aws-sdk-networkfirewall 1.16.0 → 1.17.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: f66bf7c71cb11bf0af157ffcdbad8e7df68a441447cd7907b6d19dbba2d6bf1a
-  data.tar.gz: a307c7c73f68026af50870890e9e4e75f00767e05e4fec15368f1609ce5dcff2
+  metadata.gz: 60568c36adf25b6241c56a258da43d9508a482b29824db13da6fc88ea6c19954
+  data.tar.gz: a558af3d1058a75f0cadb7059cff44998938105e925af9cc7406e16736cd5666
 SHA512:
-  metadata.gz: 8e39869232f6ea4567b75c432c293f6e13bff33f7b0467d4c34f71ecf27124b254a8ac919e565bfafd8843268e9d3376e188c8084cd5bcf2f93f763f0d9467a1
-  data.tar.gz: 71f99b4fa4d00a371ed89c8e8291b51342f7662f3355c1c11e7fc09bc00f089e03329b1769fcdb206bac0a82360ddd25d93124d326c979129af3c130f36dee2b
+  metadata.gz: d6fb0da54ec27b4367ce6b01bae549d0345b4b308e6d62fa6eb604eabc3d8150894445a456abcf2463cfb614ea7c609eaedf96e1fe379d72d96e06cd7a2b9c17
+  data.tar.gz: 213ce4bcb8657bad5bc2e6b4c44197f13f10deafc02a9eb8ff5f6b4a25203b71ca0c748c79686f159b60cf8df70d7619321ba97c3f9b6a872e23977eaf804f02

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.17.0 (2022-04-28)
+------------------
+
+* Feature - AWS Network Firewall adds support for stateful threat signature AWS managed rule groups.
+
 1.16.0 (2022-04-26)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.16.0
+1.17.0

