aws-sdk-configservice 1.85.0 → 1.86.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-configservice/client.rb +223 -7
- data/lib/aws-sdk-configservice/client_api.rb +141 -2
- data/lib/aws-sdk-configservice/endpoints.rb +42 -0
- data/lib/aws-sdk-configservice/errors.rb +16 -0
- data/lib/aws-sdk-configservice/plugins/endpoints.rb +6 -0
- data/lib/aws-sdk-configservice/types.rb +527 -29
- data/lib/aws-sdk-configservice.rb +1 -1
- metadata +2 -2
@@ -944,6 +944,11 @@ module Aws::ConfigService
|
|
944
944
|
# maximum_execution_frequency: "One_Hour", # accepts One_Hour, Three_Hours, Six_Hours, Twelve_Hours, TwentyFour_Hours
|
945
945
|
# config_rule_state: "ACTIVE", # accepts ACTIVE, DELETING, DELETING_RESULTS, EVALUATING
|
946
946
|
# created_by: "StringWithCharLimit256",
|
947
|
+
# evaluation_modes: [
|
948
|
+
# {
|
949
|
+
# mode: "DETECTIVE", # accepts DETECTIVE, PROACTIVE
|
950
|
+
# },
|
951
|
+
# ],
|
947
952
|
# }
|
948
953
|
#
|
949
954
|
# @!attribute [rw] config_rule_name
|
@@ -1036,6 +1041,12 @@ module Aws::ConfigService
|
|
1036
1041
|
# </note>
|
1037
1042
|
# @return [String]
|
1038
1043
|
#
|
1044
|
+
# @!attribute [rw] evaluation_modes
|
1045
|
+
# The modes the Config rule can be evaluated in. The valid values are
|
1046
|
+
# distinct objects. By default, the value is Detective evaluation mode
|
1047
|
+
# only.
|
1048
|
+
# @return [Array<Types::EvaluationModeConfiguration>]
|
1049
|
+
#
|
1039
1050
|
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/ConfigRule AWS API Documentation
|
1040
1051
|
#
|
1041
1052
|
class ConfigRule < Struct.new(
|
@@ -1048,7 +1059,8 @@ module Aws::ConfigService
|
|
1048
1059
|
:input_parameters,
|
1049
1060
|
:maximum_execution_frequency,
|
1050
1061
|
:config_rule_state,
|
1051
|
-
:created_by
|
1062
|
+
:created_by,
|
1063
|
+
:evaluation_modes)
|
1052
1064
|
SENSITIVE = []
|
1053
1065
|
include Aws::Structure
|
1054
1066
|
end
|
@@ -2925,12 +2937,39 @@ module Aws::ConfigService
|
|
2925
2937
|
include Aws::Structure
|
2926
2938
|
end
|
2927
2939
|
|
2940
|
+
# Returns a filtered list of Detective or Proactive Config rules. By
|
2941
|
+
# default, if the filter is not defined, this API returns an unfiltered
|
2942
|
+
# list.
|
2943
|
+
#
|
2944
|
+
# @note When making an API call, you may pass DescribeConfigRulesFilters
|
2945
|
+
# data as a hash:
|
2946
|
+
#
|
2947
|
+
# {
|
2948
|
+
# evaluation_mode: "DETECTIVE", # accepts DETECTIVE, PROACTIVE
|
2949
|
+
# }
|
2950
|
+
#
|
2951
|
+
# @!attribute [rw] evaluation_mode
|
2952
|
+
# The mode of an evaluation. The valid values are Detective or
|
2953
|
+
# Proactive.
|
2954
|
+
# @return [String]
|
2955
|
+
#
|
2956
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/DescribeConfigRulesFilters AWS API Documentation
|
2957
|
+
#
|
2958
|
+
class DescribeConfigRulesFilters < Struct.new(
|
2959
|
+
:evaluation_mode)
|
2960
|
+
SENSITIVE = []
