aws-sdk-macie2 1.48.0 → 1.50.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -18,15 +18,6 @@ module Aws::Macie2
18
18
  # The masterAccount property has been deprecated and is retained only
19
19
  # for backward compatibility.
20
20
  #
21
- # @note When making an API call, you may pass AcceptInvitationRequest
22
- # data as a hash:
23
- #
24
- # {
25
- # administrator_account_id: "__string",
26
- # invitation_id: "__string", # required
27
- # master_account: "__string",
28
- # }
29
- #
30
21
  # @!attribute [rw] administrator_account_id
31
22
  # @return [String]
32
23
  #
@@ -85,14 +76,6 @@ module Aws::Macie2
85
76
  # Specifies the details of an account to associate with an Amazon Macie
86
77
  # administrator account.
87
78
  #
88
- # @note When making an API call, you may pass AccountDetail
89
- # data as a hash:
90
- #
91
- # {
92
- # account_id: "__string", # required
93
- # email: "__string", # required
94
- # }
95
- #
96
79
  # @!attribute [rw] account_id
97
80
  # @return [String]
98
81
  #
@@ -113,8 +96,8 @@ module Aws::Macie2
113
96
  #
114
97
  # @!attribute [rw] block_public_access
115
98
  # Provides information about the block public access settings for an
116
- # S3 bucket. These settings can apply to a bucket at the account level
117
- # or bucket level. For detailed information about each setting, see
99
+ # S3 bucket. These settings can apply to a bucket at the account or
100
+ # bucket level. For detailed information about each setting, see
118
101
  # [Blocking public access to your Amazon S3 storage][1] in the *Amazon
119
102
  # Simple Storage Service User Guide*.
120
103
  #
@@ -156,17 +139,6 @@ module Aws::Macie2
156
139
  # regular expression (regex) or an S3 object (s3WordsList). It can't
157
140
  # specify both.
158
141
  #
159
- # @note When making an API call, you may pass AllowListCriteria
160
- # data as a hash:
161
- #
162
- # {
163
- # regex: "__stringMin1Max512PatternSS",
164
- # s3_words_list: {
165
- # bucket_name: "__stringMin3Max255PatternAZaZ093255", # required
166
- # object_key: "__stringMin1Max1024PatternSS", # required
167
- # },
168
- # }
169
- #
170
142
  # @!attribute [rw] regex
171
143
  # @return [String]
172
144
  #
@@ -368,13 +340,6 @@ module Aws::Macie2
368
340
  # Specifies one or more custom data identifiers to retrieve information
369
341
  # about.
370
342
  #
371
- # @note When making an API call, you may pass BatchGetCustomDataIdentifiersRequest
372
- # data as a hash:
373
- #
374
- # {
375
- # ids: ["__string"],
376
- # }
377
- #
378
343
  # @!attribute [rw] ids
379
344
  # @return [Array<String>]
380
345
  #
@@ -404,10 +369,10 @@ module Aws::Macie2
404
369
  end
405
370
 
406
371
  # Provides information about the block public access settings for an S3
407
- # bucket. These settings can apply to a bucket at the account level or
408
- # bucket level. For detailed information about each setting, see
409
- # [Blocking public access to your Amazon S3 storage][1] in the *Amazon
410
- # Simple Storage Service User Guide*.
372
+ # bucket. These settings can apply to a bucket at the account or bucket
373
+ # level. For detailed information about each setting, see [Blocking
374
+ # public access to your Amazon S3 storage][1] in the *Amazon Simple
375
+ # Storage Service User Guide*.
411
376
  #
412
377
  #
413
378
  #
@@ -548,19 +513,6 @@ module Aws::Macie2
548
513
  # Specifies the operator to use in a property-based condition that
549
514
  # filters the results of a query for information about S3 buckets.
550
515
  #
551
- # @note When making an API call, you may pass BucketCriteriaAdditionalProperties
552
- # data as a hash:
553
- #
554
- # {
555
- # eq: ["__string"],
556
- # gt: 1,
557
- # gte: 1,
558
- # lt: 1,
559
- # lte: 1,
560
- # neq: ["__string"],
561
- # prefix: "__string",
562
- # }
563
- #
564
516
  # @!attribute [rw] eq
565
517
  # @return [Array<String>]
566
518
  #
@@ -606,8 +558,8 @@ module Aws::Macie2
606
558
  #
607
559
  # @!attribute [rw] block_public_access
608
560
  # Provides information about the block public access settings for an
609
- # S3 bucket. These settings can apply to a bucket at the account level
610
- # or bucket level. For detailed information about each setting, see
561
+ # S3 bucket. These settings can apply to a bucket at the account or
562
+ # bucket level. For detailed information about each setting, see
611
563
  # [Blocking public access to your Amazon S3 storage][1] in the *Amazon
612
564
  # Simple Storage Service User Guide*.
613
565
  #
@@ -633,12 +585,12 @@ module Aws::Macie2
633
585
 
634
586
  # Provides statistical data and other information about an S3 bucket
635
587
  # that Amazon Macie monitors and analyzes for your account. If an error
636
- # occurs when Macie attempts to retrieve and process information about
637
- # the bucket or the bucket's objects, the value for the versioning
638
- # property is false and the value for most other properties is null.
639
- # Exceptions are accountId, bucketArn, bucketCreatedAt, bucketName,
640
- # lastUpdated, and region. To identify the cause of the error, refer to
641
- # the errorCode and errorMessage values.
588
+ # occurs when Macie attempts to retrieve and process metadata from
589
+ # Amazon S3 for the bucket and the bucket's objects, the value for the
590
+ # versioning property is false and the value for most other properties
591
+ # is null. Key exceptions are accountId, bucketArn, bucketCreatedAt,
592
+ # bucketName, lastUpdated, and region. To identify the cause of the
593
+ # error, refer to the errorCode and errorMessage values.
642
594
  #
643
595
  # @!attribute [rw] account_id
644
596
  # @return [String]
@@ -663,8 +615,8 @@ module Aws::Macie2
663
615
  #
664
616
  # @!attribute [rw] error_code
665
617
  # The error code for an error that prevented Amazon Macie from
666
- # retrieving and processing information about an S3 bucket and the
667
- # bucket's objects.
618
+ # retrieving and processing metadata from Amazon S3 for an S3 bucket
619
+ # and the bucket's objects.
668
620
  # @return [String]
669
621
  #
670
622
  # @!attribute [rw] error_message
@@ -676,6 +628,9 @@ module Aws::Macie2
676
628
  # of the job that ran most recently.
677
629
  # @return [Types::JobDetails]
678
630
  #
631
+ # @!attribute [rw] last_automated_discovery_time
632
+ # @return [Time]
633
+ #
679
634
  # @!attribute [rw] last_updated
680
635
  # @return [Time]
681
636
  #
@@ -702,6 +657,9 @@ module Aws::Macie2
702
657
  # Amazon Web Services accounts and, if so, which accounts.
703
658
  # @return [Types::ReplicationDetails]
704
659
  #
660
+ # @!attribute [rw] sensitivity_score
661
+ # @return [Integer]
662
+ #
705
663
  # @!attribute [rw] server_side_encryption
706
664
  # Provides information about the default server-side encryption
707
665
  # settings for an S3 bucket. For detailed information about these
@@ -731,10 +689,10 @@ module Aws::Macie2
731
689
  # number of objects that Amazon Macie can't analyze in one or more S3
732
690
  # buckets. In a BucketMetadata or MatchingBucket object, this data is
733
691
  # for a specific bucket. In a GetBucketStatisticsResponse object, this
734
- # data is aggregated for the buckets in the query results. If
735
- # versioning is enabled for a bucket, total storage size values are
736
- # based on the size of the latest version of each applicable object in
737
- # the bucket.
692
+ # data is aggregated for all the buckets in the query results. If
693
+ # versioning is enabled for a bucket, storage size values are based on
694
+ # the size of the latest version of each applicable object in the
695
+ # bucket.
738
696
  # @return [Types::ObjectLevelStatistics]
739
697
  #
740
698
  # @!attribute [rw] unclassifiable_object_size_in_bytes
@@ -742,10 +700,10 @@ module Aws::Macie2
742
700
  # number of objects that Amazon Macie can't analyze in one or more S3
743
701
  # buckets. In a BucketMetadata or MatchingBucket object, this data is
744
702
  # for a specific bucket. In a GetBucketStatisticsResponse object, this
745
- # data is aggregated for the buckets in the query results. If
746
- # versioning is enabled for a bucket, total storage size values are
747
- # based on the size of the latest version of each applicable object in
748
- # the bucket.
703
+ # data is aggregated for all the buckets in the query results. If
704
+ # versioning is enabled for a bucket, storage size values are based on
705
+ # the size of the latest version of each applicable object in the
706
+ # bucket.
749
707
  # @return [Types::ObjectLevelStatistics]
750
708
  #
751
709
  # @!attribute [rw] versioning
@@ -764,12 +722,14 @@ module Aws::Macie2
764
722
  :error_code,
765
723
  :error_message,
766
724
  :job_details,
725
+ :last_automated_discovery_time,
767
726
  :last_updated,
768
727
  :object_count,
769
728
  :object_count_by_encryption_type,
770
729
  :public_access,
771
730
  :region,
772
731
  :replication_details,
732
+ :sensitivity_score,
773
733
  :server_side_encryption,
774
734
  :shared_access,
775
735
  :size_in_bytes,
@@ -869,14 +829,6 @@ module Aws::Macie2
869
829
  # Specifies criteria for sorting the results of a query for information
870
830
  # about S3 buckets.
871
831
  #
872
- # @note When making an API call, you may pass BucketSortCriteria
873
- # data as a hash:
874
- #
875
- # {
876
- # attribute_name: "__string",
877
- # order_by: "ASC", # accepts ASC, DESC
878
- # }
879
- #
880
832
  # @!attribute [rw] attribute_name
881
833
  # @return [String]
882
834
  #
@@ -892,6 +844,62 @@ module Aws::Macie2
892
844
  include Aws::Structure
893
845
  end
894
846
 
847
+ # Provides aggregated statistical data for sensitive data discovery
848
+ # metrics that apply to S3 buckets, grouped by bucket sensitivity score
849
+ # (sensitivityScore). If automated sensitive data discovery is currently
850
+ # disabled for your account, the value for each metric is 0.
851
+ #
852
+ # @!attribute [rw] classification_error
853
+ # Provides aggregated statistical data for sensitive data discovery
854
+ # metrics that apply to S3 buckets. Each field contains aggregated
855
+ # data for all the buckets that have a sensitivity score
856
+ # (sensitivityScore) of a specified value or within a specified range
857
+ # (BucketStatisticsBySensitivity). If automated sensitive data
858
+ # discovery is currently disabled for your account, the value for each
859
+ # field is 0.
860
+ # @return [Types::SensitivityAggregations]
861
+ #
862
+ # @!attribute [rw] not_classified
863
+ # Provides aggregated statistical data for sensitive data discovery
864
+ # metrics that apply to S3 buckets. Each field contains aggregated
865
+ # data for all the buckets that have a sensitivity score
866
+ # (sensitivityScore) of a specified value or within a specified range
867
+ # (BucketStatisticsBySensitivity). If automated sensitive data
868
+ # discovery is currently disabled for your account, the value for each
869
+ # field is 0.
870
+ # @return [Types::SensitivityAggregations]
871
+ #
872
+ # @!attribute [rw] not_sensitive
873
+ # Provides aggregated statistical data for sensitive data discovery
874
+ # metrics that apply to S3 buckets. Each field contains aggregated
875
+ # data for all the buckets that have a sensitivity score
876
+ # (sensitivityScore) of a specified value or within a specified range
877
+ # (BucketStatisticsBySensitivity). If automated sensitive data
878
+ # discovery is currently disabled for your account, the value for each
879
+ # field is 0.
880
+ # @return [Types::SensitivityAggregations]
881
+ #
882
+ # @!attribute [rw] sensitive
883
+ # Provides aggregated statistical data for sensitive data discovery
884
+ # metrics that apply to S3 buckets. Each field contains aggregated
885
+ # data for all the buckets that have a sensitivity score
886
+ # (sensitivityScore) of a specified value or within a specified range
887
+ # (BucketStatisticsBySensitivity). If automated sensitive data
888
+ # discovery is currently disabled for your account, the value for each
889
+ # field is 0.
890
+ # @return [Types::SensitivityAggregations]
891
+ #
892
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/BucketStatisticsBySensitivity AWS API Documentation
893
+ #
894
+ class BucketStatisticsBySensitivity < Struct.new(
895
+ :classification_error,
896
+ :not_classified,
897
+ :not_sensitive,
898
+ :sensitive)
899
+ SENSITIVE = []
900
+ include Aws::Structure
901
+ end
902
+
895
903
  # Specifies the location of an occurrence of sensitive data in a
896
904
  # Microsoft Excel workbook, CSV file, or TSV file.
897
905
  #
@@ -932,7 +940,7 @@ module Aws::Macie2
932
940
  #
933
941
  # @!attribute [rw] origin_type
934
942
  # Specifies how Amazon Macie found the sensitive data that produced a
935
- # finding. The only possible value is:
943
+ # finding. Possible values are:
936
944
  # @return [String]
937
945
  #
938
946
  # @!attribute [rw] result
@@ -954,19 +962,8 @@ module Aws::Macie2
954
962
  end
955
963
 
956
964
  # Specifies where to store data classification results, and the
957
- # encryption settings to use when storing results in that location.
958
- # Currently, you can store classification results only in an S3 bucket.
959
- #
960
- # @note When making an API call, you may pass ClassificationExportConfiguration
961
- # data as a hash:
962
- #
963
- # {
964
- # s3_destination: {
965
- # bucket_name: "__string", # required
966
- # key_prefix: "__string",
967
- # kms_key_arn: "__string", # required
968
- # },
969
- # }
965
+ # encryption settings to use when storing results in that location. The
966
+ # location must be an S3 bucket.
970
967
  #
971
968
  # @!attribute [rw] s3_destination
972
969
  # Specifies an S3 bucket to store data classification results in, and
@@ -1039,6 +1036,27 @@ module Aws::Macie2
1039
1036
  include Aws::Structure
1040
1037
  end
1041
1038
 
1039
+ # Provides information about the classification scope for an Amazon
1040
+ # Macie account. Macie uses the scope's settings when it performs
1041
+ # automated sensitive data discovery for the account.
1042
+ #
1043
+ # @!attribute [rw] id
1044
+ # The unique identifier the classification scope.
1045
+ # @return [String]
1046
+ #
1047
+ # @!attribute [rw] name
1048
+ # The name of the classification scope.
1049
+ # @return [String]
1050
+ #
1051
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ClassificationScopeSummary AWS API Documentation
1052
+ #
1053
+ class ClassificationScopeSummary < Struct.new(
1054
+ :id,
1055
+ :name)
1056
+ SENSITIVE = []
1057
+ include Aws::Structure
1058
+ end
1059
+
1042
1060
  # Provides information about an error that occurred due to a versioning
1043
1061
  # conflict for a specified resource.
1044
1062
  #
@@ -1058,25 +1076,6 @@ module Aws::Macie2
1058
1076
  # a regular expression that Macie can't compile or an S3 object that
1059
1077
  # Macie can't retrieve or parse, an error occurs.
1060
1078
  #
1061
- # @note When making an API call, you may pass CreateAllowListRequest
1062
- # data as a hash:
1063
- #
1064
- # {
1065
- # client_token: "__string", # required
1066
- # criteria: { # required
1067
- # regex: "__stringMin1Max512PatternSS",
1068
- # s3_words_list: {
1069
- # bucket_name: "__stringMin3Max255PatternAZaZ093255", # required
1070
- # object_key: "__stringMin1Max1024PatternSS", # required
1071
- # },
1072
- # },
1073
- # description: "__stringMin1Max512PatternSS",
1074
- # name: "__stringMin1Max128Pattern", # required
1075
- # tags: {
1076
- # "__string" => "__string",
1077
- # },
1078
- # }
1079
- #
1080
1079
  # @!attribute [rw] client_token
1081
1080
  # **A suitable default value is auto-generated.** You should normally
1082
1081
  # not need to pass this option.
@@ -1135,131 +1134,6 @@ module Aws::Macie2
1135
1134
  # sensitive data findings and discovery results for data privacy and
1136
1135
  # protection audits or investigations.
1137
1136
  #
1138
- # @note When making an API call, you may pass CreateClassificationJobRequest
1139
- # data as a hash:
1140
- #
1141
- # {
1142
- # allow_list_ids: ["__string"],
1143
- # client_token: "__string", # required
1144
- # custom_data_identifier_ids: ["__string"],
1145
- # description: "__string",
1146
- # initial_run: false,
1147
- # job_type: "ONE_TIME", # required, accepts ONE_TIME, SCHEDULED
1148
- # managed_data_identifier_ids: ["__string"],
1149
- # managed_data_identifier_selector: "ALL", # accepts ALL, EXCLUDE, INCLUDE, NONE
1150
- # name: "__string", # required
1151
- # s3_job_definition: { # required
1152
- # bucket_definitions: [
1153
- # {
1154
- # account_id: "__string", # required
1155
- # buckets: ["__string"], # required
1156
- # },
1157
- # ],
1158
- # scoping: {
1159
- # excludes: {
1160
- # and: [
1161
- # {
1162
- # simple_scope_term: {
1163
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
1164
- # key: "OBJECT_EXTENSION", # accepts OBJECT_EXTENSION, OBJECT_LAST_MODIFIED_DATE, OBJECT_SIZE, OBJECT_KEY
1165
- # values: ["__string"],
1166
- # },
1167
- # tag_scope_term: {
1168
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
1169
- # key: "__string",
1170
- # tag_values: [
1171
- # {
1172
- # key: "__string",
1173
- # value: "__string",
1174
- # },
1175
- # ],
1176
- # target: "S3_OBJECT", # accepts S3_OBJECT
1177
- # },
1178
- # },
1179
- # ],
1180
- # },
1181
- # includes: {
1182
- # and: [
1183
- # {
1184
- # simple_scope_term: {
1185
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
1186
- # key: "OBJECT_EXTENSION", # accepts OBJECT_EXTENSION, OBJECT_LAST_MODIFIED_DATE, OBJECT_SIZE, OBJECT_KEY
1187
- # values: ["__string"],
1188
- # },
1189
- # tag_scope_term: {
1190
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
1191
- # key: "__string",
1192
- # tag_values: [
1193
- # {
1194
- # key: "__string",
1195
- # value: "__string",
1196
- # },
1197
- # ],
1198
- # target: "S3_OBJECT", # accepts S3_OBJECT
1199
- # },
1200
- # },
1201
- # ],
1202
- # },
1203
- # },
1204
- # bucket_criteria: {
1205
- # excludes: {
1206
- # and: [
1207
- # {
1208
- # simple_criterion: {
1209
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
1210
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
1211
- # values: ["__string"],
1212
- # },
1213
- # tag_criterion: {
1214
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
1215
- # tag_values: [
1216
- # {
1217
- # key: "__string",
1218
- # value: "__string",
1219
- # },
1220
- # ],
1221
- # },
1222
- # },
1223
- # ],
1224
- # },
1225
- # includes: {
1226
- # and: [
1227
- # {
1228
- # simple_criterion: {
1229
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
1230
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
1231
- # values: ["__string"],
1232
- # },
1233
- # tag_criterion: {
1234
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
1235
- # tag_values: [
1236
- # {
1237
- # key: "__string",
1238
- # value: "__string",
1239
- # },
1240
- # ],
1241
- # },
1242
- # },
1243
- # ],
1244
- # },
1245
- # },
1246
- # },
1247
- # sampling_percentage: 1,
1248
- # schedule_frequency: {
1249
- # daily_schedule: {
1250
- # },
1251
- # monthly_schedule: {
1252
- # day_of_month: 1,
1253
- # },
1254
- # weekly_schedule: {
1255
- # day_of_week: "SUNDAY", # accepts SUNDAY, MONDAY, TUESDAY, WEDNESDAY, THURSDAY, FRIDAY, SATURDAY
1256
- # },
1257
- # },
1258
- # tags: {
1259
- # "__string" => "__string",
1260
- # },
1261
- # }
1262
- #
1263
1137
  # @!attribute [rw] allow_list_ids
1264
1138
  # @return [Array<String>]
1265
1139
  #
@@ -1358,28 +1232,6 @@ module Aws::Macie2
1358
1232
  # sensitive data findings and discovery results for data privacy and
1359
1233
  # protection audits or investigations.
1360
1234
  #
1361
- # @note When making an API call, you may pass CreateCustomDataIdentifierRequest
1362
- # data as a hash:
1363
- #
1364
- # {
1365
- # client_token: "__string",
1366
- # description: "__string",
1367
- # ignore_words: ["__string"],
1368
- # keywords: ["__string"],
1369
- # maximum_match_distance: 1,
1370
- # name: "__string", # required
1371
- # regex: "__string", # required
1372
- # severity_levels: [
1373
- # {
1374
- # occurrences_threshold: 1, # required
1375
- # severity: "LOW", # required, accepts LOW, MEDIUM, HIGH
1376
- # },
1377
- # ],
1378
- # tags: {
1379
- # "__string" => "__string",
1380
- # },
1381
- # }
1382
- #
1383
1235
  # @!attribute [rw] client_token
1384
1236
  # **A suitable default value is auto-generated.** You should normally
1385
1237
  # not need to pass this option.
@@ -1457,36 +1309,9 @@ module Aws::Macie2
1457
1309
 
