Release October 15th, 2021 (#258)

* update changelog and versions

* Import v0.25.1 from smithy-rs

* Add changelog about retry config

* ignore the rustsec advisory

* Update audit.yaml

Add ignore for the chrono version of the issue

Author: rcoh

.github/workflows/audit.yaml

@@ -19,4 +19,13 @@ jobs:
         run: cargo install cargo-audit
       - name: Run audit
         working-directory: sdk
-        run: cargo audit
+        # chrono, a Rust date-time crate we use for timestamp parsing was added
+        # to the RustSec vulnerability database because of a call to localtime_r.
+        # We use chrono for an extremely narrow use case of converting epoch timestamps to UTC dates
+        # (so we never invoke the problematic behavior that results from attempting to determine
+        # the local time of the current platform).
+        #
+        # There currently is no release from chrono that rectifies the issue, and we are working
+        # on a mitigation to ensure that we either use a patched version of chrono or add a deny-lint
+        # to call any chrono methods other than the method we use currently.
+        run: cargo audit --ignore RUSTSEC-2020-0071 --ignore RUSTSEC-2020-0159

AWS_SERVICES_SUPPORTED.md

@@ -174,6 +174,7 @@ These services have not yet been manually tested by the SDK team and may not hav
 - [x] Amazon Macie
 - [x] Amazon Macie2
 - [x] Amazon Managedblockchain
+- [x] Amazon Managed Grafana
 - [x] Amazon Marketplace-Catalog
 - [x] Amazon Marketplacecommerceanalytics
 - [x] Amazon Mediaconnect

CHANGELOG.md

@@ -1,3 +1,23 @@
+v0.0.21-alpha (October 15th, 2021)
+==================================
+
+**New this week**
+
+- Prepare crate manifests for publishing to crates.io (smithy-rs#755)
+- Add support for IAM Roles for tasks credential provider (smithy-rs#765, aws-sdk-rust#123)
+- All service crates now have generated README files (smithy-rs#766)
+- Update AWS service models (smithy-rs#772)
+- :tada: Add support for Amazon Managed Grafana (smithy-rs#772)
+- :tada: Make retry behavior configurable
+    - With env vars `AWS_MAX_ATTEMPTS` and `AWS_RETRY_MODE`
+    - With `~/.aws/config` settings `max_attempts` and `retry_mode`
+    - By calling the `with_retry_config` method on a `Config` and passing in a `RetryConfig`
+    - Only the `Standard` retry mode is currently implemented. `Adaptive` retry mode will be implemented at a later
+      date.
+    - For more info, see the AWS Reference pages on configuring these settings:
+        - [Setting global max attempts](https://docs.aws.amazon.com/sdkref/latest/guide/setting-global-max_attempts.html)
+        - [Setting global retry mode](https://docs.aws.amazon.com/sdkref/latest/guide/setting-global-retry_mode.html)
+
 v0.0.20-alpha (October, 7, 2021)
 ================================
 

README.md

@@ -1,4 +1,4 @@
-# The AWS SDK for Rust [![Docs](https://img.shields.io/badge/docs-v0.0.20--alpha-blue)](https://awslabs.github.io/aws-sdk-rust/) ![MSRV](https://img.shields.io/badge/msrv-1.53-red)
+# The AWS SDK for Rust [![Docs](https://img.shields.io/badge/docs-v0.0.21--alpha-blue)](https://awslabs.github.io/aws-sdk-rust/) ![MSRV](https://img.shields.io/badge/msrv-1.53-red)
 
 This repo contains the new AWS SDK for Rust (the SDK) and its [public roadmap](https://github.com/awslabs/aws-sdk-rust/projects/1)
 
@@ -18,8 +18,8 @@ The SDK provides one crate per AWS service. You must add [Tokio](https://crates.
 
