aws-sdk-auditmanager 1.26.0 → 1.28.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +10 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-auditmanager/client.rb +154 -31
- data/lib/aws-sdk-auditmanager/client_api.rb +15 -0
- data/lib/aws-sdk-auditmanager/endpoint_parameters.rb +66 -0
- data/lib/aws-sdk-auditmanager/endpoint_provider.rb +112 -0
- data/lib/aws-sdk-auditmanager/endpoints.rb +869 -0
- data/lib/aws-sdk-auditmanager/plugins/endpoints.rb +190 -0
- data/lib/aws-sdk-auditmanager/types.rb +174 -19
- data/lib/aws-sdk-auditmanager.rb +5 -1
- metadata +8 -4
@@ -0,0 +1,190 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
# WARNING ABOUT GENERATED CODE
|
4
|
+
#
|
5
|
+
# This file is generated. See the contributing guide for more information:
|
6
|
+
# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
|
7
|
+
#
|
8
|
+
# WARNING ABOUT GENERATED CODE
|
9
|
+
|
10
|
+
|
11
|
+
module Aws::AuditManager
|
12
|
+
module Plugins
|
13
|
+
class Endpoints < Seahorse::Client::Plugin
|
14
|
+
option(
|
15
|
+
:endpoint_provider,
|
16
|
+
doc_type: 'Aws::AuditManager::EndpointProvider',
|
17
|
+
docstring: 'The endpoint provider used to resolve endpoints. Any '\
|
18
|
+
'object that responds to `#resolve_endpoint(parameters)` '\
|
19
|
+
'where `parameters` is a Struct similar to '\
|
20
|
+
'`Aws::AuditManager::EndpointParameters`'
|
21
|
+
) do |cfg|
|
22
|
+
Aws::AuditManager::EndpointProvider.new
|
23
|
+
end
|
24
|
+
|
25
|
+
# @api private
|
26
|
+
class Handler < Seahorse::Client::Handler
|
27
|
+
def call(context)
|
28
|
+
# If endpoint was discovered, do not resolve or apply the endpoint.
|
29
|
+
unless context[:discovered_endpoint]
|
30
|
+
params = parameters_for_operation(context)
|
31
|
+
endpoint = context.config.endpoint_provider.resolve_endpoint(params)
|
32
|
+
|
33
|
+
context.http_request.endpoint = endpoint.url
|
34
|
+
apply_endpoint_headers(context, endpoint.headers)
|
35
|
+
end
|
36
|
+
|
37
|
+
context[:endpoint_params] = params
|
38
|
+
context[:auth_scheme] =
|
39
|
+
Aws::Endpoints.resolve_auth_scheme(context, endpoint)
|
40
|
+
|
41
|
+
@handler.call(context)
|
42
|
+
end
|
43
|
+
|
44
|
+
private
|
45
|
+
|
46
|
+
def apply_endpoint_headers(context, headers)
|
47
|
+
headers.each do |key, values|
|
48
|
+
value = values
|
49
|
+
.compact
|
50
|
+
.map { |s| Seahorse::Util.escape_header_list_string(s.to_s) }
|
51
|
+
.join(',')
|
52
|
+
|
53
|
+
context.http_request.headers[key] = value
|
54
|
+
end
|
55
|
+
end
|
56
|
+
|
57
|
+
def parameters_for_operation(context)
|
58
|
+
case context.operation_name
|
59
|
+
when :associate_assessment_report_evidence_folder
|
60
|
+
Aws::AuditManager::Endpoints::AssociateAssessmentReportEvidenceFolder.build(context)
|
61
|
+
when :batch_associate_assessment_report_evidence
|
62
|
+
Aws::AuditManager::Endpoints::BatchAssociateAssessmentReportEvidence.build(context)
|
63
|
+
when :batch_create_delegation_by_assessment
|
64
|
+
Aws::AuditManager::Endpoints::BatchCreateDelegationByAssessment.build(context)
|
65
|
+
when :batch_delete_delegation_by_assessment
|
66
|
+
Aws::AuditManager::Endpoints::BatchDeleteDelegationByAssessment.build(context)
|
67
|
+
when :batch_disassociate_assessment_report_evidence
|
68
|
+
Aws::AuditManager::Endpoints::BatchDisassociateAssessmentReportEvidence.build(context)
|
69
|
+
when :batch_import_evidence_to_assessment_control
|
70
