diff --git a/clients/client-storage-gateway/src/commands/CreateNFSFileShareCommand.ts b/clients/client-storage-gateway/src/commands/CreateNFSFileShareCommand.ts index 93a48cffefa59..412338f207e9d 100644 --- a/clients/client-storage-gateway/src/commands/CreateNFSFileShareCommand.ts +++ b/clients/client-storage-gateway/src/commands/CreateNFSFileShareCommand.ts @@ -58,6 +58,7 @@ export interface CreateNFSFileShareCommandOutput extends CreateNFSFileShareOutpu * OwnerId: Number("long"), * }, * GatewayARN: "STRING_VALUE", // required + * EncryptionType: "SseS3" || "SseKms" || "DsseKms", * KMSEncrypted: true || false, * KMSKey: "STRING_VALUE", * Role: "STRING_VALUE", // required diff --git a/clients/client-storage-gateway/src/commands/CreateSMBFileShareCommand.ts b/clients/client-storage-gateway/src/commands/CreateSMBFileShareCommand.ts index 1a560bdf8ba00..ed1de71a78314 100644 --- a/clients/client-storage-gateway/src/commands/CreateSMBFileShareCommand.ts +++ b/clients/client-storage-gateway/src/commands/CreateSMBFileShareCommand.ts @@ -52,6 +52,7 @@ export interface CreateSMBFileShareCommandOutput extends CreateSMBFileShareOutpu * const input = { // CreateSMBFileShareInput * ClientToken: "STRING_VALUE", // required * GatewayARN: "STRING_VALUE", // required + * EncryptionType: "SseS3" || "SseKms" || "DsseKms", * KMSEncrypted: true || false, * KMSKey: "STRING_VALUE", * Role: "STRING_VALUE", // required diff --git a/clients/client-storage-gateway/src/commands/DescribeNFSFileSharesCommand.ts b/clients/client-storage-gateway/src/commands/DescribeNFSFileSharesCommand.ts index e3ff22314719d..5fa7981a5f6bc 100644 --- a/clients/client-storage-gateway/src/commands/DescribeNFSFileSharesCommand.ts +++ b/clients/client-storage-gateway/src/commands/DescribeNFSFileSharesCommand.ts @@ -56,6 +56,7 @@ export interface DescribeNFSFileSharesCommandOutput extends DescribeNFSFileShare * // FileShareId: "STRING_VALUE", * // FileShareStatus: "STRING_VALUE", * // GatewayARN: "STRING_VALUE", + * // EncryptionType: "SseS3" || "SseKms" || "DsseKms", * // KMSEncrypted: true || false, * // KMSKey: "STRING_VALUE", * // Path: "STRING_VALUE", diff --git a/clients/client-storage-gateway/src/commands/DescribeSMBFileSharesCommand.ts b/clients/client-storage-gateway/src/commands/DescribeSMBFileSharesCommand.ts index b840332ea8d28..0afe8c4f86deb 100644 --- a/clients/client-storage-gateway/src/commands/DescribeSMBFileSharesCommand.ts +++ b/clients/client-storage-gateway/src/commands/DescribeSMBFileSharesCommand.ts @@ -50,6 +50,7 @@ export interface DescribeSMBFileSharesCommandOutput extends DescribeSMBFileShare * // FileShareId: "STRING_VALUE", * // FileShareStatus: "STRING_VALUE", * // GatewayARN: "STRING_VALUE", + * // EncryptionType: "SseS3" || "SseKms" || "DsseKms", * // KMSEncrypted: true || false, * // KMSKey: "STRING_VALUE", * // Path: "STRING_VALUE", diff --git a/clients/client-storage-gateway/src/commands/UpdateNFSFileShareCommand.ts b/clients/client-storage-gateway/src/commands/UpdateNFSFileShareCommand.ts index 6ddf368c41f0f..0d444673d69c4 100644 --- a/clients/client-storage-gateway/src/commands/UpdateNFSFileShareCommand.ts +++ b/clients/client-storage-gateway/src/commands/UpdateNFSFileShareCommand.ts @@ -60,6 +60,7 @@ export interface UpdateNFSFileShareCommandOutput extends UpdateNFSFileShareOutpu * const client = new StorageGatewayClient(config); * const input = { // UpdateNFSFileShareInput * FileShareARN: "STRING_VALUE", // required + * EncryptionType: "SseS3" || "SseKms" || "DsseKms", * KMSEncrypted: true || false, * KMSKey: "STRING_VALUE", * NFSFileShareDefaults: { // NFSFileShareDefaults diff --git a/clients/client-storage-gateway/src/commands/UpdateSMBFileShareCommand.ts b/clients/client-storage-gateway/src/commands/UpdateSMBFileShareCommand.ts index 9c6e40f5c9b44..f4b61153f70c1 100644 --- a/clients/client-storage-gateway/src/commands/UpdateSMBFileShareCommand.ts +++ b/clients/client-storage-gateway/src/commands/UpdateSMBFileShareCommand.ts @@ -53,6 +53,7 @@ export interface UpdateSMBFileShareCommandOutput extends UpdateSMBFileShareOutpu * const client = new StorageGatewayClient(config); * const input = { // UpdateSMBFileShareInput * FileShareARN: "STRING_VALUE", // required + * EncryptionType: "SseS3" || "SseKms" || "DsseKms", * KMSEncrypted: true || false, * KMSKey: "STRING_VALUE", * DefaultStorageClass: "STRING_VALUE", diff --git a/clients/client-storage-gateway/src/models/models_0.ts b/clients/client-storage-gateway/src/models/models_0.ts index 271cc3c5db73c..b647650b78d35 100644 --- a/clients/client-storage-gateway/src/models/models_0.ts +++ b/clients/client-storage-gateway/src/models/models_0.ts @@ -1015,8 +1015,10 @@ export interface CachediSCSIVolume { VolumeUsedInBytes?: number; /** - *

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This - * value can only be set when KMSEncrypted is true. Optional.

+ *

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used + * for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric + * CMKs. This value must be set if KMSEncrypted is true, or if + * EncryptionType is SseKms or DsseKms.

* @public */ KMSKey?: string; @@ -1260,6 +1262,21 @@ export interface CreateCachediSCSIVolumeOutput { TargetARN?: string; } +/** + * @public + * @enum + */ +export const EncryptionType = { + DsseKms: "DsseKms", + SseKms: "SseKms", + SseS3: "SseS3", +} as const; + +/** + * @public + */ +export type EncryptionType = (typeof EncryptionType)[keyof typeof EncryptionType]; + /** *

Describes Network File System (NFS) file share default values. Files and folders stored * as Amazon S3 objects in S3 buckets don't, by default, have Unix file @@ -1344,9 +1361,39 @@ export interface CreateNFSFileShareInput { GatewayARN: string | undefined; /** - *

Set to true to use Amazon S3 server-side encryption with your own - * KMS key, or false to use a key managed by Amazon S3. - * Optional.

+ *

A value that specifies the type of server-side encryption that the file share will use + * for the data that it stores in Amazon S3.

+ * + *

We recommend using EncryptionType instead of KMSEncrypted + * to set the file share encryption method. You do not need to provide values for both + * parameters.

+ *

If values for both parameters exist in the same request, then the specified + * encryption methods must not conflict. For example, if EncryptionType is + * SseS3, then KMSEncrypted must be false. If + * EncryptionType is SseKms or DsseKms, then + * KMSEncrypted must be true.