1458
1310
  # Specifies the criteria and other settings for a new findings filter.
1459
1311
  #
1460
- # @note When making an API call, you may pass CreateFindingsFilterRequest
1461
- # data as a hash:
1462
- #
1463
- # {
1464
- # action: "ARCHIVE", # required, accepts ARCHIVE, NOOP
1465
- # client_token: "__string",
1466
- # description: "__string",
1467
- # finding_criteria: { # required
1468
- # criterion: {
1469
- # "__string" => {
1470
- # eq: ["__string"],
1471
- # eq_exact_match: ["__string"],
1472
- # gt: 1,
1473
- # gte: 1,
1474
- # lt: 1,
1475
- # lte: 1,
1476
- # neq: ["__string"],
1477
- # },
1478
- # },
1479
- # },
1480
- # name: "__string", # required
1481
- # position: 1,
1482
- # tags: {
1483
- # "__string" => "__string",
1484
- # },
1485
- # }
1486
- #
1487
1312
  # @!attribute [rw] action
1488
- # The action to perform on findings that meet the filter criteria. To
1489
- # suppress (automatically archive) findings that meet the criteria,
1313
+ # The action to perform on findings that match the filter criteria. To
1314
+ # suppress (automatically archive) findings that match the criteria,
1490
1315
  # set this value to ARCHIVE. Valid values are:
1491
1316
  # @return [String]
1492
1317
  #
@@ -1553,15 +1378,6 @@ module Aws::Macie2
1553
1378
  # notification on the recipient's console. You can optionally notify
1554
1379
  # the recipient by also sending the invitation as an email message.
1555
1380
  #
1556
- # @note When making an API call, you may pass CreateInvitationsRequest
1557
- # data as a hash:
1558
- #
1559
- # {
1560
- # account_ids: ["__string"], # required
1561
- # disable_email_notification: false,
1562
- # message: "__string",
1563
- # }
1564
- #
1565
1381
  # @!attribute [rw] account_ids
1566
1382
  # @return [Array<String>]
1567
1383
  #
@@ -1598,19 +1414,6 @@ module Aws::Macie2
1598
1414
  # Specifies an Amazon Web Services account to associate with an Amazon
1599
1415
  # Macie administrator account.
1600
1416
  #
1601
- # @note When making an API call, you may pass CreateMemberRequest
1602
- # data as a hash:
1603
- #
1604
- # {
1605
- # account: { # required
1606
- # account_id: "__string", # required
1607
- # email: "__string", # required
1608
- # },
1609
- # tags: {
1610
- # "__string" => "__string",
1611
- # },
1612
- # }
1613
- #
1614
1417
  # @!attribute [rw] account
1615
1418
  # Specifies the details of an account to associate with an Amazon
1616
1419
  # Macie administrator account.
@@ -1646,13 +1449,6 @@ module Aws::Macie2
1646
1449
 
1647
1450
  # Specifies the types of sample findings to create.
1648
1451
  #
1649
- # @note When making an API call, you may pass CreateSampleFindingsRequest
1650
- # data as a hash:
1651
- #
1652
- # {
1653
- # finding_types: ["SensitiveData:S3Object/Multiple"], # accepts SensitiveData:S3Object/Multiple, SensitiveData:S3Object/Financial, SensitiveData:S3Object/Personal, SensitiveData:S3Object/Credentials, SensitiveData:S3Object/CustomIdentifier, Policy:IAMUser/S3BucketPublic, Policy:IAMUser/S3BucketSharedExternally, Policy:IAMUser/S3BucketReplicatedExternally, Policy:IAMUser/S3BucketEncryptionDisabled, Policy:IAMUser/S3BlockPublicAccessDisabled
1654
- # }
1655
- #
1656
1452
  # @!attribute [rw] finding_types
1657
1453
  # @return [Array<String>]
1658
1454
  #
@@ -1672,30 +1468,6 @@ module Aws::Macie2
1672
1468
  # criteria for including or excluding S3 buckets from a classification
1673
1469
  # job.
1674
1470
  #
1675
- # @note When making an API call, you may pass CriteriaBlockForJob
1676
- # data as a hash:
1677
- #
1678
- # {
1679
- # and: [
1680
- # {
1681
- # simple_criterion: {
1682
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
1683
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
1684
- # values: ["__string"],
1685
- # },
1686
- # tag_criterion: {
1687
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
1688
- # tag_values: [
1689
- # {
1690
- # key: "__string",
1691
- # value: "__string",
1692
- # },
1693
- # ],
1694
- # },
1695
- # },
1696
- # ],
1697
- # }
1698
- #
1699
1471
  # @!attribute [rw] and
1700
1472
  # @return [Array<Types::CriteriaForJob>]
1701
1473
  #
@@ -1710,26 +1482,6 @@ module Aws::Macie2
1710
1482
  # Specifies a property- or tag-based condition that defines criteria for
1711
1483
  # including or excluding S3 buckets from a classification job.
1712
1484
  #
1713
- # @note When making an API call, you may pass CriteriaForJob
1714
- # data as a hash:
1715
- #
1716
- # {
1717
- # simple_criterion: {
1718
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
1719
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
1720
- # values: ["__string"],
1721
- # },
1722
- # tag_criterion: {
1723
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
1724
- # tag_values: [
1725
- # {
1726
- # key: "__string",
1727
- # value: "__string",
1728
- # },
1729
- # ],
1730
- # },
1731
- # }
1732
- #
1733
1485
  # @!attribute [rw] simple_criterion
1734
1486
  # Specifies a property-based condition that determines whether an S3
1735
1487
  # bucket is included or excluded from a classification job.
@@ -1758,19 +1510,6 @@ module Aws::Macie2
1758
1510
  #
1759
1511
  # [1]: https://docs.aws.amazon.com/macie/latest/user/findings-filter-basics.html
1760
1512
  #
1761
- # @note When making an API call, you may pass CriterionAdditionalProperties
1762
- # data as a hash:
1763
- #
1764
- # {
1765
- # eq: ["__string"],
1766
- # eq_exact_match: ["__string"],
1767
- # gt: 1,
1768
- # gte: 1,
1769
- # lt: 1,
1770
- # lte: 1,
1771
- # neq: ["__string"],
1772
- # }
1773
- #
1774
1513
  # @!attribute [rw] eq
1775
1514
  # @return [Array<String>]
1776
1515
  #
@@ -1899,13 +1638,6 @@ module Aws::Macie2
1899
1638
  # Specifies one or more accounts that sent Amazon Macie membership
1900
1639
  # invitations to decline.
1901
1640
  #
1902
- # @note When making an API call, you may pass DeclineInvitationsRequest
1903
- # data as a hash:
1904
- #
1905
- # {
1906
- # account_ids: ["__string"], # required
1907
- # }
1908
- #
1909
1641
  # @!attribute [rw] account_ids
1910
1642
  # @return [Array<String>]
1911
1643
  #
@@ -1957,14 +1689,6 @@ module Aws::Macie2
1957
1689
  include Aws::Structure
1958
1690
  end
1959
1691
 
1960
- # @note When making an API call, you may pass DeleteAllowListRequest
1961
- # data as a hash:
1962
- #
1963
- # {
1964
- # id: "__string", # required
1965
- # ignore_job_checks: "__string",
1966
- # }
1967
- #
1968
1692
  # @!attribute [rw] id
1969
1693
  # @return [String]
1970
1694
  #
@@ -1984,13 +1708,6 @@ module Aws::Macie2
1984
1708
  #
1985
1709
  class DeleteAllowListResponse < Aws::EmptyStructure; end
1986
1710
 
1987
- # @note When making an API call, you may pass DeleteCustomDataIdentifierRequest
1988
- # data as a hash:
1989
- #
1990
- # {
1991
- # id: "__string", # required
1992
- # }
1993
- #
1994
1711
  # @!attribute [rw] id
1995
1712
  # @return [String]
1996
1713
  #
@@ -2006,13 +1723,6 @@ module Aws::Macie2
2006
1723
  #
2007
1724
  class DeleteCustomDataIdentifierResponse < Aws::EmptyStructure; end
2008
1725
 
2009
- # @note When making an API call, you may pass DeleteFindingsFilterRequest
2010
- # data as a hash:
2011
- #
2012
- # {
2013
- # id: "__string", # required
2014
- # }
2015
- #
2016
1726
  # @!attribute [rw] id
2017
1727
  # @return [String]
2018
1728
  #
@@ -2031,13 +1741,6 @@ module Aws::Macie2
2031
1741
  # Specifies one or more accounts that sent Amazon Macie membership
2032
1742
  # invitations to delete.
2033
1743
  #
2034
- # @note When making an API call, you may pass DeleteInvitationsRequest
2035
- # data as a hash:
2036
- #
2037
- # {
2038
- # account_ids: ["__string"], # required
2039
- # }
2040
- #
2041
1744
  # @!attribute [rw] account_ids
2042
1745
  # @return [Array<String>]
2043
1746
  #
@@ -2063,13 +1766,6 @@ module Aws::Macie2
2063
1766
  include Aws::Structure
2064
1767
  end
2065
1768
 
2066
- # @note When making an API call, you may pass DeleteMemberRequest
2067
- # data as a hash:
2068
- #
2069
- # {
2070
- # id: "__string", # required
2071
- # }
2072
- #
2073
1769
  # @!attribute [rw] id
2074
1770
  # @return [String]
2075
1771
  #
@@ -2089,29 +1785,6 @@ module Aws::Macie2
2089
1785
  # of a query for statistical data and other information about S3
2090
1786
  # buckets.
2091
1787
  #
2092
- # @note When making an API call, you may pass DescribeBucketsRequest
2093
- # data as a hash:
2094
- #
2095
- # {
2096
- # criteria: {
2097
- # "__string" => {
2098
- # eq: ["__string"],
2099
- # gt: 1,
2100
- # gte: 1,
2101
- # lt: 1,
2102
- # lte: 1,
2103
- # neq: ["__string"],
2104
- # prefix: "__string",
2105
- # },
2106
- # },
2107
- # max_results: 1,
2108
- # next_token: "__string",
2109
- # sort_criteria: {
2110
- # attribute_name: "__string",
2111
- # order_by: "ASC", # accepts ASC, DESC
2112
- # },
2113
- # }
2114
- #
2115
1788
  # @!attribute [rw] criteria
2116
1789
  # Specifies, as a map, one or more property-based conditions that
2117
1790
  # filter the results of a query for information about S3 buckets.
@@ -2158,13 +1831,6 @@ module Aws::Macie2
2158
1831
  include Aws::Structure
2159
1832
  end
2160
1833
 
2161
- # @note When making an API call, you may pass DescribeClassificationJobRequest
2162
- # data as a hash:
2163
- #
2164
- # {
2165
- # job_id: "__string", # required
2166
- # }
2167
- #
2168
1834
  # @!attribute [rw] job_id
2169
1835
  # @return [String]
2170
1836
  #
@@ -2341,6 +2007,46 @@ module Aws::Macie2
2341
2007
  include Aws::Structure
2342
2008
  end
2343
2009
 
2010
+ # Provides information about a type of sensitive data that Amazon Macie
2011
+ # found in an S3 bucket while performing automated sensitive data
2012
+ # discovery for the bucket. The information also specifies the custom
2013
+ # data identifier or managed data identifier that detected the data.
2014
+ # This information is available only if automated sensitive data
2015
+ # discovery is currently enabled for your account.
2016
+ #
2017
+ # @!attribute [rw] arn
2018
+ # @return [String]
2019
+ #
2020
+ # @!attribute [rw] count
2021
+ # @return [Integer]
2022
+ #
2023
+ # @!attribute [rw] id
2024
+ # @return [String]
2025
+ #
2026
+ # @!attribute [rw] name
2027
+ # @return [String]
2028
+ #
2029
+ # @!attribute [rw] suppressed
2030
+ # @return [Boolean]
2031
+ #
2032
+ # @!attribute [rw] type
2033
+ # The type of data identifier that detected a specific type of
2034
+ # sensitive data in an S3 bucket. Possible values are:
2035
+ # @return [String]
2036
+ #
2037
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/Detection AWS API Documentation
2038
+ #
2039
+ class Detection < Struct.new(
2040
+ :arn,
2041
+ :count,
2042
+ :id,
2043
+ :name,
2044
+ :suppressed,
2045
+ :type)
2046
+ SENSITIVE = []
2047
+ include Aws::Structure
2048
+ end
2049
+
2344
2050
  # @api private
2345
2051
  #
2346
2052
  # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/DisableMacieRequest AWS API Documentation
@@ -2351,13 +2057,6 @@ module Aws::Macie2
2351
2057
  #
2352
2058
  class DisableMacieResponse < Aws::EmptyStructure; end
2353
2059
 
2354
- # @note When making an API call, you may pass DisableOrganizationAdminAccountRequest
2355
- # data as a hash:
2356
- #
2357
- # {
2358
- # admin_account_id: "__string", # required
2359
- # }
2360
- #
2361
2060
  # @!attribute [rw] admin_account_id
2362
2061
  # @return [String]
2363
2062
  #
@@ -2393,13 +2092,6 @@ module Aws::Macie2
2393
2092
  #
2394
2093
  class DisassociateFromMasterAccountResponse < Aws::EmptyStructure; end
2395
2094
 
