RubyGems - aws-sdk-securitylake - Versions diffs - 1.3.0 → 1.5.0 - Mend

aws-sdk-securitylake 1.3.0 → 1.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +10 -0
data/VERSION +1 -1
data/lib/aws-sdk-securitylake/client.rb +735 -665
data/lib/aws-sdk-securitylake/client_api.rb +577 -614
data/lib/aws-sdk-securitylake/endpoints.rb +19 -47
data/lib/aws-sdk-securitylake/errors.rb +7 -190
data/lib/aws-sdk-securitylake/plugins/endpoints.rb +36 -40
data/lib/aws-sdk-securitylake/types.rb +1046 -1018
data/lib/aws-sdk-securitylake.rb +1 -1
metadata +4 -4

data/lib/aws-sdk-securitylake/client.rb CHANGED Viewed

@@ -275,6 +275,11 @@ module Aws::SecurityLake
     #       in the future.
     #
     #
+    #   @option options [String] :sdk_ua_app_id
+    #     A unique and opaque application ID that is appended to the
+    #     User-Agent header as app/<sdk_ua_app_id>. It should have a
+    #     maximum length of 50.
+    #
     #   @option options [String] :secret_access_key
     #
     #   @option options [String] :session_token
@@ -372,64 +377,39 @@ module Aws::SecurityLake
     # Lake source. Enables source types for member accounts in required
     # Amazon Web Services Regions, based on the parameters you specify. You
     # can choose any source type in any Region for either accounts that are
-    # part of a trusted organization or standalone accounts. At least one of
-    # the three dimensions is a mandatory input to this API. However, you
-    # can supply any combination of the three dimensions to this API.
-    #
-    # By default, a dimension refers to the entire set. When you don't
-    # provide a dimension, Security Lake assumes that the missing dimension
-    # refers to the entire set. This is overridden when you supply any one
-    # of the inputs. For instance, when you do not specify members, the API
-    # enables all Security Lake member accounts for all sources. Similarly,
-    # when you do not specify Regions, Security Lake is enabled for all the
-    # Regions where Security Lake is available as a service.
+    # part of a trusted organization or standalone accounts. Once you add an
+    # Amazon Web Service as a source, Security Lake starts collecting logs
+    # and events from it,
     #
     # You can use this API only to enable natively supported Amazon Web
     # Services as a source. Use `CreateCustomLogSource` to enable data
     # collection from a custom source.
     #
-    # @option params [Hash<String,Hash>] :enable_all_dimensions
-    #   Enables data collection from specific Amazon Web Services sources in
-    #   all specific accounts and specific Regions.
-    #
-    # @option params [Array<String>] :enable_single_dimension
-    #   Enables data collection from all Amazon Web Services sources in
-    #   specific accounts or Regions.
-    #
-    # @option params [Hash<String,Array>] :enable_two_dimensions
-    #   Enables data collection from specific Amazon Web Services sources in
-    #   specific accounts or Regions.
-    #
-    # @option params [required, Array<String>] :input_order
-    #   Specifies the input order to enable dimensions in Security Lake,
-    #   namely Region, source type, and member account.
+    # @option params [required, Array<Types::AwsLogSourceConfiguration>] :sources
+    #   Specify the natively-supported Amazon Web Services service to add as a
+    #   source in Security Lake.
     #
     # @return [Types::CreateAwsLogSourceResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreateAwsLogSourceResponse#failed #failed} => Array&lt;String&gt;
-    #   * {Types::CreateAwsLogSourceResponse#processing #processing} => Array&lt;String&gt;
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.create_aws_log_source({
-    #     enable_all_dimensions: {
-    #       "String" => {
-    #         "String" => ["String"],
+    #     sources: [ # required
+    #       {
+    #         accounts: ["AwsAccountId"],
+    #         regions: ["Region"], # required
+    #         source_name: "ROUTE53", # required, accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA
+    #         source_version: "AwsLogSourceVersion",
     #       },
-    #     },
-    #     enable_single_dimension: ["SafeString"],
-    #     enable_two_dimensions: {
-    #       "String" => ["String"],
-    #     },
-    #     input_order: ["REGION"], # required, accepts REGION, SOURCE_TYPE, MEMBER
+    #     ],
     #   })
     #
     # @example Response structure
     #
     #   resp.failed #=> Array
     #   resp.failed[0] #=> String
-    #   resp.processing #=> Array
-    #   resp.processing[0] #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateAwsLogSource AWS API Documentation
     #
@@ -447,54 +427,113 @@ module Aws::SecurityLake
     # crawler, use this API to add a custom source name in Security Lake.
     # This operation creates a partition in the Amazon S3 bucket for
     # Security Lake as the target location for log files from the custom
-    # source in addition to an associated Glue table and an Glue crawler.
+    # source. In addition, this operation also creates an associated Glue
+    # table and an Glue crawler.
     #
-    # @option params [required, String] :custom_source_name
-    #   The name for a third-party custom source. This must be a Regionally
-    #   unique value.
+    # @option params [Types::CustomLogSourceConfiguration] :configuration
+    #   The configuration for the third-party custom source.
     #
-    # @option params [required, String] :event_class
-    #   The Open Cybersecurity Schema Framework (OCSF) event class which
+    # @option params [Array<String>] :event_classes
+    #   The Open Cybersecurity Schema Framework (OCSF) event classes which
     #   describes the type of data that the custom source will send to
-    #   Security Lake.
+    #   Security Lake. The supported event classes are:
+    #
+    #   * `ACCESS_ACTIVITY`
+    #
+    #   * `FILE_ACTIVITY`
+    #
+    #   * `KERNEL_ACTIVITY`
+    #
+    #   * `KERNEL_EXTENSION`
+    #
+    #   * `MEMORY_ACTIVITY`
+    #
+    #   * `MODULE_ACTIVITY`
+    #
+    #   * `PROCESS_ACTIVITY`
+    #
+    #   * `REGISTRY_KEY_ACTIVITY`
+    #
+    #   * `REGISTRY_VALUE_ACTIVITY`
+    #
+    #   * `RESOURCE_ACTIVITY`
+    #
+    #   * `SCHEDULED_JOB_ACTIVITY`
     #
-    # @option params [required, String] :glue_invocation_role_arn
-    #   The Amazon Resource Name (ARN) of the Identity and Access Management
-    #   (IAM) role to be used by the Glue crawler. The recommended IAM
-    #   policies are:
+    #   * `SECURITY_FINDING`
     #
-    #   * The managed policy `AWSGlueServiceRole`
+    #   * `ACCOUNT_CHANGE`
     #
-    #   * A custom policy granting access to your Amazon S3 Data Lake
+    #   * `AUTHENTICATION`
     #
-    # @option params [required, String] :log_provider_account_id
-    #   The Amazon Web Services account ID of the custom source that will
-    #   write logs and events into the Amazon S3 Data Lake.
+    #   * `AUTHORIZATION`
+    #
+    #   * `ENTITY_MANAGEMENT_AUDIT`
+    #
+    #   * `DHCP_ACTIVITY`
+    #
+    #   * `NETWORK_ACTIVITY`
+    #
+    #   * `DNS_ACTIVITY`
+    #
+    #   * `FTP_ACTIVITY`
+    #
+    #   * `HTTP_ACTIVITY`
+    #
+    #   * `RDP_ACTIVITY`
+    #
+    #   * `SMB_ACTIVITY`
+    #
+    #   * `SSH_ACTIVITY`
+    #
+    #   * `CONFIG_STATE`
+    #
+    #   * `INVENTORY_INFO`
+    #
+    #   * `EMAIL_ACTIVITY`
+    #
+    #   * `API_ACTIVITY`
+    #
+    #   * `CLOUD_API`
+    #
+    # @option params [required, String] :source_name
+    #   Specify the name for a third-party custom source. This must be a
+    #   Regionally unique value.
+    #
+    # @option params [String] :source_version
+    #   Specify the source version for the third-party custom source, to limit
+    #   log collection to a specific version of custom data source.
     #
     # @return [Types::CreateCustomLogSourceResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    #   * {Types::CreateCustomLogSourceResponse#custom_data_location #custom_data_location} => String
-    #   * {Types::CreateCustomLogSourceResponse#glue_crawler_name #glue_crawler_name} => String
-    #   * {Types::CreateCustomLogSourceResponse#glue_database_name #glue_database_name} => String
-    #   * {Types::CreateCustomLogSourceResponse#glue_table_name #glue_table_name} => String
-    #   * {Types::CreateCustomLogSourceResponse#log_provider_access_role_arn #log_provider_access_role_arn} => String
+    #   * {Types::CreateCustomLogSourceResponse#source #source} => Types::CustomLogSourceResource
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.create_custom_log_source({
-    #     custom_source_name: "CustomSourceType", # required
-    #     event_class: "ACCESS_ACTIVITY", # required, accepts ACCESS_ACTIVITY, FILE_ACTIVITY, KERNEL_ACTIVITY, KERNEL_EXTENSION, MEMORY_ACTIVITY, MODULE_ACTIVITY, PROCESS_ACTIVITY, REGISTRY_KEY_ACTIVITY, REGISTRY_VALUE_ACTIVITY, RESOURCE_ACTIVITY, SCHEDULED_JOB_ACTIVITY, SECURITY_FINDING, ACCOUNT_CHANGE, AUTHENTICATION, AUTHORIZATION, ENTITY_MANAGEMENT_AUDIT, DHCP_ACTIVITY, NETWORK_ACTIVITY, DNS_ACTIVITY, FTP_ACTIVITY, HTTP_ACTIVITY, RDP_ACTIVITY, SMB_ACTIVITY, SSH_ACTIVITY, CLOUD_API, CONTAINER_LIFECYCLE, DATABASE_LIFECYCLE, CONFIG_STATE, CLOUD_STORAGE, INVENTORY_INFO, RFB_ACTIVITY, SMTP_ACTIVITY, VIRTUAL_MACHINE_ACTIVITY
-    #     glue_invocation_role_arn: "RoleArn", # required
-    #     log_provider_account_id: "AwsAccountId", # required
+    #     configuration: {
+    #       crawler_configuration: { # required
+    #         role_arn: "RoleArn", # required
+    #       },
+    #       provider_identity: { # required
+    #         external_id: "ExternalId", # required
+    #         principal: "AwsPrincipal", # required
+    #       },
+    #     },
+    #     event_classes: ["OcsfEventClass"],
+    #     source_name: "CustomLogSourceName", # required
+    #     source_version: "CustomLogSourceVersion",
     #   })
     #
     # @example Response structure
     #
-    #   resp.custom_data_location #=> String
-    #   resp.glue_crawler_name #=> String
-    #   resp.glue_database_name #=> String
-    #   resp.glue_table_name #=> String
-    #   resp.log_provider_access_role_arn #=> String
+    #   resp.source.attributes.crawler_arn #=> String
+    #   resp.source.attributes.database_arn #=> String
+    #   resp.source.attributes.table_arn #=> String
+    #   resp.source.provider.location #=> String
+    #   resp.source.provider.role_arn #=> String
+    #   resp.source.source_name #=> String
+    #   resp.source.source_version #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateCustomLogSource AWS API Documentation
     #
@@ -508,15 +547,14 @@ module Aws::SecurityLake
     # Initializes an Amazon Security Lake instance with the provided (or
     # default) configuration. You can enable Security Lake in Amazon Web
     # Services Regions with customized settings before enabling log
-    # collection in Regions. You can either use the `enableAll` parameter to
-    # specify all Regions or specify the Regions where you want to enable
-    # Security Lake. To specify particular Regions, use the `Regions`
-    # parameter and then configure these Regions using the `configurations`
-    # parameter. If you have already enabled Security Lake in a Region when
-    # you call this command, the command will update the Region if you
-    # provide new configuration parameters. If you have not already enabled
-    # Security Lake in the Region when you call this API, it will set up the
-    # data lake in the Region with the specified configurations.
+    # collection in Regions. By default, the `CreateDataLake` Security Lake
+    # in all Regions. To specify particular Regions, configure these Regions
+    # using the `configurations` parameter. If you have already enabled
+    # Security Lake in a Region when you call this command, the command will
+    # update the Region if you provide new configuration parameters. If you
+    # have not already enabled Security Lake in the Region when you call
+    # this API, it will set up the data lake in the Region with the
+    # specified configurations.
     #
     # When you enable Security Lake, it starts ingesting security data after
     # the `CreateAwsLogSource` call. This includes ingesting security data
@@ -530,145 +568,141 @@ module Aws::SecurityLake
     #
     # [1]: https://docs.aws.amazon.com/security-lake/latest/userguide/what-is-security-lake.html
     #
-    # @option params [Hash<String,Types::LakeConfigurationRequest>] :configurations
+    # @option params [required, Array<Types::DataLakeConfiguration>] :configurations
     #   Specify the Region or Regions that will contribute data to the rollup
     #   region.
     #
-    # @option params [Boolean] :enable_all
-    #   Enable Security Lake in all Regions.
-    #
-    # @option params [String] :meta_store_manager_role_arn
+    # @option params [required, String] :meta_store_manager_role_arn
     #   The Amazon Resource Name (ARN) used to create and update the Glue
     #   table. This table contains partitions generated by the ingestion and
     #   normalization of Amazon Web Services log sources and custom sources.
     #
-    # @option params [Array<String>] :regions
-    #   Enable Security Lake in the specified Regions. To enable Security Lake
-    #   in specific Amazon Web Services Regions, such as us-east-1 or
-    #   ap-northeast-3, provide the Region codes. For a list of Region codes,
-    #   see [Amazon Security Lake endpoints][1] in the Amazon Web Services
-    #   General Reference.
-    #
-    #
-    #
-    #   [1]: https://docs.aws.amazon.com/general/latest/gr/securitylake.html
+    # @return [Types::CreateDataLakeResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #   * {Types::CreateDataLakeResponse#data_lakes #data_lakes} => Array&lt;Types::DataLakeResource&gt;
     #
     # @example Request syntax with placeholder values
     #
-    #   resp = client.create_datalake({
-    #     configurations: {
-    #       "us-east-1" => {
-    #         encryption_key: "String",
-    #         replication_destination_regions: ["us-east-1"], # accepts us-east-1, us-west-2, eu-central-1, us-east-2, eu-west-1, ap-northeast-1, ap-southeast-2
-    #         replication_role_arn: "RoleArn",
-    #         retention_settings: [
-    #           {
-    #             retention_period: 1,
-    #             storage_class: "STANDARD_IA", # accepts STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER_IR, GLACIER, DEEP_ARCHIVE, EXPIRE
+    #   resp = client.create_data_lake({
+    #     configurations: [ # required
+    #       {
+    #         encryption_configuration: {
+    #           kms_key_id: "String",
+    #         },
+    #         lifecycle_configuration: {
+    #           expiration: {
+    #             days: 1,
     #           },
-    #         ],
-    #         tags_map: {
-    #           "String" => "String",
+    #           transitions: [
+    #             {
+    #               days: 1,
+    #               storage_class: "DataLakeStorageClass",
+    #             },
+    #           ],
+    #         },
+    #         region: "Region", # required
+    #         replication_configuration: {
+    #           regions: ["Region"],
+    #           role_arn: "RoleArn",
     #         },
     #       },
-    #     },
-    #     enable_all: false,
-    #     meta_store_manager_role_arn: "RoleArn",
-    #     regions: ["us-east-1"], # accepts us-east-1, us-west-2, eu-central-1, us-east-2, eu-west-1, ap-northeast-1, ap-southeast-2
+    #     ],
+    #     meta_store_manager_role_arn: "RoleArn", # required
     #   })
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDatalake AWS API Documentation
+    # @example Response structure
     #
-    # @overload create_datalake(params = {})
+    #   resp.data_lakes #=> Array
+    #   resp.data_lakes[0].create_status #=> String, one of "INITIALIZED", "PENDING", "COMPLETED", "FAILED"
+    #   resp.data_lakes[0].data_lake_arn #=> String
+    #   resp.data_lakes[0].encryption_configuration.kms_key_id #=> String
+    #   resp.data_lakes[0].lifecycle_configuration.expiration.days #=> Integer
+    #   resp.data_lakes[0].lifecycle_configuration.transitions #=> Array
+    #   resp.data_lakes[0].lifecycle_configuration.transitions[0].days #=> Integer
+    #   resp.data_lakes[0].lifecycle_configuration.transitions[0].storage_class #=> String
+    #   resp.data_lakes[0].region #=> String
+    #   resp.data_lakes[0].replication_configuration.regions #=> Array
+    #   resp.data_lakes[0].replication_configuration.regions[0] #=> String
+    #   resp.data_lakes[0].replication_configuration.role_arn #=> String
+    #   resp.data_lakes[0].s3_bucket_arn #=> String
+    #   resp.data_lakes[0].update_status.exception.code #=> String
+    #   resp.data_lakes[0].update_status.exception.reason #=> String
+    #   resp.data_lakes[0].update_status.request_id #=> String
+    #   resp.data_lakes[0].update_status.status #=> String, one of "INITIALIZED", "PENDING", "COMPLETED", "FAILED"
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDataLake AWS API Documentation
+    #
+    # @overload create_data_lake(params = {})
     # @param [Hash] params ({})
-    def create_datalake(params = {}, options = {})
-      req = build_request(:create_datalake, params)
+    def create_data_lake(params = {}, options = {})
+      req = build_request(:create_data_lake, params)
       req.send_request(options)
     end
-    # Automatically enables Amazon Security Lake for new member accounts in
-    # your organization. Security Lake is not automatically enabled for any
-    # existing member accounts in your organization.
-    #
-    # @option params [required, Array<Types::AutoEnableNewRegionConfiguration>] :configuration_for_new_accounts
-    #   Enable Security Lake with the specified configuration settings to
-    #   begin collecting security data for new accounts in your organization.
-    #
-    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
-    #
-    # @example Request syntax with placeholder values
-    #
-    #   resp = client.create_datalake_auto_enable({
-    #     configuration_for_new_accounts: [ # required
-    #       {
-    #         region: "us-east-1", # required, accepts us-east-1, us-west-2, eu-central-1, us-east-2, eu-west-1, ap-northeast-1, ap-southeast-2
-    #         sources: ["ROUTE53"], # required, accepts ROUTE53, VPC_FLOW, CLOUD_TRAIL, SH_FINDINGS
-    #       },
-    #     ],
-    #   })
+    # Creates the specified notification subscription in Amazon Security
+    # Lake for the organization you specify.
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDatalakeAutoEnable AWS API Documentation
+    # @option params [Integer] :exception_time_to_live
+    #   The expiration period and time-to-live (TTL).
     #
-    # @overload create_datalake_auto_enable(params = {})
-    # @param [Hash] params ({})
-    def create_datalake_auto_enable(params = {}, options = {})
-      req = build_request(:create_datalake_auto_enable, params)
-      req.send_request(options)
-    end
-    # Designates the Amazon Security Lake delegated administrator account
-    # for the organization. This API can only be called by the organization
-    # management account. The organization management account cannot be the
-    # delegated administrator account.
+    # @option params [required, String] :notification_endpoint
+    #   The Amazon Web Services account where you want to receive exception
+    #   notifications.
     #
-    # @option params [required, String] :account
-    #   The Amazon Web Services account ID of the Security Lake delegated
-    #   administrator.
+    # @option params [required, String] :subscription_protocol
+    #   The subscription protocol to which exception notifications are posted.
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
     #
-    #   resp = client.create_datalake_delegated_admin({
-    #     account: "SafeString", # required
+    #   resp = client.create_data_lake_exception_subscription({
+    #     exception_time_to_live: 1,
+    #     notification_endpoint: "SafeString", # required
+    #     subscription_protocol: "SubscriptionProtocol", # required
     #   })
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDatalakeDelegatedAdmin AWS API Documentation
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDataLakeExceptionSubscription AWS API Documentation
     #
-    # @overload create_datalake_delegated_admin(params = {})
+    # @overload create_data_lake_exception_subscription(params = {})
     # @param [Hash] params ({})
-    def create_datalake_delegated_admin(params = {}, options = {})
-      req = build_request(:create_datalake_delegated_admin, params)
+    def create_data_lake_exception_subscription(params = {}, options = {})
+      req = build_request(:create_data_lake_exception_subscription, params)
       req.send_request(options)
     end
-    # Creates the specified notification subscription in Amazon Security
-    # Lake for the organization you specify.
-    #
-    # @option params [required, String] :notification_endpoint
-    #   The Amazon Web Services account where you want to receive exception
-    #   notifications.
+    # Automatically enables Amazon Security Lake for new member accounts in
+    # your organization. Security Lake is not automatically enabled for any
+    # existing member accounts in your organization.
     #
-    # @option params [required, String] :subscription_protocol
-    #   The subscription protocol to which exception notifications are posted.
+    # @option params [required, Array<Types::DataLakeAutoEnableNewAccountConfiguration>] :auto_enable_new_account
+    #   Enable Security Lake with the specified configuration settings, to
+    #   begin collecting security data for new accounts in your organization.
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
     #
-    #   resp = client.create_datalake_exceptions_subscription({
-    #     notification_endpoint: "SafeString", # required
-    #     subscription_protocol: "HTTP", # required, accepts HTTP, HTTPS, EMAIL, EMAIL_JSON, SMS, SQS, LAMBDA, APP, FIREHOSE
+    #   resp = client.create_data_lake_organization_configuration({
+    #     auto_enable_new_account: [ # required
+    #       {
+    #         region: "Region", # required
+    #         sources: [ # required
+    #           {
+    #             source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA
+    #             source_version: "AwsLogSourceVersion",
+    #           },
+    #         ],
+    #       },
+    #     ],
     #   })
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDatalakeExceptionsSubscription AWS API Documentation
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDataLakeOrganizationConfiguration AWS API Documentation
     #
-    # @overload create_datalake_exceptions_subscription(params = {})
+    # @overload create_data_lake_organization_configuration(params = {})
     # @param [Hash] params ({})
-    def create_datalake_exceptions_subscription(params = {}, options = {})
-      req = build_request(:create_datalake_exceptions_subscription, params)
+    def create_data_lake_organization_configuration(params = {}, options = {})
+      req = build_request(:create_data_lake_organization_configuration, params)
       req.send_request(options)
     end
@@ -679,16 +713,7 @@ module Aws::SecurityLake
     # @option params [Array<String>] :access_types
     #   The Amazon S3 or Lake Formation access type.
     #
-    # @option params [required, String] :account_id
-    #   The Amazon Web Services account ID used to access your data.
-    #
-    # @option params [required, String] :external_id
-    #   The external ID of the subscriber. This lets the user that is assuming
-    #   the role assert the circumstances in which they are operating. It also
-    #   provides a way for the account owner to permit the role to be assumed
-    #   only under specific circumstances.
-    #
-    # @option params [required, Array<Types::SourceType>] :source_types
+    # @option params [required, Array<Types::LogSourceResource>] :sources
     #   The supported Amazon Web Services from which logs and events are
     #   collected. Security Lake supports log and event collection for
     #   natively supported Amazon Web Services.
@@ -696,42 +721,77 @@ module Aws::SecurityLake
     # @option params [String] :subscriber_description
     #   The description for your subscriber account in Security Lake.
     #
+    # @option params [required, Types::AwsIdentity] :subscriber_identity
+    #   The AWS identity used to access your data.
+    #
     # @option params [required, String] :subscriber_name
     #   The name of your Security Lake subscriber account.
     #
     # @return [Types::CreateSubscriberResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    #   * {Types::CreateSubscriberResponse#resource_share_arn #resource_share_arn} => String
-    #   * {Types::CreateSubscriberResponse#resource_share_name #resource_share_name} => String
-    #   * {Types::CreateSubscriberResponse#role_arn #role_arn} => String
-    #   * {Types::CreateSubscriberResponse#s3_bucket_arn #s3_bucket_arn} => String
-    #   * {Types::CreateSubscriberResponse#sns_arn #sns_arn} => String
-    #   * {Types::CreateSubscriberResponse#subscription_id #subscription_id} => String
+    #   * {Types::CreateSubscriberResponse#subscriber #subscriber} => Types::SubscriberResource
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.create_subscriber({
     #     access_types: ["LAKEFORMATION"], # accepts LAKEFORMATION, S3
-    #     account_id: "AwsAccountId", # required
-    #     external_id: "SafeString", # required
-    #     source_types: [ # required
+    #     sources: [ # required
     #       {
-    #         aws_source_type: "ROUTE53", # accepts ROUTE53, VPC_FLOW, CLOUD_TRAIL, SH_FINDINGS
-    #         custom_source_type: "CustomSourceType",
+    #         aws_log_source: {
+    #           source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA
+    #           source_version: "AwsLogSourceVersion",
+    #         },
+    #         custom_log_source: {
+    #           attributes: {
+    #             crawler_arn: "AmazonResourceName",
+    #             database_arn: "AmazonResourceName",
+    #             table_arn: "AmazonResourceName",
+    #           },
+    #           provider: {
+    #             location: "S3URI",
+    #             role_arn: "RoleArn",
+    #           },
+    #           source_name: "CustomLogSourceName",
+    #           source_version: "CustomLogSourceVersion",
+    #         },
     #       },
     #     ],
     #     subscriber_description: "DescriptionString",
+    #     subscriber_identity: { # required
+    #       external_id: "ExternalId", # required
+    #       principal: "AwsPrincipal", # required
+    #     },
     #     subscriber_name: "CreateSubscriberRequestSubscriberNameString", # required
     #   })
     #
     # @example Response structure
     #
-    #   resp.resource_share_arn #=> String
-    #   resp.resource_share_name #=> String
-    #   resp.role_arn #=> String
-    #   resp.s3_bucket_arn #=> String
-    #   resp.sns_arn #=> String
-    #   resp.subscription_id #=> String
+    #   resp.subscriber.access_types #=> Array
+    #   resp.subscriber.access_types[0] #=> String, one of "LAKEFORMATION", "S3"
+    #   resp.subscriber.created_at #=> Time
+    #   resp.subscriber.resource_share_arn #=> String
+    #   resp.subscriber.resource_share_name #=> String
+    #   resp.subscriber.role_arn #=> String
+    #   resp.subscriber.s3_bucket_arn #=> String
+    #   resp.subscriber.sources #=> Array
+    #   resp.subscriber.sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA"
+    #   resp.subscriber.sources[0].aws_log_source.source_version #=> String
+    #   resp.subscriber.sources[0].custom_log_source.attributes.crawler_arn #=> String
+    #   resp.subscriber.sources[0].custom_log_source.attributes.database_arn #=> String
+    #   resp.subscriber.sources[0].custom_log_source.attributes.table_arn #=> String
+    #   resp.subscriber.sources[0].custom_log_source.provider.location #=> String
+    #   resp.subscriber.sources[0].custom_log_source.provider.role_arn #=> String
+    #   resp.subscriber.sources[0].custom_log_source.source_name #=> String
+    #   resp.subscriber.sources[0].custom_log_source.source_version #=> String
+    #   resp.subscriber.subscriber_arn #=> String
+    #   resp.subscriber.subscriber_description #=> String
+    #   resp.subscriber.subscriber_endpoint #=> String
+    #   resp.subscriber.subscriber_id #=> String
+    #   resp.subscriber.subscriber_identity.external_id #=> String
+    #   resp.subscriber.subscriber_identity.principal #=> String
+    #   resp.subscriber.subscriber_name #=> String
+    #   resp.subscriber.subscriber_status #=> String, one of "ACTIVE", "DEACTIVATED", "PENDING", "READY"
+    #   resp.subscriber.updated_at #=> Time
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateSubscriber AWS API Documentation
     #
@@ -746,133 +806,84 @@ module Aws::SecurityLake
     # the sources that the subscriber consumes in Security Lake. You can
     # create only one subscriber notification per subscriber.
     #
-    # @option params [Boolean] :create_sqs
-    #   Create an Amazon Simple Queue Service queue.
-    #
-    # @option params [String] :https_api_key_name
-    #   The key name for the notification subscription.
-    #
-    # @option params [String] :https_api_key_value
-    #   The key value for the notification subscription.
+    # @option params [required, Types::NotificationConfiguration] :configuration
+    #   Specify the configuration using which you want to create the
+    #   subscriber notification.
     #
-    # @option params [String] :https_method
-    #   The HTTPS method used for the notification subscription.
+    # @option params [required, String] :subscriber_id
+    #   The subscriber ID for the notification subscription.
     #
-    # @option params [String] :role_arn
-    #   The Amazon Resource Name (ARN) of the EventBridge API destinations IAM
-    #   role that you created. For more information about ARNs and how to use
-    #   them in policies, see [Managing data access][1] and [Amazon Web
-    #   Services Managed Policies][2] in the Amazon Security Lake User Guide.
+    # @return [Types::CreateSubscriberNotificationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    #
-    #
-    #   [1]: https://docs.aws.amazon.com//security-lake/latest/userguide/subscriber-data-access.html
-    #   [2]: https://docs.aws.amazon.com/security-lake/latest/userguide/security-iam-awsmanpol.html
-    #
-    # @option params [String] :subscription_endpoint
-    #   The subscription endpoint in Security Lake. If you prefer notification
-    #   with an HTTPs endpoint, populate this field.
-    #
-    # @option params [required, String] :subscription_id
-    #   The subscription ID for the notification subscription.
-    #
-    # @return [Types::CreateSubscriptionNotificationConfigurationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
-    #
-    #   * {Types::CreateSubscriptionNotificationConfigurationResponse#queue_arn #queue_arn} => String
+    #   * {Types::CreateSubscriberNotificationResponse#subscriber_endpoint #subscriber_endpoint} => String
     #
     # @example Request syntax with placeholder values
     #
-    #   resp = client.create_subscription_notification_configuration({
-    #     create_sqs: false,
-    #     https_api_key_name: "String",
-    #     https_api_key_value: "String",
-    #     https_method: "POST", # accepts POST, PUT
-    #     role_arn: "RoleArn",
-    #     subscription_endpoint: "CreateSubscriptionNotificationConfigurationRequestSubscriptionEndpointString",
-    #     subscription_id: "UUID", # required
+    #   resp = client.create_subscriber_notification({
+    #     configuration: { # required
+    #       https_notification_configuration: {
+    #         authorization_api_key_name: "String",
+    #         authorization_api_key_value: "String",
+    #         endpoint: "HttpsNotificationConfigurationEndpointString", # required
+    #         http_method: "POST", # accepts POST, PUT
+    #         target_role_arn: "RoleArn", # required
+    #       },
+    #       sqs_notification_configuration: {
+    #       },
+    #     },
+    #     subscriber_id: "UUID", # required
     #   })
     #
     # @example Response structure
     #
-    #   resp.queue_arn #=> String
+    #   resp.subscriber_endpoint #=> String
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateSubscriptionNotificationConfiguration AWS API Documentation
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateSubscriberNotification AWS API Documentation
     #
-    # @overload create_subscription_notification_configuration(params = {})
+    # @overload create_subscriber_notification(params = {})
     # @param [Hash] params ({})
-    def create_subscription_notification_configuration(params = {}, options = {})
-      req = build_request(:create_subscription_notification_configuration, params)
+    def create_subscriber_notification(params = {}, options = {})
+      req = build_request(:create_subscriber_notification, params)
       req.send_request(options)
     end
     # Removes a natively supported Amazon Web Service as an Amazon Security
-    # Lake source. When you remove the source, Security Lake stops
-    # collecting data from that source, and subscribers can no longer
-    # consume new data from the source. Subscribers can still consume data
-    # that Security Lake collected from the source before disablement.
+    # Lake source. You can remove a source for one or more Regions. When you
+    # remove the source, Security Lake stops collecting data from that
+    # source in the specified Regions and accounts, and subscribers can no
+    # longer consume new data from the source. However, subscribers can
+    # still consume data that Security Lake collected from the source before
+    # removal.
     #
     # You can choose any source type in any Amazon Web Services Region for
     # either accounts that are part of a trusted organization or standalone
-    # accounts. At least one of the three dimensions is a mandatory input to
-    # this API. However, you can supply any combination of the three
-    # dimensions to this API.
-    #
-    # By default, a dimension refers to the entire set. This is overridden
-    # when you supply any one of the inputs. For instance, when you do not
-    # specify members, the API disables all Security Lake member accounts
-    # for sources. Similarly, when you do not specify Regions, Security Lake
-    # is disabled for all the Regions where Security Lake is available as a
-    # service.
-    #
-    # When you don't provide a dimension, Security Lake assumes that the
-    # missing dimension refers to the entire set. For example, if you don't
-    # provide specific accounts, the API applies to the entire set of
-    # accounts in your organization.
-    #
-    # @option params [Hash<String,Hash>] :disable_all_dimensions
-    #   Removes the specific Amazon Web Services sources from specific
-    #   accounts and specific Regions.
-    #
-    # @option params [Array<String>] :disable_single_dimension
-    #   Removes all Amazon Web Services sources from specific accounts or
-    #   Regions.
-    #
-    # @option params [Hash<String,Array>] :disable_two_dimensions
-    #   Remove a specific Amazon Web Services source from specific accounts or
-    #   Regions.
-    #
-    # @option params [required, Array<String>] :input_order
-    #   This is a mandatory input. Specify the input order to disable
-    #   dimensions in Security Lake, namely Region (Amazon Web Services Region
-    #   code, source type, and member (account ID of a specific Amazon Web
-    #   Services account).
+    # accounts.
+    #
+    # @option params [required, Array<Types::AwsLogSourceConfiguration>] :sources
+    #   Specify the natively-supported Amazon Web Services service to remove
+    #   as a source in Security Lake.
     #
     # @return [Types::DeleteAwsLogSourceResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::DeleteAwsLogSourceResponse#failed #failed} => Array&lt;String&gt;
-    #   * {Types::DeleteAwsLogSourceResponse#processing #processing} => Array&lt;String&gt;
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.delete_aws_log_source({
-    #     disable_all_dimensions: {
-    #       "String" => {
-    #         "String" => ["String"],
+    #     sources: [ # required
+    #       {
+    #         accounts: ["AwsAccountId"],
+    #         regions: ["Region"], # required
+    #         source_name: "ROUTE53", # required, accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA
+    #         source_version: "AwsLogSourceVersion",
     #       },
-    #     },
-    #     disable_single_dimension: ["SafeString"],
-    #     disable_two_dimensions: {
-    #       "String" => ["String"],
-    #     },
-    #     input_order: ["REGION"], # required, accepts REGION, SOURCE_TYPE, MEMBER
+    #     ],
     #   })
     #
     # @example Response structure
     #
     #   resp.failed #=> Array
     #   resp.failed[0] #=> String
-    #   resp.processing #=> Array
-    #   resp.processing[0] #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteAwsLogSource AWS API Documentation
     #
@@ -883,25 +894,25 @@ module Aws::SecurityLake
       req.send_request(options)
     end
-    # Removes a custom log source from Amazon Security Lake.
+    # Removes a custom log source from Amazon Security Lake, to stop sending
+    # data from the custom source to Security Lake.
     #
-    # @option params [required, String] :custom_source_name
-    #   The custom source name for the custom log source.
+    # @option params [required, String] :source_name
+    #   The source name of custom log source that you want to delete.
     #
-    # @return [Types::DeleteCustomLogSourceResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    # @option params [String] :source_version
+    #   The source version for the third-party custom source. You can limit
+    #   the custom source removal to the specified source version.
     #
-    #   * {Types::DeleteCustomLogSourceResponse#custom_data_location #custom_data_location} => String
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.delete_custom_log_source({
-    #     custom_source_name: "String", # required
+    #     source_name: "CustomLogSourceName", # required
+    #     source_version: "CustomLogSourceVersion",
     #   })
     #
-    # @example Response structure
-    #
-    #   resp.custom_data_location #=> String
-    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteCustomLogSource AWS API Documentation
     #
     # @overload delete_custom_log_source(params = {})
@@ -911,117 +922,103 @@ module Aws::SecurityLake
       req.send_request(options)
     end
-    # When you delete Amazon Security Lake from your account, Security Lake
-    # is disabled in all Amazon Web Services Regions. Also, this API
-    # automatically takes steps to remove the account from Security Lake .
+    # When you disable Amazon Security Lake from your account, Security Lake
+    # is disabled in all Amazon Web Services Regions and it stops collecting
+    # data from your sources. Also, this API automatically takes steps to
+    # remove the account from Security Lake. However, Security Lake retains
+    # all of your existing settings and the resources that it created in
+    # your Amazon Web Services account in the current Amazon Web Services
+    # Region.
     #
-    # This operation disables security data collection from sources, deletes
-    # data stored, and stops making data accessible to subscribers. Security
-    # Lake also deletes all the existing settings and resources that it
-    # stores or maintains for your Amazon Web Services account in the
-    # current Region, including security log and event data. The
-    # `DeleteDatalake` operation does not delete the Amazon S3 bucket, which
-    # is owned by your Amazon Web Services account. For more information,
-    # see the [Amazon Security Lake User Guide][1].
+    # The `DeleteDataLake` operation does not delete the data that is stored
+    # in your Amazon S3 bucket, which is owned by your Amazon Web Services
+    # account. For more information, see the [Amazon Security Lake User
+    # Guide][1].
     #
     #
     #
     # [1]: https://docs.aws.amazon.com/security-lake/latest/userguide/disable-security-lake.html
     #
-    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
-    #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDatalake AWS API Documentation
-    #
-    # @overload delete_datalake(params = {})
-    # @param [Hash] params ({})
-    def delete_datalake(params = {}, options = {})
-      req = build_request(:delete_datalake, params)
-      req.send_request(options)
-    end
-    # `DeleteDatalakeAutoEnable` removes automatic enablement of
-    # configuration settings for new member accounts (but keeps settings for
-    # the delegated administrator) from Amazon Security Lake. You must run
-    # this API using credentials of the delegated administrator. When you
-    # run this API, new member accounts that are added after the
-    # organization enables Security Lake won't contribute to the data lake.
-    #
-    # @option params [required, Array<Types::AutoEnableNewRegionConfiguration>] :remove_from_configuration_for_new_accounts
-    #   Remove automatic enablement of configuration settings for new member
-    #   accounts in Security Lake.
+    # @option params [required, Array<String>] :regions
+    #   The list of Regions where Security Lake is enabled.
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
     #
-    #   resp = client.delete_datalake_auto_enable({
-    #     remove_from_configuration_for_new_accounts: [ # required
-    #       {
-    #         region: "us-east-1", # required, accepts us-east-1, us-west-2, eu-central-1, us-east-2, eu-west-1, ap-northeast-1, ap-southeast-2
-    #         sources: ["ROUTE53"], # required, accepts ROUTE53, VPC_FLOW, CLOUD_TRAIL, SH_FINDINGS
-    #       },
-    #     ],
+    #   resp = client.delete_data_lake({
+    #     regions: ["Region"], # required
     #   })
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDatalakeAutoEnable AWS API Documentation
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDataLake AWS API Documentation
     #
-    # @overload delete_datalake_auto_enable(params = {})
+    # @overload delete_data_lake(params = {})
     # @param [Hash] params ({})
-    def delete_datalake_auto_enable(params = {}, options = {})
-      req = build_request(:delete_datalake_auto_enable, params)
+    def delete_data_lake(params = {}, options = {})
+      req = build_request(:delete_data_lake, params)
       req.send_request(options)
     end
-    # Deletes the Amazon Security Lake delegated administrator account for
-    # the organization. This API can only be called by the organization
-    # management account. The organization management account cannot be the
-    # delegated administrator account.
-    #
-    # @option params [required, String] :account
-    #   The account ID the Security Lake delegated administrator.
+    # Deletes the specified notification subscription in Amazon Security
+    # Lake for the organization you specify.
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
-    # @example Request syntax with placeholder values
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDataLakeExceptionSubscription AWS API Documentation
     #
-    #   resp = client.delete_datalake_delegated_admin({
-    #     account: "SafeString", # required
-    #   })
-    #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDatalakeDelegatedAdmin AWS API Documentation
-    #
-    # @overload delete_datalake_delegated_admin(params = {})
+    # @overload delete_data_lake_exception_subscription(params = {})
     # @param [Hash] params ({})
-    def delete_datalake_delegated_admin(params = {}, options = {})
-      req = build_request(:delete_datalake_delegated_admin, params)
+    def delete_data_lake_exception_subscription(params = {}, options = {})
+      req = build_request(:delete_data_lake_exception_subscription, params)
       req.send_request(options)
     end
-    # Deletes the specified notification subscription in Amazon Security
-    # Lake for the organization you specify.
+    # Removes automatic the enablement of configuration settings for new
+    # member accounts (but retains the settings for the delegated
+    # administrator) from Amazon Security Lake. You must run this API using
+    # the credentials of the delegated administrator. When you run this API,
+    # new member accounts that are added after the organization enables
+    # Security Lake won't contribute to the data lake.
     #
-    # @return [Types::DeleteDatalakeExceptionsSubscriptionResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    # @option params [required, Array<Types::DataLakeAutoEnableNewAccountConfiguration>] :auto_enable_new_account
+    #   Removes the automatic enablement of configuration settings for new
+    #   member accounts in Security Lake.
     #
-    #   * {Types::DeleteDatalakeExceptionsSubscriptionResponse#status #status} => String
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
-    # @example Response structure
+    # @example Request syntax with placeholder values
     #
-    #   resp.status #=> String
+    #   resp = client.delete_data_lake_organization_configuration({
+    #     auto_enable_new_account: [ # required
+    #       {
+    #         region: "Region", # required
+    #         sources: [ # required
+    #           {
+    #             source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA
+    #             source_version: "AwsLogSourceVersion",
+    #           },
+    #         ],
+    #       },
+    #     ],
+    #   })
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDatalakeExceptionsSubscription AWS API Documentation
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDataLakeOrganizationConfiguration AWS API Documentation
     #
-    # @overload delete_datalake_exceptions_subscription(params = {})
+    # @overload delete_data_lake_organization_configuration(params = {})
     # @param [Hash] params ({})
-    def delete_datalake_exceptions_subscription(params = {}, options = {})
-      req = build_request(:delete_datalake_exceptions_subscription, params)
+    def delete_data_lake_organization_configuration(params = {}, options = {})
+      req = build_request(:delete_data_lake_organization_configuration, params)
       req.send_request(options)
     end
-    # Deletes the subscription permission for accounts that are already
-    # enabled in Amazon Security Lake. You can delete a subscriber and
-    # remove access to data in the current Amazon Web Services Region.
-    #
-    # @option params [required, String] :id
+    # Deletes the subscription permission and all notification settings for
+    # accounts that are already enabled in Amazon Security Lake. When you
+    # run `DeleteSubscriber`, the subscriber will no longer consume data
+    # from Security Lake and the subscriber is removed. This operation
+    # deletes the subscriber and removes access to data in the current
+    # Amazon Web Services Region.
+    #
+    # @option params [required, String] :subscriber_id
     #   A value created by Security Lake that uniquely identifies your
     #   `DeleteSubscriber` API request.
     #
@@ -1030,7 +1027,7 @@ module Aws::SecurityLake
     # @example Request syntax with placeholder values
     #
     #   resp = client.delete_subscriber({
-    #     id: "String", # required
+    #     subscriber_id: "UUID", # required
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteSubscriber AWS API Documentation
@@ -1045,128 +1042,89 @@ module Aws::SecurityLake
     # Deletes the specified notification subscription in Amazon Security
     # Lake for the organization you specify.
     #
-    # @option params [required, String] :subscription_id
+    # @option params [required, String] :subscriber_id
     #   The ID of the Security Lake subscriber account.
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
     #
-    #   resp = client.delete_subscription_notification_configuration({
-    #     subscription_id: "UUID", # required
+    #   resp = client.delete_subscriber_notification({
+    #     subscriber_id: "UUID", # required
     #   })
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteSubscriptionNotificationConfiguration AWS API Documentation
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteSubscriberNotification AWS API Documentation
     #
-    # @overload delete_subscription_notification_configuration(params = {})
+    # @overload delete_subscriber_notification(params = {})
     # @param [Hash] params ({})
-    def delete_subscription_notification_configuration(params = {}, options = {})
-      req = build_request(:delete_subscription_notification_configuration, params)
+    def delete_subscriber_notification(params = {}, options = {})
+      req = build_request(:delete_subscriber_notification, params)
       req.send_request(options)
     end
-    # Retrieves the Amazon Security Lake configuration object for the
-    # specified Amazon Web Services account ID. You can use the
-    # `GetDatalake` API to know whether Security Lake is enabled for the
-    # current Region. This API does not take input parameters.
-    #
-    # @return [Types::GetDatalakeResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
-    #
-    #   * {Types::GetDatalakeResponse#configurations #configurations} => Hash&lt;String,Types::LakeConfigurationResponse&gt;
-    #
-    # @example Response structure
-    #
-    #   resp.configurations #=> Hash
-    #   resp.configurations["Region"].encryption_key #=> String
-    #   resp.configurations["Region"].replication_destination_regions #=> Array
-    #   resp.configurations["Region"].replication_destination_regions[0] #=> String, one of "us-east-1", "us-west-2", "eu-central-1", "us-east-2", "eu-west-1", "ap-northeast-1", "ap-southeast-2"
-    #   resp.configurations["Region"].replication_role_arn #=> String
-    #   resp.configurations["Region"].retention_settings #=> Array
-    #   resp.configurations["Region"].retention_settings[0].retention_period #=> Integer
-    #   resp.configurations["Region"].retention_settings[0].storage_class #=> String, one of "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "GLACIER_IR", "GLACIER", "DEEP_ARCHIVE", "EXPIRE"
-    #   resp.configurations["Region"].s3_bucket_arn #=> String
-    #   resp.configurations["Region"].status #=> String, one of "INITIALIZED", "PENDING", "COMPLETED", "FAILED"
-    #   resp.configurations["Region"].tags_map #=> Hash
-    #   resp.configurations["Region"].tags_map["String"] #=> String
-    #   resp.configurations["Region"].update_status.last_update_failure.code #=> String
-    #   resp.configurations["Region"].update_status.last_update_failure.reason #=> String
-    #   resp.configurations["Region"].update_status.last_update_request_id #=> String
-    #   resp.configurations["Region"].update_status.last_update_status #=> String, one of "INITIALIZED", "PENDING", "COMPLETED", "FAILED"
-    #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalake AWS API Documentation
-    #
-    # @overload get_datalake(params = {})
-    # @param [Hash] params ({})
-    def get_datalake(params = {}, options = {})
-      req = build_request(:get_datalake, params)
-      req.send_request(options)
-    end
-    # Retrieves the configuration that will be automatically set up for
-    # accounts added to the organization after the organization has
-    # onboarded to Amazon Security Lake. This API does not take input
-    # parameters.
-    #
-    # @return [Types::GetDatalakeAutoEnableResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
-    #
-    #   * {Types::GetDatalakeAutoEnableResponse#auto_enable_new_accounts #auto_enable_new_accounts} => Array&lt;Types::AutoEnableNewRegionConfiguration&gt;
-    #
-    # @example Response structure
+    # Deletes the Amazon Security Lake delegated administrator account for
+    # the organization. This API can only be called by the organization
+    # management account. The organization management account cannot be the
+    # delegated administrator account.
     #
-    #   resp.auto_enable_new_accounts #=> Array
-    #   resp.auto_enable_new_accounts[0].region #=> String, one of "us-east-1", "us-west-2", "eu-central-1", "us-east-2", "eu-west-1", "ap-northeast-1", "ap-southeast-2"
-    #   resp.auto_enable_new_accounts[0].sources #=> Array
-    #   resp.auto_enable_new_accounts[0].sources[0] #=> String, one of "ROUTE53", "VPC_FLOW", "CLOUD_TRAIL", "SH_FINDINGS"
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalakeAutoEnable AWS API Documentation
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeregisterDataLakeDelegatedAdministrator AWS API Documentation
     #
-    # @overload get_datalake_auto_enable(params = {})
+    # @overload deregister_data_lake_delegated_administrator(params = {})
     # @param [Hash] params ({})
-    def get_datalake_auto_enable(params = {}, options = {})
-      req = build_request(:get_datalake_auto_enable, params)
+    def deregister_data_lake_delegated_administrator(params = {}, options = {})
+      req = build_request(:deregister_data_lake_delegated_administrator, params)
       req.send_request(options)
     end
-    # Retrieves the expiration period and time-to-live (TTL) for which the
-    # exception message will remain. Exceptions are stored by default, for 2
-    # weeks from when a record was created in Amazon Security Lake. This API
-    # does not take input parameters.
+    # Retrieves the details of exception notifications for the account in
+    # Amazon Security Lake.
     #
-    # @return [Types::GetDatalakeExceptionsExpiryResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    # @return [Types::GetDataLakeExceptionSubscriptionResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    #   * {Types::GetDatalakeExceptionsExpiryResponse#exception_message_expiry #exception_message_expiry} => Integer
+    #   * {Types::GetDataLakeExceptionSubscriptionResponse#exception_time_to_live #exception_time_to_live} => Integer
+    #   * {Types::GetDataLakeExceptionSubscriptionResponse#notification_endpoint #notification_endpoint} => String
+    #   * {Types::GetDataLakeExceptionSubscriptionResponse#subscription_protocol #subscription_protocol} => String
     #
     # @example Response structure
     #
-    #   resp.exception_message_expiry #=> Integer
+    #   resp.exception_time_to_live #=> Integer
+    #   resp.notification_endpoint #=> String
+    #   resp.subscription_protocol #=> String
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalakeExceptionsExpiry AWS API Documentation
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDataLakeExceptionSubscription AWS API Documentation
     #
-    # @overload get_datalake_exceptions_expiry(params = {})
+    # @overload get_data_lake_exception_subscription(params = {})
     # @param [Hash] params ({})
-    def get_datalake_exceptions_expiry(params = {}, options = {})
-      req = build_request(:get_datalake_exceptions_expiry, params)
+    def get_data_lake_exception_subscription(params = {}, options = {})
+      req = build_request(:get_data_lake_exception_subscription, params)
       req.send_request(options)
     end
-    # Retrieves the details of exception notifications for the account in
-    # Amazon Security Lake.
+    # Retrieves the configuration that will be automatically set up for
+    # accounts added to the organization after the organization has
+    # onboarded to Amazon Security Lake. This API does not take input
+    # parameters.
     #
-    # @return [Types::GetDatalakeExceptionsSubscriptionResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    # @return [Types::GetDataLakeOrganizationConfigurationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    #   * {Types::GetDatalakeExceptionsSubscriptionResponse#protocol_and_notification_endpoint #protocol_and_notification_endpoint} => Types::ProtocolAndNotificationEndpoint
+    #   * {Types::GetDataLakeOrganizationConfigurationResponse#auto_enable_new_account #auto_enable_new_account} => Array&lt;Types::DataLakeAutoEnableNewAccountConfiguration&gt;
     #
     # @example Response structure
     #
-    #   resp.protocol_and_notification_endpoint.endpoint #=> String
-    #   resp.protocol_and_notification_endpoint.protocol #=> String
+    #   resp.auto_enable_new_account #=> Array
+    #   resp.auto_enable_new_account[0].region #=> String
+    #   resp.auto_enable_new_account[0].sources #=> Array
+    #   resp.auto_enable_new_account[0].sources[0].source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA"
+    #   resp.auto_enable_new_account[0].sources[0].source_version #=> String
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalakeExceptionsSubscription AWS API Documentation
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDataLakeOrganizationConfiguration AWS API Documentation
     #
-    # @overload get_datalake_exceptions_subscription(params = {})
+    # @overload get_data_lake_organization_configuration(params = {})
     # @param [Hash] params ({})
-    def get_datalake_exceptions_subscription(params = {}, options = {})
-      req = build_request(:get_datalake_exceptions_subscription, params)
+    def get_data_lake_organization_configuration(params = {}, options = {})
+      req = build_request(:get_data_lake_organization_configuration, params)
       req.send_request(options)
     end
@@ -1174,12 +1132,12 @@ module Aws::SecurityLake
     # Security Lake is enabled for those accounts and which sources Security
     # Lake is collecting data from.
     #
-    # @option params [Array<String>] :account_set
+    # @option params [Array<String>] :accounts
     #   The Amazon Web Services account ID for which a static snapshot of the
     #   current Amazon Web Services Region, including enabled accounts and log
     #   sources, is retrieved.
     #
-    # @option params [Integer] :max_account_results
+    # @option params [Integer] :max_results
     #   The maximum limit of accounts for which the static snapshot of the
     #   current Region, including enabled accounts and log sources, is
     #   retrieved.
@@ -1193,45 +1151,48 @@ module Aws::SecurityLake
     #   Each pagination token expires after 24 hours. Using an expired
     #   pagination token will return an HTTP 400 InvalidToken error.
     #
-    # @return [Types::GetDatalakeStatusResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    # @return [Types::GetDataLakeSourcesResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    #   * {Types::GetDatalakeStatusResponse#account_sources_list #account_sources_list} => Array&lt;Types::AccountSources&gt;
-    #   * {Types::GetDatalakeStatusResponse#next_token #next_token} => String
+    #   * {Types::GetDataLakeSourcesResponse#data_lake_arn #data_lake_arn} => String
+    #   * {Types::GetDataLakeSourcesResponse#data_lake_sources #data_lake_sources} => Array&lt;Types::DataLakeSource&gt;
+    #   * {Types::GetDataLakeSourcesResponse#next_token #next_token} => String
     #
     # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
     #
     # @example Request syntax with placeholder values
     #
-    #   resp = client.get_datalake_status({
-    #     account_set: ["SafeString"],
-    #     max_account_results: 1,
-    #     next_token: "SafeString",
+    #   resp = client.get_data_lake_sources({
+    #     accounts: ["AwsAccountId"],
+    #     max_results: 1,
+    #     next_token: "NextToken",
     #   })
     #
     # @example Response structure
     #
-    #   resp.account_sources_list #=> Array
-    #   resp.account_sources_list[0].account #=> String
-    #   resp.account_sources_list[0].event_class #=> String, one of "ACCESS_ACTIVITY", "FILE_ACTIVITY", "KERNEL_ACTIVITY", "KERNEL_EXTENSION", "MEMORY_ACTIVITY", "MODULE_ACTIVITY", "PROCESS_ACTIVITY", "REGISTRY_KEY_ACTIVITY", "REGISTRY_VALUE_ACTIVITY", "RESOURCE_ACTIVITY", "SCHEDULED_JOB_ACTIVITY", "SECURITY_FINDING", "ACCOUNT_CHANGE", "AUTHENTICATION", "AUTHORIZATION", "ENTITY_MANAGEMENT_AUDIT", "DHCP_ACTIVITY", "NETWORK_ACTIVITY", "DNS_ACTIVITY", "FTP_ACTIVITY", "HTTP_ACTIVITY", "RDP_ACTIVITY", "SMB_ACTIVITY", "SSH_ACTIVITY", "CLOUD_API", "CONTAINER_LIFECYCLE", "DATABASE_LIFECYCLE", "CONFIG_STATE", "CLOUD_STORAGE", "INVENTORY_INFO", "RFB_ACTIVITY", "SMTP_ACTIVITY", "VIRTUAL_MACHINE_ACTIVITY"
-    #   resp.account_sources_list[0].logs_status #=> Array
-    #   resp.account_sources_list[0].logs_status[0].health_status #=> String, one of "ACTIVE", "DEACTIVATED", "PENDING"
-    #   resp.account_sources_list[0].logs_status[0].path_to_logs #=> String
-    #   resp.account_sources_list[0].source_type #=> String
+    #   resp.data_lake_arn #=> String
+    #   resp.data_lake_sources #=> Array
+    #   resp.data_lake_sources[0].account #=> String
+    #   resp.data_lake_sources[0].event_classes #=> Array
+    #   resp.data_lake_sources[0].event_classes[0] #=> String
+    #   resp.data_lake_sources[0].source_name #=> String
+    #   resp.data_lake_sources[0].source_statuses #=> Array
+    #   resp.data_lake_sources[0].source_statuses[0].resource #=> String
+    #   resp.data_lake_sources[0].source_statuses[0].status #=> String, one of "COLLECTING", "MISCONFIGURED", "NOT_COLLECTING"
     #   resp.next_token #=> String
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDatalakeStatus AWS API Documentation
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetDataLakeSources AWS API Documentation
     #
-    # @overload get_datalake_status(params = {})
+    # @overload get_data_lake_sources(params = {})
     # @param [Hash] params ({})
-    def get_datalake_status(params = {}, options = {})
-      req = build_request(:get_datalake_status, params)
+    def get_data_lake_sources(params = {}, options = {})
+      req = build_request(:get_data_lake_sources, params)
       req.send_request(options)
     end
     # Retrieves the subscription information for the specified subscription
     # ID. You can get information about a specific subscriber.
     #
-    # @option params [required, String] :id
+    # @option params [required, String] :subscriber_id
     #   A value created by Amazon Security Lake that uniquely identifies your
     #   `GetSubscriber` API request.
     #
@@ -1242,30 +1203,36 @@ module Aws::SecurityLake
     # @example Request syntax with placeholder values
     #
     #   resp = client.get_subscriber({
-    #     id: "String", # required
+    #     subscriber_id: "UUID", # required
     #   })
     #
     # @example Response structure
     #
     #   resp.subscriber.access_types #=> Array
     #   resp.subscriber.access_types[0] #=> String, one of "LAKEFORMATION", "S3"
-    #   resp.subscriber.account_id #=> String
     #   resp.subscriber.created_at #=> Time
-    #   resp.subscriber.external_id #=> String
     #   resp.subscriber.resource_share_arn #=> String
     #   resp.subscriber.resource_share_name #=> String
     #   resp.subscriber.role_arn #=> String
     #   resp.subscriber.s3_bucket_arn #=> String
-    #   resp.subscriber.sns_arn #=> String
-    #   resp.subscriber.source_types #=> Array
-    #   resp.subscriber.source_types[0].aws_source_type #=> String, one of "ROUTE53", "VPC_FLOW", "CLOUD_TRAIL", "SH_FINDINGS"
-    #   resp.subscriber.source_types[0].custom_source_type #=> String
+    #   resp.subscriber.sources #=> Array
+    #   resp.subscriber.sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA"
+    #   resp.subscriber.sources[0].aws_log_source.source_version #=> String
+    #   resp.subscriber.sources[0].custom_log_source.attributes.crawler_arn #=> String
+    #   resp.subscriber.sources[0].custom_log_source.attributes.database_arn #=> String
+    #   resp.subscriber.sources[0].custom_log_source.attributes.table_arn #=> String
+    #   resp.subscriber.sources[0].custom_log_source.provider.location #=> String
+    #   resp.subscriber.sources[0].custom_log_source.provider.role_arn #=> String
+    #   resp.subscriber.sources[0].custom_log_source.source_name #=> String
+    #   resp.subscriber.sources[0].custom_log_source.source_version #=> String
+    #   resp.subscriber.subscriber_arn #=> String
     #   resp.subscriber.subscriber_description #=> String
+    #   resp.subscriber.subscriber_endpoint #=> String
+    #   resp.subscriber.subscriber_id #=> String
+    #   resp.subscriber.subscriber_identity.external_id #=> String
+    #   resp.subscriber.subscriber_identity.principal #=> String
     #   resp.subscriber.subscriber_name #=> String
-    #   resp.subscriber.subscription_endpoint #=> String
-    #   resp.subscriber.subscription_id #=> String
-    #   resp.subscriber.subscription_protocol #=> String, one of "HTTPS", "SQS"
-    #   resp.subscriber.subscription_status #=> String, one of "ACTIVE", "DEACTIVATED", "PENDING", "READY"
+    #   resp.subscriber.subscriber_status #=> String, one of "ACTIVE", "DEACTIVATED", "PENDING", "READY"
     #   resp.subscriber.updated_at #=> Time
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/GetSubscriber AWS API Documentation
@@ -1280,7 +1247,7 @@ module Aws::SecurityLake
     # Lists the Amazon Security Lake exceptions that you can use to find the
     # source of problems and fix them.
     #
-    # @option params [Integer] :max_failures
+    # @option params [Integer] :max_results
     #   List the maximum number of failures in Security Lake.
     #
     # @option params [String] :next_token
@@ -1292,64 +1259,95 @@ module Aws::SecurityLake
     #   Each pagination token expires after 24 hours. Using an expired
     #   pagination token will return an HTTP 400 InvalidToken error.
     #
-    # @option params [Array<String>] :region_set
+    # @option params [Array<String>] :regions
     #   List the Amazon Web Services Regions from which exceptions are
     #   retrieved.
     #
-    # @return [Types::ListDatalakeExceptionsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    # @return [Types::ListDataLakeExceptionsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    #   * {Types::ListDatalakeExceptionsResponse#next_token #next_token} => String
-    #   * {Types::ListDatalakeExceptionsResponse#non_retryable_failures #non_retryable_failures} => Array&lt;Types::FailuresResponse&gt;
+    #   * {Types::ListDataLakeExceptionsResponse#exceptions #exceptions} => Array&lt;Types::DataLakeException&gt;
+    #   * {Types::ListDataLakeExceptionsResponse#next_token #next_token} => String
     #
     # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
     #
     # @example Request syntax with placeholder values
     #
-    #   resp = client.list_datalake_exceptions({
-    #     max_failures: 1,
-    #     next_token: "SafeString",
-    #     region_set: ["us-east-1"], # accepts us-east-1, us-west-2, eu-central-1, us-east-2, eu-west-1, ap-northeast-1, ap-southeast-2
+    #   resp = client.list_data_lake_exceptions({
+    #     max_results: 1,
+    #     next_token: "NextToken",
+    #     regions: ["Region"],
     #   })
     #
     # @example Response structure
     #
+    #   resp.exceptions #=> Array
+    #   resp.exceptions[0].exception #=> String
+    #   resp.exceptions[0].region #=> String
+    #   resp.exceptions[0].remediation #=> String
+    #   resp.exceptions[0].timestamp #=> Time
     #   resp.next_token #=> String
-    #   resp.non_retryable_failures #=> Array
-    #   resp.non_retryable_failures[0].failures #=> Array
-    #   resp.non_retryable_failures[0].failures[0].exception_message #=> String
-    #   resp.non_retryable_failures[0].failures[0].remediation #=> String
-    #   resp.non_retryable_failures[0].failures[0].timestamp #=> Time
-    #   resp.non_retryable_failures[0].region #=> String
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListDatalakeExceptions AWS API Documentation
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListDataLakeExceptions AWS API Documentation
     #
-    # @overload list_datalake_exceptions(params = {})
+    # @overload list_data_lake_exceptions(params = {})
     # @param [Hash] params ({})
-    def list_datalake_exceptions(params = {}, options = {})
-      req = build_request(:list_datalake_exceptions, params)
+    def list_data_lake_exceptions(params = {}, options = {})
+      req = build_request(:list_data_lake_exceptions, params)
       req.send_request(options)
     end
-    # Retrieves the log sources in the current Amazon Web Services Region.
+    # Retrieves the Amazon Security Lake configuration object for the
+    # specified Amazon Web Services account ID. You can use the
+    # `ListDataLakes` API to know whether Security Lake is enabled for any
+    # region.
+    #
+    # @option params [Array<String>] :regions
+    #   The list of regions where Security Lake is enabled.
     #
-    # @option params [Array<String>] :input_order
-    #   Lists the log sources in input order, namely Region, source type, and
-    #   member account.
+    # @return [Types::ListDataLakesResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    # @option params [Hash<String,Hash>] :list_all_dimensions
-    #   List the view of log sources for enabled Amazon Security Lake accounts
-    #   for specific Amazon Web Services sources from specific accounts and
-    #   specific Regions.
+    #   * {Types::ListDataLakesResponse#data_lakes #data_lakes} => Array&lt;Types::DataLakeResource&gt;
     #
-    # @option params [Array<String>] :list_single_dimension
-    #   List the view of log sources for enabled Security Lake accounts for
-    #   all Amazon Web Services sources from specific accounts or specific
-    #   Regions.
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_data_lakes({
+    #     regions: ["Region"],
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.data_lakes #=> Array
+    #   resp.data_lakes[0].create_status #=> String, one of "INITIALIZED", "PENDING", "COMPLETED", "FAILED"
+    #   resp.data_lakes[0].data_lake_arn #=> String
+    #   resp.data_lakes[0].encryption_configuration.kms_key_id #=> String
+    #   resp.data_lakes[0].lifecycle_configuration.expiration.days #=> Integer
+    #   resp.data_lakes[0].lifecycle_configuration.transitions #=> Array
+    #   resp.data_lakes[0].lifecycle_configuration.transitions[0].days #=> Integer
+    #   resp.data_lakes[0].lifecycle_configuration.transitions[0].storage_class #=> String
+    #   resp.data_lakes[0].region #=> String
+    #   resp.data_lakes[0].replication_configuration.regions #=> Array
+    #   resp.data_lakes[0].replication_configuration.regions[0] #=> String
+    #   resp.data_lakes[0].replication_configuration.role_arn #=> String
+    #   resp.data_lakes[0].s3_bucket_arn #=> String
+    #   resp.data_lakes[0].update_status.exception.code #=> String
+    #   resp.data_lakes[0].update_status.exception.reason #=> String
+    #   resp.data_lakes[0].update_status.request_id #=> String
+    #   resp.data_lakes[0].update_status.status #=> String, one of "INITIALIZED", "PENDING", "COMPLETED", "FAILED"
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListDataLakes AWS API Documentation
+    #
+    # @overload list_data_lakes(params = {})
+    # @param [Hash] params ({})
+    def list_data_lakes(params = {}, options = {})
+      req = build_request(:list_data_lakes, params)
+      req.send_request(options)
+    end
+    # Retrieves the log sources in the current Amazon Web Services Region.
     #
-    # @option params [Hash<String,Array>] :list_two_dimensions
-    #   Lists the view of log sources for enabled Security Lake accounts for
-    #   specific Amazon Web Services sources from specific accounts or
-    #   specific Regions.
+    # @option params [Array<String>] :accounts
+    #   The list of Amazon Web Services accounts for which log sources are
+    #   displayed.
     #
     # @option params [Integer] :max_results
     #   The maximum number of accounts for which the log sources are
@@ -1359,38 +1357,65 @@ module Aws::SecurityLake
     #   If nextToken is returned, there are more results available. You can
     #   repeat the call using the returned token to retrieve the next page.
     #
+    # @option params [Array<String>] :regions
+    #   The list of regions for which log sources are displayed.
+    #
+    # @option params [Array<Types::LogSourceResource>] :sources
+    #   The list of sources for which log sources are displayed.
+    #
     # @return [Types::ListLogSourcesResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListLogSourcesResponse#next_token #next_token} => String
-    #   * {Types::ListLogSourcesResponse#region_source_types_accounts_list #region_source_types_accounts_list} => Array&lt;Hash&lt;String,Hash&lt;String,Array&lt;String&gt;&gt;&gt;&gt;
+    #   * {Types::ListLogSourcesResponse#sources #sources} => Array&lt;Types::LogSource&gt;
     #
     # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_log_sources({
-    #     input_order: ["REGION"], # accepts REGION, SOURCE_TYPE, MEMBER
-    #     list_all_dimensions: {
-    #       "String" => {
-    #         "String" => ["String"],
-    #       },
-    #     },
-    #     list_single_dimension: ["SafeString"],
-    #     list_two_dimensions: {
-    #       "String" => ["String"],
-    #     },
+    #     accounts: ["AwsAccountId"],
     #     max_results: 1,
-    #     next_token: "SafeString",
+    #     next_token: "NextToken",
+    #     regions: ["Region"],
+    #     sources: [
+    #       {
+    #         aws_log_source: {
+    #           source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA
+    #           source_version: "AwsLogSourceVersion",
+    #         },
+    #         custom_log_source: {
+    #           attributes: {
+    #             crawler_arn: "AmazonResourceName",
+    #             database_arn: "AmazonResourceName",
+    #             table_arn: "AmazonResourceName",
+    #           },
+    #           provider: {
+    #             location: "S3URI",
+    #             role_arn: "RoleArn",
+    #           },
+    #           source_name: "CustomLogSourceName",
+    #           source_version: "CustomLogSourceVersion",
+    #         },
+    #       },
+    #     ],
     #   })
     #
     # @example Response structure
     #
     #   resp.next_token #=> String
-    #   resp.region_source_types_accounts_list #=> Array
-    #   resp.region_source_types_accounts_list[0] #=> Hash
-    #   resp.region_source_types_accounts_list[0]["String"] #=> Hash
-    #   resp.region_source_types_accounts_list[0]["String"]["String"] #=> Array
-    #   resp.region_source_types_accounts_list[0]["String"]["String"][0] #=> String
+    #   resp.sources #=> Array
+    #   resp.sources[0].account #=> String
+    #   resp.sources[0].region #=> String
+    #   resp.sources[0].sources #=> Array
+    #   resp.sources[0].sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA"
+    #   resp.sources[0].sources[0].aws_log_source.source_version #=> String
+    #   resp.sources[0].sources[0].custom_log_source.attributes.crawler_arn #=> String
+    #   resp.sources[0].sources[0].custom_log_source.attributes.database_arn #=> String
+    #   resp.sources[0].sources[0].custom_log_source.attributes.table_arn #=> String
+    #   resp.sources[0].sources[0].custom_log_source.provider.location #=> String
+    #   resp.sources[0].sources[0].custom_log_source.provider.role_arn #=> String
+    #   resp.sources[0].sources[0].custom_log_source.source_name #=> String
+    #   resp.sources[0].sources[0].custom_log_source.source_version #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListLogSources AWS API Documentation
     #
@@ -1424,7 +1449,7 @@ module Aws::SecurityLake
     #
     #   resp = client.list_subscribers({
     #     max_results: 1,
-    #     next_token: "String",
+    #     next_token: "NextToken",
     #   })
     #
     # @example Response structure
@@ -1433,23 +1458,29 @@ module Aws::SecurityLake
     #   resp.subscribers #=> Array
     #   resp.subscribers[0].access_types #=> Array
     #   resp.subscribers[0].access_types[0] #=> String, one of "LAKEFORMATION", "S3"
-    #   resp.subscribers[0].account_id #=> String
     #   resp.subscribers[0].created_at #=> Time
-    #   resp.subscribers[0].external_id #=> String
     #   resp.subscribers[0].resource_share_arn #=> String
     #   resp.subscribers[0].resource_share_name #=> String
     #   resp.subscribers[0].role_arn #=> String
     #   resp.subscribers[0].s3_bucket_arn #=> String
-    #   resp.subscribers[0].sns_arn #=> String
-    #   resp.subscribers[0].source_types #=> Array
-    #   resp.subscribers[0].source_types[0].aws_source_type #=> String, one of "ROUTE53", "VPC_FLOW", "CLOUD_TRAIL", "SH_FINDINGS"
-    #   resp.subscribers[0].source_types[0].custom_source_type #=> String
+    #   resp.subscribers[0].sources #=> Array
+    #   resp.subscribers[0].sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA"
+    #   resp.subscribers[0].sources[0].aws_log_source.source_version #=> String
+    #   resp.subscribers[0].sources[0].custom_log_source.attributes.crawler_arn #=> String
+    #   resp.subscribers[0].sources[0].custom_log_source.attributes.database_arn #=> String
+    #   resp.subscribers[0].sources[0].custom_log_source.attributes.table_arn #=> String
+    #   resp.subscribers[0].sources[0].custom_log_source.provider.location #=> String
+    #   resp.subscribers[0].sources[0].custom_log_source.provider.role_arn #=> String
+    #   resp.subscribers[0].sources[0].custom_log_source.source_name #=> String
+    #   resp.subscribers[0].sources[0].custom_log_source.source_version #=> String
+    #   resp.subscribers[0].subscriber_arn #=> String
     #   resp.subscribers[0].subscriber_description #=> String
+    #   resp.subscribers[0].subscriber_endpoint #=> String
+    #   resp.subscribers[0].subscriber_id #=> String
+    #   resp.subscribers[0].subscriber_identity.external_id #=> String
+    #   resp.subscribers[0].subscriber_identity.principal #=> String
     #   resp.subscribers[0].subscriber_name #=> String
-    #   resp.subscribers[0].subscription_endpoint #=> String
-    #   resp.subscribers[0].subscription_id #=> String
-    #   resp.subscribers[0].subscription_protocol #=> String, one of "HTTPS", "SQS"
-    #   resp.subscribers[0].subscription_status #=> String, one of "ACTIVE", "DEACTIVATED", "PENDING", "READY"
+    #   resp.subscribers[0].subscriber_status #=> String, one of "ACTIVE", "DEACTIVATED", "PENDING", "READY"
     #   resp.subscribers[0].updated_at #=> Time
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListSubscribers AWS API Documentation
@@ -1461,74 +1492,107 @@ module Aws::SecurityLake
       req.send_request(options)
     end
-    # Specifies where to store your security data and for how long. You can
-    # add a rollup Region to consolidate data from multiple Amazon Web
-    # Services Regions.
+    # Designates the Amazon Security Lake delegated administrator account
+    # for the organization. This API can only be called by the organization
+    # management account. The organization management account cannot be the
+    # delegated administrator account.
     #
-    # @option params [required, Hash<String,Types::LakeConfigurationRequest>] :configurations
-    #   Specify the Region or Regions that will contribute data to the rollup
-    #   region.
+    # @option params [required, String] :account_id
+    #   The Amazon Web Services account ID of the Security Lake delegated
+    #   administrator.
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
     #
-    #   resp = client.update_datalake({
-    #     configurations: { # required
-    #       "us-east-1" => {
-    #         encryption_key: "String",
-    #         replication_destination_regions: ["us-east-1"], # accepts us-east-1, us-west-2, eu-central-1, us-east-2, eu-west-1, ap-northeast-1, ap-southeast-2
-    #         replication_role_arn: "RoleArn",
-    #         retention_settings: [
-    #           {
-    #             retention_period: 1,
-    #             storage_class: "STANDARD_IA", # accepts STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER_IR, GLACIER, DEEP_ARCHIVE, EXPIRE
-    #           },
-    #         ],
-    #         tags_map: {
-    #           "String" => "String",
-    #         },
-    #       },
-    #     },
+    #   resp = client.register_data_lake_delegated_administrator({
+    #     account_id: "SafeString", # required
     #   })
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateDatalake AWS API Documentation
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/RegisterDataLakeDelegatedAdministrator AWS API Documentation
     #
-    # @overload update_datalake(params = {})
+    # @overload register_data_lake_delegated_administrator(params = {})
     # @param [Hash] params ({})
-    def update_datalake(params = {}, options = {})
-      req = build_request(:update_datalake, params)
+    def register_data_lake_delegated_administrator(params = {}, options = {})
+      req = build_request(:register_data_lake_delegated_administrator, params)
       req.send_request(options)
     end
-    # Update the expiration period for the exception message to your
-    # preferred time, and control the time-to-live (TTL) for the exception
-    # message to remain. Exceptions are stored by default for 2 weeks from
-    # when a record was created in Amazon Security Lake.
+    # Specifies where to store your security data and for how long. You can
+    # add a rollup Region to consolidate data from multiple Amazon Web
+    # Services Regions.
     #
-    # @option params [required, Integer] :exception_message_expiry
-    #   The time-to-live (TTL) for the exception message to remain.
+    # @option params [required, Array<Types::DataLakeConfiguration>] :configurations
+    #   Specify the Region or Regions that will contribute data to the rollup
+    #   region.
     #
-    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    # @return [Types::UpdateDataLakeResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::UpdateDataLakeResponse#data_lakes #data_lakes} => Array&lt;Types::DataLakeResource&gt;
     #
     # @example Request syntax with placeholder values
     #
-    #   resp = client.update_datalake_exceptions_expiry({
-    #     exception_message_expiry: 1, # required
+    #   resp = client.update_data_lake({
+    #     configurations: [ # required
+    #       {
+    #         encryption_configuration: {
+    #           kms_key_id: "String",
+    #         },
+    #         lifecycle_configuration: {
+    #           expiration: {
+    #             days: 1,
+    #           },
+    #           transitions: [
+    #             {
+    #               days: 1,
+    #               storage_class: "DataLakeStorageClass",
+    #             },
+    #           ],
+    #         },
+    #         region: "Region", # required
+    #         replication_configuration: {
+    #           regions: ["Region"],
+    #           role_arn: "RoleArn",
+    #         },
+    #       },
+    #     ],
     #   })
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateDatalakeExceptionsExpiry AWS API Documentation
+    # @example Response structure
     #
-    # @overload update_datalake_exceptions_expiry(params = {})
+    #   resp.data_lakes #=> Array
+    #   resp.data_lakes[0].create_status #=> String, one of "INITIALIZED", "PENDING", "COMPLETED", "FAILED"
+    #   resp.data_lakes[0].data_lake_arn #=> String
+    #   resp.data_lakes[0].encryption_configuration.kms_key_id #=> String
+    #   resp.data_lakes[0].lifecycle_configuration.expiration.days #=> Integer
+    #   resp.data_lakes[0].lifecycle_configuration.transitions #=> Array
+    #   resp.data_lakes[0].lifecycle_configuration.transitions[0].days #=> Integer
+    #   resp.data_lakes[0].lifecycle_configuration.transitions[0].storage_class #=> String
+    #   resp.data_lakes[0].region #=> String
+    #   resp.data_lakes[0].replication_configuration.regions #=> Array
+    #   resp.data_lakes[0].replication_configuration.regions[0] #=> String
+    #   resp.data_lakes[0].replication_configuration.role_arn #=> String
+    #   resp.data_lakes[0].s3_bucket_arn #=> String
+    #   resp.data_lakes[0].update_status.exception.code #=> String
+    #   resp.data_lakes[0].update_status.exception.reason #=> String
+    #   resp.data_lakes[0].update_status.request_id #=> String
+    #   resp.data_lakes[0].update_status.status #=> String, one of "INITIALIZED", "PENDING", "COMPLETED", "FAILED"
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateDataLake AWS API Documentation
+    #
+    # @overload update_data_lake(params = {})
     # @param [Hash] params ({})
-    def update_datalake_exceptions_expiry(params = {}, options = {})
-      req = build_request(:update_datalake_exceptions_expiry, params)
+    def update_data_lake(params = {}, options = {})
+      req = build_request(:update_data_lake, params)
       req.send_request(options)
     end
     # Updates the specified notification subscription in Amazon Security
     # Lake for the organization you specify.
     #
+    # @option params [Integer] :exception_time_to_live
+    #   The time-to-live (TTL) for the exception message to remain.
+    #
     # @option params [required, String] :notification_endpoint
     #   The account that is subscribed to receive exception notifications.
     #
@@ -1539,17 +1603,18 @@ module Aws::SecurityLake
     #
     # @example Request syntax with placeholder values
     #
-    #   resp = client.update_datalake_exceptions_subscription({
+    #   resp = client.update_data_lake_exception_subscription({
+    #     exception_time_to_live: 1,
     #     notification_endpoint: "SafeString", # required
-    #     subscription_protocol: "HTTP", # required, accepts HTTP, HTTPS, EMAIL, EMAIL_JSON, SMS, SQS, LAMBDA, APP, FIREHOSE
+    #     subscription_protocol: "SubscriptionProtocol", # required
     #   })
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateDatalakeExceptionsSubscription AWS API Documentation
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateDataLakeExceptionSubscription AWS API Documentation
     #
-    # @overload update_datalake_exceptions_subscription(params = {})
+    # @overload update_data_lake_exception_subscription(params = {})
     # @param [Hash] params ({})
-    def update_datalake_exceptions_subscription(params = {}, options = {})
-      req = build_request(:update_datalake_exceptions_subscription, params)
+    def update_data_lake_exception_subscription(params = {}, options = {})
+      req = build_request(:update_data_lake_exception_subscription, params)
       req.send_request(options)
     end
@@ -1557,14 +1622,7 @@ module Aws::SecurityLake
     # account ID. You can update a subscriber by changing the sources that
     # the subscriber consumes data from.
     #
-    # @option params [String] :external_id
-    #   The external ID of the Security Lake account.
-    #
-    # @option params [required, String] :id
-    #   A value created by Security Lake that uniquely identifies your
-    #   subscription.
-    #
-    # @option params [required, Array<Types::SourceType>] :source_types
+    # @option params [Array<Types::LogSourceResource>] :sources
     #   The supported Amazon Web Services from which logs and events are
     #   collected. For the list of supported Amazon Web Services, see the
     #   [Amazon Security Lake User Guide][1].
@@ -1576,6 +1634,13 @@ module Aws::SecurityLake
     # @option params [String] :subscriber_description
     #   The description of the Security Lake account subscriber.
     #
+    # @option params [required, String] :subscriber_id
+    #   A value created by Security Lake that uniquely identifies your
+    #   subscription.
+    #
+    # @option params [Types::AwsIdentity] :subscriber_identity
+    #   The AWS identity used to access your data.
+    #
     # @option params [String] :subscriber_name
     #   The name of the Security Lake account subscriber.
     #
@@ -1586,15 +1651,33 @@ module Aws::SecurityLake
     # @example Request syntax with placeholder values
     #
     #   resp = client.update_subscriber({
-    #     external_id: "SafeString",
-    #     id: "String", # required
-    #     source_types: [ # required
+    #     sources: [
     #       {
-    #         aws_source_type: "ROUTE53", # accepts ROUTE53, VPC_FLOW, CLOUD_TRAIL, SH_FINDINGS
-    #         custom_source_type: "CustomSourceType",
+    #         aws_log_source: {
+    #           source_name: "ROUTE53", # accepts ROUTE53, VPC_FLOW, SH_FINDINGS, CLOUD_TRAIL_MGMT, LAMBDA_EXECUTION, S3_DATA
+    #           source_version: "AwsLogSourceVersion",
+    #         },
+    #         custom_log_source: {
+    #           attributes: {
+    #             crawler_arn: "AmazonResourceName",
+    #             database_arn: "AmazonResourceName",
+    #             table_arn: "AmazonResourceName",
+    #           },
+    #           provider: {
+    #             location: "S3URI",
+    #             role_arn: "RoleArn",
+    #           },
+    #           source_name: "CustomLogSourceName",
+    #           source_version: "CustomLogSourceVersion",
+    #         },
     #       },
     #     ],
     #     subscriber_description: "DescriptionString",
+    #     subscriber_id: "UUID", # required
+    #     subscriber_identity: {
+    #       external_id: "ExternalId", # required
+    #       principal: "AwsPrincipal", # required
+    #     },
     #     subscriber_name: "UpdateSubscriberRequestSubscriberNameString",
     #   })
     #
@@ -1602,23 +1685,29 @@ module Aws::SecurityLake
     #
     #   resp.subscriber.access_types #=> Array
     #   resp.subscriber.access_types[0] #=> String, one of "LAKEFORMATION", "S3"
-    #   resp.subscriber.account_id #=> String
     #   resp.subscriber.created_at #=> Time
-    #   resp.subscriber.external_id #=> String
     #   resp.subscriber.resource_share_arn #=> String
     #   resp.subscriber.resource_share_name #=> String
     #   resp.subscriber.role_arn #=> String
     #   resp.subscriber.s3_bucket_arn #=> String
-    #   resp.subscriber.sns_arn #=> String
-    #   resp.subscriber.source_types #=> Array
-    #   resp.subscriber.source_types[0].aws_source_type #=> String, one of "ROUTE53", "VPC_FLOW", "CLOUD_TRAIL", "SH_FINDINGS"
-    #   resp.subscriber.source_types[0].custom_source_type #=> String
+    #   resp.subscriber.sources #=> Array
+    #   resp.subscriber.sources[0].aws_log_source.source_name #=> String, one of "ROUTE53", "VPC_FLOW", "SH_FINDINGS", "CLOUD_TRAIL_MGMT", "LAMBDA_EXECUTION", "S3_DATA"
+    #   resp.subscriber.sources[0].aws_log_source.source_version #=> String
+    #   resp.subscriber.sources[0].custom_log_source.attributes.crawler_arn #=> String
+    #   resp.subscriber.sources[0].custom_log_source.attributes.database_arn #=> String
+    #   resp.subscriber.sources[0].custom_log_source.attributes.table_arn #=> String
+    #   resp.subscriber.sources[0].custom_log_source.provider.location #=> String
+    #   resp.subscriber.sources[0].custom_log_source.provider.role_arn #=> String
+    #   resp.subscriber.sources[0].custom_log_source.source_name #=> String
+    #   resp.subscriber.sources[0].custom_log_source.source_version #=> String
+    #   resp.subscriber.subscriber_arn #=> String
     #   resp.subscriber.subscriber_description #=> String
+    #   resp.subscriber.subscriber_endpoint #=> String
+    #   resp.subscriber.subscriber_id #=> String
+    #   resp.subscriber.subscriber_identity.external_id #=> String
+    #   resp.subscriber.subscriber_identity.principal #=> String
     #   resp.subscriber.subscriber_name #=> String
-    #   resp.subscriber.subscription_endpoint #=> String
-    #   resp.subscriber.subscription_id #=> String
-    #   resp.subscriber.subscription_protocol #=> String, one of "HTTPS", "SQS"
-    #   resp.subscriber.subscription_status #=> String, one of "ACTIVE", "DEACTIVATED", "PENDING", "READY"
+    #   resp.subscriber.subscriber_status #=> String, one of "ACTIVE", "DEACTIVATED", "PENDING", "READY"
     #   resp.subscriber.updated_at #=> Time
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateSubscriber AWS API Documentation
@@ -1634,63 +1723,44 @@ module Aws::SecurityLake
     # HTTPs endpoint) or switches the notification subscription endpoint for
     # a subscriber.
     #
-    # @option params [Boolean] :create_sqs
-    #   Create a new subscription notification for the specified subscription
-    #   ID in Amazon Security Lake.
-    #
-    # @option params [String] :https_api_key_name
-    #   The key name for the subscription notification.
-    #
-    # @option params [String] :https_api_key_value
-    #   The key value for the subscription notification.
+    # @option params [required, Types::NotificationConfiguration] :configuration
+    #   The configuration for subscriber notification.
     #
-    # @option params [String] :https_method
-    #   The HTTPS method used for the subscription notification.
-    #
-    # @option params [String] :role_arn
-    #   The Amazon Resource Name (ARN) specifying the role of the subscriber.
-    #   For more information about ARNs and how to use them in policies, see,
-    #   see the [Managing data access][1] and [Amazon Web Services Managed
-    #   Policies][2]in the Amazon Security Lake User Guide.
-    #
-    #
-    #
-    #   [1]: https://docs.aws.amazon.com//security-lake/latest/userguide/subscriber-data-access.html
-    #   [2]: https://docs.aws.amazon.com/security-lake/latest/userguide/security-iam-awsmanpol.html
-    #
-    # @option params [String] :subscription_endpoint
-    #   The subscription endpoint in Security Lake.
-    #
-    # @option params [required, String] :subscription_id
+    # @option params [required, String] :subscriber_id
     #   The subscription ID for which the subscription notification is
     #   specified.
     #
-    # @return [Types::UpdateSubscriptionNotificationConfigurationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    # @return [Types::UpdateSubscriberNotificationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    #   * {Types::UpdateSubscriptionNotificationConfigurationResponse#queue_arn #queue_arn} => String
+    #   * {Types::UpdateSubscriberNotificationResponse#subscriber_endpoint #subscriber_endpoint} => String
     #
     # @example Request syntax with placeholder values
     #
-    #   resp = client.update_subscription_notification_configuration({
-    #     create_sqs: false,
-    #     https_api_key_name: "String",
-    #     https_api_key_value: "String",
-    #     https_method: "POST", # accepts POST, PUT
-    #     role_arn: "RoleArn",
-    #     subscription_endpoint: "UpdateSubscriptionNotificationConfigurationRequestSubscriptionEndpointString",
-    #     subscription_id: "UUID", # required
+    #   resp = client.update_subscriber_notification({
+    #     configuration: { # required
+    #       https_notification_configuration: {
+    #         authorization_api_key_name: "String",
+    #         authorization_api_key_value: "String",
+    #         endpoint: "HttpsNotificationConfigurationEndpointString", # required
+    #         http_method: "POST", # accepts POST, PUT
+    #         target_role_arn: "RoleArn", # required
+    #       },
+    #       sqs_notification_configuration: {
+    #       },
+    #     },
+    #     subscriber_id: "UUID", # required
     #   })
     #
     # @example Response structure
     #
-    #   resp.queue_arn #=> String
+    #   resp.subscriber_endpoint #=> String
     #
-    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateSubscriptionNotificationConfiguration AWS API Documentation
+    # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UpdateSubscriberNotification AWS API Documentation
     #
-    # @overload update_subscription_notification_configuration(params = {})
+    # @overload update_subscriber_notification(params = {})
     # @param [Hash] params ({})
-    def update_subscription_notification_configuration(params = {}, options = {})
-      req = build_request(:update_subscription_notification_configuration, params)
+    def update_subscriber_notification(params = {}, options = {})
+      req = build_request(:update_subscriber_notification, params)
       req.send_request(options)
     end
@@ -1707,7 +1777,7 @@ module Aws::SecurityLake
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-securitylake'
-      context[:gem_version] = '1.3.0'
+      context[:gem_version] = '1.5.0'
       Seahorse::Client::Request.new(handlers, context)
     end