aws-sdk-accessanalyzer 1.3.0 → 1.8.1
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
|
-
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
2
|
+
SHA256:
|
3
|
+
metadata.gz: 919a5ba3d1f376633c773d3f960eab4607cd455881542223a3b4e96e72d5fa68
|
4
|
+
data.tar.gz: 3d1271eddf20f025b5514278c1303f6fd9465f5af1ba236cce1c46da5a72d2a8
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 5429649b77a4c73297cf14b55545d2d0b87ca7641002c8dc84f85c0e22802e84830fcf8713af33a7e475b0c2daa430bda3cac4d301fb65cc9df56eeae729825e
|
7
|
+
data.tar.gz: 7923a05ea9f329684cc9c8bb2416c827adb3889a41fd23c6a8468ba72ab29bbe93dfb597177732b242f6b1dc5ee14978add4b89b241b3e5a7adb25587fd6c999
|
@@ -24,6 +24,7 @@ require 'aws-sdk-core/plugins/jsonvalue_converter.rb'
|
|
24
24
|
require 'aws-sdk-core/plugins/client_metrics_plugin.rb'
|
25
25
|
require 'aws-sdk-core/plugins/client_metrics_send_plugin.rb'
|
26
26
|
require 'aws-sdk-core/plugins/transfer_encoding.rb'
|
27
|
+
require 'aws-sdk-core/plugins/http_checksum.rb'
|
27
28
|
require 'aws-sdk-core/plugins/signature_v4.rb'
|
28
29
|
require 'aws-sdk-core/plugins/protocols/rest_json.rb'
|
29
30
|
|
@@ -32,11 +33,11 @@ Aws::Plugins::GlobalConfiguration.add_identifier(:accessanalyzer)
|
|
32
33
|
module Aws::AccessAnalyzer
|
33
34
|
# An API client for AccessAnalyzer. To construct a client, you need to configure a `:region` and `:credentials`.
|
34
35
|
#
|
35
|
-
#
|
36
|
-
#
|
37
|
-
#
|
38
|
-
#
|
39
|
-
#
|
36
|
+
# client = Aws::AccessAnalyzer::Client.new(
|
37
|
+
# region: region_name,
|
38
|
+
# credentials: credentials,
|
39
|
+
# # ...
|
40
|
+
# )
|
40
41
|
#
|
41
42
|
# For details on configuring region and credentials see
|
42
43
|
# the [developer guide](/sdk-for-ruby/v3/developer-guide/setup-config.html).
|
@@ -69,6 +70,7 @@ module Aws::AccessAnalyzer
|
|
69
70
|
add_plugin(Aws::Plugins::ClientMetricsPlugin)
|
70
71
|
add_plugin(Aws::Plugins::ClientMetricsSendPlugin)
|
71
72
|
add_plugin(Aws::Plugins::TransferEncoding)
|
73
|
+
add_plugin(Aws::Plugins::HttpChecksum)
|
72
74
|
add_plugin(Aws::Plugins::SignatureV4)
|
73
75
|
add_plugin(Aws::Plugins::Protocols::RestJson)
