aws-sdk-fms 1.42.0 → 1.46.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +20 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-fms/client.rb +24 -4
- data/lib/aws-sdk-fms/types.rb +46 -12
- data/lib/aws-sdk-fms.rb +1 -1
- metadata +4 -4
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 46011c8a0d1ac1a893ddb12eb50359dfc36db299e867e5555c3386515248cb8c
|
|
4
|
+
data.tar.gz: 991fc8f813518416b8bd633cbc182d17dbfef0e6b312a7bb6c5c01e479638c28
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 72126679e6333a1a7172f239a8b2995dadad58958bd03dccd3115cba67f7e506ecb6070562e5f8ab49217bb9cfd215df500e4352a47c9578fa6c4fd6d548664d
|
|
7
|
+
data.tar.gz: e1f1c08f993a995377ba5489aa27ad7fa2009406e23b4fe068afc0c428bfe388c8eaf69cd79a091121ed185690c425f02eaca3a397d99044846dec03e0e29e97
|
data/CHANGELOG.md
CHANGED
|
@@ -1,6 +1,26 @@
|
|
|
1
1
|
Unreleased Changes
|
|
2
2
|
------------------
|
|
3
3
|
|
|
4
|
+
1.46.0 (2022-01-12)
|
|
5
|
+
------------------
|
|
6
|
+
|
|
7
|
+
* Feature - Shield Advanced policies for Amazon CloudFront resources now support automatic application layer DDoS mitigation. The max length for SecurityServicePolicyData ManagedServiceData is now 8192 characters, instead of 4096.
|
|
8
|
+
|
|
9
|
+
1.45.0 (2021-12-21)
|
|
10
|
+
------------------
|
|
11
|
+
|
|
12
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
|
13
|
+
|
|
14
|
+
1.44.0 (2021-11-30)
|
|
15
|
+
------------------
|
|
16
|
+
|
|
17
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
|
18
|
+
|
|
19
|
+
1.43.0 (2021-11-04)
|
|
20
|
+
------------------
|
|
21
|
+
|
|
22
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
|
23
|
+
|
|
4
24
|
1.42.0 (2021-10-18)
|
|
5
25
|
------------------
|
|
6
26
|
|
data/VERSION
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
1.
|
|
1
|
+
1.46.0
|
data/lib/aws-sdk-fms/client.rb
CHANGED
|
@@ -27,6 +27,7 @@ require 'aws-sdk-core/plugins/client_metrics_plugin.rb'
|
|
|
27
27
|
require 'aws-sdk-core/plugins/client_metrics_send_plugin.rb'
|
|
28
28
|
require 'aws-sdk-core/plugins/transfer_encoding.rb'
|
|
29
29
|
require 'aws-sdk-core/plugins/http_checksum.rb'
|
|
30
|
+
require 'aws-sdk-core/plugins/defaults_mode.rb'
|
|
30
31
|
require 'aws-sdk-core/plugins/signature_v4.rb'
|
|
31
32
|
require 'aws-sdk-core/plugins/protocols/json_rpc.rb'
|
|
32
33
|
|
|
@@ -73,6 +74,7 @@ module Aws::FMS
|
|
|
73
74
|
add_plugin(Aws::Plugins::ClientMetricsSendPlugin)
|
|
74
75
|
add_plugin(Aws::Plugins::TransferEncoding)
|
|
75
76
|
add_plugin(Aws::Plugins::HttpChecksum)
|
|
77
|
+
add_plugin(Aws::Plugins::DefaultsMode)
|
|
76
78
|
add_plugin(Aws::Plugins::SignatureV4)
|
|
77
79
|
add_plugin(Aws::Plugins::Protocols::JsonRpc)
