aws-sdk-auditmanager 1.31.0 → 1.33.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 1adc31b8e81e088bb036d69116dc31fbb9a036fa48513fa4b9176b5a633a4ef7
4
- data.tar.gz: bd700a990c06f393a515e122cc8896ed0e49ce9c7062624fc9b8bbeb52cacdbf
3
+ metadata.gz: 80d86cf5a36a9e1e14f5542233864419448bab7cbca0057a7fa92e639b38a45b
4
+ data.tar.gz: db63fe60703361fb541cabf5fd139cd4d486754ed4e41340be47bf5d3f4dba34
5
5
  SHA512:
6
- metadata.gz: 49247ef51aa5abb955704516eb94809f03009c82493d5b363bded1a4d305eaf01b30e87aef81bb3bcf62ad9b475d3beb52e2fdae8b3b6459e645794784eb4f3e
7
- data.tar.gz: 7df1cae8d61706880cd76e6d5fcc7c0919b0461dde152b09303b360436a03c22ca07ea03d2f30e95636ed2da308444a49691a22af0aac5cbf8b1768679a9858e
6
+ metadata.gz: 0ff3579e3c53c987323b3ff5d41896dc02fa0f0aa98ddfde60981c701b49e650c83e3784ddc0c330a6f09fc904b62ca1a551b36968775035dc63e14fab0fd6cc
7
+ data.tar.gz: 8445389e60e41af920b819aa56d0b3dfa42e19cb66cc05374a0bf6f81b91c5ee2418c0fff260ad216e244dd811802e9b62847791a6be81e753288a2ce3708829
data/CHANGELOG.md CHANGED
@@ -1,6 +1,16 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.33.0 (2023-06-15)
5
+ ------------------
6
+
7
+ * Feature - This release introduces 2 Audit Manager features: CSV exports and new manual evidence options. You can now export your evidence finder results in CSV format. In addition, you can now add manual evidence to a control by entering free-form text or uploading a file from your browser.
8
+
9
+ 1.32.0 (2023-05-31)
10
+ ------------------
11
+
12
+ * Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
13
+
4
14
  1.31.0 (2023-02-20)
5
15
  ------------------
6
16
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.31.0
1
+ 1.33.0
@@ -275,6 +275,11 @@ module Aws::AuditManager
275
275
  # in the future.
276
276
  #
277
277
  #
278
+ # @option options [String] :sdk_ua_app_id
279
+ # A unique and opaque application ID that is appended to the
280
+ # User-Agent header as app/<sdk_ua_app_id>. It should have a
281
+ # maximum length of 50.
282
+ #
278
283
  # @option options [String] :secret_access_key
279
284
  #
280
285
  # @option options [String] :session_token
@@ -574,34 +579,32 @@ module Aws::AuditManager
574
579
  req.send_request(options)
575
580
  end
576
581
 
577
- # Uploads one or more pieces of evidence to a control in an Audit
578
- # Manager assessment. You can upload manual evidence from any Amazon
579
- # Simple Storage Service (Amazon S3) bucket by specifying the S3 URI of
580
- # the evidence.
582
+ # Adds one or more pieces of evidence to a control in an Audit Manager
583
+ # assessment.
581
584
  #
582
- # You must upload manual evidence to your S3 bucket before you can
583
- # upload it to your assessment. For instructions, see [CreateBucket][1]
584
- # and [PutObject][2] in the *Amazon Simple Storage Service API
585
- # Reference.*
585
+ # You can import manual evidence from any S3 bucket by specifying the S3
586
+ # URI of the object. You can also upload a file from your browser, or
587
+ # enter plain text in response to a risk assessment question.
586
588
  #
587
589
  # The following restrictions apply to this action:
588
590
  #
591
+ # * `manualEvidence` can be only one of the following:
592
+ # `evidenceFileName`, `s3ResourcePath`, or `textResponse`
593
+ #
589
594
  # * Maximum size of an individual evidence file: 100 MB
590
595
  #
591
596
  # * Number of daily manual evidence uploads per control: 100
592
597
  #
593
598
  # * Supported file formats: See [Supported file types for manual
594
- # evidence][3] in the *Audit Manager User Guide*
599
+ # evidence][1] in the *Audit Manager User Guide*
595
600
  #
596
601
  # For more information about Audit Manager service restrictions, see
597
- # [Quotas and restrictions for Audit Manager][4].
602
+ # [Quotas and restrictions for Audit Manager][2].
598
603
  #
599
604
  #
600
605
  #
601
- # [1]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_CreateBucket.html
602
- # [2]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html
603
- # [3]: https://docs.aws.amazon.com/audit-manager/latest/userguide/upload-evidence.html#supported-manual-evidence-files
604
- # [4]: https://docs.aws.amazon.com/audit-manager/latest/userguide/service-quotas.html
606
+ # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/upload-evidence.html#supported-manual-evidence-files
607
+ # [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/service-quotas.html
605
608
  #
606
609
  # @option params [required, String] :assessment_id
607
610
  # The identifier for the assessment.
@@ -628,6 +631,8 @@ module Aws::AuditManager
628
631
  # manual_evidence: [ # required
629
632
  # {
630
633
  # s3_resource_path: "S3Url",
634
+ # text_response: "ManualEvidenceTextResponse",
635
+ # evidence_file_name: "ManualEvidenceLocalFileName",
631
636
  # },
632
637
  # ],
633
638
  # })
@@ -636,6 +641,8 @@ module Aws::AuditManager
636
641
  #
637
642
  # resp.errors #=> Array
638
643
  # resp.errors[0].manual_evidence.s3_resource_path #=> String
644
+ # resp.errors[0].manual_evidence.text_response #=> String
645
+ # resp.errors[0].manual_evidence.evidence_file_name #=> String
639
646
  # resp.errors[0].error_code #=> String
640
647
  # resp.errors[0].error_message #=> String
641
648
  #
@@ -874,7 +881,7 @@ module Aws::AuditManager
874
881
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_description #=> String
875
882
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_set_up_option #=> String, one of "System_Controls_Mapping", "Procedural_Controls_Mapping"
876
883
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_type #=> String, one of "AWS_Cloudtrail", "AWS_Config", "AWS_Security_Hub", "AWS_API_Call", "MANUAL"
877
- # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST"
884
+ # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST", "UPLOAD_FILE", "INPUT_TEXT"
878
885
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_value #=> String
879
886
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_frequency #=> String, one of "DAILY", "WEEKLY", "MONTHLY"
880
887
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].troubleshooting_text #=> String
@@ -1011,7 +1018,7 @@ module Aws::AuditManager
1011
1018
  # source_set_up_option: "System_Controls_Mapping", # accepts System_Controls_Mapping, Procedural_Controls_Mapping
1012
1019
  # source_type: "AWS_Cloudtrail", # accepts AWS_Cloudtrail, AWS_Config, AWS_Security_Hub, AWS_API_Call, MANUAL
1013
1020
  # source_keyword: {
1014
- # keyword_input_type: "SELECT_FROM_LIST", # accepts SELECT_FROM_LIST
1021
+ # keyword_input_type: "SELECT_FROM_LIST", # accepts SELECT_FROM_LIST, UPLOAD_FILE, INPUT_TEXT
1015
1022
  # keyword_value: "KeywordValue",
1016
1023
  # },
1017
1024
  # source_frequency: "DAILY", # accepts DAILY, WEEKLY, MONTHLY
@@ -1040,7 +1047,7 @@ module Aws::AuditManager
1040
1047
  # resp.control.control_mapping_sources[0].source_description #=> String
1041
1048
  # resp.control.control_mapping_sources[0].source_set_up_option #=> String, one of "System_Controls_Mapping", "Procedural_Controls_Mapping"
1042
1049
  # resp.control.control_mapping_sources[0].source_type #=> String, one of "AWS_Cloudtrail", "AWS_Config", "AWS_Security_Hub", "AWS_API_Call", "MANUAL"
1043
- # resp.control.control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST"
1050
+ # resp.control.control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST", "UPLOAD_FILE", "INPUT_TEXT"
1044
1051
  # resp.control.control_mapping_sources[0].source_keyword.keyword_value #=> String
1045
1052
  # resp.control.control_mapping_sources[0].source_frequency #=> String, one of "DAILY", "WEEKLY", "MONTHLY"
1046
1053
  # resp.control.control_mapping_sources[0].troubleshooting_text #=> String
@@ -1187,6 +1194,12 @@ module Aws::AuditManager
1187
1194
 