|
74
76
|
|
@@ -105,7 +107,7 @@ module Aws::AccessAnalyzer
|
|
105
107
|
# @option options [required, String] :region
|
106
108
|
# The AWS region to connect to. The configured `:region` is
|
107
109
|
# used to determine the service `:endpoint`. When not passed,
|
108
|
-
# a default `:region` is
|
110
|
+
# a default `:region` is searched for in the following locations:
|
109
111
|
#
|
110
112
|
# * `Aws.config[:region]`
|
111
113
|
# * `ENV['AWS_REGION']`
|
@@ -161,7 +163,7 @@ module Aws::AccessAnalyzer
|
|
161
163
|
# @option options [String] :endpoint
|
162
164
|
# The client endpoint is normally constructed from the `:region`
|
163
165
|
# option. You should only configure an `:endpoint` when connecting
|
164
|
-
# to test endpoints. This should be
|
166
|
+
# to test or custom endpoints. This should be a valid HTTP(S) URI.
|
165
167
|
#
|
166
168
|
# @option options [Integer] :endpoint_cache_max_entries (1000)
|
167
169
|
# Used for the maximum size limit of the LRU cache storing endpoints data
|
@@ -176,7 +178,7 @@ module Aws::AccessAnalyzer
|
|
176
178
|
# requests fetching endpoints information. Defaults to 60 sec.
|
177
179
|
#
|
178
180
|
# @option options [Boolean] :endpoint_discovery (false)
|
179
|
-
# When set to `true`, endpoint discovery will be enabled for operations when available.
|
181
|
+
# When set to `true`, endpoint discovery will be enabled for operations when available.
|
180
182
|
#
|
181
183
|
# @option options [Aws::Log::Formatter] :log_formatter (Aws::Log::Formatter.default)
|
182
184
|
# The log formatter.
|
@@ -229,15 +231,19 @@ module Aws::AccessAnalyzer
|
|
229
231
|
#
|
230
232
|
# @option options [String] :retry_mode ("legacy")
|
231
233
|
# Specifies which retry algorithm to use. Values are:
|
232
|
-
#
|
233
|
-
#
|
234
|
-
#
|
235
|
-
#
|
236
|
-
#
|
237
|
-
#
|
238
|
-
#
|
239
|
-
#
|
240
|
-
#
|
234
|
+
#
|
235
|
+
# * `legacy` - The pre-existing retry behavior. This is default value if
|
236
|
+
# no retry mode is provided.
|
237
|
+
#
|
238
|
+
# * `standard` - A standardized set of retry rules across the AWS SDKs.
|
239
|
+
# This includes support for retry quotas, which limit the number of
|
240
|
+
# unsuccessful retries a client can make.
|
241
|
+
#
|
242
|
+
# * `adaptive` - An experimental retry mode that includes all the
|
243
|
+
# functionality of `standard` mode along with automatic client side
|
244
|
+
# throttling. This is a provisional mode that may change behavior
|
245
|
+
# in the future.
|
246
|
+
#
|
241
247
|
#
|
242
248
|
# @option options [String] :secret_access_key
|
243
249
|
#
|
@@ -265,8 +271,7 @@ module Aws::AccessAnalyzer
|
|
265
271
|
#
|
266
272
|
# @option options [Integer] :http_read_timeout (60) The default
|
267
273
|
# number of seconds to wait for response data. This value can
|
268
|
-
# safely be set
|
269
|
-
# per-request on the session yielded by {#session_for}.
|
274
|
+
# safely be set per-request on the session.
|
270
275
|
#
|
271
276
|
# @option options [Float] :http_idle_timeout (5) The number of
|
272
277
|
# seconds a connection is allowed to sit idle before it is
|
@@ -278,7 +283,7 @@ module Aws::AccessAnalyzer
|
|
278
283
|
# request body. This option has no effect unless the request has
|
279
284
|
# "Expect" header set to "100-continue". Defaults to `nil` which
|
280
285
|
# disables this behaviour. This value can safely be set per
|
281
|
-
# request on the session
|
286
|
+
# request on the session.
|
282
287
|
#
|
283
288
|
# @option options [Boolean] :http_wire_trace (false) When `true`,
|
284
289
|
# HTTP debug output will be sent to the `:logger`.
|
