aws-sdk-guardduty 1.33.0 → 1.38.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/aws-sdk-guardduty.rb +3 -1
- data/lib/aws-sdk-guardduty/client.rb +265 -22
- data/lib/aws-sdk-guardduty/client_api.rb +245 -0
- data/lib/aws-sdk-guardduty/errors.rb +2 -0
- data/lib/aws-sdk-guardduty/resource.rb +2 -0
- data/lib/aws-sdk-guardduty/types.rb +1009 -20
- metadata +4 -4
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: e16a488eb4196364c76eb70fb1f1d123ab6deda470c4453e4dce1cac0f8c3f82
|
4
|
+
data.tar.gz: bbf3e047f93c47a207135af6ea51c12eebcfe434f511235bd925fd2b38a784cb
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 34df1ac32e164b8e8b1b8c5aceae176c23f2640110a409a964de0602a9c9c9730a6f9b1a7191dfcd88b678b34c5d8e2f05ddddb43b69c8ffaef932b81e33e453
|
7
|
+
data.tar.gz: f94617eb995e5d49c949003aa0d82e4dcee24243affb9d97a43806ccf3a4d6050c7604d5dfce9ba3f407cf0a30fb05b1e819d9bfb8cca98fa4b5f7268c6e4026
|
data/lib/aws-sdk-guardduty.rb
CHANGED
@@ -1,3 +1,5 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
1
3
|
# WARNING ABOUT GENERATED CODE
|
2
4
|
#
|
3
5
|
# This file is generated. See the contributing guide for more information:
|
@@ -45,6 +47,6 @@ require_relative 'aws-sdk-guardduty/customizations'
|
|
45
47
|
# @service
|
46
48
|
module Aws::GuardDuty
|
47
49
|
|
48
|
-
GEM_VERSION = '1.
|
50
|
+
GEM_VERSION = '1.38.0'
|
49
51
|
|
50
52
|
end
|
@@ -1,3 +1,5 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
1
3
|
# WARNING ABOUT GENERATED CODE
|
2
4
|
#
|
3
5
|
# This file is generated. See the contributing guide for more information:
|
@@ -24,6 +26,7 @@ require 'aws-sdk-core/plugins/jsonvalue_converter.rb'
|
|
24
26
|
require 'aws-sdk-core/plugins/client_metrics_plugin.rb'
|
25
27
|
require 'aws-sdk-core/plugins/client_metrics_send_plugin.rb'
|
26
28
|
require 'aws-sdk-core/plugins/transfer_encoding.rb'
|
29
|
+
require 'aws-sdk-core/plugins/http_checksum.rb'
|
27
30
|
require 'aws-sdk-core/plugins/signature_v4.rb'
|
28
31
|
require 'aws-sdk-core/plugins/protocols/rest_json.rb'
|
29
32
|
|
@@ -69,6 +72,7 @@ module Aws::GuardDuty
|
|
69
72
|
add_plugin(Aws::Plugins::ClientMetricsPlugin)
|
70
73
|
add_plugin(Aws::Plugins::ClientMetricsSendPlugin)
|
71
74
|
add_plugin(Aws::Plugins::TransferEncoding)
|
75
|
+
add_plugin(Aws::Plugins::HttpChecksum)
|
72
76
|
add_plugin(Aws::Plugins::SignatureV4)
|
73
77
|
add_plugin(Aws::Plugins::Protocols::RestJson)
