Source file values.ml

(* generated by: awso-codegen generate-all --botocore-data vendor/botocore/botocore/data -o aws --runtime-dir lib/runtime/awso --cli-dir awso-cli *)
open Awso
open! Import
[@@@warning "-32"]
let service = Service.sso_oidc
let apiVersion = "2019-06-10"
let endpointPrefix = "oidc"
let serviceFullName = "AWS SSO OIDC"
let signatureVersion = "v4"
let protocol = "rest_json"
let globalEndpoint = endpointPrefix ^ ".amazonaws.com"
let serviceAbbreviation = "SSO OIDC"
let simple_to_json to_value x =
  Botodata.Json.value_to_json_scalar (to_value x)
let composed_to_json to_value x = Botodata.Json.value_to_json (to_value x)
let to_query to_value x = Client.Query.of_value (to_value x)
let structure_to_value_aux st ~f =
  let filter = function | (k, Some v) -> Some (k, v) | _ -> None in
  let pair k v = (k, v) in
  let defer_value (k, dv) = pair k dv in
  ((List.filter_map st ~f:filter) |> (List.map ~f:defer_value)) |>
    (fun x -> `Structure (f x))
let structure_to_value = structure_to_value_aux ~f:Fn.id
let structure_to_wrapped_value ~wrapper ~response =
  structure_to_value_aux
    ~f:(fun x -> [(wrapper, (`Structure x)); (response, (`Structure []))])
module Error =
  struct
    type nonrec t = string
    let context_ = "Error"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"Error" j
    let to_json = simple_to_json to_value
  end
module ErrorDescription =
  struct
    type nonrec t = string
    let context_ = "ErrorDescription"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"ErrorDescription" j
    let to_json = simple_to_json to_value
  end
module InvalidRequestExceptionReason =
  struct
    type nonrec t =
      | KMS_NotFoundException 
      | KMS_InvalidKeyUsageException 
      | KMS_InvalidStateException 
      | KMS_DisabledException 
      | Non_static_id of string 
    let make i = i
    let to_string =
      function
      | KMS_NotFoundException -> "KMS_NotFoundException"
      | KMS_InvalidKeyUsageException -> "KMS_InvalidKeyUsageException"
      | KMS_InvalidStateException -> "KMS_InvalidStateException"
      | KMS_DisabledException -> "KMS_DisabledException"
      | Non_static_id s -> s
    let of_string =
      function
      | "KMS_NotFoundException" -> KMS_NotFoundException
      | "KMS_InvalidKeyUsageException" -> KMS_InvalidKeyUsageException
      | "KMS_InvalidStateException" -> KMS_InvalidStateException
      | "KMS_DisabledException" -> KMS_DisabledException
      | x -> Non_static_id x
    let to_value x = `Enum (to_string x)
    let to_query v = to_query to_value v
    let to_header x = to_string x
    let of_xml xml_arg0 =
      of_string
        (string_of_xml ~kind:"enumeration InvalidRequestExceptionReason"
           xml_arg0)
    let of_json j =
      of_string (string_of_json ~kind:"InvalidRequestExceptionReason" j)
    let to_json = simple_to_json to_value
  end
module GrantType =
  struct
    type nonrec t = string
    let context_ = "GrantType"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"GrantType" j
    let to_json = simple_to_json to_value
  end
module URI =
  struct
    type nonrec t = string
    let context_ = "URI"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"URI" j
    let to_json = simple_to_json to_value
  end
module Scope =
  struct
    type nonrec t = string
    let context_ = "Scope"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"Scope" j
    let to_json = simple_to_json to_value
  end
module AccessDeniedExceptionReason =
  struct
    type nonrec t =
      | KMS_AccessDeniedException 
      | Non_static_id of string 
    let make i = i
    let to_string =
      function
      | KMS_AccessDeniedException -> "KMS_AccessDeniedException"
      | Non_static_id s -> s
    let of_string =
      function
      | "KMS_AccessDeniedException" -> KMS_AccessDeniedException
      | x -> Non_static_id x
    let to_value x = `Enum (to_string x)
    let to_query v = to_query to_value v
    let to_header x = to_string x
    let of_xml xml_arg0 =
      of_string
        (string_of_xml ~kind:"enumeration AccessDeniedExceptionReason"
           xml_arg0)
    let of_json j =
      of_string (string_of_json ~kind:"AccessDeniedExceptionReason" j)
    let to_json = simple_to_json to_value
  end
module IdentityContext =
  struct
    type nonrec t = string
    let context_ = "IdentityContext"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"IdentityContext" j
    let to_json = simple_to_json to_value
  end
module Location =
  struct
    type nonrec t = string
    let context_ = "Location"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"Location" j
    let to_json = simple_to_json to_value
  end
module Region =
  struct
    type nonrec t = string
    let context_ = "Region"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"Region" j
    let to_json = simple_to_json to_value
  end
module DeviceCode =
  struct
    type nonrec t = string
    let context_ = "DeviceCode"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"DeviceCode" j
    let to_json = simple_to_json to_value
  end
module ExpirationInSeconds =
  struct
    type nonrec t = int
    let make i = i
    let of_string = Int.of_string
    let to_value x = `Integer x
    let to_query v = to_query to_value v
    let to_header x = Int.to_string x
    let of_xml xml_arg0 =
      Int.of_string
        (string_of_xml ~kind:"an integer for ExpirationInSeconds" xml_arg0)
    let of_json j = Int.of_float (float_of_json ~kind:"an integer" j)
    let to_json = simple_to_json to_value
  end
module InternalServerException =
  struct
    type nonrec t =
      {
      error: Error.t option
        [@ocaml.doc
          "Single error code. For this exception the value will be server_error."];
      error_description: ErrorDescription.t option
        [@ocaml.doc
          "Human-readable text providing additional information, used to assist the client developer in understanding the error that occurred."]}
    let make ?error =
      fun ?error_description -> fun () -> { error; error_description }
    let to_value x =
      structure_to_value
        [("error", (Option.map x.error ~f:Error.to_value));
        ("error_description",
          (Option.map x.error_description ~f:ErrorDescription.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let error_description =
        (Option.map ~f:ErrorDescription.of_xml)
          (Xml.child xml_arg0 "error_description") in
      let error = (Option.map ~f:Error.of_xml) (Xml.child xml_arg0 "error") in
      make ?error_description ?error ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let error_description =
        field_map json__ "error_description" ErrorDescription.of_json in
      let error = field_map json__ "error" Error.of_json in
      make ?error_description ?error ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Indicates that an error from the service occurred while trying to process a request."]
module IntervalInSeconds =
  struct
    type nonrec t = int
    let make i = i
    let of_string = Int.of_string
    let to_value x = `Integer x
    let to_query v = to_query to_value v
    let to_header x = Int.to_string x
    let of_xml xml_arg0 =
      Int.of_string
        (string_of_xml ~kind:"an integer for IntervalInSeconds" xml_arg0)
    let of_json j = Int.of_float (float_of_json ~kind:"an integer" j)
    let to_json = simple_to_json to_value
  end
module InvalidClientException =
  struct
    type nonrec t =
      {
      error: Error.t option
        [@ocaml.doc
          "Single error code. For this exception the value will be invalid_client."];
      error_description: ErrorDescription.t option
        [@ocaml.doc
          "Human-readable text providing additional information, used to assist the client developer in understanding the error that occurred."]}
    let make ?error =
      fun ?error_description -> fun () -> { error; error_description }
    let to_value x =
      structure_to_value
        [("error", (Option.map x.error ~f:Error.to_value));
        ("error_description",
          (Option.map x.error_description ~f:ErrorDescription.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let error_description =
        (Option.map ~f:ErrorDescription.of_xml)
          (Xml.child xml_arg0 "error_description") in
      let error = (Option.map ~f:Error.of_xml) (Xml.child xml_arg0 "error") in
      make ?error_description ?error ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let error_description =
        field_map json__ "error_description" ErrorDescription.of_json in
      let error = field_map json__ "error" Error.of_json in
      make ?error_description ?error ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Indicates that the clientId or clientSecret in the request is invalid. For example, this can occur when a client sends an incorrect clientId or an expired clientSecret."]
module InvalidRequestException =
  struct
    type nonrec t =
      {
      error: Error.t option
        [@ocaml.doc
          "Single error code. For this exception the value will be invalid_request."];
      reason: InvalidRequestExceptionReason.t option
        [@ocaml.doc
          "A string that uniquely identifies a reason for the error."];
      error_description: ErrorDescription.t option
        [@ocaml.doc
          "Human-readable text providing additional information, used to assist the client developer in understanding the error that occurred."]}
    let make ?error =
      fun ?reason ->
        fun ?error_description ->
          fun () -> { error; reason; error_description }
    let to_value x =
      structure_to_value
        [("error", (Option.map x.error ~f:Error.to_value));
        ("reason",
          (Option.map x.reason ~f:InvalidRequestExceptionReason.to_value));
        ("error_description",
          (Option.map x.error_description ~f:ErrorDescription.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let error_description =
        (Option.map ~f:ErrorDescription.of_xml)
          (Xml.child xml_arg0 "error_description") in
      let reason =
        (Option.map ~f:InvalidRequestExceptionReason.of_xml)
          (Xml.child xml_arg0 "reason") in
      let error = (Option.map ~f:Error.of_xml) (Xml.child xml_arg0 "error") in
      make ?error_description ?reason ?error ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let error_description =
        field_map json__ "error_description" ErrorDescription.of_json in
      let reason =
        field_map json__ "reason" InvalidRequestExceptionReason.of_json in
      let error = field_map json__ "error" Error.of_json in
      make ?error_description ?reason ?error ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Indicates that something is wrong with the input to the request. For example, a required parameter might be missing or out of range."]
module SlowDownException =
  struct
    type nonrec t =
      {
      error: Error.t option
        [@ocaml.doc
          "Single error code. For this exception the value will be slow_down."];
      error_description: ErrorDescription.t option
        [@ocaml.doc
          "Human-readable text providing additional information, used to assist the client developer in understanding the error that occurred."]}
    let make ?error =
      fun ?error_description -> fun () -> { error; error_description }
    let to_value x =
      structure_to_value
        [("error", (Option.map x.error ~f:Error.to_value));
        ("error_description",
          (Option.map x.error_description ~f:ErrorDescription.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let error_description =
        (Option.map ~f:ErrorDescription.of_xml)
          (Xml.child xml_arg0 "error_description") in
      let error = (Option.map ~f:Error.of_xml) (Xml.child xml_arg0 "error") in
      make ?error_description ?error ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let error_description =
        field_map json__ "error_description" ErrorDescription.of_json in
      let error = field_map json__ "error" Error.of_json in
      make ?error_description ?error ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Indicates that the client is making the request too frequently and is more than the service can handle."]