@@ -353,7 +358,7 @@ module Aws::AccessAnalyzer
|
|
353
358
|
# tags: {
|
354
359
|
# "String" => "String",
|
355
360
|
# },
|
356
|
-
# type: "ACCOUNT", # required, accepts ACCOUNT
|
361
|
+
# type: "ACCOUNT", # required, accepts ACCOUNT, ORGANIZATION
|
357
362
|
# })
|
358
363
|
#
|
359
364
|
# @example Response structure
|
@@ -509,6 +514,7 @@ module Aws::AccessAnalyzer
|
|
509
514
|
# resp.resource.error #=> String
|
510
515
|
# resp.resource.is_public #=> Boolean
|
511
516
|
# resp.resource.resource_arn #=> String
|
517
|
+
# resp.resource.resource_owner_account #=> String
|
512
518
|
# resp.resource.resource_type #=> String, one of "AWS::IAM::Role", "AWS::KMS::Key", "AWS::Lambda::Function", "AWS::Lambda::LayerVersion", "AWS::S3::Bucket", "AWS::SQS::Queue"
|
513
519
|
# resp.resource.shared_via #=> Array
|
514
520
|
# resp.resource.shared_via[0] #=> String
|
@@ -546,9 +552,11 @@ module Aws::AccessAnalyzer
|
|
546
552
|
# resp.analyzer.last_resource_analyzed #=> String
|
547
553
|
# resp.analyzer.last_resource_analyzed_at #=> Time
|
548
554
|
# resp.analyzer.name #=> String
|
555
|
+
# resp.analyzer.status #=> String, one of "ACTIVE", "CREATING", "DISABLED", "FAILED"
|
556
|
+
# resp.analyzer.status_reason.code #=> String, one of "AWS_SERVICE_ACCESS_DISABLED", "DELEGATED_ADMINISTRATOR_DEREGISTERED", "ORGANIZATION_DELETED", "SERVICE_LINKED_ROLE_CREATION_FAILED"
|
549
557
|
# resp.analyzer.tags #=> Hash
|
550
558
|
# resp.analyzer.tags["String"] #=> String
|
551
|
-
# resp.analyzer.type #=> String, one of "ACCOUNT"
|
559
|
+
# resp.analyzer.type #=> String, one of "ACCOUNT", "ORGANIZATION"
|
552
560
|
#
|
553
561
|
# @see http://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetAnalyzer AWS API Documentation
|
554
562
|
#
|
@@ -634,7 +642,11 @@ module Aws::AccessAnalyzer
|
|
634
642
|
# resp.finding.principal #=> Hash
|
635
643
|
# resp.finding.principal["String"] #=> String
|
636
644
|
# resp.finding.resource #=> String
|
645
|
+
# resp.finding.resource_owner_account #=> String
|
637
646
|
# resp.finding.resource_type #=> String, one of "AWS::IAM::Role", "AWS::KMS::Key", "AWS::Lambda::Function", "AWS::Lambda::LayerVersion", "AWS::S3::Bucket", "AWS::SQS::Queue"
|
647
|
+
# resp.finding.sources #=> Array
|
648
|
+
# resp.finding.sources[0].detail.access_point_arn #=> String
|
649
|
+
# resp.finding.sources[0].type #=> String, one of "BUCKET_ACL", "POLICY", "S3_ACCESS_POINT"
|
638
650
|
# resp.finding.status #=> String, one of "ACTIVE", "ARCHIVED", "RESOLVED"
|
639
651
|
# resp.finding.updated_at #=> Time
|
640
652
|
#
|
@@ -667,6 +679,8 @@ module Aws::AccessAnalyzer
|
|
667
679
|
# * {Types::ListAnalyzedResourcesResponse#analyzed_resources #analyzed_resources} => Array<Types::AnalyzedResourceSummary>
|
668
680
|
# * {Types::ListAnalyzedResourcesResponse#next_token #next_token} => String
|
669
681
|
#
|
682
|
+
# The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
|
683
|
+
#
|
670
684
|
# @example Request syntax with placeholder values
|
671
685
|
#
|
672
686
|
# resp = client.list_analyzed_resources({
|
@@ -680,6 +694,7 @@ module Aws::AccessAnalyzer
|
|
680
694
|
#
|
681
695
|
# resp.analyzed_resources #=> Array
|
682
696
|
# resp.analyzed_resources[0].resource_arn #=> String
|
697
|
+
# resp.analyzed_resources[0].resource_owner_account #=> String
|
683
698
|
# resp.analyzed_resources[0].resource_type #=> String, one of "AWS::IAM::Role", "AWS::KMS::Key", "AWS::Lambda::Function", "AWS::Lambda::LayerVersion", "AWS::S3::Bucket", "AWS::SQS::Queue"
|
684
699
|
# resp.next_token #=> String
|
685
700
|
#
|
@@ -708,12 +723,14 @@ module Aws::AccessAnalyzer
