Merge branch 'main' into hello-bedrock-runtime

Author: rlhagerm

.doc_gen/metadata/iam_metadata.yaml

@@ -889,6 +889,15 @@ iam_UpdateAccessKey:
             - description:
               snippet_tags:
                 - iam.cpp.update_access_key.code
+    Bash:
+      versions:
+        - sdk_version: 2
+          github: aws-cli/bash-linux/iam
+          sdkguide:
+          excerpts:
+            - description:
+              snippet_tags:
+                - aws-cli.bash-linux.iam.UpdateAccessKey
   services:
     iam: {UpdateAccessKey}
 iam_Scenario_ManageAccessKeys:

.doc_gen/metadata/s3_metadata.yaml

@@ -293,6 +293,18 @@ s3_CopyObject:
             - description: Copy the object.
               snippet_tags:
                 - s3.JavaScript.buckets.copyObjectV3
+            - description: Copy the object on condition its ETag does not match the one provided.
+              snippet_files:
+                - javascriptv3/example_code/s3/actions/copy-object-conditional-request-if-match.js
+            - description: Copy the object on condition its ETag does not match the one provided.
+              snippet_files:
+                - javascriptv3/example_code/s3/actions/copy-object-conditional-request-if-none-match.js
+            - description: Copy the object using on condition it has been created or modified in a given timeframe.
+              snippet_files:
+                - javascriptv3/example_code/s3/actions/copy-object-conditional-request-if-modified-since.js
+            - description: Copy the object using on condition it has not been created or modified in a given timeframe.
+              snippet_files:
+                - javascriptv3/example_code/s3/actions/copy-object-conditional-request-if-unmodified-since.js
     PHP:
       versions:
         - sdk_version: 3
@@ -951,6 +963,18 @@ s3_GetObject:
             - description: Download the object.
               snippet_tags:
                 - s3.JavaScript.buckets.getobjectV3
+            - description: Download the object on condition its ETag does not match the one provided.
+              snippet_files:
+                - javascriptv3/example_code/s3/actions/get-object-conditional-request-if-match.js
+            - description: Download the object on condition its ETag does not match the one provided.
+              snippet_files:
+                - javascriptv3/example_code/s3/actions/get-object-conditional-request-if-none-match.js
+            - description: Download the object using on condition it has been created or modified in a given timeframe.
+              snippet_files:
+                - javascriptv3/example_code/s3/actions/get-object-conditional-request-if-modified-since.js
+            - description: Download the object using on condition it has not been created or modified in a given timeframe.
+              snippet_files:
+                - javascriptv3/example_code/s3/actions/get-object-conditional-request-if-unmodified-since.js
     Ruby:
       versions:
         - sdk_version: 3
@@ -1602,6 +1626,9 @@ s3_PutObject:
             - description: Upload the object.
               snippet_tags:
                 - s3.JavaScript.buckets.uploadV3
+            - description: Upload the object on condition its ETag matches the one provided.
+              snippet_files:
+                - javascriptv3/example_code/s3/actions/get-object-conditional-request-if-match.js
     Ruby:
       versions:
         - sdk_version: 3
@@ -3617,6 +3644,29 @@ s3_Scenario_ConditionalRequests:
             - description: A wrapper class for S3 functions.
               snippet_tags:
                 - S3ConditionalRequests.dotnetv3.S3ActionsWrapper
+    JavaScript:
+      versions:
+        - sdk_version: 3
+          github: javascriptv3/example_code/s3/scenarios/conditional-requests
+          sdkguide:
+          excerpts:
+            - description: |
+                Entrypoint for the workflow (<noloc>index.js</noloc>). This orchestrates all of the steps.
+                Visit GitHub to see the implementation details for Scenario, ScenarioInput, ScenarioOutput, and ScenarioAction.
+              snippet_files:
+                - javascriptv3/example_code/s3/scenarios/conditional-requests/index.js
+            - description: Output welcome messages to the console (<noloc>welcome.steps.js</noloc>).
+              snippet_files:
+                - javascriptv3/example_code/s3/scenarios/conditional-requests/welcome.steps.js
+            - description: Deploy buckets and objects (<noloc>setup.steps.js</noloc>).
+              snippet_files:
+                - javascriptv3/example_code/s3/scenarios/conditional-requests/setup.steps.js
+            - description: Get, copy, and put objects using S3 conditional requests (<noloc>repl.steps.js</noloc>).
+              snippet_files:
+                - javascriptv3/example_code/s3/scenarios/conditional-requests/repl.steps.js
+            - description: Destroy all created resources (<noloc>clean.steps.js</noloc>).
+              snippet_files:
+                - javascriptv3/example_code/s3/scenarios/conditional-requests/clean.steps.js
   services:
     s3: {GetObject, PutObject, CopyObject}
 s3_Scenario_DownloadS3Directory:

.github/workflows/validate-doc-metadata.yml

@@ -16,7 +16,7 @@ jobs:
       - name: checkout repo content
         uses: actions/checkout@v4
       - name: validate metadata
-        uses: awsdocs/aws-doc-sdk-examples-tools@2025.05.1
+        uses: awsdocs/aws-doc-sdk-examples-tools@2025.07.0
         with:
           doc_gen_only: "False"
           strict_titles: "True"

aws-cli/bash-linux/iam/README.md

@@ -45,14 +45,15 @@ Code excerpts that show you how to call individual service functions.
 - [CreatePolicy](iam_operations.sh#L421)
 - [CreateRole](iam_operations.sh#L342)
 - [CreateUser](iam_operations.sh#L113)
-- [DeleteAccessKey](iam_operations.sh#L787)
+- [DeleteAccessKey](iam_operations.sh#L904)
 - [DeletePolicy](iam_operations.sh#L646)
 - [DeleteRole](iam_operations.sh#L716)
-- [DeleteUser](iam_operations.sh#L868)
+- [DeleteUser](iam_operations.sh#L985)
 - [DetachRolePolicy](iam_operations.sh#L571)
 - [GetUser](iam_operations.sh#L17)
 - [ListAccessKeys](iam_operations.sh#L273)
 - [ListUsers](iam_operations.sh#L56)
+- [UpdateAccessKey](iam_operations.sh#L787)
 
 
 <!--custom.examples.start-->
@@ -110,4 +111,4 @@ in the `aws-cli` folder.
 
 Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
 
-SPDX-License-Identifier: Apache-2.0
+SPDX-License-Identifier: Apache-2.0

aws-cli/bash-linux/iam/iam_create_user_assume_role_scenario.sh

@@ -351,6 +351,15 @@ function clean_up() {
     fi
   fi
 
+  if [ -n "$access_key_name" ]; then
+      if (iam_update_access_key -u "$user_name" -k "$access_key_name" -d); then
+        echo "Deactivated access key $access_key_name"
+      else
+        errecho "The access key failed to deactivate."
+        result=1
+      fi
+    fi
+
   if [ -n "$access_key_name" ]; then
     if (iam_delete_access_key -u "$user_name" -k "$access_key_name"); then
       echo "Deleted access key $access_key_name"

aws-cli/bash-linux/iam/iam_operations.sh

@@ -133,7 +133,7 @@ function iam_create_user() {
   # bashsupport disable=BP5008
   function usage() {
     echo "function iam_create_user"
-    echo "Creates an WS Identity and Access Management (IAM) user. You must supply a username:"
+    echo "Creates an AWS Identity and Access Management (IAM) user. You must supply a username:"
     echo "  -u user_name    The name of the user. It must be unique within the account."
     echo ""
   }
@@ -663,7 +663,7 @@ function iam_delete_policy() {
   # bashsupport disable=BP5008
   function usage() {
     echo "function iam_delete_policy"
-    echo "Deletes an WS Identity and Access Management (IAM) policy"
+    echo "Deletes an AWS Identity and Access Management (IAM) policy"
     echo "  -n policy_arn -- The name of the IAM policy arn."
     echo ""
   }
@@ -733,7 +733,7 @@ function iam_delete_role() {
   # bashsupport disable=BP5008
   function usage() {
     echo "function iam_delete_role"
-    echo "Deletes an WS Identity and Access Management (IAM) role"
+    echo "Deletes an AWS Identity and Access Management (IAM) role"
     echo "  -n role_name -- The name of the IAM role."
     echo ""
   }
@@ -784,6 +784,123 @@ function iam_delete_role() {
 }
 # snippet-end:[aws-cli.bash-linux.iam.DeleteRole]
 
