridge User Guide .
This value is only valid for rules on the default event bus or custom event buses. It does not apply to partner event buses.
The event pattern. For more information, see Events and Event Patterns in the Amazon EventBridge User Guide.
" + "documentation":"The event pattern. For more information, see Events and Event Patterns in the Amazon EventBridge User Guide .
" }, "Event":{ "shape":"String", @@ -5092,6 +5164,46 @@ "documentation":"The state of the endpoint you updated in this request.
" } } + }, + "UpdateEventBusRequest":{ + "type":"structure", + "members":{ + "Name":{ + "shape":"EventBusName", + "documentation":"The name of the event bus.
" + }, + "KmsKeyIdentifier":{ + "shape":"KmsKeyIdentifier", + "documentation":"The identifier of the KMS customer managed key for EventBridge to use, if you choose to use a customer managed key to encrypt events on this event bus. The identifier can be the key Amazon Resource Name (ARN), KeyId, key alias, or key alias ARN.
If you do not specify a customer managed key identifier, EventBridge uses an Amazon Web Services owned key to encrypt events on the event bus.
For more information, see Managing keys in the Key Management Service Developer Guide.
Archives and schema discovery are not supported for event buses encrypted using a customer managed key. EventBridge returns an error if:
You call CreateArchive on an event bus set to use a customer managed key for encryption.
You call CreateDiscoverer on an event bus set to use a customer managed key for encryption.
You call UpdatedEventBus to set a customer managed key on an event bus with an archives or schema discovery enabled.
To enable archives or schema discovery on an event bus, choose to use an Amazon Web Services owned key. For more information, see Data encryption in EventBridge in the Amazon EventBridge User Guide.
The event bus description.
" + }, + "DeadLetterConfig":{"shape":"DeadLetterConfig"} + } + }, + "UpdateEventBusResponse":{ + "type":"structure", + "members":{ + "Arn":{ + "shape":"String", + "documentation":"The event bus Amazon Resource Name (ARN).
" + }, + "Name":{ + "shape":"EventBusName", + "documentation":"The event bus name.
" + }, + "KmsKeyIdentifier":{ + "shape":"KmsKeyIdentifier", + "documentation":"The identifier of the KMS customer managed key for EventBridge to use to encrypt events on this event bus, if one has been specified.
For more information, see Data encryption in EventBridge in the Amazon EventBridge User Guide.
" + }, + "Description":{ + "shape":"EventBusDescription", + "documentation":"The event bus description.
" + }, + "DeadLetterConfig":{"shape":"DeadLetterConfig"} + } } }, "documentation":"Amazon EventBridge helps you to respond to state changes in your Amazon Web Services resources. When your resources change state, they automatically send events to an event stream. You can create rules that match selected events in the stream and route them to targets to take action. You can also use rules to take action on a predetermined schedule. For example, you can configure rules to:
Automatically invoke an Lambda function to update DNS entries when an event notifies you that Amazon EC2 instance enters the running state.
Direct specific API records from CloudTrail to an Amazon Kinesis data stream for detailed analysis of potential security or availability risks.
Periodically invoke a built-in target to create a snapshot of an Amazon EBS volume.
For more information about the features of Amazon EventBridge, see the Amazon EventBridge User Guide.