module UnauthorizedClientException =
  struct
    type nonrec t =
      {
      error: Error.t option
        [@ocaml.doc
          "Single error code. For this exception the value will be unauthorized_client."];
      error_description: ErrorDescription.t option
        [@ocaml.doc
          "Human-readable text providing additional information, used to assist the client developer in understanding the error that occurred."]}
    let make ?error =
      fun ?error_description -> fun () -> { error; error_description }
    let to_value x =
      structure_to_value
        [("error", (Option.map x.error ~f:Error.to_value));
        ("error_description",
          (Option.map x.error_description ~f:ErrorDescription.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let error_description =
        (Option.map ~f:ErrorDescription.of_xml)
          (Xml.child xml_arg0 "error_description") in
      let error = (Option.map ~f:Error.of_xml) (Xml.child xml_arg0 "error") in
      make ?error_description ?error ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let error_description =
        field_map json__ "error_description" ErrorDescription.of_json in
      let error = field_map json__ "error" Error.of_json in
      make ?error_description ?error ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Indicates that the client is not currently authorized to make the request. This can happen when a clientId is not issued for a public client."]
module UserCode =
  struct
    type nonrec t = string
    let context_ = "UserCode"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"UserCode" j
    let to_json = simple_to_json to_value
  end
module ClientId =
  struct
    type nonrec t = string
    let context_ = "ClientId"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"ClientId" j
    let to_json = simple_to_json to_value
  end
module ClientSecret =
  struct
    type nonrec t = string
    let context_ = "ClientSecret"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"ClientSecret" j
    let to_json = simple_to_json to_value
  end
module InvalidClientMetadataException =
  struct
    type nonrec t =
      {
      error: Error.t option
        [@ocaml.doc
          "Single error code. For this exception the value will be invalid_client_metadata."];
      error_description: ErrorDescription.t option
        [@ocaml.doc
          "Human-readable text providing additional information, used to assist the client developer in understanding the error that occurred."]}
    let make ?error =
      fun ?error_description -> fun () -> { error; error_description }
    let to_value x =
      structure_to_value
        [("error", (Option.map x.error ~f:Error.to_value));
        ("error_description",
          (Option.map x.error_description ~f:ErrorDescription.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let error_description =
        (Option.map ~f:ErrorDescription.of_xml)
          (Xml.child xml_arg0 "error_description") in
      let error = (Option.map ~f:Error.of_xml) (Xml.child xml_arg0 "error") in
      make ?error_description ?error ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let error_description =
        field_map json__ "error_description" ErrorDescription.of_json in
      let error = field_map json__ "error" Error.of_json in
      make ?error_description ?error ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Indicates that the client information sent in the request during registration is invalid."]
module InvalidRedirectUriException =
  struct
    type nonrec t =
      {
      error: Error.t option
        [@ocaml.doc
          "Single error code. For this exception the value will be invalid_redirect_uri."];
      error_description: ErrorDescription.t option
        [@ocaml.doc
          "Human-readable text providing additional information, used to assist the client developer in understanding the error that occurred."]}
    let make ?error =
      fun ?error_description -> fun () -> { error; error_description }
    let to_value x =
      structure_to_value
        [("error", (Option.map x.error ~f:Error.to_value));
        ("error_description",
          (Option.map x.error_description ~f:ErrorDescription.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let error_description =
        (Option.map ~f:ErrorDescription.of_xml)
          (Xml.child xml_arg0 "error_description") in
      let error = (Option.map ~f:Error.of_xml) (Xml.child xml_arg0 "error") in
      make ?error_description ?error ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let error_description =
        field_map json__ "error_description" ErrorDescription.of_json in
      let error = field_map json__ "error" Error.of_json in
      make ?error_description ?error ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Indicates that one or more redirect URI in the request is not supported for this operation."]
module InvalidScopeException =
  struct
    type nonrec t =
      {
      error: Error.t option
        [@ocaml.doc
          "Single error code. For this exception the value will be invalid_scope."];
      error_description: ErrorDescription.t option
        [@ocaml.doc
          "Human-readable text providing additional information, used to assist the client developer in understanding the error that occurred."]}
    let make ?error =
      fun ?error_description -> fun () -> { error; error_description }
    let to_value x =
      structure_to_value
        [("error", (Option.map x.error ~f:Error.to_value));
        ("error_description",
          (Option.map x.error_description ~f:ErrorDescription.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let error_description =
        (Option.map ~f:ErrorDescription.of_xml)
          (Xml.child xml_arg0 "error_description") in
      let error = (Option.map ~f:Error.of_xml) (Xml.child xml_arg0 "error") in
      make ?error_description ?error ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let error_description =
        field_map json__ "error_description" ErrorDescription.of_json in
      let error = field_map json__ "error" Error.of_json in
      make ?error_description ?error ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Indicates that the scope provided in the request is invalid."]
module LongTimeStampType =
  struct
    type nonrec t = Int64.t
    let make i = i
    let of_string = Int64.of_string
    let to_value x = `Long x
    let to_query v = to_query to_value v
    let to_header x = Int64.to_string x
    let of_xml xml_arg0 =
      Int64.of_string (string_of_xml ~kind:"a long" xml_arg0)
    let of_json j = Int64.of_float (float_of_json ~kind:"a long" j)
    let to_json = simple_to_json to_value
  end
module UnsupportedGrantTypeException =
  struct
    type nonrec t =
      {
      error: Error.t option
        [@ocaml.doc
          "Single error code. For this exception the value will be unsupported_grant_type."];
      error_description: ErrorDescription.t option
        [@ocaml.doc
          "Human-readable text providing additional information, used to assist the client developer in understanding the error that occurred."]}
    let make ?error =
      fun ?error_description -> fun () -> { error; error_description }
    let to_value x =
      structure_to_value
        [("error", (Option.map x.error ~f:Error.to_value));
        ("error_description",
          (Option.map x.error_description ~f:ErrorDescription.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let error_description =
        (Option.map ~f:ErrorDescription.of_xml)
          (Xml.child xml_arg0 "error_description") in
      let error = (Option.map ~f:Error.of_xml) (Xml.child xml_arg0 "error") in
      make ?error_description ?error ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let error_description =
        field_map json__ "error_description" ErrorDescription.of_json in
      let error = field_map json__ "error" Error.of_json in
      make ?error_description ?error ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Indicates that the grant type in the request is not supported by the service."]
module ArnType =
  struct
    type nonrec t = string
    let context_ = "ArnType"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"ArnType" j
    let to_json = simple_to_json to_value
  end
module ClientName =
  struct
    type nonrec t = string
    let context_ = "ClientName"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"ClientName" j
    let to_json = simple_to_json to_value
  end
module ClientType =
  struct
    type nonrec t = string
    let context_ = "ClientType"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"ClientType" j
    let to_json = simple_to_json to_value
  end
module GrantTypes =
  struct
    type nonrec t = GrantType.t list
    let make i = i
    let of_string _ =
      failwithf "of_string is not implemented for List_shape objects" ()
      [@@warning "-32"]
    let to_value xs =
      (xs |> (List.map ~f:GrantType.to_value)) |> (fun x -> `List x)
    let to_query v = to_query to_value v
    let to_header _ =
      failwithf "to_header is not implemented for List_shape objects" ()
    let of_xml x =
      make
        (List.map
           ((Xml.all_children x) |>
              (List.filter
                 ~f:(function
                     | `Data s ->
                         (match Stdlib.String.trim s with
                          | "" -> false
                          | _ -> true)
                     | _ -> true))) ~f:GrantType.of_xml)
    let of_json j =
      list_of_json ~kind:"GrantTypes" ~of_json:GrantType.of_json j
    let to_json v = composed_to_json to_value v
  end
module RedirectUris =
  struct
    type nonrec t = URI.t list
    let make i = i
    let of_string _ =
      failwithf "of_string is not implemented for List_shape objects" ()
      [@@warning "-32"]
    let to_value xs =
      (xs |> (List.map ~f:URI.to_value)) |> (fun x -> `List x)
    let to_query v = to_query to_value v
    let to_header _ =
      failwithf "to_header is not implemented for List_shape objects" ()
    let of_xml x =
      make
        (List.map
           ((Xml.all_children x) |>
              (List.filter
                 ~f:(function
                     | `Data s ->
                         (match Stdlib.String.trim s with
                          | "" -> false
                          | _ -> true)
                     | _ -> true))) ~f:URI.of_xml)
    let of_json j = list_of_json ~kind:"RedirectUris" ~of_json:URI.of_json j
    let to_json v = composed_to_json to_value v
  end
module Scopes =
  struct
    type nonrec t = Scope.t list
    let make i = i
    let of_string _ =
      failwithf "of_string is not implemented for List_shape objects" ()
      [@@warning "-32"]
    let to_value xs =
      (xs |> (List.map ~f:Scope.to_value)) |> (fun x -> `List x)
    let to_query v = to_query to_value v
    let to_header _ =
      failwithf "to_header is not implemented for List_shape objects" ()
    let of_xml x =
      make
        (List.map
           ((Xml.all_children x) |>
              (List.filter
                 ~f:(function
                     | `Data s ->
                         (match Stdlib.String.trim s with
                          | "" -> false
                          | _ -> true)
                     | _ -> true))) ~f:Scope.of_xml)
    let of_json j = list_of_json ~kind:"Scopes" ~of_json:Scope.of_json j
    let to_json v = composed_to_json to_value v
  end
module AccessDeniedException =
  struct
    type nonrec t =
      {
      error: Error.t option
        [@ocaml.doc
          "Single error code. For this exception the value will be access_denied."];
      reason: AccessDeniedExceptionReason.t option
        [@ocaml.doc
          "A string that uniquely identifies a reason for the error."];
      error_description: ErrorDescription.t option
        [@ocaml.doc
          "Human-readable text providing additional information, used to assist the client developer in understanding the error that occurred."]}
    let make ?error =
      fun ?reason ->
        fun ?error_description ->
          fun () -> { error; reason; error_description }
    let to_value x =
      structure_to_value
        [("error", (Option.map x.error ~f:Error.to_value));
        ("reason",
          (Option.map x.reason ~f:AccessDeniedExceptionReason.to_value));
        ("error_description",
          (Option.map x.error_description ~f:ErrorDescription.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let error_description =
        (Option.map ~f:ErrorDescription.of_xml)
          (Xml.child xml_arg0 "error_description") in
      let reason =
        (Option.map ~f:AccessDeniedExceptionReason.of_xml)
          (Xml.child xml_arg0 "reason") in
      let error = (Option.map ~f:Error.of_xml) (Xml.child xml_arg0 "error") in
      make ?error_description ?reason ?error ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let error_description =
        field_map json__ "error_description" ErrorDescription.of_json in
      let reason =
        field_map json__ "reason" AccessDeniedExceptionReason.of_json in
      let error = field_map json__ "error" Error.of_json in
      make ?error_description ?reason ?error ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "You do not have sufficient access to perform this action."]