|
+
Aws::AuditManager::Endpoints::BatchImportEvidenceToAssessmentControl.build(context)
|
71
|
+
when :create_assessment
|
72
|
+
Aws::AuditManager::Endpoints::CreateAssessment.build(context)
|
73
|
+
when :create_assessment_framework
|
74
|
+
Aws::AuditManager::Endpoints::CreateAssessmentFramework.build(context)
|
75
|
+
when :create_assessment_report
|
76
|
+
Aws::AuditManager::Endpoints::CreateAssessmentReport.build(context)
|
77
|
+
when :create_control
|
78
|
+
Aws::AuditManager::Endpoints::CreateControl.build(context)
|
79
|
+
when :delete_assessment
|
80
|
+
Aws::AuditManager::Endpoints::DeleteAssessment.build(context)
|
81
|
+
when :delete_assessment_framework
|
82
|
+
Aws::AuditManager::Endpoints::DeleteAssessmentFramework.build(context)
|
83
|
+
when :delete_assessment_framework_share
|
84
|
+
Aws::AuditManager::Endpoints::DeleteAssessmentFrameworkShare.build(context)
|
85
|
+
when :delete_assessment_report
|
86
|
+
Aws::AuditManager::Endpoints::DeleteAssessmentReport.build(context)
|
87
|
+
when :delete_control
|
88
|
+
Aws::AuditManager::Endpoints::DeleteControl.build(context)
|
89
|
+
when :deregister_account
|
90
|
+
Aws::AuditManager::Endpoints::DeregisterAccount.build(context)
|
91
|
+
when :deregister_organization_admin_account
|
92
|
+
Aws::AuditManager::Endpoints::DeregisterOrganizationAdminAccount.build(context)
|
93
|
+
when :disassociate_assessment_report_evidence_folder
|
94
|
+
Aws::AuditManager::Endpoints::DisassociateAssessmentReportEvidenceFolder.build(context)
|
95
|
+
when :get_account_status
|
96
|
+
Aws::AuditManager::Endpoints::GetAccountStatus.build(context)
|
97
|
+
when :get_assessment
|
98
|
+
Aws::AuditManager::Endpoints::GetAssessment.build(context)
|
99
|
+
when :get_assessment_framework
|
100
|
+
Aws::AuditManager::Endpoints::GetAssessmentFramework.build(context)
|
101
|
+
when :get_assessment_report_url
|
102
|
+
Aws::AuditManager::Endpoints::GetAssessmentReportUrl.build(context)
|
103
|
+
when :get_change_logs
|
104
|
+
Aws::AuditManager::Endpoints::GetChangeLogs.build(context)
|
105
|
+
when :get_control
|
106
|
+
Aws::AuditManager::Endpoints::GetControl.build(context)
|
107
|
+
when :get_delegations
|
108
|
+
Aws::AuditManager::Endpoints::GetDelegations.build(context)
|
109
|
+
when :get_evidence
|
110
|
+
Aws::AuditManager::Endpoints::GetEvidence.build(context)
|
111
|
+
when :get_evidence_by_evidence_folder
|
112
|
+
Aws::AuditManager::Endpoints::GetEvidenceByEvidenceFolder.build(context)
|
113
|
+
when :get_evidence_folder
|
114
|
+
Aws::AuditManager::Endpoints::GetEvidenceFolder.build(context)
|
115
|
+
when :get_evidence_folders_by_assessment
|
116
|
+
Aws::AuditManager::Endpoints::GetEvidenceFoldersByAssessment.build(context)
|
117
|
+
when :get_evidence_folders_by_assessment_control
|
118
|
+
Aws::AuditManager::Endpoints::GetEvidenceFoldersByAssessmentControl.build(context)
|
119
|
+
when :get_insights
|
120
|
+
Aws::AuditManager::Endpoints::GetInsights.build(context)
|
121
|
+
when :get_insights_by_assessment
|
122
|
+
Aws::AuditManager::Endpoints::GetInsightsByAssessment.build(context)
|
123
|
+
when :get_organization_admin_account
|
124
|
+
Aws::AuditManager::Endpoints::GetOrganizationAdminAccount.build(context)
|
125
|
+
when :get_services_in_scope
|
126
|
+
Aws::AuditManager::Endpoints::GetServicesInScope.build(context)
|
127
|
+
when :get_settings
|
128
|
+
