aws-sdk-fms 1.3.0 → 1.4.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 9745f6b8c96f0388e32039f81817bbb09da2c877
-  data.tar.gz: c1d15ea394daefa49a38cbcfab6e1b98180c1ccb
+  metadata.gz: 44d1a01d16b9786cf8849a7daed311c55d8b482a
+  data.tar.gz: 2d6e433459dbee81e684357749469112105b8fcd
 SHA512:
-  metadata.gz: e4be8a3b42cbc2d98f1db7e322ffc6aabffcb1039480d2b320ef9c2b9bac32769a4b0c918dac359153843ba661e716f571a69ba89544f0ccecad234f6fb924f5
-  data.tar.gz: 2355054d86aa5468a60f6d2f7410001412bb0ea330d8756615fda2b84aa55bc755a8233e4c2949a38c5a4971c5eafc19b88950b1aa3bdd17b64463ab1e064512
+  metadata.gz: 9e6242fa04df16258d4d1b4dc79576e670e9df177061ee5e1c91cca5fb1777069b863f2b3274a96a9f6951822e1ace2c55bba992e352c5398a5083b1a223e094
+  data.tar.gz: 433f23d68908946ee15357911f16397201e677be6fbccc8e4cd5efab9132781fb2b5da587d579db02301c38afbebd21771ba4a8f5f702e4193f46c5d22245333

data/lib/aws-sdk-fms/client.rb

@@ -187,14 +187,14 @@ module Aws::FMS
     # @!group API Operations
 
     # Sets the AWS Firewall Manager administrator account. AWS Firewall
-    # Manager must be associated with a master account in AWS Organizations
-    # or associated with a member account that has the appropriate
-    # permissions. If the account ID that you submit is not an AWS
-    # Organizations master account, AWS Firewall Manager will set the
+    # Manager must be associated with the master account your AWS
+    # organization or associated with a member account that has the
+    # appropriate permissions. If the account ID that you submit is not an
+    # AWS Organizations master account, AWS Firewall Manager will set the
     # appropriate permissions for the given member account.
     #
     # The account that you associate with AWS Firewall Manager is called the
-    # AWS Firewall manager administrator account.
+    # AWS Firewall Manager administrator account.
     #
     # @option params [required, String] :admin_account
     #   The AWS account ID to associate with AWS Firewall Manager as the AWS
@@ -284,10 +284,12 @@ module Aws::FMS
     # @return [Types::GetAdminAccountResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::GetAdminAccountResponse#admin_account #admin_account} => String
+    #   * {Types::GetAdminAccountResponse#role_status #role_status} => String
     #
     # @example Response structure
     #
     #   resp.admin_account #=> String
+    #   resp.role_status #=> String, one of "READY", "CREATING", "PENDING_DELETION", "DELETING", "DELETED"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/fms-2018-01-01/GetAdminAccount AWS API Documentation
     #
@@ -333,6 +335,8 @@ module Aws::FMS
     #   resp.policy_compliance_detail.violators[0].resource_type #=> String
     #   resp.policy_compliance_detail.evaluation_limit_exceeded #=> Boolean
     #   resp.policy_compliance_detail.expired_at #=> Time
+    #   resp.policy_compliance_detail.issue_info_map #=> Hash
+    #   resp.policy_compliance_detail.issue_info_map["DependentServiceName"] #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/fms-2018-01-01/GetComplianceDetail AWS API Documentation
     #
@@ -395,6 +399,12 @@ module Aws::FMS
     #   resp.policy.resource_tags[0].value #=> String
     #   resp.policy.exclude_resource_tags #=> Boolean
     #   resp.policy.remediation_enabled #=> Boolean
+    #   resp.policy.include_map #=> Hash
+    #   resp.policy.include_map["CustomerPolicyScopeIdType"] #=> Array
+    #   resp.policy.include_map["CustomerPolicyScopeIdType"][0] #=> String
+    #   resp.policy.exclude_map #=> Hash
+    #   resp.policy.exclude_map["CustomerPolicyScopeIdType"] #=> Array
+    #   resp.policy.exclude_map["CustomerPolicyScopeIdType"][0] #=> String
     #   resp.policy_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/fms-2018-01-01/GetPolicy AWS API Documentation
@@ -456,6 +466,8 @@ module Aws::FMS
     #   resp.policy_compliance_status_list[0].evaluation_results[0].violator_count #=> Integer
     #   resp.policy_compliance_status_list[0].evaluation_results[0].evaluation_limit_exceeded #=> Boolean
     #   resp.policy_compliance_status_list[0].last_updated #=> Time
+    #   resp.policy_compliance_status_list[0].issue_info_map #=> Hash
+    #   resp.policy_compliance_status_list[0].issue_info_map["DependentServiceName"] #=> String
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/fms-2018-01-01/ListComplianceStatus AWS API Documentation
@@ -467,6 +479,55 @@ module Aws::FMS
       req.send_request(options)
     end
 
