AWS Transfer Family

2026/04/24 - AWS Transfer Family - 2 updated api methods

Changes  AWS Transfer Family now support configurable IP address types for Web Apps of type VPC, enabling customers to select IPv4-only or dual-stack (IPv4 and IPv6) configurations based on their network requirements.

CreateWebApp (updated) Link ¶
Changes (request) 
{'EndpointDetails': {'Vpc': {'IpAddressType': 'IPV4 | DUALSTACK'}}}

Creates a web app based on specified parameters, and returns the ID for the new web app. You can configure the web app to be publicly accessible or hosted within a VPC.

For more information about using VPC endpoints with Transfer Family, see Create a Transfer Family web app in a VPC.

See also: AWS API Documentation

Request Syntax

client.create_web_app(
    IdentityProviderDetails={
        'IdentityCenterConfig': {
            'InstanceArn': 'string',
            'Role': 'string'
        }
    },
    AccessEndpoint='string',
    WebAppUnits={
        'Provisioned': 123
    },
    Tags=[
        {
            'Key': 'string',
            'Value': 'string'
        },
    ],
    WebAppEndpointPolicy='FIPS'|'STANDARD',
    EndpointDetails={
        'Vpc': {
            'SubnetIds': [
                'string',
            ],
            'VpcId': 'string',
            'SecurityGroupIds': [
                'string',
            ],
            'IpAddressType': 'IPV4'|'DUALSTACK'
        }
    }
)
type IdentityProviderDetails:

dict

param IdentityProviderDetails:

[REQUIRED]

You can provide a structure that contains the details for the identity provider to use with your web app.

For more details about this parameter, see Configure your identity provider for Transfer Family web apps.

  • IdentityCenterConfig (dict) --

    A structure that describes the values to use for the IAM Identity Center settings when you create a web app.

    • InstanceArn (string) --

      The Amazon Resource Name (ARN) for the IAM Identity Center used for the web app.

    • Role (string) --

      The IAM role in IAM Identity Center used for the web app.

type AccessEndpoint:

string

param AccessEndpoint:

The AccessEndpoint is the URL that you provide to your users for them to interact with the Transfer Family web app. You can specify a custom URL or use the default value.

Before you enter a custom URL for this parameter, follow the steps described in Update your access endpoint with a custom URL.

type WebAppUnits:

dict

param WebAppUnits:

A union that contains the value for number of concurrent connections or the user sessions on your web app.

  • Provisioned (integer) --

    An integer that represents the number of units for your desired number of concurrent connections, or the number of user sessions on your web app at the same time.

    Each increment allows an additional 250 concurrent sessions: a value of 1 sets the number of concurrent sessions to 250; 2 sets a value of 500, and so on.

type Tags:

list

param Tags:

Key-value pairs that can be used to group and search for web apps.

  • (dict) --

    Creates a key-value pair for a specific resource. Tags are metadata that you can use to search for and group a resource for various purposes. You can apply tags to servers, users, and roles. A tag key can take more than one value. For example, to group servers for accounting purposes, you might create a tag called Group and assign the values Research and Accounting to that group.

    • Key (string) -- [REQUIRED]

      The name assigned to the tag that you create.

    • Value (string) -- [REQUIRED]

      Contains one or more values that you assigned to the key name you create.

type WebAppEndpointPolicy:

string

param WebAppEndpointPolicy:

Setting for the type of endpoint policy for the web app. The default value is STANDARD.

If you are creating the web app in an Amazon Web Services GovCloud (US) Region, you can set this parameter to FIPS.

type EndpointDetails:

dict

param EndpointDetails:

The endpoint configuration for the web app. You can specify whether the web app endpoint is publicly accessible or hosted within a VPC.

  • Vpc (dict) --

    The VPC configuration for hosting the web app endpoint within a VPC.

    • SubnetIds (list) --

      The list of subnet IDs within the VPC where the web app endpoint will be deployed. These subnets must be in the same VPC specified in the VpcId parameter.

      • (string) --

    • VpcId (string) --

      The identifier of the VPC where the web app endpoint will be hosted.

    • SecurityGroupIds (list) --

      The list of security group IDs that control access to the web app endpoint. These security groups determine which sources can access the endpoint based on IP addresses and port configurations.

      • (string) --

    • IpAddressType (string) --

      The IP address type for the web app's VPC endpoint. This determines whether the endpoint is accessible over IPv4 only, or over both IPv4 and IPv6.

rtype:

dict

returns:

Response Syntax

{
    'WebAppId': 'string'
}

Response Structure

  • (dict) --

    • WebAppId (string) --

      Returns a unique identifier for the web app.

UpdateWebApp (updated) Link ¶
Changes (request) 
{'EndpointDetails': {'Vpc': {'IpAddressType': 'IPV4 | DUALSTACK'}}}

Assigns new properties to a web app. You can modify the access point, identity provider details, endpoint configuration, and the web app units.

For more information about using VPC endpoints with Transfer Family, see Create a Transfer Family web app in a VPC.

See also: AWS API Documentation

Request Syntax

client.update_web_app(
    WebAppId='string',
    IdentityProviderDetails={
        'IdentityCenterConfig': {
            'Role': 'string'
        }
    },
    AccessEndpoint='string',
    WebAppUnits={
        'Provisioned': 123
    },
    EndpointDetails={
        'Vpc': {
            'SubnetIds': [
                'string',
            ],
            'IpAddressType': 'IPV4'|'DUALSTACK'
        }
    }
)
type WebAppId:

string

param WebAppId:

[REQUIRED]

Provide the identifier of the web app that you are updating.

type IdentityProviderDetails:

dict

param IdentityProviderDetails:

Provide updated identity provider values in a WebAppIdentityProviderDetails object.

  • IdentityCenterConfig (dict) --

    A structure that describes the values to use for the IAM Identity Center settings when you update a web app.

    • Role (string) --

      The IAM role used to access IAM Identity Center.

type AccessEndpoint:

string

param AccessEndpoint:

The AccessEndpoint is the URL that you provide to your users for them to interact with the Transfer Family web app. You can specify a custom URL or use the default value.

type WebAppUnits:

dict

param WebAppUnits:

A union that contains the value for number of concurrent connections or the user sessions on your web app.

  • Provisioned (integer) --

    An integer that represents the number of units for your desired number of concurrent connections, or the number of user sessions on your web app at the same time.

    Each increment allows an additional 250 concurrent sessions: a value of 1 sets the number of concurrent sessions to 250; 2 sets a value of 500, and so on.

type EndpointDetails:

dict

param EndpointDetails:

The updated endpoint configuration for the web app. You can modify the endpoint type and VPC configuration settings.

  • Vpc (dict) --

    The VPC configuration details for updating a web app endpoint hosted within a VPC. This includes the subnet IDs for endpoint deployment.

    • SubnetIds (list) --

      The list of subnet IDs within the VPC where the web app endpoint should be deployed during the update operation.

      • (string) --

    • IpAddressType (string) --

      The IP address type for the web app's VPC endpoint. This determines whether the endpoint is accessible over IPv4 only, or over both IPv4 and IPv6.

rtype:

dict

returns:

Response Syntax

{
    'WebAppId': 'string'
}

Response Structure

  • (dict) --

    • WebAppId (string) --

      Returns the unique identifier for the web app being updated.