|
2961
|
+
include Aws::Structure
|
2962
|
+
end
|
2963
|
+
|
2928
2964
|
# @note When making an API call, you may pass DescribeConfigRulesRequest
|
2929
2965
|
# data as a hash:
|
2930
2966
|
#
|
2931
2967
|
# {
|
2932
2968
|
# config_rule_names: ["ConfigRuleName"],
|
2933
2969
|
# next_token: "String",
|
2970
|
+
# filters: {
|
2971
|
+
# evaluation_mode: "DETECTIVE", # accepts DETECTIVE, PROACTIVE
|
2972
|
+
# },
|
2934
2973
|
# }
|
2935
2974
|
#
|
2936
2975
|
# @!attribute [rw] config_rule_names
|
@@ -2943,11 +2982,17 @@ module Aws::ConfigService
|
|
2943
2982
|
# get the next page of results in a paginated response.
|
2944
2983
|
# @return [String]
|
2945
2984
|
#
|
2985
|
+
# @!attribute [rw] filters
|
2986
|
+
# Returns a list of Detecive or Proactive Config rules. By default,
|
2987
|
+
# this API returns an unfiltered list.
|
2988
|
+
# @return [Types::DescribeConfigRulesFilters]
|
2989
|
+
#
|
2946
2990
|
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/DescribeConfigRulesRequest AWS API Documentation
|
2947
2991
|
#
|
2948
2992
|
class DescribeConfigRulesRequest < Struct.new(
|
2949
2993
|
:config_rule_names,
|
2950
|
-
:next_token
|
2994
|
+
:next_token,
|
2995
|
+
:filters)
|
2951
2996
|
SENSITIVE = []
|
2952
2997
|
include Aws::Structure
|
2953
2998
|
end
|
@@ -3931,6 +3976,53 @@ module Aws::ConfigService
|
|
3931
3976
|
include Aws::Structure
|
3932
3977
|
end
|
3933
3978
|
|
3979
|
+
# Use EvaluationContext to group independently initiated proactive
|
3980
|
+
# resource evaluations. For example, CFN Stack. If you want to check
|
3981
|
+
# just a resource definition, you do not need to provide evaluation
|
3982
|
+
# context.
|
3983
|
+
#
|
3984
|
+
# @note When making an API call, you may pass EvaluationContext
|
3985
|
+
# data as a hash:
|
3986
|
+
#
|
3987
|
+
# {
|
3988
|
+
# evaluation_context_identifier: "EvaluationContextIdentifier",
|
3989
|
+
# }
|
3990
|
+
#
|
3991
|
+
# @!attribute [rw] evaluation_context_identifier
|
3992
|
+
# A unique EvaluationContextIdentifier ID for an EvaluationContext.
|
3993
|
+
# @return [String]
|
3994
|
+
#
|
3995
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/EvaluationContext AWS API Documentation
|
3996
|
+
#
|
3997
|
+
class EvaluationContext < Struct.new(
|
3998
|
+
:evaluation_context_identifier)
|
3999
|
+
SENSITIVE = []
|
4000
|
+
include Aws::Structure
|
4001
|
+
end
|
4002
|
+
|
4003
|
+
# The configuration object for Config rule evaluation mode. The
|
4004
|
+
# Supported valid values are Detective or Proactive.
|
4005
|
+
#
|
4006
|
+
# @note When making an API call, you may pass EvaluationModeConfiguration
|
4007
|
+
# data as a hash:
|
4008
|
+
#
|
4009
|
+
# {
|
4010
|
+
# mode: "DETECTIVE", # accepts DETECTIVE, PROACTIVE
|
4011
|
+
# }
|
4012
|
+
#
|
4013
|
+
# @!attribute [rw] mode
|
4014
|
+
# The mode of an evaluation. The valid values are Detective or
|
4015
|
+
# Proactive.
|
4016
|
+
# @return [String]
|
4017
|
+
#
|
4018
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/EvaluationModeConfiguration AWS API Documentation
|
4019
|
+
#
|
4020
|
+
class EvaluationModeConfiguration < Struct.new(
|
4021
|
+
:mode)
|
4022
|
+
SENSITIVE = []
|
4023
|
+
include Aws::Structure
|
4024
|
+
end
|
4025
|
+
|
3934
4026
|
# The details of an Config evaluation. Provides the Amazon Web Services
|
3935
4027
|
# resource that was evaluated, the compliance of the resource, related
|
3936
4028
|
# time stamps, and supplementary information.
|
@@ -3998,11 +4090,16 @@ module Aws::ConfigService
|
|
3998
4090
|
# event triggered the evaluation.
|
3999
4091
|
# @return [Time]
|
4000
4092
|
#
|
4093
|
+
# @!attribute [rw] resource_evaluation_id
|
4094
|
+
# A Unique ID for an evaluation result.
|
4095
|
+
# @return [String]
|
4096
|
+
#
|
4001
4097
|
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/EvaluationResultIdentifier AWS API Documentation
|
4002
4098
|
#
|
4003
4099
|
class EvaluationResultIdentifier < Struct.new(
|
4004
4100
|
:evaluation_result_qualifier,
|
4005
|
-
:ordering_timestamp
|
4101
|
+
:ordering_timestamp,
|
4102
|
+
:resource_evaluation_id)
|
4006
4103
|
SENSITIVE = []
