/* * Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. * * Licensed under the Apache License, Version 2.0 (the "License"). * You may not use this file except in compliance with the License. * A copy of the License is located at * * http://aws.amazon.com/apache2.0 * * or in the "license" file accompanying this file. This file is distributed * on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either * express or implied. See the License for the specific language governing * permissions and limitations under the License. */ /* * Do not modify this file. This file is generated from the secretsmanager-2017-10-17.normal.json service model. */ using System; using System.Runtime.ExceptionServices; using System.Threading; using System.Threading.Tasks; using System.Collections.Generic; using System.Net; using Amazon.SecretsManager.Model; using Amazon.SecretsManager.Model.Internal.MarshallTransformations; using Amazon.SecretsManager.Internal; using Amazon.Runtime; using Amazon.Runtime.Internal; using Amazon.Runtime.Internal.Auth; using Amazon.Runtime.Internal.Transform; namespace Amazon.SecretsManager { ///

/// Implementation for accessing SecretsManager /// /// Amazon Web Services Secrets Manager /// /// Amazon Web Services Secrets Manager provides a service to enable you to store, manage, /// and retrieve, secrets. /// /// /// /// This guide provides descriptions of the Secrets Manager API. For more information /// about using this service, see the Amazon /// Web Services Secrets Manager User Guide. /// /// /// /// API Version /// /// /// /// This version of the Secrets Manager API Reference documents the Secrets Manager API /// version 2017-10-17. /// /// /// /// For a list of endpoints, see Amazon /// Web Services Secrets Manager endpoints. /// /// /// /// Support and Feedback for Amazon Web Services Secrets Manager /// /// /// /// We welcome your feedback. Send your comments to awssecretsmanager-feedback@amazon.com, /// or post your feedback and questions in the Amazon /// Web Services Secrets Manager Discussion Forum. For more information about the /// Amazon Web Services Discussion Forums, see Forums /// Help. /// /// /// /// Logging API Requests /// /// /// /// Amazon Web Services Secrets Manager supports Amazon Web Services CloudTrail, a service /// that records Amazon Web Services API calls for your Amazon Web Services account and /// delivers log files to an Amazon S3 bucket. By using information that's collected by /// Amazon Web Services CloudTrail, you can determine the requests successfully made to /// Secrets Manager, who made the request, when it was made, and so on. For more about /// Amazon Web Services Secrets Manager and support for Amazon Web Services CloudTrail, /// see Logging /// Amazon Web Services Secrets Manager Events with Amazon Web Services CloudTrail /// in the Amazon Web Services Secrets Manager User Guide. To learn more about /// CloudTrail, including enabling it and find your log files, see the Amazon /// Web Services CloudTrail User Guide. /// ///

public partial class AmazonSecretsManagerClient : AmazonServiceClient, IAmazonSecretsManager { private static IServiceMetadata serviceMetadata = new AmazonSecretsManagerMetadata(); private ISecretsManagerPaginatorFactory _paginators; ///

/// Paginators for the service ///

public ISecretsManagerPaginatorFactory Paginators { get { if (this._paginators == null) { this._paginators = new SecretsManagerPaginatorFactory(this); } return this._paginators; } } #region Constructors ///

/// Constructs AmazonSecretsManagerClient with the credentials loaded from the application's /// default configuration, and if unsuccessful from the Instance Profile service on an EC2 instance. /// /// Example App.config with credentials set. ///


        /// <?xml version="1.0" encoding="utf-8" ?>
        /// <configuration>
        ///     <appSettings>
        ///         <add key="AWSProfileName" value="AWS Default"/>
        ///     </appSettings>
        /// </configuration>
        ///

/// ///

public AmazonSecretsManagerClient() : base(FallbackCredentialsFactory.GetCredentials(), new AmazonSecretsManagerConfig()) { } ///


        /// <?xml version="1.0" encoding="utf-8" ?>
        /// <configuration>
        ///     <appSettings>
        ///         <add key="AWSProfileName" value="AWS Default"/>
        ///     </appSettings>
        /// </configuration>
        ///

/// ///

/// The region to connect. public AmazonSecretsManagerClient(RegionEndpoint region) : base(FallbackCredentialsFactory.GetCredentials(), new AmazonSecretsManagerConfig{RegionEndpoint = region}) { } ///


        /// <?xml version="1.0" encoding="utf-8" ?>
        /// <configuration>
        ///     <appSettings>
        ///         <add key="AWSProfileName" value="AWS Default"/>
        ///     </appSettings>
        /// </configuration>
        ///

/// ///

/// The AmazonSecretsManagerClient Configuration Object public AmazonSecretsManagerClient(AmazonSecretsManagerConfig config) : base(FallbackCredentialsFactory.GetCredentials(config), config){} ///

/// Constructs AmazonSecretsManagerClient with AWS Credentials ///

/// AWS Credentials public AmazonSecretsManagerClient(AWSCredentials credentials) : this(credentials, new AmazonSecretsManagerConfig()) { } ///

/// Constructs AmazonSecretsManagerClient with AWS Credentials ///

/// AWS Credentials /// The region to connect. public AmazonSecretsManagerClient(AWSCredentials credentials, RegionEndpoint region) : this(credentials, new AmazonSecretsManagerConfig{RegionEndpoint = region}) { } ///

/// Constructs AmazonSecretsManagerClient with AWS Credentials and an /// AmazonSecretsManagerClient Configuration object. ///

/// AWS Credentials /// The AmazonSecretsManagerClient Configuration Object public AmazonSecretsManagerClient(AWSCredentials credentials, AmazonSecretsManagerConfig clientConfig) : base(credentials, clientConfig) { } ///