+    # Returns a `MemberAccounts` object that lists the member accounts in
+    # the administrator's AWS organization.
+    #
+    # The `ListMemberAccounts` must be submitted by the account that is set
+    # as the AWS Firewall Manager administrator.
+    #
+    # @option params [String] :next_token
+    #   If you specify a value for `MaxResults` and you have more account IDs
+    #   than the number that you specify for `MaxResults`, AWS Firewall
+    #   Manager returns a `NextToken` value in the response that allows you to
+    #   list another group of IDs. For the second and subsequent
+    #   `ListMemberAccountsRequest` requests, specify the value of `NextToken`
+    #   from the previous response to get information about another batch of
+    #   member account IDs.
+    #
+    # @option params [Integer] :max_results
+    #   Specifies the number of member account IDs that you want AWS Firewall
+    #   Manager to return for this request. If you have more IDs than the
+    #   number that you specify for `MaxResults`, the response includes a
+    #   `NextToken` value that you can use to get another batch of member
+    #   account IDs. The maximum value for `MaxResults` is 100.
+    #
+    # @return [Types::ListMemberAccountsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::ListMemberAccountsResponse#member_accounts #member_accounts} => Array<String>
+    #   * {Types::ListMemberAccountsResponse#next_token #next_token} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_member_accounts({
+    #     next_token: "PaginationToken",
+    #     max_results: 1,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.member_accounts #=> Array
+    #   resp.member_accounts[0] #=> String
+    #   resp.next_token #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/fms-2018-01-01/ListMemberAccounts AWS API Documentation
+    #
+    # @overload list_member_accounts(params = {})
+    # @param [Hash] params ({})
+    def list_member_accounts(params = {}, options = {})
+      req = build_request(:list_member_accounts, params)
+      req.send_request(options)
+    end
+
     # Returns an array of `PolicySummary` objects in the response.
     #
     # @option params [String] :next_token
@@ -576,6 +637,12 @@ module Aws::FMS
     #       ],
     #       exclude_resource_tags: false, # required
     #       remediation_enabled: false, # required
+    #       include_map: {
+    #         "ACCOUNT" => ["CustomerPolicyScopeId"],
+    #       },
+    #       exclude_map: {
+    #         "ACCOUNT" => ["CustomerPolicyScopeId"],
+    #       },
     #     },
     #   })
     #
@@ -592,6 +659,12 @@ module Aws::FMS
     #   resp.policy.resource_tags[0].value #=> String
     #   resp.policy.exclude_resource_tags #=> Boolean
     #   resp.policy.remediation_enabled #=> Boolean
+    #   resp.policy.include_map #=> Hash
+    #   resp.policy.include_map["CustomerPolicyScopeIdType"] #=> Array
+    #   resp.policy.include_map["CustomerPolicyScopeIdType"][0] #=> String
+    #   resp.policy.exclude_map #=> Hash
+    #   resp.policy.exclude_map["CustomerPolicyScopeIdType"] #=> Array
+    #   resp.policy.exclude_map["CustomerPolicyScopeIdType"][0] #=> String
     #   resp.policy_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/fms-2018-01-01/PutPolicy AWS API Documentation
@@ -616,7 +689,7 @@ module Aws::FMS
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-fms'
-      context[:gem_version] = '1.3.0'
+      context[:gem_version] = '1.4.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-fms/client_api.rb