+ * + * @public + */ + EncryptionType?: EncryptionType; + + /** + * @deprecated + * + *

Optional. Set to true to use Amazon S3 server-side encryption with + * your own KMS key (SSE-KMS), or false to use a key managed by + * Amazon S3 (SSE-S3). To use dual-layer encryption (DSSE-KMS), set the + * EncryptionType parameter instead.

+ * + *

We recommend using EncryptionType instead of KMSEncrypted + * to set the file share encryption method. You do not need to provide values for both + * parameters.

+ *

If values for both parameters exist in the same request, then the specified + * encryption methods must not conflict. For example, if EncryptionType is + * SseS3, then KMSEncrypted must be false. If + * EncryptionType is SseKms or DsseKms, then + * KMSEncrypted must be true.

+ * *

Valid Values: true | false *

* @public @@ -1354,8 +1401,10 @@ export interface CreateNFSFileShareInput { KMSEncrypted?: boolean; /** - *

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This - * value can only be set when KMSEncrypted is true. Optional.

+ *

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used + * for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric + * CMKs. This value must be set if KMSEncrypted is true, or if + * EncryptionType is SseKms or DsseKms.

* @public */ KMSKey?: string; @@ -1514,6 +1563,9 @@ export interface CreateNFSFileShareInput { *

* SettlingTimeInSeconds has no effect on the timing of the object * uploading to Amazon S3, only the timing of the notification.

+ *

This setting is not meant to specify an exact time at which the notification will be + * sent. In some cases, the gateway might require more than the specified delay time to + * generate and send notifications.

* *

The following example sets NotificationPolicy on with * SettlingTimeInSeconds set to 60.

@@ -1589,9 +1641,39 @@ export interface CreateSMBFileShareInput { GatewayARN: string | undefined; /** - *

Set to true to use Amazon S3 server-side encryption with your own - * KMS key, or false to use a key managed by Amazon S3. - * Optional.

+ *

A value that specifies the type of server-side encryption that the file share will use + * for the data that it stores in Amazon S3.

+ * + *

We recommend using EncryptionType instead of KMSEncrypted + * to set the file share encryption method. You do not need to provide values for both + * parameters.

+ *

If values for both parameters exist in the same request, then the specified + * encryption methods must not conflict. For example, if EncryptionType is + * SseS3, then KMSEncrypted must be false. If + * EncryptionType is SseKms or DsseKms, then + * KMSEncrypted must be true.

+ * + * @public + */ + EncryptionType?: EncryptionType; + + /** + * @deprecated + * + *

Optional. Set to true to use Amazon S3 server-side encryption with + * your own KMS key (SSE-KMS), or false to use a key managed by + * Amazon S3 (SSE-S3). To use dual-layer encryption (DSSE-KMS), set the + * EncryptionType parameter instead.

+ * + *

We recommend using EncryptionType instead of KMSEncrypted + * to set the file share encryption method. You do not need to provide values for both + * parameters.

+ *

If values for both parameters exist in the same request, then the specified + * encryption methods must not conflict. For example, if EncryptionType is + * SseS3, then KMSEncrypted must be false. If + * EncryptionType is SseKms or DsseKms, then + * KMSEncrypted must be true.

+ * *

Valid Values: true | false *

* @public @@ -1599,8 +1681,10 @@ export interface CreateSMBFileShareInput { KMSEncrypted?: boolean; /** - *

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This - * value can only be set when KMSEncrypted is true. Optional.

+ *

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used + * for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric + * CMKs. This value must be set if KMSEncrypted is true, or if + * EncryptionType is SseKms or DsseKms.

* @public */ KMSKey?: string; @@ -1695,9 +1779,9 @@ export interface CreateSMBFileShareInput { *

Set this value to true to enable access control list (ACL) on the SMB file * share. Set it to false to map file and directory permissions to the POSIX * permissions.

- *

For more information, see Using Microsoft Windows ACLs to - * control access to an SMB file share in the Storage Gateway User - * Guide.

+ *

For more information, see Using Windows ACLs to limit SMB file share + * access in the Amazon S3 File Gateway User + * Guide.

*

Valid Values: true | false *

* @public @@ -1808,6 +1892,9 @@ export interface CreateSMBFileShareInput { *

* SettlingTimeInSeconds has no effect on the timing of the object * uploading to Amazon S3, only the timing of the notification.

+ *

This setting is not meant to specify an exact time at which the notification will be + * sent. In some cases, the gateway might require more than the specified delay time to + * generate and send notifications.

* *

The following example sets NotificationPolicy on with * SettlingTimeInSeconds set to 60.

@@ -3403,8 +3490,11 @@ export interface SoftwareUpdatePreferences { *

* ALL_VERSIONS - Enables regular gateway maintenance updates.

*

- * EMERGENCY_VERSIONS_ONLY - Disables regular gateway maintenance - * updates.

+ * EMERGENCY_VERSIONS_ONLY - Disables regular gateway maintenance updates. The + * gateway will still receive emergency version updates on rare occasions if necessary to + * remedy highly critical security or durability issues. You will be notified before an + * emergency version update is applied. These updates are applied during your gateway's + * scheduled maintenance window.

* @public */ AutomaticUpdatePolicy?: AutomaticUpdatePolicy; @@ -3495,12 +3585,15 @@ export interface DescribeMaintenanceStartTimeOutput { /** *

A set of variables indicating the software update preferences for the gateway.

- *

Includes AutomaticUpdatePolicy field with the following inputs:

+ *

Includes AutomaticUpdatePolicy parameter with the following inputs:

*

* ALL_VERSIONS - Enables regular gateway maintenance updates.

*

- * EMERGENCY_VERSIONS_ONLY - Disables regular gateway maintenance - * updates.

+ * EMERGENCY_VERSIONS_ONLY - Disables regular gateway maintenance updates. The + * gateway will still receive emergency version updates on rare occasions if necessary to + * remedy highly critical security or durability issues. You will be notified before an + * emergency version update is applied. These updates are applied during your gateway's + * scheduled maintenance window.

* @public */ SoftwareUpdatePreferences?: SoftwareUpdatePreferences; @@ -3565,9 +3658,39 @@ export interface NFSFileShareInfo { GatewayARN?: string; /** - *

Set to true to use Amazon S3 server-side encryption with your own - * KMS key, or false to use a key managed by Amazon S3. - * Optional.

+ *

A value that specifies the type of server-side encryption that the file share will use + * for the data that it stores in Amazon S3.

+ * + *

We recommend using EncryptionType instead of KMSEncrypted + * to set the file share encryption method. You do not need to provide values for both + * parameters.

+ *

If values for both parameters exist in the same request, then the specified + * encryption methods must not conflict. For example, if EncryptionType is + * SseS3, then KMSEncrypted must be false. If + * EncryptionType is SseKms or DsseKms, then + * KMSEncrypted must be true.

+ * + * @public + */ + EncryptionType?: EncryptionType; + + /** + * @deprecated + * + *

Optional. Set to true to use Amazon S3 server-side encryption with + * your own KMS key (SSE-KMS), or false to use a key managed by + * Amazon S3 (SSE-S3). To use dual-layer encryption (DSSE-KMS), set the + * EncryptionType parameter instead.

+ * + *

We recommend using EncryptionType instead of KMSEncrypted + * to set the file share encryption method. You do not need to provide values for both + * parameters.

+ *

If values for both parameters exist in the same request, then the specified + * encryption methods must not conflict. For example, if EncryptionType is + * SseS3, then KMSEncrypted must be false. If + * EncryptionType is SseKms or DsseKms, then + * KMSEncrypted must be true.

