feat(client-iam): Added the EnableOutboundWebIdentityFederation, DisableOutboundWebIdentityFederation and GetOutboundWebIdentityFederationInfo APIs for the IAM outbound federation feature.

Author: awstools

clients/client-iam/README.md

@@ -631,6 +631,14 @@ DisableOrganizationsRootSessions
 
 [Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/iam/command/DisableOrganizationsRootSessionsCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-iam/Interface/DisableOrganizationsRootSessionsCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-iam/Interface/DisableOrganizationsRootSessionsCommandOutput/)
 
+</details>
+<details>
+<summary>
+DisableOutboundWebIdentityFederation
+</summary>
+
+[Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/iam/command/DisableOutboundWebIdentityFederationCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-iam/Interface/DisableOutboundWebIdentityFederationCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-iam/Interface/DisableOutboundWebIdentityFederationCommandOutput/)
+
 </details>
 <details>
 <summary>
@@ -655,6 +663,14 @@ EnableOrganizationsRootSessions
 
 [Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/iam/command/EnableOrganizationsRootSessionsCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-iam/Interface/EnableOrganizationsRootSessionsCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-iam/Interface/EnableOrganizationsRootSessionsCommandOutput/)
 
+</details>
+<details>
+<summary>
+EnableOutboundWebIdentityFederation
+</summary>
+
+[Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/iam/command/EnableOutboundWebIdentityFederationCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-iam/Interface/EnableOutboundWebIdentityFederationCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-iam/Interface/EnableOutboundWebIdentityFederationCommandOutput/)
+
 </details>
 <details>
 <summary>
@@ -807,6 +823,14 @@ GetOrganizationsAccessReport
 
 [Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/iam/command/GetOrganizationsAccessReportCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-iam/Interface/GetOrganizationsAccessReportCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-iam/Interface/GetOrganizationsAccessReportCommandOutput/)
 
+</details>
+<details>
+<summary>
+GetOutboundWebIdentityFederationInfo
+</summary>
+
+[Command API Reference](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/client/iam/command/GetOutboundWebIdentityFederationInfoCommand/) / [Input](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-iam/Interface/GetOutboundWebIdentityFederationInfoCommandInput/) / [Output](https://docs.aws.amazon.com/AWSJavaScriptSDK/v3/latest/Package/-aws-sdk-client-iam/Interface/GetOutboundWebIdentityFederationInfoCommandOutput/)
+
 </details>
 <details>
 <summary>

clients/client-iam/src/IAM.ts

@@ -243,6 +243,11 @@ import {
   DisableOrganizationsRootSessionsCommandInput,
   DisableOrganizationsRootSessionsCommandOutput,
 } from "./commands/DisableOrganizationsRootSessionsCommand";
+import {
+  DisableOutboundWebIdentityFederationCommand,
+  DisableOutboundWebIdentityFederationCommandInput,
+  DisableOutboundWebIdentityFederationCommandOutput,
+} from "./commands/DisableOutboundWebIdentityFederationCommand";
 import {
   EnableMFADeviceCommand,
   EnableMFADeviceCommandInput,
@@ -258,6 +263,11 @@ import {
   EnableOrganizationsRootSessionsCommandInput,
   EnableOrganizationsRootSessionsCommandOutput,
 } from "./commands/EnableOrganizationsRootSessionsCommand";
+import {
+  EnableOutboundWebIdentityFederationCommand,
+  EnableOutboundWebIdentityFederationCommandInput,
+  EnableOutboundWebIdentityFederationCommandOutput,
+} from "./commands/EnableOutboundWebIdentityFederationCommand";
 import {
   GenerateCredentialReportCommand,
   GenerateCredentialReportCommandInput,
@@ -349,6 +359,11 @@ import {
   GetOrganizationsAccessReportCommandInput,
   GetOrganizationsAccessReportCommandOutput,
 } from "./commands/GetOrganizationsAccessReportCommand";
+import {
+  GetOutboundWebIdentityFederationInfoCommand,
+  GetOutboundWebIdentityFederationInfoCommandInput,
+  GetOutboundWebIdentityFederationInfoCommandOutput,
+} from "./commands/GetOutboundWebIdentityFederationInfoCommand";
 import { GetPolicyCommand, GetPolicyCommandInput, GetPolicyCommandOutput } from "./commands/GetPolicyCommand";
 import {
   GetPolicyVersionCommand,
@@ -835,9 +850,11 @@ const commands = {
   DetachUserPolicyCommand,
   DisableOrganizationsRootCredentialsManagementCommand,
   DisableOrganizationsRootSessionsCommand,
+  DisableOutboundWebIdentityFederationCommand,
   EnableMFADeviceCommand,
   EnableOrganizationsRootCredentialsManagementCommand,
   EnableOrganizationsRootSessionsCommand,
+  EnableOutboundWebIdentityFederationCommand,
   GenerateCredentialReportCommand,
   GenerateOrganizationsAccessReportCommand,
   GenerateServiceLastAccessedDetailsCommand,
@@ -857,6 +874,7 @@ const commands = {
   GetMFADeviceCommand,
   GetOpenIDConnectProviderCommand,
   GetOrganizationsAccessReportCommand,
+  GetOutboundWebIdentityFederationInfoCommand,
   GetPolicyCommand,
   GetPolicyVersionCommand,
   GetRoleCommand,
@@ -1805,6 +1823,24 @@ export interface IAM {
     cb: (err: any, data?: DisableOrganizationsRootSessionsCommandOutput) => void
   ): void;
 