|
4007
4104
|
include Aws::Structure
|
4008
4105
|
end
|
@@ -4023,12 +4120,38 @@ module Aws::ConfigService
|
|
4023
4120
|
# The ID of the evaluated Amazon Web Services resource.
|
4024
4121
|
# @return [String]
|
4025
4122
|
#
|
4123
|
+
# @!attribute [rw] evaluation_mode
|
4124
|
+
# The mode of an evaluation. The valid values are Detective or
|
4125
|
+
# Proactive.
|
4126
|
+
# @return [String]
|
4127
|
+
#
|
4026
4128
|
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/EvaluationResultQualifier AWS API Documentation
|
4027
4129
|
#
|
4028
4130
|
class EvaluationResultQualifier < Struct.new(
|
4029
4131
|
:config_rule_name,
|
4030
4132
|
:resource_type,
|
4031
|
-
:resource_id
|
4133
|
+
:resource_id,
|
4134
|
+
:evaluation_mode)
|
4135
|
+
SENSITIVE = []
|
4136
|
+
include Aws::Structure
|
4137
|
+
end
|
4138
|
+
|
4139
|
+
# Returns status details of an evaluation.
|
4140
|
+
#
|
4141
|
+
# @!attribute [rw] status
|
4142
|
+
# The status of an execution. The valid values are In\_Progress,
|
4143
|
+
# Succeeded or Failed.
|
4144
|
+
# @return [String]
|
4145
|
+
#
|
4146
|
+
# @!attribute [rw] failure_reason
|
4147
|
+
# An explanation for failed execution status.
|
4148
|
+
# @return [String]
|
4149
|
+
#
|
4150
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/EvaluationStatus AWS API Documentation
|
4151
|
+
#
|
4152
|
+
class EvaluationStatus < Struct.new(
|
4153
|
+
:status,
|
4154
|
+
:failure_reason)
|
4032
4155
|
SENSITIVE = []
|
4033
4156
|
include Aws::Structure
|
4034
4157
|
end
|
@@ -4607,10 +4730,11 @@ module Aws::ConfigService
|
|
4607
4730
|
# data as a hash:
|
4608
4731
|
#
|
4609
4732
|
# {
|
4610
|
-
# resource_type: "StringWithCharLimit256",
|
4611
|
-
# resource_id: "BaseResourceId",
|
4733
|
+
# resource_type: "StringWithCharLimit256",
|
4734
|
+
# resource_id: "BaseResourceId",
|
4612
4735
|
# compliance_types: ["COMPLIANT"], # accepts COMPLIANT, NON_COMPLIANT, NOT_APPLICABLE, INSUFFICIENT_DATA
|
4613
4736
|
# next_token: "String",
|
4737
|
+
# resource_evaluation_id: "ResourceEvaluationId",
|
4614
4738
|
# }
|
4615
4739
|
#
|
4616
4740
|
# @!attribute [rw] resource_type
|
@@ -4635,13 +4759,24 @@ module Aws::ConfigService
|
|
4635
4759
|
# get the next page of results in a paginated response.
|
4636
4760
|
# @return [String]
|
4637
4761
|
#
|
4762
|
+
# @!attribute [rw] resource_evaluation_id
|
4763
|
+
# The unique ID of Amazon Web Services resource execution for which
|
4764
|
+
# you want to retrieve evaluation results.
|
4765
|
+
#
|
4766
|
+
# <note markdown="1"> You need to only provide either a `ResourceEvaluationID` or a
|
4767
|
+
# `ResourceID `and `ResourceType`.
|
4768
|
+
#
|
4769
|
+
# </note>
|
4770
|
+
# @return [String]
|
4771
|
+
#
|
4638
4772
|
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/GetComplianceDetailsByResourceRequest AWS API Documentation
|
4639
4773
|
#
|
4640
4774
|
class GetComplianceDetailsByResourceRequest < Struct.new(
|
4641
4775
|
:resource_type,
|
4642
4776
|
:resource_id,
|
4643
4777
|
:compliance_types,
|
4644
|
-
:next_token
|
4778
|
+
:next_token,
|
4779
|
+
:resource_evaluation_id)
|
4645
4780
|
SENSITIVE = []
