AWS SDK

impl ::aws_smithy_runtime_api::client::interceptors::Intercept for DeleteCustomKeyStoreEndpointParamsInterceptor {

    fn name(&self) -> &'static str {

        "DeleteCustomKeyStoreEndpointParamsInterceptor"

    }

    fn read_before_execution(

        &self,

        context: &::aws_smithy_runtime_api::client::interceptors::context::BeforeSerializationInterceptorContextRef<

            '_,

            ::aws_smithy_runtime_api::client::interceptors::context::Input,

            ::aws_smithy_runtime_api::client::interceptors::context::Output,

            ::aws_smithy_runtime_api::client::interceptors::context::Error,

        >,

        cfg: &mut ::aws_smithy_types::config_bag::ConfigBag,

    ) -> ::std::result::Result<(), ::aws_smithy_runtime_api::box_error::BoxError> {

        let _input = context

            .input()

            .downcast_ref::<DeleteCustomKeyStoreInput>()

            .ok_or("failed to downcast to DeleteCustomKeyStoreInput")?;

pub enum DeleteCustomKeyStoreError {

    /// <p>The request was rejected because the custom key store contains KMS keys. After verifying that you do not need to use the KMS keys, use the <code>ScheduleKeyDeletion</code> operation to delete the KMS keys. After they are deleted, you can delete the custom key store.</p>

    CustomKeyStoreHasCmKsException(crate::types::error::CustomKeyStoreHasCmKsException),

    /// <p>The request was rejected because of the <code>ConnectionState</code> of the custom key store. To get the <code>ConnectionState</code> of a custom key store, use the <code>DescribeCustomKeyStores</code> operation.</p>

    /// <p>This exception is thrown under the following conditions:</p>

    /// <ul>

    /// <li>

    /// <p>You requested the <code>ConnectCustomKeyStore</code> operation on a custom key store with a <code>ConnectionState</code> of <code>DISCONNECTING</code> or <code>FAILED</code>. This operation is valid for all other <code>ConnectionState</code> values. To reconnect a custom key store in a <code>FAILED</code> state, disconnect it (<code>DisconnectCustomKeyStore</code>), then connect it (<code>ConnectCustomKeyStore</code>).</p></li>

    /// <li>

    /// <p>You requested the <code>CreateKey</code> operation in a custom key store that is not connected. This operations is valid only when the custom key store <code>ConnectionState</code> is <code>CONNECTED</code>.</p></li>

    /// <li>

    /// <p>You requested the <code>DisconnectCustomKeyStore</code> operation on a custom key store with a <code>ConnectionState</code> of <code>DISCONNECTING</code> or <code>DISCONNECTED</code>. This operation is valid for all other <code>ConnectionState</code> values.</p></li>

    /// <li>

    /// <p>You requested the <code>UpdateCustomKeyStore</code> or <code>DeleteCustomKeyStore</code> operation on a custom key store that is not disconnected. This operation is valid only when the custom key store <code>ConnectionState</code> is <code>DISCONNECTED</code>.</p></li>

    /// <li>

    /// <p>You requested the <code>GenerateRandom</code> operation in an CloudHSM key store that is not connected. This operation is valid only when the CloudHSM key store <code>ConnectionState</code> is <code>CONNECTED</code>.</p></li>

    /// </ul>

    CustomKeyStoreInvalidStateException(crate::types::error::CustomKeyStoreInvalidStateException),

    /// <p>The request was rejected because KMS cannot find a custom key store with the specified key store name or ID.</p>

    CustomKeyStoreNotFoundException(crate::types::error::CustomKeyStoreNotFoundException),

impl ::aws_smithy_runtime_api::client::interceptors::Intercept for DeleteImportedKeyMaterialEndpointParamsInterceptor {

    fn name(&self) -> &'static str {

        "DeleteImportedKeyMaterialEndpointParamsInterceptor"

    }

    fn read_before_execution(

        &self,

        context: &::aws_smithy_runtime_api::client::interceptors::context::BeforeSerializationInterceptorContextRef<

