aws-sdk-iam 1.34.0 → 1.39.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +5 -5
- data/lib/aws-sdk-iam.rb +1 -1
- data/lib/aws-sdk-iam/access_key.rb +13 -11
- data/lib/aws-sdk-iam/access_key_pair.rb +13 -11
- data/lib/aws-sdk-iam/account_password_policy.rb +13 -11
- data/lib/aws-sdk-iam/account_summary.rb +13 -11
- data/lib/aws-sdk-iam/assume_role_policy.rb +13 -11
- data/lib/aws-sdk-iam/client.rb +141 -31
- data/lib/aws-sdk-iam/client_api.rb +15 -0
- data/lib/aws-sdk-iam/current_user.rb +13 -11
- data/lib/aws-sdk-iam/group.rb +15 -13
- data/lib/aws-sdk-iam/group_policy.rb +13 -11
- data/lib/aws-sdk-iam/instance_profile.rb +18 -14
- data/lib/aws-sdk-iam/login_profile.rb +13 -11
- data/lib/aws-sdk-iam/mfa_device.rb +13 -11
- data/lib/aws-sdk-iam/policy.rb +13 -11
- data/lib/aws-sdk-iam/policy_version.rb +13 -11
- data/lib/aws-sdk-iam/resource.rb +8 -3
- data/lib/aws-sdk-iam/role.rb +13 -11
- data/lib/aws-sdk-iam/role_policy.rb +13 -11
- data/lib/aws-sdk-iam/saml_provider.rb +13 -11
- data/lib/aws-sdk-iam/server_certificate.rb +14 -12
- data/lib/aws-sdk-iam/signing_certificate.rb +13 -11
- data/lib/aws-sdk-iam/types.rb +123 -8
- data/lib/aws-sdk-iam/user.rb +21 -17
- data/lib/aws-sdk-iam/user_policy.rb +13 -11
- data/lib/aws-sdk-iam/virtual_mfa_device.rb +13 -11
- data/lib/aws-sdk-iam/waiters.rb +64 -0
- metadata +3 -3
@@ -123,7 +123,8 @@ module Aws::IAM
|
|
123
123
|
# Waiter polls an API operation until a resource enters a desired
|
124
124
|
# state.
|
125
125
|
#
|
126
|
-
# @note The waiting operation is performed on a copy. The original resource
|
126
|
+
# @note The waiting operation is performed on a copy. The original resource
|
127
|
+
# remains unchanged.
|
127
128
|
#
|
128
129
|
# ## Basic Usage
|
129
130
|
#
|
@@ -136,13 +137,15 @@ module Aws::IAM
|
|
136
137
|
#
|
137
138
|
# ## Example
|
138
139
|
#
|
139
|
-
# instance.wait_until(max_attempts:10, delay:5)
|
140
|
+
# instance.wait_until(max_attempts:10, delay:5) do |instance|
|
141
|
+
# instance.state.name == 'running'
|
142
|
+
# end
|
140
143
|
#
|
141
144
|
# ## Configuration
|
142
145
|
#
|
143
146
|
# You can configure the maximum number of polling attempts, and the
|
144
|
-
# delay (in seconds) between each polling attempt. The waiting condition is
|
145
|
-
# by passing a block to {#wait_until}:
|
147
|
+
# delay (in seconds) between each polling attempt. The waiting condition is
|
148
|
+
# set by passing a block to {#wait_until}:
|
146
149
|
#
|
147
150
|
# # poll for ~25 seconds
|