|
4646
4781
|
include Aws::Structure
|
4647
4782
|
end
|
@@ -5196,6 +5331,72 @@ module Aws::ConfigService
|
|
5196
5331
|
include Aws::Structure
|
5197
5332
|
end
|
5198
5333
|
|
5334
|
+
# @note When making an API call, you may pass GetResourceEvaluationSummaryRequest
|
5335
|
+
# data as a hash:
|
5336
|
+
#
|
5337
|
+
# {
|
5338
|
+
# resource_evaluation_id: "ResourceEvaluationId", # required
|
5339
|
+
# }
|
5340
|
+
#
|
5341
|
+
# @!attribute [rw] resource_evaluation_id
|
5342
|
+
# The unique `ResourceEvaluationId` of Amazon Web Services resource
|
5343
|
+
# execution for which you want to retrieve the evaluation summary.
|
5344
|
+
# @return [String]
|
5345
|
+
#
|
5346
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/GetResourceEvaluationSummaryRequest AWS API Documentation
|
5347
|
+
#
|
5348
|
+
class GetResourceEvaluationSummaryRequest < Struct.new(
|
5349
|
+
:resource_evaluation_id)
|
5350
|
+
SENSITIVE = []
|
5351
|
+
include Aws::Structure
|
5352
|
+
end
|
5353
|
+
|
5354
|
+
# @!attribute [rw] resource_evaluation_id
|
5355
|
+
# The unique `ResourceEvaluationId` of Amazon Web Services resource
|
5356
|
+
# execution for which you want to retrieve the evaluation summary.
|
5357
|
+
# @return [String]
|
5358
|
+
#
|
5359
|
+
# @!attribute [rw] evaluation_mode
|
5360
|
+
# Lists results of the mode that you requested to retrieve the
|
5361
|
+
# resource evaluation summary. The valid values are Detective or
|
5362
|
+
# Proactive.
|
5363
|
+
# @return [String]
|
5364
|
+
#
|
5365
|
+
# @!attribute [rw] evaluation_status
|
5366
|
+
# Returns an `EvaluationStatus` object.
|
5367
|
+
# @return [Types::EvaluationStatus]
|
5368
|
+
#
|
5369
|
+
# @!attribute [rw] evaluation_start_timestamp
|
5370
|
+
# The start timestamp when Config rule starts evaluating compliance
|
5371
|
+
# for the provided resource details.
|
5372
|
+
# @return [Time]
|
5373
|
+
#
|
5374
|
+
# @!attribute [rw] compliance
|
5375
|
+
# The compliance status of the resource evaluation summary.
|
5376
|
+
# @return [String]
|
5377
|
+
#
|
5378
|
+
# @!attribute [rw] evaluation_context
|
5379
|
+
# Returns an `EvaluationContext` object.
|
5380
|
+
# @return [Types::EvaluationContext]
|
5381
|
+
#
|
5382
|
+
# @!attribute [rw] resource_details
|
5383
|
+
# Returns a `ResourceDetails` object.
|
5384
|
+
# @return [Types::ResourceDetails]
|
5385
|
+
#
|
5386
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/GetResourceEvaluationSummaryResponse AWS API Documentation
|
5387
|
+
#
|
5388
|
+
class GetResourceEvaluationSummaryResponse < Struct.new(
|
5389
|
+
:resource_evaluation_id,
|
5390
|
+
:evaluation_mode,
|
5391
|
+
:evaluation_status,
|
5392
|
+
:evaluation_start_timestamp,
|
5393
|
+
:compliance,
|
5394
|
+
:evaluation_context,
|
5395
|
+
:resource_details)
|
5396
|
+
SENSITIVE = []
|
5397
|
+
include Aws::Structure
|
5398
|
+
end
|
5399
|
+
|
5199
5400
|
# @note When making an API call, you may pass GetStoredQueryRequest
|
5200
5401
|
# data as a hash:
|
5201
5402
|
#
|
@@ -5248,6 +5449,20 @@ module Aws::ConfigService
|
|
5248
5449
|
include Aws::Structure
|
5249
5450
|
end
|
5250
5451
|
|
5452
|
+
# Using the same client token with one or more different parameters.
|
5453
|
+
# Specify a new client token with the parameter changes and try again.
|
5454
|
+
#
|
5455
|
+
# @!attribute [rw] message
|
5456
|
+
# @return [String]
|
5457
|
+
#
|
5458
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/IdempotentParameterMismatch AWS API Documentation
|
5459
|
+
#
|
5460
|
+
class IdempotentParameterMismatch < Struct.new(
|
5461
|
+
:message)
|
5462
|
+
SENSITIVE = []
|
5463
|
+
include Aws::Structure
|
5464
|
+
end
|
5465
|
+
|
5251
5466
|
# Your Amazon S3 bucket policy does not permit Config to write to it.
|
5252
5467
|
#
|
5253
5468
|
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/InsufficientDeliveryPolicyException AWS API Documentation