            '_,

            ::aws_smithy_runtime_api::client::interceptors::context::Input,

            ::aws_smithy_runtime_api::client::interceptors::context::Output,

            ::aws_smithy_runtime_api::client::interceptors::context::Error,

        >,

        cfg: &mut ::aws_smithy_types::config_bag::ConfigBag,

    ) -> ::std::result::Result<(), ::aws_smithy_runtime_api::box_error::BoxError> {

        let _input = context

            .input()

            .downcast_ref::<DeleteImportedKeyMaterialInput>()

            .ok_or("failed to downcast to DeleteImportedKeyMaterialInput")?;

pub enum DeleteImportedKeyMaterialError {

    /// <p>The system timed out while trying to fulfill the request. You can retry the request.</p>

    DependencyTimeoutException(crate::types::error::DependencyTimeoutException),

    /// <p>The request was rejected because a specified ARN, or an ARN in a key policy, is not valid.</p>

    InvalidArnException(crate::types::error::InvalidArnException),

    /// <p>The request was rejected because an internal exception occurred. The request can be retried.</p>

    KmsInternalException(crate::types::error::KmsInternalException),

    /// <p>The request was rejected because the state of the specified resource is not valid for this request.</p>

    /// <p>This exceptions means one of the following:</p>

    /// <ul>

    /// <li>

    /// <p>The key state of the KMS key is not compatible with the operation.</p>

    /// <p>To find the key state, use the <code>DescribeKey</code> operation. For more information about which key states are compatible with each KMS operation, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key states of KMS keys</a> in the <i> <i>Key Management Service Developer Guide</i> </i>.</p></li>

    /// <li>

    /// <p>For cryptographic operations on KMS keys in custom key stores, this exception represents a general failure with many possible causes. To identify the cause, see the error message that accompanies the exception.</p></li>

    /// </ul>

    KmsInvalidStateException(crate::types::error::KmsInvalidStateException),

    /// <p>The request was rejected because the specified entity or resource could not be found.</p>

    NotFoundException(crate::types::error::NotFoundException),

    /// <p>The request was rejected because a specified parameter is not supported or a specified resource is not valid for this operation.</p>

impl ::aws_smithy_runtime_api::client::interceptors::Intercept for DescribeCustomKeyStoresEndpointParamsInterceptor {

    fn name(&self) -> &'static str {

        "DescribeCustomKeyStoresEndpointParamsInterceptor"

    }

    fn read_before_execution(

        &self,

        context: &::aws_smithy_runtime_api::client::interceptors::context::BeforeSerializationInterceptorContextRef<

            '_,

            ::aws_smithy_runtime_api::client::interceptors::context::Input,

            ::aws_smithy_runtime_api::client::interceptors::context::Output,

            ::aws_smithy_runtime_api::client::interceptors::context::Error,

        >,

        cfg: &mut ::aws_smithy_types::config_bag::ConfigBag,

    ) -> ::std::result::Result<(), ::aws_smithy_runtime_api::box_error::BoxError> {

        let _input = context

            .input()

            .downcast_ref::<DescribeCustomKeyStoresInput>()

            .ok_or("failed to downcast to DescribeCustomKeyStoresInput")?;

pub enum DescribeCustomKeyStoresError {

    /// <p>The request was rejected because KMS cannot find a custom key store with the specified key store name or ID.</p>

    CustomKeyStoreNotFoundException(crate::types::error::CustomKeyStoreNotFoundException),

    /// <p>The request was rejected because the marker that specifies where pagination should next begin is not valid.</p>

    InvalidMarkerException(crate::types::error::InvalidMarkerException),

    /// <p>The request was rejected because an internal exception occurred. The request can be retried.</p>

    KmsInternalException(crate::types::error::KmsInternalException),

    /// An unexpected error occurred (e.g., invalid JSON returned by the service or an unknown error code).