|
74
78
|
|
@@ -161,7 +165,7 @@ module Aws::GuardDuty
|
|
161
165
|
# @option options [String] :endpoint
|
162
166
|
# The client endpoint is normally constructed from the `:region`
|
163
167
|
# option. You should only configure an `:endpoint` when connecting
|
164
|
-
# to test endpoints. This should be a valid HTTP(S) URI.
|
168
|
+
# to test or custom endpoints. This should be a valid HTTP(S) URI.
|
165
169
|
#
|
166
170
|
# @option options [Integer] :endpoint_cache_max_entries (1000)
|
167
171
|
# Used for the maximum size limit of the LRU cache storing endpoints data
|
@@ -376,7 +380,8 @@ module Aws::GuardDuty
|
|
376
380
|
# Creates a single Amazon GuardDuty detector. A detector is a resource
|
377
381
|
# that represents the GuardDuty service. To start using GuardDuty, you
|
378
382
|
# must create a detector in each Region where you enable the service.
|
379
|
-
# You can have only one detector per account per Region.
|
383
|
+
# You can have only one detector per account per Region. All data
|
384
|
+
# sources are enabled in a new detector by default.
|
380
385
|
#
|
381
386
|
# @option params [required, Boolean] :enable
|
382
387
|
# A Boolean value that specifies whether the detector is to be enabled.
|
@@ -391,6 +396,10 @@ module Aws::GuardDuty
|
|
391
396
|
# An enum value that specifies how frequently updated findings are
|
392
397
|
# exported.
|
393
398
|
#
|
399
|
+
# @option params [Types::DataSourceConfigurations] :data_sources
|
400
|
+
# An object that describes which data sources will be enabled for the
|
401
|
+
# detector.
|
402
|
+
#
|
394
403
|
# @option params [Hash<String,String>] :tags
|
395
404
|
# The tags to be added to a new detector resource.
|
396
405
|
#
|
@@ -404,6 +413,11 @@ module Aws::GuardDuty
|
|
404
413
|
# enable: false, # required
|
405
414
|
# client_token: "ClientToken",
|
406
415
|
# finding_publishing_frequency: "FIFTEEN_MINUTES", # accepts FIFTEEN_MINUTES, ONE_HOUR, SIX_HOURS
|
416
|
+
# data_sources: {
|
417
|
+
# s3_logs: {
|
418
|
+
# enable: false, # required
|
419
|
+
# },
|
420
|
+
# },
|
407
421
|
# tags: {
|
408
422
|
# "TagKey" => "TagValue",
|
409
423
|
# },
|
@@ -637,7 +651,8 @@ module Aws::GuardDuty
|
|
637
651
|
# The format of the file that contains the IPSet.
|
638
652
|
#
|
639
653
|
# @option params [required, String] :location
|
640
|
-
# The URI of the file that contains the IPSet.
|
654
|
+
# The URI of the file that contains the IPSet. For example:
|
655
|
+
# https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
641
656
|
#
|
642
657
|
# @option params [required, Boolean] :activate
|
643
658
|
# A Boolean value that indicates whether GuardDuty is to start using the
|
@@ -684,8 +699,22 @@ module Aws::GuardDuty
|
|
684
699
|
end
|
685
700
|
|
686
701
|
# Creates member accounts of the current AWS account by specifying a
|
687
|
-
# list of AWS account IDs.
|
688
|
-
#
|
702
|
+
# list of AWS account IDs. This step is a prerequisite for managing the
|
703
|
+
# associated member accounts either by invitation or through an
|
704
|
+
# organization.
|
705
|
+
#
|
706
|
+
# When using `Create Members` as an organizations delegated
|
707
|
+