" diff --git a/botocore/data/vpc-lattice/2022-11-30/endpoint-rule-set-1.json b/botocore/data/vpc-lattice/2022-11-30/endpoint-rule-set-1.json index a5c3af9ab0..e23373ab49 100644 --- a/botocore/data/vpc-lattice/2022-11-30/endpoint-rule-set-1.json +++ b/botocore/data/vpc-lattice/2022-11-30/endpoint-rule-set-1.json @@ -40,7 +40,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ @@ -59,7 +58,6 @@ }, { "conditions": [], - "type": "tree", "rules": [ { "conditions": [ @@ -87,13 +85,14 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" } - ] + ], + "type": "tree" }, { "conditions": [], - "type": "tree", "rules": [ { "conditions": [ @@ -106,7 +105,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ @@ -120,7 +118,6 @@ "assign": "PartitionResult" } ], - "type": "tree", "rules": [ { "conditions": [ @@ -143,7 +140,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ @@ -178,11 +174,9 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [], - "type": "tree", "rules": [ { "conditions": [], @@ -193,16 +187,19 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" } - ] + ], + "type": "tree" }, { "conditions": [], "error": "FIPS and DualStack are enabled, but this partition does not support one or both", "type": "error" } - ] + ], + "type": "tree" }, { "conditions": [ @@ -216,14 +213,12 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ { "fn": "booleanEquals", "argv": [ - true, { "fn": "getAttr", "argv": [ @@ -232,15 +227,14 @@ }, "supportsFIPS" ] - } + }, + true ] } ], - "type": "tree", "rules": [ { "conditions": [], - "type": "tree", "rules": [ { "conditions": [], @@ -251,16 +245,19 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" } - ] + ], + "type": "tree" }, { "conditions": [], "error": "FIPS is enabled but this partition does not support FIPS", "type": "error" } - ] + ], + "type": "tree" }, { "conditions": [ @@ -274,7 +271,6 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [ @@ -294,11 +290,9 @@ ] } ], - "type": "tree", "rules": [ { "conditions": [], - "type": "tree", "rules": [ { "conditions": [], @@ -309,20 +303,22 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" } - ] + ], + "type": "tree" }, { "conditions": [], "error": "DualStack is enabled but this partition does not support DualStack", "type": "error" } - ] + ], + "type": "tree" }, { "conditions": [], - "type": "tree", "rules": [ { "conditions": [], @@ -333,18 +329,22 @@ }, "type": "endpoint" } - ] + ], + "type": "tree" } - ] + ], + "type": "tree" } - ] + ], + "type": "tree" }, { "conditions": [], "error": "Invalid Configuration: Missing Region", "type": "error" } - ] + ], + "type": "tree" } ] } \ No newline at end of file diff --git a/botocore/data/vpc-lattice/2022-11-30/service-2.json b/botocore/data/vpc-lattice/2022-11-30/service-2.json index a3de35352c..28db837d08 100644 --- a/botocore/data/vpc-lattice/2022-11-30/service-2.json +++ b/botocore/data/vpc-lattice/2022-11-30/service-2.json @@ -29,7 +29,7 @@ {"shape":"ConflictException"}, {"shape":"InternalServerException"} ], - "documentation":"Updates the listener rules in a batch. You can use this operation to change the priority of listener rules. This can be useful when bulk updating or swapping rule priority.
", + "documentation":"Updates the listener rules in a batch. You can use this operation to change the priority of listener rules. This can be useful when bulk updating or swapping rule priority.
Required permissions: vpc-lattice:UpdateRule
For more information, see How Amazon VPC Lattice works with IAM in the Amazon VPC Lattice User Guide.
", "idempotent":true }, "CreateAccessLogSubscription":{ @@ -49,7 +49,7 @@ {"shape":"ConflictException"}, {"shape":"InternalServerException"} ], - "documentation":"Enables access logs to be sent to Amazon CloudWatch, Amazon S3, and Amazon Kinesis Data Firehose. The service network owner can use the access logs to audit the services in the network. The service network owner will only see access logs from clients and services that are associated with their service network. Access log entries represent traffic originated from VPCs associated with that network. For more information, see Access logs in the Amazon VPC Lattice User Guide.
", + "documentation":"Enables access logs to be sent to Amazon CloudWatch, Amazon S3, and Amazon Kinesis Data Firehose. The service network owner can use the access logs to audit the services in the network. The service network owner can only see access logs from clients and services that are associated with their service network. Access log entries represent traffic originated from VPCs associated with that network. For more information, see Access logs in the Amazon VPC Lattice User Guide.
", "idempotent":true }, "CreateListener":{ @@ -154,7 +154,7 @@ {"shape":"ServiceQuotaExceededException"}, {"shape":"InternalServerException"} ], - "documentation":"Associates a service with a service network.
You can't use this operation if the service and service network are already associated or if there is a disassociation or deletion in progress. If the association fails, you can retry the operation by deleting the association and recreating it.
You cannot associate a service and service network that are shared with a caller. The caller must own either the service or the service network.
As a result of this operation, the association is created in the service network account and the association owner account.
", + "documentation":"Associates a service with a service network. For more information, see Manage service associations in the Amazon VPC Lattice User Guide.
You can't use this operation if the service and service network are already associated or if there is a disassociation or deletion in progress. If the association fails, you can retry the operation by deleting the association and recreating it.
You cannot associate a service and service network that are shared with a caller. The caller must own either the service or the service network.
As a result of this operation, the association is created in the service network account and the association owner account.
