aws-sdk-organizations 1.43.0 → 1.44.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/aws-sdk-organizations.rb +1 -1
- data/lib/aws-sdk-organizations/client.rb +151 -114
- data/lib/aws-sdk-organizations/types.rb +115 -50
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 6ebadba43f096af5be849b50db20ca8deb69aa6dcb3828497411a2e0c8ab1200
|
4
|
+
data.tar.gz: d836d51e5ee3c1f7bd09a9e494881a3dced377b13cd7b663adc1a26b7ebbff92
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 5333ab5a7ea2226538783ebab132065070542f9fb6d15e67c4ad98f5772d68c65c7f7a52b6fdbbc5150d68900f1723924adc0db011fb0aa17ade19df48876214
|
7
|
+
data.tar.gz: b7bfeaaec653087d7b478d842f3c59845d83523608ee8e526b84867ec4b45793712ca6021a4bae745aa38a18c1d411eeb4c1ad14787db1ac79c274bc56a68f84
|
@@ -461,53 +461,23 @@ module Aws::Organizations
|
|
461
461
|
|
462
462
|
# Attaches a policy to a root, an organizational unit (OU), or an
|
463
463
|
# individual account. How the policy affects accounts depends on the
|
464
|
-
# type of policy
|
465
|
-
#
|
466
|
-
#
|
467
|
-
#
|
468
|
-
#
|
469
|
-
#
|
470
|
-
#
|
471
|
-
#
|
472
|
-
#
|
473
|
-
# * If you attach an SCP to an OU, it affects all accounts in that OU
|
474
|
-
# and in any child OUs.
|
475
|
-
#
|
476
|
-
# * If you attach the policy directly to an account, it affects only
|
477
|
-
# that account.
|
478
|
-
#
|
479
|
-
# SCPs are JSON policies that specify the maximum permissions for an
|
480
|
-
# organization or organizational unit (OU). You can attach one SCP to
|
481
|
-
# a higher level root or OU, and a different SCP to a child OU or to
|
482
|
-
# an account. The child policy can further restrict only the
|
483
|
-
# permissions that pass through the parent filter and are available to
|
484
|
-
# the child. An SCP that is attached to a child can't grant a
|
485
|
-
# permission that the parent hasn't already granted. For example,
|
486
|
-
# imagine that the parent SCP allows permissions A, B, C, D, and E.
|
487
|
-
# The child SCP allows C, D, E, F, and G. The result is that the
|
488
|
-
# accounts affected by the child SCP are allowed to use only C, D, and
|
489
|
-
# E. They can't use A or B because the child OU filtered them out.
|
490
|
-
# They also can't use F and G because the parent OU filtered them
|
491
|
-
# out. They can't be granted back by the child SCP; child SCPs can
|
492
|
-
# only filter the permissions they receive from the parent SCP.
|
493
|
-
#
|
494
|
-
# AWS Organizations attaches a default SCP named `"FullAWSAccess` to
|
495
|
-
# every root, OU, and account. This default SCP allows all services
|
496
|
-
# and actions, enabling any new child OU or account to inherit the
|
497
|
-
# permissions of the parent root or OU. If you detach the default
|
498
|
-
# policy, you must replace it with a policy that specifies the
|
499
|
-
# permissions that you want to allow in that OU or account.
|
500
|
-
#
|
501
|
-
# For more information about how AWS Organizations policies
|
502
|
-
# permissions work, see [Using Service Control Policies][1] in the
|
503
|
-
# *AWS Organizations User Guide.*
|
464
|
+
# type of policy. Refer to the *AWS Organizations User Guide* for
|
465
|
+
# information about each policy type:
|
466
|
+
#
|
467
|
+
# * [BACKUP\_POLICY][1]
|
468
|
+
#
|
469
|
+
# * [SERVICE\_CONTROL\_POLICY][2]
|
470
|
+
#
|
471
|
+
# * [TAG\_POLICY][3]
|
504
472
|
#
|
505
473
|
# This operation can be called only from the organization's master
|
506
474
|
# account.
|
507
475
|
#
|
508
476
|
#
|
509
477
|
#
|
510
|
-
# [1]:
|
478
|
+
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_backup.html
|
479
|
+
# [2]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scp.html
|
480
|
+
# [3]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html
|
511
481
|
#
|
512
482
|
# @option params [required, String] :policy_id
|
513
483
|
# The unique identifier (ID) of the policy that you want to attach to
|
@@ -969,12 +939,13 @@ module Aws::Organizations
|
|
969
939
|
#
|
970
940
|
# * When you create an account in an organization using the AWS
|
971
941
|
# Organizations console, API, or CLI commands, the information
|
972
|
-
# required for the account to operate as a standalone account
|
973
|
-
# a payment method and signing
|
974
|
-
#
|
975
|
-
# your organization later, you can do so only after you provide
|
976
|
-
# missing information. Follow the steps at [ To leave an
|
977
|
-
# as a member account][7] in the *AWS Organizations User
|
942
|
+
# required for the account to operate as a standalone account is *not*
|
943
|
+
# automatically collected. This includes a payment method and signing
|
944
|
+
# the end user license agreement (EULA). If you must remove an account
|
945
|
+
# from your organization later, you can do so only after you provide
|
946
|
+
# the missing information. Follow the steps at [ To leave an
|
947
|
+
# organization as a member account][7] in the *AWS Organizations User
|
948
|
+
# Guide.*
|
978
949
|
#
|
979
950
|
# * If you get an exception that indicates that you exceeded your
|
980
951
|
# account limits for the organization, contact [AWS Support][8].
|
@@ -1219,7 +1190,7 @@ module Aws::Organizations
|
|
1219
1190
|
# resp.organization.master_account_id #=> String
|
1220
1191
|
# resp.organization.master_account_email #=> String
|
1221
1192
|
# resp.organization.available_policy_types #=> Array
|
1222
|
-
# resp.organization.available_policy_types[0].type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY"
|
1193
|
+
# resp.organization.available_policy_types[0].type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY", "BACKUP_POLICY"