module AccessToken =
  struct
    type nonrec t = string
    let context_ = "AccessToken"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"AccessToken" j
    let to_json = simple_to_json to_value
  end
module AuthorizationPendingException =
  struct
    type nonrec t =
      {
      error: Error.t option
        [@ocaml.doc
          "Single error code. For this exception the value will be authorization_pending."];
      error_description: ErrorDescription.t option
        [@ocaml.doc
          "Human-readable text providing additional information, used to assist the client developer in understanding the error that occurred."]}
    let make ?error =
      fun ?error_description -> fun () -> { error; error_description }
    let to_value x =
      structure_to_value
        [("error", (Option.map x.error ~f:Error.to_value));
        ("error_description",
          (Option.map x.error_description ~f:ErrorDescription.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let error_description =
        (Option.map ~f:ErrorDescription.of_xml)
          (Xml.child xml_arg0 "error_description") in
      let error = (Option.map ~f:Error.of_xml) (Xml.child xml_arg0 "error") in
      make ?error_description ?error ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let error_description =
        field_map json__ "error_description" ErrorDescription.of_json in
      let error = field_map json__ "error" Error.of_json in
      make ?error_description ?error ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Indicates that a request to authorize a client with an access user session token is pending."]
module AwsAdditionalDetails =
  struct
    type nonrec t =
      {
      identityContext: IdentityContext.t option
        [@ocaml.doc
          "The trusted context assertion is signed and encrypted by STS. It provides access to sts:identity_context claim in the idToken without JWT parsing Identity context comprises information that Amazon Web Services services use to make authorization decisions when they receive requests."]}
    let make ?identityContext = fun () -> { identityContext }
    let to_value x =
      structure_to_value
        [("identityContext",
           (Option.map x.identityContext ~f:IdentityContext.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let identityContext =
        (Option.map ~f:IdentityContext.of_xml)
          (Xml.child xml_arg0 "identityContext") in
      make ?identityContext ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let identityContext =
        field_map json__ "identityContext" IdentityContext.of_json in
      make ?identityContext ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "This structure contains Amazon Web Services-specific parameter extensions and the identity context."]
module ExpiredTokenException =
  struct
    type nonrec t =
      {
      error: Error.t option
        [@ocaml.doc
          "Single error code. For this exception the value will be expired_token."];
      error_description: ErrorDescription.t option
        [@ocaml.doc
          "Human-readable text providing additional information, used to assist the client developer in understanding the error that occurred."]}
    let make ?error =
      fun ?error_description -> fun () -> { error; error_description }
    let to_value x =
      structure_to_value
        [("error", (Option.map x.error ~f:Error.to_value));
        ("error_description",
          (Option.map x.error_description ~f:ErrorDescription.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let error_description =
        (Option.map ~f:ErrorDescription.of_xml)
          (Xml.child xml_arg0 "error_description") in
      let error = (Option.map ~f:Error.of_xml) (Xml.child xml_arg0 "error") in
      make ?error_description ?error ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let error_description =
        field_map json__ "error_description" ErrorDescription.of_json in
      let error = field_map json__ "error" Error.of_json in
      make ?error_description ?error ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Indicates that the token issued by the service is expired and is no longer valid."]
module IdToken =
  struct
    type nonrec t = string
    let context_ = "IdToken"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"IdToken" j
    let to_json = simple_to_json to_value
  end
module InvalidGrantException =
  struct
    type nonrec t =
      {
      error: Error.t option
        [@ocaml.doc
          "Single error code. For this exception the value will be invalid_grant."];
      error_description: ErrorDescription.t option
        [@ocaml.doc
          "Human-readable text providing additional information, used to assist the client developer in understanding the error that occurred."]}
    let make ?error =
      fun ?error_description -> fun () -> { error; error_description }
    let to_value x =
      structure_to_value
        [("error", (Option.map x.error ~f:Error.to_value));
        ("error_description",
          (Option.map x.error_description ~f:ErrorDescription.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let error_description =
        (Option.map ~f:ErrorDescription.of_xml)
          (Xml.child xml_arg0 "error_description") in
      let error = (Option.map ~f:Error.of_xml) (Xml.child xml_arg0 "error") in
      make ?error_description ?error ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let error_description =
        field_map json__ "error_description" ErrorDescription.of_json in
      let error = field_map json__ "error" Error.of_json in
      make ?error_description ?error ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Indicates that a request contains an invalid grant. This can occur if a client makes a CreateToken request with an invalid grant type."]
module InvalidRequestRegionException =
  struct
    type nonrec t =
      {
      error: Error.t option
        [@ocaml.doc
          "Single error code. For this exception the value will be invalid_request."];
      error_description: ErrorDescription.t option
        [@ocaml.doc
          "Human-readable text providing additional information, used to assist the client developer in understanding the error that occurred."];
      endpoint: Location.t option
        [@ocaml.doc
          "Indicates the IAM Identity Center endpoint which the requester may call with this token."];
      region: Region.t option
        [@ocaml.doc
          "Indicates the region which the requester may call with this token."]}
    let make ?error =
      fun ?error_description ->
        fun ?endpoint ->
          fun ?region ->
            fun () -> { error; error_description; endpoint; region }
    let to_value x =
      structure_to_value
        [("error", (Option.map x.error ~f:Error.to_value));
        ("error_description",
          (Option.map x.error_description ~f:ErrorDescription.to_value));
        ("endpoint", (Option.map x.endpoint ~f:Location.to_value));
        ("region", (Option.map x.region ~f:Region.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let region =
        (Option.map ~f:Region.of_xml) (Xml.child xml_arg0 "region") in
      let endpoint =
        (Option.map ~f:Location.of_xml) (Xml.child xml_arg0 "endpoint") in
      let error_description =
        (Option.map ~f:ErrorDescription.of_xml)
          (Xml.child xml_arg0 "error_description") in
      let error = (Option.map ~f:Error.of_xml) (Xml.child xml_arg0 "error") in
      make ?region ?endpoint ?error_description ?error ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let region = field_map json__ "region" Region.of_json in
      let endpoint = field_map json__ "endpoint" Location.of_json in
      let error_description =
        field_map json__ "error_description" ErrorDescription.of_json in
      let error = field_map json__ "error" Error.of_json in
      make ?region ?endpoint ?error_description ?error ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Indicates that a token provided as input to the request was issued by and is only usable by calling IAM Identity Center endpoints in another region."]
module RefreshToken =
  struct
    type nonrec t = string
    let context_ = "RefreshToken"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"RefreshToken" j
    let to_json = simple_to_json to_value
  end
module TokenType =
  struct
    type nonrec t = string
    let context_ = "TokenType"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"TokenType" j
    let to_json = simple_to_json to_value
  end
module TokenTypeURI =
  struct
    type nonrec t = string
    let context_ = "TokenTypeURI"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"TokenTypeURI" j
    let to_json = simple_to_json to_value
  end
module Assertion =
  struct
    type nonrec t = string
    let context_ = "Assertion"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"Assertion" j
    let to_json = simple_to_json to_value
  end
module AuthCode =
  struct
    type nonrec t = string
    let context_ = "AuthCode"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"AuthCode" j
    let to_json = simple_to_json to_value
  end
module CodeVerifier =
  struct
    type nonrec t = string
    let context_ = "CodeVerifier"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"CodeVerifier" j
    let to_json = simple_to_json to_value
  end
module SubjectToken =
  struct
    type nonrec t = string
    let context_ = "SubjectToken"
    let make i = i
    let of_string x = x
    let to_value x = `String x
    let to_query v = to_query to_value v
    let to_header x = x
    let of_xml = Xml.string_data_exn ~context:context_
    let of_json j = string_of_json ~kind:"SubjectToken" j
    let to_json = simple_to_json to_value
  end
module StartDeviceAuthorizationResponse =
  struct
    type nonrec t =
      {
      deviceCode: DeviceCode.t option
        [@ocaml.doc
          "The short-lived code that is used by the device when polling for a session token."];
      userCode: UserCode.t option
        [@ocaml.doc
          "A one-time user verification code. This is needed to authorize an in-use device."];
      verificationUri: URI.t option
        [@ocaml.doc
          "The URI of the verification page that takes the userCode to authorize the device."];
      verificationUriComplete: URI.t option
        [@ocaml.doc
          "An alternate URL that the client can use to automatically launch a browser. This process skips the manual step in which the user visits the verification page and enters their code."];
