aws-sdk-fms 1.43.0 → 1.47.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +20 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-fms/client.rb +17 -4
- data/lib/aws-sdk-fms/types.rb +46 -12
- data/lib/aws-sdk-fms.rb +1 -1
- metadata +4 -4
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: ac66fe199eca3c706d54588681e88004bab31c37a6b9e094a1c39c2eea632311
|
|
4
|
+
data.tar.gz: 4c64723258ede121d9240b0c58dbab797fba0f1eb631bcc530c091c45bad9ea7
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: e86373d74b66f5061cc4c50608a1d01d64ddb4dee9f4917c0b27e8a0cbaf5e763038fff4f41b01f4aca5b1285a9cdf0d204d3957271917a073cd24e709fef408
|
|
7
|
+
data.tar.gz: 92c205a69570cd5f39c42a21cacb00a5b606b90d6d6f84add7cefed0dc6fe3eeecc522fb4df122a6d51da5522a3e060417d06f6fd2342d990ce640aadc813c88
|
data/CHANGELOG.md
CHANGED
|
@@ -1,6 +1,26 @@
|
|
|
1
1
|
Unreleased Changes
|
|
2
2
|
------------------
|
|
3
3
|
|
|
4
|
+
1.47.0 (2022-02-03)
|
|
5
|
+
------------------
|
|
6
|
+
|
|
7
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
|
8
|
+
|
|
9
|
+
1.46.0 (2022-01-12)
|
|
10
|
+
------------------
|
|
11
|
+
|
|
12
|
+
* Feature - Shield Advanced policies for Amazon CloudFront resources now support automatic application layer DDoS mitigation. The max length for SecurityServicePolicyData ManagedServiceData is now 8192 characters, instead of 4096.
|
|
13
|
+
|
|
14
|
+
1.45.0 (2021-12-21)
|
|
15
|
+
------------------
|
|
16
|
+
|
|
17
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
|
18
|
+
|
|
19
|
+
1.44.0 (2021-11-30)
|
|
20
|
+
------------------
|
|
21
|
+
|
|
22
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
|
23
|
+
|
|
4
24
|
1.43.0 (2021-11-04)
|
|
5
25
|
------------------
|
|
6
26
|
|
data/VERSION
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
1.
|
|
1
|
+
1.47.0
|
data/lib/aws-sdk-fms/client.rb
CHANGED
|
@@ -27,6 +27,8 @@ require 'aws-sdk-core/plugins/client_metrics_plugin.rb'
|
|
|
27
27
|
require 'aws-sdk-core/plugins/client_metrics_send_plugin.rb'
|
|
28
28
|
require 'aws-sdk-core/plugins/transfer_encoding.rb'
|
|
29
29
|
require 'aws-sdk-core/plugins/http_checksum.rb'
|
|
30
|
+
require 'aws-sdk-core/plugins/defaults_mode.rb'
|
|
31
|
+
require 'aws-sdk-core/plugins/recursion_detection.rb'
|
|
30
32
|
require 'aws-sdk-core/plugins/signature_v4.rb'
|
|
31
33
|
require 'aws-sdk-core/plugins/protocols/json_rpc.rb'
|
|
32
34
|
|
|
@@ -73,6 +75,8 @@ module Aws::FMS
|
|
|
73
75
|
add_plugin(Aws::Plugins::ClientMetricsSendPlugin)
|
|
74
76
|
add_plugin(Aws::Plugins::TransferEncoding)
|
|
75
77
|
add_plugin(Aws::Plugins::HttpChecksum)
|
|
78
|
+
add_plugin(Aws::Plugins::DefaultsMode)
|
|
79
|
+
add_plugin(Aws::Plugins::RecursionDetection)
|
|
76
80
|
add_plugin(Aws::Plugins::SignatureV4)
|
|
77
81
|
add_plugin(Aws::Plugins::Protocols::JsonRpc)
