aws-sdk-guardduty 1.65.0 → 1.66.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: fa122ecb5a993e1f6cd51dfe75525340ace96b8aedb088e7653d73be01723290
4
- data.tar.gz: 3bd1d115fea8ced61bbd94478af39f5764f77ea315052f2d8af1916934f9aa5c
3
+ metadata.gz: c6356dfb2e391ad2d06a67b8a860b11e382be1184324673fe57bbe272df9b971
4
+ data.tar.gz: 6ad3443644cb9f9d91f3f87b6bab03d3c3128886cbc55274d9a9e64a2b16be6b
5
5
  SHA512:
6
- metadata.gz: 4c8bccf1baa869990f690b2fc3fdebceff68944155d3a822b1cf4f1cdf257af8ebeb848aa31c2b41192a8e2fa0d09cb64b3a2938123952b5328aa7064d5f7b5e
7
- data.tar.gz: e58fe1ed3921cda282e63e783239432d5b95974de9f7446c33a2c9792f2574d2ced35c8279fcb4243df302a7ce808700963f6a310572ff089cd7ac3ccc8dc131
6
+ metadata.gz: 538e231cfdadb79e2c7206569bb478b7083b946142fe82665f80c2db42e1abc0ec42d1a16580f4a72e02aee5171b334946ae8c62cb376995cacf8d5be5ddc9f3
7
+ data.tar.gz: e0088873fa2a9511eb70ab6294d1c89ced063b4259312d586243398cab52b843f58a88938cec78b8e6bf3b4b46ffadc6e1a1e6f49281e47ebe1dcd3602ce04ff
data/CHANGELOG.md CHANGED
@@ -1,6 +1,11 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.66.0 (2023-03-23)
5
+ ------------------
6
+
7
+ * Feature - Adds AutoEnableOrganizationMembers attribute to DescribeOrganizationConfiguration and UpdateOrganizationConfiguration APIs.
8
+
4
9
  1.65.0 (2023-03-16)
5
10
  ------------------
6
11
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.65.0
1
+ 1.66.0
@@ -1188,6 +1188,10 @@ module Aws::GuardDuty
1188
1188
  # Deletes GuardDuty member accounts (to the current GuardDuty
1189
1189
  # administrator account) specified by the account IDs.
1190
1190
  #
1191
+ # With `autoEnableOrganizationMembers` configuration for your
1192
+ # organization set to `ALL`, you'll receive an error if you attempt to
1193
+ # disable GuardDuty for a member account in your organization.
1194
+ #
1191
1195
  # @option params [required, String] :detector_id
1192
1196
  # The unique ID of the detector of the GuardDuty account whose members
1193
1197
  # you want to delete.
@@ -1417,6 +1421,7 @@ module Aws::GuardDuty
1417
1421
  # * {Types::DescribeOrganizationConfigurationResponse#data_sources #data_sources} => Types::OrganizationDataSourceConfigurationsResult
1418
1422
  # * {Types::DescribeOrganizationConfigurationResponse#features #features} => Array<Types::OrganizationFeatureConfigurationResult>
1419
1423
  # * {Types::DescribeOrganizationConfigurationResponse#next_token #next_token} => String
1424
+ # * {Types::DescribeOrganizationConfigurationResponse#auto_enable_organization_members #auto_enable_organization_members} => String
1420
1425
  #
1421
1426
  # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
1422
1427
  #
@@ -1439,6 +1444,7 @@ module Aws::GuardDuty
1439
1444
  # resp.features[0].name #=> String, one of "S3_DATA_EVENTS", "EKS_AUDIT_LOGS", "EBS_MALWARE_PROTECTION", "RDS_LOGIN_EVENTS"
1440
1445
  # resp.features[0].auto_enable #=> String, one of "NEW", "NONE"
1441
1446
  # resp.next_token #=> String
1447
+ # resp.auto_enable_organization_members #=> String, one of "NEW", "ALL", "NONE"
1442
1448
  #
1443
1449
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DescribeOrganizationConfiguration AWS API Documentation
1444
1450
  #
@@ -1519,6 +1525,10 @@ module Aws::GuardDuty
1519
1525
  # Disassociates the current GuardDuty member account from its
1520
1526
  # administrator account.
1521
1527
  #
1528
+ # With `autoEnableOrganizationMembers` configuration for your
1529
+ # organization set to `ALL`, you'll receive an error if you attempt to
1530
+ # disable GuardDuty in a member account.
1531
+ #
1522
1532
  # @option params [required, String] :detector_id
1523
1533
  # The unique ID of the detector of the GuardDuty member account.
1524
1534
  #
@@ -1565,6 +1575,11 @@ module Aws::GuardDuty
1565
1575
  # Disassociates GuardDuty member accounts (to the current administrator
1566
1576
  # account) specified by the account IDs.
1567
1577
  #
1578
+ # With `autoEnableOrganizationMembers` configuration for your
1579
+ # organization set to `ALL`, you'll receive an error if you attempt to
1580
+ # disassociate a member account before removing them from your Amazon
1581
+ # Web Services organization.
1582
+ #
1568
1583
  # @option params [required, String] :detector_id
1569
1584
  # The unique ID of the detector of the GuardDuty account whose members
1570
1585
  # you want to disassociate from the administrator account.
@@ -3264,7 +3279,11 @@ module Aws::GuardDuty
3264
3279
 