    #[deprecated(note = "Matching `Unhandled` directly is not forwards compatible. Instead, match using a \

    variable wildcard pattern and check `.code()`:

     \

       `err if err.code() == Some(\"SpecificExceptionCode\") => { /* handle the error */ }`

     \

    See [`ProvideErrorMetadata`](#impl-ProvideErrorMetadata-for-DescribeCustomKeyStoresError) for what information is available for the error.")]

    Unhandled(crate::error::sealed_unhandled::Unhandled),

}

impl DescribeCustomKeyStoresError {

    /// Creates the `DescribeCustomKeyStoresError::Unhandled` variant from any error type.

    pub fn unhandled(

        err: impl ::std::convert::Into<::std::boxed::Box<dyn ::std::error::Error + ::std::marker::Send + ::std::marker::Sync + 'static>>,

impl ::aws_smithy_runtime_api::client::interceptors::Intercept for DescribeKeyEndpointParamsInterceptor {

    fn name(&self) -> &'static str {

        "DescribeKeyEndpointParamsInterceptor"

    }

    fn read_before_execution(

        &self,

        context: &::aws_smithy_runtime_api::client::interceptors::context::BeforeSerializationInterceptorContextRef<

            '_,

            ::aws_smithy_runtime_api::client::interceptors::context::Input,

            ::aws_smithy_runtime_api::client::interceptors::context::Output,

            ::aws_smithy_runtime_api::client::interceptors::context::Error,

        >,

        cfg: &mut ::aws_smithy_types::config_bag::ConfigBag,

    ) -> ::std::result::Result<(), ::aws_smithy_runtime_api::box_error::BoxError> {

        let _input = context

            .input()

            .downcast_ref::<DescribeKeyInput>()

            .ok_or("failed to downcast to DescribeKeyInput")?;

pub enum DescribeKeyError {

    /// <p>The system timed out while trying to fulfill the request. You can retry the request.</p>

    DependencyTimeoutException(crate::types::error::DependencyTimeoutException),

    /// <p>The request was rejected because a specified ARN, or an ARN in a key policy, is not valid.</p>

    InvalidArnException(crate::types::error::InvalidArnException),

    /// <p>The request was rejected because an internal exception occurred. The request can be retried.</p>

    KmsInternalException(crate::types::error::KmsInternalException),

    /// <p>The request was rejected because the specified entity or resource could not be found.</p>

    NotFoundException(crate::types::error::NotFoundException),

    /// An unexpected error occurred (e.g., invalid JSON returned by the service or an unknown error code).

    #[deprecated(note = "Matching `Unhandled` directly is not forwards compatible. Instead, match using a \

    variable wildcard pattern and check `.code()`:

     \

       `err if err.code() == Some(\"SpecificExceptionCode\") => { /* handle the error */ }`

     \

    See [`ProvideErrorMetadata`](#impl-ProvideErrorMetadata-for-DescribeKeyError) for what information is available for the error.")]

    Unhandled(crate::error::sealed_unhandled::Unhandled),

}

impl DescribeKeyError {

    /// Creates the `DescribeKeyError::Unhandled` variant from any error type.

impl ::aws_smithy_runtime_api::client::interceptors::Intercept for DisableKeyEndpointParamsInterceptor {

    fn name(&self) -> &'static str {

        "DisableKeyEndpointParamsInterceptor"

    }

    fn read_before_execution(

        &self,

        context: &::aws_smithy_runtime_api::client::interceptors::context::BeforeSerializationInterceptorContextRef<

            '_,

            ::aws_smithy_runtime_api::client::interceptors::context::Input,

            ::aws_smithy_runtime_api::client::interceptors::context::Output,

            ::aws_smithy_runtime_api::client::interceptors::context::Error,

        >,

        cfg: &mut ::aws_smithy_types::config_bag::ConfigBag,

    ) -> ::std::result::Result<(), ::aws_smithy_runtime_api::box_error::BoxError> {

        let _input = context

            .input()

            .downcast_ref::<DisableKeyInput>()

