aws-sdk-configservice 1.85.0 → 1.86.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -944,6 +944,11 @@ module Aws::ConfigService
944
944
  # maximum_execution_frequency: "One_Hour", # accepts One_Hour, Three_Hours, Six_Hours, Twelve_Hours, TwentyFour_Hours
945
945
  # config_rule_state: "ACTIVE", # accepts ACTIVE, DELETING, DELETING_RESULTS, EVALUATING
946
946
  # created_by: "StringWithCharLimit256",
947
+ # evaluation_modes: [
948
+ # {
949
+ # mode: "DETECTIVE", # accepts DETECTIVE, PROACTIVE
950
+ # },
951
+ # ],
947
952
  # }
948
953
  #
949
954
  # @!attribute [rw] config_rule_name
@@ -1036,6 +1041,12 @@ module Aws::ConfigService
1036
1041
  # </note>
1037
1042
  # @return [String]
1038
1043
  #
1044
+ # @!attribute [rw] evaluation_modes
1045
+ # The modes the Config rule can be evaluated in. The valid values are
1046
+ # distinct objects. By default, the value is Detective evaluation mode
1047
+ # only.
1048
+ # @return [Array<Types::EvaluationModeConfiguration>]
1049
+ #
1039
1050
  # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/ConfigRule AWS API Documentation
1040
1051
  #
1041
1052
  class ConfigRule < Struct.new(
@@ -1048,7 +1059,8 @@ module Aws::ConfigService
1048
1059
  :input_parameters,
1049
1060
  :maximum_execution_frequency,
1050
1061
  :config_rule_state,
1051
- :created_by)
1062
+ :created_by,
1063
+ :evaluation_modes)
1052
1064
  SENSITIVE = []
1053
1065
  include Aws::Structure
1054
1066
  end
@@ -2925,12 +2937,39 @@ module Aws::ConfigService
2925
2937
  include Aws::Structure
2926
2938
  end
2927
2939
 
2940
+ # Returns a filtered list of Detective or Proactive Config rules. By
2941
+ # default, if the filter is not defined, this API returns an unfiltered
2942
+ # list.
2943
+ #
2944
+ # @note When making an API call, you may pass DescribeConfigRulesFilters
2945
+ # data as a hash:
2946
+ #
2947
+ # {
2948
+ # evaluation_mode: "DETECTIVE", # accepts DETECTIVE, PROACTIVE
2949
+ # }
2950
+ #
2951
+ # @!attribute [rw] evaluation_mode
2952
+ # The mode of an evaluation. The valid values are Detective or
2953
+ # Proactive.
2954
+ # @return [String]
2955
+ #
2956
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/DescribeConfigRulesFilters AWS API Documentation
2957
+ #
2958
+ class DescribeConfigRulesFilters < Struct.new(
2959
+ :evaluation_mode)
2960
+ SENSITIVE = []
2961
+ include Aws::Structure
2962
+ end
2963
+
2928
2964
  # @note When making an API call, you may pass DescribeConfigRulesRequest
2929
2965
  # data as a hash:
2930
2966
  #
2931
2967
  # {
2932
2968
  # config_rule_names: ["ConfigRuleName"],
2933
2969
  # next_token: "String",
2970
+ # filters: {
2971
+ # evaluation_mode: "DETECTIVE", # accepts DETECTIVE, PROACTIVE
2972
+ # },
2934
2973
  # }
2935
2974
  #
2936
2975
  # @!attribute [rw] config_rule_names
@@ -2943,11 +2982,17 @@ module Aws::ConfigService
2943
2982
  # get the next page of results in a paginated response.
2944
2983
  # @return [String]
2945
2984
  #
2985
+ # @!attribute [rw] filters
2986
+ # Returns a list of Detecive or Proactive Config rules. By default,
2987
+ # this API returns an unfiltered list.