3265
3280
  # Turns on GuardDuty monitoring of the specified member accounts. Use
3266
3281
  # this operation to restart monitoring of accounts that you stopped
3267
- # monitoring with the `StopMonitoringMembers` operation.
3282
+ # monitoring with the [StopMonitoringMembers][1] operation.
3283
+ #
3284
+ #
3285
+ #
3286
+ # [1]: https://docs.aws.amazon.com/guardduty/latest/APIReference/API_StopMonitoringMembers.html
3268
3287
  #
3269
3288
  # @option params [required, String] :detector_id
3270
3289
  # The unique ID of the detector of the GuardDuty administrator account
@@ -3304,6 +3323,10 @@ module Aws::GuardDuty
3304
3323
  # `StartMonitoringMembers` operation to restart monitoring for those
3305
3324
  # accounts.
3306
3325
  #
3326
+ # With `autoEnableOrganizationMembers` configuration for your
3327
+ # organization set to `ALL`, you'll receive an error if you attempt to
3328
+ # stop monitoring the member accounts in your organization.
3329
+ #
3307
3330
  # @option params [required, String] :detector_id
3308
3331
  # The unique ID of the detector associated with the GuardDuty
3309
3332
  # administrator account that is monitoring member accounts.
@@ -3776,7 +3799,9 @@ module Aws::GuardDuty
3776
3799
  req.send_request(options)
3777
3800
  end
3778
3801
 
3779
- # Updates the delegated administrator account with the values provided.
3802
+ # Configures the delegated administrator account with the provided
3803
+ # values. You must provide the value for either
3804
+ # `autoEnableOrganizationMembers` or `autoEnable`.
3780
3805
  #
3781
3806
  # There might be regional differences because some data sources might
3782
3807
  # not be available in all the Amazon Web Services Regions where
@@ -3788,9 +3813,9 @@ module Aws::GuardDuty
3788
3813
  # [1]: https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_regions.html
3789
3814
  #
3790
3815
  # @option params [required, String] :detector_id
3791
- # The ID of the detector to update the delegated administrator for.
3816
+ # The ID of the detector that configures the delegated administrator.
3792
3817
  #
3793
- # @option params [required, Boolean] :auto_enable
3818
+ # @option params [Boolean] :auto_enable
3794
3819
  # Indicates whether to automatically enable member accounts in the
3795
3820
  # organization.
3796
3821
  #
@@ -3800,13 +3825,26 @@ module Aws::GuardDuty
3800
3825
  # @option params [Array<Types::OrganizationFeatureConfiguration>] :features
3801
3826
  # A list of features that will be configured for the organization.
3802
3827
  #
3828
+ # @option params [String] :auto_enable_organization_members
3829
+ # Indicates the auto-enablement configuration of GuardDuty for the
3830
+ # member accounts in the organization.
3831
+ #
3832
+ # * `NEW`: Indicates that new accounts joining the organization are
3833
+ # configured to have GuardDuty enabled automatically.
3834
+ #
3835
+ # * `ALL`: Indicates that all accounts (new and existing members) in the
3836
+ # organization are configured to have GuardDuty enabled automatically.
3837
+ #
3838
+ # * `NONE`: Indicates that no account in the organization will be
3839
+ # configured to have GuardDuty enabled automatically.
3840
+ #
3803
3841
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
3804
3842
  #
3805
3843
  # @example Request syntax with placeholder values
3806
3844
  #
3807
3845
  # resp = client.update_organization_configuration({
3808
3846
  # detector_id: "DetectorId", # required
3809
- # auto_enable: false, # required
3847
+ # auto_enable: false,
3810
3848
  # data_sources: {
3811
3849
  # s3_logs: {
3812
3850
  # auto_enable: false, # required
@@ -3830,6 +3868,7 @@ module Aws::GuardDuty
3830
3868
  # auto_enable: "NEW", # accepts NEW, NONE
3831
3869
  # },
3832
3870
  # ],
3871
+ # auto_enable_organization_members: "NEW", # accepts NEW, ALL, NONE
3833
3872
  # })
3834
3873
  #
3835
3874
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateOrganizationConfiguration AWS API Documentation
@@ -3932,7 +3971,7 @@ module Aws::GuardDuty
3932
3971
  params: params,
3933
3972
  config: config)
3934
3973
  context[:gem_name] = 'aws-sdk-guardduty'
3935
- context[:gem_version] = '1.65.0'
3974
+ context[:gem_version] = '1.66.0'
3936
3975
  Seahorse::Client::Request.new(handlers, context)
3937
3976
  end
3938
3977
 