+ * *

Valid Values: true | false *

* @public @@ -3575,8 +3698,10 @@ export interface NFSFileShareInfo { KMSEncrypted?: boolean; /** - *

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This - * value can only be set when KMSEncrypted is true. Optional.

+ *

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used + * for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric + * CMKs. This value must be set if KMSEncrypted is true, or if + * EncryptionType is SseKms or DsseKms.

* @public */ KMSKey?: string; @@ -3736,6 +3861,9 @@ export interface NFSFileShareInfo { *

* SettlingTimeInSeconds has no effect on the timing of the object * uploading to Amazon S3, only the timing of the notification.

+ *

This setting is not meant to specify an exact time at which the notification will be + * sent. In some cases, the gateway might require more than the specified delay time to + * generate and send notifications.

* *

The following example sets NotificationPolicy on with * SettlingTimeInSeconds set to 60.

@@ -3841,9 +3969,39 @@ export interface SMBFileShareInfo { GatewayARN?: string; /** - *

Set to true to use Amazon S3 server-side encryption with your own - * KMS key, or false to use a key managed by Amazon S3. - * Optional.

+ *

A value that specifies the type of server-side encryption that the file share will use + * for the data that it stores in Amazon S3.

+ * + *

We recommend using EncryptionType instead of KMSEncrypted + * to set the file share encryption method. You do not need to provide values for both + * parameters.

+ *

If values for both parameters exist in the same request, then the specified + * encryption methods must not conflict. For example, if EncryptionType is + * SseS3, then KMSEncrypted must be false. If + * EncryptionType is SseKms or DsseKms, then + * KMSEncrypted must be true.

+ * + * @public + */ + EncryptionType?: EncryptionType; + + /** + * @deprecated + * + *

Optional. Set to true to use Amazon S3 server-side encryption with + * your own KMS key (SSE-KMS), or false to use a key managed by + * Amazon S3 (SSE-S3). To use dual-layer encryption (DSSE-KMS), set the + * EncryptionType parameter instead.

+ * + *

We recommend using EncryptionType instead of KMSEncrypted + * to set the file share encryption method. You do not need to provide values for both + * parameters.

+ *

If values for both parameters exist in the same request, then the specified + * encryption methods must not conflict. For example, if EncryptionType is + * SseS3, then KMSEncrypted must be false. If + * EncryptionType is SseKms or DsseKms, then + * KMSEncrypted must be true.

+ * *

Valid Values: true | false *

* @public @@ -3851,8 +4009,10 @@ export interface SMBFileShareInfo { KMSEncrypted?: boolean; /** - *

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This - * value can only be set when KMSEncrypted is true. Optional.

+ *

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used + * for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric + * CMKs. This value must be set if KMSEncrypted is true, or if + * EncryptionType is SseKms or DsseKms.

* @public */ KMSKey?: string; @@ -3954,9 +4114,9 @@ export interface SMBFileShareInfo { *

If this value is set to true, it indicates that access control list (ACL) * is enabled on the SMB file share. If it is set to false, it indicates that * file and directory permissions are mapped to the POSIX permission.

- *

For more information, see Using Microsoft Windows ACLs to - * control access to an SMB file share in the Storage Gateway User - * Guide.

+ *

For more information, see Using Windows ACLs to limit SMB file share + * access in the Amazon S3 File Gateway User + * Guide.

* @public */ SMBACLEnabled?: boolean; @@ -4056,6 +4216,9 @@ export interface SMBFileShareInfo { *

* SettlingTimeInSeconds has no effect on the timing of the object * uploading to Amazon S3, only the timing of the notification.

+ *

This setting is not meant to specify an exact time at which the notification will be + * sent. In some cases, the gateway might require more than the specified delay time to + * generate and send notifications.

* *

The following example sets NotificationPolicy on with * SettlingTimeInSeconds set to 60.

@@ -4459,8 +4622,10 @@ export interface StorediSCSIVolume { VolumeUsedInBytes?: number; /** - *

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This - * value can only be set when KMSEncrypted is true. Optional.

+ *

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used + * for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric + * CMKs. This value must be set if KMSEncrypted is true, or if + * EncryptionType is SseKms or DsseKms.

* @public */ KMSKey?: string; @@ -4659,8 +4824,10 @@ export interface TapeArchive { TapeUsedInBytes?: number; /** - *

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This - * value can only be set when KMSEncrypted is true. Optional.

+ *

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used + * for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric + * CMKs. This value must be set if KMSEncrypted is true, or if + * EncryptionType is SseKms or DsseKms.

* @public */ KMSKey?: string; @@ -4906,8 +5073,10 @@ export interface Tape { TapeUsedInBytes?: number; /** - *

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This - * value can only be set when KMSEncrypted is true. Optional.

+ *

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used + * for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric + * CMKs. This value must be set if KMSEncrypted is true, or if + * EncryptionType is SseKms or DsseKms.

* @public */ KMSKey?: string; @@ -7132,8 +7301,11 @@ export interface UpdateMaintenanceStartTimeInput { *

* ALL_VERSIONS - Enables regular gateway maintenance updates.

*

- * EMERGENCY_VERSIONS_ONLY - Disables regular gateway maintenance - * updates.

+ * EMERGENCY_VERSIONS_ONLY - Disables regular gateway maintenance updates. The + * gateway will still receive emergency version updates on rare occasions if necessary to + * remedy highly critical security or durability issues. You will be notified before an + * emergency version update is applied. These updates are applied during your gateway's + * scheduled maintenance window.

* @public */ SoftwareUpdatePreferences?: SoftwareUpdatePreferences; @@ -7165,9 +7337,39 @@ export interface UpdateNFSFileShareInput { FileShareARN: string | undefined; /** - *

Set to true to use Amazon S3 server-side encryption with your own - * KMS key, or false to use a key managed by Amazon S3. - * Optional.

+ *

A value that specifies the type of server-side encryption that the file share will use + * for the data that it stores in Amazon S3.

+ * + *

We recommend using EncryptionType instead of KMSEncrypted + * to set the file share encryption method. You do not need to provide values for both + * parameters.

+ *

If values for both parameters exist in the same request, then the specified + * encryption methods must not conflict. For example, if EncryptionType is + * SseS3, then KMSEncrypted must be false. If + * EncryptionType is SseKms or DsseKms, then + * KMSEncrypted must be true.

+ * + * @public + */ + EncryptionType?: EncryptionType; + + /** + * @deprecated + * + *

Optional. Set to true to use Amazon S3 server-side encryption with + * your own KMS key (SSE-KMS), or false to use a key managed by + * Amazon S3 (SSE-S3). To use dual-layer encryption (DSSE-KMS), set the + * EncryptionType parameter instead.

+ * + *

We recommend using EncryptionType instead of KMSEncrypted + * to set the file share encryption method. You do not need to provide values for both + * parameters.

+ *

If values for both parameters exist in the same request, then the specified + * encryption methods must not conflict. For example, if EncryptionType is + * SseS3, then KMSEncrypted must be false. If + * EncryptionType is SseKms or DsseKms, then + * KMSEncrypted must be true.

+ * *

Valid Values: true | false *

* @public @@ -7175,8 +7377,10 @@ export interface UpdateNFSFileShareInput { KMSEncrypted?: boolean; /** - *

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This - * value can only be set when KMSEncrypted is true. Optional.

+ *

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used + * for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric + * CMKs. This value must be set if KMSEncrypted is true, or if + * EncryptionType is SseKms or DsseKms.