# administrator this action will enable GuardDuty in the added member
|
708
|
+
# accounts, with the exception of the organization master account, which
|
709
|
+
# must enable GuardDuty prior to being added as a member.
|
710
|
+
#
|
711
|
+
# If you are adding accounts by invitation use this action after
|
712
|
+
# GuardDuty has been enabled in potential member accounts and before
|
713
|
+
# using [ `Invite Members` ][1].
|
714
|
+
#
|
715
|
+
#
|
716
|
+
#
|
717
|
+
# [1]: https://docs.aws.amazon.com/guardduty/latest/APIReference/API_InviteMembers.html
|
689
718
|
#
|
690
719
|
# @option params [required, String] :detector_id
|
691
720
|
# The unique ID of the detector of the GuardDuty account that you want
|
@@ -822,7 +851,8 @@ module Aws::GuardDuty
|
|
822
851
|
# The format of the file that contains the ThreatIntelSet.
|
823
852
|
#
|
824
853
|
# @option params [required, String] :location
|
825
|
-
# The URI of the file that contains the ThreatIntelSet.
|
854
|
+
# The URI of the file that contains the ThreatIntelSet. For example:
|
855
|
+
# https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
826
856
|
#
|
827
857
|
# @option params [required, Boolean] :activate
|
828
858
|
# A Boolean value that indicates whether GuardDuty is to start using the
|
@@ -1110,6 +1140,7 @@ module Aws::GuardDuty
|
|
1110
1140
|
#
|
1111
1141
|
# * {Types::DescribeOrganizationConfigurationResponse#auto_enable #auto_enable} => Boolean
|
1112
1142
|
# * {Types::DescribeOrganizationConfigurationResponse#member_account_limit_reached #member_account_limit_reached} => Boolean
|
1143
|
+
# * {Types::DescribeOrganizationConfigurationResponse#data_sources #data_sources} => Types::OrganizationDataSourceConfigurationsResult
|
1113
1144
|
#
|
1114
1145
|
# @example Request syntax with placeholder values
|
1115
1146
|
#
|
@@ -1121,6 +1152,7 @@ module Aws::GuardDuty
|
|
1121
1152
|
#
|
1122
1153
|
# resp.auto_enable #=> Boolean
|
1123
1154
|
# resp.member_account_limit_reached #=> Boolean
|
1155
|
+
# resp.data_sources.s3_logs.auto_enable #=> Boolean
|
1124
1156
|
#
|
1125
1157
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DescribeOrganizationConfiguration AWS API Documentation
|
1126
1158
|
#
|
@@ -1294,6 +1326,7 @@ module Aws::GuardDuty
|
|
1294
1326
|
# * {Types::GetDetectorResponse#service_role #service_role} => String
|
1295
1327
|
# * {Types::GetDetectorResponse#status #status} => String
|
1296
1328
|
# * {Types::GetDetectorResponse#updated_at #updated_at} => String
|
1329
|
+
# * {Types::GetDetectorResponse#data_sources #data_sources} => Types::DataSourceConfigurationsResult
|
1297
1330
|
# * {Types::GetDetectorResponse#tags #tags} => Hash<String,String>
|
1298
1331
|
#
|
1299
1332
|
# @example Request syntax with placeholder values
|
@@ -1309,6 +1342,10 @@ module Aws::GuardDuty
|
|
1309
1342
|
# resp.service_role #=> String
|
1310
1343
|
# resp.status #=> String, one of "ENABLED", "DISABLED"
|
1311
1344
|
# resp.updated_at #=> String
|
1345
|
+
# resp.data_sources.cloud_trail.status #=> String, one of "ENABLED", "DISABLED"
|
1346
|
+
# resp.data_sources.dns_logs.status #=> String, one of "ENABLED", "DISABLED"
|
1347
|
+
# resp.data_sources.flow_logs.status #=> String, one of "ENABLED", "DISABLED"
|