     ```toml
     [dependencies]
-    aws-config = { git = "https://github.com/awslabs/aws-sdk-rust", tag = "v0.0.20-alpha", package = "aws-config" }
-    aws-sdk-dynamodb = { git = "https://github.com/awslabs/aws-sdk-rust", tag = "v0.0.20-alpha", package = "aws-sdk-dynamodb" }
+    aws-config = { git = "https://github.com/awslabs/aws-sdk-rust", tag = "v0.0.21-alpha", package = "aws-config" }
+    aws-sdk-dynamodb = { git = "https://github.com/awslabs/aws-sdk-rust", tag = "v0.0.21-alpha", package = "aws-sdk-dynamodb" }
     tokio = { version = "1", features = ["full"] }
     ```
 

sdk/Cargo.toml

@@ -1,4 +1,4 @@
 [workspace]
 members = [
-    "migrationhub","accessanalyzer","account","acmpca","acm","alexaforbusiness","amp","amplify","amplifybackend","apigateway","apigatewaymanagement","apigatewayv2","appconfig","appflow","appintegrations","applicationautoscaling","applicationinsights","applicationcostprofiler","appmesh","apprunner","appstream","appsync","athena","auditmanager","autoscalingplans","autoscaling","backup","batch","braket","budgets","costexplorer","chimesdkidentity","chimesdkmessaging","chime","cloud9","cloudcontrol","clouddirectory","cloudformation","cloudfront","cloudhsm","cloudhsmv2","cloudsearch","cloudsearchdomain","cloudtrail","codeartifact","codebuild","codecommit","codedeploy","codegurureviewer","codeguruprofiler","codepipeline","codestarconnections","codestarnotifications","codestar","cognitoidentity","cognitoidentityprovider","cognitosync","comprehend","comprehendmedical","computeoptimizer","config","connectcontactlens","connect","connectparticipant","costandusagereport","customerprofiles","databrew","dataexchange","datapipeline","datasync","dax","detective","devicefarm","devopsguru","directconnect","applicationdiscovery","dlm","databasemigration","docdb","directory","dynamodb","ebs","ec2instanceconnect","ec2","ecrpublic","ecr","ecs","eks","elasticinference","elasticache","elasticbeanstalk","efs","elasticloadbalancing","elasticloadbalancingv2","emr","elastictranscoder","ses","emrcontainers","marketplaceentitlement","elasticsearch","eventbridge","cloudwatchevents","finspacedata","finspace","firehose","fis","fms","forecast","forecastquery","frauddetector","fsx","gamelift","globalaccelerator","glue","greengrass","greengrassv2","groundstation","guardduty","health","healthlake","honeycode","iam","identitystore","imagebuilder","inspector","iotdataplane","iotjobsdataplane","iot","iot1clickdevices","iot1clickprojects","iotanalytics","iotdeviceadvisor","ioteventsdata","iotevents","iotfleethub","iotsecuretunneling","iotsitewise","iotthingsgraph","iotwireless","ivs","kafka","kafkaconnect","kendra","kinesisvideoarchivedmedia","kinesisvideomedia","kinesisvideosignaling","kinesis","kinesisanalytics","kinesisanalyticsv2","kinesisvideo","kms","lakeformation","lambda","lexmodelbuilding","licensemanager","lightsail","location","cloudwatchlogs","lookoutequipment","lookoutmetrics","lookoutvision","machinelearning","macie","macie2","managedblockchain","marketplacecatalog","marketplacecommerceanalytics","mediaconnect","mediaconvert","medialive","mediapackagevod","mediapackage","mediastoredata","mediastore","mediatailor","memorydb","marketplacemetering","mgn","migrationhubconfig","mobile","lexmodelsv2","cloudwatch","mq","mturk","mwaa","neptune","networkfirewall","networkmanager","nimble","opensearch","opsworks","opsworkscm","organizations","outposts","personalizeevents","personalizeruntime","personalize","pi","pinpointemail","pinpoint","polly","pricing","proton","qldbsession","qldb","quicksight","ram","rdsdata","rds","redshiftdata","redshift","rekognition","resourcegroups","resourcegroupstagging","robomaker","route53recoverycluster","route53recoverycontrolconfig","route53recoveryreadiness","route53","route53domains","route53resolver","lexruntime","lexruntimev2","sagemakerruntime","s3","s3control","s3outposts","sagemakera2iruntime","sagemakeredge","sagemakerfeaturestoreruntime","sagemaker","savingsplans","schemas","secretsmanager","securityhub","serverlessapplicationrepository","servicequotas","servicecatalogappregistry","servicecatalog","servicediscovery","sesv2","shield","signer","pinpointsmsvoice","sms","snowdevicemanagement","snowball","sns","sqs","ssmcontacts","ssmincidents","ssm","ssoadmin","ssooidc","sso","sfn","storagegateway","dynamodbstreams","sts","support","swf","synthetics","textract","transcribestreaming","transcribe","transfer","translate","voiceid","wafregional","waf","wafv2","wellarchitected","wisdom","workdocs","worklink","workmail","workmailmessageflow","workspaces","xray","protocol-test-helpers","smithy-async","smithy-client","smithy-eventstream","smithy-http","smithy-http-tower","smithy-json","smithy-query","smithy-types","smithy-xml","aws-auth","aws-config","aws-endpoint","aws-http","aws-hyper","aws-sig-auth","aws-sigv4","aws-types","examples/s3","examples/cognitoidentityprovider","examples/autoscaling","examples/snowball","examples/dynamodb","examples/sns","examples/kinesis","examples/iam","examples/config","examples/secretsmanager","examples/mediapackage","examples/route53","examples/sqs","examples/ec2","examples/cognitosync","examples/sagemaker","examples/lambda","examples/autoscalingplans","examples/ses","examples/ssm","examples/ecs","examples/rdsdata","examples/transcribestreaming","examples/cloudformation","examples/batch","examples/rds","examples/kms","examples/eks","examples/polly","examples/apigateway","examples/cloudwatchlogs","examples/applicationautoscaling","examples/qldb","examples/medialive","examples/cloudwatch","examples/ecr","examples/cognitoidentity","examples/ebs"
