aws-sdk-securitylake 1.15.0 → 1.17.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: cd995ef1173ee9ccc86b5ce24d46ee90e0001e32c4f10952d3dbd69ad9c58a1e
4
- data.tar.gz: a6526f4f14c024f162c0852a98ada3e9ce61b11401612e5bfd03fcd6bafceefb
3
+ metadata.gz: 5577a231fca4cf5a58d08ac24d16d805d4391792e093ee9e1c0e62e1b3f20ef9
4
+ data.tar.gz: 506c2d5b70c8aa6898f0b61e8f26dca7ae1fa6b1beefcafc8e861fa8ab24223a
5
5
  SHA512:
6
- metadata.gz: 551aba3600a96c48c37609a6269186267df8f7f4d344cf20721af520e233fecec6b0d3c24f6041304c352e7fe0c86faa440202037d78ec4722afa3ffb76f6212
7
- data.tar.gz: a8b454497624dd412470f977ee4fbc0cf258f6c80d64bfe9a961a47f0350d92a8ddb578675d171a7e21aa1d0d729aaf9dd73725a4be6cd37a059ca427009abfb
6
+ metadata.gz: f38f2f0c37a813f643fb4c1848ec612a387d52d8b3234fe8e654c70ed3e9c4355d90480b397bdd92b3999b0cb67c7084bda81689a5ae29f375803b486ba3d58c
7
+ data.tar.gz: ca2a53ed1391a22e9222930f9ddcb03d11bdedc421cdaf9e6f4b5cac979d88830b7948aafbc8692f2e27c8404f59ac906336e17b4608b71a32750c0576148703
data/CHANGELOG.md CHANGED
@@ -1,6 +1,16 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.17.0 (2024-02-29)
5
+ ------------------
6
+
7
+ * Feature - Add capability to update the Data Lake's MetaStoreManager Role in order to perform required data lake updates to use Iceberg table format in their data lake or update the role for any other reason.
8
+
9
+ 1.16.0 (2024-02-13)
10
+ ------------------
11
+
12
+ * Feature - Documentation updates for Security Lake
13
+
4
14
  1.15.0 (2024-01-26)
5
15
  ------------------
6
16
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.15.0
1
+ 1.17.0
@@ -415,7 +415,7 @@ module Aws::SecurityLake
415
415
  # {
416
416
  # accounts: ["AwsAccountId"],
417
417
  # regions: ["Region"], # required
418
- # source_name: "ROUTE53", # required, accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA
418
+ # source_name: "ROUTE53", # required, accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA, EKS_AUDIT, WAF
419
419
  # source_version: "AwsLogSourceVersion",
420
420
  # },
421
421
  # ],
@@ -445,7 +445,7 @@ module Aws::SecurityLake
445
445
  # source. In addition, this operation also creates an associated Glue
446
446
  # table and an Glue crawler.
447
447
  #
448
- # @option params [Types::CustomLogSourceConfiguration] :configuration
448
+ # @option params [required, Types::CustomLogSourceConfiguration] :configuration
449
449
  # The configuration for the third-party custom source.
450
450
  #
451
451
  # @option params [Array<String>] :event_classes
@@ -526,7 +526,7 @@ module Aws::SecurityLake
526
526
  # @example Request syntax with placeholder values
527
527
  #
528
528
  # resp = client.create_custom_log_source({
529
- # configuration: {
529
+ # configuration: { # required
530
530
  # crawler_configuration: { # required
531
531
  # role_arn: "RoleArn", # required
532
532
  # },
@@ -700,7 +700,7 @@ module Aws::SecurityLake
700
700
  # your organization. Security Lake is not automatically enabled for any
701
701
  # existing member accounts in your organization.
702
702
  #
703
- # @option params [required, Array<Types::DataLakeAutoEnableNewAccountConfiguration>] :auto_enable_new_account
703
+ # @option params [Array<Types::DataLakeAutoEnableNewAccountConfiguration>] :auto_enable_new_account
704
704
  # Enable Security Lake with the specified configuration settings, to
705
705
  # begin collecting security data for new accounts in your organization.
706
706
  #
@@ -709,12 +709,12 @@ module Aws::SecurityLake
709
709
  # @example Request syntax with placeholder values
710
710
  #
711
711
  # resp = client.create_data_lake_organization_configuration({
712
- # auto_enable_new_account: [ # required
712
+ # auto_enable_new_account: [
713
713
  # {
714
714
  # region: "Region", # required
715
715
  # sources: [ # required
716
716
  # {
717
- # source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA
717
+ # source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA, EKS_AUDIT, WAF
718
718
  # source_version: "AwsLogSourceVersion",
719
719
  # },
720
720
  # ],
@@ -768,7 +768,7 @@ module Aws::SecurityLake
768
768
  # sources: [ # required
769
769
  # {
770
770
  # aws_log_source: {
771
- # source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA
771
+ # source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA, EKS_AUDIT, WAF
772
772
  # source_version: "AwsLogSourceVersion",
773
773
  # },
774
774
  # custom_log_source: {
@@ -810,7 +810,7 @@ module Aws::SecurityLake
810
810
  # resp.subscriber.role_arn #=> String
811
811
  # resp.subscriber.s3_bucket_arn #=> String
812
812
  # resp.subscriber.sources #=> Array
813