+  /**
+   * @see {@link DisableOutboundWebIdentityFederationCommand}
+   */
+  disableOutboundWebIdentityFederation(): Promise<DisableOutboundWebIdentityFederationCommandOutput>;
+  disableOutboundWebIdentityFederation(
+    args: DisableOutboundWebIdentityFederationCommandInput,
+    options?: __HttpHandlerOptions
+  ): Promise<DisableOutboundWebIdentityFederationCommandOutput>;
+  disableOutboundWebIdentityFederation(
+    args: DisableOutboundWebIdentityFederationCommandInput,
+    cb: (err: any, data?: DisableOutboundWebIdentityFederationCommandOutput) => void
+  ): void;
+  disableOutboundWebIdentityFederation(
+    args: DisableOutboundWebIdentityFederationCommandInput,
+    options: __HttpHandlerOptions,
+    cb: (err: any, data?: DisableOutboundWebIdentityFederationCommandOutput) => void
+  ): void;
+
   /**
    * @see {@link EnableMFADeviceCommand}
    */
@@ -1855,6 +1891,24 @@ export interface IAM {
     cb: (err: any, data?: EnableOrganizationsRootSessionsCommandOutput) => void
   ): void;
 
+  /**
+   * @see {@link EnableOutboundWebIdentityFederationCommand}
+   */
+  enableOutboundWebIdentityFederation(): Promise<EnableOutboundWebIdentityFederationCommandOutput>;
+  enableOutboundWebIdentityFederation(
+    args: EnableOutboundWebIdentityFederationCommandInput,
+    options?: __HttpHandlerOptions
+  ): Promise<EnableOutboundWebIdentityFederationCommandOutput>;
+  enableOutboundWebIdentityFederation(
+    args: EnableOutboundWebIdentityFederationCommandInput,
+    cb: (err: any, data?: EnableOutboundWebIdentityFederationCommandOutput) => void
+  ): void;
+  enableOutboundWebIdentityFederation(
+    args: EnableOutboundWebIdentityFederationCommandInput,
+    options: __HttpHandlerOptions,
+    cb: (err: any, data?: EnableOutboundWebIdentityFederationCommandOutput) => void
+  ): void;
+
   /**
    * @see {@link GenerateCredentialReportCommand}
    */
@@ -2166,6 +2220,24 @@ export interface IAM {
     cb: (err: any, data?: GetOrganizationsAccessReportCommandOutput) => void
   ): void;
 
+  /**
+   * @see {@link GetOutboundWebIdentityFederationInfoCommand}
+   */
+  getOutboundWebIdentityFederationInfo(): Promise<GetOutboundWebIdentityFederationInfoCommandOutput>;
+  getOutboundWebIdentityFederationInfo(
+    args: GetOutboundWebIdentityFederationInfoCommandInput,
+    options?: __HttpHandlerOptions
+  ): Promise<GetOutboundWebIdentityFederationInfoCommandOutput>;
+  getOutboundWebIdentityFederationInfo(
+    args: GetOutboundWebIdentityFederationInfoCommandInput,
+    cb: (err: any, data?: GetOutboundWebIdentityFederationInfoCommandOutput) => void
+  ): void;
+  getOutboundWebIdentityFederationInfo(
+    args: GetOutboundWebIdentityFederationInfoCommandInput,
+    options: __HttpHandlerOptions,
+    cb: (err: any, data?: GetOutboundWebIdentityFederationInfoCommandOutput) => void
+  ): void;
+
   /**
    * @see {@link GetPolicyCommand}
    */