* @public */ KMSKey?: string; @@ -7295,6 +7499,9 @@ export interface UpdateNFSFileShareInput { *

* SettlingTimeInSeconds has no effect on the timing of the object * uploading to Amazon S3, only the timing of the notification.

+ *

This setting is not meant to specify an exact time at which the notification will be + * sent. In some cases, the gateway might require more than the specified delay time to + * generate and send notifications.

* *

The following example sets NotificationPolicy on with * SettlingTimeInSeconds set to 60.

@@ -7340,9 +7547,39 @@ export interface UpdateSMBFileShareInput { FileShareARN: string | undefined; /** - *

Set to true to use Amazon S3 server-side encryption with your own - * KMS key, or false to use a key managed by Amazon S3. - * Optional.

+ *

A value that specifies the type of server-side encryption that the file share will use + * for the data that it stores in Amazon S3.

+ * + *

We recommend using EncryptionType instead of KMSEncrypted + * to set the file share encryption method. You do not need to provide values for both + * parameters.

+ *

If values for both parameters exist in the same request, then the specified + * encryption methods must not conflict. For example, if EncryptionType is + * SseS3, then KMSEncrypted must be false. If + * EncryptionType is SseKms or DsseKms, then + * KMSEncrypted must be true.

+ * + * @public + */ + EncryptionType?: EncryptionType; + + /** + * @deprecated + * + *

Optional. Set to true to use Amazon S3 server-side encryption with + * your own KMS key (SSE-KMS), or false to use a key managed by + * Amazon S3 (SSE-S3). To use dual-layer encryption (DSSE-KMS), set the + * EncryptionType parameter instead.

+ * + *

We recommend using EncryptionType instead of KMSEncrypted + * to set the file share encryption method. You do not need to provide values for both + * parameters.

+ *

If values for both parameters exist in the same request, then the specified + * encryption methods must not conflict. For example, if EncryptionType is + * SseS3, then KMSEncrypted must be false. If + * EncryptionType is SseKms or DsseKms, then + * KMSEncrypted must be true.

+ * *

Valid Values: true | false *

* @public @@ -7350,8 +7587,10 @@ export interface UpdateSMBFileShareInput { KMSEncrypted?: boolean; /** - *

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This - * value can only be set when KMSEncrypted is true. Optional.

+ *

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used + * for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric + * CMKs. This value must be set if KMSEncrypted is true, or if + * EncryptionType is SseKms or DsseKms.

* @public */ KMSKey?: string; @@ -7413,9 +7652,9 @@ export interface UpdateSMBFileShareInput { *

Set this value to true to enable access control list (ACL) on the SMB file * share. Set it to false to map file and directory permissions to the POSIX * permissions.

- *

For more information, see Using Microsoft Windows ACLs to - * control access to an SMB file share in the Storage Gateway User - * Guide.

+ *

For more information, see Using Windows ACLs to limit SMB file share + * access in the Amazon S3 File Gateway User + * Guide.

*

Valid Values: true | false *

* @public @@ -7501,6 +7740,9 @@ export interface UpdateSMBFileShareInput { *

* SettlingTimeInSeconds has no effect on the timing of the object * uploading to Amazon S3, only the timing of the notification.

+ *

This setting is not meant to specify an exact time at which the notification will be + * sent. In some cases, the gateway might require more than the specified delay time to + * generate and send notifications.

* *

The following example sets NotificationPolicy on with * SettlingTimeInSeconds set to 60.

diff --git a/codegen/sdk-codegen/aws-models/storage-gateway.json b/codegen/sdk-codegen/aws-models/storage-gateway.json index a48c715c778cf..57b7834fee6c7 100644 --- a/codegen/sdk-codegen/aws-models/storage-gateway.json +++ b/codegen/sdk-codegen/aws-models/storage-gateway.json @@ -1454,16 +1454,25 @@ "smithy.api#required": {} } }, + "EncryptionType": { + "target": "com.amazonaws.storagegateway#EncryptionType", + "traits": { + "smithy.api#documentation": "

A value that specifies the type of server-side encryption that the file share will use\n for the data that it stores in Amazon S3.

\n \n

We recommend using EncryptionType instead of KMSEncrypted\n to set the file share encryption method. You do not need to provide values for both\n parameters.

\n

If values for both parameters exist in the same request, then the specified\n encryption methods must not conflict. For example, if EncryptionType is\n SseS3, then KMSEncrypted must be false. If\n EncryptionType is SseKms or DsseKms, then\n KMSEncrypted must be true.

\n " + } + }, "KMSEncrypted": { "target": "com.amazonaws.storagegateway#Boolean", "traits": { - "smithy.api#documentation": "

Set to true to use Amazon S3 server-side encryption with your own\n KMS key, or false to use a key managed by Amazon S3.\n Optional.

\n

Valid Values: true | false\n

" + "smithy.api#deprecated": { + "message": "KMSEncrypted is deprecated, use EncryptionType instead." + }, + "smithy.api#documentation": "

Optional. Set to true to use Amazon S3 server-side encryption with\n your own KMS key (SSE-KMS), or false to use a key managed by\n Amazon S3 (SSE-S3). To use dual-layer encryption (DSSE-KMS), set the\n EncryptionType parameter instead.

\n \n

We recommend using EncryptionType instead of KMSEncrypted\n to set the file share encryption method. You do not need to provide values for both\n parameters.

\n

If values for both parameters exist in the same request, then the specified\n encryption methods must not conflict. For example, if EncryptionType is\n SseS3, then KMSEncrypted must be false. If\n EncryptionType is SseKms or DsseKms, then\n KMSEncrypted must be true.

\n \n

Valid Values: true | false\n

" } }, "KMSKey": { "target": "com.amazonaws.storagegateway#KMSKey", "traits": { - "smithy.api#documentation": "

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This\n value can only be set when KMSEncrypted is true. Optional.

" + "smithy.api#documentation": "

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used\n for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric\n CMKs. This value must be set if KMSEncrypted is true, or if\n EncryptionType is SseKms or DsseKms.

" } }, "Role": { @@ -1543,7 +1552,7 @@ "NotificationPolicy": { "target": "com.amazonaws.storagegateway#NotificationPolicy", "traits": { - "smithy.api#documentation": "

The notification policy of the file share. SettlingTimeInSeconds controls\n the number of seconds to wait after the last point in time a client wrote to a file before\n generating an ObjectUploaded notification. Because clients can make many small\n writes to files, it's best to set this parameter for as long as possible to avoid\n generating multiple notifications for the same file in a small time period.

\n \n

\n SettlingTimeInSeconds has no effect on the timing of the object\n uploading to Amazon S3, only the timing of the notification.

\n \n

The following example sets NotificationPolicy on with\n SettlingTimeInSeconds set to 60.

\n

\n {\\\"Upload\\\": {\\\"SettlingTimeInSeconds\\\": 60}}\n

\n

The following example sets NotificationPolicy off.

\n

\n {}\n

" + "smithy.api#documentation": "

The notification policy of the file share. SettlingTimeInSeconds controls\n the number of seconds to wait after the last point in time a client wrote to a file before\n generating an ObjectUploaded notification. Because clients can make many small\n writes to files, it's best to set this parameter for as long as possible to avoid\n generating multiple notifications for the same file in a small time period.

\n \n

\n SettlingTimeInSeconds has no effect on the timing of the object\n uploading to Amazon S3, only the timing of the notification.