|
1223
1194
|
# resp.organization.available_policy_types[0].status #=> String, one of "ENABLED", "PENDING_ENABLE", "PENDING_DISABLE"
|
1224
1195
|
#
|
1225
1196
|
# @see http://docs.aws.amazon.com/goto/WebAPI/organizations-2016-11-28/CreateOrganization AWS API Documentation
|
@@ -1329,17 +1300,9 @@ module Aws::Organizations
|
|
1329
1300
|
# [1]: https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies.html
|
1330
1301
|
#
|
1331
1302
|
# @option params [required, String] :content
|
1332
|
-
# The policy content to add to the new policy.
|
1333
|
-
#
|
1334
|
-
#
|
1335
|
-
# can delegate to their users, groups, and roles. For more information
|
1336
|
-
# about the SCP syntax, see [Service Control Policy Syntax][2] in the
|
1337
|
-
# *AWS Organizations User Guide.*
|
1338
|
-
#
|
1339
|
-
#
|
1340
|
-
#
|
1341
|
-
# [1]: https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scp.html
|
1342
|
-
# [2]: https://docs.aws.amazon.com/organizations/latest/userguide/orgs_reference_scp-syntax.html
|
1303
|
+
# The policy text content to add to the new policy. The text that you
|
1304
|
+
# supply must adhere to the rules of the policy type you specify in the
|
1305
|
+
# `Type` parameter.
|
1343
1306
|
#
|
1344
1307
|
# @option params [required, String] :description
|
1345
1308
|
# An optional description to assign to the policy.
|
@@ -1355,12 +1318,20 @@ module Aws::Organizations
|
|
1355
1318
|
# [1]: http://wikipedia.org/wiki/regex
|
1356
1319
|
#
|
1357
1320
|
# @option params [required, String] :type
|
1358
|
-
# The type of policy to create.
|
1321
|
+
# The type of policy to create. You can specify one of the following
|
1322
|
+
# values:
|
1323
|
+
#
|
1324
|
+
# * [BACKUP\_POLICY][1]
|
1325
|
+
#
|
1326
|
+
# * [SERVICE\_CONTROL\_POLICY][2]
|
1359
1327
|
#
|
1360
|
-
#
|
1361
|
-
# a service control policy (SCP).
|
1328
|
+
# * [TAG\_POLICY][3]
|
1362
1329
|
#
|
1363
|
-
#
|
1330
|
+
#
|
1331
|
+
#
|
1332
|
+
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_backup.html
|
1333
|
+
# [2]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scp.html
|
1334
|
+
# [3]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html
|
1364
1335
|
#
|
1365
1336
|
# @return [Types::CreatePolicyResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
1366
1337
|
#
|
@@ -1400,7 +1371,7 @@ module Aws::Organizations
|
|
1400
1371
|
# content: "PolicyContent", # required
|
1401
1372
|
# description: "PolicyDescription", # required
|
1402
1373
|
# name: "PolicyName", # required
|
1403
|
-
# type: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY
|
1374
|
+
# type: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY, BACKUP_POLICY
|
1404
1375
|
# })
|
1405
1376
|
#
|
1406
1377
|
# @example Response structure
|
@@ -1409,7 +1380,7 @@ module Aws::Organizations
|
|
1409
1380
|
# resp.policy.policy_summary.arn #=> String
|
1410
1381
|
# resp.policy.policy_summary.name #=> String
|
1411
1382
|
# resp.policy.policy_summary.description #=> String
|
1412
|
-
# resp.policy.policy_summary.type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY"
|
1383
|
+
# resp.policy.policy_summary.type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY", "BACKUP_POLICY"
|
1413
1384
|
# resp.policy.policy_summary.aws_managed #=> Boolean
|
1414
1385
|
# resp.policy.content #=> String
|
1415
1386
|
#
|
@@ -1829,14 +1800,15 @@ module Aws::Organizations
|
|
1829
1800
|
req.send_request(options)