+    "migrationhub","accessanalyzer","account","acmpca","acm","alexaforbusiness","amp","amplify","amplifybackend","apigateway","apigatewaymanagement","apigatewayv2","appconfig","appflow","appintegrations","applicationautoscaling","applicationinsights","applicationcostprofiler","appmesh","apprunner","appstream","appsync","athena","auditmanager","autoscalingplans","autoscaling","backup","batch","braket","budgets","costexplorer","chimesdkidentity","chimesdkmessaging","chime","cloud9","cloudcontrol","clouddirectory","cloudformation","cloudfront","cloudhsm","cloudhsmv2","cloudsearch","cloudsearchdomain","cloudtrail","codeartifact","codebuild","codecommit","codedeploy","codegurureviewer","codeguruprofiler","codepipeline","codestarconnections","codestarnotifications","codestar","cognitoidentity","cognitoidentityprovider","cognitosync","comprehend","comprehendmedical","computeoptimizer","config","connectcontactlens","connect","connectparticipant","costandusagereport","customerprofiles","databrew","dataexchange","datapipeline","datasync","dax","detective","devicefarm","devopsguru","directconnect","applicationdiscovery","dlm","databasemigration","docdb","directory","dynamodb","ebs","ec2instanceconnect","ec2","ecrpublic","ecr","ecs","eks","elasticinference","elasticache","elasticbeanstalk","efs","elasticloadbalancing","elasticloadbalancingv2","emr","elastictranscoder","ses","emrcontainers","marketplaceentitlement","elasticsearch","eventbridge","cloudwatchevents","finspacedata","finspace","firehose","fis","fms","forecast","forecastquery","frauddetector","fsx","gamelift","globalaccelerator","glue","grafana","greengrass","greengrassv2","groundstation","guardduty","health","healthlake","honeycode","iam","identitystore","imagebuilder","inspector","iotdataplane","iotjobsdataplane","iot","iot1clickdevices","iot1clickprojects","iotanalytics","iotdeviceadvisor","ioteventsdata","iotevents","iotfleethub","iotsecuretunneling","iotsitewise","iotthingsgraph","iotwireless","ivs","kafka","kafkaconnect","kendra","kinesisvideoarchivedmedia","kinesisvideomedia","kinesisvideosignaling","kinesis","kinesisanalytics","kinesisanalyticsv2","kinesisvideo","kms","lakeformation","lambda","lexmodelbuilding","licensemanager","lightsail","location","cloudwatchlogs","lookoutequipment","lookoutmetrics","lookoutvision","machinelearning","macie","macie2","managedblockchain","marketplacecatalog","marketplacecommerceanalytics","mediaconnect","mediaconvert","medialive","mediapackagevod","mediapackage","mediastoredata","mediastore","mediatailor","memorydb","marketplacemetering","mgn","migrationhubconfig","mobile","lexmodelsv2","cloudwatch","mq","mturk","mwaa","neptune","networkfirewall","networkmanager","nimble","opensearch","opsworks","opsworkscm","organizations","outposts","personalizeevents","personalizeruntime","personalize","pi","pinpointemail","pinpoint","polly","pricing","proton","qldbsession","qldb","quicksight","ram","rdsdata","rds","redshiftdata","redshift","rekognition","resourcegroups","resourcegroupstagging","robomaker","route53recoverycluster","route53recoverycontrolconfig","route53recoveryreadiness","route53","route53domains","route53resolver","lexruntime","lexruntimev2","sagemakerruntime","s3","s3control","s3outposts","sagemakera2iruntime","sagemakeredge","sagemakerfeaturestoreruntime","sagemaker","savingsplans","schemas","secretsmanager","securityhub","serverlessapplicationrepository","servicequotas","servicecatalogappregistry","servicecatalog","servicediscovery","sesv2","shield","signer","pinpointsmsvoice","sms","snowdevicemanagement","snowball","sns","sqs","ssmcontacts","ssmincidents","ssm","ssoadmin","ssooidc","sso","sfn","storagegateway","dynamodbstreams","sts","support","swf","synthetics","textract","transcribestreaming","transcribe","transfer","translate","voiceid","wafregional","waf","wafv2","wellarchitected","wisdom","workdocs","worklink","workmail","workmailmessageflow","workspaces","xray","smithy-async","smithy-client","smithy-eventstream","smithy-http","smithy-http-tower","smithy-json","smithy-protocol-test","smithy-query","smithy-types","smithy-xml","aws-auth","aws-config","aws-endpoint","aws-http","aws-hyper","aws-sig-auth","aws-sigv4","aws-types","examples/s3","examples/cognitoidentityprovider","examples/autoscaling","examples/snowball","examples/dynamodb","examples/sns","examples/kinesis","examples/iam","examples/config","examples/secretsmanager","examples/mediapackage","examples/route53","examples/sqs","examples/ec2","examples/cognitosync","examples/sagemaker","examples/lambda","examples/autoscalingplans","examples/ses","examples/ssm","examples/ecs","examples/rdsdata","examples/transcribestreaming","examples/cloudformation","examples/batch","examples/rds","examples/kms","examples/eks","examples/polly","examples/apigateway","examples/cloudwatchlogs","examples/applicationautoscaling","examples/qldb","examples/medialive","examples/cloudwatch","examples/ecr","examples/cognitoidentity","examples/ebs"
 ]

