aws-sdk-wafregional 1.5.0 → 1.6.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 62546ae137d830f96c7a3509c6aeb79e9287b8b7
-  data.tar.gz: 063f83e367da91de1a9a70612a373578a872c8a9
+  metadata.gz: db2f26398517536153f20660debedb1f8aa417f6
+  data.tar.gz: 3a9b36e0ebed5bc4469bfa6f091af028c6f0bd8f
 SHA512:
-  metadata.gz: d337576dec62fa07bf2b2daf0aeea75875fce07ada37f4df014014581f353986bcde6e7350a12147740a5c48f292037b3438e2b9748d07a51743fbf8a983a76b
-  data.tar.gz: 47b2acf72733ee06a7e10df1cf9e4d79905614ba3238cd0e8feb769fd0401aba860bc98a89e560205cea2075a038aa037b70def94fc667c308f283c0ac638014
+  metadata.gz: 58c66992b5da475ab0532478b0eaed0ca14f7c82e1723f9b1c91d4798bdcaa8eab256756beb722b766ed1c0a12f5739a53cb423b07b541d6a145299d7fe92fda
+  data.tar.gz: c63419a10f7092dca8bb4500d698fe46635d13a4ac85d8c4566ac06d71cda7e0c38f4285fbda8116efb5a7e0ef86a162717762bce64ea4d0cd2185e085b70e71

data/lib/aws-sdk-wafregional.rb

@@ -42,6 +42,6 @@ require_relative 'aws-sdk-wafregional/customizations'
 # @service
 module Aws::WAFRegional
 
-  GEM_VERSION = '1.5.0'
+  GEM_VERSION = '1.6.0'
 
 end

data/lib/aws-sdk-wafregional/client.rb

@@ -244,7 +244,7 @@ module Aws::WAFRegional
     #   resp.byte_match_set.byte_match_set_id #=> String
     #   resp.byte_match_set.name #=> String
     #   resp.byte_match_set.byte_match_tuples #=> Array
-    #   resp.byte_match_set.byte_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY"
+    #   resp.byte_match_set.byte_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY", "SINGLE_QUERY_ARG", "ALL_QUERY_ARGS"
     #   resp.byte_match_set.byte_match_tuples[0].field_to_match.data #=> String
     #   resp.byte_match_set.byte_match_tuples[0].target_string #=> String
     #   resp.byte_match_set.byte_match_tuples[0].text_transformation #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE"
@@ -606,7 +606,7 @@ module Aws::WAFRegional
     #   resp.regex_match_set.regex_match_set_id #=> String
     #   resp.regex_match_set.name #=> String
     #   resp.regex_match_set.regex_match_tuples #=> Array
-    #   resp.regex_match_set.regex_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY"
+    #   resp.regex_match_set.regex_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY", "SINGLE_QUERY_ARG", "ALL_QUERY_ARGS"
     #   resp.regex_match_set.regex_match_tuples[0].field_to_match.data #=> String
     #   resp.regex_match_set.regex_match_tuples[0].text_transformation #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE"
     #   resp.regex_match_set.regex_match_tuples[0].regex_pattern_set_id #=> String
@@ -945,7 +945,7 @@ module Aws::WAFRegional
     #   resp.size_constraint_set.size_constraint_set_id #=> String
     #   resp.size_constraint_set.name #=> String
     #   resp.size_constraint_set.size_constraints #=> Array
-    #   resp.size_constraint_set.size_constraints[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY"
+    #   resp.size_constraint_set.size_constraints[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY", "SINGLE_QUERY_ARG", "ALL_QUERY_ARGS"
     #   resp.size_constraint_set.size_constraints[0].field_to_match.data #=> String
     #   resp.size_constraint_set.size_constraints[0].text_transformation #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE"
     #   resp.size_constraint_set.size_constraints[0].comparison_operator #=> String, one of "EQ", "NE", "LE", "LT", "GE", "GT"
@@ -1041,7 +1041,7 @@ module Aws::WAFRegional
     #   resp.sql_injection_match_set.sql_injection_match_set_id #=> String
     #   resp.sql_injection_match_set.name #=> String
     #   resp.sql_injection_match_set.sql_injection_match_tuples #=> Array
-    #   resp.sql_injection_match_set.sql_injection_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY"
+    #   resp.sql_injection_match_set.sql_injection_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY", "SINGLE_QUERY_ARG", "ALL_QUERY_ARGS"
     #   resp.sql_injection_match_set.sql_injection_match_tuples[0].field_to_match.data #=> String
     #   resp.sql_injection_match_set.sql_injection_match_tuples[0].text_transformation #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE"
     #   resp.change_token #=> String
@@ -1263,7 +1263,7 @@ module Aws::WAFRegional
     #   resp.xss_match_set.xss_match_set_id #=> String
     #   resp.xss_match_set.name #=> String
     #   resp.xss_match_set.xss_match_tuples #=> Array
-    #   resp.xss_match_set.xss_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY"
+    #   resp.xss_match_set.xss_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY", "SINGLE_QUERY_ARG", "ALL_QUERY_ARGS"
     #   resp.xss_match_set.xss_match_tuples[0].field_to_match.data #=> String
     #   resp.xss_match_set.xss_match_tuples[0].text_transformation #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE"
     #   resp.change_token #=> String
@@ -1453,6 +1453,30 @@ module Aws::WAFRegional
       req.send_request(options)
     end
 
+    # Permanently deletes the LoggingConfiguration from the specified web
+    # ACL.
+    #
+    # @option params [required, String] :resource_arn
+    #   The Amazon Resource Name (ARN) of the web ACL from which you want to
+    #   delete the LoggingConfiguration.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.delete_logging_configuration({
+    #     resource_arn: "ResourceArn", # required
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/DeleteLoggingConfiguration AWS API Documentation
+    #
+    # @overload delete_logging_configuration(params = {})
+    # @param [Hash] params ({})
+    def delete_logging_configuration(params = {}, options = {})
+      req = build_request(:delete_logging_configuration, params)
+      req.send_request(options)
+    end
+
     # Permanently deletes an IAM policy from the specified RuleGroup.
     #
     # The user making the request must be the owner of the RuleGroup.
@@ -2052,7 +2076,7 @@ module Aws::WAFRegional
     #   resp.byte_match_set.byte_match_set_id #=> String
     #   resp.byte_match_set.name #=> String
     #   resp.byte_match_set.byte_match_tuples #=> Array
-    #   resp.byte_match_set.byte_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY"
+    #   resp.byte_match_set.byte_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY", "SINGLE_QUERY_ARG", "ALL_QUERY_ARGS"
     #   resp.byte_match_set.byte_match_tuples[0].field_to_match.data #=> String
     #   resp.byte_match_set.byte_match_tuples[0].target_string #=> String
     #   resp.byte_match_set.byte_match_tuples[0].text_transformation #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE"
@@ -2256,6 +2280,40 @@ module Aws::WAFRegional
       req.send_request(options)
     end
 