|
1830
1801
|
end
|
1831
1802
|
|
1832
|
-
# Returns the contents of the effective
|
1833
|
-
# effective
|
1834
|
-
# account inherits, plus any policy
|
1835
|
-
# account.
|
1803
|
+
# Returns the contents of the effective policy for specified policy type
|
1804
|
+
# and account. The effective policy is the aggregation of any policies
|
1805
|
+
# of the specified type that the account inherits, plus any policy of
|
1806
|
+
# that type that is directly attached to the account.
|
1836
1807
|
#
|
1837
|
-
# This
|
1808
|
+
# This operation applies only to policy types *other* than service
|
1809
|
+
# control policies (SCPs).
|
1838
1810
|
#
|
1839
|
-
# For more information
|
1811
|
+
# For more information about policy inheritance, see [How Policy
|
1840
1812
|
# Inheritance Works][1] in the *AWS Organizations User Guide*.
|
1841
1813
|
#
|
1842
1814
|
# This operation can be called only from the organization's master
|
@@ -1848,12 +1820,22 @@ module Aws::Organizations
|
|
1848
1820
|
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies-inheritance.html
|
1849
1821
|
#
|
1850
1822
|
# @option params [required, String] :policy_type
|
1851
|
-
# The type of policy that you want information about.
|
1823
|
+
# The type of policy that you want information about. You can specify
|
1824
|
+
# one of the following values:
|
1825
|
+
#
|
1826
|
+
# * [BACKUP\_POLICY][1]
|
1827
|
+
#
|
1828
|
+
# * [TAG\_POLICY][2]
|
1829
|
+
#
|
1830
|
+
#
|
1831
|
+
#
|
1832
|
+
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_backup.html
|
1833
|
+
# [2]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html
|
1852
1834
|
#
|
1853
1835
|
# @option params [String] :target_id
|
1854
1836
|
# When you're signed in as the master account, specify the ID of the
|
1855
1837
|
# account that you want details about. Specifying an organization root
|
1856
|
-
# or OU as the target is not supported.
|
1838
|
+
# or organizational unit (OU) as the target is not supported.
|
1857
1839
|
#
|
1858
1840
|
# @return [Types::DescribeEffectivePolicyResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
1859
1841
|
#
|
@@ -1862,7 +1844,7 @@ module Aws::Organizations
|
|
1862
1844
|
# @example Request syntax with placeholder values
|
1863
1845
|
#
|
1864
1846
|
# resp = client.describe_effective_policy({
|
1865
|
-
# policy_type: "TAG_POLICY", # required, accepts TAG_POLICY
|
1847
|
+
# policy_type: "TAG_POLICY", # required, accepts TAG_POLICY, BACKUP_POLICY
|
1866
1848
|
# target_id: "PolicyTargetId",
|
1867
1849
|
# })
|
1868
1850
|
#
|
@@ -1871,7 +1853,7 @@ module Aws::Organizations
|
|
1871
1853
|
# resp.effective_policy.policy_content #=> String
|
1872
1854
|
# resp.effective_policy.last_updated_timestamp #=> Time
|
1873
1855
|
# resp.effective_policy.target_id #=> String
|
1874
|
-
# resp.effective_policy.policy_type #=> String, one of "TAG_POLICY"
|
1856
|
+
# resp.effective_policy.policy_type #=> String, one of "TAG_POLICY", "BACKUP_POLICY"
|
1875
1857
|
#
|
1876
1858
|
# @see http://docs.aws.amazon.com/goto/WebAPI/organizations-2016-11-28/DescribeEffectivePolicy AWS API Documentation
|
1877
1859
|
#
|
@@ -2042,7 +2024,7 @@ module Aws::Organizations
|
|
2042
2024
|
# resp.organization.master_account_id #=> String
|
2043
2025
|
# resp.organization.master_account_email #=> String
|
2044
2026
|
# resp.organization.available_policy_types #=> Array
|
2045
|
-
# resp.organization.available_policy_types[0].type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY"
|
2027
|
+
# resp.organization.available_policy_types[0].type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY", "BACKUP_POLICY"
|
2046
2028
|
# resp.organization.available_policy_types[0].status #=> String, one of "ENABLED", "PENDING_ENABLE", "PENDING_DISABLE"
|
2047
2029
|
#
|
2048
2030
|
# @see http://docs.aws.amazon.com/goto/WebAPI/organizations-2016-11-28/DescribeOrganization AWS API Documentation
|
@@ -2176,7 +2158,7 @@ module Aws::Organizations
|
|
2176
2158
|
# resp.policy.policy_summary.arn #=> String
|
2177
2159
|
# resp.policy.policy_summary.name #=> String
|
2178
2160
|
# resp.policy.policy_summary.description #=> String
|
2179
|
-
# resp.policy.policy_summary.type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY"
|
2161
|
+
# resp.policy.policy_summary.type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY", "BACKUP_POLICY"
|
2180
2162
|
# resp.policy.policy_summary.aws_managed #=> Boolean
|
2181
2163
|
# resp.policy.content #=> String
|
2182
2164
|
#
|
@@ -2190,18 +2172,20 @@ module Aws::Organizations
|
|
2190
2172
|
end
|
2191
2173
|
|
2192
2174
|
# Detaches a policy from a target root, organizational unit (OU), or
|
2193
|
-
# account.
|
2194
|
-
#
|
2195
|
-
#
|
2196
|
-
#
|
2197
|
-
#
|
2198
|
-
#
|
2199
|
-
#
|
2200
|
-
#
|
2201
|
-
#
|
2202
|
-
#
|
2203
|
-
#
|
2204
|
-
#
|
2175
|
+
# account.
|
2176
|
+
#
|
2177
|
+
# If the policy being detached is a service control policy (SCP), the
|
2178
|
+
# changes to permissions for AWS Identity and Access Management (IAM)
|
2179
|
+
# users and roles in affected accounts are immediate.
|
2180
|
+
#
|
2181
|
+
# Every root, OU, and account must have at least one SCP attached. If
|
2182
|
+
# you want to replace the default `FullAWSAccess` policy with an SCP
|
2183
|
+
# that limits the permissions that can be delegated, you must attach the
|
2184
|
+
# replacement SCP before you can remove the default SCP. This is the
|
2185
|
+
# authorization strategy of an "[allow list][1]". If you instead
|
2186
|
+
# attach a second SCP and leave the `FullAWSAccess` SCP still attached,
|
2187
|
+
# and specify `"Effect": "Deny"` in the second SCP to override the
|
2188
|
+
# `"Effect": "Allow"` in the `FullAWSAccess` policy (or any other
|
2205
2189
|
# attached SCP), you're using the authorization strategy of a "[deny
|
2206
2190
|
# list][2]".
|
2207
2191
|
#
|
@@ -2210,8 +2194,8 @@ module Aws::Organizations
|
|
2210
2194
|
#
|
2211
2195
|
#
|
2212
2196
|
#
|
2213
|
-
# [1]: https://docs.aws.amazon.com/organizations/latest/userguide/
|
2214
|
-
# [2]: https://docs.aws.amazon.com/organizations/latest/userguide/
|
2197
|
+
# [1]: https://docs.aws.amazon.com/organizations/latest/userguide/SCP_strategies.html#orgs_policies_allowlist
|
2198
|
+
# [2]: https://docs.aws.amazon.com/organizations/latest/userguide/SCP_strategies.html#orgs_policies_denylist
|
2215
2199
|
#
|
2216
2200
|
# @option params [required, String] :policy_id
|
2217
2201
|
# The unique identifier (ID) of the policy you want to detach. You can
|
@@ -2334,18 +2318,19 @@ module Aws::Organizations
|
|
2334
2318
|
req.send_request(options)
