aws-sdk-cloudwatchlogs 1.106.0 → 1.108.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 5373db514ad6a6fe35445f7790061c10d15faa195f7a809704ebb3bb8d5052c9
-  data.tar.gz: 3ad0c1c3325ab6f87ad88d12a3e240c27f2dcb7a9b6050e69f704c1ef3c51135
+  metadata.gz: 72f4032809abaf991b9432ceb644bfe40c89c2785a00dd8d9063b5e5c7877e42
+  data.tar.gz: f751efd17f897903d8f6a9ae7adcf435f740992dd2ad5ef07b4f3dac69a6e920
 SHA512:
-  metadata.gz: 07707b68876fb2ad1f4bfdcf61ffb735a066e1c55db175629797a424c6066fc7a97bd1b7e9173274d7a87971788a299538422638c6f1eda94810691f2bc619ee
-  data.tar.gz: 87c2783a58a75984156615f4ba38da18f169171264d8f4fc6689dbae36798f7708d97c3705b75117a8c8e57736e69e0a8cabbf59fc024f746bebcc9042e91cf7
+  metadata.gz: ec53a1fce75b9a3e8b0b72388b148d19b697d10b432d9645ead42cfcd7d3ab60a90636c44b5cab4c091f6cc2ea81904764eada72e7e4c6d2f5826b31992a5507
+  data.tar.gz: 30d645b5b1e073664216eae5779cf20c75ac889284af7c4f74518ab84a4f699215f2593ea755edbab6743624b343adf42046dd238449d007254921a87bab7648

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.108.0 (2025-02-06)
+------------------
+
+* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
+
+1.107.0 (2025-01-21)
+------------------
+
+* Feature - Documentation-only update to address doc errors
+
 1.106.0 (2025-01-15)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.106.0
+1.108.0

data/lib/aws-sdk-cloudwatchlogs/client.rb

@@ -496,9 +496,10 @@ module Aws::CloudWatchLogs
     # parameter or the `resourceIdentifier` parameter. You can't specify
     # both of those parameters in the same operation.
     #
-    # * Specify the `logGroupName` parameter to cause all log events stored
-    #   in the log group to be encrypted with that key. Only the log events
-    #   ingested after the key is associated are encrypted with that key.
+    # * Specify the `logGroupName` parameter to cause log events ingested
+    #   into that log group to be encrypted with that key. Only the log
+    #   events ingested after the key is associated are encrypted with that
+    #   key.
     #
     #   Associating a KMS key with a log group overrides any existing
     #   associations between the log group and a KMS key. After a KMS key is
@@ -782,6 +783,14 @@ module Aws::CloudWatchLogs
     # specify a prefix to be used as the Amazon S3 key prefix for all
     # exported objects.
     #
+    # <note markdown="1"> We recommend that you don't regularly export to Amazon S3 as a way to
+    # continuously archive your logs. For that use case, we instaed
+    # recommend that you use subscriptions. For more information about
+    # subscriptions, see [Real-time processing of log data with
+    # subscriptions][3].
+    #
+    #  </note>
+    #
     # <note markdown="1"> Time-based sorting on chunks of log data inside an exported file is
     # not guaranteed. You can sort the exported log field data by using
     # Linux utilities.
@@ -792,6 +801,7 @@ module Aws::CloudWatchLogs
     #
     # [1]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_DescribeExportTasks.html
     # [2]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_CancelExportTask.html
+    # [3]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/Subscriptions.html
     #
     # @option params [String] :task_name
     #   The name of the export task.
@@ -1212,7 +1222,7 @@ module Aws::CloudWatchLogs
       req.send_request(options)
     end
 
-    # Deletes s *delivery*. A delivery is a connection between a logical
+    # Deletes a *delivery*. A delivery is a connection between a logical
     # *delivery source* and a logical *delivery destination*. Deleting a
     # delivery only deletes the connection between the delivery source and
     # delivery destination. It does not delete the delivery destination or
@@ -1697,6 +1707,25 @@ module Aws::CloudWatchLogs
 