+    # Returns the LoggingConfiguration for the specified web ACL.
+    #
+    # @option params [required, String] :resource_arn
+    #   The Amazon Resource Name (ARN) of the web ACL for which you want to
+    #   get the LoggingConfiguration.
+    #
+    # @return [Types::GetLoggingConfigurationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetLoggingConfigurationResponse#logging_configuration #logging_configuration} => Types::LoggingConfiguration
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.get_logging_configuration({
+    #     resource_arn: "ResourceArn", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.logging_configuration.resource_arn #=> String
+    #   resp.logging_configuration.log_destination_configs #=> Array
+    #   resp.logging_configuration.log_destination_configs[0] #=> String
+    #   resp.logging_configuration.redacted_fields #=> Array
+    #   resp.logging_configuration.redacted_fields[0].type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY", "SINGLE_QUERY_ARG", "ALL_QUERY_ARGS"
+    #   resp.logging_configuration.redacted_fields[0].data #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/GetLoggingConfiguration AWS API Documentation
+    #
+    # @overload get_logging_configuration(params = {})
+    # @param [Hash] params ({})
+    def get_logging_configuration(params = {}, options = {})
+      req = build_request(:get_logging_configuration, params)
+      req.send_request(options)
+    end
+
     # Returns the IAM policy attached to the RuleGroup.
     #
     # @option params [required, String] :resource_arn
@@ -2387,7 +2445,7 @@ module Aws::WAFRegional
     #   resp.regex_match_set.regex_match_set_id #=> String
     #   resp.regex_match_set.name #=> String
     #   resp.regex_match_set.regex_match_tuples #=> Array
-    #   resp.regex_match_set.regex_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY"
+    #   resp.regex_match_set.regex_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY", "SINGLE_QUERY_ARG", "ALL_QUERY_ARGS"
     #   resp.regex_match_set.regex_match_tuples[0].field_to_match.data #=> String
     #   resp.regex_match_set.regex_match_tuples[0].text_transformation #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE"
     #   resp.regex_match_set.regex_match_tuples[0].regex_pattern_set_id #=> String
@@ -2712,7 +2770,7 @@ module Aws::WAFRegional
     #   resp.size_constraint_set.size_constraint_set_id #=> String
     #   resp.size_constraint_set.name #=> String
     #   resp.size_constraint_set.size_constraints #=> Array
-    #   resp.size_constraint_set.size_constraints[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY"
+    #   resp.size_constraint_set.size_constraints[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY", "SINGLE_QUERY_ARG", "ALL_QUERY_ARGS"
     #   resp.size_constraint_set.size_constraints[0].field_to_match.data #=> String
     #   resp.size_constraint_set.size_constraints[0].text_transformation #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE"
     #   resp.size_constraint_set.size_constraints[0].comparison_operator #=> String, one of "EQ", "NE", "LE", "LT", "GE", "GT"
@@ -2776,7 +2834,7 @@ module Aws::WAFRegional
     #   resp.sql_injection_match_set.sql_injection_match_set_id #=> String
     #   resp.sql_injection_match_set.name #=> String
     #   resp.sql_injection_match_set.sql_injection_match_tuples #=> Array
-    #   resp.sql_injection_match_set.sql_injection_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY"
+    #   resp.sql_injection_match_set.sql_injection_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY", "SINGLE_QUERY_ARG", "ALL_QUERY_ARGS"
     #   resp.sql_injection_match_set.sql_injection_match_tuples[0].field_to_match.data #=> String
     #   resp.sql_injection_match_set.sql_injection_match_tuples[0].text_transformation #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE"
     #
@@ -2934,7 +2992,7 @@ module Aws::WAFRegional
     #   resp.xss_match_set.xss_match_set_id #=> String
     #   resp.xss_match_set.name #=> String
     #   resp.xss_match_set.xss_match_tuples #=> Array
-    #   resp.xss_match_set.xss_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY"
+    #   resp.xss_match_set.xss_match_tuples[0].field_to_match.type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY", "SINGLE_QUERY_ARG", "ALL_QUERY_ARGS"
     #   resp.xss_match_set.xss_match_tuples[0].field_to_match.data #=> String
     #   resp.xss_match_set.xss_match_tuples[0].text_transformation #=> String, one of "NONE", "COMPRESS_WHITE_SPACE", "HTML_ENTITY_DECODE", "LOWERCASE", "CMD_LINE", "URL_DECODE"
     #
@@ -3153,6 +3211,56 @@ module Aws::WAFRegional
       req.send_request(options)
     end
 
+    # Returns an array of LoggingConfiguration objects.
+    #
+    # @option params [String] :next_marker
+    #   If you specify a value for `Limit` and you have more
+    #   `LoggingConfigurations` than the value of `Limit`, AWS WAF returns a
+    #   `NextMarker` value in the response that allows you to list another
+    #   group of `LoggingConfigurations`. For the second and subsequent
+    #   `ListLoggingConfigurations` requests, specify the value of
+    #   `NextMarker` from the previous response to get information about
+    #   another batch of `ListLoggingConfigurations`.
+    #
+    # @option params [Integer] :limit
+    #   Specifies the number of `LoggingConfigurations` that you want AWS WAF
+    #   to return for this request. If you have more `LoggingConfigurations`
+    #   than the number that you specify for `Limit`, the response includes a
+    #   `NextMarker` value that you can use to get another batch of
+    #   `LoggingConfigurations`.
+    #
+    # @return [Types::ListLoggingConfigurationsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::ListLoggingConfigurationsResponse#logging_configurations #logging_configurations} => Array<Types::LoggingConfiguration>
+    #   * {Types::ListLoggingConfigurationsResponse#next_marker #next_marker} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_logging_configurations({
+    #     next_marker: "NextMarker",
+    #     limit: 1,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.logging_configurations #=> Array
+    #   resp.logging_configurations[0].resource_arn #=> String
+    #   resp.logging_configurations[0].log_destination_configs #=> Array
+    #   resp.logging_configurations[0].log_destination_configs[0] #=> String
+    #   resp.logging_configurations[0].redacted_fields #=> Array
+    #   resp.logging_configurations[0].redacted_fields[0].type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY", "SINGLE_QUERY_ARG", "ALL_QUERY_ARGS"
+    #   resp.logging_configurations[0].redacted_fields[0].data #=> String
+    #   resp.next_marker #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/ListLoggingConfigurations AWS API Documentation
+    #
+    # @overload list_logging_configurations(params = {})
+    # @param [Hash] params ({})
+    def list_logging_configurations(params = {}, options = {})
+      req = build_request(:list_logging_configurations, params)
+      req.send_request(options)
+    end
+
     # Returns an array of RuleSummary objects.
     #
     # @option params [String] :next_marker
@@ -3728,6 +3836,71 @@ module Aws::WAFRegional
       req.send_request(options)
     end
 