- # resp.subscriber.sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA"
813
+ # resp.subscriber.sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA", "EKS_AUDIT", "WAF"
814
814
  # resp.subscriber.sources[0].aws_log_source.source_version #=> String
815
815
  # resp.subscriber.sources[0].custom_log_source.attributes.crawler_arn #=> String
816
816
  # resp.subscriber.sources[0].custom_log_source.attributes.database_arn #=> String
@@ -910,7 +910,7 @@ module Aws::SecurityLake
910
910
  # {
911
911
  # accounts: ["AwsAccountId"],
912
912
  # regions: ["Region"], # required
913
- # source_name: "ROUTE53", # required, accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA
913
+ # source_name: "ROUTE53", # required, accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA, EKS_AUDIT, WAF
914
914
  # source_version: "AwsLogSourceVersion",
915
915
  # },
916
916
  # ],
@@ -1016,7 +1016,7 @@ module Aws::SecurityLake
1016
1016
  # this operation, new member accounts won't automatically contribute
1017
1017
  # data to the data lake.
1018
1018
  #
1019
- # @option params [required, Array<Types::DataLakeAutoEnableNewAccountConfiguration>] :auto_enable_new_account
1019
+ # @option params [Array<Types::DataLakeAutoEnableNewAccountConfiguration>] :auto_enable_new_account
1020
1020
  # Turns off automatic enablement of Security Lake for member accounts
1021
1021
  # that are added to an organization.
1022
1022
  #
@@ -1025,12 +1025,12 @@ module Aws::SecurityLake
1025
1025
  # @example Request syntax with placeholder values
1026
1026
  #
1027
1027
  # resp = client.delete_data_lake_organization_configuration({
1028
- # auto_enable_new_account: [ # required
1028
+ # auto_enable_new_account: [
1029
1029
  # {
1030
1030
  # region: "Region", # required
1031
1031
  # sources: [ # required
1032
1032
  # {
1033
- # source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA
1033
+ # source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA, EKS_AUDIT, WAF
1034
1034
  # source_version: "AwsLogSourceVersion",
1035
1035
  # },
1036
1036
  # ],
@@ -1152,7 +1152,7 @@ module Aws::SecurityLake
1152
1152
  # resp.auto_enable_new_account #=> Array
1153
1153
  # resp.auto_enable_new_account[0].region #=> String
1154
1154
  # resp.auto_enable_new_account[0].sources #=> Array
1155
- # resp.auto_enable_new_account[0].sources[0].source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA"
1155
+ # resp.auto_enable_new_account[0].sources[0].source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA", "EKS_AUDIT", "WAF"
1156
1156
  # resp.auto_enable_new_account[0].sources[0].source_version #=> String
1157
1157
  #
1158
1158
  # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDataLakeOrganizationConfiguration AWS API Documentation
@@ -1252,7 +1252,7 @@ module Aws::SecurityLake
1252
1252
  # resp.subscriber.role_arn #=> String
1253
1253
  # resp.subscriber.s3_bucket_arn #=> String
1254
1254
  # resp.subscriber.sources #=> Array
1255
- # resp.subscriber.sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA"
1255
+ # resp.subscriber.sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA", "EKS_AUDIT", "WAF"
1256
1256
  # resp.subscriber.sources[0].aws_log_source.source_version #=> String
1257
1257
  # resp.subscriber.sources[0].custom_log_source.attributes.crawler_arn #=> String
1258
1258
  # resp.subscriber.sources[0].custom_log_source.attributes.database_arn #=> String
@@ -1296,8 +1296,7 @@ module Aws::SecurityLake
1296
1296
  # pagination token will return an HTTP 400 InvalidToken error.
1297
1297
  #
1298
1298
  # @option params [Array<String>] :regions
1299
- # List the Amazon Web Services Regions from which exceptions are
1300
- # retrieved.
1299
+ # The Amazon Web Services Regions from which exceptions are retrieved.
1301
1300
  #
1302
1301
  # @return [Types::ListDataLakeExceptionsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1303
1302
  #
@@ -1337,7 +1336,7 @@ module Aws::SecurityLake
1337
1336
  # determine whether Security Lake is enabled for a Region.
1338
1337
  #
1339
1338
  # @option params [Array<String>] :regions
1340
- # The list of regions where Security Lake is enabled.
1339
+ # The list of Regions where Security Lake is enabled.
1341
1340
  #
1342
1341
  # @return [Types::ListDataLakesResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1343
1342
  #
@@ -1393,7 +1392,7 @@ module Aws::SecurityLake
1393
1392
  # repeat the call using the returned token to retrieve the next page.
1394
1393
  #
1395
1394
  # @option params [Array<String>] :regions
1396
- # The list of regions for which log sources are displayed.
1395
+ # The list of Regions for which log sources are displayed.
1397
1396
  #
1398