1348
|
+
# resp.data_sources.s3_logs.status #=> String, one of "ENABLED", "DISABLED"
|
1312
1349
|
# resp.tags #=> Hash
|
1313
1350
|
# resp.tags["TagKey"] #=> String
|
1314
1351
|
#
|
@@ -1422,6 +1459,30 @@ module Aws::GuardDuty
|
|
1422
1459
|
# resp.findings[0].resource.access_key_details.principal_id #=> String
|
1423
1460
|
# resp.findings[0].resource.access_key_details.user_name #=> String
|
1424
1461
|
# resp.findings[0].resource.access_key_details.user_type #=> String
|
1462
|
+
# resp.findings[0].resource.s3_bucket_details #=> Array
|
1463
|
+
# resp.findings[0].resource.s3_bucket_details[0].arn #=> String
|
1464
|
+
# resp.findings[0].resource.s3_bucket_details[0].name #=> String
|
1465
|
+
# resp.findings[0].resource.s3_bucket_details[0].type #=> String
|
1466
|
+
# resp.findings[0].resource.s3_bucket_details[0].created_at #=> Time
|
1467
|
+
# resp.findings[0].resource.s3_bucket_details[0].owner.id #=> String
|
1468
|
+
# resp.findings[0].resource.s3_bucket_details[0].tags #=> Array
|
1469
|
+
# resp.findings[0].resource.s3_bucket_details[0].tags[0].key #=> String
|
1470
|
+
# resp.findings[0].resource.s3_bucket_details[0].tags[0].value #=> String
|
1471
|
+
# resp.findings[0].resource.s3_bucket_details[0].default_server_side_encryption.encryption_type #=> String
|
1472
|
+
# resp.findings[0].resource.s3_bucket_details[0].default_server_side_encryption.kms_master_key_arn #=> String
|
1473
|
+
# resp.findings[0].resource.s3_bucket_details[0].public_access.permission_configuration.bucket_level_permissions.access_control_list.allows_public_read_access #=> Boolean
|
1474
|
+
# resp.findings[0].resource.s3_bucket_details[0].public_access.permission_configuration.bucket_level_permissions.access_control_list.allows_public_write_access #=> Boolean
|
1475
|
+
# resp.findings[0].resource.s3_bucket_details[0].public_access.permission_configuration.bucket_level_permissions.bucket_policy.allows_public_read_access #=> Boolean
|
1476
|
+
# resp.findings[0].resource.s3_bucket_details[0].public_access.permission_configuration.bucket_level_permissions.bucket_policy.allows_public_write_access #=> Boolean
|
1477
|
+
# resp.findings[0].resource.s3_bucket_details[0].public_access.permission_configuration.bucket_level_permissions.block_public_access.ignore_public_acls #=> Boolean
|
1478
|
+
# resp.findings[0].resource.s3_bucket_details[0].public_access.permission_configuration.bucket_level_permissions.block_public_access.restrict_public_buckets #=> Boolean
|
1479
|
+
# resp.findings[0].resource.s3_bucket_details[0].public_access.permission_configuration.bucket_level_permissions.block_public_access.block_public_acls #=> Boolean
|
1480
|
+
# resp.findings[0].resource.s3_bucket_details[0].public_access.permission_configuration.bucket_level_permissions.block_public_access.block_public_policy #=> Boolean
|
1481
|
+
# resp.findings[0].resource.s3_bucket_details[0].public_access.permission_configuration.account_level_permissions.block_public_access.ignore_public_acls #=> Boolean
|
1482
|
+
# resp.findings[0].resource.s3_bucket_details[0].public_access.permission_configuration.account_level_permissions.block_public_access.restrict_public_buckets #=> Boolean
|