148
151
|
# resource.wait_until(max_attempts:5,delay:5) {|resource|...}
|
@@ -173,17 +176,16 @@ module Aws::IAM
|
|
173
176
|
# # resource did not enter the desired state in time
|
174
177
|
# end
|
175
178
|
#
|
179
|
+
# @yieldparam [Resource] resource to be used in the waiting condition.
|
176
180
|
#
|
177
|
-
# @
|
178
|
-
#
|
179
|
-
#
|
180
|
-
# because the waiter has entered a state that it will not transition
|
181
|
-
# out of, preventing success.
|
181
|
+
# @raise [Aws::Waiters::Errors::FailureStateError] Raised when the waiter
|
182
|
+
# terminates because the waiter has entered a state that it will not
|
183
|
+
# transition out of, preventing success.
|
182
184
|
#
|
183
185
|
# yet successful.
|
184
186
|
#
|
185
|
-
# @raise [Aws::Waiters::Errors::UnexpectedError] Raised when an error is
|
186
|
-
# while polling for a resource that is not expected.
|
187
|
+
# @raise [Aws::Waiters::Errors::UnexpectedError] Raised when an error is
|
188
|
+
# encountered while polling for a resource that is not expected.
|
187
189
|
#
|
188
190
|
# @raise [NotImplementedError] Raised when the resource does not
|
189
191
|
#
|
data/lib/aws-sdk-iam/resource.rb
CHANGED
@@ -6,13 +6,18 @@
|
|
6
6
|
# WARNING ABOUT GENERATED CODE
|
7
7
|
|
8
8
|
module Aws::IAM
|
9
|
+
|
9
10
|
# This class provides a resource oriented interface for IAM.
|
10
11
|
# To create a resource object:
|
12
|
+
#
|
11
13
|
# resource = Aws::IAM::Resource.new(region: 'us-west-2')
|
14
|
+
#
|
12
15
|
# You can supply a client object with custom configuration that will be used for all resource operations.
|
13
|
-
# If you do not pass
|
16
|
+
# If you do not pass `:client`, a default client will be constructed.
|
17
|
+
#
|
14
18
|
# client = Aws::IAM::Client.new(region: 'us-west-2')
|
15
19
|
# resource = Aws::IAM::Resource.new(client: client)
|
20
|
+
#
|
16
21
|
class Resource
|
17
22
|
|
18
23
|
# @param options ({})
|
@@ -168,7 +173,7 @@ module Aws::IAM
|
|
168
173
|
# the user.
|
169
174
|
# @return [AccountPasswordPolicy]
|
170
175
|
def create_account_password_policy(options = {})
|
171
|
-
|
176
|
+
@client.update_account_password_policy(options)
|
172
177
|
AccountPasswordPolicy.new(client: @client)
|
173
178
|
end
|
174
179
|
|
@@ -599,7 +604,7 @@ module Aws::IAM
|
|
599
604
|
# [1]: http://wikipedia.org/wiki/regex
|
600
605
|
# @return [ServerCertificate]
|
601
606
|
def create_server_certificate(options = {})
|
602
|
-
|
607
|
+
@client.upload_server_certificate(options)
