RubyGems - aws-sdk-auditmanager - Versions diffs - 1.32.0 → 1.33.0 - Mend

aws-sdk-auditmanager 1.32.0 → 1.33.0

Files changed (10) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +5 -0
data/VERSION +1 -1
data/lib/aws-sdk-auditmanager/client.rb +119 -45
data/lib/aws-sdk-auditmanager/client_api.rb +34 -0
data/lib/aws-sdk-auditmanager/endpoints.rb +15 -0
data/lib/aws-sdk-auditmanager/plugins/endpoints.rb +2 -0
data/lib/aws-sdk-auditmanager/types.rb +217 -35
data/lib/aws-sdk-auditmanager.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: ecebd55933a905e415184c5b1621071801311a3e06f88dda32b0e718710fb9b1
-  data.tar.gz: 64fba66b517e923c647fc90cc2d71a23159539864ec645ee41a6439d0ee694b5
+  metadata.gz: 80d86cf5a36a9e1e14f5542233864419448bab7cbca0057a7fa92e639b38a45b
+  data.tar.gz: db63fe60703361fb541cabf5fd139cd4d486754ed4e41340be47bf5d3f4dba34
 SHA512:
-  metadata.gz: 263d9275451f8ec7fdc889c2b11c496996681cab6ff8a001b8c34cf1f984ea2971acce01df4cbb2d0279b732c5f67f748ff897cf5b22e9e902e90afe07ee25c4
-  data.tar.gz: a4484026dc0c02eaa9bfc05f34fffb3ad5ba36067c15a317822cd7380ff51920744e7b3856a16c3291700e79bcb28373ef0233afaf86ec509f1d586ac1f986c7
+  metadata.gz: 0ff3579e3c53c987323b3ff5d41896dc02fa0f0aa98ddfde60981c701b49e650c83e3784ddc0c330a6f09fc904b62ca1a551b36968775035dc63e14fab0fd6cc
+  data.tar.gz: 8445389e60e41af920b819aa56d0b3dfa42e19cb66cc05374a0bf6f81b91c5ee2418c0fff260ad216e244dd811802e9b62847791a6be81e753288a2ce3708829

data/CHANGELOG.md CHANGED Viewed

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
+1.33.0 (2023-06-15)
+------------------
+* Feature - This release introduces 2 Audit Manager features: CSV exports and new manual evidence options. You can now export your evidence finder results in CSV format. In addition, you can now add manual evidence to a control by entering free-form text or uploading a file from your browser.
 1.32.0 (2023-05-31)
 ------------------

