feat(client-controltower): AWS Control Tower now reports the inheritance drift status for EnabledBaselines through the GetEnabledBaseline and ListEnabledBaselines APIs. You can now filter EnabledBaselines by their enablement and drift status using the ListEnabledBaselines API to view accounts and OUs that require attention.

Author: awstools

clients/client-controltower/README.md

@@ -28,8 +28,7 @@ export interface CreateLandingZoneCommandInput extends CreateLandingZoneInput {}
 export interface CreateLandingZoneCommandOutput extends CreateLandingZoneOutput, __MetadataBearer {}
 
 /**
- * <p>Creates a new landing zone. This API call starts an asynchronous operation that creates and configures a landing zone,
- *          based on the parameters specified in the manifest JSON file.</p>
+ * <p>Creates a new landing zone. This API call starts an asynchronous operation that creates and configures a landing zone, based on the parameters specified in the manifest JSON file.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

clients/client-controltower/src/ControlTower.ts

@@ -28,8 +28,7 @@ export interface DeleteLandingZoneCommandInput extends DeleteLandingZoneInput {}
 export interface DeleteLandingZoneCommandOutput extends DeleteLandingZoneOutput, __MetadataBearer {}
 
 /**
- * <p>Decommissions a landing zone. This API call starts an asynchronous operation that deletes Amazon Web Services Control Tower
- *          resources deployed in accounts managed by Amazon Web Services Control Tower.</p>
+ * <p>Decommissions a landing zone. This API call starts an asynchronous operation that deletes Amazon Web Services Control Tower resources deployed in accounts managed by Amazon Web Services Control Tower.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

clients/client-controltower/src/ControlTowerClient.ts

@@ -28,9 +28,7 @@ export interface DisableBaselineCommandInput extends DisableBaselineInput {}
 export interface DisableBaselineCommandOutput extends DisableBaselineOutput, __MetadataBearer {}
 
 /**
- * <p>Disable an <code>EnabledBaseline</code> resource on the specified Target. This API starts an asynchronous operation to remove all resources deployed as part of the baseline enablement. The resource will vary depending on the enabled baseline. For usage examples, see <a href="https://docs.aws.amazon.com/controltower/latest/userguide/baseline-api-examples.html">
- *                <i>the Amazon Web Services Control Tower User Guide</i>
- *             </a>.</p>
+ * <p>Disable an <code>EnabledBaseline</code> resource on the specified Target. This API starts an asynchronous operation to remove all resources deployed as part of the baseline enablement. The resource will vary depending on the enabled baseline. For usage examples, see <a href="https://docs.aws.amazon.com/controltower/latest/userguide/baseline-api-examples.html"> <i>the Amazon Web Services Control Tower User Guide</i> </a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -67,7 +65,7 @@ export interface DisableBaselineCommandOutput extends DisableBaselineOutput, __M
  *  <p>The request references a resource that does not exist.</p>
  *
  * @throws {@link ServiceQuotaExceededException} (client fault)
- *  <p>The request would cause a service quota to be exceeded. The limit is 10 concurrent operations.</p>
+ *  <p>The request would cause a service quota to be exceeded. The limit is 100 concurrent operations.</p>
  *
  * @throws {@link ThrottlingException} (client fault)
  *  <p>The request was denied due to request throttling.</p>

clients/client-controltower/src/commands/CreateLandingZoneCommand.ts

@@ -28,11 +28,7 @@ export interface DisableControlCommandInput extends DisableControlInput {}
 export interface DisableControlCommandOutput extends DisableControlOutput, __MetadataBearer {}
 