sdk/accessanalyzer/Cargo.toml

@@ -1,11 +1,13 @@
 # Code generated by software.amazon.smithy.rust.codegen.smithy-rs. DO NOT EDIT.
 [package]
 name = "aws-sdk-accessanalyzer"
-version = "0.0.20-alpha"
-description = "<p>Identity and Access Management Access Analyzer helps identify potential resource-access risks by enabling you to\n         identify any policies that grant access to an external principal. It does this by using\n         logic-based reasoning to analyze resource-based policies in your Amazon Web Services environment. An\n         external principal can be another Amazon Web Services account, a root user, an IAM user or role, a\n         federated user, an Amazon Web Services service, or an anonymous user. You can also use IAM Access Analyzer to\n         preview and validate public and cross-account access to your resources before deploying\n         permissions changes. This guide describes the Identity and Access Management Access Analyzer operations that you can\n         call programmatically. For general information about IAM Access Analyzer, see <a href=\"https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html\">Identity and Access Management Access Analyzer</a> in the <b>IAM User Guide</b>.</p>\n         <p>To start using IAM Access Analyzer, you first need to create an analyzer.</p>"
+version = "0.0.21-alpha"
 authors = ["AWS Rust SDK Team <aws-sdk-rust@amazon.com>", "Russell Cohen <rcoh@amazon.com>"]
-license = "Apache-2.0"
+description = "AWS SDK for Access Analyzer"
 edition = "2018"
+license = "Apache-2.0"
+repository = "https://github.com/awslabs/aws-sdk-rust"
+readme = "README.md"
 [dependencies.aws-auth]
 path = "..//aws-auth"
 [dependencies.aws-endpoint]