Aws::AuditManager::Endpoints::GetSettings.build(context)
|
129
|
+
when :list_assessment_control_insights_by_control_domain
|
130
|
+
Aws::AuditManager::Endpoints::ListAssessmentControlInsightsByControlDomain.build(context)
|
131
|
+
when :list_assessment_framework_share_requests
|
132
|
+
Aws::AuditManager::Endpoints::ListAssessmentFrameworkShareRequests.build(context)
|
133
|
+
when :list_assessment_frameworks
|
134
|
+
Aws::AuditManager::Endpoints::ListAssessmentFrameworks.build(context)
|
135
|
+
when :list_assessment_reports
|
136
|
+
Aws::AuditManager::Endpoints::ListAssessmentReports.build(context)
|
137
|
+
when :list_assessments
|
138
|
+
Aws::AuditManager::Endpoints::ListAssessments.build(context)
|
139
|
+
when :list_control_domain_insights
|
140
|
+
Aws::AuditManager::Endpoints::ListControlDomainInsights.build(context)
|
141
|
+
when :list_control_domain_insights_by_assessment
|
142
|
+
Aws::AuditManager::Endpoints::ListControlDomainInsightsByAssessment.build(context)
|
143
|
+
when :list_control_insights_by_control_domain
|
144
|
+
Aws::AuditManager::Endpoints::ListControlInsightsByControlDomain.build(context)
|
145
|
+
when :list_controls
|
146
|
+
Aws::AuditManager::Endpoints::ListControls.build(context)
|
147
|
+
when :list_keywords_for_data_source
|
148
|
+
Aws::AuditManager::Endpoints::ListKeywordsForDataSource.build(context)
|
149
|
+
when :list_notifications
|
150
|
+
Aws::AuditManager::Endpoints::ListNotifications.build(context)
|
151
|
+
when :list_tags_for_resource
|
152
|
+
Aws::AuditManager::Endpoints::ListTagsForResource.build(context)
|
153
|
+
when :register_account
|
154
|
+
Aws::AuditManager::Endpoints::RegisterAccount.build(context)
|
155
|
+
when :register_organization_admin_account
|
156
|
+
Aws::AuditManager::Endpoints::RegisterOrganizationAdminAccount.build(context)
|
157
|
+
when :start_assessment_framework_share
|
158
|
+
Aws::AuditManager::Endpoints::StartAssessmentFrameworkShare.build(context)
|
159
|
+
when :tag_resource
|
160
|
+
Aws::AuditManager::Endpoints::TagResource.build(context)
|
161
|
+
when :untag_resource
|
162
|
+
Aws::AuditManager::Endpoints::UntagResource.build(context)
|
163
|
+
when :update_assessment
|
164
|
+
Aws::AuditManager::Endpoints::UpdateAssessment.build(context)
|
165
|
+
when :update_assessment_control
|
166
|
+
Aws::AuditManager::Endpoints::UpdateAssessmentControl.build(context)
|
167
|
+
when :update_assessment_control_set_status
|
168
|
+
Aws::AuditManager::Endpoints::UpdateAssessmentControlSetStatus.build(context)
|
169
|
+
when :update_assessment_framework
|
170
|
+
Aws::AuditManager::Endpoints::UpdateAssessmentFramework.build(context)
|
171
|
+
when :update_assessment_framework_share
|
172
|
+
Aws::AuditManager::Endpoints::UpdateAssessmentFrameworkShare.build(context)
|
173
|
+
when :update_assessment_status
|
174
|
+
Aws::AuditManager::Endpoints::UpdateAssessmentStatus.build(context)
|
175
|
+
when :update_control
|
176
|
+
Aws::AuditManager::Endpoints::UpdateControl.build(context)
|
177
|
+
when :update_settings
|
178
|
+
Aws::AuditManager::Endpoints::UpdateSettings.build(context)
|
179
|
+
when :validate_assessment_report_integrity
|
180
|
+
Aws::AuditManager::Endpoints::ValidateAssessmentReportIntegrity.build(context)
|
181
|
+
end
|
182
|
+
end
|
183
|
+
end
|
184
|
+
|
185
|
+
def add_handlers(handlers, _config)
|
186
|
+
handlers.add(Handler, step: :build, priority: 75)
