Update Go AWS SDK to the latest version

vendor/github.com/aws/aws-sdk-go/service/organizations/doc.go

@@ -8,7 +8,7 @@
 // their resources.
 //
 // This guide provides descriptions of the Organizations API. For more information
-// about using this service, see the AWS Organizations User Guide (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_introduction.html).
+// about using this service, see the AWS Organizations User Guide (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_introduction.html).
 //
 // API Version
 //
@@ -27,7 +27,7 @@
 // We recommend that you use the AWS SDKs to make programmatic API calls to
 // Organizations. However, you also can use the Organizations Query API to make
 // direct calls to the Organizations web service. To learn more about the Organizations
-// Query API, see Making Query Requests (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_query-requests.html)
+// Query API, see Making Query Requests (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_query-requests.html)
 // in the AWS Organizations User Guide. Organizations supports GET and POST
 // requests for all actions. That is, the API does not require you to use GET
 // for some actions and POST for others. However, GET requests are subject to
@@ -46,7 +46,7 @@
 // Service to generate temporary security credentials, and use those credentials
 // to sign requests.
 //
-// To sign requests, we recommend that you use Signature Version 4 (http://docs.aws.amazon.com/general/latest/gr/signature-version-4.html).
+// To sign requests, we recommend that you use Signature Version 4 (https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html).
 // If you have an existing application that uses Signature Version 2, you do
 // not have to update it to use Signature Version 4. However, some operations
 // now require Signature Version 4. The documentation for operations that require
@@ -73,22 +73,17 @@
 // these parameters and commands:
 //
 //    * Use the following parameter with each command to specify both the endpoint
-//    and its region:
-//
-// --endpoint-url https://organizations.us-east-1.amazonaws.com
+//    and its region: --endpoint-url https://organizations.us-east-1.amazonaws.com
 //
 //    * Use the default endpoint, but configure your default region with this
-//    command:
-//
-// aws configure set default.region us-east-1
+//    command: aws configure set default.region us-east-1
 //
 //    * Use the following parameter with each command to specify the endpoint:
-//
-// --region us-east-1
+//    --region us-east-1
 //
 // For the various SDKs used to call the APIs, see the documentation for the
 // SDK of interest to learn how to direct the requests to a specific endpoint.
-// For more information, see Regions and Endpoints (http://docs.aws.amazon.com/general/latest/gr/rande.html#sts_region)
+// For more information, see Regions and Endpoints (https://docs.aws.amazon.com/general/latest/gr/rande.html#sts_region)
 // in the AWS General Reference.
 //
 // How examples are presented
@@ -109,10 +104,10 @@
 // requests were successfully made to Organizations, who made the request, when
 // it was made, and so on. For more about AWS Organizations and its support
 // for AWS CloudTrail, see Logging AWS Organizations Events with AWS CloudTrail
-// (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_cloudtrail-integration.html)
+// (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_monitoring.html#orgs_cloudtrail-integration)
 // in the AWS Organizations User Guide. To learn more about CloudTrail, including
 // how to turn it on and find your log files, see the AWS CloudTrail User Guide
-// (http://docs.aws.amazon.com/awscloudtrail/latest/userguide/what_is_cloud_trail_top_level.html).
+// (https://docs.aws.amazon.com/awscloudtrail/latest/userguide/what_is_cloud_trail_top_level.html).
 //
 // See https://docs.aws.amazon.com/goto/WebAPI/organizations-2016-11-28 for more information on this service.
 //

vendor/github.com/aws/aws-sdk-go/service/organizations/errors.go

@@ -7,7 +7,7 @@ const (
 	// ErrCodeAWSOrganizationsNotInUseException for service response error code
 	// "AWSOrganizationsNotInUseException".
 	//
-	// Your account is not a member of an organization. To make this request, you
+	// Your account isn't a member of an organization. To make this request, you
 	// must use the credentials of an account that belongs to an organization.
 	ErrCodeAWSOrganizationsNotInUseException = "AWSOrganizationsNotInUseException"
 
@@ -17,26 +17,35 @@ const (
 	// You don't have permissions to perform the requested operation. The user or
 	// role that is making the request must have at least one IAM permissions policy
 	// attached that grants the required permissions. For more information, see
-	// Access Management (http://docs.aws.amazon.com/IAM/latest/UserGuide/access.html)
+	// Access Management (https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html)
 	// in the IAM User Guide.
 	ErrCodeAccessDeniedException = "AccessDeniedException"
 
 	// ErrCodeAccessDeniedForDependencyException for service response error code
 	// "AccessDeniedForDependencyException".
 	//
-	// The operation you attempted requires you to have the iam:CreateServiceLinkedRole
-	// so that Organizations can create the required service-linked role. You do
-	// not have that permission.
+	// The operation that you attempted requires you to have the iam:CreateServiceLinkedRole
+	// for organizations.amazonaws.com permission so that AWS Organizations can
+	// create the required service-linked role. You don't have that permission.
 	ErrCodeAccessDeniedForDependencyException = "AccessDeniedForDependencyException"
 