|
2335
2319
|
end
|
2336
2320
|
|
2337
|
-
# Disables an organizational
|
2338
|
-
#
|
2321
|
+
# Disables an organizational policy type in a root. A policy of a
|
2322
|
+
# certain type can be attached to entities in a root only if that type
|
2339
2323
|
# is enabled in the root. After you perform this operation, you no
|
2340
2324
|
# longer can attach policies of the specified type to that root or to
|
2341
2325
|
# any organizational unit (OU) or account in that root. You can undo
|
2342
2326
|
# this by using the EnablePolicyType operation.
|
2343
2327
|
#
|
2344
2328
|
# This is an asynchronous request that AWS performs in the background.
|
2345
|
-
# If you disable a policy for a root, it still appears enabled for
|
2346
|
-
# organization if [all features][1] are enabled for the
|
2347
|
-
# AWS recommends that you first use ListRoots to see the
|
2348
|
-
# policy types for a specified root, and then use this
|
2329
|
+
# If you disable a policy type for a root, it still appears enabled for
|
2330
|
+
# the organization if [all features][1] are enabled for the
|
2331
|
+
# organization. AWS recommends that you first use ListRoots to see the
|
2332
|
+
# status of policy types for a specified root, and then use this
|
2333
|
+
# operation.
|
2349
2334
|
#
|
2350
2335
|
# This operation can be called only from the organization's master
|
2351
2336
|
# account.
|
@@ -2369,7 +2354,20 @@ module Aws::Organizations
|
|
2369
2354
|
# [1]: http://wikipedia.org/wiki/regex
|
2370
2355
|
#
|
2371
2356
|
# @option params [required, String] :policy_type
|
2372
|
-
# The policy type that you want to disable in this root.
|
2357
|
+
# The policy type that you want to disable in this root. You can specify
|
2358
|
+
# one of the following values:
|
2359
|
+
#
|
2360
|
+
# * [BACKUP\_POLICY][1]
|
2361
|
+
#
|
2362
|
+
# * [SERVICE\_CONTROL\_POLICY][2]
|
2363
|
+
#
|
2364
|
+
# * [TAG\_POLICY][3]
|
2365
|
+
#
|
2366
|
+
#
|
2367
|
+
#
|
2368
|
+
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_backup.html
|
2369
|
+
# [2]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scp.html
|
2370
|
+
# [3]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html
|
2373
2371
|
#
|
2374
2372
|
# @return [Types::DisablePolicyTypeResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
2375
2373
|
#
|
@@ -2401,7 +2399,7 @@ module Aws::Organizations
|
|
2401
2399
|
#
|
2402
2400
|
# resp = client.disable_policy_type({
|
2403
2401
|
# root_id: "RootId", # required
|
2404
|
-
# policy_type: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY
|
2402
|
+
# policy_type: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY, BACKUP_POLICY
|
2405
2403
|
# })
|
2406
2404
|
#
|
2407
2405
|
# @example Response structure
|
@@ -2410,7 +2408,7 @@ module Aws::Organizations
|
|
2410
2408
|
# resp.root.arn #=> String
|
2411
2409
|
# resp.root.name #=> String
|
2412
2410
|
# resp.root.policy_types #=> Array
|
2413
|
-
# resp.root.policy_types[0].type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY"
|
2411
|
+
# resp.root.policy_types[0].type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY", "BACKUP_POLICY"
|
2414
2412
|
# resp.root.policy_types[0].status #=> String, one of "ENABLED", "PENDING_ENABLE", "PENDING_DISABLE"
|
2415
2413
|
#
|
2416
2414
|
# @see http://docs.aws.amazon.com/goto/WebAPI/organizations-2016-11-28/DisablePolicyType AWS API Documentation
|
@@ -2603,7 +2601,20 @@ module Aws::Organizations
|
|
2603
2601
|
# [1]: http://wikipedia.org/wiki/regex
|
2604
2602
|
#
|
2605
2603
|
# @option params [required, String] :policy_type
|
2606
|
-
# The policy type that you want to enable.
|
2604
|
+
# The policy type that you want to enable. You can specify one of the
|
2605
|
+
# following values:
|
2606
|
+
#
|
2607
|
+
# * [BACKUP\_POLICY][1]
|
2608
|
+
#
|
2609
|
+
# * [SERVICE\_CONTROL\_POLICY][2]
|
2610
|
+
#
|
2611
|
+
# * [TAG\_POLICY][3]
|
2612
|
+
#
|
2613
|
+
#
|
2614
|
+
#
|
2615
|
+
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_backup.html
|
2616
|
+
# [2]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scp.html
|
2617
|
+
# [3]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html
|
2607
2618
|
#
|
2608
2619
|
# @return [Types::EnablePolicyTypeResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
2609
2620
|
#
|
@@ -2639,7 +2650,7 @@ module Aws::Organizations
|
|
2639
2650
|
#
|
2640
2651
|
# resp = client.enable_policy_type({
|
2641
2652
|
# root_id: "RootId", # required
|
2642
|
-
# policy_type: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY
|
2653
|
+
# policy_type: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY, BACKUP_POLICY
|
2643
2654
|
# })
|
2644
2655
|
#
|
2645
2656
|
# @example Response structure
|
@@ -2648,7 +2659,7 @@ module Aws::Organizations
|
|
2648
2659
|
# resp.root.arn #=> String
|
2649
2660
|
# resp.root.name #=> String
|
2650
2661
|
# resp.root.policy_types #=> Array
|
2651
|
-
# resp.root.policy_types[0].type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY"
|
2662
|
+
# resp.root.policy_types[0].type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY", "BACKUP_POLICY"
|
2652
2663
|
# resp.root.policy_types[0].status #=> String, one of "ENABLED", "PENDING_ENABLE", "PENDING_DISABLE"
|
2653
2664
|
#
|
2654
2665
|
# @see http://docs.aws.amazon.com/goto/WebAPI/organizations-2016-11-28/EnablePolicyType AWS API Documentation
|
@@ -4118,6 +4129,19 @@ module Aws::Organizations
|
|
4118
4129
|
#
|
4119
4130
|
# @option params [required, String] :filter
|
4120
4131
|