|
187
|
+
end
|
188
|
+
end
|
189
|
+
end
|
190
|
+
end
|
@@ -691,19 +691,19 @@ module Aws::AuditManager
|
|
691
691
|
include Aws::Structure
|
692
692
|
end
|
693
693
|
|
694
|
-
# An error entity for
|
695
|
-
#
|
694
|
+
# An error entity for assessment report evidence errors. This is used to
|
695
|
+
# provide more meaningful errors than a simple string message.
|
696
696
|
#
|
697
697
|
# @!attribute [rw] evidence_id
|
698
698
|
# The identifier for the evidence.
|
699
699
|
# @return [String]
|
700
700
|
#
|
701
701
|
# @!attribute [rw] error_code
|
702
|
-
# The error code that
|
702
|
+
# The error code that was returned.
|
703
703
|
# @return [String]
|
704
704
|
#
|
705
705
|
# @!attribute [rw] error_message
|
706
|
-
# The error message that
|
706
|
+
# The error message that was returned.
|
707
707
|
# @return [String]
|
708
708
|
#
|
709
709
|
# @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/AssessmentReportEvidenceError AWS API Documentation
|
@@ -1224,7 +1224,7 @@ module Aws::AuditManager
|
|
1224
1224
|
# @return [String]
|
1225
1225
|
#
|
1226
1226
|
# @!attribute [rw] control_sources
|
1227
|
-
# The data source that
|
1227
|
+
# The data source types that determine where Audit Manager collects
|
1228
1228
|
# evidence from for the control.
|
1229
1229
|
# @return [String]
|
1230
1230
|
#
|
@@ -1702,6 +1702,7 @@ module Aws::AuditManager
|
|
1702
1702
|
# name: "AssessmentReportName", # required
|
1703
1703
|
# description: "AssessmentReportDescription",
|
1704
1704
|
# assessment_id: "UUID", # required
|
1705
|
+
# query_statement: "QueryStatement",
|
1705
1706
|
# }
|
1706
1707
|
#
|
1707
1708
|
# @!attribute [rw] name
|
@@ -1716,12 +1717,39 @@ module Aws::AuditManager
|
|
1716
1717
|
# The identifier for the assessment.
|
1717
1718
|
# @return [String]
|
1718
1719
|
#
|
1720
|
+
# @!attribute [rw] query_statement
|
1721
|
+
# A SQL statement that represents an evidence finder query.
|
1722
|
+
#
|
1723
|
+
# Provide this parameter when you want to generate an assessment
|
1724
|
+
# report from the results of an evidence finder search query. When you
|
1725
|
+
# use this parameter, Audit Manager generates a one-time report using
|
1726
|
+
# only the evidence from the query output. This report does not
|
1727
|
+
# include any assessment evidence that was manually [added to a report
|
1728
|
+
# using the console][1], or [associated with a report using the
|
1729
|
+
# API][2].
|
1730
|
+
#
|
1731
|
+
# To use this parameter, the [enablementStatus][3] of evidence finder
|
1732
|
+
# must be `ENABLED`.
|
1733
|
+
#
|
1734
|
+
# For examples and help resolving `queryStatement` validation
|
1735
|
+
# exceptions, see [Troubleshooting evidence finder issues][4] in the
|
1736
|
+
# AWS Audit Manager User Guide.
|
1737
|
+
#
|
1738
|
+
#
|
1739
|
+
#
|
1740
|
+
# [1]: https://docs.aws.amazon.com/userguide/generate-assessment-report.html#generate-assessment-report-include-evidence
|
1741
|
+
# [2]: https://docs.aws.amazon.com/APIReference-evidenceFinder/API_BatchAssociateAssessmentReportEvidence.html
|
1742
|
+
# [3]: https://docs.aws.amazon.com/APIReference-evidenceFinder/API_EvidenceFinderSetup.html#auditmanager-Type-EvidenceFinderSetup-enablementStatus
|
1743
|
+
# [4]: https://docs.aws.amazon.com/audit-manager/latest/userguide/evidence-finder-issues.html#querystatement-exceptions
|
1744
|
+
# @return [String]
|
1745
|
+
#
|
1719
1746
|
# @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/CreateAssessmentReportRequest AWS API Documentation
|
1720
1747
|
#
|
1721
1748
|
class CreateAssessmentReportRequest < Struct.new(
|
1722
1749
|
:name,
|
1723
1750
|
:description,
|
1724
|
-
:assessment_id
|
1751
|
+
:assessment_id,
|
1752
|
+
:query_statement)
|
1725
1753
|
SENSITIVE = []