|
|
708
723
|
# * {Types::ListAnalyzersResponse#analyzers #analyzers} => Array<Types::AnalyzerSummary>
|
709
724
|
# * {Types::ListAnalyzersResponse#next_token #next_token} => String
|
710
725
|
#
|
726
|
+
# The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
|
727
|
+
#
|
711
728
|
# @example Request syntax with placeholder values
|
712
729
|
#
|
713
730
|
# resp = client.list_analyzers({
|
714
731
|
# max_results: 1,
|
715
732
|
# next_token: "Token",
|
716
|
-
# type: "ACCOUNT", # accepts ACCOUNT
|
733
|
+
# type: "ACCOUNT", # accepts ACCOUNT, ORGANIZATION
|
717
734
|
# })
|
718
735
|
#
|
719
736
|
# @example Response structure
|
@@ -724,9 +741,11 @@ module Aws::AccessAnalyzer
|
|
724
741
|
# resp.analyzers[0].last_resource_analyzed #=> String
|
725
742
|
# resp.analyzers[0].last_resource_analyzed_at #=> Time
|
726
743
|
# resp.analyzers[0].name #=> String
|
744
|
+
# resp.analyzers[0].status #=> String, one of "ACTIVE", "CREATING", "DISABLED", "FAILED"
|
745
|
+
# resp.analyzers[0].status_reason.code #=> String, one of "AWS_SERVICE_ACCESS_DISABLED", "DELEGATED_ADMINISTRATOR_DEREGISTERED", "ORGANIZATION_DELETED", "SERVICE_LINKED_ROLE_CREATION_FAILED"
|
727
746
|
# resp.analyzers[0].tags #=> Hash
|
728
747
|
# resp.analyzers[0].tags["String"] #=> String
|
729
|
-
# resp.analyzers[0].type #=> String, one of "ACCOUNT"
|
748
|
+
# resp.analyzers[0].type #=> String, one of "ACCOUNT", "ORGANIZATION"
|
730
749
|
# resp.next_token #=> String
|
731
750
|
#
|
732
751
|
# @see http://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAnalyzers AWS API Documentation
|
@@ -754,6 +773,8 @@ module Aws::AccessAnalyzer
|
|
754
773
|
# * {Types::ListArchiveRulesResponse#archive_rules #archive_rules} => Array<Types::ArchiveRuleSummary>
|
755
774
|
# * {Types::ListArchiveRulesResponse#next_token #next_token} => String
|
756
775
|
#
|
776
|
+
# The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
|
777
|
+
#
|
757
778
|
# @example Request syntax with placeholder values
|
758
779
|
#
|
759
780
|
# resp = client.list_archive_rules({
|
@@ -809,6 +830,8 @@ module Aws::AccessAnalyzer
|
|
809
830
|
# * {Types::ListFindingsResponse#findings #findings} => Array<Types::FindingSummary>
|
810
831
|
# * {Types::ListFindingsResponse#next_token #next_token} => String
|
811
832
|
#
|
833
|
+
# The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
|
834
|
+
#
|
812
835
|
# @example Request syntax with placeholder values
|
813
836
|
#
|
814
837
|
# resp = client.list_findings({
|
@@ -844,7 +867,11 @@ module Aws::AccessAnalyzer
|
|
844
867
|
# resp.findings[0].principal #=> Hash
|
845
868
|
# resp.findings[0].principal["String"] #=> String
|
846
869
|
# resp.findings[0].resource #=> String
|
870
|
+
# resp.findings[0].resource_owner_account #=> String
|
847
871
|
# resp.findings[0].resource_type #=> String, one of "AWS::IAM::Role", "AWS::KMS::Key", "AWS::Lambda::Function", "AWS::Lambda::LayerVersion", "AWS::S3::Bucket", "AWS::SQS::Queue"
|
872
|
+
# resp.findings[0].sources #=> Array
|
873
|
+
# resp.findings[0].sources[0].detail.access_point_arn #=> String
|
874
|
+
# resp.findings[0].sources[0].type #=> String, one of "BUCKET_ACL", "POLICY", "S3_ACCESS_POINT"
|
848
875
|
# resp.findings[0].status #=> String, one of "ACTIVE", "ARCHIVED", "RESOLVED"
|
849
876
|
# resp.findings[0].updated_at #=> Time
|
850
877
|
# resp.next_token #=> String
|
@@ -1070,7 +1097,7 @@ module Aws::AccessAnalyzer
|
|
1070
1097
|
params: params,
|
1071
1098
|
config: config)
|
1072
1099
|
context[:gem_name] = 'aws-sdk-accessanalyzer'
|
1073
|
-
context[:gem_version] = '1.