/// Constructs AmazonSecretsManagerClient with AWS Access Key ID and AWS Secret Key ///

/// AWS Access Key ID /// AWS Secret Access Key public AmazonSecretsManagerClient(string awsAccessKeyId, string awsSecretAccessKey) : this(awsAccessKeyId, awsSecretAccessKey, new AmazonSecretsManagerConfig()) { } ///

/// Constructs AmazonSecretsManagerClient with AWS Access Key ID and AWS Secret Key ///

/// AWS Access Key ID /// AWS Secret Access Key /// The region to connect. public AmazonSecretsManagerClient(string awsAccessKeyId, string awsSecretAccessKey, RegionEndpoint region) : this(awsAccessKeyId, awsSecretAccessKey, new AmazonSecretsManagerConfig() {RegionEndpoint=region}) { } ///

/// Constructs AmazonSecretsManagerClient with AWS Access Key ID, AWS Secret Key and an /// AmazonSecretsManagerClient Configuration object. ///

/// AWS Access Key ID /// AWS Secret Access Key /// The AmazonSecretsManagerClient Configuration Object public AmazonSecretsManagerClient(string awsAccessKeyId, string awsSecretAccessKey, AmazonSecretsManagerConfig clientConfig) : base(awsAccessKeyId, awsSecretAccessKey, clientConfig) { } ///

/// Constructs AmazonSecretsManagerClient with AWS Access Key ID and AWS Secret Key ///

/// AWS Access Key ID /// AWS Secret Access Key /// AWS Session Token public AmazonSecretsManagerClient(string awsAccessKeyId, string awsSecretAccessKey, string awsSessionToken) : this(awsAccessKeyId, awsSecretAccessKey, awsSessionToken, new AmazonSecretsManagerConfig()) { } ///

/// Constructs AmazonSecretsManagerClient with AWS Access Key ID and AWS Secret Key ///

/// AWS Access Key ID /// AWS Secret Access Key /// AWS Session Token /// The region to connect. public AmazonSecretsManagerClient(string awsAccessKeyId, string awsSecretAccessKey, string awsSessionToken, RegionEndpoint region) : this(awsAccessKeyId, awsSecretAccessKey, awsSessionToken, new AmazonSecretsManagerConfig{RegionEndpoint = region}) { } ///

/// Constructs AmazonSecretsManagerClient with AWS Access Key ID, AWS Secret Key and an /// AmazonSecretsManagerClient Configuration object. ///

/// AWS Access Key ID /// AWS Secret Access Key /// AWS Session Token /// The AmazonSecretsManagerClient Configuration Object public AmazonSecretsManagerClient(string awsAccessKeyId, string awsSecretAccessKey, string awsSessionToken, AmazonSecretsManagerConfig clientConfig) : base(awsAccessKeyId, awsSecretAccessKey, awsSessionToken, clientConfig) { } #endregion #region Overrides ///

/// Creates the signer for the service. ///

protected override AbstractAWSSigner CreateSigner() { return new AWS4Signer(); } ///

/// Customize the pipeline ///

/// protected override void CustomizeRuntimePipeline(RuntimePipeline pipeline) { pipeline.RemoveHandler(); pipeline.AddHandlerAfter(new AmazonSecretsManagerEndpointResolver()); } ///

/// Capture metadata for the service. ///

protected override IServiceMetadata ServiceMetadata { get { return serviceMetadata; } } #endregion #region Dispose ///

/// Disposes the service client. ///

protected override void Dispose(bool disposing) { base.Dispose(disposing); } #endregion #region CancelRotateSecret ///

/// Turns off automatic rotation, and if a rotation is currently in progress, cancels /// the rotation. /// /// /// /// If you cancel a rotation in progress, it can leave the VersionStage labels /// in an unexpected state. You might need to remove the staging label AWSPENDING /// from the partially created version. You also need to determine whether to roll back /// to the previous version of the secret by moving the staging label AWSCURRENT /// to the version that has AWSPENDING. To determine which version has a /// specific staging label, call ListSecretVersionIds. Then use UpdateSecretVersionStage /// to change staging labels. For more information, see How /// rotation works. /// /// /// /// To turn on automatic rotation again, call RotateSecret. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:CancelRotateSecret. For /// more information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the CancelRotateSecret service method. /// /// The response from the CancelRotateSecret service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for CancelRotateSecret Operation public virtual CancelRotateSecretResponse CancelRotateSecret(CancelRotateSecretRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = CancelRotateSecretRequestMarshaller.Instance; options.ResponseUnmarshaller = CancelRotateSecretResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the CancelRotateSecret service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the CancelRotateSecret service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for CancelRotateSecret Operation public virtual Task CancelRotateSecretAsync(CancelRotateSecretRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = CancelRotateSecretRequestMarshaller.Instance; options.ResponseUnmarshaller = CancelRotateSecretResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region CreateSecret ///

