aws-sdk-securitylake 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -0,0 +1,2023 @@
1
+ # frozen_string_literal: true
2
+
3
+ # WARNING ABOUT GENERATED CODE
4
+ #
5
+ # This file is generated. See the contributing guide for more information:
6
+ # https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
7
+ #
8
+ # WARNING ABOUT GENERATED CODE
9
+
10
+ module Aws::SecurityLake
11
+ module Types
12
+
13
+ # You do not have sufficient access to perform this action. Access
14
+ # denied errors appear when Amazon Security Lake explicitly or
15
+ # implicitly denies an authorization request. An explicit denial occurs
16
+ # when a policy contains a Deny statement for the specific Amazon Web
17
+ # Services action. An implicit denial occurs when there is no applicable
18
+ # Deny statement and also no applicable Allow statement.
19
+ #
20
+ # @!attribute [rw] message
21
+ # @return [String]
22
+ #
23
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/AccessDeniedException AWS API Documentation
24
+ #
25
+ class AccessDeniedException < Struct.new(
26
+ :message)
27
+ SENSITIVE = []
28
+ include Aws::Structure
29
+ end
30
+
31
+ # Amazon Security Lake can't find an Amazon Web Services account with
32
+ # the accountID that you specified, or the account whose credentials you
33
+ # used to make this request isn't a member of an organization.
34
+ #
35
+ # @!attribute [rw] message
36
+ # @return [String]
37
+ #
38
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/AccountNotFoundException AWS API Documentation
39
+ #
40
+ class AccountNotFoundException < Struct.new(
41
+ :message)
42
+ SENSITIVE = []
43
+ include Aws::Structure
44
+ end
45
+
46
+ # Security Lake can collect logs and events from supported Amazon Web
47
+ # Services services and custom sources.
48
+ #
49
+ # @!attribute [rw] account
50
+ # Account ID of the Security Lake account for which logs are
51
+ # collected.
52
+ # @return [String]
53
+ #
54
+ # @!attribute [rw] event_class
55
+ # Initializes a new instance of the Event class.
56
+ # @return [String]
57
+ #
58
+ # @!attribute [rw] logs_status
59
+ # Log status for the Security Lake account.
60
+ # @return [Array<Types::LogsStatus>]
61
+ #
62
+ # @!attribute [rw] source_type
63
+ # The supported Amazon Web Services services from which logs and
64
+ # events are collected. Amazon Security Lake supports logs and events
65
+ # collection for natively-supported Amazon Web Services services. For
66
+ # more information, see the Amazon Security Lake User Guide.
67
+ # @return [String]
68
+ #
69
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/AccountSources AWS API Documentation
70
+ #
71
+ class AccountSources < Struct.new(
72
+ :account,
73
+ :event_class,
74
+ :logs_status,
75
+ :source_type)
76
+ SENSITIVE = []
77
+ include Aws::Structure
78
+ end
79
+
80
+ # Automatically enable new organization accounts as member accounts from
81
+ # a Security Lake administrator account.
82
+ #
83
+ # @note When making an API call, you may pass AutoEnableNewRegionConfiguration
84
+ # data as a hash:
85
+ #
86
+ # {
87
+ # region: "us-east-1", # required, accepts us-east-1, us-west-2, eu-central-1, us-east-2, eu-west-1, ap-northeast-1, ap-southeast-2
88
+ # sources: ["ROUTE53"], # required, accepts ROUTE53, VPC_FLOW, CLOUD_TRAIL, SH_FINDINGS
89
+ # }
90
+ #
91
+ # @!attribute [rw] region
92
+ # The Regions where Security Lake is auto enabled
93
+ # @return [String]
94
+ #
95
+ # @!attribute [rw] sources
96
+ # The Amazon Web Services sources which are auto enabled in Security
97
+ # Lake.
98
+ # @return [Array<String>]
99
+ #
100
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/AutoEnableNewRegionConfiguration AWS API Documentation
101
+ #
102
+ class AutoEnableNewRegionConfiguration < Struct.new(
103
+ :region,
104
+ :sources)
105
+ SENSITIVE = []
106
+ include Aws::Structure
107
+ end
108
+
109
+ # Amazon Security Lake generally returns 404 errors if the requested
110
+ # object is missing from the bucket.
111
+ #
112
+ # @!attribute [rw] message
113
+ # @return [String]
114
+ #
115
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/BucketNotFoundException AWS API Documentation
116
+ #
117
+ class BucketNotFoundException < Struct.new(
118
+ :message)
119
+ SENSITIVE = []
120
+ include Aws::Structure
121
+ end
122
+
123
+ # More than one process tried to modify a resource at the same time.
124
+ #
125
+ # @!attribute [rw] message
126
+ # @return [String]
127
+ #
128
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ConcurrentModificationException AWS API Documentation
129
+ #
130
+ class ConcurrentModificationException < Struct.new(
131
+ :message)
132
+ SENSITIVE = []
133
+ include Aws::Structure
134
+ end
135
+
136
+ # Occurs when a conflict with a previous successful write is detected.
137
+ # This generally occurs when the previous write did not have time to
138
+ # propagate to the host serving the current request. A retry (with
139
+ # appropriate backoff logic) is the recommended response to this
140
+ # exception.
141
+ #
142
+ # @!attribute [rw] message
143
+ # @return [String]
144
+ #
145
+ # @!attribute [rw] resource_id
146
+ # A conflict occurred when prompting for the Resource ID.
147
+ # @return [String]
148
+ #
149
+ # @!attribute [rw] resource_type
150
+ # The resource type.
151
+ # @return [String]
152
+ #
153
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ConflictException AWS API Documentation
154
+ #
155
+ class ConflictException < Struct.new(
156
+ :message,
157
+ :resource_id,
158
+ :resource_type)
159
+ SENSITIVE = []
160
+ include Aws::Structure
161
+ end
162
+
163
+ # There was a conflict when you attempted to modify a Security Lake
164
+ # source name.
165
+ #
166
+ # @!attribute [rw] message
167
+ # @return [String]
168
+ #
169
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ConflictSourceNamesException AWS API Documentation
170
+ #
171
+ class ConflictSourceNamesException < Struct.new(
172
+ :message)
173
+ SENSITIVE = []
174
+ include Aws::Structure
175
+ end
176
+
177
+ # A conflicting subscription exception operation is in progress.
178
+ #
179
+ # @!attribute [rw] message
180
+ # @return [String]
181
+ #
182
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ConflictSubscriptionException AWS API Documentation
183
+ #
184
+ class ConflictSubscriptionException < Struct.new(
185
+ :message)
186
+ SENSITIVE = []
187
+ include Aws::Structure
188
+ end
189
+
190
+ # @note When making an API call, you may pass CreateAwsLogSourceRequest
191
+ # data as a hash:
192
+ #
193
+ # {
194
+ # enable_all_dimensions: {
195
+ # "String" => {
196
+ # "String" => ["String"],
197
+ # },
198
+ # },
199
+ # enable_single_dimension: ["SafeString"],
200
+ # enable_two_dimensions: {
201
+ # "String" => ["String"],
202
+ # },
203
+ # input_order: ["REGION"], # required, accepts REGION, SOURCE_TYPE, MEMBER
204
+ # }
205
+ #
206
+ # @!attribute [rw] enable_all_dimensions
207
+ # Enables specific sources in all Regions and source types.
208
+ # @return [Hash<String,Hash<String,Array<String>>>]
209
+ #
210
+ # @!attribute [rw] enable_single_dimension
211
+ # Enables all sources in specific accounts or Regions.
212
+ # @return [Array<String>]
213
+ #
214
+ # @!attribute [rw] enable_two_dimensions
215
+ # Enables specific service sources in specific accounts or Regions.
216
+ # @return [Hash<String,Array<String>>]
217
+ #
218
+ # @!attribute [rw] input_order
219
+ # Specifies the input order to enable dimensions in Security Lake,
220
+ # namely region, source type, and member account.
221
+ # @return [Array<String>]
222
+ #
223
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateAwsLogSourceRequest AWS API Documentation
224
+ #
225
+ class CreateAwsLogSourceRequest < Struct.new(
226
+ :enable_all_dimensions,
227
+ :enable_single_dimension,
228
+ :enable_two_dimensions,
229
+ :input_order)
230
+ SENSITIVE = []
231
+ include Aws::Structure
232
+ end
233
+
234
+ # @!attribute [rw] failed
235
+ # List of all accounts in which enabling a natively-supported Amazon
236
+ # Web Services service as a Security Lake failed. The failure occurred
237
+ # as these accounts are not part of an organization.
238
+ # @return [Array<String>]
239
+ #
240
+ # @!attribute [rw] processing
241
+ # List of all accounts which are in the process of enabling a
242
+ # natively-supported Amazon Web Services service as a Security Lake.
243
+ # @return [Array<String>]
244
+ #
245
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateAwsLogSourceResponse AWS API Documentation
246
+ #
247
+ class CreateAwsLogSourceResponse < Struct.new(
248
+ :failed,
249
+ :processing)
250
+ SENSITIVE = []
251
+ include Aws::Structure
252
+ end
253
+
254
+ # @note When making an API call, you may pass CreateCustomLogSourceRequest
255
+ # data as a hash:
256
+ #
257
+ # {
258
+ # custom_source_name: "CustomSourceType", # required
259
+ # event_class: "ACCESS_ACTIVITY", # required, accepts ACCESS_ACTIVITY, FILE_ACTIVITY, KERNEL_ACTIVITY, KERNEL_EXTENSION, MEMORY_ACTIVITY, MODULE_ACTIVITY, PROCESS_ACTIVITY, REGISTRY_KEY_ACTIVITY, REGISTRY_VALUE_ACTIVITY, RESOURCE_ACTIVITY, SCHEDULED_JOB_ACTIVITY, SECURITY_FINDING, ACCOUNT_CHANGE, AUTHENTICATION, AUTHORIZATION, ENTITY_MANAGEMENT_AUDIT, DHCP_ACTIVITY, NETWORK_ACTIVITY, DNS_ACTIVITY, FTP_ACTIVITY, HTTP_ACTIVITY, RDP_ACTIVITY, SMB_ACTIVITY, SSH_ACTIVITY, CLOUD_API, CONTAINER_LIFECYCLE, DATABASE_LIFECYCLE, CONFIG_STATE, CLOUD_STORAGE, INVENTORY_INFO, RFB_ACTIVITY, SMTP_ACTIVITY, VIRTUAL_MACHINE_ACTIVITY
260
+ # glue_invocation_role_arn: "RoleArn", # required
261
+ # log_provider_account_id: "AwsAccountId", # required
262
+ # }
263
+ #
264
+ # @!attribute [rw] custom_source_name
265
+ # The custom source name for a third-party custom source.