            .ok_or("failed to downcast to DisableKeyInput")?;

pub enum DisableKeyError {

    /// <p>The system timed out while trying to fulfill the request. You can retry the request.</p>

    DependencyTimeoutException(crate::types::error::DependencyTimeoutException),

    /// <p>The request was rejected because a specified ARN, or an ARN in a key policy, is not valid.</p>

    InvalidArnException(crate::types::error::InvalidArnException),

    /// <p>The request was rejected because an internal exception occurred. The request can be retried.</p>

    KmsInternalException(crate::types::error::KmsInternalException),

    /// <p>The request was rejected because the state of the specified resource is not valid for this request.</p>

    /// <p>This exceptions means one of the following:</p>

    /// <ul>

    /// <li>

    /// <p>The key state of the KMS key is not compatible with the operation.</p>

    /// <p>To find the key state, use the <code>DescribeKey</code> operation. For more information about which key states are compatible with each KMS operation, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key states of KMS keys</a> in the <i> <i>Key Management Service Developer Guide</i> </i>.</p></li>

    /// <li>

    /// <p>For cryptographic operations on KMS keys in custom key stores, this exception represents a general failure with many possible causes. To identify the cause, see the error message that accompanies the exception.</p></li>

    /// </ul>

    KmsInvalidStateException(crate::types::error::KmsInvalidStateException),

    /// <p>The request was rejected because the specified entity or resource could not be found.</p>

    NotFoundException(crate::types::error::NotFoundException),

    /// An unexpected error occurred (e.g., invalid JSON returned by the service or an unknown error code).

impl ::aws_smithy_runtime_api::client::interceptors::Intercept for DisableKeyRotationEndpointParamsInterceptor {

    fn name(&self) -> &'static str {

        "DisableKeyRotationEndpointParamsInterceptor"

    }

    fn read_before_execution(

        &self,

        context: &::aws_smithy_runtime_api::client::interceptors::context::BeforeSerializationInterceptorContextRef<

            '_,

            ::aws_smithy_runtime_api::client::interceptors::context::Input,

            ::aws_smithy_runtime_api::client::interceptors::context::Output,

            ::aws_smithy_runtime_api::client::interceptors::context::Error,

        >,

        cfg: &mut ::aws_smithy_types::config_bag::ConfigBag,

    ) -> ::std::result::Result<(), ::aws_smithy_runtime_api::box_error::BoxError> {

        let _input = context

            .input()

            .downcast_ref::<DisableKeyRotationInput>()

            .ok_or("failed to downcast to DisableKeyRotationInput")?;

pub enum DisableKeyRotationError {

    /// <p>The system timed out while trying to fulfill the request. You can retry the request.</p>

    DependencyTimeoutException(crate::types::error::DependencyTimeoutException),

    /// <p>The request was rejected because the specified KMS key is not enabled.</p>

    DisabledException(crate::types::error::DisabledException),

    /// <p>The request was rejected because a specified ARN, or an ARN in a key policy, is not valid.</p>

    InvalidArnException(crate::types::error::InvalidArnException),

    /// <p>The request was rejected because an internal exception occurred. The request can be retried.</p>

    KmsInternalException(crate::types::error::KmsInternalException),

    /// <p>The request was rejected because the state of the specified resource is not valid for this request.</p>

    /// <p>This exceptions means one of the following:</p>

    /// <ul>

    /// <li>

    /// <p>The key state of the KMS key is not compatible with the operation.</p>

    /// <p>To find the key state, use the <code>DescribeKey</code> operation. For more information about which key states are compatible with each KMS operation, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key states of KMS keys</a> in the <i> <i>Key Management Service Developer Guide</i> </i>.</p></li>

    /// <li>

    /// <p>For cryptographic operations on KMS keys in custom key stores, this exception represents a general failure with many possible causes. To identify the cause, see the error message that accompanies the exception.</p></li>