|
1100
|
+
context[:gem_version] = '1.8.1'
|
1074
1101
|
Seahorse::Client::Request.new(handlers, context)
|
1075
1102
|
end
|
1076
1103
|
|
@@ -17,6 +17,7 @@ module Aws::AccessAnalyzer
|
|
17
17
|
AnalyzedResourceSummary = Shapes::StructureShape.new(name: 'AnalyzedResourceSummary')
|
18
18
|
AnalyzedResourcesList = Shapes::ListShape.new(name: 'AnalyzedResourcesList')
|
19
19
|
AnalyzerArn = Shapes::StringShape.new(name: 'AnalyzerArn')
|
20
|
+
AnalyzerStatus = Shapes::StringShape.new(name: 'AnalyzerStatus')
|
20
21
|
AnalyzerSummary = Shapes::StructureShape.new(name: 'AnalyzerSummary')
|
21
22
|
AnalyzersList = Shapes::ListShape.new(name: 'AnalyzersList')
|
22
23
|
ArchiveRuleSummary = Shapes::StructureShape.new(name: 'ArchiveRuleSummary')
|
@@ -34,6 +35,10 @@ module Aws::AccessAnalyzer
|
|
34
35
|
Finding = Shapes::StructureShape.new(name: 'Finding')
|
35
36
|
FindingId = Shapes::StringShape.new(name: 'FindingId')
|
36
37
|
FindingIdList = Shapes::ListShape.new(name: 'FindingIdList')
|
38
|
+
FindingSource = Shapes::StructureShape.new(name: 'FindingSource')
|
39
|
+
FindingSourceDetail = Shapes::StructureShape.new(name: 'FindingSourceDetail')
|
40
|
+
FindingSourceList = Shapes::ListShape.new(name: 'FindingSourceList')
|
41
|
+
FindingSourceType = Shapes::StringShape.new(name: 'FindingSourceType')
|
37
42
|
FindingStatus = Shapes::StringShape.new(name: 'FindingStatus')
|
38
43
|
FindingStatusUpdate = Shapes::StringShape.new(name: 'FindingStatusUpdate')
|
39
44
|
FindingSummary = Shapes::StructureShape.new(name: 'FindingSummary')
|
@@ -63,6 +68,7 @@ module Aws::AccessAnalyzer
|
|
63
68
|
Name = Shapes::StringShape.new(name: 'Name')
|
64
69
|
OrderBy = Shapes::StringShape.new(name: 'OrderBy')
|
65
70
|
PrincipalMap = Shapes::MapShape.new(name: 'PrincipalMap')
|
71
|
+
ReasonCode = Shapes::StringShape.new(name: 'ReasonCode')
|
66
72
|
ResourceArn = Shapes::StringShape.new(name: 'ResourceArn')
|
67
73
|
ResourceNotFoundException = Shapes::StructureShape.new(name: 'ResourceNotFoundException')
|
68
74
|
ResourceType = Shapes::StringShape.new(name: 'ResourceType')
|
@@ -70,6 +76,7 @@ module Aws::AccessAnalyzer
|
|
70
76
|
SharedViaList = Shapes::ListShape.new(name: 'SharedViaList')
|
71
77
|
SortCriteria = Shapes::StructureShape.new(name: 'SortCriteria')
|
72
78
|
StartResourceScanRequest = Shapes::StructureShape.new(name: 'StartResourceScanRequest')
|
79
|
+
StatusReason = Shapes::StructureShape.new(name: 'StatusReason')
|
73
80
|
String = Shapes::StringShape.new(name: 'String')
|
74
81
|
TagKeys = Shapes::ListShape.new(name: 'TagKeys')
|
75
82
|
TagResourceRequest = Shapes::StructureShape.new(name: 'TagResourceRequest')
|
@@ -100,6 +107,7 @@ module Aws::AccessAnalyzer
|
|
100
107
|
AnalyzedResource.add_member(:error, Shapes::ShapeRef.new(shape: String, location_name: "error"))
|
101
108
|
AnalyzedResource.add_member(:is_public, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "isPublic"))
|
102
109
|
AnalyzedResource.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ResourceArn, required: true, location_name: "resourceArn"))
|
110
|
+
AnalyzedResource.add_member(:resource_owner_account, Shapes::ShapeRef.new(shape: String, required: true, location_name: "resourceOwnerAccount"))
|
103
111
|
AnalyzedResource.add_member(:resource_type, Shapes::ShapeRef.new(shape: ResourceType, required: true, location_name: "resourceType"))
|
104
112
|
AnalyzedResource.add_member(:shared_via, Shapes::ShapeRef.new(shape: SharedViaList, location_name: "sharedVia"))
|
105
113
|
AnalyzedResource.add_member(:status, Shapes::ShapeRef.new(shape: FindingStatus, location_name: "status"))
|
@@ -107,6 +115,7 @@ module Aws::AccessAnalyzer
|
|
107
115
|
AnalyzedResource.struct_class = Types::AnalyzedResource
|
108
116
|
|
109
117
|
AnalyzedResourceSummary.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ResourceArn, required: true, location_name: "resourceArn"))
|
118
|
+
AnalyzedResourceSummary.add_member(:resource_owner_account, Shapes::ShapeRef.new(shape: String, required: true, location_name: "resourceOwnerAccount"))
|
110
119
|
AnalyzedResourceSummary.add_member(:resource_type, Shapes::ShapeRef.new(shape: ResourceType, required: true, location_name: "resourceType"))
|
111
120
|
AnalyzedResourceSummary.struct_class = Types::AnalyzedResourceSummary
|
112
121
|
|
@@ -117,6 +126,8 @@ module Aws::AccessAnalyzer
|
|
117
126
|
AnalyzerSummary.add_member(:last_resource_analyzed, Shapes::ShapeRef.new(shape: String, location_name: "lastResourceAnalyzed"))
|
118
127
|
AnalyzerSummary.add_member(:last_resource_analyzed_at, Shapes::ShapeRef.new(shape: Timestamp, location_name: "lastResourceAnalyzedAt"))
|
119
128
|