sdk/accessanalyzer/README.md

@@ -0,0 +1,42 @@
+# aws-sdk-accessanalyzer
+
+**Please Note: The SDK is currently released as an alpha and is intended strictly for
+feedback purposes only. Do not use this SDK for production workloads.**
+
+Identity and Access Management Access Analyzer helps identify potential resource-access risks by enabling you to identify any policies that grant access to an external principal. It does this by using logic-based reasoning to analyze resource-based policies in your Amazon Web Services environment. An external principal can be another Amazon Web Services account, a root user, an IAM user or role, a federated user, an Amazon Web Services service, or an anonymous user. You can also use IAM Access Analyzer to preview and validate public and cross-account access to your resources before deploying permissions changes. This guide describes the Identity and Access Management Access Analyzer operations that you can call programmatically. For general information about IAM Access Analyzer, see [Identity and Access Management Access Analyzer](https://docs.aws.amazon.com/IAM/latest/UserGuide/what-is-access-analyzer.html) in the __IAM User Guide__.
+
+To start using IAM Access Analyzer, you first need to create an analyzer.
+
+## Getting Started
+
+> Examples are availble for many services and operations, check out the
+> [examples folder in GitHub](https://github.com/awslabs/aws-sdk-rust/tree/main/sdk/examples).
+
+The SDK provides one crate per AWS service. You must add [Tokio](https://crates.io/crates/tokio)
+as a dependency within your Rust project to execute asynchronous code. To add `aws-sdk-accessanalyzer` to
+your project, add the following to your **Cargo.toml** file:
+
+```toml
+[dependencies]
+aws-config = "0.0.21-alpha"
+aws-sdk-accessanalyzer = "0.0.21-alpha"
+tokio = { version = "1", features = ["full"] }
+```
+
+## Using the SDK
+
+Until the SDK is released, we will be adding information about using the SDK to the
+[Guide](https://github.com/awslabs/aws-sdk-rust/blob/main/Guide.md). Feel free to suggest
+additional sections for the guide by opening an issue and describing what you are trying to do.
+
+## Getting Help
+
+* [GitHub discussions](https://github.com/awslabs/aws-sdk-rust/discussions) - For ideas, RFCs & general questions
+* [GitHub issues](https://github.com/awslabs/aws-sdk-rust/issues/new/choose) – For bug reports & feature requests
+* [Generated Docs (latest version)](https://awslabs.github.io/aws-sdk-rust/)
+* [Usage examples](https://github.com/awslabs/aws-sdk-rust/tree/main/sdk/examples)
+
+## License
+
+This project is licensed under the Apache-2.0 License.
+

sdk/accessanalyzer/src/client.rs

@@ -2381,7 +2381,8 @@ pub mod fluent_builders {
 }
 impl<C> Client<C, aws_hyper::AwsMiddleware, smithy_client::retry::Standard> {
     pub fn from_conf_conn(conf: crate::Config, conn: C) -> Self {
-        let client = aws_hyper::Client::new(conn);
+        let retry_config = conf.retry_config.as_ref().cloned().unwrap_or_default();
+        let client = aws_hyper::Client::new(conn).with_retry_config(retry_config.into());
         Self {
             handle: std::sync::Arc::new(Handle { client, conf }),
         }
@@ -2401,7 +2402,8 @@ impl
 
     #[cfg(any(feature = "rustls", feature = "native-tls"))]
     pub fn from_conf(conf: crate::Config) -> Self {
-        let client = aws_hyper::Client::https();
+        let retry_config = conf.retry_config.as_ref().cloned().unwrap_or_default();
+        let client = aws_hyper::Client::https().with_retry_config(retry_config.into());
         Self {
             handle: std::sync::Arc::new(Handle { client, conf }),
         }