data/lib/aws-sdk-networkfirewall/client.rb

@@ -615,7 +615,7 @@ module Aws::NetworkFirewall
     #     ],
     #     encryption_configuration: {
     #       key_id: "KeyId",
-    #       type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #       type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
     #     },
     #   })
     #
@@ -752,7 +752,7 @@ module Aws::NetworkFirewall
     #     dry_run: false,
     #     encryption_configuration: {
     #       key_id: "KeyId",
-    #       type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #       type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
     #     },
     #   })
     #
@@ -772,6 +772,7 @@ module Aws::NetworkFirewall
     #   resp.firewall_policy_response.number_of_associations #=> Integer
     #   resp.firewall_policy_response.encryption_configuration.key_id #=> String
     #   resp.firewall_policy_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+    #   resp.firewall_policy_response.last_modified_time #=> Time
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/CreateFirewallPolicy AWS API Documentation
     #
@@ -894,6 +895,11 @@ module Aws::NetworkFirewall
     #   A complex type that contains settings for encryption of your rule
     #   group resources.
     #
+    # @option params [Types::SourceMetadata] :source_metadata
+    #   A complex type that contains metadata about the rule group that your
+    #   own rule group is copied from. You can use the metadata to keep track
+    #   of updates made to the originating rule group.
+    #
     # @return [Types::CreateRuleGroupResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreateRuleGroupResponse#update_token #update_token} => String
@@ -1015,7 +1021,11 @@ module Aws::NetworkFirewall
     #     dry_run: false,
     #     encryption_configuration: {
     #       key_id: "KeyId",
-    #       type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #       type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #     },
+    #     source_metadata: {
+    #       source_arn: "ResourceArn",
+    #       source_update_token: "UpdateToken",
     #     },
     #   })
     #
@@ -1036,6 +1046,10 @@ module Aws::NetworkFirewall
     #   resp.rule_group_response.number_of_associations #=> Integer
     #   resp.rule_group_response.encryption_configuration.key_id #=> String
     #   resp.rule_group_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+    #   resp.rule_group_response.source_metadata.source_arn #=> String
+    #   resp.rule_group_response.source_metadata.source_update_token #=> String
+    #   resp.rule_group_response.sns_topic #=> String
+    #   resp.rule_group_response.last_modified_time #=> Time
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/CreateRuleGroup AWS API Documentation
     #
@@ -1161,6 +1175,7 @@ module Aws::NetworkFirewall
     #   resp.firewall_policy_response.number_of_associations #=> Integer
     #   resp.firewall_policy_response.encryption_configuration.key_id #=> String
     #   resp.firewall_policy_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+    #   resp.firewall_policy_response.last_modified_time #=> Time
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DeleteFirewallPolicy AWS API Documentation
     #
@@ -1246,6 +1261,10 @@ module Aws::NetworkFirewall
     #   resp.rule_group_response.number_of_associations #=> Integer
     #   resp.rule_group_response.encryption_configuration.key_id #=> String
     #   resp.rule_group_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+    #   resp.rule_group_response.source_metadata.source_arn #=> String
+    #   resp.rule_group_response.source_metadata.source_update_token #=> String
+    #   resp.rule_group_response.sns_topic #=> String
+    #   resp.rule_group_response.last_modified_time #=> Time
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DeleteRuleGroup AWS API Documentation
     #
@@ -1362,6 +1381,7 @@ module Aws::NetworkFirewall
     #   resp.firewall_policy_response.number_of_associations #=> Integer
     #   resp.firewall_policy_response.encryption_configuration.key_id #=> String
     #   resp.firewall_policy_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+    #   resp.firewall_policy_response.last_modified_time #=> Time
     #   resp.firewall_policy.stateless_rule_group_references #=> Array
     #   resp.firewall_policy.stateless_rule_group_references[0].resource_arn #=> String
     #   resp.firewall_policy.stateless_rule_group_references[0].priority #=> Integer
@@ -1567,6 +1587,10 @@ module Aws::NetworkFirewall
     #   resp.rule_group_response.number_of_associations #=> Integer
     #   resp.rule_group_response.encryption_configuration.key_id #=> String
     #   resp.rule_group_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+    #   resp.rule_group_response.source_metadata.source_arn #=> String
+    #   resp.rule_group_response.source_metadata.source_update_token #=> String
+    #   resp.rule_group_response.sns_topic #=> String
+    #   resp.rule_group_response.last_modified_time #=> Time
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DescribeRuleGroup AWS API Documentation
     #
@@ -1612,6 +1636,7 @@ module Aws::NetworkFirewall
     #   * {Types::DescribeRuleGroupMetadataResponse#type #type} => String
     #   * {Types::DescribeRuleGroupMetadataResponse#capacity #capacity} => Integer
     #   * {Types::DescribeRuleGroupMetadataResponse#stateful_rule_options #stateful_rule_options} => Types::StatefulRuleOptions
+    #   * {Types::DescribeRuleGroupMetadataResponse#last_modified_time #last_modified_time} => Time
     #
     # @example Request syntax with placeholder values
     #
@@ -1629,6 +1654,7 @@ module Aws::NetworkFirewall
     #   resp.type #=> String, one of "STATELESS", "STATEFUL"
     #   resp.capacity #=> Integer
     #   resp.stateful_rule_options.rule_order #=> String, one of "DEFAULT_ACTION_ORDER", "STRICT_ORDER"
+    #   resp.last_modified_time #=> Time
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DescribeRuleGroupMetadata AWS API Documentation
     #
@@ -1834,6 +1860,15 @@ module Aws::NetworkFirewall
     #   setting of `NULL` returns all of the rule groups in your account. A
     #   setting of `MANAGED` returns all available managed rule groups.
     #
+    # @option params [String] :managed_type
+    #   Indicates the general category of the Amazon Web Services managed rule
+    #   group.
+    #
+    # @option params [String] :type
+    #   Indicates whether the rule group is stateless or stateful. If the rule
+    #   group is stateless, it contains stateless rules. If it is stateful, it
+    #   contains stateful rules.
+    #
     # @return [Types::ListRuleGroupsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListRuleGroupsResponse#next_token #next_token} => String
@@ -1847,6 +1882,8 @@ module Aws::NetworkFirewall
     #     next_token: "PaginationToken",
     #     max_results: 1,
     #     scope: "MANAGED", # accepts MANAGED, ACCOUNT
+    #     managed_type: "AWS_MANAGED_THREAT_SIGNATURES", # accepts AWS_MANAGED_THREAT_SIGNATURES, AWS_MANAGED_DOMAIN_LISTS
+    #     type: "STATELESS", # accepts STATELESS, STATEFUL
     #   })
     #
     # @example Response structure
@@ -2278,7 +2315,7 @@ module Aws::NetworkFirewall
     #     firewall_name: "ResourceName",
     #     encryption_configuration: {
     #       key_id: "KeyId",
-    #       type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #       type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
     #     },
     #   })
     #
@@ -2402,7 +2439,7 @@ module Aws::NetworkFirewall
     #     dry_run: false,
     #     encryption_configuration: {
     #       key_id: "KeyId",
-    #       type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #       type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
     #     },
     #   })
     #
@@ -2422,6 +2459,7 @@ module Aws::NetworkFirewall
     #   resp.firewall_policy_response.number_of_associations #=> Integer
     #   resp.firewall_policy_response.encryption_configuration.key_id #=> String
     #   resp.firewall_policy_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+    #   resp.firewall_policy_response.last_modified_time #=> Time
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/UpdateFirewallPolicy AWS API Documentation
     #
@@ -2676,6 +2714,11 @@ module Aws::NetworkFirewall
     #   A complex type that contains settings for encryption of your rule
     #   group resources.
     #
+    # @option params [Types::SourceMetadata] :source_metadata
+    #   A complex type that contains metadata about the rule group that your
+    #   own rule group is copied from. You can use the metadata to keep track
+    #   of updates made to the originating rule group.
+    #
     # @return [Types::UpdateRuleGroupResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::UpdateRuleGroupResponse#update_token #update_token} => String
@@ -2792,7 +2835,11 @@ module Aws::NetworkFirewall
     #     dry_run: false,
     #     encryption_configuration: {
     #       key_id: "KeyId",
-    #       type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #       type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #     },
+    #     source_metadata: {
+    #       source_arn: "ResourceArn",
+    #       source_update_token: "UpdateToken",
     #     },
     #   })
     #
@@ -2813,6 +2860,10 @@ module Aws::NetworkFirewall
     #   resp.rule_group_response.number_of_associations #=> Integer
     #   resp.rule_group_response.encryption_configuration.key_id #=> String
     #   resp.rule_group_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+    #   resp.rule_group_response.source_metadata.source_arn #=> String
+    #   resp.rule_group_response.source_metadata.source_update_token #=> String
+    #   resp.rule_group_response.sns_topic #=> String
+    #   resp.rule_group_response.last_modified_time #=> Time
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/UpdateRuleGroup AWS API Documentation
     #
@@ -2905,7 +2956,7 @@ module Aws::NetworkFirewall
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-networkfirewall'
-      context[:gem_version] = '1.16.0'
+      context[:gem_version] = '1.17.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-networkfirewall/client_api.rb

