aws-sdk-configservice 1.89.0 → 1.91.0

data/lib/aws-sdk-configservice/types.rb

@@ -1393,29 +1393,82 @@ module Aws::ConfigService
       include Aws::Structure
     end
 
-    # An object that represents the recording of configuration changes of an
-    # Amazon Web Services resource.
+    # Records configuration changes to specified resource types. For more
+    # information about the configuration recorder, see [ **Managing the
+    # Configuration Recorder** ][1] in the *Config Developer Guide*.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/config/latest/developerguide/stop-start-recorder.html
     #
     # @!attribute [rw] name
-    #   The name of the recorder. By default, Config automatically assigns
-    #   the name "default" when creating the configuration recorder. You
-    #   cannot change the assigned name.
+    #   The name of the configuration recorder. Config automatically assigns
+    #   the name of "default" when creating the configuration recorder.
+    #
+    #   You cannot change the name of the configuration recorder after it
+    #   has been created. To change the configuration recorder name, you
+    #   must delete it and create a new configuration recorder with a new
+    #   name.
     #   @return [String]
     #
     # @!attribute [rw] role_arn
-    #   Amazon Resource Name (ARN) of the IAM role used to describe the
-    #   Amazon Web Services resources associated with the account.
+    #   Amazon Resource Name (ARN) of the IAM role assumed by Config and
+    #   used by the configuration recorder.
     #
     #   <note markdown="1"> While the API model does not require this field, the server will
-    #   reject a request without a defined roleARN for the configuration
+    #   reject a request without a defined `roleARN` for the configuration
     #   recorder.
     #
     #    </note>
+    #
+    #   <note markdown="1"> **Pre-existing Config role**
+    #
+    #    If you have used an Amazon Web Services service that uses Config,
+    #   such as Security Hub or Control Tower, and an Config role has
+    #   already been created, make sure that the IAM role that you use when
+    #   setting up Config keeps the same minimum permissions as the already
+    #   created Config role. You must do this so that the other Amazon Web
+    #   Services service continues to run as expected.
+    #
+    #    For example, if Control Tower has an IAM role that allows Config to
+    #   read Amazon Simple Storage Service (Amazon S3) objects, make sure
+    #   that the same permissions are granted within the IAM role you use
+    #   when setting up Config. Otherwise, it may interfere with how Control
+    #   Tower operates. For more information about IAM roles for Config, see
+    #   [ **Identity and Access Management for Config** ][1] in the *Config
+    #   Developer Guide*.
+    #
+    #    </note>
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/config/latest/developerguide/security-iam.html
     #   @return [String]
     #
     # @!attribute [rw] recording_group
-    #   Specifies the types of Amazon Web Services resources for which
-    #   Config records configuration changes.
+    #   Specifies which resource types Config records for configuration
+    #   changes.
+    #
+    #   <note markdown="1"> <b> High Number of Config Evaluations</b>
+    #
+    #    You may notice increased activity in your account during your
+    #   initial month recording with Config when compared to subsequent
+    #   months. During the initial bootstrapping process, Config runs
+    #   evaluations on all the resources in your account that you have
+    #   selected for Config to record.
+    #
+    #    If you are running ephemeral workloads, you may see increased
+    #   activity from Config as it records configuration changes associated
+    #   with creating and deleting these temporary resources. An *ephemeral
+    #   workload* is a temporary use of computing resources that are loaded
+    #   and run when needed. Examples include Amazon Elastic Compute Cloud
+    #   (Amazon EC2) Spot Instances, Amazon EMR jobs, and Auto Scaling. If
+    #   you want to avoid the increased activity from running ephemeral
+    #   workloads, you can run these types of workloads in a separate
+    #   account with Config turned off to avoid increased configuration
+    #   recording and rule evaluations.
+    #
+    #    </note>
     #   @return [Types::RecordingGroup]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/ConfigurationRecorder AWS API Documentation
@@ -2550,7 +2603,7 @@ module Aws::ConfigService
     # Returns a filtered list of Detective or Proactive Config rules. By
     # default, if the filter is not defined, this API returns an unfiltered
     # list. For more information on Detective or Proactive Config rules, see
-    # [ **Evaluation Mode** ][1] in the Config Developer Guide.
+    # [ **Evaluation Mode** ][1] in the *Config Developer Guide*.
     #
     #
     #
@@ -2583,7 +2636,7 @@ module Aws::ConfigService
     #   Returns a list of Detective or Proactive Config rules. By default,
     #   this API returns an unfiltered list. For more information on
     #   Detective or Proactive Config rules, see [ **Evaluation Mode** ][1]
-    #   in the Config Developer Guide.
+    #   in the *Config Developer Guide*.
     #
     #
     #
@@ -3567,6 +3620,23 @@ module Aws::ConfigService
       include Aws::Structure
     end
 
