UNPKG

openapi-directory

Version:

Building & bundling https://github.com/APIs-guru/openapi-directory for easy use from JS

github.com/httptoolkit/openapi-directory-js

httptoolkit/openapi-directory-js

1 lines 74.2 kB
1
{"openapi":"3.0.0","info":{"version":"2018-05-10","x-release":"v4","title":"IAM Roles Anywhere","description":"<p>Identity and Access Management Roles Anywhere provides a secure way for your workloads such as servers, containers, and applications that run outside of Amazon Web Services to obtain temporary Amazon Web Services credentials. Your workloads can use the same IAM policies and roles you have for native Amazon Web Services applications to access Amazon Web Services resources. Using IAM Roles Anywhere eliminates the need to manage long-term credentials for workloads running outside of Amazon Web Services.</p> <p> To use IAM Roles Anywhere, your workloads must use X.509 certificates issued by their certificate authority (CA). You register the CA with IAM Roles Anywhere as a trust anchor to establish trust between your public key infrastructure (PKI) and IAM Roles Anywhere. If you don't manage your own PKI system, you can use Private Certificate Authority to create a CA and then use that to establish trust with IAM Roles Anywhere. </p> <p>This guide describes the IAM Roles Anywhere operations that you can call programmatically. For more information about IAM Roles Anywhere, see the <a href=\"https://docs.aws.amazon.com/rolesanywhere/latest/userguide/introduction.html\">IAM Roles Anywhere User Guide</a>.</p>","x-logo":{"url":"https://twitter.com/awscloud/profile_image?size=original","backgroundColor":"#FFFFFF"},"termsOfService":"https://aws.amazon.com/service-terms/","contact":{"name":"Mike Ralphson","email":"mike.ralphson@gmail.com","url":"https://github.com/mermade/aws2openapi","x-twitter":"PermittedSoc"},"license":{"name":"Apache 2.0 License","url":"http://www.apache.org/licenses/"},"x-providerName":"amazonaws.com","x-serviceName":"rolesanywhere","x-aws-signingName":"rolesanywhere","x-origin":[{"contentType":"application/json","url":"https://raw.githubusercontent.com/aws/aws-sdk-js/master/apis/rolesanywhere-2018-05-10.normal.json","converter":{"url":"https://github.com/mermade/aws2openapi","version":"1.0.0"},"x-apisguru-driver":"external"}],"x-apiClientRegistration":{"url":"https://portal.aws.amazon.com/gp/aws/developer/registration/index.html?nc2=h_ct"},"x-apisguru-categories":["cloud"],"x-preferred":true},"externalDocs":{"description":"Amazon Web Services documentation","url":"https://docs.aws.amazon.com/rolesanywhere/"},"servers":[{"url":"http://rolesanywhere.{region}.amazonaws.com","variables":{"region":{"description":"The AWS region","enum":["us-east-1","us-east-2","us-west-1","us-west-2","us-gov-west-1","us-gov-east-1","ca-central-1","eu-north-1","eu-west-1","eu-west-2","eu-west-3","eu-central-1","eu-south-1","af-south-1","ap-northeast-1","ap-northeast-2","ap-northeast-3","ap-southeast-1","ap-southeast-2","ap-east-1","ap-south-1","sa-east-1","me-south-1"],"default":"us-east-1"}},"description":"The IAM Roles Anywhere multi-region endpoint"},{"url":"https://rolesanywhere.{region}.amazonaws.com","variables":{"region":{"description":"The AWS region","enum":["us-east-1","us-east-2","us-west-1","us-west-2","us-gov-west-1","us-gov-east-1","ca-central-1","eu-north-1","eu-west-1","eu-west-2","eu-west-3","eu-central-1","eu-south-1","af-south-1","ap-northeast-1","ap-northeast-2","ap-northeast-3","ap-southeast-1","ap-southeast-2","ap-east-1","ap-south-1","sa-east-1","me-south-1"],"default":"us-east-1"}},"description":"The IAM Roles Anywhere multi-region endpoint"},{"url":"http://rolesanywhere.{region}.amazonaws.com.cn","variables":{"region":{"description":"The AWS region","enum":["cn-north-1","cn-northwest-1"],"default":"cn-north-1"}},"description":"The IAM Roles Anywhere endpoint for China (Beijing) and China (Ningxia)"},{"url":"https://rolesanywhere.{region}.amazonaws.com.cn","variables":{"region":{"description":"The AWS region","enum":["cn-north-1","cn-northwest-1"],"default":"cn-north-1"}},"description":"The IAM Roles Anywhere endpoint for China (Beijing) and China (Ningxia)"}],"paths":{"/profiles":{"post":{"operationId":"CreateProfile","description":"<p>Creates a <i>profile</i>, a list of the roles that Roles Anywhere service is trusted to assume. You use profiles to intersect permissions with IAM managed policies.