|
@@ -5615,6 +5830,65 @@ module Aws::ConfigService
|
|
5615
5830
|
include Aws::Structure
|
5616
5831
|
end
|
5617
5832
|
|
5833
|
+
# @note When making an API call, you may pass ListResourceEvaluationsRequest
|
5834
|
+
# data as a hash:
|
5835
|
+
#
|
5836
|
+
# {
|
5837
|
+
# filters: {
|
5838
|
+
# evaluation_mode: "DETECTIVE", # accepts DETECTIVE, PROACTIVE
|
5839
|
+
# time_window: {
|
5840
|
+
# start_time: Time.now,
|
5841
|
+
# end_time: Time.now,
|
5842
|
+
# },
|
5843
|
+
# evaluation_context_identifier: "EvaluationContextIdentifier",
|
5844
|
+
# },
|
5845
|
+
# limit: 1,
|
5846
|
+
# next_token: "String",
|
5847
|
+
# }
|
5848
|
+
#
|
5849
|
+
# @!attribute [rw] filters
|
5850
|
+
# Returns a `ResourceEvaluationFilters` object.
|
5851
|
+
# @return [Types::ResourceEvaluationFilters]
|
5852
|
+
#
|
5853
|
+
# @!attribute [rw] limit
|
5854
|
+
# The maximum number of evaluations returned on each page. The default
|
5855
|
+
# is 10. You cannot specify a number greater than 100. If you specify
|
5856
|
+
# 0, Config uses the default.
|
5857
|
+
# @return [Integer]
|
5858
|
+
#
|
5859
|
+
# @!attribute [rw] next_token
|
5860
|
+
# The `nextToken` string returned on a previous page that you use to
|
5861
|
+
# get the next page of results in a paginated response.
|
5862
|
+
# @return [String]
|
5863
|
+
#
|
5864
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/ListResourceEvaluationsRequest AWS API Documentation
|
5865
|
+
#
|
5866
|
+
class ListResourceEvaluationsRequest < Struct.new(
|
5867
|
+
:filters,
|
5868
|
+
:limit,
|
5869
|
+
:next_token)
|
5870
|
+
SENSITIVE = []
|
5871
|
+
include Aws::Structure
|
5872
|
+
end
|
5873
|
+
|
5874
|
+
# @!attribute [rw] resource_evaluations
|
5875
|
+
# Returns a `ResourceEvaluations` object.
|
5876
|
+
# @return [Array<Types::ResourceEvaluation>]
|
5877
|
+
#
|
5878
|
+
# @!attribute [rw] next_token
|
5879
|
+
# The `nextToken` string returned on a previous page that you use to
|
5880
|
+
# get the next page of results in a paginated response.
|
5881
|
+
# @return [String]
|
5882
|
+
#
|
5883
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/ListResourceEvaluationsResponse AWS API Documentation
|
5884
|
+
#
|
5885
|
+
class ListResourceEvaluationsResponse < Struct.new(
|
5886
|
+
:resource_evaluations,
|
5887
|
+
:next_token)
|
5888
|
+
SENSITIVE = []