", "idempotent":true }, "CreateServiceNetworkVpcAssociation":{ @@ -175,7 +175,7 @@ {"shape":"ServiceQuotaExceededException"}, {"shape":"InternalServerException"} ], - "documentation":"Associates a VPC with a service network. When you associate a VPC with the service network, it enables all the resources within that VPC to be clients and communicate with other services in the service network. For more information, see Manage VPC associations in the Amazon VPC Lattice User Guide.
You can't use this operation if there is a disassociation in progress. If the association fails, retry by deleting the association and recreating it.
As a result of this operation, the association gets created in the service network account and the VPC owner account.
Once a security group is added to the VPC association it cannot be removed. You can add or update the security groups being used for the VPC association once a security group is attached. To remove all security groups you must reassociate the VPC.
", + "documentation":"Associates a VPC with a service network. When you associate a VPC with the service network, it enables all the resources within that VPC to be clients and communicate with other services in the service network. For more information, see Manage VPC associations in the Amazon VPC Lattice User Guide.
You can't use this operation if there is a disassociation in progress. If the association fails, retry by deleting the association and recreating it.
As a result of this operation, the association gets created in the service network account and the VPC owner account.
If you add a security group to the service network and VPC association, the association must continue to always have at least one security group. You can add or edit security groups at any time. However, to remove all security groups, you must first delete the association and recreate it without security groups.
", "idempotent":true }, "CreateTargetGroup":{ @@ -234,7 +234,7 @@ {"shape":"ResourceNotFoundException"}, {"shape":"InternalServerException"} ], - "documentation":"Deletes the specified auth policy. If an auth is set to Amazon Web Services_IAM and the auth policy is deleted, all requests will be denied by default. If you are trying to remove the auth policy completely, you must set the auth_type to NONE. If auth is enabled on the resource, but no auth policy is set, all requests will be denied.
Deletes the specified auth policy. If an auth is set to AWS_IAM and the auth policy is deleted, all requests are denied. If you are trying to remove the auth policy completely, you must set the auth type to NONE. If auth is enabled on the resource, but no auth policy is set, all requests are denied.
Deletes the association between a specified service and the specific service network. This request will fail if an association is still in progress.
", + "documentation":"Deletes the association between a specified service and the specific service network. This operation fails if an association is still in progress.
", "idempotent":true }, "DeleteServiceNetworkVpcAssociation":{ @@ -485,7 +485,7 @@ {"shape":"ResourceNotFoundException"}, {"shape":"InternalServerException"} ], - "documentation":"Retrieves information about the resource policy. The resource policy is an IAM policy created by AWS RAM on behalf of the resource owner when they share a resource.
" + "documentation":"Retrieves information about the resource policy. The resource policy is an IAM policy created on behalf of the resource owner when they share a resource.
" }, "GetRule":{ "name":"GetRule", @@ -663,7 +663,7 @@ {"shape":"ThrottlingException"}, {"shape":"InternalServerException"} ], - "documentation":"Lists the associations between the service network and the service. You can filter the list either by service or service network. You must provide either the service network identifier or the service identifier.
Every association in Amazon VPC Lattice is given a unique Amazon Resource Name (ARN), such as when a service network is associated with a VPC or when a service is associated with a service network. If the association is for a resource that is shared with another account, the association will include the local account ID as the prefix in the ARN for each account the resource is shared with.
" + "documentation":"Lists the associations between the service network and the service. You can filter the list either by service or service network. You must provide either the service network identifier or the service identifier.
Every association in Amazon VPC Lattice is given a unique Amazon Resource Name (ARN), such as when a service network is associated with a VPC or when a service is associated with a service network. If the association is for a resource that is shared with another account, the association includes the local account ID as the prefix in the ARN for each account the resource is shared with.
" }, "ListServiceNetworkVpcAssociations":{ "name":"ListServiceNetworkVpcAssociations", @@ -766,7 +766,7 @@ {"shape":"ResourceNotFoundException"}, {"shape":"InternalServerException"} ], - "documentation":"Lists the targets for the target group. By default, all targets are included. You can use this API to check the health status of targets. You can also filter the results by target.
" + "documentation":"Lists the targets for the target group. By default, all targets are included. You can use this API to check the health status of targets. You can also filter the results by target.
" }, "PutAuthPolicy":{ "name":"PutAuthPolicy", @@ -784,7 +784,7 @@ {"shape":"ResourceNotFoundException"}, {"shape":"InternalServerException"} ], - "documentation":"Creates or updates the auth policy.
" + "documentation":"Creates or updates the auth policy. The policy string in JSON must not contain newlines or blank lines.