@@ -93,6 +93,7 @@ module Aws::NetworkFirewall
     InvalidTokenException = Shapes::StructureShape.new(name: 'InvalidTokenException')
     KeyId = Shapes::StringShape.new(name: 'KeyId')
     Keyword = Shapes::StringShape.new(name: 'Keyword')
+    LastUpdateTime = Shapes::TimestampShape.new(name: 'LastUpdateTime')
     LimitExceededException = Shapes::StructureShape.new(name: 'LimitExceededException')
     ListFirewallPoliciesRequest = Shapes::StructureShape.new(name: 'ListFirewallPoliciesRequest')
     ListFirewallPoliciesResponse = Shapes::StructureShape.new(name: 'ListFirewallPoliciesResponse')
@@ -132,6 +133,7 @@ module Aws::NetworkFirewall
     ResourceArn = Shapes::StringShape.new(name: 'ResourceArn')
     ResourceId = Shapes::StringShape.new(name: 'ResourceId')
     ResourceManagedStatus = Shapes::StringShape.new(name: 'ResourceManagedStatus')
+    ResourceManagedType = Shapes::StringShape.new(name: 'ResourceManagedType')
     ResourceName = Shapes::StringShape.new(name: 'ResourceName')
     ResourceNotFoundException = Shapes::StructureShape.new(name: 'ResourceNotFoundException')
     ResourceOwnerCheckException = Shapes::StructureShape.new(name: 'ResourceOwnerCheckException')
@@ -155,6 +157,7 @@ module Aws::NetworkFirewall
     Setting = Shapes::StringShape.new(name: 'Setting')
     Settings = Shapes::ListShape.new(name: 'Settings')
     Source = Shapes::StringShape.new(name: 'Source')
+    SourceMetadata = Shapes::StructureShape.new(name: 'SourceMetadata')
     StatefulAction = Shapes::StringShape.new(name: 'StatefulAction')
     StatefulActions = Shapes::ListShape.new(name: 'StatefulActions')
     StatefulEngineOptions = Shapes::StructureShape.new(name: 'StatefulEngineOptions')
@@ -292,6 +295,7 @@ module Aws::NetworkFirewall
     CreateRuleGroupRequest.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "Tags"))
     CreateRuleGroupRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
     CreateRuleGroupRequest.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
+    CreateRuleGroupRequest.add_member(:source_metadata, Shapes::ShapeRef.new(shape: SourceMetadata, location_name: "SourceMetadata"))
     CreateRuleGroupRequest.struct_class = Types::CreateRuleGroupRequest
 