|
|
78
80
|
|
|
@@ -119,7 +121,9 @@ module Aws::FMS
|
|
|
119
121
|
# * EC2/ECS IMDS instance profile - When used by default, the timeouts
|
|
120
122
|
# are very aggressive. Construct and pass an instance of
|
|
121
123
|
# `Aws::InstanceProfileCredentails` or `Aws::ECSCredentials` to
|
|
122
|
-
# enable retries and extended timeouts.
|
|
124
|
+
# enable retries and extended timeouts. Instance profile credential
|
|
125
|
+
# fetching can be disabled by setting ENV['AWS_EC2_METADATA_DISABLED']
|
|
126
|
+
# to true.
|
|
123
127
|
#
|
|
124
128
|
# @option options [required, String] :region
|
|
125
129
|
# The AWS region to connect to. The configured `:region` is
|
|
@@ -173,6 +177,10 @@ module Aws::FMS
|
|
|
173
177
|
# Used only in `standard` and adaptive retry modes. Specifies whether to apply
|
|
174
178
|
# a clock skew correction and retry requests with skewed client clocks.
|
|
175
179
|
#
|
|
180
|
+
# @option options [String] :defaults_mode ("legacy")
|
|
181
|
+
# See {Aws::DefaultsModeConfiguration} for a list of the
|
|
182
|
+
# accepted modes and the configuration defaults that are included.
|
|
183
|
+
#
|
|
176
184
|
# @option options [Boolean] :disable_host_prefix_injection (false)
|
|
177
185
|
# Set to true to disable SDK automatically adding host prefix
|
|
178
186
|
# to default service endpoint when available.
|
|
@@ -285,6 +293,15 @@ module Aws::FMS
|
|
|
285
293
|
# ** Please note ** When response stubbing is enabled, no HTTP
|
|
286
294
|
# requests are made, and retries are disabled.
|
|
287
295
|
#
|
|
296
|
+
# @option options [Boolean] :use_dualstack_endpoint
|
|
297
|
+
# When set to `true`, dualstack enabled endpoints (with `.aws` TLD)
|
|
298
|
+
# will be used if available.
|
|
299
|
+
#
|
|
300
|
+
# @option options [Boolean] :use_fips_endpoint
|
|
301
|
+
# When set to `true`, fips compatible endpoints will be used if available.
|
|
302
|
+
# When a `fips` region is used, the region is normalized and this config
|
|
303
|
+
# is set to `true`.
|
|
304
|
+
#
|
|
288
305
|
# @option options [Boolean] :validate_params (true)
|
|
289
306
|
# When `true`, request parameters are validated before
|
|
290
307
|
# sending the request.
|
|
@@ -296,7 +313,7 @@ module Aws::FMS
|
|
|
296
313
|
# seconds to wait when opening a HTTP session before raising a
|
|
297
314
|
# `Timeout::Error`.
|
|
298
315
|
#
|
|
299
|
-
# @option options [
|
|
316
|
+
# @option options [Float] :http_read_timeout (60) The default
|
|
300
317
|
# number of seconds to wait for response data. This value can
|
|
301
318
|
# safely be set per-request on the session.
|
|
302
319
|
#
|
|
@@ -312,6 +329,9 @@ module Aws::FMS
|
|
|
312
329
|
# disables this behaviour. This value can safely be set per
|
|
313
330
|
# request on the session.
|
|
314
331
|
#
|
|
332
|
+
# @option options [Float] :ssl_timeout (nil) Sets the SSL timeout
|
|
333
|
+
# in seconds.
|
|
334
|
+
#
|
|
315
335
|
# @option options [Boolean] :http_wire_trace (false) When `true`,
|
|
316
336
|
# HTTP debug output will be sent to the `:logger`.
|
|
317
337
|
#
|
|
@@ -1583,7 +1603,7 @@ module Aws::FMS
|
|
|
1583
1603
|
# * An Network Firewall policy, which provides firewall rules to filter
|
|
1584
1604
|
# network traffic in specified Amazon VPCs.
|
|
1585
1605
|
#
|
|
1586
|
-
# * A DNS Firewall policy, which provides Route
|
|
1606
|
+
# * A DNS Firewall policy, which provides Route 53 Resolver DNS Firewall
|
|
1587
1607
|
# rules to filter DNS queries for specified VPCs.
|
|
1588
1608
|
#
|
|
1589
1609
|
# Each policy is specific to one of the types. If you want to enforce
|
|
@@ -1811,7 +1831,7 @@ module Aws::FMS
|
|
|
1811
1831
|
params: params,
|
|
1812
1832
|
config: config)
|
|
1813
1833
|
context[:gem_name] = 'aws-sdk-fms'
|
|
1814
|
-
context[:gem_version] = '1.