+    # Specifies whether the configuration recorder excludes resource types
+    # from being recorded. Use the `resourceTypes` field to enter a
+    # comma-separated list of resource types to exclude as exemptions.
+    #
+    # @!attribute [rw] resource_types
+    #   A comma-separated list of resource types to exclude from recording
+    #   by the configuration recorder.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/ExclusionByResourceTypes AWS API Documentation
+    #
+    class ExclusionByResourceTypes < Struct.new(
+      :resource_types)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The controls that Config uses for executing remediations.
     #
     # @!attribute [rw] ssm_controls
@@ -4692,7 +4762,8 @@ module Aws::ConfigService
     #
     class InsufficientPermissionsException < Aws::EmptyStructure; end
 
-    # You have provided a configuration recorder name that is not valid.
+    # You have provided a name for the configuration recorder that is not
+    # valid.
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/InvalidConfigurationRecorderNameException AWS API Documentation
     #
@@ -4731,9 +4802,31 @@ module Aws::ConfigService
     #
     class InvalidParameterValueException < Aws::EmptyStructure; end
 
-    # Config throws an exception if the recording group does not contain a
-    # valid list of resource types. Values that are not valid might also be
-    # incorrectly formatted.
+    # Indicates one of the following errors:
+    #
+    # * You have provided a combination of parameter values that is not
+    #   valid. For example:
+    #
+    #   * Setting the `allSupported` field of [RecordingGroup][1] to `true`,
+    #     but providing a non-empty list for the `resourceTypes`field of
+    #     [RecordingGroup][1].
+    #
+    #   * Setting the `allSupported` field of [RecordingGroup][1] to `true`,
+    #     but also setting the `useOnly` field of [RecordingStrategy][2] to
+    #     `EXCLUSION_BY_RESOURCE_TYPES`.
+    #
+    # * Every parameter is either null, false, or empty.
+    #
+    # * You have reached the limit of the number of resource types you can
+    #   provide for the recording group.
+    #
+    # * You have provided resource types or a recording strategy that are
+    #   not valid.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/config/latest/APIReference/API_RecordingGroup.html
+    # [2]: https://docs.aws.amazon.com/config/latest/APIReference/API_RecordingStrategy.html
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/InvalidRecordingGroupException AWS API Documentation
     #
@@ -4745,7 +4838,8 @@ module Aws::ConfigService
     #
     class InvalidResultTokenException < Aws::EmptyStructure; end
 
-    # You have provided a null or empty role ARN.
+    # You have provided a null or empty Amazon Resource Name (ARN) for the
+    # IAM role assumed by Config and used by the configuration recorder.
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/InvalidRoleException AWS API Documentation
     #
@@ -5135,7 +5229,8 @@ module Aws::ConfigService
     #
     class MaxNumberOfConfigRulesExceededException < Aws::EmptyStructure; end
 
-    # You have reached the limit of the number of recorders you can create.
+    # You have reached the limit of the number of configuration recorders
+    # you can create.
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/MaxNumberOfConfigurationRecordersExceededException AWS API Documentation
     #
@@ -5143,7 +5238,7 @@ module Aws::ConfigService
 