2396
- # @note When making an API call, you may pass DisassociateMemberRequest
2397
- # data as a hash:
2398
- #
2399
- # {
2400
- # id: "__string", # required
2401
- # }
2402
- #
2403
2095
  # @!attribute [rw] id
2404
2096
  # @return [String]
2405
2097
  #
@@ -2439,15 +2131,6 @@ module Aws::Macie2
2439
2131
  # Enables Amazon Macie and specifies the configuration settings for a
2440
2132
  # Macie account.
2441
2133
  #
2442
- # @note When making an API call, you may pass EnableMacieRequest
2443
- # data as a hash:
2444
- #
2445
- # {
2446
- # client_token: "__string",
2447
- # finding_publishing_frequency: "FIFTEEN_MINUTES", # accepts FIFTEEN_MINUTES, ONE_HOUR, SIX_HOURS
2448
- # status: "PAUSED", # accepts PAUSED, ENABLED
2449
- # }
2450
- #
2451
2134
  # @!attribute [rw] client_token
2452
2135
  # **A suitable default value is auto-generated.** You should normally
2453
2136
  # not need to pass this option.
@@ -2488,14 +2171,6 @@ module Aws::Macie2
2488
2171
  # this request, you must be a user of the Organizations management
2489
2172
  # account.
2490
2173
  #
2491
- # @note When making an API call, you may pass EnableOrganizationAdminAccountRequest
2492
- # data as a hash:
2493
- #
2494
- # {
2495
- # admin_account_id: "__string", # required
2496
- # client_token: "__string",
2497
- # }
2498
- #
2499
2174
  # @!attribute [rw] admin_account_id
2500
2175
  # @return [String]
2501
2176
  #
@@ -2560,7 +2235,7 @@ module Aws::Macie2
2560
2235
  # @return [Boolean]
2561
2236
  #
2562
2237
  # @!attribute [rw] category
2563
- # The category of the finding. Valid values are:
2238
+ # The category of the finding. Possible values are:
2564
2239
  # @return [String]
2565
2240
  #
2566
2241
  # @!attribute [rw] classification_details
@@ -2610,7 +2285,7 @@ module Aws::Macie2
2610
2285
  #
2611
2286
  # @!attribute [rw] type
2612
2287
  # The type of finding. For details about each type, see [Types of
2613
- # Amazon Macie findings][1] in the *Amazon Macie User Guide*. Valid
2288
+ # Amazon Macie findings][1] in the *Amazon Macie User Guide*. Possible
2614
2289
  # values are:
2615
2290
  #
2616
2291
  #
@@ -2699,23 +2374,6 @@ module Aws::Macie2
2699
2374
  # Specifies, as a map, one or more property-based conditions that filter
2700
2375
  # the results of a query for findings.
2701
2376
  #
2702
- # @note When making an API call, you may pass FindingCriteria
2703
- # data as a hash:
2704
- #
2705
- # {
2706
- # criterion: {
2707
- # "__string" => {
2708
- # eq: ["__string"],
2709
- # eq_exact_match: ["__string"],
2710
- # gt: 1,
2711
- # gte: 1,
2712
- # lt: 1,
2713
- # lte: 1,
2714
- # neq: ["__string"],
2715
- # },
2716
- # },
2717
- # }
2718
- #
2719
2377
  # @!attribute [rw] criterion
2720
2378
  # Specifies a condition that defines a property, operator, and one or
2721
2379
  # more values to filter the results of a query for findings. The
@@ -2740,14 +2398,6 @@ module Aws::Macie2
2740
2398
  # Specifies criteria for sorting the results of a query that retrieves
2741
2399
  # aggregated statistical data about findings.
2742
2400
  #
2743
- # @note When making an API call, you may pass FindingStatisticsSortCriteria
2744
- # data as a hash:
2745
- #
2746
- # {
2747
- # attribute_name: "groupKey", # accepts groupKey, count
2748
- # order_by: "ASC", # accepts ASC, DESC
2749
- # }
2750
- #
2751
2401
  # @!attribute [rw] attribute_name
2752
2402
  # The grouping to sort the results by. Valid values are:
2753
2403
  # @return [String]
@@ -2767,8 +2417,8 @@ module Aws::Macie2
2767
2417
  # Provides information about a findings filter.
2768
2418
  #
2769
2419
  # @!attribute [rw] action
2770
- # The action to perform on findings that meet the filter criteria. To
2771
- # suppress (automatically archive) findings that meet the criteria,
2420
+ # The action to perform on findings that match the filter criteria. To
2421
+ # suppress (automatically archive) findings that match the criteria,
2772
2422
  # set this value to ARCHIVE. Valid values are:
2773
2423
  # @return [String]
2774
2424
  #
@@ -2821,13 +2471,6 @@ module Aws::Macie2
2821
2471
  include Aws::Structure
2822
2472
  end
2823
2473
 
2824
- # @note When making an API call, you may pass GetAllowListRequest
2825
- # data as a hash:
2826
- #
2827
- # {
2828
- # id: "__string", # required
2829
- # }
2830
- #
2831
2474
  # @!attribute [rw] id
2832
2475
  # @return [String]
2833
2476
  #
@@ -2892,15 +2535,56 @@ module Aws::Macie2
2892
2535
  include Aws::Structure
2893
2536
  end
2894
2537
 
2895
- # Specifies the account that owns the S3 buckets to retrieve aggregated
2896
- # statistical data for.
2538
+ # @api private
2539
+ #
2540
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetAutomatedDiscoveryConfigurationRequest AWS API Documentation
2541
+ #
2542
+ class GetAutomatedDiscoveryConfigurationRequest < Aws::EmptyStructure; end
2543
+
2544
+ # Provides information about the configuration settings for performing
2545
+ # automated sensitive data discovery for an Amazon Macie account, and
2546
+ # the status of the configuration for the account.
2547
+ #
2548
+ # @!attribute [rw] classification_scope_id
2549
+ # The unique identifier the classification scope.
2550
+ # @return [String]
2551
+ #
2552
+ # @!attribute [rw] disabled_at
2553
+ # Specifies a date and time in UTC and extended ISO 8601 format.
2554
+ # @return [Time]
2555
+ #
2556
+ # @!attribute [rw] first_enabled_at
2557
+ # Specifies a date and time in UTC and extended ISO 8601 format.
2558
+ # @return [Time]
2559
+ #
2560
+ # @!attribute [rw] last_updated_at
2561
+ # Specifies a date and time in UTC and extended ISO 8601 format.
2562
+ # @return [Time]
2563
+ #
2564
+ # @!attribute [rw] sensitivity_inspection_template_id
2565
+ # The unique identifier for the sensitivity inspection template.
2566
+ # @return [String]
2567
+ #
2568
+ # @!attribute [rw] status
2569
+ # The status of the automated sensitive data discovery configuration
2570
+ # for an Amazon Macie account. Valid values are:
2571
+ # @return [String]
2897
2572
  #
2898
- # @note When making an API call, you may pass GetBucketStatisticsRequest
2899
- # data as a hash:
2573
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetAutomatedDiscoveryConfigurationResponse AWS API Documentation
2900
2574
  #
2901
- # {
2902
- # account_id: "__string",
2903
- # }
2575
+ class GetAutomatedDiscoveryConfigurationResponse < Struct.new(
2576
+ :classification_scope_id,
2577
+ :disabled_at,
2578
+ :first_enabled_at,
2579
+ :last_updated_at,
2580
+ :sensitivity_inspection_template_id,
2581
+ :status)
2582
+ SENSITIVE = []
2583
+ include Aws::Structure
2584
+ end
2585
+
2586
+ # Specifies the account that owns the S3 buckets to retrieve aggregated
2587
+ # statistical data for.
2904
2588
  #
2905
2589
  # @!attribute [rw] account_id
2906
2590
  # @return [String]
@@ -2949,6 +2633,13 @@ module Aws::Macie2
2949
2633
  # aren't shared with other Amazon Web Services accounts.
2950
2634
  # @return [Types::BucketCountBySharedAccessType]
2951
2635
  #
2636
+ # @!attribute [rw] bucket_statistics_by_sensitivity
2637
+ # Provides aggregated statistical data for sensitive data discovery
2638
+ # metrics that apply to S3 buckets, grouped by bucket sensitivity
2639
+ # score (sensitivityScore). If automated sensitive data discovery is
2640
+ # currently disabled for your account, the value for each metric is 0.
2641
+ # @return [Types::BucketStatisticsBySensitivity]
2642
+ #
2952
2643
  # @!attribute [rw] classifiable_object_count
2953
2644
  # @return [Integer]
2954
2645
  #
@@ -2972,10 +2663,10 @@ module Aws::Macie2
2972
2663
  # number of objects that Amazon Macie can't analyze in one or more S3
2973
2664
  # buckets. In a BucketMetadata or MatchingBucket object, this data is
2974
2665
  # for a specific bucket. In a GetBucketStatisticsResponse object, this
2975
- # data is aggregated for the buckets in the query results. If
2976
- # versioning is enabled for a bucket, total storage size values are
2977
- # based on the size of the latest version of each applicable object in
2978
- # the bucket.
2666
+ # data is aggregated for all the buckets in the query results. If
2667
+ # versioning is enabled for a bucket, storage size values are based on
2668
+ # the size of the latest version of each applicable object in the
2669
+ # bucket.
2979
2670
  # @return [Types::ObjectLevelStatistics]
2980
2671
  #
2981
2672
  # @!attribute [rw] unclassifiable_object_size_in_bytes
@@ -2983,10 +2674,10 @@ module Aws::Macie2
2983
2674
  # number of objects that Amazon Macie can't analyze in one or more S3
2984
2675
  # buckets. In a BucketMetadata or MatchingBucket object, this data is
2985
2676
  # for a specific bucket. In a GetBucketStatisticsResponse object, this
2986
- # data is aggregated for the buckets in the query results. If
2987
- # versioning is enabled for a bucket, total storage size values are
2988
- # based on the size of the latest version of each applicable object in
2989
- # the bucket.
2677
+ # data is aggregated for all the buckets in the query results. If
2678
+ # versioning is enabled for a bucket, storage size values are based on
2679
+ # the size of the latest version of each applicable object in the
2680
+ # bucket.
2990
2681
  # @return [Types::ObjectLevelStatistics]
2991
2682
  #
2992
2683
  # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetBucketStatisticsResponse AWS API Documentation
@@ -2997,6 +2688,7 @@ module Aws::Macie2
2997
2688
  :bucket_count_by_encryption_type,
2998
2689
  :bucket_count_by_object_encryption_requirement,
2999
2690
  :bucket_count_by_shared_access_type,
2691
+ :bucket_statistics_by_sensitivity,
3000
2692
  :classifiable_object_count,
3001
2693
  :classifiable_size_in_bytes,
3002
2694
  :last_updated,
@@ -3021,8 +2713,7 @@ module Aws::Macie2
3021
2713
  # @!attribute [rw] configuration
3022
2714
  # Specifies where to store data classification results, and the
3023
2715
  # encryption settings to use when storing results in that location.
3024
- # Currently, you can store classification results only in an S3
3025
- # bucket.
2716
+ # The location must be an S3 bucket.
3026
2717
  # @return [Types::ClassificationExportConfiguration]
3027
2718
  #
3028
2719
  # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetClassificationExportConfigurationResponse AWS API Documentation
@@ -3033,13 +2724,44 @@ module Aws::Macie2
3033
2724
  include Aws::Structure
3034
2725
  end
3035
2726
 
3036
- # @note When making an API call, you may pass GetCustomDataIdentifierRequest
3037
- # data as a hash:
2727
+ # @!attribute [rw] id
2728
+ # @return [String]
2729
+ #
2730
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetClassificationScopeRequest AWS API Documentation
2731
+ #
2732
+ class GetClassificationScopeRequest < Struct.new(
2733
+ :id)
2734
+ SENSITIVE = []
2735
+ include Aws::Structure
2736
+ end
2737
+
2738
+ # Provides information about the classification scope settings for an
2739
+ # Amazon Macie account. Macie uses these settings when it performs
2740
+ # automated sensitive data discovery for the account.
2741
+ #
2742
+ # @!attribute [rw] id
2743
+ # The unique identifier the classification scope.
2744
+ # @return [String]
3038
2745
  #
3039
- # {
3040
- # id: "__string", # required
3041
- # }
2746
+ # @!attribute [rw] name
2747
+ # The name of the classification scope.
2748
+ # @return [String]
2749
+ #
2750
+ # @!attribute [rw] s3
2751
+ # Specifies the S3 buckets that are excluded from automated sensitive
2752
+ # data discovery for an Amazon Macie account.
2753
+ # @return [Types::S3ClassificationScope]
2754
+ #
2755
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetClassificationScopeResponse AWS API Documentation
3042
2756
  #
2757
+ class GetClassificationScopeResponse < Struct.new(
2758
+ :id,
2759
+ :name,
2760
+ :s3)
2761
+ SENSITIVE = []
2762
+ include Aws::Structure
2763
+ end
2764
+
3043
2765
  # @!attribute [rw] id
3044
2766
  # @return [String]
3045
2767
  #
@@ -3129,31 +2851,6 @@ module Aws::Macie2
3129
2851
  # the results of a query that retrieves aggregated statistical data
3130
2852
  # about findings.
3131
2853
  #
3132
- # @note When making an API call, you may pass GetFindingStatisticsRequest
3133
- # data as a hash:
3134
- #
3135
- # {
3136
- # finding_criteria: {
3137
- # criterion: {
3138
- # "__string" => {
3139
- # eq: ["__string"],
3140
- # eq_exact_match: ["__string"],
3141
- # gt: 1,
3142
- # gte: 1,
3143
- # lt: 1,
3144
- # lte: 1,
3145
- # neq: ["__string"],
3146
- # },
3147
- # },
3148
- # },
3149
- # group_by: "resourcesAffected.s3Bucket.name", # required, accepts resourcesAffected.s3Bucket.name, type, classificationDetails.jobId, severity.description
3150
- # size: 1,
3151
- # sort_criteria: {
3152
- # attribute_name: "groupKey", # accepts groupKey, count
3153
- # order_by: "ASC", # accepts ASC, DESC
3154
- # },
3155
- # }
3156
- #
3157
2854
  # @!attribute [rw] finding_criteria
3158
2855
  # Specifies, as a map, one or more property-based conditions that
3159
2856
  # filter the results of a query for findings.
@@ -3195,13 +2892,6 @@ module Aws::Macie2
3195
2892
  include Aws::Structure
3196
2893
  end
3197
2894
 
3198
- # @note When making an API call, you may pass GetFindingsFilterRequest
3199
- # data as a hash:
3200
- #
3201
- # {
3202
- # id: "__string", # required
3203
- # }
3204
- #
3205
2895
  # @!attribute [rw] id
3206
2896
  # @return [String]
3207
2897
  #
@@ -3217,8 +2907,8 @@ module Aws::Macie2
3217
2907
  # findings filter.
3218
2908
  #
3219
2909
  # @!attribute [rw] action
3220
- # The action to perform on findings that meet the filter criteria. To
3221
- # suppress (automatically archive) findings that meet the criteria,
2910
+ # The action to perform on findings that match the filter criteria. To
2911
+ # suppress (automatically archive) findings that match the criteria,
3222
2912
  # set this value to ARCHIVE. Valid values are:
3223
2913
  # @return [String]
3224
2914
  #
@@ -3292,17 +2982,6 @@ module Aws::Macie2
3292
2982
 
3293
2983
  # Specifies one or more findings to retrieve.
3294
2984
  #
3295
- # @note When making an API call, you may pass GetFindingsRequest
3296
- # data as a hash:
3297
- #
3298
- # {
3299
- # finding_ids: ["__string"], # required
3300
- # sort_criteria: {
3301
- # attribute_name: "__string",
3302
- # order_by: "ASC", # accepts ASC, DESC
3303
- # },
3304
- # }
3305
- #
3306
2985
  # @!attribute [rw] finding_ids
3307
2986
  # @return [Array<String>]
3308
2987
  #
@@ -3360,8 +3039,8 @@ module Aws::Macie2
3360
3039
  #
3361
3040
  class GetMacieSessionRequest < Aws::EmptyStructure; end
3362
3041
 
3363
- # Provides information about the current status and configuration
3364
- # settings for an Amazon Macie account.
3042
+ # Provides information about the status and configuration settings for
3043
+ # an Amazon Macie account.
3365
3044
  #
3366
3045
  # @!attribute [rw] created_at
3367
3046
  # @return [Time]
@@ -3423,13 +3102,6 @@ module Aws::Macie2
3423
3102
  include Aws::Structure
3424
3103
  end
3425
3104
 
3426
- # @note When making an API call, you may pass GetMemberRequest
3427
- # data as a hash:
3428
- #
3429
- # {
3430
- # id: "__string", # required
3431
- # }
3432
- #
3433
3105
  # @!attribute [rw] id
3434
3106
  # @return [String]
3435
3107
  #
@@ -3491,6 +3163,52 @@ module Aws::Macie2
3491
3163
  include Aws::Structure
3492
3164
  end
3493
3165
 
3166
+ # @!attribute [rw] resource_arn
3167
+ # @return [String]
3168
+ #
3169
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetResourceProfileRequest AWS API Documentation
3170
+ #
3171
+ class GetResourceProfileRequest < Struct.new(
3172
+ :resource_arn)
3173
+ SENSITIVE = []
3174
+ include Aws::Structure
3175
+ end
3176
+
3177
+ # Provides the results of a query that retrieved sensitive data
3178
+ # discovery statistics and the sensitivity score for an S3 bucket that
3179
+ # Amazon Macie monitors and analyzes for your account. This data is
3180
+ # available only if automated sensitive data discovery is currently
3181
+ # enabled for your account.
3182
+ #
3183
+ # @!attribute [rw] profile_updated_at
3184
+ # @return [Time]
3185
+ #
3186
+ # @!attribute [rw] sensitivity_score
3187
+ # @return [Integer]
3188
+ #
3189
+ # @!attribute [rw] sensitivity_score_overridden
3190
+ # @return [Boolean]
3191
+ #
3192
+ # @!attribute [rw] statistics
3193
+ # Provides statistical data for sensitive data discovery metrics that
3194
+ # apply to an S3 bucket that Amazon Macie monitors and analyzes for
3195
+ # your account. The statistics capture the results of automated
3196
+ # sensitive data discovery activities that Macie has performed for the
3197
+ # bucket. The data is available only if automated sensitive data
3198
+ # discovery is currently enabled for your account.
3199
+ # @return [Types::ResourceStatistics]
3200
+ #
3201
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetResourceProfileResponse AWS API Documentation
3202
+ #
3203
+ class GetResourceProfileResponse < Struct.new(
3204
+ :profile_updated_at,
3205
+ :sensitivity_score,
3206
+ :sensitivity_score_overridden,
3207
+ :statistics)
3208
+ SENSITIVE = []
3209
+ include Aws::Structure
3210
+ end
3211
+
3494
3212
  # @api private
3495
3213
  #
3496
3214
  # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetRevealConfigurationRequest AWS API Documentation
@@ -3518,13 +3236,6 @@ module Aws::Macie2
3518
3236
  include Aws::Structure
3519
3237
  end
3520
3238
 