/// Creates a new secret. A secret can be a password, a set of credentials such /// as a user name and password, an OAuth token, or other secret information that you /// store in an encrypted form in Secrets Manager. The secret also includes the connection /// information to access a database or other service, which Secrets Manager doesn't encrypt. /// A secret in Secrets Manager consists of both the protected secret data and the important /// information needed to manage the secret. /// /// /// /// For secrets that use managed rotation, you need to create the secret through /// the managing service. For more information, see Secrets /// Manager secrets managed by other Amazon Web Services services. /// /// /// /// For information about creating a secret in the console, see Create /// a secret. /// /// /// /// To create a secret, you can provide the secret value to be encrypted in either the /// SecretString parameter or the SecretBinary parameter, but /// not both. If you include SecretString or SecretBinary then /// Secrets Manager creates an initial secret version and automatically attaches the staging /// label AWSCURRENT to it. /// /// /// /// For database credentials you want to rotate, for Secrets Manager to be able to rotate /// the secret, you must make sure the JSON you store in the SecretString /// matches the JSON /// structure of a database secret. /// /// /// /// If you don't specify an KMS encryption key, Secrets Manager uses the Amazon Web Services /// managed key aws/secretsmanager. If this key doesn't already exist in /// your account, then Secrets Manager creates it for you automatically. All users and /// roles in the Amazon Web Services account automatically have access to use aws/secretsmanager. /// Creating aws/secretsmanager can result in a one-time significant delay /// in returning the result. /// /// /// /// If the secret is in a different Amazon Web Services account from the credentials calling /// the API, then you can't use aws/secretsmanager to encrypt the secret, /// and you must create and use a customer managed KMS key. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters except SecretBinary /// or SecretString because it might be logged. For more information, see /// Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:CreateSecret. If you include /// tags in the secret, you also need secretsmanager:TagResource. For more /// information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// /// /// /// To encrypt the secret with a KMS key other than aws/secretsmanager, you /// need kms:GenerateDataKey and kms:Decrypt permission to the /// key. /// ///

/// Container for the necessary parameters to execute the CreateSecret service method. /// /// The response from the CreateSecret service method, as returned by SecretsManager. /// /// Secrets Manager can't decrypt the protected secret text using the provided KMS key. /// /// /// Secrets Manager can't encrypt the protected secret text using the provided KMS key. /// Check that the KMS key is available, enabled, and not in an invalid state. For more /// information, see Key /// state: Effect on your KMS key. /// /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// The request failed because it would exceed one of the Secrets Manager quotas. /// /// /// The resource policy has syntax errors. /// /// /// The request failed because you did not complete all the prerequisite steps. /// /// /// A resource with the ID you requested already exists. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for CreateSecret Operation public virtual CreateSecretResponse CreateSecret(CreateSecretRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = CreateSecretRequestMarshaller.Instance; options.ResponseUnmarshaller = CreateSecretResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the CreateSecret service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the CreateSecret service method, as returned by SecretsManager. /// /// Secrets Manager can't decrypt the protected secret text using the provided KMS key. /// /// /// Secrets Manager can't encrypt the protected secret text using the provided KMS key. /// Check that the KMS key is available, enabled, and not in an invalid state. For more /// information, see Key /// state: Effect on your KMS key. /// /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// The request failed because it would exceed one of the Secrets Manager quotas. /// /// /// The resource policy has syntax errors. /// /// /// The request failed because you did not complete all the prerequisite steps. /// /// /// A resource with the ID you requested already exists. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for CreateSecret Operation public virtual Task CreateSecretAsync(CreateSecretRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = CreateSecretRequestMarshaller.Instance; options.ResponseUnmarshaller = CreateSecretResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region DeleteResourcePolicy ///

/// Deletes the resource-based permission policy attached to the secret. To attach a policy /// to a secret, use PutResourcePolicy. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:DeleteResourcePolicy. For /// more information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the DeleteResourcePolicy service method. /// /// The response from the DeleteResourcePolicy service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for DeleteResourcePolicy Operation public virtual DeleteResourcePolicyResponse DeleteResourcePolicy(DeleteResourcePolicyRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = DeleteResourcePolicyRequestMarshaller.Instance; options.ResponseUnmarshaller = DeleteResourcePolicyResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the DeleteResourcePolicy service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the DeleteResourcePolicy service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for DeleteResourcePolicy Operation public virtual Task DeleteResourcePolicyAsync(DeleteResourcePolicyRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = DeleteResourcePolicyRequestMarshaller.Instance; options.ResponseUnmarshaller = DeleteResourcePolicyResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region DeleteSecret ///

/// Deletes a secret and all of its versions. You can specify a recovery window during /// which you can restore the secret. The minimum recovery window is 7 days. The default /// recovery window is 30 days. Secrets Manager attaches a DeletionDate stamp /// to the secret that specifies the end of the recovery window. At the end of the recovery /// window, Secrets Manager deletes the secret permanently. /// /// /// /// You can't delete a primary secret that is replicated to other Regions. You must first /// delete the replicas using RemoveRegionsFromReplication, and then delete the /// primary secret. When you delete a replica, it is deleted immediately. /// /// /// /// You can't directly delete a version of a secret. Instead, you remove all staging labels /// from the version using UpdateSecretVersionStage. This marks the version as /// deprecated, and then Secrets Manager can automatically delete the version in the background. /// /// /// /// To determine whether an application still uses a secret, you can create an Amazon /// CloudWatch alarm to alert you to any attempts to access a secret during the recovery /// window. For more information, see /// Monitor secrets scheduled for deletion. /// /// /// /// Secrets Manager performs the permanent secret deletion at the end of the waiting period /// as a background task with low priority. There is no guarantee of a specific time after /// the recovery window for the permanent delete to occur. /// /// /// /// At any time before recovery window ends, you can use RestoreSecret to remove /// the DeletionDate and cancel the deletion of the secret. /// /// /// /// When a secret is scheduled for deletion, you cannot retrieve the secret value. You /// must first cancel the deletion with RestoreSecret and then you can retrieve /// the secret. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:DeleteSecret. For more /// information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the DeleteSecret service method. /// /// The response from the DeleteSecret service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for DeleteSecret Operation public virtual DeleteSecretResponse DeleteSecret(DeleteSecretRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = DeleteSecretRequestMarshaller.Instance; options.ResponseUnmarshaller = DeleteSecretResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the DeleteSecret service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the DeleteSecret service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for DeleteSecret Operation public virtual Task DeleteSecretAsync(DeleteSecretRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = DeleteSecretRequestMarshaller.Instance; options.ResponseUnmarshaller = DeleteSecretResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region DescribeSecret ///