@@ -12,12 +12,19 @@ module Aws::FMS
     include Seahorse::Model
 
     AWSAccountId = Shapes::StringShape.new(name: 'AWSAccountId')
+    AccountRoleStatus = Shapes::StringShape.new(name: 'AccountRoleStatus')
     AssociateAdminAccountRequest = Shapes::StructureShape.new(name: 'AssociateAdminAccountRequest')
     Boolean = Shapes::BooleanShape.new(name: 'Boolean')
     ComplianceViolator = Shapes::StructureShape.new(name: 'ComplianceViolator')
     ComplianceViolators = Shapes::ListShape.new(name: 'ComplianceViolators')
+    CustomerPolicyScopeId = Shapes::StringShape.new(name: 'CustomerPolicyScopeId')
+    CustomerPolicyScopeIdList = Shapes::ListShape.new(name: 'CustomerPolicyScopeIdList')
+    CustomerPolicyScopeIdType = Shapes::StringShape.new(name: 'CustomerPolicyScopeIdType')
+    CustomerPolicyScopeMap = Shapes::MapShape.new(name: 'CustomerPolicyScopeMap')
     DeleteNotificationChannelRequest = Shapes::StructureShape.new(name: 'DeleteNotificationChannelRequest')
     DeletePolicyRequest = Shapes::StructureShape.new(name: 'DeletePolicyRequest')
+    DependentServiceName = Shapes::StringShape.new(name: 'DependentServiceName')
+    DetailedInfo = Shapes::StringShape.new(name: 'DetailedInfo')
     DisassociateAdminAccountRequest = Shapes::StructureShape.new(name: 'DisassociateAdminAccountRequest')
     ErrorMessage = Shapes::StringShape.new(name: 'ErrorMessage')
     EvaluationResult = Shapes::StructureShape.new(name: 'EvaluationResult')
@@ -33,12 +40,17 @@ module Aws::FMS
     InternalErrorException = Shapes::StructureShape.new(name: 'InternalErrorException')
     InvalidInputException = Shapes::StructureShape.new(name: 'InvalidInputException')
     InvalidOperationException = Shapes::StructureShape.new(name: 'InvalidOperationException')
+    InvalidTypeException = Shapes::StructureShape.new(name: 'InvalidTypeException')
+    IssueInfoMap = Shapes::MapShape.new(name: 'IssueInfoMap')
     LimitExceededException = Shapes::StructureShape.new(name: 'LimitExceededException')
     ListComplianceStatusRequest = Shapes::StructureShape.new(name: 'ListComplianceStatusRequest')
     ListComplianceStatusResponse = Shapes::StructureShape.new(name: 'ListComplianceStatusResponse')
+    ListMemberAccountsRequest = Shapes::StructureShape.new(name: 'ListMemberAccountsRequest')
+    ListMemberAccountsResponse = Shapes::StructureShape.new(name: 'ListMemberAccountsResponse')
     ListPoliciesRequest = Shapes::StructureShape.new(name: 'ListPoliciesRequest')
     ListPoliciesResponse = Shapes::StructureShape.new(name: 'ListPoliciesResponse')
     ManagedServiceData = Shapes::StringShape.new(name: 'ManagedServiceData')
+    MemberAccounts = Shapes::ListShape.new(name: 'MemberAccounts')
     PaginationMaxResults = Shapes::IntegerShape.new(name: 'PaginationMaxResults')
     PaginationToken = Shapes::StringShape.new(name: 'PaginationToken')
     Policy = Shapes::StructureShape.new(name: 'Policy')
@@ -78,6 +90,11 @@ module Aws::FMS
 
     ComplianceViolators.member = Shapes::ShapeRef.new(shape: ComplianceViolator)
 
+    CustomerPolicyScopeIdList.member = Shapes::ShapeRef.new(shape: CustomerPolicyScopeId)
+
+    CustomerPolicyScopeMap.key = Shapes::ShapeRef.new(shape: CustomerPolicyScopeIdType)
+    CustomerPolicyScopeMap.value = Shapes::ShapeRef.new(shape: CustomerPolicyScopeIdList)
+
     DeleteNotificationChannelRequest.struct_class = Types::DeleteNotificationChannelRequest
 
     DeletePolicyRequest.add_member(:policy_id, Shapes::ShapeRef.new(shape: PolicyId, required: true, location_name: "PolicyId"))
@@ -95,6 +112,7 @@ module Aws::FMS
     GetAdminAccountRequest.struct_class = Types::GetAdminAccountRequest
 
     GetAdminAccountResponse.add_member(:admin_account, Shapes::ShapeRef.new(shape: AWSAccountId, location_name: "AdminAccount"))
+    GetAdminAccountResponse.add_member(:role_status, Shapes::ShapeRef.new(shape: AccountRoleStatus, location_name: "RoleStatus"))
     GetAdminAccountResponse.struct_class = Types::GetAdminAccountResponse
 
     GetComplianceDetailRequest.add_member(:policy_id, Shapes::ShapeRef.new(shape: PolicyId, required: true, location_name: "PolicyId"))
@@ -117,6 +135,9 @@ module Aws::FMS
     GetPolicyResponse.add_member(:policy_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "PolicyArn"))
     GetPolicyResponse.struct_class = Types::GetPolicyResponse
 