+    # Associates a LoggingConfiguration with a specified web ACL.
+    #
+    # You can access information about all traffic that AWS WAF inspects
+    # using the following steps:
+    #
+    # 1.  Create an Amazon Kinesis Data Firehose delivery stream. For more
+    #     information, see [Creating an Amazon Kinesis Data Firehose
+    #     Delivery Stream][1].
+    #
+    # 2.  Associate that delivery stream to your web ACL using a
+    #     `PutLoggingConfiguration` request.
+    #
+    # When you successfully enable logging using a `PutLoggingConfiguration`
+    # request, AWS WAF will create a service linked role with the necessary
+    # permissions to write logs to the Amazon Kinesis Data Firehose delivery
+    # stream. For more information, see [Logging Web ACL Traffic
+    # Information][2] in the *AWS WAF Developer Guide*.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/firehose/latest/dev/what-is-this-service.html
+    # [2]: http://docs.aws.amazon.com/waf/latest/developerguide/logging.html
+    #
+    # @option params [required, Types::LoggingConfiguration] :logging_configuration
+    #   The Amazon Kinesis Data Firehose delivery streams that contains the
+    #   inspected traffic information, the redacted fields details, and the
+    #   Amazon Resource Name (ARN) of the web ACL to monitor.
+    #
+    # @return [Types::PutLoggingConfigurationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::PutLoggingConfigurationResponse#logging_configuration #logging_configuration} => Types::LoggingConfiguration
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.put_logging_configuration({
+    #     logging_configuration: { # required
+    #       resource_arn: "ResourceArn", # required
+    #       log_destination_configs: ["ResourceArn"], # required
+    #       redacted_fields: [
+    #         {
+    #           type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
+    #           data: "MatchFieldData",
+    #         },
+    #       ],
+    #     },
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.logging_configuration.resource_arn #=> String
+    #   resp.logging_configuration.log_destination_configs #=> Array
+    #   resp.logging_configuration.log_destination_configs[0] #=> String
+    #   resp.logging_configuration.redacted_fields #=> Array
+    #   resp.logging_configuration.redacted_fields[0].type #=> String, one of "URI", "QUERY_STRING", "HEADER", "METHOD", "BODY", "SINGLE_QUERY_ARG", "ALL_QUERY_ARGS"
+    #   resp.logging_configuration.redacted_fields[0].data #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/PutLoggingConfiguration AWS API Documentation
+    #
+    # @overload put_logging_configuration(params = {})
+    # @param [Hash] params ({})
+    def put_logging_configuration(params = {}, options = {})
+      req = build_request(:put_logging_configuration, params)
+      req.send_request(options)
+    end
+
     # Attaches a IAM policy to the specified resource. The only supported
     # use for this action is to share a RuleGroup across accounts.
     #
@@ -3740,8 +3913,9 @@ module Aws::WAFRegional
     #
     # * `Effect` must specify `Allow`.
     #
-    # * The `Action` in the policy must be `waf:UpdateWebACL` and
-    #   `waf-regional:UpdateWebACL`. Any extra or wildcard actions in the
+    # * The `Action` in the policy must be `waf:UpdateWebACL`,
+    #   `waf-regional:UpdateWebACL`, `waf:GetRuleGroup` and
+    #   `waf-regional:GetRuleGroup` . Any extra or wildcard actions in the
     #   policy will be rejected.
     #
     # * The policy cannot include a `Resource` parameter.
@@ -3896,7 +4070,7 @@ module Aws::WAFRegional
     #         action: "INSERT", # required, accepts INSERT, DELETE
     #         byte_match_tuple: { # required
     #           field_to_match: { # required
-    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #             data: "MatchFieldData",
     #           },
     #           target_string: "data", # required
@@ -4021,10 +4195,10 @@ module Aws::WAFRegional
     #   the range of IP addresses from `192.0.2.0` to `192.0.2.255`) or
     #   `192.0.2.44/32` (for the individual IP address `192.0.2.44`).
     #
-    # AWS WAF supports /8, /16, /24, and /32 IP address ranges for IPv4, and
-    # /24, /32, /48, /56, /64 and /128 for IPv6. For more information about
-    # CIDR notation, see the Wikipedia entry [Classless Inter-Domain
-    # Routing][1].
+    # AWS WAF supports IPv4 address ranges: /8 and any range between /16
+    # through /32. AWS WAF supports IPv6 address ranges: /16, /24, /32, /48,
+    # /56, /64, and /128. For more information about CIDR notation, see the
+    # Wikipedia entry [Classless Inter-Domain Routing][1].
     #
     # IPv6 addresses can be represented using any of the following formats:
     #
@@ -4058,6 +4232,8 @@ module Aws::WAFRegional
     # change an IP address, you delete the existing IP address and add the
     # new one.
     #
+    # You can insert a maximum of 1000 addresses in a single request.
+    #
     # For more information about how to use the AWS WAF API to allow or
     # block HTTP requests, see the [AWS WAF Developer Guide][2].
     #
@@ -4082,6 +4258,8 @@ module Aws::WAFRegional
     #
     #   * IPSetDescriptor: Contains `Type` and `Value`
     #
+    #   You can insert a maximum of 1000 addresses in a single request.
+    #
     # @return [Types::UpdateIPSetResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::UpdateIPSetResponse#change_token #change_token} => String
@@ -4306,7 +4484,7 @@ module Aws::WAFRegional
     #         action: "INSERT", # required, accepts INSERT, DELETE
     #         regex_match_tuple: { # required
     #           field_to_match: { # required
-    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #             data: "MatchFieldData",
     #           },
     #           text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -4637,6 +4815,8 @@ module Aws::WAFRegional
     #   AWS resource forwards only the first `8192` bytes of your request to
     #   AWS WAF.
     #
+    #   You can only specify a single type of TextTransformation.
+    #
     # * A `ComparisonOperator` used for evaluating the selected part of the
     #   request against the specified `Size`, such as equals, greater than,
     #   less than, and so on.
@@ -4734,7 +4914,7 @@ module Aws::WAFRegional
     #         action: "INSERT", # required, accepts INSERT, DELETE
     #         size_constraint: { # required
     #           field_to_match: { # required
-    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #             data: "MatchFieldData",
     #           },
     #           text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -4767,13 +4947,15 @@ module Aws::WAFRegional
     #   existing object and add a new one.
     #
     # * `FieldToMatch`\: The part of web requests that you want AWS WAF to
-    #   inspect and, if you want AWS WAF to inspect a header, the name of
-    #   the header.
+    #   inspect and, if you want AWS WAF to inspect a header or custom query
+    #   parameter, the name of the header or parameter.
     #
     # * `TextTransformation`\: Which text transformation, if any, to perform
     #   on the web request before inspecting the request for snippets of
     #   malicious SQL code.
     #
+    #   You can only specify a single type of TextTransformation.
+    #
     # You use `SqlInjectionMatchSet` objects to specify which CloudFront
     # requests you want to allow, block, or count. For example, if you're
     # receiving requests that contain snippets of SQL code in the query
@@ -4862,7 +5044,7 @@ module Aws::WAFRegional
     #         action: "INSERT", # required, accepts INSERT, DELETE
     #         sql_injection_match_tuple: { # required
     #           field_to_match: { # required
-    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #             data: "MatchFieldData",
     #           },
     #           text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -5052,13 +5234,15 @@ module Aws::WAFRegional
     #   object and add a new one.
     #
     # * `FieldToMatch`\: The part of web requests that you want AWS WAF to
-    #   inspect and, if you want AWS WAF to inspect a header, the name of
-    #   the header.
+    #   inspect and, if you want AWS WAF to inspect a header or custom query
+    #   parameter, the name of the header or parameter.
     #
     # * `TextTransformation`\: Which text transformation, if any, to perform
     #   on the web request before inspecting the request for cross-site
     #   scripting attacks.
     #
+    #   You can only specify a single type of TextTransformation.
+    #
     # You use `XssMatchSet` objects to specify which CloudFront requests you
     # want to allow, block, or count. For example, if you're receiving
     # requests that contain cross-site scripting attacks in the request body
@@ -5144,7 +5328,7 @@ module Aws::WAFRegional
     #         action: "INSERT", # required, accepts INSERT, DELETE
     #         xss_match_tuple: { # required
     #           field_to_match: { # required
-    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #             data: "MatchFieldData",
     #           },
     #           text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -5179,7 +5363,7 @@ module Aws::WAFRegional
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-wafregional'
-      context[:gem_version] = '1.5.0'
+      context[:gem_version] = '1.6.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-wafregional/client_api.rb