# Specifies the type of policy that you want to include in the response.
|
4132
|
+
# You must specify one of the following values:
|
4133
|
+
#
|
4134
|
+
# * [BACKUP\_POLICY][1]
|
4135
|
+
#
|
4136
|
+
# * [SERVICE\_CONTROL\_POLICY][2]
|
4137
|
+
#
|
4138
|
+
# * [TAG\_POLICY][3]
|
4139
|
+
#
|
4140
|
+
#
|
4141
|
+
#
|
4142
|
+
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_backup.html
|
4143
|
+
# [2]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scp.html
|
4144
|
+
# [3]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html
|
4121
4145
|
#
|
4122
4146
|
# @option params [String] :next_token
|
4123
4147
|
# The parameter for receiving additional results if you receive a
|
@@ -4187,7 +4211,7 @@ module Aws::Organizations
|
|
4187
4211
|
# @example Request syntax with placeholder values
|
4188
4212
|
#
|
4189
4213
|
# resp = client.list_policies({
|
4190
|
-
# filter: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY
|
4214
|
+
# filter: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY, BACKUP_POLICY
|
4191
4215
|
# next_token: "NextToken",
|
4192
4216
|
# max_results: 1,
|
4193
4217
|
# })
|
@@ -4199,7 +4223,7 @@ module Aws::Organizations
|
|
4199
4223
|
# resp.policies[0].arn #=> String
|
4200
4224
|
# resp.policies[0].name #=> String
|
4201
4225
|
# resp.policies[0].description #=> String
|
4202
|
-
# resp.policies[0].type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY"
|
4226
|
+
# resp.policies[0].type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY", "BACKUP_POLICY"
|
4203
4227
|
# resp.policies[0].aws_managed #=> Boolean
|
4204
4228
|
# resp.next_token #=> String
|
4205
4229
|
#
|
@@ -4250,7 +4274,20 @@ module Aws::Organizations
|
|
4250
4274
|
# [1]: http://wikipedia.org/wiki/regex
|
4251
4275
|
#
|
4252
4276
|
# @option params [required, String] :filter
|
4253
|
-
# The type of policy that you want to include in the returned list.
|
4277
|
+
# The type of policy that you want to include in the returned list. You
|
4278
|
+
# must specify one of the following values:
|
4279
|
+
#
|
4280
|
+
# * [BACKUP\_POLICY][1]
|
4281
|
+
#
|
4282
|
+
# * [SERVICE\_CONTROL\_POLICY][2]
|
4283
|
+
#
|
4284
|
+
# * [TAG\_POLICY][3]
|
4285
|
+
#
|
4286
|
+
#
|
4287
|
+
#
|
4288
|
+
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_backup.html
|
4289
|
+
# [2]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scp.html
|
4290
|
+
# [3]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html
|
4254
4291
|
#
|
4255
4292
|
# @option params [String] :next_token
|
4256
4293
|
# The parameter for receiving additional results if you receive a
|
@@ -4308,7 +4345,7 @@ module Aws::Organizations
|
|
4308
4345
|
#
|
4309
4346
|
# resp = client.list_policies_for_target({
|
4310
4347
|
# target_id: "PolicyTargetId", # required
|
4311
|
-
# filter: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY
|
4348
|
+
# filter: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY, BACKUP_POLICY
|
4312
4349
|
# next_token: "NextToken",
|
4313
4350
|
# max_results: 1,
|
4314
4351
|
# })
|
@@ -4320,7 +4357,7 @@ module Aws::Organizations
|
|
4320
4357
|
# resp.policies[0].arn #=> String
|
4321
4358
|
# resp.policies[0].name #=> String
|
4322
4359
|
# resp.policies[0].description #=> String
|
4323
|
-
# resp.policies[0].type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY"
|
4360
|
+
# resp.policies[0].type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY", "BACKUP_POLICY"
|
4324
4361
|
# resp.policies[0].aws_managed #=> Boolean
|
4325
4362
|
# resp.next_token #=> String
|
4326
4363
|
#
|
@@ -4421,7 +4458,7 @@ module Aws::Organizations
|
|
4421
4458
|
# resp.roots[0].arn #=> String
|
4422
4459
|
# resp.roots[0].name #=> String
|
4423
4460
|
# resp.roots[0].policy_types #=> Array
|
4424
|
-
# resp.roots[0].policy_types[0].type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY"
|
4461
|
+
# resp.roots[0].policy_types[0].type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY", "BACKUP_POLICY"
|
4425
4462
|
# resp.roots[0].policy_types[0].status #=> String, one of "ENABLED", "PENDING_ENABLE", "PENDING_DISABLE"
|
4426
4463
|
# resp.next_token #=> String
|
4427
4464
|
#
|
@@ -4803,9 +4840,9 @@ module Aws::Organizations
|
|
4803
4840
|
# The ID of the resource to add a tag to.
|
4804
4841
|
#
|
4805
4842
|
# @option params [required, Array<Types::Tag>] :tags
|
4806
|
-
# The tag to add to the specified resource.
|
4807
|
-
#
|
4808
|
-
# can't set
|
4843
|
+
# The tag to add to the specified resource. You must specify both a tag
|
4844
|
+
# key and value. You can set the value of a tag to an empty string, but
|
4845
|
+
# you can't set it to null.
|
4809
4846
|
#
|
4810
4847
|
# @return [Struct] Returns an empty {Seahorse::Client::Response response}.
|
4811
4848
|
#
|
@@ -5048,7 +5085,7 @@ module Aws::Organizations
|
|
5048
5085
|
# resp.policy.policy_summary.arn #=> String
|
5049
5086
|
# resp.policy.policy_summary.name #=> String
|
5050
5087
|
# resp.policy.policy_summary.description #=> String
|
5051
|
-
# resp.policy.policy_summary.type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY"
|
5088
|
+
# resp.policy.policy_summary.type #=> String, one of "SERVICE_CONTROL_POLICY", "TAG_POLICY", "BACKUP_POLICY"
|
5052
5089
|
# resp.policy.policy_summary.aws_managed #=> Boolean
|
5053
5090
|
# resp.policy.content #=> String
|
5054
5091
|
#
|
@@ -5074,7 +5111,7 @@ module Aws::Organizations
|
|
5074
5111
|
params: params,
|
5075
5112
|
config: config)
|
5076
5113
|
context[:gem_name] = 'aws-sdk-organizations'
|
5077
|
-
context[:gem_version] = '1.