data/VERSION CHANGED Viewed

	@@ -1 +1 @@
1	- 1.32.0
1	+ 1.33.0

data/lib/aws-sdk-auditmanager/client.rb CHANGED Viewed

@@ -579,34 +579,32 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Uploads one or more pieces of evidence to a control in an Audit
-    # Manager assessment. You can upload manual evidence from any Amazon
-    # Simple Storage Service (Amazon S3) bucket by specifying the S3 URI of
-    # the evidence.
+    # Adds one or more pieces of evidence to a control in an Audit Manager
+    # assessment.
     #
-    # You must upload manual evidence to your S3 bucket before you can
-    # upload it to your assessment. For instructions, see [CreateBucket][1]
-    # and [PutObject][2] in the *Amazon Simple Storage Service API
-    # Reference.*
+    # You can import manual evidence from any S3 bucket by specifying the S3
+    # URI of the object. You can also upload a file from your browser, or
+    # enter plain text in response to a risk assessment question.
     #
     # The following restrictions apply to this action:
     #
+    # * `manualEvidence` can be only one of the following:
+    #   `evidenceFileName`, `s3ResourcePath`, or `textResponse`
+    #
     # * Maximum size of an individual evidence file: 100 MB
     #
     # * Number of daily manual evidence uploads per control: 100
     #
     # * Supported file formats: See [Supported file types for manual
-    #   evidence][3] in the *Audit Manager User Guide*
+    #   evidence][1] in the *Audit Manager User Guide*
     #
     # For more information about Audit Manager service restrictions, see
-    # [Quotas and restrictions for Audit Manager][4].
+    # [Quotas and restrictions for Audit Manager][2].
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_CreateBucket.html
-    # [2]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html
-    # [3]: https://docs.aws.amazon.com/audit-manager/latest/userguide/upload-evidence.html#supported-manual-evidence-files
-    # [4]: https://docs.aws.amazon.com/audit-manager/latest/userguide/service-quotas.html
+    # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/upload-evidence.html#supported-manual-evidence-files
+    # [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/service-quotas.html
     #
     # @option params [required, String] :assessment_id
     #   The identifier for the assessment.
@@ -633,6 +631,8 @@ module Aws::AuditManager
     #     manual_evidence: [ # required
     #       {
     #         s3_resource_path: "S3Url",
+    #         text_response: "ManualEvidenceTextResponse",
+    #         evidence_file_name: "ManualEvidenceLocalFileName",
     #       },
     #     ],
     #   })
@@ -641,6 +641,8 @@ module Aws::AuditManager
     #
     #   resp.errors #=> Array
     #   resp.errors[0].manual_evidence.s3_resource_path #=> String
+    #   resp.errors[0].manual_evidence.text_response #=> String
+    #   resp.errors[0].manual_evidence.evidence_file_name #=> String
     #   resp.errors[0].error_code #=> String
     #   resp.errors[0].error_message #=> String
     #
@@ -879,7 +881,7 @@ module Aws::AuditManager
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_description #=> String
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_set_up_option #=> String, one of "System_Controls_Mapping", "Procedural_Controls_Mapping"
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_type #=> String, one of "AWS_Cloudtrail", "AWS_Config", "AWS_Security_Hub", "AWS_API_Call", "MANUAL"
-    #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST"
+    #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST", "UPLOAD_FILE", "INPUT_TEXT"
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_value #=> String
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_frequency #=> String, one of "DAILY", "WEEKLY", "MONTHLY"
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].troubleshooting_text #=> String
@@ -1016,7 +1018,7 @@ module Aws::AuditManager
     #         source_set_up_option: "System_Controls_Mapping", # accepts System_Controls_Mapping, Procedural_Controls_Mapping
     #         source_type: "AWS_Cloudtrail", # accepts AWS_Cloudtrail, AWS_Config, AWS_Security_Hub, AWS_API_Call, MANUAL
     #         source_keyword: {
-    #           keyword_input_type: "SELECT_FROM_LIST", # accepts SELECT_FROM_LIST
+    #           keyword_input_type: "SELECT_FROM_LIST", # accepts SELECT_FROM_LIST, UPLOAD_FILE, INPUT_TEXT
     #           keyword_value: "KeywordValue",
     #         },
     #         source_frequency: "DAILY", # accepts DAILY, WEEKLY, MONTHLY
@@ -1045,7 +1047,7 @@ module Aws::AuditManager
     #   resp.control.control_mapping_sources[0].source_description #=> String
     #   resp.control.control_mapping_sources[0].source_set_up_option #=> String, one of "System_Controls_Mapping", "Procedural_Controls_Mapping"
     #   resp.control.control_mapping_sources[0].source_type #=> String, one of "AWS_Cloudtrail", "AWS_Config", "AWS_Security_Hub", "AWS_API_Call", "MANUAL"
-    #   resp.control.control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST"
+    #   resp.control.control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST", "UPLOAD_FILE", "INPUT_TEXT"
     #   resp.control.control_mapping_sources[0].source_keyword.keyword_value #=> String
     #   resp.control.control_mapping_sources[0].source_frequency #=> String, one of "DAILY", "WEEKLY", "MONTHLY"
     #   resp.control.control_mapping_sources[0].troubleshooting_text #=> String
@@ -1192,6 +1194,12 @@ module Aws::AuditManager
     # Deletes a custom control in Audit Manager.
     #
+    # When you invoke this operation, the custom control is deleted from any
+    # frameworks or assessments that it’s currently part of. As a result,
+    # Audit Manager will stop collecting evidence for that custom control in
+    # all of your assessments. This includes assessments that you previously
+    # created before you deleted the custom control.
+    #
     # @option params [required, String] :control_id
     #   The unique identifier for the control.
     #
@@ -1367,7 +1375,7 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns the registration status of an account in Audit Manager.
+    # Gets the registration status of an account in Audit Manager.
     #
     # @return [Types::GetAccountStatusResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -1386,7 +1394,7 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns an assessment from Audit Manager.
+    # Gets information about a specified assessment.
     #
     # @option params [required, String] :assessment_id
     #   The unique identifier for the assessment.
@@ -1493,7 +1501,7 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns a framework from Audit Manager.
+    # Gets information about a specified framework.
     #
     # @option params [required, String] :framework_id
     #   The identifier for the framework.
@@ -1537,7 +1545,7 @@ module Aws::AuditManager