3521
- # @note When making an API call, you may pass GetSensitiveDataOccurrencesAvailabilityRequest
3522
- # data as a hash:
3523
- #
3524
- # {
3525
- # finding_id: "__string", # required
3526
- # }
3527
- #
3528
3239
  # @!attribute [rw] finding_id
3529
3240
  # @return [String]
3530
3241
  #
@@ -3557,13 +3268,6 @@ module Aws::Macie2
3557
3268
  include Aws::Structure
3558
3269
  end
3559
3270
 
3560
- # @note When making an API call, you may pass GetSensitiveDataOccurrencesRequest
3561
- # data as a hash:
3562
- #
3563
- # {
3564
- # finding_id: "__string", # required
3565
- # }
3566
- #
3567
3271
  # @!attribute [rw] finding_id
3568
3272
  # @return [String]
3569
3273
  #
@@ -3601,30 +3305,74 @@ module Aws::Macie2
3601
3305
  include Aws::Structure
3602
3306
  end
3603
3307
 
3308
+ # @!attribute [rw] id
3309
+ # @return [String]
3310
+ #
3311
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetSensitivityInspectionTemplateRequest AWS API Documentation
3312
+ #
3313
+ class GetSensitivityInspectionTemplateRequest < Struct.new(
3314
+ :id)
3315
+ SENSITIVE = []
3316
+ include Aws::Structure
3317
+ end
3318
+
3319
+ # Provides information about the settings for the sensitivity inspection
3320
+ # template for an Amazon Macie account. Macie uses the template's
3321
+ # settings when it performs automated sensitive data discovery for the
3322
+ # account.
3323
+ #
3324
+ # @!attribute [rw] description
3325
+ # @return [String]
3326
+ #
3327
+ # @!attribute [rw] excludes
3328
+ # Specifies managed data identifiers to exclude (not use) when
3329
+ # performing automated sensitive data discovery for an Amazon Macie
3330
+ # account. For information about the managed data identifiers that
3331
+ # Amazon Macie currently provides, see [Using managed data
3332
+ # identifiers][1] in the *Amazon Macie User Guide*.
3333
+ #
3334
+ #
3335
+ #
3336
+ # [1]: https://docs.aws.amazon.com/macie/latest/user/managed-data-identifiers.html
3337
+ # @return [Types::SensitivityInspectionTemplateExcludes]
3338
+ #
3339
+ # @!attribute [rw] includes
3340
+ # Specifies the allow lists, custom data identifiers, and managed data
3341
+ # identifiers to include (use) when performing automated sensitive
3342
+ # data discovery for an Amazon Macie account. The configuration must
3343
+ # specify at least one custom data identifier or managed data
3344
+ # identifier. For information about the managed data identifiers that
3345
+ # Amazon Macie currently provides, see [Using managed data
3346
+ # identifiers][1] in the *Amazon Macie User Guide*.
3347
+ #
3348
+ #
3349
+ #
3350
+ # [1]: https://docs.aws.amazon.com/macie/latest/user/managed-data-identifiers.html
3351
+ # @return [Types::SensitivityInspectionTemplateIncludes]
3352
+ #
3353
+ # @!attribute [rw] name
3354
+ # @return [String]
3355
+ #
3356
+ # @!attribute [rw] sensitivity_inspection_template_id
3357
+ # The unique identifier for the sensitivity inspection template.
3358
+ # @return [String]
3359
+ #
3360
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/GetSensitivityInspectionTemplateResponse AWS API Documentation
3361
+ #
3362
+ class GetSensitivityInspectionTemplateResponse < Struct.new(
3363
+ :description,
3364
+ :excludes,
3365
+ :includes,
3366
+ :name,
3367
+ :sensitivity_inspection_template_id)
3368
+ SENSITIVE = []
3369
+ include Aws::Structure
3370
+ end
3371
+
3604
3372
  # Specifies criteria for filtering, sorting, and paginating the results
3605
3373
  # of a query for quotas and aggregated usage data for one or more Amazon
3606
3374
  # Macie accounts.
3607
3375
  #
3608
- # @note When making an API call, you may pass GetUsageStatisticsRequest
3609
- # data as a hash:
3610
- #
3611
- # {
3612
- # filter_by: [
3613
- # {
3614
- # comparator: "GT", # accepts GT, GTE, LT, LTE, EQ, NE, CONTAINS
3615
- # key: "accountId", # accepts accountId, serviceLimit, freeTrialStartDate, total
3616
- # values: ["__string"],
3617
- # },
3618
- # ],
3619
- # max_results: 1,
3620
- # next_token: "__string",
3621
- # sort_by: {
3622
- # key: "accountId", # accepts accountId, total, serviceLimitValue, freeTrialStartDate
3623
- # order_by: "ASC", # accepts ASC, DESC
3624
- # },
3625
- # time_range: "MONTH_TO_DATE", # accepts MONTH_TO_DATE, PAST_30_DAYS
3626
- # }
3627
- #
3628
3376
  # @!attribute [rw] filter_by
3629
3377
  # @return [Array<Types::UsageStatisticsFilter>]
3630
3378
  #
@@ -3680,13 +3428,6 @@ module Aws::Macie2
3680
3428
  include Aws::Structure
3681
3429
  end
3682
3430
 
3683
- # @note When making an API call, you may pass GetUsageTotalsRequest
3684
- # data as a hash:
3685
- #
3686
- # {
3687
- # time_range: "__string",
3688
- # }
3689
- #
3690
3431
  # @!attribute [rw] time_range
3691
3432
  # @return [String]
3692
3433
  #
@@ -3944,20 +3685,6 @@ module Aws::Macie2
3944
3685
 
3945
3686
  # Specifies the recurrence pattern for running a classification job.
3946
3687
  #
3947
- # @note When making an API call, you may pass JobScheduleFrequency
3948
- # data as a hash:
3949
- #
3950
- # {
3951
- # daily_schedule: {
3952
- # },
3953
- # monthly_schedule: {
3954
- # day_of_month: 1,
3955
- # },
3956
- # weekly_schedule: {
3957
- # day_of_week: "SUNDAY", # accepts SUNDAY, MONDAY, TUESDAY, WEDNESDAY, THURSDAY, FRIDAY, SATURDAY
3958
- # },
3959
- # }
3960
- #
3961
3688
  # @!attribute [rw] daily_schedule
3962
3689
  # Specifies that a classification job runs once a day, every day. This
3963
3690
  # is an empty object.
@@ -3988,28 +3715,6 @@ module Aws::Macie2
3988
3715
  # JobScopeTerm object can contain only one simpleScopeTerm object or one
3989
3716
  # tagScopeTerm object.
3990
3717
  #
3991
- # @note When making an API call, you may pass JobScopeTerm
3992
- # data as a hash:
3993
- #
3994
- # {
3995
- # simple_scope_term: {
3996
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
3997
- # key: "OBJECT_EXTENSION", # accepts OBJECT_EXTENSION, OBJECT_LAST_MODIFIED_DATE, OBJECT_SIZE, OBJECT_KEY
3998
- # values: ["__string"],
3999
- # },
4000
- # tag_scope_term: {
4001
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
4002
- # key: "__string",
4003
- # tag_values: [
4004
- # {
4005
- # key: "__string",
4006
- # value: "__string",
4007
- # },
4008
- # ],
4009
- # target: "S3_OBJECT", # accepts S3_OBJECT
4010
- # },
4011
- # }
4012
- #
4013
3718
  # @!attribute [rw] simple_scope_term
4014
3719
  # Specifies a property-based condition that determines whether an S3
4015
3720
  # object is included or excluded from a classification job.
@@ -4033,32 +3738,6 @@ module Aws::Macie2
4033
3738
  # criteria for including or excluding S3 objects from a classification
4034
3739
  # job.
4035
3740
  #
4036
- # @note When making an API call, you may pass JobScopingBlock
4037
- # data as a hash:
4038
- #
4039
- # {
4040
- # and: [
4041
- # {
4042
- # simple_scope_term: {
4043
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
4044
- # key: "OBJECT_EXTENSION", # accepts OBJECT_EXTENSION, OBJECT_LAST_MODIFIED_DATE, OBJECT_SIZE, OBJECT_KEY
4045
- # values: ["__string"],
4046
- # },
4047
- # tag_scope_term: {
4048
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
4049
- # key: "__string",
4050
- # tag_values: [
4051
- # {
4052
- # key: "__string",
4053
- # value: "__string",
4054
- # },
4055
- # ],
4056
- # target: "S3_OBJECT", # accepts S3_OBJECT
4057
- # },
4058
- # },
4059
- # ],
4060
- # }
4061
- #
4062
3741
  # @!attribute [rw] and
4063
3742
  # @return [Array<Types::JobScopeTerm>]
4064
3743
  #
@@ -4073,6 +3752,12 @@ module Aws::Macie2
4073
3752
  # Provides information about a classification job, including the current
4074
3753
  # status of the job.
4075
3754
  #
3755
+ # @!attribute [rw] bucket_criteria
3756
+ # Specifies property- and tag-based conditions that define criteria
3757
+ # for including or excluding S3 buckets from a classification job.
3758
+ # Exclude conditions take precedence over include conditions.
3759
+ # @return [Types::S3BucketCriteriaForJob]
3760
+ #
4076
3761
  # @!attribute [rw] bucket_definitions
4077
3762
  # @return [Array<Types::S3BucketDefinitionForJob>]
4078
3763
  #
@@ -4115,15 +3800,10 @@ module Aws::Macie2
4115
3800
  # status of RUNNING.
4116
3801
  # @return [Types::UserPausedDetails]
4117
3802
  #
4118
- # @!attribute [rw] bucket_criteria
4119
- # Specifies property- and tag-based conditions that define criteria
4120
- # for including or excluding S3 buckets from a classification job.
4121
- # Exclude conditions take precedence over include conditions.
4122
- # @return [Types::S3BucketCriteriaForJob]
4123
- #
4124
3803
  # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/JobSummary AWS API Documentation
4125
3804
  #
4126
3805
  class JobSummary < Struct.new(
3806
+ :bucket_criteria,
4127
3807
  :bucket_definitions,
4128
3808
  :created_at,
4129
3809
  :job_id,
@@ -4131,8 +3811,7 @@ module Aws::Macie2
4131
3811
  :job_type,
4132
3812
  :last_run_error_status,
4133
3813
  :name,
4134
- :user_paused_details,
4135
- :bucket_criteria)
3814
+ :user_paused_details)
4136
3815
  SENSITIVE = []
4137
3816
  include Aws::Structure
4138
3817
  end
@@ -4179,14 +3858,6 @@ module Aws::Macie2
4179
3858
  include Aws::Structure
4180
3859
  end
4181
3860
 
4182
- # @note When making an API call, you may pass ListAllowListsRequest
4183
- # data as a hash:
4184
- #
4185
- # {
4186
- # max_results: 1,
4187
- # next_token: "__string",
4188
- # }
4189
- #
4190
3861
  # @!attribute [rw] max_results
4191
3862
  # @return [Integer]
4192
3863
  #
@@ -4222,34 +3893,6 @@ module Aws::Macie2
4222
3893
  # Specifies criteria for filtering, sorting, and paginating the results
4223
3894
  # of a request for information about classification jobs.
4224
3895
  #
4225
- # @note When making an API call, you may pass ListClassificationJobsRequest
4226
- # data as a hash:
4227
- #
4228
- # {
4229
- # filter_criteria: {
4230
- # excludes: [
4231
- # {
4232
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
4233
- # key: "jobType", # accepts jobType, jobStatus, createdAt, name
4234
- # values: ["__string"],
4235
- # },
4236
- # ],
4237
- # includes: [
4238
- # {
4239
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
4240
- # key: "jobType", # accepts jobType, jobStatus, createdAt, name
4241
- # values: ["__string"],
4242
- # },
4243
- # ],
4244
- # },
4245
- # max_results: 1,
4246
- # next_token: "__string",
4247
- # sort_criteria: {
4248
- # attribute_name: "createdAt", # accepts createdAt, jobStatus, name, jobType
4249
- # order_by: "ASC", # accepts ASC, DESC
4250
- # },
4251
- # }
4252
- #
4253
3896
  # @!attribute [rw] filter_criteria
4254
3897
  # Specifies criteria for filtering the results of a request for
4255
3898
  # information about classification jobs.
@@ -4295,16 +3938,44 @@ module Aws::Macie2
4295
3938
  include Aws::Structure
4296
3939
  end
4297
3940
 
4298
- # Specifies criteria for paginating the results of a request for
4299
- # information about custom data identifiers.
3941
+ # @!attribute [rw] name
3942
+ # @return [String]
3943
+ #
3944
+ # @!attribute [rw] next_token
3945
+ # @return [String]
4300
3946
  #
4301
- # @note When making an API call, you may pass ListCustomDataIdentifiersRequest
4302
- # data as a hash:
3947
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ListClassificationScopesRequest AWS API Documentation
3948
+ #
3949
+ class ListClassificationScopesRequest < Struct.new(
3950
+ :name,
3951
+ :next_token)
3952
+ SENSITIVE = []
3953
+ include Aws::Structure
3954
+ end
3955
+
3956
+ # Provides the results of a request for information about the
3957
+ # classification scope for an Amazon Macie account. Macie uses the
3958
+ # scope's settings when it performs automated sensitive data discovery
3959
+ # for the account.
4303
3960
  #
4304
- # {
4305
- # max_results: 1,
4306
- # next_token: "__string",
4307
- # }
3961
+ # @!attribute [rw] classification_scopes
3962
+ # @return [Array<Types::ClassificationScopeSummary>]
3963
+ #
3964
+ # @!attribute [rw] next_token
3965
+ # Specifies which page of results to return in a paginated response.
3966
+ # @return [String]
3967
+ #
3968
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ListClassificationScopesResponse AWS API Documentation
3969
+ #
3970
+ class ListClassificationScopesResponse < Struct.new(
3971
+ :classification_scopes,
3972
+ :next_token)
3973
+ SENSITIVE = []
3974
+ include Aws::Structure
3975
+ end
3976
+
3977
+ # Specifies criteria for paginating the results of a request for
3978
+ # information about custom data identifiers.
4308
3979
  #
4309
3980
  # @!attribute [rw] max_results
4310
3981
  # @return [Integer]
@@ -4339,14 +4010,6 @@ module Aws::Macie2
4339
4010
  include Aws::Structure
4340
4011
  end
4341
4012
 
4342
- # @note When making an API call, you may pass ListFindingsFiltersRequest
4343
- # data as a hash:
4344
- #
4345
- # {
4346
- # max_results: 1,
4347
- # next_token: "__string",
4348
- # }
4349
- #
4350
4013
  # @!attribute [rw] max_results
4351
4014
  # @return [Integer]
4352
4015
  #
@@ -4382,31 +4045,6 @@ module Aws::Macie2
4382
4045
  # Specifies criteria for filtering, sorting, and paginating the results
4383
4046
  # of a request for information about findings.
4384
4047
  #
4385
- # @note When making an API call, you may pass ListFindingsRequest
4386
- # data as a hash:
4387
- #
4388
- # {
4389
- # finding_criteria: {
4390
- # criterion: {
4391
- # "__string" => {
4392
- # eq: ["__string"],
4393
- # eq_exact_match: ["__string"],
4394
- # gt: 1,
4395
- # gte: 1,
4396
- # lt: 1,
4397
- # lte: 1,
4398
- # neq: ["__string"],
4399
- # },
4400
- # },
4401
- # },
4402
- # max_results: 1,
4403
- # next_token: "__string",
4404
- # sort_criteria: {
4405
- # attribute_name: "__string",
4406
- # order_by: "ASC", # accepts ASC, DESC
4407
- # },
4408
- # }
4409
- #
4410
4048
  # @!attribute [rw] finding_criteria
4411
4049
  # Specifies, as a map, one or more property-based conditions that
4412
4050
  # filter the results of a query for findings.
@@ -4452,14 +4090,6 @@ module Aws::Macie2
4452
4090
  include Aws::Structure
4453
4091
  end
4454
4092
 
4455
- # @note When making an API call, you may pass ListInvitationsRequest
4456
- # data as a hash:
4457
- #
4458
- # {
4459
- # max_results: 1,
4460
- # next_token: "__string",
4461
- # }
4462
- #
4463
4093
  # @!attribute [rw] max_results
4464
4094
  # @return [Integer]
4465
4095
  #
@@ -4496,26 +4126,6 @@ module Aws::Macie2
4496
4126
  # Specifies criteria for filtering the results of a request for
4497
4127
  # information about classification jobs.
4498
4128
  #
4499
- # @note When making an API call, you may pass ListJobsFilterCriteria
4500
- # data as a hash:
4501
- #
4502
- # {
4503
- # excludes: [
4504
- # {
4505
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
4506
- # key: "jobType", # accepts jobType, jobStatus, createdAt, name
4507
- # values: ["__string"],
4508
- # },
4509
- # ],
4510
- # includes: [
4511
- # {
4512
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
4513
- # key: "jobType", # accepts jobType, jobStatus, createdAt, name
4514
- # values: ["__string"],
4515
- # },
4516
- # ],
4517
- # }
4518
- #
4519
4129
  # @!attribute [rw] excludes
4520
4130
  # @return [Array<Types::ListJobsFilterTerm>]
4521
4131
  #
@@ -4535,15 +4145,6 @@ module Aws::Macie2
4535
4145
  # information about classification jobs. Each condition consists of a
4536
4146
  # property, an operator, and one or more values.
4537
4147
  #
4538
- # @note When making an API call, you may pass ListJobsFilterTerm
4539
- # data as a hash:
4540
- #
4541
- # {
4542
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
4543
- # key: "jobType", # accepts jobType, jobStatus, createdAt, name
4544
- # values: ["__string"],
4545
- # }
4546
- #
4547
4148
  # @!attribute [rw] comparator
4548
4149
  # The operator to use in a condition. Depending on the type of
4549
4150
  # condition, possible values are:
@@ -4569,14 +4170,6 @@ module Aws::Macie2
4569
4170
  # Specifies criteria for sorting the results of a request for
4570
4171
  # information about classification jobs.
4571
4172
  #
4572
- # @note When making an API call, you may pass ListJobsSortCriteria
4573
- # data as a hash:
4574
- #
4575
- # {
4576
- # attribute_name: "createdAt", # accepts createdAt, jobStatus, name, jobType
4577
- # order_by: "ASC", # accepts ASC, DESC
4578
- # }
4579
- #
4580
4173
  # @!attribute [rw] attribute_name
4581
4174
  # The property to sort the results by. Valid values are:
4582
4175
  # @return [String]
@@ -4596,13 +4189,6 @@ module Aws::Macie2
4596
4189
  # Specifies criteria for paginating the results of a request for
4597
4190
  # information about managed data identifiers.
4598
4191
  #
4599
- # @note When making an API call, you may pass ListManagedDataIdentifiersRequest
4600
- # data as a hash:
4601
- #
4602
- # {
4603
- # next_token: "__string",
4604
- # }
4605
- #
4606
4192
  # @!attribute [rw] next_token
4607
4193
  # @return [String]
4608
4194
  #
@@ -4632,15 +4218,6 @@ module Aws::Macie2
4632
4218
  include Aws::Structure
4633
4219
  end
4634
4220
 