+    IssueInfoMap.key = Shapes::ShapeRef.new(shape: DependentServiceName)
+    IssueInfoMap.value = Shapes::ShapeRef.new(shape: DetailedInfo)
+
     ListComplianceStatusRequest.add_member(:policy_id, Shapes::ShapeRef.new(shape: PolicyId, required: true, location_name: "PolicyId"))
     ListComplianceStatusRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: PaginationToken, location_name: "NextToken"))
     ListComplianceStatusRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: PaginationMaxResults, location_name: "MaxResults"))
@@ -126,6 +147,14 @@ module Aws::FMS
     ListComplianceStatusResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: PaginationToken, location_name: "NextToken"))
     ListComplianceStatusResponse.struct_class = Types::ListComplianceStatusResponse
 
+    ListMemberAccountsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: PaginationToken, location_name: "NextToken"))
+    ListMemberAccountsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: PaginationMaxResults, location_name: "MaxResults"))
+    ListMemberAccountsRequest.struct_class = Types::ListMemberAccountsRequest
+
+    ListMemberAccountsResponse.add_member(:member_accounts, Shapes::ShapeRef.new(shape: MemberAccounts, location_name: "MemberAccounts"))
+    ListMemberAccountsResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: PaginationToken, location_name: "NextToken"))
+    ListMemberAccountsResponse.struct_class = Types::ListMemberAccountsResponse
+
     ListPoliciesRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: PaginationToken, location_name: "NextToken"))
     ListPoliciesRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: PaginationMaxResults, location_name: "MaxResults"))
     ListPoliciesRequest.struct_class = Types::ListPoliciesRequest
@@ -134,6 +163,8 @@ module Aws::FMS
     ListPoliciesResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: PaginationToken, location_name: "NextToken"))
     ListPoliciesResponse.struct_class = Types::ListPoliciesResponse
 
+    MemberAccounts.member = Shapes::ShapeRef.new(shape: AWSAccountId)
+
     Policy.add_member(:policy_id, Shapes::ShapeRef.new(shape: PolicyId, location_name: "PolicyId"))
     Policy.add_member(:policy_name, Shapes::ShapeRef.new(shape: ResourceName, required: true, location_name: "PolicyName"))
     Policy.add_member(:policy_update_token, Shapes::ShapeRef.new(shape: PolicyUpdateToken, location_name: "PolicyUpdateToken"))
@@ -142,6 +173,8 @@ module Aws::FMS
     Policy.add_member(:resource_tags, Shapes::ShapeRef.new(shape: ResourceTags, location_name: "ResourceTags"))
     Policy.add_member(:exclude_resource_tags, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "ExcludeResourceTags"))
     Policy.add_member(:remediation_enabled, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "RemediationEnabled"))
+    Policy.add_member(:include_map, Shapes::ShapeRef.new(shape: CustomerPolicyScopeMap, location_name: "IncludeMap"))
+    Policy.add_member(:exclude_map, Shapes::ShapeRef.new(shape: CustomerPolicyScopeMap, location_name: "ExcludeMap"))
     Policy.struct_class = Types::Policy
 
     PolicyComplianceDetail.add_member(:policy_owner, Shapes::ShapeRef.new(shape: AWSAccountId, location_name: "PolicyOwner"))
@@ -150,6 +183,7 @@ module Aws::FMS
     PolicyComplianceDetail.add_member(:violators, Shapes::ShapeRef.new(shape: ComplianceViolators, location_name: "Violators"))
     PolicyComplianceDetail.add_member(:evaluation_limit_exceeded, Shapes::ShapeRef.new(shape: Boolean, location_name: "EvaluationLimitExceeded"))
     PolicyComplianceDetail.add_member(:expired_at, Shapes::ShapeRef.new(shape: TimeStamp, location_name: "ExpiredAt"))
+    PolicyComplianceDetail.add_member(:issue_info_map, Shapes::ShapeRef.new(shape: IssueInfoMap, location_name: "IssueInfoMap"))
     PolicyComplianceDetail.struct_class = Types::PolicyComplianceDetail
 
