Add support for resource-based policies for Aurora DSQL clusters. This will enable you to implement Block Public Access (BPA) which will help restrict access to your Aurora DSQL public or VPC endpoints.

Author: aws-sdk-dotnet-automation

generator/ServiceModels/dsql/dsql-2018-05-10.api.json

@@ -50,6 +50,25 @@
       ],
       "idempotent":true
     },
+    "DeleteClusterPolicy":{
+      "name":"DeleteClusterPolicy",
+      "http":{
+        "method":"DELETE",
+        "requestUri":"/cluster/{identifier}/policy",
+        "responseCode":200
+      },
+      "input":{"shape":"DeleteClusterPolicyInput"},
+      "output":{"shape":"DeleteClusterPolicyOutput"},
+      "errors":[
+        {"shape":"ThrottlingException"},
+        {"shape":"ValidationException"},
+        {"shape":"AccessDeniedException"},
+        {"shape":"InternalServerException"},
+        {"shape":"ResourceNotFoundException"},
+        {"shape":"ConflictException"}
+      ],
+      "idempotent":true
+    },
     "GetCluster":{
       "name":"GetCluster",
       "http":{
@@ -67,6 +86,23 @@
         {"shape":"ResourceNotFoundException"}
       ]
     },
+    "GetClusterPolicy":{
+      "name":"GetClusterPolicy",
+      "http":{
+        "method":"GET",
+        "requestUri":"/cluster/{identifier}/policy",
+        "responseCode":200
+      },
+      "input":{"shape":"GetClusterPolicyInput"},
+      "output":{"shape":"GetClusterPolicyOutput"},
+      "errors":[
+        {"shape":"ThrottlingException"},
+        {"shape":"ValidationException"},
+        {"shape":"AccessDeniedException"},
+        {"shape":"InternalServerException"},
+        {"shape":"ResourceNotFoundException"}
+      ]
+    },
     "GetVpcEndpointServiceName":{
       "name":"GetVpcEndpointServiceName",
       "http":{
@@ -118,6 +154,25 @@
         {"shape":"ResourceNotFoundException"}
       ]
     },
+    "PutClusterPolicy":{
+      "name":"PutClusterPolicy",
+      "http":{
+        "method":"POST",
+        "requestUri":"/cluster/{identifier}/policy",
+        "responseCode":200
+      },
+      "input":{"shape":"PutClusterPolicyInput"},
+      "output":{"shape":"PutClusterPolicyOutput"},
+      "errors":[
+        {"shape":"ThrottlingException"},
+        {"shape":"ValidationException"},
+        {"shape":"AccessDeniedException"},
+        {"shape":"InternalServerException"},
+        {"shape":"ResourceNotFoundException"},
+        {"shape":"ConflictException"}
+      ],
+      "idempotent":true
+    },
     "TagResource":{
       "name":"TagResource",
       "http":{
@@ -191,6 +246,10 @@
       "min":1,
       "pattern":"arn:.+"
     },
+    "BypassPolicyLockoutSafetyCheck":{
+      "type":"boolean",
+      "box":true
+    },
     "ClientToken":{
       "type":"string",
       "max":128,
@@ -264,7 +323,9 @@
           "shape":"ClientToken",
           "idempotencyToken":true
         },
-        "multiRegionProperties":{"shape":"MultiRegionProperties"}
+        "multiRegionProperties":{"shape":"MultiRegionProperties"},
+        "policy":{"shape":"PolicyDocument"},
+        "bypassPolicyLockoutSafetyCheck":{"shape":"BypassPolicyLockoutSafetyCheck"}
       }
     },
     "CreateClusterOutput":{
@@ -318,6 +379,35 @@
         "creationTime":{"shape":"ClusterCreationTime"}
       }
     },
+    "DeleteClusterPolicyInput":{
+      "type":"structure",
+      "required":["identifier"],
+      "members":{
+        "identifier":{
+          "shape":"ClusterId",
+          "location":"uri",
+          "locationName":"identifier"
+        },
+        "expectedPolicyVersion":{
+          "shape":"PolicyVersion",
+          "location":"querystring",
+          "locationName":"expected-policy-version"
+        },
+        "clientToken":{
+          "shape":"ClientToken",
+          "idempotencyToken":true,
+          "location":"querystring",
+          "locationName":"client-token"
+        }
+      }
+    },
+    "DeleteClusterPolicyOutput":{
+      "type":"structure",
+      "required":["policyVersion"],
+      "members":{
+        "policyVersion":{"shape":"PolicyVersion"}
+      }
+    },
     "DeletionProtectionEnabled":{
       "type":"boolean",
       "box":true
@@ -381,6 +471,28 @@
         "encryptionDetails":{"shape":"EncryptionDetails"}
       }
     },
+    "GetClusterPolicyInput":{
+      "type":"structure",
+      "required":["identifier"],
+      "members":{
+        "identifier":{
+          "shape":"ClusterId",
+          "location":"uri",
+          "locationName":"identifier"
+        }
+      }
+    },
+    "GetClusterPolicyOutput":{
+      "type":"structure",
+      "required":[
+        "policy",
+        "policyVersion"
+      ],
+      "members":{
+        "policy":{"shape":"PolicyDocument"},
+        "policyVersion":{"shape":"PolicyVersion"}
+      }
+    },
     "GetVpcEndpointServiceNameInput":{
       "type":"structure",
       "required":["identifier"],
@@ -480,6 +592,40 @@
       }
     },
     "NextToken":{"type":"string"},
+    "PolicyDocument":{
+      "type":"string",
+      "max":20480,
+      "min":1
+    },
+    "PolicyVersion":{"type":"string"},
+    "PutClusterPolicyInput":{
+      "type":"structure",
+      "required":[
+        "identifier",
+        "policy"
+      ],
+      "members":{
+        "identifier":{
+          "shape":"ClusterId",
+          "location":"uri",
+          "locationName":"identifier"
+        },
+        "policy":{"shape":"PolicyDocument"},
+        "bypassPolicyLockoutSafetyCheck":{"shape":"BypassPolicyLockoutSafetyCheck"},
+        "expectedPolicyVersion":{"shape":"PolicyVersion"},
+        "clientToken":{
+          "shape":"ClientToken",
+          "idempotencyToken":true
+        }
+      }
+    },
+    "PutClusterPolicyOutput":{
+      "type":"structure",
+      "required":["policyVersion"],
+      "members":{
+        "policyVersion":{"shape":"PolicyVersion"}
+      }
+    },
     "Region":{
       "type":"string",
       "max":50,