|
|
1834
|
+
context[:gem_version] = '1.46.0'
|
|
1815
1835
|
Seahorse::Client::Request.new(handlers, context)
|
|
1816
1836
|
end
|
|
1817
1837
|
|
data/lib/aws-sdk-fms/types.rb
CHANGED
|
@@ -2152,8 +2152,9 @@ module Aws::FMS
|
|
|
2152
2152
|
# specify a resource type of `ResourceTypeList` and then specify the
|
|
2153
2153
|
# resource types in a `ResourceTypeList`.
|
|
2154
2154
|
#
|
|
2155
|
-
# For WAF and Shield Advanced,
|
|
2156
|
-
# `AWS::ElasticLoadBalancingV2::LoadBalancer
|
|
2155
|
+
# For WAF and Shield Advanced, resource types include
|
|
2156
|
+
# `AWS::ElasticLoadBalancingV2::LoadBalancer`,
|
|
2157
|
+
# `AWS::ElasticLoadBalancing::LoadBalancer`, `AWS::EC2::EIP`, and
|
|
2157
2158
|
# `AWS::CloudFront::Distribution`. For a security group common policy,
|
|
2158
2159
|
# valid values are `AWS::EC2::NetworkInterface` and
|
|
2159
2160
|
# `AWS::EC2::Instance`. For a security group content audit policy,
|
|
@@ -2191,10 +2192,16 @@ module Aws::FMS
|
|
|
2191
2192
|
# @return [Boolean]
|
|
2192
2193
|
#
|
|
2193
2194
|
# @!attribute [rw] delete_unused_fm_managed_resources
|
|
2194
|
-
# Indicates whether Firewall Manager should
|
|
2195
|
-
#
|
|
2196
|
-
#
|
|
2197
|
-
#
|
|
2195
|
+
# Indicates whether Firewall Manager should automatically remove
|
|
2196
|
+
# protections from resources that leave the policy scope and clean up
|
|
2197
|
+
# resources that Firewall Manager is managing for accounts when those
|
|
2198
|
+
# accounts leave policy scope. For example, Firewall Manager will
|
|
2199
|
+
# disassociate a Firewall Manager managed web ACL from a protected
|
|
2200
|
+
# customer resource when the customer resource leaves policy scope.
|
|
2201
|
+
#
|
|
2202
|
+
# By default, Firewall Manager doesn't remove protections or delete
|
|
2203
|
+
# Firewall Manager managed resources.
|
|
2204
|
+
#
|
|
2198
2205
|
# This option is not available for Shield Advanced or WAF Classic
|
|
2199
2206
|
# policies.
|
|
2200
2207
|
# @return [Boolean]
|
|
@@ -2427,10 +2434,16 @@ module Aws::FMS
|
|
|
2427
2434
|
# @return [Boolean]
|
|
2428
2435
|
#
|
|
2429
2436
|
# @!attribute [rw] delete_unused_fm_managed_resources
|
|
2430
|
-
# Indicates whether Firewall Manager should
|
|
2431
|
-
#
|
|
2432
|
-
#
|
|
2433
|
-
#
|
|
2437
|
+
# Indicates whether Firewall Manager should automatically remove
|
|
2438
|
+
# protections from resources that leave the policy scope and clean up
|
|
2439
|
+
# resources that Firewall Manager is managing for accounts when those
|
|
2440
|
+
# accounts leave policy scope. For example, Firewall Manager will
|
|
2441
|
+
# disassociate a Firewall Manager managed web ACL from a protected
|
|
2442
|
+
# customer resource when the customer resource leaves policy scope.
|
|
2443
|
+
#
|
|
2444
|
+
# By default, Firewall Manager doesn't remove protections or delete
|
|
2445
|
+
# Firewall Manager managed resources.
|
|
2446
|
+
#
|
|
2434
2447
|
# This option is not available for Shield Advanced or WAF Classic
|
|
2435
2448
|
# policies.
|
|
2436
2449
|
# @return [Boolean]
|
|
@@ -3172,8 +3185,7 @@ module Aws::FMS
|
|
|
3172
3185
|
#
|
|
3173
3186
|
# @!attribute [rw] managed_service_data
|
|
3174
3187
|
# Details about the service that are specific to the service type, in
|
|
3175
|
-
# JSON format.
|
|
3176
|
-
# string.
|
|
3188
|
+
# JSON format.
|
|
3177
3189
|
#
|
|
3178
3190
|
# * Example: `DNS_FIREWALL`
|
|
3179
3191
|
#
|
|
@@ -3190,6 +3202,28 @@ module Aws::FMS
|
|
|
3190
3202
|