@@ -59,6 +59,8 @@ module Aws::WAFRegional
     DeleteGeoMatchSetResponse = Shapes::StructureShape.new(name: 'DeleteGeoMatchSetResponse')
     DeleteIPSetRequest = Shapes::StructureShape.new(name: 'DeleteIPSetRequest')
     DeleteIPSetResponse = Shapes::StructureShape.new(name: 'DeleteIPSetResponse')
+    DeleteLoggingConfigurationRequest = Shapes::StructureShape.new(name: 'DeleteLoggingConfigurationRequest')
+    DeleteLoggingConfigurationResponse = Shapes::StructureShape.new(name: 'DeleteLoggingConfigurationResponse')
     DeletePermissionPolicyRequest = Shapes::StructureShape.new(name: 'DeletePermissionPolicyRequest')
     DeletePermissionPolicyResponse = Shapes::StructureShape.new(name: 'DeletePermissionPolicyResponse')
     DeleteRateBasedRuleRequest = Shapes::StructureShape.new(name: 'DeleteRateBasedRuleRequest')
@@ -101,6 +103,8 @@ module Aws::WAFRegional
     GetGeoMatchSetResponse = Shapes::StructureShape.new(name: 'GetGeoMatchSetResponse')
     GetIPSetRequest = Shapes::StructureShape.new(name: 'GetIPSetRequest')
     GetIPSetResponse = Shapes::StructureShape.new(name: 'GetIPSetResponse')
+    GetLoggingConfigurationRequest = Shapes::StructureShape.new(name: 'GetLoggingConfigurationRequest')
+    GetLoggingConfigurationResponse = Shapes::StructureShape.new(name: 'GetLoggingConfigurationResponse')
     GetPermissionPolicyRequest = Shapes::StructureShape.new(name: 'GetPermissionPolicyRequest')
     GetPermissionPolicyResponse = Shapes::StructureShape.new(name: 'GetPermissionPolicyResponse')
     GetRateBasedRuleManagedKeysRequest = Shapes::StructureShape.new(name: 'GetRateBasedRuleManagedKeysRequest')
@@ -153,6 +157,8 @@ module Aws::WAFRegional
     ListGeoMatchSetsResponse = Shapes::StructureShape.new(name: 'ListGeoMatchSetsResponse')
     ListIPSetsRequest = Shapes::StructureShape.new(name: 'ListIPSetsRequest')
     ListIPSetsResponse = Shapes::StructureShape.new(name: 'ListIPSetsResponse')
+    ListLoggingConfigurationsRequest = Shapes::StructureShape.new(name: 'ListLoggingConfigurationsRequest')
+    ListLoggingConfigurationsResponse = Shapes::StructureShape.new(name: 'ListLoggingConfigurationsResponse')
     ListRateBasedRulesRequest = Shapes::StructureShape.new(name: 'ListRateBasedRulesRequest')
     ListRateBasedRulesResponse = Shapes::StructureShape.new(name: 'ListRateBasedRulesResponse')
     ListRegexMatchSetsRequest = Shapes::StructureShape.new(name: 'ListRegexMatchSetsRequest')
@@ -175,6 +181,9 @@ module Aws::WAFRegional
     ListWebACLsResponse = Shapes::StructureShape.new(name: 'ListWebACLsResponse')
     ListXssMatchSetsRequest = Shapes::StructureShape.new(name: 'ListXssMatchSetsRequest')
     ListXssMatchSetsResponse = Shapes::StructureShape.new(name: 'ListXssMatchSetsResponse')
+    LogDestinationConfigs = Shapes::ListShape.new(name: 'LogDestinationConfigs')
+    LoggingConfiguration = Shapes::StructureShape.new(name: 'LoggingConfiguration')
+    LoggingConfigurations = Shapes::ListShape.new(name: 'LoggingConfigurations')
     ManagedKey = Shapes::StringShape.new(name: 'ManagedKey')
     ManagedKeys = Shapes::ListShape.new(name: 'ManagedKeys')
     MatchFieldData = Shapes::StringShape.new(name: 'MatchFieldData')
@@ -192,11 +201,14 @@ module Aws::WAFRegional
     Predicate = Shapes::StructureShape.new(name: 'Predicate')
     PredicateType = Shapes::StringShape.new(name: 'PredicateType')
     Predicates = Shapes::ListShape.new(name: 'Predicates')
+    PutLoggingConfigurationRequest = Shapes::StructureShape.new(name: 'PutLoggingConfigurationRequest')
+    PutLoggingConfigurationResponse = Shapes::StructureShape.new(name: 'PutLoggingConfigurationResponse')
     PutPermissionPolicyRequest = Shapes::StructureShape.new(name: 'PutPermissionPolicyRequest')
     PutPermissionPolicyResponse = Shapes::StructureShape.new(name: 'PutPermissionPolicyResponse')
     RateBasedRule = Shapes::StructureShape.new(name: 'RateBasedRule')
     RateKey = Shapes::StringShape.new(name: 'RateKey')
     RateLimit = Shapes::IntegerShape.new(name: 'RateLimit')
+    RedactedFields = Shapes::ListShape.new(name: 'RedactedFields')
     RegexMatchSet = Shapes::StructureShape.new(name: 'RegexMatchSet')
     RegexMatchSetSummaries = Shapes::ListShape.new(name: 'RegexMatchSetSummaries')
     RegexMatchSetSummary = Shapes::StructureShape.new(name: 'RegexMatchSetSummary')
@@ -472,6 +484,11 @@ module Aws::WAFRegional
     DeleteIPSetResponse.add_member(:change_token, Shapes::ShapeRef.new(shape: ChangeToken, location_name: "ChangeToken"))
     DeleteIPSetResponse.struct_class = Types::DeleteIPSetResponse
 
+    DeleteLoggingConfigurationRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ResourceArn, required: true, location_name: "ResourceArn"))
+    DeleteLoggingConfigurationRequest.struct_class = Types::DeleteLoggingConfigurationRequest
+
+    DeleteLoggingConfigurationResponse.struct_class = Types::DeleteLoggingConfigurationResponse
+
     DeletePermissionPolicyRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ResourceArn, required: true, location_name: "ResourceArn"))
     DeletePermissionPolicyRequest.struct_class = Types::DeletePermissionPolicyRequest
 