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:CreateProfile</code>. </p>","responses":{"201":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ProfileDetailResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[],"requestBody":{"required":true,"content":{"application/json":{"schema":{"type":"object","required":["name","roleArns"],"properties":{"durationSeconds":{"description":" The number of seconds the vended session credentials are valid for. ","type":"integer","minimum":900,"maximum":3600},"enabled":{"description":"Specifies whether the profile is enabled.","type":"boolean"},"managedPolicyArns":{"description":"A list of managed policy ARNs that apply to the vended session credentials. ","type":"array","items":{"$ref":"#/components/schemas/ManagedPolicyListMemberString"},"minItems":0,"maxItems":50},"name":{"description":"The name of the profile.","type":"string","pattern":"^[ a-zA-Z0-9-_]*$","minLength":1,"maxLength":255},"requireInstanceProperties":{"description":"Specifies whether instance properties are required in temporary credential requests with this profile. ","type":"boolean"},"roleArns":{"description":"A list of IAM roles that this profile can assume in a temporary credential request.","type":"array","items":{"$ref":"#/components/schemas/RoleArn"},"minItems":0,"maxItems":50},"sessionPolicy":{"description":"A session policy that applies to the trust boundary of the vended session credentials. ","type":"string"},"tags":{"description":"The tags to attach to the profile.","type":"array","items":{"$ref":"#/components/schemas/Tag"},"minItems":0,"maxItems":200}}}}}}},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}],"get":{"operationId":"ListProfiles","description":"<p>Lists all profiles in the authenticated account and Amazon Web Services Region.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:ListProfiles</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ListProfilesResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"nextToken","in":"query","required":false,"description":"A token that indicates where the output should continue from, if a previous request did not show all results. To get the next results, make the request again with this value.","schema":{"type":"string","minLength":1,"maxLength":10000}},{"name":"pageSize","in":"query","required":false,"description":"The number of resources in the paginated list. ","schema":{"type":"integer"}}]}},"/trustanchors":{"post":{"operationId":"CreateTrustAnchor","description":"<p>Creates a trust anchor to establish trust between IAM Roles Anywhere and your certificate authority (CA). You can define a trust anchor as a reference to an Private Certificate Authority (Private CA) or by uploading a CA certificate. Your Amazon Web Services workloads can authenticate with the trust anchor using certificates issued by the CA in exchange for temporary Amazon Web Services credentials.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:CreateTrustAnchor</code>. </p>","responses":{"201":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/TrustAnchorDetailResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[],"requestBody":{"required":true,"content":{"application/json":{"schema":{"type":"object","required":["name","source"],"properties":{"enabled":{"description":"Specifies whether the trust anchor is enabled.","type":"boolean"},"name":{"description":"The name of the trust anchor.","type":"string","pattern":"^[ a-zA-Z0-9-_]*$","minLength":1,"maxLength":255},"notificationSettings":{"description":"A list of notification settings to be associated to the trust anchor.","type":"array","items":{"$ref":"#/components/schemas/NotificationSetting"},"minItems":0,"maxItems":50},"source":{"description":"The trust anchor type and its related certificate data.","type":"object","properties":{"sourceData":{"allOf":[{"$ref":"#/components/schemas/SourceData"},{"description":"The data field of the trust anchor depending on its type. "}]},"sourceType":{"allOf":[{"$ref":"#/components/schemas/TrustAnchorType"},{"description":"The type of the trust anchor. "}]}}},"tags":{"description":"The tags to attach to the trust anchor.","type":"array","items":{"$ref":"#/components/schemas/Tag"},"minItems":0,"maxItems":200}}}}}}},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}],"get":{"operationId":"ListTrustAnchors","description":"<p>Lists the trust anchors in the authenticated account and Amazon Web Services Region.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:ListTrustAnchors</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ListTrustAnchorsResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"nextToken","in":"query","required":false,"description":"A token that indicates where the output should continue from, if a previous request did not show all results. To get the next results, make the request again with this value.","schema":{"type":"string","minLength":1,"maxLength":10000}},{"name":"pageSize","in":"query","required":false,"description":"The number of resources in the paginated list. ","schema":{"type":"integer"}}]}},"/crl/{crlId}":{"delete":{"operationId":"DeleteCrl","description":"<p>Deletes a certificate revocation list (CRL).