1188
1195
  # Deletes a custom control in Audit Manager.
1189
1196
  #
1197
+ # When you invoke this operation, the custom control is deleted from any
1198
+ # frameworks or assessments that it’s currently part of. As a result,
1199
+ # Audit Manager will stop collecting evidence for that custom control in
1200
+ # all of your assessments. This includes assessments that you previously
1201
+ # created before you deleted the custom control.
1202
+ #
1190
1203
  # @option params [required, String] :control_id
1191
1204
  # The unique identifier for the control.
1192
1205
  #
@@ -1362,7 +1375,7 @@ module Aws::AuditManager
1362
1375
  req.send_request(options)
1363
1376
  end
1364
1377
 
1365
- # Returns the registration status of an account in Audit Manager.
1378
+ # Gets the registration status of an account in Audit Manager.
1366
1379
  #
1367
1380
  # @return [Types::GetAccountStatusResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1368
1381
  #
@@ -1381,7 +1394,7 @@ module Aws::AuditManager
1381
1394
  req.send_request(options)
1382
1395
  end
1383
1396
 
1384
- # Returns an assessment from Audit Manager.
1397
+ # Gets information about a specified assessment.
1385
1398
  #
1386
1399
  # @option params [required, String] :assessment_id
1387
1400
  # The unique identifier for the assessment.
@@ -1488,7 +1501,7 @@ module Aws::AuditManager
1488
1501
  req.send_request(options)
1489
1502
  end
1490
1503
 
1491
- # Returns a framework from Audit Manager.
1504
+ # Gets information about a specified framework.
1492
1505
  #
1493
1506
  # @option params [required, String] :framework_id
1494
1507
  # The identifier for the framework.
@@ -1532,7 +1545,7 @@ module Aws::AuditManager
1532
1545
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_description #=> String
1533
1546
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_set_up_option #=> String, one of "System_Controls_Mapping", "Procedural_Controls_Mapping"
1534
1547
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_type #=> String, one of "AWS_Cloudtrail", "AWS_Config", "AWS_Security_Hub", "AWS_API_Call", "MANUAL"
1535
- # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST"
1548
+ # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST", "UPLOAD_FILE", "INPUT_TEXT"
1536
1549
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_value #=> String
1537
1550
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_frequency #=> String, one of "DAILY", "WEEKLY", "MONTHLY"
1538
1551
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].troubleshooting_text #=> String
@@ -1558,7 +1571,7 @@ module Aws::AuditManager
1558
1571
  req.send_request(options)
1559
1572
  end
1560
1573
 
1561
- # Returns the URL of an assessment report in Audit Manager.
1574
+ # Gets the URL of an assessment report in Audit Manager.
1562
1575
  #
1563
1576
  # @option params [required, String] :assessment_report_id
1564
1577
  # The unique identifier for the assessment report.
@@ -1591,7 +1604,7 @@ module Aws::AuditManager
1591
1604
  req.send_request(options)
1592
1605
  end
1593
1606
 
1594
- # Returns a list of changelogs from Audit Manager.
1607
+ # Gets a list of changelogs from Audit Manager.
1595
1608
  #
1596
1609
  # @option params [required, String] :assessment_id
1597
1610
  # The unique identifier for the assessment.
@@ -1645,7 +1658,7 @@ module Aws::AuditManager
1645
1658
  req.send_request(options)
1646
1659
  end
1647
1660
 
1648
- # Returns a control from Audit Manager.
1661
+ # Gets information about a specified control.
1649
1662
  #
1650
1663
  # @option params [required, String] :control_id
1651
1664
  # The identifier for the control.
@@ -1677,7 +1690,7 @@ module Aws::AuditManager
1677
1690
  # resp.control.control_mapping_sources[0].source_description #=> String
1678
1691
  # resp.control.control_mapping_sources[0].source_set_up_option #=> String, one of "System_Controls_Mapping", "Procedural_Controls_Mapping"
1679
1692
  # resp.control.control_mapping_sources[0].source_type #=> String, one of "AWS_Cloudtrail", "AWS_Config", "AWS_Security_Hub", "AWS_API_Call", "MANUAL"
1680
- # resp.control.control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST"
1693
+ # resp.control.control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST", "UPLOAD_FILE", "INPUT_TEXT"
1681
1694
  # resp.control.control_mapping_sources[0].source_keyword.keyword_value #=> String
1682
1695
  # resp.control.control_mapping_sources[0].source_frequency #=> String, one of "DAILY", "WEEKLY", "MONTHLY"
1683
1696
  # resp.control.control_mapping_sources[0].troubleshooting_text #=> String
@@ -1697,7 +1710,7 @@ module Aws::AuditManager
1697
1710
  req.send_request(options)
1698
1711
  end
1699
1712
 
1700
- # Returns a list of delegations from an audit owner to a delegate.
1713
+ # Gets a list of delegations from an audit owner to a delegate.
1701
1714
  #
1702
1715
  # @option params [String] :next_token
1703
1716
  # The pagination token that's used to fetch the next set of results.
@@ -1741,7 +1754,7 @@ module Aws::AuditManager
1741
1754
  req.send_request(options)
1742
1755
  end
1743
1756
 
1744
- # Returns evidence from Audit Manager.
1757
+ # Gets information about a specified evidence item.
1745
1758
  #
1746
1759
  # @option params [required, String] :assessment_id
1747
1760
  # The unique identifier for the assessment.
@@ -1799,8 +1812,7 @@ module Aws::AuditManager
1799
1812
  req.send_request(options)
1800
1813
  end
1801
1814
 
1802
- # Returns all evidence from a specified evidence folder in Audit
1803
- # Manager.
1815
+ # Gets all evidence from a specified evidence folder in Audit Manager.
1804
1816
  #
1805
1817
  # @option params [required, String] :assessment_id
1806
1818
  # The identifier for the assessment.
@@ -1868,8 +1880,64 @@ module Aws::AuditManager
1868
1880
  req.send_request(options)
1869
1881
  end
1870
1882
 