/// Retrieves the details of a secret. It does not include the encrypted secret value. /// Secrets Manager only returns fields that have a value in the response. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:DescribeSecret. For more /// information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the DescribeSecret service method. /// /// The response from the DescribeSecret service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for DescribeSecret Operation public virtual DescribeSecretResponse DescribeSecret(DescribeSecretRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = DescribeSecretRequestMarshaller.Instance; options.ResponseUnmarshaller = DescribeSecretResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the DescribeSecret service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the DescribeSecret service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for DescribeSecret Operation public virtual Task DescribeSecretAsync(DescribeSecretRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = DescribeSecretRequestMarshaller.Instance; options.ResponseUnmarshaller = DescribeSecretResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region GetRandomPassword ///

/// Generates a random password. We recommend that you specify the maximum length and /// include every character type that the system you are generating a password for can /// support. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:GetRandomPassword. For /// more information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the GetRandomPassword service method. /// /// The response from the GetRandomPassword service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// REST API Reference for GetRandomPassword Operation public virtual GetRandomPasswordResponse GetRandomPassword(GetRandomPasswordRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = GetRandomPasswordRequestMarshaller.Instance; options.ResponseUnmarshaller = GetRandomPasswordResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the GetRandomPassword service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the GetRandomPassword service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// REST API Reference for GetRandomPassword Operation public virtual Task GetRandomPasswordAsync(GetRandomPasswordRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = GetRandomPasswordRequestMarshaller.Instance; options.ResponseUnmarshaller = GetRandomPasswordResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region GetResourcePolicy ///

/// Retrieves the JSON text of the resource-based policy document attached to the secret. /// For more information about permissions policies attached to a secret, see Permissions /// policies attached to a secret. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:GetResourcePolicy. For /// more information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the GetResourcePolicy service method. /// /// The response from the GetResourcePolicy service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for GetResourcePolicy Operation public virtual GetResourcePolicyResponse GetResourcePolicy(GetResourcePolicyRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = GetResourcePolicyRequestMarshaller.Instance; options.ResponseUnmarshaller = GetResourcePolicyResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the GetResourcePolicy service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the GetResourcePolicy service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for GetResourcePolicy Operation public virtual Task GetResourcePolicyAsync(GetResourcePolicyRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = GetResourcePolicyRequestMarshaller.Instance; options.ResponseUnmarshaller = GetResourcePolicyResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region GetSecretValue ///

/// Retrieves the contents of the encrypted fields SecretString or SecretBinary /// from the specified version of a secret, whichever contains content. /// /// /// /// We recommend that you cache your secret values by using client-side caching. Caching /// secrets improves speed and reduces your costs. For more information, see Cache /// secrets for your applications. /// /// /// /// To retrieve the previous version of a secret, use VersionStage and specify /// AWSPREVIOUS. To revert to the previous version of a secret, call UpdateSecretVersionStage. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:GetSecretValue. If the /// secret is encrypted using a customer-managed key instead of the Amazon Web Services /// managed key aws/secretsmanager, then you also need kms:Decrypt /// permissions for that key. For more information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the GetSecretValue service method. /// /// The response from the GetSecretValue service method, as returned by SecretsManager. /// /// Secrets Manager can't decrypt the protected secret text using the provided KMS key. /// /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for GetSecretValue Operation public virtual GetSecretValueResponse GetSecretValue(GetSecretValueRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = GetSecretValueRequestMarshaller.Instance; options.ResponseUnmarshaller = GetSecretValueResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the GetSecretValue service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the GetSecretValue service method, as returned by SecretsManager. /// /// Secrets Manager can't decrypt the protected secret text using the provided KMS key. /// /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for GetSecretValue Operation public virtual Task GetSecretValueAsync(GetSecretValueRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = GetSecretValueRequestMarshaller.Instance; options.ResponseUnmarshaller = GetSecretValueResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region ListSecrets ///

/// Lists the secrets that are stored by Secrets Manager in the Amazon Web Services account, /// not including secrets that are marked for deletion. To see secrets marked for deletion, /// use the Secrets Manager console. /// /// /// /// ListSecrets is eventually consistent, however it might not reflect changes from the /// last five minutes. To get the latest information for a specific secret, use DescribeSecret. /// /// /// /// To list the versions of a secret, use ListSecretVersionIds. /// /// /// /// To get the secret value from SecretString or SecretBinary, /// call GetSecretValue. /// /// /// /// For information about finding secrets in the console, see Find /// secrets in Secrets Manager. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:ListSecrets. For more information, /// see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the ListSecrets service method. /// /// The response from the ListSecrets service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The NextToken value is invalid. /// /// /// The parameter name or value is invalid. /// /// REST API Reference for ListSecrets Operation public virtual ListSecretsResponse ListSecrets(ListSecretsRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = ListSecretsRequestMarshaller.Instance; options.ResponseUnmarshaller = ListSecretsResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the ListSecrets service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the ListSecrets service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The NextToken value is invalid. /// /// /// The parameter name or value is invalid. /// /// REST API Reference for ListSecrets Operation public virtual Task ListSecretsAsync(ListSecretsRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = ListSecretsRequestMarshaller.Instance; options.ResponseUnmarshaller = ListSecretsResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region ListSecretVersionIds ///

