aws-sdk-fms 1.43.0 → 1.47.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +20 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-fms/client.rb +17 -4
- data/lib/aws-sdk-fms/types.rb +46 -12
- data/lib/aws-sdk-fms.rb +1 -1
- metadata +4 -4
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: ac66fe199eca3c706d54588681e88004bab31c37a6b9e094a1c39c2eea632311
|
|
4
|
+
data.tar.gz: 4c64723258ede121d9240b0c58dbab797fba0f1eb631bcc530c091c45bad9ea7
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: e86373d74b66f5061cc4c50608a1d01d64ddb4dee9f4917c0b27e8a0cbaf5e763038fff4f41b01f4aca5b1285a9cdf0d204d3957271917a073cd24e709fef408
|
|
7
|
+
data.tar.gz: 92c205a69570cd5f39c42a21cacb00a5b606b90d6d6f84add7cefed0dc6fe3eeecc522fb4df122a6d51da5522a3e060417d06f6fd2342d990ce640aadc813c88
|
data/CHANGELOG.md
CHANGED
|
@@ -1,6 +1,26 @@
|
|
|
1
1
|
Unreleased Changes
|
|
2
2
|
------------------
|
|
3
3
|
|
|
4
|
+
1.47.0 (2022-02-03)
|
|
5
|
+
------------------
|
|
6
|
+
|
|
7
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
|
8
|
+
|
|
9
|
+
1.46.0 (2022-01-12)
|
|
10
|
+
------------------
|
|
11
|
+
|
|
12
|
+
* Feature - Shield Advanced policies for Amazon CloudFront resources now support automatic application layer DDoS mitigation. The max length for SecurityServicePolicyData ManagedServiceData is now 8192 characters, instead of 4096.
|
|
13
|
+
|
|
14
|
+
1.45.0 (2021-12-21)
|
|
15
|
+
------------------
|
|
16
|
+
|
|
17
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
|
18
|
+
|
|
19
|
+
1.44.0 (2021-11-30)
|
|
20
|
+
------------------
|
|
21
|
+
|
|
22
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
|
23
|
+
|
|
4
24
|
1.43.0 (2021-11-04)
|
|
5
25
|
------------------
|
|
6
26
|
|
data/VERSION
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
1.
|
|
1
|
+
1.47.0
|
data/lib/aws-sdk-fms/client.rb
CHANGED
|
@@ -27,6 +27,8 @@ require 'aws-sdk-core/plugins/client_metrics_plugin.rb'
|
|
|
27
27
|
require 'aws-sdk-core/plugins/client_metrics_send_plugin.rb'
|
|
28
28
|
require 'aws-sdk-core/plugins/transfer_encoding.rb'
|
|
29
29
|
require 'aws-sdk-core/plugins/http_checksum.rb'
|
|
30
|
+
require 'aws-sdk-core/plugins/defaults_mode.rb'
|
|
31
|
+
require 'aws-sdk-core/plugins/recursion_detection.rb'
|
|
30
32
|
require 'aws-sdk-core/plugins/signature_v4.rb'
|
|
31
33
|
require 'aws-sdk-core/plugins/protocols/json_rpc.rb'
|
|
32
34
|
|
|
@@ -73,6 +75,8 @@ module Aws::FMS
|
|
|
73
75
|
add_plugin(Aws::Plugins::ClientMetricsSendPlugin)
|
|
74
76
|
add_plugin(Aws::Plugins::TransferEncoding)
|
|
75
77
|
add_plugin(Aws::Plugins::HttpChecksum)
|
|
78
|
+
add_plugin(Aws::Plugins::DefaultsMode)
|
|
79
|
+
add_plugin(Aws::Plugins::RecursionDetection)
|
|
76
80
|
add_plugin(Aws::Plugins::SignatureV4)
|
|
77
81
|
add_plugin(Aws::Plugins::Protocols::JsonRpc)
