1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
|
// Code generated by smithy-go-codegen DO NOT EDIT.
package types
import (
smithydocument "github.com/aws/smithy-go/document"
"time"
)
// Points to an S3Destination object that contains information about your S3
// bucket.
type Destination struct {
// The S3Destination object.
S3 *S3Destination
noSmithyDocumentSerde
}
// The encryption algorithm options that are available to a code-signing job.
type EncryptionAlgorithmOptions struct {
// The set of accepted encryption algorithms that are allowed in a code-signing
// job.
//
// This member is required.
AllowedValues []EncryptionAlgorithm
// The default encryption algorithm that is used by a code-signing job.
//
// This member is required.
DefaultValue EncryptionAlgorithm
noSmithyDocumentSerde
}
// The hash algorithms that are available to a code-signing job.
type HashAlgorithmOptions struct {
// The set of accepted hash algorithms allowed in a code-signing job.
//
// This member is required.
AllowedValues []HashAlgorithm
// The default hash algorithm that is used in a code-signing job.
//
// This member is required.
DefaultValue HashAlgorithm
noSmithyDocumentSerde
}
// A cross-account permission for a signing profile.
type Permission struct {
// An AWS Signer action permitted as part of cross-account permissions.
Action *string
// The AWS principal that has been granted a cross-account permission.
Principal *string
// The signing profile version that a permission applies to.
ProfileVersion *string
// A unique identifier for a cross-account permission statement.
StatementId *string
noSmithyDocumentSerde
}
// The name and prefix of the Amazon S3 bucket where AWS Signer saves your signed
// objects.
type S3Destination struct {
// Name of the S3 bucket.
BucketName *string
// An S3 prefix that you can use to limit responses to those that begin with the
// specified prefix.
Prefix *string
noSmithyDocumentSerde
}
// The Amazon S3 bucket name and key where Signer saved your signed code image.
type S3SignedObject struct {
// Name of the S3 bucket.
BucketName *string
// Key name that uniquely identifies a signed code image in your bucket.
Key *string
noSmithyDocumentSerde
}
// Information about the Amazon S3 bucket where you saved your unsigned code.
type S3Source struct {
// Name of the S3 bucket.
//
// This member is required.
BucketName *string
// Key name of the bucket object that contains your unsigned code.
//
// This member is required.
Key *string
// Version of your source image in your version enabled S3 bucket.
//
// This member is required.
Version *string
noSmithyDocumentSerde
}
// The validity period for a signing job.
type SignatureValidityPeriod struct {
// The time unit for signature validity.
Type ValidityType
// The numerical value of the time unit for signature validity.
Value int32
noSmithyDocumentSerde
}
// Points to an S3SignedObject object that contains information about your signed
// code image.
type SignedObject struct {
// The S3SignedObject .
S3 *S3SignedObject
noSmithyDocumentSerde
}
// The configuration of a signing operation.
type SigningConfiguration struct {
// The encryption algorithm options that are available for a code-signing job.
//
// This member is required.
EncryptionAlgorithmOptions *EncryptionAlgorithmOptions
// The hash algorithm options that are available for a code-signing job.
//
// This member is required.
HashAlgorithmOptions *HashAlgorithmOptions
noSmithyDocumentSerde
}
// A signing configuration that overrides the default encryption or hash algorithm
// of a signing job.
type SigningConfigurationOverrides struct {
// A specified override of the default encryption algorithm that is used in a
// code-signing job.
EncryptionAlgorithm EncryptionAlgorithm
// A specified override of the default hash algorithm that is used in a
// code-signing job.
HashAlgorithm HashAlgorithm
noSmithyDocumentSerde
}
// The image format of a AWS Signer platform or profile.
type SigningImageFormat struct {
// The default format of a signing image.
//
// This member is required.
DefaultFormat ImageFormat
// The supported formats of a signing image.
//
// This member is required.
SupportedFormats []ImageFormat
noSmithyDocumentSerde
}
// Contains information about a signing job.
type SigningJob struct {
// The date and time that the signing job was created.
CreatedAt *time.Time
// Indicates whether the signing job is revoked.
IsRevoked bool
// The ID of the signing job.
JobId *string
// The AWS account ID of the job invoker.
JobInvoker *string
// The AWS account ID of the job owner.