 	// ErrCodeAccountNotFoundException for service response error code
 	// "AccountNotFoundException".
 	//
 	// We can't find an AWS account with the AccountId that you specified, or the
-	// account whose credentials you used to make this request is not a member of
+	// account whose credentials you used to make this request isn't a member of
 	// an organization.
 	ErrCodeAccountNotFoundException = "AccountNotFoundException"
 
+	// ErrCodeAccountOwnerNotVerifiedException for service response error code
+	// "AccountOwnerNotVerifiedException".
+	//
+	// You can't invite an existing account to your organization until you verify
+	// that you own the email address associated with the master account. For more
+	// information, see Email Address Verification (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_create.html#about-email-verification)
+	// in the AWS Organizations User Guide.
+	ErrCodeAccountOwnerNotVerifiedException = "AccountOwnerNotVerifiedException"
+
 	// ErrCodeAlreadyInOrganizationException for service response error code
 	// "AlreadyInOrganizationException".
 	//
@@ -62,78 +71,47 @@ const (
 	// "ConstraintViolationException".
 	//
 	// Performing this operation violates a minimum or maximum value limit. For
-	// example, attempting to removing the last SCP from an OU or root, inviting
-	// or creating too many accounts to the organization, or attaching too many
-	// policies to an account, OU, or root. This exception includes a reason that
-	// contains additional information about the violated limit:
+	// example, attempting to remove the last service control policy (SCP) from
+	// an OU or root, inviting or creating too many accounts to the organization,
+	// or attaching too many policies to an account, OU, or root. This exception
+	// includes a reason that contains additional information about the violated
+	// limit.
 	//
 	// Some of the reasons in the following list might not be applicable to this
 	// specific API or operation:
 	//
-	// ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on the number
-	// of accounts in an organization. If you need more accounts, contact AWS Support
-	// to request an increase in your limit.
-	//
-	// Or, The number of invitations that you tried to send would cause you to exceed
-	// the limit of accounts in your organization. Send fewer invitations, or contact
-	// AWS Support to request an increase in the number of accounts.
-	//
-	// Note: deleted and closed accounts still count toward your limit.
-	//
-	// If you get an exception that indicates that you exceeded your account limits
-	// for the organization or that you can"t add an account because your organization
-	// is still initializing, please contact  AWS Customer Support (https://console.aws.amazon.com/support/home#/).
-	//
-	//    * HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of
-	//    handshakes you can send in one day.
-	//
-	//    * OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of organizational
-	//    units you can have in an organization.
-	//
-	//    * OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an organizational unit
-	//    tree that is too many levels deep.
-	//
-	//    * POLICY_NUMBER_LIMIT_EXCEEDED. You attempted to exceed the number of
-	//    policies that you can have in an organization.
-	//
-	//    * MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the
-	//    number of policies of a certain type that can be attached to an entity
-	//    at one time.
-	//
-	//    * MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a
-	//    policy from an entity that would cause the entity to have fewer than the
-	//    minimum number of policies of a certain type required.
-	//
 	//    * ACCOUNT_CANNOT_LEAVE_WITHOUT_EULA: You attempted to remove an account
-	//    from the organization that does not yet have enough information to exist
-	//    as a stand-alone account. This account requires you to first agree to
-	//    the AWS Customer Agreement. Follow the steps at To leave an organization
-	//    when all required account information has not yet been provided (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_remove.html#leave-without-all-info)
+	//    from the organization that doesn't yet have enough information to exist
+	//    as a standalone account. This account requires you to first agree to the
+	//    AWS Customer Agreement. Follow the steps at To leave an organization when
+	//    all required account information has not yet been provided (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_remove.html#leave-without-all-info)
 	//    in the AWS Organizations User Guide.
 	//
 	//    * ACCOUNT_CANNOT_LEAVE_WITHOUT_PHONE_VERIFICATION: You attempted to remove
-	//    an account from the organization that does not yet have enough information
-	//    to exist as a stand-alone account. This account requires you to first
-	//    complete phone verification. Follow the steps at To leave an organization
-	//    when all required account information has not yet been provided (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_remove.html#leave-without-all-info)
-	//    in the AWS Organizations User Guide.
-	//
-	//    * MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization
-	//    with this account, you first must associate a payment instrument, such