</p> <p> <b>Required permissions: </b> <code>rolesanywhere:DeleteCrl</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/CrlDetailResponse"}}}},"480":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"crlId","in":"path","required":true,"description":"The unique identifier of the certificate revocation list (CRL).","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}]},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}],"get":{"operationId":"GetCrl","description":"<p>Gets a certificate revocation list (CRL).</p> <p> <b>Required permissions: </b> <code>rolesanywhere:GetCrl</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/CrlDetailResponse"}}}},"480":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}}},"parameters":[{"name":"crlId","in":"path","required":true,"description":"The unique identifier of the certificate revocation list (CRL).","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}]},"patch":{"operationId":"UpdateCrl","description":"<p>Updates the certificate revocation list (CRL). A CRL is a list of certificates that have been revoked by the issuing certificate authority (CA). IAM Roles Anywhere validates against the CRL before issuing credentials.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:UpdateCrl</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/CrlDetailResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"482":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"crlId","in":"path","required":true,"description":"The unique identifier of the certificate revocation list (CRL).","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}],"requestBody":{"required":true,"content":{"application/json":{"schema":{"type":"object","properties":{"crlData":{"description":"The x509 v3 specified certificate revocation list (CRL).","type":"string","minLength":1,"maxLength":300000},"name":{"description":"The name of the Crl.","type":"string","pattern":"^[ a-zA-Z0-9-_]*$","minLength":1,"maxLength":255}}}}}}}},"/profile/{profileId}":{"delete":{"operationId":"DeleteProfile","description":"<p>Deletes a profile.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:DeleteProfile</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ProfileDetailResponse"}}}},"480":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"profileId","in":"path","required":true,"description":"The unique identifier of the profile.","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}]},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}],"get":{"operationId":"GetProfile","description":"<p>Gets a profile.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:GetProfile</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ProfileDetailResponse"}}}},"480":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"profileId","in":"path","required":true,"description":"The unique identifier of the profile.","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}]},"patch":{"operationId":"UpdateProfile","description":"<p>Updates a <i>profile</i>, a list of the roles that IAM Roles Anywhere service is trusted to assume. You use profiles to intersect permissions with IAM managed policies.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:UpdateProfile</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ProfileDetailResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"482":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"profileId","in":"path","required":true,"description":"The unique identifier of the profile.","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}],"requestBody":{"required":true,"content":{"application/json":{"schema":{"type":"object","properties":{"durationSeconds":{"description":" The number of seconds the vended session credentials are valid for. ","type":"integer","minimum":900,"maximum":3600},"managedPolicyArns":{"description":"A list of managed policy ARNs that apply to the vended session credentials. ","type":"array","items":{"$ref":"#/components/schemas/ManagedPolicyListMemberString"},"minItems":0,"maxItems":50},"name":{"description":"The name of the profile.","type":"string","pattern":"^[ a-zA-Z0-9-_]*$","minLength":1,"maxLength":255},"roleArns":{"description":"A list of IAM roles that this profile can assume in a temporary credential request.","type":"array","items":{"$ref":"#/components/schemas/RoleArn"},"minItems":0,"maxItems":50},"sessionPolicy":{"description":"A session policy that applies to the trust boundary of the vended session credentials. ","type":"string","minLength":1,"maxLength":100000}}}}}}}},"/trustanchor/{trustAnchorId}":{"delete":{"operationId":"DeleteTrustAnchor","description":"<p>Deletes a trust anchor.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:DeleteTrustAnchor</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/TrustAnchorDetailResponse"}}}},"480":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"trustAnchorId","in":"path","required":true,"description":"The unique identifier of the trust anchor.","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}]},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}],"get":{"operationId":"GetTrustAnchor","description":"<p>Gets a trust anchor.