266
+ # @return [String]
267
+ #
268
+ # @!attribute [rw] event_class
269
+ # The Open Cybersecurity Schema Framework (OCSF) event class.
270
+ # @return [String]
271
+ #
272
+ # @!attribute [rw] glue_invocation_role_arn
273
+ # The IAM Role ARN to be used by the Glue Crawler. The recommended IAM
274
+ # policies are:
275
+ #
276
+ # * The managed policy `AWSGlueServiceRole`
277
+ #
278
+ # * A custom policy granting access to your S3 Data Lake
279
+ # @return [String]
280
+ #
281
+ # @!attribute [rw] log_provider_account_id
282
+ # The Account ID that will assume the above Role to put logs into the
283
+ # Data Lake.
284
+ # @return [String]
285
+ #
286
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateCustomLogSourceRequest AWS API Documentation
287
+ #
288
+ class CreateCustomLogSourceRequest < Struct.new(
289
+ :custom_source_name,
290
+ :event_class,
291
+ :glue_invocation_role_arn,
292
+ :log_provider_account_id)
293
+ SENSITIVE = []
294
+ include Aws::Structure
295
+ end
296
+
297
+ # @!attribute [rw] custom_data_location
298
+ # The location of the partition in the Security Lake S3 bucket.
299
+ # @return [String]
300
+ #
301
+ # @!attribute [rw] glue_crawler_name
302
+ # The name of the Glue crawler.
303
+ # @return [String]
304
+ #
305
+ # @!attribute [rw] glue_database_name
306
+ # The Glue database where results are written, such as:
307
+ # `arn:aws:daylight:us-east-1::database/sometable/*`.
308
+ # @return [String]
309
+ #
310
+ # @!attribute [rw] glue_table_name
311
+ # The table name of the Glue crawler.
312
+ # @return [String]
313
+ #
314
+ # @!attribute [rw] log_provider_access_role_arn
315
+ # IAM Role ARN to be used by the entity putting logs into your Custom
316
+ # Source partition. Security Lake will apply the correct access
317
+ # policies to this Role, but this Role must have the trust policy
318
+ # created manually. This Role's name must start with the text
319
+ # 'Security Lake'. It must trust the `logProviderAccountId` to
320
+ # assume it.
321
+ # @return [String]
322
+ #
323
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateCustomLogSourceResponse AWS API Documentation
324
+ #
325
+ class CreateCustomLogSourceResponse < Struct.new(
326
+ :custom_data_location,
327
+ :glue_crawler_name,
328
+ :glue_database_name,
329
+ :glue_table_name,
330
+ :log_provider_access_role_arn)
331
+ SENSITIVE = []
332
+ include Aws::Structure
333
+ end
334
+
335
+ # @note When making an API call, you may pass CreateDatalakeAutoEnableRequest
336
+ # data as a hash:
337
+ #
338
+ # {
339
+ # configuration_for_new_accounts: [ # required
340
+ # {
341
+ # region: "us-east-1", # required, accepts us-east-1, us-west-2, eu-central-1, us-east-2, eu-west-1, ap-northeast-1, ap-southeast-2
342
+ # sources: ["ROUTE53"], # required, accepts ROUTE53, VPC_FLOW, CLOUD_TRAIL, SH_FINDINGS
343
+ # },
344
+ # ],
345
+ # }
346
+ #
347
+ # @!attribute [rw] configuration_for_new_accounts
348
+ # Enable Amazon Security Lake with the specified configurations
349
+ # settings to begin ingesting security data for new accounts in
350
+ # Security Lake.
351
+ # @return [Array<Types::AutoEnableNewRegionConfiguration>]
352
+ #
353
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDatalakeAutoEnableRequest AWS API Documentation
354
+ #
355
+ class CreateDatalakeAutoEnableRequest < Struct.new(
356
+ :configuration_for_new_accounts)
357
+ SENSITIVE = []
358
+ include Aws::Structure
359
+ end
360
+
361
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDatalakeAutoEnableResponse AWS API Documentation
362
+ #
363
+ class CreateDatalakeAutoEnableResponse < Aws::EmptyStructure; end
364
+
365
+ # @note When making an API call, you may pass CreateDatalakeDelegatedAdminRequest
366
+ # data as a hash:
367
+ #
368
+ # {
369
+ # account: "SafeString", # required
370
+ # }
371
+ #
372
+ # @!attribute [rw] account
373
+ # Account ID of the Security Lake delegated administrator.
374
+ # @return [String]
375
+ #
376
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDatalakeDelegatedAdminRequest AWS API Documentation
377
+ #
378
+ class CreateDatalakeDelegatedAdminRequest < Struct.new(
379
+ :account)
380
+ SENSITIVE = []
381
+ include Aws::Structure
382
+ end
383
+
384
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDatalakeDelegatedAdminResponse AWS API Documentation
385
+ #
386
+ class CreateDatalakeDelegatedAdminResponse < Aws::EmptyStructure; end
387
+
388
+ # @note When making an API call, you may pass CreateDatalakeExceptionsSubscriptionRequest
389
+ # data as a hash:
390
+ #
391
+ # {
392
+ # notification_endpoint: "SafeString", # required
393
+ # subscription_protocol: "HTTP", # required, accepts HTTP, HTTPS, EMAIL, EMAIL_JSON, SMS, SQS, LAMBDA, APP, FIREHOSE
394
+ # }
395
+ #
396
+ # @!attribute [rw] notification_endpoint
397
+ # The account in which the exception notifications subscription is
398
+ # created.
399
+ # @return [String]
400
+ #
401
+ # @!attribute [rw] subscription_protocol
402
+ # The subscription protocol to which exception messages are posted.
403
+ # @return [String]
404
+ #
405
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDatalakeExceptionsSubscriptionRequest AWS API Documentation
406
+ #
407
+ class CreateDatalakeExceptionsSubscriptionRequest < Struct.new(
408
+ :notification_endpoint,
409
+ :subscription_protocol)
410
+ SENSITIVE = []
411
+ include Aws::Structure
412
+ end
413
+
414
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDatalakeExceptionsSubscriptionResponse AWS API Documentation
415
+ #
416
+ class CreateDatalakeExceptionsSubscriptionResponse < Aws::EmptyStructure; end
417
+
418
+ # @note When making an API call, you may pass CreateDatalakeRequest
419
+ # data as a hash:
420
+ #
421
+ # {
422
+ # configurations: {
423
+ # "us-east-1" => {
424
+ # encryption_key: "String",
425
+ # replication_destination_regions: ["us-east-1"], # accepts us-east-1, us-west-2, eu-central-1, us-east-2, eu-west-1, ap-northeast-1, ap-southeast-2
426
+ # replication_role_arn: "RoleArn",
427
+ # retention_settings: [
428
+ # {
429
+ # retention_period: 1,
430
+ # storage_class: "STANDARD_IA", # accepts STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER_IR, GLACIER, DEEP_ARCHIVE, EXPIRE
431
+ # },
432
+ # ],
433
+ # tags_map: {
434
+ # "String" => "String",
435
+ # },
436
+ # },
437
+ # },
438
+ # enable_all: false,
439
+ # meta_store_manager_role_arn: "RoleArn",
440
+ # regions: ["us-east-1"], # accepts us-east-1, us-west-2, eu-central-1, us-east-2, eu-west-1, ap-northeast-1, ap-southeast-2
441
+ # }
442
+ #
443
+ # @!attribute [rw] configurations
444
+ # Enable Security Lake with the specified configurations settings to
445
+ # begin ingesting security data.
446
+ # @return [Hash<String,Types::LakeConfigurationRequest>]
447
+ #
448
+ # @!attribute [rw] enable_all
449
+ # Enable Security Lake in all Regions to begin ingesting security
450
+ # data.
451
+ # @return [Boolean]
452
+ #
453
+ # @!attribute [rw] meta_store_manager_role_arn
454
+ # The Role ARN used to create and update the Glue table with
455
+ # partitions generated by ingestion and normalization of Amazon Web
456
+ # Services log sources and custom sources.
457
+ # @return [String]
458
+ #
459
+ # @!attribute [rw] regions
460
+ # Enable Security Lake in the specified Regions to begin ingesting
461
+ # security data. To enable Security Lake in specific Amazon Web
462
+ # Services Regions, such as us-east-1 or ap-northeast-3, provide the
463
+ # Region codes. For a list of Region codes, see [Region codes][1] in
464
+ # the Amazon Web Services General Reference.
465
+ #
466
+ #
467
+ #
468
+ # [1]: https://docs.aws.amazon.com/general/latest/gr/rande.html#regional-endpoints
469
+ # @return [Array<String>]
470
+ #
471
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDatalakeRequest AWS API Documentation
472
+ #
473
+ class CreateDatalakeRequest < Struct.new(
474
+ :configurations,
475
+ :enable_all,
476
+ :meta_store_manager_role_arn,
477
+ :regions)
478
+ SENSITIVE = []
479
+ include Aws::Structure
480
+ end
481
+
482
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDatalakeResponse AWS API Documentation
483
+ #
484
+ class CreateDatalakeResponse < Aws::EmptyStructure; end
485
+
486
+ # @note When making an API call, you may pass CreateSubscriberRequest
487
+ # data as a hash:
488
+ #
489
+ # {
490
+ # access_types: ["LAKEFORMATION"], # accepts LAKEFORMATION, S3
491
+ # account_id: "AwsAccountId", # required
492
+ # external_id: "SafeString", # required
493
+ # source_types: [ # required
494
+ # {
495
+ # aws_source_type: "ROUTE53", # accepts ROUTE53, VPC_FLOW, CLOUD_TRAIL, SH_FINDINGS
496
+ # custom_source_type: "CustomSourceType",
497
+ # },
498
+ # ],
499
+ # subscriber_description: "SafeString",
500
+ # subscriber_name: "CreateSubscriberRequestSubscriberNameString", # required
501
+ # }
502
+ #
503
+ # @!attribute [rw] access_types
504
+ # The Amazon S3 or Lake Formation access type.