|
603
608
|
ServerCertificate.new(
|
604
609
|
name: options[:server_certificate_name],
|
605
610
|
client: @client
|
data/lib/aws-sdk-iam/role.rb
CHANGED
@@ -182,7 +182,8 @@ module Aws::IAM
|
|
182
182
|
# Waiter polls an API operation until a resource enters a desired
|
183
183
|
# state.
|
184
184
|
#
|
185
|
-
# @note The waiting operation is performed on a copy. The original resource
|
185
|
+
# @note The waiting operation is performed on a copy. The original resource
|
186
|
+
# remains unchanged.
|
186
187
|
#
|
187
188
|
# ## Basic Usage
|
188
189
|
#
|
@@ -195,13 +196,15 @@ module Aws::IAM
|
|
195
196
|
#
|
196
197
|
# ## Example
|
197
198
|
#
|
198
|
-
# instance.wait_until(max_attempts:10, delay:5)
|
199
|
+
# instance.wait_until(max_attempts:10, delay:5) do |instance|
|
200
|
+
# instance.state.name == 'running'
|
201
|
+
# end
|
199
202
|
#
|
200
203
|
# ## Configuration
|
201
204
|
#
|
202
205
|
# You can configure the maximum number of polling attempts, and the
|
203
|
-
# delay (in seconds) between each polling attempt. The waiting condition is
|
204
|
-
# by passing a block to {#wait_until}:
|
206
|
+
# delay (in seconds) between each polling attempt. The waiting condition is
|
207
|
+
# set by passing a block to {#wait_until}:
|
205
208
|
#
|
206
209
|
# # poll for ~25 seconds
|
207
210
|
# resource.wait_until(max_attempts:5,delay:5) {|resource|...}
|
@@ -232,17 +235,16 @@ module Aws::IAM
|
|
232
235
|
# # resource did not enter the desired state in time
|
233
236
|
# end
|
234
237
|
#
|
238
|
+
# @yieldparam [Resource] resource to be used in the waiting condition.
|
235
239
|
#
|
236
|
-
# @
|
237
|
-
#
|
238
|
-
#
|
239
|
-
# because the waiter has entered a state that it will not transition
|
240
|
-
# out of, preventing success.
|
240
|
+
# @raise [Aws::Waiters::Errors::FailureStateError] Raised when the waiter
|
241
|
+
# terminates because the waiter has entered a state that it will not
|
242
|
+
# transition out of, preventing success.
|
241
243
|
#
|
242
244
|
# yet successful.
|
243
245
|
#
|
244
|
-
# @raise [Aws::Waiters::Errors::UnexpectedError] Raised when an error is
|
245
|
-
# while polling for a resource that is not expected.
|
246
|
+
# @raise [Aws::Waiters::Errors::UnexpectedError] Raised when an error is
|
247
|
+
# encountered while polling for a resource that is not expected.
|
246
248
|
#
|
247
249
|
# @raise [NotImplementedError] Raised when the resource does not
|
248
250
|
#
|
@@ -95,7 +95,8 @@ module Aws::IAM
|
|
95
95
|
# Waiter polls an API operation until a resource enters a desired
|
96
96
|
# state.
|
97
97
|
#
|
98
|
-
# @note The waiting operation is performed on a copy. The original resource
|
98
|
+
# @note The waiting operation is performed on a copy. The original resource
|
99
|
+
# remains unchanged.
|
99
100
|
#
|
100
101
|
# ## Basic Usage
|
101
102
|
#
|
@@ -108,13 +109,15 @@ module Aws::IAM
|
|
108
109
|
#
|
109
110
|
# ## Example
|
110
111
|
#
|
111
|
-
# instance.wait_until(max_attempts:10, delay:5)
|
112
|
+
# instance.wait_until(max_attempts:10, delay:5) do |instance|
|
113
|
+
# instance.state.name == 'running'
|
114
|
+
# end
|
112
115
|
#
|
113
116
|
# ## Configuration
|