-	//    as a credit card, with the account. Follow the steps at To leave an organization
-	//    when all required account information has not yet been provided (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_remove.html#leave-without-all-info)
-	//    in the AWS Organizations User Guide.
-	//
-	//    * MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation
-	//    with this member account, you first must associate a payment instrument,
-	//    such as a credit card, with the account. Follow the steps at To leave
-	//    an organization when all required account information has not yet been
-	//    provided (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_remove.html#leave-without-all-info)
+	//    an account from the organization that doesn't yet have enough information
+	//    to exist as a standalone account. This account requires you to first complete
+	//    phone verification. Follow the steps at To leave an organization when
+	//    all required account information has not yet been provided (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_remove.html#leave-without-all-info)
 	//    in the AWS Organizations User Guide.
 	//
 	//    * ACCOUNT_CREATION_RATE_LIMIT_EXCEEDED: You attempted to exceed the number
 	//    of accounts that you can create in one day.
 	//
+	//    * ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on
+	//    the number of accounts in an organization. If you need more accounts,
+	//    contact AWS Support (https://console.aws.amazon.com/support/home#/) to
+	//    request an increase in your limit. Or the number of invitations that you
+	//    tried to send would cause you to exceed the limit of accounts in your
+	//    organization. Send fewer invitations or contact AWS Support to request
+	//    an increase in the number of accounts. Deleted and closed accounts still
+	//    count toward your limit. If you get receive this exception when running
+	//    a command immediately after creating the organization, wait one hour and
+	//    try again. If after an hour it continues to fail with this error, contact
+	//    AWS Support (https://console.aws.amazon.com/support/home#/).
+	//
+	//    * HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of
+	//    handshakes that you can send in one day.
+	//
 	//    * MASTER_ACCOUNT_ADDRESS_DOES_NOT_MATCH_MARKETPLACE: To create an account
 	//    in this organization, you first must migrate the organization's master
 	//    account to the marketplace that corresponds to the master account's address.
@@ -144,6 +122,50 @@ const (
 	//    * MASTER_ACCOUNT_MISSING_CONTACT_INFO: To complete this operation, you
 	//    must first provide contact a valid address and phone number for the master
 	//    account. Then try the operation again.
+	//
+	//    * MASTER_ACCOUNT_NOT_GOVCLOUD_ENABLED: To complete this operation, the
+	//    master account must have an associated account in the AWS GovCloud (US-West)
+	//    Region. For more information, see AWS Organizations (http://docs.aws.amazon.com/govcloud-us/latest/UserGuide/govcloud-organizations.html)
+	//    in the AWS GovCloud User Guide.
+	//
+	//    * MASTER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To create an organization
+	//    with this master account, you first must associate a valid payment instrument,
+	//    such as a credit card, with the account. Follow the steps at To leave
+	//    an organization when all required account information has not yet been
+	//    provided (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_remove.html#leave-without-all-info)
+	//    in the AWS Organizations User Guide.
+	//
+	//    * MAX_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to exceed the
+	//    number of policies of a certain type that can be attached to an entity
+	//    at one time.
+	//
+	//    * MAX_TAG_LIMIT_EXCEEDED: You have exceeded the number of tags allowed
+	//    on this resource.
+	//
+	//    * MEMBER_ACCOUNT_PAYMENT_INSTRUMENT_REQUIRED: To complete this operation
+	//    with this member account, you first must associate a valid payment instrument,
+	//    such as a credit card, with the account. Follow the steps at To leave
+	//    an organization when all required account information has not yet been
+	//    provided (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_remove.html#leave-without-all-info)
+	//    in the AWS Organizations User Guide.
+	//
+	//    * MIN_POLICY_TYPE_ATTACHMENT_LIMIT_EXCEEDED: You attempted to detach a
+	//    policy from an entity that would cause the entity to have fewer than the
+	//    minimum number of policies of a certain type required.
+	//
+	//    * OU_DEPTH_LIMIT_EXCEEDED: You attempted to create an OU tree that is
+	//    too many levels deep.
+	//
+	//    * ORGANIZATION_NOT_IN_ALL_FEATURES_MODE: You attempted to perform an operation
+	//    that requires the organization to be configured to support all features.
+	//    An organization that supports only consolidated billing features can't
+	//    perform this operation.
+	//
+	//    * OU_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the number of OUs
+	//    that you can have in an organization.
+	//
+	//    * POLICY_NUMBER_LIMIT_EXCEEDED. You attempted to exceed the number of
+	//    policies that you can have in an organization.
 	ErrCodeConstraintViolationException = "ConstraintViolationException"
 