505
+ # @return [Array<String>]
506
+ #
507
+ # @!attribute [rw] account_id
508
+ # The third party Amazon Web Services account ID used to access your
509
+ # data.
510
+ # @return [String]
511
+ #
512
+ # @!attribute [rw] external_id
513
+ # The external ID of the subscriber. External ID allows the user that
514
+ # is assuming the role to assert the circumstances in which they are
515
+ # operating. It also provides a way for the account owner to permit
516
+ # the role to be assumed only under specific circumstances.
517
+ # @return [String]
518
+ #
519
+ # @!attribute [rw] source_types
520
+ # The supported Amazon Web Services services from which logs and
521
+ # events are collected. Amazon Security Lake supports logs and events
522
+ # collection for natively-supported Amazon Web Services services.
523
+ # @return [Array<Types::SourceType>]
524
+ #
525
+ # @!attribute [rw] subscriber_description
526
+ # The subscriber descriptions for the subscriber account in Amazon
527
+ # Security Lake.
528
+ # @return [String]
529
+ #
530
+ # @!attribute [rw] subscriber_name
531
+ # The name of your Amazon Security Lake subscriber account.
532
+ # @return [String]
533
+ #
534
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateSubscriberRequest AWS API Documentation
535
+ #
536
+ class CreateSubscriberRequest < Struct.new(
537
+ :access_types,
538
+ :account_id,
539
+ :external_id,
540
+ :source_types,
541
+ :subscriber_description,
542
+ :subscriber_name)
543
+ SENSITIVE = []
544
+ include Aws::Structure
545
+ end
546
+
547
+ # @!attribute [rw] role_arn
548
+ # The Amazon Resource Name (ARN) created by the user to provide to the
549
+ # subscriber. For more information about ARNs and how to use them in
550
+ # policies, see IAM identifiers in the IAM User Guide.
551
+ # @return [String]
552
+ #
553
+ # @!attribute [rw] s3_bucket_arn
554
+ # The Amazon Resource Name (ARN) for the Amazon S3 bucket.
555
+ # @return [String]
556
+ #
557
+ # @!attribute [rw] sns_arn
558
+ # The Amazon Resource Name (ARN) for the Amazon Simple Notification
559
+ # Service.
560
+ # @return [String]
561
+ #
562
+ # @!attribute [rw] subscription_id
563
+ # The `subscriptionId` that was created by the `CreateSubscriber` API
564
+ # call.
565
+ # @return [String]
566
+ #
567
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateSubscriberResponse AWS API Documentation
568
+ #
569
+ class CreateSubscriberResponse < Struct.new(
570
+ :role_arn,
571
+ :s3_bucket_arn,
572
+ :sns_arn,
573
+ :subscription_id)
574
+ SENSITIVE = []
575
+ include Aws::Structure
576
+ end
577
+
578
+ # @note When making an API call, you may pass CreateSubscriptionNotificationConfigurationRequest
579
+ # data as a hash:
580
+ #
581
+ # {
582
+ # create_sqs: false,
583
+ # https_api_key_name: "String",
584
+ # https_api_key_value: "String",
585
+ # https_method: "POST", # accepts POST, PUT
586
+ # role_arn: "RoleArn",
587
+ # subscription_endpoint: "CreateSubscriptionNotificationConfigurationRequestSubscriptionEndpointString",
588
+ # subscription_id: "UUID", # required
589
+ # }
590
+ #
591
+ # @!attribute [rw] create_sqs
592
+ # Create a new subscription notification for the specified
593
+ # subscription ID in Security Lake.
594
+ # @return [Boolean]
595
+ #
596
+ # @!attribute [rw] https_api_key_name
597
+ # The key name for the subscription notification.
598
+ # @return [String]
599
+ #
600
+ # @!attribute [rw] https_api_key_value
601
+ # The key value for the subscription notification.
602
+ # @return [String]
603
+ #
604
+ # @!attribute [rw] https_method
605
+ # The HTTPS method used for the subscription notification.
606
+ # @return [String]
607
+ #
608
+ # @!attribute [rw] role_arn
609
+ # The Amazon Resource Name (ARN) specifying the role of the
610
+ # subscriber.
611
+ # @return [String]
612
+ #
613
+ # @!attribute [rw] subscription_endpoint
614
+ # The subscription endpoint in Security Lake.
615
+ # @return [String]
616
+ #
617
+ # @!attribute [rw] subscription_id
618
+ # The subscription ID for which the subscription notification is
619
+ # specified.
620
+ # @return [String]
621
+ #
622
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateSubscriptionNotificationConfigurationRequest AWS API Documentation
623
+ #
624
+ class CreateSubscriptionNotificationConfigurationRequest < Struct.new(
625
+ :create_sqs,
626
+ :https_api_key_name,
627
+ :https_api_key_value,
628
+ :https_method,
629
+ :role_arn,
630
+ :subscription_endpoint,
631
+ :subscription_id)
632
+ SENSITIVE = []
633
+ include Aws::Structure
634
+ end
635
+
636
+ # @!attribute [rw] queue_arn
637
+ # Returns the Amazon resource name (ARN) of the queue.
638
+ # @return [String]
639
+ #
640
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateSubscriptionNotificationConfigurationResponse AWS API Documentation
641
+ #
642
+ class CreateSubscriptionNotificationConfigurationResponse < Struct.new(
643
+ :queue_arn)
644
+ SENSITIVE = []
645
+ include Aws::Structure
646
+ end
647
+
648
+ # @note When making an API call, you may pass DeleteAwsLogSourceRequest
649
+ # data as a hash:
650
+ #
651
+ # {
652
+ # disable_all_dimensions: {
653
+ # "String" => {
654
+ # "String" => ["String"],
655
+ # },
656
+ # },
657
+ # disable_single_dimension: ["SafeString"],
658
+ # disable_two_dimensions: {
659
+ # "String" => ["String"],
660
+ # },
661
+ # input_order: ["REGION"], # required, accepts REGION, SOURCE_TYPE, MEMBER
662
+ # }
663
+ #
664
+ # @!attribute [rw] disable_all_dimensions
665
+ # Removes the specific Amazon Web Services sources from all Regions
666
+ # and source types.
667
+ # @return [Hash<String,Hash<String,Array<String>>>]
668
+ #
669
+ # @!attribute [rw] disable_single_dimension
670
+ # Removes all Amazon Web Services sources from specific accounts or
671
+ # Regions.
672
+ # @return [Array<String>]
673
+ #
674
+ # @!attribute [rw] disable_two_dimensions
675
+ # Remove a specific Amazon Web Services source from specific accounts
676
+ # or Regions.
677
+ # @return [Hash<String,Array<String>>]
678
+ #
679
+ # @!attribute [rw] input_order
680
+ # This is a mandatory input. Specifies the input order to disable
681
+ # dimensions in Security Lake, namely Region, source type, and member.
682
+ # @return [Array<String>]
683
+ #
684
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteAwsLogSourceRequest AWS API Documentation
685
+ #
686
+ class DeleteAwsLogSourceRequest < Struct.new(
687
+ :disable_all_dimensions,
688
+ :disable_single_dimension,
689
+ :disable_two_dimensions,
690
+ :input_order)
691
+ SENSITIVE = []
692
+ include Aws::Structure
693
+ end
694
+
695
+ # @!attribute [rw] failed
696
+ # Deletion of the Amazon Web Services sources failed as the account is
697
+ # not a part of the organization.
698
+ # @return [Array<String>]
699
+ #
700
+ # @!attribute [rw] processing
701
+ # Deletion of the Amazon Web Services sources is in-progress.
702
+ # @return [Array<String>]
703
+ #
704
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteAwsLogSourceResponse AWS API Documentation
705
+ #
706
+ class DeleteAwsLogSourceResponse < Struct.new(
707
+ :failed,
708
+ :processing)
709
+ SENSITIVE = []
710
+ include Aws::Structure
711
+ end
712
+
713
+ # @note When making an API call, you may pass DeleteCustomLogSourceRequest
714
+ # data as a hash:
715
+ #
716
+ # {
717
+ # custom_source_name: "String", # required
718
+ # }
719
+ #
720
+ # @!attribute [rw] custom_source_name
721
+ # The custom source name for the custome log source.
722
+ # @return [String]
723
+ #
724
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteCustomLogSourceRequest AWS API Documentation
725
+ #
726
+ class DeleteCustomLogSourceRequest < Struct.new(
727
+ :custom_source_name)
728
+ SENSITIVE = []
729
+ include Aws::Structure
730
+ end
731
+
732
+ # @!attribute [rw] custom_data_location
733
+ # The location of the partition in the Security Lake S3 bucket.
734
+ # @return [String]
735
+ #
736
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteCustomLogSourceResponse AWS API Documentation
737
+ #
738
+ class DeleteCustomLogSourceResponse < Struct.new(
739
+ :custom_data_location)
740
+ SENSITIVE = []
741
+ include Aws::Structure
742
+ end
743
+
744
+ # @note When making an API call, you may pass DeleteDatalakeAutoEnableRequest
745
+ # data as a hash:
746
+ #
747
+ # {
748
+ # remove_from_configuration_for_new_accounts: [ # required
749
+ # {
750
+ # region: "us-east-1", # required, accepts us-east-1, us-west-2, eu-central-1, us-east-2, eu-west-1, ap-northeast-1, ap-southeast-2
751
+ # sources: ["ROUTE53"], # required, accepts ROUTE53, VPC_FLOW, CLOUD_TRAIL, SH_FINDINGS
752
+ # },
753
+ # ],
754
+ # }
755
+ #
756
+ # @!attribute [rw] remove_from_configuration_for_new_accounts
757
+ # Delete Amazon Security Lake with the specified configurations
758
+ # settings to stop ingesting security data for new accounts in
759
+ # Security Lake.