    /// </ul>

    KmsInvalidStateException(crate::types::error::KmsInvalidStateException),

    /// <p>The request was rejected because the specified entity or resource could not be found.</p>

impl ::aws_smithy_runtime_api::client::interceptors::Intercept for DisconnectCustomKeyStoreEndpointParamsInterceptor {

    fn name(&self) -> &'static str {

        "DisconnectCustomKeyStoreEndpointParamsInterceptor"

    }

    fn read_before_execution(

        &self,

        context: &::aws_smithy_runtime_api::client::interceptors::context::BeforeSerializationInterceptorContextRef<

            '_,

            ::aws_smithy_runtime_api::client::interceptors::context::Input,

            ::aws_smithy_runtime_api::client::interceptors::context::Output,

            ::aws_smithy_runtime_api::client::interceptors::context::Error,

        >,

        cfg: &mut ::aws_smithy_types::config_bag::ConfigBag,

    ) -> ::std::result::Result<(), ::aws_smithy_runtime_api::box_error::BoxError> {

        let _input = context

            .input()

            .downcast_ref::<DisconnectCustomKeyStoreInput>()

            .ok_or("failed to downcast to DisconnectCustomKeyStoreInput")?;

pub enum DisconnectCustomKeyStoreError {

    /// <p>The request was rejected because of the <code>ConnectionState</code> of the custom key store. To get the <code>ConnectionState</code> of a custom key store, use the <code>DescribeCustomKeyStores</code> operation.</p>

    /// <p>This exception is thrown under the following conditions:</p>

    /// <ul>

    /// <li>

    /// <p>You requested the <code>ConnectCustomKeyStore</code> operation on a custom key store with a <code>ConnectionState</code> of <code>DISCONNECTING</code> or <code>FAILED</code>. This operation is valid for all other <code>ConnectionState</code> values. To reconnect a custom key store in a <code>FAILED</code> state, disconnect it (<code>DisconnectCustomKeyStore</code>), then connect it (<code>ConnectCustomKeyStore</code>).</p></li>

    /// <li>

    /// <p>You requested the <code>CreateKey</code> operation in a custom key store that is not connected. This operations is valid only when the custom key store <code>ConnectionState</code> is <code>CONNECTED</code>.</p></li>

    /// <li>

    /// <p>You requested the <code>DisconnectCustomKeyStore</code> operation on a custom key store with a <code>ConnectionState</code> of <code>DISCONNECTING</code> or <code>DISCONNECTED</code>. This operation is valid for all other <code>ConnectionState</code> values.</p></li>

    /// <li>

    /// <p>You requested the <code>UpdateCustomKeyStore</code> or <code>DeleteCustomKeyStore</code> operation on a custom key store that is not disconnected. This operation is valid only when the custom key store <code>ConnectionState</code> is <code>DISCONNECTED</code>.</p></li>

    /// <li>

    /// <p>You requested the <code>GenerateRandom</code> operation in an CloudHSM key store that is not connected. This operation is valid only when the CloudHSM key store <code>ConnectionState</code> is <code>CONNECTED</code>.</p></li>

    /// </ul>

    CustomKeyStoreInvalidStateException(crate::types::error::CustomKeyStoreInvalidStateException),

    /// <p>The request was rejected because KMS cannot find a custom key store with the specified key store name or ID.</p>

    CustomKeyStoreNotFoundException(crate::types::error::CustomKeyStoreNotFoundException),

    /// <p>The request was rejected because an internal exception occurred. The request can be retried.</p>

    KmsInternalException(crate::types::error::KmsInternalException),

impl ::aws_smithy_runtime_api::client::interceptors::Intercept for EnableKeyEndpointParamsInterceptor {

    fn name(&self) -> &'static str {

        "EnableKeyEndpointParamsInterceptor"

    }

    fn read_before_execution(

        &self,

        context: &::aws_smithy_runtime_api::client::interceptors::context::BeforeSerializationInterceptorContextRef<