|
|
78
82
|
|
|
@@ -119,7 +123,9 @@ module Aws::FMS
|
|
|
119
123
|
# * EC2/ECS IMDS instance profile - When used by default, the timeouts
|
|
120
124
|
# are very aggressive. Construct and pass an instance of
|
|
121
125
|
# `Aws::InstanceProfileCredentails` or `Aws::ECSCredentials` to
|
|
122
|
-
# enable retries and extended timeouts.
|
|
126
|
+
# enable retries and extended timeouts. Instance profile credential
|
|
127
|
+
# fetching can be disabled by setting ENV['AWS_EC2_METADATA_DISABLED']
|
|
128
|
+
# to true.
|
|
123
129
|
#
|
|
124
130
|
# @option options [required, String] :region
|
|
125
131
|
# The AWS region to connect to. The configured `:region` is
|
|
@@ -173,6 +179,10 @@ module Aws::FMS
|
|
|
173
179
|
# Used only in `standard` and adaptive retry modes. Specifies whether to apply
|
|
174
180
|
# a clock skew correction and retry requests with skewed client clocks.
|
|
175
181
|
#
|
|
182
|
+
# @option options [String] :defaults_mode ("legacy")
|
|
183
|
+
# See {Aws::DefaultsModeConfiguration} for a list of the
|
|
184
|
+
# accepted modes and the configuration defaults that are included.
|
|
185
|
+
#
|
|
176
186
|
# @option options [Boolean] :disable_host_prefix_injection (false)
|
|
177
187
|
# Set to true to disable SDK automatically adding host prefix
|
|
178
188
|
# to default service endpoint when available.
|
|
@@ -305,7 +315,7 @@ module Aws::FMS
|
|
|
305
315
|
# seconds to wait when opening a HTTP session before raising a
|
|
306
316
|
# `Timeout::Error`.
|
|
307
317
|
#
|
|
308
|
-
# @option options [
|
|
318
|
+
# @option options [Float] :http_read_timeout (60) The default
|
|
309
319
|
# number of seconds to wait for response data. This value can
|
|
310
320
|
# safely be set per-request on the session.
|
|
311
321
|
#
|
|
@@ -321,6 +331,9 @@ module Aws::FMS
|
|
|
321
331
|
# disables this behaviour. This value can safely be set per
|
|
322
332
|
# request on the session.
|
|
323
333
|
#
|
|
334
|
+
# @option options [Float] :ssl_timeout (nil) Sets the SSL timeout
|
|
335
|
+
# in seconds.
|
|
336
|
+
#
|
|
324
337
|
# @option options [Boolean] :http_wire_trace (false) When `true`,
|
|
325
338
|
# HTTP debug output will be sent to the `:logger`.
|
|
326
339
|
#
|
|
@@ -1592,7 +1605,7 @@ module Aws::FMS
|
|
|
1592
1605
|
# * An Network Firewall policy, which provides firewall rules to filter
|
|
1593
1606
|
# network traffic in specified Amazon VPCs.
|
|
1594
1607
|
#
|
|
1595
|
-
# * A DNS Firewall policy, which provides Route
|
|
1608
|
+
# * A DNS Firewall policy, which provides Route 53 Resolver DNS Firewall
|
|
1596
1609
|
# rules to filter DNS queries for specified VPCs.
|
|
1597
1610
|
#
|
|
1598
1611
|
# Each policy is specific to one of the types. If you want to enforce
|
|
@@ -1820,7 +1833,7 @@ module Aws::FMS
|
|
|
1820
1833
|
params: params,
|
|
1821
1834
|
config: config)
|
|
1822
1835
|
context[:gem_name] = 'aws-sdk-fms'
|
|
1823
|
-
context[:gem_version] = '1.
|
|
1836
|
+
context[:gem_version] = '1.47.0'
|
|
1824
1837
|
Seahorse::Client::Request.new(handlers, context)