|
|
78
82
|
|
|
@@ -119,7 +123,9 @@ module Aws::FMS
|
|
|
119
123
|
# * EC2/ECS IMDS instance profile - When used by default, the timeouts
|
|
120
124
|
# are very aggressive. Construct and pass an instance of
|
|
121
125
|
# `Aws::InstanceProfileCredentails` or `Aws::ECSCredentials` to
|
|
122
|
-
# enable retries and extended timeouts.
|
|
126
|
+
# enable retries and extended timeouts. Instance profile credential
|
|
127
|
+
# fetching can be disabled by setting ENV['AWS_EC2_METADATA_DISABLED']
|
|
128
|
+
# to true.
|
|
123
129
|
#
|
|
124
130
|
# @option options [required, String] :region
|
|
125
131
|
# The AWS region to connect to. The configured `:region` is
|
|
@@ -173,6 +179,10 @@ module Aws::FMS
|
|
|
173
179
|
# Used only in `standard` and adaptive retry modes. Specifies whether to apply
|
|
174
180
|
# a clock skew correction and retry requests with skewed client clocks.
|
|
175
181
|
#
|
|
182
|
+
# @option options [String] :defaults_mode ("legacy")
|
|
183
|
+
# See {Aws::DefaultsModeConfiguration} for a list of the
|
|
184
|
+
# accepted modes and the configuration defaults that are included.
|
|
185
|
+
#
|
|
176
186
|
# @option options [Boolean] :disable_host_prefix_injection (false)
|
|
177
187
|
# Set to true to disable SDK automatically adding host prefix
|
|
178
188
|
# to default service endpoint when available.
|
|
@@ -305,7 +315,7 @@ module Aws::FMS
|
|
|
305
315
|
# seconds to wait when opening a HTTP session before raising a
|
|
306
316
|
# `Timeout::Error`.
|
|
307
317
|
#
|
|
308
|
-
# @option options [
|
|
318
|
+
# @option options [Float] :http_read_timeout (60) The default
|
|
309
319
|
# number of seconds to wait for response data. This value can
|
|
310
320
|
# safely be set per-request on the session.
|
|
311
321
|
#
|
|
@@ -321,6 +331,9 @@ module Aws::FMS
|
|
|
321
331
|
# disables this behaviour. This value can safely be set per
|
|
322
332
|
# request on the session.
|
|
323
333
|
#
|
|
334
|
+
# @option options [Float] :ssl_timeout (nil) Sets the SSL timeout
|
|
335
|
+
# in seconds.
|
|
336
|
+
#
|
|
324
337
|
# @option options [Boolean] :http_wire_trace (false) When `true`,
|
|
325
338
|
# HTTP debug output will be sent to the `:logger`.
|
|
326
339
|
#
|
|
@@ -1592,7 +1605,7 @@ module Aws::FMS
|
|
|
1592
1605
|
# * An Network Firewall policy, which provides firewall rules to filter
|
|
1593
1606
|
# network traffic in specified Amazon VPCs.
|
|
1594
1607
|
#
|
|
1595
|
-
# * A DNS Firewall policy, which provides Route
|
|
1608
|
+
# * A DNS Firewall policy, which provides Route 53 Resolver DNS Firewall
|
|
1596
1609
|
# rules to filter DNS queries for specified VPCs.
|
|
1597
1610
|
#
|
|
1598
1611
|
# Each policy is specific to one of the types. If you want to enforce
|
|
@@ -1820,7 +1833,7 @@ module Aws::FMS
|
|
|
1820
1833
|
params: params,
|
|
1821
1834
|
config: config)
|
|
1822
1835
|
context[:gem_name] = 'aws-sdk-fms'
|
|
1823
|
-
context[:gem_version] = '1.
|
|
1836
|
+
context[:gem_version] = '1.47.0'
|
|
1824
1837
|
Seahorse::Client::Request.new(handlers, context)
