This release adds the capability to enable IAM IdentityCenter Trusted Identity Propagation for users running Interactive Sessions on EMR Serverless Applications.

Author: aws-sdk-dotnet-automation

generator/ServiceModels/emr-serverless/emr-serverless-2021-07-13.api.json

@@ -296,7 +296,8 @@
         "runtimeConfiguration":{"shape":"ConfigurationList"},
         "monitoringConfiguration":{"shape":"MonitoringConfiguration"},
         "interactiveConfiguration":{"shape":"InteractiveConfiguration"},
-        "schedulerConfiguration":{"shape":"SchedulerConfiguration"}
+        "schedulerConfiguration":{"shape":"SchedulerConfiguration"},
+        "identityCenterConfiguration":{"shape":"IdentityCenterConfiguration"}
       }
     },
     "ApplicationArn":{
@@ -535,7 +536,8 @@
         "runtimeConfiguration":{"shape":"ConfigurationList"},
         "monitoringConfiguration":{"shape":"MonitoringConfiguration"},
         "interactiveConfiguration":{"shape":"InteractiveConfiguration"},
-        "schedulerConfiguration":{"shape":"SchedulerConfiguration"}
+        "schedulerConfiguration":{"shape":"SchedulerConfiguration"},
+        "identityCenterConfiguration":{"shape":"IdentityCenterConfigurationInput"}
       }
     },
     "CreateApplicationResponse":{
@@ -722,6 +724,29 @@
       "min":20,
       "pattern":"arn:(aws[a-zA-Z0-9-]*):iam::([0-9]{12}):(role((\\u002F)|(\\u002F[\\u0021-\\u007F]+\\u002F))[\\w+=,.@-]+)"
     },
+    "IdentityCenterApplicationArn":{
+      "type":"string",
+      "pattern":"arn:(aws[a-zA-Z0-9-]*):sso::\\d{12}:application/(sso)?ins-[a-zA-Z0-9-.]{16}/apl-[a-zA-Z0-9]{16}"
+    },
+    "IdentityCenterConfiguration":{
+      "type":"structure",
+      "members":{
+        "identityCenterInstanceArn":{"shape":"IdentityCenterInstanceArn"},
+        "identityCenterApplicationArn":{"shape":"IdentityCenterApplicationArn"}
+      }
+    },
+    "IdentityCenterConfigurationInput":{
+      "type":"structure",
+      "members":{
+        "identityCenterInstanceArn":{"shape":"IdentityCenterInstanceArn"}
+      }
+    },
+    "IdentityCenterInstanceArn":{
+      "type":"string",
+      "max":1024,
+      "min":10,
+      "pattern":"arn:(aws[a-zA-Z0-9-]*):sso:::instance/(sso)?ins-[a-zA-Z0-9-.]{16}"
+    },
     "ImageConfiguration":{
       "type":"structure",
       "required":["imageUri"],
@@ -1550,7 +1575,8 @@
         "releaseLabel":{"shape":"ReleaseLabel"},
         "runtimeConfiguration":{"shape":"ConfigurationList"},
         "monitoringConfiguration":{"shape":"MonitoringConfiguration"},
-        "schedulerConfiguration":{"shape":"SchedulerConfiguration"}
+        "schedulerConfiguration":{"shape":"SchedulerConfiguration"},
+        "identityCenterConfiguration":{"shape":"IdentityCenterConfigurationInput"}
       }
     },
     "UpdateApplicationResponse":{