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_description #=> String
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_set_up_option #=> String, one of "System_Controls_Mapping", "Procedural_Controls_Mapping"
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_type #=> String, one of "AWS_Cloudtrail", "AWS_Config", "AWS_Security_Hub", "AWS_API_Call", "MANUAL"
-    #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST"
+    #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST", "UPLOAD_FILE", "INPUT_TEXT"
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_value #=> String
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_frequency #=> String, one of "DAILY", "WEEKLY", "MONTHLY"
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].troubleshooting_text #=> String
@@ -1563,7 +1571,7 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns the URL of an assessment report in Audit Manager.
+    # Gets the URL of an assessment report in Audit Manager.
     #
     # @option params [required, String] :assessment_report_id
     #   The unique identifier for the assessment report.
@@ -1596,7 +1604,7 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns a list of changelogs from Audit Manager.
+    # Gets a list of changelogs from Audit Manager.
     #
     # @option params [required, String] :assessment_id
     #   The unique identifier for the assessment.
@@ -1650,7 +1658,7 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns a control from Audit Manager.
+    # Gets information about a specified control.
     #
     # @option params [required, String] :control_id
     #   The identifier for the control.
@@ -1682,7 +1690,7 @@ module Aws::AuditManager
     #   resp.control.control_mapping_sources[0].source_description #=> String
     #   resp.control.control_mapping_sources[0].source_set_up_option #=> String, one of "System_Controls_Mapping", "Procedural_Controls_Mapping"
     #   resp.control.control_mapping_sources[0].source_type #=> String, one of "AWS_Cloudtrail", "AWS_Config", "AWS_Security_Hub", "AWS_API_Call", "MANUAL"
-    #   resp.control.control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST"
+    #   resp.control.control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST", "UPLOAD_FILE", "INPUT_TEXT"
     #   resp.control.control_mapping_sources[0].source_keyword.keyword_value #=> String
     #   resp.control.control_mapping_sources[0].source_frequency #=> String, one of "DAILY", "WEEKLY", "MONTHLY"
     #   resp.control.control_mapping_sources[0].troubleshooting_text #=> String
@@ -1702,7 +1710,7 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns a list of delegations from an audit owner to a delegate.
+    # Gets a list of delegations from an audit owner to a delegate.
     #
     # @option params [String] :next_token
     #   The pagination token that's used to fetch the next set of results.
@@ -1746,7 +1754,7 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns evidence from Audit Manager.
+    # Gets information about a specified evidence item.
     #
     # @option params [required, String] :assessment_id
     #   The unique identifier for the assessment.
@@ -1804,8 +1812,7 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns all evidence from a specified evidence folder in Audit
-    # Manager.
+    # Gets all evidence from a specified evidence folder in Audit Manager.
     #
     # @option params [required, String] :assessment_id
     #   The identifier for the assessment.
@@ -1873,8 +1880,64 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns an evidence folder from the specified assessment in Audit
-    # Manager.
+    # Creates a presigned Amazon S3 URL that can be used to upload a file as
+    # manual evidence. For instructions on how to use this operation, see
+    # [Upload a file from your browser ][1] in the *Audit Manager User
+    # Guide*.
+    #
+    # The following restrictions apply to this operation:
+    #
+    # * Maximum size of an individual evidence file: 100 MB
+    #
+    # * Number of daily manual evidence uploads per control: 100
+    #
+    # * Supported file formats: See [Supported file types for manual
+    #   evidence][2] in the *Audit Manager User Guide*
+    #
+    # For more information about Audit Manager service restrictions, see
+    # [Quotas and restrictions for Audit Manager][3].
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/upload-evidence.html#how-to-upload-manual-evidence-files
+    # [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/upload-evidence.html#supported-manual-evidence-files
+    # [3]: https://docs.aws.amazon.com/audit-manager/latest/userguide/service-quotas.html
+    #
+    # @option params [required, String] :file_name
+    #   The file that you want to upload. For a list of supported file
+    #   formats, see [Supported file types for manual evidence][1] in the
+    #   *Audit Manager User Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/upload-evidence.html#supported-manual-evidence-files
+    #
+    # @return [Types::GetEvidenceFileUploadUrlResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetEvidenceFileUploadUrlResponse#evidence_file_name #evidence_file_name} => String
+    #   * {Types::GetEvidenceFileUploadUrlResponse#upload_url #upload_url} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.get_evidence_file_upload_url({
+    #     file_name: "ManualEvidenceLocalFileName", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.evidence_file_name #=> String
+    #   resp.upload_url #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/GetEvidenceFileUploadUrl AWS API Documentation
+    #
+    # @overload get_evidence_file_upload_url(params = {})
+    # @param [Hash] params ({})
+    def get_evidence_file_upload_url(params = {}, options = {})
+      req = build_request(:get_evidence_file_upload_url, params)
+      req.send_request(options)
+    end
+    # Gets an evidence folder from a specified assessment in Audit Manager.
     #
     # @option params [required, String] :assessment_id
     #   The unique identifier for the assessment.
@@ -1927,7 +1990,7 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns the evidence folders from a specified assessment in Audit
+    # Gets the evidence folders from a specified assessment in Audit
     # Manager.
     #
     # @option params [required, String] :assessment_id
@@ -1987,8 +2050,8 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns a list of evidence folders that are associated with a
-    # specified control in an Audit Manager assessment.
+    # Gets a list of evidence folders that are associated with a specified
+    # control in an Audit Manager assessment.
     #
     # @option params [required, String] :assessment_id
     #   The identifier for the assessment.
@@ -2114,8 +2177,8 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns the name of the delegated Amazon Web Services administrator