1871
- # Returns an evidence folder from the specified assessment in Audit
1872
- # Manager.
1883
+ # Creates a presigned Amazon S3 URL that can be used to upload a file as
1884
+ # manual evidence. For instructions on how to use this operation, see
1885
+ # [Upload a file from your browser ][1] in the *Audit Manager User
1886
+ # Guide*.
1887
+ #
1888
+ # The following restrictions apply to this operation:
1889
+ #
1890
+ # * Maximum size of an individual evidence file: 100 MB
1891
+ #
1892
+ # * Number of daily manual evidence uploads per control: 100
1893
+ #
1894
+ # * Supported file formats: See [Supported file types for manual
1895
+ # evidence][2] in the *Audit Manager User Guide*
1896
+ #
1897
+ # For more information about Audit Manager service restrictions, see
1898
+ # [Quotas and restrictions for Audit Manager][3].
1899
+ #
1900
+ #
1901
+ #
1902
+ # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/upload-evidence.html#how-to-upload-manual-evidence-files
1903
+ # [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/upload-evidence.html#supported-manual-evidence-files
1904
+ # [3]: https://docs.aws.amazon.com/audit-manager/latest/userguide/service-quotas.html
1905
+ #
1906
+ # @option params [required, String] :file_name
1907
+ # The file that you want to upload. For a list of supported file
1908
+ # formats, see [Supported file types for manual evidence][1] in the
1909
+ # *Audit Manager User Guide*.
1910
+ #
1911
+ #
1912
+ #
1913
+ # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/upload-evidence.html#supported-manual-evidence-files
1914
+ #
1915
+ # @return [Types::GetEvidenceFileUploadUrlResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1916
+ #
1917
+ # * {Types::GetEvidenceFileUploadUrlResponse#evidence_file_name #evidence_file_name} => String
1918
+ # * {Types::GetEvidenceFileUploadUrlResponse#upload_url #upload_url} => String
1919
+ #
1920
+ # @example Request syntax with placeholder values
1921
+ #
1922
+ # resp = client.get_evidence_file_upload_url({
1923
+ # file_name: "ManualEvidenceLocalFileName", # required
1924
+ # })
1925
+ #
1926
+ # @example Response structure
1927
+ #
1928
+ # resp.evidence_file_name #=> String
1929
+ # resp.upload_url #=> String
1930
+ #
1931
+ # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/GetEvidenceFileUploadUrl AWS API Documentation
1932
+ #
1933
+ # @overload get_evidence_file_upload_url(params = {})
1934
+ # @param [Hash] params ({})
1935
+ def get_evidence_file_upload_url(params = {}, options = {})
1936
+ req = build_request(:get_evidence_file_upload_url, params)
1937
+ req.send_request(options)
1938
+ end
1939
+
1940
+ # Gets an evidence folder from a specified assessment in Audit Manager.
1873
1941
  #
1874
1942
  # @option params [required, String] :assessment_id
1875
1943
  # The unique identifier for the assessment.
@@ -1922,7 +1990,7 @@ module Aws::AuditManager
1922
1990
  req.send_request(options)
1923
1991
  end
1924
1992
 
1925
- # Returns the evidence folders from a specified assessment in Audit
1993
+ # Gets the evidence folders from a specified assessment in Audit
1926
1994
  # Manager.
1927
1995
  #
1928
1996
  # @option params [required, String] :assessment_id
@@ -1982,8 +2050,8 @@ module Aws::AuditManager
1982
2050
  req.send_request(options)
1983
2051
  end
1984
2052
 
1985
- # Returns a list of evidence folders that are associated with a
1986
- # specified control in an Audit Manager assessment.
2053
+ # Gets a list of evidence folders that are associated with a specified
2054
+ # control in an Audit Manager assessment.
1987
2055
  #
1988
2056
  # @option params [required, String] :assessment_id
1989
2057
  # The identifier for the assessment.
@@ -2109,8 +2177,8 @@ module Aws::AuditManager
2109
2177
  req.send_request(options)
2110
2178
  end
2111
2179
 
2112
- # Returns the name of the delegated Amazon Web Services administrator
2113
- # account for the organization.
2180
+ # Gets the name of the delegated Amazon Web Services administrator
2181
+ # account for a specified organization.
2114
2182
  #
2115
2183
  # @return [Types::GetOrganizationAdminAccountResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
2116
2184
  #
@@ -2131,8 +2199,8 @@ module Aws::AuditManager
2131
2199
  req.send_request(options)
2132
2200
  end
2133
2201
 
2134
- # Returns a list of all of the Amazon Web Services that you can choose
2135
- # to include in your assessment. When you [create an assessment][1],
2202
+ # Gets a list of all of the Amazon Web Services that you can choose to
2203
+ # include in your assessment. When you [create an assessment][1],
2136
2204
  # specify which of these services you want to include to narrow the
2137
2205
  # assessment's [scope][2].
2138
2206
  #
@@ -2162,7 +2230,7 @@ module Aws::AuditManager
2162
2230
  req.send_request(options)
2163
2231
  end
2164
2232
 
2165
- # Returns the settings for the specified Amazon Web Services account.
2233
+ # Gets the settings for a specified Amazon Web Services account.
2166
2234
  #
2167
2235
  # @option params [required, String] :attribute
2168
2236
  # The list of setting attribute enum values.
@@ -2174,7 +2242,7 @@ module Aws::AuditManager
2174
2242
  # @example Request syntax with placeholder values
2175
2243
  #
2176
2244
  # resp = client.get_settings({
2177
- # attribute: "ALL", # required, accepts ALL, IS_AWS_ORG_ENABLED, SNS_TOPIC, DEFAULT_ASSESSMENT_REPORTS_DESTINATION, DEFAULT_PROCESS_OWNERS, EVIDENCE_FINDER_ENABLEMENT, DEREGISTRATION_POLICY
2245
+ # attribute: "ALL", # required, accepts ALL, IS_AWS_ORG_ENABLED, SNS_TOPIC, DEFAULT_ASSESSMENT_REPORTS_DESTINATION, DEFAULT_PROCESS_OWNERS, EVIDENCE_FINDER_ENABLEMENT, DEREGISTRATION_POLICY, DEFAULT_EXPORT_DESTINATION
2178
2246
  # })
2179
2247
  #
2180
2248
  # @example Response structure
@@ -2192,6 +2260,8 @@ module Aws::AuditManager
2192
2260
  # resp.settings.evidence_finder_enablement.backfill_status #=> String, one of "NOT_STARTED", "IN_PROGRESS", "COMPLETED"
2193
2261
  # resp.settings.evidence_finder_enablement.error #=> String
2194
2262
  # resp.settings.deregistration_policy.delete_resources #=> String, one of "ALL", "DEFAULT"
2263
+ # resp.settings.default_export_destination.destination_type #=> String, one of "S3"
2264
+ # resp.settings.default_export_destination.destination #=> String
2195
2265
  #
2196
2266
  # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/GetSettings AWS API Documentation
2197
2267
  #
@@ -3372,7 +3442,7 @@ module Aws::AuditManager
3372
3442
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_description #=> String
3373
3443
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_set_up_option #=> String, one of "System_Controls_Mapping", "Procedural_Controls_Mapping"
3374
3444
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_type #=> String, one of "AWS_Cloudtrail", "AWS_Config", "AWS_Security_Hub", "AWS_API_Call", "MANUAL"
3375
- # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST"
3445
+ # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST", "UPLOAD_FILE", "INPUT_TEXT"
3376
3446
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_value #=> String
3377
3447
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_frequency #=> String, one of "DAILY", "WEEKLY", "MONTHLY"
3378
3448
  # resp.framework.control_sets[0].controls[0].control_mapping_sources[0].troubleshooting_text #=> String
@@ -3601,7 +3671,7 @@ module Aws::AuditManager
3601
3671
  # source_set_up_option: "System_Controls_Mapping", # accepts System_Controls_Mapping, Procedural_Controls_Mapping
3602
3672
  # source_type: "AWS_Cloudtrail", # accepts AWS_Cloudtrail, AWS_Config, AWS_Security_Hub, AWS_API_Call, MANUAL
3603
3673
  # source_keyword: {
3604
- # keyword_input_type: "SELECT_FROM_LIST", # accepts SELECT_FROM_LIST
3674
+ # keyword_input_type: "SELECT_FROM_LIST", # accepts SELECT_FROM_LIST, UPLOAD_FILE, INPUT_TEXT
3605
3675
  # keyword_value: "KeywordValue",
3606
3676
  # },
3607
3677
  # source_frequency: "DAILY", # accepts DAILY, WEEKLY, MONTHLY
@@ -3627,7 +3697,7 @@ module Aws::AuditManager
3627
3697
  # resp.control.control_mapping_sources[0].source_description #=> String
3628
3698
  # resp.control.control_mapping_sources[0].source_set_up_option #=> String, one of "System_Controls_Mapping", "Procedural_Controls_Mapping"
3629
3699
  # resp.control.control_mapping_sources[0].source_type #=> String, one of "AWS_Cloudtrail", "AWS_Config", "AWS_Security_Hub", "AWS_API_Call", "MANUAL"
3630
- # resp.control.control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST"
3700
+ # resp.control.control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST", "UPLOAD_FILE", "INPUT_TEXT"
3631
3701
  # resp.control.control_mapping_sources[0].source_keyword.keyword_value #=> String
3632
3702
  # resp.control.control_mapping_sources[0].source_frequency #=> String, one of "DAILY", "WEEKLY", "MONTHLY"
3633
3703
  # resp.control.control_mapping_sources[0].troubleshooting_text #=> String
@@ -3654,7 +3724,7 @@ module Aws::AuditManager
3654
3724
  # Manager sends notifications to.
3655
3725
  #
3656
3726
  # @option params [Types::AssessmentReportsDestination] :default_assessment_reports_destination
3657
- # The default storage destination for assessment reports.
3727
+ # The default S3 destination bucket for storing assessment reports.
3658
3728
  #
3659
3729
  # @option params [Array<Types::Role>] :default_process_owners
3660
3730
  # A list of the default audit owners.
@@ -3682,6 +3752,9 @@ module Aws::AuditManager
3682
3752
  # this attribute to determine how your data is handled when you
3683
3753
  # deregister Audit Manager.
3684
3754
  #
3755
+ # @option params [Types::DefaultExportDestination] :default_export_destination
3756
+ # The default S3 destination bucket for storing evidence finder exports.
3757
+ #
3685
3758
  # @return [Types::UpdateSettingsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
3686
3759
  #
3687
3760
  # * {Types::UpdateSettingsResponse#settings #settings} => Types::Settings
@@ -3705,6 +3778,10 @@ module Aws::AuditManager
3705
3778
  # deregistration_policy: {
3706
3779
  # delete_resources: "ALL", # accepts ALL, DEFAULT
3707
3780
  # },
3781
+ # default_export_destination: {
3782
+ # destination_type: "S3", # accepts S3
3783
+ # destination: "S3Url",
3784
+ # },
3708
3785
  # })
3709
3786
  #
3710
3787
  # @example Response structure
@@ -3722,6 +3799,8 @@ module Aws::AuditManager
3722
3799
  # resp.settings.evidence_finder_enablement.backfill_status #=> String, one of "NOT_STARTED", "IN_PROGRESS", "COMPLETED"
3723
3800
  # resp.settings.evidence_finder_enablement.error #=> String
3724
3801
  # resp.settings.deregistration_policy.delete_resources #=> String, one of "ALL", "DEFAULT"
3802
+ # resp.settings.default_export_destination.destination_type #=> String, one of "S3"
3803
+ # resp.settings.default_export_destination.destination #=> String
3725
3804
  #
3726
3805
  # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/UpdateSettings AWS API Documentation
3727
3806
  #
@@ -3783,7 +3862,7 @@ module Aws::AuditManager
3783
3862
  params: params,
3784
3863
  config: config)
3785
3864
  context[:gem_name] = 'aws-sdk-auditmanager'
3786
- context[:gem_version] = '1.31.0'
3865
+ context[:gem_version] = '1.33.0'
3787
3866
  Seahorse::Client::Request.new(handlers, context)
3788
3867
  end
3789
3868
 