JobOwner *string
// The name of a signing platform.
PlatformDisplayName *string
// The unique identifier for a signing platform.
PlatformId *string
// The name of the signing profile that created a signing job.
ProfileName *string
// The version of the signing profile that created a signing job.
ProfileVersion *string
// The time when the signature of a signing job expires.
SignatureExpiresAt *time.Time
// A SignedObject structure that contains information about a signing job's signed
// code image.
SignedObject *SignedObject
// A SigningMaterial object that contains the Amazon Resource Name (ARN) of the
// certificate used for the signing job.
SigningMaterial *SigningMaterial
// A Source that contains information about a signing job's code image source.
Source *Source
// The status of the signing job.
Status SigningStatus
noSmithyDocumentSerde
}
// Revocation information for a signing job.
type SigningJobRevocationRecord struct {
// A caller-supplied reason for revocation.
Reason *string
// The time of revocation.
RevokedAt *time.Time
// The identity of the revoker.
RevokedBy *string
noSmithyDocumentSerde
}
// The ACM certificate that is used to sign your code.
type SigningMaterial struct {
// The Amazon Resource Name (ARN) of the certificates that is used to sign your
// code.
//
// This member is required.
CertificateArn *string
noSmithyDocumentSerde
}
// Contains information about the signing configurations and parameters that are
// used to perform a code-signing job.
type SigningPlatform struct {
// The category of a signing platform.
Category Category
// The display name of a signing platform.
DisplayName *string
// The maximum size (in MB) of code that can be signed by a signing platform.
MaxSizeInMB int32
// Any partner entities linked to a signing platform.
Partner *string
// The ID of a signing platform.
PlatformId *string
// Indicates whether revocation is supported for the platform.
RevocationSupported bool
// The configuration of a signing platform. This includes the designated hash
// algorithm and encryption algorithm of a signing platform.
SigningConfiguration *SigningConfiguration
// The image format of a AWS Signer platform or profile.
SigningImageFormat *SigningImageFormat
// The types of targets that can be signed by a signing platform.
Target *string
noSmithyDocumentSerde
}
// Any overrides that are applied to the signing configuration of a signing
// platform.
type SigningPlatformOverrides struct {
// A signing configuration that overrides the default encryption or hash algorithm
// of a signing job.
SigningConfiguration *SigningConfigurationOverrides
// A signed image is a JSON object. When overriding the default signing platform
// configuration, a customer can select either of two signing formats, JSONEmbedded
// or JSONDetached . (A third format value, JSON , is reserved for future use.)
// With JSONEmbedded , the signing image has the payload embedded in it. With
// JSONDetached , the payload is not be embedded in the signing image.
SigningImageFormat ImageFormat
noSmithyDocumentSerde
}
// Contains information about the ACM certificates and signing configuration
// parameters that can be used by a given code signing user.
type SigningProfile struct {
// The Amazon Resource Name (ARN) for the signing profile.
Arn *string
// The name of the signing platform.
PlatformDisplayName *string
// The ID of a platform that is available for use by a signing profile.
PlatformId *string
// The name of the signing profile.
ProfileName *string
// The version of a signing profile.
ProfileVersion *string
// The ARN of a signing profile, including the profile version.
ProfileVersionArn *string
// The validity period for a signing job created using this signing profile.
SignatureValidityPeriod *SignatureValidityPeriod
// The ACM certificate that is available for use by a signing profile.
SigningMaterial *SigningMaterial
// The parameters that are available for use by a Signer user.
SigningParameters map[string]string
// The status of a signing profile.
Status SigningProfileStatus
// A list of tags associated with the signing profile.
Tags map[string]string
noSmithyDocumentSerde
}
// Revocation information for a signing profile.
type SigningProfileRevocationRecord struct {
// The time when revocation becomes effective.
RevocationEffectiveFrom *time.Time
// The time when the signing profile was revoked.
RevokedAt *time.Time
// The identity of the revoker.
RevokedBy *string
noSmithyDocumentSerde
}
// An S3Source object that contains information about the S3 bucket where you
// saved your unsigned code.
type Source struct {
// The S3Source object.
S3 *S3Source
noSmithyDocumentSerde
}
type noSmithyDocumentSerde = smithydocument.NoSerde
|