/// Lists the versions of a secret. Secrets Manager uses staging labels to indicate the /// different versions of a secret. For more information, see /// Secrets Manager concepts: Versions. /// /// /// /// To list the secrets in the account, use ListSecrets. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:ListSecretVersionIds. For /// more information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the ListSecretVersionIds service method. /// /// The response from the ListSecretVersionIds service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The NextToken value is invalid. /// /// /// The parameter name or value is invalid. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for ListSecretVersionIds Operation public virtual ListSecretVersionIdsResponse ListSecretVersionIds(ListSecretVersionIdsRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = ListSecretVersionIdsRequestMarshaller.Instance; options.ResponseUnmarshaller = ListSecretVersionIdsResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the ListSecretVersionIds service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the ListSecretVersionIds service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The NextToken value is invalid. /// /// /// The parameter name or value is invalid. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for ListSecretVersionIds Operation public virtual Task ListSecretVersionIdsAsync(ListSecretVersionIdsRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = ListSecretVersionIdsRequestMarshaller.Instance; options.ResponseUnmarshaller = ListSecretVersionIdsResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region PutResourcePolicy ///

/// Attaches a resource-based permission policy to a secret. A resource-based policy is /// optional. For more information, see Authentication /// and access control for Secrets Manager /// /// /// /// For information about attaching a policy in the console, see Attach /// a permissions policy to a secret. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:PutResourcePolicy. For /// more information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the PutResourcePolicy service method. /// /// The response from the PutResourcePolicy service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// The resource policy has syntax errors. /// /// /// The BlockPublicPolicy parameter is set to true, and the resource policy /// did not prevent broad access to the secret. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for PutResourcePolicy Operation public virtual PutResourcePolicyResponse PutResourcePolicy(PutResourcePolicyRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = PutResourcePolicyRequestMarshaller.Instance; options.ResponseUnmarshaller = PutResourcePolicyResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the PutResourcePolicy service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the PutResourcePolicy service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// The resource policy has syntax errors. /// /// /// The BlockPublicPolicy parameter is set to true, and the resource policy /// did not prevent broad access to the secret. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for PutResourcePolicy Operation public virtual Task PutResourcePolicyAsync(PutResourcePolicyRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = PutResourcePolicyRequestMarshaller.Instance; options.ResponseUnmarshaller = PutResourcePolicyResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region PutSecretValue ///

/// Creates a new version with a new encrypted secret value and attaches it to the secret. /// The version can contain a new SecretString value or a new SecretBinary /// value. /// /// /// /// We recommend you avoid calling PutSecretValue at a sustained rate of /// more than once every 10 minutes. When you update the secret value, Secrets Manager /// creates a new version of the secret. Secrets Manager removes outdated versions when /// there are more than 100, but it does not remove versions created less than 24 hours /// ago. If you call PutSecretValue more than once every 10 minutes, you /// create more versions than Secrets Manager removes, and you will reach the quota for /// secret versions. /// /// /// /// You can specify the staging labels to attach to the new version in VersionStages. /// If you don't include VersionStages, then Secrets Manager automatically /// moves the staging label AWSCURRENT to this version. If this operation /// creates the first version for the secret, then Secrets Manager automatically attaches /// the staging label AWSCURRENT to it. If this operation moves the staging /// label AWSCURRENT from another version to this version, then Secrets Manager /// also automatically moves the staging label AWSPREVIOUS to the version /// that AWSCURRENT was removed from. /// /// /// /// This operation is idempotent. If you call this operation with a ClientRequestToken /// that matches an existing version's VersionId, and you specify the same secret data, /// the operation succeeds but does nothing. However, if the secret data is different, /// then the operation fails because you can't modify an existing version; you can only /// create new ones. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters except SecretBinary /// or SecretString because it might be logged. For more information, see /// Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:PutSecretValue. For more /// information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the PutSecretValue service method. /// /// The response from the PutSecretValue service method, as returned by SecretsManager. /// /// Secrets Manager can't decrypt the protected secret text using the provided KMS key. /// /// /// Secrets Manager can't encrypt the protected secret text using the provided KMS key. /// Check that the KMS key is available, enabled, and not in an invalid state. For more /// information, see Key /// state: Effect on your KMS key. /// /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// The request failed because it would exceed one of the Secrets Manager quotas. /// /// /// A resource with the ID you requested already exists. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for PutSecretValue Operation public virtual PutSecretValueResponse PutSecretValue(PutSecretValueRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = PutSecretValueRequestMarshaller.Instance; options.ResponseUnmarshaller = PutSecretValueResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the PutSecretValue service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the PutSecretValue service method, as returned by SecretsManager. /// /// Secrets Manager can't decrypt the protected secret text using the provided KMS key. /// /// /// Secrets Manager can't encrypt the protected secret text using the provided KMS key. /// Check that the KMS key is available, enabled, and not in an invalid state. For more /// information, see Key /// state: Effect on your KMS key. /// /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// The request failed because it would exceed one of the Secrets Manager quotas. /// /// /// A resource with the ID you requested already exists. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for PutSecretValue Operation public virtual Task PutSecretValueAsync(PutSecretValueRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = PutSecretValueRequestMarshaller.Instance; options.ResponseUnmarshaller = PutSecretValueResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region RemoveRegionsFromReplication ///