2988
+ # @return [Types::DescribeConfigRulesFilters]
2989
+ #
2946
2990
  # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/DescribeConfigRulesRequest AWS API Documentation
2947
2991
  #
2948
2992
  class DescribeConfigRulesRequest < Struct.new(
2949
2993
  :config_rule_names,
2950
- :next_token)
2994
+ :next_token,
2995
+ :filters)
2951
2996
  SENSITIVE = []
2952
2997
  include Aws::Structure
2953
2998
  end
@@ -3931,6 +3976,53 @@ module Aws::ConfigService
3931
3976
  include Aws::Structure
3932
3977
  end
3933
3978
 
3979
+ # Use EvaluationContext to group independently initiated proactive
3980
+ # resource evaluations. For example, CFN Stack. If you want to check
3981
+ # just a resource definition, you do not need to provide evaluation
3982
+ # context.
3983
+ #
3984
+ # @note When making an API call, you may pass EvaluationContext
3985
+ # data as a hash:
3986
+ #
3987
+ # {
3988
+ # evaluation_context_identifier: "EvaluationContextIdentifier",
3989
+ # }
3990
+ #
3991
+ # @!attribute [rw] evaluation_context_identifier
3992
+ # A unique EvaluationContextIdentifier ID for an EvaluationContext.
3993
+ # @return [String]
3994
+ #
3995
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/EvaluationContext AWS API Documentation
3996
+ #
3997
+ class EvaluationContext < Struct.new(
3998
+ :evaluation_context_identifier)
3999
+ SENSITIVE = []
4000
+ include Aws::Structure
4001
+ end
4002
+
4003
+ # The configuration object for Config rule evaluation mode. The
4004
+ # Supported valid values are Detective or Proactive.
4005
+ #
4006
+ # @note When making an API call, you may pass EvaluationModeConfiguration
4007
+ # data as a hash:
4008
+ #
4009
+ # {
4010
+ # mode: "DETECTIVE", # accepts DETECTIVE, PROACTIVE
4011
+ # }
4012
+ #
4013
+ # @!attribute [rw] mode
4014
+ # The mode of an evaluation. The valid values are Detective or
4015
+ # Proactive.
4016
+ # @return [String]
4017
+ #
4018
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/EvaluationModeConfiguration AWS API Documentation
4019
+ #
4020
+ class EvaluationModeConfiguration < Struct.new(
4021
+ :mode)
4022
+ SENSITIVE = []
4023
+ include Aws::Structure
4024
+ end
4025
+
3934
4026
  # The details of an Config evaluation. Provides the Amazon Web Services
3935
4027
  # resource that was evaluated, the compliance of the resource, related
3936
4028
  # time stamps, and supplementary information.
@@ -3998,11 +4090,16 @@ module Aws::ConfigService
3998
4090
  # event triggered the evaluation.
3999
4091
  # @return [Time]
4000
4092
  #
4093
+ # @!attribute [rw] resource_evaluation_id
4094
+ # A Unique ID for an evaluation result.
4095
+ # @return [String]
4096
+ #
4001
4097
  # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/EvaluationResultIdentifier AWS API Documentation
4002
4098
  #
4003
4099
  class EvaluationResultIdentifier < Struct.new(
4004
4100
  :evaluation_result_qualifier,
4005
- :ordering_timestamp)
4101
+ :ordering_timestamp,
4102
+ :resource_evaluation_id)
4006
4103
  SENSITIVE = []
4007
4104
  include Aws::Structure
4008
4105
  end
@@ -4023,12 +4120,38 @@ module Aws::ConfigService
4023
4120
  # The ID of the evaluated Amazon Web Services resource.
4024
4121
  # @return [String]
4025
4122
  #
4123
+ # @!attribute [rw] evaluation_mode
4124
+ # The mode of an evaluation. The valid values are Detective or
4125
+ # Proactive.