\n

This setting is not meant to specify an exact time at which the notification will be\n sent. In some cases, the gateway might require more than the specified delay time to\n generate and send notifications.

\n \n

The following example sets NotificationPolicy on with\n SettlingTimeInSeconds set to 60.

\n

\n {\\\"Upload\\\": {\\\"SettlingTimeInSeconds\\\": 60}}\n

\n

The following example sets NotificationPolicy off.

\n

\n {}\n

" } }, "VPCEndpointDNSName": { @@ -1622,16 +1631,25 @@ "smithy.api#required": {} } }, + "EncryptionType": { + "target": "com.amazonaws.storagegateway#EncryptionType", + "traits": { + "smithy.api#documentation": "

A value that specifies the type of server-side encryption that the file share will use\n for the data that it stores in Amazon S3.

\n \n

We recommend using EncryptionType instead of KMSEncrypted\n to set the file share encryption method. You do not need to provide values for both\n parameters.

\n

If values for both parameters exist in the same request, then the specified\n encryption methods must not conflict. For example, if EncryptionType is\n SseS3, then KMSEncrypted must be false. If\n EncryptionType is SseKms or DsseKms, then\n KMSEncrypted must be true.

\n " + } + }, "KMSEncrypted": { "target": "com.amazonaws.storagegateway#Boolean", "traits": { - "smithy.api#documentation": "

Set to true to use Amazon S3 server-side encryption with your own\n KMS key, or false to use a key managed by Amazon S3.\n Optional.

\n

Valid Values: true | false\n

" + "smithy.api#deprecated": { + "message": "KMSEncrypted is deprecated, use EncryptionType instead." + }, + "smithy.api#documentation": "

Optional. Set to true to use Amazon S3 server-side encryption with\n your own KMS key (SSE-KMS), or false to use a key managed by\n Amazon S3 (SSE-S3). To use dual-layer encryption (DSSE-KMS), set the\n EncryptionType parameter instead.

\n \n

We recommend using EncryptionType instead of KMSEncrypted\n to set the file share encryption method. You do not need to provide values for both\n parameters.

\n

If values for both parameters exist in the same request, then the specified\n encryption methods must not conflict. For example, if EncryptionType is\n SseS3, then KMSEncrypted must be false. If\n EncryptionType is SseKms or DsseKms, then\n KMSEncrypted must be true.

\n \n

Valid Values: true | false\n

" } }, "KMSKey": { "target": "com.amazonaws.storagegateway#KMSKey", "traits": { - "smithy.api#documentation": "

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This\n value can only be set when KMSEncrypted is true. Optional.

" + "smithy.api#documentation": "

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used\n for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric\n CMKs. This value must be set if KMSEncrypted is true, or if\n EncryptionType is SseKms or DsseKms.

" } }, "Role": { @@ -1681,7 +1699,7 @@ "SMBACLEnabled": { "target": "com.amazonaws.storagegateway#Boolean", "traits": { - "smithy.api#documentation": "

Set this value to true to enable access control list (ACL) on the SMB file\n share. Set it to false to map file and directory permissions to the POSIX\n permissions.

\n

For more information, see Using Microsoft Windows ACLs to\n control access to an SMB file share in the Storage Gateway User\n Guide.

\n

Valid Values: true | false\n

" + "smithy.api#documentation": "

Set this value to true to enable access control list (ACL) on the SMB file\n share. Set it to false to map file and directory permissions to the POSIX\n permissions.

\n

For more information, see Using Windows ACLs to limit SMB file share\n access in the Amazon S3 File Gateway User\n Guide.

\n

Valid Values: true | false\n

" } }, "AccessBasedEnumeration": { @@ -1747,7 +1765,7 @@ "NotificationPolicy": { "target": "com.amazonaws.storagegateway#NotificationPolicy", "traits": { - "smithy.api#documentation": "

The notification policy of the file share. SettlingTimeInSeconds controls\n the number of seconds to wait after the last point in time a client wrote to a file before\n generating an ObjectUploaded notification. Because clients can make many small\n writes to files, it's best to set this parameter for as long as possible to avoid\n generating multiple notifications for the same file in a small time period.

\n \n

\n SettlingTimeInSeconds has no effect on the timing of the object\n uploading to Amazon S3, only the timing of the notification.

\n \n

The following example sets NotificationPolicy on with\n SettlingTimeInSeconds set to 60.

\n

\n {\\\"Upload\\\": {\\\"SettlingTimeInSeconds\\\": 60}}\n

\n

The following example sets NotificationPolicy off.

\n

\n {}\n

" + "smithy.api#documentation": "

The notification policy of the file share. SettlingTimeInSeconds controls\n the number of seconds to wait after the last point in time a client wrote to a file before\n generating an ObjectUploaded notification. Because clients can make many small\n writes to files, it's best to set this parameter for as long as possible to avoid\n generating multiple notifications for the same file in a small time period.

\n \n

\n SettlingTimeInSeconds has no effect on the timing of the object\n uploading to Amazon S3, only the timing of the notification.

\n

This setting is not meant to specify an exact time at which the notification will be\n sent. In some cases, the gateway might require more than the specified delay time to\n generate and send notifications.

\n \n

The following example sets NotificationPolicy on with\n SettlingTimeInSeconds set to 60.

\n

\n {\\\"Upload\\\": {\\\"SettlingTimeInSeconds\\\": 60}}\n

\n

The following example sets NotificationPolicy off.

\n

\n {}\n

" } }, "VPCEndpointDNSName": { @@ -3865,7 +3883,7 @@ "SoftwareUpdatePreferences": { "target": "com.amazonaws.storagegateway#SoftwareUpdatePreferences", "traits": { - "smithy.api#documentation": "

A set of variables indicating the software update preferences for the gateway.

\n

Includes AutomaticUpdatePolicy field with the following inputs:

\n

\n ALL_VERSIONS - Enables regular gateway maintenance updates.

\n

\n EMERGENCY_VERSIONS_ONLY - Disables regular gateway maintenance\n updates.

" + "smithy.api#documentation": "

A set of variables indicating the software update preferences for the gateway.

\n

Includes AutomaticUpdatePolicy parameter with the following inputs:

\n

\n ALL_VERSIONS - Enables regular gateway maintenance updates.

\n

\n EMERGENCY_VERSIONS_ONLY - Disables regular gateway maintenance updates. The\n gateway will still receive emergency version updates on rare occasions if necessary to\n remedy highly critical security or durability issues. You will be notified before an\n emergency version update is applied. These updates are applied during your gateway's\n scheduled maintenance window.

" } } }, @@ -4514,29 +4532,29 @@ "smithy.api#documentation": "

Returns information about the upload buffer of a gateway. This operation is supported\n for the stored volume, cached volume, and tape gateway types.

\n

The response includes disk IDs that are configured as upload buffer space, and it\n includes the amount of upload buffer space allocated and used.