|
5889
|
+
include Aws::Structure
|
5890
|
+
end
|
5891
|
+
|
5618
5892
|
# @note When making an API call, you may pass ListStoredQueriesRequest
|
5619
5893
|
# data as a hash:
|
5620
5894
|
#
|
@@ -6960,6 +7234,11 @@ module Aws::ConfigService
|
|
6960
7234
|
# maximum_execution_frequency: "One_Hour", # accepts One_Hour, Three_Hours, Six_Hours, Twelve_Hours, TwentyFour_Hours
|
6961
7235
|
# config_rule_state: "ACTIVE", # accepts ACTIVE, DELETING, DELETING_RESULTS, EVALUATING
|
6962
7236
|
# created_by: "StringWithCharLimit256",
|
7237
|
+
# evaluation_modes: [
|
7238
|
+
# {
|
7239
|
+
# mode: "DETECTIVE", # accepts DETECTIVE, PROACTIVE
|
7240
|
+
# },
|
7241
|
+
# ],
|
6963
7242
|
# },
|
6964
7243
|
# tags: [
|
6965
7244
|
# {
|
@@ -7801,31 +8080,40 @@ module Aws::ConfigService
|
|
7801
8080
|
include Aws::Structure
|
7802
8081
|
end
|
7803
8082
|
|
7804
|
-
# Specifies
|
7805
|
-
#
|
7806
|
-
#
|
7807
|
-
#
|
7808
|
-
# specific types of resources are recorded.
|
8083
|
+
# Specifies which Amazon Web Services resource types Config records for
|
8084
|
+
# configuration changes. In the recording group, you specify whether you
|
8085
|
+
# want to record all supported resource types or only specific types of
|
8086
|
+
# resources.
|
7809
8087
|
#
|
7810
|
-
# By default, Config records configuration changes for all supported
|
7811
|
-
# types of regional resources that Config discovers in the region in
|
8088
|
+
# By default, Config records the configuration changes for all supported
|
8089
|
+
# types of *regional resources* that Config discovers in the region in
|
7812
8090
|
# which it is running. Regional resources are tied to a region and can
|
7813
8091
|
# be used only in that region. Examples of regional resources are EC2
|
7814
8092
|
# instances and EBS volumes.
|
7815
8093
|
#
|
7816
|
-
# You can also have Config record
|
7817
|
-
#
|
7818
|
-
#
|
7819
|
-
#
|
7820
|
-
#
|
7821
|
-
#
|
7822
|
-
#
|
7823
|
-
#
|
7824
|
-
#
|
7825
|
-
#
|
7826
|
-
#
|
7827
|
-
#
|
7828
|
-
#
|
8094
|
+
# You can also have Config record supported types of *global resources*.
|
8095
|
+
# Global resources are not tied to a specific region and can be used in
|
8096
|
+
# all regions. The global resource types that Config supports include
|
8097
|
+
# IAM users, groups, roles, and customer managed policies.
|
8098
|
+
#
|
8099
|
+
# Global resource types onboarded to Config recording after February
|
8100
|
+
# 2022 will only be recorded in the service's home region for the
|
8101
|
+
# commercial partition and Amazon Web Services GovCloud (US) West for
|
8102
|
+
# the GovCloud partition. You can view the Configuration Items for these
|
8103
|
+
# new global resource types only in their home region and Amazon Web
|
8104
|
+
# Services GovCloud (US) West.
|
8105
|
+
#
|
8106
|
+
# Supported global resource types onboarded before February 2022 such
|
8107
|
+
# as
|
8108
|
+
# `AWS::IAM::Group`, `AWS::IAM::Policy`, `AWS::IAM::Role`,
|
8109
|
+
# `AWS::IAM::User` remain unchanged, and they will continue to deliver
|
8110
|
+
# Configuration Items in all supported regions in Config. The change
|
8111
|
+
# will only affect new global resource types onboarded after February
|
8112
|
+
# 2022.
|
8113
|
+
#
|
8114
|
+
# To record global resource types onboarded after February 2022, enable
|
8115
|
+
# All Supported Resource Types in the home region of the global resource
|
8116
|
+
# type you want to record.
|
7829
8117
|
#
|
7830
8118
|
# If you don't want Config to record all resources, you can specify
|
7831
8119
|
# which types of resources it will record with the `resourceTypes`
|
@@ -7834,8 +8122,9 @@ module Aws::ConfigService
|
|
7834
8122
|
# For a list of supported resource types, see [Supported Resource
|
7835
8123
|
# Types][1].
|
7836
8124
|
#
|
7837
|
-
# For more information
|
7838
|
-
#
|
8125
|
+
# For more information and a table of the Home Regions for Global
|
8126
|
+
# Resource Types Onboarded after February 2022, see [Selecting Which
|
8127
|
+
# Resources Config Records][2].
|
7839
8128
|
#
|
7840
8129
|
#
|
7841
8130
|
#
|
@@ -8303,6 +8592,109 @@ module Aws::ConfigService
|
|
8303
8592
|
include Aws::Structure
|
8304
8593
|
end
|
8305
8594
|
|
8595
|
+
# Returns information about the resource being evaluated.
|
8596
|
+
#
|
8597
|
+
# @note When making an API call, you may pass ResourceDetails
|
8598
|
+
# data as a hash:
|
8599
|
+
#
|
8600
|
+
# {
|
8601
|
+
# resource_id: "BaseResourceId", # required
|
8602
|
+
# resource_type: "StringWithCharLimit256", # required
|
8603
|
+
# resource_configuration: "ResourceConfiguration", # required
|
8604
|
+
# resource_configuration_schema_type: "CFN_RESOURCE_SCHEMA", # accepts CFN_RESOURCE_SCHEMA
|
8605
|
+
# }
|
8606
|
+
#
|
8607
|
+
# @!attribute [rw] resource_id
|
8608
|
+
# A unique resource ID for an evaluation.
|
8609
|
+
# @return [String]
|
8610
|
+
#
|
8611
|
+
# @!attribute [rw] resource_type
|
8612
|
+
# The type of resource being evaluated.
|
8613
|
+
# @return [String]
|
8614
|
+
#
|
8615
|
+
# @!attribute [rw] resource_configuration
|
8616
|
+
# The resource definition to be evaluated as per the resource
|
8617
|
+
# configuration schema type.
|
8618
|
+
# @return [String]
|
8619
|
+
#
|
8620
|
+
# @!attribute [rw] resource_configuration_schema_type
|
8621
|
+
# The schema type of the resource configuration.
|
8622
|
+
# @return [String]
|
8623
|
+
#
|
8624
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/ResourceDetails AWS API Documentation
|
8625
|
+
#
|
8626
|
+
class ResourceDetails < Struct.new(
|
8627
|
+
:resource_id,
|
8628
|
+
:resource_type,
|
8629
|
+
:resource_configuration,
|
8630
|
+
:resource_configuration_schema_type)
|
8631
|
+
SENSITIVE = []