     CreateRuleGroupResponse.add_member(:update_token, Shapes::ShapeRef.new(shape: UpdateToken, required: true, location_name: "UpdateToken"))
@@ -375,6 +379,7 @@ module Aws::NetworkFirewall
     DescribeRuleGroupMetadataResponse.add_member(:type, Shapes::ShapeRef.new(shape: RuleGroupType, location_name: "Type"))
     DescribeRuleGroupMetadataResponse.add_member(:capacity, Shapes::ShapeRef.new(shape: RuleCapacity, location_name: "Capacity"))
     DescribeRuleGroupMetadataResponse.add_member(:stateful_rule_options, Shapes::ShapeRef.new(shape: StatefulRuleOptions, location_name: "StatefulRuleOptions"))
+    DescribeRuleGroupMetadataResponse.add_member(:last_modified_time, Shapes::ShapeRef.new(shape: LastUpdateTime, location_name: "LastModifiedTime"))
     DescribeRuleGroupMetadataResponse.struct_class = Types::DescribeRuleGroupMetadataResponse
 
     DescribeRuleGroupRequest.add_member(:rule_group_name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "RuleGroupName"))
@@ -405,7 +410,7 @@ module Aws::NetworkFirewall
     DisassociateSubnetsResponse.struct_class = Types::DisassociateSubnetsResponse
 
     EncryptionConfiguration.add_member(:key_id, Shapes::ShapeRef.new(shape: KeyId, location_name: "KeyId"))
-    EncryptionConfiguration.add_member(:type, Shapes::ShapeRef.new(shape: EncryptionType, location_name: "Type"))
+    EncryptionConfiguration.add_member(:type, Shapes::ShapeRef.new(shape: EncryptionType, required: true, location_name: "Type"))
     EncryptionConfiguration.struct_class = Types::EncryptionConfiguration
 
     Firewall.add_member(:firewall_name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "FirewallName"))
@@ -451,6 +456,7 @@ module Aws::NetworkFirewall
     FirewallPolicyResponse.add_member(:consumed_stateful_rule_capacity, Shapes::ShapeRef.new(shape: RuleCapacity, location_name: "ConsumedStatefulRuleCapacity"))
     FirewallPolicyResponse.add_member(:number_of_associations, Shapes::ShapeRef.new(shape: NumberOfAssociations, location_name: "NumberOfAssociations"))
     FirewallPolicyResponse.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
+    FirewallPolicyResponse.add_member(:last_modified_time, Shapes::ShapeRef.new(shape: LastUpdateTime, location_name: "LastModifiedTime"))
     FirewallPolicyResponse.struct_class = Types::FirewallPolicyResponse
 