114
117
|
#
|
115
118
|
# You can configure the maximum number of polling attempts, and the
|
116
|
-
# delay (in seconds) between each polling attempt. The waiting condition is
|
117
|
-
# by passing a block to {#wait_until}:
|
119
|
+
# delay (in seconds) between each polling attempt. The waiting condition is
|
120
|
+
# set by passing a block to {#wait_until}:
|
118
121
|
#
|
119
122
|
# # poll for ~25 seconds
|
120
123
|
# resource.wait_until(max_attempts:5,delay:5) {|resource|...}
|
@@ -145,17 +148,16 @@ module Aws::IAM
|
|
145
148
|
# # resource did not enter the desired state in time
|
146
149
|
# end
|
147
150
|
#
|
151
|
+
# @yieldparam [Resource] resource to be used in the waiting condition.
|
148
152
|
#
|
149
|
-
# @
|
150
|
-
#
|
151
|
-
#
|
152
|
-
# because the waiter has entered a state that it will not transition
|
153
|
-
# out of, preventing success.
|
153
|
+
# @raise [Aws::Waiters::Errors::FailureStateError] Raised when the waiter
|
154
|
+
# terminates because the waiter has entered a state that it will not
|
155
|
+
# transition out of, preventing success.
|
154
156
|
#
|
155
157
|
# yet successful.
|
156
158
|
#
|
157
|
-
# @raise [Aws::Waiters::Errors::UnexpectedError] Raised when an error is
|
158
|
-
# while polling for a resource that is not expected.
|
159
|
+
# @raise [Aws::Waiters::Errors::UnexpectedError] Raised when an error is
|
160
|
+
# encountered while polling for a resource that is not expected.
|
159
161
|
#
|
160
162
|
# @raise [NotImplementedError] Raised when the resource does not
|
161
163
|
#
|
@@ -91,7 +91,8 @@ module Aws::IAM
|
|
91
91
|
# Waiter polls an API operation until a resource enters a desired
|
92
92
|
# state.
|
93
93
|
#
|
94
|
-
# @note The waiting operation is performed on a copy. The original resource
|
94
|
+
# @note The waiting operation is performed on a copy. The original resource
|
95
|
+
# remains unchanged.
|
95
96
|
#
|
96
97
|
# ## Basic Usage
|
97
98
|
#
|
@@ -104,13 +105,15 @@ module Aws::IAM
|
|
104
105
|
#
|
105
106
|
# ## Example
|
106
107
|
#
|
107
|
-
# instance.wait_until(max_attempts:10, delay:5)
|
108
|
+
# instance.wait_until(max_attempts:10, delay:5) do |instance|
|
109
|
+
# instance.state.name == 'running'
|
110
|
+
# end
|
108
111
|
#
|
109
112
|
# ## Configuration
|
110
113
|
#
|
111
114
|
# You can configure the maximum number of polling attempts, and the
|
112
|
-
# delay (in seconds) between each polling attempt. The waiting condition is
|
113
|
-
# by passing a block to {#wait_until}:
|
115
|
+
# delay (in seconds) between each polling attempt. The waiting condition is
|
116
|
+
# set by passing a block to {#wait_until}:
|
114
117
|
#
|
115
118
|
# # poll for ~25 seconds
|
116
119
|
# resource.wait_until(max_attempts:5,delay:5) {|resource|...}
|
@@ -141,17 +144,16 @@ module Aws::IAM
|
|
141
144
|
# # resource did not enter the desired state in time
|
142
145
|
# end
|
143
146
|
#
|
147
|
+
# @yieldparam [Resource] resource to be used in the waiting condition.
|
144
148
|
#
|
145
|
-
# @
|
146
|
-
#
|
147
|
-
#
|
148
|
-
# because the waiter has entered a state that it will not transition
|
149
|
-
# out of, preventing success.
|
149
|
+