760
+ # @return [Array<Types::AutoEnableNewRegionConfiguration>]
761
+ #
762
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDatalakeAutoEnableRequest AWS API Documentation
763
+ #
764
+ class DeleteDatalakeAutoEnableRequest < Struct.new(
765
+ :remove_from_configuration_for_new_accounts)
766
+ SENSITIVE = []
767
+ include Aws::Structure
768
+ end
769
+
770
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDatalakeAutoEnableResponse AWS API Documentation
771
+ #
772
+ class DeleteDatalakeAutoEnableResponse < Aws::EmptyStructure; end
773
+
774
+ # @note When making an API call, you may pass DeleteDatalakeDelegatedAdminRequest
775
+ # data as a hash:
776
+ #
777
+ # {
778
+ # account: "SafeString", # required
779
+ # }
780
+ #
781
+ # @!attribute [rw] account
782
+ # Account ID the Security Lake delegated administrator.
783
+ # @return [String]
784
+ #
785
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDatalakeDelegatedAdminRequest AWS API Documentation
786
+ #
787
+ class DeleteDatalakeDelegatedAdminRequest < Struct.new(
788
+ :account)
789
+ SENSITIVE = []
790
+ include Aws::Structure
791
+ end
792
+
793
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDatalakeDelegatedAdminResponse AWS API Documentation
794
+ #
795
+ class DeleteDatalakeDelegatedAdminResponse < Aws::EmptyStructure; end
796
+
797
+ # @api private
798
+ #
799
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDatalakeExceptionsSubscriptionRequest AWS API Documentation
800
+ #
801
+ class DeleteDatalakeExceptionsSubscriptionRequest < Aws::EmptyStructure; end
802
+
803
+ # @!attribute [rw] status
804
+ # Retrieves the status of the delete Security Lake operation for an
805
+ # account.
806
+ # @return [String]
807
+ #
808
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDatalakeExceptionsSubscriptionResponse AWS API Documentation
809
+ #
810
+ class DeleteDatalakeExceptionsSubscriptionResponse < Struct.new(
811
+ :status)
812
+ SENSITIVE = []
813
+ include Aws::Structure
814
+ end
815
+
816
+ # @api private
817
+ #
818
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDatalakeRequest AWS API Documentation
819
+ #
820
+ class DeleteDatalakeRequest < Aws::EmptyStructure; end
821
+
822
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDatalakeResponse AWS API Documentation
823
+ #
824
+ class DeleteDatalakeResponse < Aws::EmptyStructure; end
825
+
826
+ # @note When making an API call, you may pass DeleteSubscriberRequest
827
+ # data as a hash:
828
+ #
829
+ # {
830
+ # id: "String", # required
831
+ # }
832
+ #
833
+ # @!attribute [rw] id
834
+ # A value created by Security Lake that uniquely identifies your
835
+ # `DeleteSubscriber` API request.
836
+ # @return [String]
837
+ #
838
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteSubscriberRequest AWS API Documentation
839
+ #
840
+ class DeleteSubscriberRequest < Struct.new(
841
+ :id)
842
+ SENSITIVE = []
843
+ include Aws::Structure
844
+ end
845
+
846
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteSubscriberResponse AWS API Documentation
847
+ #
848
+ class DeleteSubscriberResponse < Aws::EmptyStructure; end
849
+
850
+ # @note When making an API call, you may pass DeleteSubscriptionNotificationConfigurationRequest
851
+ # data as a hash:
852
+ #
853
+ # {
854
+ # subscription_id: "UUID", # required
855
+ # }
856
+ #
857
+ # @!attribute [rw] subscription_id
858
+ # The subscription ID of the Amazon Security Lake subscriber account.
859
+ # @return [String]
860
+ #
861
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteSubscriptionNotificationConfigurationRequest AWS API Documentation
862
+ #
863
+ class DeleteSubscriptionNotificationConfigurationRequest < Struct.new(
864
+ :subscription_id)
865
+ SENSITIVE = []
866
+ include Aws::Structure
867
+ end
868
+
869
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteSubscriptionNotificationConfigurationResponse AWS API Documentation
870
+ #
871
+ class DeleteSubscriptionNotificationConfigurationResponse < Aws::EmptyStructure; end
872
+
873
+ # Represents an error interacting with the Amazon EventBridge service.
874
+ #
875
+ # @!attribute [rw] message
876
+ # @return [String]
877
+ #
878
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/EventBridgeException AWS API Documentation
879
+ #
880
+ class EventBridgeException < Struct.new(
881
+ :message)
882
+ SENSITIVE = []
883
+ include Aws::Structure
884
+ end
885
+
886
+ # List of all failures.
887
+ #
888
+ # @!attribute [rw] exception_message
889
+ # List of all exception messages.
890
+ # @return [String]
891
+ #
892
+ # @!attribute [rw] remediation
893
+ # List of all remediation steps for failures.
894
+ # @return [String]
895
+ #
896
+ # @!attribute [rw] timestamp
897
+ # This error can occur if you configure the wrong timestamp format, or
898
+ # if the subset of entries used for validation had errors or missing
899
+ # values.
900
+ # @return [Time]
901
+ #
902
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/Failures AWS API Documentation
903
+ #
904
+ class Failures < Struct.new(
905
+ :exception_message,
906
+ :remediation,
907
+ :timestamp)
908
+ SENSITIVE = []
909
+ include Aws::Structure
910
+ end
911
+
912
+ # Response element for actions which make changes namely create, update,
913
+ # or delete actions.
914
+ #
915
+ # @!attribute [rw] failures
916
+ # List of all failures.
917
+ # @return [Array<Types::Failures>]
918
+ #
919
+ # @!attribute [rw] region
920
+ # List of Regions where the failure occurred.
921
+ # @return [String]
922
+ #
923
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/FailuresResponse AWS API Documentation
924
+ #
925
+ class FailuresResponse < Struct.new(
926
+ :failures,
927
+ :region)
928
+ SENSITIVE = []
929
+ include Aws::Structure
930
+ end
931
+
932
+ # @api private
933
+ #
934
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalakeAutoEnableRequest AWS API Documentation
935
+ #
936
+ class GetDatalakeAutoEnableRequest < Aws::EmptyStructure; end
937
+
938
+ # @!attribute [rw] auto_enable_new_accounts
939
+ # The configuration for new accounts.
940
+ # @return [Array<Types::AutoEnableNewRegionConfiguration>]
941
+ #
942
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalakeAutoEnableResponse AWS API Documentation
943
+ #
944
+ class GetDatalakeAutoEnableResponse < Struct.new(
945
+ :auto_enable_new_accounts)
946
+ SENSITIVE = []
947
+ include Aws::Structure
948
+ end
949
+
950
+ # @api private
951
+ #
952
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalakeExceptionsExpiryRequest AWS API Documentation
953
+ #
954
+ class GetDatalakeExceptionsExpiryRequest < Aws::EmptyStructure; end
955
+
956
+ # @!attribute [rw] exception_message_expiry
957
+ # The expiration period and time-to-live (TTL).
958
+ # @return [Integer]
959
+ #
960
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalakeExceptionsExpiryResponse AWS API Documentation
961
+ #
962
+ class GetDatalakeExceptionsExpiryResponse < Struct.new(
963
+ :exception_message_expiry)
964
+ SENSITIVE = []
965
+ include Aws::Structure
966
+ end
967
+
968
+ # @api private
969
+ #
970
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalakeExceptionsSubscriptionRequest AWS API Documentation
971
+ #
972
+ class GetDatalakeExceptionsSubscriptionRequest < Aws::EmptyStructure; end
973
+
974
+ # @!attribute [rw] protocol_and_notification_endpoint
975
+ # Retrieves the exception notification subscription information.
976
+ # @return [Types::ProtocolAndNotificationEndpoint]
977
+ #
978
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalakeExceptionsSubscriptionResponse AWS API Documentation
979
+ #
980
+ class GetDatalakeExceptionsSubscriptionResponse < Struct.new(
981
+ :protocol_and_notification_endpoint)
982
+ SENSITIVE = []
983
+ include Aws::Structure
984
+ end
985
+
986
+ # @api private
987
+ #
988
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalakeRequest AWS API Documentation
989
+ #
990
+ class GetDatalakeRequest < Aws::EmptyStructure; end
991
+
992
+ # @!attribute [rw] configurations
993
+ # Retrieves the Security Lake configuration object.
994
+ # @return [Hash<String,Types::LakeConfigurationResponse>]
995
+ #
996
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalakeResponse AWS API Documentation
997
+ #
998
+ class GetDatalakeResponse < Struct.new(
999
+ :configurations)
1000
+ SENSITIVE = []
1001
+ include Aws::Structure
1002
+ end
1003
+
1004
+ # @note When making an API call, you may pass GetDatalakeStatusRequest
1005
+ # data as a hash:
1006
+ #
1007
+ # {
1008
+ # account_set: ["SafeString"],
1009
+ # max_account_results: 1,
1010
+ # next_token: "SafeString",
1011
+ # }
1012
+ #
1013
+ # @!attribute [rw] account_set
1014
+ # The account IDs for which a static snapshot of the current Region,
1015
+ # including enabled accounts and log sources is retrieved.
1016
+ # @return [Array<String>]
1017
+ #
1018
+ # @!attribute [rw] max_account_results
1019
+ # The maximum limit of accounts for which the static snapshot of the
1020
+ # current Region including enabled accounts and log sources is
1021
+ # retrieved.