@@ -601,6 +618,12 @@ module Aws::WAFRegional
     GetIPSetResponse.add_member(:ip_set, Shapes::ShapeRef.new(shape: IPSet, location_name: "IPSet"))
     GetIPSetResponse.struct_class = Types::GetIPSetResponse
 
+    GetLoggingConfigurationRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ResourceArn, required: true, location_name: "ResourceArn"))
+    GetLoggingConfigurationRequest.struct_class = Types::GetLoggingConfigurationRequest
+
+    GetLoggingConfigurationResponse.add_member(:logging_configuration, Shapes::ShapeRef.new(shape: LoggingConfiguration, location_name: "LoggingConfiguration"))
+    GetLoggingConfigurationResponse.struct_class = Types::GetLoggingConfigurationResponse
+
     GetPermissionPolicyRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ResourceArn, required: true, location_name: "ResourceArn"))
     GetPermissionPolicyRequest.struct_class = Types::GetPermissionPolicyRequest
 
@@ -756,6 +779,14 @@ module Aws::WAFRegional
     ListIPSetsResponse.add_member(:ip_sets, Shapes::ShapeRef.new(shape: IPSetSummaries, location_name: "IPSets"))
     ListIPSetsResponse.struct_class = Types::ListIPSetsResponse
 
+    ListLoggingConfigurationsRequest.add_member(:next_marker, Shapes::ShapeRef.new(shape: NextMarker, location_name: "NextMarker"))
+    ListLoggingConfigurationsRequest.add_member(:limit, Shapes::ShapeRef.new(shape: PaginationLimit, location_name: "Limit"))
+    ListLoggingConfigurationsRequest.struct_class = Types::ListLoggingConfigurationsRequest
+
+    ListLoggingConfigurationsResponse.add_member(:logging_configurations, Shapes::ShapeRef.new(shape: LoggingConfigurations, location_name: "LoggingConfigurations"))
+    ListLoggingConfigurationsResponse.add_member(:next_marker, Shapes::ShapeRef.new(shape: NextMarker, location_name: "NextMarker"))
+    ListLoggingConfigurationsResponse.struct_class = Types::ListLoggingConfigurationsResponse
+
     ListRateBasedRulesRequest.add_member(:next_marker, Shapes::ShapeRef.new(shape: NextMarker, location_name: "NextMarker"))
     ListRateBasedRulesRequest.add_member(:limit, Shapes::ShapeRef.new(shape: PaginationLimit, location_name: "Limit"))
     ListRateBasedRulesRequest.struct_class = Types::ListRateBasedRulesRequest
@@ -842,6 +873,15 @@ module Aws::WAFRegional
     ListXssMatchSetsResponse.add_member(:xss_match_sets, Shapes::ShapeRef.new(shape: XssMatchSetSummaries, location_name: "XssMatchSets"))
     ListXssMatchSetsResponse.struct_class = Types::ListXssMatchSetsResponse
 
+    LogDestinationConfigs.member = Shapes::ShapeRef.new(shape: ResourceArn)
+
+    LoggingConfiguration.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ResourceArn, required: true, location_name: "ResourceArn"))
+    LoggingConfiguration.add_member(:log_destination_configs, Shapes::ShapeRef.new(shape: LogDestinationConfigs, required: true, location_name: "LogDestinationConfigs"))
+    LoggingConfiguration.add_member(:redacted_fields, Shapes::ShapeRef.new(shape: RedactedFields, location_name: "RedactedFields"))
+    LoggingConfiguration.struct_class = Types::LoggingConfiguration
+
+    LoggingConfigurations.member = Shapes::ShapeRef.new(shape: LoggingConfiguration)
+
     ManagedKeys.member = Shapes::ShapeRef.new(shape: ManagedKey)
 
     Predicate.add_member(:negated, Shapes::ShapeRef.new(shape: Negated, required: true, location_name: "Negated"))
@@ -851,6 +891,12 @@ module Aws::WAFRegional
 
     Predicates.member = Shapes::ShapeRef.new(shape: Predicate)
 
+    PutLoggingConfigurationRequest.add_member(:logging_configuration, Shapes::ShapeRef.new(shape: LoggingConfiguration, required: true, location_name: "LoggingConfiguration"))
+    PutLoggingConfigurationRequest.struct_class = Types::PutLoggingConfigurationRequest
+
+    PutLoggingConfigurationResponse.add_member(:logging_configuration, Shapes::ShapeRef.new(shape: LoggingConfiguration, location_name: "LoggingConfiguration"))
+    PutLoggingConfigurationResponse.struct_class = Types::PutLoggingConfigurationResponse
+
     PutPermissionPolicyRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ResourceArn, required: true, location_name: "ResourceArn"))
     PutPermissionPolicyRequest.add_member(:policy, Shapes::ShapeRef.new(shape: PolicyString, required: true, location_name: "Policy"))
     PutPermissionPolicyRequest.struct_class = Types::PutPermissionPolicyRequest
@@ -865,6 +911,8 @@ module Aws::WAFRegional
     RateBasedRule.add_member(:rate_limit, Shapes::ShapeRef.new(shape: RateLimit, required: true, location_name: "RateLimit"))
     RateBasedRule.struct_class = Types::RateBasedRule
 
+    RedactedFields.member = Shapes::ShapeRef.new(shape: FieldToMatch)
+
     RegexMatchSet.add_member(:regex_match_set_id, Shapes::ShapeRef.new(shape: ResourceId, location_name: "RegexMatchSetId"))
     RegexMatchSet.add_member(:name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "Name"))
     RegexMatchSet.add_member(:regex_match_tuples, Shapes::ShapeRef.new(shape: RegexMatchTuples, location_name: "RegexMatchTuples"))
@@ -1389,6 +1437,17 @@ module Aws::WAFRegional
         o.errors << Shapes::ShapeRef.new(shape: WAFNonEmptyEntityException)
       end)
 
+      api.add_operation(:delete_logging_configuration, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "DeleteLoggingConfiguration"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: DeleteLoggingConfigurationRequest)
+        o.output = Shapes::ShapeRef.new(shape: DeleteLoggingConfigurationResponse)
+        o.errors << Shapes::ShapeRef.new(shape: WAFInternalErrorException)
+        o.errors << Shapes::ShapeRef.new(shape: WAFNonexistentItemException)
+        o.errors << Shapes::ShapeRef.new(shape: WAFStaleDataException)
+      end)
+
       api.add_operation(:delete_permission_policy, Seahorse::Model::Operation.new.tap do |o|
         o.name = "DeletePermissionPolicy"
         o.http_method = "POST"
@@ -1467,6 +1526,7 @@ module Aws::WAFRegional
         o.errors << Shapes::ShapeRef.new(shape: WAFNonexistentItemException)
         o.errors << Shapes::ShapeRef.new(shape: WAFReferencedItemException)
         o.errors << Shapes::ShapeRef.new(shape: WAFNonEmptyEntityException)
+        o.errors << Shapes::ShapeRef.new(shape: WAFInvalidOperationException)
       end)
 
       api.add_operation(:delete_size_constraint_set, Seahorse::Model::Operation.new.tap do |o|
@@ -1589,6 +1649,16 @@ module Aws::WAFRegional
         o.errors << Shapes::ShapeRef.new(shape: WAFNonexistentItemException)
       end)
 