     PolicyComplianceStatus.add_member(:policy_owner, Shapes::ShapeRef.new(shape: AWSAccountId, location_name: "PolicyOwner"))
@@ -158,6 +192,7 @@ module Aws::FMS
     PolicyComplianceStatus.add_member(:member_account, Shapes::ShapeRef.new(shape: AWSAccountId, location_name: "MemberAccount"))
     PolicyComplianceStatus.add_member(:evaluation_results, Shapes::ShapeRef.new(shape: EvaluationResults, location_name: "EvaluationResults"))
     PolicyComplianceStatus.add_member(:last_updated, Shapes::ShapeRef.new(shape: TimeStamp, location_name: "LastUpdated"))
+    PolicyComplianceStatus.add_member(:issue_info_map, Shapes::ShapeRef.new(shape: IssueInfoMap, location_name: "IssueInfoMap"))
     PolicyComplianceStatus.struct_class = Types::PolicyComplianceStatus
 
     PolicyComplianceStatusList.member = Shapes::ShapeRef.new(shape: PolicyComplianceStatus)
@@ -298,6 +333,7 @@ module Aws::FMS
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidOperationException)
         o.errors << Shapes::ShapeRef.new(shape: InternalErrorException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidTypeException)
       end)
 
       api.add_operation(:list_compliance_status, Seahorse::Model::Operation.new.tap do |o|
@@ -310,6 +346,16 @@ module Aws::FMS
         o.errors << Shapes::ShapeRef.new(shape: InternalErrorException)
       end)
 
+      api.add_operation(:list_member_accounts, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "ListMemberAccounts"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: ListMemberAccountsRequest)
+        o.output = Shapes::ShapeRef.new(shape: ListMemberAccountsResponse)
+        o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalErrorException)
+      end)
+
       api.add_operation(:list_policies, Seahorse::Model::Operation.new.tap do |o|
         o.name = "ListPolicies"
         o.http_method = "POST"
@@ -342,7 +388,9 @@ module Aws::FMS
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidOperationException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidInputException)
+        o.errors << Shapes::ShapeRef.new(shape: LimitExceededException)
         o.errors << Shapes::ShapeRef.new(shape: InternalErrorException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidTypeException)
       end)
     end
 

data/lib/aws-sdk-fms/types.rb

@@ -135,10 +135,16 @@ module Aws::FMS
     #   administrator.
     #   @return [String]
     #
+    # @!attribute [rw] role_status
+    #   The status of the AWS account that you set as the AWS Firewall
+    #   Manager administrator.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/fms-2018-01-01/GetAdminAccountResponse AWS API Documentation
     #
     class GetAdminAccountResponse < Struct.new(
-      :admin_account)
+      :admin_account,
+      :role_status)
       include Aws::Structure
     end
 
@@ -302,6 +308,60 @@ module Aws::FMS
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass ListMemberAccountsRequest
+    #   data as a hash:
+    #
+    #       {
+    #         next_token: "PaginationToken",
+    #         max_results: 1,
+    #       }
+    #
+    # @!attribute [rw] next_token
+    #   If you specify a value for `MaxResults` and you have more account
+    #   IDs than the number that you specify for `MaxResults`, AWS Firewall
+    #   Manager returns a `NextToken` value in the response that allows you
+    #   to list another group of IDs. For the second and subsequent
+    #   `ListMemberAccountsRequest` requests, specify the value of
+    #   `NextToken` from the previous response to get information about
+    #   another batch of member account IDs.
+    #   @return [String]
+    #
+    # @!attribute [rw] max_results
+    #   Specifies the number of member account IDs that you want AWS
+    #   Firewall Manager to return for this request. If you have more IDs
+    #   than the number that you specify for `MaxResults`, the response
+    #   includes a `NextToken` value that you can use to get another batch
+    #   of member account IDs. The maximum value for `MaxResults` is 100.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/fms-2018-01-01/ListMemberAccountsRequest AWS API Documentation
+    #
+    class ListMemberAccountsRequest < Struct.new(
+      :next_token,
+      :max_results)
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] member_accounts
+    #   An array of account IDs.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] next_token
+    #   If you have more member account IDs than the number that you
+    #   specified for `MaxResults` in the request, the response includes a
+    #   `NextToken` value. To list more IDs, submit another
+    #   `ListMemberAccounts` request, and specify the `NextToken` value from
+    #   the response in the `NextToken` value in the next request.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/fms-2018-01-01/ListMemberAccountsResponse AWS API Documentation
+    #
+    class ListMemberAccountsResponse < Struct.new(
+      :member_accounts,
+      :next_token)
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass ListPoliciesRequest
     #   data as a hash:
     #
@@ -379,6 +439,12 @@ module Aws::FMS
     #         ],
     #         exclude_resource_tags: false, # required
     #         remediation_enabled: false, # required
+    #         include_map: {
+    #           "ACCOUNT" => ["CustomerPolicyScopeId"],
+    #         },
+    #         exclude_map: {
+    #           "ACCOUNT" => ["CustomerPolicyScopeId"],
+    #         },
     #       }
     #
     # @!attribute [rw] policy_id
@@ -430,6 +496,27 @@ module Aws::FMS
     #   resources.
     #   @return [Boolean]
     #
+    # @!attribute [rw] include_map
+    #   Specifies the AWS account IDs to include in the policy. If
+    #   `IncludeMap` is null, all accounts in the AWS Organization are
+    #   included in the policy. If `IncludeMap` is not null, only values
+    #   listed in `IncludeMap` will be included in the policy.
+    #
+    #   The key to the map is `ACCOUNT`. For example, a valid `IncludeMap`
+    #   would be `\{“ACCOUNT” : [“accountID1”, “accountID2”]\}`.
+    #   @return [Hash<String,Array<String>>]
+    #
+    # @!attribute [rw] exclude_map
+    #   Specifies the AWS account IDs to exclude from the policy. The
+    #   `IncludeMap` values are evaluated first, with all of the appropriate
+    #   account IDs added to the policy. Then the accounts listed in
+    #   `ExcludeMap` are removed, resulting in the final list of accounts to
+    #   add to the policy.
+    #
+    #   The key to the map is `ACCOUNT`. For example, a valid `ExcludeMap`
+    #   would be `\{“ACCOUNT” : [“accountID1”, “accountID2”]\}`.
+    #   @return [Hash<String,Array<String>>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/fms-2018-01-01/Policy AWS API Documentation
     #
     class Policy < Struct.new(
@@ -440,7 +527,9 @@ module Aws::FMS
       :resource_type,
       :resource_tags,
       :exclude_resource_tags,
-      :remediation_enabled)
+      :remediation_enabled,
+      :include_map,
+      :exclude_map)
       include Aws::Structure
     end
 