1022
+ # @return [Integer]
1023
+ #
1024
+ # @!attribute [rw] next_token
1025
+ # If nextToken is returned, there are more results available. The
1026
+ # value of nextToken is a unique pagination token for each page. Make
1027
+ # the call again using the returned token to retrieve the next page.
1028
+ # Keep all other arguments unchanged. Each pagination token expires
1029
+ # after 24 hours. Using an expired pagination token will return an
1030
+ # HTTP 400 InvalidToken error.
1031
+ # @return [String]
1032
+ #
1033
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalakeStatusRequest AWS API Documentation
1034
+ #
1035
+ class GetDatalakeStatusRequest < Struct.new(
1036
+ :account_set,
1037
+ :max_account_results,
1038
+ :next_token)
1039
+ SENSITIVE = []
1040
+ include Aws::Structure
1041
+ end
1042
+
1043
+ # @!attribute [rw] account_sources_list
1044
+ # The list of enabled accounts and enabled sources.
1045
+ # @return [Array<Types::AccountSources>]
1046
+ #
1047
+ # @!attribute [rw] next_token
1048
+ # If nextToken is returned, there are more results available. The
1049
+ # value of nextToken is a unique pagination token for each page. Make
1050
+ # the call again using the returned token to retrieve the next page.
1051
+ # Keep all other arguments unchanged. Each pagination token expires
1052
+ # after 24 hours. Using an expired pagination token will return an
1053
+ # HTTP 400 InvalidToken error.
1054
+ # @return [String]
1055
+ #
1056
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalakeStatusResponse AWS API Documentation
1057
+ #
1058
+ class GetDatalakeStatusResponse < Struct.new(
1059
+ :account_sources_list,
1060
+ :next_token)
1061
+ SENSITIVE = []
1062
+ include Aws::Structure
1063
+ end
1064
+
1065
+ # @note When making an API call, you may pass GetSubscriberRequest
1066
+ # data as a hash:
1067
+ #
1068
+ # {
1069
+ # id: "String", # required
1070
+ # }
1071
+ #
1072
+ # @!attribute [rw] id
1073
+ # A value created by Security Lake that uniquely identifies your
1074
+ # `GetSubscriber` API request.
1075
+ # @return [String]
1076
+ #
1077
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetSubscriberRequest AWS API Documentation
1078
+ #
1079
+ class GetSubscriberRequest < Struct.new(
1080
+ :id)
1081
+ SENSITIVE = []
1082
+ include Aws::Structure
1083
+ end
1084
+
1085
+ # @!attribute [rw] subscriber
1086
+ # Subscription information for the specified subscription ID
1087
+ # @return [Types::SubscriberResource]
1088
+ #
1089
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetSubscriberResponse AWS API Documentation
1090
+ #
1091
+ class GetSubscriberResponse < Struct.new(
1092
+ :subscriber)
1093
+ SENSITIVE = []
1094
+ include Aws::Structure
1095
+ end
1096
+
1097
+ # Internal service exceptions are sometimes caused by transient issues.
1098
+ # Before you start troubleshooting, perform the operation again.
1099
+ #
1100
+ # @!attribute [rw] message
1101
+ # @return [String]
1102
+ #
1103
+ # @!attribute [rw] retry_after_seconds
1104
+ # Retry the request after the specified time.
1105
+ # @return [Integer]
1106
+ #
1107
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/InternalServerException AWS API Documentation
1108
+ #
1109
+ class InternalServerException < Struct.new(
1110
+ :message,
1111
+ :retry_after_seconds)
1112
+ SENSITIVE = []
1113
+ include Aws::Structure
1114
+ end
1115
+
1116
+ # The request was rejected because an invalid or out-of-range value was
1117
+ # supplied for an input parameter.
1118
+ #
1119
+ # @!attribute [rw] message
1120
+ # @return [String]
1121
+ #
1122
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/InvalidInputException AWS API Documentation
1123
+ #
1124
+ class InvalidInputException < Struct.new(
1125
+ :message)
1126
+ SENSITIVE = []
1127
+ include Aws::Structure
1128
+ end
1129
+
1130
+ # Provides details of lake configuration object in Amazon Security Lake.
1131
+ #
1132
+ # @note When making an API call, you may pass LakeConfigurationRequest
1133
+ # data as a hash:
1134
+ #
1135
+ # {
1136
+ # encryption_key: "String",
1137
+ # replication_destination_regions: ["us-east-1"], # accepts us-east-1, us-west-2, eu-central-1, us-east-2, eu-west-1, ap-northeast-1, ap-southeast-2
1138
+ # replication_role_arn: "RoleArn",
1139
+ # retention_settings: [
1140
+ # {
1141
+ # retention_period: 1,
1142
+ # storage_class: "STANDARD_IA", # accepts STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER_IR, GLACIER, DEEP_ARCHIVE, EXPIRE
1143
+ # },
1144
+ # ],
1145
+ # tags_map: {
1146
+ # "String" => "String",
1147
+ # },
1148
+ # }
1149
+ #
1150
+ # @!attribute [rw] encryption_key
1151
+ # The type of encryption key used by Security Lake to encrypt the lake
1152
+ # configuration object.
1153
+ # @return [String]
1154
+ #
1155
+ # @!attribute [rw] replication_destination_regions
1156
+ # Replication enables automatic, asynchronous copying of objects
1157
+ # across Amazon S3 buckets. Amazon S3 buckets that are configured for
1158
+ # object replication can be owned by the same Amazon Web Services
1159
+ # account or by different accounts. You can replicate objects to a
1160
+ # single destination bucket or to multiple destination buckets. The
1161
+ # destination buckets can be in different Amazon Web Services Regions
1162
+ # or within the same Region as the source bucket.
1163
+ #
1164
+ # Set up one or more rollup Regions by providing the Region or Regions
1165
+ # that should contribute to the central rollup Region.
1166
+ # @return [Array<String>]
1167
+ #
1168
+ # @!attribute [rw] replication_role_arn
1169
+ # Replication settings for the Amazon S3 buckets. This parameter uses
1170
+ # the IAM role created by you that is managed by Security Lake, to
1171
+ # ensure the replication setting is correct.
1172
+ # @return [String]
1173
+ #
1174
+ # @!attribute [rw] retention_settings
1175
+ # Retention settings for the destination Amazon S3 buckets.
1176
+ # @return [Array<Types::RetentionSetting>]
1177
+ #
1178
+ # @!attribute [rw] tags_map
1179
+ # A tag is a label that you assign to an Amazon Web Services resource.
1180
+ # Each tag consists of a key and an optional value, both of which you
1181
+ # define.
1182
+ # @return [Hash<String,String>]
1183
+ #
1184
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/LakeConfigurationRequest AWS API Documentation
1185
+ #
1186
+ class LakeConfigurationRequest < Struct.new(
1187
+ :encryption_key,
1188
+ :replication_destination_regions,
1189
+ :replication_role_arn,
1190
+ :retention_settings,
1191
+ :tags_map)
1192
+ SENSITIVE = []
1193
+ include Aws::Structure
1194
+ end
1195
+
1196
+ # Provides details of lake configuration object in Amazon Security Lake.
1197
+ #
1198
+ # @!attribute [rw] encryption_key
1199
+ # The type of encryption key used by Security Lake to encrypt the lake
1200
+ # configuration
1201
+ # @return [String]
1202
+ #
1203
+ # @!attribute [rw] replication_destination_regions
1204
+ # Replication enables automatic, asynchronous copying of objects
1205
+ # across Amazon S3 buckets. Amazon S3 buckets that are configured for
1206
+ # object replication can be owned by the same AWS account or by
1207
+ # different accounts. You can replicate objects to a single
1208
+ # destination bucket or to multiple destination buckets. The
1209
+ # destination buckets can be in different Amazon Web Services Regions
1210
+ # or within the same Region as the source bucket.
1211
+ #
1212
+ # Set up one or more rollup Regions by providing the Region or Regions
1213
+ # that should contribute to the central rollup Region.
1214
+ # @return [Array<String>]
1215
+ #
1216
+ # @!attribute [rw] replication_role_arn
1217
+ # Replication settings for the Amazon S3 buckets. This parameter uses
1218
+ # the IAM role created by you that is managed by Security Lake, to
1219
+ # ensure the replication setting is correct.
1220
+ # @return [String]
1221
+ #
1222
+ # @!attribute [rw] retention_settings
1223
+ # Retention settings for the destination Amazon S3 buckets.
1224
+ # @return [Array<Types::RetentionSetting>]
1225
+ #
1226
+ # @!attribute [rw] s3_bucket_arn
1227
+ # Amazon Resource Names (ARNs) uniquely identify Amazon Web Services
1228
+ # resources. Security Lake requires an ARN when you need to specify a
1229
+ # resource unambiguously across all of Amazon Web Services, such as in
1230
+ # IAM policies, Amazon Relational Database Service (Amazon RDS) tags,
1231
+ # and API calls.
1232
+ # @return [String]
1233
+ #
1234
+ # @!attribute [rw] status
1235
+ # Retrieves the status of the configuration operation for an account
1236
+ # in Amazon Security Lake.
1237
+ # @return [String]
1238
+ #
1239
+ # @!attribute [rw] tags_map
1240
+ # A tag is a label that you assign to an Amazon Web Services resource.
1241
+ # Each tag consists of a key and an optional value, both of which you
1242
+ # define.
1243
+ # @return [Hash<String,String>]
1244
+ #
1245
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/LakeConfigurationResponse AWS API Documentation
1246
+ #
1247
+ class LakeConfigurationResponse < Struct.new(
1248
+ :encryption_key,
1249
+ :replication_destination_regions,
1250
+ :replication_role_arn,
1251
+ :retention_settings,
1252
+ :s3_bucket_arn,
1253
+ :status,
1254
+ :tags_map)
1255
+ SENSITIVE = []
1256
+ include Aws::Structure
1257
+ end
1258
+
1259
+ # @note When making an API call, you may pass ListDatalakeExceptionsRequest
1260
+ # data as a hash:
1261
+ #
1262
+ # {
1263
+ # max_failures: 1,
1264
+ # next_token: "SafeString",
1265
+ # region_set: ["us-east-1"], # accepts us-east-1, us-west-2, eu-central-1, us-east-2, eu-west-1, ap-northeast-1, ap-southeast-2
1266
+ # }
1267
+ #
1268
+ # @!attribute [rw] max_failures
1269
+ # List the maximum number of failures in Security Lake.