AnalyzerSummary.add_member(:name, Shapes::ShapeRef.new(shape: Name, required: true, location_name: "name"))
|
129
|
+
AnalyzerSummary.add_member(:status, Shapes::ShapeRef.new(shape: AnalyzerStatus, required: true, location_name: "status"))
|
130
|
+
AnalyzerSummary.add_member(:status_reason, Shapes::ShapeRef.new(shape: StatusReason, location_name: "statusReason"))
|
120
131
|
AnalyzerSummary.add_member(:tags, Shapes::ShapeRef.new(shape: TagsMap, location_name: "tags"))
|
121
132
|
AnalyzerSummary.add_member(:type, Shapes::ShapeRef.new(shape: Type, required: true, location_name: "type"))
|
122
133
|
AnalyzerSummary.struct_class = Types::AnalyzerSummary
|
@@ -182,13 +193,24 @@ module Aws::AccessAnalyzer
|
|
182
193
|
Finding.add_member(:is_public, Shapes::ShapeRef.new(shape: Boolean, location_name: "isPublic"))
|
183
194
|
Finding.add_member(:principal, Shapes::ShapeRef.new(shape: PrincipalMap, location_name: "principal"))
|
184
195
|
Finding.add_member(:resource, Shapes::ShapeRef.new(shape: String, location_name: "resource"))
|
196
|
+
Finding.add_member(:resource_owner_account, Shapes::ShapeRef.new(shape: String, required: true, location_name: "resourceOwnerAccount"))
|
185
197
|
Finding.add_member(:resource_type, Shapes::ShapeRef.new(shape: ResourceType, required: true, location_name: "resourceType"))
|
198
|
+
Finding.add_member(:sources, Shapes::ShapeRef.new(shape: FindingSourceList, location_name: "sources"))
|
186
199
|
Finding.add_member(:status, Shapes::ShapeRef.new(shape: FindingStatus, required: true, location_name: "status"))
|
187
200
|
Finding.add_member(:updated_at, Shapes::ShapeRef.new(shape: Timestamp, required: true, location_name: "updatedAt"))
|
188
201
|
Finding.struct_class = Types::Finding
|
189
202
|
|
190
203
|
FindingIdList.member = Shapes::ShapeRef.new(shape: FindingId)
|
191
204
|
|
205
|
+
FindingSource.add_member(:detail, Shapes::ShapeRef.new(shape: FindingSourceDetail, location_name: "detail"))
|
206
|
+
FindingSource.add_member(:type, Shapes::ShapeRef.new(shape: FindingSourceType, required: true, location_name: "type"))
|
207
|
+
FindingSource.struct_class = Types::FindingSource
|
208
|
+
|
209
|
+
FindingSourceDetail.add_member(:access_point_arn, Shapes::ShapeRef.new(shape: String, location_name: "accessPointArn"))
|
210
|
+
FindingSourceDetail.struct_class = Types::FindingSourceDetail
|
211
|
+
|
212
|
+
FindingSourceList.member = Shapes::ShapeRef.new(shape: FindingSource)
|
213
|
+
|
192
214
|
FindingSummary.add_member(:action, Shapes::ShapeRef.new(shape: ActionList, location_name: "action"))
|
193
215
|
FindingSummary.add_member(:analyzed_at, Shapes::ShapeRef.new(shape: Timestamp, required: true, location_name: "analyzedAt"))
|
194
216
|
FindingSummary.add_member(:condition, Shapes::ShapeRef.new(shape: ConditionKeyMap, required: true, location_name: "condition"))
|
@@ -198,7 +220,9 @@ module Aws::AccessAnalyzer
|
|
198
220
|
FindingSummary.add_member(:is_public, Shapes::ShapeRef.new(shape: Boolean, location_name: "isPublic"))
|
199
221
|
FindingSummary.add_member(:principal, Shapes::ShapeRef.new(shape: PrincipalMap, location_name: "principal"))
|
200
222
|
FindingSummary.add_member(:resource, Shapes::ShapeRef.new(shape: String, location_name: "resource"))
|
223
|
+
FindingSummary.add_member(:resource_owner_account, Shapes::ShapeRef.new(shape: String, required: true, location_name: "resourceOwnerAccount"))
|
201
224
|
FindingSummary.add_member(:resource_type, Shapes::ShapeRef.new(shape: ResourceType, required: true, location_name: "resourceType"))
|
225
|
+
FindingSummary.add_member(:sources, Shapes::ShapeRef.new(shape: FindingSourceList, location_name: "sources"))
|
202
226
|
FindingSummary.add_member(:status, Shapes::ShapeRef.new(shape: FindingStatus, required: true, location_name: "status"))
|
203
227
|
FindingSummary.add_member(:updated_at, Shapes::ShapeRef.new(shape: Timestamp, required: true, location_name: "updatedAt"))
|
204
228
|
FindingSummary.struct_class = Types::FindingSummary
|
@@ -310,6 +334,9 @@ module Aws::AccessAnalyzer
|
|
310
334
|
StartResourceScanRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ResourceArn, required: true, location_name: "resourceArn"))
|
311
335
|
StartResourceScanRequest.struct_class = Types::StartResourceScanRequest
|
312
336
|
|
337
|
+
StatusReason.add_member(:code, Shapes::ShapeRef.new(shape: ReasonCode, required: true, location_name: "code"))
|
338
|
+
StatusReason.struct_class = Types::StatusReason
|
339
|
+
|
313
340
|
TagKeys.member = Shapes::ShapeRef.new(shape: String)
|
314
341
|
|
315
342
|
TagResourceRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: String, required: true, location: "uri", location_name: "resourceArn"))
