aws-sdk-wafv2 1.30.0 → 1.31.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +5 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-wafv2/client.rb +14 -20
- data/lib/aws-sdk-wafv2/client_api.rb +5 -0
- data/lib/aws-sdk-wafv2/errors.rb +16 -0
- data/lib/aws-sdk-wafv2/types.rb +33 -7
- data/lib/aws-sdk-wafv2.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: b3b1c92cb789ccf4f30ff1c2d2e5b2d7814f58ed48f6c122cf00a223d6b96714
|
4
|
+
data.tar.gz: 2e0b15160d174f1ebd884e92eca57256d43f5dc04273090f1c65698827167467
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 884441ff2f923c2c198f3ae70edc67688646cc318a1fad59701e1bb4a10f9486b96efb1d82ff56c66b0ed61afe1bdb71b729bf48d166acc28ec4bc962bcebefc
|
7
|
+
data.tar.gz: 03e62ccd185255c3004e2b05bd9b7aaf60c81ae687b789b1bd290bfd9bf9fd225dbe9265b2bff33a8b667f5ed8c1f65cd5b8c06dbdb8eea6a6ea52f1cd6f2172
|
data/CHANGELOG.md
CHANGED
@@ -1,6 +1,11 @@
|
|
1
1
|
Unreleased Changes
|
2
2
|
------------------
|
3
3
|
|
4
|
+
1.31.0 (2021-11-15)
|
5
|
+
------------------
|
6
|
+
|
7
|
+
* Feature - Your options for logging web ACL traffic now include Amazon CloudWatch Logs log groups and Amazon S3 buckets.
|
8
|
+
|
4
9
|
1.30.0 (2021-11-08)
|
5
10
|
------------------
|
6
11
|
|
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
1.
|
1
|
+
1.31.0
|
data/lib/aws-sdk-wafv2/client.rb
CHANGED
@@ -4479,28 +4479,22 @@ module Aws::WAFV2
|
|
4479
4479
|
# You can access information about all traffic that WAF inspects using
|
4480
4480
|
# the following steps:
|
4481
4481
|
#
|
4482
|
-
# 1. Create an Amazon
|
4483
|
-
#
|
4484
|
-
#
|
4485
|
-
#
|
4486
|
-
#
|
4487
|
-
#
|
4488
|
-
#
|
4489
|
-
#
|
4490
|
-
#
|
4491
|
-
# <note markdown="1"> Do not create the data firehose using a `Kinesis stream` as your
|
4492
|
-
# source.
|
4493
|
-
#
|
4494
|
-
# </note>
|
4495
|
-
#
|
4496
|
-
# 2. Associate that firehose to your web ACL using a
|
4482
|
+
# 1. Create your logging destination. You can use an Amazon CloudWatch
|
4483
|
+
# Logs log group, an Amazon Simple Storage Service (Amazon S3)
|
4484
|
+
# bucket, or an Amazon Kinesis Data Firehose. For information about
|
4485
|
+
# configuring logging destinations and the permissions that are
|
4486
|
+
# required for each, see [Logging web ACL traffic information][1] in
|
4487
|
+
# the *WAF Developer Guide*.
|
4488
|
+
#
|
4489
|
+
# 2. Associate your logging destination to your web ACL using a
|
4497
4490
|
# `PutLoggingConfiguration` request.
|
4498
4491
|
#
|
4499
4492
|
# When you successfully enable logging using a `PutLoggingConfiguration`
|
4500
|
-
# request, WAF
|
4501
|
-
#
|
4502
|
-
#
|
4503
|
-
#
|
4493
|
+
# request, WAF creates an additional role or policy that is required to
|
4494
|
+
# write logs to the logging destination. For an Amazon CloudWatch Logs
|
4495
|
+
# log group, WAF creates a resource policy on the log group. For an
|
4496
|
+
# Amazon S3 bucket, WAF creates a bucket policy. For an Amazon Kinesis
|
4497
|
+
# Data Firehose, WAF creates a service-linked role.
|
4504
4498
|
#
|
4505
4499
|
# <note markdown="1"> This operation completely replaces the mutable specifications that you
|
4506
4500
|
# already have for the logging configuration with the ones that you
|
@@ -6156,7 +6150,7 @@ module Aws::WAFV2
|
|
6156
6150
|
params: params,
|
6157
6151
|
config: config)
|
6158
6152
|
context[:gem_name] = 'aws-sdk-wafv2'
|
6159
|
-
context[:gem_version] = '1.