|
|
1825
1838
|
end
|
|
1826
1839
|
|
data/lib/aws-sdk-fms/types.rb
CHANGED
|
@@ -2152,8 +2152,9 @@ module Aws::FMS
|
|
|
2152
2152
|
# specify a resource type of `ResourceTypeList` and then specify the
|
|
2153
2153
|
# resource types in a `ResourceTypeList`.
|
|
2154
2154
|
#
|
|
2155
|
-
# For WAF and Shield Advanced,
|
|
2156
|
-
# `AWS::ElasticLoadBalancingV2::LoadBalancer
|
|
2155
|
+
# For WAF and Shield Advanced, resource types include
|
|
2156
|
+
# `AWS::ElasticLoadBalancingV2::LoadBalancer`,
|
|
2157
|
+
# `AWS::ElasticLoadBalancing::LoadBalancer`, `AWS::EC2::EIP`, and
|
|
2157
2158
|
# `AWS::CloudFront::Distribution`. For a security group common policy,
|
|
2158
2159
|
# valid values are `AWS::EC2::NetworkInterface` and
|
|
2159
2160
|
# `AWS::EC2::Instance`. For a security group content audit policy,
|
|
@@ -2191,10 +2192,16 @@ module Aws::FMS
|
|
|
2191
2192
|
# @return [Boolean]
|
|
2192
2193
|
#
|
|
2193
2194
|
# @!attribute [rw] delete_unused_fm_managed_resources
|
|
2194
|
-
# Indicates whether Firewall Manager should
|
|
2195
|
-
#
|
|
2196
|
-
#
|
|
2197
|
-
#
|
|
2195
|
+
# Indicates whether Firewall Manager should automatically remove
|
|
2196
|
+
# protections from resources that leave the policy scope and clean up
|
|
2197
|
+
# resources that Firewall Manager is managing for accounts when those
|
|
2198
|
+
# accounts leave policy scope. For example, Firewall Manager will
|
|
2199
|
+
# disassociate a Firewall Manager managed web ACL from a protected
|
|
2200
|
+
# customer resource when the customer resource leaves policy scope.
|
|
2201
|
+
#
|
|
2202
|
+
# By default, Firewall Manager doesn't remove protections or delete
|
|
2203
|
+
# Firewall Manager managed resources.
|
|
2204
|
+
#
|
|
2198
2205
|
# This option is not available for Shield Advanced or WAF Classic
|
|
2199
2206
|
# policies.
|
|
2200
2207
|
# @return [Boolean]
|
|
@@ -2427,10 +2434,16 @@ module Aws::FMS
|
|
|
2427
2434
|
# @return [Boolean]
|
|
2428
2435
|
#
|
|
2429
2436
|
# @!attribute [rw] delete_unused_fm_managed_resources
|
|
2430
|
-
# Indicates whether Firewall Manager should
|
|
2431
|
-
#
|
|
2432
|
-
#
|
|
2433
|
-
#
|
|
2437
|
+
# Indicates whether Firewall Manager should automatically remove
|
|
2438
|
+
# protections from resources that leave the policy scope and clean up
|
|
2439
|
+
# resources that Firewall Manager is managing for accounts when those
|
|
2440
|
+
# accounts leave policy scope. For example, Firewall Manager will
|
|
2441
|
+
# disassociate a Firewall Manager managed web ACL from a protected
|
|
2442
|
+
# customer resource when the customer resource leaves policy scope.
|
|
2443
|
+
#
|
|
2444
|
+
# By default, Firewall Manager doesn't remove protections or delete
|
|
2445
|
+
# Firewall Manager managed resources.
|
|
2446
|
+
#
|
|
2434
2447
|
# This option is not available for Shield Advanced or WAF Classic
|
|
2435
2448
|
# policies.
|
|
2436
2449
|
# @return [Boolean]
|
|
@@ -3172,8 +3185,7 @@ module Aws::FMS
|
|
|
3172
3185
|
#
|
|
3173
3186
|
# @!attribute [rw] managed_service_data
|
|
3174
3187
|
# Details about the service that are specific to the service type, in
|
|
3175
|
-
# JSON format.
|
|
3176
|
-
# string.
|
|
3188
|
+
# JSON format.
|
|
3177
3189
|
#
|
|
3178
3190
|
# * Example: `DNS_FIREWALL`
|
|
3179
3191
|
#
|
|
@@ -3190,6 +3202,28 @@ module Aws::FMS
|
|
|
3190
3202
|