|
@@ -6,13 +6,7 @@
|
|
6
6
|
# WARNING ABOUT GENERATED CODE
|
7
7
|
|
8
8
|
module Aws::AccessAnalyzer
|
9
|
-
|
10
|
-
# To create a resource object:
|
11
|
-
# resource = Aws::AccessAnalyzer::Resource.new(region: 'us-west-2')
|
12
|
-
# You can supply a client object with custom configuration that will be used for all resource operations.
|
13
|
-
# If you do not pass +:client+, a default client will be constructed.
|
14
|
-
# client = Aws::AccessAnalyzer::Client.new(region: 'us-west-2')
|
15
|
-
# resource = Aws::AccessAnalyzer::Resource.new(client: client)
|
9
|
+
|
16
10
|
class Resource
|
17
11
|
|
18
12
|
# @param options ({})
|
@@ -48,12 +48,17 @@ module Aws::AccessAnalyzer
|
|
48
48
|
# The ARN of the resource that was analyzed.
|
49
49
|
# @return [String]
|
50
50
|
#
|
51
|
+
# @!attribute [rw] resource_owner_account
|
52
|
+
# The AWS account ID that owns the resource.
|
53
|
+
# @return [String]
|
54
|
+
#
|
51
55
|
# @!attribute [rw] resource_type
|
52
56
|
# The type of the resource that was analyzed.
|
53
57
|
# @return [String]
|
54
58
|
#
|
55
59
|
# @!attribute [rw] shared_via
|
56
|
-
# Indicates how the access that generated the finding is granted.
|
60
|
+
# Indicates how the access that generated the finding is granted. This
|
61
|
+
# is populated for Amazon S3 bucket findings.
|
57
62
|
# @return [Array<String>]
|
58
63
|
#
|
59
64
|
# @!attribute [rw] status
|
@@ -74,6 +79,7 @@ module Aws::AccessAnalyzer
|
|
74
79
|
:error,
|
75
80
|
:is_public,
|
76
81
|
:resource_arn,
|
82
|
+
:resource_owner_account,
|
77
83
|
:resource_type,
|
78
84
|
:shared_via,
|
79
85
|
:status,
|
@@ -87,6 +93,10 @@ module Aws::AccessAnalyzer
|
|
87
93
|
# The ARN of the analyzed resource.
|
88
94
|
# @return [String]
|
89
95
|
#
|
96
|
+
# @!attribute [rw] resource_owner_account
|
97
|
+
# The AWS account ID that owns the resource.
|
98
|
+
# @return [String]
|
99
|
+
#
|
90
100
|
# @!attribute [rw] resource_type
|
91
101
|
# The type of resource that was analyzed.
|
92
102
|
# @return [String]
|
@@ -95,6 +105,7 @@ module Aws::AccessAnalyzer
|
|
95
105
|
#
|
96
106
|
class AnalyzedResourceSummary < Struct.new(
|
97
107
|
:resource_arn,
|
108
|
+
:resource_owner_account,
|
98
109
|
:resource_type)
|
99
110
|
include Aws::Structure
|
100
111
|
end
|
@@ -121,6 +132,25 @@ module Aws::AccessAnalyzer
|
|
121
132
|
# The name of the analyzer.
|
122
133
|
# @return [String]
|
123
134
|
#
|
135
|
+
# @!attribute [rw] status
|
136
|
+
# The status of the analyzer. An `Active` analyzer successfully
|
137
|
+
# monitors supported resources and generates new findings. The
|
138
|
+
# analyzer is `Disabled` when a user action, such as removing trusted
|
139
|
+
# access for IAM Access Analyzer from AWS Organizations, causes the
|
140
|
+
# analyzer to stop generating new findings. The status is `Creating`
|
141
|
+
# when the analyzer creation is in progress and `Failed` when the
|
142
|
+
# analyzer creation has failed.
|
143
|
+
# @return [String]
|
144
|
+
#
|
145
|
+
# @!attribute [rw] status_reason
|
146
|
+
# The `statusReason` provides more details about the current status of
|
147
|
+
# the analyzer. For example, if the creation for the analyzer fails, a
|
148
|
+
# `Failed` status is displayed. For an analyzer with organization as
|
149
|
+
# the type, this failure can be due to an issue with creating the
|
150
|
+
# service-linked roles required in the member accounts of the AWS
|
151
|
+
# organization.
|
152
|
+
# @return [Types::StatusReason]
|
153
|
+
#
|
124
154
|
# @!attribute [rw] tags
|
125
155
|
# The tags added to the analyzer.
|
126
156
|
# @return [Hash<String,String>]
|
@@ -138,6 +168,8 @@ module Aws::AccessAnalyzer
|
|
138
168
|
:last_resource_analyzed,
|
139
169
|
:last_resource_analyzed_at,
|
140
170
|
:name,
|
171
|
+
:status,
|
172
|
+
:status_reason,
|
141
173
|
:tags,
|
142
174
|
:type)
|
143
175
|
include Aws::Structure
|
@@ -217,7 +249,7 @@ module Aws::AccessAnalyzer
|
|
217
249
|
# tags: {
|
218
250
|
# "String" => "String",
|
219
251
|
# },
|
220
|
-
# type: "ACCOUNT", # required, accepts ACCOUNT
|
252
|
+
# type: "ACCOUNT", # required, accepts ACCOUNT, ORGANIZATION
|
221
253
|
# }
|
222
254
|
#
|
223
255
|
# @!attribute [rw] analyzer_name
|
@@ -467,10 +499,20 @@ module Aws::AccessAnalyzer
|
|
467
499
|
# The resource that an external principal has access to.
|
468
500
|
# @return [String]
|
469
501
|
#
|
502
|
+
# @!attribute [rw] resource_owner_account
|
503
|
+
# The AWS account ID that owns the resource.
|
504
|
+
# @return [String]
|
505
|
+
#
|
470
506
|
# @!attribute [rw] resource_type
|
471
507
|
# The type of the resource reported in the finding.
|
472
508
|
# @return [String]
|
473
509
|
#
|
510
|
+
# @!attribute [rw] sources
|
511
|
+
# The sources of the finding. This indicates how the access that
|
512
|
+
# generated the finding is granted. It is populated for Amazon S3
|
513
|
+
# bucket findings.
|
514
|
+
# @return [Array<Types::FindingSource>]
|
515
|
+
#
|
474
516
|
# @!attribute [rw] status
|
475
517
|
# The current status of the finding.
|
476
518
|
# @return [String]
|
@@ -491,12 +533,49 @@ module Aws::AccessAnalyzer
|
|
491
533
|
:is_public,
|
492
534
|
:principal,
|
493
535
|
:resource,
|
536
|
+
:resource_owner_account,
|
494
537
|
:resource_type,
|
538
|
+
:sources,
|
495
539
|
:status,
|
496
540
|
:updated_at)
|
497
541
|
include Aws::Structure
|
498
542
|
end
|
499
543
|
|
544
|
+
# The source of the finding. This indicates how the access that
|
545
|
+
# generated the finding is granted. It is populated for Amazon S3 bucket
|
546
|
+
# findings.
|
547
|
+
#
|
548
|
+
# @!attribute [rw] detail
|
549
|
+
# Includes details about how the access that generated the finding is
|
550
|
+
# granted. This is populated for Amazon S3 bucket findings.
|
551
|
+
# @return [Types::FindingSourceDetail]
|
552
|
+
#
|
553
|
+
# @!attribute [rw] type
|
554
|
+
# Indicates the type of access that generated the finding.
|
555
|
+
# @return [String]
|
556
|
+
#
|
557
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/FindingSource AWS API Documentation
|
558
|
+
#
|
559
|
+
class FindingSource < Struct.new(
|
560
|
+
:detail,
|
561
|
+
:type)