|
8632
|
+
include Aws::Structure
|
8633
|
+
end
|
8634
|
+
|
8635
|
+
# Returns details of a resource evaluation.
|
8636
|
+
#
|
8637
|
+
# @!attribute [rw] resource_evaluation_id
|
8638
|
+
# The ResourceEvaluationId of a evaluation.
|
8639
|
+
# @return [String]
|
8640
|
+
#
|
8641
|
+
# @!attribute [rw] evaluation_mode
|
8642
|
+
# The mode of an evaluation. The valid values are Detective or
|
8643
|
+
# Proactive.
|
8644
|
+
# @return [String]
|
8645
|
+
#
|
8646
|
+
# @!attribute [rw] evaluation_start_timestamp
|
8647
|
+
# The starting time of an execution.
|
8648
|
+
# @return [Time]
|
8649
|
+
#
|
8650
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/ResourceEvaluation AWS API Documentation
|
8651
|
+
#
|
8652
|
+
class ResourceEvaluation < Struct.new(
|
8653
|
+
:resource_evaluation_id,
|
8654
|
+
:evaluation_mode,
|
8655
|
+
:evaluation_start_timestamp)
|
8656
|
+
SENSITIVE = []
|
8657
|
+
include Aws::Structure
|
8658
|
+
end
|
8659
|
+
|
8660
|
+
# Returns details of a resource evaluation based on the selected filter.
|
8661
|
+
#
|
8662
|
+
# @note When making an API call, you may pass ResourceEvaluationFilters
|
8663
|
+
# data as a hash:
|
8664
|
+
#
|
8665
|
+
# {
|
8666
|
+
# evaluation_mode: "DETECTIVE", # accepts DETECTIVE, PROACTIVE
|
8667
|
+
# time_window: {
|
8668
|
+
# start_time: Time.now,
|
8669
|
+
# end_time: Time.now,
|
8670
|
+
# },
|
8671
|
+
# evaluation_context_identifier: "EvaluationContextIdentifier",
|
8672
|
+
# }
|
8673
|
+
#
|
8674
|
+
# @!attribute [rw] evaluation_mode
|
8675
|
+
# Filters all resource evaluations results based on an evaluation
|
8676
|
+
# mode. the valid value for this API is `Proactive`.
|
8677
|
+
# @return [String]
|
8678
|
+
#
|
8679
|
+
# @!attribute [rw] time_window
|
8680
|
+
# Returns a `TimeWindow` object.
|
8681
|
+
# @return [Types::TimeWindow]
|
8682
|
+
#
|
8683
|
+
# @!attribute [rw] evaluation_context_identifier
|
8684
|
+
# Filters evaluations for a given infrastructure deployment. For
|
8685
|
+
# example: CFN Stack.
|
8686
|
+
# @return [String]
|
8687
|
+
#
|
8688
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/ResourceEvaluationFilters AWS API Documentation
|
8689
|
+
#
|
8690
|
+
class ResourceEvaluationFilters < Struct.new(
|
8691
|
+
:evaluation_mode,
|
8692
|
+
:time_window,
|
8693
|
+
:evaluation_context_identifier)
|
8694
|
+
SENSITIVE = []