For more information, see Auth policies in the Amazon VPC Lattice User Guide.
" }, "PutResourcePolicy":{ "name":"PutResourcePolicy", @@ -977,7 +977,7 @@ {"shape":"ConflictException"}, {"shape":"InternalServerException"} ], - "documentation":"Updates the service network and VPC association. Once you add a security group, it cannot be removed.
", + "documentation":"Updates the service network and VPC association. If you add a security group to the service network and VPC association, the association must continue to always have at least one security group. You can add or edit security groups at any time. However, to remove all security groups, you must first delete the association and recreate it without security groups.
", "idempotent":true }, "UpdateTargetGroup":{ @@ -1271,7 +1271,7 @@ }, "defaultAction":{ "shape":"RuleAction", - "documentation":"The action for the default rule. Each listener has a default rule. Each rule consists of a priority, one or more actions, and one or more conditions. The default rule is the rule that's used if no other rules match. Each rule must include exactly one of the following types of actions: forward or fixed-response, and it must be the last action to be performed.
The action for the default rule. Each listener has a default rule. The default rule is used if no other rules match.
" }, "name":{ "shape":"ListenerName", @@ -1279,11 +1279,11 @@ }, "port":{ "shape":"Port", - "documentation":"The listener port. You can specify a value from 1 to 65535. For HTTP, the default is 80. For HTTPS, the default is 443.
The listener port. You can specify a value from 1 to 65535. For HTTP, the default is 80. For HTTPS, the default is 443.
" }, "protocol":{ "shape":"ListenerProtocol", - "documentation":"The listener protocol HTTP or HTTPS.
" + "documentation":"The listener protocol.
" }, "serviceIdentifier":{ "shape":"ServiceIdentifier", @@ -1389,7 +1389,7 @@ "members":{ "action":{ "shape":"RuleAction", - "documentation":"The rule action. Each rule must include exactly one of the following types of actions: forward or fixed-response, and it must be the last action to be performed.
The rule action.
" }, "arn":{ "shape":"RuleArn", @@ -1508,7 +1508,7 @@ }, "status":{ "shape":"ServiceNetworkServiceAssociationStatus", - "documentation":"The operation's status.
" + "documentation":"The association status.
" } } }, @@ -1569,7 +1569,7 @@ }, "status":{ "shape":"ServiceNetworkVpcAssociationStatus", - "documentation":"The operation's status.
" + "documentation":"The association status.
" } } }, @@ -1637,7 +1637,7 @@ }, "status":{ "shape":"ServiceStatus", - "documentation":"The status. If the status is CREATE_FAILED, you will have to delete and recreate the service.
The status. If the status is CREATE_FAILED, you must delete and recreate the service.
The target group configuration. If type is set to LAMBDA, this parameter doesn't apply.
The target group configuration.
" }, "name":{ "shape":"TargetGroupName", @@ -1680,7 +1680,7 @@ }, "config":{ "shape":"TargetGroupConfig", - "documentation":"The target group configuration. If type is set to LAMBDA, this parameter doesn't apply.
The target group configuration.
" }, "id":{ "shape":"TargetGroupId", @@ -1692,7 +1692,7 @@ }, "status":{ "shape":"TargetGroupStatus", - "documentation":"The operation's status. You can retry the operation if the status is CREATE_FAILED. However, if you retry it while the status is CREATE_IN_PROGRESS, there is no change in the status.
The status. You can retry the operation if the status is CREATE_FAILED. However, if you retry it while the status is CREATE_IN_PROGRESS, there is no change in the status.
The operation's status. You can retry the operation if the status is DELETE_FAILED. However, if you retry it when the status is DELETE_IN_PROGRESS, there is no change in the status.
The status. You can retry the operation if the status is DELETE_FAILED. However, if you retry it when the status is DELETE_IN_PROGRESS, there is no change in the status.
The status. You can retry the operation if the status is DELETE_FAILED. However, if you retry it when the status is DELETE_IN_PROGRESS, there is no change in the status.
The status. You can retry the operation if the status is DELETE_FAILED. However, if you retry it while the status is DELETE_IN_PROGRESS, there is no change in the status.
The HTTP response code.
" } }, - "documentation":"Information about an action that returns a custom HTTP response.
" + "documentation":"Describes an action that returns a custom HTTP response.