     FirewallStatus.add_member(:status, Shapes::ShapeRef.new(shape: FirewallStatusValue, required: true, location_name: "Status"))
@@ -517,6 +523,8 @@ module Aws::NetworkFirewall
     ListRuleGroupsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: PaginationToken, location_name: "NextToken"))
     ListRuleGroupsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: PaginationMaxResults, location_name: "MaxResults"))
     ListRuleGroupsRequest.add_member(:scope, Shapes::ShapeRef.new(shape: ResourceManagedStatus, location_name: "Scope"))
+    ListRuleGroupsRequest.add_member(:managed_type, Shapes::ShapeRef.new(shape: ResourceManagedType, location_name: "ManagedType"))
+    ListRuleGroupsRequest.add_member(:type, Shapes::ShapeRef.new(shape: RuleGroupType, location_name: "Type"))
     ListRuleGroupsRequest.struct_class = Types::ListRuleGroupsRequest
 
     ListRuleGroupsResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: PaginationToken, location_name: "NextToken"))
@@ -613,6 +621,9 @@ module Aws::NetworkFirewall
     RuleGroupResponse.add_member(:consumed_capacity, Shapes::ShapeRef.new(shape: RuleCapacity, location_name: "ConsumedCapacity"))
     RuleGroupResponse.add_member(:number_of_associations, Shapes::ShapeRef.new(shape: NumberOfAssociations, location_name: "NumberOfAssociations"))
     RuleGroupResponse.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
+    RuleGroupResponse.add_member(:source_metadata, Shapes::ShapeRef.new(shape: SourceMetadata, location_name: "SourceMetadata"))
+    RuleGroupResponse.add_member(:sns_topic, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "SnsTopic"))
+    RuleGroupResponse.add_member(:last_modified_time, Shapes::ShapeRef.new(shape: LastUpdateTime, location_name: "LastModifiedTime"))
     RuleGroupResponse.struct_class = Types::RuleGroupResponse
 
     RuleGroups.member = Shapes::ShapeRef.new(shape: RuleGroupMetadata)
@@ -642,6 +653,10 @@ module Aws::NetworkFirewall
 
     Settings.member = Shapes::ShapeRef.new(shape: Setting)
 
+    SourceMetadata.add_member(:source_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "SourceArn"))
+    SourceMetadata.add_member(:source_update_token, Shapes::ShapeRef.new(shape: UpdateToken, location_name: "SourceUpdateToken"))
+    SourceMetadata.struct_class = Types::SourceMetadata
+
     StatefulActions.member = Shapes::ShapeRef.new(shape: CollectionMember_String)
 
     StatefulEngineOptions.add_member(:rule_order, Shapes::ShapeRef.new(shape: RuleOrder, location_name: "RuleOrder"))
@@ -814,6 +829,7 @@ module Aws::NetworkFirewall
     UpdateRuleGroupRequest.add_member(:description, Shapes::ShapeRef.new(shape: Description, location_name: "Description"))
     UpdateRuleGroupRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
     UpdateRuleGroupRequest.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
+    UpdateRuleGroupRequest.add_member(:source_metadata, Shapes::ShapeRef.new(shape: SourceMetadata, location_name: "SourceMetadata"))
     UpdateRuleGroupRequest.struct_class = Types::UpdateRuleGroupRequest
 
     UpdateRuleGroupResponse.add_member(:update_token, Shapes::ShapeRef.new(shape: UpdateToken, required: true, location_name: "UpdateToken"))