|
562
|
+
include Aws::Structure
|
563
|
+
end
|
564
|
+
|
565
|
+
# Includes details about how the access that generated the finding is
|
566
|
+
# granted. This is populated for Amazon S3 bucket findings.
|
567
|
+
#
|
568
|
+
# @!attribute [rw] access_point_arn
|
569
|
+
# The ARN of the access point that generated the finding.
|
570
|
+
# @return [String]
|
571
|
+
#
|
572
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/FindingSourceDetail AWS API Documentation
|
573
|
+
#
|
574
|
+
class FindingSourceDetail < Struct.new(
|
575
|
+
:access_point_arn)
|
576
|
+
include Aws::Structure
|
577
|
+
end
|
578
|
+
|
500
579
|
# Contains information about a finding.
|
501
580
|
#
|
502
581
|
# @!attribute [rw] action
|
@@ -540,10 +619,20 @@ module Aws::AccessAnalyzer
|
|
540
619
|
# The resource that the external principal has access to.
|
541
620
|
# @return [String]
|
542
621
|
#
|
622
|
+
# @!attribute [rw] resource_owner_account
|
623
|
+
# The AWS account ID that owns the resource.
|
624
|
+
# @return [String]
|
625
|
+
#
|
543
626
|
# @!attribute [rw] resource_type
|
544
627
|
# The type of the resource that the external principal has access to.
|
545
628
|
# @return [String]
|
546
629
|
#
|
630
|
+
# @!attribute [rw] sources
|
631
|
+
# The sources of the finding. This indicates how the access that
|
632
|
+
# generated the finding is granted. It is populated for Amazon S3
|
633
|
+
# bucket findings.
|
634
|
+
# @return [Array<Types::FindingSource>]
|
635
|
+
#
|
547
636
|
# @!attribute [rw] status
|
548
637
|
# The status of the finding.
|
549
638
|
# @return [String]
|
@@ -564,7 +653,9 @@ module Aws::AccessAnalyzer
|
|
564
653
|
:is_public,
|
565
654
|
:principal,
|
566
655
|
:resource,
|
656
|
+
:resource_owner_account,
|
567
657
|
:resource_type,
|
658
|
+
:sources,
|
568
659
|
:status,
|
569
660
|
:updated_at)
|
570
661
|
include Aws::Structure
|
@@ -838,7 +929,7 @@ module Aws::AccessAnalyzer
|
|
838
929
|
# {
|
839
930
|
# max_results: 1,
|
840
931
|
# next_token: "Token",
|
841
|
-
# type: "ACCOUNT", # accepts ACCOUNT
|
932
|
+
# type: "ACCOUNT", # accepts ACCOUNT, ORGANIZATION
|
842
933
|
# }
|
843
934
|
#
|
844
935
|
# @!attribute [rw] max_results
|
@@ -1133,6 +1224,23 @@ module Aws::AccessAnalyzer
|
|
1133
1224
|
include Aws::Structure
|
1134
1225
|
end
|
1135
1226
|
|
1227
|
+
# Provides more details about the current status of the analyzer. For
|
1228
|
+
# example, if the creation for the analyzer fails, a `Failed` status is
|
1229
|
+
# displayed. For an analyzer with organization as the type, this failure
|
1230
|
+
# can be due to an issue with creating the service-linked roles required
|
1231
|
+
# in the member accounts of the AWS organization.
|
1232
|
+
#
|
1233
|
+
# @!attribute [rw] code
|
1234
|
+
# The reason code for the current status of the analyzer.
|
1235
|
+
# @return [String]
|
1236
|
+
#
|
1237
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/StatusReason AWS API Documentation
|
1238
|
+
#
|
1239
|
+
class StatusReason < Struct.new(
|
1240
|
+
:code)
|
1241
|
+
include Aws::Structure
|
1242
|
+
end
|
1243
|
+
|
1136
1244
|
# Adds a tag to the specified resource.
|
1137
1245
|
#
|
1138
1246
|
# @note When making an API call, you may pass TagResourceRequest
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-accessanalyzer
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.8.1
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2020-
|
11
|
+
date: 2020-06-11 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|
@@ -19,7 +19,7 @@ dependencies:
|
|
19
19
|
version: '3'
|
20
20
|
- - ">="
|
21
21
|
- !ruby/object:Gem::Version
|
22
|
-
version: 3.
|
22
|
+
version: 3.99.0
|
23
23
|
type: :runtime
|
24
24
|
prerelease: false
|
25
25
|
version_requirements: !ruby/object:Gem::Requirement
|
@@ -29,7 +29,7 @@ dependencies:
|
|
29
29
|
version: '3'
|
30
30
|
- - ">="
|
31
31
|
- !ruby/object:Gem::Version
|
32
|
-
version: 3.
|
32
|
+
version: 3.99.0
|
33
33
|
- !ruby/object:Gem::Dependency
|
34
34
|
name: aws-sigv4
|
35
35
|
requirement: !ruby/object:Gem::Requirement
|
@@ -81,7 +81,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
81
81
|
version: '0'
|
82
82
|
requirements: []
|
83
83
|
rubyforge_project:
|
84
|
-
rubygems_version: 2.
|
84
|
+
rubygems_version: 2.7.6.2
|
85
85
|
signing_key:
|
86
86
|
specification_version: 4
|
87
87
|
summary: AWS SDK for Ruby - Access Analyzer
|