@@ -122,6 +122,7 @@ module Aws::AuditManager
122
122
  CreateDelegationRequest = Shapes::StructureShape.new(name: 'CreateDelegationRequest')
123
123
  CreateDelegationRequests = Shapes::ListShape.new(name: 'CreateDelegationRequests')
124
124
  CreatedBy = Shapes::StringShape.new(name: 'CreatedBy')
125
+ DefaultExportDestination = Shapes::StructureShape.new(name: 'DefaultExportDestination')
125
126
  Delegation = Shapes::StructureShape.new(name: 'Delegation')
126
127
  DelegationComment = Shapes::StringShape.new(name: 'DelegationComment')
127
128
  DelegationIds = Shapes::ListShape.new(name: 'DelegationIds')
@@ -162,6 +163,7 @@ module Aws::AuditManager
162
163
  EvidenceInsights = Shapes::StructureShape.new(name: 'EvidenceInsights')
163
164
  EvidenceList = Shapes::ListShape.new(name: 'EvidenceList')
164
165
  EvidenceSources = Shapes::ListShape.new(name: 'EvidenceSources')
166
+ ExportDestinationType = Shapes::StringShape.new(name: 'ExportDestinationType')
165
167
  Filename = Shapes::StringShape.new(name: 'Filename')
166
168
  Framework = Shapes::StructureShape.new(name: 'Framework')
167
169
  FrameworkDescription = Shapes::StringShape.new(name: 'FrameworkDescription')
@@ -186,6 +188,8 @@ module Aws::AuditManager
186
188
  GetDelegationsResponse = Shapes::StructureShape.new(name: 'GetDelegationsResponse')
187
189
  GetEvidenceByEvidenceFolderRequest = Shapes::StructureShape.new(name: 'GetEvidenceByEvidenceFolderRequest')
188
190
  GetEvidenceByEvidenceFolderResponse = Shapes::StructureShape.new(name: 'GetEvidenceByEvidenceFolderResponse')
191
+ GetEvidenceFileUploadUrlRequest = Shapes::StructureShape.new(name: 'GetEvidenceFileUploadUrlRequest')
192
+ GetEvidenceFileUploadUrlResponse = Shapes::StructureShape.new(name: 'GetEvidenceFileUploadUrlResponse')
189
193
  GetEvidenceFolderRequest = Shapes::StructureShape.new(name: 'GetEvidenceFolderRequest')
190
194
  GetEvidenceFolderResponse = Shapes::StructureShape.new(name: 'GetEvidenceFolderResponse')
191
195
  GetEvidenceFoldersByAssessmentControlRequest = Shapes::StructureShape.new(name: 'GetEvidenceFoldersByAssessmentControlRequest')
@@ -242,6 +246,8 @@ module Aws::AuditManager
242
246
  ListTagsForResourceResponse = Shapes::StructureShape.new(name: 'ListTagsForResourceResponse')
243
247
  ManualEvidence = Shapes::StructureShape.new(name: 'ManualEvidence')
244
248
  ManualEvidenceList = Shapes::ListShape.new(name: 'ManualEvidenceList')
249
+ ManualEvidenceLocalFileName = Shapes::StringShape.new(name: 'ManualEvidenceLocalFileName')
250
+ ManualEvidenceTextResponse = Shapes::StringShape.new(name: 'ManualEvidenceTextResponse')
245
251
  MaxResults = Shapes::IntegerShape.new(name: 'MaxResults')
246
252
  NonEmptyString = Shapes::StringShape.new(name: 'NonEmptyString')
247
253
  Notification = Shapes::StructureShape.new(name: 'Notification')
@@ -724,6 +730,10 @@ module Aws::AuditManager
724
730
 
725
731
  CreateDelegationRequests.member = Shapes::ShapeRef.new(shape: CreateDelegationRequest)
726
732
 
733
+ DefaultExportDestination.add_member(:destination_type, Shapes::ShapeRef.new(shape: ExportDestinationType, location_name: "destinationType"))
734
+ DefaultExportDestination.add_member(:destination, Shapes::ShapeRef.new(shape: S3Url, location_name: "destination"))
735
+ DefaultExportDestination.struct_class = Types::DefaultExportDestination
736
+
727
737
  Delegation.add_member(:id, Shapes::ShapeRef.new(shape: UUID, location_name: "id"))
728
738
  Delegation.add_member(:assessment_name, Shapes::ShapeRef.new(shape: AssessmentName, location_name: "assessmentName"))
729
739
  Delegation.add_member(:assessment_id, Shapes::ShapeRef.new(shape: UUID, location_name: "assessmentId"))
@@ -920,6 +930,13 @@ module Aws::AuditManager
920
930
  GetEvidenceByEvidenceFolderResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: Token, location_name: "nextToken"))
921
931
  GetEvidenceByEvidenceFolderResponse.struct_class = Types::GetEvidenceByEvidenceFolderResponse
922
932
 