data/lib/aws-sdk-networkfirewall/types.rb

@@ -381,7 +381,7 @@ module Aws::NetworkFirewall
     #         dry_run: false,
     #         encryption_configuration: {
     #           key_id: "KeyId",
-    #           type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #           type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
     #         },
     #       }
     #
@@ -489,7 +489,7 @@ module Aws::NetworkFirewall
     #         ],
     #         encryption_configuration: {
     #           key_id: "KeyId",
-    #           type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #           type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
     #         },
     #       }
     #
@@ -708,7 +708,11 @@ module Aws::NetworkFirewall
     #         dry_run: false,
     #         encryption_configuration: {
     #           key_id: "KeyId",
-    #           type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #           type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #         },
+    #         source_metadata: {
+    #           source_arn: "ResourceArn",
+    #           source_update_token: "UpdateToken",
     #         },
     #       }
     #
@@ -828,6 +832,12 @@ module Aws::NetworkFirewall
     #   group resources.
     #   @return [Types::EncryptionConfiguration]
     #
+    # @!attribute [rw] source_metadata
+    #   A complex type that contains metadata about the rule group that your
+    #   own rule group is copied from. You can use the metadata to keep
+    #   track of updates made to the originating rule group.
+    #   @return [Types::SourceMetadata]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/CreateRuleGroupRequest AWS API Documentation
     #
     class CreateRuleGroupRequest < Struct.new(
@@ -839,7 +849,8 @@ module Aws::NetworkFirewall
       :capacity,
       :tags,
       :dry_run,
-      :encryption_configuration)
+      :encryption_configuration,
+      :source_metadata)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -1414,6 +1425,10 @@ module Aws::NetworkFirewall
     #   group. You can only use these for stateful rule groups.
     #   @return [Types::StatefulRuleOptions]
     #
+    # @!attribute [rw] last_modified_time
+    #   The last time that the rule group was changed.
+    #   @return [Time]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DescribeRuleGroupMetadataResponse AWS API Documentation
     #
     class DescribeRuleGroupMetadataResponse < Struct.new(
@@ -1422,7 +1437,8 @@ module Aws::NetworkFirewall
       :description,
       :type,
       :capacity,
-      :stateful_rule_options)
+      :stateful_rule_options,
+      :last_modified_time)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -1674,7 +1690,7 @@ module Aws::NetworkFirewall
     #
     #       {
     #         key_id: "KeyId",
-    #         type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #         type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
     #       }
     #
     # @!attribute [rw] key_id
@@ -2044,6 +2060,10 @@ module Aws::NetworkFirewall
     #   configuration settings for your firewall policy.
     #   @return [Types::EncryptionConfiguration]
     #
+    # @!attribute [rw] last_modified_time
+    #   The last time that the firewall policy was changed.
+    #   @return [Time]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/FirewallPolicyResponse AWS API Documentation
     #
     class FirewallPolicyResponse < Struct.new(
@@ -2056,7 +2076,8 @@ module Aws::NetworkFirewall
       :consumed_stateless_rule_capacity,
       :consumed_stateful_rule_capacity,
       :number_of_associations,
-      :encryption_configuration)
+      :encryption_configuration,
+      :last_modified_time)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -2463,6 +2484,8 @@ module Aws::NetworkFirewall
     #         next_token: "PaginationToken",
     #         max_results: 1,
     #         scope: "MANAGED", # accepts MANAGED, ACCOUNT
+    #         managed_type: "AWS_MANAGED_THREAT_SIGNATURES", # accepts AWS_MANAGED_THREAT_SIGNATURES, AWS_MANAGED_DOMAIN_LISTS
+    #         type: "STATELESS", # accepts STATELESS, STATEFUL
     #       }
     #
     # @!attribute [rw] next_token
@@ -2486,12 +2509,25 @@ module Aws::NetworkFirewall
     #   setting of `MANAGED` returns all available managed rule groups.
     #   @return [String]
     #
+    # @!attribute [rw] managed_type
+    #   Indicates the general category of the Amazon Web Services managed
+    #   rule group.
+    #   @return [String]
+    #
+    # @!attribute [rw] type
+    #   Indicates whether the rule group is stateless or stateful. If the
+    #   rule group is stateless, it contains stateless rules. If it is
+    #   stateful, it contains stateful rules.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/ListRuleGroupsRequest AWS API Documentation
     #
     class ListRuleGroupsRequest < Struct.new(
       :next_token,
       :max_results,
-      :scope)
+      :scope,
+      :managed_type,
+      :type)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -3302,6 +3338,29 @@ module Aws::NetworkFirewall
     #   configuration settings for your rule group.
     #   @return [Types::EncryptionConfiguration]
     #
+    # @!attribute [rw] source_metadata
+    #   A complex type that contains metadata about the rule group that your
+    #   own rule group is copied from. You can use the metadata to track the
+    #   version updates made to the originating rule group.
+    #   @return [Types::SourceMetadata]
+    #
+    # @!attribute [rw] sns_topic
+    #   The Amazon resource name (ARN) of the Amazon Simple Notification
+    #   Service SNS topic that's used to record changes to the managed rule
+    #   group. You can subscribe to the SNS topic to receive notifications
+    #   when the managed rule group is modified, such as for new versions
+    #   and for version expiration. For more information, see the [Amazon
+    #   Simple Notification Service Developer Guide.][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/sns/latest/dg/welcome.html
+    #   @return [String]
+    #
+    # @!attribute [rw] last_modified_time
+    #   The last time that the rule group was changed.
+    #   @return [Time]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/RuleGroupResponse AWS API Documentation
     #
     class RuleGroupResponse < Struct.new(
@@ -3315,7 +3374,10 @@ module Aws::NetworkFirewall
       :tags,
       :consumed_capacity,
       :number_of_associations,
-      :encryption_configuration)
+      :encryption_configuration,
+      :source_metadata,
+      :sns_topic,
+      :last_modified_time)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -3573,6 +3635,47 @@ module Aws::NetworkFirewall
       include Aws::Structure
     end
 