|
5114
|
+
context[:gem_version] = '1.44.0'
|
5078
5115
|
Seahorse::Client::Request.new(handlers, context)
|
5079
5116
|
end
|
5080
5117
|
|
@@ -417,10 +417,12 @@ module Aws::Organizations
|
|
417
417
|
# (SCP) from an OU or root, inviting or creating too many accounts to
|
418
418
|
# the organization, or attaching too many policies to an account, OU, or
|
419
419
|
# root. This exception includes a reason that contains additional
|
420
|
-
# information about the violated limit
|
420
|
+
# information about the violated limit:
|
421
421
|
#
|
422
|
-
# Some of the reasons in the following list might not be applicable to
|
423
|
-
# this specific API or operation
|
422
|
+
# <note markdown="1"> Some of the reasons in the following list might not be applicable to
|
423
|
+
# this specific API or operation.
|
424
|
+
#
|
425
|
+
# </note>
|
424
426
|
#
|
425
427
|
# * ACCOUNT\_CANNOT\_LEAVE\_ORGANIZAION: You attempted to remove the
|
426
428
|
# master account from the organization. You can't remove the master
|
@@ -431,15 +433,15 @@ module Aws::Organizations
|
|
431
433
|
# account from the organization that doesn't yet have enough
|
432
434
|
# information to exist as a standalone account. This account requires
|
433
435
|
# you to first agree to the AWS Customer Agreement. Follow the steps
|
434
|
-
# at [
|
435
|
-
#
|
436
|
+
# at [Removing a member account from your organization][1]in the *AWS
|
437
|
+
# Organizations User Guide.*
|
436
438
|
#
|
437
439
|
# * ACCOUNT\_CANNOT\_LEAVE\_WITHOUT\_PHONE\_VERIFICATION: You attempted
|
438
440
|
# to remove an account from the organization that doesn't yet have
|
439
441
|
# enough information to exist as a standalone account. This account
|
440
442
|
# requires you to first complete phone verification. Follow the steps
|
441
|
-
# at [
|
442
|
-
#
|
443
|
+
# at [Removing a member account from your organization][1] in the *AWS
|
444
|
+
# Organizations User Guide.*
|
443
445
|
#
|
444
446
|
# * ACCOUNT\_CREATION\_RATE\_LIMIT\_EXCEEDED: You attempted to exceed
|
445
447
|
# the number of accounts that you can create in one day.
|
@@ -458,9 +460,9 @@ module Aws::Organizations
|
|
458
460
|
#
|
459
461
|
# </note>
|
460
462
|
#
|
461
|
-
# If you get
|
462
|
-
#
|
463
|
-
#
|
463
|
+
# If you get this exception when running a command immediately after
|
464
|
+
# creating the organization, wait one hour and try again. After an
|
465
|
+
# hour, if the command continues to fail with this error, contact [AWS
|
464
466
|
# Support][2].
|
465
467
|
#
|
466
468
|
# * CANNOT\_REGISTER\_MASTER\_AS\_DELEGATED\_ADMINISTRATOR: You
|
@@ -506,7 +508,7 @@ module Aws::Organizations
|
|
506
508
|
# support.
|
507
509
|
#
|
508
510
|
# * MASTER\_ACCOUNT\_MISSING\_CONTACT\_INFO: To complete this operation,
|
509
|
-
# you must first provide
|
511
|
+
# you must first provide a valid contact address and phone number for
|
510
512
|
# the master account. Then try the operation again.
|
511
513
|
#
|
512
514
|
# * MASTER\_ACCOUNT\_NOT\_GOVCLOUD\_ENABLED: To complete this operation,
|
@@ -518,7 +520,7 @@ module Aws::Organizations
|
|
518
520
|
# organization with this master account, you first must associate a
|
519
521
|
# valid payment instrument, such as a credit card, with the account.
|
520
522
|
# Follow the steps at [To leave an organization when all required
|
521
|
-
# account information has not yet been provided][
|
523
|
+
# account information has not yet been provided][4] in the *AWS
|
522
524
|
# Organizations User Guide.*
|
523
525
|
#
|
524
526
|
# * MAX\_DELEGATED\_ADMINISTRATORS\_FOR\_SERVICE\_LIMIT\_EXCEEDED: You
|
@@ -536,7 +538,7 @@ module Aws::Organizations
|
|
536
538
|
# operation with this member account, you first must associate a valid
|
537
539
|
# payment instrument, such as a credit card, with the account. Follow
|
538
540
|
# the steps at [To leave an organization when all required account
|
539
|
-
# information has not yet been provided][
|
541
|
+
# information has not yet been provided][4] in the *AWS Organizations
|
540
542
|
# User Guide.*
|
541
543
|
#
|
542
544
|
# * MIN\_POLICY\_TYPE\_ATTACHMENT\_LIMIT\_EXCEEDED: You attempted to
|
@@ -567,9 +569,10 @@ module Aws::Organizations
|
|
567
569
|
#
|
568
570
|
#
|
569
571
|
#
|
570
|
-
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_remove.html#
|
572
|
+
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_remove.html#orgs_manage_accounts_remove-from-master