      expiresIn: ExpirationInSeconds.t option
        [@ocaml.doc
          "Indicates the number of seconds in which the verification code will become invalid."];
      interval: IntervalInSeconds.t option
        [@ocaml.doc
          "Indicates the number of seconds the client must wait between attempts when polling for a session."]}
    type nonrec error =
      [ `InternalServerException of InternalServerException.t 
      | `InvalidClientException of InvalidClientException.t 
      | `InvalidRequestException of InvalidRequestException.t 
      | `SlowDownException of SlowDownException.t 
      | `UnauthorizedClientException of UnauthorizedClientException.t 
      | `Unknown_operation_error of (string * string option) ]
    let make ?deviceCode =
      fun ?userCode ->
        fun ?verificationUri ->
          fun ?verificationUriComplete ->
            fun ?expiresIn ->
              fun ?interval ->
                fun () ->
                  {
                    deviceCode;
                    userCode;
                    verificationUri;
                    verificationUriComplete;
                    expiresIn;
                    interval
                  }
    let error_of_json name json =
      match name with
      | "InternalServerException" ->
          `InternalServerException (InternalServerException.of_json json)
      | "InvalidClientException" ->
          `InvalidClientException (InvalidClientException.of_json json)
      | "InvalidRequestException" ->
          `InvalidRequestException (InvalidRequestException.of_json json)
      | "SlowDownException" ->
          `SlowDownException (SlowDownException.of_json json)
      | "UnauthorizedClientException" ->
          `UnauthorizedClientException
            (UnauthorizedClientException.of_json json)
      | name ->
          `Unknown_operation_error
            (name, (Some (Yojson.Safe.to_string json)))
    let error_of_xml name xml =
      match name with
      | "InternalServerException" ->
          `InternalServerException (InternalServerException.of_xml xml)
      | "InvalidClientException" ->
          `InvalidClientException (InvalidClientException.of_xml xml)
      | "InvalidRequestException" ->
          `InvalidRequestException (InvalidRequestException.of_xml xml)
      | "SlowDownException" ->
          `SlowDownException (SlowDownException.of_xml xml)
      | "UnauthorizedClientException" ->
          `UnauthorizedClientException
            (UnauthorizedClientException.of_xml xml)
      | name ->
          `Unknown_operation_error (name, (Some (Awso.Xml.to_string xml)))
    let error_to_json : error -> Yojson.Safe.t =
      function
      | `InternalServerException e ->
          `Assoc
            [("error", (`String "InternalServerException"));
            ("details", (InternalServerException.to_json e))]
      | `InvalidClientException e ->
          `Assoc
            [("error", (`String "InvalidClientException"));
            ("details", (InvalidClientException.to_json e))]
      | `InvalidRequestException e ->
          `Assoc
            [("error", (`String "InvalidRequestException"));
            ("details", (InvalidRequestException.to_json e))]
      | `SlowDownException e ->
          `Assoc
            [("error", (`String "SlowDownException"));
            ("details", (SlowDownException.to_json e))]
      | `UnauthorizedClientException e ->
          `Assoc
            [("error", (`String "UnauthorizedClientException"));
            ("details", (UnauthorizedClientException.to_json e))]
      | `Unknown_operation_error (code, msg) ->
          `Assoc (("error", (`String code)) ::
            ((match msg with
              | None -> []
              | Some m -> [("message", (`String m))])))
    let to_value x =
      structure_to_value
        [("deviceCode", (Option.map x.deviceCode ~f:DeviceCode.to_value));
        ("userCode", (Option.map x.userCode ~f:UserCode.to_value));
        ("verificationUri", (Option.map x.verificationUri ~f:URI.to_value));
        ("verificationUriComplete",
          (Option.map x.verificationUriComplete ~f:URI.to_value));
        ("expiresIn",
          (Option.map x.expiresIn ~f:ExpirationInSeconds.to_value));
        ("interval", (Option.map x.interval ~f:IntervalInSeconds.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let interval =
        (Option.map ~f:IntervalInSeconds.of_xml)
          (Xml.child xml_arg0 "interval") in
      let expiresIn =
        (Option.map ~f:ExpirationInSeconds.of_xml)
          (Xml.child xml_arg0 "expiresIn") in
      let verificationUriComplete =
        (Option.map ~f:URI.of_xml)
          (Xml.child xml_arg0 "verificationUriComplete") in
      let verificationUri =
        (Option.map ~f:URI.of_xml) (Xml.child xml_arg0 "verificationUri") in
      let userCode =
        (Option.map ~f:UserCode.of_xml) (Xml.child xml_arg0 "userCode") in
      let deviceCode =
        (Option.map ~f:DeviceCode.of_xml) (Xml.child xml_arg0 "deviceCode") in
      make ?interval ?expiresIn ?verificationUriComplete ?verificationUri
        ?userCode ?deviceCode ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let interval = field_map json__ "interval" IntervalInSeconds.of_json in
      let expiresIn =
        field_map json__ "expiresIn" ExpirationInSeconds.of_json in
      let verificationUriComplete =
        field_map json__ "verificationUriComplete" URI.of_json in
      let verificationUri = field_map json__ "verificationUri" URI.of_json in
      let userCode = field_map json__ "userCode" UserCode.of_json in
      let deviceCode = field_map json__ "deviceCode" DeviceCode.of_json in
      make ?interval ?expiresIn ?verificationUriComplete ?verificationUri
        ?userCode ?deviceCode ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Initiates device authorization by requesting a pair of verification codes from the authorization service."]
module StartDeviceAuthorizationRequest =
  struct
    type nonrec t =
      {
      clientId: ClientId.t
        [@ocaml.doc
          "The unique identifier string for the client that is registered with IAM Identity Center. This value should come from the persisted result of the RegisterClient API operation."];
      clientSecret: ClientSecret.t
        [@ocaml.doc
          "A secret string that is generated for the client. This value should come from the persisted result of the RegisterClient API operation."];
      startUrl: URI.t
        [@ocaml.doc
          "The URL for the Amazon Web Services access portal. For more information, see Using the Amazon Web Services access portal in the IAM Identity Center User Guide."]}
    let context_ = "StartDeviceAuthorizationRequest"
    let make ~clientId =
      fun ~clientSecret ->
        fun ~startUrl -> fun () -> { clientId; clientSecret; startUrl }
    let to_value x =
      structure_to_value
        [("clientId", (Some (ClientId.to_value x.clientId)));
        ("clientSecret", (Some (ClientSecret.to_value x.clientSecret)));
        ("startUrl", (Some (URI.to_value x.startUrl)))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let startUrl =
        URI.of_xml (Xml.child_exn ~context:context_ xml_arg0 "startUrl") in
      let clientSecret =
        ClientSecret.of_xml
          (Xml.child_exn ~context:context_ xml_arg0 "clientSecret") in
      let clientId =
        ClientId.of_xml (Xml.child_exn ~context:context_ xml_arg0 "clientId") in
      make ~startUrl ~clientSecret ~clientId ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let startUrl = field_map_exn json__ "startUrl" URI.of_json in
      let clientSecret =
        field_map_exn json__ "clientSecret" ClientSecret.of_json in
      let clientId = field_map_exn json__ "clientId" ClientId.of_json in
      make ~startUrl ~clientSecret ~clientId ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Initiates device authorization by requesting a pair of verification codes from the authorization service."]
module RegisterClientResponse =
  struct
    type nonrec t =
      {
      clientId: ClientId.t option
        [@ocaml.doc
          "The unique identifier string for each client. This client uses this identifier to get authenticated by the service in subsequent calls."];
      clientSecret: ClientSecret.t option
        [@ocaml.doc
          "A secret string generated for the client. The client will use this string to get authenticated by the service in subsequent calls."];
      clientIdIssuedAt: LongTimeStampType.t option
        [@ocaml.doc
          "Indicates the time at which the clientId and clientSecret were issued."];
      clientSecretExpiresAt: LongTimeStampType.t option
        [@ocaml.doc
          "Indicates the time at which the clientId and clientSecret will become invalid."];
      authorizationEndpoint: URI.t option
        [@ocaml.doc
          "An endpoint that the client can use to request authorization."];
      tokenEndpoint: URI.t option
        [@ocaml.doc "An endpoint that the client can use to create tokens."]}
    type nonrec error =
      [ `InternalServerException of InternalServerException.t 
      | `InvalidClientMetadataException of InvalidClientMetadataException.t 
      | `InvalidRedirectUriException of InvalidRedirectUriException.t 
      | `InvalidRequestException of InvalidRequestException.t 
      | `InvalidScopeException of InvalidScopeException.t 
      | `SlowDownException of SlowDownException.t 
      | `UnsupportedGrantTypeException of UnsupportedGrantTypeException.t 
      | `Unknown_operation_error of (string * string option) ]
    let make ?clientId =
      fun ?clientSecret ->
        fun ?clientIdIssuedAt ->
          fun ?clientSecretExpiresAt ->
            fun ?authorizationEndpoint ->
              fun ?tokenEndpoint ->
                fun () ->
                  {
                    clientId;
                    clientSecret;
                    clientIdIssuedAt;
                    clientSecretExpiresAt;
                    authorizationEndpoint;
                    tokenEndpoint
                  }
    let error_of_json name json =
      match name with
      | "InternalServerException" ->
          `InternalServerException (InternalServerException.of_json json)
      | "InvalidClientMetadataException" ->
          `InvalidClientMetadataException
            (InvalidClientMetadataException.of_json json)
      | "InvalidRedirectUriException" ->
          `InvalidRedirectUriException