4126
+ # @return [String]
4127
+ #
4026
4128
  # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/EvaluationResultQualifier AWS API Documentation
4027
4129
  #
4028
4130
  class EvaluationResultQualifier < Struct.new(
4029
4131
  :config_rule_name,
4030
4132
  :resource_type,
4031
- :resource_id)
4133
+ :resource_id,
4134
+ :evaluation_mode)
4135
+ SENSITIVE = []
4136
+ include Aws::Structure
4137
+ end
4138
+
4139
+ # Returns status details of an evaluation.
4140
+ #
4141
+ # @!attribute [rw] status
4142
+ # The status of an execution. The valid values are In\_Progress,
4143
+ # Succeeded or Failed.
4144
+ # @return [String]
4145
+ #
4146
+ # @!attribute [rw] failure_reason
4147
+ # An explanation for failed execution status.
4148
+ # @return [String]
4149
+ #
4150
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/EvaluationStatus AWS API Documentation
4151
+ #
4152
+ class EvaluationStatus < Struct.new(
4153
+ :status,
4154
+ :failure_reason)
4032
4155
  SENSITIVE = []
4033
4156
  include Aws::Structure
4034
4157
  end
@@ -4607,10 +4730,11 @@ module Aws::ConfigService
4607
4730
  # data as a hash:
4608
4731
  #
4609
4732
  # {
4610
- # resource_type: "StringWithCharLimit256", # required
4611
- # resource_id: "BaseResourceId", # required
4733
+ # resource_type: "StringWithCharLimit256",
4734
+ # resource_id: "BaseResourceId",
4612
4735
  # compliance_types: ["COMPLIANT"], # accepts COMPLIANT, NON_COMPLIANT, NOT_APPLICABLE, INSUFFICIENT_DATA
4613
4736
  # next_token: "String",
4737
+ # resource_evaluation_id: "ResourceEvaluationId",
4614
4738
  # }
4615
4739
  #
4616
4740
  # @!attribute [rw] resource_type
@@ -4635,13 +4759,24 @@ module Aws::ConfigService
4635
4759
  # get the next page of results in a paginated response.
4636
4760
  # @return [String]
4637
4761
  #
4762
+ # @!attribute [rw] resource_evaluation_id
4763
+ # The unique ID of Amazon Web Services resource execution for which
4764
+ # you want to retrieve evaluation results.
4765
+ #
4766
+ # <note markdown="1"> You need to only provide either a `ResourceEvaluationID` or a
4767
+ # `ResourceID `and `ResourceType`.
4768
+ #
4769
+ # </note>
4770
+ # @return [String]
4771
+ #
4638
4772
  # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/GetComplianceDetailsByResourceRequest AWS API Documentation
4639
4773
  #
4640
4774
  class GetComplianceDetailsByResourceRequest < Struct.new(
4641
4775
  :resource_type,
4642
4776
  :resource_id,
4643
4777
  :compliance_types,
4644
- :next_token)
4778
+ :next_token,
4779
+ :resource_evaluation_id)
4645
4780
  SENSITIVE = []
4646
4781
  include Aws::Structure
4647
4782
  end
@@ -5196,6 +5331,72 @@ module Aws::ConfigService
5196
5331
  include Aws::Structure
5197
5332
  end
5198
5333
 
5334
+ # @note When making an API call, you may pass GetResourceEvaluationSummaryRequest
5335
+ # data as a hash:
5336
+ #
5337
+ # {
5338
+ # resource_evaluation_id: "ResourceEvaluationId", # required
5339
+ # }
5340
+ #
5341
+ # @!attribute [rw] resource_evaluation_id
5342
+ # The unique `ResourceEvaluationId` of Amazon Web Services resource
5343
+ # execution for which you want to retrieve the evaluation summary.
5344
+ # @return [String]
5345
+ #
5346
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/GetResourceEvaluationSummaryRequest AWS API Documentation
5347
+ #
5348
+ class GetResourceEvaluationSummaryRequest < Struct.new(
5349
+ :resource_evaluation_id)
5350
+ SENSITIVE = []
5351
+ include Aws::Structure
5352
+ end
5353
+
5354
+ # @!attribute [rw] resource_evaluation_id
5355
+ # The unique `ResourceEvaluationId` of Amazon Web Services resource
5356
+ # execution for which you want to retrieve the evaluation summary.