1483
|
+
# resp.findings[0].resource.s3_bucket_details[0].public_access.permission_configuration.account_level_permissions.block_public_access.block_public_acls #=> Boolean
|
1484
|
+
# resp.findings[0].resource.s3_bucket_details[0].public_access.permission_configuration.account_level_permissions.block_public_access.block_public_policy #=> Boolean
|
1485
|
+
# resp.findings[0].resource.s3_bucket_details[0].public_access.effective_permission #=> String
|
1425
1486
|
# resp.findings[0].resource.instance_details.availability_zone #=> String
|
1426
1487
|
# resp.findings[0].resource.instance_details.iam_instance_profile.arn #=> String
|
1427
1488
|
# resp.findings[0].resource.instance_details.iam_instance_profile.id #=> String
|
@@ -1682,6 +1743,48 @@ module Aws::GuardDuty
|
|
1682
1743
|
req.send_request(options)
|
1683
1744
|
end
|
1684
1745
|
|
1746
|
+
# Describes which data sources are enabled for the member account's
|
1747
|
+
# detector.
|
1748
|
+
#
|
1749
|
+
# @option params [required, String] :detector_id
|
1750
|
+
# The detector ID for the master account.
|
1751
|
+
#
|
1752
|
+
# @option params [required, Array<String>] :account_ids
|
1753
|
+
# The account ID of the member account.
|
1754
|
+
#
|
1755
|
+
# @return [Types::GetMemberDetectorsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
1756
|
+
#
|
1757
|
+
# * {Types::GetMemberDetectorsResponse#member_data_source_configurations #member_data_source_configurations} => Array<Types::MemberDataSourceConfiguration>
|
1758
|
+
# * {Types::GetMemberDetectorsResponse#unprocessed_accounts #unprocessed_accounts} => Array<Types::UnprocessedAccount>
|
1759
|
+
#
|
1760
|
+
# @example Request syntax with placeholder values
|
1761
|
+
#
|
1762
|
+
# resp = client.get_member_detectors({
|
1763
|
+
# detector_id: "DetectorId", # required
|
1764
|
+
# account_ids: ["AccountId"], # required
|
1765
|
+
# })
|
1766
|
+
#
|
1767
|
+
# @example Response structure
|
1768
|
+
#
|
1769
|
+
# resp.member_data_source_configurations #=> Array
|
1770
|
+
# resp.member_data_source_configurations[0].account_id #=> String
|
1771
|
+
# resp.member_data_source_configurations[0].data_sources.cloud_trail.status #=> String, one of "ENABLED", "DISABLED"
|
1772
|
+
# resp.member_data_source_configurations[0].data_sources.dns_logs.status #=> String, one of "ENABLED", "DISABLED"
|
1773
|
+
# resp.member_data_source_configurations[0].data_sources.flow_logs.status #=> String, one of "ENABLED", "DISABLED"
|
1774
|
+
# resp.member_data_source_configurations[0].data_sources.s3_logs.status #=> String, one of "ENABLED", "DISABLED"
|
1775
|
+
# resp.unprocessed_accounts #=> Array
|
1776
|
+
# resp.unprocessed_accounts[0].account_id #=> String
|
1777
|
+
# resp.unprocessed_accounts[0].result #=> String
|
1778
|
+
#
|
1779
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetMemberDetectors AWS API Documentation
|
1780
|
+
#
|
1781
|
+
# @overload get_member_detectors(params = {})
|
1782
|
+
# @param [Hash] params ({})
|
1783
|
+
def get_member_detectors(params = {}, options = {})
|
1784
|
+
req = build_request(:get_member_detectors, params)
|
1785
|
+
req.send_request(options)