# @raise [Aws::Waiters::Errors::FailureStateError] Raised when the waiter
|
150
|
+
# terminates because the waiter has entered a state that it will not
|
151
|
+
# transition out of, preventing success.
|
150
152
|
#
|
151
153
|
# yet successful.
|
152
154
|
#
|
153
|
-
# @raise [Aws::Waiters::Errors::UnexpectedError] Raised when an error is
|
154
|
-
# while polling for a resource that is not expected.
|
155
|
+
# @raise [Aws::Waiters::Errors::UnexpectedError] Raised when an error is
|
156
|
+
# encountered while polling for a resource that is not expected.
|
155
157
|
#
|
156
158
|
# @raise [NotImplementedError] Raised when the resource does not
|
157
159
|
#
|
@@ -91,7 +91,8 @@ module Aws::IAM
|
|
91
91
|
# Waiter polls an API operation until a resource enters a desired
|
92
92
|
# state.
|
93
93
|
#
|
94
|
-
# @note The waiting operation is performed on a copy. The original resource
|
94
|
+
# @note The waiting operation is performed on a copy. The original resource
|
95
|
+
# remains unchanged.
|
95
96
|
#
|
96
97
|
# ## Basic Usage
|
97
98
|
#
|
@@ -104,13 +105,15 @@ module Aws::IAM
|
|
104
105
|
#
|
105
106
|
# ## Example
|
106
107
|
#
|
107
|
-
# instance.wait_until(max_attempts:10, delay:5)
|
108
|
+
# instance.wait_until(max_attempts:10, delay:5) do |instance|
|
109
|
+
# instance.state.name == 'running'
|
110
|
+
# end
|
108
111
|
#
|
109
112
|
# ## Configuration
|
110
113
|
#
|
111
114
|
# You can configure the maximum number of polling attempts, and the
|
112
|
-
# delay (in seconds) between each polling attempt. The waiting condition is
|
113
|
-
# by passing a block to {#wait_until}:
|
115
|
+
# delay (in seconds) between each polling attempt. The waiting condition is
|
116
|
+
# set by passing a block to {#wait_until}:
|
114
117
|
#
|
115
118
|
# # poll for ~25 seconds
|
116
119
|
# resource.wait_until(max_attempts:5,delay:5) {|resource|...}
|
@@ -141,17 +144,16 @@ module Aws::IAM
|
|
141
144
|
# # resource did not enter the desired state in time
|
142
145
|
# end
|
143
146
|
#
|
147
|
+
# @yieldparam [Resource] resource to be used in the waiting condition.
|
144
148
|
#
|
145
|
-
# @
|
146
|
-
#
|
147
|
-
#
|
148
|
-
# because the waiter has entered a state that it will not transition
|
149
|
-
# out of, preventing success.
|
149
|
+
# @raise [Aws::Waiters::Errors::FailureStateError] Raised when the waiter
|
150
|
+
# terminates because the waiter has entered a state that it will not
|
151
|
+
# transition out of, preventing success.
|
150
152
|
#
|
151
153
|
# yet successful.
|
152
154
|
#
|
153
|
-
# @raise [Aws::Waiters::Errors::UnexpectedError] Raised when an error is
|
154
|
-
# while polling for a resource that is not expected.
|
155
|
+
# @raise [Aws::Waiters::Errors::UnexpectedError] Raised when an error is
|
156
|
+
# encountered while polling for a resource that is not expected.
|
155
157
|
#
|
156
158
|
# @raise [NotImplementedError] Raised when the resource does not
|
157
159
|
#
|
@@ -231,7 +233,7 @@ module Aws::IAM
|
|
231
233
|
# @return [ServerCertificate]
|
232
234
|
def update(options = {})
|
233
235
|
options = options.merge(server_certificate_name: @name)
|
234
|
-
|
236
|
+
@client.update_server_certificate(options)