+      api.add_operation(:get_logging_configuration, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "GetLoggingConfiguration"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: GetLoggingConfigurationRequest)
+        o.output = Shapes::ShapeRef.new(shape: GetLoggingConfigurationResponse)
+        o.errors << Shapes::ShapeRef.new(shape: WAFInternalErrorException)
+        o.errors << Shapes::ShapeRef.new(shape: WAFNonexistentItemException)
+      end)
+
       api.add_operation(:get_permission_policy, Seahorse::Model::Operation.new.tap do |o|
         o.name = "GetPermissionPolicy"
         o.http_method = "POST"
@@ -1773,6 +1843,17 @@ module Aws::WAFRegional
         o.errors << Shapes::ShapeRef.new(shape: WAFInvalidAccountException)
       end)
 
+      api.add_operation(:list_logging_configurations, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "ListLoggingConfigurations"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: ListLoggingConfigurationsRequest)
+        o.output = Shapes::ShapeRef.new(shape: ListLoggingConfigurationsResponse)
+        o.errors << Shapes::ShapeRef.new(shape: WAFInternalErrorException)
+        o.errors << Shapes::ShapeRef.new(shape: WAFNonexistentItemException)
+        o.errors << Shapes::ShapeRef.new(shape: WAFInvalidParameterException)
+      end)
+
       api.add_operation(:list_rate_based_rules, Seahorse::Model::Operation.new.tap do |o|
         o.name = "ListRateBasedRules"
         o.http_method = "POST"
@@ -1883,6 +1964,17 @@ module Aws::WAFRegional
         o.errors << Shapes::ShapeRef.new(shape: WAFInvalidAccountException)
       end)
 
+      api.add_operation(:put_logging_configuration, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "PutLoggingConfiguration"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: PutLoggingConfigurationRequest)
+        o.output = Shapes::ShapeRef.new(shape: PutLoggingConfigurationResponse)
+        o.errors << Shapes::ShapeRef.new(shape: WAFInternalErrorException)
+        o.errors << Shapes::ShapeRef.new(shape: WAFNonexistentItemException)
+        o.errors << Shapes::ShapeRef.new(shape: WAFStaleDataException)
+      end)
+
       api.add_operation(:put_permission_policy, Seahorse::Model::Operation.new.tap do |o|
         o.name = "PutPermissionPolicy"
         o.http_method = "POST"

data/lib/aws-sdk-wafregional/types.rb

@@ -219,7 +219,7 @@ module Aws::WAFRegional
     #         action: "INSERT", # required, accepts INSERT, DELETE
     #         byte_match_tuple: { # required
     #           field_to_match: { # required
-    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #             data: "MatchFieldData",
     #           },
     #           target_string: "data", # required
@@ -257,7 +257,7 @@ module Aws::WAFRegional
     #
     #       {
     #         field_to_match: { # required
-    #           type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #           type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #           data: "MatchFieldData",
     #         },
     #         target_string: "data", # required
@@ -305,6 +305,15 @@ module Aws::WAFRegional
     #     size constraint set. For more information, see
     #     CreateSizeConstraintSet.
     #
+    #   * `SINGLE_QUERY_ARG`\: The parameter in the query string that you
+    #     will inspect, such as *UserName* or *SalesRegion*. The maximum
+    #     length for `SINGLE_QUERY_ARG` is 30 characters.
+    #
+    #   * `ALL_QUERY_ARGS`\: Similar to `SINGLE_QUERY_ARG`, but instead of
+    #     inspecting a single parameter, AWS WAF inspects all parameters
+    #     within the query string for the value or regex pattern that you
+    #     specify in `TargetString`.
+    #
     #   If `TargetString` includes alphabetic characters A-Z and a-z, note
     #   that the value is case sensitive.
     #
@@ -331,10 +340,12 @@ module Aws::WAFRegional
     #   specify a transformation, AWS WAF performs the transformation on
     #   `TargetString` before inspecting a request for a match.
     #
+    #   You can only specify a single type of TextTransformation.
+    #
     #   **CMD\_LINE**
     #
     #   When you're concerned that attackers are injecting an operating
-    #   system commandline command and using unusual formatting to disguise
+    #   system command line command and using unusual formatting to disguise
     #   some or all of the command, use this option to perform the following
     #   transformations:
     #
@@ -1175,6 +1186,29 @@ module Aws::WAFRegional
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass DeleteLoggingConfigurationRequest
+    #   data as a hash:
+    #
+    #       {
+    #         resource_arn: "ResourceArn", # required
+    #       }
+    #
+    # @!attribute [rw] resource_arn
+    #   The Amazon Resource Name (ARN) of the web ACL from which you want to
+    #   delete the LoggingConfiguration.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/DeleteLoggingConfigurationRequest AWS API Documentation
+    #
+    class DeleteLoggingConfigurationRequest < Struct.new(
+      :resource_arn)
+      include Aws::Structure
+    end
+
+    # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/DeleteLoggingConfigurationResponse AWS API Documentation
+    #
+    class DeleteLoggingConfigurationResponse < Aws::EmptyStructure; end
+
     # @note When making an API call, you may pass DeletePermissionPolicyRequest
     #   data as a hash:
     #
@@ -1588,7 +1622,7 @@ module Aws::WAFRegional
     #   data as a hash:
     #
     #       {
-    #         type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #         type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #         data: "MatchFieldData",
     #       }
     #
@@ -1620,14 +1654,28 @@ module Aws::WAFRegional
     #     block requests based on the length of the body, you can create a
     #     size constraint set. For more information, see
     #     CreateSizeConstraintSet.
+    #
+    #   * `SINGLE_QUERY_ARG`\: The parameter in the query string that you
+    #     will inspect, such as *UserName* or *SalesRegion*. The maximum
+    #     length for `SINGLE_QUERY_ARG` is 30 characters.
+    #
+    #   * `ALL_QUERY_ARGS`\: Similar to `SINGLE_QUERY_ARG`, but rather than
+    #     inspecting a single parameter, AWS WAF will inspect all parameters
+    #     within the query for the value or regex pattern that you specify
+    #     in `TargetString`.
     #   @return [String]
     #
     # @!attribute [rw] data
     #   When the value of `Type` is `HEADER`, enter the name of the header
     #   that you want AWS WAF to search, for example, `User-Agent` or
-    #   `Referer`. If the value of `Type` is any other value, omit `Data`.
+    #   `Referer`. The name of the header is not case sensitive.
+    #
+    #   When the value of `Type` is `SINGLE_QUERY_ARG`, enter the name of
+    #   the parameter that you want AWS WAF to search, for example,
+    #   `UserName` or `SalesRegion`. The parameter name is not case
+    #   sensitive.
     #
-    #   The name of the header is not case sensitive.
+    #   If the value of `Type` is any other value, omit `Data`.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/FieldToMatch AWS API Documentation
@@ -1912,6 +1960,36 @@ module Aws::WAFRegional
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass GetLoggingConfigurationRequest
+    #   data as a hash:
+    #
+    #       {
+    #         resource_arn: "ResourceArn", # required
+    #       }
+    #
+    # @!attribute [rw] resource_arn
+    #   The Amazon Resource Name (ARN) of the web ACL for which you want to
+    #   get the LoggingConfiguration.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/GetLoggingConfigurationRequest AWS API Documentation
+    #
+    class GetLoggingConfigurationRequest < Struct.new(
+      :resource_arn)
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] logging_configuration
+    #   The LoggingConfiguration for the specified web ACL.
+    #   @return [Types::LoggingConfiguration]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/GetLoggingConfigurationResponse AWS API Documentation
+    #
+    class GetLoggingConfigurationResponse < Struct.new(
+      :logging_configuration)
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass GetPermissionPolicyRequest
     #   data as a hash:
     #
@@ -2527,14 +2605,15 @@ module Aws::WAFRegional
 