1270
+ # @return [Integer]
1271
+ #
1272
+ # @!attribute [rw] next_token
1273
+ # List if there are more results available. if nextToken is returned,
1274
+ # You can make the call again using the returned token to retrieve the
1275
+ # next page
1276
+ # @return [String]
1277
+ #
1278
+ # @!attribute [rw] region_set
1279
+ # List the regions from which exceptions are retrieved.
1280
+ # @return [Array<String>]
1281
+ #
1282
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListDatalakeExceptionsRequest AWS API Documentation
1283
+ #
1284
+ class ListDatalakeExceptionsRequest < Struct.new(
1285
+ :max_failures,
1286
+ :next_token,
1287
+ :region_set)
1288
+ SENSITIVE = []
1289
+ include Aws::Structure
1290
+ end
1291
+
1292
+ # @!attribute [rw] next_token
1293
+ # List if there are more results available. if nextToken is returned,
1294
+ # You can make the call again using the returned token to retrieve the
1295
+ # next page
1296
+ # @return [String]
1297
+ #
1298
+ # @!attribute [rw] non_retryable_failures
1299
+ # Lists the non-retryable failures in the current region.
1300
+ # @return [Array<Types::FailuresResponse>]
1301
+ #
1302
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListDatalakeExceptionsResponse AWS API Documentation
1303
+ #
1304
+ class ListDatalakeExceptionsResponse < Struct.new(
1305
+ :next_token,
1306
+ :non_retryable_failures)
1307
+ SENSITIVE = []
1308
+ include Aws::Structure
1309
+ end
1310
+
1311
+ # @note When making an API call, you may pass ListLogSourcesRequest
1312
+ # data as a hash:
1313
+ #
1314
+ # {
1315
+ # input_order: ["REGION"], # accepts REGION, SOURCE_TYPE, MEMBER
1316
+ # list_all_dimensions: {
1317
+ # "String" => {
1318
+ # "String" => ["String"],
1319
+ # },
1320
+ # },
1321
+ # list_single_dimension: ["SafeString"],
1322
+ # list_two_dimensions: {
1323
+ # "String" => ["String"],
1324
+ # },
1325
+ # max_results: 1,
1326
+ # next_token: "SafeString",
1327
+ # }
1328
+ #
1329
+ # @!attribute [rw] input_order
1330
+ # Lists the log sources in input order, namely Region, source type,
1331
+ # and member account.
1332
+ # @return [Array<String>]
1333
+ #
1334
+ # @!attribute [rw] list_all_dimensions
1335
+ # List the view of log sources for enabled Security Lake accounts in
1336
+ # all Regions and source types.
1337
+ # @return [Hash<String,Hash<String,Array<String>>>]
1338
+ #
1339
+ # @!attribute [rw] list_single_dimension
1340
+ # List the view of log sources for enabled Security Lake accounts for
1341
+ # the entire region.
1342
+ # @return [Array<String>]
1343
+ #
1344
+ # @!attribute [rw] list_two_dimensions
1345
+ # Lists the log sources for the specified source types in enabled
1346
+ # Security Lake accounts for the entire Region, for selected member
1347
+ # accounts.
1348
+ # @return [Hash<String,Array<String>>]
1349
+ #
1350
+ # @!attribute [rw] max_results
1351
+ # The maximum number of accounts for which the configuration is
1352
+ # displayed.
1353
+ # @return [Integer]
1354
+ #
1355
+ # @!attribute [rw] next_token
1356
+ # If nextToken is returned, there are more results available. You can
1357
+ # make the call again using the returned token to retrieve the next
1358
+ # page.
1359
+ # @return [String]
1360
+ #
1361
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListLogSourcesRequest AWS API Documentation
1362
+ #
1363
+ class ListLogSourcesRequest < Struct.new(
1364
+ :input_order,
1365
+ :list_all_dimensions,
1366
+ :list_single_dimension,
1367
+ :list_two_dimensions,
1368
+ :max_results,
1369
+ :next_token)
1370
+ SENSITIVE = []
1371
+ include Aws::Structure
1372
+ end
1373
+
1374
+ # @!attribute [rw] next_token
1375
+ # If nextToken is returned, there are more results available. You can
1376
+ # make the call again using the returned token to retrieve the next
1377
+ # page.
1378
+ # @return [String]
1379
+ #
1380
+ # @!attribute [rw] region_source_types_accounts_list
1381
+ # Lists the log sources in the Regions for enabled Security Lake
1382
+ # accounts.
1383
+ # @return [Array<Hash<String,Hash<String,Array<String>>>>]
1384
+ #
1385
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListLogSourcesResponse AWS API Documentation
1386
+ #
1387
+ class ListLogSourcesResponse < Struct.new(
1388
+ :next_token,
1389
+ :region_source_types_accounts_list)
1390
+ SENSITIVE = []
1391
+ include Aws::Structure
1392
+ end
1393
+
1394
+ # @note When making an API call, you may pass ListSubscribersRequest
1395
+ # data as a hash:
1396
+ #
1397
+ # {
1398
+ # max_results: 1,
1399
+ # next_token: "SafeString",
1400
+ # }
1401
+ #
1402
+ # @!attribute [rw] max_results
1403
+ # The maximum number of accounts for which the configuration is
1404
+ # displayed.
1405
+ # @return [Integer]
1406
+ #
1407
+ # @!attribute [rw] next_token
1408
+ # If nextToken is returned, there are more results available. You can
1409
+ # make the call again using the returned token to retrieve the next
1410
+ # page.
1411
+ # @return [String]
1412
+ #
1413
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListSubscribersRequest AWS API Documentation
1414
+ #
1415
+ class ListSubscribersRequest < Struct.new(
1416
+ :max_results,
1417
+ :next_token)
1418
+ SENSITIVE = []
1419
+ include Aws::Structure
1420
+ end
1421
+
1422
+ # @!attribute [rw] next_token
1423
+ # If nextToken is returned, there are more results available. You can
1424
+ # make the call again using the returned token to retrieve the next
1425
+ # page.
1426
+ # @return [String]
1427
+ #
1428
+ # @!attribute [rw] subscribers
1429
+ # The subscribers available in the specified Security Lake account ID.
1430
+ # @return [Array<Types::SubscriberResource>]
1431
+ #
1432
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListSubscribersResponse AWS API Documentation
1433
+ #
1434
+ class ListSubscribersResponse < Struct.new(
1435
+ :next_token,
1436
+ :subscribers)
1437
+ SENSITIVE = []
1438
+ include Aws::Structure
1439
+ end
1440
+
1441
+ # Log status for the Security Lake account.
1442
+ #
1443
+ # @!attribute [rw] health_status
1444
+ # Health status of services including error codes and patterns.
1445
+ # @return [String]
1446
+ #
1447
+ # @!attribute [rw] path_to_logs
1448
+ # Defines path the stored logs are available which has information on
1449
+ # your systems, applications, and services.
1450
+ # @return [String]
1451
+ #
1452
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/LogsStatus AWS API Documentation
1453
+ #
1454
+ class LogsStatus < Struct.new(
1455
+ :health_status,
1456
+ :path_to_logs)
1457
+ SENSITIVE = []
1458
+ include Aws::Structure
1459
+ end
1460
+
1461
+ # Notifications in Security Lake which dictates how notifications are
1462
+ # posted at the endpoint.
1463
+ #
1464
+ # @!attribute [rw] endpoint
1465
+ # The account which is subscribed to receive exception notifications.
1466
+ # @return [String]
1467
+ #
1468
+ # @!attribute [rw] protocol
1469
+ # The protocol to which notification messages are posted.
1470
+ # @return [String]
1471
+ #
1472
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ProtocolAndNotificationEndpoint AWS API Documentation
1473
+ #
1474
+ class ProtocolAndNotificationEndpoint < Struct.new(
1475
+ :endpoint,
1476
+ :protocol)
1477
+ SENSITIVE = []
1478
+ include Aws::Structure
1479
+ end
1480
+
1481
+ # The resource could not be found.
1482
+ #
1483
+ # @!attribute [rw] message
1484
+ # @return [String]
1485
+ #
1486
+ # @!attribute [rw] resource_id
1487
+ # The ID of the resource for which the type of resource could not be
1488
+ # found.
1489
+ # @return [String]
1490
+ #
1491
+ # @!attribute [rw] resource_type
1492
+ # The type of the resource that could not be found.
1493
+ # @return [String]
1494
+ #
1495
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ResourceNotFoundException AWS API Documentation
1496
+ #
1497
+ class ResourceNotFoundException < Struct.new(
1498
+ :message,
1499
+ :resource_id,
1500
+ :resource_type)
1501
+ SENSITIVE = []
1502
+ include Aws::Structure
1503
+ end
1504
+
1505
+ # Retention settings for the destination Amazon S3 buckets in Security
1506
+ # Lake.
1507
+ #
1508
+ # @note When making an API call, you may pass RetentionSetting
1509
+ # data as a hash:
1510
+ #
1511
+ # {
1512
+ # retention_period: 1,
1513
+ # storage_class: "STANDARD_IA", # accepts STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER_IR, GLACIER, DEEP_ARCHIVE, EXPIRE
1514
+ # }
1515
+ #
1516
+ # @!attribute [rw] retention_period
1517
+ # The retention period specifies a fixed period of time during which
1518
+ # the Security Lake object remains locked. You can specify the
1519
+ # retention period for one or more source in days.