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:GetTrustAnchor</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/TrustAnchorDetailResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"482":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"trustAnchorId","in":"path","required":true,"description":"The unique identifier of the trust anchor.","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}]},"patch":{"operationId":"UpdateTrustAnchor","description":"<p>Updates a trust anchor. You establish trust between IAM Roles Anywhere and your certificate authority (CA) by configuring a trust anchor. You can define a trust anchor as a reference to an Private Certificate Authority (Private CA) or by uploading a CA certificate. Your Amazon Web Services workloads can authenticate with the trust anchor using certificates issued by the CA in exchange for temporary Amazon Web Services credentials.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:UpdateTrustAnchor</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/TrustAnchorDetailResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"482":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"trustAnchorId","in":"path","required":true,"description":"The unique identifier of the trust anchor.","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}],"requestBody":{"required":true,"content":{"application/json":{"schema":{"type":"object","properties":{"name":{"description":"The name of the trust anchor.","type":"string","pattern":"^[ a-zA-Z0-9-_]*$","minLength":1,"maxLength":255},"source":{"description":"The trust anchor type and its related certificate data.","type":"object","properties":{"sourceData":{"allOf":[{"$ref":"#/components/schemas/SourceData"},{"description":"The data field of the trust anchor depending on its type. "}]},"sourceType":{"allOf":[{"$ref":"#/components/schemas/TrustAnchorType"},{"description":"The type of the trust anchor. "}]}}}}}}}}}},"/crl/{crlId}/disable":{"post":{"operationId":"DisableCrl","description":"<p>Disables a certificate revocation list (CRL).</p> <p> <b>Required permissions: </b> <code>rolesanywhere:DisableCrl</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/CrlDetailResponse"}}}},"480":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"crlId","in":"path","required":true,"description":"The unique identifier of the certificate revocation list (CRL).","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}]},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}]},"/profile/{profileId}/disable":{"post":{"operationId":"DisableProfile","description":"<p>Disables a profile. When disabled, temporary credential requests with this profile fail.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:DisableProfile</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ProfileDetailResponse"}}}},"480":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"profileId","in":"path","required":true,"description":"The unique identifier of the profile.","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}]},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}]},"/trustanchor/{trustAnchorId}/disable":{"post":{"operationId":"DisableTrustAnchor","description":"<p>Disables a trust anchor. When disabled, temporary credential requests specifying this trust anchor are unauthorized.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:DisableTrustAnchor</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/TrustAnchorDetailResponse"}}}},"480":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"trustAnchorId","in":"path","required":true,"description":"The unique identifier of the trust anchor.","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}]},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}]},"/crl/{crlId}/enable":{"post":{"operationId":"EnableCrl","description":"<p>Enables a certificate revocation list (CRL). When enabled, certificates stored in the CRL are unauthorized to receive session credentials.