            (InvalidRedirectUriException.of_json json)
      | "InvalidRequestException" ->
          `InvalidRequestException (InvalidRequestException.of_json json)
      | "InvalidScopeException" ->
          `InvalidScopeException (InvalidScopeException.of_json json)
      | "SlowDownException" ->
          `SlowDownException (SlowDownException.of_json json)
      | "UnsupportedGrantTypeException" ->
          `UnsupportedGrantTypeException
            (UnsupportedGrantTypeException.of_json json)
      | name ->
          `Unknown_operation_error
            (name, (Some (Yojson.Safe.to_string json)))
    let error_of_xml name xml =
      match name with
      | "InternalServerException" ->
          `InternalServerException (InternalServerException.of_xml xml)
      | "InvalidClientMetadataException" ->
          `InvalidClientMetadataException
            (InvalidClientMetadataException.of_xml xml)
      | "InvalidRedirectUriException" ->
          `InvalidRedirectUriException
            (InvalidRedirectUriException.of_xml xml)
      | "InvalidRequestException" ->
          `InvalidRequestException (InvalidRequestException.of_xml xml)
      | "InvalidScopeException" ->
          `InvalidScopeException (InvalidScopeException.of_xml xml)
      | "SlowDownException" ->
          `SlowDownException (SlowDownException.of_xml xml)
      | "UnsupportedGrantTypeException" ->
          `UnsupportedGrantTypeException
            (UnsupportedGrantTypeException.of_xml xml)
      | name ->
          `Unknown_operation_error (name, (Some (Awso.Xml.to_string xml)))
    let error_to_json : error -> Yojson.Safe.t =
      function
      | `InternalServerException e ->
          `Assoc
            [("error", (`String "InternalServerException"));
            ("details", (InternalServerException.to_json e))]
      | `InvalidClientMetadataException e ->
          `Assoc
            [("error", (`String "InvalidClientMetadataException"));
            ("details", (InvalidClientMetadataException.to_json e))]
      | `InvalidRedirectUriException e ->
          `Assoc
            [("error", (`String "InvalidRedirectUriException"));
            ("details", (InvalidRedirectUriException.to_json e))]
      | `InvalidRequestException e ->
          `Assoc
            [("error", (`String "InvalidRequestException"));
            ("details", (InvalidRequestException.to_json e))]
      | `InvalidScopeException e ->
          `Assoc
            [("error", (`String "InvalidScopeException"));
            ("details", (InvalidScopeException.to_json e))]
      | `SlowDownException e ->
          `Assoc
            [("error", (`String "SlowDownException"));
            ("details", (SlowDownException.to_json e))]
      | `UnsupportedGrantTypeException e ->
          `Assoc
            [("error", (`String "UnsupportedGrantTypeException"));
            ("details", (UnsupportedGrantTypeException.to_json e))]
      | `Unknown_operation_error (code, msg) ->
          `Assoc (("error", (`String code)) ::
            ((match msg with
              | None -> []
              | Some m -> [("message", (`String m))])))
    let to_value x =
      structure_to_value
        [("clientId", (Option.map x.clientId ~f:ClientId.to_value));
        ("clientSecret",
          (Option.map x.clientSecret ~f:ClientSecret.to_value));
        ("clientIdIssuedAt",
          (Option.map x.clientIdIssuedAt ~f:LongTimeStampType.to_value));
        ("clientSecretExpiresAt",
          (Option.map x.clientSecretExpiresAt ~f:LongTimeStampType.to_value));
        ("authorizationEndpoint",
          (Option.map x.authorizationEndpoint ~f:URI.to_value));
        ("tokenEndpoint", (Option.map x.tokenEndpoint ~f:URI.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let tokenEndpoint =
        (Option.map ~f:URI.of_xml) (Xml.child xml_arg0 "tokenEndpoint") in
      let authorizationEndpoint =
        (Option.map ~f:URI.of_xml)
          (Xml.child xml_arg0 "authorizationEndpoint") in
      let clientSecretExpiresAt =
        (Option.map ~f:LongTimeStampType.of_xml)
          (Xml.child xml_arg0 "clientSecretExpiresAt") in
      let clientIdIssuedAt =
        (Option.map ~f:LongTimeStampType.of_xml)
          (Xml.child xml_arg0 "clientIdIssuedAt") in
      let clientSecret =
        (Option.map ~f:ClientSecret.of_xml)
          (Xml.child xml_arg0 "clientSecret") in
      let clientId =
        (Option.map ~f:ClientId.of_xml) (Xml.child xml_arg0 "clientId") in
      make ?tokenEndpoint ?authorizationEndpoint ?clientSecretExpiresAt
        ?clientIdIssuedAt ?clientSecret ?clientId ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let tokenEndpoint = field_map json__ "tokenEndpoint" URI.of_json in
      let authorizationEndpoint =
        field_map json__ "authorizationEndpoint" URI.of_json in
      let clientSecretExpiresAt =
        field_map json__ "clientSecretExpiresAt" LongTimeStampType.of_json in
      let clientIdIssuedAt =
        field_map json__ "clientIdIssuedAt" LongTimeStampType.of_json in
      let clientSecret = field_map json__ "clientSecret" ClientSecret.of_json in
      let clientId = field_map json__ "clientId" ClientId.of_json in
      make ?tokenEndpoint ?authorizationEndpoint ?clientSecretExpiresAt
        ?clientIdIssuedAt ?clientSecret ?clientId ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Registers a public\194\160client with IAM Identity Center. This allows clients to\194\160perform authorization using the\194\160authorization code\194\160grant\194\160with Proof Key for Code Exchange (PKCE) or\194\160the\194\160device code\194\160grant."]
module RegisterClientRequest =
  struct
    type nonrec t =
      {
      clientName: ClientName.t
        [@ocaml.doc "The friendly name of the client."];
      clientType: ClientType.t
        [@ocaml.doc
          "The type of client. The service supports only public as a client type. Anything other than public will be rejected by the service."];
      scopes: Scopes.t option
        [@ocaml.doc
          "The list of scopes that are defined by the client. Upon authorization, this list is used to restrict permissions when granting an access token."];
      redirectUris: RedirectUris.t option
        [@ocaml.doc
          "The list of redirect URI that are defined by the client. At completion of authorization, this list is used to restrict what locations the user agent can be redirected back to."];
      grantTypes: GrantTypes.t option
        [@ocaml.doc
          "The list of OAuth 2.0 grant types that are defined by the client. This list is used to restrict the token granting flows available to the client. Supports the following OAuth 2.0 grant types: Authorization Code, Device Code, and Refresh Token. * Authorization Code - authorization_code * Device Code - urn:ietf:params:oauth:grant-type:device_code * Refresh Token - refresh_token"];
      issuerUrl: URI.t option
        [@ocaml.doc
          "The IAM Identity Center Issuer URL associated with an instance of IAM Identity Center. This value is needed for user access to resources through the client."];
      entitledApplicationArn: ArnType.t option
        [@ocaml.doc
          "This IAM Identity Center application ARN is used to define administrator-managed configuration for public client access to resources. At authorization, the scopes, grants, and redirect URI available to this client will be restricted by this application resource."]}
    let context_ = "RegisterClientRequest"
    let make ?scopes =
      fun ?redirectUris ->
        fun ?grantTypes ->
          fun ?issuerUrl ->
            fun ?entitledApplicationArn ->
              fun ~clientName ->
                fun ~clientType ->
                  fun () ->
                    {
                      scopes;
                      redirectUris;
                      grantTypes;
                      issuerUrl;
                      entitledApplicationArn;
                      clientName;
                      clientType
                    }
    let to_value x =
      structure_to_value
        [("clientName", (Some (ClientName.to_value x.clientName)));
        ("clientType", (Some (ClientType.to_value x.clientType)));
        ("scopes", (Option.map x.scopes ~f:Scopes.to_value));
        ("redirectUris",
          (Option.map x.redirectUris ~f:RedirectUris.to_value));
        ("grantTypes", (Option.map x.grantTypes ~f:GrantTypes.to_value));
        ("issuerUrl", (Option.map x.issuerUrl ~f:URI.to_value));
        ("entitledApplicationArn",
          (Option.map x.entitledApplicationArn ~f:ArnType.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let entitledApplicationArn =
        (Option.map ~f:ArnType.of_xml)
          (Xml.child xml_arg0 "entitledApplicationArn") in
      let issuerUrl =
        (Option.map ~f:URI.of_xml) (Xml.child xml_arg0 "issuerUrl") in
      let grantTypes =
        (Option.map ~f:GrantTypes.of_xml) (Xml.child xml_arg0 "grantTypes") in
      let redirectUris =
        (Option.map ~f:RedirectUris.of_xml)
          (Xml.child xml_arg0 "redirectUris") in
      let scopes =
        (Option.map ~f:Scopes.of_xml) (Xml.child xml_arg0 "scopes") in
      let clientType =
        ClientType.of_xml
          (Xml.child_exn ~context:context_ xml_arg0 "clientType") in
      let clientName =
        ClientName.of_xml
          (Xml.child_exn ~context:context_ xml_arg0 "clientName") in
      make ?entitledApplicationArn ?issuerUrl ?grantTypes ?redirectUris
        ?scopes ~clientType ~clientName ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let entitledApplicationArn =
        field_map json__ "entitledApplicationArn" ArnType.of_json in
      let issuerUrl = field_map json__ "issuerUrl" URI.of_json in
      let grantTypes = field_map json__ "grantTypes" GrantTypes.of_json in
      let redirectUris = field_map json__ "redirectUris" RedirectUris.of_json in
      let scopes = field_map json__ "scopes" Scopes.of_json in
      let clientType = field_map_exn json__ "clientType" ClientType.of_json in
      let clientName = field_map_exn json__ "clientName" ClientName.of_json in
      make ?entitledApplicationArn ?issuerUrl ?grantTypes ?redirectUris
        ?scopes ~clientType ~clientName ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Registers a public\194\160client with IAM Identity Center. This allows clients to\194\160perform authorization using the\194\160authorization code\194\160grant\194\160with Proof Key for Code Exchange (PKCE) or\194\160the\194\160device code\194\160grant."]