 /**
- * <p>This API call turns off a control. It starts an asynchronous operation that deletes Amazon Web Services
- *          resources on the specified organizational unit and the accounts it contains. The resources
- *          will vary according to the control that you specify. For usage examples, see the <a href="https://docs.aws.amazon.com/controltower/latest/controlreference/control-api-examples-short.html">
- *                <i>Controls Reference Guide</i>
- *             </a>.</p>
+ * <p>This API call turns off a control. It starts an asynchronous operation that deletes Amazon Web Services resources on the specified organizational unit and the accounts it contains. The resources will vary according to the control that you specify. For usage examples, see the <a href="https://docs.aws.amazon.com/controltower/latest/controlreference/control-api-examples-short.html"> <i>Controls Reference Guide</i> </a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -70,7 +66,7 @@ export interface DisableControlCommandOutput extends DisableControlOutput, __Met
  *  <p>The request references a resource that does not exist.</p>
  *
  * @throws {@link ServiceQuotaExceededException} (client fault)
- *  <p>The request would cause a service quota to be exceeded. The limit is 10 concurrent operations.</p>
+ *  <p>The request would cause a service quota to be exceeded. The limit is 100 concurrent operations.</p>
  *
  * @throws {@link ThrottlingException} (client fault)
  *  <p>The request was denied due to request throttling.</p>

clients/client-controltower/src/commands/DeleteLandingZoneCommand.ts

@@ -28,9 +28,7 @@ export interface EnableBaselineCommandInput extends EnableBaselineInput {}
 export interface EnableBaselineCommandOutput extends EnableBaselineOutput, __MetadataBearer {}
 
 /**
- * <p>Enable (apply) a <code>Baseline</code> to a Target. This API starts an asynchronous operation to deploy resources specified by the <code>Baseline</code> to the specified Target. For usage examples, see <a href="https://docs.aws.amazon.com/controltower/latest/userguide/baseline-api-examples.html">
- *                <i>the Amazon Web Services Control Tower User Guide</i>
- *             </a>.</p>
+ * <p>Enable (apply) a <code>Baseline</code> to a Target. This API starts an asynchronous operation to deploy resources specified by the <code>Baseline</code> to the specified Target. For usage examples, see <a href="https://docs.aws.amazon.com/controltower/latest/userguide/baseline-api-examples.html"> <i>the Amazon Web Services Control Tower User Guide</i> </a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -79,7 +77,7 @@ export interface EnableBaselineCommandOutput extends EnableBaselineOutput, __Met
  *  <p>The request references a resource that does not exist.</p>
  *
  * @throws {@link ServiceQuotaExceededException} (client fault)
- *  <p>The request would cause a service quota to be exceeded. The limit is 10 concurrent operations.</p>
+ *  <p>The request would cause a service quota to be exceeded. The limit is 100 concurrent operations.</p>
  *
  * @throws {@link ThrottlingException} (client fault)
  *  <p>The request was denied due to request throttling.</p>

clients/client-controltower/src/commands/DisableBaselineCommand.ts

@@ -28,11 +28,7 @@ export interface EnableControlCommandInput extends EnableControlInput {}
 export interface EnableControlCommandOutput extends EnableControlOutput, __MetadataBearer {}
 
 /**
- * <p>This API call activates a control. It starts an asynchronous operation that creates Amazon Web Services
- *          resources on the specified organizational unit and the accounts it contains. The resources
- *          created will vary according to the control that you specify. For usage examples, see the <a href="https://docs.aws.amazon.com/controltower/latest/controlreference/control-api-examples-short.html">
- *                <i>Controls Reference Guide</i>
- *             </a>.</p>
+ * <p>This API call activates a control. It starts an asynchronous operation that creates Amazon Web Services resources on the specified organizational unit and the accounts it contains. The resources created will vary according to the control that you specify. For usage examples, see the <a href="https://docs.aws.amazon.com/controltower/latest/controlreference/control-api-examples-short.html"> <i>Controls Reference Guide</i> </a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -80,7 +76,7 @@ export interface EnableControlCommandOutput extends EnableControlOutput, __Metad
  *  <p>The request references a resource that does not exist.</p>
  *
  * @throws {@link ServiceQuotaExceededException} (client fault)
- *  <p>The request would cause a service quota to be exceeded. The limit is 10 concurrent operations.</p>
+ *  <p>The request would cause a service quota to be exceeded. The limit is 100 concurrent operations.</p>
  *
  * @throws {@link ThrottlingException} (client fault)
  *  <p>The request was denied due to request throttling.</p>

clients/client-controltower/src/commands/DisableControlCommand.ts

@@ -28,9 +28,7 @@ export interface GetBaselineCommandInput extends GetBaselineInput {}
 export interface GetBaselineCommandOutput extends GetBaselineOutput, __MetadataBearer {}
 