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:EnableCrl</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/CrlDetailResponse"}}}},"480":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"crlId","in":"path","required":true,"description":"The unique identifier of the certificate revocation list (CRL).","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}]},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}]},"/profile/{profileId}/enable":{"post":{"operationId":"EnableProfile","description":"<p>Enables temporary credential requests for a profile. </p> <p> <b>Required permissions: </b> <code>rolesanywhere:EnableProfile</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ProfileDetailResponse"}}}},"480":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"profileId","in":"path","required":true,"description":"The unique identifier of the profile.","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}]},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}]},"/trustanchor/{trustAnchorId}/enable":{"post":{"operationId":"EnableTrustAnchor","description":"<p>Enables a trust anchor. When enabled, certificates in the trust anchor chain are authorized for trust validation. </p> <p> <b>Required permissions: </b> <code>rolesanywhere:EnableTrustAnchor</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/TrustAnchorDetailResponse"}}}},"480":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"trustAnchorId","in":"path","required":true,"description":"The unique identifier of the trust anchor.","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}]},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}]},"/subject/{subjectId}":{"get":{"operationId":"GetSubject","description":"<p>Gets a <i>subject</i>, which associates a certificate identity with authentication attempts. The subject stores auditing information such as the status of the last authentication attempt, the certificate data used in the attempt, and the last time the associated identity attempted authentication. </p> <p> <b>Required permissions: </b> <code>rolesanywhere:GetSubject</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/SubjectDetailResponse"}}}},"480":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"subjectId","in":"path","required":true,"description":"The unique identifier of the subject. ","schema":{"type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}]},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}]},"/crls":{"post":{"operationId":"ImportCrl","description":"<p>Imports the certificate revocation list (CRL). A CRL is a list of certificates that have been revoked by the issuing certificate Authority (CA). IAM Roles Anywhere validates against the CRL before issuing credentials. </p> <p> <b>Required permissions: </b> <code>rolesanywhere:ImportCrl</code>. </p>","responses":{"201":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/CrlDetailResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[],"requestBody":{"required":true,"content":{"application/json":{"schema":{"type":"object","required":["crlData","name","trustAnchorArn"],"properties":{"crlData":{"description":"The x509 v3 specified certificate revocation list (CRL).","type":"string","minLength":1,"maxLength":300000},"enabled":{"description":"Specifies whether the certificate revocation list (CRL) is enabled.","type":"boolean"},"name":{"description":"The name of the certificate revocation list (CRL).","type":"string","pattern":"^[ a-zA-Z0-9-_]*$","minLength":1,"maxLength":255},"tags":{"description":"A list of tags to attach to the certificate revocation list (CRL).","type":"array","items":{"$ref":"#/components/schemas/Tag"},"minItems":0,"maxItems":200},"trustAnchorArn":{"description":"The ARN of the TrustAnchor the certificate revocation list (CRL) will provide revocation for.","type":"string","pattern":"^arn:aws(-[^:]+)?:rolesanywhere(:.*){2}(:trust-anchor.*)$","minLength":1,"maxLength":1011}}}}}}},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}],"get":{"operationId":"ListCrls","description":"<p>Lists all certificate revocation lists (CRL) in the authenticated account and Amazon Web Services Region.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:ListCrls</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ListCrlsResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"nextToken","in":"query","required":false,"description":"A token that indicates where the output should continue from, if a previous request did not show all results. To get the next results, make the request again with this value.","schema":{"type":"string","minLength":1,"maxLength":10000}},{"name":"pageSize","in":"query","required":false,"description":"The number of resources in the paginated list. ","schema":{"type":"integer"}}]}},"/subjects":{"get":{"operationId":"ListSubjects","description":"<p>Lists the subjects in the authenticated account and Amazon Web Services Region.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:ListSubjects</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ListSubjectsResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"nextToken","in":"query","required":false,"description":"A token that indicates where the output should continue from, if a previous request did not show all results. To get the next results, make the request again with this value.","schema":{"type":"string","minLength":1,"maxLength":10000}},{"name":"pageSize","in":"query","required":false,"description":"The number of resources in the paginated list. ","schema":{"type":"integer"}}]},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}]},"/ListTagsForResource#resourceArn":{"get":{"operationId":"ListTagsForResource","description":"<p>Lists the tags attached to the resource.