clients/client-iam/src/IAMClient.ts

@@ -185,6 +185,10 @@ import {
   DisableOrganizationsRootSessionsCommandInput,
   DisableOrganizationsRootSessionsCommandOutput,
 } from "./commands/DisableOrganizationsRootSessionsCommand";
+import {
+  DisableOutboundWebIdentityFederationCommandInput,
+  DisableOutboundWebIdentityFederationCommandOutput,
+} from "./commands/DisableOutboundWebIdentityFederationCommand";
 import { EnableMFADeviceCommandInput, EnableMFADeviceCommandOutput } from "./commands/EnableMFADeviceCommand";
 import {
   EnableOrganizationsRootCredentialsManagementCommandInput,
@@ -194,6 +198,10 @@ import {
   EnableOrganizationsRootSessionsCommandInput,
   EnableOrganizationsRootSessionsCommandOutput,
 } from "./commands/EnableOrganizationsRootSessionsCommand";
+import {
+  EnableOutboundWebIdentityFederationCommandInput,
+  EnableOutboundWebIdentityFederationCommandOutput,
+} from "./commands/EnableOutboundWebIdentityFederationCommand";
 import {
   GenerateCredentialReportCommandInput,
   GenerateCredentialReportCommandOutput,
@@ -252,6 +260,10 @@ import {
   GetOrganizationsAccessReportCommandInput,
   GetOrganizationsAccessReportCommandOutput,
 } from "./commands/GetOrganizationsAccessReportCommand";
+import {
+  GetOutboundWebIdentityFederationInfoCommandInput,
+  GetOutboundWebIdentityFederationInfoCommandOutput,
+} from "./commands/GetOutboundWebIdentityFederationInfoCommand";
 import { GetPolicyCommandInput, GetPolicyCommandOutput } from "./commands/GetPolicyCommand";
 import { GetPolicyVersionCommandInput, GetPolicyVersionCommandOutput } from "./commands/GetPolicyVersionCommand";
 import { GetRoleCommandInput, GetRoleCommandOutput } from "./commands/GetRoleCommand";
@@ -565,9 +577,11 @@ export type ServiceInputTypes =
   | DetachUserPolicyCommandInput
   | DisableOrganizationsRootCredentialsManagementCommandInput
   | DisableOrganizationsRootSessionsCommandInput
+  | DisableOutboundWebIdentityFederationCommandInput
   | EnableMFADeviceCommandInput
   | EnableOrganizationsRootCredentialsManagementCommandInput
   | EnableOrganizationsRootSessionsCommandInput
+  | EnableOutboundWebIdentityFederationCommandInput
   | GenerateCredentialReportCommandInput
   | GenerateOrganizationsAccessReportCommandInput
   | GenerateServiceLastAccessedDetailsCommandInput
@@ -587,6 +601,7 @@ export type ServiceInputTypes =
   | GetMFADeviceCommandInput
   | GetOpenIDConnectProviderCommandInput
   | GetOrganizationsAccessReportCommandInput
+  | GetOutboundWebIdentityFederationInfoCommandInput
   | GetPolicyCommandInput
   | GetPolicyVersionCommandInput
   | GetRoleCommandInput
@@ -743,9 +758,11 @@ export type ServiceOutputTypes =
   | DetachUserPolicyCommandOutput
   | DisableOrganizationsRootCredentialsManagementCommandOutput
   | DisableOrganizationsRootSessionsCommandOutput
+  | DisableOutboundWebIdentityFederationCommandOutput
   | EnableMFADeviceCommandOutput
   | EnableOrganizationsRootCredentialsManagementCommandOutput
   | EnableOrganizationsRootSessionsCommandOutput
+  | EnableOutboundWebIdentityFederationCommandOutput
   | GenerateCredentialReportCommandOutput
   | GenerateOrganizationsAccessReportCommandOutput
   | GenerateServiceLastAccessedDetailsCommandOutput
@@ -765,6 +782,7 @@ export type ServiceOutputTypes =
   | GetMFADeviceCommandOutput
   | GetOpenIDConnectProviderCommandOutput
   | GetOrganizationsAccessReportCommandOutput
+  | GetOutboundWebIdentityFederationInfoCommandOutput
   | GetPolicyCommandOutput
   | GetPolicyVersionCommandOutput
   | GetRoleCommandOutput

