{
  "$schema": "https://json-schema.org/draft/2020-12/schema",
  "$id": "https://raw.githubusercontent.com/api-evangelist/amazon-opensearch/refs/heads/main/json-schema/openapi-advanced-security-options-input-schema.json",
  "title": "AdvancedSecurityOptionsInput",
  "description": "Specifies the advanced security configuration: whether advanced security is enabled, whether the internal database option is enabled, master username and password (if internal database is enabled), and master user ARN (if IAM is enabled).",
  "type": "object",
  "properties": {
    "Enabled": {
      "allOf": [
        {
          "$ref": "#/components/schemas/Boolean"
        },
        {
          "description": "True if advanced security is enabled."
        }
      ]
    },
    "InternalUserDatabaseEnabled": {
      "allOf": [
        {
          "$ref": "#/components/schemas/Boolean"
        },
        {
          "description": "True if the internal user database is enabled."
        }
      ]
    },
    "MasterUserOptions": {
      "allOf": [
        {
          "$ref": "#/components/schemas/MasterUserOptions"
        },
        {
          "description": "Credentials for the master user: username and password, ARN, or both."
        }
      ]
    },
    "SAMLOptions": {
      "allOf": [
        {
          "$ref": "#/components/schemas/SAMLOptionsInput"
        },
        {
          "description": "Specifies the SAML application configuration for the domain."
        }
      ]
    },
    "AnonymousAuthEnabled": {
      "allOf": [
        {
          "$ref": "#/components/schemas/Boolean"
        },
        {
          "description": "True if Anonymous auth is enabled. Anonymous auth can be enabled only when AdvancedSecurity is enabled on existing domains."
        }
      ]
    }
  }
}