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:ListTagsForResource</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ListTagsForResourceResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"482":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[{"name":"resourceArn","in":"query","required":true,"description":"The ARN of the resource.","schema":{"type":"string","minLength":1,"maxLength":1011}}]},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}]},"/put-notifications-settings":{"patch":{"operationId":"PutNotificationSettings","description":"<p>Attaches a list of <i>notification settings</i> to a trust anchor.</p> <p>A notification setting includes information such as event name, threshold, status of the notification setting, and the channel to notify.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:PutNotificationSettings</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/PutNotificationSettingsResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"482":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[],"requestBody":{"required":true,"content":{"application/json":{"schema":{"type":"object","required":["notificationSettings","trustAnchorId"],"properties":{"notificationSettings":{"description":"A list of notification settings to be associated to the trust anchor.","type":"array","items":{"$ref":"#/components/schemas/NotificationSetting"},"minItems":0,"maxItems":50},"trustAnchorId":{"description":"The unique identifier of the trust anchor.","type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}}}}}},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}]},"/reset-notifications-settings":{"patch":{"operationId":"ResetNotificationSettings","description":"<p>Resets the <i>custom notification setting</i> to IAM Roles Anywhere default setting. </p> <p> <b>Required permissions: </b> <code>rolesanywhere:ResetNotificationSettings</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResetNotificationSettingsResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"482":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[],"requestBody":{"required":true,"content":{"application/json":{"schema":{"type":"object","required":["notificationSettingKeys","trustAnchorId"],"properties":{"notificationSettingKeys":{"description":"A list of notification setting keys to reset. A notification setting key includes the event and the channel. ","type":"array","items":{"$ref":"#/components/schemas/NotificationSettingKey"},"minItems":0,"maxItems":50},"trustAnchorId":{"description":"The unique identifier of the trust anchor.","type":"string","pattern":"[a-f0-9]{8}-([a-z0-9]{4}-){3}[a-z0-9]{12}","minLength":36,"maxLength":36}}}}}}},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}]},"/TagResource":{"post":{"operationId":"TagResource","description":"<p>Attaches tags to a resource.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:TagResource</code>. </p>","responses":{"201":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/TagResourceResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"482":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}},"483":{"description":"TooManyTagsException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/TooManyTagsException"}}}}},"parameters":[],"requestBody":{"required":true,"content":{"application/json":{"schema":{"type":"object","required":["resourceArn","tags"],"properties":{"resourceArn":{"description":"The ARN of the resource.","type":"string","minLength":1,"maxLength":1011},"tags":{"description":"The tags to attach to the resource.","type":"array","items":{"$ref":"#/components/schemas/Tag"},"minItems":0,"maxItems":200}}}}}}},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}]},"/UntagResource":{"post":{"operationId":"UntagResource","description":"<p>Removes tags from the resource.</p> <p> <b>Required permissions: </b> <code>rolesanywhere:UntagResource</code>. </p>","responses":{"200":{"description":"Success","content":{"application/json":{"schema":{"$ref":"#/components/schemas/UntagResourceResponse"}}}},"480":{"description":"ValidationException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ValidationException"}}}},"481":{"description":"ResourceNotFoundException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/ResourceNotFoundException"}}}},"482":{"description":"AccessDeniedException","content":{"application/json":{"schema":{"$ref":"#/components/schemas/AccessDeniedException"}}}}},"parameters":[],"requestBody":{"required":true,"content":{"application/json":{"schema":{"type":"object","required":["resourceArn","tagKeys"],"properties":{"resourceArn":{"description":"The