     # Contains one or more IP addresses or blocks of IP addresses specified
     # in Classless Inter-Domain Routing (CIDR) notation. AWS WAF supports
-    # /8, /16, /24, and /32 IP address ranges for IPv4, and /24, /32, /48,
-    # /56, /64 and /128 for IPv6.
+    # IPv4 address ranges: /8 and any range between /16 through /32. AWS WAF
+    # supports IPv6 address ranges: /16, /24, /32, /48, /56, /64, and /128.
     #
     # To specify an individual IP address, you specify the four-part IP
     # address followed by a `/32`, for example, 192.0.2.0/31. To block a
-    # range of IP addresses, you can specify a `/128`, `/64`, `/56`, `/48`,
-    # `/32`, `/24`, `/16`, or `/8` CIDR. For more information about CIDR
-    # notation, see the Wikipedia entry [Classless Inter-Domain Routing][1].
+    # range of IP addresses, you can specify /8 or any range between /16
+    # through /32 (for IPv4) or /16, /24, /32, /48, /56, /64, or /128 (for
+    # IPv6). For more information about CIDR notation, see the Wikipedia
+    # entry [Classless Inter-Domain Routing][1].
     #
     #
     #
@@ -2900,6 +2979,61 @@ module Aws::WAFRegional
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass ListLoggingConfigurationsRequest
+    #   data as a hash:
+    #
+    #       {
+    #         next_marker: "NextMarker",
+    #         limit: 1,
+    #       }
+    #
+    # @!attribute [rw] next_marker
+    #   If you specify a value for `Limit` and you have more
+    #   `LoggingConfigurations` than the value of `Limit`, AWS WAF returns a
+    #   `NextMarker` value in the response that allows you to list another
+    #   group of `LoggingConfigurations`. For the second and subsequent
+    #   `ListLoggingConfigurations` requests, specify the value of
+    #   `NextMarker` from the previous response to get information about
+    #   another batch of `ListLoggingConfigurations`.
+    #   @return [String]
+    #
+    # @!attribute [rw] limit
+    #   Specifies the number of `LoggingConfigurations` that you want AWS
+    #   WAF to return for this request. If you have more
+    #   `LoggingConfigurations` than the number that you specify for
+    #   `Limit`, the response includes a `NextMarker` value that you can use
+    #   to get another batch of `LoggingConfigurations`.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/ListLoggingConfigurationsRequest AWS API Documentation
+    #
+    class ListLoggingConfigurationsRequest < Struct.new(
+      :next_marker,
+      :limit)
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] logging_configurations
+    #   An array of LoggingConfiguration objects.
+    #   @return [Array<Types::LoggingConfiguration>]
+    #
+    # @!attribute [rw] next_marker
+    #   If you have more `LoggingConfigurations` than the number that you
+    #   specified for `Limit` in the request, the response includes a
+    #   `NextMarker` value. To list more `LoggingConfigurations`, submit
+    #   another `ListLoggingConfigurations` request, and specify the
+    #   `NextMarker` value from the response in the `NextMarker` value in
+    #   the next request.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/ListLoggingConfigurationsResponse AWS API Documentation
+    #
+    class ListLoggingConfigurationsResponse < Struct.new(
+      :logging_configurations,
+      :next_marker)
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass ListRateBasedRulesRequest
     #   data as a hash:
     #
@@ -3478,6 +3612,47 @@ module Aws::WAFRegional
       include Aws::Structure
     end
 
