|
102 | 102 | "FailoverPrimaryCompute": "<p>Fails over the primary compute unit of the specified Multi-AZ cluster to another Availability Zone.</p>", |
103 | 103 | "GetClusterCredentials": "<p>Returns a database user name and temporary password with temporary authorization to log on to an Amazon Redshift database. The action returns the database user name prefixed with <code>IAM:</code> if <code>AutoCreate</code> is <code>False</code> or <code>IAMA:</code> if <code>AutoCreate</code> is <code>True</code>. You can optionally specify one or more database user groups that the user will join at log on. By default, the temporary credentials expire in 900 seconds. You can optionally specify a duration between 900 seconds (15 minutes) and 3600 seconds (60 minutes). For more information, see <a href=\"https://docs.aws.amazon.com/redshift/latest/mgmt/generating-user-credentials.html\">Using IAM Authentication to Generate Database User Credentials</a> in the Amazon Redshift Cluster Management Guide.</p> <p>The Identity and Access Management (IAM) user or role that runs GetClusterCredentials must have an IAM policy attached that allows access to all necessary actions and resources. For more information about permissions, see <a href=\"https://docs.aws.amazon.com/redshift/latest/mgmt/redshift-iam-access-control-identity-based.html#redshift-policy-resources.getclustercredentials-resources\">Resource Policies for GetClusterCredentials</a> in the Amazon Redshift Cluster Management Guide.</p> <p>If the <code>DbGroups</code> parameter is specified, the IAM policy must allow the <code>redshift:JoinGroup</code> action with access to the listed <code>dbgroups</code>. </p> <p>In addition, if the <code>AutoCreate</code> parameter is set to <code>True</code>, then the policy must include the <code>redshift:CreateClusterUser</code> permission.</p> <p>If the <code>DbName</code> parameter is specified, the IAM policy must allow access to the resource <code>dbname</code> for the specified database name. </p>", |
104 | 104 | "GetClusterCredentialsWithIAM": "<p>Returns a database user name and temporary password with temporary authorization to log in to an Amazon Redshift database. The database user is mapped 1:1 to the source Identity and Access Management (IAM) identity. For more information about IAM identities, see <a href=\"https://docs.aws.amazon.com/IAM/latest/UserGuide/id.html\">IAM Identities (users, user groups, and roles)</a> in the Amazon Web Services Identity and Access Management User Guide.</p> <p>The Identity and Access Management (IAM) identity that runs this operation must have an IAM policy attached that allows access to all necessary actions and resources. For more information about permissions, see <a href=\"https://docs.aws.amazon.com/redshift/latest/mgmt/redshift-iam-access-control-identity-based.html\">Using identity-based policies (IAM policies)</a> in the Amazon Redshift Cluster Management Guide. </p>", |
| 105 | + "GetIdentityCenterAuthToken": "<p>Generates an encrypted authentication token that propagates the caller's Amazon Web Services IAM Identity Center identity to Amazon Redshift clusters. This API extracts the Amazon Web Services IAM Identity Center identity from enhanced credentials and creates a secure token that Amazon Redshift drivers can use for authentication.</p> <p>The token is encrypted using Key Management Service (KMS) and can only be decrypted by the specified Amazon Redshift clusters. The token contains the caller's Amazon Web Services IAM Identity Center identity information and is valid for a limited time period.</p> <p>This API is exclusively for use with Amazon Web Services IAM Identity Center enhanced credentials. If the caller is not using enhanced credentials with embedded Amazon Web Services IAM Identity Center identity, the API will return an error.</p>", |