5357
+ # @return [String]
5358
+ #
5359
+ # @!attribute [rw] evaluation_mode
5360
+ # Lists results of the mode that you requested to retrieve the
5361
+ # resource evaluation summary. The valid values are Detective or
5362
+ # Proactive.
5363
+ # @return [String]
5364
+ #
5365
+ # @!attribute [rw] evaluation_status
5366
+ # Returns an `EvaluationStatus` object.
5367
+ # @return [Types::EvaluationStatus]
5368
+ #
5369
+ # @!attribute [rw] evaluation_start_timestamp
5370
+ # The start timestamp when Config rule starts evaluating compliance
5371
+ # for the provided resource details.
5372
+ # @return [Time]
5373
+ #
5374
+ # @!attribute [rw] compliance
5375
+ # The compliance status of the resource evaluation summary.
5376
+ # @return [String]
5377
+ #
5378
+ # @!attribute [rw] evaluation_context
5379
+ # Returns an `EvaluationContext` object.
5380
+ # @return [Types::EvaluationContext]
5381
+ #
5382
+ # @!attribute [rw] resource_details
5383
+ # Returns a `ResourceDetails` object.
5384
+ # @return [Types::ResourceDetails]
5385
+ #
5386
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/GetResourceEvaluationSummaryResponse AWS API Documentation
5387
+ #
5388
+ class GetResourceEvaluationSummaryResponse < Struct.new(
5389
+ :resource_evaluation_id,
5390
+ :evaluation_mode,
5391
+ :evaluation_status,
5392
+ :evaluation_start_timestamp,
5393
+ :compliance,
5394
+ :evaluation_context,
5395
+ :resource_details)
5396
+ SENSITIVE = []
5397
+ include Aws::Structure
5398
+ end
5399
+
5199
5400
  # @note When making an API call, you may pass GetStoredQueryRequest
5200
5401
  # data as a hash:
5201
5402
  #
@@ -5248,6 +5449,20 @@ module Aws::ConfigService
5248
5449
  include Aws::Structure
5249
5450
  end
5250
5451
 
5452
+ # Using the same client token with one or more different parameters.
5453
+ # Specify a new client token with the parameter changes and try again.
5454
+ #
5455
+ # @!attribute [rw] message
5456
+ # @return [String]
5457
+ #
5458
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/IdempotentParameterMismatch AWS API Documentation
5459
+ #
5460
+ class IdempotentParameterMismatch < Struct.new(
5461
+ :message)
5462
+ SENSITIVE = []
5463
+ include Aws::Structure
5464
+ end
5465
+
5251
5466
  # Your Amazon S3 bucket policy does not permit Config to write to it.
5252
5467
  #
5253
5468
  # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/InsufficientDeliveryPolicyException AWS API Documentation
@@ -5615,6 +5830,65 @@ module Aws::ConfigService
5615
5830
  include Aws::Structure
5616
5831
  end
5617
5832
 
5833
+ # @note When making an API call, you may pass ListResourceEvaluationsRequest
5834
+ # data as a hash:
5835
+ #
5836
+ # {
5837
+ # filters: {
5838
+ # evaluation_mode: "DETECTIVE", # accepts DETECTIVE, PROACTIVE
5839
+ # time_window: {
5840
+ # start_time: Time.now,
5841
+ # end_time: Time.now,
5842
+ # },
5843
+ # evaluation_context_identifier: "EvaluationContextIdentifier",
5844
+ # },
5845
+ # limit: 1,
5846
+ # next_token: "String",
5847
+ # }
5848
+ #
5849
+ # @!attribute [rw] filters
5850
+ # Returns a `ResourceEvaluationFilters` object.