4635
- # @note When making an API call, you may pass ListMembersRequest
4636
- # data as a hash:
4637
- #
4638
- # {
4639
- # max_results: 1,
4640
- # next_token: "__string",
4641
- # only_associated: "__string",
4642
- # }
4643
- #
4644
4221
  # @!attribute [rw] max_results
4645
4222
  # @return [Integer]
4646
4223
  #
@@ -4678,14 +4255,6 @@ module Aws::Macie2
4678
4255
  include Aws::Structure
4679
4256
  end
4680
4257
 
4681
- # @note When making an API call, you may pass ListOrganizationAdminAccountsRequest
4682
- # data as a hash:
4683
- #
4684
- # {
4685
- # max_results: 1,
4686
- # next_token: "__string",
4687
- # }
4688
- #
4689
4258
  # @!attribute [rw] max_results
4690
4259
  # @return [Integer]
4691
4260
  #
@@ -4719,13 +4288,117 @@ module Aws::Macie2
4719
4288
  include Aws::Structure
4720
4289
  end
4721
4290
 
4722
- # @note When making an API call, you may pass ListTagsForResourceRequest
4723
- # data as a hash:
4291
+ # @!attribute [rw] next_token
4292
+ # @return [String]
4293
+ #
4294
+ # @!attribute [rw] resource_arn
4295
+ # @return [String]
4296
+ #
4297
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ListResourceProfileArtifactsRequest AWS API Documentation
4298
+ #
4299
+ class ListResourceProfileArtifactsRequest < Struct.new(
4300
+ :next_token,
4301
+ :resource_arn)
4302
+ SENSITIVE = []
4303
+ include Aws::Structure
4304
+ end
4305
+
4306
+ # Provides the results of a request for information about the S3 objects
4307
+ # that Amazon Macie selected for analysis while performing automated
4308
+ # sensitive data discovery for an S3 bucket. This information is
4309
+ # available only if automated sensitive data discovery is currently
4310
+ # enabled for your account.
4724
4311
  #
4725
- # {
4726
- # resource_arn: "__string", # required
4727
- # }
4312
+ # @!attribute [rw] artifacts
4313
+ # @return [Array<Types::ResourceProfileArtifact>]
4314
+ #
4315
+ # @!attribute [rw] next_token
4316
+ # @return [String]
4317
+ #
4318
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ListResourceProfileArtifactsResponse AWS API Documentation
4319
+ #
4320
+ class ListResourceProfileArtifactsResponse < Struct.new(
4321
+ :artifacts,
4322
+ :next_token)
4323
+ SENSITIVE = []
4324
+ include Aws::Structure
4325
+ end
4326
+
4327
+ # @!attribute [rw] max_results
4328
+ # @return [Integer]
4329
+ #
4330
+ # @!attribute [rw] next_token
4331
+ # @return [String]
4728
4332
  #
4333
+ # @!attribute [rw] resource_arn
4334
+ # @return [String]
4335
+ #
4336
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ListResourceProfileDetectionsRequest AWS API Documentation
4337
+ #
4338
+ class ListResourceProfileDetectionsRequest < Struct.new(
4339
+ :max_results,
4340
+ :next_token,
4341
+ :resource_arn)
4342
+ SENSITIVE = []
4343
+ include Aws::Structure
4344
+ end
4345
+
4346
+ # Provides the results of a request for information about the types and
4347
+ # amount of sensitive data that Amazon Macie found in an S3 bucket while
4348
+ # performing automated sensitive data discovery for the bucket. This
4349
+ # information is available only if automated sensitive data discovery is
4350
+ # currently enabled for your account.
4351
+ #
4352
+ # @!attribute [rw] detections
4353
+ # @return [Array<Types::Detection>]
4354
+ #
4355
+ # @!attribute [rw] next_token
4356
+ # @return [String]
4357
+ #
4358
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ListResourceProfileDetectionsResponse AWS API Documentation
4359
+ #
4360
+ class ListResourceProfileDetectionsResponse < Struct.new(
4361
+ :detections,
4362
+ :next_token)
4363
+ SENSITIVE = []
4364
+ include Aws::Structure
4365
+ end
4366
+
4367
+ # @!attribute [rw] max_results
4368
+ # @return [Integer]
4369
+ #
4370
+ # @!attribute [rw] next_token
4371
+ # @return [String]
4372
+ #
4373
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ListSensitivityInspectionTemplatesRequest AWS API Documentation
4374
+ #
4375
+ class ListSensitivityInspectionTemplatesRequest < Struct.new(
4376
+ :max_results,
4377
+ :next_token)
4378
+ SENSITIVE = []
4379
+ include Aws::Structure
4380
+ end
4381
+
4382
+ # Provides the results of a request for information about the
4383
+ # sensitivity inspection template for an Amazon Macie account. Macie
4384
+ # uses the template's settings when it performs automated sensitive
4385
+ # data discovery for the account.
4386
+ #
4387
+ # @!attribute [rw] next_token
4388
+ # @return [String]
4389
+ #
4390
+ # @!attribute [rw] sensitivity_inspection_templates
4391
+ # @return [Array<Types::SensitivityInspectionTemplatesEntry>]
4392
+ #
4393
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ListSensitivityInspectionTemplatesResponse AWS API Documentation
4394
+ #
4395
+ class ListSensitivityInspectionTemplatesResponse < Struct.new(
4396
+ :next_token,
4397
+ :sensitivity_inspection_templates)
4398
+ SENSITIVE = []
4399
+ include Aws::Structure
4400
+ end
4401
+
4729
4402
  # @!attribute [rw] resource_arn
4730
4403
  # @return [String]
4731
4404
  #
@@ -4784,7 +4457,7 @@ module Aws::Macie2
4784
4457
  # that Amazon Macie monitors and analyzes for your account. If an error
4785
4458
  # occurs when Macie attempts to retrieve and process information about
4786
4459
  # the bucket or the bucket's objects, the value for most of these
4787
- # properties is null. Exceptions are accountId and bucketName. To
4460
+ # properties is null. Key exceptions are accountId and bucketName. To
4788
4461
  # identify the cause of the error, refer to the errorCode and
4789
4462
  # errorMessage values.
4790
4463
  #
@@ -4802,8 +4475,8 @@ module Aws::Macie2
4802
4475
  #
4803
4476
  # @!attribute [rw] error_code
4804
4477
  # The error code for an error that prevented Amazon Macie from
4805
- # retrieving and processing information about an S3 bucket and the
4806
- # bucket's objects.
4478
+ # retrieving and processing metadata from Amazon S3 for an S3 bucket
4479
+ # and the bucket's objects.
4807
4480
  # @return [String]
4808
4481
  #
4809
4482
  # @!attribute [rw] error_message
@@ -4815,6 +4488,9 @@ module Aws::Macie2
4815
4488
  # of the job that ran most recently.
4816
4489
  # @return [Types::JobDetails]
4817
4490
  #
4491
+ # @!attribute [rw] last_automated_discovery_time
4492
+ # @return [Time]
4493
+ #
4818
4494
  # @!attribute [rw] object_count
4819
4495
  # @return [Integer]
4820
4496
  #
@@ -4824,6 +4500,9 @@ module Aws::Macie2
4824
4500
  # client-side encryption, or aren't encrypted.
4825
4501
  # @return [Types::ObjectCountByEncryptionType]
4826
4502
  #
4503
+ # @!attribute [rw] sensitivity_score
4504
+ # @return [Integer]
4505
+ #
4827
4506
  # @!attribute [rw] size_in_bytes
4828
4507
  # @return [Integer]
4829
4508
  #
@@ -4835,10 +4514,10 @@ module Aws::Macie2
4835
4514
  # number of objects that Amazon Macie can't analyze in one or more S3
4836
4515
  # buckets. In a BucketMetadata or MatchingBucket object, this data is
4837
4516
  # for a specific bucket. In a GetBucketStatisticsResponse object, this
4838
- # data is aggregated for the buckets in the query results. If
4839
- # versioning is enabled for a bucket, total storage size values are
4840
- # based on the size of the latest version of each applicable object in
4841
- # the bucket.
4517
+ # data is aggregated for all the buckets in the query results. If
4518
+ # versioning is enabled for a bucket, storage size values are based on
4519
+ # the size of the latest version of each applicable object in the
4520
+ # bucket.
4842
4521
  # @return [Types::ObjectLevelStatistics]
4843
4522
  #
4844
4523
  # @!attribute [rw] unclassifiable_object_size_in_bytes
@@ -4846,10 +4525,10 @@ module Aws::Macie2
4846
4525
  # number of objects that Amazon Macie can't analyze in one or more S3
4847
4526
  # buckets. In a BucketMetadata or MatchingBucket object, this data is
4848
4527
  # for a specific bucket. In a GetBucketStatisticsResponse object, this
4849
- # data is aggregated for the buckets in the query results. If
4850
- # versioning is enabled for a bucket, total storage size values are
4851
- # based on the size of the latest version of each applicable object in
4852
- # the bucket.
4528
+ # data is aggregated for all the buckets in the query results. If
4529
+ # versioning is enabled for a bucket, storage size values are based on
4530
+ # the size of the latest version of each applicable object in the
4531
+ # bucket.
4853
4532
  # @return [Types::ObjectLevelStatistics]
4854
4533
  #
4855
4534
  # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/MatchingBucket AWS API Documentation
@@ -4862,8 +4541,10 @@ module Aws::Macie2
4862
4541
  :error_code,
4863
4542
  :error_message,
4864
4543
  :job_details,
4544
+ :last_automated_discovery_time,
4865
4545
  :object_count,
4866
4546
  :object_count_by_encryption_type,
4547
+ :sensitivity_score,
4867
4548
  :size_in_bytes,
4868
4549
  :size_in_bytes_compressed,
4869
4550
  :unclassifiable_object_count,
@@ -4881,9 +4562,9 @@ module Aws::Macie2
4881
4562
  # that Amazon Macie monitors and analyzes for your account. If an
4882
4563
  # error occurs when Macie attempts to retrieve and process information
4883
4564
  # about the bucket or the bucket's objects, the value for most of
4884
- # these properties is null. Exceptions are accountId and bucketName.
4885
- # To identify the cause of the error, refer to the errorCode and
4886
- # errorMessage values.
4565
+ # these properties is null. Key exceptions are accountId and
4566
+ # bucketName. To identify the cause of the error, refer to the
4567
+ # errorCode and errorMessage values.
4887
4568
  # @return [Types::MatchingBucket]
4888
4569
  #
4889
4570
  # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/MatchingResource AWS API Documentation
@@ -4947,13 +4628,6 @@ module Aws::Macie2
4947
4628
  # Specifies a monthly recurrence pattern for running a classification
4948
4629
  # job.
4949
4630
  #
4950
- # @note When making an API call, you may pass MonthlySchedule
4951
- # data as a hash:
4952
- #
4953
- # {
4954
- # day_of_month: 1,
4955
- # }
4956
- #
4957
4631
  # @!attribute [rw] day_of_month
4958
4632
  # @return [Integer]
4959
4633
  #
@@ -5000,9 +4674,9 @@ module Aws::Macie2
5000
4674
  # of objects that Amazon Macie can't analyze in one or more S3 buckets.
5001
4675
  # In a BucketMetadata or MatchingBucket object, this data is for a
5002
4676
  # specific bucket. In a GetBucketStatisticsResponse object, this data is
5003
- # aggregated for the buckets in the query results. If versioning is
5004
- # enabled for a bucket, total storage size values are based on the size
5005
- # of the latest version of each applicable object in the bucket.
4677
+ # aggregated for all the buckets in the query results. If versioning is
4678
+ # enabled for a bucket, storage size values are based on the size of the
4679
+ # latest version of each applicable object in the bucket.
5006
4680
  #
5007
4681
  # @!attribute [rw] file_type
5008
4682
  # @return [Integer]
@@ -5113,26 +4787,11 @@ module Aws::Macie2
5113
4787
 
5114
4788
  # Specifies where to store data classification results, and the
5115
4789
  # encryption settings to use when storing results in that location.
5116
- # Currently, you can store classification results only in an S3 bucket.
5117
- #
5118
- # @note When making an API call, you may pass PutClassificationExportConfigurationRequest
5119
- # data as a hash:
5120
- #
5121
- # {
5122
- # configuration: { # required
5123
- # s3_destination: {
5124
- # bucket_name: "__string", # required
5125
- # key_prefix: "__string",
5126
- # kms_key_arn: "__string", # required
5127
- # },
5128
- # },
5129
- # }
5130
4790
  #
5131
4791
  # @!attribute [rw] configuration
5132
4792
  # Specifies where to store data classification results, and the
5133
4793
  # encryption settings to use when storing results in that location.
5134
- # Currently, you can store classification results only in an S3
5135
- # bucket.
4794
+ # The location must be an S3 bucket.
5136
4795
  # @return [Types::ClassificationExportConfiguration]
5137
4796
  #
5138
4797
  # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/PutClassificationExportConfigurationRequest AWS API Documentation
@@ -5149,8 +4808,7 @@ module Aws::Macie2
5149
4808
  # @!attribute [rw] configuration
5150
4809
  # Specifies where to store data classification results, and the
5151
4810
  # encryption settings to use when storing results in that location.
5152
- # Currently, you can store classification results only in an S3
5153
- # bucket.
4811
+ # The location must be an S3 bucket.
5154
4812
  # @return [Types::ClassificationExportConfiguration]
5155
4813
  #
5156
4814
  # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/PutClassificationExportConfigurationResponse AWS API Documentation
@@ -5164,17 +4822,6 @@ module Aws::Macie2
5164
4822
  # Specifies configuration settings for publishing findings to Security
5165
4823
  # Hub automatically.
5166
4824
  #
5167
- # @note When making an API call, you may pass PutFindingsPublicationConfigurationRequest
5168
- # data as a hash:
5169
- #
5170
- # {
5171
- # client_token: "__string",
5172
- # security_hub_configuration: {
5173
- # publish_classification_findings: false, # required
5174
- # publish_policy_findings: false, # required
5175
- # },
5176
- # }
5177
- #
5178
4825
  # @!attribute [rw] client_token
5179
4826
  # **A suitable default value is auto-generated.** You should normally
5180
4827
  # not need to pass this option.
@@ -5282,6 +4929,81 @@ module Aws::Macie2
5282
4929
  include Aws::Structure
5283
4930
  end
5284
4931
 