@@ -34,6 +34,7 @@ module Aws::GuardDuty
34
34
  AffectedResources = Shapes::MapShape.new(name: 'AffectedResources')
35
35
  ArchiveFindingsRequest = Shapes::StructureShape.new(name: 'ArchiveFindingsRequest')
36
36
  ArchiveFindingsResponse = Shapes::StructureShape.new(name: 'ArchiveFindingsResponse')
37
+ AutoEnableMembers = Shapes::StringShape.new(name: 'AutoEnableMembers')
37
38
  AwsApiCallAction = Shapes::StructureShape.new(name: 'AwsApiCallAction')
38
39
  BadRequestException = Shapes::StructureShape.new(name: 'BadRequestException')
39
40
  BlockPublicAccess = Shapes::StructureShape.new(name: 'BlockPublicAccess')
@@ -715,11 +716,12 @@ module Aws::GuardDuty
715
716
  DescribeOrganizationConfigurationRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: String, location: "querystring", location_name: "nextToken"))
716
717
  DescribeOrganizationConfigurationRequest.struct_class = Types::DescribeOrganizationConfigurationRequest
717
718
 
718
- DescribeOrganizationConfigurationResponse.add_member(:auto_enable, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "autoEnable"))
719
+ DescribeOrganizationConfigurationResponse.add_member(:auto_enable, Shapes::ShapeRef.new(shape: Boolean, deprecated: true, location_name: "autoEnable", metadata: {"deprecatedMessage"=>"This field is deprecated, use AutoEnableOrganizationMembers instead"}))
719
720
  DescribeOrganizationConfigurationResponse.add_member(:member_account_limit_reached, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "memberAccountLimitReached"))
720
721
  DescribeOrganizationConfigurationResponse.add_member(:data_sources, Shapes::ShapeRef.new(shape: OrganizationDataSourceConfigurationsResult, deprecated: true, location_name: "dataSources", metadata: {"deprecatedMessage"=>"This parameter is deprecated, use Features instead"}))
721
722
  DescribeOrganizationConfigurationResponse.add_member(:features, Shapes::ShapeRef.new(shape: OrganizationFeaturesConfigurationsResults, location_name: "features"))
722
723
  DescribeOrganizationConfigurationResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: String, location_name: "nextToken"))
724
+ DescribeOrganizationConfigurationResponse.add_member(:auto_enable_organization_members, Shapes::ShapeRef.new(shape: AutoEnableMembers, location_name: "autoEnableOrganizationMembers"))
723
725
  DescribeOrganizationConfigurationResponse.struct_class = Types::DescribeOrganizationConfigurationResponse
724
726
 
725
727
  DescribePublishingDestinationRequest.add_member(:detector_id, Shapes::ShapeRef.new(shape: DetectorId, required: true, location: "uri", location_name: "detectorId"))
@@ -1710,9 +1712,10 @@ module Aws::GuardDuty
1710
1712
  UpdateMemberDetectorsResponse.struct_class = Types::UpdateMemberDetectorsResponse
1711
1713
 
1712
1714
  UpdateOrganizationConfigurationRequest.add_member(:detector_id, Shapes::ShapeRef.new(shape: DetectorId, required: true, location: "uri", location_name: "detectorId"))
1713
- UpdateOrganizationConfigurationRequest.add_member(:auto_enable, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "autoEnable"))
1715
+ UpdateOrganizationConfigurationRequest.add_member(:auto_enable, Shapes::ShapeRef.new(shape: Boolean, deprecated: true, location_name: "autoEnable", metadata: {"deprecatedMessage"=>"This field is deprecated, use AutoEnableOrganizationMembers instead"}))
1714
1716
  UpdateOrganizationConfigurationRequest.add_member(:data_sources, Shapes::ShapeRef.new(shape: OrganizationDataSourceConfigurations, deprecated: true, location_name: "dataSources", metadata: {"deprecatedMessage"=>"This parameter is deprecated, use Features instead"}))
1715
1717
  UpdateOrganizationConfigurationRequest.add_member(:features, Shapes::ShapeRef.new(shape: OrganizationFeaturesConfigurations, location_name: "features"))
1718
+ UpdateOrganizationConfigurationRequest.add_member(:auto_enable_organization_members, Shapes::ShapeRef.new(shape: AutoEnableMembers, location_name: "autoEnableOrganizationMembers"))
1716
1719
  UpdateOrganizationConfigurationRequest.struct_class = Types::UpdateOrganizationConfigurationRequest
1717
1720
 