clients/client-iam/src/commands/DisableOutboundWebIdentityFederationCommand.ts

@@ -0,0 +1,89 @@
+// smithy-typescript generated code
+import { getEndpointPlugin } from "@smithy/middleware-endpoint";
+import { Command as $Command } from "@smithy/smithy-client";
+import { MetadataBearer as __MetadataBearer } from "@smithy/types";
+
+import { commonParams } from "../endpoint/EndpointParameters";
+import { IAMClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../IAMClient";
+import { DisableOutboundWebIdentityFederation } from "../schemas/schemas_0";
+
+/**
+ * @public
+ */
+export type { __MetadataBearer };
+export { $Command };
+/**
+ * @public
+ *
+ * The input for {@link DisableOutboundWebIdentityFederationCommand}.
+ */
+export interface DisableOutboundWebIdentityFederationCommandInput {}
+/**
+ * @public
+ *
+ * The output of {@link DisableOutboundWebIdentityFederationCommand}.
+ */
+export interface DisableOutboundWebIdentityFederationCommandOutput extends __MetadataBearer {}
+
+/**
+ * <p>Disables the outbound identity federation feature for your Amazon Web Services account. When disabled, IAM principals in the account cannot
+ *             use the <code>GetWebIdentityToken</code> API to obtain JSON Web Tokens (JWTs) for authentication with external services. This operation
+ *             does not affect tokens that were issued before the feature was disabled.</p>
+ * @example
+ * Use a bare-bones client and the command you need to make an API call.
+ * ```javascript
+ * import { IAMClient, DisableOutboundWebIdentityFederationCommand } from "@aws-sdk/client-iam"; // ES Modules import
+ * // const { IAMClient, DisableOutboundWebIdentityFederationCommand } = require("@aws-sdk/client-iam"); // CommonJS import
+ * // import type { IAMClientConfig } from "@aws-sdk/client-iam";
+ * const config = {}; // type is IAMClientConfig
+ * const client = new IAMClient(config);
+ * const input = {};
+ * const command = new DisableOutboundWebIdentityFederationCommand(input);
+ * const response = await client.send(command);
+ * // {};
+ *
+ * ```
+ *
+ * @param DisableOutboundWebIdentityFederationCommandInput - {@link DisableOutboundWebIdentityFederationCommandInput}
+ * @returns {@link DisableOutboundWebIdentityFederationCommandOutput}
+ * @see {@link DisableOutboundWebIdentityFederationCommandInput} for command's `input` shape.
+ * @see {@link DisableOutboundWebIdentityFederationCommandOutput} for command's `response` shape.
+ * @see {@link IAMClientResolvedConfig | config} for IAMClient's `config` shape.
+ *
+ * @throws {@link FeatureDisabledException} (client fault)
+ *  <p>The request failed because outbound identity federation is already disabled for your Amazon Web Services account. You cannot disable the feature multiple times</p>
+ *
+ * @throws {@link IAMServiceException}
+ * <p>Base exception class for all service exceptions from IAM service.</p>
+ *
+ *
+ * @public
+ */
+export class DisableOutboundWebIdentityFederationCommand extends $Command
+  .classBuilder<
+    DisableOutboundWebIdentityFederationCommandInput,
+    DisableOutboundWebIdentityFederationCommandOutput,
+    IAMClientResolvedConfig,
+    ServiceInputTypes,
+    ServiceOutputTypes
+  >()
+  .ep(commonParams)
+  .m(function (this: any, Command: any, cs: any, config: IAMClientResolvedConfig, o: any) {
+    return [getEndpointPlugin(config, Command.getEndpointParameterInstructions())];
+  })
+  .s("AWSIdentityManagementV20100508", "DisableOutboundWebIdentityFederation", {})
+  .n("IAMClient", "DisableOutboundWebIdentityFederationCommand")
+  .sc(DisableOutboundWebIdentityFederation)
+  .build() {
+  /** @internal type navigation helper, not in runtime. */
+  protected declare static __types: {
+    api: {
+      input: {};
+      output: {};
+    };
+    sdk: {
+      input: DisableOutboundWebIdentityFederationCommandInput;
+      output: DisableOutboundWebIdentityFederationCommandOutput;
+    };
+  };
+}