4932
+ # Provides information about an S3 object that Amazon Macie selected for
4933
+ # analysis while performing automated sensitive data discovery for an S3
4934
+ # bucket, and the status and results of the analysis. This information
4935
+ # is available only if automated sensitive data discovery is currently
4936
+ # enabled for your account.
4937
+ #
4938
+ # @!attribute [rw] arn
4939
+ # @return [String]
4940
+ #
4941
+ # @!attribute [rw] classification_result_status
4942
+ # @return [String]
4943
+ #
4944
+ # @!attribute [rw] sensitive
4945
+ # @return [Boolean]
4946
+ #
4947
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ResourceProfileArtifact AWS API Documentation
4948
+ #
4949
+ class ResourceProfileArtifact < Struct.new(
4950
+ :arn,
4951
+ :classification_result_status,
4952
+ :sensitive)
4953
+ SENSITIVE = []
4954
+ include Aws::Structure
4955
+ end
4956
+
4957
+ # Provides statistical data for sensitive data discovery metrics that
4958
+ # apply to an S3 bucket that Amazon Macie monitors and analyzes for your
4959
+ # account. The statistics capture the results of automated sensitive
4960
+ # data discovery activities that Macie has performed for the bucket. The
4961
+ # data is available only if automated sensitive data discovery is
4962
+ # currently enabled for your account.
4963
+ #
4964
+ # @!attribute [rw] total_bytes_classified
4965
+ # @return [Integer]
4966
+ #
4967
+ # @!attribute [rw] total_detections
4968
+ # @return [Integer]
4969
+ #
4970
+ # @!attribute [rw] total_detections_suppressed
4971
+ # @return [Integer]
4972
+ #
4973
+ # @!attribute [rw] total_items_classified
4974
+ # @return [Integer]
4975
+ #
4976
+ # @!attribute [rw] total_items_sensitive
4977
+ # @return [Integer]
4978
+ #
4979
+ # @!attribute [rw] total_items_skipped
4980
+ # @return [Integer]
4981
+ #
4982
+ # @!attribute [rw] total_items_skipped_invalid_encryption
4983
+ # @return [Integer]
4984
+ #
4985
+ # @!attribute [rw] total_items_skipped_invalid_kms
4986
+ # @return [Integer]
4987
+ #
4988
+ # @!attribute [rw] total_items_skipped_permission_denied
4989
+ # @return [Integer]
4990
+ #
4991
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/ResourceStatistics AWS API Documentation
4992
+ #
4993
+ class ResourceStatistics < Struct.new(
4994
+ :total_bytes_classified,
4995
+ :total_detections,
4996
+ :total_detections_suppressed,
4997
+ :total_items_classified,
4998
+ :total_items_sensitive,
4999
+ :total_items_skipped,
5000
+ :total_items_skipped_invalid_encryption,
5001
+ :total_items_skipped_invalid_kms,
5002
+ :total_items_skipped_permission_denied)
5003
+ SENSITIVE = []
5004
+ include Aws::Structure
5005
+ end
5006
+
5285
5007
  # Provides information about the resources that a finding applies to.
5286
5008
  #
5287
5009
  # @!attribute [rw] s3_bucket
@@ -5308,14 +5030,6 @@ module Aws::Macie2
5308
5030
  # Management Service (KMS) key. Otherwise, an error occurs. Macie uses
5309
5031
  # the specified key to encrypt the sensitive data that you retrieve.
5310
5032
  #
5311
- # @note When making an API call, you may pass RevealConfiguration
5312
- # data as a hash:
5313
- #
5314
- # {
5315
- # kms_key_id: "__stringMin1Max2048",
5316
- # status: "ENABLED", # required, accepts ENABLED, DISABLED
5317
- # }
5318
- #
5319
5033
  # @!attribute [rw] kms_key_id
5320
5034
  # @return [String]
5321
5035
  #
@@ -5387,52 +5101,6 @@ module Aws::Macie2
5387
5101
  # including or excluding S3 buckets from a classification job. Exclude
5388
5102
  # conditions take precedence over include conditions.
5389
5103
  #
5390
- # @note When making an API call, you may pass S3BucketCriteriaForJob
5391
- # data as a hash:
5392
- #
5393
- # {
5394
- # excludes: {
5395
- # and: [
5396
- # {
5397
- # simple_criterion: {
5398
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5399
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
5400
- # values: ["__string"],
5401
- # },
5402
- # tag_criterion: {
5403
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5404
- # tag_values: [
5405
- # {
5406
- # key: "__string",
5407
- # value: "__string",
5408
- # },
5409
- # ],
5410
- # },
5411
- # },
5412
- # ],
5413
- # },
5414
- # includes: {
5415
- # and: [
5416
- # {
5417
- # simple_criterion: {
5418
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5419
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
5420
- # values: ["__string"],
5421
- # },
5422
- # tag_criterion: {
5423
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5424
- # tag_values: [
5425
- # {
5426
- # key: "__string",
5427
- # value: "__string",
5428
- # },
5429
- # ],
5430
- # },
5431
- # },
5432
- # ],
5433
- # },
5434
- # }
5435
- #
5436
5104
  # @!attribute [rw] excludes
5437
5105
  # Specifies one or more property- and tag-based conditions that define
5438
5106
  # criteria for including or excluding S3 buckets from a classification
@@ -5458,14 +5126,6 @@ module Aws::Macie2
5458
5126
  # classification job to analyze, and one or more specific buckets to
5459
5127
  # analyze for that account.
5460
5128
  #
5461
- # @note When making an API call, you may pass S3BucketDefinitionForJob
5462
- # data as a hash:
5463
- #
5464
- # {
5465
- # account_id: "__string", # required
5466
- # buckets: ["__string"], # required
5467
- # }
5468
- #
5469
5129
  # @!attribute [rw] account_id
5470
5130
  # @return [String]
5471
5131
  #
@@ -5499,17 +5159,75 @@ module Aws::Macie2
5499
5159
  include Aws::Structure
5500
5160
  end
5501
5161
 
5502
- # Specifies an S3 bucket to store data classification results in, and
5503
- # the encryption settings to use when storing results in that bucket.
5162
+ # Specifies the S3 buckets that are excluded from automated sensitive
5163
+ # data discovery for an Amazon Macie account.
5164
+ #
5165
+ # @!attribute [rw] excludes
5166
+ # Specifies the names of the S3 buckets that are excluded from
5167
+ # automated sensitive data discovery.
5168
+ # @return [Types::S3ClassificationScopeExclusion]
5504
5169
  #
5505
- # @note When making an API call, you may pass S3Destination
5506
- # data as a hash:
5170
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/S3ClassificationScope AWS API Documentation
5171
+ #
5172
+ class S3ClassificationScope < Struct.new(
5173
+ :excludes)
5174
+ SENSITIVE = []
5175
+ include Aws::Structure
5176
+ end
5177
+
5178
+ # Specifies the names of the S3 buckets that are excluded from automated
5179
+ # sensitive data discovery.
5180
+ #
5181
+ # @!attribute [rw] bucket_names
5182
+ # @return [Array<String>]
5507
5183
  #
5508
- # {
5509
- # bucket_name: "__string", # required
5510
- # key_prefix: "__string",
5511
- # kms_key_arn: "__string", # required
5512
- # }
5184
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/S3ClassificationScopeExclusion AWS API Documentation
5185
+ #
5186
+ class S3ClassificationScopeExclusion < Struct.new(
5187
+ :bucket_names)
5188
+ SENSITIVE = []
5189
+ include Aws::Structure
5190
+ end
5191
+
5192
+ # Specifies S3 buckets to add or remove from the exclusion list defined
5193
+ # by the classification scope for an Amazon Macie account.
5194
+ #
5195
+ # @!attribute [rw] bucket_names
5196
+ # @return [Array<String>]
5197
+ #
5198
+ # @!attribute [rw] operation
5199
+ # Specifies how to apply changes to the S3 bucket exclusion list
5200
+ # defined by the classification scope for an Amazon Macie account.
5201
+ # Valid values are:
5202
+ # @return [String]
5203
+ #
5204
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/S3ClassificationScopeExclusionUpdate AWS API Documentation
5205
+ #
5206
+ class S3ClassificationScopeExclusionUpdate < Struct.new(
5207
+ :bucket_names,
5208
+ :operation)
5209
+ SENSITIVE = []
5210
+ include Aws::Structure
5211
+ end
5212
+
5213
+ # Specifies changes to the list of S3 buckets that are excluded from
5214
+ # automated sensitive data discovery for an Amazon Macie account.
5215
+ #
5216
+ # @!attribute [rw] excludes
5217
+ # Specifies S3 buckets to add or remove from the exclusion list
5218
+ # defined by the classification scope for an Amazon Macie account.
5219
+ # @return [Types::S3ClassificationScopeExclusionUpdate]
5220
+ #
5221
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/S3ClassificationScopeUpdate AWS API Documentation
5222
+ #
5223
+ class S3ClassificationScopeUpdate < Struct.new(
5224
+ :excludes)
5225
+ SENSITIVE = []
5226
+ include Aws::Structure
5227
+ end
5228
+
5229
+ # Specifies an S3 bucket to store data classification results in, and
5230
+ # the encryption settings to use when storing results in that bucket.
5513
5231
  #
5514
5232
  # @!attribute [rw] bucket_name
5515
5233
  # @return [String]
@@ -5538,105 +5256,11 @@ module Aws::Macie2
5538
5256
  # objects in any buckets that match the specified criteria each time the
5539
5257
  # job starts to run.
5540
5258
  #
5541
- # @note When making an API call, you may pass S3JobDefinition
5542
- # data as a hash:
5543
- #
5544
- # {
5545
- # bucket_definitions: [
5546
- # {
5547
- # account_id: "__string", # required
5548
- # buckets: ["__string"], # required
5549
- # },
5550
- # ],
5551
- # scoping: {
5552
- # excludes: {
5553
- # and: [
5554
- # {
5555
- # simple_scope_term: {
5556
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5557
- # key: "OBJECT_EXTENSION", # accepts OBJECT_EXTENSION, OBJECT_LAST_MODIFIED_DATE, OBJECT_SIZE, OBJECT_KEY
5558
- # values: ["__string"],
5559
- # },
5560
- # tag_scope_term: {
5561
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5562
- # key: "__string",
5563
- # tag_values: [
5564
- # {
5565
- # key: "__string",
5566
- # value: "__string",
5567
- # },
5568
- # ],
5569
- # target: "S3_OBJECT", # accepts S3_OBJECT
5570
- # },
5571
- # },
5572
- # ],
5573
- # },
5574
- # includes: {
5575
- # and: [
5576
- # {
5577
- # simple_scope_term: {
5578
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5579
- # key: "OBJECT_EXTENSION", # accepts OBJECT_EXTENSION, OBJECT_LAST_MODIFIED_DATE, OBJECT_SIZE, OBJECT_KEY
5580
- # values: ["__string"],
5581
- # },
5582
- # tag_scope_term: {
5583
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5584
- # key: "__string",
5585
- # tag_values: [
5586
- # {
5587
- # key: "__string",
5588
- # value: "__string",
5589
- # },
5590
- # ],
5591
- # target: "S3_OBJECT", # accepts S3_OBJECT
5592
- # },
5593
- # },
5594
- # ],
5595
- # },
5596
- # },
5597
- # bucket_criteria: {
5598
- # excludes: {
5599
- # and: [
5600
- # {
5601
- # simple_criterion: {
5602
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5603
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
5604
- # values: ["__string"],
5605
- # },
5606
- # tag_criterion: {
5607
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5608
- # tag_values: [
5609
- # {
5610
- # key: "__string",
5611
- # value: "__string",
5612
- # },
5613
- # ],
5614
- # },
5615
- # },
5616
- # ],
5617
- # },
5618
- # includes: {
5619
- # and: [
5620
- # {
5621
- # simple_criterion: {
5622
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5623
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
5624
- # values: ["__string"],
5625
- # },
5626
- # tag_criterion: {
5627
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5628
- # tag_values: [
5629
- # {
5630
- # key: "__string",
5631
- # value: "__string",
5632
- # },
5633
- # ],
5634
- # },
5635
- # },
5636
- # ],
5637
- # },
5638
- # },
5639
- # }
5259
+ # @!attribute [rw] bucket_criteria
5260
+ # Specifies property- and tag-based conditions that define criteria
5261
+ # for including or excluding S3 buckets from a classification job.
5262
+ # Exclude conditions take precedence over include conditions.
5263
+ # @return [Types::S3BucketCriteriaForJob]
5640
5264
  #
5641
5265
  # @!attribute [rw] bucket_definitions
5642
5266
  # @return [Array<Types::S3BucketDefinitionForJob>]
@@ -5647,18 +5271,12 @@ module Aws::Macie2
5647
5271
  # job. Exclude conditions take precedence over include conditions.
5648
5272
  # @return [Types::Scoping]
5649
5273
  #
5650
- # @!attribute [rw] bucket_criteria
5651
- # Specifies property- and tag-based conditions that define criteria
5652
- # for including or excluding S3 buckets from a classification job.
5653
- # Exclude conditions take precedence over include conditions.
5654
- # @return [Types::S3BucketCriteriaForJob]
5655
- #
5656
5274
  # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/S3JobDefinition AWS API Documentation
5657
5275
  #
5658
5276
  class S3JobDefinition < Struct.new(
5277
+ :bucket_criteria,
5659
5278
  :bucket_definitions,
5660
- :scoping,
5661
- :bucket_criteria)
5279
+ :scoping)
5662
5280
  SENSITIVE = []
5663
5281
  include Aws::Structure
5664
5282
  end
@@ -5729,14 +5347,6 @@ module Aws::Macie2
5729
5347
  # Provides information about an S3 object that lists specific text to
5730
5348
  # ignore.
5731
5349
  #
5732
- # @note When making an API call, you may pass S3WordsList
5733
- # data as a hash:
5734
- #
5735
- # {
5736
- # bucket_name: "__stringMin3Max255PatternAZaZ093255", # required
5737
- # object_key: "__stringMin1Max1024PatternSS", # required
5738
- # }
5739
- #
5740
5350
  # @!attribute [rw] bucket_name
5741
5351
  # @return [String]
5742
5352
  #
@@ -5756,56 +5366,6 @@ module Aws::Macie2
5756
5366
  # criteria for including or excluding S3 objects from a classification
5757
5367
  # job. Exclude conditions take precedence over include conditions.
5758
5368
  #
5759
- # @note When making an API call, you may pass Scoping
5760
- # data as a hash:
5761
- #
5762
- # {
5763
- # excludes: {
5764
- # and: [
5765
- # {
5766
- # simple_scope_term: {
5767
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5768
- # key: "OBJECT_EXTENSION", # accepts OBJECT_EXTENSION, OBJECT_LAST_MODIFIED_DATE, OBJECT_SIZE, OBJECT_KEY
5769
- # values: ["__string"],
5770
- # },
5771
- # tag_scope_term: {
5772
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5773
- # key: "__string",
5774
- # tag_values: [
5775
- # {
5776
- # key: "__string",
5777
- # value: "__string",
5778
- # },
5779
- # ],
5780
- # target: "S3_OBJECT", # accepts S3_OBJECT
5781
- # },
5782
- # },
5783
- # ],
5784
- # },
5785
- # includes: {
5786
- # and: [
5787
- # {
5788
- # simple_scope_term: {
5789
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5790
- # key: "OBJECT_EXTENSION", # accepts OBJECT_EXTENSION, OBJECT_LAST_MODIFIED_DATE, OBJECT_SIZE, OBJECT_KEY
5791
- # values: ["__string"],
5792
- # },
5793
- # tag_scope_term: {
5794
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
5795
- # key: "__string",
5796
- # tag_values: [
5797
- # {
5798
- # key: "__string",
5799
- # value: "__string",
5800
- # },
5801
- # ],
5802
- # target: "S3_OBJECT", # accepts S3_OBJECT
5803
- # },
5804
- # },
5805
- # ],
5806
- # },
5807
- # }
5808
- #
5809
5369
  # @!attribute [rw] excludes
5810
5370
  # Specifies one or more property- and tag-based conditions that define
5811
5371
  # criteria for including or excluding S3 objects from a classification
@@ -5831,52 +5391,6 @@ module Aws::Macie2
5831
5391
  # criteria for including or excluding S3 buckets from the query results.
5832
5392
  # Exclude conditions take precedence over include conditions.
5833
5393
  #
5834
- # @note When making an API call, you may pass SearchResourcesBucketCriteria
5835
- # data as a hash:
5836
- #
5837
- # {
5838
- # excludes: {
5839
- # and: [
5840
- # {
5841
- # simple_criterion: {
5842
- # comparator: "EQ", # accepts EQ, NE
5843
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
5844
- # values: ["__string"],
5845
- # },
5846
- # tag_criterion: {
5847
- # comparator: "EQ", # accepts EQ, NE
5848
- # tag_values: [
5849
- # {
5850
- # key: "__string",
5851
- # value: "__string",
5852
- # },
5853
- # ],
5854
- # },
5855
- # },
5856
- # ],
5857
- # },
5858
- # includes: {
5859
- # and: [
5860
- # {
5861
- # simple_criterion: {
5862
- # comparator: "EQ", # accepts EQ, NE
5863
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
5864
- # values: ["__string"],
5865
- # },
5866
- # tag_criterion: {
5867
- # comparator: "EQ", # accepts EQ, NE
5868
- # tag_values: [
5869
- # {
5870
- # key: "__string",
5871
- # value: "__string",
5872
- # },
5873
- # ],
5874
- # },
5875
- # },
5876
- # ],
5877
- # },
5878
- # }
5879
- #
5880
5394
  # @!attribute [rw] excludes
5881
5395
  # Specifies property- and tag-based conditions that define filter
5882
5396
  # criteria for including or excluding Amazon Web Services resources
@@ -5901,26 +5415,6 @@ module Aws::Macie2
5901
5415
  # Specifies a property- or tag-based filter condition for including or
5902
5416
  # excluding Amazon Web Services resources from the query results.
5903
5417
  #
5904
- # @note When making an API call, you may pass SearchResourcesCriteria
5905
- # data as a hash:
5906
- #
5907
- # {
5908
- # simple_criterion: {
5909
- # comparator: "EQ", # accepts EQ, NE
5910
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
5911
- # values: ["__string"],
5912
- # },
5913
- # tag_criterion: {
5914
- # comparator: "EQ", # accepts EQ, NE
5915
- # tag_values: [
5916
- # {
5917
- # key: "__string",
5918
- # value: "__string",
5919
- # },
5920
- # ],
5921
- # },
5922
- # }
5923
- #
5924
5418
  # @!attribute [rw] simple_criterion
5925
5419
  # Specifies a property-based filter condition that determines which
5926
5420
  # Amazon Web Services resources are included or excluded from the
@@ -5946,30 +5440,6 @@ module Aws::Macie2
5946
5440
  # criteria for including or excluding Amazon Web Services resources from
5947
5441
  # the query results.
5948
5442
  #
5949
- # @note When making an API call, you may pass SearchResourcesCriteriaBlock
5950
- # data as a hash:
5951
- #
5952
- # {
5953
- # and: [
5954
- # {
5955
- # simple_criterion: {
5956
- # comparator: "EQ", # accepts EQ, NE
5957
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
5958
- # values: ["__string"],
5959
- # },
5960
- # tag_criterion: {
5961
- # comparator: "EQ", # accepts EQ, NE
5962
- # tag_values: [
5963
- # {
5964
- # key: "__string",
5965
- # value: "__string",
5966
- # },
5967
- # ],
5968
- # },
5969
- # },
5970
- # ],
5971
- # }
5972
- #
5973
5443
  # @!attribute [rw] and
5974
5444
  # @return [Array<Types::SearchResourcesCriteria>]
5975
5445
  #
@@ -5985,60 +5455,6 @@ module Aws::Macie2
5985
5455
  # of a query for statistical data and other information about Amazon Web
5986
5456
  # Services resources that Amazon Macie monitors and analyzes.
5987
5457
  #
5988
- # @note When making an API call, you may pass SearchResourcesRequest
5989
- # data as a hash:
5990
- #
5991
- # {
5992
- # bucket_criteria: {
5993
- # excludes: {
5994
- # and: [
5995
- # {
5996
- # simple_criterion: {
5997
- # comparator: "EQ", # accepts EQ, NE
5998
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
5999
- # values: ["__string"],
6000
- # },
6001
- # tag_criterion: {
6002
- # comparator: "EQ", # accepts EQ, NE
6003
- # tag_values: [
6004
- # {
6005
- # key: "__string",
6006
- # value: "__string",
6007
- # },
6008
- # ],
6009
- # },
6010
- # },
6011
- # ],
6012
- # },
6013
- # includes: {
6014
- # and: [
6015
- # {
6016
- # simple_criterion: {
6017
- # comparator: "EQ", # accepts EQ, NE
6018
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
6019
- # values: ["__string"],
6020
- # },
6021
- # tag_criterion: {
6022
- # comparator: "EQ", # accepts EQ, NE
6023
- # tag_values: [
6024
- # {
6025
- # key: "__string",
6026
- # value: "__string",
6027
- # },
6028
- # ],
6029
- # },
6030
- # },
6031
- # ],
6032
- # },
6033
- # },
6034
- # max_results: 1,
6035
- # next_token: "__string",
6036
- # sort_criteria: {
6037
- # attribute_name: "ACCOUNT_ID", # accepts ACCOUNT_ID, RESOURCE_NAME, S3_CLASSIFIABLE_OBJECT_COUNT, S3_CLASSIFIABLE_SIZE_IN_BYTES
6038
- # order_by: "ASC", # accepts ASC, DESC
6039
- # },
6040
- # }
6041
- #
6042
5458
  # @!attribute [rw] bucket_criteria
6043
5459
  # Specifies property- and tag-based conditions that define filter
6044
5460
  # criteria for including or excluding S3 buckets from the query
@@ -6091,15 +5507,6 @@ module Aws::Macie2
6091
5507
  # Amazon Web Services resources are included or excluded from the query
6092
5508
  # results.
6093
5509
  #
6094
- # @note When making an API call, you may pass SearchResourcesSimpleCriterion
6095
- # data as a hash:
6096
- #
6097
- # {
6098
- # comparator: "EQ", # accepts EQ, NE
6099
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
6100
- # values: ["__string"],
6101
- # }
6102
- #
6103
5510
  # @!attribute [rw] comparator
6104
5511
  # The operator to use in a condition that filters the results of a
6105
5512
  # query. Valid values are:
@@ -6127,14 +5534,6 @@ module Aws::Macie2
6127
5534
  # about Amazon Web Services resources that Amazon Macie monitors and
6128
5535
  # analyzes.
6129
5536
  #
6130
- # @note When making an API call, you may pass SearchResourcesSortCriteria
6131
- # data as a hash:
6132
- #
6133
- # {
6134
- # attribute_name: "ACCOUNT_ID", # accepts ACCOUNT_ID, RESOURCE_NAME, S3_CLASSIFIABLE_OBJECT_COUNT, S3_CLASSIFIABLE_SIZE_IN_BYTES
6135
- # order_by: "ASC", # accepts ASC, DESC
6136
- # }
6137
- #
6138
5537
  # @!attribute [rw] attribute_name
6139
5538
  # The property to sort the query results by. Valid values are:
6140
5539
  # @return [String]
@@ -6155,19 +5554,6 @@ module Aws::Macie2
6155
5554
  # Web Services resources are included or excluded from the query
6156
5555
  # results.
6157
5556
  #
6158
- # @note When making an API call, you may pass SearchResourcesTagCriterion
6159
- # data as a hash:
6160
- #
6161
- # {
6162
- # comparator: "EQ", # accepts EQ, NE
6163
- # tag_values: [
6164
- # {
6165
- # key: "__string",
6166
- # value: "__string",
6167
- # },
6168
- # ],
6169
- # }
6170
- #
6171
5557
  # @!attribute [rw] comparator
6172
5558
  # The operator to use in a condition that filters the results of a
6173
5559
  # query. Valid values are:
@@ -6190,14 +5576,6 @@ module Aws::Macie2
6190
5576
  # values are case sensitive. Also, Amazon Macie doesn't support use of
6191
5577
  # partial values or wildcard characters in tag-based filter conditions.
6192
5578
  #
6193
- # @note When making an API call, you may pass SearchResourcesTagCriterionPair
6194
- # data as a hash:
6195
- #
6196
- # {
6197
- # key: "__string",
6198
- # value: "__string",
6199
- # }
6200
- #
6201
5579
  # @!attribute [rw] key
6202
5580
  # @return [String]
6203
5581
  #
@@ -6222,14 +5600,6 @@ module Aws::Macie2
6222
5600
  #
6223
5601
  # [1]: https://docs.aws.amazon.com/macie/latest/user/securityhub-integration.html
6224
5602
  #
6225
- # @note When making an API call, you may pass SecurityHubConfiguration
6226
- # data as a hash:
6227
- #
6228
- # {
6229
- # publish_classification_findings: false, # required
6230
- # publish_policy_findings: false, # required
6231
- # }
6232
- #
6233
5603
  # @!attribute [rw] publish_classification_findings
6234
5604
  # @return [Boolean]
6235
5605
  #
@@ -6275,12 +5645,113 @@ module Aws::Macie2
6275
5645
  include Aws::Structure
6276
5646
  end
6277
5647
 