|
571
573
|
# [2]: https://console.aws.amazon.com/support/home#/
|
572
574
|
# [3]: http://docs.aws.amazon.com/govcloud-us/latest/UserGuide/govcloud-organizations.html
|
575
|
+
# [4]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_remove.html#leave-without-all-info
|
573
576
|
#
|
574
577
|
# @!attribute [rw] message
|
575
578
|
# @return [String]
|
@@ -1011,21 +1014,13 @@ module Aws::Organizations
|
|
1011
1014
|
# content: "PolicyContent", # required
|
1012
1015
|
# description: "PolicyDescription", # required
|
1013
1016
|
# name: "PolicyName", # required
|
1014
|
-
# type: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY
|
1017
|
+
# type: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY, BACKUP_POLICY
|
1015
1018
|
# }
|
1016
1019
|
#
|
1017
1020
|
# @!attribute [rw] content
|
1018
|
-
# The policy content to add to the new policy.
|
1019
|
-
#
|
1020
|
-
#
|
1021
|
-
# can delegate to their users, groups, and roles. For more information
|
1022
|
-
# about the SCP syntax, see [Service Control Policy Syntax][2] in the
|
1023
|
-
# *AWS Organizations User Guide.*
|
1024
|
-
#
|
1025
|
-
#
|
1026
|
-
#
|
1027
|
-
# [1]: https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scp.html
|
1028
|
-
# [2]: https://docs.aws.amazon.com/organizations/latest/userguide/orgs_reference_scp-syntax.html
|
1021
|
+
# The policy text content to add to the new policy. The text that you
|
1022
|
+
# supply must adhere to the rules of the policy type you specify in
|
1023
|
+
# the `Type` parameter.
|
1029
1024
|
# @return [String]
|
1030
1025
|
#
|
1031
1026
|
# @!attribute [rw] description
|
@@ -1044,12 +1039,20 @@ module Aws::Organizations
|
|
1044
1039
|
# @return [String]
|
1045
1040
|
#
|
1046
1041
|
# @!attribute [rw] type
|
1047
|
-
# The type of policy to create.
|
1042
|
+
# The type of policy to create. You can specify one of the following
|
1043
|
+
# values:
|
1048
1044
|
#
|
1049
|
-
#
|
1050
|
-
# is a service control policy (SCP).
|
1045
|
+
# * [BACKUP\_POLICY][1]
|
1051
1046
|
#
|
1052
|
-
#
|
1047
|
+
# * [SERVICE\_CONTROL\_POLICY][2]
|
1048
|
+
#
|
1049
|
+
# * [TAG\_POLICY][3]
|
1050
|
+
#
|
1051
|
+
#
|
1052
|
+
#
|
1053
|
+
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_backup.html
|
1054
|
+
# [2]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scp.html
|
1055
|
+
# [3]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html
|
1053
1056
|
# @return [String]
|
1054
1057
|
#
|
1055
1058
|
# @see http://docs.aws.amazon.com/goto/WebAPI/organizations-2016-11-28/CreatePolicyRequest AWS API Documentation
|
@@ -1373,18 +1376,28 @@ module Aws::Organizations
|
|
1373
1376
|
# data as a hash:
|
1374
1377
|
#
|
1375
1378
|
# {
|
1376
|
-
# policy_type: "TAG_POLICY", # required, accepts TAG_POLICY
|
1379
|
+
# policy_type: "TAG_POLICY", # required, accepts TAG_POLICY, BACKUP_POLICY
|
1377
1380
|
# target_id: "PolicyTargetId",
|
1378
1381
|
# }
|
1379
1382
|
#
|
1380
1383
|
# @!attribute [rw] policy_type
|
1381
|
-
# The type of policy that you want information about.
|
1384
|
+
# The type of policy that you want information about. You can specify
|
1385
|
+
# one of the following values:
|
1386
|
+
#
|
1387
|
+
# * [BACKUP\_POLICY][1]
|
1388
|
+
#
|
1389
|
+
# * [TAG\_POLICY][2]
|
1390
|
+
#
|
1391
|
+
#
|
1392
|
+
#
|
1393
|
+
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_backup.html
|
1394
|
+
# [2]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html
|
1382
1395
|
# @return [String]
|
1383
1396
|
#
|
1384
1397
|
# @!attribute [rw] target_id
|
1385
1398
|
# When you're signed in as the master account, specify the ID of the
|
1386
1399
|
# account that you want details about. Specifying an organization root
|
1387
|
-
# or OU as the target is not supported.
|
1400
|
+
# or organizational unit (OU) as the target is not supported.
|
1388
1401
|
# @return [String]
|
1389
1402
|
#
|
1390
1403
|
# @see http://docs.aws.amazon.com/goto/WebAPI/organizations-2016-11-28/DescribeEffectivePolicyRequest AWS API Documentation