 	// ErrCodeCreateAccountStatusNotFoundException for service response error code
@@ -179,7 +201,7 @@ const (
 	// ErrCodeDuplicateOrganizationalUnitException for service response error code
 	// "DuplicateOrganizationalUnitException".
 	//
-	// An organizational unit (OU) with the same name already exists.
+	// An OU with the same name already exists.
 	ErrCodeDuplicateOrganizationalUnitException = "DuplicateOrganizationalUnitException"
 
 	// ErrCodeDuplicatePolicyAttachmentException for service response error code
@@ -197,8 +219,10 @@ const (
 	// ErrCodeFinalizingOrganizationException for service response error code
 	// "FinalizingOrganizationException".
 	//
-	// AWS Organizations could not finalize the creation of your organization. Try
-	// again later. If this persists, contact AWS customer support.
+	// AWS Organizations couldn't perform the operation because your organization
+	// hasn't finished initializing. This can take up to an hour. Try again later.
+	// If after one hour you continue to receive this error, contact AWS Support
+	// (https://console.aws.amazon.com/support/home#/).
 	ErrCodeFinalizingOrganizationException = "FinalizingOrganizationException"
 
 	// ErrCodeHandshakeAlreadyInStateException for service response error code
@@ -218,30 +242,24 @@ const (
 	// specific API or operation:
 	//
 	//    * ACCOUNT_NUMBER_LIMIT_EXCEEDED: You attempted to exceed the limit on
-	//    the number of accounts in an organization. Note: deleted and closed accounts
-	//    still count toward your limit.
-	//
-	// If you get an exception that indicates that you exceeded your account limits
-	//    for the organization or that you can"t add an account because your organization
-	//    is still initializing, please contact  AWS Customer Support (https://console.aws.amazon.com/support/home#/).
-	//
-	//    * HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of
-	//    handshakes you can send in one day.
+	//    the number of accounts in an organization. Note that deleted and closed
+	//    accounts still count toward your limit. If you get this exception immediately
+	//    after creating the organization, wait one hour and try again. If after
+	//    an hour it continues to fail with this error, contact AWS Support (https://console.aws.amazon.com/support/home#/).
 	//
 	//    * ALREADY_IN_AN_ORGANIZATION: The handshake request is invalid because
 	//    the invited account is already a member of an organization.
 	//
-	//    * ORGANIZATION_ALREADY_HAS_ALL_FEATURES: The handshake request is invalid
-	//    because the organization has already enabled all features.
+	//    * HANDSHAKE_RATE_LIMIT_EXCEEDED: You attempted to exceed the number of
+	//    handshakes that you can send in one day.
 	//
-	//    * INVITE_DISABLED_DURING_ENABLE_ALL_FEATURES: You cannot issue new invitations
-	//    to join an organization while it is in the process of enabling all features.
+	//    * INVITE_DISABLED_DURING_ENABLE_ALL_FEATURES: You can't issue new invitations
+	//    to join an organization while it's in the process of enabling all features.
 	//    You can resume inviting accounts after you finalize the process when all
 	//    accounts have agreed to the change.
 	//
-	//    * PAYMENT_INSTRUMENT_REQUIRED: You cannot complete the operation with
-	//    an account that does not have a payment instrument, such as a credit card,
-	//    associated with it.
+	//    * ORGANIZATION_ALREADY_HAS_ALL_FEATURES: The handshake request is invalid
+	//    because the organization has already enabled all features.
 	//
 	//    * ORGANIZATION_FROM_DIFFERENT_SELLER_OF_RECORD: The request failed because
 	//    the account is from a different marketplace than the accounts in the organization.
@@ -251,6 +269,10 @@ const (
 	//
 	//    * ORGANIZATION_MEMBERSHIP_CHANGE_RATE_LIMIT_EXCEEDED: You attempted to
 	//    change the membership of an account too quickly after its previous change.
+	//
+	//    * PAYMENT_INSTRUMENT_REQUIRED: You can't complete the operation with an
+	//    account that doesn't have a payment instrument, such as a credit card,
+	//    associated with it.
 	ErrCodeHandshakeConstraintViolationException = "HandshakeConstraintViolationException"
 
 	// ErrCodeHandshakeNotFoundException for service response error code
@@ -263,7 +285,7 @@ const (
 	// "InvalidHandshakeTransitionException".
 	//
 	// You can't perform the operation on the handshake in its current state. For
-	// example, you can't cancel a handshake that was already accepted, or accept
+	// example, you can't cancel a handshake that was already accepted or accept
 	// a handshake that was already declined.
 	ErrCodeInvalidHandshakeTransitionException = "InvalidHandshakeTransitionException"
 