" }, "ForwardAction":{ "type":"structure", @@ -2018,7 +2018,7 @@ "members":{ "targetGroups":{ "shape":"WeightedTargetGroupList", - "documentation":"The target groups. Traffic matching the rule is forwarded to the specified target groups. With forward actions, you can assign a weight that controls the prioritization and selection of each target group. This means that requests are distributed to individual target groups based on their weights. For example, if two target groups have the same weight, each target group receives half of the traffic.
The default value is 1. This means that if only one target group is provided, there is no need to set the weight; 100% of traffic will go to that target group.
" + "documentation":"The target groups. Traffic matching the rule is forwarded to the specified target groups. With forward actions, you can assign a weight that controls the prioritization and selection of each target group. This means that requests are distributed to individual target groups based on their weights. For example, if two target groups have the same weight, each target group receives half of the traffic.
The default value is 1. This means that if only one target group is provided, there is no need to set the weight; 100% of the traffic goes to that target group.
" } }, "documentation":"Describes a forward action. You can use forward actions to route requests to one or more target groups.
" @@ -2106,7 +2106,7 @@ }, "state":{ "shape":"AuthPolicyState", - "documentation":"The state of the auth policy. The auth policy is only active when the auth type is set to Amazon Web Services_IAM. If you provide a policy, then authentication and authorization decisions are made based on this policy and the client's IAM policy. If the auth type is NONE, then any auth policy you provide will remain inactive. For more information, see Create a service network in the Amazon VPC Lattice User Guide.
The state of the auth policy. The auth policy is only active when the auth type is set to AWS_IAM. If you provide a policy, then authentication and authorization decisions are made based on this policy and the client's IAM policy. If the auth type is NONE, then any auth policy that you provide remains inactive. For more information, see Create a service network in the Amazon VPC Lattice User Guide.
An IAM policy.
", + "documentation":"The Amazon Resource Name (ARN) of the service network or service.
", "location":"uri", "locationName":"resourceArn" } @@ -2193,7 +2193,7 @@ "members":{ "policy":{ "shape":"PolicyString", - "documentation":"The Amazon Resource Name (ARN) of the service network or service.
" + "documentation":"An IAM policy.
" } } }, @@ -2344,7 +2344,7 @@ }, "customDomainName":{ "shape":"ServiceCustomDomainName", - "documentation":"The custom domain name of the service.
" + "documentation":"The custom domain name of the service.
" }, "dnsEntry":{ "shape":"DnsEntry", @@ -2596,7 +2596,7 @@ "members":{ "caseSensitive":{ "shape":"Boolean", - "documentation":"Indicates whether the match is case sensitive. Defaults to false.
" + "documentation":"Indicates whether the match is case sensitive.
" }, "match":{ "shape":"HeaderMatchType", @@ -2640,18 +2640,18 @@ "members":{ "contains":{ "shape":"HeaderMatchContains", - "documentation":"Specifies a contains type match.
" + "documentation":"A contains type match.
" }, "exact":{ "shape":"HeaderMatchExact", - "documentation":"Specifies an exact type match.
" + "documentation":"An exact type match.
" }, "prefix":{ "shape":"HeaderMatchPrefix", - "documentation":"Specifies a prefix type match. Matches the value with the prefix.
" + "documentation":"A prefix type match. Matches the value with the prefix.
" } }, - "documentation":"Describes a header match type. Only one can be provided.
", + "documentation":"Describes a header match type.
", "union":true }, "HealthCheckConfig":{ @@ -2675,7 +2675,7 @@ }, "matcher":{ "shape":"Matcher", - "documentation":"The codes to use when checking for a successful response from a target. These are called Success codes in the console.
" + "documentation":"The codes to use when checking for a successful response from a target.
" }, "path":{ "shape":"HealthCheckPath", @@ -2698,7 +2698,7 @@ "documentation":"The number of consecutive failed health checks required before considering a target unhealthy. The range is 2–10. The default is 2.
" } }, - "documentation":"The health check configuration of a target group. Health check configurations aren't used for LAMBDA and ALB target groups.
Describes the health check configuration of a target group. Health check configurations aren't used for target groups of type LAMBDA or ALB.
The access log subscriptions.
" + "documentation":"Information about the access log subscriptions.
" }, "nextToken":{ "shape":"NextToken", @@ -3070,7 +3070,7 @@ "members":{ "items":{ "shape":"ServiceList", - "documentation":"The services.
" + "documentation":"Information about the services.
" }, "nextToken":{ "shape":"NextToken", @@ -3095,7 +3095,7 @@ "members":{ "tags":{ "shape":"TagMap", - "documentation":"The tags.