105 | 106 | "GetReservedNodeExchangeConfigurationOptions": "<p>Gets the configuration options for the reserved-node exchange. These options include information about the source reserved node and target reserved node offering. Details include the node type, the price, the node count, and the offering type.</p>", |
106 | 107 | "GetReservedNodeExchangeOfferings": "<p>Returns an array of DC2 ReservedNodeOfferings that matches the payment type, term, and usage price of the given DC1 reserved node.</p>", |
107 | 108 | "GetResourcePolicy": "<p>Get the resource policy for a specified resource.</p>", |
|
562 | 563 | "Cluster$IamRoles": "<p>A list of Identity and Access Management (IAM) roles that can be used by the cluster to access other Amazon Web Services services.</p>" |
563 | 564 | } |
564 | 565 | }, |
| 566 | + "ClusterIdentifierList": { |
| 567 | + "base": null, |
| 568 | + "refs": { |
| 569 | + "GetIdentityCenterAuthTokenRequest$ClusterIds": "<p>A list of cluster identifiers that the generated token can be used with. The token will be scoped to only allow authentication to the specified clusters.</p> <p>Constraints:</p> <ul> <li> <p> <code>ClusterIds</code> must contain at least 1 cluster identifier.</p> </li> <li> <p> <code>ClusterIds</code> can hold a maximum of 20 cluster identifiers.</p> </li> <li> <p>Cluster identifiers must be 1 to 63 characters in length.</p> </li> <li> <p>The characters accepted for cluster identifiers are the following:</p> <ul> <li> <p>Alphanumeric characters</p> </li> <li> <p>Hyphens</p> </li> </ul> </li> <li> <p>Cluster identifiers must start with a letter.</p> </li> <li> <p>Cluster identifiers can't end with a hyphen or contain two consecutive hyphens.</p> </li> </ul>" |
| 570 | + } |
| 571 | + }, |
565 | 572 | "ClusterList": { |
566 | 573 | "base": null, |
567 | 574 | "refs": { |
|
1620 | 1627 | "base": null, |
1621 | 1628 | "refs": {} |
1622 | 1629 | }, |
| 1630 | + "GetIdentityCenterAuthTokenRequest": { |
| 1631 | + "base": "<p>The request parameters for <code>GetIdentityCenterAuthToken</code>.</p>", |
| 1632 | + "refs": {} |
| 1633 | + }, |
| 1634 | + "GetIdentityCenterAuthTokenResponse": { |
| 1635 | + "base": "<p>The response from GetIdentityCenterAuthToken containing the encrypted authentication token and expiration time.</p>", |
| 1636 | + "refs": {} |
| 1637 | + }, |
1623 | 1638 | "GetReservedNodeExchangeConfigurationOptionsInputMessage": { |
1624 | 1639 | "base": null, |
1625 | 1640 | "refs": {} |
|
2653 | 2668 | "base": "<p>The maximum number of Redshift IAM Identity Center applications was exceeded.</p>", |
2654 | 2669 | "refs": {} |
2655 | 2670 | }, |
| 2671 | + "RedshiftInvalidParameterFault": { |
| 2672 | + "base": "<p>The request contains one or more invalid parameters. This error occurs when required parameters are missing, parameter values are outside acceptable ranges, or parameter formats are incorrect.</p>", |
| 2673 | + "refs": {} |
| 2674 | + }, |
2656 | 2675 | "ReferenceLink": { |
2657 | 2676 | "base": "<p>A link to an Amazon Redshift Advisor reference for more information about a recommendation.</p>", |
2658 | 2677 | "refs": { |
|
3043 | 3062 | "ClusterCredentials$DbPassword": "<p>A temporary password that authorizes the user name returned by <code>DbUser</code> to log on to the database <code>DbName</code>. </p>", |
3044 | 3063 | "ClusterExtendedCredentials$DbPassword": "<p>A temporary password that you provide when you connect to a database.</p>", |
3045 | 3064 | "CreateClusterMessage$MasterUserPassword": "<p>The password associated with the admin user account for the cluster that is being created.</p> <p>You can't use <code>MasterUserPassword</code> if <code>ManageMasterPassword</code> is <code>true</code>.</p> <p>Constraints:</p> <ul> <li> <p>Must be between 8 and 64 characters in length.</p> </li> <li> <p>Must contain at least one uppercase letter.</p> </li> <li> <p>Must contain at least one lowercase letter.</p> </li> <li> <p>Must contain one number.</p> </li> <li> <p>Can be any printable ASCII character (ASCII code 33-126) except <code>'</code> (single quote), <code>\"</code> (double quote), <code>\\</code>, <code>/</code>, or <code>@</code>.</p> </li> </ul>", |