|
6153
|
+
context[:gem_version] = '1.31.0'
|
6160
6154
|
Seahorse::Client::Request.new(handlers, context)
|
6161
6155
|
end
|
6162
6156
|
|
@@ -292,6 +292,7 @@ module Aws::WAFV2
|
|
292
292
|
WAFInvalidPermissionPolicyException = Shapes::StructureShape.new(name: 'WAFInvalidPermissionPolicyException')
|
293
293
|
WAFInvalidResourceException = Shapes::StructureShape.new(name: 'WAFInvalidResourceException')
|
294
294
|
WAFLimitsExceededException = Shapes::StructureShape.new(name: 'WAFLimitsExceededException')
|
295
|
+
WAFLogDestinationPermissionIssueException = Shapes::StructureShape.new(name: 'WAFLogDestinationPermissionIssueException')
|
295
296
|
WAFNonexistentItemException = Shapes::StructureShape.new(name: 'WAFNonexistentItemException')
|
296
297
|
WAFOptimisticLockException = Shapes::StructureShape.new(name: 'WAFOptimisticLockException')
|
297
298
|
WAFServiceLinkedRoleErrorException = Shapes::StructureShape.new(name: 'WAFServiceLinkedRoleErrorException')
|
@@ -1186,6 +1187,9 @@ module Aws::WAFV2
|
|
1186
1187
|
WAFLimitsExceededException.add_member(:message, Shapes::ShapeRef.new(shape: ErrorMessage, location_name: "Message"))
|
1187
1188
|
WAFLimitsExceededException.struct_class = Types::WAFLimitsExceededException
|
1188
1189
|
|
1190
|
+
WAFLogDestinationPermissionIssueException.add_member(:message, Shapes::ShapeRef.new(shape: ErrorMessage, location_name: "Message"))
|
1191
|
+
WAFLogDestinationPermissionIssueException.struct_class = Types::WAFLogDestinationPermissionIssueException
|
1192
|
+
|
1189
1193
|
WAFNonexistentItemException.add_member(:message, Shapes::ShapeRef.new(shape: ErrorMessage, location_name: "Message"))
|
1190
1194
|
WAFNonexistentItemException.struct_class = Types::WAFNonexistentItemException
|
1191
1195
|
|
@@ -1728,6 +1732,7 @@ module Aws::WAFV2
|
|
1728
1732
|
o.errors << Shapes::ShapeRef.new(shape: WAFInvalidParameterException)
|
1729
1733
|
o.errors << Shapes::ShapeRef.new(shape: WAFInvalidOperationException)
|
1730
1734
|
o.errors << Shapes::ShapeRef.new(shape: WAFLimitsExceededException)
|
1735
|
+
o.errors << Shapes::ShapeRef.new(shape: WAFLogDestinationPermissionIssueException)
|
1731
1736
|
end)
|
1732
1737
|
|
1733
1738
|
api.add_operation(:put_managed_rule_set_versions, Seahorse::Model::Operation.new.tap do |o|
|
data/lib/aws-sdk-wafv2/errors.rb
CHANGED
@@ -36,6 +36,7 @@ module Aws::WAFV2
|
|
36
36
|
# * {WAFInvalidPermissionPolicyException}
|
37
37
|
# * {WAFInvalidResourceException}
|
38
38
|
# * {WAFLimitsExceededException}
|
39
|
+
# * {WAFLogDestinationPermissionIssueException}
|
39
40
|
# * {WAFNonexistentItemException}
|
40
41
|
# * {WAFOptimisticLockException}
|
41
42
|
# * {WAFServiceLinkedRoleErrorException}
|
@@ -200,6 +201,21 @@ module Aws::WAFV2
|
|
200
201
|
end
|
201
202
|
end
|
202
203
|
|
204
|
+
class WAFLogDestinationPermissionIssueException < ServiceError
|
205
|
+
|
206
|
+
# @param [Seahorse::Client::RequestContext] context
|
207
|
+
# @param [String] message
|
208
|
+
