awslabs
diff --git a/‎Cargo.toml‎
Lines changed: 1 addition & 1 deletion b/‎Cargo.toml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎aws-models/account.json‎
Lines changed: 244 additions & 47 deletions b/‎aws-models/account.json‎
Lines changed: 244 additions & 47 deletions
diff --git a/‎aws-models/cognito-identity-provider.json‎
Lines changed: 216 additions & 16 deletions b/‎aws-models/cognito-identity-provider.json‎
Lines changed: 216 additions & 16 deletions
diff --git a/‎aws-models/ec2.json‎
Lines changed: 60 additions & 4 deletions b/‎aws-models/ec2.json‎
Lines changed: 60 additions & 4 deletions
@@ -1,10 +1,10 @@
 [workspace]
 resolver = "2"
 exclude = [
+    "examples/cross_service",
     "examples/test-utils",
     "examples/lambda",
     "examples/webassembly",
-    "examples/cross_service",
     "examples/examples",
     "tests/no-default-features",
     "tests/telemetry",
 
@@ -13158,6 +13158,36 @@
                 "smithy.api#documentation": "<p>Current state of options for customizable text banner that will be displayed on\n\t\t\tAmazon Web Services provided clients when a VPN session is established.</p>"
             }
         },
+        "com.amazonaws.ec2#ClientRouteEnforcementOptions": {
+            "type": "structure",
+            "members": {
+                "Enforced": {
+                    "target": "com.amazonaws.ec2#Boolean",
+                    "traits": {
+                        "smithy.api#documentation": "<p>Enable or disable the client route enforcement feature.</p>\n         <p>Valid values: <code>true | false</code>\n         </p>\n         <p>Default value: <code>false</code>\n         </p>"
+                    }
+                }
+            },
+            "traits": {
+                "smithy.api#documentation": "<p>Client route enforcement is a feature of the Client VPN service that helps enforce administrator defined routes on devices connected through the VPN. T\n\t\this feature helps improve your security posture by ensuring that network traffic originating from a connected client is not inadvertently sent outside the VPN tunnel.</p>\n         <p>Client route enforcement works by monitoring the route table of a connected device for routing policy changes to the VPN connection. If the feature detects any VPN routing policy modifications, it will automatically force an update to the route table, \n\t\t\treverting it back to the expected route configurations.</p>"
+            }
+        },
+        "com.amazonaws.ec2#ClientRouteEnforcementResponseOptions": {
+            "type": "structure",
+            "members": {
+                "Enforced": {
+                    "target": "com.amazonaws.ec2#Boolean",
+                    "traits": {
+                        "aws.protocols#ec2QueryName": "Enforced",
+                        "smithy.api#documentation": "<p>Status of the client route enforcement feature.</p>\n         <p>Valid values: <code>true | false</code>\n         </p>\n         <p>Default value: <code>false</code>\n         </p>",
+                        "smithy.api#xmlName": "enforced"
+                    }
+                }
+            },
+            "traits": {
+                "smithy.api#documentation": "<p>The current status of client route enforcement. The state will either be <code>true</code> (enabled) or <code>false</code> (disabled).</p>"
+            }
+        },
         "com.amazonaws.ec2#ClientSecretType": {
             "type": "string",
             "traits": {
@@ -13699,6 +13729,14 @@
                         "smithy.api#xmlName": "clientLoginBannerOptions"
                     }
                 },
+                "ClientRouteEnforcementOptions": {
+                    "target": "com.amazonaws.ec2#ClientRouteEnforcementResponseOptions",
+                    "traits": {
+                        "aws.protocols#ec2QueryName": "ClientRouteEnforcementOptions",
+                        "smithy.api#documentation": "<p>Client route enforcement is a feature of the Client VPN service that helps enforce administrator defined routes on devices connected through the VPN. T\n\t\this feature helps improve your security posture by ensuring that network traffic originating from a connected client is not inadvertently sent outside the VPN tunnel.</p>\n         <p>Client route enforcement works by monitoring the route table of a connected device for routing policy changes to the VPN connection. If the feature detects any VPN routing policy modifications, it will automatically force an update to the route table, \n\t\t\treverting it back to the expected route configurations.</p>",
+                        "smithy.api#xmlName": "clientRouteEnforcementOptions"
+                    }
+                },
                 "DisconnectOnSessionTimeout": {
                     "target": "com.amazonaws.ec2#Boolean",
                     "traits": {
@@ -15843,6 +15881,12 @@
                         "smithy.api#documentation": "<p>Options for enabling a customizable text banner that will be displayed on\n\t\t\tAmazon Web Services provided clients when a VPN session is established.</p>"
                     }
                 },
+                "ClientRouteEnforcementOptions": {
+                    "target": "com.amazonaws.ec2#ClientRouteEnforcementOptions",
+                    "traits": {
+                        "smithy.api#documentation": "<p>Client route enforcement is a feature of the Client VPN service that helps enforce administrator defined routes on devices connected through the VPN. T\n\t\this feature helps improve your security posture by ensuring that network traffic originating from a connected client is not inadvertently sent outside the VPN tunnel.</p>\n         <p>Client route enforcement works by monitoring the route table of a connected device for routing policy changes to the VPN connection. If the feature detects any VPN routing policy modifications, it will automatically force an update to the route table, \n\t\t\treverting it back to the expected route configurations.</p>"