+# snippet-start:[aws-cli.bash-linux.iam.UpdateAccessKey]
+###############################################################################
+# function iam_update_access_key
+#
+# This function can activate or deactivate an IAM access key for the specified IAM user.
+#
+# Parameters:
+#       -u user_name  -- The name of the user.
+#       -k access_key -- The access key to update.
+#       -a            -- Activate the selected access key.
+#       -d            -- Deactivate the selected access key.
+#
+# Example:
+#       # To deactivate the selected access key for IAM user Bob
+#       iam_update_access_key -u Bob -k AKIAIOSFODNN7EXAMPLE -d 
+#
+# Returns:
+#       0 - If successful.
+#       1 - If it fails.
+###############################################################################
+function iam_update_access_key() {
+  local user_name access_key status response
+  local option OPTARG # Required to use getopts command in a function.
+  local activate_flag=false deactivate_flag=false
+
+  # bashsupport disable=BP5008
+  function usage() {
+    echo "function iam_update_access_key"
+    echo "Updates the status of an AWS Identity and Access Management (IAM) access key for the specified IAM user"
+    echo "  -u user_name    The name of the user."
+    echo "  -k access_key   The access key to update."
+    echo "  -a              Activate the access key."
+    echo "  -d              Deactivate the access key."
+    echo ""
+  }
+
+  # Retrieve the calling parameters.
+    while getopts "u:k:adh" option; do
+      case "${option}" in
+        u) user_name="${OPTARG}" ;;
+        k) access_key="${OPTARG}" ;;
+        a) activate_flag=true ;;
+        d) deactivate_flag=true ;;
+        h)
+          usage
+          return 0
+          ;;
+        \?)
+          echo "Invalid parameter"
+          usage
+          return 1
+          ;;
+      esac
+    done
+    export OPTIND=1
+  
+   # Validate input parameters
+    if [[ -z "$user_name" ]]; then
+      errecho "ERROR: You must provide a username with the -u parameter."
+      usage
+      return 1
+    fi
+  
+    if [[ -z "$access_key" ]]; then
+      errecho "ERROR: You must provide an access key with the -k parameter."
+      usage
+      return 1
+    fi
+
+    # Ensure that only -a or -d is specified
+    if [[ "$activate_flag" == true && "$deactivate_flag" == true ]]; then
+      errecho "ERROR: You cannot specify both -a (activate) and -d (deactivate) at the same time."
+      usage
+      return 1
+    fi
+  
+    # If neither -a nor -d is provided, return an error
+    if [[ "$activate_flag" == false && "$deactivate_flag" == false ]]; then
+      errecho "ERROR: You must specify either -a (activate) or -d (deactivate)."
+      usage
+      return 1
+    fi
+
+    # Determine the status based on the flag
+    if [[ "$activate_flag" == true ]]; then
+      status="Active"
+    elif [[ "$deactivate_flag" == true ]]; then
+      status="Inactive"
+    fi
+  
+    iecho "Parameters:\n"
+    iecho "    Username:   $user_name"
+    iecho "    Access key: $access_key"
+    iecho "    New status: $status"
+    iecho ""
+  
+    # Update the access key status
+    response=$(aws iam update-access-key \
+      --user-name "$user_name" \
+      --access-key-id "$access_key" \
+      --status "$status" 2>&1)
+  
+    local error_code=${?}
+  
+    if [[ $error_code -ne 0 ]]; then
+      aws_cli_error_log $error_code
+      errecho "ERROR: AWS reports update-access-key operation failed.\n$response"
+      return 1
+    fi
+  
+    iecho "update-access-key response: $response"
+    iecho
+  
+    return 0
+}
+# snippet-end:[aws-cli.bash-linux.iam.UpdateAccessKey]
+
 # snippet-start:[aws-cli.bash-linux.iam.DeleteAccessKey]
 ###############################################################################
 # function iam_delete_access_key
@@ -805,7 +922,7 @@ function iam_delete_access_key() {
   # bashsupport disable=BP5008
   function usage() {
     echo "function iam_delete_access_key"
-    echo "Deletes an WS Identity and Access Management (IAM) access key for the specified IAM user"
+    echo "Deletes an AWS Identity and Access Management (IAM) access key for the specified IAM user"
     echo "  -u user_name    The name of the user."
     echo "  -k access_key   The access key to delete."
     echo ""
@@ -885,7 +1002,7 @@ function iam_delete_user() {
   # bashsupport disable=BP5008
   function usage() {
     echo "function iam_delete_user"
-    echo "Deletes an WS Identity and Access Management (IAM) user. You must supply a username:"
+    echo "Deletes an AWS Identity and Access Management (IAM) user. You must supply a username:"
     echo "  -u user_name    The name of the user."
     echo ""
   }

javascriptv3/example_code/bedrock-agent-runtime/package.json

@@ -5,7 +5,7 @@
   "license": "Apache-2.0",
   "type": "module",
   "scripts": {
-    "test": "vitest run **/*.unit.test.js"
+    "integration-test": "vitest run integration --reporter=junit --outputFile=test_results/bedrock-agent-runtime-test-results.junit.xml"
   },
   "dependencies": {
     "@aws-sdk/client-bedrock-agent-runtime": "^3.675.0"

javascriptv3/example_code/bedrock-agent/package.json

@@ -5,8 +5,7 @@
   "license": "Apache-2.0",
   "type": "module",
   "scripts": {
-    "test": "vitest run **/*.unit.test.js",
-    "integration-test": "vitest run **/*.integration.test.js --reporter=junit --outputFile=test_results/$npm_package_name.junit.xml"
+    "integration-test": "vitest run integration --reporter=junit --outputFile=test_results/bedrock-agent-test-results.junit.xml"
   },
   "dependencies": {
     "@aws-sdk/client-bedrock-agent": "^3.515.0"

javascriptv3/example_code/bedrock-runtime/package.json

@@ -5,7 +5,7 @@
   "license": "Apache-2.0",
   "type": "module",
   "scripts": {
-    "integration-test": "vitest run **/*.integration.test.js --reporter=junit --outputFile=test_results/$npm_package_name.junit.xml"
+    "integration-test": "vitest run integration --reporter=junit --outputFile=test_results/bedrock-runtime-test-results.junit.xml"
   },
   "devDependencies": {
     "vitest": "^1.6.0"

javascriptv3/example_code/bedrock/package.json

@@ -5,7 +5,7 @@
   "license": "Apache-2.0",
   "type": "module",
   "scripts": {
-    "integration-test": "vitest run **/*.integration.test.js --reporter=junit --outputFile=test_results/$npm_package_name.junit.xml"
+    "integration-test": "vitest run integration --reporter=junit --outputFile=test_results/bedrock-test-results.junit.xml"
   },
   "dependencies": {
     "@aws-sdk/client-bedrock": "^3.485.0"