generator/ServiceModels/emr-serverless/emr-serverless-2021-07-13.docs.json

@@ -385,6 +385,32 @@
         "StartJobRunRequest$executionRoleArn": "<p>The execution role ARN for the job run.</p>"
       }
     },
+    "IdentityCenterApplicationArn": {
+      "base": null,
+      "refs": {
+        "IdentityCenterConfiguration$identityCenterApplicationArn": "<p>The ARN of the EMR Serverless created IAM Identity Center Application that provides trusted-identity propagation.</p>"
+      }
+    },
+    "IdentityCenterConfiguration": {
+      "base": "<p>The IAM Identity Center Configuration that includes the Identify Center instance and application ARNs that provide trusted-identity propagation.</p>",
+      "refs": {
+        "Application$identityCenterConfiguration": "<p>The IAM Identity Center configuration applied to enable trusted identity propagation. </p>"
+      }
+    },
+    "IdentityCenterConfigurationInput": {
+      "base": "<p>Specifies the IAM Identity Center configuration used to enable or disable trusted identity propagation. When provided, this configuration determines how the application interacts with IAM Identity Center for user authentication and access control.</p>",
+      "refs": {
+        "CreateApplicationRequest$identityCenterConfiguration": "<p>The IAM Identity Center Configuration accepts the Identity Center instance parameter required to enable trusted identity propagation. This configuration allows identity propagation between integrated services and the Identity Center instance.</p>",
+        "UpdateApplicationRequest$identityCenterConfiguration": "<p>Specifies the IAM Identity Center configuration used to enable or disable trusted identity propagation. When provided, this configuration determines how the application interacts with IAM Identity Center for user authentication and access control.</p>"
+      }
+    },
+    "IdentityCenterInstanceArn": {
+      "base": null,
+      "refs": {
+        "IdentityCenterConfiguration$identityCenterInstanceArn": "<p>The ARN of the IAM Identity Center instance.</p>",
+        "IdentityCenterConfigurationInput$identityCenterInstanceArn": "<p>The ARN of the IAM Identity Center instance.</p>"
+      }
+    },
     "ImageConfiguration": {
       "base": "<p>The applied image configuration.</p>",
       "refs": {

generator/ServiceModels/emr-serverless/emr-serverless-2021-07-13.normal.json

@@ -375,6 +375,10 @@
         "schedulerConfiguration":{
           "shape":"SchedulerConfiguration",
           "documentation":"<p>The scheduler configuration for batch and streaming jobs running on this application. Supported with release labels emr-7.0.0 and above.</p>"
+        },
+        "identityCenterConfiguration":{
+          "shape":"IdentityCenterConfiguration",
+          "documentation":"<p>The IAM Identity Center configuration applied to enable trusted identity propagation. </p>"
         }
       },
       "documentation":"<p>Information about an application. Amazon EMR Serverless uses applications to run jobs.</p>"
@@ -749,6 +753,10 @@
         "schedulerConfiguration":{
           "shape":"SchedulerConfiguration",
           "documentation":"<p>The scheduler configuration for batch and streaming jobs running on this application. Supported with release labels emr-7.0.0 and above.</p>"
+        },
+        "identityCenterConfiguration":{
+          "shape":"IdentityCenterConfigurationInput",
+          "documentation":"<p>The IAM Identity Center Configuration accepts the Identity Center instance parameter required to enable trusted identity propagation. This configuration allows identity propagation between integrated services and the Identity Center instance.</p>"
         }
       }
     },
@@ -973,6 +981,40 @@
       "min":20,
       "pattern":"arn:(aws[a-zA-Z0-9-]*):iam::([0-9]{12}):(role((\\u002F)|(\\u002F[\\u0021-\\u007F]+\\u002F))[\\w+=,.@-]+)"
     },
+    "IdentityCenterApplicationArn":{
+      "type":"string",
+      "pattern":"arn:(aws[a-zA-Z0-9-]*):sso::\\d{12}:application/(sso)?ins-[a-zA-Z0-9-.]{16}/apl-[a-zA-Z0-9]{16}"
+    },
+    "IdentityCenterConfiguration":{
+      "type":"structure",
+      "members":{
+        "identityCenterInstanceArn":{
+          "shape":"IdentityCenterInstanceArn",
+          "documentation":"<p>The ARN of the IAM Identity Center instance.</p>"
+        },
+        "identityCenterApplicationArn":{
+          "shape":"IdentityCenterApplicationArn",
+          "documentation":"<p>The ARN of the EMR Serverless created IAM Identity Center Application that provides trusted-identity propagation.</p>"
+        }
+      },
+      "documentation":"<p>The IAM Identity Center Configuration that includes the Identify Center instance and application ARNs that provide trusted-identity propagation.</p>"
+    },
+    "IdentityCenterConfigurationInput":{
+      "type":"structure",
+      "members":{
+        "identityCenterInstanceArn":{
+          "shape":"IdentityCenterInstanceArn",
+          "documentation":"<p>The ARN of the IAM Identity Center instance.</p>"
+        }
+      },
+      "documentation":"<p>Specifies the IAM Identity Center configuration used to enable or disable trusted identity propagation. When provided, this configuration determines how the application interacts with IAM Identity Center for user authentication and access control.</p>"
+    },
+    "IdentityCenterInstanceArn":{
+      "type":"string",
+      "max":1024,
+      "min":10,
+      "pattern":"arn:(aws[a-zA-Z0-9-]*):sso:::instance/(sso)?ins-[a-zA-Z0-9-.]{16}"
+    },
     "ImageConfiguration":{
       "type":"structure",
       "required":["imageUri"],
@@ -2226,6 +2268,10 @@
         "schedulerConfiguration":{
           "shape":"SchedulerConfiguration",
           "documentation":"<p>The scheduler configuration for batch and streaming jobs running on this application. Supported with release labels emr-7.0.0 and above.</p>"
+        },
+        "identityCenterConfiguration":{
+          "shape":"IdentityCenterConfigurationInput",
+          "documentation":"<p>Specifies the IAM Identity Center configuration used to enable or disable trusted identity propagation. When provided, this configuration determines how the application interacts with IAM Identity Center for user authentication and access control.</p>"
         }
       }
     },