|
235
237
|
ServerCertificate.new(
|
236
238
|
name: options[:new_server_certificate_name],
|
237
239
|
client: @client
|
@@ -95,7 +95,8 @@ module Aws::IAM
|
|
95
95
|
# Waiter polls an API operation until a resource enters a desired
|
96
96
|
# state.
|
97
97
|
#
|
98
|
-
# @note The waiting operation is performed on a copy. The original resource
|
98
|
+
# @note The waiting operation is performed on a copy. The original resource
|
99
|
+
# remains unchanged.
|
99
100
|
#
|
100
101
|
# ## Basic Usage
|
101
102
|
#
|
@@ -108,13 +109,15 @@ module Aws::IAM
|
|
108
109
|
#
|
109
110
|
# ## Example
|
110
111
|
#
|
111
|
-
# instance.wait_until(max_attempts:10, delay:5)
|
112
|
+
# instance.wait_until(max_attempts:10, delay:5) do |instance|
|
113
|
+
# instance.state.name == 'running'
|
114
|
+
# end
|
112
115
|
#
|
113
116
|
# ## Configuration
|
114
117
|
#
|
115
118
|
# You can configure the maximum number of polling attempts, and the
|
116
|
-
# delay (in seconds) between each polling attempt. The waiting condition is
|
117
|
-
# by passing a block to {#wait_until}:
|
119
|
+
# delay (in seconds) between each polling attempt. The waiting condition is
|
120
|
+
# set by passing a block to {#wait_until}:
|
118
121
|
#
|
119
122
|
# # poll for ~25 seconds
|
120
123
|
# resource.wait_until(max_attempts:5,delay:5) {|resource|...}
|
@@ -145,17 +148,16 @@ module Aws::IAM
|
|
145
148
|
# # resource did not enter the desired state in time
|
146
149
|
# end
|
147
150
|
#
|
151
|
+
# @yieldparam [Resource] resource to be used in the waiting condition.
|
148
152
|
#
|
149
|
-
# @
|
150
|
-
#
|
151
|
-
#
|
152
|
-
# because the waiter has entered a state that it will not transition
|
153
|
-
# out of, preventing success.
|
153
|
+
# @raise [Aws::Waiters::Errors::FailureStateError] Raised when the waiter
|
154
|
+
# terminates because the waiter has entered a state that it will not
|
155
|
+
# transition out of, preventing success.
|
154
156
|
#
|
155
157
|
# yet successful.
|
156
158
|
#
|
157
|
-
# @raise [Aws::Waiters::Errors::UnexpectedError] Raised when an error is
|
158
|
-
# while polling for a resource that is not expected.
|
159
|
+
# @raise [Aws::Waiters::Errors::UnexpectedError] Raised when an error is
|
160
|
+
# encountered while polling for a resource that is not expected.
|
159
161
|
#
|
160
162
|
# @raise [NotImplementedError] Raised when the resource does not
|
161
163
|
#
|
data/lib/aws-sdk-iam/types.rb
CHANGED
@@ -600,8 +600,8 @@ module Aws::IAM
|
|
600
600
|
# is used when evaluating the `Condition` elements of the input
|
601
601
|
# policies.
|
602
602
|
#
|
603
|
-
# This data type is used as an input parameter to
|
604
|
-
#
|
603
|
+
# This data type is used as an input parameter to SimulateCustomPolicy
|
604
|
+
# and SimulatePrincipalPolicy.
|
605
605
|
#
|
606
606
|
# @note When making an API call, you may pass ContextEntry
|
607
607
|
# data as a hash:
|
@@ -3005,6 +3005,7 @@ module Aws::IAM
|
|
3005
3005
|
#
|
3006
3006
|
# {
|
3007
3007
|
# arn: "arnType", # required
|
3008
|
+
# granularity: "SERVICE_LEVEL", # accepts SERVICE_LEVEL, ACTION_LEVEL
|
3008
3009
|
# }
|
3009
3010
|
#
|
3010
3011
|
# @!attribute [rw] arn
|
@@ -3013,16 +3014,30 @@ module Aws::IAM
|
|
3013
3014
|
# in an attempt to access an AWS service.
|
3014
3015
|
# @return [String]
|
3015
3016
|
#
|
3017
|
+
# @!attribute [rw] granularity
|
3018
|
+
# The level of detail that you want to generate. You can specify
|
3019
|
+
# whether you want to generate information about the last attempt to
|
3020
|
+
# access services or actions. If you specify service-level
|
3021
|
+
# granularity, this operation generates only service data. If you
|
3022
|
+
# specify action-level granularity, it generates service and action
|
3023
|
+
# data. If you don't include this optional parameter, the operation
|
3024
|
+
# generates service data.
|
3025
|
+
# @return [String]
|
3026
|
+
#
|
3016
3027
|
# @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/GenerateServiceLastAccessedDetailsRequest AWS API Documentation
|
3017
3028
|
#
|
3018
3029
|
class GenerateServiceLastAccessedDetailsRequest < Struct.new(
|
3019
|
-
:arn
|
3030
|
+
:arn,
|
3031
|
+
:granularity)
|
3020
3032
|
include Aws::Structure
|
3021
3033
|
end
|
3022
3034
|
|
3023
3035
|
# @!attribute [rw] job_id
|
3024
|
-
# The
|
3025
|
-
# GetServiceLastAccessedDetailsWithEntities operations.
|
3036
|
+
# The `JobId` that you can use in the GetServiceLastAccessedDetails or
|
3037
|
+
# GetServiceLastAccessedDetailsWithEntities operations. The `JobId`
|
3038
|
+
# returned by `GenerateServiceLastAccessedDetail` must be used by the
|
3039
|
+
# same role within a session, or by the same user when used to call
|
3040
|
+
# `GetServiceLastAccessedDetail`.
|
3026
3041
|
# @return [String]
|
3027
3042
|
#
|
3028
3043
|
# @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/GenerateServiceLastAccessedDetailsResponse AWS API Documentation