-    # account for the organization.
+    # Gets the name of the delegated Amazon Web Services administrator
+    # account for a specified organization.
     #
     # @return [Types::GetOrganizationAdminAccountResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -2136,8 +2199,8 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns a list of all of the Amazon Web Services that you can choose
-    # to include in your assessment. When you [create an assessment][1],
+    # Gets a list of all of the Amazon Web Services that you can choose to
+    # include in your assessment. When you [create an assessment][1],
     # specify which of these services you want to include to narrow the
     # assessment's [scope][2].
     #
@@ -2167,7 +2230,7 @@ module Aws::AuditManager
       req.send_request(options)
     end
-    # Returns the settings for the specified Amazon Web Services account.
+    # Gets the settings for a specified Amazon Web Services account.
     #
     # @option params [required, String] :attribute
     #   The list of setting attribute enum values.
@@ -2179,7 +2242,7 @@ module Aws::AuditManager
     # @example Request syntax with placeholder values
     #
     #   resp = client.get_settings({
-    #     attribute: "ALL", # required, accepts ALL, IS_AWS_ORG_ENABLED, SNS_TOPIC, DEFAULT_ASSESSMENT_REPORTS_DESTINATION, DEFAULT_PROCESS_OWNERS, EVIDENCE_FINDER_ENABLEMENT, DEREGISTRATION_POLICY
+    #     attribute: "ALL", # required, accepts ALL, IS_AWS_ORG_ENABLED, SNS_TOPIC, DEFAULT_ASSESSMENT_REPORTS_DESTINATION, DEFAULT_PROCESS_OWNERS, EVIDENCE_FINDER_ENABLEMENT, DEREGISTRATION_POLICY, DEFAULT_EXPORT_DESTINATION
     #   })
     #
     # @example Response structure
@@ -2197,6 +2260,8 @@ module Aws::AuditManager
     #   resp.settings.evidence_finder_enablement.backfill_status #=> String, one of "NOT_STARTED", "IN_PROGRESS", "COMPLETED"
     #   resp.settings.evidence_finder_enablement.error #=> String
     #   resp.settings.deregistration_policy.delete_resources #=> String, one of "ALL", "DEFAULT"
+    #   resp.settings.default_export_destination.destination_type #=> String, one of "S3"
+    #   resp.settings.default_export_destination.destination #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/GetSettings AWS API Documentation
     #
@@ -3377,7 +3442,7 @@ module Aws::AuditManager
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_description #=> String
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_set_up_option #=> String, one of "System_Controls_Mapping", "Procedural_Controls_Mapping"
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_type #=> String, one of "AWS_Cloudtrail", "AWS_Config", "AWS_Security_Hub", "AWS_API_Call", "MANUAL"
-    #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST"
+    #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST", "UPLOAD_FILE", "INPUT_TEXT"
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_keyword.keyword_value #=> String
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].source_frequency #=> String, one of "DAILY", "WEEKLY", "MONTHLY"
     #   resp.framework.control_sets[0].controls[0].control_mapping_sources[0].troubleshooting_text #=> String
@@ -3606,7 +3671,7 @@ module Aws::AuditManager
     #         source_set_up_option: "System_Controls_Mapping", # accepts System_Controls_Mapping, Procedural_Controls_Mapping
     #         source_type: "AWS_Cloudtrail", # accepts AWS_Cloudtrail, AWS_Config, AWS_Security_Hub, AWS_API_Call, MANUAL
     #         source_keyword: {
-    #           keyword_input_type: "SELECT_FROM_LIST", # accepts SELECT_FROM_LIST
+    #           keyword_input_type: "SELECT_FROM_LIST", # accepts SELECT_FROM_LIST, UPLOAD_FILE, INPUT_TEXT
     #           keyword_value: "KeywordValue",
     #         },
     #         source_frequency: "DAILY", # accepts DAILY, WEEKLY, MONTHLY
@@ -3632,7 +3697,7 @@ module Aws::AuditManager
     #   resp.control.control_mapping_sources[0].source_description #=> String
     #   resp.control.control_mapping_sources[0].source_set_up_option #=> String, one of "System_Controls_Mapping", "Procedural_Controls_Mapping"
     #   resp.control.control_mapping_sources[0].source_type #=> String, one of "AWS_Cloudtrail", "AWS_Config", "AWS_Security_Hub", "AWS_API_Call", "MANUAL"
-    #   resp.control.control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST"
+    #   resp.control.control_mapping_sources[0].source_keyword.keyword_input_type #=> String, one of "SELECT_FROM_LIST", "UPLOAD_FILE", "INPUT_TEXT"
     #   resp.control.control_mapping_sources[0].source_keyword.keyword_value #=> String
     #   resp.control.control_mapping_sources[0].source_frequency #=> String, one of "DAILY", "WEEKLY", "MONTHLY"
     #   resp.control.control_mapping_sources[0].troubleshooting_text #=> String
@@ -3659,7 +3724,7 @@ module Aws::AuditManager
     #   Manager sends notifications to.
     #
     # @option params [Types::AssessmentReportsDestination] :default_assessment_reports_destination
-    #   The default storage destination for assessment reports.
+    #   The default S3 destination bucket for storing assessment reports.
     #
     # @option params [Array<Types::Role>] :default_process_owners
     #   A list of the default audit owners.
@@ -3687,6 +3752,9 @@ module Aws::AuditManager
     #   this attribute to determine how your data is handled when you
     #   deregister Audit Manager.
     #
+    # @option params [Types::DefaultExportDestination] :default_export_destination
+    #   The default S3 destination bucket for storing evidence finder exports.
+    #
     # @return [Types::UpdateSettingsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::UpdateSettingsResponse#settings #settings} => Types::Settings
@@ -3710,6 +3778,10 @@ module Aws::AuditManager
     #     deregistration_policy: {
     #       delete_resources: "ALL", # accepts ALL, DEFAULT
     #     },
+    #     default_export_destination: {
+    #       destination_type: "S3", # accepts S3
+    #       destination: "S3Url",
+    #     },
     #   })
     #
     # @example Response structure
@@ -3727,6 +3799,8 @@ module Aws::AuditManager
     #   resp.settings.evidence_finder_enablement.backfill_status #=> String, one of "NOT_STARTED", "IN_PROGRESS", "COMPLETED"
     #   resp.settings.evidence_finder_enablement.error #=> String
     #   resp.settings.deregistration_policy.delete_resources #=> String, one of "ALL", "DEFAULT"
+    #   resp.settings.default_export_destination.destination_type #=> String, one of "S3"
+    #   resp.settings.default_export_destination.destination #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/UpdateSettings AWS API Documentation
     #
@@ -3788,7 +3862,7 @@ module Aws::AuditManager
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-auditmanager'
-      context[:gem_version] = '1.32.0'
+      context[:gem_version] = '1.33.0'
       Seahorse::Client::Request.new(handlers, context)
     end