" + "documentation":"Information about the tags.
" } } }, @@ -3122,7 +3122,7 @@ }, "vpcIdentifier":{ "shape":"VpcId", - "documentation":"The ID or Amazon Resource Name (ARN) of the service.
", + "documentation":"The ID or Amazon Resource Name (ARN) of the VPC.
", "location":"querystring", "locationName":"vpcIdentifier" } @@ -3165,7 +3165,7 @@ }, "targets":{ "shape":"ListTargetsRequestTargetsList", - "documentation":"The targets to list.
" + "documentation":"The targets.
" } } }, @@ -3217,7 +3217,8 @@ "type":"string", "enum":[ "HTTP", - "HTTPS" + "HTTPS", + "TLS_PASSTHROUGH" ] }, "ListenerSummary":{ @@ -3270,7 +3271,7 @@ "documentation":"The HTTP code to use when checking for a successful response from a target.
" } }, - "documentation":"The codes to use when checking for a successful response from a target for health checks.
", + "documentation":"Describes the codes to use when checking for a successful response from a target for health checks.
", "union":true }, "MaxResults":{ @@ -3290,7 +3291,7 @@ "members":{ "caseSensitive":{ "shape":"Boolean", - "documentation":"Indicates whether the match is case sensitive. Defaults to false.
" + "documentation":"Indicates whether the match is case sensitive.
" }, "match":{ "shape":"PathMatchType", @@ -3347,7 +3348,7 @@ "members":{ "policy":{ "shape":"AuthPolicyString", - "documentation":"The auth policy.
" + "documentation":"The auth policy. The policy string in JSON must not contain newlines or blank lines.
" }, "resourceIdentifier":{ "shape":"ResourceIdentifier", @@ -3362,11 +3363,11 @@ "members":{ "policy":{ "shape":"AuthPolicyString", - "documentation":"The auth policy.
" + "documentation":"The auth policy. The policy string in JSON must not contain newlines or blank lines.
" }, "state":{ "shape":"AuthPolicyState", - "documentation":"The state of the auth policy. The auth policy is only active when the auth type is set to Amazon Web Services_IAM. If you provide a policy, then authentication and authorization decisions are made based on this policy and the client's IAM policy. If the Auth type is NONE, then, any auth policy you provide will remain inactive. For more information, see Create a service network in the Amazon VPC Lattice User Guide.
The state of the auth policy. The auth policy is only active when the auth type is set to AWS_IAM. If you provide a policy, then authentication and authorization decisions are made based on this policy and the client's IAM policy. If the Auth type is NONE, then, any auth policy that you provide remains inactive. For more information, see Create a service network in the Amazon VPC Lattice User Guide.
An IAM policy.
" + "documentation":"An IAM policy. The policy string in JSON must not contain newlines or blank lines.
" }, "resourceArn":{ "shape":"ResourceArn", @@ -3480,14 +3481,14 @@ "members":{ "fixedResponse":{ "shape":"FixedResponseAction", - "documentation":"Describes the rule action that returns a custom HTTP response.
" + "documentation":"The fixed response action. The rule returns a custom HTTP response.
" }, "forward":{ "shape":"ForwardAction", "documentation":"The forward action. Traffic that matches the rule is forwarded to the specified target groups.
" } }, - "documentation":"Describes the action for a rule. Each rule must include exactly one of the following types of actions: forward or fixed-response, and it must be the last action to be performed.
Describes the action for a rule.
", "union":true }, "RuleArn":{ @@ -3548,7 +3549,7 @@ }, "isDefault":{ "shape":"Boolean", - "documentation":"Indicates whether this is the default rule. Listener rules are created when you create a listener. Each listener has a default rule for checking connection requests.
" + "documentation":"Indicates whether this is the default listener rule.
" }, "lastUpdatedAt":{ "shape":"Timestamp", @@ -3560,7 +3561,7 @@ }, "priority":{ "shape":"RulePriority", - "documentation":"The priority of the rule.
" + "documentation":"The priority of the rule.
" } }, "documentation":"Summary information about the listener rule.
" @@ -3590,7 +3591,7 @@ "documentation":"The ID or Amazon Resource Name (ARN) of the rule.
" } }, - "documentation":"Represents an object when updating a rule.
" + "documentation":"Describes a rule update.
" }, "RuleUpdateFailure":{ "type":"structure", @@ -3625,7 +3626,7 @@ "members":{ "action":{ "shape":"RuleAction", - "documentation":"The action for the default rule.