ARN of the resource.","type":"string","minLength":1,"maxLength":1011},"tagKeys":{"description":"A list of keys. Tag keys are the unique identifiers of tags. ","type":"array","items":{"$ref":"#/components/schemas/TagKey"},"minItems":0,"maxItems":200}}}}}}},"parameters":[{"$ref":"#/components/parameters/X-Amz-Content-Sha256"},{"$ref":"#/components/parameters/X-Amz-Date"},{"$ref":"#/components/parameters/X-Amz-Algorithm"},{"$ref":"#/components/parameters/X-Amz-Credential"},{"$ref":"#/components/parameters/X-Amz-Security-Token"},{"$ref":"#/components/parameters/X-Amz-Signature"},{"$ref":"#/components/parameters/X-Amz-SignedHeaders"}]}},"components":{"parameters":{"X-Amz-Content-Sha256":{"name":"X-Amz-Content-Sha256","in":"header","schema":{"type":"string"},"required":false},"X-Amz-Date":{"name":"X-Amz-Date","in":"header","schema":{"type":"string"},"required":false},"X-Amz-Algorithm":{"name":"X-Amz-Algorithm","in":"header","schema":{"type":"string"},"required":false},"X-Amz-Credential":{"name":"X-Amz-Credential","in":"header","schema":{"type":"string"},"required":false},"X-Amz-Security-Token":{"name":"X-Amz-Security-Token","in":"header","schema":{"type":"string"},"required":false},"X-Amz-Signature":{"name":"X-Amz-Signature","in":"header","schema":{"type":"string"},"required":false},"X-Amz-SignedHeaders":{"name":"X-Amz-SignedHeaders","in":"header","schema":{"type":"string"},"required":false}},"securitySchemes":{"hmac":{"type":"apiKey","name":"Authorization","in":"header","description":"Amazon Signature authorization v4","x-amazon-apigateway-authtype":"awsSigv4"}},"schemas":{"ProfileDetailResponse":{"type":"object","properties":{"profile":{"allOf":[{"$ref":"#/components/schemas/ProfileDetail"},{"description":"The state of the profile after a read or write operation."}]}}},"ManagedPolicyListMemberString":{"type":"string","minLength":1,"maxLength":200},"RoleArn":{"type":"string","pattern":"^arn:aws(-[^:]+)?:iam(:.*){2}(:role.*)$","minLength":1,"maxLength":1011},"Tag":{"type":"object","required":["key","value"],"properties":{"key":{"allOf":[{"$ref":"#/components/schemas/TagKey"},{"description":"The tag key."}]},"value":{"allOf":[{"$ref":"#/components/schemas/TagValue"},{"description":"The tag value."}]}},"description":"A label that consists of a key and value you define. "},"ValidationException":{},"AccessDeniedException":{},"TrustAnchorDetailResponse":{"type":"object","required":["trustAnchor"],"properties":{"trustAnchor":{"allOf":[{"$ref":"#/components/schemas/TrustAnchorDetail"},{"description":"The state of the trust anchor after a read or write operation. "}]}}},"NotificationSetting":{"type":"object","required":["enabled","event"],"properties":{"channel":{"allOf":[{"$ref":"#/components/schemas/NotificationChannel"},{"description":"<p>The specified channel of notification. IAM Roles Anywhere uses CloudWatch metrics, EventBridge, and Health Dashboard to notify for an event.</p> <note> <p>In the absence of a specific channel, IAM Roles Anywhere applies this setting to 'ALL' channels.</p> </note>"}]},"enabled":{"allOf":[{"$ref":"#/components/schemas/Boolean"},{"description":"Indicates whether the notification setting is enabled."}]},"event":{"allOf":[{"$ref":"#/components/schemas/NotificationEvent"},{"description":"The event to which this notification setting is applied."}]},"threshold":{"allOf":[{"$ref":"#/components/schemas/NotificationSettingThresholdInteger"},{"description":"The number of days before a notification event. This value is required for a notification setting that is enabled."}]}},"description":" Customizable notification settings that will be applied to notification events. IAM Roles Anywhere consumes these settings while notifying across multiple channels - CloudWatch metrics, EventBridge, and Health Dashboard. "},"SourceData":{"type":"object","properties":{"acmPcaArn":{"allOf":[{"$ref":"#/components/schemas/String"},{"description":" The root certificate of the Private Certificate Authority specified by this ARN is used in trust validation for temporary credential requests. Included for trust anchors of type <code>AWS_ACM_PCA</code>. "}]},"x509CertificateData":{"allOf":[{"$ref":"#/components/schemas/SourceDataX509CertificateDataString"},{"description":"The PEM-encoded data for the certificate anchor. Included for trust anchors of type <code>CERTIFICATE_BUNDLE</code>. "}]}},"description":"The data field of the trust anchor depending on its type. "},"TrustAnchorType":{"type":"string","enum":["AWS_ACM_PCA","CERTIFICATE_BUNDLE","SELF_SIGNED_REPOSITORY"]},"CrlDetailResponse":{"type":"object","required":["crl"],"properties":{"crl":{"allOf":[{"$ref":"#/components/schemas/CrlDetail"},{"description":"The state of the certificate revocation list (CRL) after a read or write operation."}]}}},"ResourceNotFoundException":{},"SubjectDetailResponse":{"type":"obj