+    # High-level information about the managed rule group that your own rule
+    # group is copied from. You can use the the metadata to track version
+    # updates made to the originating rule group. You can retrieve all
+    # objects for a rule group by calling [DescribeRuleGroup][1].
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/network-firewall/latest/APIReference/API_DescribeRuleGroup.html
+    #
+    # @note When making an API call, you may pass SourceMetadata
+    #   data as a hash:
+    #
+    #       {
+    #         source_arn: "ResourceArn",
+    #         source_update_token: "UpdateToken",
+    #       }
+    #
+    # @!attribute [rw] source_arn
+    #   The Amazon Resource Name (ARN) of the rule group that your own rule
+    #   group is copied from.
+    #   @return [String]
+    #
+    # @!attribute [rw] source_update_token
+    #   The update token of the Amazon Web Services managed rule group that
+    #   your own rule group is copied from. To determine the update token
+    #   for the managed rule group, call [DescribeRuleGroup][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/network-firewall/latest/APIReference/API_DescribeRuleGroup.html#networkfirewall-DescribeRuleGroup-response-UpdateToken
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/SourceMetadata AWS API Documentation
+    #
+    class SourceMetadata < Struct.new(
+      :source_arn,
+      :source_update_token)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Configuration settings for the handling of the stateful rule groups in
     # a firewall policy.
     #
@@ -4429,7 +4532,7 @@ module Aws::NetworkFirewall
     #         firewall_name: "ResourceName",
     #         encryption_configuration: {
     #           key_id: "KeyId",
-    #           type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #           type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
     #         },
     #       }
     #
@@ -4703,7 +4806,7 @@ module Aws::NetworkFirewall
     #         dry_run: false,
     #         encryption_configuration: {
     #           key_id: "KeyId",
-    #           type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #           type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
     #         },
     #       }
     #
@@ -4989,7 +5092,11 @@ module Aws::NetworkFirewall
     #         dry_run: false,
     #         encryption_configuration: {
     #           key_id: "KeyId",
-    #           type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #           type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+    #         },
+    #         source_metadata: {
+    #           source_arn: "ResourceArn",
+    #           source_update_token: "UpdateToken",
     #         },
     #       }
     #
@@ -5081,6 +5188,12 @@ module Aws::NetworkFirewall
     #   group resources.
     #   @return [Types::EncryptionConfiguration]
     #
+    # @!attribute [rw] source_metadata
+    #   A complex type that contains metadata about the rule group that your
+    #   own rule group is copied from. You can use the metadata to keep
+    #   track of updates made to the originating rule group.
+    #   @return [Types::SourceMetadata]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/UpdateRuleGroupRequest AWS API Documentation
     #
     class UpdateRuleGroupRequest < Struct.new(
@@ -5092,7 +5205,8 @@ module Aws::NetworkFirewall
       :type,
       :description,
       :dry_run,
-      :encryption_configuration)
+      :encryption_configuration,
+      :source_metadata)
       SENSITIVE = []
       include Aws::Structure
     end

data/lib/aws-sdk-networkfirewall.rb

@@ -48,6 +48,6 @@ require_relative 'aws-sdk-networkfirewall/customizations'
 # @!group service
 module Aws::NetworkFirewall
 
-  GEM_VERSION = '1.16.0'
+  GEM_VERSION = '1.17.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-networkfirewall
 version: !ruby/object:Gem::Version
-  version: 1.16.0
+  version: 1.17.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-04-26 00:00:00.000000000 Z
+date: 2022-04-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core