5851
+ # @return [Types::ResourceEvaluationFilters]
5852
+ #
5853
+ # @!attribute [rw] limit
5854
+ # The maximum number of evaluations returned on each page. The default
5855
+ # is 10. You cannot specify a number greater than 100. If you specify
5856
+ # 0, Config uses the default.
5857
+ # @return [Integer]
5858
+ #
5859
+ # @!attribute [rw] next_token
5860
+ # The `nextToken` string returned on a previous page that you use to
5861
+ # get the next page of results in a paginated response.
5862
+ # @return [String]
5863
+ #
5864
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/ListResourceEvaluationsRequest AWS API Documentation
5865
+ #
5866
+ class ListResourceEvaluationsRequest < Struct.new(
5867
+ :filters,
5868
+ :limit,
5869
+ :next_token)
5870
+ SENSITIVE = []
5871
+ include Aws::Structure
5872
+ end
5873
+
5874
+ # @!attribute [rw] resource_evaluations
5875
+ # Returns a `ResourceEvaluations` object.
5876
+ # @return [Array<Types::ResourceEvaluation>]
5877
+ #
5878
+ # @!attribute [rw] next_token
5879
+ # The `nextToken` string returned on a previous page that you use to
5880
+ # get the next page of results in a paginated response.
5881
+ # @return [String]
5882
+ #
5883
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/ListResourceEvaluationsResponse AWS API Documentation
5884
+ #
5885
+ class ListResourceEvaluationsResponse < Struct.new(
5886
+ :resource_evaluations,
5887
+ :next_token)
5888
+ SENSITIVE = []
5889
+ include Aws::Structure
5890
+ end
5891
+
5618
5892
  # @note When making an API call, you may pass ListStoredQueriesRequest
5619
5893
  # data as a hash:
5620
5894
  #
@@ -6960,6 +7234,11 @@ module Aws::ConfigService
6960
7234
  # maximum_execution_frequency: "One_Hour", # accepts One_Hour, Three_Hours, Six_Hours, Twelve_Hours, TwentyFour_Hours
6961
7235
  # config_rule_state: "ACTIVE", # accepts ACTIVE, DELETING, DELETING_RESULTS, EVALUATING
6962
7236
  # created_by: "StringWithCharLimit256",
7237
+ # evaluation_modes: [
7238
+ # {
7239
+ # mode: "DETECTIVE", # accepts DETECTIVE, PROACTIVE
7240
+ # },
7241
+ # ],
6963
7242
  # },
6964
7243
  # tags: [
6965
7244
  # {
@@ -7801,31 +8080,40 @@ module Aws::ConfigService
7801
8080
  include Aws::Structure
7802
8081
  end
7803
8082
 
7804
- # Specifies the types of Amazon Web Services resource for which Config
7805
- # records configuration changes.
7806
- #
7807
- # In the recording group, you specify whether all supported types or
7808
- # specific types of resources are recorded.
8083
+ # Specifies which Amazon Web Services resource types Config records for
8084
+ # configuration changes. In the recording group, you specify whether you
8085
+ # want to record all supported resource types or only specific types of
8086
+ # resources.
7809
8087
  #
7810
- # By default, Config records configuration changes for all supported
7811
- # types of regional resources that Config discovers in the region in
8088
+ # By default, Config records the configuration changes for all supported
8089
+ # types of *regional resources* that Config discovers in the region in
7812
8090
  # which it is running. Regional resources are tied to a region and can
7813
8091
  # be used only in that region. Examples of regional resources are EC2
7814
8092
  # instances and EBS volumes.
7815
8093
  #
7816
- # You can also have Config record configuration changes for supported
7817
- # types of global resources (for example, IAM resources). Global
7818
- # resources are not tied to an individual region and can be used in all
7819
- # regions.