|
@@ -1640,7 +1653,7 @@ module Aws::Organizations
|
|
1640
1653
|
#
|
1641
1654
|
# {
|
1642
1655
|
# root_id: "RootId", # required
|
1643
|
-
# policy_type: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY
|
1656
|
+
# policy_type: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY, BACKUP_POLICY
|
1644
1657
|
# }
|
1645
1658
|
#
|
1646
1659
|
# @!attribute [rw] root_id
|
@@ -1656,7 +1669,20 @@ module Aws::Organizations
|
|
1656
1669
|
# @return [String]
|
1657
1670
|
#
|
1658
1671
|
# @!attribute [rw] policy_type
|
1659
|
-
# The policy type that you want to disable in this root.
|
1672
|
+
# The policy type that you want to disable in this root. You can
|
1673
|
+
# specify one of the following values:
|
1674
|
+
#
|
1675
|
+
# * [BACKUP\_POLICY][1]
|
1676
|
+
#
|
1677
|
+
# * [SERVICE\_CONTROL\_POLICY][2]
|
1678
|
+
#
|
1679
|
+
# * [TAG\_POLICY][3]
|
1680
|
+
#
|
1681
|
+
#
|
1682
|
+
#
|
1683
|
+
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_backup.html
|
1684
|
+
# [2]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scp.html
|
1685
|
+
# [3]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html
|
1660
1686
|
# @return [String]
|
1661
1687
|
#
|
1662
1688
|
# @see http://docs.aws.amazon.com/goto/WebAPI/organizations-2016-11-28/DisablePolicyTypeRequest AWS API Documentation
|
@@ -1844,7 +1870,7 @@ module Aws::Organizations
|
|
1844
1870
|
#
|
1845
1871
|
# {
|
1846
1872
|
# root_id: "RootId", # required
|
1847
|
-
# policy_type: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY
|
1873
|
+
# policy_type: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY, BACKUP_POLICY
|
1848
1874
|
# }
|
1849
1875
|
#
|
1850
1876
|
# @!attribute [rw] root_id
|
@@ -1860,7 +1886,20 @@ module Aws::Organizations
|
|
1860
1886
|
# @return [String]
|
1861
1887
|
#
|
1862
1888
|
# @!attribute [rw] policy_type
|
1863
|
-
# The policy type that you want to enable.
|
1889
|
+
# The policy type that you want to enable. You can specify one of the
|
1890
|
+
# following values:
|
1891
|
+
#
|
1892
|
+
# * [BACKUP\_POLICY][1]
|
1893
|
+
#
|
1894
|
+
# * [SERVICE\_CONTROL\_POLICY][2]
|
1895
|
+
#
|
1896
|
+
# * [TAG\_POLICY][3]
|
1897
|
+
#
|
1898
|
+
#
|
1899
|
+
#
|
1900
|
+
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_backup.html
|
1901
|
+
# [2]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scp.html
|
1902
|
+
# [3]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html
|
1864
1903
|
# @return [String]
|
1865
1904
|
#
|
1866
1905
|
# @see http://docs.aws.amazon.com/goto/WebAPI/organizations-2016-11-28/EnablePolicyTypeRequest AWS API Documentation
|
@@ -2278,7 +2317,7 @@ module Aws::Organizations
|
|
2278
2317
|
# reason that contains additional information about the violated limit:
|
2279
2318
|
#
|
2280
2319
|
# <note markdown="1"> Some of the reasons in the following list might not be applicable to
|
2281
|
-
# this specific API or operation
|
2320
|
+
# this specific API or operation.
|
2282
2321
|
#
|
2283
2322
|
# </note>
|
2284
2323
|
#
|
@@ -3210,7 +3249,7 @@ module Aws::Organizations
|
|
3210
3249
|
#
|
3211
3250
|
# {
|
3212
3251
|
# target_id: "PolicyTargetId", # required
|
3213
|
-
# filter: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY
|
3252
|
+
# filter: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY, BACKUP_POLICY
|
3214
3253
|
# next_token: "NextToken",
|
3215
3254
|
# max_results: 1,
|
3216
3255
|
# }
|
@@ -3240,6 +3279,19 @@ module Aws::Organizations
|
|
3240
3279
|
#
|
3241
3280
|
# @!attribute [rw] filter
|
3242
3281
|
# The type of policy that you want to include in the returned list.
|
3282
|
+
# You must specify one of the following values:
|
3283
|
+
#
|
3284
|
+
# * [BACKUP\_POLICY][1]
|
3285
|
+
#
|
3286
|
+
# * [SERVICE\_CONTROL\_POLICY][2]
|
3287
|
+
#
|
3288
|
+
# * [TAG\_POLICY][3]
|
3289
|
+
#
|
3290
|
+
#
|
3291
|
+
#
|
3292
|
+
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_backup.html
|
3293
|
+
# [2]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scp.html
|
3294
|
+
# [3]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html
|
3243
3295
|
# @return [String]
|
3244
3296
|
#
|
3245
3297
|
# @!attribute [rw] next_token
|
@@ -3299,14 +3351,26 @@ module Aws::Organizations
|
|
3299
3351
|
# data as a hash:
|
3300
3352
|
#
|
3301
3353
|
# {
|
3302
|
-
# filter: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY
|
3354
|
+
# filter: "SERVICE_CONTROL_POLICY", # required, accepts SERVICE_CONTROL_POLICY, TAG_POLICY, BACKUP_POLICY
|
3303
3355
|
# next_token: "NextToken",
|
3304
3356
|
# max_results: 1,
|
3305
3357
|
# }
|
3306
3358
|
#
|
3307
3359
|
# @!attribute [rw] filter
|
3308
3360
|
# Specifies the type of policy that you want to include in the
|
3309
|
-
# response.
|
3361
|
+
# response. You must specify one of the following values:
|
3362
|
+
#
|
3363
|
+
# * [BACKUP\_POLICY][1]
|
3364
|
+
#
|
3365
|
+
# * [SERVICE\_CONTROL\_POLICY][2]
|
3366
|
+
#
|
3367
|
+
# * [TAG\_POLICY][3]
|
3368
|
+
#
|
3369
|
+
#
|
3370
|
+
#
|
3371
|
+
# [1]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_backup.html
|
3372
|
+
# [2]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scp.html
|
3373
|
+
# [3]: http://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_tag-policies.html
|
3310
3374
|
# @return [String]
|
3311
3375
|
#
|
3312
3376
|
# @!attribute [rw] next_token
|
@@ -4115,8 +4179,8 @@ module Aws::Organizations
|
|
4115
4179
|
# You can't use the specified policy type with the feature set
|
4116
4180
|
# currently enabled for this organization. For example, you can enable
|
4117
4181
|
# SCPs only after you enable all features in the organization. For more
|
4118
|
-
# information, see [
|
4119
|
-
#
|
4182
|
+
# information, see [Managing AWS Organizations Policies][1]in the *AWS
|
4183
|
+
# Organizations User Guide.*
|
4120
4184
|
#
|
4121
4185
|
#
|
4122
4186
|
#
|
@@ -4384,9 +4448,9 @@ module Aws::Organizations
|
|
4384
4448
|
# @return [String]
|
4385
4449
|
#
|
4386
4450
|
# @!attribute [rw] tags
|
4387
|
-
# The tag to add to the specified resource.
|
4388
|
-
#
|
4389
|
-
# can't set
|
4451
|
+
# The tag to add to the specified resource. You must specify both a
|
4452
|
+
# tag key and value. You can set the value of a tag to an empty
|
4453
|
+
# string, but you can't set it to null.
|
4390
4454
|
# @return [Array<Types::Tag>]
|
4391
4455
|
#
|
4392
4456
|
# @see http://docs.aws.amazon.com/goto/WebAPI/organizations-2016-11-28/TagResourceRequest AWS API Documentation
|
@@ -4413,11 +4477,12 @@ module Aws::Organizations
|
|
4413
4477
|
end
|
4414
4478
|
|
4415
4479
|
# You have sent too many requests in too short a period of time. The
|
4416
|
-
#
|
4480
|
+
# quota helps protect against denial-of-service attacks. Try again
|
4417
4481
|
# later.
|
4418
4482
|
#
|
4419
|
-
# For information
|
4420
|
-
#
|
4483
|
+
# For information about quotas that affect AWS Organizations, see
|
4484
|
+
# [Quotas for AWS Organizations][1]in the *AWS Organizations User
|
4485
|
+
# Guide.*
|
4421
4486
|
#
|
4422
4487
|
#
|
4423
4488
|
#
|
@@ -4438,7 +4503,7 @@ module Aws::Organizations
|
|
4438
4503
|
include Aws::Structure
|
4439
4504
|
end
|
4440
4505
|
|
4441
|
-
# This action isn't available in the current Region.
|
4506
|
+
# This action isn't available in the current AWS Region.
|
4442
4507
|
#
|
4443
4508
|
# @!attribute [rw] message
|
4444
4509
|
# @return [String]
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-organizations
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.44.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2020-06-
|
11
|
+
date: 2020-06-24 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|