     # You have reached the limit of the number of conformance packs you can
     # create in an account. For more information, see [ **Service Limits**
-    # ][1] in the Config Developer Guide.
+    # ][1] in the *Config Developer Guide*.
     #
     #
     #
@@ -5162,7 +5257,7 @@ module Aws::ConfigService
 
     # You have reached the limit of the number of organization Config rules
     # you can create. For more information, see see [ **Service Limits**
-    # ][1] in the Config Developer Guide.
+    # ][1] in the *Config Developer Guide*.
     #
     #
     #
@@ -5174,7 +5269,7 @@ module Aws::ConfigService
 
     # You have reached the limit of the number of organization conformance
     # packs you can create in an account. For more information, see [
-    # **Service Limits** ][1] in the Config Developer Guide.
+    # **Service Limits** ][1] in the *Config Developer Guide*.
     #
     #
     #
@@ -5880,12 +5975,12 @@ module Aws::ConfigService
       include Aws::Structure
     end
 
-    # An object that specifies metadata for your organization Config Custom
-    # Policy rule including the runtime system in use, which accounts have
-    # debug logging enabled, and other custom rule metadata such as resource
-    # type, resource ID of Amazon Web Services resource, and organization
-    # trigger types that trigger Config to evaluate Amazon Web Services
-    # resources against a rule.
+    # metadata for your organization Config Custom Policy rule including the
+    # runtime system in use, which accounts have debug logging enabled, and
+    # other custom rule metadata such as resource type, resource ID of
+    # Amazon Web Services resource, and organization trigger types that
+    # trigger Config to evaluate Amazon Web Services resources against a
+    # rule.
     #
     # @!attribute [rw] description
     #   The description that you provide for your organization Config Custom
@@ -5972,12 +6067,12 @@ module Aws::ConfigService
       include Aws::Structure
     end
 
-    # An object that specifies organization custom rule metadata such as
-    # resource type, resource ID of Amazon Web Services resource, Lambda
-    # function ARN, and organization trigger types that trigger Config to
-    # evaluate your Amazon Web Services resources against a rule. It also
-    # provides the frequency with which you want Config to run evaluations
-    # for the rule if the trigger type is periodic.
+    # organization custom rule metadata such as resource type, resource ID
+    # of Amazon Web Services resource, Lambda function ARN, and organization
+    # trigger types that trigger Config to evaluate your Amazon Web Services
+    # resources against a rule. It also provides the frequency with which
+    # you want Config to run evaluations for the rule if the trigger type is
+    # periodic.
     #
     # @!attribute [rw] description
     #   The description that you provide for your organization Config rule.
@@ -6057,11 +6152,10 @@ module Aws::ConfigService
       include Aws::Structure
     end
 
-    # An object that specifies organization managed rule metadata such as
-    # resource type and ID of Amazon Web Services resource along with the
-    # rule identifier. It also provides the frequency with which you want
-    # Config to run evaluations for the rule if the trigger type is
-    # periodic.
+    # organization managed rule metadata such as resource type and ID of
+    # Amazon Web Services resource along with the rule identifier. It also
+    # provides the frequency with which you want Config to run evaluations
+    # for the rule if the trigger type is periodic.
     #
     # @!attribute [rw] description
     #   The description that you provide for your organization Config rule.
@@ -6304,8 +6398,8 @@ module Aws::ConfigService
     # The input for the PutConfigurationRecorder action.
     #
     # @!attribute [rw] configuration_recorder
-    #   The configuration recorder object that records each configuration
-    #   change made to the resources.
+    #   An object for the configuration recorder to record configuration
+    #   changes for specified resource types.
     #   @return [Types::ConfigurationRecorder]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/PutConfigurationRecorderRequest AWS API Documentation
@@ -6818,51 +6912,39 @@ module Aws::ConfigService
       include Aws::Structure
     end
 