", "smithy.api#examples": [ { - "title": "To describe upload buffer of gateway", - "documentation": "Returns information about the upload buffer of a gateway including disk IDs and the amount of upload buffer space allocated/used.", + "title": "To describe upload buffer of a gateway", + "documentation": "Returns information about the upload buffer of a gateway including disk IDs and the amount of upload buffer space allocated and used.", "input": { "GatewayARN": "arn:aws:storagegateway:us-east-1:111122223333:gateway/sgw-12A3456B" }, "output": { "GatewayARN": "arn:aws:storagegateway:us-east-1:111122223333:gateway/sgw-12A3456B", "DiskIds": ["pci-0000:03:00.0-scsi-0:0:0:0", "pci-0000:04:00.0-scsi-0:1:0:0"], - "UploadBufferUsedInBytes": 161061273600, - "UploadBufferAllocatedInBytes": 0 + "UploadBufferUsedInBytes": 0, + "UploadBufferAllocatedInBytes": 161061273600 } }, { - "title": "To describe upload buffer of a gateway", - "documentation": "Returns information about the upload buffer of a gateway including disk IDs and the amount of upload buffer space allocated and used.", + "title": "To describe upload buffer of gateway", + "documentation": "Returns information about the upload buffer of a gateway including disk IDs and the amount of upload buffer space allocated/used.", "input": { "GatewayARN": "arn:aws:storagegateway:us-east-1:111122223333:gateway/sgw-12A3456B" }, "output": { "GatewayARN": "arn:aws:storagegateway:us-east-1:111122223333:gateway/sgw-12A3456B", "DiskIds": ["pci-0000:03:00.0-scsi-0:0:0:0", "pci-0000:04:00.0-scsi-0:1:0:0"], - "UploadBufferUsedInBytes": 0, - "UploadBufferAllocatedInBytes": 161061273600 + "UploadBufferUsedInBytes": 161061273600, + "UploadBufferAllocatedInBytes": 0 } } ] @@ -5177,6 +5195,29 @@ "com.amazonaws.storagegateway#Ec2InstanceRegion": { "type": "string" }, + "com.amazonaws.storagegateway#EncryptionType": { + "type": "enum", + "members": { + "SseS3": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "SseS3" + } + }, + "SseKms": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "SseKms" + } + }, + "DsseKms": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "DsseKms" + } + } + } + }, "com.amazonaws.storagegateway#EndpointNetworkConfiguration": { "type": "structure", "members": { @@ -6325,7 +6366,7 @@ "com.amazonaws.storagegateway#KMSKey": { "type": "string", "traits": { - "smithy.api#documentation": "

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This\n value can only be set when KMSEncrypted is true. Optional.

", + "smithy.api#documentation": "

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used\n for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric\n CMKs. This value must be set if KMSEncrypted is true, or if\n EncryptionType is SseKms or DsseKms.

", "smithy.api#length": { "min": 7, "max": 2048 @@ -7290,11 +7331,20 @@ "GatewayARN": { "target": "com.amazonaws.storagegateway#GatewayARN" }, + "EncryptionType": { + "target": "com.amazonaws.storagegateway#EncryptionType", + "traits": { + "smithy.api#documentation": "

A value that specifies the type of server-side encryption that the file share will use\n for the data that it stores in Amazon S3.

\n \n

We recommend using EncryptionType instead of KMSEncrypted\n to set the file share encryption method. You do not need to provide values for both\n parameters.

\n

If values for both parameters exist in the same request, then the specified\n encryption methods must not conflict. For example, if EncryptionType is\n SseS3, then KMSEncrypted must be false. If\n EncryptionType is SseKms or DsseKms, then\n KMSEncrypted must be true.

\n " + } + }, "KMSEncrypted": { "target": "com.amazonaws.storagegateway#Boolean2", "traits": { "smithy.api#default": false, - "smithy.api#documentation": "

Set to true to use Amazon S3 server-side encryption with your own\n KMS key, or false to use a key managed by Amazon S3.\n Optional.

\n

Valid Values: true | false\n

" + "smithy.api#deprecated": { + "message": "KMSEncrypted is deprecated, use EncryptionType instead." + }, + "smithy.api#documentation": "

Optional. Set to true to use Amazon S3 server-side encryption with\n your own KMS key (SSE-KMS), or false to use a key managed by\n Amazon S3 (SSE-S3). To use dual-layer encryption (DSSE-KMS), set the\n EncryptionType parameter instead.

\n \n

We recommend using EncryptionType instead of KMSEncrypted\n to set the file share encryption method. You do not need to provide values for both\n parameters.

\n

If values for both parameters exist in the same request, then the specified\n encryption methods must not conflict. For example, if EncryptionType is\n SseS3, then KMSEncrypted must be false. If\n EncryptionType is SseKms or DsseKms, then\n KMSEncrypted must be true.

\n \n

Valid Values: true | false\n

" } }, "KMSKey": { @@ -7363,7 +7413,7 @@ "NotificationPolicy": { "target": "com.amazonaws.storagegateway#NotificationPolicy", "traits": { - "smithy.api#documentation": "

The notification policy of the file share. SettlingTimeInSeconds controls\n the number of seconds to wait after the last point in time a client wrote to a file before\n generating an ObjectUploaded notification. Because clients can make many small\n writes to files, it's best to set this parameter for as long as possible to avoid\n generating multiple notifications for the same file in a small time period.

\n \n

\n SettlingTimeInSeconds has no effect on the timing of the object\n uploading to Amazon S3, only the timing of the notification.

\n \n

The following example sets NotificationPolicy on with\n SettlingTimeInSeconds set to 60.

\n

\n {\\\"Upload\\\": {\\\"SettlingTimeInSeconds\\\": 60}}\n

\n

The following example sets NotificationPolicy off.

\n

\n {}\n

" + "smithy.api#documentation": "

The notification policy of the file share. SettlingTimeInSeconds controls\n the number of seconds to wait after the last point in time a client wrote to a file before\n generating an ObjectUploaded notification. Because clients can make many small\n writes to files, it's best to set this parameter for as long as possible to avoid\n generating multiple notifications for the same file in a small time period.

\n \n

\n SettlingTimeInSeconds has no effect on the timing of the object\n uploading to Amazon S3, only the timing of the notification.

\n

This setting is not meant to specify an exact time at which the notification will be\n sent. In some cases, the gateway might require more than the specified delay time to\n generate and send notifications.

\n \n

The following example sets NotificationPolicy on with\n SettlingTimeInSeconds set to 60.

\n

\n {\\\"Upload\\\": {\\\"SettlingTimeInSeconds\\\": 60}}\n

\n

The following example sets NotificationPolicy off.

\n

\n {}\n

" } }, "VPCEndpointDNSName": { @@ -8124,11 +8174,20 @@ "GatewayARN": { "target": "com.amazonaws.storagegateway#GatewayARN" }, + "EncryptionType": { + "target": "com.amazonaws.storagegateway#EncryptionType", + "traits": { + "smithy.api#documentation": "

A value that specifies the type of server-side encryption that the file share will use\n for the data that it stores in Amazon S3.

\n \n

We recommend using EncryptionType instead of KMSEncrypted\n to set the file share encryption method. You do not need to provide values for both\n parameters.

\n

If values for both parameters exist in the same request, then the specified\n encryption methods must not conflict. For example, if EncryptionType is\n SseS3, then KMSEncrypted must be false. If\n EncryptionType is SseKms or DsseKms, then\n KMSEncrypted must be true.

\n " + } + }, "KMSEncrypted": { "target": "com.amazonaws.storagegateway#Boolean2", "traits": { "smithy.api#default": false, - "smithy.api#documentation": "

Set to true to use Amazon S3 server-side encryption with your own\n KMS key, or false to use a key managed by Amazon S3.\n Optional.

\n

Valid Values: true | false\n

" + "smithy.api#deprecated": { + "message": "KMSEncrypted is deprecated, use EncryptionType instead." + }, + "smithy.api#documentation": "

Optional. Set to true to use Amazon S3 server-side encryption with\n your own KMS key (SSE-KMS), or false to use a key managed by\n Amazon S3 (SSE-S3). To use dual-layer encryption (DSSE-KMS), set the\n EncryptionType parameter instead.