933
+ GetEvidenceFileUploadUrlRequest.add_member(:file_name, Shapes::ShapeRef.new(shape: ManualEvidenceLocalFileName, required: true, location: "querystring", location_name: "fileName"))
934
+ GetEvidenceFileUploadUrlRequest.struct_class = Types::GetEvidenceFileUploadUrlRequest
935
+
936
+ GetEvidenceFileUploadUrlResponse.add_member(:evidence_file_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "evidenceFileName"))
937
+ GetEvidenceFileUploadUrlResponse.add_member(:upload_url, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "uploadUrl"))
938
+ GetEvidenceFileUploadUrlResponse.struct_class = Types::GetEvidenceFileUploadUrlResponse
939
+
923
940
  GetEvidenceFolderRequest.add_member(:assessment_id, Shapes::ShapeRef.new(shape: UUID, required: true, location: "uri", location_name: "assessmentId"))
924
941
  GetEvidenceFolderRequest.add_member(:control_set_id, Shapes::ShapeRef.new(shape: ControlSetId, required: true, location: "uri", location_name: "controlSetId"))
925
942
  GetEvidenceFolderRequest.add_member(:evidence_folder_id, Shapes::ShapeRef.new(shape: UUID, required: true, location: "uri", location_name: "evidenceFolderId"))
@@ -1113,6 +1130,8 @@ module Aws::AuditManager
1113
1130
  ListTagsForResourceResponse.struct_class = Types::ListTagsForResourceResponse
1114
1131
 
1115
1132
  ManualEvidence.add_member(:s3_resource_path, Shapes::ShapeRef.new(shape: S3Url, location_name: "s3ResourcePath"))
1133
+ ManualEvidence.add_member(:text_response, Shapes::ShapeRef.new(shape: ManualEvidenceTextResponse, location_name: "textResponse"))
1134
+ ManualEvidence.add_member(:evidence_file_name, Shapes::ShapeRef.new(shape: ManualEvidenceLocalFileName, location_name: "evidenceFileName"))
1116
1135
  ManualEvidence.struct_class = Types::ManualEvidence
1117
1136
 
1118
1137
  ManualEvidenceList.member = Shapes::ShapeRef.new(shape: ManualEvidence)
@@ -1183,6 +1202,7 @@ module Aws::AuditManager
1183
1202
  Settings.add_member(:kms_key, Shapes::ShapeRef.new(shape: KmsKey, location_name: "kmsKey"))
1184
1203
  Settings.add_member(:evidence_finder_enablement, Shapes::ShapeRef.new(shape: EvidenceFinderEnablement, location_name: "evidenceFinderEnablement"))
1185
1204
  Settings.add_member(:deregistration_policy, Shapes::ShapeRef.new(shape: DeregistrationPolicy, location_name: "deregistrationPolicy"))
1205
+ Settings.add_member(:default_export_destination, Shapes::ShapeRef.new(shape: DefaultExportDestination, location_name: "defaultExportDestination"))
1186
1206
  Settings.struct_class = Types::Settings
1187
1207
 
1188
1208
  SourceKeyword.add_member(:keyword_input_type, Shapes::ShapeRef.new(shape: KeywordInputType, location_name: "keywordInputType"))
@@ -1302,6 +1322,7 @@ module Aws::AuditManager
1302
1322
  UpdateSettingsRequest.add_member(:kms_key, Shapes::ShapeRef.new(shape: KmsKey, location_name: "kmsKey"))
1303
1323
  UpdateSettingsRequest.add_member(:evidence_finder_enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "evidenceFinderEnabled"))
1304
1324
  UpdateSettingsRequest.add_member(:deregistration_policy, Shapes::ShapeRef.new(shape: DeregistrationPolicy, location_name: "deregistrationPolicy"))
1325
+ UpdateSettingsRequest.add_member(:default_export_destination, Shapes::ShapeRef.new(shape: DefaultExportDestination, location_name: "defaultExportDestination"))
1305
1326
  UpdateSettingsRequest.struct_class = Types::UpdateSettingsRequest
1306
1327
 
1307
1328
  UpdateSettingsResponse.add_member(:settings, Shapes::ShapeRef.new(shape: Settings, location_name: "settings"))
@@ -1418,6 +1439,7 @@ module Aws::AuditManager
1418
1439
  o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
1419
1440
  o.errors << Shapes::ShapeRef.new(shape: ValidationException)
1420
1441
  o.errors << Shapes::ShapeRef.new(shape: InternalServerException)
1442
+ o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
1421
1443
  end)
1422
1444
 
1423
1445
  api.add_operation(:create_assessment, Seahorse::Model::Operation.new.tap do |o|
@@ -1689,6 +1711,18 @@ module Aws::AuditManager
1689
1711
  )
1690
1712
  end)
1691
1713
 
1714
+ api.add_operation(:get_evidence_file_upload_url, Seahorse::Model::Operation.new.tap do |o|
1715
+ o.name = "GetEvidenceFileUploadUrl"
1716
+ o.http_method = "GET"
1717
+ o.http_request_uri = "/evidenceFileUploadUrl"
1718
+ o.input = Shapes::ShapeRef.new(shape: GetEvidenceFileUploadUrlRequest)
1719
+ o.output = Shapes::ShapeRef.new(shape: GetEvidenceFileUploadUrlResponse)
1720
+ o.errors << Shapes::ShapeRef.new(shape: ValidationException)
1721
+ o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
1722
+ o.errors << Shapes::ShapeRef.new(shape: InternalServerException)
1723
+ o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
1724
+ end)
1725
+
1692
1726
  api.add_operation(:get_evidence_folder, Seahorse::Model::Operation.new.tap do |o|
1693
1727
  o.name = "GetEvidenceFolder"
1694
1728
  o.http_method = "GET"
@@ -9,6 +9,7 @@
9
9
 
10
10
 
11
11
  module Aws::AuditManager
12
+ # @api private
12
13
  module Endpoints
13
14
 
14
15
  class AssociateAssessmentReportEvidenceFolder
@@ -389,6 +390,20 @@ module Aws::AuditManager
389
390
  end
390
391
  end
391
392
 