@@ -278,11 +300,11 @@ const (
 	// specific API or operation:
 	//
 	//    * IMMUTABLE_POLICY: You specified a policy that is managed by AWS and
-	//    cannot be modified.
+	//    can't be modified.
 	//
 	//    * INPUT_REQUIRED: You must include a value for all required parameters.
 	//
-	//    * INVALID_ENUM: You specified a value that is not valid for that parameter.
+	//    * INVALID_ENUM: You specified an invalid value.
 	//
 	//    * INVALID_FULL_NAME_TARGET: You specified a full name that contains invalid
 	//    characters.
@@ -290,26 +312,31 @@ const (
 	//    * INVALID_LIST_MEMBER: You provided a list to a parameter that contains
 	//    at least one invalid value.
 	//
-	//    * INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account,
-	//    organization, or email) as a party.
-	//
 	//    * INVALID_PAGINATION_TOKEN: Get the value for the NextToken parameter
 	//    from the response to a previous call of the operation.
 	//
+	//    * INVALID_PARTY_TYPE_TARGET: You specified the wrong type of entity (account,
+	//    organization, or email) as a party.
+	//
 	//    * INVALID_PATTERN: You provided a value that doesn't match the required
 	//    pattern.
 	//
 	//    * INVALID_PATTERN_TARGET_ID: You specified a policy target ID that doesn't
 	//    match the required pattern.
 	//
-	//    * INVALID_ROLE_NAME: You provided a role name that is not valid. A role
-	//    name can’t begin with the reserved prefix 'AWSServiceRoleFor'.
+	//    * INVALID_ROLE_NAME: You provided a role name that isn't valid. A role
+	//    name can't begin with the reserved prefix AWSServiceRoleFor.
 	//
-	//    * INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid ARN for the
-	//    organization.
+	//    * INVALID_SYNTAX_ORGANIZATION_ARN: You specified an invalid Amazon Resource
+	//    Name (ARN) for the organization.
 	//
 	//    * INVALID_SYNTAX_POLICY_ID: You specified an invalid policy ID.
 	//
+	//    * INVALID_SYSTEM_TAGS_PARAMETER: You specified a tag key that is a system
+	//    tag. You can’t add, edit, or delete system tag keys because they're
+	//    reserved for AWS use. System tags don’t count against your tags per
+	//    resource limit.
+	//
 	//    * MAX_FILTER_LIMIT_EXCEEDED: You can specify only one filter parameter
 	//    for the operation.
 	//
@@ -332,9 +359,9 @@ const (
 	// ErrCodeMalformedPolicyDocumentException for service response error code
 	// "MalformedPolicyDocumentException".
 	//
-	// The provided policy document does not meet the requirements of the specified
+	// The provided policy document doesn't meet the requirements of the specified
 	// policy type. For example, the syntax might be incorrect. For details about
-	// service control policy syntax, see Service Control Policy Syntax (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_reference_scp-syntax.html)
+	// service control policy syntax, see Service Control Policy Syntax (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_reference_scp-syntax.html)
 	// in the AWS Organizations User Guide.
 	ErrCodeMalformedPolicyDocumentException = "MalformedPolicyDocumentException"
 
@@ -350,37 +377,33 @@ const (
 	// "OrganizationNotEmptyException".
 	//
 	// The organization isn't empty. To delete an organization, you must first remove
-	// all accounts except the master account, delete all organizational units (OUs),
-	// and delete all policies.
+	// all accounts except the master account, delete all OUs, and delete all policies.
 	ErrCodeOrganizationNotEmptyException = "OrganizationNotEmptyException"
 
 	// ErrCodeOrganizationalUnitNotEmptyException for service response error code
 	// "OrganizationalUnitNotEmptyException".
 	//
-	// The specified organizational unit (OU) is not empty. Move all accounts to
-	// another root or to other OUs, remove all child OUs, and then try the operation
-	// again.
+	// The specified OU is not empty. Move all accounts to another root or to other
+	// OUs, remove all child OUs, and try the operation again.
 	ErrCodeOrganizationalUnitNotEmptyException = "OrganizationalUnitNotEmptyException"
 
 	// ErrCodeOrganizationalUnitNotFoundException for service response error code
 	// "OrganizationalUnitNotFoundException".
 	//
-	// We can't find an organizational unit (OU) with the OrganizationalUnitId that
-	// you specified.
+	// We can't find an OU with the OrganizationalUnitId that you specified.
 	ErrCodeOrganizationalUnitNotFoundException = "OrganizationalUnitNotFoundException"
 
 	// ErrCodeParentNotFoundException for service response error code
 	// "ParentNotFoundException".
 	//
-	// We can't find a root or organizational unit (OU) with the ParentId that you
-	// specified.
+	// We can't find a root or OU with the ParentId that you specified.
 	ErrCodeParentNotFoundException = "ParentNotFoundException"
 
 	// ErrCodePolicyInUseException for service response error code
 	// "PolicyInUseException".
 	//
 	// The policy is attached to one or more entities. You must detach it from all
-	// roots, organizational units (OUs), and accounts before performing this operation.
+	// roots, OUs, and accounts before performing this operation.
 	ErrCodePolicyInUseException = "PolicyInUseException"
 
 	// ErrCodePolicyNotAttachedException for service response error code
@@ -405,19 +428,19 @@ const (
 	// "PolicyTypeNotAvailableForOrganizationException".
 	//
 	// You can't use the specified policy type with the feature set currently enabled
-	// for this organization. For example, you can enable service control policies
-	// (SCPs) only after you enable all features in the organization. For more information,
-	// see Enabling and Disabling a Policy Type on a Root (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies.html#enable_policies_on_root)
+	// for this organization. For example, you can enable SCPs only after you enable
+	// all features in the organization. For more information, see Enabling and
+	// Disabling a Policy Type on a Root (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies.html#enable_policies_on_root)
 	// in the AWS Organizations User Guide.
 	ErrCodePolicyTypeNotAvailableForOrganizationException = "PolicyTypeNotAvailableForOrganizationException"
 