|
1786
|
+
end
|
1787
|
+
|
1685
1788
|
# Retrieves GuardDuty member accounts (to the current GuardDuty master
|
1686
1789
|
# account) specified by the account IDs.
|
1687
1790
|
#
|
@@ -1771,6 +1874,92 @@ module Aws::GuardDuty
|
|
1771
1874
|
req.send_request(options)
|
1772
1875
|
end
|
1773
1876
|
|
1877
|
+
# Lists Amazon GuardDuty usage statistics over the last 30 days for the
|
1878
|
+
# specified detector ID. For newly enabled detectors or data sources the
|
1879
|
+
# cost returned will include only the usage so far under 30 days, this
|
1880
|
+
# may differ from the cost metrics in the console, which projects usage
|
1881
|
+
# over 30 days to provide a monthly cost estimate. For more information
|
1882
|
+
# see [Understanding How Usage Costs are Calculated][1].
|
1883
|
+
#
|
1884
|
+
#
|
1885
|
+
#
|
1886
|
+
# [1]: https://docs.aws.amazon.com/guardduty/latest/ug/monitoring_costs.html#usage-calculations
|
1887
|
+
#
|
1888
|
+
# @option params [required, String] :detector_id
|
1889
|
+
# The ID of the detector that specifies the GuardDuty service whose
|
1890
|
+
# usage statistics you want to retrieve.
|
1891
|
+
#
|
1892
|
+
# @option params [required, String] :usage_statistic_type
|
1893
|
+
# The type of usage statistics to retrieve.
|
1894
|
+
#
|
1895
|
+
# @option params [required, Types::UsageCriteria] :usage_criteria
|
1896
|
+
# Represents the criteria used for querying usage.
|
1897
|
+
#
|
1898
|
+
# @option params [String] :unit
|
1899
|
+
# The currency unit you would like to view your usage statistics in.
|
1900
|
+
# Current valid values are USD.
|
1901
|
+
#
|
1902
|
+
# @option params [Integer] :max_results
|
1903
|
+
# The maximum number of results to return in the response.
|
1904
|
+
#
|
1905
|
+
# @option params [String] :next_token
|
1906
|
+
# A token to use for paginating results that are returned in the
|
1907
|
+
# response. Set the value of this parameter to null for the first
|
1908
|
+
# request to a list action. For subsequent calls, use the NextToken
|
1909
|
+
# value returned from the previous request to continue listing results
|
1910
|
+
# after the first page.
|
1911
|
+
#
|
1912
|
+
# @return [Types::GetUsageStatisticsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
1913
|
+
#
|
1914
|
+
# * {Types::GetUsageStatisticsResponse#usage_statistics #usage_statistics} => Types::UsageStatistics
|
1915
|
+
# * {Types::GetUsageStatisticsResponse#next_token #next_token} => String
|
1916
|
+
#
|
1917
|
+
# The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
|
1918
|
+
#
|
1919
|
+
# @example Request syntax with placeholder values
|
1920
|
+
#
|
1921
|
+
# resp = client.get_usage_statistics({
|
1922
|
+
# detector_id: "DetectorId", # required
|
1923
|
+
# usage_statistic_type: "SUM_BY_ACCOUNT", # required, accepts SUM_BY_ACCOUNT, SUM_BY_DATA_SOURCE, SUM_BY_RESOURCE, TOP_RESOURCES
|
1924
|
+
# usage_criteria: { # required
|
1925
|
+
# account_ids: ["AccountId"],
|
1926
|
+
# data_sources: ["FLOW_LOGS"], # required, accepts FLOW_LOGS, CLOUD_TRAIL, DNS_LOGS, S3_LOGS
|
1927
|
+
# resources: ["String"],
|
1928
|
+
# },
|
1929
|
+
# unit: "String",
|
1930
|
+
# max_results: 1,
|
1931
|
+
# next_token: "String",
|
1932
|
+
# })
|
1933
|
+
#
|
1934
|
+
# @example Response structure
|
1935
|
+
#
|
1936
|
+
# resp.usage_statistics.sum_by_account #=> Array
|
1937
|
+
# resp.usage_statistics.sum_by_account[0].account_id #=> String
|
1938
|
+
# resp.usage_statistics.sum_by_account[0].total.amount #=> String
|
1939
|
+
# resp.usage_statistics.sum_by_account[0].total.unit #=> String
|
1940
|
+
# resp.usage_statistics.sum_by_data_source #=> Array
|
1941
|
+
# resp.usage_statistics.sum_by_data_source[0].data_source #=> String, one of "FLOW_LOGS", "CLOUD_TRAIL", "DNS_LOGS", "S3_LOGS"
|
1942
|
+
# resp.usage_statistics.sum_by_data_source[0].total.amount #=> String
|
1943
|
+
# resp.usage_statistics.sum_by_data_source[0].total.unit #=> String
|
1944
|
+
# resp.usage_statistics.sum_by_resource #=> Array
|
1945
|
+
# resp.usage_statistics.sum_by_resource[0].resource #=> String
|
1946
|
+
# resp.usage_statistics.sum_by_resource[0].total.amount #=> String
|
1947
|
+
# resp.usage_statistics.sum_by_resource[0].total.unit #=> String
|
1948
|
+
# resp.usage_statistics.top_resources #=> Array
|
1949
|
+
# resp.usage_statistics.top_resources[0].resource #=> String
|
1950
|
+
# resp.usage_statistics.top_resources[0].total.amount #=> String
|
1951
|
+
# resp.usage_statistics.top_resources[0].total.unit #=> String
|
1952
|
+
# resp.next_token #=> String
|
1953
|
+
#
|
1954
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/GetUsageStatistics AWS API Documentation
|
1955
|
+
#
|
1956
|
+
# @overload get_usage_statistics(params = {})
|
1957
|
+
# @param [Hash] params ({})
|
1958
|
+
def get_usage_statistics(params = {}, options = {})
|
1959
|
+
req = build_request(:get_usage_statistics, params)
|
1960
|
+
req.send_request(options)