sdk/code-analysis/ServiceAnalysis/EMRServerless/Generated/PropertyValueRules.xml

@@ -395,6 +395,22 @@
     <max>10280</max>
     <pattern>.*\S.*</pattern>
   </property-value-rule>
+  <property-value-rule>
+    <property>Amazon.EMRServerless.Model.IdentityCenterConfiguration.IdentityCenterApplicationArn</property>
+    <pattern>arn:(aws[a-zA-Z0-9-]*):sso::\d{12}:application/(sso)?ins-[a-zA-Z0-9-.]{16}/apl-[a-zA-Z0-9]{16}</pattern>
+  </property-value-rule>
+  <property-value-rule>
+    <property>Amazon.EMRServerless.Model.IdentityCenterConfiguration.IdentityCenterInstanceArn</property>
+    <min>10</min>
+    <max>1024</max>
+    <pattern>arn:(aws[a-zA-Z0-9-]*):sso:::instance/(sso)?ins-[a-zA-Z0-9-.]{16}</pattern>
+  </property-value-rule>
+  <property-value-rule>
+    <property>Amazon.EMRServerless.Model.IdentityCenterConfigurationInput.IdentityCenterInstanceArn</property>
+    <min>10</min>
+    <max>1024</max>
+    <pattern>arn:(aws[a-zA-Z0-9-]*):sso:::instance/(sso)?ins-[a-zA-Z0-9-.]{16}</pattern>
+  </property-value-rule>
   <property-value-rule>
     <property>Amazon.EMRServerless.Model.ImageConfiguration.ImageUri</property>
     <min>1</min>

sdk/src/Services/EMRServerless/Generated/Model/Application.cs

@@ -40,6 +40,7 @@ public partial class Application
         private AutoStartConfig _autoStartConfiguration;
         private AutoStopConfig _autoStopConfiguration;
         private DateTime? _createdAt;
+        private IdentityCenterConfiguration _identityCenterConfiguration;
         private ImageConfiguration _imageConfiguration;
         private Dictionary<string, InitialCapacityConfig> _initialCapacity = AWSConfigs.InitializeCollections ? new Dictionary<string, InitialCapacityConfig>() : null;
         private InteractiveConfiguration _interactiveConfiguration;
@@ -169,6 +170,25 @@ internal bool IsSetCreatedAt()
             return this._createdAt.HasValue; 
         }
 
+        /// <summary>
+        /// Gets and sets the property IdentityCenterConfiguration. 
+        /// <para>
+        /// The IAM Identity Center configuration applied to enable trusted identity propagation.
+        /// 
+        /// </para>
+        /// </summary>
+        public IdentityCenterConfiguration IdentityCenterConfiguration
+        {
+            get { return this._identityCenterConfiguration; }
+            set { this._identityCenterConfiguration = value; }
+        }
+
+        // Check to see if IdentityCenterConfiguration property is set
+        internal bool IsSetIdentityCenterConfiguration()
+        {
+            return this._identityCenterConfiguration != null;
+        }
+
         /// <summary>
         /// Gets and sets the property ImageConfiguration. 
         /// <para>