|
|
1825
1838
|
end
|
|
1826
1839
|
|
data/lib/aws-sdk-fms/types.rb
CHANGED
|
@@ -2152,8 +2152,9 @@ module Aws::FMS
|
|
|
2152
2152
|
# specify a resource type of `ResourceTypeList` and then specify the
|
|
2153
2153
|
# resource types in a `ResourceTypeList`.
|
|
2154
2154
|
#
|
|
2155
|
-
# For WAF and Shield Advanced,
|
|
2156
|
-
# `AWS::ElasticLoadBalancingV2::LoadBalancer
|
|
2155
|
+
# For WAF and Shield Advanced, resource types include
|
|
2156
|
+
# `AWS::ElasticLoadBalancingV2::LoadBalancer`,
|
|
2157
|
+
# `AWS::ElasticLoadBalancing::LoadBalancer`, `AWS::EC2::EIP`, and
|
|
2157
2158
|
# `AWS::CloudFront::Distribution`. For a security group common policy,
|
|
2158
2159
|
# valid values are `AWS::EC2::NetworkInterface` and
|
|
2159
2160
|
# `AWS::EC2::Instance`. For a security group content audit policy,
|
|
@@ -2191,10 +2192,16 @@ module Aws::FMS
|
|
|
2191
2192
|
# @return [Boolean]
|
|
2192
2193
|
#
|
|
2193
2194
|
# @!attribute [rw] delete_unused_fm_managed_resources
|
|
2194
|
-
# Indicates whether Firewall Manager should
|
|
2195
|
-
#
|
|
2196
|
-
#
|
|
2197
|
-
#
|
|
2195
|
+
# Indicates whether Firewall Manager should automatically remove
|
|
2196
|
+
# protections from resources that leave the policy scope and clean up
|
|
2197
|
+
# resources that Firewall Manager is managing for accounts when those
|
|
2198
|
+
# accounts leave policy scope. For example, Firewall Manager will
|
|
2199
|
+
# disassociate a Firewall Manager managed web ACL from a protected
|
|
2200
|
+
# customer resource when the customer resource leaves policy scope.
|
|
2201
|
+
#
|
|
2202
|
+
# By default, Firewall Manager doesn't remove protections or delete
|
|
2203
|
+
# Firewall Manager managed resources.
|
|
2204
|
+
#
|
|
2198
2205
|
# This option is not available for Shield Advanced or WAF Classic
|
|
2199
2206
|
# policies.
|
|
2200
2207
|
# @return [Boolean]
|
|
@@ -2427,10 +2434,16 @@ module Aws::FMS
|
|
|
2427
2434
|
# @return [Boolean]
|
|
2428
2435
|
#
|
|
2429
2436
|
# @!attribute [rw] delete_unused_fm_managed_resources
|
|
2430
|
-
# Indicates whether Firewall Manager should
|
|
2431
|
-
#
|
|
2432
|
-
#
|
|
2433
|
-
#
|
|
2437
|
+
# Indicates whether Firewall Manager should automatically remove
|
|
2438
|
+
# protections from resources that leave the policy scope and clean up
|
|
2439
|
+
# resources that Firewall Manager is managing for accounts when those
|
|
2440
|
+
# accounts leave policy scope. For example, Firewall Manager will
|
|
2441
|
+
# disassociate a Firewall Manager managed web ACL from a protected
|
|
2442
|
+
# customer resource when the customer resource leaves policy scope.
|
|
2443
|
+
#
|
|
2444
|
+
# By default, Firewall Manager doesn't remove protections or delete
|
|
2445
|
+
# Firewall Manager managed resources.
|
|
2446
|
+
#
|
|
2434
2447
|
# This option is not available for Shield Advanced or WAF Classic
|
|
2435
2448
|
# policies.
|
|
2436
2449
|
# @return [Boolean]
|
|
@@ -3172,8 +3185,7 @@ module Aws::FMS
|
|
|
3172
3185
|
#
|
|
3173
3186
|
# @!attribute [rw] managed_service_data
|
|
3174
3187
|
# Details about the service that are specific to the service type, in
|
|
3175
|
-
# JSON format.
|
|
3176
|
-
# string.
|
|
3188
|
+
# JSON format.
|
|
3177
3189
|
#
|
|
3178
3190
|
# * Example: `DNS_FIREWALL`
|
|
3179
3191
|
#
|
|
@@ -3190,6 +3202,28 @@ module Aws::FMS
|
|
|
3190
3202
|