 /**
- * <p>Retrieve details about an existing <code>Baseline</code> resource by specifying its identifier. For usage examples, see <a href="https://docs.aws.amazon.com/controltower/latest/userguide/baseline-api-examples.html">
- *                <i>the Amazon Web Services Control Tower User Guide</i>
- *             </a>.</p>
+ * <p>Retrieve details about an existing <code>Baseline</code> resource by specifying its identifier. For usage examples, see <a href="https://docs.aws.amazon.com/controltower/latest/userguide/baseline-api-examples.html"> <i>the Amazon Web Services Control Tower User Guide</i> </a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

clients/client-controltower/src/commands/EnableBaselineCommand.ts

@@ -28,9 +28,7 @@ export interface GetBaselineOperationCommandInput extends GetBaselineOperationIn
 export interface GetBaselineOperationCommandOutput extends GetBaselineOperationOutput, __MetadataBearer {}
 
 /**
- * <p>Returns the details of an asynchronous baseline operation, as initiated by any of these APIs: <code>EnableBaseline</code>, <code>DisableBaseline</code>, <code>UpdateEnabledBaseline</code>, <code>ResetEnabledBaseline</code>. A status message is displayed in case of operation failure. For usage examples, see <a href="https://docs.aws.amazon.com/controltower/latest/userguide/baseline-api-examples.html">
- *                <i>the Amazon Web Services Control Tower User Guide</i>
- *             </a>.</p>
+ * <p>Returns the details of an asynchronous baseline operation, as initiated by any of these APIs: <code>EnableBaseline</code>, <code>DisableBaseline</code>, <code>UpdateEnabledBaseline</code>, <code>ResetEnabledBaseline</code>. A status message is displayed in case of operation failure. For usage examples, see <a href="https://docs.aws.amazon.com/controltower/latest/userguide/baseline-api-examples.html"> <i>the Amazon Web Services Control Tower User Guide</i> </a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

clients/client-controltower/src/commands/EnableControlCommand.ts

@@ -28,11 +28,7 @@ export interface GetControlOperationCommandInput extends GetControlOperationInpu
 export interface GetControlOperationCommandOutput extends GetControlOperationOutput, __MetadataBearer {}
 
 /**
- * <p>Returns the status of a particular <code>EnableControl</code> or
- *          <code>DisableControl</code> operation. Displays a message in case of error. Details for an
- *          operation are available for 90 days. For usage examples, see the <a href="https://docs.aws.amazon.com/controltower/latest/controlreference/control-api-examples-short.html">
- *                <i>Controls Reference Guide</i>
- *             </a>.</p>
+ * <p>Returns the status of a particular <code>EnableControl</code> or <code>DisableControl</code> operation. Displays a message in case of error. Details for an operation are available for 90 days. For usage examples, see the <a href="https://docs.aws.amazon.com/controltower/latest/controlreference/control-api-examples-short.html"> <i>Controls Reference Guide</i> </a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