7820
- #
7821
- # The configuration details for any global resource are the same in all
7822
- # regions. If you customize Config in multiple regions to record global
7823
- # resources, it will create multiple configuration items each time a
7824
- # global resource changes: one configuration item for each region. These
7825
- # configuration items will contain identical data. To prevent duplicate
7826
- # configuration items, you should consider customizing Config in only
7827
- # one region to record global resources, unless you want the
7828
- # configuration items to be available in multiple regions.
8094
+ # You can also have Config record supported types of *global resources*.
8095
+ # Global resources are not tied to a specific region and can be used in
8096
+ # all regions. The global resource types that Config supports include
8097
+ # IAM users, groups, roles, and customer managed policies.
8098
+ #
8099
+ # Global resource types onboarded to Config recording after February
8100
+ # 2022 will only be recorded in the service's home region for the
8101
+ # commercial partition and Amazon Web Services GovCloud (US) West for
8102
+ # the GovCloud partition. You can view the Configuration Items for these
8103
+ # new global resource types only in their home region and Amazon Web
8104
+ # Services GovCloud (US) West.
8105
+ #
8106
+ # Supported global resource types onboarded before February 2022 such
8107
+ # as
8108
+ # `AWS::IAM::Group`, `AWS::IAM::Policy`, `AWS::IAM::Role`,
8109
+ # `AWS::IAM::User` remain unchanged, and they will continue to deliver
8110
+ # Configuration Items in all supported regions in Config. The change
8111
+ # will only affect new global resource types onboarded after February
8112
+ # 2022.
8113
+ #
8114
+ # To record global resource types onboarded after February 2022, enable
8115
+ # All Supported Resource Types in the home region of the global resource
8116
+ # type you want to record.
7829
8117
  #
7830
8118
  # If you don't want Config to record all resources, you can specify
7831
8119
  # which types of resources it will record with the `resourceTypes`
@@ -7834,8 +8122,9 @@ module Aws::ConfigService
7834
8122
  # For a list of supported resource types, see [Supported Resource
7835
8123
  # Types][1].
7836
8124
  #
7837
- # For more information, see [Selecting Which Resources Config
7838
- # Records][2].
8125
+ # For more information and a table of the Home Regions for Global
8126
+ # Resource Types Onboarded after February 2022, see [Selecting Which
8127
+ # Resources Config Records][2].
7839
8128
  #
7840
8129
  #
7841
8130
  #
@@ -8303,6 +8592,109 @@ module Aws::ConfigService
8303
8592
  include Aws::Structure
8304
8593
  end
8305
8594
 
8595
+ # Returns information about the resource being evaluated.
8596
+ #
8597
+ # @note When making an API call, you may pass ResourceDetails
8598
+ # data as a hash:
8599
+ #
8600
+ # {
8601
+ # resource_id: "BaseResourceId", # required
8602
+ # resource_type: "StringWithCharLimit256", # required
8603
+ # resource_configuration: "ResourceConfiguration", # required
8604
+ # resource_configuration_schema_type: "CFN_RESOURCE_SCHEMA", # accepts CFN_RESOURCE_SCHEMA
8605
+ # }
8606
+ #
8607
+ # @!attribute [rw] resource_id
8608
+ # A unique resource ID for an evaluation.
8609
+ # @return [String]
8610
+ #
8611
+ # @!attribute [rw] resource_type
8612
+ # The type of resource being evaluated.
8613
+ # @return [String]
8614
+ #
8615
+ # @!attribute [rw] resource_configuration
8616
+ # The resource definition to be evaluated as per the resource
8617
+ # configuration schema type.
8618
+ # @return [String]
8619
+ #
8620
+ # @!attribute [rw] resource_configuration_schema_type
8621
+ # The schema type of the resource configuration.
8622
+ # @return [String]
8623
+ #
8624
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/ResourceDetails AWS API Documentation
8625
+ #
8626
+ class ResourceDetails < Struct.new(
8627
+ :resource_id,
8628
+ :resource_type,
8629
+ :resource_configuration,
8630
+ :resource_configuration_schema_type)
8631
+ SENSITIVE = []
8632
+ include Aws::Structure
8633
+ end
8634
+
8635
+ # Returns details of a resource evaluation.