# `"\{"type":"NETWORK_FIREWALL","networkFirewallStatelessRuleGroupReferences":[\{"resourceARN":"arn:aws:network-firewall:us-west-1:1234567891011:stateless-rulegroup/rulegroup2","priority":10\}],"networkFirewallStatelessDefaultActions":["aws:pass","custom1"],"networkFirewallStatelessFragmentDefaultActions":["custom2","aws:pass"],"networkFirewallStatelessCustomActions":[\{"actionName":"custom1","actionDefinition":\{"publishMetricAction":\{"dimensions":[\{"value":"dimension1"\}]\}\}\},\{"actionName":"custom2","actionDefinition":\{"publishMetricAction":\{"dimensions":[\{"value":"dimension2"\}]\}\}\}],"networkFirewallStatefulRuleGroupReferences":[\{"resourceARN":"arn:aws:network-firewall:us-west-1:1234567891011:stateful-rulegroup/rulegroup1"\}],"networkFirewallOrchestrationConfig":\{"singleFirewallEndpointPerVPC":true,"allowedIPV4CidrList":["10.24.34.0/28"]\}
|
|
3191
3203
|
# \}"`
|
|
3192
3204
|
#
|
|
3205
|
+
# * Specification for `SHIELD_ADVANCED` for Amazon CloudFront
|
|
3206
|
+
# distributions
|
|
3207
|
+
#
|
|
3208
|
+
# `"\{"type":"SHIELD_ADVANCED","automaticResponseConfiguration":
|
|
3209
|
+
# \{"automaticResponseStatus":"ENABLED|IGNORED|DISABLED",
|
|
3210
|
+
# "automaticResponseAction":"BLOCK|COUNT"\},
|
|
3211
|
+
# "overrideCustomerWebaclClassic":true|false\}"`
|
|
3212
|
+
#
|
|
3213
|
+
# For example:
|
|
3214
|
+
# `"\{"type":"SHIELD_ADVANCED","automaticResponseConfiguration":
|
|
3215
|
+
# \{"automaticResponseStatus":"ENABLED",
|
|
3216
|
+
# "automaticResponseAction":"COUNT"\}\}"`
|
|
3217
|
+
#
|
|
3218
|
+
# The default value for `automaticResponseStatus` is `IGNORED`. The
|
|
3219
|
+
# value for `automaticResponseAction` is only required when
|
|
3220
|
+
# `automaticResponseStatus` is set to `ENABLED`. The default value
|
|
3221
|
+
# for `overrideCustomerWebaclClassic` is `false`.
|
|
3222
|
+
#
|
|
3223
|
+
# For other resource types that you can protect with a Shield
|
|
3224
|
+
# Advanced policy, this `ManagedServiceData` configuration is an
|
|
3225
|
+
# empty string.
|
|
3226
|
+
#
|
|
3193
3227
|
# * Example: `WAFV2`
|
|
3194
3228
|
#
|
|
3195
3229
|
# `"\{"type":"WAFV2","preProcessRuleGroups":[\{"ruleGroupArn":null,"overrideAction":\{"type":"NONE"\},"managedRuleGroupIdentifier":\{"version":null,"vendorName":"AWS","managedRuleGroupName":"AWSManagedRulesAmazonIpReputationList"\},"ruleGroupType":"ManagedRuleGroup","excludeRules":[\{"name":"NoUserAgent_HEADER"\}]\}],"postProcessRuleGroups":[],"defaultAction":\{"type":"ALLOW"\},"overrideCustomerWebACLAssociation":false,"loggingConfiguration":\{"logDestinationConfigs":["arn:aws:firehose:us-west-2:12345678912:deliverystream/aws-waf-logs-fms-admin-destination"],"redactedFields":[\{"redactedFieldType":"SingleHeader","redactedFieldValue":"Cookies"\},\{"redactedFieldType":"Method"\}]\}\}"`
|
data/lib/aws-sdk-fms.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: aws-sdk-fms
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.
|
|
4
|
+
version: 1.47.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Amazon Web Services
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2022-02-03 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: aws-sdk-core
|
|
@@ -19,7 +19,7 @@ dependencies:
|
|
|
19
19
|
version: '3'
|
|
20
20
|
- - ">="
|
|
21
21
|
- !ruby/object:Gem::Version
|
|
22
|
-
version: 3.
|
|
22
|
+
version: 3.126.0
|
|
23
23
|
type: :runtime
|
|
24
24
|
prerelease: false
|
|
25
25
|
version_requirements: !ruby/object:Gem::Requirement
|
|
@@ -29,7 +29,7 @@ dependencies:
|
|
|
29
29
|
version: '3'
|
|
30
30
|
- - ">="
|
|
31
31
|
- !ruby/object:Gem::Version
|
|
32
|
-
version: 3.
|
|
32
|
+
version: 3.126.0
|
|
33
33
|
- !ruby/object:Gem::Dependency
|
|
34
34
|
name: aws-sigv4
|
|
35
35
|
requirement: !ruby/object:Gem::Requirement
|