|
1961
|
+
end
|
1962
|
+
|
1774
1963
|
# Invites other AWS accounts (created as members of the current AWS
|
1775
1964
|
# account by CreateMembers) to enable GuardDuty, and allow the current
|
1776
1965
|
# AWS account to view and manage these accounts' GuardDuty findings on
|
@@ -1786,12 +1975,12 @@ module Aws::GuardDuty
|
|
1786
1975
|
#
|
1787
1976
|
# @option params [Boolean] :disable_email_notification
|
1788
1977
|
# A Boolean value that specifies whether you want to disable email
|
1789
|
-
# notification to the accounts that you
|
1978
|
+
# notification to the accounts that you are inviting to GuardDuty as
|
1790
1979
|
# members.
|
1791
1980
|
#
|
1792
1981
|
# @option params [String] :message
|
1793
1982
|
# The invitation message that you want to send to the accounts that
|
1794
|
-
# you
|
1983
|
+
# you're inviting to GuardDuty as members.
|
1795
1984
|
#
|
1796
1985
|
# @return [Types::InviteMembersResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
1797
1986
|
#
|
@@ -1946,8 +2135,6 @@ module Aws::GuardDuty
|
|
1946
2135
|
#
|
1947
2136
|
# * resource.instanceDetails.instanceId
|
1948
2137
|
#
|
1949
|
-
# * resource.instanceDetails.outpostArn
|
1950
|
-
#
|
1951
2138
|
# * resource.instanceDetails.networkInterfaces.ipv6Addresses
|
1952
2139
|
#
|
1953
2140
|
# * resource.instanceDetails.networkInterfaces.privateIpAddresses.privateIpAddress
|
@@ -1998,8 +2185,6 @@ module Aws::GuardDuty
|
|
1998
2185
|
#
|
1999
2186
|
# * service.action.networkConnectionAction.protocol
|
2000
2187
|
#
|
2001
|
-
# * service.action.networkConnectionAction.localIpDetails.ipAddressV4
|
2002
|
-
#
|
2003
2188
|
# * service.action.networkConnectionAction.remoteIpDetails.city.cityName
|
2004
2189
|
#
|
2005
2190
|
# * service.action.networkConnectionAction.remoteIpDetails.country.countryName
|
@@ -2194,8 +2379,8 @@ module Aws::GuardDuty
|
|
2194
2379
|
req.send_request(options)
|
2195
2380
|
end
|
2196
2381
|
|
2197
|
-
# Lists details about
|
2198
|
-
#
|
2382
|
+
# Lists details about all member accounts for the current GuardDuty
|
2383
|
+
# master account.
|
2199
2384
|
#
|
2200
2385
|
# @option params [required, String] :detector_id
|
2201
2386
|
# The unique ID of the detector the member is associated with.
|
@@ -2213,11 +2398,9 @@ module Aws::GuardDuty
|
|
2213
2398
|
# data.
|
2214
2399
|
#
|
2215
2400
|
# @option params [String] :only_associated
|
2216
|
-
# Specifies
|
2217
|
-
#
|
2218
|
-
#
|
2219
|
-
# member accounts (including members who haven't been invited yet or
|
2220
|
-
# have been disassociated).
|
2401
|
+
# Specifies whether to only return associated members or to return all
|
2402
|
+
# members (including members who haven't been invited yet or have been
|
2403
|
+
# disassociated).
|
2221
2404
|
#
|
2222
2405
|
# @return [Types::ListMembersResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
2223
2406
|
#
|
@@ -2596,6 +2779,9 @@ module Aws::GuardDuty
|
|
2596
2779
|
# An enum value that specifies how frequently findings are exported,
|
2597
2780
|
# such as to CloudWatch Events.
|
2598
2781
|
#
|
2782
|
+
# @option params [Types::DataSourceConfigurations] :data_sources
|
2783
|
+
# An object that describes which data sources will be updated.
|
2784
|
+
#
|
2599
2785
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
2600
2786
|
#
|
2601
2787
|
# @example Request syntax with placeholder values
|
@@ -2604,6 +2790,11 @@ module Aws::GuardDuty
|
|
2604
2790
|
# detector_id: "DetectorId", # required
|
2605
2791
|
# enable: false,
|
2606
2792
|
# finding_publishing_frequency: "FIFTEEN_MINUTES", # accepts FIFTEEN_MINUTES, ONE_HOUR, SIX_HOURS
|
2793
|
+
# data_sources: {
|
2794
|
+
# s3_logs: {
|
2795
|
+
# enable: false, # required
|
2796
|
+
# },
|
2797
|
+
# },
|
2607
2798
|
# })
|
2608
2799
|
#
|
2609
2800
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateDetector AWS API Documentation
|
@@ -2733,7 +2924,8 @@ module Aws::GuardDuty
|
|
2733
2924
|
# The unique ID that specifies the IPSet that you want to update.
|
2734
2925
|
#
|
2735
2926
|
# @option params [String] :location
|
2736
|
-
# The updated URI of the file that contains the IPSet.
|
2927
|
+
# The updated URI of the file that contains the IPSet. For example:
|
2928
|
+
# https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
2737
2929
|
#
|
2738
2930
|
# @option params [Boolean] :activate
|
2739
2931
|
# The updated Boolean value that specifies whether the IPSet is active
|
@@ -2760,6 +2952,48 @@ module Aws::GuardDuty
|
|
2760
2952
|
req.send_request(options)