+                    }
+                },
                 "DisconnectOnSessionTimeout": {
                     "target": "com.amazonaws.ec2#Boolean",
                     "traits": {
@@ -45037,7 +45081,7 @@
                 "target": "com.amazonaws.ec2#DescribeVpcEndpointServicePermissionsResult"
             },
             "traits": {
-                "smithy.api#documentation": "<p>Describes the principals (service consumers) that are permitted to discover your VPC\n            endpoint service.</p>",
+                "smithy.api#documentation": "<p>Describes the principals (service consumers) that are permitted to discover your VPC\n            endpoint service. Principal ARNs with path components aren't supported.</p>",
                 "smithy.api#paginated": {
                     "inputToken": "NextToken",
                     "outputToken": "NextToken",
@@ -80658,6 +80702,12 @@
                         "smithy.api#documentation": "<p>Options for enabling a customizable text banner that will be displayed on\n\t\t\tAmazon Web Services provided clients when a VPN session is established.</p>"
                     }
                 },
+                "ClientRouteEnforcementOptions": {
+                    "target": "com.amazonaws.ec2#ClientRouteEnforcementOptions",
+                    "traits": {
+                        "smithy.api#documentation": "<p>Client route enforcement is a feature of the Client VPN service that helps enforce administrator defined routes on devices connected through the VPN. T\n\t\this feature helps improve your security posture by ensuring that network traffic originating from a connected client is not inadvertently sent outside the VPN tunnel.</p>\n         <p>Client route enforcement works by monitoring the route table of a connected device for routing policy changes to the VPN connection. If the feature detects any VPN routing policy modifications, it will automatically force an update to the route table, \n\t\t\treverting it back to the expected route configurations.</p>"
+                    }
+                },
                 "DisconnectOnSessionTimeout": {
                     "target": "com.amazonaws.ec2#Boolean",
                     "traits": {
@@ -85681,7 +85731,7 @@
                 "target": "com.amazonaws.ec2#ModifyVpcEndpointServicePermissionsResult"
             },
             "traits": {
-                "smithy.api#documentation": "<p>Modifies the permissions for your VPC endpoint service. You can add or remove permissions\n            for service consumers (Amazon Web Services accounts, users, and IAM roles) to connect to\n            your endpoint service.</p>\n         <p>If you grant permissions to all principals, the service is public. Any users who know the name of a\n\t        public service can send a request to attach an endpoint. If the service does not require manual approval,\n\t        attachments are automatically approved.</p>"
+                "smithy.api#documentation": "<p>Modifies the permissions for your VPC endpoint service. You can add or remove permissions\n            for service consumers (Amazon Web Services accounts, users, and IAM roles) to connect to\n            your endpoint service. Principal ARNs with path components aren't supported.</p>\n         <p>If you grant permissions to all principals, the service is public. Any users who know the name of a\n\t        public service can send a request to attach an endpoint. If the service does not require manual approval,\n\t        attachments are automatically approved.</p>"
             }
         },
         "com.amazonaws.ec2#ModifyVpcEndpointServicePermissionsRequest": {
@@ -103044,6 +103094,12 @@
                     "traits": {
                         "smithy.api#enumValue": "nlb"
                     }
+                },
+                "rnat": {
+                    "target": "smithy.api#Unit",
+                    "traits": {
+                        "smithy.api#enumValue": "rnat"
+                    }
                 }
             }
         },
@@ -109849,7 +109905,7 @@
                     "target": "com.amazonaws.ec2#DefaultRouteTableAssociationValue",
                     "traits": {
                         "aws.protocols#ec2QueryName": "DefaultRouteTableAssociation",
-                        "smithy.api#documentation": "<p>Indicates whether resource attachments are automatically associated with the default association route table.</p>",
+                        "smithy.api#documentation": "<p>Indicates whether resource attachments are automatically associated with the default\n         association route table. Enabled by default. If <code>defaultRouteTableAssociation</code>\n         is set to <code>enable</code>,\n         Amazon Web Services Transit Gateway will create the default transit gateway route\n         table.</p>",
                         "smithy.api#xmlName": "defaultRouteTableAssociation"
                     }
                 },
@@ -109865,7 +109921,7 @@
                     "target": "com.amazonaws.ec2#DefaultRouteTablePropagationValue",
                     "traits": {
                         "aws.protocols#ec2QueryName": "DefaultRouteTablePropagation",
-                        "smithy.api#documentation": "<p>Indicates whether resource attachments automatically propagate routes to the default propagation route table.</p>",
+                        "smithy.api#documentation": "<p>Indicates whether resource attachments automatically propagate routes to the default\n         propagation route table. Enabled by default. If <code>defaultRouteTablePropagation</code>\n         is set to <code>enable</code>,\n         Amazon Web Services Transit Gateway will create the default transit gateway route\n         table.</p>",
                         "smithy.api#xmlName": "defaultRouteTablePropagation"
                     }
                 },