Amazon WorkSpaces Web Update: Support for managing web content filtering for defining, tracking and regulating type of content accessed with WorkSpaces Secure Browser as part of browser settings.

Author: AWS

.changes/next-release/feature-AmazonWorkSpacesWeb-4be92f2.json

@@ -0,0 +1,6 @@
+{
+    "type": "feature",
+    "category": "Amazon WorkSpaces Web",
+    "contributor": "",
+    "description": "Support for managing web content filtering for defining, tracking and regulating type of content accessed with WorkSpaces Secure Browser as part of browser settings."
+}

services/workspacesweb/src/main/resources/codegen-resources/service-2.json

@@ -1750,6 +1750,12 @@
         "IAM_Identity_Center"
       ]
     },
+    "BlockedCategories":{
+      "type":"list",
+      "member":{"shape":"Category"},
+      "max":100,
+      "min":1
+    },
     "BrowserPolicy":{
       "type":"string",
       "max":131072,
@@ -1780,6 +1786,10 @@
         "additionalEncryptionContext":{
           "shape":"EncryptionContextMap",
           "documentation":"<p>The additional encryption context of the browser settings.</p>"
+        },
+        "webContentFilteringPolicy":{
+          "shape":"WebContentFilteringPolicy",
+          "documentation":"<p>The policy that specifies which URLs end users are allowed to access or which URLs or domain categories they are restricted from accessing for enhanced security.</p>"
         }
       },
       "documentation":"<p>The browser settings resource that can be associated with a web portal. Once associated with a web portal, browser settings control how the browser will behave once a user starts a streaming session for the web portal. </p>"
@@ -1810,6 +1820,38 @@
       "pattern":"[_\\-\\d\\w]+",
       "sensitive":true
     },
+    "Category":{
+      "type":"string",
+      "enum":[
+        "Cults",
+        "Gambling",
+        "Nudity",
+        "Pornography",
+        "SexEducation",
+        "Tasteless",
+        "Violence",
+        "DownloadSites",
+        "ImageSharing",
+        "PeerToPeer",
+        "StreamingMediaAndDownloads",
+        "GenerativeAI",
+        "CriminalActivity",
+        "Hacking",
+        "HateAndIntolerance",
+        "IllegalDrug",
+        "IllegalSoftware",
+        "SchoolCheating",
+        "SelfHarm",
+        "Weapons",
+        "Chat",
+        "Games",
+        "InstantMessaging",
+        "ProfessionalNetwork",
+        "SocialNetworking",
+        "WebBasedEmail",
+        "ParkedDomains"
+      ]
+    },
     "Certificate":{
       "type":"structure",
       "members":{
@@ -1989,7 +2031,6 @@
     },
     "CreateBrowserSettingsRequest":{
       "type":"structure",
-      "required":["browserPolicy"],
       "members":{
         "tags":{
           "shape":"TagList",
@@ -2011,6 +2052,10 @@
           "shape":"ClientToken",
           "documentation":"<p>A unique, case-sensitive identifier that you provide to ensure the idempotency of the request. Idempotency ensures that an API request completes only once. With an idempotent request, if the original request completes successfully, subsequent retries with the same client token returns the result from the original successful request.</p> <p>If you do not specify a client token, one is automatically generated by the Amazon Web Services SDK. </p>",
           "idempotencyToken":true
+        },
+        "webContentFilteringPolicy":{
+          "shape":"WebContentFilteringPolicy",
+          "documentation":"<p>The policy that specifies which URLs end users are allowed to access or which URLs or domain categories they are restricted from accessing for enhanced security.</p>"
         }
       }
     },
@@ -2902,7 +2947,8 @@
         "SessionConnect",
         "SessionStart",
         "SessionDisconnect",
-        "SessionEnd"
+        "SessionEnd",
+        "UrlBlockByContentFilter"
       ]
     },
     "EventFilter":{
@@ -4859,6 +4905,10 @@
           "shape":"ClientToken",
           "documentation":"<p>A unique, case-sensitive identifier that you provide to ensure the idempotency of the request. Idempotency ensures that an API request completes only once. With an idempotent request, if the original request completes successfully, subsequent retries with the same client token return the result from the original successful request. </p> <p>If you do not specify a client token, one is automatically generated by the Amazon Web Services SDK.</p>",
           "idempotencyToken":true
+        },
+        "webContentFilteringPolicy":{
+          "shape":"WebContentFilteringPolicy",
+          "documentation":"<p>The policy that specifies which URLs end users are allowed to access or which URLs or domain categories they are restricted from accessing for enhanced security.</p>"
         }
       }
     },
@@ -5232,6 +5282,17 @@
         }
       }
     },
+    "UrlPattern":{
+      "type":"string",
+      "pattern":"((([a-zA-Z][a-zA-Z0-9+.-]*):\\/\\/(\\*|[\\w%._\\-\\+~#=@]+)?(\\/[^@\\s]*)?(?:\\?([^*\\s]+(?:\\*?)))?)|(\\*|[\\w%._\\-\\+~#=@]+\\.[\\w%._\\-\\+~#=@]+)(?::(\\d{1,5}))?(\\/[^@\\s]*)?(?:\\?([^*\\s]+(?:\\*?)))?|(([a-zA-Z][a-zA-Z0-9+.-]*):(\\/\\/)?\\*))",
+      "sensitive":true
+    },
+    "UrlPatternList":{
+      "type":"list",
+      "member":{"shape":"UrlPattern"},
+      "max":1000,
+      "min":1
+    },
     "UserAccessLoggingSettings":{
       "type":"structure",
       "required":["userAccessLoggingSettingsArn"],
@@ -5459,6 +5520,24 @@
       "min":1,
       "pattern":"vpc-[0-9a-z]*"
     },
+    "WebContentFilteringPolicy":{
+      "type":"structure",
+      "members":{
+        "blockedCategories":{
+          "shape":"BlockedCategories",
+          "documentation":"<p>Categories of websites that are blocked on the end user’s browsers.</p>"
+        },
+        "allowedUrls":{
+          "shape":"UrlPatternList",
+          "documentation":"<p>URLs and domains that are always accessible to end users.</p>"
+        },
+        "blockedUrls":{
+          "shape":"UrlPatternList",
+          "documentation":"<p>URLs and domains that end users cannot access.</p>"
+        }
+      },
+      "documentation":"<p>The policy that specifies which URLs end users are allowed to access or which URLs or domain categories they are restricted from accessing for enhanced security.</p>"
+    },
     "keyArn":{
       "type":"string",
       "max":2048,