1397
  # @option params [Array<Types::LogSourceResource>] :sources
1399
1398
  # The list of sources for which log sources are displayed.
@@ -1415,7 +1414,7 @@ module Aws::SecurityLake
1415
1414
  # sources: [
1416
1415
  # {
1417
1416
  # aws_log_source: {
1418
- # source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA
1417
+ # source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA, EKS_AUDIT, WAF
1419
1418
  # source_version: "AwsLogSourceVersion",
1420
1419
  # },
1421
1420
  # custom_log_source: {
@@ -1442,7 +1441,7 @@ module Aws::SecurityLake
1442
1441
  # resp.sources[0].account #=> String
1443
1442
  # resp.sources[0].region #=> String
1444
1443
  # resp.sources[0].sources #=> Array
1445
- # resp.sources[0].sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA"
1444
+ # resp.sources[0].sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA", "EKS_AUDIT", "WAF"
1446
1445
  # resp.sources[0].sources[0].aws_log_source.source_version #=> String
1447
1446
  # resp.sources[0].sources[0].custom_log_source.attributes.crawler_arn #=> String
1448
1447
  # resp.sources[0].sources[0].custom_log_source.attributes.database_arn #=> String
@@ -1499,7 +1498,7 @@ module Aws::SecurityLake
1499
1498
  # resp.subscribers[0].role_arn #=> String
1500
1499
  # resp.subscribers[0].s3_bucket_arn #=> String
1501
1500
  # resp.subscribers[0].sources #=> Array
1502
- # resp.subscribers[0].sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA"
1501
+ # resp.subscribers[0].sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA", "EKS_AUDIT", "WAF"
1503
1502
  # resp.subscribers[0].sources[0].aws_log_source.source_version #=> String
1504
1503
  # resp.subscribers[0].sources[0].custom_log_source.attributes.crawler_arn #=> String
1505
1504
  # resp.subscribers[0].sources[0].custom_log_source.attributes.database_arn #=> String
@@ -1533,8 +1532,8 @@ module Aws::SecurityLake
1533
1532
  # Amazon Web Services Region.
1534
1533
  #
1535
1534
  # @option params [required, String] :resource_arn
1536
- # The Amazon Resource Name (ARN) of the Amazon Security Lake resource to
1537
- # retrieve the tags for.
1535
+ # The Amazon Resource Name (ARN) of the Amazon Security Lake resource
1536
+ # for which you want to retrieve the tags.
1538
1537
  #
1539
1538
  # @return [Types::ListTagsForResourceResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1540
1539
  #
@@ -1677,6 +1676,11 @@ module Aws::SecurityLake
1677
1676
  # Specify the Region or Regions that will contribute data to the rollup
1678
1677
  # region.
1679
1678
  #
1679
+ # @option params [String] :meta_store_manager_role_arn
1680
+ # The Amazon Resource Name (ARN) used to create and update the Glue
1681
+ # table. This table contains partitions generated by the ingestion and
1682
+ # normalization of Amazon Web Services log sources and custom sources.
1683
+ #
1680
1684
  # @return [Types::UpdateDataLakeResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1681
1685
  #
1682
1686
  # * {Types::UpdateDataLakeResponse#data_lakes #data_lakes} => Array&lt;Types::DataLakeResource&gt;
@@ -1707,6 +1711,7 @@ module Aws::SecurityLake
1707
1711
  # },
1708
1712
  # },
1709
1713
  # ],
1714
+ # meta_store_manager_role_arn: "RoleArn",
1710
1715
  # })
1711
1716
  #
1712
1717
  # @example Response structure
@@ -1805,7 +1810,7 @@ module Aws::SecurityLake
1805
1810
  # sources: [
1806
1811
  # {
1807
1812
  # aws_log_source: {
1808
- # source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA
1813
+ # source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA, EKS_AUDIT, WAF
1809
1814
  # source_version: "AwsLogSourceVersion",
1810
1815
  # },
1811
1816
  # custom_log_source: {
@@ -1842,7 +1847,7 @@ module Aws::SecurityLake
1842
1847
  # resp.subscriber.role_arn #=> String
1843
1848
  # resp.subscriber.s3_bucket_arn #=> String
1844
1849
  # resp.subscriber.sources #=> Array
1845
- # resp.subscriber.sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA"
1850
+ # resp.subscriber.sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA", "EKS_AUDIT", "WAF"
1846
1851
  # resp.subscriber.sources[0].aws_log_source.source_version #=> String
1847
1852
  # resp.subscriber.sources[0].custom_log_source.attributes.crawler_arn #=> String
1848
1853
  # resp.subscriber.sources[0].custom_log_source.attributes.database_arn #=> String
@@ -1928,7 +1933,7 @@ module Aws::SecurityLake
1928
1933
  params: params,
1929
1934
  config: config)
1930
1935
  context[:gem_name] = 'aws-sdk-securitylake'
1931
- context[:gem_version] = '1.15.0'
1936
+ context[:gem_version] = '1.17.0'
1932
1937
  Seahorse::Client::Request.new(handlers, context)
1933
1938
  end
1934
1939
 
@@ -208,7 +208,7 @@ module Aws::SecurityLake
208
208
  CreateAwsLogSourceResponse.add_member(:failed, Shapes::ShapeRef.new(shape: AccountList, location_name: "failed"))
209
209
  CreateAwsLogSourceResponse.struct_class = Types::CreateAwsLogSourceResponse
210
210
 
211
- CreateCustomLogSourceRequest.add_member(:configuration, Shapes::ShapeRef.new(shape: CustomLogSourceConfiguration, location_name: "configuration"))
211
+ CreateCustomLogSourceRequest.add_member(:configuration, Shapes::ShapeRef.new(shape: CustomLogSourceConfiguration, required: true, location_name: "configuration"))
212
212
  CreateCustomLogSourceRequest.add_member(:event_classes, Shapes::ShapeRef.new(shape: OcsfEventClassList, location_name: "eventClasses"))
213
213
  CreateCustomLogSourceRequest.add_member(:source_name, Shapes::ShapeRef.new(shape: CustomLogSourceName, required: true, location_name: "sourceName"))
214
214
  CreateCustomLogSourceRequest.add_member(:source_version, Shapes::ShapeRef.new(shape: CustomLogSourceVersion, location_name: "sourceVersion"))
@@ -224,7 +224,7 @@ module Aws::SecurityLake
224
224
 
225
225
  CreateDataLakeExceptionSubscriptionResponse.struct_class = Types::CreateDataLakeExceptionSubscriptionResponse
226
226
 
227
- CreateDataLakeOrganizationConfigurationRequest.add_member(:auto_enable_new_account, Shapes::ShapeRef.new(shape: DataLakeAutoEnableNewAccountConfigurationList, required: true, location_name: "autoEnableNewAccount"))
227
+ CreateDataLakeOrganizationConfigurationRequest.add_member(:auto_enable_new_account, Shapes::ShapeRef.new(shape: DataLakeAutoEnableNewAccountConfigurationList, location_name: "autoEnableNewAccount"))
228
228
  CreateDataLakeOrganizationConfigurationRequest.struct_class = Types::CreateDataLakeOrganizationConfigurationRequest
229
229
 
230
230
  CreateDataLakeOrganizationConfigurationResponse.struct_class = Types::CreateDataLakeOrganizationConfigurationResponse
@@ -370,7 +370,7 @@ module Aws::SecurityLake
370
370
 
371
371
  DeleteDataLakeExceptionSubscriptionResponse.struct_class = Types::DeleteDataLakeExceptionSubscriptionResponse
372
372
 
373
- DeleteDataLakeOrganizationConfigurationRequest.add_member(:auto_enable_new_account, Shapes::ShapeRef.new(shape: DataLakeAutoEnableNewAccountConfigurationList, required: true, location_name: "autoEnableNewAccount"))
373
+ DeleteDataLakeOrganizationConfigurationRequest.add_member(:auto_enable_new_account, Shapes::ShapeRef.new(shape: DataLakeAutoEnableNewAccountConfigurationList, location_name: "autoEnableNewAccount"))
374
374
  DeleteDataLakeOrganizationConfigurationRequest.struct_class = Types::DeleteDataLakeOrganizationConfigurationRequest
375
375
 
376
376
  DeleteDataLakeOrganizationConfigurationResponse.struct_class = Types::DeleteDataLakeOrganizationConfigurationResponse
@@ -566,6 +566,7 @@ module Aws::SecurityLake
566
566
  UpdateDataLakeExceptionSubscriptionResponse.struct_class = Types::UpdateDataLakeExceptionSubscriptionResponse
567
567
 
568
568
  UpdateDataLakeRequest.add_member(:configurations, Shapes::ShapeRef.new(shape: DataLakeConfigurationList, required: true, location_name: "configurations"))
569
+ UpdateDataLakeRequest.add_member(:meta_store_manager_role_arn, Shapes::ShapeRef.new(shape: RoleArn, location_name: "metaStoreManagerRoleArn"))
569
570
  UpdateDataLakeRequest.struct_class = Types::UpdateDataLakeRequest
570
571
 
571
572
  UpdateDataLakeResponse.add_member(:data_lakes, Shapes::ShapeRef.new(shape: DataLakeResourceList, location_name: "dataLakes"))
@@ -32,7 +32,7 @@ module Aws::SecurityLake
32
32
  raise ArgumentError, "FIPS and DualStack are enabled, but this partition does not support one or both"
33
33
  end
34
34
  if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
35
- if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"))
35
+ if Aws::Endpoints::Matchers.boolean_equals?(Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"), true)
36
36
  return Aws::Endpoints::Endpoint.new(url: "https://securitylake-fips.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
37
37
  end
38
38
  raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
@@ -725,19 +725,28 @@ module Aws::SecurityLake
725
725
  include Aws::Structure
726
726
  end
727
727
 
728
- # Provides replication details of Amazon Security Lake object.
728
+ # Provides replication details for objects stored in the Amazon Security
729
+ # Lake data lake.
729
730
  #
730
731
  # @!attribute [rw] regions
732
+ # Specifies one or more centralized rollup Regions. The Amazon Web
733
+ # Services Region specified in the `region` parameter of the [
734
+ # `CreateDataLake` ][1] or [ `UpdateDataLake` ][2] operations
735
+ # contributes data to the rollup Region or Regions specified in this
736
+ # parameter.
737
+ #
731
738
  # Replication enables automatic, asynchronous copying of objects
732
- # across Amazon S3 buckets. Amazon S3 buckets that are configured for
733
- # object replication can be owned by the same Amazon Web Services
734
- # account or by different accounts. You can replicate objects to a
735
- # single destination bucket or to multiple destination buckets. The
736
- # destination buckets can be in different Amazon Web Services Regions
737
- # or within the same Region as the source bucket.
738
- #
739
- # Set up one or more rollup Regions by providing the Region or Regions
740
- # that should contribute to the central rollup Region.
739
+ # across Amazon S3 buckets. S3 buckets that are configured for object
740
+ # replication can be owned by the same Amazon Web Services account or
741
+ # by different accounts. You can replicate objects to a single
742
+ # destination bucket or to multiple destination buckets. The
743
+ # destination buckets can be in different Regions or within the same
744
+ # Region as the source bucket.
745
+ #
746
+ #
747
+ #
748
+ # [1]: https://docs.aws.amazon.com/security-lake/latest/APIReference/API_CreateDataLake.html
749
+ # [2]: https://docs.aws.amazon.com/security-lake/latest/APIReference/API_UpdateDataLake.html
741
750
  # @return [Array<String>]
742
751
  #
743
752
  # @!attribute [rw] role_arn
@@ -1327,8 +1336,7 @@ module Aws::SecurityLake
1327
1336
  # @return [String]
1328
1337
  #
1329
1338
  # @!attribute [rw] regions
1330
- # List the Amazon Web Services Regions from which exceptions are
1331
- # retrieved.
1339
+ # The Amazon Web Services Regions from which exceptions are retrieved.
1332
1340
  # @return [Array<String>]
1333
1341
  #
1334
1342
  # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListDataLakeExceptionsRequest AWS API Documentation
@@ -1365,7 +1373,7 @@ module Aws::SecurityLake
1365
1373
  end
1366
1374
 
1367
1375
  # @!attribute [rw] regions
1368
- # The list of regions where Security Lake is enabled.
1376
+ # The list of Regions where Security Lake is enabled.
1369
1377
  # @return [Array<String>]
1370
1378
  #
1371
1379
  # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListDataLakesRequest AWS API Documentation
@@ -1404,7 +1412,7 @@ module Aws::SecurityLake
1404
1412
  # @return [String]
1405
1413
  #
1406
1414
  # @!attribute [rw] regions
1407
- # The list of regions for which log sources are displayed.
1415
+ # The list of Regions for which log sources are displayed.
1408
1416
  # @return [Array<String>]
1409
1417
  #
1410
1418
  # @!attribute [rw] sources
@@ -1482,7 +1490,7 @@ module Aws::SecurityLake
1482
1490
 
1483
1491
  # @!attribute [rw] resource_arn
1484
1492
  # The Amazon Resource Name (ARN) of the Amazon Security Lake resource
1485
- # to retrieve the tags for.
1493
+ # for which you want to retrieve the tags.
1486
1494
  # @return [String]
1487
1495
  #
1488
1496
  # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListTagsForResourceRequest AWS API Documentation
@@ -1913,10 +1921,17 @@ module Aws::SecurityLake
1913
1921
  # rollup region.
1914
1922
  # @return [Array<Types::DataLakeConfiguration>]
1915
1923
  #
1924
+ # @!attribute [rw] meta_store_manager_role_arn
1925
+ # The Amazon Resource Name (ARN) used to create and update the Glue
1926
+ # table. This table contains partitions generated by the ingestion and
1927
+ # normalization of Amazon Web Services log sources and custom sources.
1928
+ # @return [String]
1929
+ #
1916
1930
  # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateDataLakeRequest AWS API Documentation
1917
1931
  #
1918
1932
  class UpdateDataLakeRequest < Struct.new(
1919
- :configurations)
1933
+ :configurations,
1934
+ :meta_store_manager_role_arn)
1920
1935
  SENSITIVE = []
1921
1936
  include Aws::Structure
1922
1937
  end
@@ -52,6 +52,6 @@ require_relative 'aws-sdk-securitylake/customizations'
52
52
  # @!group service
53
53
  module Aws::SecurityLake
54
54
 
55
- GEM_VERSION = '1.15.0'
55
+ GEM_VERSION = '1.17.0'
56
56
 
57
57
  end
data/sig/client.rbs CHANGED
@@ -82,7 +82,7 @@ module Aws
82
82
  {
83
83
  accounts: Array[::String]?,
84
84
  regions: Array[::String],
85
- source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA"),
85
+ source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA" | "EKS_AUDIT" | "WAF"),
86
86
  source_version: ::String?
87
87
  },
88
88
  ]
@@ -95,7 +95,7 @@ module Aws
95
95
  end
96
96
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/SecurityLake/Client.html#create_custom_log_source-instance_method
97
97
  def create_custom_log_source: (
98
- ?configuration: {
98
+ configuration: {
99
99
  crawler_configuration: {
100
100
  role_arn: ::String
101
101
  },
@@ -165,19 +165,19 @@ module Aws
165
165
  end
166
166
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/SecurityLake/Client.html#create_data_lake_organization_configuration-instance_method
167
167
  def create_data_lake_organization_configuration: (
168
- auto_enable_new_account: Array[
168
+ ?auto_enable_new_account: Array[
169
169
  {
170
170
  region: ::String,
171
171
  sources: Array[
172
172
  {
173
- source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA")?,
173
+ source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA" | "EKS_AUDIT" | "WAF")?,
174
174
  source_version: ::String?
175
175
  },
176
176
  ]
177
177
  },
178
178
  ]
179
179
  ) -> _CreateDataLakeOrganizationConfigurationResponseSuccess
180
- | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateDataLakeOrganizationConfigurationResponseSuccess
180
+ | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateDataLakeOrganizationConfigurationResponseSuccess
181
181
 
182
182
  interface _CreateSubscriberResponseSuccess
183
183
  include ::Seahorse::Client::_ResponseSuccess[Types::CreateSubscriberResponse]
@@ -189,7 +189,7 @@ module Aws
189
189
  sources: Array[
190
190
  {
191
191
  aws_log_source: {
192
- source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA")?,
192
+ source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA" | "EKS_AUDIT" | "WAF")?,
193
193
  source_version: ::String?
194
194
  }?,
195
195
  custom_log_source: {
@@ -253,7 +253,7 @@ module Aws
253
253
  {
254
254
  accounts: Array[::String]?,
255
255
  regions: Array[::String],
256
- source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA"),
256
+ source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA" | "EKS_AUDIT" | "WAF"),
257
257
  source_version: ::String?
258
258
  },
259
259
  ]
@@ -292,19 +292,19 @@ module Aws
292
292
  end
293
293
  # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/SecurityLake/Client.html#delete_data_lake_organization_configuration-instance_method
294
294
  def delete_data_lake_organization_configuration: (
295
- auto_enable_new_account: Array[
295
+ ?auto_enable_new_account: Array[
296
296
  {
297
297
  region: ::String,
298
298
  sources: Array[
299
299
  {
300
- source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA")?,
300
+ source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA" | "EKS_AUDIT" | "WAF")?,
301
301
  source_version: ::String?
302
302
  },
303
303
  ]
304
304
  },
305
305
  ]
306
306
  ) -> _DeleteDataLakeOrganizationConfigurationResponseSuccess
307
- | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DeleteDataLakeOrganizationConfigurationResponseSuccess
307
+ | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DeleteDataLakeOrganizationConfigurationResponseSuccess
308
308
 
309
309
  interface _DeleteSubscriberResponseSuccess
310
310
  include ::Seahorse::Client::_ResponseSuccess[Types::DeleteSubscriberResponse]
@@ -413,7 +413,7 @@ module Aws
413
413
  ?sources: Array[
414
414
  {
415
415
  aws_log_source: {
416
- source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA")?,
416
+ source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA" | "EKS_AUDIT" | "WAF")?,
417
417
  source_version: ::String?
418
418
  }?,
419
419
  custom_log_source: {
@@ -518,7 +518,8 @@ module Aws
518
518
  role_arn: ::String?
519
519
  }?
520
520
  },
521
- ]
521
+ ],
522
+ ?meta_store_manager_role_arn: ::String
522
523
  ) -> _UpdateDataLakeResponseSuccess
523
524
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _UpdateDataLakeResponseSuccess
524
525
 
@@ -542,7 +543,7 @@ module Aws
542
543
  ?sources: Array[
543
544
  {
544
545
  aws_log_source: {
545
- source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA")?,
546
+ source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA" | "EKS_AUDIT" | "WAF")?,
546
547
  source_version: ::String?
547
548
  }?,
548
549
  custom_log_source: {
data/sig/types.rbs CHANGED
@@ -23,13 +23,13 @@ module Aws::SecurityLake
23
23
  class AwsLogSourceConfiguration
24
24
  attr_accessor accounts: ::Array[::String]
25
25
  attr_accessor regions: ::Array[::String]
26
- attr_accessor source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA")
26
+ attr_accessor source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA" | "EKS_AUDIT" | "WAF")
27
27
  attr_accessor source_version: ::String
28
28
  SENSITIVE: []
29
29
  end
30
30
 
31
31
  class AwsLogSourceResource
32
- attr_accessor source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA")
32
+ attr_accessor source_name: ("ROUTE53" | "VPC_FLOW" | "SH_FINDINGS" | "CLOUD_TRAIL_MGMT" | "LAMBDA_EXECUTION" | "S3_DATA" | "EKS_AUDIT" | "WAF")
33
33
  attr_accessor source_version: ::String
34
34
  SENSITIVE: []
35
35
  end
@@ -541,6 +541,7 @@ module Aws::SecurityLake
541
541
 
542
542
  class UpdateDataLakeRequest
543
543
  attr_accessor configurations: ::Array[Types::DataLakeConfiguration]
544
+ attr_accessor meta_store_manager_role_arn: ::String
544
545
  SENSITIVE: []
545
546
  end
546
547
 
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-securitylake
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.15.0
4
+ version: 1.17.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-01-26 00:00:00.000000000 Z
11
+ date: 2024-02-29 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-core