# `"\{"type":"NETWORK_FIREWALL","networkFirewallStatelessRuleGroupReferences":[\{"resourceARN":"arn:aws:network-firewall:us-west-1:1234567891011:stateless-rulegroup/rulegroup2","priority":10\}],"networkFirewallStatelessDefaultActions":["aws:pass","custom1"],"networkFirewallStatelessFragmentDefaultActions":["custom2","aws:pass"],"networkFirewallStatelessCustomActions":[\{"actionName":"custom1","actionDefinition":\{"publishMetricAction":\{"dimensions":[\{"value":"dimension1"\}]\}\}\},\{"actionName":"custom2","actionDefinition":\{"publishMetricAction":\{"dimensions":[\{"value":"dimension2"\}]\}\}\}],"networkFirewallStatefulRuleGroupReferences":[\{"resourceARN":"arn:aws:network-firewall:us-west-1:1234567891011:stateful-rulegroup/rulegroup1"\}],"networkFirewallOrchestrationConfig":\{"singleFirewallEndpointPerVPC":true,"allowedIPV4CidrList":["10.24.34.0/28"]\}
|
|
3191
3203
|
# \}"`
|
|
3192
3204
|
#
|
|
3205
|
+
# * Specification for `SHIELD_ADVANCED` for Amazon CloudFront
|
|
3206
|
+
# distributions
|
|
3207
|
+
#
|
|
3208
|
+
# `"\{"type":"SHIELD_ADVANCED","automaticResponseConfiguration":
|
|
3209
|
+
# \{"automaticResponseStatus":"ENABLED|IGNORED|DISABLED",
|
|
3210
|
+
# "automaticResponseAction":"BLOCK|COUNT"\},
|
|
3211
|
+
# "overrideCustomerWebaclClassic":true|false\}"`
|
|
3212
|
+
#
|
|
3213
|
+
# For example:
|
|
3214
|
+
# `"\{"type":"SHIELD_ADVANCED","automaticResponseConfiguration":
|
|
3215
|
+
# \{"automaticResponseStatus":"ENABLED",
|
|
3216
|
+
# "automaticResponseAction":"COUNT"\}\}"`
|
|
3217
|
+
#
|
|
3218
|
+
# The default value for `automaticResponseStatus` is `IGNORED`. The
|
|
3219
|
+
# value for `automaticResponseAction` is only required when
|
|
3220
|
+
# `automaticResponseStatus` is set to `ENABLED`. The default value
|
|
3221
|
+
# for `overrideCustomerWebaclClassic` is `false`.
|
|
3222
|
+
#
|
|
3223
|
+
# For other resource types that you can protect with a Shield
|
|
3224
|
+
# Advanced policy, this `ManagedServiceData` configuration is an
|
|
3225
|
+
# empty string.
|
|
3226
|
+
#
|
|
3193
3227
|
# * Example: `WAFV2`
|
|
3194
3228
|
#
|
|
3195
3229
|
# `"\{"type":"WAFV2","preProcessRuleGroups":[\{"ruleGroupArn":null,"overrideAction":\{"type":"NONE"\},"managedRuleGroupIdentifier":\{"version":null,"vendorName":"AWS","managedRuleGroupName":"AWSManagedRulesAmazonIpReputationList"\},"ruleGroupType":"ManagedRuleGroup","excludeRules":[\{"name":"NoUserAgent_HEADER"\}]\}],"postProcessRuleGroups":[],"defaultAction":\{"type":"ALLOW"\},"overrideCustomerWebACLAssociation":false,"loggingConfiguration":\{"logDestinationConfigs":["arn:aws:firehose:us-west-2:12345678912:deliverystream/aws-waf-logs-fms-admin-destination"],"redactedFields":[\{"redactedFieldType":"SingleHeader","redactedFieldValue":"Cookies"\},\{"redactedFieldType":"Method"\}]\}\}"`
|
data/lib/aws-sdk-fms.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: aws-sdk-fms
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.
|
|
4
|
+
version: 1.47.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Amazon Web Services
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2022-02-03 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: aws-sdk-core
|
|
@@ -19,7 +19,7 @@ dependencies:
|
|
|
19
19
|
version: '3'
|
|
20
20
|
- - ">="
|
|
21
21
|
- !ruby/object:Gem::Version
|
|
22
|
-
version: 3.
|
|
22
|
+
version: 3.126.0
|
|
23
23
|
type: :runtime
|
|
24
24
|
prerelease: false
|
|
25
25
|
version_requirements: !ruby/object:Gem::Requirement
|
|
@@ -29,7 +29,7 @@ dependencies:
|
|
|
29
29
|
version: '3'
|
|
30
30
|
- - ">="
|
|
31
31
|
- !ruby/object:Gem::Version
|
|
32
|
-
version: 3.
|
|
32
|
+
version: 3.126.0
|
|
33
33
|
- !ruby/object:Gem::Dependency
|
|
34
34
|
name: aws-sigv4
|
|
35
35
|
requirement: !ruby/object:Gem::Requirement
|