     # Returns a list of all CloudWatch Logs account policies in the account.
     #
+    # To use this operation, you must be signed on with the correct
+    # permissions depending on the type of policy that you are retrieving
+    # information for.
+    #
+    # * To see data protection policies, you must have the
+    #   `logs:GetDataProtectionPolicy` and `logs:DescribeAccountPolicies`
+    #   permissions.
+    #
+    # * To see subscription filter policies, you must have the
+    #   `logs:DescrubeSubscriptionFilters` and
+    #   `logs:DescribeAccountPolicies` permissions.
+    #
+    # * To see transformer policies, you must have the `logs:GetTransformer`
+    #   and `logs:DescribeAccountPolicies` permissions.
+    #
+    # * To see field index policies, you must have the
+    #   `logs:DescribeIndexPolicies` and `logs:DescribeAccountPolicies`
+    #   permissions.
+    #
     # @option params [required, String] :policy_type
     #   Use this parameter to limit the returned policies to only the policies
     #   that match the policy type that you specify.
@@ -2349,8 +2378,8 @@ module Aws::CloudWatchLogs
     # `logGroupIdentifier` or `logGroupName`. You must include one of these
     # two parameters, but you can't include both.
     #
-    # This operation has a limit of five transactions per second, after
-    # which transactions are throttled.
+    # This operation has a limit of 25 transactions per second, after which
+    # transactions are throttled.
     #
     # If you are using CloudWatch cross-account observability, you can use
     # this operation in a monitoring account and view data from the linked
@@ -4045,6 +4074,22 @@ module Aws::CloudWatchLogs
     # policy, or field index policy that applies to all log groups or a
     # subset of log groups in the account.
     #
+    # To use this operation, you must be signed on with the correct
+    # permissions depending on the type of policy that you are creating.
+    #
+    # * To create a data protection policy, you must have the
+    #   `logs:PutDataProtectionPolicy` and `logs:PutAccountPolicy`
+    #   permissions.
+    #
+    # * To create a subscription filter policy, you must have the
+    #   `logs:PutSubscriptionFilter` and `logs:PutccountPolicy` permissions.
+    #
+    # * To create a transformer policy, you must have the
+    #   `logs:PutTransformer` and `logs:PutAccountPolicy` permissions.
+    #
+    # * To create a field index policy, you must have the
+    #   `logs:PutIndexPolicy` and `logs:PutAccountPolicy` permissions.
+    #
     # **Data protection policy**
     #
     # A data protection policy can help safeguard sensitive data that's
@@ -4522,9 +4567,10 @@ module Aws::CloudWatchLogs
     #   the resource that is actually sending the logs. For more
     #   information, see [PutDeliverySource][1].
     #
-    # * Use `PutDeliveryDestination` to create a *delivery destination*,
-    #   which is a logical object that represents the actual delivery
-    #   destination.
+    # * Use `PutDeliveryDestination` to create a *delivery destination* in
+    #   the same account of the actual delivery destination. The delivery
+    #   destination that you create is a logical object that represents the
+    #   actual delivery destination.
     #
     # * If you are delivering logs cross-account, you must use
     #   [PutDeliveryDestinationPolicy][2] in the destination account to
@@ -4741,13 +4787,27 @@ module Aws::CloudWatchLogs
     #
     #   * For Amazon Bedrock, the valid value is `APPLICATION_LOGS`.
     #
+    #   * For CloudFront, the valid value is `ACCESS_LOGS`.
+    #
     #   * For Amazon CodeWhisperer, the valid value is `EVENT_LOGS`.