-    # Specifies which Amazon Web Services resource types Config records for
-    # configuration changes. In the recording group, you specify whether you
-    # want to record all supported resource types or only specific types of
-    # resources.
+    # Specifies which resource types Config records for configuration
+    # changes. In the recording group, you specify whether you want to
+    # record all supported resource types or to include or exclude specific
+    # types of resources.
     #
-    # By default, Config records the configuration changes for all supported
-    # types of *regional resources* that Config discovers in the region in
-    # which it is running. Regional resources are tied to a region and can
-    # be used only in that region. Examples of regional resources are EC2
-    # instances and EBS volumes.
+    # By default, Config records configuration changes for all supported
+    # types of *Regional resources* that Config discovers in the Amazon Web
+    # Services Region in which it is running. Regional resources are tied to
+    # a Region and can be used only in that Region. Examples of Regional
+    # resources are Amazon EC2 instances and Amazon EBS volumes.
     #
     # You can also have Config record supported types of *global resources*.
-    # Global resources are not tied to a specific region and can be used in
-    # all regions. The global resource types that Config supports include
+    # Global resources are not tied to a specific Region and can be used in
+    # all Regions. The global resource types that Config supports include
     # IAM users, groups, roles, and customer managed policies.
     #
     # Global resource types onboarded to Config recording after February
-    # 2022 will only be recorded in the service's home region for the
-    # commercial partition and Amazon Web Services GovCloud (US) West for
-    # the GovCloud partition. You can view the Configuration Items for these
-    # new global resource types only in their home region and Amazon Web
-    # Services GovCloud (US) West.
-    #
-    #  Supported global resource types onboarded before February 2022 such
-    # as
-    # `AWS::IAM::Group`, `AWS::IAM::Policy`, `AWS::IAM::Role`,
-    # `AWS::IAM::User` remain unchanged, and they will continue to deliver
-    # Configuration Items in all supported regions in Config. The change
-    # will only affect new global resource types onboarded after February
-    # 2022.
-    #
-    #  To record global resource types onboarded after February 2022, enable
-    # All Supported Resource Types in the home region of the global resource
-    # type you want to record.
+    # 2022 will be recorded only in the service's home Region for the
+    # commercial partition and Amazon Web Services GovCloud (US-West) for
+    # the Amazon Web Services GovCloud (US) partition. You can view the
+    # Configuration Items for these new global resource types only in their
+    # home Region and Amazon Web Services GovCloud (US-West).
     #
     # If you don't want Config to record all resources, you can specify
-    # which types of resources it will record with the `resourceTypes`
+    # which types of resources Config records with the `resourceTypes`
     # parameter.
     #
     # For a list of supported resource types, see [Supported Resource
-    # Types][1].
+    # Types][1] in the *Config developer guide*.
     #
     # For more information and a table of the Home Regions for Global
     # Resource Types Onboarded after February 2022, see [Selecting Which
-    # Resources Config Records][2].
+    # Resources Config Records][2] in the *Config developer guide*.
     #
     #
     #
@@ -6870,62 +6952,245 @@ module Aws::ConfigService
     # [2]: https://docs.aws.amazon.com/config/latest/developerguide/select-resources.html
     #
     # @!attribute [rw] all_supported
-    #   Specifies whether Config records configuration changes for every
-    #   supported type of regional resource.
+    #   Specifies whether Config records configuration changes for all
+    #   supported regional resource types.
     #
-    #   If you set this option to `true`, when Config adds support for a new
-    #   type of regional resource, it starts recording resources of that
+    #   If you set this field to `true`, when Config adds support for a new
+    #   type of regional resource, Config starts recording resources of that
     #   type automatically.
     #