/// For a secret that is replicated to other Regions, deletes the secret replicas from /// the Regions you specify. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:RemoveRegionsFromReplication. /// For more information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the RemoveRegionsFromReplication service method. /// /// The response from the RemoveRegionsFromReplication service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for RemoveRegionsFromReplication Operation public virtual RemoveRegionsFromReplicationResponse RemoveRegionsFromReplication(RemoveRegionsFromReplicationRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = RemoveRegionsFromReplicationRequestMarshaller.Instance; options.ResponseUnmarshaller = RemoveRegionsFromReplicationResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the RemoveRegionsFromReplication service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the RemoveRegionsFromReplication service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for RemoveRegionsFromReplication Operation public virtual Task RemoveRegionsFromReplicationAsync(RemoveRegionsFromReplicationRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = RemoveRegionsFromReplicationRequestMarshaller.Instance; options.ResponseUnmarshaller = RemoveRegionsFromReplicationResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region ReplicateSecretToRegions ///

/// Replicates the secret to a new Regions. See Multi-Region /// secrets. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:ReplicateSecretToRegions. /// For more information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the ReplicateSecretToRegions service method. /// /// The response from the ReplicateSecretToRegions service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for ReplicateSecretToRegions Operation public virtual ReplicateSecretToRegionsResponse ReplicateSecretToRegions(ReplicateSecretToRegionsRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = ReplicateSecretToRegionsRequestMarshaller.Instance; options.ResponseUnmarshaller = ReplicateSecretToRegionsResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the ReplicateSecretToRegions service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the ReplicateSecretToRegions service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for ReplicateSecretToRegions Operation public virtual Task ReplicateSecretToRegionsAsync(ReplicateSecretToRegionsRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = ReplicateSecretToRegionsRequestMarshaller.Instance; options.ResponseUnmarshaller = ReplicateSecretToRegionsResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region RestoreSecret ///

/// Cancels the scheduled deletion of a secret by removing the DeletedDate /// time stamp. You can access a secret again after it has been restored. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:RestoreSecret. For more /// information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the RestoreSecret service method. /// /// The response from the RestoreSecret service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for RestoreSecret Operation public virtual RestoreSecretResponse RestoreSecret(RestoreSecretRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = RestoreSecretRequestMarshaller.Instance; options.ResponseUnmarshaller = RestoreSecretResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the RestoreSecret service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the RestoreSecret service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for RestoreSecret Operation public virtual Task RestoreSecretAsync(RestoreSecretRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = RestoreSecretRequestMarshaller.Instance; options.ResponseUnmarshaller = RestoreSecretResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region RotateSecret ///

/// Configures and starts the asynchronous process of rotating the secret. For information /// about rotation, see Rotate /// secrets in the Secrets Manager User Guide. If you include the configuration /// parameters, the operation sets the values for the secret and then immediately starts /// a rotation. If you don't include the configuration parameters, the operation starts /// a rotation with the values already stored in the secret. /// /// /// /// When rotation is successful, the AWSPENDING staging label might be attached /// to the same version as the AWSCURRENT version, or it might not be attached /// to any version. If the AWSPENDING staging label is present but not attached /// to the same version as AWSCURRENT, then any later invocation of RotateSecret /// assumes that a previous rotation request is still in progress and returns an error. /// When rotation is unsuccessful, the AWSPENDING staging label might be /// attached to an empty secret version. For more information, see Troubleshoot /// rotation in the Secrets Manager User Guide. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:RotateSecret. For more /// information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. You also need lambda:InvokeFunction /// permissions on the rotation function. For more information, see /// Permissions for rotation. /// ///

/// Container for the necessary parameters to execute the RotateSecret service method. /// /// The response from the RotateSecret service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for RotateSecret Operation public virtual RotateSecretResponse RotateSecret(RotateSecretRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = RotateSecretRequestMarshaller.Instance; options.ResponseUnmarshaller = RotateSecretResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the RotateSecret service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the RotateSecret service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for RotateSecret Operation public virtual Task RotateSecretAsync(RotateSecretRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = RotateSecretRequestMarshaller.Instance; options.ResponseUnmarshaller = RotateSecretResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region StopReplicationToReplica ///

/// Removes the link between the replica secret and the primary secret and promotes the /// replica to a primary secret in the replica Region. /// /// /// /// You must call this operation from the Region in which you want to promote the replica /// to a primary secret. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:StopReplicationToReplica. /// For more information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the StopReplicationToReplica service method. /// /// The response from the StopReplicationToReplica service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for StopReplicationToReplica Operation public virtual StopReplicationToReplicaResponse StopReplicationToReplica(StopReplicationToReplicaRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = StopReplicationToReplicaRequestMarshaller.Instance; options.ResponseUnmarshaller = StopReplicationToReplicaResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the StopReplicationToReplica service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the StopReplicationToReplica service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for StopReplicationToReplica Operation public virtual Task StopReplicationToReplicaAsync(StopReplicationToReplicaRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = StopReplicationToReplicaRequestMarshaller.Instance; options.ResponseUnmarshaller = StopReplicationToReplicaResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region TagResource ///

/// Attaches tags to a secret. Tags consist of a key name and a value. Tags are part of /// the secret's metadata. They are not associated with specific versions of the secret. /// This operation appends tags to the existing list of tags. /// /// /// /// The following restrictions apply to tags: /// ///

/// /// Maximum number of tags per secret: 50 /// ///
/// /// Maximum key length: 127 Unicode characters in UTF-8 /// ///
/// /// Maximum value length: 255 Unicode characters in UTF-8 /// ///
/// /// Tag keys and values are case sensitive. /// ///
/// /// Do not use the aws: prefix in your tag names or values because Amazon /// Web Services reserves it for Amazon Web Services use. You can't edit or delete tag /// names or values with this prefix. Tags with this prefix do not count against your /// tags per secret limit. /// ///
/// /// If you use your tagging schema across multiple services and resources, other services /// might have restrictions on allowed characters. Generally allowed characters: letters, /// spaces, and numbers representable in UTF-8, plus the following special characters: /// + - = . _ : / @. /// ///