|
@@ -4134,7 +4149,10 @@ module Aws::IAM
|
|
4134
4149
|
#
|
4135
4150
|
# @!attribute [rw] job_id
|
4136
4151
|
# The ID of the request generated by the
|
4137
|
-
# GenerateServiceLastAccessedDetails operation.
|
4152
|
+
# GenerateServiceLastAccessedDetails operation. The `JobId` returned
|
4153
|
+
# by `GenerateServiceLastAccessedDetail` must be used by the same role
|
4154
|
+
# within a session, or by the same user when used to call
|
4155
|
+
# `GetServiceLastAccessedDetail`.
|
4138
4156
|
# @return [String]
|
4139
4157
|
#
|
4140
4158
|
# @!attribute [rw] max_items
|
@@ -4170,6 +4188,12 @@ module Aws::IAM
|
|
4170
4188
|
# The status of the job.
|
4171
4189
|
# @return [String]
|
4172
4190
|
#
|
4191
|
+
# @!attribute [rw] job_type
|
4192
|
+
# The type of job. Service jobs return information about when each
|
4193
|
+
# service was last accessed. Action jobs also include information
|
4194
|
+
# about when tracked actions within the service were last accessed.
|
4195
|
+
# @return [String]
|
4196
|
+
#
|
4173
4197
|
# @!attribute [rw] job_creation_date
|
4174
4198
|
# The date and time, in [ISO 8601 date-time format][1], when the
|
4175
4199
|
# report job was created.
|
@@ -4221,6 +4245,7 @@ module Aws::IAM
|
|
4221
4245
|
#
|
4222
4246
|
class GetServiceLastAccessedDetailsResponse < Struct.new(
|
4223
4247
|
:job_status,
|
4248
|
+
:job_type,
|
4224
4249
|
:job_creation_date,
|
4225
4250
|
:services_last_accessed,
|
4226
4251
|
:job_completion_date,
|
@@ -9112,6 +9137,19 @@ module Aws::IAM
|
|
9112
9137
|
# [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period
|
9113
9138
|
# @return [String]
|
9114
9139
|
#
|
9140
|
+
# @!attribute [rw] last_authenticated_region
|
9141
|
+
# The Region from which the authenticated entity (user or role) last
|
9142
|
+
# attempted to access the service. AWS does not report unauthenticated
|
9143
|
+
# requests.
|
9144
|
+
#
|
9145
|
+
# This field is null if no IAM entities attempted to access the
|
9146
|
+
# service within the [reporting period][1].
|
9147
|
+
#
|
9148
|
+
#
|
9149
|
+
#
|
9150
|
+
# [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period
|
9151
|
+
# @return [String]
|
9152
|
+
#
|
9115
9153
|
# @!attribute [rw] total_authenticated_entities
|
9116
9154
|
# The total number of authenticated principals (root user, IAM users,
|
9117
9155
|
# or IAM roles) that have attempted to access the service.
|
@@ -9124,6 +9162,21 @@ module Aws::IAM
|
|
9124
9162
|
# [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period
|
9125
9163
|
# @return [Integer]
|
9126
9164
|
#
|
9165
|
+
# @!attribute [rw] tracked_actions_last_accessed
|
9166
|
+
# An object that contains details about the most recent attempt to
|
9167
|
+
# access a tracked action within the service.
|
9168
|
+
#
|
9169
|
+
# This field is null if there no tracked actions or if the principal
|
9170
|
+
# did not use the tracked actions within the [reporting period][1].
|
9171
|
+
# This field is also null if the report was generated at the service
|
9172
|
+
# level and not the action level. For more information, see the
|
9173
|
+
# `Granularity` field in GenerateServiceLastAccessedDetails.
|
9174
|
+
#
|
9175
|
+
#
|
9176
|
+
#
|
9177
|
+
# [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period
|
9178
|
+
# @return [Array<Types::TrackedActionLastAccessed>]
|
9179
|
+
#
|
9127
9180
|
# @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ServiceLastAccessed AWS API Documentation
|
9128
9181
|
#
|
9129
9182
|
class ServiceLastAccessed < Struct.new(
|
@@ -9131,7 +9184,9 @@ module Aws::IAM
|
|
9131
9184
|
:last_authenticated,
|
9132
9185
|
:service_namespace,
|
9133
9186
|
:last_authenticated_entity,
|
9134
|
-
:
|
9187
|
+
:last_authenticated_region,
|