-    #   If you set this option to `true`, you cannot enumerate a list of
-    #   `resourceTypes`.
+    #   If you set this field to `true`, you cannot enumerate specific
+    #   resource types to record in the `resourceTypes` field of
+    #   [RecordingGroup][1], or to exclude in the `resourceTypes` field of
+    #   [ExclusionByResourceTypes][2].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/config/latest/APIReference/API_RecordingGroup.html
+    #   [2]: https://docs.aws.amazon.com/config/latest/APIReference/API_ExclusionByResourceTypes.html
     #   @return [Boolean]
     #
     # @!attribute [rw] include_global_resource_types
-    #   Specifies whether Config includes all supported types of global
-    #   resources (for example, IAM resources) with the resources that it
-    #   records.
+    #   Specifies whether Config records configuration changes for all
+    #   supported global resources.
+    #
+    #   Before you set this field to `true`, set the `allSupported` field of
+    #   [RecordingGroup][1] to `true`. Optionally, you can set the `useOnly`
+    #   field of [RecordingStrategy][2] to `ALL_SUPPORTED_RESOURCE_TYPES`.
     #
-    #   Before you can set this option to `true`, you must set the
-    #   `allSupported` option to `true`.
+    #   If you set this field to `true`, when Config adds support for a new
+    #   type of global resource in the Region where you set up the
+    #   configuration recorder, Config starts recording resources of that
+    #   type automatically.
     #
-    #   If you set this option to `true`, when Config adds support for a new
-    #   type of global resource, it starts recording resources of that type
-    #   automatically.
+    #   <note markdown="1"> If you set this field to `false` but list global resource types in
+    #   the `resourceTypes` field of [RecordingGroup][1], Config will still
+    #   record configuration changes for those specified resource types
+    #   *regardless* of if you set the `includeGlobalResourceTypes` field to
+    #   false.
     #
-    #   The configuration details for any global resource are the same in
-    #   all regions. To prevent duplicate configuration items, you should
-    #   consider customizing Config in only one region to record global
-    #   resources.
+    #    If you do not want to record configuration changes to global
+    #   resource types, make sure to not list them in the `resourceTypes`
+    #   field in addition to setting the `includeGlobalResourceTypes` field
+    #   to false.
+    #
+    #    </note>
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/config/latest/APIReference/API_RecordingGroup.html
+    #   [2]: https://docs.aws.amazon.com/config/latest/APIReference/API_RecordingStrategy.html
     #   @return [Boolean]
     #
     # @!attribute [rw] resource_types
-    #   A comma-separated list that specifies the types of Amazon Web
-    #   Services resources for which Config records configuration changes
-    #   (for example, `AWS::EC2::Instance` or `AWS::CloudTrail::Trail`).
+    #   A comma-separated list that specifies which resource types Config
+    #   records.
+    #
+    #   Optionally, you can set the `useOnly` field of
+    #   [RecordingStrategy][1] to `INCLUSION_BY_RESOURCE_TYPES`.
+    #
+    #   To record all configuration changes, set the `allSupported` field of
+    #   [RecordingGroup][2] to `true`, and either omit this field or don't
+    #   specify any resource types in this field. If you set the
+    #   `allSupported` field to `false` and specify values for
+    #   `resourceTypes`, when Config adds support for a new type of
+    #   resource, it will not record resources of that type unless you
+    #   manually add that type to your recording group.
+    #
+    #   For a list of valid `resourceTypes` values, see the **Resource Type
+    #   Value** column in [Supported Amazon Web Services resource Types][3]
+    #   in the *Config developer guide*.
     #
-    #   To record all configuration changes, you must set the `allSupported`
-    #   option to `true`.
+    #   <note markdown="1"> **Region Availability**
     #
-    #   If you set the `AllSupported` option to false and populate the
-    #   `ResourceTypes` option with values, when Config adds support for a
-    #   new type of resource, it will not record resources of that type
-    #   unless you manually add that type to your recording group.
+    #    Before specifying a resource type for Config to track, check