|
8695
|
+
include Aws::Structure
|
8696
|
+
end
|
8697
|
+
|
8306
8698
|
# Filters the results by resource account ID, region, resource ID, and
|
8307
8699
|
# resource name.
|
8308
8700
|
#
|
@@ -8964,6 +9356,84 @@ module Aws::ConfigService
|
|
8964
9356
|
include Aws::Structure
|
8965
9357
|
end
|
8966
9358
|
|
9359
|
+
# @note When making an API call, you may pass StartResourceEvaluationRequest
|
9360
|
+
# data as a hash:
|
9361
|
+
#
|
9362
|
+
# {
|
9363
|
+
# resource_details: { # required
|
9364
|
+
# resource_id: "BaseResourceId", # required
|
9365
|
+
# resource_type: "StringWithCharLimit256", # required
|
9366
|
+
# resource_configuration: "ResourceConfiguration", # required
|
9367
|
+
# resource_configuration_schema_type: "CFN_RESOURCE_SCHEMA", # accepts CFN_RESOURCE_SCHEMA
|
9368
|
+
# },
|
9369
|
+
# evaluation_context: {
|
9370
|
+
# evaluation_context_identifier: "EvaluationContextIdentifier",
|
9371
|
+
# },
|
9372
|
+
# evaluation_mode: "DETECTIVE", # required, accepts DETECTIVE, PROACTIVE
|
9373
|
+
# evaluation_timeout: 1,
|
9374
|
+
# client_token: "ClientToken",
|
9375
|
+
# }
|
9376
|
+
#
|
9377
|
+
# @!attribute [rw] resource_details
|
9378
|
+
# Returns a `ResourceDetails` object.
|
9379
|
+
# @return [Types::ResourceDetails]
|
9380
|
+
#
|
9381
|
+
# @!attribute [rw] evaluation_context
|
9382
|
+
# Returns an `EvaluationContext` object.
|
9383
|
+
# @return [Types::EvaluationContext]
|
9384
|
+
#
|
9385
|
+
# @!attribute [rw] evaluation_mode
|
9386
|
+
# The mode of an evaluation. The valid value for this API is
|
9387
|
+
# `Proactive`.
|
9388
|
+
# @return [String]
|
9389
|
+
#
|
9390
|
+
# @!attribute [rw] evaluation_timeout
|
9391
|
+
# The timeout for an evaluation. The default is 900 seconds. You
|
9392
|
+
# cannot specify a number greater than 3600. If you specify 0, Config
|
9393
|
+
# uses the default.
|
9394
|
+
# @return [Integer]
|
9395
|
+
#
|
9396
|
+
# @!attribute [rw] client_token
|
9397
|
+
# A client token is a unique, case-sensitive string of up to 64 ASCII
|
9398
|
+
# characters. To make an idempotent API request using one of these
|
9399
|
+
# actions, specify a client token in the request.
|
9400
|
+
#
|
9401
|
+
# <note markdown="1"> Avoid reusing the same client token for other API requests. If you
|
9402
|
+
# retry a request that completed successfully using the same client
|
9403
|
+
# token and the same parameters, the retry succeeds without performing
|
9404
|
+
# any further actions. If you retry a successful request using the
|
9405
|
+
# same client token, but one or more of the parameters are different,
|
9406
|
+
# other than the Region or Availability Zone, the retry fails with an
|
9407
|
+
# IdempotentParameterMismatch error.
|
9408
|
+
#
|
9409
|
+
# </note>
|
9410
|
+
# @return [String]
|
9411
|
+
#
|
9412
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/StartResourceEvaluationRequest AWS API Documentation
|
9413
|
+
#
|
9414
|
+
class StartResourceEvaluationRequest < Struct.new(
|
9415
|
+
:resource_details,
|
9416
|
+
:evaluation_context,
|
9417
|
+
:evaluation_mode,
|
9418
|
+
:evaluation_timeout,
|
9419
|
+
:client_token)
|
9420
|
+
SENSITIVE = []
|
9421
|
+
include Aws::Structure
|
9422
|
+
end
|
9423
|
+
|
9424
|
+
# @!attribute [rw] resource_evaluation_id
|
9425
|
+
# A unique ResourceEvaluationId that is associated with a single
|
9426
|
+
# execution.
|
9427
|
+
# @return [String]
|
9428
|
+
#
|
9429
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/StartResourceEvaluationResponse AWS API Documentation
|
9430
|
+
#
|
9431
|
+
class StartResourceEvaluationResponse < Struct.new(
|
9432
|
+
:resource_evaluation_id)
|
9433
|
+
SENSITIVE = []
|
9434
|
+
include Aws::Structure
|
9435
|
+
end
|
9436
|
+
|
8967
9437
|
# The static value of the resource.
|
8968
9438
|
#
|
8969
9439
|
# @note When making an API call, you may pass StaticValue
|
@@ -9267,6 +9737,34 @@ module Aws::ConfigService
|
|
9267
9737
|
include Aws::Structure
|
9268
9738
|
end
|
9269
9739
|
|
9740
|
+
# Filters evaluation results based on start and end times.
|
9741
|
+
#
|
9742
|
+
# @note When making an API call, you may pass TimeWindow
|
9743
|
+
# data as a hash:
|
9744
|
+
#
|
9745
|
+
# {
|
9746
|
+
# start_time: Time.now,
|
9747
|
+
# end_time: Time.now,
|
9748
|
+
# }
|
9749
|
+
#
|
9750
|
+
# @!attribute [rw] start_time
|
9751
|
+
# The start time of an execution.
|
9752
|
+
# @return [Time]
|
9753
|
+
#
|
9754
|
+
# @!attribute [rw] end_time
|
9755
|
+
# The end time of an execution. The end time must be after the start
|
9756
|
+
# date.
|
9757
|
+
# @return [Time]
|
9758
|
+
#
|
9759
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/TimeWindow AWS API Documentation
|
9760
|
+
#
|
9761
|
+
class TimeWindow < Struct.new(
|
9762
|
+
:start_time,
|
9763
|
+
:end_time)
|
9764
|
+
SENSITIVE = []
|
9765
|
+
include Aws::Structure
|
9766
|
+
end
|
9767
|
+
|
9270
9768
|
# You have reached the limit of the number of tags you can use. For more
|
9271
9769
|
# information, see [ **Service Limits** ][1] in the Config Developer
|
9272
9770
|
# Guide.
|