8636
+ #
8637
+ # @!attribute [rw] resource_evaluation_id
8638
+ # The ResourceEvaluationId of a evaluation.
8639
+ # @return [String]
8640
+ #
8641
+ # @!attribute [rw] evaluation_mode
8642
+ # The mode of an evaluation. The valid values are Detective or
8643
+ # Proactive.
8644
+ # @return [String]
8645
+ #
8646
+ # @!attribute [rw] evaluation_start_timestamp
8647
+ # The starting time of an execution.
8648
+ # @return [Time]
8649
+ #
8650
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/ResourceEvaluation AWS API Documentation
8651
+ #
8652
+ class ResourceEvaluation < Struct.new(
8653
+ :resource_evaluation_id,
8654
+ :evaluation_mode,
8655
+ :evaluation_start_timestamp)
8656
+ SENSITIVE = []
8657
+ include Aws::Structure
8658
+ end
8659
+
8660
+ # Returns details of a resource evaluation based on the selected filter.
8661
+ #
8662
+ # @note When making an API call, you may pass ResourceEvaluationFilters
8663
+ # data as a hash:
8664
+ #
8665
+ # {
8666
+ # evaluation_mode: "DETECTIVE", # accepts DETECTIVE, PROACTIVE
8667
+ # time_window: {
8668
+ # start_time: Time.now,
8669
+ # end_time: Time.now,
8670
+ # },
8671
+ # evaluation_context_identifier: "EvaluationContextIdentifier",
8672
+ # }
8673
+ #
8674
+ # @!attribute [rw] evaluation_mode
8675
+ # Filters all resource evaluations results based on an evaluation
8676
+ # mode. the valid value for this API is `Proactive`.
8677
+ # @return [String]
8678
+ #
8679
+ # @!attribute [rw] time_window
8680
+ # Returns a `TimeWindow` object.
8681
+ # @return [Types::TimeWindow]
8682
+ #
8683
+ # @!attribute [rw] evaluation_context_identifier
8684
+ # Filters evaluations for a given infrastructure deployment. For
8685
+ # example: CFN Stack.
8686
+ # @return [String]
8687
+ #
8688
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/ResourceEvaluationFilters AWS API Documentation
8689
+ #
8690
+ class ResourceEvaluationFilters < Struct.new(
8691
+ :evaluation_mode,
8692
+ :time_window,
8693
+ :evaluation_context_identifier)
8694
+ SENSITIVE = []
8695
+ include Aws::Structure
8696
+ end
8697
+
8306
8698
  # Filters the results by resource account ID, region, resource ID, and
8307
8699
  # resource name.
8308
8700
  #
@@ -8964,6 +9356,84 @@ module Aws::ConfigService
8964
9356
  include Aws::Structure
8965
9357
  end
8966
9358
 
9359
+ # @note When making an API call, you may pass StartResourceEvaluationRequest
9360
+ # data as a hash:
9361
+ #
9362
+ # {
9363
+ # resource_details: { # required
9364
+ # resource_id: "BaseResourceId", # required
9365
+ # resource_type: "StringWithCharLimit256", # required
9366
+ # resource_configuration: "ResourceConfiguration", # required
9367
+ # resource_configuration_schema_type: "CFN_RESOURCE_SCHEMA", # accepts CFN_RESOURCE_SCHEMA
9368
+ # },
9369
+ # evaluation_context: {
9370
+ # evaluation_context_identifier: "EvaluationContextIdentifier",
9371
+ # },
9372
+ # evaluation_mode: "DETECTIVE", # required, accepts DETECTIVE, PROACTIVE
9373
+ # evaluation_timeout: 1,
9374
+ # client_token: "ClientToken",
9375
+ # }
9376
+ #
9377
+ # @!attribute [rw] resource_details
9378
+ # Returns a `ResourceDetails` object.