module CreateTokenWithIAMResponse =
  struct
    type nonrec t =
      {
      accessToken: AccessToken.t option
        [@ocaml.doc
          "A bearer token to access Amazon Web Services accounts and applications assigned to a user."];
      tokenType: TokenType.t option
        [@ocaml.doc
          "Used to notify the requester that the returned token is an access token. The supported token type is Bearer."];
      expiresIn: ExpirationInSeconds.t option
        [@ocaml.doc
          "Indicates the time in seconds when an access token will expire."];
      refreshToken: RefreshToken.t option
        [@ocaml.doc
          "A token that, if present, can be used to refresh a previously issued access token that might have expired. For more information about the features and limitations of the current IAM Identity Center OIDC implementation, see Considerations for Using this Guide in the IAM Identity Center OIDC API Reference."];
      idToken: IdToken.t option
        [@ocaml.doc
          "A JSON Web Token (JWT) that identifies the user associated with the issued access token."];
      issuedTokenType: TokenTypeURI.t option
        [@ocaml.doc
          "Indicates the type of tokens that are issued by IAM Identity Center. The following values are supported: * Access Token - urn:ietf:params:oauth:token-type:access_token * Refresh Token - urn:ietf:params:oauth:token-type:refresh_token"];
      scope: Scopes.t option
        [@ocaml.doc
          "The list of scopes for which authorization is granted. The access token that is issued is limited to the scopes that are granted."];
      awsAdditionalDetails: AwsAdditionalDetails.t option
        [@ocaml.doc
          "A structure containing information from IAM Identity Center managed user and group information."]}
    type nonrec error =
      [ `AccessDeniedException of AccessDeniedException.t 
      | `AuthorizationPendingException of AuthorizationPendingException.t 
      | `ExpiredTokenException of ExpiredTokenException.t 
      | `InternalServerException of InternalServerException.t 
      | `InvalidClientException of InvalidClientException.t 
      | `InvalidGrantException of InvalidGrantException.t 
      | `InvalidRequestException of InvalidRequestException.t 
      | `InvalidRequestRegionException of InvalidRequestRegionException.t 
      | `InvalidScopeException of InvalidScopeException.t 
      | `SlowDownException of SlowDownException.t 
      | `UnauthorizedClientException of UnauthorizedClientException.t 
      | `UnsupportedGrantTypeException of UnsupportedGrantTypeException.t 
      | `Unknown_operation_error of (string * string option) ]
    let make ?accessToken =
      fun ?tokenType ->
        fun ?expiresIn ->
          fun ?refreshToken ->
            fun ?idToken ->
              fun ?issuedTokenType ->
                fun ?scope ->
                  fun ?awsAdditionalDetails ->
                    fun () ->
                      {
                        accessToken;
                        tokenType;
                        expiresIn;
                        refreshToken;
                        idToken;
                        issuedTokenType;
                        scope;
                        awsAdditionalDetails
                      }
    let error_of_json name json =
      match name with
      | "AccessDeniedException" ->
          `AccessDeniedException (AccessDeniedException.of_json json)
      | "AuthorizationPendingException" ->
          `AuthorizationPendingException
            (AuthorizationPendingException.of_json json)
      | "ExpiredTokenException" ->
          `ExpiredTokenException (ExpiredTokenException.of_json json)
      | "InternalServerException" ->
          `InternalServerException (InternalServerException.of_json json)
      | "InvalidClientException" ->
          `InvalidClientException (InvalidClientException.of_json json)
      | "InvalidGrantException" ->
          `InvalidGrantException (InvalidGrantException.of_json json)
      | "InvalidRequestException" ->
          `InvalidRequestException (InvalidRequestException.of_json json)
      | "InvalidRequestRegionException" ->
          `InvalidRequestRegionException
            (InvalidRequestRegionException.of_json json)
      | "InvalidScopeException" ->
          `InvalidScopeException (InvalidScopeException.of_json json)
      | "SlowDownException" ->
          `SlowDownException (SlowDownException.of_json json)
      | "UnauthorizedClientException" ->
          `UnauthorizedClientException
            (UnauthorizedClientException.of_json json)
      | "UnsupportedGrantTypeException" ->
          `UnsupportedGrantTypeException
            (UnsupportedGrantTypeException.of_json json)
      | name ->
          `Unknown_operation_error
            (name, (Some (Yojson.Safe.to_string json)))
    let error_of_xml name xml =
      match name with
      | "AccessDeniedException" ->
          `AccessDeniedException (AccessDeniedException.of_xml xml)
      | "AuthorizationPendingException" ->
          `AuthorizationPendingException
            (AuthorizationPendingException.of_xml xml)
      | "ExpiredTokenException" ->
          `ExpiredTokenException (ExpiredTokenException.of_xml xml)
      | "InternalServerException" ->
          `InternalServerException (InternalServerException.of_xml xml)
      | "InvalidClientException" ->
          `InvalidClientException (InvalidClientException.of_xml xml)
      | "InvalidGrantException" ->
          `InvalidGrantException (InvalidGrantException.of_xml xml)
      | "InvalidRequestException" ->
          `InvalidRequestException (InvalidRequestException.of_xml xml)
      | "InvalidRequestRegionException" ->
          `InvalidRequestRegionException
            (InvalidRequestRegionException.of_xml xml)
      | "InvalidScopeException" ->
          `InvalidScopeException (InvalidScopeException.of_xml xml)
      | "SlowDownException" ->
          `SlowDownException (SlowDownException.of_xml xml)
      | "UnauthorizedClientException" ->
          `UnauthorizedClientException
            (UnauthorizedClientException.of_xml xml)
      | "UnsupportedGrantTypeException" ->
          `UnsupportedGrantTypeException
            (UnsupportedGrantTypeException.of_xml xml)
      | name ->
          `Unknown_operation_error (name, (Some (Awso.Xml.to_string xml)))
    let error_to_json : error -> Yojson.Safe.t =
      function
      | `AccessDeniedException e ->
          `Assoc
            [("error", (`String "AccessDeniedException"));
            ("details", (AccessDeniedException.to_json e))]
      | `AuthorizationPendingException e ->
          `Assoc
            [("error", (`String "AuthorizationPendingException"));
            ("details", (AuthorizationPendingException.to_json e))]
      | `ExpiredTokenException e ->
          `Assoc
            [("error", (`String "ExpiredTokenException"));
            ("details", (ExpiredTokenException.to_json e))]
      | `InternalServerException e ->
          `Assoc
            [("error", (`String "InternalServerException"));
            ("details", (InternalServerException.to_json e))]
      | `InvalidClientException e ->
          `Assoc
            [("error", (`String "InvalidClientException"));
            ("details", (InvalidClientException.to_json e))]
      | `InvalidGrantException e ->
          `Assoc
            [("error", (`String "InvalidGrantException"));
            ("details", (InvalidGrantException.to_json e))]
      | `InvalidRequestException e ->
          `Assoc
            [("error", (`String "InvalidRequestException"));
            ("details", (InvalidRequestException.to_json e))]
      | `InvalidRequestRegionException e ->
          `Assoc
            [("error", (`String "InvalidRequestRegionException"));
            ("details", (InvalidRequestRegionException.to_json e))]
      | `InvalidScopeException e ->
          `Assoc
            [("error", (`String "InvalidScopeException"));
            ("details", (InvalidScopeException.to_json e))]
      | `SlowDownException e ->
          `Assoc
            [("error", (`String "SlowDownException"));
            ("details", (SlowDownException.to_json e))]
      | `UnauthorizedClientException e ->
          `Assoc
            [("error", (`String "UnauthorizedClientException"));
            ("details", (UnauthorizedClientException.to_json e))]
      | `UnsupportedGrantTypeException e ->
          `Assoc
            [("error", (`String "UnsupportedGrantTypeException"));
            ("details", (UnsupportedGrantTypeException.to_json e))]
      | `Unknown_operation_error (code, msg) ->
          `Assoc (("error", (`String code)) ::
            ((match msg with
              | None -> []
              | Some m -> [("message", (`String m))])))
    let to_value x =
      structure_to_value
        [("accessToken", (Option.map x.accessToken ~f:AccessToken.to_value));
        ("tokenType", (Option.map x.tokenType ~f:TokenType.to_value));
        ("expiresIn",
          (Option.map x.expiresIn ~f:ExpirationInSeconds.to_value));
        ("refreshToken",
          (Option.map x.refreshToken ~f:RefreshToken.to_value));
        ("idToken", (Option.map x.idToken ~f:IdToken.to_value));
        ("issuedTokenType",
          (Option.map x.issuedTokenType ~f:TokenTypeURI.to_value));
        ("scope", (Option.map x.scope ~f:Scopes.to_value));
        ("awsAdditionalDetails",
          (Option.map x.awsAdditionalDetails ~f:AwsAdditionalDetails.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let awsAdditionalDetails =
        (Option.map ~f:AwsAdditionalDetails.of_xml)
          (Xml.child xml_arg0 "awsAdditionalDetails") in
      let scope = (Option.map ~f:Scopes.of_xml) (Xml.child xml_arg0 "scope") in
      let issuedTokenType =
        (Option.map ~f:TokenTypeURI.of_xml)
          (Xml.child xml_arg0 "issuedTokenType") in
      let idToken =
        (Option.map ~f:IdToken.of_xml) (Xml.child xml_arg0 "idToken") in
      let refreshToken =
        (Option.map ~f:RefreshToken.of_xml)
          (Xml.child xml_arg0 "refreshToken") in
      let expiresIn =
        (Option.map ~f:ExpirationInSeconds.of_xml)
          (Xml.child xml_arg0 "expiresIn") in
      let tokenType =
        (Option.map ~f:TokenType.of_xml) (Xml.child xml_arg0 "tokenType") in
      let accessToken =
        (Option.map ~f:AccessToken.of_xml) (Xml.child xml_arg0 "accessToken") in
      make ?awsAdditionalDetails ?scope ?issuedTokenType ?idToken
        ?refreshToken ?expiresIn ?tokenType ?accessToken ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let awsAdditionalDetails =
        field_map json__ "awsAdditionalDetails" AwsAdditionalDetails.of_json in
      let scope = field_map json__ "scope" Scopes.of_json in
      let issuedTokenType =
        field_map json__ "issuedTokenType" TokenTypeURI.of_json in
      let idToken = field_map json__ "idToken" IdToken.of_json in
      let refreshToken = field_map json__ "refreshToken" RefreshToken.of_json in
      let expiresIn =
        field_map json__ "expiresIn" ExpirationInSeconds.of_json in
      let tokenType = field_map json__ "tokenType" TokenType.of_json in
      let accessToken = field_map json__ "accessToken" AccessToken.of_json in
      make ?awsAdditionalDetails ?scope ?issuedTokenType ?idToken
        ?refreshToken ?expiresIn ?tokenType ?accessToken ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Creates and returns access and refresh tokens for authorized client applications that are authenticated using any IAM entity, such as a service role or user. These tokens might contain defined scopes that specify permissions such as read:profile or write:data. Through downscoping, you can use the scopes parameter to request tokens with reduced permissions compared to the original client application's permissions or, if applicable, the refresh token's scopes. The access token can be used to fetch short-lived credentials for the assigned Amazon Web Services accounts or to access application APIs using bearer authentication. This API is used with Signature Version 4. For more information, see Amazon Web Services Signature Version 4 for API Requests."]