| 3065 | + "GetIdentityCenterAuthTokenResponse$Token": "<p>The encrypted authentication token containing the caller's Amazon Web Services IAM Identity Center identity information. This token is encrypted using Key Management Service and can only be decrypted by the specified Amazon Redshift clusters. Use this token with Amazon Redshift drivers to authenticate using your Amazon Web Services IAM Identity Center identity.</p>", |
3046 | 3066 | "ModifyClusterMessage$MasterUserPassword": "<p>The new password for the cluster admin user. This change is asynchronously applied as soon as possible. Between the time of the request and the completion of the request, the <code>MasterUserPassword</code> element exists in the <code>PendingModifiedValues</code> element of the operation response. </p> <p>You can't use <code>MasterUserPassword</code> if <code>ManageMasterPassword</code> is <code>true</code>.</p> <note> <p>Operations never return the password, so this operation provides a way to regain access to the admin user account for a cluster if the password is lost.</p> </note> <p>Default: Uses existing setting.</p> <p>Constraints:</p> <ul> <li> <p>Must be between 8 and 64 characters in length.</p> </li> <li> <p>Must contain at least one uppercase letter.</p> </li> <li> <p>Must contain at least one lowercase letter.</p> </li> <li> <p>Must contain one number.</p> </li> <li> <p>Can be any printable ASCII character (ASCII code 33-126) except <code>'</code> (single quote), <code>\"</code> (double quote), <code>\\</code>, <code>/</code>, or <code>@</code>.</p> </li> </ul>", |
3047 | 3067 | "PendingModifiedValues$MasterUserPassword": "<p>The pending or in-progress change of the admin user password for the cluster.</p>" |
3048 | 3068 | } |
|
3299 | 3319 | "ClusterExtendedCredentials$DbUser": "<p>A database user name that you provide when you connect to a database. The database user is mapped 1:1 to the source IAM identity. </p>", |
3300 | 3320 | "ClusterIamRole$IamRoleArn": "<p>The Amazon Resource Name (ARN) of the IAM role, for example, <code>arn:aws:iam::123456789012:role/RedshiftCopyUnload</code>. </p>", |
3301 | 3321 | "ClusterIamRole$ApplyStatus": "<p>A value that describes the status of the IAM role's association with an Amazon Redshift cluster.</p> <p>The following are possible statuses and descriptions.</p> <ul> <li> <p> <code>in-sync</code>: The role is available for use by the cluster.</p> </li> <li> <p> <code>adding</code>: The role is in the process of being associated with the cluster.</p> </li> <li> <p> <code>removing</code>: The role is in the process of being disassociated with the cluster.</p> </li> </ul>", |
| 3322 | + "ClusterIdentifierList$member": null, |
3302 | 3323 | "ClusterNode$NodeRole": "<p>Whether the node is a leader node or a compute node.</p>", |
3303 | 3324 | "ClusterNode$PrivateIPAddress": "<p>The private IP address of a node within a cluster.</p>", |
3304 | 3325 | "ClusterNode$PublicIPAddress": "<p>The public IP address of a node within a cluster.</p>", |
|
3969 | 3990 | "EndpointAuthorization$AuthorizeTime": "<p>The time (UTC) when the authorization was created.</p>", |
3970 | 3991 | "Event$Date": "<p>The date and time of the event.</p>", |
3971 | 3992 | "EventSubscription$SubscriptionCreationTime": "<p>The date and time the Amazon Redshift event notification subscription was created.</p>", |
| 3993 | + "GetIdentityCenterAuthTokenResponse$ExpirationTime": "<p>The time (UTC) when the token expires. After this timestamp, the token will no longer be valid for authentication.</p>", |
3972 | 3994 | "InboundIntegration$CreateTime": "<p>The creation time of an inbound integration.</p>", |
3973 | 3995 | "Integration$CreateTime": "<p>The time (UTC) when the integration was created.</p>", |
3974 | 3996 | "LoggingStatus$LastSuccessfulDeliveryTime": "<p>The last time that logs were delivered.</p>", |
|
0 commit comments