 	// ErrCodePolicyTypeNotEnabledException for service response error code
 	// "PolicyTypeNotEnabledException".
 	//
-	// The specified policy type is not currently enabled in this root. You cannot
+	// The specified policy type isn't currently enabled in this root. You can't
 	// attach policies of the specified type to entities in a root until you enable
 	// that type in the root. For more information, see Enabling All Features in
-	// Your Organization (http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_org_support-all-features.html)
+	// Your Organization (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_org_support-all-features.html)
 	// in the AWS Organizations User Guide.
 	ErrCodePolicyTypeNotEnabledException = "PolicyTypeNotEnabledException"
 
@@ -449,7 +472,17 @@ const (
 	// ErrCodeTooManyRequestsException for service response error code
 	// "TooManyRequestsException".
 	//
-	// You've sent too many requests in too short a period of time. The limit helps
-	// protect against denial-of-service attacks. Try again later.
+	// You have sent too many requests in too short a period of time. The limit
+	// helps protect against denial-of-service attacks. Try again later.
+	//
+	// For information on limits that affect AWS Organizations, see Limits of AWS
+	// Organizations (https://docs.aws.amazon.com/organizations/latest/userguide/orgs_reference_limits.html)
+	// in the AWS Organizations User Guide.
 	ErrCodeTooManyRequestsException = "TooManyRequestsException"
+
+	// ErrCodeUnsupportedAPIEndpointException for service response error code
+	// "UnsupportedAPIEndpointException".
+	//
+	// This action isn't available in the current Region.
+	ErrCodeUnsupportedAPIEndpointException = "UnsupportedAPIEndpointException"
 )