\n \n

We recommend using EncryptionType instead of KMSEncrypted\n to set the file share encryption method. You do not need to provide values for both\n parameters.

\n

If values for both parameters exist in the same request, then the specified\n encryption methods must not conflict. For example, if EncryptionType is\n SseS3, then KMSEncrypted must be false. If\n EncryptionType is SseKms or DsseKms, then\n KMSEncrypted must be true.

\n \n

Valid Values: true | false\n

" } }, "KMSKey": { @@ -8176,7 +8235,7 @@ "SMBACLEnabled": { "target": "com.amazonaws.storagegateway#Boolean", "traits": { - "smithy.api#documentation": "

If this value is set to true, it indicates that access control list (ACL)\n is enabled on the SMB file share. If it is set to false, it indicates that\n file and directory permissions are mapped to the POSIX permission.

\n

For more information, see Using Microsoft Windows ACLs to\n control access to an SMB file share in the Storage Gateway User\n Guide.

" + "smithy.api#documentation": "

If this value is set to true, it indicates that access control list (ACL)\n is enabled on the SMB file share. If it is set to false, it indicates that\n file and directory permissions are mapped to the POSIX permission.

\n

For more information, see Using Windows ACLs to limit SMB file share\n access in the Amazon S3 File Gateway User\n Guide.

" } }, "AccessBasedEnumeration": { @@ -8239,7 +8298,7 @@ "NotificationPolicy": { "target": "com.amazonaws.storagegateway#NotificationPolicy", "traits": { - "smithy.api#documentation": "

The notification policy of the file share. SettlingTimeInSeconds controls\n the number of seconds to wait after the last point in time a client wrote to a file before\n generating an ObjectUploaded notification. Because clients can make many small\n writes to files, it's best to set this parameter for as long as possible to avoid\n generating multiple notifications for the same file in a small time period.

\n \n

\n SettlingTimeInSeconds has no effect on the timing of the object\n uploading to Amazon S3, only the timing of the notification.

\n \n

The following example sets NotificationPolicy on with\n SettlingTimeInSeconds set to 60.

\n

\n {\\\"Upload\\\": {\\\"SettlingTimeInSeconds\\\": 60}}\n

\n

The following example sets NotificationPolicy off.

\n

\n {}\n

" + "smithy.api#documentation": "

The notification policy of the file share. SettlingTimeInSeconds controls\n the number of seconds to wait after the last point in time a client wrote to a file before\n generating an ObjectUploaded notification. Because clients can make many small\n writes to files, it's best to set this parameter for as long as possible to avoid\n generating multiple notifications for the same file in a small time period.

\n \n

\n SettlingTimeInSeconds has no effect on the timing of the object\n uploading to Amazon S3, only the timing of the notification.

\n

This setting is not meant to specify an exact time at which the notification will be\n sent. In some cases, the gateway might require more than the specified delay time to\n generate and send notifications.

\n \n

The following example sets NotificationPolicy on with\n SettlingTimeInSeconds set to 60.

\n

\n {\\\"Upload\\\": {\\\"SettlingTimeInSeconds\\\": 60}}\n

\n

The following example sets NotificationPolicy off.

\n

\n {}\n

" } }, "VPCEndpointDNSName": { @@ -8547,7 +8606,7 @@ "AutomaticUpdatePolicy": { "target": "com.amazonaws.storagegateway#AutomaticUpdatePolicy", "traits": { - "smithy.api#documentation": "

Indicates the automatic update policy for a gateway.

\n

\n ALL_VERSIONS - Enables regular gateway maintenance updates.

\n

\n EMERGENCY_VERSIONS_ONLY - Disables regular gateway maintenance\n updates.

" + "smithy.api#documentation": "

Indicates the automatic update policy for a gateway.

\n

\n ALL_VERSIONS - Enables regular gateway maintenance updates.

\n

\n EMERGENCY_VERSIONS_ONLY - Disables regular gateway maintenance updates. The\n gateway will still receive emergency version updates on rare occasions if necessary to\n remedy highly critical security or durability issues. You will be notified before an\n emergency version update is applied. These updates are applied during your gateway's\n scheduled maintenance window.

" } } }, @@ -11112,7 +11171,7 @@ "SoftwareUpdatePreferences": { "target": "com.amazonaws.storagegateway#SoftwareUpdatePreferences", "traits": { - "smithy.api#documentation": "

A set of variables indicating the software update preferences for the gateway.

\n

Includes AutomaticUpdatePolicy field with the following inputs:

\n

\n ALL_VERSIONS - Enables regular gateway maintenance updates.

\n

\n EMERGENCY_VERSIONS_ONLY - Disables regular gateway maintenance\n updates.

" + "smithy.api#documentation": "

A set of variables indicating the software update preferences for the gateway.

\n

Includes AutomaticUpdatePolicy field with the following inputs:

\n

\n ALL_VERSIONS - Enables regular gateway maintenance updates.

\n

\n EMERGENCY_VERSIONS_ONLY - Disables regular gateway maintenance updates. The\n gateway will still receive emergency version updates on rare occasions if necessary to\n remedy highly critical security or durability issues. You will be notified before an\n emergency version update is applied. These updates are applied during your gateway's\n scheduled maintenance window.

" } } }, @@ -11163,16 +11222,25 @@ "smithy.api#required": {} } }, + "EncryptionType": { + "target": "com.amazonaws.storagegateway#EncryptionType", + "traits": { + "smithy.api#documentation": "

A value that specifies the type of server-side encryption that the file share will use\n for the data that it stores in Amazon S3.

\n \n

We recommend using EncryptionType instead of KMSEncrypted\n to set the file share encryption method. You do not need to provide values for both\n parameters.

\n

If values for both parameters exist in the same request, then the specified\n encryption methods must not conflict. For example, if EncryptionType is\n SseS3, then KMSEncrypted must be false. If\n EncryptionType is SseKms or DsseKms, then\n KMSEncrypted must be true.

\n " + } + }, "KMSEncrypted": { "target": "com.amazonaws.storagegateway#Boolean", "traits": { - "smithy.api#documentation": "

Set to true to use Amazon S3 server-side encryption with your own\n KMS key, or false to use a key managed by Amazon S3.\n Optional.

\n

Valid Values: true | false\n

" + "smithy.api#deprecated": { + "message": "KMSEncrypted is deprecated, use EncryptionType instead." + }, + "smithy.api#documentation": "

Optional. Set to true to use Amazon S3 server-side encryption with\n your own KMS key (SSE-KMS), or false to use a key managed by\n Amazon S3 (SSE-S3). To use dual-layer encryption (DSSE-KMS), set the\n EncryptionType parameter instead.

\n \n

We recommend using EncryptionType instead of KMSEncrypted\n to set the file share encryption method. You do not need to provide values for both\n parameters.

\n

If values for both parameters exist in the same request, then the specified\n encryption methods must not conflict. For example, if EncryptionType is\n SseS3, then KMSEncrypted must be false. If\n EncryptionType is SseKms or DsseKms, then\n KMSEncrypted must be true.

\n \n

Valid Values: true | false\n

" } }, "KMSKey": { "target": "com.amazonaws.storagegateway#KMSKey", "traits": { - "smithy.api#documentation": "

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This\n value can only be set when KMSEncrypted is true. Optional.

" + "smithy.api#documentation": "

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used\n for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric\n CMKs. This value must be set if KMSEncrypted is true, or if\n EncryptionType is SseKms or DsseKms.

