lib/aws-sdk-iam/client.rb in aws-sdk-iam-1.53.0 vs lib/aws-sdk-iam/client.rb in aws-sdk-iam-1.54.0

@@ -1225,10 +1225,18 @@
     #
     # The OIDC provider that you create with this operation can be used as a
     # principal in a role's trust policy. Such a policy establishes a trust
     # relationship between AWS and the OIDC provider.
     #
+    # If you are using an OIDC identity provider from Google, Facebook, or
+    # Amazon Cognito, you don't need to create a separate IAM identity
+    # provider. These OIDC identity providers are already built-in to AWS
+    # and are available for your use. Instead, you can move directly to
+    # creating new roles using your identity provider. To learn more, see
+    # [Creating a role for web identity or OpenID connect federation][2] in
+    # the *IAM User Guide*.
+    #
     # When you create the IAM OIDC provider, you specify the following:
     #
     # * The URL of the OIDC identity provider (IdP) to trust
     #
     # * A list of client IDs (also known as audiences) that identify the
@@ -1248,10 +1256,11 @@
     #  </note>
     #
     #
     #
     # [1]: http://openid.net/connect/
+    # [2]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_create_for-idp_oidc.html
     #
     # @option params [required, String] :url
     #   The URL of the identity provider. The URL must begin with `https://`
     #   and should correspond to the `iss` claim in the provider's OpenID
     #   Connect ID tokens. Per the OIDC standard, path components are allowed
@@ -13056,10 +13065,10 @@
         operation: config.api.operation(operation_name),
         client: self,
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-iam'
-      context[:gem_version] = '1.53.0'
+      context[:gem_version] = '1.54.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 
     # Polls an API operation until a resource enters a desired state.
     #