            '_,

            ::aws_smithy_runtime_api::client::interceptors::context::Input,

            ::aws_smithy_runtime_api::client::interceptors::context::Output,

            ::aws_smithy_runtime_api::client::interceptors::context::Error,

        >,

        cfg: &mut ::aws_smithy_types::config_bag::ConfigBag,

    ) -> ::std::result::Result<(), ::aws_smithy_runtime_api::box_error::BoxError> {

        let _input = context

            .input()

            .downcast_ref::<EnableKeyInput>()

            .ok_or("failed to downcast to EnableKeyInput")?;

pub enum EnableKeyError {

    /// <p>The system timed out while trying to fulfill the request. You can retry the request.</p>

    DependencyTimeoutException(crate::types::error::DependencyTimeoutException),

    /// <p>The request was rejected because a specified ARN, or an ARN in a key policy, is not valid.</p>

    InvalidArnException(crate::types::error::InvalidArnException),

    /// <p>The request was rejected because an internal exception occurred. The request can be retried.</p>

    KmsInternalException(crate::types::error::KmsInternalException),

    /// <p>The request was rejected because the state of the specified resource is not valid for this request.</p>

    /// <p>This exceptions means one of the following:</p>

    /// <ul>

    /// <li>

    /// <p>The key state of the KMS key is not compatible with the operation.</p>

    /// <p>To find the key state, use the <code>DescribeKey</code> operation. For more information about which key states are compatible with each KMS operation, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key states of KMS keys</a> in the <i> <i>Key Management Service Developer Guide</i> </i>.</p></li>

    /// <li>

    /// <p>For cryptographic operations on KMS keys in custom key stores, this exception represents a general failure with many possible causes. To identify the cause, see the error message that accompanies the exception.</p></li>

    /// </ul>

    KmsInvalidStateException(crate::types::error::KmsInvalidStateException),

    /// <p>The request was rejected because a quota was exceeded. For more information, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/limits.html">Quotas</a> in the <i>Key Management Service Developer Guide</i>.</p>

    LimitExceededException(crate::types::error::LimitExceededException),

    /// <p>The request was rejected because the specified entity or resource could not be found.</p>

impl ::aws_smithy_runtime_api::client::interceptors::Intercept for EnableKeyRotationEndpointParamsInterceptor {

    fn name(&self) -> &'static str {

        "EnableKeyRotationEndpointParamsInterceptor"

    }

    fn read_before_execution(

        &self,

        context: &::aws_smithy_runtime_api::client::interceptors::context::BeforeSerializationInterceptorContextRef<

            '_,

            ::aws_smithy_runtime_api::client::interceptors::context::Input,

            ::aws_smithy_runtime_api::client::interceptors::context::Output,

            ::aws_smithy_runtime_api::client::interceptors::context::Error,

        >,

        cfg: &mut ::aws_smithy_types::config_bag::ConfigBag,

    ) -> ::std::result::Result<(), ::aws_smithy_runtime_api::box_error::BoxError> {

        let _input = context

            .input()

            .downcast_ref::<EnableKeyRotationInput>()

            .ok_or("failed to downcast to EnableKeyRotationInput")?;

pub enum EnableKeyRotationError {

    /// <p>The system timed out while trying to fulfill the request. You can retry the request.</p>

    DependencyTimeoutException(crate::types::error::DependencyTimeoutException),

    /// <p>The request was rejected because the specified KMS key is not enabled.</p>

    DisabledException(crate::types::error::DisabledException),

    /// <p>The request was rejected because a specified ARN, or an ARN in a key policy, is not valid.</p>

    InvalidArnException(crate::types::error::InvalidArnException),

    /// <p>The request was rejected because an internal exception occurred. The request can be retried.</p>

    KmsInternalException(crate::types::error::KmsInternalException),

    /// <p>The request was rejected because the state of the specified resource is not valid for this request.</p>

    /// <p>This exceptions means one of the following:</p>

    /// <ul>

    /// <li>

    /// <p>The key state of the KMS key is not compatible with the operation.</p>

    /// <p>To find the key state, use the <code>DescribeKey</code> operation. For more information about which key states are compatible with each KMS operation, see <a href="https://docs.aws.amazon.com/kms/latest/developerguide/key-state.html">Key states of KMS keys</a> in the <i> <i>Key Management Service Developer Guide</i> </i>.</p></li>