vendor/github.com/aws/aws-sdk-go/service/organizations/examples_test.go

@@ -79,7 +79,6 @@ func ExampleOrganizations_AcceptHandshake_shared00() {
 // To attach a policy to an OU
 //
 // The following example shows how to attach a service control policy (SCP) to an OU:
-//
 func ExampleOrganizations_AttachPolicy_shared00() {
 	svc := organizations.New(session.New())
 	input := &organizations.AttachPolicyInput{
@@ -130,7 +129,6 @@ func ExampleOrganizations_AttachPolicy_shared00() {
 // To attach a policy to an account
 //
 // The following example shows how to attach a service control policy (SCP) to an account:
-//
 func ExampleOrganizations_AttachPolicy_shared01() {
 	svc := organizations.New(session.New())
 	input := &organizations.AttachPolicyInput{
@@ -183,7 +181,6 @@ func ExampleOrganizations_AttachPolicy_shared01() {
 // Bill previously sent an invitation to Susan's account to join his organization. He
 // changes his mind and decides to cancel the invitation before Susan accepts it. The
 // following example shows Bill's cancellation:
-//
 func ExampleOrganizations_CancelHandshake_shared00() {
 	svc := organizations.New(session.New())
 	input := &organizations.CancelHandshakeInput{
@@ -229,10 +226,9 @@ func ExampleOrganizations_CancelHandshake_shared00() {
 // The owner of an organization creates a member account in the organization. The following
 // example shows that when the organization owner creates the member account, the account
 // is preconfigured with the name "Production Account" and an owner email address of
-// susan@example.com.  An IAM role is automatically created using the default name because
+// susan@example.com. An IAM role is automatically created using the default name because
 // the roleName parameter is not used. AWS Organizations sends Susan a "Welcome to AWS"
 // email:
-//
 func ExampleOrganizations_CreateAccount_shared00() {
 	svc := organizations.New(session.New())
 	input := &organizations.CreateAccountInput{
@@ -260,6 +256,8 @@ func ExampleOrganizations_CreateAccount_shared00() {
 				fmt.Println(organizations.ErrCodeServiceException, aerr.Error())
 			case organizations.ErrCodeTooManyRequestsException:
 				fmt.Println(organizations.ErrCodeTooManyRequestsException, aerr.Error())
+			case organizations.ErrCodeUnsupportedAPIEndpointException:
+				fmt.Println(organizations.ErrCodeUnsupportedAPIEndpointException, aerr.Error())
 			default:
 				fmt.Println(aerr.Error())
 			}
@@ -280,7 +278,6 @@ func ExampleOrganizations_CreateAccount_shared00() {
 // The following example shows that the account becomes the master account in the new
 // organization. Because he does not specify a feature set, the new organization defaults
 // to all features enabled and service control policies enabled on the root:
-//
 func ExampleOrganizations_CreateOrganization_shared00() {
 	svc := organizations.New(session.New())
 	input := &organizations.CreateOrganizationInput{}
@@ -324,7 +321,6 @@ func ExampleOrganizations_CreateOrganization_shared00() {
 // In the following example, Bill creates an organization using credentials from account
 // 111111111111, and configures the organization to support only the consolidated billing
 // feature set:
-//
 func ExampleOrganizations_CreateOrganization_shared01() {
 	svc := organizations.New(session.New())
 	input := &organizations.CreateOrganizationInput{
@@ -369,7 +365,6 @@ func ExampleOrganizations_CreateOrganization_shared01() {
 //
 // The following example shows how to create an OU that is named AccountingOU. The new
 // OU is directly under the root.:
-//
 func ExampleOrganizations_CreateOrganizationalUnit_shared00() {
 	svc := organizations.New(session.New())
 	input := &organizations.CreateOrganizationalUnitInput{
@@ -420,7 +415,6 @@ func ExampleOrganizations_CreateOrganizationalUnit_shared00() {
 // in the policy. The parameter string is escaped with backslashes to ensure that the
 // embedded double quotes in the JSON policy are treated as literals in the parameter,
 // which itself is surrounded by double quotes:
-//
 func ExampleOrganizations_CreatePolicy_shared00() {
 	svc := organizations.New(session.New())
 	input := &organizations.CreatePolicyInput{
@@ -517,7 +511,6 @@ func ExampleOrganizations_DeclineHandshake_shared00() {
 //
 // The following example shows how to delete an OU. The example assumes that you previously
 // removed all accounts and other OUs from the OU:
-//
 func ExampleOrganizations_DeleteOrganizationalUnit_shared00() {
 	svc := organizations.New(session.New())
 	input := &organizations.DeleteOrganizationalUnitInput{
@@ -562,7 +555,6 @@ func ExampleOrganizations_DeleteOrganizationalUnit_shared00() {
 //
 // The following example shows how to delete a policy from an organization. The example
 // assumes that you previously detached the policy from all entities:
-//
 func ExampleOrganizations_DeletePolicy_shared00() {
 	svc := organizations.New(session.New())
 	input := &organizations.DeletePolicyInput{
@@ -671,6 +663,8 @@ func ExampleOrganizations_DescribeCreateAccountStatus_shared00() {
 				fmt.Println(organizations.ErrCodeServiceException, aerr.Error())
 			case organizations.ErrCodeTooManyRequestsException:
 				fmt.Println(organizations.ErrCodeTooManyRequestsException, aerr.Error())
+			case organizations.ErrCodeUnsupportedAPIEndpointException:
+				fmt.Println(organizations.ErrCodeUnsupportedAPIEndpointException, aerr.Error())
 			default:
 				fmt.Println(aerr.Error())
 			}
@@ -1052,6 +1046,8 @@ func ExampleOrganizations_InviteAccountToOrganization_shared00() {
 				fmt.Println(organizations.ErrCodeAccessDeniedException, aerr.Error())
 			case organizations.ErrCodeAWSOrganizationsNotInUseException:
 				fmt.Println(organizations.ErrCodeAWSOrganizationsNotInUseException, aerr.Error())
+			case organizations.ErrCodeAccountOwnerNotVerifiedException:
+				fmt.Println(organizations.ErrCodeAccountOwnerNotVerifiedException, aerr.Error())
 			case organizations.ErrCodeConcurrentModificationException:
 				fmt.Println(organizations.ErrCodeConcurrentModificationException, aerr.Error())
 			case organizations.ErrCodeHandshakeConstraintViolationException:
@@ -1264,6 +1260,8 @@ func ExampleOrganizations_ListCreateAccountStatus_shared00() {
 				fmt.Println(organizations.ErrCodeServiceException, aerr.Error())
 			case organizations.ErrCodeTooManyRequestsException:
 				fmt.Println(organizations.ErrCodeTooManyRequestsException, aerr.Error())
+			case organizations.ErrCodeUnsupportedAPIEndpointException:
+				fmt.Println(organizations.ErrCodeUnsupportedAPIEndpointException, aerr.Error())
 			default:
 				fmt.Println(aerr.Error())
 			}
@@ -1304,6 +1302,8 @@ func ExampleOrganizations_ListCreateAccountStatus_shared01() {
 				fmt.Println(organizations.ErrCodeServiceException, aerr.Error())
 			case organizations.ErrCodeTooManyRequestsException:
 				fmt.Println(organizations.ErrCodeTooManyRequestsException, aerr.Error())
+			case organizations.ErrCodeUnsupportedAPIEndpointException:
+				fmt.Println(organizations.ErrCodeUnsupportedAPIEndpointException, aerr.Error())
 			default:
 				fmt.Println(aerr.Error())
 			}

vendor/github.com/aws/aws-sdk-go/service/organizations/organizationsiface/interface.go

@@ -76,6 +76,10 @@ type OrganizationsAPI interface {
 	CreateAccountWithContext(aws.Context, *organizations.CreateAccountInput, ...request.Option) (*organizations.CreateAccountOutput, error)
 	CreateAccountRequest(*organizations.CreateAccountInput) (*request.Request, *organizations.CreateAccountOutput)
 