1520
+ # @return [Integer]
1521
+ #
1522
+ # @!attribute [rw] storage_class
1523
+ # The range of storage classes that you can choose from based on the
1524
+ # data access, resiliency, and cost requirements of your workloads.
1525
+ # @return [String]
1526
+ #
1527
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/RetentionSetting AWS API Documentation
1528
+ #
1529
+ class RetentionSetting < Struct.new(
1530
+ :retention_period,
1531
+ :storage_class)
1532
+ SENSITIVE = []
1533
+ include Aws::Structure
1534
+ end
1535
+
1536
+ # Provides an extension of the AmazonServiceException for errors
1537
+ # reported by Amazon S3 while processing a request. In particular, this
1538
+ # class provides access to Amazon S3's extended request ID. This ID is
1539
+ # required debugging information in the case the user needs to contact
1540
+ # Amazon about an issue where Amazon S3 is incorrectly handling a
1541
+ # request.
1542
+ #
1543
+ # @!attribute [rw] message
1544
+ # @return [String]
1545
+ #
1546
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/S3Exception AWS API Documentation
1547
+ #
1548
+ class S3Exception < Struct.new(
1549
+ :message)
1550
+ SENSITIVE = []
1551
+ include Aws::Structure
1552
+ end
1553
+
1554
+ # You have exceeded your service quota. To perform the requested action,
1555
+ # remove some of the relevant resources, or use Service Quotas to
1556
+ # request a service quota increase.
1557
+ #
1558
+ # @!attribute [rw] message
1559
+ # @return [String]
1560
+ #
1561
+ # @!attribute [rw] quota_code
1562
+ # That the rate of requests to Security Lake is exceeding the request
1563
+ # quotas for your Amazon Web Services account.
1564
+ # @return [String]
1565
+ #
1566
+ # @!attribute [rw] resource_id
1567
+ # The ID of the resource that exceeds the service quota.
1568
+ # @return [String]
1569
+ #
1570
+ # @!attribute [rw] resource_type
1571
+ # The type of the resource that exceeds the service quota.
1572
+ # @return [String]
1573
+ #
1574
+ # @!attribute [rw] service_code
1575
+ # The code for the service in Service Quotas.
1576
+ # @return [String]
1577
+ #
1578
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ServiceQuotaExceededException AWS API Documentation
1579
+ #
1580
+ class ServiceQuotaExceededException < Struct.new(
1581
+ :message,
1582
+ :quota_code,
1583
+ :resource_id,
1584
+ :resource_type,
1585
+ :service_code)
1586
+ SENSITIVE = []
1587
+ include Aws::Structure
1588
+ end
1589
+
1590
+ # The supported source types from which logs and events are collected in
1591
+ # Amazon Security Lake.
1592
+ #
1593
+ # @note SourceType is a union - when making an API calls you must set exactly one of the members.
1594
+ #
1595
+ # @note SourceType is a union - when returned from an API call exactly one value will be set and the returned type will be a subclass of SourceType corresponding to the set member.
1596
+ #
1597
+ # @!attribute [rw] aws_source_type
1598
+ # Amazon Security Lake supports logs and events collection for
1599
+ # natively-supported Amazon Web Services services. For more
1600
+ # information, see the Amazon Security Lake User Guide.
1601
+ # @return [String]
1602
+ #
1603
+ # @!attribute [rw] custom_source_type
1604
+ # Amazon Security Lake supports custom source types. For the detailed
1605
+ # list, see the Amazon Security Lake User Guide.
1606
+ # @return [String]
1607
+ #
1608
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/SourceType AWS API Documentation
1609
+ #
1610
+ class SourceType < Struct.new(
1611
+ :aws_source_type,
1612
+ :custom_source_type,
1613
+ :unknown)
1614
+ SENSITIVE = []
1615
+ include Aws::Structure
1616
+ include Aws::Structure::Union
1617
+
1618
+ class AwsSourceType < SourceType; end
1619
+ class CustomSourceType < SourceType; end
1620
+ class Unknown < SourceType; end
1621
+ end
1622
+
1623
+ # Provides details of the Amazon Security Lake account subscription.
1624
+ # Subscribers are notified of new objects for a source as the data is
1625
+ # written to your Amazon Security Lake S3 bucket.
1626
+ #
1627
+ # @!attribute [rw] access_types
1628
+ # You can choose to notify subscribers of new objects with an Amazon
1629
+ # Simple Queue Service (Amazon SQS) queue or through messaging to an
1630
+ # HTTPS endpoint provided by the subscriber.
1631
+ #
1632
+ # Subscribers can consume data by directly querying Lake Formation
1633
+ # tables in your S3 bucket via services like Amazon Athena. This
1634
+ # subscription type is defined as `LAKEFORMATION`.
1635
+ # @return [Array<String>]
1636
+ #
1637
+ # @!attribute [rw] account_id
1638
+ # The Amazon Web Services account ID of the account that you are using
1639
+ # to create your Amazon Security Lake account.
1640
+ # @return [String]
1641
+ #
1642
+ # @!attribute [rw] created_at
1643
+ # The date and time when the subscription was created.
1644
+ # @return [Time]
1645
+ #
1646
+ # @!attribute [rw] external_id
1647
+ # The external ID of the subscriber. External ID allows the user that
1648
+ # is assuming the role to assert the circumstances in which they are
1649
+ # operating. It also provides a way for the account owner to permit
1650
+ # the role to be assumed only under specific circumstances.
1651
+ # @return [String]
1652
+ #
1653
+ # @!attribute [rw] role_arn
1654
+ # The Amazon Resource Name (ARN) specifying the role of the
1655
+ # subscriber.
1656
+ # @return [String]
1657
+ #
1658
+ # @!attribute [rw] s3_bucket_arn
1659
+ # The Amazon Resource Name (ARN) for the Amazon S3 bucket.
1660
+ # @return [String]
1661
+ #
1662
+ # @!attribute [rw] sns_arn
1663
+ # The Amazon Resource Name (ARN) for the Amazon Simple Notification
1664
+ # Service.
1665
+ # @return [String]
1666
+ #
1667
+ # @!attribute [rw] source_types
1668
+ # Amazon Security Lake supports logs and events collection for the
1669
+ # natively-supported Amazon Web Services services. For more
1670
+ # information, see the Amazon Security Lake User Guide.
1671
+ # @return [Array<Types::SourceType>]
1672
+ #
1673
+ # @!attribute [rw] subscriber_description
1674
+ # The subscriber descriptions for a subscriber account. The
1675
+ # description for a subscriber includes `subscriberName`, `accountID`,
1676
+ # `externalID`, and `subscriptionId`.
1677
+ # @return [String]
1678
+ #
1679
+ # @!attribute [rw] subscriber_name
1680
+ # The name of your Amazon Security Lake subscriber account.
1681
+ # @return [String]
1682
+ #
1683
+ # @!attribute [rw] subscription_endpoint
1684
+ # The subscription endpoint to which exception messages are posted.
1685
+ # @return [String]
1686
+ #
1687
+ # @!attribute [rw] subscription_id
1688
+ # The subscription ID of the Amazon Security Lake subscriber account.
1689
+ # @return [String]
1690
+ #
1691
+ # @!attribute [rw] subscription_protocol
1692
+ # The subscription protocol to which exception messages are posted.
1693
+ # @return [String]
1694
+ #
1695
+ # @!attribute [rw] subscription_status
1696
+ # Subscription status of the Amazon Security Lake subscriber account.
1697
+ # @return [String]
1698
+ #
1699
+ # @!attribute [rw] updated_at
1700
+ # The date and time when the subscription was created.
1701
+ # @return [Time]
1702
+ #
1703
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/SubscriberResource AWS API Documentation
1704
+ #
1705
+ class SubscriberResource < Struct.new(
1706
+ :access_types,
1707
+ :account_id,
1708
+ :created_at,
1709
+ :external_id,
1710
+ :role_arn,
1711
+ :s3_bucket_arn,
1712
+ :sns_arn,
1713
+ :source_types,
1714
+ :subscriber_description,
1715
+ :subscriber_name,
1716
+ :subscription_endpoint,
1717
+ :subscription_id,
1718
+ :subscription_protocol,
1719
+ :subscription_status,
1720
+ :updated_at)
1721
+ SENSITIVE = []
1722
+ include Aws::Structure
1723
+ end
1724
+
1725
+ # The limit on the number of requests per second was exceeded.
1726
+ #
1727
+ # @!attribute [rw] message
1728
+ # @return [String]
1729
+ #
1730
+ # @!attribute [rw] quota_code
1731
+ # That the rate of requests to Security Lake is exceeding the request
1732
+ # quotas for your Amazon Web Services account.
1733
+ # @return [String]
1734
+ #
1735
+ # @!attribute [rw] retry_after_seconds
1736
+ # Retry the request after the specified time.
1737
+ # @return [Integer]
1738
+ #
1739
+ # @!attribute [rw] service_code
1740
+ # The code for the service in Service Quotas.
1741
+ # @return [String]
1742
+ #
1743
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ThrottlingException AWS API Documentation
1744
+ #
1745
+ class ThrottlingException < Struct.new(
1746
+ :message,
1747
+ :quota_code,
1748
+ :retry_after_seconds,
1749
+ :service_code)
1750
+ SENSITIVE = []
1751
+ include Aws::Structure
1752
+ end
1753
+
1754
+ # @note When making an API call, you may pass UpdateDatalakeExceptionsExpiryRequest
1755
+ # data as a hash:
1756
+ #
1757
+ # {
1758
+ # exception_message_expiry: 1, # required
1759
+ # }
1760
+ #
1761
+ # @!attribute [rw] exception_message_expiry
1762
+ # The time-to-live (TTL) for the exception message to remain.