" + "documentation":"The action for the rule.
" }, "arn":{ "shape":"RuleArn", @@ -3776,11 +3777,11 @@ }, "customDomainName":{ "shape":"ServiceCustomDomainName", - "documentation":"The custom domain name of the service.
" + "documentation":"The custom domain name of the service.
" }, "dnsEntry":{ "shape":"DnsEntry", - "documentation":"DNS information about the service.
" + "documentation":"The DNS information.
" }, "id":{ "shape":"ServiceNetworkServiceAssociationIdentifier", @@ -3988,11 +3989,11 @@ }, "customDomainName":{ "shape":"ServiceCustomDomainName", - "documentation":"The custom domain name of the service.
" + "documentation":"The custom domain name of the service.
" }, "dnsEntry":{ "shape":"DnsEntry", - "documentation":"DNS information about the service.
" + "documentation":"The DNS information.
" }, "id":{ "shape":"ServiceId", @@ -4073,11 +4074,11 @@ "members":{ "id":{ "shape":"TargetIdString", - "documentation":"The ID of the target. If the target type of the target group is INSTANCE, this is an instance ID. If the target type is IP , this is an IP address. If the target type is LAMBDA, this is the ARN of the Lambda function. If the target type is ALB, this is the ARN of the Application Load Balancer.
The ID of the target. If the target group type is INSTANCE, this is an instance ID. If the target group type is IP, this is an IP address. If the target group type is LAMBDA, this is the ARN of a Lambda function. If the target group type is ALB, this is the ARN of an Application Load Balancer.
The port on which the target is listening. For HTTP, the default is 80. For HTTPS, the default is 443.
The port on which the target is listening. For HTTP, the default is 80. For HTTPS, the default is 443.
" } }, "documentation":"Describes a target.
" @@ -4095,7 +4096,7 @@ }, "id":{ "shape":"String", - "documentation":"The ID of the target. If the target type of the target group is INSTANCE, this is an instance ID. If the target type is IP , this is an IP address. If the target type is LAMBDA, this is the ARN of the Lambda function. If the target type is ALB, this is the ARN of the Application Load Balancer.
The ID of the target. If the target group type is INSTANCE, this is an instance ID. If the target group type is IP, this is an IP address. If the target group type is LAMBDA, this is the ARN of a Lambda function. If the target group type is ALB, this is the ARN of an Application Load Balancer.
The health check configuration.
" + "documentation":"The health check configuration. Not supported if the target group type is LAMBDA or ALB.
The type of IP address used for the target group. The possible values are ipv4 and ipv6. This is an optional parameter. If not specified, the IP address type defaults to ipv4.
The type of IP address used for the target group. Supported only if the target group type is IP. The default is IPV4.
Lambda event structure version
" + "documentation":"The version of the event structure that your Lambda function receives. Supported only if the target group type is LAMBDA. The default is V1.
The port on which the targets are listening. For HTTP, the default is 80. For HTTPS, the default is 443
The port on which the targets are listening. For HTTP, the default is 80. For HTTPS, the default is 443. Not supported if the target group type is LAMBDA.
The protocol to use for routing traffic to the targets. Default is the protocol of a target group.
" + "documentation":"The protocol to use for routing traffic to the targets. The default is the protocol of the target group. Not supported if the target group type is LAMBDA.
The protocol version. Default value is HTTP1.
The protocol version. The default is HTTP1. Not supported if the target group type is LAMBDA.
The ID of the VPC.
" + "documentation":"The ID of the VPC. Not supported if the target group type is LAMBDA.
Describes the configuration of a target group. Lambda functions don't support target group configuration.
" + "documentation":"Describes the configuration of a target group.
For more information, see Target groups in the Amazon VPC Lattice User Guide.
" }, "TargetGroupId":{ "type":"string", @@ -4174,7 +4175,8 @@ "type":"string", "enum":[ "HTTP", - "HTTPS" + "HTTPS", + "TCP" ] }, "TargetGroupProtocolVersion":{ @@ -4212,11 +4214,11 @@ }, "ipAddressType":{ "shape":"IpAddressType", - "documentation":"The type of IP address used for the target group. The possible values are ipv4 and ipv6. This is an optional parameter. If not specified, the IP address type defaults to ipv4.
The type of IP address used for the target group. The possible values are IPV4 and IPV6. This is an optional parameter. If not specified, the default is IPV4.