data/lib/aws-sdk-auditmanager/client_api.rb CHANGED Viewed

@@ -122,6 +122,7 @@ module Aws::AuditManager
     CreateDelegationRequest = Shapes::StructureShape.new(name: 'CreateDelegationRequest')
     CreateDelegationRequests = Shapes::ListShape.new(name: 'CreateDelegationRequests')
     CreatedBy = Shapes::StringShape.new(name: 'CreatedBy')
+    DefaultExportDestination = Shapes::StructureShape.new(name: 'DefaultExportDestination')
     Delegation = Shapes::StructureShape.new(name: 'Delegation')
     DelegationComment = Shapes::StringShape.new(name: 'DelegationComment')
     DelegationIds = Shapes::ListShape.new(name: 'DelegationIds')
@@ -162,6 +163,7 @@ module Aws::AuditManager
     EvidenceInsights = Shapes::StructureShape.new(name: 'EvidenceInsights')
     EvidenceList = Shapes::ListShape.new(name: 'EvidenceList')
     EvidenceSources = Shapes::ListShape.new(name: 'EvidenceSources')
+    ExportDestinationType = Shapes::StringShape.new(name: 'ExportDestinationType')
     Filename = Shapes::StringShape.new(name: 'Filename')
     Framework = Shapes::StructureShape.new(name: 'Framework')
     FrameworkDescription = Shapes::StringShape.new(name: 'FrameworkDescription')
@@ -186,6 +188,8 @@ module Aws::AuditManager
     GetDelegationsResponse = Shapes::StructureShape.new(name: 'GetDelegationsResponse')
     GetEvidenceByEvidenceFolderRequest = Shapes::StructureShape.new(name: 'GetEvidenceByEvidenceFolderRequest')
     GetEvidenceByEvidenceFolderResponse = Shapes::StructureShape.new(name: 'GetEvidenceByEvidenceFolderResponse')
+    GetEvidenceFileUploadUrlRequest = Shapes::StructureShape.new(name: 'GetEvidenceFileUploadUrlRequest')
+    GetEvidenceFileUploadUrlResponse = Shapes::StructureShape.new(name: 'GetEvidenceFileUploadUrlResponse')
     GetEvidenceFolderRequest = Shapes::StructureShape.new(name: 'GetEvidenceFolderRequest')
     GetEvidenceFolderResponse = Shapes::StructureShape.new(name: 'GetEvidenceFolderResponse')
     GetEvidenceFoldersByAssessmentControlRequest = Shapes::StructureShape.new(name: 'GetEvidenceFoldersByAssessmentControlRequest')
@@ -242,6 +246,8 @@ module Aws::AuditManager
     ListTagsForResourceResponse = Shapes::StructureShape.new(name: 'ListTagsForResourceResponse')
     ManualEvidence = Shapes::StructureShape.new(name: 'ManualEvidence')
     ManualEvidenceList = Shapes::ListShape.new(name: 'ManualEvidenceList')
+    ManualEvidenceLocalFileName = Shapes::StringShape.new(name: 'ManualEvidenceLocalFileName')
+    ManualEvidenceTextResponse = Shapes::StringShape.new(name: 'ManualEvidenceTextResponse')
     MaxResults = Shapes::IntegerShape.new(name: 'MaxResults')
     NonEmptyString = Shapes::StringShape.new(name: 'NonEmptyString')
     Notification = Shapes::StructureShape.new(name: 'Notification')
@@ -724,6 +730,10 @@ module Aws::AuditManager
     CreateDelegationRequests.member = Shapes::ShapeRef.new(shape: CreateDelegationRequest)
+    DefaultExportDestination.add_member(:destination_type, Shapes::ShapeRef.new(shape: ExportDestinationType, location_name: "destinationType"))
+    DefaultExportDestination.add_member(:destination, Shapes::ShapeRef.new(shape: S3Url, location_name: "destination"))
+    DefaultExportDestination.struct_class = Types::DefaultExportDestination
     Delegation.add_member(:id, Shapes::ShapeRef.new(shape: UUID, location_name: "id"))
     Delegation.add_member(:assessment_name, Shapes::ShapeRef.new(shape: AssessmentName, location_name: "assessmentName"))
     Delegation.add_member(:assessment_id, Shapes::ShapeRef.new(shape: UUID, location_name: "assessmentId"))
@@ -920,6 +930,13 @@ module Aws::AuditManager
     GetEvidenceByEvidenceFolderResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: Token, location_name: "nextToken"))
     GetEvidenceByEvidenceFolderResponse.struct_class = Types::GetEvidenceByEvidenceFolderResponse
+    GetEvidenceFileUploadUrlRequest.add_member(:file_name, Shapes::ShapeRef.new(shape: ManualEvidenceLocalFileName, required: true, location: "querystring", location_name: "fileName"))
+    GetEvidenceFileUploadUrlRequest.struct_class = Types::GetEvidenceFileUploadUrlRequest
+    GetEvidenceFileUploadUrlResponse.add_member(:evidence_file_name, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "evidenceFileName"))
+    GetEvidenceFileUploadUrlResponse.add_member(:upload_url, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "uploadUrl"))
+    GetEvidenceFileUploadUrlResponse.struct_class = Types::GetEvidenceFileUploadUrlResponse
     GetEvidenceFolderRequest.add_member(:assessment_id, Shapes::ShapeRef.new(shape: UUID, required: true, location: "uri", location_name: "assessmentId"))
     GetEvidenceFolderRequest.add_member(:control_set_id, Shapes::ShapeRef.new(shape: ControlSetId, required: true, location: "uri", location_name: "controlSetId"))
     GetEvidenceFolderRequest.add_member(:evidence_folder_id, Shapes::ShapeRef.new(shape: UUID, required: true, location: "uri", location_name: "evidenceFolderId"))
@@ -1113,6 +1130,8 @@ module Aws::AuditManager
     ListTagsForResourceResponse.struct_class = Types::ListTagsForResourceResponse
     ManualEvidence.add_member(:s3_resource_path, Shapes::ShapeRef.new(shape: S3Url, location_name: "s3ResourcePath"))
+    ManualEvidence.add_member(:text_response, Shapes::ShapeRef.new(shape: ManualEvidenceTextResponse, location_name: "textResponse"))
+    ManualEvidence.add_member(:evidence_file_name, Shapes::ShapeRef.new(shape: ManualEvidenceLocalFileName, location_name: "evidenceFileName"))
     ManualEvidence.struct_class = Types::ManualEvidence
     ManualEvidenceList.member = Shapes::ShapeRef.new(shape: ManualEvidence)
@@ -1183,6 +1202,7 @@ module Aws::AuditManager
     Settings.add_member(:kms_key, Shapes::ShapeRef.new(shape: KmsKey, location_name: "kmsKey"))
     Settings.add_member(:evidence_finder_enablement, Shapes::ShapeRef.new(shape: EvidenceFinderEnablement, location_name: "evidenceFinderEnablement"))
     Settings.add_member(:deregistration_policy, Shapes::ShapeRef.new(shape: DeregistrationPolicy, location_name: "deregistrationPolicy"))
+    Settings.add_member(:default_export_destination, Shapes::ShapeRef.new(shape: DefaultExportDestination, location_name: "defaultExportDestination"))
     Settings.struct_class = Types::Settings
     SourceKeyword.add_member(:keyword_input_type, Shapes::ShapeRef.new(shape: KeywordInputType, location_name: "keywordInputType"))
@@ -1302,6 +1322,7 @@ module Aws::AuditManager
     UpdateSettingsRequest.add_member(:kms_key, Shapes::ShapeRef.new(shape: KmsKey, location_name: "kmsKey"))
     UpdateSettingsRequest.add_member(:evidence_finder_enabled, Shapes::ShapeRef.new(shape: Boolean, location_name: "evidenceFinderEnabled"))
     UpdateSettingsRequest.add_member(:deregistration_policy, Shapes::ShapeRef.new(shape: DeregistrationPolicy, location_name: "deregistrationPolicy"))
+    UpdateSettingsRequest.add_member(:default_export_destination, Shapes::ShapeRef.new(shape: DefaultExportDestination, location_name: "defaultExportDestination"))
     UpdateSettingsRequest.struct_class = Types::UpdateSettingsRequest
     UpdateSettingsResponse.add_member(:settings, Shapes::ShapeRef.new(shape: Settings, location_name: "settings"))
@@ -1418,6 +1439,7 @@ module Aws::AuditManager
         o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
         o.errors << Shapes::ShapeRef.new(shape: ValidationException)
         o.errors << Shapes::ShapeRef.new(shape: InternalServerException)
+        o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
       end)
       api.add_operation(:create_assessment, Seahorse::Model::Operation.new.tap do |o|
@@ -1689,6 +1711,18 @@ module Aws::AuditManager
         )
       end)
+      api.add_operation(:get_evidence_file_upload_url, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "GetEvidenceFileUploadUrl"
+        o.http_method = "GET"
+        o.http_request_uri = "/evidenceFileUploadUrl"
+        o.input = Shapes::ShapeRef.new(shape: GetEvidenceFileUploadUrlRequest)
+        o.output = Shapes::ShapeRef.new(shape: GetEvidenceFileUploadUrlResponse)
+        o.errors << Shapes::ShapeRef.new(shape: ValidationException)
+        o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalServerException)
+        o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
+      end)
       api.add_operation(:get_evidence_folder, Seahorse::Model::Operation.new.tap do |o|
         o.name = "GetEvidenceFolder"
         o.http_method = "GET"