sdk/src/Services/EMRServerless/Generated/Model/CreateApplicationRequest.cs

@@ -39,6 +39,7 @@ public partial class CreateApplicationRequest : AmazonEMRServerlessRequest
         private AutoStartConfig _autoStartConfiguration;
         private AutoStopConfig _autoStopConfiguration;
         private string _clientToken;
+        private IdentityCenterConfigurationInput _identityCenterConfiguration;
         private ImageConfigurationInput _imageConfiguration;
         private Dictionary<string, InitialCapacityConfig> _initialCapacity = AWSConfigs.InitializeCollections ? new Dictionary<string, InitialCapacityConfig>() : null;
         private InteractiveConfiguration _interactiveConfiguration;
@@ -128,6 +129,26 @@ internal bool IsSetClientToken()
             return this._clientToken != null;
         }
 
+        /// <summary>
+        /// Gets and sets the property IdentityCenterConfiguration. 
+        /// <para>
+        /// The IAM Identity Center Configuration accepts the Identity Center instance parameter
+        /// required to enable trusted identity propagation. This configuration allows identity
+        /// propagation between integrated services and the Identity Center instance.
+        /// </para>
+        /// </summary>
+        public IdentityCenterConfigurationInput IdentityCenterConfiguration
+        {
+            get { return this._identityCenterConfiguration; }
+            set { this._identityCenterConfiguration = value; }
+        }
+
+        // Check to see if IdentityCenterConfiguration property is set
+        internal bool IsSetIdentityCenterConfiguration()
+        {
+            return this._identityCenterConfiguration != null;
+        }
+
         /// <summary>
         /// Gets and sets the property ImageConfiguration. 
         /// <para>

sdk/src/Services/EMRServerless/Generated/Model/IdentityCenterConfiguration.cs

@@ -0,0 +1,80 @@
+/*
+ * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
+ * 
+ * Licensed under the Apache License, Version 2.0 (the "License").
+ * You may not use this file except in compliance with the License.
+ * A copy of the License is located at
+ * 
+ *  http://aws.amazon.com/apache2.0
+ * 
+ * or in the "license" file accompanying this file. This file is distributed
+ * on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
+ * express or implied. See the License for the specific language governing
+ * permissions and limitations under the License.
+ */
+
+/*
+ * Do not modify this file. This file is generated from the emr-serverless-2021-07-13.normal.json service model.
+ */
+using System;
+using System.Collections.Generic;
+using System.Xml.Serialization;
+using System.Text;
+using System.IO;
+using System.Net;
+
+using Amazon.Runtime;
+using Amazon.Runtime.Internal;
+
+#pragma warning disable CS0612,CS0618,CS1570
+namespace Amazon.EMRServerless.Model
+{
+    /// <summary>
+    /// The IAM Identity Center Configuration that includes the Identify Center instance and
+    /// application ARNs that provide trusted-identity propagation.
+    /// </summary>
+    public partial class IdentityCenterConfiguration
+    {
+        private string _identityCenterApplicationArn;
+        private string _identityCenterInstanceArn;
+
+        /// <summary>
+        /// Gets and sets the property IdentityCenterApplicationArn. 
+        /// <para>
+        /// The ARN of the EMR Serverless created IAM Identity Center Application that provides
+        /// trusted-identity propagation.
+        /// </para>
+        /// </summary>
+        public string IdentityCenterApplicationArn
+        {
+            get { return this._identityCenterApplicationArn; }
+            set { this._identityCenterApplicationArn = value; }
+        }
+
+        // Check to see if IdentityCenterApplicationArn property is set
+        internal bool IsSetIdentityCenterApplicationArn()
+        {
+            return this._identityCenterApplicationArn != null;
+        }
+
+        /// <summary>
+        /// Gets and sets the property IdentityCenterInstanceArn. 
+        /// <para>
+        /// The ARN of the IAM Identity Center instance.
+        /// </para>
+        /// </summary>
+        [AWSProperty(Min=10, Max=1024)]
+        public string IdentityCenterInstanceArn
+        {
+            get { return this._identityCenterInstanceArn; }
+            set { this._identityCenterInstanceArn = value; }
+        }
+
+        // Check to see if IdentityCenterInstanceArn property is set
+        internal bool IsSetIdentityCenterInstanceArn()
+        {
+            return this._identityCenterInstanceArn != null;
+        }
+
+    }
+}