    /// <li>

    /// <p>For cryptographic operations on KMS keys in custom key stores, this exception represents a general failure with many possible causes. To identify the cause, see the error message that accompanies the exception.</p></li>

    /// </ul>

    KmsInvalidStateException(crate::types::error::KmsInvalidStateException),

    /// <p>The request was rejected because the specified entity or resource could not be found.</p>

impl ::aws_smithy_runtime_api::client::interceptors::Intercept for EncryptEndpointParamsInterceptor {

    fn name(&self) -> &'static str {

        "EncryptEndpointParamsInterceptor"

    }

    fn read_before_execution(

        &self,

        context: &::aws_smithy_runtime_api::client::interceptors::context::BeforeSerializationInterceptorContextRef<

            '_,

            ::aws_smithy_runtime_api::client::interceptors::context::Input,

            ::aws_smithy_runtime_api::client::interceptors::context::Output,

            ::aws_smithy_runtime_api::client::interceptors::context::Error,

        >,

        cfg: &mut ::aws_smithy_types::config_bag::ConfigBag,

    ) -> ::std::result::Result<(), ::aws_smithy_runtime_api::box_error::BoxError> {

        let _input = context

            .input()

            .downcast_ref::<EncryptInput>()

            .ok_or("failed to downcast to EncryptInput")?;

pub enum EncryptError {

    /// <p>The system timed out while trying to fulfill the request. You can retry the request.</p>

    DependencyTimeoutException(crate::types::error::DependencyTimeoutException),

    /// <p>The request was rejected because the specified KMS key is not enabled.</p>

    DisabledException(crate::types::error::DisabledException),

    /// <p>The request was rejected because the DryRun parameter was specified.</p>

    DryRunOperationException(crate::types::error::DryRunOperationException),

    /// <p>The request was rejected because the specified grant token is not valid.</p>

    InvalidGrantTokenException(crate::types::error::InvalidGrantTokenException),

    /// <p>The request was rejected for one of the following reasons:</p>

    /// <ul>

    /// <li>

    /// <p>The <code>KeyUsage</code> value of the KMS key is incompatible with the API operation.</p></li>

    /// <li>

    /// <p>The encryption algorithm or signing algorithm specified for the operation is incompatible with the type of key material in the KMS key <code>(KeySpec</code>).</p></li>

    /// </ul>

    /// <p>For encrypting, decrypting, re-encrypting, and generating data keys, the <code>KeyUsage</code> must be <code>ENCRYPT_DECRYPT</code>. For signing and verifying messages, the <code>KeyUsage</code> must be <code>SIGN_VERIFY</code>. For generating and verifying message authentication codes (MACs), the <code>KeyUsage</code> must be <code>GENERATE_VERIFY_MAC</code>. To find the <code>KeyUsage</code> of a KMS key, use the <code>DescribeKey</code> operation.</p>

    /// <p>To find the encryption or signing algorithms supported for a particular KMS key, use the <code>DescribeKey</code> operation.</p>

    InvalidKeyUsageException(crate::types::error::InvalidKeyUsageException),

    /// <p>The request was rejected because the specified KMS key was not available. You can retry the request.</p>

impl ::aws_smithy_runtime_api::client::interceptors::Intercept for GenerateDataKeyEndpointParamsInterceptor {

    fn name(&self) -> &'static str {

        "GenerateDataKeyEndpointParamsInterceptor"

    }

    fn read_before_execution(

        &self,

        context: &::aws_smithy_runtime_api::client::interceptors::context::BeforeSerializationInterceptorContextRef<