|
1726
1754
|
include Aws::Structure
|
1727
1755
|
end
|
@@ -2413,10 +2441,24 @@ module Aws::AuditManager
|
|
2413
2441
|
# @return [String]
|
2414
2442
|
#
|
2415
2443
|
# @!attribute [rw] compliance_check
|
2416
|
-
# The evaluation status for evidence that falls under the
|
2417
|
-
# check category.
|
2418
|
-
#
|
2419
|
-
# *
|
2444
|
+
# The evaluation status for automated evidence that falls under the
|
2445
|
+
# compliance check category.
|
2446
|
+
#
|
2447
|
+
# * Audit Manager classes evidence as non-compliant if Security Hub
|
2448
|
+
# reports a *Fail* result, or if Config reports a *Non-compliant*
|
2449
|
+
# result.
|
2450
|
+
#
|
2451
|
+
# * Audit Manager classes evidence as compliant if Security Hub
|
2452
|
+
# reports a *Pass* result, or if Config reports a *Compliant*
|
2453
|
+
# result.
|
2454
|
+
#
|
2455
|
+
# * If a compliance check isn't available or applicable, then no
|
2456
|
+
# compliance evaluation can be made for that evidence. This is the
|
2457
|
+
# case if the evidence uses Config or Security Hub as the underlying
|
2458
|
+
# data source type, but those services aren't enabled. This is also
|
2459
|
+
# the case if the evidence uses an underlying data source type that
|
2460
|
+
# doesn't support compliance checks (such as manual evidence,
|
2461
|
+
# Amazon Web Services API calls, or CloudTrail).
|
2420
2462
|
# @return [String]
|
2421
2463
|
#
|
2422
2464
|
# @!attribute [rw] aws_organization
|
@@ -2462,6 +2504,73 @@ module Aws::AuditManager
|
|
2462
2504
|
include Aws::Structure
|
2463
2505
|
end
|
2464
2506
|
|
2507
|
+
# The settings object that specifies whether evidence finder is enabled.
|
2508
|
+
# This object also describes the related event data store, and the
|
2509
|
+
# backfill status for populating the event data store with evidence
|
2510
|
+
# data.
|
2511
|
+
#
|
2512
|
+
# @!attribute [rw] event_data_store_arn
|
2513
|
+
# The Amazon Resource Name (ARN) of the CloudTrail Lake event data
|
2514
|
+
# store that’s used by evidence finder. The event data store is the
|
2515
|
+
# lake of evidence data that evidence finder runs queries against.
|
2516
|
+
# @return [String]
|
2517
|
+
#
|
2518
|
+
# @!attribute [rw] enablement_status
|
2519
|
+
# The current status of the evidence finder feature and the related
|
2520
|
+
# event data store.
|
2521
|
+
#
|
2522
|
+
# * `ENABLE_IN_PROGRESS` means that you requested to enable evidence
|
2523
|
+
# finder. An event data store is currently being created to support
|
2524
|
+
# evidence finder queries.
|
2525
|
+
#
|
2526
|
+
# * `ENABLED` means that an event data store was successfully created
|
2527
|
+
# and evidence finder is enabled. We recommend that you wait 24
|
2528
|
+
# hours until the event data store is backfilled with your past
|
2529
|
+
# evidence data. You can use evidence finder in the meantime, but
|
2530
|
+
# not all data might be available until the backfill is complete.
|
2531
|
+
#
|
2532
|
+
# * `DISABLE_IN_PROGRESS` means that you requested to disable evidence
|
2533
|
+
# finder, and your request is pending the deletion of the event data
|
2534
|
+
# store.
|
2535
|
+
#
|
2536
|
+
# * `DISABLED` means that you have permanently disabled evidence
|
2537
|
+
# finder and the event data store has been deleted. You can't
|
2538
|
+
# re-enable evidence finder after this point.
|
2539
|
+
# @return [String]
|
2540
|
+
#
|
2541
|
+
# @!attribute [rw] backfill_status
|
2542
|
+
# The current status of the evidence data backfill process.
|
2543
|
+
#
|
2544
|
+
# The backfill starts after you enable evidence finder. During this
|
2545
|
+
# task, Audit Manager populates an event data store with your past
|
2546
|
+
# evidence data so that your evidence can be queried.
|
2547
|
+
#
|
2548
|
+
# * `NOT_STARTED` means that the backfill hasn’t started yet.
|
2549
|
+
#
|
2550
|
+
# * `IN_PROGRESS` means that the backfill is in progress. This can
|
2551
|
+
# take up to 24 hours to complete, depending on the amount of
|
2552
|
+
# evidence data.
|
2553
|
+
#
|
2554
|
+
# * `COMPLETED` means that the backfill is complete. All of your past
|
2555
|
+
# evidence is now queryable.
|
2556
|
+
# @return [String]
|
2557
|
+
#
|
2558
|
+
# @!attribute [rw] error
|
2559
|
+
# Represents any errors that occurred when enabling or disabling
|
2560
|
+
# evidence finder.
|
2561
|
+
# @return [String]
|
2562
|
+
#
|
2563
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/EvidenceFinderEnablement AWS API Documentation
|
2564
|
+
#
|
2565
|
+
class EvidenceFinderEnablement < Struct.new(
|
2566
|
+
:event_data_store_arn,
|
2567
|
+
:enablement_status,
|
2568
|
+
:backfill_status,
|
2569
|
+
:error)
|
2570
|
+
SENSITIVE = []
|
2571
|
+
include Aws::Structure
|
2572
|
+
end
|
2573
|
+
|
2465
2574
|
# A breakdown of the latest compliance check status for the evidence in
|
2466
2575
|
# your Audit Manager assessments.
|
2467
2576
|
#
|
@@ -3240,7 +3349,7 @@ module Aws::AuditManager
|
|
3240
3349
|
# data as a hash:
|
3241
3350
|
#
|
3242
3351
|
# {
|
3243
|
-
# attribute: "ALL", # required, accepts ALL, IS_AWS_ORG_ENABLED, SNS_TOPIC, DEFAULT_ASSESSMENT_REPORTS_DESTINATION, DEFAULT_PROCESS_OWNERS
|
3352
|
+
# attribute: "ALL", # required, accepts ALL, IS_AWS_ORG_ENABLED, SNS_TOPIC, DEFAULT_ASSESSMENT_REPORTS_DESTINATION, DEFAULT_PROCESS_OWNERS, EVIDENCE_FINDER_ENABLEMENT