data/lib/aws-sdk-auditmanager/endpoints.rb CHANGED Viewed

@@ -9,6 +9,7 @@
 module Aws::AuditManager
+  # @api private
   module Endpoints
     class AssociateAssessmentReportEvidenceFolder
@@ -389,6 +390,20 @@ module Aws::AuditManager
       end
     end
+    class GetEvidenceFileUploadUrl
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::AuditManager::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+        )
+      end
+    end
     class GetEvidenceFolder
       def self.build(context)
         unless context.config.regional_endpoint

data/lib/aws-sdk-auditmanager/plugins/endpoints.rb CHANGED Viewed

@@ -110,6 +110,8 @@ module Aws::AuditManager
             Aws::AuditManager::Endpoints::GetEvidence.build(context)
           when :get_evidence_by_evidence_folder
             Aws::AuditManager::Endpoints::GetEvidenceByEvidenceFolder.build(context)
+          when :get_evidence_file_upload_url
+            Aws::AuditManager::Endpoints::GetEvidenceFileUploadUrl.build(context)
           when :get_evidence_folder
             Aws::AuditManager::Endpoints::GetEvidenceFolder.build(context)
           when :get_evidence_folders_by_assessment

data/lib/aws-sdk-auditmanager/types.rb CHANGED Viewed

@@ -771,7 +771,8 @@ module Aws::AuditManager
     #   @return [String]
     #
     # @!attribute [rw] destination
-    #   The destination of the assessment report.
+    #   The destination bucket where Audit Manager stores assessment
+    #   reports.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/AssessmentReportsDestination AWS API Documentation
@@ -1124,7 +1125,8 @@ module Aws::AuditManager
     #   @return [String]
     #
     # @!attribute [rw] type
-    #   The type of control, such as a custom control or a standard control.
+    #   Specifies whether the control is a standard control or a custom
+    #   control.
     #   @return [String]
     #
     # @!attribute [rw] name
@@ -1368,8 +1370,14 @@ module Aws::AuditManager
     #   @return [String]
     #
     # @!attribute [rw] source_keyword
-    #   The keyword to search for in CloudTrail logs, Config rules, Security
-    #   Hub checks, and Amazon Web Services API names.
+    #   A keyword that relates to the control data source.
+    #
+    #   For manual evidence, this keyword indicates if the manual evidence
+    #   is a file or text.
+    #
+    #   For automated evidence, this keyword identifies a specific
+    #   CloudTrail event, Config rule, Security Hub control, or Amazon Web
+    #   Services API name.
     #
     #   To learn more about the supported keywords that you can use when
     #   mapping a control data source, see the following pages in the *Audit
@@ -1385,14 +1393,15 @@ module Aws::AuditManager
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-ash.html
-    #   [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-config.html
+    #   [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-config.html
+    #   [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-ash.html
     #   [3]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-api.html
     #   [4]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-cloudtrail.html
     #   @return [Types::SourceKeyword]
     #
     # @!attribute [rw] source_frequency
-    #   The frequency of evidence collection for the control mapping source.
+    #   Specifies how often evidence is collected from the control mapping
+    #   source.
     #   @return [String]
     #
     # @!attribute [rw] troubleshooting_text
@@ -1707,8 +1716,14 @@ module Aws::AuditManager
     #   @return [String]
     #
     # @!attribute [rw] source_keyword
-    #   The keyword to search for in CloudTrail logs, Config rules, Security
-    #   Hub checks, and Amazon Web Services API names.
+    #   A keyword that relates to the control data source.
+    #
+    #   For manual evidence, this keyword indicates if the manual evidence
+    #   is a file or text.
+    #
+    #   For automated evidence, this keyword identifies a specific
+    #   CloudTrail event, Config rule, Security Hub control, or Amazon Web
+    #   Services API name.
     #
     #   To learn more about the supported keywords that you can use when
     #   mapping a control data source, see the following pages in the *Audit
@@ -1724,14 +1739,15 @@ module Aws::AuditManager
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-ash.html
-    #   [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-config.html
+    #   [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-config.html
+    #   [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-ash.html
     #   [3]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-api.html
     #   [4]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-cloudtrail.html
     #   @return [Types::SourceKeyword]
     #
     # @!attribute [rw] source_frequency
-    #   The frequency of evidence collection for the control mapping source.
+    #   Specifies how often evidence is collected from the control mapping
+    #   source.
     #   @return [String]
     #
     # @!attribute [rw] troubleshooting_text
@@ -1846,6 +1862,26 @@ module Aws::AuditManager
       include Aws::Structure
     end
+    # The default s3 bucket where Audit Manager saves the files that you
+    # export from evidence finder.
+    #
+    # @!attribute [rw] destination_type
+    #   The destination type, such as Amazon S3.
+    #   @return [String]
+    #
+    # @!attribute [rw] destination
+    #   The destination bucket where Audit Manager stores exported files.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/DefaultExportDestination AWS API Documentation
+    #
+    class DefaultExportDestination < Struct.new(
+      :destination_type,
+      :destination)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # The assignment of a control set to a delegate for review.
     #
     # @!attribute [rw] id
@@ -2391,13 +2427,13 @@ module Aws::AuditManager
     #   @return [String]
     #
     # @!attribute [rw] type
-    #   The framework type, such as a custom framework or a standard
+    #   Specifies whether the framework is a standard framework or a custom
     #   framework.
     #   @return [String]
     #
     # @!attribute [rw] compliance_type
-    #   The compliance type that the new custom framework supports, such as
-    #   CIS or HIPAA.
+    #   The compliance type that the framework supports, such as CIS or
+    #   HIPAA.
     #   @return [String]
     #
     # @!attribute [rw] description
@@ -2409,8 +2445,7 @@ module Aws::AuditManager
     #   @return [String]
     #
     # @!attribute [rw] control_sources
-    #   The sources that Audit Manager collects evidence from for the
-    #   control.
+    #   The control data sources where Audit Manager collects evidence from.