     #
+    #   * For Elemental MediaPackage, the valid values are
+    #     `EGRESS_ACCESS_LOGS` and `INGRESS_ACCESS_LOGS`.
+    #
+    #   * For Elemental MediaTailor, the valid values are
+    #     `AD_DECISION_SERVER_LOGS`, `MANIFEST_SERVICE_LOGS`, and
+    #     `TRANSCODE_LOGS`.
+    #
     #   * For IAM Identity Center, the valid value is `ERROR_LOGS`.
     #
+    #   * For Amazon Q, the valid value is `EVENT_LOGS`.
+    #
+    #   * For Amazon SES mail manager, the valid value is `APPLICATION_LOG`.
+    #
     #   * For Amazon WorkMail, the valid values are `ACCESS_CONTROL_LOGS`,
-    #     `AUTHENTICATION_LOGS`, `WORKMAIL_AVAILABILITY_PROVIDER_LOGS`, and
-    #     `WORKMAIL_MAILBOX_ACCESS_LOGS`.
+    #     `AUTHENTICATION_LOGS`, `WORKMAIL_AVAILABILITY_PROVIDER_LOGS`,
+    #     `WORKMAIL_MAILBOX_ACCESS_LOGS`, and
+    #     `WORKMAIL_PERSONAL_ACCESS_TOKEN_LOGS`.
     #
     # @option params [Hash<String,String>] :tags
     #   An optional list of key-value pairs to associate with the resource.
@@ -5204,12 +5264,12 @@ module Aws::CloudWatchLogs
     # The maximum number of metric filters that can be associated with a log
     # group is 100.
     #
-    # Using regular expressions to create metric filters is supported. For
-    # these filters, there is a quota of two regular expression patterns
-    # within a single filter pattern. There is also a quota of five regular
+    # Using regular expressions in filter patterns is supported. For these
+    # filters, there is a quota of two regular expression patterns within a
+    # single filter pattern. There is also a quota of five regular
     # expression patterns per log group. For more information about using
-    # regular expressions in metric filters, see [ Filter pattern syntax for
-    # metric filters, subscription filters, filter log events, and Live
+    # regular expressions in filter patterns, see [ Filter pattern syntax
+    # for metric filters, subscription filters, filter log events, and Live
     # Tail][2].
     #
     # When you create a metric filter, you can also optionally assign a unit
@@ -5554,13 +5614,13 @@ module Aws::CloudWatchLogs
     # it. If you are updating an existing filter, you must specify the
     # correct name in `filterName`.
     #
-    # Using regular expressions to create subscription filters is supported.
-    # For these filters, there is a quotas of quota of two regular
-    # expression patterns within a single filter pattern. There is also a
-    # quota of five regular expression patterns per log group. For more
-    # information about using regular expressions in subscription filters,
-    # see [ Filter pattern syntax for metric filters, subscription filters,
-    # filter log events, and Live Tail][3].
+    # Using regular expressions in filter patterns is supported. For these
+    # filters, there is a quotas of quota of two regular expression patterns
+    # within a single filter pattern. There is also a quota of five regular
+    # expression patterns per log group. For more information about using
+    # regular expressions in filter patterns, see [ Filter pattern syntax
+    # for metric filters, subscription filters, filter log events, and Live
+    # Tail][3].
     #
     # To perform a `PutSubscriptionFilter` operation for any destination
     # except a Lambda function, you must also have the `iam:PassRole`
@@ -6941,7 +7001,7 @@ module Aws::CloudWatchLogs
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-cloudwatchlogs'
-      context[:gem_version] = '1.106.0'
+      context[:gem_version] = '1.108.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-cloudwatchlogs/endpoint_provider.rb