|
3244
3353
|
# }
|
3245
3354
|
#
|
3246
3355
|
# @!attribute [rw] attribute
|
@@ -4171,11 +4280,34 @@ module Aws::AuditManager
|
|
4171
4280
|
# The value of the resource.
|
4172
4281
|
# @return [String]
|
4173
4282
|
#
|
4283
|
+
# @!attribute [rw] compliance_check
|
4284
|
+
# The evaluation status for a resource that was assessed when
|
4285
|
+
# collecting compliance check evidence.
|
4286
|
+
#
|
4287
|
+
# * Audit Manager classes the resource as non-compliant if Security
|
4288
|
+
# Hub reports a *Fail* result, or if Config reports a
|
4289
|
+
# *Non-compliant* result.
|
4290
|
+
#
|
4291
|
+
# * Audit Manager classes the resource as compliant if Security Hub
|
4292
|
+
# reports a *Pass* result, or if Config reports a *Compliant*
|
4293
|
+
# result.
|
4294
|
+
#
|
4295
|
+
# * If a compliance check isn't available or applicable, then no
|
4296
|
+
# compliance evaluation can be made for that resource. This is the
|
4297
|
+
# case if a resource assessment uses Config or Security Hub as the
|
4298
|
+
# underlying data source type, but those services aren't enabled.
|
4299
|
+
# This is also the case if the resource assessment uses an
|
4300
|
+
# underlying data source type that doesn't support compliance
|
4301
|
+
# checks (such as manual evidence, Amazon Web Services API calls, or
|
4302
|
+
# CloudTrail).
|
4303
|
+
# @return [String]
|
4304
|
+
#
|
4174
4305
|
# @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/Resource AWS API Documentation
|
4175
4306
|
#
|
4176
4307
|
class Resource < Struct.new(
|
4177
4308
|
:arn,
|
4178
|
-
:value
|
4309
|
+
:value,
|
4310
|
+
:compliance_check)
|
4179
4311
|
SENSITIVE = []
|
4180
4312
|
include Aws::Structure
|
4181
4313
|
end
|
@@ -4356,6 +4488,10 @@ module Aws::AuditManager
|
|
4356
4488
|
# The KMS key details.
|
4357
4489
|
# @return [String]
|
4358
4490
|
#
|
4491
|
+
# @!attribute [rw] evidence_finder_enablement
|
4492
|
+
# The current evidence finder status and event data store details.
|
4493
|
+
# @return [Types::EvidenceFinderEnablement]
|
4494
|
+
#
|
4359
4495
|
# @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/Settings AWS API Documentation
|
4360
4496
|
#
|
4361
4497
|
class Settings < Struct.new(
|
@@ -4363,7 +4499,8 @@ module Aws::AuditManager
|
|
4363
4499
|
:sns_topic,
|
4364
4500
|
:default_assessment_reports_destination,
|
4365
4501
|
:default_process_owners,
|
4366
|
-
:kms_key
|
4502
|
+
:kms_key,
|
4503
|
+
:evidence_finder_enablement)
|
4367
4504
|
SENSITIVE = []