clients/client-controltower/src/commands/GetBaselineCommand.ts

@@ -45,6 +45,13 @@ export interface GetEnabledBaselineCommandOutput extends GetEnabledBaselineOutpu
  * //     arn: "STRING_VALUE", // required
  * //     baselineIdentifier: "STRING_VALUE", // required
  * //     baselineVersion: "STRING_VALUE",
+ * //     driftStatusSummary: { // EnabledBaselineDriftStatusSummary
+ * //       types: { // EnabledBaselineDriftTypes
+ * //         inheritance: { // EnabledBaselineInheritanceDrift
+ * //           status: "IN_SYNC" || "DRIFTED",
+ * //         },
+ * //       },
+ * //     },
  * //     targetIdentifier: "STRING_VALUE", // required
  * //     parentIdentifier: "STRING_VALUE",
  * //     statusSummary: { // EnablementStatusSummary

clients/client-controltower/src/commands/GetBaselineOperationCommand.ts

@@ -28,9 +28,7 @@ export interface GetEnabledControlCommandInput extends GetEnabledControlInput {}
 export interface GetEnabledControlCommandOutput extends GetEnabledControlOutput, __MetadataBearer {}
 
 /**
- * <p>Retrieves details about an enabled control. For usage examples, see the <a href="https://docs.aws.amazon.com/controltower/latest/controlreference/control-api-examples-short.html">
- *                <i>Controls Reference Guide</i>
- *             </a>.</p>
+ * <p>Retrieves details about an enabled control. For usage examples, see the <a href="https://docs.aws.amazon.com/controltower/latest/controlreference/control-api-examples-short.html"> <i>Controls Reference Guide</i> </a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

clients/client-controltower/src/commands/GetControlOperationCommand.ts

@@ -28,8 +28,7 @@ export interface GetLandingZoneOperationCommandInput extends GetLandingZoneOpera
 export interface GetLandingZoneOperationCommandOutput extends GetLandingZoneOperationOutput, __MetadataBearer {}
 
 /**
- * <p>Returns the status of the specified landing zone operation. Details for an operation are available for
- *          90 days.</p>
+ * <p>Returns the status of the specified landing zone operation. Details for an operation are available for 90 days.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

clients/client-controltower/src/commands/GetEnabledBaselineCommand.ts

@@ -28,9 +28,7 @@ export interface ListBaselinesCommandInput extends ListBaselinesInput {}
 export interface ListBaselinesCommandOutput extends ListBaselinesOutput, __MetadataBearer {}
 
 /**
- * <p>Returns a summary list of all available baselines. For usage examples, see <a href="https://docs.aws.amazon.com/controltower/latest/userguide/baseline-api-examples.html">
- *                <i>the Amazon Web Services Control Tower User Guide</i>
- *             </a>.</p>
+ * <p>Returns a summary list of all available baselines. For usage examples, see <a href="https://docs.aws.amazon.com/controltower/latest/userguide/baseline-api-examples.html"> <i>the Amazon Web Services Control Tower User Guide</i> </a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

clients/client-controltower/src/commands/GetEnabledControlCommand.ts

@@ -28,9 +28,7 @@ export interface ListEnabledBaselinesCommandInput extends ListEnabledBaselinesIn
 export interface ListEnabledBaselinesCommandOutput extends ListEnabledBaselinesOutput, __MetadataBearer {}
 