@@ -475,6 +564,13 @@ module Aws::FMS
     #   considered out-of-date.
     #   @return [Time]
     #
+    # @!attribute [rw] issue_info_map
+    #   Details about problems with dependent services, such as AWS WAF or
+    #   AWS Config, that are causing a resource to be non-compliant. The
+    #   details include the name of the dependent service and the error
+    #   message recieved indicating the problem with the service.
+    #   @return [Hash<String,String>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/fms-2018-01-01/PolicyComplianceDetail AWS API Documentation
     #
     class PolicyComplianceDetail < Struct.new(
@@ -483,7 +579,8 @@ module Aws::FMS
       :member_account,
       :violators,
       :evaluation_limit_exceeded,
-      :expired_at)
+      :expired_at,
+      :issue_info_map)
       include Aws::Structure
     end
 
@@ -515,6 +612,13 @@ module Aws::FMS
     #   Time stamp of the last update to the `EvaluationResult` objects.
     #   @return [Time]
     #
+    # @!attribute [rw] issue_info_map
+    #   Details about problems with dependent services, such as AWS WAF or
+    #   AWS Config, that are causing a resource to be non-compliant. The
+    #   details include the name of the dependent service and the error
+    #   message recieved indicating the problem with the service.
+    #   @return [Hash<String,String>]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/fms-2018-01-01/PolicyComplianceStatus AWS API Documentation
     #
     class PolicyComplianceStatus < Struct.new(
@@ -523,7 +627,8 @@ module Aws::FMS
       :policy_name,
       :member_account,
       :evaluation_results,
-      :last_updated)
+      :last_updated,
+      :issue_info_map)
       include Aws::Structure
     end
 
@@ -622,6 +727,12 @@ module Aws::FMS
     #           ],
     #           exclude_resource_tags: false, # required
     #           remediation_enabled: false, # required
+    #           include_map: {
+    #             "ACCOUNT" => ["CustomerPolicyScopeId"],
+    #           },
+    #           exclude_map: {
+    #             "ACCOUNT" => ["CustomerPolicyScopeId"],
+    #           },
     #         },
     #       }
     #

data/lib/aws-sdk-fms.rb

@@ -42,6 +42,6 @@ require_relative 'aws-sdk-fms/customizations'
 # @service
 module Aws::FMS
 
-  GEM_VERSION = '1.3.0'
+  GEM_VERSION = '1.4.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-fms
 version: !ruby/object:Gem::Version
-  version: 1.3.0
+  version: 1.4.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2018-09-06 00:00:00.000000000 Z
+date: 2018-09-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core