module CreateTokenWithIAMRequest =
  struct
    type nonrec t =
      {
      clientId: ClientId.t
        [@ocaml.doc
          "The unique identifier string for the client or application. This value is an application ARN that has OAuth grants configured."];
      grantType: GrantType.t
        [@ocaml.doc
          "Supports the following OAuth grant types: Authorization Code, Refresh Token, JWT Bearer, and Token Exchange. Specify one of the following values, depending on the grant type that you want: * Authorization Code - authorization_code * Refresh Token - refresh_token * JWT Bearer - urn:ietf:params:oauth:grant-type:jwt-bearer * Token Exchange - urn:ietf:params:oauth:grant-type:token-exchange"];
      code: AuthCode.t option
        [@ocaml.doc
          "Used only when calling this API for the Authorization Code grant type. This short-lived code is used to identify this authorization request. The code is obtained through a redirect from IAM Identity Center to a redirect URI persisted in the Authorization Code GrantOptions for the application."];
      refreshToken: RefreshToken.t option
        [@ocaml.doc
          "Used only when calling this API for the Refresh Token grant type. This token is used to refresh short-lived tokens, such as the access token, that might expire. For more information about the features and limitations of the current IAM Identity Center OIDC implementation, see Considerations for Using this Guide in the IAM Identity Center OIDC API Reference."];
      assertion: Assertion.t option
        [@ocaml.doc
          "Used only when calling this API for the JWT Bearer grant type. This value specifies the JSON Web Token (JWT) issued by a trusted token issuer. To authorize a trusted token issuer, configure the JWT Bearer GrantOptions for the application."];
      scope: Scopes.t option
        [@ocaml.doc
          "The list of scopes for which authorization is requested. The access token that is issued is limited to the scopes that are granted. If the value is not specified, IAM Identity Center authorizes all scopes configured for the application, including the following default scopes: openid, aws, sts:identity_context."];
      redirectUri: URI.t option
        [@ocaml.doc
          "Used only when calling this API for the Authorization Code grant type. This value specifies the location of the client or application that has registered to receive the authorization code."];
      subjectToken: SubjectToken.t option
        [@ocaml.doc
          "Used only when calling this API for the Token Exchange grant type. This value specifies the subject of the exchange. The value of the subject token must be an access token issued by IAM Identity Center to a different client or application. The access token must have authorized scopes that indicate the requested application as a target audience."];
      subjectTokenType: TokenTypeURI.t option
        [@ocaml.doc
          "Used only when calling this API for the Token Exchange grant type. This value specifies the type of token that is passed as the subject of the exchange. The following value is supported: * Access Token - urn:ietf:params:oauth:token-type:access_token"];
      requestedTokenType: TokenTypeURI.t option
        [@ocaml.doc
          "Used only when calling this API for the Token Exchange grant type. This value specifies the type of token that the requester can receive. The following values are supported: * Access Token - urn:ietf:params:oauth:token-type:access_token * Refresh Token - urn:ietf:params:oauth:token-type:refresh_token"];
      codeVerifier: CodeVerifier.t option
        [@ocaml.doc
          "Used only when calling this API for the Authorization Code grant type. This value is generated by the client and presented to validate the original code challenge value the client passed at authorization time."]}
    let context_ = "CreateTokenWithIAMRequest"
    let make ?code =
      fun ?refreshToken ->
        fun ?assertion ->
          fun ?scope ->
            fun ?redirectUri ->
              fun ?subjectToken ->
                fun ?subjectTokenType ->
                  fun ?requestedTokenType ->
                    fun ?codeVerifier ->
                      fun ~clientId ->
                        fun ~grantType ->
                          fun () ->
                            {
                              code;
                              refreshToken;
                              assertion;
                              scope;
                              redirectUri;
                              subjectToken;
                              subjectTokenType;
                              requestedTokenType;
                              codeVerifier;
                              clientId;
                              grantType
                            }
    let to_value x =
      structure_to_value
        [("clientId", (Some (ClientId.to_value x.clientId)));
        ("grantType", (Some (GrantType.to_value x.grantType)));
        ("code", (Option.map x.code ~f:AuthCode.to_value));
        ("refreshToken",
          (Option.map x.refreshToken ~f:RefreshToken.to_value));
        ("assertion", (Option.map x.assertion ~f:Assertion.to_value));
        ("scope", (Option.map x.scope ~f:Scopes.to_value));
        ("redirectUri", (Option.map x.redirectUri ~f:URI.to_value));
        ("subjectToken",
          (Option.map x.subjectToken ~f:SubjectToken.to_value));
        ("subjectTokenType",
          (Option.map x.subjectTokenType ~f:TokenTypeURI.to_value));
        ("requestedTokenType",
          (Option.map x.requestedTokenType ~f:TokenTypeURI.to_value));
        ("codeVerifier",
          (Option.map x.codeVerifier ~f:CodeVerifier.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let codeVerifier =
        (Option.map ~f:CodeVerifier.of_xml)
          (Xml.child xml_arg0 "codeVerifier") in
      let requestedTokenType =
        (Option.map ~f:TokenTypeURI.of_xml)
          (Xml.child xml_arg0 "requestedTokenType") in
      let subjectTokenType =
        (Option.map ~f:TokenTypeURI.of_xml)
          (Xml.child xml_arg0 "subjectTokenType") in
      let subjectToken =
        (Option.map ~f:SubjectToken.of_xml)
          (Xml.child xml_arg0 "subjectToken") in
      let redirectUri =
        (Option.map ~f:URI.of_xml) (Xml.child xml_arg0 "redirectUri") in
      let scope = (Option.map ~f:Scopes.of_xml) (Xml.child xml_arg0 "scope") in
      let assertion =
        (Option.map ~f:Assertion.of_xml) (Xml.child xml_arg0 "assertion") in
      let refreshToken =
        (Option.map ~f:RefreshToken.of_xml)
          (Xml.child xml_arg0 "refreshToken") in
      let code = (Option.map ~f:AuthCode.of_xml) (Xml.child xml_arg0 "code") in
      let grantType =
        GrantType.of_xml
          (Xml.child_exn ~context:context_ xml_arg0 "grantType") in
      let clientId =
        ClientId.of_xml (Xml.child_exn ~context:context_ xml_arg0 "clientId") in
      make ?codeVerifier ?requestedTokenType ?subjectTokenType ?subjectToken
        ?redirectUri ?scope ?assertion ?refreshToken ?code ~grantType
        ~clientId ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let codeVerifier = field_map json__ "codeVerifier" CodeVerifier.of_json in
      let requestedTokenType =
        field_map json__ "requestedTokenType" TokenTypeURI.of_json in
      let subjectTokenType =
        field_map json__ "subjectTokenType" TokenTypeURI.of_json in
      let subjectToken = field_map json__ "subjectToken" SubjectToken.of_json in
      let redirectUri = field_map json__ "redirectUri" URI.of_json in
      let scope = field_map json__ "scope" Scopes.of_json in
      let assertion = field_map json__ "assertion" Assertion.of_json in
      let refreshToken = field_map json__ "refreshToken" RefreshToken.of_json in
      let code = field_map json__ "code" AuthCode.of_json in
      let grantType = field_map_exn json__ "grantType" GrantType.of_json in
      let clientId = field_map_exn json__ "clientId" ClientId.of_json in
      make ?codeVerifier ?requestedTokenType ?subjectTokenType ?subjectToken
        ?redirectUri ?scope ?assertion ?refreshToken ?code ~grantType
        ~clientId ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Creates and returns access and refresh tokens for authorized client applications that are authenticated using any IAM entity, such as a service role or user. These tokens might contain defined scopes that specify permissions such as read:profile or write:data. Through downscoping, you can use the scopes parameter to request tokens with reduced permissions compared to the original client application's permissions or, if applicable, the refresh token's scopes. The access token can be used to fetch short-lived credentials for the assigned Amazon Web Services accounts or to access application APIs using bearer authentication. This API is used with Signature Version 4. For more information, see Amazon Web Services Signature Version 4 for API Requests."]
module CreateTokenResponse =
  struct
    type nonrec t =
      {
      accessToken: AccessToken.t option
        [@ocaml.doc
          "A bearer token to access Amazon Web Services accounts and applications assigned to a user."];
      tokenType: TokenType.t option
        [@ocaml.doc
          "Used to notify the client that the returned token is an access token. The supported token type is Bearer."];
      expiresIn: ExpirationInSeconds.t option
        [@ocaml.doc
          "Indicates the time in seconds when an access token will expire."];
      refreshToken: RefreshToken.t option
        [@ocaml.doc
          "A token that, if present, can be used to refresh a previously issued access token that might have expired. For more information about the features and limitations of the current IAM Identity Center OIDC implementation, see Considerations for Using this Guide in the IAM Identity Center OIDC API Reference."];
      idToken: IdToken.t option
        [@ocaml.doc
          "The idToken is not implemented or supported. For more information about the features and limitations of the current IAM Identity Center OIDC implementation, see Considerations for Using this Guide in the IAM Identity Center OIDC API Reference. A JSON Web Token (JWT) that identifies who is associated with the issued access token."]}
    type nonrec error =
      [ `AccessDeniedException of AccessDeniedException.t 
      | `AuthorizationPendingException of AuthorizationPendingException.t 
      | `ExpiredTokenException of ExpiredTokenException.t 
      | `InternalServerException of InternalServerException.t 
      | `InvalidClientException of InvalidClientException.t 
      | `InvalidGrantException of InvalidGrantException.t 
      | `InvalidRequestException of InvalidRequestException.t 
      | `InvalidScopeException of InvalidScopeException.t 
      | `SlowDownException of SlowDownException.t 
      | `UnauthorizedClientException of UnauthorizedClientException.t 
      | `UnsupportedGrantTypeException of UnsupportedGrantTypeException.t 
      | `Unknown_operation_error of (string * string option) ]
    let make ?accessToken =
      fun ?tokenType ->
        fun ?expiresIn ->
          fun ?refreshToken ->
            fun ?idToken ->
              fun () ->
                { accessToken; tokenType; expiresIn; refreshToken; idToken }
    let error_of_json name json =
      match name with
      | "AccessDeniedException" ->
          `AccessDeniedException (AccessDeniedException.of_json json)
      | "AuthorizationPendingException" ->
          `AuthorizationPendingException
            (AuthorizationPendingException.of_json json)
      | "ExpiredTokenException" ->
          `ExpiredTokenException (ExpiredTokenException.of_json json)
      | "InternalServerException" ->
          `InternalServerException (InternalServerException.of_json json)
      | "InvalidClientException" ->
          `InvalidClientException (InvalidClientException.of_json json)
      | "InvalidGrantException" ->
          `InvalidGrantException (InvalidGrantException.of_json json)
      | "InvalidRequestException" ->
          `InvalidRequestException (InvalidRequestException.of_json json)
      | "InvalidScopeException" ->
          `InvalidScopeException (InvalidScopeException.of_json json)