393
+ class GetEvidenceFileUploadUrl
394
+ def self.build(context)
395
+ unless context.config.regional_endpoint
396
+ endpoint = context.config.endpoint.to_s
397
+ end
398
+ Aws::AuditManager::EndpointParameters.new(
399
+ region: context.config.region,
400
+ use_dual_stack: context.config.use_dualstack_endpoint,
401
+ use_fips: context.config.use_fips_endpoint,
402
+ endpoint: endpoint,
403
+ )
404
+ end
405
+ end
406
+
392
407
  class GetEvidenceFolder
393
408
  def self.build(context)
394
409
  unless context.config.regional_endpoint
@@ -110,6 +110,8 @@ module Aws::AuditManager
110
110
  Aws::AuditManager::Endpoints::GetEvidence.build(context)
111
111
  when :get_evidence_by_evidence_folder
112
112
  Aws::AuditManager::Endpoints::GetEvidenceByEvidenceFolder.build(context)
113
+ when :get_evidence_file_upload_url
114
+ Aws::AuditManager::Endpoints::GetEvidenceFileUploadUrl.build(context)
113
115
  when :get_evidence_folder
114
116
  Aws::AuditManager::Endpoints::GetEvidenceFolder.build(context)
115
117
  when :get_evidence_folders_by_assessment
@@ -771,7 +771,8 @@ module Aws::AuditManager
771
771
  # @return [String]
772
772
  #
773
773
  # @!attribute [rw] destination
774
- # The destination of the assessment report.
774
+ # The destination bucket where Audit Manager stores assessment
775
+ # reports.
775
776
  # @return [String]
776
777
  #
777
778
  # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/AssessmentReportsDestination AWS API Documentation
@@ -1124,7 +1125,8 @@ module Aws::AuditManager
1124
1125
  # @return [String]
1125
1126
  #
1126
1127
  # @!attribute [rw] type
1127
- # The type of control, such as a custom control or a standard control.
1128
+ # Specifies whether the control is a standard control or a custom
1129
+ # control.
1128
1130
  # @return [String]
1129
1131
  #
1130
1132
  # @!attribute [rw] name
@@ -1368,12 +1370,18 @@ module Aws::AuditManager
1368
1370
  # @return [String]
1369
1371
  #
1370
1372
  # @!attribute [rw] source_keyword
1371
- # The keyword to search for in CloudTrail logs, Config rules, Security
1372
- # Hub checks, and Amazon Web Services API names.
1373
+ # A keyword that relates to the control data source.
1374
+ #
1375
+ # For manual evidence, this keyword indicates if the manual evidence
1376
+ # is a file or text.
1377
+ #
1378
+ # For automated evidence, this keyword identifies a specific
1379
+ # CloudTrail event, Config rule, Security Hub control, or Amazon Web
1380
+ # Services API name.
1373
1381
  #
1374
1382
  # To learn more about the supported keywords that you can use when
1375
1383
  # mapping a control data source, see the following pages in the *Audit
1376
- # Manager User Guide*\:
1384
+ # Manager User Guide*:
1377
1385
  #
1378
1386
  # * [Config rules supported by Audit Manager][1]
1379
1387
  #
@@ -1385,14 +1393,15 @@ module Aws::AuditManager
1385
1393
  #
1386
1394
  #
1387
1395
  #
1388
- # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-ash.html
1389
- # [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-config.html
1396
+ # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-config.html
1397
+ # [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-ash.html
1390
1398
  # [3]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-api.html
1391
1399
  # [4]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-cloudtrail.html
1392
1400
  # @return [Types::SourceKeyword]
1393
1401
  #
1394
1402
  # @!attribute [rw] source_frequency
1395
- # The frequency of evidence collection for the control mapping source.
1403
+ # Specifies how often evidence is collected from the control mapping
1404
+ # source.
1396
1405
  # @return [String]
1397
1406
  #
1398
1407
  # @!attribute [rw] troubleshooting_text
@@ -1707,12 +1716,18 @@ module Aws::AuditManager
1707
1716
  # @return [String]
1708
1717
  #
1709
1718
  # @!attribute [rw] source_keyword
1710
- # The keyword to search for in CloudTrail logs, Config rules, Security
1711
- # Hub checks, and Amazon Web Services API names.
1719
+ # A keyword that relates to the control data source.
1720
+ #
1721
+ # For manual evidence, this keyword indicates if the manual evidence
1722
+ # is a file or text.
1723
+ #
1724
+ # For automated evidence, this keyword identifies a specific
1725
+ # CloudTrail event, Config rule, Security Hub control, or Amazon Web
1726
+ # Services API name.
1712
1727
  #
1713
1728
  # To learn more about the supported keywords that you can use when
1714
1729
  # mapping a control data source, see the following pages in the *Audit
1715
- # Manager User Guide*\:
1730
+ # Manager User Guide*:
1716
1731
  #
1717
1732
  # * [Config rules supported by Audit Manager][1]
1718
1733
  #
@@ -1724,14 +1739,15 @@ module Aws::AuditManager
1724
1739
  #
1725
1740
  #
1726
1741
  #
1727
- # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-ash.html
1728
- # [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-config.html
1742
+ # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-config.html
1743
+ # [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-ash.html
1729
1744
  # [3]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-api.html
1730
1745
  # [4]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-cloudtrail.html
1731
1746
  # @return [Types::SourceKeyword]
1732
1747
  #
1733
1748
  # @!attribute [rw] source_frequency
1734
- # The frequency of evidence collection for the control mapping source.
1749
+ # Specifies how often evidence is collected from the control mapping
1750
+ # source.
1735
1751
  # @return [String]
1736
1752
  #
1737
1753
  # @!attribute [rw] troubleshooting_text
@@ -1846,6 +1862,26 @@ module Aws::AuditManager
1846
1862
  include Aws::Structure
1847
1863
  end
1848
1864
 
1865
+ # The default s3 bucket where Audit Manager saves the files that you
1866
+ # export from evidence finder.
1867
+ #
1868
+ # @!attribute [rw] destination_type
1869
+ # The destination type, such as Amazon S3.
1870
+ # @return [String]
1871
+ #
1872
+ # @!attribute [rw] destination
1873
+ # The destination bucket where Audit Manager stores exported files.
1874
+ # @return [String]
1875
+ #
1876
+ # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/DefaultExportDestination AWS API Documentation
1877
+ #
1878
+ class DefaultExportDestination < Struct.new(
1879
+ :destination_type,
1880
+ :destination)
1881
+ SENSITIVE = []
1882
+ include Aws::Structure
1883
+ end
1884
+
1849
1885
  # The assignment of a control set to a delegate for review.
1850
1886
  #
1851
1887
  # @!attribute [rw] id
@@ -2391,13 +2427,13 @@ module Aws::AuditManager
2391
2427
  # @return [String]
2392
2428
  #
2393
2429
  # @!attribute [rw] type
2394
- # The framework type, such as a custom framework or a standard
2430
+ # Specifies whether the framework is a standard framework or a custom
2395
2431
  # framework.
2396
2432
  # @return [String]
2397
2433
  #
2398
2434
  # @!attribute [rw] compliance_type
2399
- # The compliance type that the new custom framework supports, such as
2400
- # CIS or HIPAA.
2435
+ # The compliance type that the framework supports, such as CIS or
2436
+ # HIPAA.
2401
2437
  # @return [String]
2402
2438
  #
2403
2439
  # @!attribute [rw] description
@@ -2409,8 +2445,7 @@ module Aws::AuditManager
2409
2445
  # @return [String]
2410
2446
  #
2411
2447
  # @!attribute [rw] control_sources
2412
- # The sources that Audit Manager collects evidence from for the
2413
- # control.
2448
+ # The control data sources where Audit Manager collects evidence from.
2414
2449
  # @return [String]
2415
2450
  #
2416
2451
  # @!attribute [rw] control_sets
@@ -2656,7 +2691,7 @@ module Aws::AuditManager
2656
2691
  end
2657
2692
 
2658
2693
  # @!attribute [rw] control
2659
- # The name of the control that the `GetControl` API returned.
2694
+ # The details of the control that the `GetControl` API returned.
2660
2695
  # @return [Types::Control]
2661
2696
  #
2662
2697
  # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/GetControlResponse AWS API Documentation
@@ -2753,6 +2788,42 @@ module Aws::AuditManager
2753
2788
  include Aws::Structure
2754
2789
  end
2755
2790
 
2791
+ # @!attribute [rw] file_name
2792
+ # The file that you want to upload. For a list of supported file
2793
+ # formats, see [Supported file types for manual evidence][1] in the
2794
+ # *Audit Manager User Guide*.
2795
+ #
2796
+ #
2797
+ #
2798
+ # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/upload-evidence.html#supported-manual-evidence-files
2799
+ # @return [String]
2800
+ #
2801
+ # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/GetEvidenceFileUploadUrlRequest AWS API Documentation
2802
+ #
2803
+ class GetEvidenceFileUploadUrlRequest < Struct.new(
2804
+ :file_name)
2805
+ SENSITIVE = []
2806
+ include Aws::Structure
2807
+ end
2808
+
2809
+ # @!attribute [rw] evidence_file_name
2810
+ # The name of the uploaded manual evidence file that the presigned URL
2811
+ # was generated for.
2812
+ # @return [String]
2813
+ #
2814
+ # @!attribute [rw] upload_url
2815
+ # The presigned URL that was generated.
2816
+ # @return [String]
2817
+ #
2818
+ # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/GetEvidenceFileUploadUrlResponse AWS API Documentation
2819
+ #
2820
+ class GetEvidenceFileUploadUrlResponse < Struct.new(
2821
+ :evidence_file_name,
2822
+ :upload_url)
2823
+ SENSITIVE = []
2824
+ include Aws::Structure
2825
+ end
2826
+
2756
2827
  # @!attribute [rw] assessment_id
2757
2828
  # The unique identifier for the assessment.
2758
2829
  # @return [String]
@@ -3320,7 +3391,8 @@ module Aws::AuditManager
3320
3391
  end
3321
3392
 