@@ -10,46 +10,42 @@
 module Aws::CloudWatchLogs
   class EndpointProvider
     def resolve_endpoint(parameters)
-      region = parameters.region
-      use_dual_stack = parameters.use_dual_stack
-      use_fips = parameters.use_fips
-      endpoint = parameters.endpoint
-      if Aws::Endpoints::Matchers.set?(endpoint)
-        if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
+      if Aws::Endpoints::Matchers.set?(parameters.endpoint)
+        if Aws::Endpoints::Matchers.boolean_equals?(parameters.use_fips, true)
           raise ArgumentError, "Invalid Configuration: FIPS and custom endpoint are not supported"
         end
-        if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
+        if Aws::Endpoints::Matchers.boolean_equals?(parameters.use_dual_stack, true)
           raise ArgumentError, "Invalid Configuration: Dualstack and custom endpoint are not supported"
         end
-        return Aws::Endpoints::Endpoint.new(url: endpoint, headers: {}, properties: {})
+        return Aws::Endpoints::Endpoint.new(url: parameters.endpoint, headers: {}, properties: {})
       end
-      if Aws::Endpoints::Matchers.set?(region)
-        if (partition_result = Aws::Endpoints::Matchers.aws_partition(region))
-          if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
+      if Aws::Endpoints::Matchers.set?(parameters.region)
+        if (partition_result = Aws::Endpoints::Matchers.aws_partition(parameters.region))
+          if Aws::Endpoints::Matchers.boolean_equals?(parameters.use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_dual_stack, true)
             if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS")) && Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
-              return Aws::Endpoints::Endpoint.new(url: "https://logs-fips.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
+              return Aws::Endpoints::Endpoint.new(url: "https://logs-fips.#{parameters.region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
             end
             raise ArgumentError, "FIPS and DualStack are enabled, but this partition does not support one or both"
           end
-          if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
+          if Aws::Endpoints::Matchers.boolean_equals?(parameters.use_fips, true)
             if Aws::Endpoints::Matchers.boolean_equals?(Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"), true)
-              if Aws::Endpoints::Matchers.string_equals?(region, "us-gov-east-1")
+              if Aws::Endpoints::Matchers.string_equals?(parameters.region, "us-gov-east-1")
                 return Aws::Endpoints::Endpoint.new(url: "https://logs.us-gov-east-1.amazonaws.com", headers: {}, properties: {})
               end
-              if Aws::Endpoints::Matchers.string_equals?(region, "us-gov-west-1")
+              if Aws::Endpoints::Matchers.string_equals?(parameters.region, "us-gov-west-1")
                 return Aws::Endpoints::Endpoint.new(url: "https://logs.us-gov-west-1.amazonaws.com", headers: {}, properties: {})
               end
-              return Aws::Endpoints::Endpoint.new(url: "https://logs-fips.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
+              return Aws::Endpoints::Endpoint.new(url: "https://logs-fips.#{parameters.region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
             end
             raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
           end
-          if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
+          if Aws::Endpoints::Matchers.boolean_equals?(parameters.use_dual_stack, true)
             if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
-              return Aws::Endpoints::Endpoint.new(url: "https://logs.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
+              return Aws::Endpoints::Endpoint.new(url: "https://logs.#{parameters.region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
             end
             raise ArgumentError, "DualStack is enabled but this partition does not support DualStack"
           end
-          return Aws::Endpoints::Endpoint.new(url: "https://logs.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
+          return Aws::Endpoints::Endpoint.new(url: "https://logs.#{parameters.region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
         end
       end
       raise ArgumentError, "Invalid Configuration: Missing Region"

