Amazon Elastic Compute Cloud Update: This release adds GroupOwnerId as a response member to the DescribeSecurityGroupVpcAssociations API and also adds waiters for SecurityGroupVpcAssociations (SecurityGroupVpcAssociationAssociated and SecurityGroupVpcAssociationDisassociated).

AWS · AWS · commit 5f5431e3ccc7 · 2025-07-03T18:09:54.000Z
diff --git a/.changes/next-release/feature-AmazonElasticComputeCloud-d3e66fb.json b/.changes/next-release/feature-AmazonElasticComputeCloud-d3e66fb.json
@@ -0,0 +1,6 @@
+{
+    "type": "feature",
+    "category": "Amazon Elastic Compute Cloud",
+    "contributor": "",
+    "description": "This release adds GroupOwnerId as a response member to the DescribeSecurityGroupVpcAssociations API and also adds waiters for SecurityGroupVpcAssociations (SecurityGroupVpcAssociationAssociated and SecurityGroupVpcAssociationDisassociated)."
+}
diff --git a/services/ec2/src/main/resources/codegen-resources/service-2.json b/services/ec2/src/main/resources/codegen-resources/service-2.json
@@ -301,7 +301,7 @@
       },
       "input":{"shape":"AssociateSecurityGroupVpcRequest"},
       "output":{"shape":"AssociateSecurityGroupVpcResult"},
-      "documentation":"<p>Associates a security group with another VPC in the same Region. This enables you to use the same security group with network interfaces and instances in the specified VPC.</p> <note> <ul> <li> <p>The VPC you want to associate the security group with must be in the same Region.</p> </li> <li> <p>You can associate the security group with another VPC if your account owns the VPC or if the VPC was shared with you.</p> </li> <li> <p>You must own the security group and the VPC that it was created in.</p> </li> <li> <p>You cannot use this feature with default security groups.</p> </li> <li> <p>You cannot use this feature with the default VPC.</p> </li> </ul> </note>"
+      "documentation":"<p>Associates a security group with another VPC in the same Region. This enables you to use the same security group with network interfaces and instances in the specified VPC.</p> <note> <ul> <li> <p>The VPC you want to associate the security group with must be in the same Region.</p> </li> <li> <p>You can associate the security group with another VPC if your account owns the VPC or if the VPC was shared with you.</p> </li> <li> <p>You must own the security group.</p> </li> <li> <p>You cannot use this feature with default security groups.</p> </li> <li> <p>You cannot use this feature with the default VPC.</p> </li> </ul> </note>"
     },
     "AssociateSubnetCidrBlock":{
       "name":"AssociateSubnetCidrBlock",
@@ -26191,7 +26191,7 @@
       "members":{
         "Filters":{
           "shape":"FilterList",
-          "documentation":"<p>Security group VPC association filters.</p> <ul> <li> <p> <code>group-id</code>: The security group ID.</p> </li> <li> <p> <code>vpc-id</code>: The ID of the associated VPC.</p> </li> <li> <p> <code>vpc-owner-id</code>: The account ID of the VPC owner.</p> </li> <li> <p> <code>state</code>: The state of the association.</p> </li> <li> <p> <code>tag:&lt;key&gt;</code>: The key/value combination of a tag assigned to the resource. Use the tag key in the filter name and the tag value as the filter value. For example, to find all resources that have a tag with the key <code>Owner</code> and the value <code>TeamA</code>, specify <code>tag:Owner</code> for the filter name and <code>TeamA</code> for the filter value.</p> </li> <li> <p> <code>tag-key</code>: The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.</p> </li> </ul>",
+          "documentation":"<p>Security group VPC association filters.</p> <ul> <li> <p> <code>group-id</code>: The security group ID.</p> </li> <li> <p> <code>group-owner-id</code>: The group owner ID.</p> </li> <li> <p> <code>vpc-id</code>: The ID of the associated VPC.</p> </li> <li> <p> <code>vpc-owner-id</code>: The account ID of the VPC owner.</p> </li> <li> <p> <code>state</code>: The state of the association.</p> </li> <li> <p> <code>tag:&lt;key&gt;</code>: The key/value combination of a tag assigned to the resource. Use the tag key in the filter name and the tag value as the filter value. For example, to find all resources that have a tag with the key <code>Owner</code> and the value <code>TeamA</code>, specify <code>tag:Owner</code> for the filter name and <code>TeamA</code> for the filter value.</p> </li> <li> <p> <code>tag-key</code>: The key of a tag assigned to the resource. Use this filter to find all resources assigned a tag with a specific key, regardless of the tag value.</p> </li> </ul>",
           "locationName":"Filter"
         },
         "NextToken":{
@@ -59385,6 +59385,11 @@
           "shape":"String",
           "documentation":"<p>The association's state reason.</p>",
           "locationName":"stateReason"
+        },
+        "GroupOwnerId":{
+          "shape":"String",
+          "documentation":"<p>The Amazon Web Services account ID of the owner of the security group.</p>",
+          "locationName":"groupOwnerId"
         }
       },
       "documentation":"<p>A security group association with a VPC that you made with <a href=\"https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_AssociateSecurityGroupVpc.html\">AssociateSecurityGroupVpc</a>.</p>"
diff --git a/services/ec2/src/main/resources/codegen-resources/waiters-2.json b/services/ec2/src/main/resources/codegen-resources/waiters-2.json
@@ -458,6 +458,62 @@
         }
       ]
     },
+    "SecurityGroupVpcAssociationAssociated": {
+      "delay": 10,
+      "maxAttempts": 7,
+      "operation": "DescribeSecurityGroupVpcAssociations",
+      "acceptors": [
+        {
+          "expected": "associated",
+          "matcher": "pathAll",
+          "state": "success",
+          "argument": "SecurityGroupVpcAssociations[].State"
+        },
+        {
+          "expected": "associating",
+          "matcher": "pathAny",
+          "state": "retry",
+          "argument": "SecurityGroupVpcAssociations[].State"
+        },
+        {
+          "expected": "association-failed",
+          "matcher": "pathAny",
+          "state": "failure",
+          "argument": "SecurityGroupVpcAssociations[].State"
+        }
+      ]
+    },
+    "SecurityGroupVpcAssociationDisassociated": {
+      "delay": 10,
+      "maxAttempts": 7,
+      "operation": "DescribeSecurityGroupVpcAssociations",
+      "acceptors": [
+        {
+          "expected": "disassociated",
+          "matcher": "pathAll",
+          "state": "success",
+          "argument": "SecurityGroupVpcAssociations[].State"
+        },
+        {
+          "expected": "disassociating",
+          "matcher": "pathAny",
+          "state": "retry",
+          "argument": "SecurityGroupVpcAssociations[].State"
+        },
+        {
+          "expected": "disassociation-failed",
+          "matcher": "pathAny",
+          "state": "failure",
+          "argument": "SecurityGroupVpcAssociations[].State"
+        },
+        {
+          "expected": true,
+          "matcher": "path",
+          "state": "success",
+          "argument": "length(SecurityGroupVpcAssociations[]) == `0`"
+        }
+      ]
+    },
     "SpotInstanceRequestFulfilled": {
       "operation": "DescribeSpotInstanceRequests",
       "maxAttempts": 40,