3322
3393
  # @!attribute [rw] framework_metadata_list
3323
- # The list of metadata objects for the framework.
3394
+ # A list of metadata that the `ListAssessmentFrameworks` API returns
3395
+ # for each framework.
3324
3396
  # @return [Array<Types::AssessmentFrameworkMetadata>]
3325
3397
  #
3326
3398
  # @!attribute [rw] next_token
@@ -3396,7 +3468,8 @@ module Aws::AuditManager
3396
3468
  end
3397
3469
 
3398
3470
  # @!attribute [rw] assessment_metadata
3399
- # The metadata that's associated with the assessment.
3471
+ # The metadata that the `ListAssessments` API returns for each
3472
+ # assessment.
3400
3473
  # @return [Array<Types::AssessmentMetadataItem>]
3401
3474
  #
3402
3475
  # @!attribute [rw] next_token
@@ -3554,8 +3627,8 @@ module Aws::AuditManager
3554
3627
  end
3555
3628
 
3556
3629
  # @!attribute [rw] control_metadata_list
3557
- # The list of control metadata objects that the `ListControls` API
3558
- # returned.
3630
+ # A list of metadata that the `ListControls` API returns for each
3631
+ # control.
3559
3632
  # @return [Array<Types::ControlMetadata>]
3560
3633
  #
3561
3634
  # @!attribute [rw] next_token
@@ -3670,16 +3743,35 @@ module Aws::AuditManager
3670
3743
  include Aws::Structure
3671
3744
  end
3672
3745
 
3673
- # Evidence that's uploaded to Audit Manager manually.
3746
+ # Evidence that's manually added to a control in Audit Manager.
3747
+ # `manualEvidence` can be one of the following: `evidenceFileName`,
3748
+ # `s3ResourcePath`, or `textResponse`.
3674
3749
  #
3675
3750
  # @!attribute [rw] s3_resource_path
3676
- # The Amazon S3 URL that points to a manual evidence object.
3751
+ # The S3 URL of the object that's imported as manual evidence.
3752
+ # @return [String]
3753
+ #
3754
+ # @!attribute [rw] text_response
3755
+ # The plain text response that's entered and saved as manual
3756
+ # evidence.
3757
+ # @return [String]
3758
+ #
3759
+ # @!attribute [rw] evidence_file_name
3760
+ # The name of the file that's uploaded as manual evidence. This name
3761
+ # is populated using the `evidenceFileName` value from the [
3762
+ # `GetEvidenceFileUploadUrl` ][1] API response.
3763
+ #
3764
+ #
3765
+ #
3766
+ # [1]: https://docs.aws.amazon.com/audit-manager/latest/APIReference/API_GetEvidenceFileUploadUrl.html
3677
3767
  # @return [String]
3678
3768
  #
3679
3769
  # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/ManualEvidence AWS API Documentation
3680
3770
  #
3681
3771
  class ManualEvidence < Struct.new(
3682
- :s3_resource_path)
3772
+ :s3_resource_path,
3773
+ :text_response,
3774
+ :evidence_file_name)
3683
3775
  SENSITIVE = []
3684
3776
  include Aws::Structure
3685
3777
  end
@@ -3975,7 +4067,7 @@ module Aws::AuditManager
3975
4067
  # @return [String]
3976
4068
  #
3977
4069
  # @!attribute [rw] default_assessment_reports_destination
3978
- # The default storage destination for assessment reports.
4070
+ # The default S3 destination bucket for storing assessment reports.
3979
4071
  # @return [Types::AssessmentReportsDestination]
3980
4072
  #
3981
4073
  # @!attribute [rw] default_process_owners
@@ -3996,6 +4088,11 @@ module Aws::AuditManager
3996
4088
  # deregister Audit Manager.
3997
4089
  # @return [Types::DeregistrationPolicy]
3998
4090
  #
4091
+ # @!attribute [rw] default_export_destination
4092
+ # The default S3 destination bucket for storing evidence finder
4093
+ # exports.
4094
+ # @return [Types::DefaultExportDestination]
4095
+ #
3999
4096
  # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/Settings AWS API Documentation
4000
4097
  #
4001
4098
  class Settings < Struct.new(
@@ -4005,17 +4102,24 @@ module Aws::AuditManager
4005
4102
  :default_process_owners,
4006
4103
  :kms_key,
4007
4104
  :evidence_finder_enablement,
4008
- :deregistration_policy)
4105
+ :deregistration_policy,
4106
+ :default_export_destination)
4009
4107
  SENSITIVE = []
4010
4108
  include Aws::Structure
4011
4109
  end
4012
4110
 