+    # The Amazon Kinesis Data Firehose delivery streams, `RedactedFields`
+    # information, and the web ACL Amazon Resource Name (ARN).
+    #
+    # @note When making an API call, you may pass LoggingConfiguration
+    #   data as a hash:
+    #
+    #       {
+    #         resource_arn: "ResourceArn", # required
+    #         log_destination_configs: ["ResourceArn"], # required
+    #         redacted_fields: [
+    #           {
+    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
+    #             data: "MatchFieldData",
+    #           },
+    #         ],
+    #       }
+    #
+    # @!attribute [rw] resource_arn
+    #   The Amazon Resource Name (ARN) of the web ACL that you want to
+    #   associate with `LogDestinationConfigs`.
+    #   @return [String]
+    #
+    # @!attribute [rw] log_destination_configs
+    #   An array of Amazon Kinesis Data Firehose delivery stream ARNs.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] redacted_fields
+    #   The parts of the request that you want redacted from the logs. For
+    #   example, if you redact the cookie field, the cookie field in the
+    #   delivery stream will be `xxx`.
+    #   @return [Array<Types::FieldToMatch>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/LoggingConfiguration AWS API Documentation
+    #
+    class LoggingConfiguration < Struct.new(
+      :resource_arn,
+      :log_destination_configs,
+      :redacted_fields)
+      include Aws::Structure
+    end
+
     # Specifies the ByteMatchSet, IPSet, SqlInjectionMatchSet, XssMatchSet,
     # RegexMatchSet, GeoMatchSet, and SizeConstraintSet objects that you
     # want to add to a `Rule` and, for each object, indicates whether you
@@ -3510,8 +3685,7 @@ module Aws::WAFRegional
     #   @return [Boolean]
     #
     # @!attribute [rw] type
-    #   The type of predicate in a `Rule`, such as `ByteMatchSet` or
-    #   `IPSet`.
+    #   The type of predicate in a `Rule`, such as `ByteMatch` or `IPSet`.
     #   @return [String]
     #
     # @!attribute [rw] data_id
@@ -3529,6 +3703,46 @@ module Aws::WAFRegional
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass PutLoggingConfigurationRequest
+    #   data as a hash:
+    #
+    #       {
+    #         logging_configuration: { # required
+    #           resource_arn: "ResourceArn", # required
+    #           log_destination_configs: ["ResourceArn"], # required
+    #           redacted_fields: [
+    #             {
+    #               type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
+    #               data: "MatchFieldData",
+    #             },
+    #           ],
+    #         },
+    #       }
+    #
+    # @!attribute [rw] logging_configuration
+    #   The Amazon Kinesis Data Firehose delivery streams that contains the
+    #   inspected traffic information, the redacted fields details, and the
+    #   Amazon Resource Name (ARN) of the web ACL to monitor.
+    #   @return [Types::LoggingConfiguration]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/PutLoggingConfigurationRequest AWS API Documentation
+    #
+    class PutLoggingConfigurationRequest < Struct.new(
+      :logging_configuration)
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] logging_configuration
+    #   The LoggingConfiguration that you submitted in the request.
+    #   @return [Types::LoggingConfiguration]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/PutLoggingConfigurationResponse AWS API Documentation
+    #
+    class PutLoggingConfigurationResponse < Struct.new(
+      :logging_configuration)
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass PutPermissionPolicyRequest
     #   data as a hash:
     #
@@ -3718,7 +3932,7 @@ module Aws::WAFRegional
     #         action: "INSERT", # required, accepts INSERT, DELETE
     #         regex_match_tuple: { # required
     #           field_to_match: { # required
-    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #             data: "MatchFieldData",
     #           },
     #           text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -3766,7 +3980,7 @@ module Aws::WAFRegional
     #
     #       {
     #         field_to_match: { # required
-    #           type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #           type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #           data: "MatchFieldData",
     #         },
     #         text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -3783,6 +3997,8 @@ module Aws::WAFRegional
     #   specify a transformation, AWS WAF performs the transformation on
     #   `RegexPatternSet` before inspecting a request for a match.
     #
+    #   You can only specify a single type of TextTransformation.
+    #
     #   **CMD\_LINE**
     #
     #   When you're concerned that attackers are injecting an operating
@@ -4240,7 +4456,7 @@ module Aws::WAFRegional
     #
     #       {
     #         field_to_match: { # required
-    #           type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #           type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #           data: "MatchFieldData",
     #         },
     #         text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -4258,6 +4474,8 @@ module Aws::WAFRegional
     #   specify a transformation, AWS WAF performs the transformation on
     #   `FieldToMatch` before inspecting a request for a match.
     #
+    #   You can only specify a single type of TextTransformation.
+    #
     #   Note that if you choose `BODY` for the value of `Type`, you must
     #   choose `NONE` for `TextTransformation` because CloudFront forwards
     #   only the first 8192 bytes for inspection.
@@ -4456,7 +4674,7 @@ module Aws::WAFRegional
     #         action: "INSERT", # required, accepts INSERT, DELETE
     #         size_constraint: { # required
     #           field_to_match: { # required
-    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #             data: "MatchFieldData",
     #           },
     #           text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -4565,7 +4783,7 @@ module Aws::WAFRegional
     #         action: "INSERT", # required, accepts INSERT, DELETE
     #         sql_injection_match_tuple: { # required
     #           field_to_match: { # required
-    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #             data: "MatchFieldData",
     #           },
     #           text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -4601,7 +4819,7 @@ module Aws::WAFRegional
     #
     #       {
     #         field_to_match: { # required
-    #           type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #           type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #           data: "MatchFieldData",
     #         },
     #         text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -4618,10 +4836,12 @@ module Aws::WAFRegional
     #   specify a transformation, AWS WAF performs the transformation on
     #   `FieldToMatch` before inspecting a request for a match.
     #
+    #   You can only specify a single type of TextTransformation.
+    #
     #   **CMD\_LINE**
     #
     #   When you're concerned that attackers are injecting an operating
-    #   system commandline command and using unusual formatting to disguise
+    #   system command line command and using unusual formatting to disguise
     #   some or all of the command, use this option to perform the following
     #   transformations:
     #
@@ -4779,7 +4999,7 @@ module Aws::WAFRegional
     #             action: "INSERT", # required, accepts INSERT, DELETE
     #             byte_match_tuple: { # required
     #               field_to_match: { # required
-    #                 type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #                 type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #                 data: "MatchFieldData",
     #               },
     #               target_string: "data", # required
@@ -4932,6 +5152,8 @@ module Aws::WAFRegional
     #   * IPSetUpdate: Contains `Action` and `IPSetDescriptor`
     #
     #   * IPSetDescriptor: Contains `Type` and `Value`
+    #
+    #   You can insert a maximum of 1000 addresses in a single request.
     #   @return [Array<Types::IPSetUpdate>]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/waf-regional-2016-11-28/UpdateIPSetRequest AWS API Documentation
@@ -5031,7 +5253,7 @@ module Aws::WAFRegional
     #             action: "INSERT", # required, accepts INSERT, DELETE
     #             regex_match_tuple: { # required
     #               field_to_match: { # required
-    #                 type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #                 type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #                 data: "MatchFieldData",
     #               },
     #               text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -5272,7 +5494,7 @@ module Aws::WAFRegional
     #             action: "INSERT", # required, accepts INSERT, DELETE
     #             size_constraint: { # required
     #               field_to_match: { # required
-    #                 type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #                 type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #                 data: "MatchFieldData",
     #               },
     #               text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -5342,7 +5564,7 @@ module Aws::WAFRegional
     #             action: "INSERT", # required, accepts INSERT, DELETE
     #             sql_injection_match_tuple: { # required
     #               field_to_match: { # required
-    #                 type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #                 type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #                 data: "MatchFieldData",
     #               },
     #               text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -5497,7 +5719,7 @@ module Aws::WAFRegional
     #             action: "INSERT", # required, accepts INSERT, DELETE
     #             xss_match_tuple: { # required
     #               field_to_match: { # required
-    #                 type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #                 type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #                 data: "MatchFieldData",
     #               },
     #               text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -5802,7 +6024,7 @@ module Aws::WAFRegional
     #         action: "INSERT", # required, accepts INSERT, DELETE
     #         xss_match_tuple: { # required
     #           field_to_match: { # required
-    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #             type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #             data: "MatchFieldData",
     #           },
     #           text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -5837,7 +6059,7 @@ module Aws::WAFRegional
     #
     #       {
     #         field_to_match: { # required
-    #           type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY
+    #           type: "URI", # required, accepts URI, QUERY_STRING, HEADER, METHOD, BODY, SINGLE_QUERY_ARG, ALL_QUERY_ARGS
     #           data: "MatchFieldData",
     #         },
     #         text_transformation: "NONE", # required, accepts NONE, COMPRESS_WHITE_SPACE, HTML_ENTITY_DECODE, LOWERCASE, CMD_LINE, URL_DECODE
@@ -5854,10 +6076,12 @@ module Aws::WAFRegional
     #   specify a transformation, AWS WAF performs the transformation on
     #   `FieldToMatch` before inspecting a request for a match.
     #
+    #   You can only specify a single type of TextTransformation.
+    #
     #   **CMD\_LINE**
     #
     #   When you're concerned that attackers are injecting an operating
-    #   system commandline command and using unusual formatting to disguise
+    #   system command line command and using unusual formatting to disguise
     #   some or all of the command, use this option to perform the following
     #   transformations:
     #

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-wafregional
 version: !ruby/object:Gem::Version
-  version: 1.5.0
+  version: 1.6.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2018-06-26 00:00:00.000000000 Z
+date: 2018-08-31 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core