      | "SlowDownException" ->
          `SlowDownException (SlowDownException.of_json json)
      | "UnauthorizedClientException" ->
          `UnauthorizedClientException
            (UnauthorizedClientException.of_json json)
      | "UnsupportedGrantTypeException" ->
          `UnsupportedGrantTypeException
            (UnsupportedGrantTypeException.of_json json)
      | name ->
          `Unknown_operation_error
            (name, (Some (Yojson.Safe.to_string json)))
    let error_of_xml name xml =
      match name with
      | "AccessDeniedException" ->
          `AccessDeniedException (AccessDeniedException.of_xml xml)
      | "AuthorizationPendingException" ->
          `AuthorizationPendingException
            (AuthorizationPendingException.of_xml xml)
      | "ExpiredTokenException" ->
          `ExpiredTokenException (ExpiredTokenException.of_xml xml)
      | "InternalServerException" ->
          `InternalServerException (InternalServerException.of_xml xml)
      | "InvalidClientException" ->
          `InvalidClientException (InvalidClientException.of_xml xml)
      | "InvalidGrantException" ->
          `InvalidGrantException (InvalidGrantException.of_xml xml)
      | "InvalidRequestException" ->
          `InvalidRequestException (InvalidRequestException.of_xml xml)
      | "InvalidScopeException" ->
          `InvalidScopeException (InvalidScopeException.of_xml xml)
      | "SlowDownException" ->
          `SlowDownException (SlowDownException.of_xml xml)
      | "UnauthorizedClientException" ->
          `UnauthorizedClientException
            (UnauthorizedClientException.of_xml xml)
      | "UnsupportedGrantTypeException" ->
          `UnsupportedGrantTypeException
            (UnsupportedGrantTypeException.of_xml xml)
      | name ->
          `Unknown_operation_error (name, (Some (Awso.Xml.to_string xml)))
    let error_to_json : error -> Yojson.Safe.t =
      function
      | `AccessDeniedException e ->
          `Assoc
            [("error", (`String "AccessDeniedException"));
            ("details", (AccessDeniedException.to_json e))]
      | `AuthorizationPendingException e ->
          `Assoc
            [("error", (`String "AuthorizationPendingException"));
            ("details", (AuthorizationPendingException.to_json e))]
      | `ExpiredTokenException e ->
          `Assoc
            [("error", (`String "ExpiredTokenException"));
            ("details", (ExpiredTokenException.to_json e))]
      | `InternalServerException e ->
          `Assoc
            [("error", (`String "InternalServerException"));
            ("details", (InternalServerException.to_json e))]
      | `InvalidClientException e ->
          `Assoc
            [("error", (`String "InvalidClientException"));
            ("details", (InvalidClientException.to_json e))]
      | `InvalidGrantException e ->
          `Assoc
            [("error", (`String "InvalidGrantException"));
            ("details", (InvalidGrantException.to_json e))]
      | `InvalidRequestException e ->
          `Assoc
            [("error", (`String "InvalidRequestException"));
            ("details", (InvalidRequestException.to_json e))]
      | `InvalidScopeException e ->
          `Assoc
            [("error", (`String "InvalidScopeException"));
            ("details", (InvalidScopeException.to_json e))]
      | `SlowDownException e ->
          `Assoc
            [("error", (`String "SlowDownException"));
            ("details", (SlowDownException.to_json e))]
      | `UnauthorizedClientException e ->
          `Assoc
            [("error", (`String "UnauthorizedClientException"));
            ("details", (UnauthorizedClientException.to_json e))]
      | `UnsupportedGrantTypeException e ->
          `Assoc
            [("error", (`String "UnsupportedGrantTypeException"));
            ("details", (UnsupportedGrantTypeException.to_json e))]
      | `Unknown_operation_error (code, msg) ->
          `Assoc (("error", (`String code)) ::
            ((match msg with
              | None -> []
              | Some m -> [("message", (`String m))])))
    let to_value x =
      structure_to_value
        [("accessToken", (Option.map x.accessToken ~f:AccessToken.to_value));
        ("tokenType", (Option.map x.tokenType ~f:TokenType.to_value));
        ("expiresIn",
          (Option.map x.expiresIn ~f:ExpirationInSeconds.to_value));
        ("refreshToken",
          (Option.map x.refreshToken ~f:RefreshToken.to_value));
        ("idToken", (Option.map x.idToken ~f:IdToken.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let idToken =
        (Option.map ~f:IdToken.of_xml) (Xml.child xml_arg0 "idToken") in
      let refreshToken =
        (Option.map ~f:RefreshToken.of_xml)
          (Xml.child xml_arg0 "refreshToken") in
      let expiresIn =
        (Option.map ~f:ExpirationInSeconds.of_xml)
          (Xml.child xml_arg0 "expiresIn") in
      let tokenType =
        (Option.map ~f:TokenType.of_xml) (Xml.child xml_arg0 "tokenType") in
      let accessToken =
        (Option.map ~f:AccessToken.of_xml) (Xml.child xml_arg0 "accessToken") in
      make ?idToken ?refreshToken ?expiresIn ?tokenType ?accessToken ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let idToken = field_map json__ "idToken" IdToken.of_json in
      let refreshToken = field_map json__ "refreshToken" RefreshToken.of_json in
      let expiresIn =
        field_map json__ "expiresIn" ExpirationInSeconds.of_json in
      let tokenType = field_map json__ "tokenType" TokenType.of_json in
      let accessToken = field_map json__ "accessToken" AccessToken.of_json in
      make ?idToken ?refreshToken ?expiresIn ?tokenType ?accessToken ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Creates and returns access and refresh tokens for clients that are authenticated using client secrets. The access token can be used to fetch short-lived credentials for the assigned AWS accounts or to access application APIs using bearer authentication."]
module CreateTokenRequest =
  struct
    type nonrec t =
      {
      clientId: ClientId.t
        [@ocaml.doc
          "The unique identifier string for the client or application. This value comes from the result of the RegisterClient API."];
      clientSecret: ClientSecret.t
        [@ocaml.doc
          "A secret string generated for the client. This value should come from the persisted result of the RegisterClient API."];
      grantType: GrantType.t
        [@ocaml.doc
          "Supports the following OAuth grant types: Authorization Code, Device Code, and Refresh Token. Specify one of the following values, depending on the grant type that you want: * Authorization Code - authorization_code * Device Code - urn:ietf:params:oauth:grant-type:device_code * Refresh Token - refresh_token"];
      deviceCode: DeviceCode.t option
        [@ocaml.doc
          "Used only when calling this API for the Device Code grant type. This short-lived code is used to identify this authorization request. This comes from the result of the StartDeviceAuthorization API."];
      code: AuthCode.t option
        [@ocaml.doc
          "Used only when calling this API for the Authorization Code grant type. The short-lived code is used to identify this authorization request."];
      refreshToken: RefreshToken.t option
        [@ocaml.doc
          "Used only when calling this API for the Refresh Token grant type. This token is used to refresh short-lived tokens, such as the access token, that might expire. For more information about the features and limitations of the current IAM Identity Center OIDC implementation, see Considerations for Using this Guide in the IAM Identity Center OIDC API Reference."];
      scope: Scopes.t option
        [@ocaml.doc
          "The list of scopes for which authorization is requested. This parameter has no effect; the access token will always include all scopes configured during client registration."];
      redirectUri: URI.t option
        [@ocaml.doc
          "Used only when calling this API for the Authorization Code grant type. This value specifies the location of the client or application that has registered to receive the authorization code."];
      codeVerifier: CodeVerifier.t option
        [@ocaml.doc
          "Used only when calling this API for the Authorization Code grant type. This value is generated by the client and presented to validate the original code challenge value the client passed at authorization time."]}
    let context_ = "CreateTokenRequest"
    let make ?deviceCode =
      fun ?code ->
        fun ?refreshToken ->
          fun ?scope ->
            fun ?redirectUri ->
              fun ?codeVerifier ->
                fun ~clientId ->
                  fun ~clientSecret ->
                    fun ~grantType ->
                      fun () ->
                        {
                          deviceCode;
                          code;
                          refreshToken;
                          scope;
                          redirectUri;
                          codeVerifier;
                          clientId;
                          clientSecret;
                          grantType
                        }
    let to_value x =
      structure_to_value
        [("clientId", (Some (ClientId.to_value x.clientId)));
        ("clientSecret", (Some (ClientSecret.to_value x.clientSecret)));
        ("grantType", (Some (GrantType.to_value x.grantType)));
        ("deviceCode", (Option.map x.deviceCode ~f:DeviceCode.to_value));
        ("code", (Option.map x.code ~f:AuthCode.to_value));
        ("refreshToken",
          (Option.map x.refreshToken ~f:RefreshToken.to_value));
        ("scope", (Option.map x.scope ~f:Scopes.to_value));
        ("redirectUri", (Option.map x.redirectUri ~f:URI.to_value));
        ("codeVerifier",
          (Option.map x.codeVerifier ~f:CodeVerifier.to_value))]
    let to_query v = to_query to_value v
    let of_xml xml_arg0 =
      let codeVerifier =
        (Option.map ~f:CodeVerifier.of_xml)
          (Xml.child xml_arg0 "codeVerifier") in
      let redirectUri =
        (Option.map ~f:URI.of_xml) (Xml.child xml_arg0 "redirectUri") in
      let scope = (Option.map ~f:Scopes.of_xml) (Xml.child xml_arg0 "scope") in
      let refreshToken =
        (Option.map ~f:RefreshToken.of_xml)
          (Xml.child xml_arg0 "refreshToken") in
      let code = (Option.map ~f:AuthCode.of_xml) (Xml.child xml_arg0 "code") in
      let deviceCode =
        (Option.map ~f:DeviceCode.of_xml) (Xml.child xml_arg0 "deviceCode") in
      let grantType =
        GrantType.of_xml
          (Xml.child_exn ~context:context_ xml_arg0 "grantType") in
      let clientSecret =
        ClientSecret.of_xml
          (Xml.child_exn ~context:context_ xml_arg0 "clientSecret") in
      let clientId =
        ClientId.of_xml (Xml.child_exn ~context:context_ xml_arg0 "clientId") in
      make ?codeVerifier ?redirectUri ?scope ?refreshToken ?code ?deviceCode
        ~grantType ~clientSecret ~clientId ()
    let of_string s = of_xml (Awso.Xml.parse_response s)[@@warning "-32"]
    let of_json json__ =
      let codeVerifier = field_map json__ "codeVerifier" CodeVerifier.of_json in
      let redirectUri = field_map json__ "redirectUri" URI.of_json in
      let scope = field_map json__ "scope" Scopes.of_json in
      let refreshToken = field_map json__ "refreshToken" RefreshToken.of_json in
      let code = field_map json__ "code" AuthCode.of_json in
      let deviceCode = field_map json__ "deviceCode" DeviceCode.of_json in
      let grantType = field_map_exn json__ "grantType" GrantType.of_json in
      let clientSecret =
        field_map_exn json__ "clientSecret" ClientSecret.of_json in
      let clientId = field_map_exn json__ "clientId" ClientId.of_json in
      make ?codeVerifier ?redirectUri ?scope ?refreshToken ?code ?deviceCode
        ~grantType ~clientSecret ~clientId ()
    let to_json v = composed_to_json to_value v
  end[@@ocaml.doc
       "Creates and returns access and refresh tokens for clients that are authenticated using client secrets. The access token can be used to fetch short-lived credentials for the assigned AWS accounts or to access application APIs using bearer authentication."]