9379
+ # @return [Types::ResourceDetails]
9380
+ #
9381
+ # @!attribute [rw] evaluation_context
9382
+ # Returns an `EvaluationContext` object.
9383
+ # @return [Types::EvaluationContext]
9384
+ #
9385
+ # @!attribute [rw] evaluation_mode
9386
+ # The mode of an evaluation. The valid value for this API is
9387
+ # `Proactive`.
9388
+ # @return [String]
9389
+ #
9390
+ # @!attribute [rw] evaluation_timeout
9391
+ # The timeout for an evaluation. The default is 900 seconds. You
9392
+ # cannot specify a number greater than 3600. If you specify 0, Config
9393
+ # uses the default.
9394
+ # @return [Integer]
9395
+ #
9396
+ # @!attribute [rw] client_token
9397
+ # A client token is a unique, case-sensitive string of up to 64 ASCII
9398
+ # characters. To make an idempotent API request using one of these
9399
+ # actions, specify a client token in the request.
9400
+ #
9401
+ # <note markdown="1"> Avoid reusing the same client token for other API requests. If you
9402
+ # retry a request that completed successfully using the same client
9403
+ # token and the same parameters, the retry succeeds without performing
9404
+ # any further actions. If you retry a successful request using the
9405
+ # same client token, but one or more of the parameters are different,
9406
+ # other than the Region or Availability Zone, the retry fails with an
9407
+ # IdempotentParameterMismatch error.
9408
+ #
9409
+ # </note>
9410
+ # @return [String]
9411
+ #
9412
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/StartResourceEvaluationRequest AWS API Documentation
9413
+ #
9414
+ class StartResourceEvaluationRequest < Struct.new(
9415
+ :resource_details,
9416
+ :evaluation_context,
9417
+ :evaluation_mode,
9418
+ :evaluation_timeout,
9419
+ :client_token)
9420
+ SENSITIVE = []
9421
+ include Aws::Structure
9422
+ end
9423
+
9424
+ # @!attribute [rw] resource_evaluation_id
9425
+ # A unique ResourceEvaluationId that is associated with a single
9426
+ # execution.
9427
+ # @return [String]
9428
+ #
9429
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/StartResourceEvaluationResponse AWS API Documentation
9430
+ #
9431
+ class StartResourceEvaluationResponse < Struct.new(
9432
+ :resource_evaluation_id)
9433
+ SENSITIVE = []
9434
+ include Aws::Structure
9435
+ end
9436
+
8967
9437
  # The static value of the resource.
8968
9438
  #
8969
9439
  # @note When making an API call, you may pass StaticValue
@@ -9267,6 +9737,34 @@ module Aws::ConfigService
9267
9737
  include Aws::Structure
9268
9738
  end
9269
9739
 
9740
+ # Filters evaluation results based on start and end times.
9741
+ #
9742
+ # @note When making an API call, you may pass TimeWindow
9743
+ # data as a hash:
9744
+ #
9745
+ # {
9746
+ # start_time: Time.now,
9747
+ # end_time: Time.now,
9748
+ # }
9749
+ #
9750
+ # @!attribute [rw] start_time
9751
+ # The start time of an execution.
9752
+ # @return [Time]
9753
+ #
9754
+ # @!attribute [rw] end_time
9755
+ # The end time of an execution. The end time must be after the start
9756
+ # date.
9757
+ # @return [Time]
9758
+ #
9759
+ # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/TimeWindow AWS API Documentation
9760
+ #
9761
+ class TimeWindow < Struct.new(
9762
+ :start_time,
9763
+ :end_time)
9764
+ SENSITIVE = []
9765
+ include Aws::Structure
9766
+ end
9767
+
9270
9768
  # You have reached the limit of the number of tags you can use. For more
9271
9769
  # information, see [ **Service Limits** ][1] in the Config Developer
9272
9770
  # Guide.