1718
1721
  UpdateOrganizationConfigurationResponse.struct_class = Types::UpdateOrganizationConfigurationResponse
@@ -1585,6 +1585,21 @@ module Aws::GuardDuty
1585
1585
  # retrieve more items.
1586
1586
  # @return [String]
1587
1587
  #
1588
+ # @!attribute [rw] auto_enable_organization_members
1589
+ # Indicates the auto-enablement configuration of GuardDuty for the
1590
+ # member accounts in the organization.
1591
+ #
1592
+ # * `NEW`: Indicates that new accounts joining the organization are
1593
+ # configured to have GuardDuty enabled automatically.
1594
+ #
1595
+ # * `ALL`: Indicates that all accounts (new and existing members) in
1596
+ # the organization are configured to have GuardDuty enabled
1597
+ # automatically.
1598
+ #
1599
+ # * `NONE`: Indicates that no account in the organization will be
1600
+ # configured to have GuardDuty enabled automatically.
1601
+ # @return [String]
1602
+ #
1588
1603
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DescribeOrganizationConfigurationResponse AWS API Documentation
1589
1604
  #
1590
1605
  class DescribeOrganizationConfigurationResponse < Struct.new(
@@ -1592,7 +1607,8 @@ module Aws::GuardDuty
1592
1607
  :member_account_limit_reached,
1593
1608
  :data_sources,
1594
1609
  :features,
1595
- :next_token)
1610
+ :next_token,
1611
+ :auto_enable_organization_members)
1596
1612
  SENSITIVE = []
1597
1613
  include Aws::Structure
1598
1614
  end
@@ -6070,7 +6086,7 @@ module Aws::GuardDuty
6070
6086
  end
6071
6087
 
6072
6088
  # @!attribute [rw] detector_id
6073
- # The ID of the detector to update the delegated administrator for.
6089
+ # The ID of the detector that configures the delegated administrator.
6074
6090
  # @return [String]
6075
6091
  #
6076
6092
  # @!attribute [rw] auto_enable
@@ -6086,13 +6102,29 @@ module Aws::GuardDuty
6086
6102
  # A list of features that will be configured for the organization.
6087
6103
  # @return [Array<Types::OrganizationFeatureConfiguration>]
6088
6104
  #
6105
+ # @!attribute [rw] auto_enable_organization_members
6106
+ # Indicates the auto-enablement configuration of GuardDuty for the
6107
+ # member accounts in the organization.
6108
+ #
6109
+ # * `NEW`: Indicates that new accounts joining the organization are
6110
+ # configured to have GuardDuty enabled automatically.
6111
+ #
6112
+ # * `ALL`: Indicates that all accounts (new and existing members) in
6113
+ # the organization are configured to have GuardDuty enabled
6114
+ # automatically.
6115
+ #
6116
+ # * `NONE`: Indicates that no account in the organization will be
6117
+ # configured to have GuardDuty enabled automatically.
6118
+ # @return [String]
6119
+ #
6089
6120
  # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateOrganizationConfigurationRequest AWS API Documentation
6090
6121
  #
6091
6122
  class UpdateOrganizationConfigurationRequest < Struct.new(
6092
6123
  :detector_id,
6093
6124
  :auto_enable,
6094
6125
  :data_sources,
6095
- :features)
6126
+ :features,
6127
+ :auto_enable_organization_members)
6096
6128
  SENSITIVE = []
6097
6129
  include Aws::Structure
6098
6130
  end
@@ -52,6 +52,6 @@ require_relative 'aws-sdk-guardduty/customizations'
52
52
  # @!group service
53
53
  module Aws::GuardDuty
54
54
 
55
- GEM_VERSION = '1.65.0'
55
+ GEM_VERSION = '1.66.0'
56
56
 
57
57
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-guardduty
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.65.0
4
+ version: 1.66.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-03-16 00:00:00.000000000 Z
11
+ date: 2023-03-23 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-core