data/lib/aws-sdk-cloudwatchlogs/types.rb

@@ -4949,12 +4949,12 @@ module Aws::CloudWatchLogs
     #   create the integration. This role must have the permissions
     #   necessary to access the OpenSearch Service collection to be able to
     #   create the dashboards. For more information about the permissions
-    #   needed, see [Create an IAM role to access the OpenSearch Service
-    #   collection][1] in the CloudWatch Logs User Guide.
+    #   needed, see [Permissions that the integration needs][1] in the
+    #   CloudWatch Logs User Guide.
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/OpenSearch-Dashboards-CreateRole
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/OpenSearch-Dashboards-CreateRole.html
     #   @return [String]
     #
     # @!attribute [rw] dashboard_viewer_principals
@@ -4962,8 +4962,12 @@ module Aws::CloudWatchLogs
     #   permission to for viewing the dashboards.
     #
     #   In addition to specifying these users here, you must also grant them
-    #   the **CloudWatchOpenSearchDashboardsAccess** IAM policy. For more
-    #   information, see
+    #   the **CloudWatchOpenSearchDashboardAccess** IAM policy. For more
+    #   information, see [IAM policies for users][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/OpenSearch-Dashboards-UserRoles.html
     #   @return [Array<String>]
     #
     # @!attribute [rw] application_arn
@@ -5982,13 +5986,27 @@ module Aws::CloudWatchLogs
     #
     #   * For Amazon Bedrock, the valid value is `APPLICATION_LOGS`.
     #
+    #   * For CloudFront, the valid value is `ACCESS_LOGS`.
+    #
     #   * For Amazon CodeWhisperer, the valid value is `EVENT_LOGS`.
     #
+    #   * For Elemental MediaPackage, the valid values are
+    #     `EGRESS_ACCESS_LOGS` and `INGRESS_ACCESS_LOGS`.
+    #
+    #   * For Elemental MediaTailor, the valid values are
+    #     `AD_DECISION_SERVER_LOGS`, `MANIFEST_SERVICE_LOGS`, and
+    #     `TRANSCODE_LOGS`.
+    #
     #   * For IAM Identity Center, the valid value is `ERROR_LOGS`.
     #
+    #   * For Amazon Q, the valid value is `EVENT_LOGS`.
+    #
+    #   * For Amazon SES mail manager, the valid value is `APPLICATION_LOG`.
+    #
     #   * For Amazon WorkMail, the valid values are `ACCESS_CONTROL_LOGS`,
-    #     `AUTHENTICATION_LOGS`, `WORKMAIL_AVAILABILITY_PROVIDER_LOGS`, and
-    #     `WORKMAIL_MAILBOX_ACCESS_LOGS`.
+    #     `AUTHENTICATION_LOGS`, `WORKMAIL_AVAILABILITY_PROVIDER_LOGS`,
+    #     `WORKMAIL_MAILBOX_ACCESS_LOGS`, and
+    #     `WORKMAIL_PERSONAL_ACCESS_TOKEN_LOGS`.
     #   @return [String]
     #
     # @!attribute [rw] tags
@@ -7033,9 +7051,14 @@ module Aws::CloudWatchLogs
     # @!attribute [rw] suffix_path
     #   This string allows re-configuring the S3 object prefix to contain
     #   either static or variable sections. The valid variables to use in
-    #   the suffix path will vary by each log source. See
-    #   ConfigurationTemplate$allowedSuffixPathFields for more info on what
-    #   values are supported in the suffix path for each log source.
+    #   the suffix path will vary by each log source. To find the values
+    #   supported for the suffix path for each log source, use the
+    #   [DescribeConfigurationTemplates][1] operation and check the
+    #   `allowedSuffixPathFields` field in the response.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudWatchLogs/latest/APIReference/API_DescribeConfigurationTemplates.html
     #   @return [String]
     #
     # @!attribute [rw] enable_hive_compatible_path
@@ -7083,7 +7106,7 @@ module Aws::CloudWatchLogs
     #
     class ServiceUnavailableException < Aws::EmptyStructure; end
 
-    # his exception is returned if an unknown error occurs during a Live
+    # This exception is returned if an unknown error occurs during a Live
     # Tail session.
     #
     # @!attribute [rw] message

data/lib/aws-sdk-cloudwatchlogs.rb

@@ -55,7 +55,7 @@ module Aws::CloudWatchLogs
   autoload :Endpoints, 'aws-sdk-cloudwatchlogs/endpoints'
   autoload :EventStreams, 'aws-sdk-cloudwatchlogs/event_streams'
 
-  GEM_VERSION = '1.106.0'
+  GEM_VERSION = '1.108.0'
 
 end
 

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-cloudwatchlogs
 version: !ruby/object:Gem::Version
-  version: 1.106.0
+  version: 1.108.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-01-15 00:00:00.000000000 Z
+date: 2025-02-06 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core