|
2761
2953
|
end
|
2762
2954
|
|
2955
|
+
# Contains information on member accounts to be updated.
|
2956
|
+
#
|
2957
|
+
# @option params [required, String] :detector_id
|
2958
|
+
# The detector ID of the master account.
|
2959
|
+
#
|
2960
|
+
# @option params [required, Array<String>] :account_ids
|
2961
|
+
# A list of member account IDs to be updated.
|
2962
|
+
#
|
2963
|
+
# @option params [Types::DataSourceConfigurations] :data_sources
|
2964
|
+
# An object describes which data sources will be updated.
|
2965
|
+
#
|
2966
|
+
# @return [Types::UpdateMemberDetectorsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
2967
|
+
#
|
2968
|
+
# * {Types::UpdateMemberDetectorsResponse#unprocessed_accounts #unprocessed_accounts} => Array<Types::UnprocessedAccount>
|
2969
|
+
#
|
2970
|
+
# @example Request syntax with placeholder values
|
2971
|
+
#
|
2972
|
+
# resp = client.update_member_detectors({
|
2973
|
+
# detector_id: "DetectorId", # required
|
2974
|
+
# account_ids: ["AccountId"], # required
|
2975
|
+
# data_sources: {
|
2976
|
+
# s3_logs: {
|
2977
|
+
# enable: false, # required
|
2978
|
+
# },
|
2979
|
+
# },
|
2980
|
+
# })
|
2981
|
+
#
|
2982
|
+
# @example Response structure
|
2983
|
+
#
|
2984
|
+
# resp.unprocessed_accounts #=> Array
|
2985
|
+
# resp.unprocessed_accounts[0].account_id #=> String
|
2986
|
+
# resp.unprocessed_accounts[0].result #=> String
|
2987
|
+
#
|
2988
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateMemberDetectors AWS API Documentation
|
2989
|
+
#
|
2990
|
+
# @overload update_member_detectors(params = {})
|
2991
|
+
# @param [Hash] params ({})
|
2992
|
+
def update_member_detectors(params = {}, options = {})
|
2993
|
+
req = build_request(:update_member_detectors, params)
|
2994
|
+
req.send_request(options)
|
2995
|
+
end
|
2996
|
+
|
2763
2997
|
# Updates the delegated administrator account with the values provided.
|
2764
2998
|
#
|
2765
2999
|
# @option params [required, String] :detector_id
|
@@ -2769,6 +3003,9 @@ module Aws::GuardDuty
|
|
2769
3003
|
# Indicates whether to automatically enable member accounts in the
|
2770
3004
|
# organization.
|
2771
3005
|
#
|
3006
|
+
# @option params [Types::OrganizationDataSourceConfigurations] :data_sources
|
3007
|
+
# An object describes which data sources will be updated.
|
3008
|
+
#
|
2772
3009
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
2773
3010
|
#
|
2774
3011
|
# @example Request syntax with placeholder values
|
@@ -2776,6 +3013,11 @@ module Aws::GuardDuty
|
|
2776
3013
|
# resp = client.update_organization_configuration({
|
2777
3014
|
# detector_id: "DetectorId", # required
|
2778
3015
|
# auto_enable: false, # required
|
3016
|
+
# data_sources: {
|
3017
|
+
# s3_logs: {
|
3018
|
+
# auto_enable: false, # required
|
3019
|
+
# },
|
3020
|
+
# },
|
2779
3021
|
# })
|
2780
3022
|
#
|
2781
3023
|
# @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateOrganizationConfiguration AWS API Documentation
|
@@ -2838,7 +3080,8 @@ module Aws::GuardDuty
|
|
2838
3080
|
# update.
|
2839
3081
|
#
|
2840
3082
|
# @option params [String] :location
|
2841
|
-
# The updated URI of the file that contains the ThreateIntelSet.
|
3083
|
+
# The updated URI of the file that contains the ThreateIntelSet. For
|
3084
|
+
# example: https://s3.us-west-2.amazonaws.com/my-bucket/my-object-key.
|
2842
3085
|
#
|
2843
3086
|
# @option params [Boolean] :activate
|
2844
3087
|
# The updated Boolean value that specifies whether the ThreateIntelSet
|
@@ -2878,7 +3121,7 @@ module Aws::GuardDuty
|
|
2878
3121
|
params: params,
|
2879
3122
|
config: config)
|
2880
3123
|
context[:gem_name] = 'aws-sdk-guardduty'
|
2881
|
-
context[:gem_version] = '1.
|
3124
|
+
context[:gem_version] = '1.38.0'
|
2882
3125
|
Seahorse::Client::Request.new(handlers, context)
|
2883
3126
|
end
|
2884
3127
|
|