Lambda event structure version
" + "documentation":"The version of the event structure that your Lambda function receives. Supported only if the target group type is LAMBDA.
The list of Amazon Resource Names (ARNs) of the service.
" + "documentation":"The Amazon Resource Names (ARNs) of the service.
" }, "status":{ "shape":"TargetGroupStatus", @@ -4251,7 +4253,7 @@ "documentation":"The ID of the VPC of the target group.
" } }, - "documentation":"Summary information about a target group.
" + "documentation":"Summary information about a target group.
For more information, see Target groups in the Amazon VPC Lattice User Guide.
" }, "TargetGroupType":{ "type":"string", @@ -4293,7 +4295,7 @@ "members":{ "id":{ "shape":"String", - "documentation":"The ID of the target. If the target type of the target group is INSTANCE, this is an instance ID. If the target type is IP , this is an IP address. If the target type is LAMBDA, this is the ARN of the Lambda function. If the target type is ALB, this is the ARN of the Application Load Balancer.
The ID of the target. If the target group type is INSTANCE, this is an instance ID. If the target group type is IP, this is an IP address. If the target group type is LAMBDA, this is the ARN of a Lambda function. If the target type is ALB, this is the ARN of an Application Load Balancer.
The status of the target.
Draining: The target is being deregistered. No new connections will be sent to this target while current connections are being drained. Default draining time is 5 minutes.
Unavailable: Health checks are unavailable for the target group.
Healthy: The target is healthy.
Unhealthy: The target is unhealthy.
Initial: Initial health checks on the target are being performed.
Unused: Target group is not used in a service.
The status of the target.
DRAINING: The target is being deregistered. No new connections are sent to this target while current connections are being drained. The default draining time is 5 minutes.
UNAVAILABLE: Health checks are unavailable for the target group.
HEALTHY: The target is healthy.
UNHEALTHY: The target is unhealthy.
INITIAL: Initial health checks on the target are being performed.
UNUSED: Target group is not used in a service.
Summary information about a target.
" @@ -4614,7 +4616,7 @@ "members":{ "securityGroupIds":{ "shape":"UpdateServiceNetworkVpcAssociationRequestSecurityGroupIdsList", - "documentation":"The IDs of the security groups. Once you add a security group, it cannot be removed.
" + "documentation":"The IDs of the security groups.
" }, "serviceNetworkVpcAssociationIdentifier":{ "shape":"ServiceNetworkVpcAssociationIdentifier", @@ -4665,7 +4667,7 @@ }, "certificateArn":{ "shape":"CertificateArn", - "documentation":"The Amazon Resource Name (ARN) of the certificate.
" + "documentation":"The Amazon Resource Name (ARN) of the certificate.
" }, "serviceIdentifier":{ "shape":"ServiceIdentifier", @@ -4688,7 +4690,7 @@ }, "certificateArn":{ "shape":"CertificateArn", - "documentation":"The Amazon Resource Name (ARN) of the certificate.
" + "documentation":"The Amazon Resource Name (ARN) of the certificate.
" }, "customDomainName":{ "shape":"ServiceCustomDomainName", @@ -4785,7 +4787,7 @@ "members":{ "message":{ "shape":"String", - "documentation":"Additional details about why the validation failed.
" + "documentation":"Additional information about why the validation failed.
" }, "name":{ "shape":"String", @@ -4823,7 +4825,7 @@ }, "weight":{ "shape":"TargetGroupWeight", - "documentation":"Only required if you specify multiple target groups for a forward action. The \"weight\" determines how requests are distributed to the target group. For example, if you specify two target groups, each with a weight of 10, each target group receives half the requests. If you specify two target groups, one with a weight of 10 and the other with a weight of 20, the target group with a weight of 20 receives twice as many requests as the other target group. If there's only one target group specified, then the default value is 100.
" + "documentation":"Only required if you specify multiple target groups for a forward action. The weight determines how requests are distributed to the target group. For example, if you specify two target groups, each with a weight of 10, each target group receives half the requests. If you specify two target groups, one with a weight of 10 and the other with a weight of 20, the target group with a weight of 20 receives twice as many requests as the other target group. If there's only one target group specified, then the default value is 100.
" } }, "documentation":"Describes the weight of a target group.
" @@ -4831,7 +4833,7 @@ "WeightedTargetGroupList":{ "type":"list", "member":{"shape":"WeightedTargetGroup"}, - "max":2, + "max":10, "min":1 } },