/// /// If you use tags as part of your security strategy, then adding or removing a tag can /// change permissions. If successfully completing this operation would result in you /// losing your permissions for this secret, then the operation is blocked and returns /// an Access Denied error. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:TagResource. For more information, /// see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the TagResource service method. /// /// The response from the TagResource service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for TagResource Operation public virtual TagResourceResponse TagResource(TagResourceRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = TagResourceRequestMarshaller.Instance; options.ResponseUnmarshaller = TagResourceResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// /// Maximum number of tags per secret: 50 /// ///
/// /// Maximum key length: 127 Unicode characters in UTF-8 /// ///
/// /// Maximum value length: 255 Unicode characters in UTF-8 /// ///
/// /// Tag keys and values are case sensitive. /// ///
/// /// Do not use the aws: prefix in your tag names or values because Amazon /// Web Services reserves it for Amazon Web Services use. You can't edit or delete tag /// names or values with this prefix. Tags with this prefix do not count against your /// tags per secret limit. /// ///
/// /// If you use your tagging schema across multiple services and resources, other services /// might have restrictions on allowed characters. Generally allowed characters: letters, /// spaces, and numbers representable in UTF-8, plus the following special characters: /// + - = . _ : / @. /// ///

/// Container for the necessary parameters to execute the TagResource service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the TagResource service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for TagResource Operation public virtual Task TagResourceAsync(TagResourceRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = TagResourceRequestMarshaller.Instance; options.ResponseUnmarshaller = TagResourceResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region UntagResource ///

/// Removes specific tags from a secret. /// /// /// /// This operation is idempotent. If a requested tag is not attached to the secret, no /// error is returned and the secret metadata is unchanged. /// /// /// /// If you use tags as part of your security strategy, then removing a tag can change /// permissions. If successfully completing this operation would result in you losing /// your permissions for this secret, then the operation is blocked and returns an Access /// Denied error. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:UntagResource. For more /// information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the UntagResource service method. /// /// The response from the UntagResource service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for UntagResource Operation public virtual UntagResourceResponse UntagResource(UntagResourceRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = UntagResourceRequestMarshaller.Instance; options.ResponseUnmarshaller = UntagResourceResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the UntagResource service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the UntagResource service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for UntagResource Operation public virtual Task UntagResourceAsync(UntagResourceRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = UntagResourceRequestMarshaller.Instance; options.ResponseUnmarshaller = UntagResourceResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region UpdateSecret ///

/// Modifies the details of a secret, including metadata and the secret value. To change /// the secret value, you can also use PutSecretValue. /// /// /// /// To change the rotation configuration of a secret, use RotateSecret instead. /// /// /// /// To change a secret so that it is managed by another service, you need to recreate /// the secret in that service. See Secrets /// Manager secrets managed by other Amazon Web Services services. /// /// /// /// We recommend you avoid calling UpdateSecret at a sustained rate of more /// than once every 10 minutes. When you call UpdateSecret to update the /// secret value, Secrets Manager creates a new version of the secret. Secrets Manager /// removes outdated versions when there are more than 100, but it does not remove versions /// created less than 24 hours ago. If you update the secret value more than once every /// 10 minutes, you create more versions than Secrets Manager removes, and you will reach /// the quota for secret versions. /// /// /// /// If you include SecretString or SecretBinary to create a /// new secret version, Secrets Manager automatically moves the staging label AWSCURRENT /// to the new version. Then it attaches the label AWSPREVIOUS to the version /// that AWSCURRENT was removed from. /// /// /// /// If you call this operation with a ClientRequestToken that matches an /// existing version's VersionId, the operation results in an error. You /// can't modify an existing version, you can only create a new version. To remove a version, /// remove all staging labels from it. See UpdateSecretVersionStage. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters except SecretBinary /// or SecretString because it might be logged. For more information, see /// Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:UpdateSecret. For more /// information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. If you use a customer managed key, you /// must also have kms:GenerateDataKey, kms:Encrypt, and kms:Decrypt /// permissions on the key. If you change the KMS key and you don't have kms:Encrypt /// permission to the new key, Secrets Manager does not re-ecrypt existing secret versions /// with the new key. For more information, see /// Secret encryption and decryption. /// ///

/// Container for the necessary parameters to execute the UpdateSecret service method. /// /// The response from the UpdateSecret service method, as returned by SecretsManager. /// /// Secrets Manager can't decrypt the protected secret text using the provided KMS key. /// /// /// Secrets Manager can't encrypt the protected secret text using the provided KMS key. /// Check that the KMS key is available, enabled, and not in an invalid state. For more /// information, see Key /// state: Effect on your KMS key. /// /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// The request failed because it would exceed one of the Secrets Manager quotas. /// /// /// The resource policy has syntax errors. /// /// /// The request failed because you did not complete all the prerequisite steps. /// /// /// A resource with the ID you requested already exists. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for UpdateSecret Operation public virtual UpdateSecretResponse UpdateSecret(UpdateSecretRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = UpdateSecretRequestMarshaller.Instance; options.ResponseUnmarshaller = UpdateSecretResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the UpdateSecret service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the UpdateSecret service method, as returned by SecretsManager. /// /// Secrets Manager can't decrypt the protected secret text using the provided KMS key. /// /// /// Secrets Manager can't encrypt the protected secret text using the provided KMS key. /// Check that the KMS key is available, enabled, and not in an invalid state. For more /// information, see Key /// state: Effect on your KMS key. /// /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// The request failed because it would exceed one of the Secrets Manager quotas. /// /// /// The resource policy has syntax errors. /// /// /// The request failed because you did not complete all the prerequisite steps. /// /// /// A resource with the ID you requested already exists. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for UpdateSecret Operation public virtual Task UpdateSecretAsync(UpdateSecretRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = UpdateSecretRequestMarshaller.Instance; options.ResponseUnmarshaller = UpdateSecretResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region UpdateSecretVersionStage ///