9188
|
+
:total_authenticated_entities,
|
9189
|
+
:tracked_actions_last_accessed)
|
9135
9190
|
include Aws::Structure
|
9136
9191
|
end
|
9137
9192
|
|
@@ -9710,7 +9765,7 @@ module Aws::IAM
|
|
9710
9765
|
# this operation. An IAM entity can only have one permissions boundary
|
9711
9766
|
# in effect at a time. For example, if a permissions boundary is
|
9712
9767
|
# attached to an entity and you pass in a different permissions
|
9713
|
-
# boundary policy using this parameter, then the new
|
9768
|
+
# boundary policy using this parameter, then the new permissions
|
9714
9769
|
# boundary policy is used for the simulation. For more information
|
9715
9770
|
# about permissions boundaries, see [Permissions Boundaries for IAM
|
9716
9771
|
# Entities][1] in the *IAM User Guide*. The policy input is specified
|
@@ -10076,6 +10131,66 @@ module Aws::IAM
|
|
10076
10131
|
include Aws::Structure
|
10077
10132
|
end
|
10078
10133
|
|
10134
|
+
# Contains details about the most recent attempt to access an action
|
10135
|
+
# within the service.
|
10136
|
+
#
|
10137
|
+
# This data type is used as a response element in the
|
10138
|
+
# GetServiceLastAccessedDetails operation.
|
10139
|
+
#
|
10140
|
+
# @!attribute [rw] action_name
|
10141
|
+
# The name of the tracked action to which access was attempted.
|
10142
|
+
# Tracked actions are actions that report activity to IAM.
|
10143
|
+
# @return [String]
|
10144
|
+
#
|
10145
|
+
# @!attribute [rw] last_accessed_entity
|
10146
|
+
# The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS
|
10147
|
+
# resources.
|
10148
|
+
#
|
10149
|
+
# For more information about ARNs, go to [Amazon Resource Names (ARNs)
|
10150
|
+
# and AWS Service Namespaces][1] in the *AWS General Reference*.
|
10151
|
+
#
|
10152
|
+
#
|
10153
|
+
#
|
10154
|
+
# [1]: https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html
|
10155
|
+
# @return [String]
|
10156
|
+
#
|
10157
|
+
# @!attribute [rw] last_accessed_time
|
10158
|
+
# The date and time, in [ISO 8601 date-time format][1], when an
|
10159
|
+
# authenticated entity most recently attempted to access the tracked
|
10160
|
+
# service. AWS does not report unauthenticated requests.
|
10161
|
+
#
|
10162
|
+
# This field is null if no IAM entities attempted to access the
|
10163
|
+
# service within the [reporting period][2].
|
10164
|
+
#
|
10165
|
+
#
|
10166
|
+
#
|
10167
|
+
# [1]: http://www.iso.org/iso/iso8601
|
10168
|
+
# [2]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period
|
10169
|
+
# @return [Time]
|
10170
|
+
#
|
10171
|
+
# @!attribute [rw] last_accessed_region
|
10172
|
+
# The Region from which the authenticated entity (user or role) last
|
10173
|
+
# attempted to access the tracked action. AWS does not report
|
10174
|
+
# unauthenticated requests.
|
10175
|
+
#
|
10176
|
+
# This field is null if no IAM entities attempted to access the
|
10177
|
+
# service within the [reporting period][1].
|
10178
|
+
#
|
10179
|
+
#
|
10180
|
+
#
|
10181
|
+
# [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period
|
10182
|
+
# @return [String]
|
10183
|
+
#
|
10184
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/TrackedActionLastAccessed AWS API Documentation
|
10185
|
+
#
|
10186
|
+
class TrackedActionLastAccessed < Struct.new(
|
10187
|
+
:action_name,
|
10188
|
+
:last_accessed_entity,
|
10189
|
+
:last_accessed_time,
|
10190
|
+
:last_accessed_region)
|
10191
|
+
include Aws::Structure
|
10192
|
+
end
|
10193
|
+
|
10079
10194
|
# The request was rejected because only the service that depends on the
|
10080
10195
|
# service-linked role can modify or delete the role on your behalf. The
|
10081
10196
|
# error message includes the name of the service that depends on this
|