+	CreateGovCloudAccount(*organizations.CreateGovCloudAccountInput) (*organizations.CreateGovCloudAccountOutput, error)
+	CreateGovCloudAccountWithContext(aws.Context, *organizations.CreateGovCloudAccountInput, ...request.Option) (*organizations.CreateGovCloudAccountOutput, error)
+	CreateGovCloudAccountRequest(*organizations.CreateGovCloudAccountInput) (*request.Request, *organizations.CreateGovCloudAccountOutput)
+
 	CreateOrganization(*organizations.CreateOrganizationInput) (*organizations.CreateOrganizationOutput, error)
 	CreateOrganizationWithContext(aws.Context, *organizations.CreateOrganizationInput, ...request.Option) (*organizations.CreateOrganizationOutput, error)
 	CreateOrganizationRequest(*organizations.CreateOrganizationInput) (*request.Request, *organizations.CreateOrganizationOutput)
@@ -244,6 +248,13 @@ type OrganizationsAPI interface {
 	ListRootsPages(*organizations.ListRootsInput, func(*organizations.ListRootsOutput, bool) bool) error
 	ListRootsPagesWithContext(aws.Context, *organizations.ListRootsInput, func(*organizations.ListRootsOutput, bool) bool, ...request.Option) error
 
+	ListTagsForResource(*organizations.ListTagsForResourceInput) (*organizations.ListTagsForResourceOutput, error)
+	ListTagsForResourceWithContext(aws.Context, *organizations.ListTagsForResourceInput, ...request.Option) (*organizations.ListTagsForResourceOutput, error)
+	ListTagsForResourceRequest(*organizations.ListTagsForResourceInput) (*request.Request, *organizations.ListTagsForResourceOutput)
+
+	ListTagsForResourcePages(*organizations.ListTagsForResourceInput, func(*organizations.ListTagsForResourceOutput, bool) bool) error
+	ListTagsForResourcePagesWithContext(aws.Context, *organizations.ListTagsForResourceInput, func(*organizations.ListTagsForResourceOutput, bool) bool, ...request.Option) error
+
 	ListTargetsForPolicy(*organizations.ListTargetsForPolicyInput) (*organizations.ListTargetsForPolicyOutput, error)
 	ListTargetsForPolicyWithContext(aws.Context, *organizations.ListTargetsForPolicyInput, ...request.Option) (*organizations.ListTargetsForPolicyOutput, error)
 	ListTargetsForPolicyRequest(*organizations.ListTargetsForPolicyInput) (*request.Request, *organizations.ListTargetsForPolicyOutput)
@@ -259,6 +270,14 @@ type OrganizationsAPI interface {
 	RemoveAccountFromOrganizationWithContext(aws.Context, *organizations.RemoveAccountFromOrganizationInput, ...request.Option) (*organizations.RemoveAccountFromOrganizationOutput, error)
 	RemoveAccountFromOrganizationRequest(*organizations.RemoveAccountFromOrganizationInput) (*request.Request, *organizations.RemoveAccountFromOrganizationOutput)
 
+	TagResource(*organizations.TagResourceInput) (*organizations.TagResourceOutput, error)
+	TagResourceWithContext(aws.Context, *organizations.TagResourceInput, ...request.Option) (*organizations.TagResourceOutput, error)
+	TagResourceRequest(*organizations.TagResourceInput) (*request.Request, *organizations.TagResourceOutput)
+
+	UntagResource(*organizations.UntagResourceInput) (*organizations.UntagResourceOutput, error)
+	UntagResourceWithContext(aws.Context, *organizations.UntagResourceInput, ...request.Option) (*organizations.UntagResourceOutput, error)
+	UntagResourceRequest(*organizations.UntagResourceInput) (*request.Request, *organizations.UntagResourceOutput)
+
 	UpdateOrganizationalUnit(*organizations.UpdateOrganizationalUnitInput) (*organizations.UpdateOrganizationalUnitOutput, error)
 	UpdateOrganizationalUnitWithContext(aws.Context, *organizations.UpdateOrganizationalUnitInput, ...request.Option) (*organizations.UpdateOrganizationalUnitOutput, error)
 	UpdateOrganizationalUnitRequest(*organizations.UpdateOrganizationalUnitInput) (*request.Request, *organizations.UpdateOrganizationalUnitOutput)

vendor/github.com/aws/aws-sdk-go/service/organizations/service.go

@@ -29,8 +29,9 @@ var initRequest func(*request.Request)
 
 // Service information constants
 const (
-	ServiceName = "organizations" // Service endpoint prefix API calls made to.
-	EndpointsID = ServiceName     // Service ID for Regions and Endpoints metadata.
+	ServiceName = "organizations" // Name of service.
+	EndpointsID = ServiceName     // ID to lookup a service endpoint with.
+	ServiceID   = "Organizations" // ServiceID is a unique identifer of a specific service.
 )
 
 // New creates a new instance of the Organizations client with a session.
@@ -55,6 +56,7 @@ func newClient(cfg aws.Config, handlers request.Handlers, endpoint, signingRegio
 			cfg,
 			metadata.ClientInfo{
 				ServiceName:   ServiceName,
+				ServiceID:     ServiceID,
 				SigningName:   signingName,
 				SigningRegion: signingRegion,
 				Endpoint:      endpoint,