|
4368
4505
|
include Aws::Structure
|
4369
4506
|
end
|
@@ -4437,11 +4574,6 @@ module Aws::AuditManager
|
|
4437
4574
|
# `keywordValue`\: `Custom_CustomRuleForAccount-conformance-pack`
|
4438
4575
|
#
|
4439
4576
|
# * Service-linked rule name:
|
4440
|
-
# securityhub-api-gw-cache-encrypted-101104e1
|
4441
|
-
#
|
4442
|
-
# `keywordValue`\: `Custom_securityhub-api-gw-cache-encrypted`
|
4443
|
-
#
|
4444
|
-
# * Service-linked rule name:
|
4445
4577
|
# OrgConfigRule-s3-bucket-versioning-enabled-dbgzf8ba
|
4446
4578
|
#
|
4447
4579
|
# `keywordValue`\:
|
@@ -5084,6 +5216,7 @@ module Aws::AuditManager
|
|
5084
5216
|
# },
|
5085
5217
|
# ],
|
5086
5218
|
# kms_key: "KmsKey",
|
5219
|
+
# evidence_finder_enabled: false,
|
5087
5220
|
# }
|
5088
5221
|
#
|
5089
5222
|
# @!attribute [rw] sns_topic
|
@@ -5103,13 +5236,35 @@ module Aws::AuditManager
|
|
5103
5236
|
# The KMS key details.
|
5104
5237
|
# @return [String]
|
5105
5238
|
#
|
5239
|
+
# @!attribute [rw] evidence_finder_enabled
|
5240
|
+
# Specifies whether the evidence finder feature is enabled. Change
|
5241
|
+
# this attribute to enable or disable evidence finder.
|
5242
|
+
#
|
5243
|
+
# When you use this attribute to disable evidence finder, Audit
|
5244
|
+
# Manager deletes the event data store that’s used to query your
|
5245
|
+
# evidence data. As a result, you can’t re-enable evidence finder and
|
5246
|
+
# use the feature again. Your only alternative is to [deregister][1]
|
5247
|
+
# and then [re-register][2] Audit Manager.
|
5248
|
+
#
|
5249
|
+
# Disabling evidence finder is permanent, so consider this decision
|
5250
|
+
# carefully before you proceed. If you’re using Audit Manager as a
|
5251
|
+
# delegated administrator, keep in mind that this action applies to
|
5252
|
+
# all member accounts in your organization.
|
5253
|
+
#
|
5254
|
+
#
|
5255
|
+
#
|
5256
|
+
# [1]: https://docs.aws.amazon.com/audit-manager/latest/APIReference/API_DeregisterAccount.html
|
5257
|
+
# [2]: https://docs.aws.amazon.com/audit-manager/latest/APIReference/API_RegisterAccount.html
|
5258
|
+
# @return [Boolean]
|
5259
|
+
#
|
5106
5260
|
# @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/UpdateSettingsRequest AWS API Documentation
|
5107
5261
|
#
|
5108
5262
|
class UpdateSettingsRequest < Struct.new(
|
5109
5263
|
:sns_topic,
|
5110
5264
|
:default_assessment_reports_destination,
|
5111
5265
|
:default_process_owners,
|
5112
|
-
:kms_key
|
5266
|
+
:kms_key,
|
5267
|
+
:evidence_finder_enabled)
|
5113
5268
|
SENSITIVE = []