5648
+ # Provides aggregated statistical data for sensitive data discovery
5649
+ # metrics that apply to S3 buckets. Each field contains aggregated data
5650
+ # for all the buckets that have a sensitivity score (sensitivityScore)
5651
+ # of a specified value or within a specified range
5652
+ # (BucketStatisticsBySensitivity). If automated sensitive data discovery
5653
+ # is currently disabled for your account, the value for each field is 0.
5654
+ #
5655
+ # @!attribute [rw] classifiable_size_in_bytes
5656
+ # @return [Integer]
5657
+ #
5658
+ # @!attribute [rw] publicly_accessible_count
5659
+ # @return [Integer]
5660
+ #
5661
+ # @!attribute [rw] total_count
5662
+ # @return [Integer]
5663
+ #
5664
+ # @!attribute [rw] total_size_in_bytes
5665
+ # @return [Integer]
5666
+ #
5667
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/SensitivityAggregations AWS API Documentation
5668
+ #
5669
+ class SensitivityAggregations < Struct.new(
5670
+ :classifiable_size_in_bytes,
5671
+ :publicly_accessible_count,
5672
+ :total_count,
5673
+ :total_size_in_bytes)
5674
+ SENSITIVE = []
5675
+ include Aws::Structure
5676
+ end
5677
+
5678
+ # Specifies managed data identifiers to exclude (not use) when
5679
+ # performing automated sensitive data discovery for an Amazon Macie
5680
+ # account. For information about the managed data identifiers that
5681
+ # Amazon Macie currently provides, see [Using managed data
5682
+ # identifiers][1] in the *Amazon Macie User Guide*.
5683
+ #
5684
+ #
5685
+ #
5686
+ # [1]: https://docs.aws.amazon.com/macie/latest/user/managed-data-identifiers.html
5687
+ #
5688
+ # @!attribute [rw] managed_data_identifier_ids
5689
+ # @return [Array<String>]
5690
+ #
5691
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/SensitivityInspectionTemplateExcludes AWS API Documentation
5692
+ #
5693
+ class SensitivityInspectionTemplateExcludes < Struct.new(
5694
+ :managed_data_identifier_ids)
5695
+ SENSITIVE = []
5696
+ include Aws::Structure
5697
+ end
5698
+
5699
+ # Specifies the allow lists, custom data identifiers, and managed data
5700
+ # identifiers to include (use) when performing automated sensitive data
5701
+ # discovery for an Amazon Macie account. The configuration must specify
5702
+ # at least one custom data identifier or managed data identifier. For
5703
+ # information about the managed data identifiers that Amazon Macie
5704
+ # currently provides, see [Using managed data identifiers][1] in the
5705
+ # *Amazon Macie User Guide*.
5706
+ #
5707
+ #
5708
+ #
5709
+ # [1]: https://docs.aws.amazon.com/macie/latest/user/managed-data-identifiers.html
5710
+ #
5711
+ # @!attribute [rw] allow_list_ids
5712
+ # @return [Array<String>]
5713
+ #
5714
+ # @!attribute [rw] custom_data_identifier_ids
5715
+ # @return [Array<String>]
5716
+ #
5717
+ # @!attribute [rw] managed_data_identifier_ids
5718
+ # @return [Array<String>]
5719
+ #
5720
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/SensitivityInspectionTemplateIncludes AWS API Documentation
5721
+ #
5722
+ class SensitivityInspectionTemplateIncludes < Struct.new(
5723
+ :allow_list_ids,
5724
+ :custom_data_identifier_ids,
5725
+ :managed_data_identifier_ids)
5726
+ SENSITIVE = []
5727
+ include Aws::Structure
5728
+ end
5729
+
5730
+ # Provides information about the sensitivity inspection template for an
5731
+ # Amazon Macie account. Macie uses the template's settings when it
5732
+ # performs automated sensitive data discovery for the account.
5733
+ #
5734
+ # @!attribute [rw] id
5735
+ # @return [String]
5736
+ #
5737
+ # @!attribute [rw] name
5738
+ # @return [String]
5739
+ #
5740
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/SensitivityInspectionTemplatesEntry AWS API Documentation
5741
+ #
5742
+ class SensitivityInspectionTemplatesEntry < Struct.new(
5743
+ :id,
5744
+ :name)
5745
+ SENSITIVE = []
5746
+ include Aws::Structure
5747
+ end
5748
+
6278
5749
  # Provides information about the server-side encryption settings for an
6279
5750
  # S3 bucket or S3 object.
6280
5751
  #
6281
5752
  # @!attribute [rw] encryption_type
6282
5753
  # The type of server-side encryption that's used to encrypt an S3
6283
- # object or objects in an S3 bucket. Valid values are:
5754
+ # object or objects in an S3 bucket. Possible values are:
6284
5755
  # @return [String]
6285
5756
  #
6286
5757
  # @!attribute [rw] kms_master_key_id
@@ -6425,14 +5896,6 @@ module Aws::Macie2
6425
5896
  # the findings, based on the number of occurrences of text that matches
6426
5897
  # the custom data identifier's detection criteria.
6427
5898
  #
6428
- # @note When making an API call, you may pass SeverityLevel
6429
- # data as a hash:
6430
- #
6431
- # {
6432
- # occurrences_threshold: 1, # required
6433
- # severity: "LOW", # required, accepts LOW, MEDIUM, HIGH
6434
- # }
6435
- #
6436
5899
  # @!attribute [rw] occurrences_threshold
6437
5900
  # @return [Integer]
6438
5901
  #
@@ -6453,15 +5916,6 @@ module Aws::Macie2
6453
5916
  # Specifies a property-based condition that determines whether an S3
6454
5917
  # bucket is included or excluded from a classification job.
6455
5918
  #
6456
- # @note When making an API call, you may pass SimpleCriterionForJob
6457
- # data as a hash:
6458
- #
6459
- # {
6460
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
6461
- # key: "ACCOUNT_ID", # accepts ACCOUNT_ID, S3_BUCKET_NAME, S3_BUCKET_EFFECTIVE_PERMISSION, S3_BUCKET_SHARED_ACCESS
6462
- # values: ["__string"],
6463
- # }
6464
- #
6465
5919
  # @!attribute [rw] comparator
6466
5920
  # The operator to use in a condition. Depending on the type of
6467
5921
  # condition, possible values are:
@@ -6489,15 +5943,6 @@ module Aws::Macie2
6489
5943
  # Specifies a property-based condition that determines whether an S3
6490
5944
  # object is included or excluded from a classification job.
6491
5945
  #
6492
- # @note When making an API call, you may pass SimpleScopeTerm
6493
- # data as a hash:
6494
- #
6495
- # {
6496
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
6497
- # key: "OBJECT_EXTENSION", # accepts OBJECT_EXTENSION, OBJECT_LAST_MODIFIED_DATE, OBJECT_SIZE, OBJECT_KEY
6498
- # values: ["__string"],
6499
- # }
6500
- #
6501
5946
  # @!attribute [rw] comparator
6502
5947
  # The operator to use in a condition. Depending on the type of
6503
5948
  # condition, possible values are:
@@ -6524,14 +5969,6 @@ module Aws::Macie2
6524
5969
 
6525
5970
  # Specifies criteria for sorting the results of a request for findings.
6526
5971
  #
6527
- # @note When making an API call, you may pass SortCriteria
6528
- # data as a hash:
6529
- #
6530
- # {
6531
- # attribute_name: "__string",
6532
- # order_by: "ASC", # accepts ASC, DESC
6533
- # }
6534
- #
6535
5972
  # @!attribute [rw] attribute_name
6536
5973
  # @return [String]
6537
5974
  #
@@ -6564,21 +6001,29 @@ module Aws::Macie2
6564
6001
  include Aws::Structure
6565
6002
  end
6566
6003
 
6567
- # Specifies a tag-based condition that determines whether an S3 bucket
6568
- # is included or excluded from a classification job.
6004
+ # Specifies a custom data identifier or managed data identifier that
6005
+ # detected a type of sensitive data to start excluding or including in
6006
+ # an S3 bucket's sensitivity score.
6007
+ #
6008
+ # @!attribute [rw] id
6009
+ # @return [String]
6010
+ #
6011
+ # @!attribute [rw] type
6012
+ # The type of data identifier that detected a specific type of
6013
+ # sensitive data in an S3 bucket. Possible values are:
6014
+ # @return [String]
6569
6015
  #
6570
- # @note When making an API call, you may pass TagCriterionForJob
6571
- # data as a hash:
6016
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/SuppressDataIdentifier AWS API Documentation
6572
6017
  #
6573
- # {
6574
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
6575
- # tag_values: [
6576
- # {
6577
- # key: "__string",
6578
- # value: "__string",
6579
- # },
6580
- # ],
6581
- # }
6018
+ class SuppressDataIdentifier < Struct.new(
6019
+ :id,
6020
+ :type)
6021
+ SENSITIVE = []
6022
+ include Aws::Structure
6023
+ end
6024
+
6025
+ # Specifies a tag-based condition that determines whether an S3 bucket
6026
+ # is included or excluded from a classification job.
6582
6027
  #
6583
6028
  # @!attribute [rw] comparator
6584
6029
  # The operator to use in a condition. Depending on the type of
@@ -6603,14 +6048,6 @@ module Aws::Macie2
6603
6048
  # are case sensitive. Also, Amazon Macie doesn't support use of partial
6604
6049
  # values or wildcard characters in tag-based conditions.
6605
6050
  #
6606
- # @note When making an API call, you may pass TagCriterionPairForJob
6607
- # data as a hash:
6608
- #
6609
- # {
6610
- # key: "__string",
6611
- # value: "__string",
6612
- # }
6613
- #
6614
6051
  # @!attribute [rw] key
6615
6052
  # @return [String]
6616
6053
  #
@@ -6629,16 +6066,6 @@ module Aws::Macie2
6629
6066
  # Specifies the tags (keys and values) to associate with an Amazon Macie
6630
6067
  # resource.
6631
6068
  #
6632
- # @note When making an API call, you may pass TagResourceRequest
6633
- # data as a hash:
6634
- #
6635
- # {
6636
- # resource_arn: "__string", # required
6637
- # tags: { # required
6638
- # "__string" => "__string",
6639
- # },
6640
- # }
6641
- #
6642
6069
  # @!attribute [rw] resource_arn
6643
6070
  # @return [String]
6644
6071
  #
@@ -6666,21 +6093,6 @@ module Aws::Macie2
6666
6093
  # Specifies a tag-based condition that determines whether an S3 object
6667
6094
  # is included or excluded from a classification job.
6668
6095
  #
6669
- # @note When making an API call, you may pass TagScopeTerm
6670
- # data as a hash:
6671
- #
6672
- # {
6673
- # comparator: "EQ", # accepts EQ, GT, GTE, LT, LTE, NE, CONTAINS, STARTS_WITH
6674
- # key: "__string",
6675
- # tag_values: [
6676
- # {
6677
- # key: "__string",
6678
- # value: "__string",
6679
- # },
6680
- # ],
6681
- # target: "S3_OBJECT", # accepts S3_OBJECT
6682
- # }
6683
- #
6684
6096
  # @!attribute [rw] comparator
6685
6097
  # The operator to use in a condition. Depending on the type of
6686
6098
  # condition, possible values are:
@@ -6714,14 +6126,6 @@ module Aws::Macie2
6714
6126
  # Also, Amazon Macie doesn't support use of partial values or wildcard
6715
6127
  # characters in tag-based conditions.
6716
6128
  #
6717
- # @note When making an API call, you may pass TagValuePair
6718
- # data as a hash:
6719
- #
6720
- # {
6721
- # key: "__string",
6722
- # value: "__string",
6723
- # }
6724
- #
6725
6129
  # @!attribute [rw] key
6726
6130
  # @return [String]
6727
6131
  #
@@ -6739,17 +6143,6 @@ module Aws::Macie2
6739
6143
 
6740
6144
  # Specifies the detection criteria of a custom data identifier to test.
6741
6145
  #
6742
- # @note When making an API call, you may pass TestCustomDataIdentifierRequest
6743
- # data as a hash:
6744
- #
6745
- # {
6746
- # ignore_words: ["__string"],
6747
- # keywords: ["__string"],
6748
- # maximum_match_distance: 1,
6749
- # regex: "__string", # required
6750
- # sample_text: "__string", # required
6751
- # }
6752
- #
6753
6146
  # @!attribute [rw] ignore_words
6754
6147
  # @return [Array<String>]
6755
6148
  #
@@ -6841,14 +6234,6 @@ module Aws::Macie2
6841
6234
  include Aws::Structure
6842
6235
  end
6843
6236
 