+    #   [Resource Coverage by Region Availability][4] to see if the resource
+    #   type is supported in the Amazon Web Services Region where you set up
+    #   Config. If a resource type is supported by Config in at least one
+    #   Region, you can enable the recording of that resource type in all
+    #   Regions supported by Config, even if the specified resource type is
+    #   not supported in the Amazon Web Services Region where you set up
+    #   Config.
     #
-    #   For a list of valid `resourceTypes` values, see the **resourceType
-    #   Value** column in [Supported Amazon Web Services resource Types][1].
+    #    </note>
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/config/latest/developerguide/resource-config-reference.html#supported-resources
+    #   [1]: https://docs.aws.amazon.com/config/latest/APIReference/API_RecordingStrategy.html
+    #   [2]: https://docs.aws.amazon.com/config/latest/APIReference/API_RecordingGroup.html
+    #   [3]: https://docs.aws.amazon.com/config/latest/developerguide/resource-config-reference.html#supported-resources
+    #   [4]: https://docs.aws.amazon.com/config/latest/developerguide/what-is-resource-config-coverage.html
     #   @return [Array<String>]
     #
+    # @!attribute [rw] exclusion_by_resource_types
+    #   An object that specifies how Config excludes resource types from
+    #   being recorded by the configuration recorder.
+    #
+    #   To use this option, you must set the `useOnly` field of
+    #   [RecordingStrategy][1] to `EXCLUSION_BY_RESOURCE_TYPES`.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/config/latest/APIReference/API_RecordingStrategy.html
+    #   @return [Types::ExclusionByResourceTypes]
+    #
+    # @!attribute [rw] recording_strategy
+    #   An object that specifies the recording strategy for the
+    #   configuration recorder.
+    #
+    #   * If you set the `useOnly` field of [RecordingStrategy][1] to
+    #     `ALL_SUPPORTED_RESOURCE_TYPES`, Config records configuration
+    #     changes for all supported regional resource types. You also must
+    #     set the `allSupported` field of [RecordingGroup][2] to `true`.
+    #     When Config adds support for a new type of regional resource,
+    #     Config automatically starts recording resources of that type.
+    #
+    #   * If you set the `useOnly` field of [RecordingStrategy][1] to
+    #     `INCLUSION_BY_RESOURCE_TYPES`, Config records configuration
+    #     changes for only the resource types you specify in the
+    #     `resourceTypes` field of [RecordingGroup][2].
+    #
+    #   * If you set the `useOnly` field of [RecordingStrategy][1] to
+    #     `EXCLUSION_BY_RESOURCE_TYPES`, Config records configuration
+    #     changes for all supported resource types except the resource types
+    #     that you specify as exemptions to exclude from being recorded in
+    #     the `resourceTypes` field of [ExclusionByResourceTypes][3].
+    #
+    #   <note markdown="1"> The `recordingStrategy` field is optional when you set the
+    #   `allSupported` field of [RecordingGroup][2] to `true`.
+    #
+    #    The `recordingStrategy` field is optional when you list resource
+    #   types in the `resourceTypes` field of [RecordingGroup][2].
+    #
+    #    The `recordingStrategy` field is required if you list resource types
+    #   to exclude from recording in the `resourceTypes` field of
+    #   [ExclusionByResourceTypes][3].
+    #
+    #    </note>
+    #
+    #   <note markdown="1"> If you choose `EXCLUSION_BY_RESOURCE_TYPES` for the recording
+    #   strategy, the `exclusionByResourceTypes` field will override other
+    #   properties in the request.
+    #
+    #    For example, even if you set `includeGlobalResourceTypes` to false,
+    #   global resource types will still be automatically recorded in this
+    #   option unless those resource types are specifically listed as
+    #   exemptions in the `resourceTypes` field of
+    #   `exclusionByResourceTypes`.
+    #
+    #    By default, if you choose the `EXCLUSION_BY_RESOURCE_TYPES`
+    #   recording strategy, when Config adds support for a new resource type
+    #   in the Region where you set up the configuration recorder, including
+    #   global resource types, Config starts recording resources of that
+    #   type automatically.
+    #
+    #    </note>
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/config/latest/APIReference/API_RecordingStrategy.html