4013
- # The keyword to search for in CloudTrail logs, Config rules, Security
4014
- # Hub checks, and Amazon Web Services API names.
4111
+ # A keyword that relates to the control data source.
4112
+ #
4113
+ # For manual evidence, this keyword indicates if the manual evidence is
4114
+ # a file or text.
4115
+ #
4116
+ # For automated evidence, this keyword identifies a specific CloudTrail
4117
+ # event, Config rule, Security Hub control, or Amazon Web Services API
4118
+ # name.
4015
4119
  #
4016
4120
  # To learn more about the supported keywords that you can use when
4017
4121
  # mapping a control data source, see the following pages in the *Audit
4018
- # Manager User Guide*\:
4122
+ # Manager User Guide*:
4019
4123
  #
4020
4124
  # * [Config rules supported by Audit Manager][1]
4021
4125
  #
@@ -4027,13 +4131,33 @@ module Aws::AuditManager
4027
4131
  #
4028
4132
  #
4029
4133
  #
4030
- # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-ash.html
4031
- # [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-config.html
4134
+ # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-config.html
4135
+ # [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-ash.html
4032
4136
  # [3]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-api.html
4033
4137
  # [4]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-cloudtrail.html
4034
4138
  #
4035
4139
  # @!attribute [rw] keyword_input_type
4036
4140
  # The input method for the keyword.
4141
+ #
4142
+ # * `SELECT_FROM_LIST` is used when mapping a data source for
4143
+ # automated evidence.
4144
+ #
4145
+ # * When `keywordInputType` is `SELECT_FROM_LIST`, a keyword must be
4146
+ # selected to collect automated evidence. For example, this
4147
+ # keyword can be a CloudTrail event name, a rule name for Config,
4148
+ # a Security Hub control, or the name of an Amazon Web Services
4149
+ # API call.
4150
+ #
4151
+ # ^
4152
+ #
4153
+ # * `UPLOAD_FILE` and `INPUT_TEXT` are only used when mapping a data
4154
+ # source for manual evidence.
4155
+ #
4156
+ # * When `keywordInputType` is `UPLOAD_FILE`, a file must be
4157
+ # uploaded as manual evidence.
4158
+ #
4159
+ # * When `keywordInputType` is `INPUT_TEXT`, text must be entered as
4160
+ # manual evidence.
4037
4161
  # @return [String]
4038
4162
  #
4039
4163
  # @!attribute [rw] keyword_value
@@ -4047,35 +4171,82 @@ module Aws::AuditManager
4047
4171
  #
4048
4172
  # * For [managed rules][1], you can use the rule identifier as the
4049
4173
  # `keywordValue`. You can find the rule identifier from the [list of
4050
- # Config managed rules][2].
4174
+ # Config managed rules][2]. For some rules, the rule identifier is
4175
+ # different from the rule name. For example, the rule name
4176
+ # `restricted-ssh` has the following rule identifier:
4177
+ # `INCOMING_SSH_DISABLED`. Make sure to use the rule identifier, not
4178
+ # the rule name.
4179
+ #
4180
+ # Keyword example for managed rules:
4051
4181
  #
4052
4182
  # * Managed rule name: [s3-bucket-acl-prohibited][3]
4053
4183
  #
4054
- # `keywordValue`\: `S3_BUCKET_ACL_PROHIBITED`
4184
+ # `keywordValue`: `S3_BUCKET_ACL_PROHIBITED`
4055
4185
  #
4056
4186
  # * For [custom rules][4], you form the `keywordValue` by adding the
4057
4187
  # `Custom_` prefix to the rule name. This prefix distinguishes the
4058
- # rule from a managed rule.
4188
+ # custom rule from a managed rule.
4189
+ #
4190
+ # Keyword example for custom rules:
4059
4191
  #
4060
4192
  # * Custom rule name: my-custom-config-rule
4061
4193
  #
4062
- # `keywordValue`\: `Custom_my-custom-config-rule`
4194
+ # `keywordValue`: `Custom_my-custom-config-rule`
4063
4195
  #
4064
4196
  # * For [service-linked rules][5], you form the `keywordValue` by
4065
4197
  # adding the `Custom_` prefix to the rule name. In addition, you
4066
4198
  # remove the suffix ID that appears at the end of the rule name.
4067
4199
  #
4200
+ # Keyword examples for service-linked rules:
4201
+ #
4068
4202
  # * Service-linked rule name:
4069
4203
  # CustomRuleForAccount-conformance-pack-szsm1uv0w
4070
4204
  #
4071
- # `keywordValue`\: `Custom_CustomRuleForAccount-conformance-pack`
4205
+ # `keywordValue`: `Custom_CustomRuleForAccount-conformance-pack`
4072
4206
  #
4073
4207
  # * Service-linked rule name:
4074
4208
  # OrgConfigRule-s3-bucket-versioning-enabled-dbgzf8ba
4075
4209
  #
4076
- # `keywordValue`\:
4210
+ # `keywordValue`:
4077
4211
  # `Custom_OrgConfigRule-s3-bucket-versioning-enabled`
4078
4212
  #
4213
+ # The `keywordValue` is case sensitive. If you enter a value
4214
+ # incorrectly, Audit Manager might not recognize the data source
4215
+ # mapping. As a result, you might not successfully collect evidence
4216
+ # from that data source as intended.
4217
+ #
4218
+ # Keep in mind the following requirements, depending on the data
4219
+ # source type that you're using.
4220
+ #
4221
+ # 1. For Config:
4222
+ #
4223
+ # * For managed rules, make sure that the `keywordValue` is the
4224
+ # rule identifier in `ALL_CAPS_WITH_UNDERSCORES`. For example,
4225
+ # `CLOUDWATCH_LOG_GROUP_ENCRYPTED`. For accuracy, we recommend
4226
+ # that you reference the list of [supported Config managed
4227
+ # rules][6].
4228
+ #
4229
+ # * For custom rules, make sure that the `keywordValue` has the
4230
+ # `Custom_` prefix followed by the custom rule name. The format
4231
+ # of the custom rule name itself may vary. For accuracy, we
4232
+ # recommend that you visit the [Config console][7] to verify
4233
+ # your custom rule name.
4234
+ #
4235
+ # 2. For Security Hub: The format varies for Security Hub control
4236
+ # names. For accuracy, we recommend that you reference the list of
4237
+ # [supported Security Hub controls][8].
4238
+ #
4239
+ # 3. For Amazon Web Services API calls: Make sure that the
4240
+ # `keywordValue` is written as `serviceprefix_ActionName`. For
4241
+ # example, `iam_ListGroups`. For accuracy, we recommend that you
4242
+ # reference the list of [supported API calls][9].
4243
+ #
4244
+ # 4. For CloudTrail: Make sure that the `keywordValue` is written as
4245
+ # `serviceprefix_ActionName`. For example,
4246
+ # `cloudtrail_StartLogging`. For accuracy, we recommend that you
4247
+ # review the Amazon Web Service prefix and action names in the
4248
+ # [Service Authorization Reference][10].
4249
+ #
4079
4250
  #
4080
4251
  #
4081
4252
  # [1]: https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config_use-managed-rules.html
@@ -4083,6 +4254,11 @@ module Aws::AuditManager
4083
4254
  # [3]: https://docs.aws.amazon.com/config/latest/developerguide/s3-bucket-acl-prohibited.html
4084
4255
  # [4]: https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config_develop-rules.html
4085
4256
  # [5]: https://docs.aws.amazon.com/config/latest/developerguide/service-linked-awsconfig-rules.html
4257
+ # [6]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-config.html
4258
+ # [7]: https://console.aws.amazon.com/config/
4259
+ # [8]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-ash.html
4260
+ # [9]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-api.html
4261
+ # [10]: https://docs.aws.amazon.com/service-authorization/latest/reference/reference_policies_actions-resources-contextkeys.html
4086
4262
  # @return [String]
4087
4263
  #
4088
4264
  # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/SourceKeyword AWS API Documentation
@@ -4543,7 +4719,7 @@ module Aws::AuditManager
4543
4719
  # @return [String]
4544
4720
  #
4545
4721
  # @!attribute [rw] default_assessment_reports_destination
4546
- # The default storage destination for assessment reports.
4722
+ # The default S3 destination bucket for storing assessment reports.
4547
4723
  # @return [Types::AssessmentReportsDestination]
4548
4724
  #
4549
4725
  # @!attribute [rw] default_process_owners
@@ -4576,6 +4752,11 @@ module Aws::AuditManager
4576
4752
  # deregister Audit Manager.
4577
4753
  # @return [Types::DeregistrationPolicy]
4578
4754
  #
4755
+ # @!attribute [rw] default_export_destination
4756
+ # The default S3 destination bucket for storing evidence finder
4757
+ # exports.
4758
+ # @return [Types::DefaultExportDestination]
4759
+ #
4579
4760
  # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/UpdateSettingsRequest AWS API Documentation
4580
4761
  #
4581
4762
  class UpdateSettingsRequest < Struct.new(
@@ -4584,7 +4765,8 @@ module Aws::AuditManager
4584
4765
  :default_process_owners,
4585
4766
  :kms_key,
4586
4767
  :evidence_finder_enabled,
4587
- :deregistration_policy)
4768
+ :deregistration_policy,
4769
+ :default_export_destination)
4588
4770
  SENSITIVE = []
4589
4771
  include Aws::Structure
4590
4772
  end
@@ -52,6 +52,6 @@ require_relative 'aws-sdk-auditmanager/customizations'
52
52
  # @!group service
53
53
  module Aws::AuditManager
54
54
 
55
- GEM_VERSION = '1.31.0'
55
+ GEM_VERSION = '1.33.0'
56
56
 
57
57
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-auditmanager
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.31.0
4
+ version: 1.33.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-02-20 00:00:00.000000000 Z
11
+ date: 2023-06-15 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-core
@@ -19,7 +19,7 @@ dependencies:
19
19
  version: '3'
20
20
  - - ">="
21
21
  - !ruby/object:Gem::Version
22
- version: 3.165.0
22
+ version: 3.174.0
23
23
  type: :runtime
24
24
  prerelease: false
25
25
  version_requirements: !ruby/object:Gem::Requirement
@@ -29,7 +29,7 @@ dependencies:
29
29
  version: '3'
30
30
  - - ">="
31
31
  - !ruby/object:Gem::Version
32
- version: 3.165.0
32
+ version: 3.174.0
33
33
  - !ruby/object:Gem::Dependency
34
34
  name: aws-sigv4
35
35
  requirement: !ruby/object:Gem::Requirement