            '_,

            ::aws_smithy_runtime_api::client::interceptors::context::Input,

            ::aws_smithy_runtime_api::client::interceptors::context::Output,

            ::aws_smithy_runtime_api::client::interceptors::context::Error,

        >,

        cfg: &mut ::aws_smithy_types::config_bag::ConfigBag,

    ) -> ::std::result::Result<(), ::aws_smithy_runtime_api::box_error::BoxError> {

        let _input = context

            .input()

            .downcast_ref::<GenerateDataKeyInput>()

            .ok_or("failed to downcast to GenerateDataKeyInput")?;

pub enum GenerateDataKeyError {

    /// <p>The system timed out while trying to fulfill the request. You can retry the request.</p>

    DependencyTimeoutException(crate::types::error::DependencyTimeoutException),

    /// <p>The request was rejected because the specified KMS key is not enabled.</p>

    DisabledException(crate::types::error::DisabledException),

    /// <p>The request was rejected because the DryRun parameter was specified.</p>

    DryRunOperationException(crate::types::error::DryRunOperationException),

    /// <p>The request was rejected because the specified grant token is not valid.</p>

    InvalidGrantTokenException(crate::types::error::InvalidGrantTokenException),

    /// <p>The request was rejected for one of the following reasons:</p>

    /// <ul>

    /// <li>

    /// <p>The <code>KeyUsage</code> value of the KMS key is incompatible with the API operation.</p></li>

    /// <li>

    /// <p>The encryption algorithm or signing algorithm specified for the operation is incompatible with the type of key material in the KMS key <code>(KeySpec</code>).</p></li>

    /// </ul>

    /// <p>For encrypting, decrypting, re-encrypting, and generating data keys, the <code>KeyUsage</code> must be <code>ENCRYPT_DECRYPT</code>. For signing and verifying messages, the <code>KeyUsage</code> must be <code>SIGN_VERIFY</code>. For generating and verifying message authentication codes (MACs), the <code>KeyUsage</code> must be <code>GENERATE_VERIFY_MAC</code>. To find the <code>KeyUsage</code> of a KMS key, use the <code>DescribeKey</code> operation.</p>

    /// <p>To find the encryption or signing algorithms supported for a particular KMS key, use the <code>DescribeKey</code> operation.</p>

    InvalidKeyUsageException(crate::types::error::InvalidKeyUsageException),

    /// <p>The request was rejected because the specified KMS key was not available. You can retry the request.</p>

impl ::aws_smithy_runtime_api::client::interceptors::Intercept for GenerateDataKeyPairEndpointParamsInterceptor {

    fn name(&self) -> &'static str {

        "GenerateDataKeyPairEndpointParamsInterceptor"

    }

    fn read_before_execution(

        &self,

        context: &::aws_smithy_runtime_api::client::interceptors::context::BeforeSerializationInterceptorContextRef<

            '_,

            ::aws_smithy_runtime_api::client::interceptors::context::Input,

            ::aws_smithy_runtime_api::client::interceptors::context::Output,

            ::aws_smithy_runtime_api::client::interceptors::context::Error,

        >,

        cfg: &mut ::aws_smithy_types::config_bag::ConfigBag,

    ) -> ::std::result::Result<(), ::aws_smithy_runtime_api::box_error::BoxError> {

        let _input = context

            .input()

            .downcast_ref::<GenerateDataKeyPairInput>()

            .ok_or("failed to downcast to GenerateDataKeyPairInput")?;

pub enum GenerateDataKeyPairError {

    /// <p>The system timed out while trying to fulfill the request. You can retry the request.</p>

    DependencyTimeoutException(crate::types::error::DependencyTimeoutException),

    /// <p>The request was rejected because the specified KMS key is not enabled.</p>

    DisabledException(crate::types::error::DisabledException),

    /// <p>The request was rejected because the DryRun parameter was specified.</p>

    DryRunOperationException(crate::types::error::DryRunOperationException),

    /// <p>The request was rejected because the specified grant token is not valid.</p>

    InvalidGrantTokenException(crate::types::error::InvalidGrantTokenException),

    /// <p>The request was rejected for one of the following reasons:</p>

    /// <ul>