" } }, "NFSFileShareDefaults": { @@ -11238,7 +11306,7 @@ "NotificationPolicy": { "target": "com.amazonaws.storagegateway#NotificationPolicy", "traits": { - "smithy.api#documentation": "

The notification policy of the file share. SettlingTimeInSeconds controls\n the number of seconds to wait after the last point in time a client wrote to a file before\n generating an ObjectUploaded notification. Because clients can make many small\n writes to files, it's best to set this parameter for as long as possible to avoid\n generating multiple notifications for the same file in a small time period.

\n \n

\n SettlingTimeInSeconds has no effect on the timing of the object\n uploading to Amazon S3, only the timing of the notification.

\n \n

The following example sets NotificationPolicy on with\n SettlingTimeInSeconds set to 60.

\n

\n {\\\"Upload\\\": {\\\"SettlingTimeInSeconds\\\": 60}}\n

\n

The following example sets NotificationPolicy off.

\n

\n {}\n

" + "smithy.api#documentation": "

The notification policy of the file share. SettlingTimeInSeconds controls\n the number of seconds to wait after the last point in time a client wrote to a file before\n generating an ObjectUploaded notification. Because clients can make many small\n writes to files, it's best to set this parameter for as long as possible to avoid\n generating multiple notifications for the same file in a small time period.

\n \n

\n SettlingTimeInSeconds has no effect on the timing of the object\n uploading to Amazon S3, only the timing of the notification.

\n

This setting is not meant to specify an exact time at which the notification will be\n sent. In some cases, the gateway might require more than the specified delay time to\n generate and send notifications.

\n \n

The following example sets NotificationPolicy on with\n SettlingTimeInSeconds set to 60.

\n

\n {\\\"Upload\\\": {\\\"SettlingTimeInSeconds\\\": 60}}\n

\n

The following example sets NotificationPolicy off.

\n

\n {}\n

" } }, "AuditDestinationARN": { @@ -11298,16 +11366,25 @@ "smithy.api#required": {} } }, + "EncryptionType": { + "target": "com.amazonaws.storagegateway#EncryptionType", + "traits": { + "smithy.api#documentation": "

A value that specifies the type of server-side encryption that the file share will use\n for the data that it stores in Amazon S3.

\n \n

We recommend using EncryptionType instead of KMSEncrypted\n to set the file share encryption method. You do not need to provide values for both\n parameters.

\n

If values for both parameters exist in the same request, then the specified\n encryption methods must not conflict. For example, if EncryptionType is\n SseS3, then KMSEncrypted must be false. If\n EncryptionType is SseKms or DsseKms, then\n KMSEncrypted must be true.

\n " + } + }, "KMSEncrypted": { "target": "com.amazonaws.storagegateway#Boolean", "traits": { - "smithy.api#documentation": "

Set to true to use Amazon S3 server-side encryption with your own\n KMS key, or false to use a key managed by Amazon S3.\n Optional.

\n

Valid Values: true | false\n

" + "smithy.api#deprecated": { + "message": "KMSEncrypted is deprecated, use EncryptionType instead." + }, + "smithy.api#documentation": "

Optional. Set to true to use Amazon S3 server-side encryption with\n your own KMS key (SSE-KMS), or false to use a key managed by\n Amazon S3 (SSE-S3). To use dual-layer encryption (DSSE-KMS), set the\n EncryptionType parameter instead.

\n \n

We recommend using EncryptionType instead of KMSEncrypted\n to set the file share encryption method. You do not need to provide values for both\n parameters.

\n

If values for both parameters exist in the same request, then the specified\n encryption methods must not conflict. For example, if EncryptionType is\n SseS3, then KMSEncrypted must be false. If\n EncryptionType is SseKms or DsseKms, then\n KMSEncrypted must be true.

\n \n

Valid Values: true | false\n

" } }, "KMSKey": { "target": "com.amazonaws.storagegateway#KMSKey", "traits": { - "smithy.api#documentation": "

The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric CMKs. This\n value can only be set when KMSEncrypted is true. Optional.

" + "smithy.api#documentation": "

Optional. The Amazon Resource Name (ARN) of a symmetric customer master key (CMK) used\n for Amazon S3 server-side encryption. Storage Gateway does not support asymmetric\n CMKs. This value must be set if KMSEncrypted is true, or if\n EncryptionType is SseKms or DsseKms.

" } }, "DefaultStorageClass": { @@ -11343,7 +11420,7 @@ "SMBACLEnabled": { "target": "com.amazonaws.storagegateway#Boolean", "traits": { - "smithy.api#documentation": "

Set this value to true to enable access control list (ACL) on the SMB file\n share. Set it to false to map file and directory permissions to the POSIX\n permissions.

\n

For more information, see Using Microsoft Windows ACLs to\n control access to an SMB file share in the Storage Gateway User\n Guide.

\n

Valid Values: true | false\n

" + "smithy.api#documentation": "

Set this value to true to enable access control list (ACL) on the SMB file\n share. Set it to false to map file and directory permissions to the POSIX\n permissions.

\n

For more information, see Using Windows ACLs to limit SMB file share\n access in the Amazon S3 File Gateway User\n Guide.

\n

Valid Values: true | false\n

" } }, "AccessBasedEnumeration": { @@ -11397,7 +11474,7 @@ "NotificationPolicy": { "target": "com.amazonaws.storagegateway#NotificationPolicy", "traits": { - "smithy.api#documentation": "

The notification policy of the file share. SettlingTimeInSeconds controls\n the number of seconds to wait after the last point in time a client wrote to a file before\n generating an ObjectUploaded notification. Because clients can make many small\n writes to files, it's best to set this parameter for as long as possible to avoid\n generating multiple notifications for the same file in a small time period.

\n \n

\n SettlingTimeInSeconds has no effect on the timing of the object\n uploading to Amazon S3, only the timing of the notification.

\n \n

The following example sets NotificationPolicy on with\n SettlingTimeInSeconds set to 60.

\n

\n {\\\"Upload\\\": {\\\"SettlingTimeInSeconds\\\": 60}}\n

\n

The following example sets NotificationPolicy off.

\n

\n {}\n

" + "smithy.api#documentation": "

The notification policy of the file share. SettlingTimeInSeconds controls\n the number of seconds to wait after the last point in time a client wrote to a file before\n generating an ObjectUploaded notification. Because clients can make many small\n writes to files, it's best to set this parameter for as long as possible to avoid\n generating multiple notifications for the same file in a small time period.

\n \n

\n SettlingTimeInSeconds has no effect on the timing of the object\n uploading to Amazon S3, only the timing of the notification.

\n

This setting is not meant to specify an exact time at which the notification will be\n sent. In some cases, the gateway might require more than the specified delay time to\n generate and send notifications.

\n \n

The following example sets NotificationPolicy on with\n SettlingTimeInSeconds set to 60.

\n

\n {\\\"Upload\\\": {\\\"SettlingTimeInSeconds\\\": 60}}\n

\n

The following example sets NotificationPolicy off.

\n

\n {}\n

" } }, "OplocksEnabled": { @@ -11840,7 +11917,8 @@ "smithy.api#length": { "min": 50, "max": 500 - } + }, + "smithy.api#pattern": "^arn:(aws(|-cn|-us-gov|-iso[A-Za-z0-9_-]*)):storagegateway:[a-z\\-0-9]+:[0-9]+:gateway\\/(.+)\\/volume\\/vol-(\\S+)$" } }, "com.amazonaws.storagegateway#VolumeARNs": {