1763
+ # @return [Integer]
1764
+ #
1765
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateDatalakeExceptionsExpiryRequest AWS API Documentation
1766
+ #
1767
+ class UpdateDatalakeExceptionsExpiryRequest < Struct.new(
1768
+ :exception_message_expiry)
1769
+ SENSITIVE = []
1770
+ include Aws::Structure
1771
+ end
1772
+
1773
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateDatalakeExceptionsExpiryResponse AWS API Documentation
1774
+ #
1775
+ class UpdateDatalakeExceptionsExpiryResponse < Aws::EmptyStructure; end
1776
+
1777
+ # @note When making an API call, you may pass UpdateDatalakeExceptionsSubscriptionRequest
1778
+ # data as a hash:
1779
+ #
1780
+ # {
1781
+ # notification_endpoint: "SafeString", # required
1782
+ # subscription_protocol: "HTTP", # required, accepts HTTP, HTTPS, EMAIL, EMAIL_JSON, SMS, SQS, LAMBDA, APP, FIREHOSE
1783
+ # }
1784
+ #
1785
+ # @!attribute [rw] notification_endpoint
1786
+ # The account which is subscribed to receive exception notifications.
1787
+ # @return [String]
1788
+ #
1789
+ # @!attribute [rw] subscription_protocol
1790
+ # The subscription protocol to which exception messages are posted.
1791
+ # @return [String]
1792
+ #
1793
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateDatalakeExceptionsSubscriptionRequest AWS API Documentation
1794
+ #
1795
+ class UpdateDatalakeExceptionsSubscriptionRequest < Struct.new(
1796
+ :notification_endpoint,
1797
+ :subscription_protocol)
1798
+ SENSITIVE = []
1799
+ include Aws::Structure
1800
+ end
1801
+
1802
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateDatalakeExceptionsSubscriptionResponse AWS API Documentation
1803
+ #
1804
+ class UpdateDatalakeExceptionsSubscriptionResponse < Aws::EmptyStructure; end
1805
+
1806
+ # @note When making an API call, you may pass UpdateDatalakeRequest
1807
+ # data as a hash:
1808
+ #
1809
+ # {
1810
+ # configurations: { # required
1811
+ # "us-east-1" => {
1812
+ # encryption_key: "String",
1813
+ # replication_destination_regions: ["us-east-1"], # accepts us-east-1, us-west-2, eu-central-1, us-east-2, eu-west-1, ap-northeast-1, ap-southeast-2
1814
+ # replication_role_arn: "RoleArn",
1815
+ # retention_settings: [
1816
+ # {
1817
+ # retention_period: 1,
1818
+ # storage_class: "STANDARD_IA", # accepts STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER_IR, GLACIER, DEEP_ARCHIVE, EXPIRE
1819
+ # },
1820
+ # ],
1821
+ # tags_map: {
1822
+ # "String" => "String",
1823
+ # },
1824
+ # },
1825
+ # },
1826
+ # }
1827
+ #
1828
+ # @!attribute [rw] configurations
1829
+ # The configuration object
1830
+ # @return [Hash<String,Types::LakeConfigurationRequest>]
1831
+ #
1832
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateDatalakeRequest AWS API Documentation
1833
+ #
1834
+ class UpdateDatalakeRequest < Struct.new(
1835
+ :configurations)
1836
+ SENSITIVE = []
1837
+ include Aws::Structure
1838
+ end
1839
+
1840
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateDatalakeResponse AWS API Documentation
1841
+ #
1842
+ class UpdateDatalakeResponse < Aws::EmptyStructure; end
1843
+
1844
+ # @note When making an API call, you may pass UpdateSubscriberRequest
1845
+ # data as a hash:
1846
+ #
1847
+ # {
1848
+ # external_id: "SafeString",
1849
+ # id: "String", # required
1850
+ # source_types: [
1851
+ # {
1852
+ # aws_source_type: "ROUTE53", # accepts ROUTE53, VPC_FLOW, CLOUD_TRAIL, SH_FINDINGS
1853
+ # custom_source_type: "CustomSourceType",
1854
+ # },
1855
+ # ],
1856
+ # subscriber_description: "SafeString",
1857
+ # subscriber_name: "UpdateSubscriberRequestSubscriberNameString",
1858
+ # }
1859
+ #
1860
+ # @!attribute [rw] external_id
1861
+ # External ID of the Security Lake account.
1862
+ # @return [String]
1863
+ #
1864
+ # @!attribute [rw] id
1865
+ # A value created by Security Lake that uniquely identifies your
1866
+ # `UpdateSubscriber` API request.
1867
+ # @return [String]
1868
+ #
1869
+ # @!attribute [rw] source_types
1870
+ # The supported Amazon Web Services services from which logs and
1871
+ # events are collected. Amazon Security Lake supports logs and events
1872
+ # collection for the following natively-supported Amazon Web Services
1873
+ # services. For more information, see the Amazon Security Lake User
1874
+ # Guide.
1875
+ # @return [Array<Types::SourceType>]
1876
+ #
1877
+ # @!attribute [rw] subscriber_description
1878
+ # Description of the Security Lake account subscriber.
1879
+ # @return [String]
1880
+ #
1881
+ # @!attribute [rw] subscriber_name
1882
+ # Name of the Security Lake account subscriber.
1883
+ # @return [String]
1884
+ #
1885
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateSubscriberRequest AWS API Documentation
1886
+ #
1887
+ class UpdateSubscriberRequest < Struct.new(
1888
+ :external_id,
1889
+ :id,
1890
+ :source_types,
1891
+ :subscriber_description,
1892
+ :subscriber_name)
1893
+ SENSITIVE = []
1894
+ include Aws::Structure
1895
+ end
1896
+
1897
+ # @!attribute [rw] subscriber
1898
+ # The account subscriber in Amazon Security Lake.
1899
+ # @return [Types::SubscriberResource]
1900
+ #
1901
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateSubscriberResponse AWS API Documentation
1902
+ #
1903
+ class UpdateSubscriberResponse < Struct.new(
1904
+ :subscriber)
1905
+ SENSITIVE = []
1906
+ include Aws::Structure
1907
+ end
1908
+
1909
+ # @note When making an API call, you may pass UpdateSubscriptionNotificationConfigurationRequest
1910
+ # data as a hash:
1911
+ #
1912
+ # {
1913
+ # create_sqs: false,
1914
+ # https_api_key_name: "String",
1915
+ # https_api_key_value: "String",
1916
+ # https_method: "POST", # accepts POST, PUT
1917
+ # role_arn: "RoleArn",
1918
+ # subscription_endpoint: "UpdateSubscriptionNotificationConfigurationRequestSubscriptionEndpointString",
1919
+ # subscription_id: "UUID", # required
1920
+ # }
1921
+ #
1922
+ # @!attribute [rw] create_sqs
1923
+ # Create a new subscription notification for the specified
1924
+ # subscription ID in Security Lake.
1925
+ # @return [Boolean]
1926
+ #
1927
+ # @!attribute [rw] https_api_key_name
1928
+ # The key name for the subscription notification.
1929
+ # @return [String]
1930
+ #
1931
+ # @!attribute [rw] https_api_key_value
1932
+ # The key value for the subscription notification.
1933
+ # @return [String]
1934
+ #
1935
+ # @!attribute [rw] https_method
1936
+ # The HTTPS method used for the subscription notification.
1937
+ # @return [String]
1938
+ #
1939
+ # @!attribute [rw] role_arn
1940
+ # The Amazon Resource Name (ARN) specifying the role of the
1941
+ # subscriber.
1942
+ # @return [String]
1943
+ #
1944
+ # @!attribute [rw] subscription_endpoint
1945
+ # The subscription endpoint in Security Lake.
1946
+ # @return [String]
1947
+ #
1948
+ # @!attribute [rw] subscription_id
1949
+ # The subscription ID for which the subscription notification is
1950
+ # specified.
1951
+ # @return [String]
1952
+ #
1953
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateSubscriptionNotificationConfigurationRequest AWS API Documentation
1954
+ #
1955
+ class UpdateSubscriptionNotificationConfigurationRequest < Struct.new(
1956
+ :create_sqs,
1957
+ :https_api_key_name,
1958
+ :https_api_key_value,
1959
+ :https_method,
1960
+ :role_arn,
1961
+ :subscription_endpoint,
1962
+ :subscription_id)
1963
+ SENSITIVE = []
1964
+ include Aws::Structure
1965
+ end
1966
+
1967
+ # @!attribute [rw] queue_arn
1968
+ # Returns the Amazon resource name (ARN) of the queue.
1969
+ # @return [String]
1970
+ #
1971
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateSubscriptionNotificationConfigurationResponse AWS API Documentation
1972
+ #
1973
+ class UpdateSubscriptionNotificationConfigurationResponse < Struct.new(
1974
+ :queue_arn)
1975
+ SENSITIVE = []
1976
+ include Aws::Structure
1977
+ end
1978
+
1979
+ # Your signing certificate could not be validated.
1980
+ #
1981
+ # @!attribute [rw] field_list
1982
+ # The list of parameters that failed to validate.
1983
+ # @return [Array<Types::ValidationExceptionField>]
1984
+ #
1985
+ # @!attribute [rw] message
1986
+ # @return [String]
1987
+ #
1988
+ # @!attribute [rw] reason
1989
+ # The reason for the validation exception.
1990
+ # @return [String]
1991
+ #
1992
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ValidationException AWS API Documentation
1993
+ #
1994
+ class ValidationException < Struct.new(
1995
+ :field_list,
1996
+ :message,
1997
+ :reason)
1998
+ SENSITIVE = []
1999
+ include Aws::Structure
2000
+ end
2001
+
2002
+ # The input fails to meet the constraints specified in Amazon Security
2003
+ # Lake
2004
+ #
2005
+ # @!attribute [rw] message
2006
+ # Describes the error encountered.
2007
+ # @return [String]
2008
+ #
2009
+ # @!attribute [rw] name
2010
+ # Name of the validation exception.
2011
+ # @return [String]
2012
+ #
2013
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ValidationExceptionField AWS API Documentation
2014
+ #
2015
+ class ValidationExceptionField < Struct.new(
2016
+ :message,
2017
+ :name)
2018
+ SENSITIVE = []
2019
+ include Aws::Structure
2020
+ end
2021
+
2022
+ end
2023
+ end