/// Modifies the staging labels attached to a version of a secret. Secrets Manager uses /// staging labels to track a version as it progresses through the secret rotation process. /// Each staging label can be attached to only one version at a time. To add a staging /// label to a version when it is already attached to another version, Secrets Manager /// first removes it from the other version first and then attaches it to this one. For /// more information about versions and staging labels, see Concepts: /// Version. /// /// /// /// The staging labels that you specify in the VersionStage parameter are /// added to the existing list of staging labels for the version. /// /// /// /// You can move the AWSCURRENT staging label to this version by including /// it in this call. /// /// /// /// Whenever you move AWSCURRENT, Secrets Manager automatically moves the /// label AWSPREVIOUS to the version that AWSCURRENT was removed /// from. /// /// /// /// If this action results in the last label being removed from a version, then the version /// is considered to be 'deprecated' and can be deleted by Secrets Manager. /// /// /// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:UpdateSecretVersionStage. /// For more information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the UpdateSecretVersionStage service method. /// /// The response from the UpdateSecretVersionStage service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// The request failed because it would exceed one of the Secrets Manager quotas. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for UpdateSecretVersionStage Operation public virtual UpdateSecretVersionStageResponse UpdateSecretVersionStage(UpdateSecretVersionStageRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = UpdateSecretVersionStageRequestMarshaller.Instance; options.ResponseUnmarshaller = UpdateSecretVersionStageResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// Container for the necessary parameters to execute the UpdateSecretVersionStage service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the UpdateSecretVersionStage service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// The request failed because it would exceed one of the Secrets Manager quotas. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for UpdateSecretVersionStage Operation public virtual Task UpdateSecretVersionStageAsync(UpdateSecretVersionStageRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = UpdateSecretVersionStageRequestMarshaller.Instance; options.ResponseUnmarshaller = UpdateSecretVersionStageResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion #region ValidateResourcePolicy ///

/// Validates that a resource policy does not grant a wide range of principals access /// to your secret. A resource-based policy is optional for secrets. /// /// /// /// The API performs three checks when validating the policy: /// ///

/// /// Sends a call to Zelkova, /// an automated reasoning engine, to ensure your resource policy does not allow broad /// access to your secret, for example policies that use a wildcard for the principal. /// ///
/// /// Checks for correct syntax in a policy. /// ///
/// /// Verifies the policy does not lock out a caller. /// ///

/// /// Secrets Manager generates a CloudTrail log entry when you call this action. Do not /// include sensitive information in request parameters because it might be logged. For /// more information, see Logging /// Secrets Manager events with CloudTrail. /// /// /// /// Required permissions: secretsmanager:ValidateResourcePolicy /// and secretsmanager:PutResourcePolicy. For more information, see /// IAM policy actions for Secrets Manager and Authentication /// and access control in Secrets Manager. /// ///

/// Container for the necessary parameters to execute the ValidateResourcePolicy service method. /// /// The response from the ValidateResourcePolicy service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// The resource policy has syntax errors. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for ValidateResourcePolicy Operation public virtual ValidateResourcePolicyResponse ValidateResourcePolicy(ValidateResourcePolicyRequest request) { var options = new InvokeOptions(); options.RequestMarshaller = ValidateResourcePolicyRequestMarshaller.Instance; options.ResponseUnmarshaller = ValidateResourcePolicyResponseUnmarshaller.Instance; return Invoke(request, options); } ///

/// /// Sends a call to Zelkova, /// an automated reasoning engine, to ensure your resource policy does not allow broad /// access to your secret, for example policies that use a wildcard for the principal. /// ///
/// /// Checks for correct syntax in a policy. /// ///
/// /// Verifies the policy does not lock out a caller. /// ///

/// Container for the necessary parameters to execute the ValidateResourcePolicy service method. /// /// A cancellation token that can be used by other objects or threads to receive notice of cancellation. /// /// /// The response from the ValidateResourcePolicy service method, as returned by SecretsManager. /// /// An error occurred on the server side. /// /// /// The parameter name or value is invalid. /// /// /// A parameter value is not valid for the current state of the resource. /// /// /// /// Possible causes: /// ///

/// /// The secret is scheduled for deletion. /// ///
/// /// You tried to enable rotation on a secret that doesn't already have a Lambda function /// ARN configured and you didn't include such an ARN as a parameter in this call. /// ///
/// /// The secret is managed by another service, and you must use that service to update /// it. For more information, see Secrets /// managed by other Amazon Web Services services. /// ///

/// /// /// The resource policy has syntax errors. /// /// /// Secrets Manager can't find the resource that you asked for. /// /// REST API Reference for ValidateResourcePolicy Operation public virtual Task ValidateResourcePolicyAsync(ValidateResourcePolicyRequest request, System.Threading.CancellationToken cancellationToken = default(CancellationToken)) { var options = new InvokeOptions(); options.RequestMarshaller = ValidateResourcePolicyRequestMarshaller.Instance; options.ResponseUnmarshaller = ValidateResourcePolicyResponseUnmarshaller.Instance; return InvokeAsync(request, options, cancellationToken); } #endregion } }