# `"\{"type":"NETWORK_FIREWALL","networkFirewallStatelessRuleGroupReferences":[\{"resourceARN":"arn:aws:network-firewall:us-west-1:1234567891011:stateless-rulegroup/rulegroup2","priority":10\}],"networkFirewallStatelessDefaultActions":["aws:pass","custom1"],"networkFirewallStatelessFragmentDefaultActions":["custom2","aws:pass"],"networkFirewallStatelessCustomActions":[\{"actionName":"custom1","actionDefinition":\{"publishMetricAction":\{"dimensions":[\{"value":"dimension1"\}]\}\}\},\{"actionName":"custom2","actionDefinition":\{"publishMetricAction":\{"dimensions":[\{"value":"dimension2"\}]\}\}\}],"networkFirewallStatefulRuleGroupReferences":[\{"resourceARN":"arn:aws:network-firewall:us-west-1:1234567891011:stateful-rulegroup/rulegroup1"\}],"networkFirewallOrchestrationConfig":\{"singleFirewallEndpointPerVPC":true,"allowedIPV4CidrList":["10.24.34.0/28"]\}
|
|
3191
3203
|
# \}"`
|
|
3192
3204
|
#
|
|
3205
|
+
# * Specification for `SHIELD_ADVANCED` for Amazon CloudFront
|
|
3206
|
+
# distributions
|
|
3207
|
+
#
|
|
3208
|
+
# `"\{"type":"SHIELD_ADVANCED","automaticResponseConfiguration":
|
|
3209
|
+
# \{"automaticResponseStatus":"ENABLED|IGNORED|DISABLED",
|
|
3210
|
+
# "automaticResponseAction":"BLOCK|COUNT"\},
|
|
3211
|
+
# "overrideCustomerWebaclClassic":true|false\}"`
|
|
3212
|
+
#
|
|
3213
|
+
# For example:
|
|
3214
|
+
# `"\{"type":"SHIELD_ADVANCED","automaticResponseConfiguration":
|
|
3215
|
+
# \{"automaticResponseStatus":"ENABLED",
|
|
3216
|
+
# "automaticResponseAction":"COUNT"\}\}"`
|
|
3217
|
+
#
|
|
3218
|
+
# The default value for `automaticResponseStatus` is `IGNORED`. The
|
|
3219
|
+
# value for `automaticResponseAction` is only required when
|
|
3220
|
+
# `automaticResponseStatus` is set to `ENABLED`. The default value
|
|
3221
|
+
# for `overrideCustomerWebaclClassic` is `false`.
|
|
3222
|
+
#
|
|
3223
|
+
# For other resource types that you can protect with a Shield
|
|
3224
|
+
# Advanced policy, this `ManagedServiceData` configuration is an
|
|
3225
|
+
# empty string.
|
|
3226
|
+
#
|
|
3193
3227
|
# * Example: `WAFV2`
|
|
3194
3228
|
#
|
|
3195
3229
|
# `"\{"type":"WAFV2","preProcessRuleGroups":[\{"ruleGroupArn":null,"overrideAction":\{"type":"NONE"\},"managedRuleGroupIdentifier":\{"version":null,"vendorName":"AWS","managedRuleGroupName":"AWSManagedRulesAmazonIpReputationList"\},"ruleGroupType":"ManagedRuleGroup","excludeRules":[\{"name":"NoUserAgent_HEADER"\}]\}],"postProcessRuleGroups":[],"defaultAction":\{"type":"ALLOW"\},"overrideCustomerWebACLAssociation":false,"loggingConfiguration":\{"logDestinationConfigs":["arn:aws:firehose:us-west-2:12345678912:deliverystream/aws-waf-logs-fms-admin-destination"],"redactedFields":[\{"redactedFieldType":"SingleHeader","redactedFieldValue":"Cookies"\},\{"redactedFieldType":"Method"\}]\}\}"`
|
data/lib/aws-sdk-fms.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: aws-sdk-fms
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.
|
|
4
|
+
version: 1.46.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Amazon Web Services
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2022-01-12 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: aws-sdk-core
|
|
@@ -19,7 +19,7 @@ dependencies:
|
|
|
19
19
|
version: '3'
|
|
20
20
|
- - ">="
|
|
21
21
|
- !ruby/object:Gem::Version
|
|
22
|
-
version: 3.
|
|
22
|
+
version: 3.125.0
|
|
23
23
|
type: :runtime
|
|
24
24
|
prerelease: false
|
|
25
25
|
version_requirements: !ruby/object:Gem::Requirement
|
|
@@ -29,7 +29,7 @@ dependencies:
|
|
|
29
29
|
version: '3'
|
|
30
30
|
- - ">="
|
|
31
31
|
- !ruby/object:Gem::Version
|
|
32
|
-
version: 3.
|
|
32
|
+
version: 3.125.0
|
|
33
33
|
- !ruby/object:Gem::Dependency
|
|
34
34
|
name: aws-sigv4
|
|
35
35
|
requirement: !ruby/object:Gem::Requirement
|