6844
- # @note When making an API call, you may pass UntagResourceRequest
6845
- # data as a hash:
6846
- #
6847
- # {
6848
- # resource_arn: "__string", # required
6849
- # tag_keys: ["__string"], # required
6850
- # }
6851
- #
6852
6237
  # @!attribute [rw] resource_arn
6853
6238
  # @return [String]
6854
6239
  #
@@ -6877,22 +6262,6 @@ module Aws::Macie2
6877
6262
  # can't compile or an S3 object that Macie can't retrieve or parse, an
6878
6263
  # error occurs.
6879
6264
  #
6880
- # @note When making an API call, you may pass UpdateAllowListRequest
6881
- # data as a hash:
6882
- #
6883
- # {
6884
- # criteria: { # required
6885
- # regex: "__stringMin1Max512PatternSS",
6886
- # s3_words_list: {
6887
- # bucket_name: "__stringMin3Max255PatternAZaZ093255", # required
6888
- # object_key: "__stringMin1Max1024PatternSS", # required
6889
- # },
6890
- # },
6891
- # description: "__stringMin1Max512PatternSS",
6892
- # id: "__string", # required
6893
- # name: "__stringMin1Max128Pattern", # required
6894
- # }
6895
- #
6896
6265
  # @!attribute [rw] criteria
6897
6266
  # Specifies the criteria for an allow list. The criteria must specify
6898
6267
  # a regular expression (regex) or an S3 object (s3WordsList). It
@@ -6937,6 +6306,26 @@ module Aws::Macie2
6937
6306
  include Aws::Structure
6938
6307
  end
6939
6308
 
6309
+ # Enables or disables automated sensitive data discovery for an Amazon
6310
+ # Macie account.
6311
+ #
6312
+ # @!attribute [rw] status
6313
+ # The status of the automated sensitive data discovery configuration
6314
+ # for an Amazon Macie account. Valid values are:
6315
+ # @return [String]
6316
+ #
6317
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UpdateAutomatedDiscoveryConfigurationRequest AWS API Documentation
6318
+ #
6319
+ class UpdateAutomatedDiscoveryConfigurationRequest < Struct.new(
6320
+ :status)
6321
+ SENSITIVE = []
6322
+ include Aws::Structure
6323
+ end
6324
+
6325
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UpdateAutomatedDiscoveryConfigurationResponse AWS API Documentation
6326
+ #
6327
+ class UpdateAutomatedDiscoveryConfigurationResponse < Aws::EmptyStructure; end
6328
+
6940
6329
  # Changes the status of a classification job. For more information about
6941
6330
  # pausing, resuming, or cancelling jobs, see [Managing sensitive data
6942
6331
  # discovery jobs][1] in the *Amazon Macie User Guide*.
@@ -6945,14 +6334,6 @@ module Aws::Macie2
6945
6334
  #
6946
6335
  # [1]: https://docs.aws.amazon.com/macie/latest/user/discovery-jobs-manage.html
6947
6336
  #
6948
- # @note When making an API call, you may pass UpdateClassificationJobRequest
6949
- # data as a hash:
6950
- #
6951
- # {
6952
- # job_id: "__string", # required
6953
- # job_status: "RUNNING", # required, accepts RUNNING, PAUSED, CANCELLED, COMPLETE, IDLE, USER_PAUSED
6954
- # }
6955
- #
6956
6337
  # @!attribute [rw] job_id
6957
6338
  # @return [String]
6958
6339
  #
@@ -6973,39 +6354,46 @@ module Aws::Macie2
6973
6354
  #
6974
6355
  class UpdateClassificationJobResponse < Aws::EmptyStructure; end
6975
6356
 
6976
- # Specifies the criteria and other settings for a findings filter.
6357
+ # Specifies new classification scope settings for an Amazon Macie
6358
+ # account. Macie uses these settings when it performs automated
6359
+ # sensitive data discovery for the account. To update the settings,
6360
+ # automated sensitive data discovery must currently be enabled for the
6361
+ # account.
6362
+ #
6363
+ # @!attribute [rw] id
6364
+ # @return [String]
6365
+ #
6366
+ # @!attribute [rw] s3
6367
+ # Specifies changes to the list of S3 buckets that are excluded from
6368
+ # automated sensitive data discovery for an Amazon Macie account.
6369
+ # @return [Types::S3ClassificationScopeUpdate]
6370
+ #
6371
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UpdateClassificationScopeRequest AWS API Documentation
6977
6372
  #
6978
- # @note When making an API call, you may pass UpdateFindingsFilterRequest
6979
- # data as a hash:
6980
- #
6981
- # {
6982
- # action: "ARCHIVE", # accepts ARCHIVE, NOOP
6983
- # description: "__string",
6984
- # finding_criteria: {
6985
- # criterion: {
6986
- # "__string" => {
6987
- # eq: ["__string"],
6988
- # eq_exact_match: ["__string"],
6989
- # gt: 1,
6990
- # gte: 1,
6991
- # lt: 1,
6992
- # lte: 1,
6993
- # neq: ["__string"],
6994
- # },
6995
- # },
6996
- # },
6997
- # id: "__string", # required
6998
- # name: "__string",
6999
- # position: 1,
7000
- # client_token: "__string",
7001
- # }
6373
+ class UpdateClassificationScopeRequest < Struct.new(
6374
+ :id,
6375
+ :s3)
6376
+ SENSITIVE = []
6377
+ include Aws::Structure
6378
+ end
6379
+
6380
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UpdateClassificationScopeResponse AWS API Documentation
6381
+ #
6382
+ class UpdateClassificationScopeResponse < Aws::EmptyStructure; end
6383
+
6384
+ # Specifies the criteria and other settings for a findings filter.
7002
6385
  #
7003
6386
  # @!attribute [rw] action
7004
- # The action to perform on findings that meet the filter criteria. To
7005
- # suppress (automatically archive) findings that meet the criteria,
6387
+ # The action to perform on findings that match the filter criteria. To
6388
+ # suppress (automatically archive) findings that match the criteria,
7006
6389
  # set this value to ARCHIVE. Valid values are:
7007
6390
  # @return [String]
7008
6391
  #
6392
+ # @!attribute [rw] client_token
6393
+ # **A suitable default value is auto-generated.** You should normally
6394
+ # not need to pass this option.
6395
+ # @return [String]
6396
+ #
7009
6397
  # @!attribute [rw] description
7010
6398
  # @return [String]
7011
6399
  #
@@ -7023,21 +6411,16 @@ module Aws::Macie2
7023
6411
  # @!attribute [rw] position
7024
6412
  # @return [Integer]
7025
6413
  #
7026
- # @!attribute [rw] client_token
7027
- # **A suitable default value is auto-generated.** You should normally
7028
- # not need to pass this option.
7029
- # @return [String]
7030
- #
7031
6414
  # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UpdateFindingsFilterRequest AWS API Documentation
7032
6415
  #
7033
6416
  class UpdateFindingsFilterRequest < Struct.new(
7034
6417
  :action,
6418
+ :client_token,
7035
6419
  :description,
7036
6420
  :finding_criteria,
7037
6421
  :id,
7038
6422
  :name,
7039
- :position,
7040
- :client_token)
6423
+ :position)
7041
6424
  SENSITIVE = []
7042
6425
  include Aws::Structure
7043
6426
  end
@@ -7063,14 +6446,6 @@ module Aws::Macie2
7063
6446
  # Changes the status or configuration settings for an Amazon Macie
7064
6447
  # account.
7065
6448
  #
7066
- # @note When making an API call, you may pass UpdateMacieSessionRequest
7067
- # data as a hash:
7068
- #
7069
- # {
7070
- # finding_publishing_frequency: "FIFTEEN_MINUTES", # accepts FIFTEEN_MINUTES, ONE_HOUR, SIX_HOURS
7071
- # status: "PAUSED", # accepts PAUSED, ENABLED
7072
- # }
7073
- #
7074
6449
  # @!attribute [rw] finding_publishing_frequency
7075
6450
  # The frequency with which Amazon Macie publishes updates to policy
7076
6451
  # findings for an account. This includes publishing updates to
@@ -7102,14 +6477,6 @@ module Aws::Macie2
7102
6477
 
7103
6478
  # Suspends (pauses) or re-enables Amazon Macie for a member account.
7104
6479
  #
7105
- # @note When making an API call, you may pass UpdateMemberSessionRequest
7106
- # data as a hash:
7107
- #
7108
- # {
7109
- # id: "__string", # required
7110
- # status: "PAUSED", # required, accepts PAUSED, ENABLED
7111
- # }
7112
- #
7113
6480
  # @!attribute [rw] id
7114
6481
  # @return [String]
7115
6482
  #
@@ -7133,13 +6500,6 @@ module Aws::Macie2
7133
6500
  # Specifies whether to enable Amazon Macie automatically for accounts
7134
6501
  # that are added to an organization in Organizations.
7135
6502
  #
7136
- # @note When making an API call, you may pass UpdateOrganizationConfigurationRequest
7137
- # data as a hash:
7138
- #
7139
- # {
7140
- # auto_enable: false, # required
7141
- # }
7142
- #
7143
6503
  # @!attribute [rw] auto_enable
7144
6504
  # @return [Boolean]
7145
6505
  #
@@ -7155,20 +6515,59 @@ module Aws::Macie2
7155
6515
  #
7156
6516
  class UpdateOrganizationConfigurationResponse < Aws::EmptyStructure; end
7157
6517
 
6518
+ # Updates the sensitivity scoring settings for an S3 bucket that Amazon
6519
+ # Macie monitors and analyzes for your account. The settings specify
6520
+ # whether to exclude or include occurrences of specific types of
6521
+ # sensitive data in calculations of the bucket's sensitivity score. You
6522
+ # can update the settings only if automated sensitive data discovery is
6523
+ # currently enabled for your account.
6524
+ #
6525
+ # @!attribute [rw] resource_arn
6526
+ # @return [String]
6527
+ #
6528
+ # @!attribute [rw] suppress_data_identifiers
6529
+ # @return [Array<Types::SuppressDataIdentifier>]
6530
+ #
6531
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UpdateResourceProfileDetectionsRequest AWS API Documentation
6532
+ #
6533
+ class UpdateResourceProfileDetectionsRequest < Struct.new(
6534
+ :resource_arn,
6535
+ :suppress_data_identifiers)
6536
+ SENSITIVE = []
6537
+ include Aws::Structure
6538
+ end
6539
+
6540
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UpdateResourceProfileDetectionsResponse AWS API Documentation
6541
+ #
6542
+ class UpdateResourceProfileDetectionsResponse < Aws::EmptyStructure; end
6543
+
6544
+ # Specifies a new sensitivity score for an S3 bucket that Amazon Macie
6545
+ # monitors and analyzes for your account. To update the score, automated
6546
+ # sensitive data discovery must currently be enabled for your account.
6547
+ #
6548
+ # @!attribute [rw] resource_arn
6549
+ # @return [String]
6550
+ #
6551
+ # @!attribute [rw] sensitivity_score_override
6552
+ # @return [Integer]
6553
+ #
6554
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UpdateResourceProfileRequest AWS API Documentation
6555
+ #
6556
+ class UpdateResourceProfileRequest < Struct.new(
6557
+ :resource_arn,
6558
+ :sensitivity_score_override)
6559
+ SENSITIVE = []
6560
+ include Aws::Structure
6561
+ end
6562
+
6563
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UpdateResourceProfileResponse AWS API Documentation
6564
+ #
6565
+ class UpdateResourceProfileResponse < Aws::EmptyStructure; end
6566
+
7158
6567
  # Specifies the configuration settings for retrieving occurrences of
7159
6568
  # sensitive data reported by findings, and the status of the
7160
6569
  # configuration for an Amazon Macie account.
7161
6570
  #
7162
- # @note When making an API call, you may pass UpdateRevealConfigurationRequest
7163
- # data as a hash:
7164
- #
7165
- # {
7166
- # configuration: { # required
7167
- # kms_key_id: "__stringMin1Max2048",
7168
- # status: "ENABLED", # required, accepts ENABLED, DISABLED
7169
- # },
7170
- # }
7171
- #
7172
6571
  # @!attribute [rw] configuration
7173
6572
  # Specifies the configuration settings for retrieving occurrences of
7174
6573
  # sensitive data reported by findings, and the status of the
@@ -7207,6 +6606,59 @@ module Aws::Macie2
7207
6606
  include Aws::Structure
7208
6607
  end
7209
6608
 
6609
+ # Specifies settings for the sensitivity inspection template for an
6610
+ # Amazon Macie account. Macie uses the template's settings when it
6611
+ # performs automated sensitive data discovery for the account. To update
6612
+ # the settings, automated sensitive data discovery must currently be
6613
+ # enabled for the account.
6614
+ #
6615
+ # @!attribute [rw] description
6616
+ # @return [String]
6617
+ #
6618
+ # @!attribute [rw] excludes
6619
+ # Specifies managed data identifiers to exclude (not use) when
6620
+ # performing automated sensitive data discovery for an Amazon Macie
6621
+ # account. For information about the managed data identifiers that
6622
+ # Amazon Macie currently provides, see [Using managed data
6623
+ # identifiers][1] in the *Amazon Macie User Guide*.
6624
+ #
6625
+ #
6626
+ #
6627
+ # [1]: https://docs.aws.amazon.com/macie/latest/user/managed-data-identifiers.html
6628
+ # @return [Types::SensitivityInspectionTemplateExcludes]
6629
+ #
6630
+ # @!attribute [rw] id
6631
+ # @return [String]
6632
+ #
6633
+ # @!attribute [rw] includes
6634
+ # Specifies the allow lists, custom data identifiers, and managed data
6635
+ # identifiers to include (use) when performing automated sensitive
6636
+ # data discovery for an Amazon Macie account. The configuration must
6637
+ # specify at least one custom data identifier or managed data
6638
+ # identifier. For information about the managed data identifiers that
6639
+ # Amazon Macie currently provides, see [Using managed data
6640
+ # identifiers][1] in the *Amazon Macie User Guide*.
6641
+ #
6642
+ #
6643
+ #
6644
+ # [1]: https://docs.aws.amazon.com/macie/latest/user/managed-data-identifiers.html
6645
+ # @return [Types::SensitivityInspectionTemplateIncludes]
6646
+ #
6647
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UpdateSensitivityInspectionTemplateRequest AWS API Documentation
6648
+ #
6649
+ class UpdateSensitivityInspectionTemplateRequest < Struct.new(
6650
+ :description,
6651
+ :excludes,
6652
+ :id,
6653
+ :includes)
6654
+ SENSITIVE = []
6655
+ include Aws::Structure
6656
+ end
6657
+
6658
+ # @see http://docs.aws.amazon.com/goto/WebAPI/macie2-2020-01-01/UpdateSensitivityInspectionTemplateResponse AWS API Documentation
6659
+ #
6660
+ class UpdateSensitivityInspectionTemplateResponse < Aws::EmptyStructure; end
6661
+
7210
6662
  # Provides data for a specific usage metric and the corresponding quota
7211
6663
  # for an Amazon Macie account.
7212
6664
  #
@@ -7243,6 +6695,9 @@ module Aws::Macie2
7243
6695
  # @!attribute [rw] account_id
7244
6696
  # @return [String]
7245
6697
  #
6698
+ # @!attribute [rw] automated_discovery_free_trial_start_date
6699
+ # @return [Time]
6700
+ #
7246
6701
  # @!attribute [rw] free_trial_start_date
7247
6702
  # @return [Time]
7248
6703
  #
@@ -7253,6 +6708,7 @@ module Aws::Macie2
7253
6708
  #
7254
6709
  class UsageRecord < Struct.new(
7255
6710
  :account_id,
6711
+ :automated_discovery_free_trial_start_date,
7256
6712
  :free_trial_start_date,
7257
6713
  :usage)
7258
6714
  SENSITIVE = []
@@ -7262,15 +6718,6 @@ module Aws::Macie2
7262
6718
  # Specifies a condition for filtering the results of a query for quota
7263
6719
  # and usage data for one or more Amazon Macie accounts.
7264
6720
  #
7265
- # @note When making an API call, you may pass UsageStatisticsFilter
7266
- # data as a hash:
7267
- #
7268
- # {
7269
- # comparator: "GT", # accepts GT, GTE, LT, LTE, EQ, NE, CONTAINS
7270
- # key: "accountId", # accepts accountId, serviceLimit, freeTrialStartDate, total
7271
- # values: ["__string"],
7272
- # }
7273
- #
7274
6721
  # @!attribute [rw] comparator
7275
6722
  # The operator to use in a condition that filters the results of a
7276
6723
  # query for Amazon Macie account quotas and usage data. Valid values
@@ -7298,14 +6745,6 @@ module Aws::Macie2
7298
6745
  # Specifies criteria for sorting the results of a query for Amazon Macie
7299
6746
  # account quotas and usage data.
7300
6747
  #
7301
- # @note When making an API call, you may pass UsageStatisticsSortBy
7302
- # data as a hash:
7303
- #
7304
- # {
7305
- # key: "accountId", # accepts accountId, total, serviceLimitValue, freeTrialStartDate
7306
- # order_by: "ASC", # accepts ASC, DESC
7307
- # }
7308
- #
7309
6748
  # @!attribute [rw] key
7310
6749
  # The field to use to sort the results of a query for Amazon Macie
7311
6750
  # account quotas and usage data. Valid values are:
@@ -7479,13 +6918,6 @@ module Aws::Macie2
7479
6918
  # Specifies a weekly recurrence pattern for running a classification
7480
6919
  # job.
7481
6920
  #
7482
- # @note When making an API call, you may pass WeeklySchedule
7483
- # data as a hash:
7484
- #
7485
- # {
7486
- # day_of_week: "SUNDAY", # accepts SUNDAY, MONDAY, TUESDAY, WEDNESDAY, THURSDAY, FRIDAY, SATURDAY
7487
- # }
7488
- #
7489
6921
  # @!attribute [rw] day_of_week
7490
6922
  # @return [String]
7491
6923
  #