     #   @return [String]
     #
     # @!attribute [rw] control_sets
@@ -2656,7 +2691,7 @@ module Aws::AuditManager
     end
     # @!attribute [rw] control
-    #   The name of the control that the `GetControl` API returned.
+    #   The details of the control that the `GetControl` API returned.
     #   @return [Types::Control]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/GetControlResponse AWS API Documentation
@@ -2753,6 +2788,42 @@ module Aws::AuditManager
       include Aws::Structure
     end
+    # @!attribute [rw] file_name
+    #   The file that you want to upload. For a list of supported file
+    #   formats, see [Supported file types for manual evidence][1] in the
+    #   *Audit Manager User Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/upload-evidence.html#supported-manual-evidence-files
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/GetEvidenceFileUploadUrlRequest AWS API Documentation
+    #
+    class GetEvidenceFileUploadUrlRequest < Struct.new(
+      :file_name)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # @!attribute [rw] evidence_file_name
+    #   The name of the uploaded manual evidence file that the presigned URL
+    #   was generated for.
+    #   @return [String]
+    #
+    # @!attribute [rw] upload_url
+    #   The presigned URL that was generated.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/GetEvidenceFileUploadUrlResponse AWS API Documentation
+    #
+    class GetEvidenceFileUploadUrlResponse < Struct.new(
+      :evidence_file_name,
+      :upload_url)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # @!attribute [rw] assessment_id
     #   The unique identifier for the assessment.
     #   @return [String]
@@ -3320,7 +3391,8 @@ module Aws::AuditManager
     end
     # @!attribute [rw] framework_metadata_list
-    #   The list of metadata objects for the framework.
+    #   A list of metadata that the `ListAssessmentFrameworks` API returns
+    #   for each framework.
     #   @return [Array<Types::AssessmentFrameworkMetadata>]
     #
     # @!attribute [rw] next_token
@@ -3396,7 +3468,8 @@ module Aws::AuditManager
     end
     # @!attribute [rw] assessment_metadata
-    #   The metadata that's associated with the assessment.
+    #   The metadata that the `ListAssessments` API returns for each
+    #   assessment.
     #   @return [Array<Types::AssessmentMetadataItem>]
     #
     # @!attribute [rw] next_token
@@ -3554,8 +3627,8 @@ module Aws::AuditManager
     end
     # @!attribute [rw] control_metadata_list
-    #   The list of control metadata objects that the `ListControls` API
-    #   returned.
+    #   A list of metadata that the `ListControls` API returns for each
+    #   control.
     #   @return [Array<Types::ControlMetadata>]
     #
     # @!attribute [rw] next_token
@@ -3670,16 +3743,35 @@ module Aws::AuditManager
       include Aws::Structure
     end
-    # Evidence that's uploaded to Audit Manager manually.
+    # Evidence that's manually added to a control in Audit Manager.
+    # `manualEvidence` can be one of the following: `evidenceFileName`,
+    # `s3ResourcePath`, or `textResponse`.
     #
     # @!attribute [rw] s3_resource_path
-    #   The Amazon S3 URL that points to a manual evidence object.
+    #   The S3 URL of the object that's imported as manual evidence.
+    #   @return [String]
+    #
+    # @!attribute [rw] text_response
+    #   The plain text response that's entered and saved as manual
+    #   evidence.
+    #   @return [String]
+    #
+    # @!attribute [rw] evidence_file_name
+    #   The name of the file that's uploaded as manual evidence. This name
+    #   is populated using the `evidenceFileName` value from the [
+    #   `GetEvidenceFileUploadUrl` ][1] API response.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/audit-manager/latest/APIReference/API_GetEvidenceFileUploadUrl.html
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/ManualEvidence AWS API Documentation
     #
     class ManualEvidence < Struct.new(
-      :s3_resource_path)
+      :s3_resource_path,
+      :text_response,
+      :evidence_file_name)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -3975,7 +4067,7 @@ module Aws::AuditManager
     #   @return [String]
     #
     # @!attribute [rw] default_assessment_reports_destination
-    #   The default storage destination for assessment reports.
+    #   The default S3 destination bucket for storing assessment reports.
     #   @return [Types::AssessmentReportsDestination]
     #
     # @!attribute [rw] default_process_owners
@@ -3996,6 +4088,11 @@ module Aws::AuditManager
     #   deregister Audit Manager.
     #   @return [Types::DeregistrationPolicy]
     #
+    # @!attribute [rw] default_export_destination
+    #   The default S3 destination bucket for storing evidence finder
+    #   exports.
+    #   @return [Types::DefaultExportDestination]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/Settings AWS API Documentation
     #
     class Settings < Struct.new(
@@ -4005,13 +4102,20 @@ module Aws::AuditManager
       :default_process_owners,
       :kms_key,
       :evidence_finder_enablement,
-      :deregistration_policy)
+      :deregistration_policy,
+      :default_export_destination)
       SENSITIVE = []
       include Aws::Structure
     end
-    # The keyword to search for in CloudTrail logs, Config rules, Security
-    # Hub checks, and Amazon Web Services API names.
+    # A keyword that relates to the control data source.
+    #
+    # For manual evidence, this keyword indicates if the manual evidence is
+    # a file or text.
+    #
+    # For automated evidence, this keyword identifies a specific CloudTrail
+    # event, Config rule, Security Hub control, or Amazon Web Services API
+    # name.
     #
     # To learn more about the supported keywords that you can use when
     # mapping a control data source, see the following pages in the *Audit
@@ -4027,13 +4131,33 @@ module Aws::AuditManager
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-ash.html
-    # [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-config.html
+    # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-config.html
+    # [2]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-ash.html
     # [3]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-api.html
     # [4]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-cloudtrail.html
     #
     # @!attribute [rw] keyword_input_type
     #   The input method for the keyword.
+    #
+    #   * `SELECT_FROM_LIST` is used when mapping a data source for
+    #     automated evidence.
+    #
+    #     * When `keywordInputType` is `SELECT_FROM_LIST`, a keyword must be
+    #       selected to collect automated evidence. For example, this