 /**
- * <p>Returns a list of summaries describing <code>EnabledBaseline</code> resources. You can filter the list by the corresponding <code>Baseline</code> or <code>Target</code> of the <code>EnabledBaseline</code> resources. For usage examples, see <a href="https://docs.aws.amazon.com/controltower/latest/userguide/baseline-api-examples.html">
- *                <i>the Amazon Web Services Control Tower User Guide</i>
- *             </a>.</p>
+ * <p>Returns a list of summaries describing <code>EnabledBaseline</code> resources. You can filter the list by the corresponding <code>Baseline</code> or <code>Target</code> of the <code>EnabledBaseline</code> resources. For usage examples, see <a href="https://docs.aws.amazon.com/controltower/latest/userguide/baseline-api-examples.html"> <i>the Amazon Web Services Control Tower User Guide</i> </a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -48,6 +46,12 @@ export interface ListEnabledBaselinesCommandOutput extends ListEnabledBaselinesO
  *     parentIdentifiers: [ // EnabledBaselineParentIdentifiers
  *       "STRING_VALUE",
  *     ],
+ *     statuses: [ // EnabledBaselineEnablementStatuses
+ *       "SUCCEEDED" || "FAILED" || "UNDER_CHANGE",
+ *     ],
+ *     inheritanceDriftStatuses: [ // EnabledBaselineDriftStatuses
+ *       "IN_SYNC" || "DRIFTED",
+ *     ],
  *   },
  *   nextToken: "STRING_VALUE",
  *   maxResults: Number("int"),
@@ -61,6 +65,13 @@ export interface ListEnabledBaselinesCommandOutput extends ListEnabledBaselinesO
  * //       arn: "STRING_VALUE", // required
  * //       baselineIdentifier: "STRING_VALUE", // required
  * //       baselineVersion: "STRING_VALUE",
+ * //       driftStatusSummary: { // EnabledBaselineDriftStatusSummary
+ * //         types: { // EnabledBaselineDriftTypes
+ * //           inheritance: { // EnabledBaselineInheritanceDrift
+ * //             status: "IN_SYNC" || "DRIFTED",
+ * //           },
+ * //         },
+ * //       },
  * //       targetIdentifier: "STRING_VALUE", // required
  * //       parentIdentifier: "STRING_VALUE",
  * //       statusSummary: { // EnablementStatusSummary

clients/client-controltower/src/commands/GetLandingZoneOperationCommand.ts

@@ -28,10 +28,7 @@ export interface ListEnabledControlsCommandInput extends ListEnabledControlsInpu
 export interface ListEnabledControlsCommandOutput extends ListEnabledControlsOutput, __MetadataBearer {}
 
 /**
- * <p>Lists the controls enabled by Amazon Web Services Control Tower on the specified organizational unit and
- *          the accounts it contains. For usage examples, see the <a href="https://docs.aws.amazon.com/controltower/latest/controlreference/control-api-examples-short.html">
- *                <i>Controls Reference Guide</i>
- *             </a>.</p>
+ * <p>Lists the controls enabled by Amazon Web Services Control Tower on the specified organizational unit and the accounts it contains. For usage examples, see the <a href="https://docs.aws.amazon.com/controltower/latest/controlreference/control-api-examples-short.html"> <i>Controls Reference Guide</i> </a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

clients/client-controltower/src/commands/ListBaselinesCommand.ts

@@ -28,9 +28,7 @@ export interface ListLandingZonesCommandInput extends ListLandingZonesInput {}
 export interface ListLandingZonesCommandOutput extends ListLandingZonesOutput, __MetadataBearer {}
 
 /**
- * <p>Returns the landing zone ARN for the landing zone deployed in your managed account. This API also
- *          creates an ARN for existing accounts that do not yet have a landing zone ARN. </p>
- *          <p>Returns one landing zone ARN.</p>
+ * <p>Returns the landing zone ARN for the landing zone deployed in your managed account. This API also creates an ARN for existing accounts that do not yet have a landing zone ARN. </p> <p>Returns one landing zone ARN.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript

clients/client-controltower/src/commands/ListEnabledBaselinesCommand.ts

@@ -28,9 +28,7 @@ export interface ListTagsForResourceCommandInput extends ListTagsForResourceInpu
 export interface ListTagsForResourceCommandOutput extends ListTagsForResourceOutput, __MetadataBearer {}
 
 /**
- * <p>Returns a list of tags associated with the resource. For usage examples, see the <a href="https://docs.aws.amazon.com/controltower/latest/controlreference/control-api-examples-short.html">
- *                <i>Controls Reference Guide</i>
- *             </a>.</p>
+ * <p>Returns a list of tags associated with the resource. For usage examples, see the <a href="https://docs.aws.amazon.com/controltower/latest/controlreference/control-api-examples-short.html"> <i>Controls Reference Guide</i> </a>.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript