aws-sdk-securitylake 1.9.0 → 1.10.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: a3a1800fea687363deae5dc298f18f159bbf039e2c4e71ef0335d6bcfc1f605b
4
- data.tar.gz: 215b8db63f7746a0f442e4ab7b7f3a0cf2dde007f12174d231c7cea5b2f6173d
3
+ metadata.gz: 6acbd6e10a606e51a5d01d692f269973ba872eda0b11b8ff6459d26449bd0aea
4
+ data.tar.gz: 6e10c319e483a4db0294f0f229597081bbc6f9b236ed8c0fe49145cf50a417fe
5
5
  SHA512:
6
- metadata.gz: baf2b638b94903590d660b3fc8e6bf6b845fcf284394b7d96a2973c3d260a82b6da7da79dd57e53b9a9ef8d90df019ae87870e097718b42a12351b95afd79518
7
- data.tar.gz: 193fdd8396047e1da3add86856d876d94dc176fa864210ce5a513df26e9cd81c5e208c36ff8b048dde37289d41f512881ab8e2fc46c2b5120872f26cbe6b1a93
6
+ metadata.gz: 61e37820a32db1cf1745dd9134061c4dfca745307c7e96f3e2dd3411192cbc5e7e2613f9576c3e6b9d3910fb033372f8c3aa493c55b31eb50f52d63005a11b9a
7
+ data.tar.gz: d85ff94e2deed4df67c0d79c5dcd9bb821cedad7011b7b1f4e6fb9187032462b015055aa58e6b8f43ded0916a9461f0cd5f284ddf38ad179ec5b23f71ff0e497
data/CHANGELOG.md CHANGED
@@ -1,6 +1,11 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.10.0 (2023-07-20)
5
+ ------------------
6
+
7
+ * Feature - Adding support for Tags on Create and Resource Tagging API.
8
+
4
9
  1.9.0 (2023-07-11)
5
10
  ------------------
6
11
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.9.0
1
+ 1.10.0
@@ -394,7 +394,7 @@ module Aws::SecurityLake
394
394
  # can choose any source type in any Region for either accounts that are
395
395
  # part of a trusted organization or standalone accounts. Once you add an
396
396
  # Amazon Web Service as a source, Security Lake starts collecting logs
397
- # and events from it,
397
+ # and events from it.
398
398
  #
399
399
  # You can use this API only to enable natively supported Amazon Web
400
400
  # Services as a source. Use `CreateCustomLogSource` to enable data
@@ -562,14 +562,13 @@ module Aws::SecurityLake
562
562
  # Initializes an Amazon Security Lake instance with the provided (or
563
563
  # default) configuration. You can enable Security Lake in Amazon Web
564
564
  # Services Regions with customized settings before enabling log
565
- # collection in Regions. By default, the `CreateDataLake` Security Lake
566
- # in all Regions. To specify particular Regions, configure these Regions
567
- # using the `configurations` parameter. If you have already enabled
568
- # Security Lake in a Region when you call this command, the command will
569
- # update the Region if you provide new configuration parameters. If you
570
- # have not already enabled Security Lake in the Region when you call
571
- # this API, it will set up the data lake in the Region with the
572
- # specified configurations.
565
+ # collection in Regions. To specify particular Regions, configure these
566
+ # Regions using the `configurations` parameter. If you have already
567
+ # enabled Security Lake in a Region when you call this command, the
568
+ # command will update the Region if you provide new configuration
569
+ # parameters. If you have not already enabled Security Lake in the
570
+ # Region when you call this API, it will set up the data lake in the
571
+ # Region with the specified configurations.
573
572
  #
574
573
  # When you enable Security Lake, it starts ingesting security data after
575
574
  # the `CreateAwsLogSource` call. This includes ingesting security data
@@ -592,6 +591,11 @@ module Aws::SecurityLake
592
591
  # table. This table contains partitions generated by the ingestion and
593
592
  # normalization of Amazon Web Services log sources and custom sources.
594
593
  #
594
+ # @option params [Array<Types::Tag>] :tags
595
+ # An array of objects, one for each tag to associate with the data lake
596
+ # configuration. For each tag, you must specify both a tag key and a tag
597
+ # value. A tag value cannot be null, but it can be an empty string.
598
+ #
595
599
  # @return [Types::CreateDataLakeResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
596
600
  #
597
601
  # * {Types::CreateDataLakeResponse#data_lakes #data_lakes} => Array&lt;Types::DataLakeResource&gt;
@@ -623,6 +627,12 @@ module Aws::SecurityLake
623
627
  # },
624
628
  # ],
625
629
  # meta_store_manager_role_arn: "RoleArn", # required
630
+ # tags: [
631
+ # {
632
+ # key: "TagKey", # required
633
+ # value: "TagValue", # required
634
+ # },
635
+ # ],
626
636
  # })
627
637
  #
628
638
  # @example Response structure
@@ -742,6 +752,11 @@ module Aws::SecurityLake
742
752
  # @option params [required, String] :subscriber_name
743
753
  # The name of your Security Lake subscriber account.
744
754
  #
755
+ # @option params [Array<Types::Tag>] :tags
756
+ # An array of objects, one for each tag to associate with the
757
+ # subscriber. For each tag, you must specify both a tag key and a tag
758
+ # value. A tag value cannot be null, but it can be an empty string.
759
+ #
745
760
  # @return [Types::CreateSubscriberResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
746
761
  #
747
762
  # * {Types::CreateSubscriberResponse#subscriber #subscriber} => Types::SubscriberResource
@@ -777,6 +792,12 @@ module Aws::SecurityLake
777
792
  # principal: "AwsPrincipal", # required
778
793
  # },
779
794
  # subscriber_name: "CreateSubscriberRequestSubscriberNameString", # required
795
+ # tags: [
796
+ # {
797
+ # key: "TagKey", # required
798
+ # value: "TagValue", # required
799
+ # },
800
+ # ],
780
801
  # })
781
802
  #
782
803
  # @example Response structure
@@ -988,16 +1009,16 @@ module Aws::SecurityLake
988
1009
  req.send_request(options)
989
1010
  end
990
1011
 
991
- # Removes automatic the enablement of configuration settings for new
992
- # member accounts (but retains the settings for the delegated
993
- # administrator) from Amazon Security Lake. You must run this API using
994
- # the credentials of the delegated administrator. When you run this API,
995
- # new member accounts that are added after the organization enables
996
- # Security Lake won't contribute to the data lake.
1012
+ # Turns off automatic enablement of Amazon Security Lake for member
1013
+ # accounts that are added to an organization in Organizations. Only the
1014
+ # delegated Security Lake administrator for an organization can perform
1015
+ # this operation. If the delegated Security Lake administrator performs
1016
+ # this operation, new member accounts won't automatically contribute
1017
+ # data to the data lake.
997
1018
  #
998
1019
  # @option params [required, Array<Types::DataLakeAutoEnableNewAccountConfiguration>] :auto_enable_new_account
999
- # Removes the automatic enablement of configuration settings for new
1000
- # member accounts in Security Lake.
1020
+ # Turns off automatic enablement of Security Lake for member accounts
1021
+ # that are added to an organization.
1001
1022
  #
1002
1023
  # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
1003
1024
  #
@@ -1312,9 +1333,8 @@ module Aws::SecurityLake
1312
1333
  end
1313
1334
 
1314
1335
  # Retrieves the Amazon Security Lake configuration object for the
1315
- # specified Amazon Web Services account ID. You can use the
1316
- # `ListDataLakes` API to know whether Security Lake is enabled for any
1317
- # region.
1336
+ # specified Amazon Web Services Regions. You can use this operation to
1337
+ # determine whether Security Lake is enabled for a Region.
1318
1338
  #
1319
1339
  # @option params [Array<String>] :regions
1320
1340
  # The list of regions where Security Lake is enabled.
@@ -1507,6 +1527,40 @@ module Aws::SecurityLake
1507
1527
  req.send_request(options)
1508
1528
  end
1509
1529
 
1530
+ # Retrieves the tags (keys and values) that are associated with an
1531
+ # Amazon Security Lake resource: a subscriber, or the data lake
1532
+ # configuration for your Amazon Web Services account in a particular
1533
+ # Amazon Web Services Region.
1534
+ #
1535
+ # @option params [required, String] :resource_arn
1536
+ # The Amazon Resource Name (ARN) of the Amazon Security Lake resource to
1537
+ # retrieve the tags for.
1538
+ #
1539
+ # @return [Types::ListTagsForResourceResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1540
+ #
1541
+ # * {Types::ListTagsForResourceResponse#tags #tags} => Array&lt;Types::Tag&gt;
1542
+ #
1543
+ # @example Request syntax with placeholder values
1544
+ #
1545
+ # resp = client.list_tags_for_resource({
1546
+ # resource_arn: "AmazonResourceName", # required
1547
+ # })
1548
+ #
1549
+ # @example Response structure
1550
+ #
1551
+ # resp.tags #=> Array
1552
+ # resp.tags[0].key #=> String
1553
+ # resp.tags[0].value #=> String
1554
+ #
1555
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListTagsForResource AWS API Documentation
1556
+ #
1557
+ # @overload list_tags_for_resource(params = {})
1558
+ # @param [Hash] params ({})
1559
+ def list_tags_for_resource(params = {}, options = {})
1560
+ req = build_request(:list_tags_for_resource, params)
1561
+ req.send_request(options)
1562
+ end
1563
+
1510
1564
  # Designates the Amazon Security Lake delegated administrator account
1511
1565
  # for the organization. This API can only be called by the organization
1512
1566
  # management account. The organization management account cannot be the
@@ -1533,6 +1587,88 @@ module Aws::SecurityLake
1533
1587
  req.send_request(options)
1534
1588
  end
1535
1589
 
1590
+ # Adds or updates one or more tags that are associated with an Amazon
1591
+ # Security Lake resource: a subscriber, or the data lake configuration
1592
+ # for your Amazon Web Services account in a particular Amazon Web
1593
+ # Services Region. A *tag* is a label that you can define and associate
1594
+ # with Amazon Web Services resources. Each tag consists of a required
1595
+ # *tag key* and an associated *tag value*. A *tag key* is a general
1596
+ # label that acts as a category for a more specific tag value. A *tag
1597
+ # value* acts as a descriptor for a tag key. Tags can help you identify,
1598
+ # categorize, and manage resources in different ways, such as by owner,
1599
+ # environment, or other criteria. For more information, see [Tagging
1600
+ # Amazon Security Lake resources][1] in the *Amazon Security Lake User
1601
+ # Guide*.
1602
+ #
1603
+ #
1604
+ #
1605
+ # [1]: https://docs.aws.amazon.com/security-lake/latest/userguide/tagging-resources.html
1606
+ #
1607
+ # @option params [required, String] :resource_arn
1608
+ # The Amazon Resource Name (ARN) of the Amazon Security Lake resource to
1609
+ # add or update the tags for.
1610
+ #
1611
+ # @option params [required, Array<Types::Tag>] :tags
1612
+ # An array of objects, one for each tag (key and value) to associate
1613
+ # with the Amazon Security Lake resource. For each tag, you must specify
1614
+ # both a tag key and a tag value. A tag value cannot be null, but it can
1615
+ # be an empty string.
1616
+ #
1617
+ # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
1618
+ #
1619
+ # @example Request syntax with placeholder values
1620
+ #
1621
+ # resp = client.tag_resource({
1622
+ # resource_arn: "AmazonResourceName", # required
1623
+ # tags: [ # required
1624
+ # {
1625
+ # key: "TagKey", # required
1626
+ # value: "TagValue", # required
1627
+ # },
1628
+ # ],
1629
+ # })
1630
+ #
1631
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/TagResource AWS API Documentation
1632
+ #
1633
+ # @overload tag_resource(params = {})
1634
+ # @param [Hash] params ({})
1635
+ def tag_resource(params = {}, options = {})
1636
+ req = build_request(:tag_resource, params)
1637
+ req.send_request(options)
1638
+ end
1639
+
1640
+ # Removes one or more tags (keys and values) from an Amazon Security
1641
+ # Lake resource: a subscriber, or the data lake configuration for your
1642
+ # Amazon Web Services account in a particular Amazon Web Services
1643
+ # Region.
1644
+ #
1645
+ # @option params [required, String] :resource_arn
1646
+ # The Amazon Resource Name (ARN) of the Amazon Security Lake resource to
1647
+ # remove one or more tags from.
1648
+ #
1649
+ # @option params [required, Array<String>] :tag_keys
1650
+ # A list of one or more tag keys. For each value in the list, specify
1651
+ # the tag key for a tag to remove from the Amazon Security Lake
1652
+ # resource.
1653
+ #
1654
+ # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
1655
+ #
1656
+ # @example Request syntax with placeholder values
1657
+ #
1658
+ # resp = client.untag_resource({
1659
+ # resource_arn: "AmazonResourceName", # required
1660
+ # tag_keys: ["TagKey"], # required
1661
+ # })
1662
+ #
1663
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UntagResource AWS API Documentation
1664
+ #
1665
+ # @overload untag_resource(params = {})
1666
+ # @param [Hash] params ({})
1667
+ def untag_resource(params = {}, options = {})
1668
+ req = build_request(:untag_resource, params)
1669
+ req.send_request(options)
1670
+ end
1671
+
1536
1672
  # Specifies where to store your security data and for how long. You can
1537
1673
  # add a rollup Region to consolidate data from multiple Amazon Web
1538
1674
  # Services Regions.
@@ -1792,7 +1928,7 @@ module Aws::SecurityLake
1792
1928
  params: params,
1793
1929
  config: config)
1794
1930
  context[:gem_name] = 'aws-sdk-securitylake'
1795
- context[:gem_version] = '1.9.0'
1931
+ context[:gem_version] = '1.10.0'
1796
1932
  Seahorse::Client::Request.new(handlers, context)
1797
1933
  end
1798
1934
 
@@ -115,6 +115,8 @@ module Aws::SecurityLake
115
115
  ListLogSourcesResponse = Shapes::StructureShape.new(name: 'ListLogSourcesResponse')
116
116
  ListSubscribersRequest = Shapes::StructureShape.new(name: 'ListSubscribersRequest')
117
117
  ListSubscribersResponse = Shapes::StructureShape.new(name: 'ListSubscribersResponse')
118
+ ListTagsForResourceRequest = Shapes::StructureShape.new(name: 'ListTagsForResourceRequest')
119
+ ListTagsForResourceResponse = Shapes::StructureShape.new(name: 'ListTagsForResourceResponse')
118
120
  LogSource = Shapes::StructureShape.new(name: 'LogSource')
119
121
  LogSourceList = Shapes::ListShape.new(name: 'LogSourceList')
120
122
  LogSourceResource = Shapes::UnionShape.new(name: 'LogSourceResource')
@@ -144,8 +146,17 @@ module Aws::SecurityLake
144
146
  SubscriberStatus = Shapes::StringShape.new(name: 'SubscriberStatus')
145
147
  SubscriptionProtocol = Shapes::StringShape.new(name: 'SubscriptionProtocol')
146
148
  SyntheticTimestamp_date_time = Shapes::TimestampShape.new(name: 'SyntheticTimestamp_date_time', timestampFormat: "iso8601")
149
+ Tag = Shapes::StructureShape.new(name: 'Tag')
150
+ TagKey = Shapes::StringShape.new(name: 'TagKey')
151
+ TagKeyList = Shapes::ListShape.new(name: 'TagKeyList')
152
+ TagList = Shapes::ListShape.new(name: 'TagList')
153
+ TagResourceRequest = Shapes::StructureShape.new(name: 'TagResourceRequest')
154
+ TagResourceResponse = Shapes::StructureShape.new(name: 'TagResourceResponse')
155
+ TagValue = Shapes::StringShape.new(name: 'TagValue')
147
156
  ThrottlingException = Shapes::StructureShape.new(name: 'ThrottlingException')
148
157
  UUID = Shapes::StringShape.new(name: 'UUID')
158
+ UntagResourceRequest = Shapes::StructureShape.new(name: 'UntagResourceRequest')
159
+ UntagResourceResponse = Shapes::StructureShape.new(name: 'UntagResourceResponse')
149
160
  UpdateDataLakeExceptionSubscriptionRequest = Shapes::StructureShape.new(name: 'UpdateDataLakeExceptionSubscriptionRequest')
150
161
  UpdateDataLakeExceptionSubscriptionRequestExceptionTimeToLiveLong = Shapes::IntegerShape.new(name: 'UpdateDataLakeExceptionSubscriptionRequestExceptionTimeToLiveLong')
151
162
  UpdateDataLakeExceptionSubscriptionResponse = Shapes::StructureShape.new(name: 'UpdateDataLakeExceptionSubscriptionResponse')
@@ -220,6 +231,7 @@ module Aws::SecurityLake
220
231
 
221
232
  CreateDataLakeRequest.add_member(:configurations, Shapes::ShapeRef.new(shape: DataLakeConfigurationList, required: true, location_name: "configurations"))
222
233
  CreateDataLakeRequest.add_member(:meta_store_manager_role_arn, Shapes::ShapeRef.new(shape: RoleArn, required: true, location_name: "metaStoreManagerRoleArn"))
234
+ CreateDataLakeRequest.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "tags"))
223
235
  CreateDataLakeRequest.struct_class = Types::CreateDataLakeRequest
224
236
 
225
237
  CreateDataLakeResponse.add_member(:data_lakes, Shapes::ShapeRef.new(shape: DataLakeResourceList, location_name: "dataLakes"))
@@ -237,6 +249,7 @@ module Aws::SecurityLake
237
249
  CreateSubscriberRequest.add_member(:subscriber_description, Shapes::ShapeRef.new(shape: DescriptionString, location_name: "subscriberDescription"))
238
250
  CreateSubscriberRequest.add_member(:subscriber_identity, Shapes::ShapeRef.new(shape: AwsIdentity, required: true, location_name: "subscriberIdentity"))
239
251
  CreateSubscriberRequest.add_member(:subscriber_name, Shapes::ShapeRef.new(shape: CreateSubscriberRequestSubscriberNameString, required: true, location_name: "subscriberName"))
252
+ CreateSubscriberRequest.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "tags"))
240
253
  CreateSubscriberRequest.struct_class = Types::CreateSubscriberRequest
241
254
 
242
255
  CreateSubscriberResponse.add_member(:subscriber, Shapes::ShapeRef.new(shape: SubscriberResource, location_name: "subscriber"))
@@ -453,6 +466,12 @@ module Aws::SecurityLake
453
466
  ListSubscribersResponse.add_member(:subscribers, Shapes::ShapeRef.new(shape: SubscriberResourceList, location_name: "subscribers"))
454
467
  ListSubscribersResponse.struct_class = Types::ListSubscribersResponse
455
468
 
469
+ ListTagsForResourceRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: AmazonResourceName, required: true, location: "uri", location_name: "resourceArn"))
470
+ ListTagsForResourceRequest.struct_class = Types::ListTagsForResourceRequest
471
+
472
+ ListTagsForResourceResponse.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "tags"))
473
+ ListTagsForResourceResponse.struct_class = Types::ListTagsForResourceResponse
474
+
456
475
  LogSource.add_member(:account, Shapes::ShapeRef.new(shape: AwsAccountId, location_name: "account"))
457
476
  LogSource.add_member(:region, Shapes::ShapeRef.new(shape: Region, location_name: "region"))
458
477
  LogSource.add_member(:sources, Shapes::ShapeRef.new(shape: LogSourceResourceList, location_name: "sources"))
@@ -513,12 +532,32 @@ module Aws::SecurityLake
513
532
 
514
533
  SubscriberResourceList.member = Shapes::ShapeRef.new(shape: SubscriberResource)
515
534
 
535
+ Tag.add_member(:key, Shapes::ShapeRef.new(shape: TagKey, required: true, location_name: "key"))
536
+ Tag.add_member(:value, Shapes::ShapeRef.new(shape: TagValue, required: true, location_name: "value"))
537
+ Tag.struct_class = Types::Tag
538
+
539
+ TagKeyList.member = Shapes::ShapeRef.new(shape: TagKey)
540
+
541
+ TagList.member = Shapes::ShapeRef.new(shape: Tag)
542
+
543
+ TagResourceRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: AmazonResourceName, required: true, location: "uri", location_name: "resourceArn"))
544
+ TagResourceRequest.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, required: true, location_name: "tags"))
545
+ TagResourceRequest.struct_class = Types::TagResourceRequest
546
+
547
+ TagResourceResponse.struct_class = Types::TagResourceResponse
548
+
516
549
  ThrottlingException.add_member(:message, Shapes::ShapeRef.new(shape: String, location_name: "message"))
517
550
  ThrottlingException.add_member(:quota_code, Shapes::ShapeRef.new(shape: String, location_name: "quotaCode"))
518
551
  ThrottlingException.add_member(:retry_after_seconds, Shapes::ShapeRef.new(shape: Integer, location: "header", location_name: "Retry-After"))
519
552
  ThrottlingException.add_member(:service_code, Shapes::ShapeRef.new(shape: String, location_name: "serviceCode"))
520
553
  ThrottlingException.struct_class = Types::ThrottlingException
521
554
 
555
+ UntagResourceRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: AmazonResourceName, required: true, location: "uri", location_name: "resourceArn"))
556
+ UntagResourceRequest.add_member(:tag_keys, Shapes::ShapeRef.new(shape: TagKeyList, required: true, location: "querystring", location_name: "tagKeys"))
557
+ UntagResourceRequest.struct_class = Types::UntagResourceRequest
558
+
559
+ UntagResourceResponse.struct_class = Types::UntagResourceResponse
560
+
522
561
  UpdateDataLakeExceptionSubscriptionRequest.add_member(:exception_time_to_live, Shapes::ShapeRef.new(shape: UpdateDataLakeExceptionSubscriptionRequestExceptionTimeToLiveLong, location_name: "exceptionTimeToLive"))
523
562
  UpdateDataLakeExceptionSubscriptionRequest.add_member(:notification_endpoint, Shapes::ShapeRef.new(shape: SafeString, required: true, location_name: "notificationEndpoint"))
524
563
  UpdateDataLakeExceptionSubscriptionRequest.add_member(:subscription_protocol, Shapes::ShapeRef.new(shape: SubscriptionProtocol, required: true, location_name: "subscriptionProtocol"))
@@ -913,6 +952,20 @@ module Aws::SecurityLake
913
952
  )
914
953
  end)
915
954
 
955
+ api.add_operation(:list_tags_for_resource, Seahorse::Model::Operation.new.tap do |o|
956
+ o.name = "ListTagsForResource"
957
+ o.http_method = "GET"
958
+ o.http_request_uri = "/v1/tags/{resourceArn}"
959
+ o.input = Shapes::ShapeRef.new(shape: ListTagsForResourceRequest)
960
+ o.output = Shapes::ShapeRef.new(shape: ListTagsForResourceResponse)
961
+ o.errors << Shapes::ShapeRef.new(shape: BadRequestException)
962
+ o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
963
+ o.errors << Shapes::ShapeRef.new(shape: InternalServerException)
964
+ o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
965
+ o.errors << Shapes::ShapeRef.new(shape: ConflictException)
966
+ o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
967
+ end)
968
+
916
969
  api.add_operation(:register_data_lake_delegated_administrator, Seahorse::Model::Operation.new.tap do |o|
917
970
  o.name = "RegisterDataLakeDelegatedAdministrator"
918
971
  o.http_method = "POST"
@@ -927,6 +980,34 @@ module Aws::SecurityLake
927
980
  o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
928
981
  end)
929
982
 
983
+ api.add_operation(:tag_resource, Seahorse::Model::Operation.new.tap do |o|
984
+ o.name = "TagResource"
985
+ o.http_method = "POST"
986
+ o.http_request_uri = "/v1/tags/{resourceArn}"
987
+ o.input = Shapes::ShapeRef.new(shape: TagResourceRequest)
988
+ o.output = Shapes::ShapeRef.new(shape: TagResourceResponse)
989
+ o.errors << Shapes::ShapeRef.new(shape: BadRequestException)
990
+ o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
991
+ o.errors << Shapes::ShapeRef.new(shape: InternalServerException)
992
+ o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
993
+ o.errors << Shapes::ShapeRef.new(shape: ConflictException)
994
+ o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
995
+ end)
996
+
997
+ api.add_operation(:untag_resource, Seahorse::Model::Operation.new.tap do |o|
998
+ o.name = "UntagResource"
999
+ o.http_method = "DELETE"
1000
+ o.http_request_uri = "/v1/tags/{resourceArn}"
1001
+ o.input = Shapes::ShapeRef.new(shape: UntagResourceRequest)
1002
+ o.output = Shapes::ShapeRef.new(shape: UntagResourceResponse)
1003
+ o.errors << Shapes::ShapeRef.new(shape: BadRequestException)
1004
+ o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
1005
+ o.errors << Shapes::ShapeRef.new(shape: InternalServerException)
1006
+ o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
1007
+ o.errors << Shapes::ShapeRef.new(shape: ConflictException)
1008
+ o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
1009
+ end)
1010
+
930
1011
  api.add_operation(:update_data_lake, Seahorse::Model::Operation.new.tap do |o|
931
1012
  o.name = "UpdateDataLake"
932
1013
  o.http_method = "PUT"
@@ -334,6 +334,20 @@ module Aws::SecurityLake
334
334
  end
335
335
  end
336
336
 
337
+ class ListTagsForResource
338
+ def self.build(context)
339
+ unless context.config.regional_endpoint
340
+ endpoint = context.config.endpoint.to_s
341
+ end
342
+ Aws::SecurityLake::EndpointParameters.new(
343
+ region: context.config.region,
344
+ use_dual_stack: context.config.use_dualstack_endpoint,
345
+ use_fips: context.config.use_fips_endpoint,
346
+ endpoint: endpoint,
347
+ )
348
+ end
349
+ end
350
+
337
351
  class RegisterDataLakeDelegatedAdministrator
338
352
  def self.build(context)
339
353
  unless context.config.regional_endpoint
@@ -348,6 +362,34 @@ module Aws::SecurityLake
348
362
  end
349
363
  end
350
364
 
365
+ class TagResource
366
+ def self.build(context)
367
+ unless context.config.regional_endpoint
368
+ endpoint = context.config.endpoint.to_s
369
+ end
370
+ Aws::SecurityLake::EndpointParameters.new(
371
+ region: context.config.region,
372
+ use_dual_stack: context.config.use_dualstack_endpoint,
373
+ use_fips: context.config.use_fips_endpoint,
374
+ endpoint: endpoint,
375
+ )
376
+ end
377
+ end
378
+
379
+ class UntagResource
380
+ def self.build(context)
381
+ unless context.config.regional_endpoint
382
+ endpoint = context.config.endpoint.to_s
383
+ end
384
+ Aws::SecurityLake::EndpointParameters.new(
385
+ region: context.config.region,
386
+ use_dual_stack: context.config.use_dualstack_endpoint,
387
+ use_fips: context.config.use_fips_endpoint,
388
+ endpoint: endpoint,
389
+ )
390
+ end
391
+ end
392
+
351
393
  class UpdateDataLake
352
394
  def self.build(context)
353
395
  unless context.config.regional_endpoint
@@ -102,8 +102,14 @@ module Aws::SecurityLake
102
102
  Aws::SecurityLake::Endpoints::ListLogSources.build(context)
103
103
  when :list_subscribers
104
104
  Aws::SecurityLake::Endpoints::ListSubscribers.build(context)
105
+ when :list_tags_for_resource
106
+ Aws::SecurityLake::Endpoints::ListTagsForResource.build(context)
105
107
  when :register_data_lake_delegated_administrator
106
108
  Aws::SecurityLake::Endpoints::RegisterDataLakeDelegatedAdministrator.build(context)
109
+ when :tag_resource
110
+ Aws::SecurityLake::Endpoints::TagResource.build(context)
111
+ when :untag_resource
112
+ Aws::SecurityLake::Endpoints::UntagResource.build(context)
107
113
  when :update_data_lake
108
114
  Aws::SecurityLake::Endpoints::UpdateDataLake.build(context)
109
115
  when :update_data_lake_exception_subscription
@@ -335,11 +335,19 @@ module Aws::SecurityLake
335
335
  # normalization of Amazon Web Services log sources and custom sources.
336
336
  # @return [String]
337
337
  #
338
+ # @!attribute [rw] tags
339
+ # An array of objects, one for each tag to associate with the data
340
+ # lake configuration. For each tag, you must specify both a tag key
341
+ # and a tag value. A tag value cannot be null, but it can be an empty
342
+ # string.
343
+ # @return [Array<Types::Tag>]
344
+ #
338
345
  # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateDataLakeRequest AWS API Documentation
339
346
  #
340
347
  class CreateDataLakeRequest < Struct.new(
341
348
  :configurations,
342
- :meta_store_manager_role_arn)
349
+ :meta_store_manager_role_arn,
350
+ :tags)
343
351
  SENSITIVE = []
344
352
  include Aws::Structure
345
353
  end
@@ -408,6 +416,12 @@ module Aws::SecurityLake
408
416
  # The name of your Security Lake subscriber account.
409
417
  # @return [String]
410
418
  #
419
+ # @!attribute [rw] tags
420
+ # An array of objects, one for each tag to associate with the
421
+ # subscriber. For each tag, you must specify both a tag key and a tag
422
+ # value. A tag value cannot be null, but it can be an empty string.
423
+ # @return [Array<Types::Tag>]
424
+ #
411
425
  # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/CreateSubscriberRequest AWS API Documentation
412
426
  #
413
427
  class CreateSubscriberRequest < Struct.new(
@@ -415,7 +429,8 @@ module Aws::SecurityLake
415
429
  :sources,
416
430
  :subscriber_description,
417
431
  :subscriber_identity,
418
- :subscriber_name)
432
+ :subscriber_name,
433
+ :tags)
419
434
  SENSITIVE = []
420
435
  include Aws::Structure
421
436
  end
@@ -623,7 +638,7 @@ module Aws::SecurityLake
623
638
  include Aws::Structure
624
639
  end
625
640
 
626
- # The details for a Security Lake exception
641
+ # The details for an Amazon Security Lake exception.
627
642
  #
628
643
  # @!attribute [rw] exception
629
644
  # The underlying exception of a Security Lake exception.
@@ -1025,8 +1040,8 @@ module Aws::SecurityLake
1025
1040
  class DeleteDataLakeExceptionSubscriptionResponse < Aws::EmptyStructure; end
1026
1041
 
1027
1042
  # @!attribute [rw] auto_enable_new_account
1028
- # Removes the automatic enablement of configuration settings for new
1029
- # member accounts in Security Lake.
1043
+ # Turns off automatic enablement of Security Lake for member accounts
1044
+ # that are added to an organization.
1030
1045
  # @return [Array<Types::DataLakeAutoEnableNewAccountConfiguration>]
1031
1046
  #
1032
1047
  # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/DeleteDataLakeOrganizationConfigurationRequest AWS API Documentation
@@ -1262,8 +1277,8 @@ module Aws::SecurityLake
1262
1277
  # The Amazon Resource Name (ARN) of the EventBridge API destinations
1263
1278
  # IAM role that you created. For more information about ARNs and how
1264
1279
  # to use them in policies, see [Managing data access][1] and [Amazon
1265
- # Web Services Managed Policies][2] in the Amazon Security Lake User
1266
- # Guide.
1280
+ # Web Services Managed Policies][2] in the *Amazon Security Lake User
1281
+ # Guide*.
1267
1282
  #
1268
1283
  #
1269
1284
  #
@@ -1465,6 +1480,32 @@ module Aws::SecurityLake
1465
1480
  include Aws::Structure
1466
1481
  end
1467
1482
 
1483
+ # @!attribute [rw] resource_arn
1484
+ # The Amazon Resource Name (ARN) of the Amazon Security Lake resource
1485
+ # to retrieve the tags for.
1486
+ # @return [String]
1487
+ #
1488
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListTagsForResourceRequest AWS API Documentation
1489
+ #
1490
+ class ListTagsForResourceRequest < Struct.new(
1491
+ :resource_arn)
1492
+ SENSITIVE = []
1493
+ include Aws::Structure
1494
+ end
1495
+
1496
+ # @!attribute [rw] tags
1497
+ # An array of objects, one for each tag (key and value) that’s
1498
+ # associated with the Amazon Security Lake resource.
1499
+ # @return [Array<Types::Tag>]
1500
+ #
1501
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/ListTagsForResourceResponse AWS API Documentation
1502
+ #
1503
+ class ListTagsForResourceResponse < Struct.new(
1504
+ :tags)
1505
+ SENSITIVE = []
1506
+ include Aws::Structure
1507
+ end
1508
+
1468
1509
  # Amazon Security Lake can collect logs and events from
1469
1510
  # natively-supported Amazon Web Services services and custom sources.
1470
1511
  #
@@ -1491,8 +1532,8 @@ module Aws::SecurityLake
1491
1532
  end
1492
1533
 
1493
1534
  # The supported source types from which logs and events are collected in
1494
- # Amazon Security Lake. For the list of supported Amazon Web Services,
1495
- # see the [Amazon Security Lake User Guide][1].
1535
+ # Amazon Security Lake. For a list of supported Amazon Web Services, see
1536
+ # the [Amazon Security Lake User Guide][1].
1496
1537
  #
1497
1538
  #
1498
1539
  #
@@ -1504,12 +1545,21 @@ module Aws::SecurityLake
1504
1545
  #
1505
1546
  # @!attribute [rw] aws_log_source
1506
1547
  # Amazon Security Lake supports log and event collection for natively
1507
- # supported Amazon Web Services.
1548
+ # supported Amazon Web Services. For more information, see the [Amazon
1549
+ # Security Lake User Guide][1].
1550
+ #
1551
+ #
1552
+ #
1553
+ # [1]: https://docs.aws.amazon.com/security-lake/latest/userguide/internal-sources.html
1508
1554
  # @return [Types::AwsLogSourceResource]
1509
1555
  #
1510
1556
  # @!attribute [rw] custom_log_source
1511
- # Amazon Security Lake supports custom source types. For a detailed
1512
- # list, see the Amazon Security Lake User Guide.
1557
+ # Amazon Security Lake supports custom source types. For more
1558
+ # information, see the [Amazon Security Lake User Guide][1].
1559
+ #
1560
+ #
1561
+ #
1562
+ # [1]: https://docs.aws.amazon.com/security-lake/latest/userguide/custom-sources.html
1513
1563
  # @return [Types::CustomLogSourceResource]
1514
1564
  #
1515
1565
  # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/LogSourceResource AWS API Documentation
@@ -1646,8 +1696,12 @@ module Aws::SecurityLake
1646
1696
  #
1647
1697
  # @!attribute [rw] sources
1648
1698
  # Amazon Security Lake supports log and event collection for natively
1649
- # supported Amazon Web Services. For more information, see the Amazon
1650
- # Security Lake User Guide.
1699
+ # supported Amazon Web Services. For more information, see the [Amazon
1700
+ # Security Lake User Guide][1].
1701
+ #
1702
+ #
1703
+ #
1704
+ # [1]: https://docs.aws.amazon.com/security-lake/latest/userguide/source-management.html
1651
1705
  # @return [Array<Types::LogSourceResource>]
1652
1706
  #
1653
1707
  # @!attribute [rw] subscriber_arn
@@ -1707,6 +1761,74 @@ module Aws::SecurityLake
1707
1761
  include Aws::Structure
1708
1762
  end
1709
1763
 
1764
+ # A *tag* is a label that you can define and associate with Amazon Web
1765
+ # Services resources, including certain types of Amazon Security Lake
1766
+ # resources. Tags can help you identify, categorize, and manage
1767
+ # resources in different ways, such as by owner, environment, or other
1768
+ # criteria. You can associate tags with the following types of Security
1769
+ # Lake resources: subscribers, and the data lake configuration for your
1770
+ # Amazon Web Services account in individual Amazon Web Services Regions.
1771
+ #
1772
+ # A resource can have up to 50 tags. Each tag consists of a required
1773
+ # *tag key* and an associated *tag value*. A *tag key* is a general
1774
+ # label that acts as a category for a more specific tag value. Each tag
1775
+ # key must be unique and it can have only one tag value. A *tag value*
1776
+ # acts as a descriptor for a tag key. Tag keys and values are case
1777
+ # sensitive. They can contain letters, numbers, spaces, or the following
1778
+ # symbols: \_ . : / = + @ -
1779
+ #
1780
+ # For more information, see [Tagging Amazon Security Lake resources][1]
1781
+ # in the *Amazon Security Lake User Guide*.
1782
+ #
1783
+ #
1784
+ #
1785
+ # [1]: https://docs.aws.amazon.com/security-lake/latest/userguide/tagging-resources.html
1786
+ #
1787
+ # @!attribute [rw] key
1788
+ # The name of the tag. This is a general label that acts as a category
1789
+ # for a more specific tag value (`value`).
1790
+ # @return [String]
1791
+ #
1792
+ # @!attribute [rw] value
1793
+ # The value that’s associated with the specified tag key (`key`). This
1794
+ # value acts as a descriptor for the tag key. A tag value cannot be
1795
+ # null, but it can be an empty string.
1796
+ # @return [String]
1797
+ #
1798
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/Tag AWS API Documentation
1799
+ #
1800
+ class Tag < Struct.new(
1801
+ :key,
1802
+ :value)
1803
+ SENSITIVE = []
1804
+ include Aws::Structure
1805
+ end
1806
+
1807
+ # @!attribute [rw] resource_arn
1808
+ # The Amazon Resource Name (ARN) of the Amazon Security Lake resource
1809
+ # to add or update the tags for.
1810
+ # @return [String]
1811
+ #
1812
+ # @!attribute [rw] tags
1813
+ # An array of objects, one for each tag (key and value) to associate
1814
+ # with the Amazon Security Lake resource. For each tag, you must
1815
+ # specify both a tag key and a tag value. A tag value cannot be null,
1816
+ # but it can be an empty string.
1817
+ # @return [Array<Types::Tag>]
1818
+ #
1819
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/TagResourceRequest AWS API Documentation
1820
+ #
1821
+ class TagResourceRequest < Struct.new(
1822
+ :resource_arn,
1823
+ :tags)
1824
+ SENSITIVE = []
1825
+ include Aws::Structure
1826
+ end
1827
+
1828
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/TagResourceResponse AWS API Documentation
1829
+ #
1830
+ class TagResourceResponse < Aws::EmptyStructure; end
1831
+
1710
1832
  # The limit on the number of requests per second was exceeded.
1711
1833
  #
1712
1834
  # @!attribute [rw] message
@@ -1736,6 +1858,30 @@ module Aws::SecurityLake
1736
1858
  include Aws::Structure
1737
1859
  end
1738
1860
 
1861
+ # @!attribute [rw] resource_arn
1862
+ # The Amazon Resource Name (ARN) of the Amazon Security Lake resource
1863
+ # to remove one or more tags from.
1864
+ # @return [String]
1865
+ #
1866
+ # @!attribute [rw] tag_keys
1867
+ # A list of one or more tag keys. For each value in the list, specify
1868
+ # the tag key for a tag to remove from the Amazon Security Lake
1869
+ # resource.
1870
+ # @return [Array<String>]
1871
+ #
1872
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UntagResourceRequest AWS API Documentation
1873
+ #
1874
+ class UntagResourceRequest < Struct.new(
1875
+ :resource_arn,
1876
+ :tag_keys)
1877
+ SENSITIVE = []
1878
+ include Aws::Structure
1879
+ end
1880
+
1881
+ # @see http://docs.aws.amazon.com/goto/WebAPI/securitylake-2018-05-10/UntagResourceResponse AWS API Documentation
1882
+ #
1883
+ class UntagResourceResponse < Aws::EmptyStructure; end
1884
+
1739
1885
  # @!attribute [rw] exception_time_to_live
1740
1886
  # The time-to-live (TTL) for the exception message to remain.
1741
1887
  # @return [Integer]
@@ -52,6 +52,6 @@ require_relative 'aws-sdk-securitylake/customizations'
52
52
  # @!group service
53
53
  module Aws::SecurityLake
54
54
 
55
- GEM_VERSION = '1.9.0'
55
+ GEM_VERSION = '1.10.0'
56
56
 
57
57
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-securitylake
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.9.0
4
+ version: 1.10.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-07-11 00:00:00.000000000 Z
11
+ date: 2023-07-20 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-core