+    #       keyword can be a CloudTrail event name, a rule name for Config,
+    #       a Security Hub control, or the name of an Amazon Web Services
+    #       API call.
+    #
+    #     ^
+    #
+    #   * `UPLOAD_FILE` and `INPUT_TEXT` are only used when mapping a data
+    #     source for manual evidence.
+    #
+    #     * When `keywordInputType` is `UPLOAD_FILE`, a file must be
+    #       uploaded as manual evidence.
+    #
+    #     * When `keywordInputType` is `INPUT_TEXT`, text must be entered as
+    #       manual evidence.
     #   @return [String]
     #
     # @!attribute [rw] keyword_value
@@ -4047,7 +4171,13 @@ module Aws::AuditManager
     #
     #   * For [managed rules][1], you can use the rule identifier as the
     #     `keywordValue`. You can find the rule identifier from the [list of
-    #     Config managed rules][2].
+    #     Config managed rules][2]. For some rules, the rule identifier is
+    #     different from the rule name. For example, the rule name
+    #     `restricted-ssh` has the following rule identifier:
+    #     `INCOMING_SSH_DISABLED`. Make sure to use the rule identifier, not
+    #     the rule name.
+    #
+    #     Keyword example for managed rules:
     #
     #     * Managed rule name: [s3-bucket-acl-prohibited][3]
     #
@@ -4055,7 +4185,9 @@ module Aws::AuditManager
     #
     #   * For [custom rules][4], you form the `keywordValue` by adding the
     #     `Custom_` prefix to the rule name. This prefix distinguishes the
-    #     rule from a managed rule.
+    #     custom rule from a managed rule.
+    #
+    #     Keyword example for custom rules:
     #
     #     * Custom rule name: my-custom-config-rule
     #
@@ -4065,6 +4197,8 @@ module Aws::AuditManager
     #     adding the `Custom_` prefix to the rule name. In addition, you
     #     remove the suffix ID that appears at the end of the rule name.
     #
+    #     Keyword examples for service-linked rules:
+    #
     #     * Service-linked rule name:
     #       CustomRuleForAccount-conformance-pack-szsm1uv0w
     #
@@ -4076,6 +4210,43 @@ module Aws::AuditManager
     #       `keywordValue`:
     #       `Custom_OrgConfigRule-s3-bucket-versioning-enabled`
     #
+    #   The `keywordValue` is case sensitive. If you enter a value
+    #   incorrectly, Audit Manager might not recognize the data source
+    #   mapping. As a result, you might not successfully collect evidence
+    #   from that data source as intended.
+    #
+    #    Keep in mind the following requirements, depending on the data
+    #   source type that you're using.
+    #
+    #    1.  For Config:
+    #
+    #       * For managed rules, make sure that the `keywordValue` is the
+    #         rule identifier in `ALL_CAPS_WITH_UNDERSCORES`. For example,
+    #         `CLOUDWATCH_LOG_GROUP_ENCRYPTED`. For accuracy, we recommend
+    #         that you reference the list of [supported Config managed
+    #         rules][6].
+    #
+    #       * For custom rules, make sure that the `keywordValue` has the
+    #         `Custom_` prefix followed by the custom rule name. The format
+    #         of the custom rule name itself may vary. For accuracy, we
+    #         recommend that you visit the [Config console][7] to verify
+    #         your custom rule name.
+    #
+    #   2.  For Security Hub: The format varies for Security Hub control
+    #       names. For accuracy, we recommend that you reference the list of
+    #       [supported Security Hub controls][8].
+    #
+    #   3.  For Amazon Web Services API calls: Make sure that the
+    #       `keywordValue` is written as `serviceprefix_ActionName`. For
+    #       example, `iam_ListGroups`. For accuracy, we recommend that you
+    #       reference the list of [supported API calls][9].
+    #
+    #   4.  For CloudTrail: Make sure that the `keywordValue` is written as
+    #       `serviceprefix_ActionName`. For example,
+    #       `cloudtrail_StartLogging`. For accuracy, we recommend that you
+    #       review the Amazon Web Service prefix and action names in the
+    #       [Service Authorization Reference][10].
+    #
     #
     #
     #   [1]: https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config_use-managed-rules.html
@@ -4083,6 +4254,11 @@ module Aws::AuditManager
     #   [3]: https://docs.aws.amazon.com/config/latest/developerguide/s3-bucket-acl-prohibited.html
     #   [4]: https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config_develop-rules.html
     #   [5]: https://docs.aws.amazon.com/config/latest/developerguide/service-linked-awsconfig-rules.html
+    #   [6]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-config.html
+    #   [7]: https://console.aws.amazon.com/config/
+    #   [8]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-ash.html
+    #   [9]: https://docs.aws.amazon.com/audit-manager/latest/userguide/control-data-sources-api.html
+    #   [10]: https://docs.aws.amazon.com/service-authorization/latest/reference/reference_policies_actions-resources-contextkeys.html
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/SourceKeyword AWS API Documentation
@@ -4543,7 +4719,7 @@ module Aws::AuditManager
     #   @return [String]
     #
     # @!attribute [rw] default_assessment_reports_destination
-    #   The default storage destination for assessment reports.
+    #   The default S3 destination bucket for storing assessment reports.
     #   @return [Types::AssessmentReportsDestination]
     #
     # @!attribute [rw] default_process_owners
@@ -4576,6 +4752,11 @@ module Aws::AuditManager
     #   deregister Audit Manager.
     #   @return [Types::DeregistrationPolicy]
     #
+    # @!attribute [rw] default_export_destination
+    #   The default S3 destination bucket for storing evidence finder
+    #   exports.
+    #   @return [Types::DefaultExportDestination]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/UpdateSettingsRequest AWS API Documentation
     #
     class UpdateSettingsRequest < Struct.new(
@@ -4584,7 +4765,8 @@ module Aws::AuditManager
       :default_process_owners,
       :kms_key,
       :evidence_finder_enabled,
-      :deregistration_policy)
+      :deregistration_policy,
+      :default_export_destination)
       SENSITIVE = []
       include Aws::Structure
     end

data/lib/aws-sdk-auditmanager.rb CHANGED Viewed

@@ -52,6 +52,6 @@ require_relative 'aws-sdk-auditmanager/customizations'
 # @!group service
 module Aws::AuditManager
-  GEM_VERSION = '1.32.0'
+  GEM_VERSION = '1.33.0'
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-auditmanager
 version: !ruby/object:Gem::Version
-  version: 1.32.0
+  version: 1.33.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-05-31 00:00:00.000000000 Z
+date: 2023-06-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core