|
5114
5269
|
include Aws::Structure
|
5115
5270
|
end
|
data/lib/aws-sdk-auditmanager.rb
CHANGED
@@ -13,9 +13,13 @@ require 'aws-sigv4'
|
|
13
13
|
|
14
14
|
require_relative 'aws-sdk-auditmanager/types'
|
15
15
|
require_relative 'aws-sdk-auditmanager/client_api'
|
16
|
+
require_relative 'aws-sdk-auditmanager/plugins/endpoints.rb'
|
16
17
|
require_relative 'aws-sdk-auditmanager/client'
|
17
18
|
require_relative 'aws-sdk-auditmanager/errors'
|
18
19
|
require_relative 'aws-sdk-auditmanager/resource'
|
20
|
+
require_relative 'aws-sdk-auditmanager/endpoint_parameters'
|
21
|
+
require_relative 'aws-sdk-auditmanager/endpoint_provider'
|
22
|
+
require_relative 'aws-sdk-auditmanager/endpoints'
|
19
23
|
require_relative 'aws-sdk-auditmanager/customizations'
|
20
24
|
|
21
25
|
# This module provides support for AWS Audit Manager. This module is available in the
|
@@ -48,6 +52,6 @@ require_relative 'aws-sdk-auditmanager/customizations'
|
|
48
52
|
# @!group service
|
49
53
|
module Aws::AuditManager
|
50
54
|
|
51
|
-
GEM_VERSION = '1.
|
55
|
+
GEM_VERSION = '1.28.0'
|
52
56
|
|
53
57
|
end
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-auditmanager
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.28.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2022-
|
11
|
+
date: 2022-11-18 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|
@@ -19,7 +19,7 @@ dependencies:
|
|
19
19
|
version: '3'
|
20
20
|
- - ">="
|
21
21
|
- !ruby/object:Gem::Version
|
22
|
-
version: 3.
|
22
|
+
version: 3.165.0
|
23
23
|
type: :runtime
|
24
24
|
prerelease: false
|
25
25
|
version_requirements: !ruby/object:Gem::Requirement
|
@@ -29,7 +29,7 @@ dependencies:
|
|
29
29
|
version: '3'
|
30
30
|
- - ">="
|
31
31
|
- !ruby/object:Gem::Version
|
32
|
-
version: 3.
|
32
|
+
version: 3.165.0
|
33
33
|
- !ruby/object:Gem::Dependency
|
34
34
|
name: aws-sigv4
|
35
35
|
requirement: !ruby/object:Gem::Requirement
|
@@ -59,7 +59,11 @@ files:
|
|
59
59
|
- lib/aws-sdk-auditmanager/client.rb
|
60
60
|
- lib/aws-sdk-auditmanager/client_api.rb
|
61
61
|
- lib/aws-sdk-auditmanager/customizations.rb
|
62
|
+
- lib/aws-sdk-auditmanager/endpoint_parameters.rb
|
63
|
+
- lib/aws-sdk-auditmanager/endpoint_provider.rb
|
64
|
+
- lib/aws-sdk-auditmanager/endpoints.rb
|
62
65
|
- lib/aws-sdk-auditmanager/errors.rb
|
66
|
+
- lib/aws-sdk-auditmanager/plugins/endpoints.rb
|
63
67
|
- lib/aws-sdk-auditmanager/resource.rb
|
64
68
|
- lib/aws-sdk-auditmanager/types.rb
|
65
69
|
homepage: https://github.com/aws/aws-sdk-ruby
|