+    #   [2]: https://docs.aws.amazon.com/config/latest/APIReference/API_RecordingGroup.html
+    #   [3]: https://docs.aws.amazon.com/config/latest/APIReference/API_ExclusionByResourceTypes.html
+    #   @return [Types::RecordingStrategy]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/RecordingGroup AWS API Documentation
     #
     class RecordingGroup < Struct.new(
       :all_supported,
       :include_global_resource_types,
-      :resource_types)
+      :resource_types,
+      :exclusion_by_resource_types,
+      :recording_strategy)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Specifies the recording strategy of the configuration recorder.
+    #
+    # @!attribute [rw] use_only
+    #   The recording strategy for the configuration recorder.
+    #
+    #   * If you set this option to `ALL_SUPPORTED_RESOURCE_TYPES`, Config
+    #     records configuration changes for all supported regional resource
+    #     types. You also must set the `allSupported` field of
+    #     [RecordingGroup][1] to `true`.
+    #
+    #     When Config adds support for a new type of regional resource,
+    #     Config automatically starts recording resources of that type. For
+    #     a list of supported resource types, see [Supported Resource
+    #     Types][2] in the *Config developer guide*.
+    #
+    #   * If you set this option to `INCLUSION_BY_RESOURCE_TYPES`, Config
+    #     records configuration changes for only the resource types that you
+    #     specify in the `resourceTypes` field of [RecordingGroup][1].
+    #
+    #   * If you set this option to `EXCLUSION_BY_RESOURCE_TYPES`, Config
+    #     records configuration changes for all supported resource types,
+    #     except the resource types that you specify as exemptions to
+    #     exclude from being recorded in the `resourceTypes` field of
+    #     [ExclusionByResourceTypes][3].
+    #
+    #   <note markdown="1"> The `recordingStrategy` field is optional when you set the
+    #   `allSupported` field of [RecordingGroup][1] to `true`.
+    #
+    #    The `recordingStrategy` field is optional when you list resource
+    #   types in the `resourceTypes` field of [RecordingGroup][1].
+    #
+    #    The `recordingStrategy` field is required if you list resource types
+    #   to exclude from recording in the `resourceTypes` field of
+    #   [ExclusionByResourceTypes][3].
+    #
+    #    </note>
+    #
+    #   <note markdown="1"> If you choose `EXCLUSION_BY_RESOURCE_TYPES` for the recording
+    #   strategy, the `exclusionByResourceTypes` field will override other
+    #   properties in the request.
+    #
+    #    For example, even if you set `includeGlobalResourceTypes` to false,
+    #   global resource types will still be automatically recorded in this
+    #   option unless those resource types are specifically listed as
+    #   exemptions in the `resourceTypes` field of
+    #   `exclusionByResourceTypes`.
+    #
+    #    By default, if you choose the `EXCLUSION_BY_RESOURCE_TYPES`
+    #   recording strategy, when Config adds support for a new resource type
+    #   in the Region where you set up the configuration recorder, including
+    #   global resource types, Config starts recording resources of that
+    #   type automatically.
+    #
+    #    </note>
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/config/latest/APIReference/API_RecordingGroup.html
+    #   [2]: https://docs.aws.amazon.com/config/latest/developerguide/resource-config-reference.html#supported-resources
+    #   [3]: https://docs.aws.amazon.com/config/latest/APIReference/API_ExclusionByResourceTypes.html
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/config-2014-11-12/RecordingStrategy AWS API Documentation
+    #
+    class RecordingStrategy < Struct.new(
+      :use_only)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -8224,8 +8489,8 @@ module Aws::ConfigService
     end
 
     # You have reached the limit of the number of tags you can use. For more
-    # information, see [ **Service Limits** ][1] in the Config Developer
-    # Guide.
+    # information, see [ **Service Limits** ][1] in the *Config Developer
+    # Guide*.
     #
     #
     #

data/lib/aws-sdk-configservice.rb

@@ -52,6 +52,6 @@ require_relative 'aws-sdk-configservice/customizations'
 # @!group service
 module Aws::ConfigService
 
-  GEM_VERSION = '1.89.0'
+  GEM_VERSION = '1.91.0'
 
 end