# @param [Aws::WAFV2::Types::WAFLogDestinationPermissionIssueException] data
|
209
|
+
def initialize(context, message, data = Aws::EmptyStructure.new)
|
210
|
+
super(context, message, data)
|
211
|
+
end
|
212
|
+
|
213
|
+
# @return [String]
|
214
|
+
def message
|
215
|
+
@message || @data[:message]
|
216
|
+
end
|
217
|
+
end
|
218
|
+
|
203
219
|
class WAFNonexistentItemException < ServiceError
|
204
220
|
|
205
221
|
# @param [Seahorse::Client::RequestContext] context
|
data/lib/aws-sdk-wafv2/types.rb
CHANGED
@@ -5563,11 +5563,18 @@ module Aws::WAFV2
|
|
5563
5563
|
include Aws::Structure
|
5564
5564
|
end
|
5565
5565
|
|
5566
|
-
# Defines an association between
|
5567
|
-
#
|
5568
|
-
#
|
5569
|
-
#
|
5570
|
-
#
|
5566
|
+
# Defines an association between logging destinations and a web ACL
|
5567
|
+
# resource, for logging from WAF. As part of the association, you can
|
5568
|
+
# specify parts of the standard logging fields to keep out of the logs
|
5569
|
+
# and you can specify filters so that you log only a subset of the
|
5570
|
+
# logging records.
|
5571
|
+
#
|
5572
|
+
# For information about configuring web ACL logging destinations, see
|
5573
|
+
# [Logging web ACL traffic information][1] in the *WAF Developer Guide*.
|
5574
|
+
#
|
5575
|
+
#
|
5576
|
+
#
|
5577
|
+
# [1]: https://docs.aws.amazon.com/waf/latest/developerguide/logging.html
|
5571
5578
|
#
|
5572
5579
|
# @note When making an API call, you may pass LoggingConfiguration
|
5573
5580
|
# data as a hash:
|
@@ -5632,14 +5639,14 @@ module Aws::WAFV2
|
|
5632
5639
|
# @return [String]
|
5633
5640
|
#
|
5634
5641
|
# @!attribute [rw] log_destination_configs
|
5635
|
-
# The Amazon
|
5642
|
+
# The Amazon Resource Names (ARNs) of the logging destinations that
|
5636
5643
|
# you want to associate with the web ACL.
|
5637
5644
|
# @return [Array<String>]
|
5638
5645
|
#
|
5639
5646
|
# @!attribute [rw] redacted_fields
|
5640
5647
|
# The parts of the request that you want to keep out of the logs. For
|
5641
5648
|
# example, if you redact the `SingleHeader` field, the `HEADER` field
|
5642
|
-
# in the
|
5649
|
+
# in the logs will be `xxx`.
|
5643
5650
|
#
|
5644
5651
|
# <note markdown="1"> You can specify only the following fields for redaction: `UriPath`,
|
5645
5652
|
# `QueryString`, `SingleHeader`, `Method`, and `JsonBody`.
|
@@ -12940,6 +12947,25 @@ module Aws::WAFV2
|
|
12940
12947
|
include Aws::Structure
|
12941
12948
|
end
|
12942
12949
|
|
12950
|
+
# The operation failed because you don't have the permissions that your
|
12951
|
+
# logging configuration requires. For information, see [Logging web ACL
|
12952
|
+
# traffic information][1] in the *WAF Developer Guide*.
|
12953
|
+
#
|
12954
|
+
#
|
12955
|
+
#
|
12956
|
+
# [1]: https://docs.aws.amazon.com/waf/latest/developerguide/logging.html
|
12957
|
+
#
|
12958
|
+
# @!attribute [rw] message
|
12959
|
+
# @return [String]
|
12960
|
+
#
|
12961
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/WAFLogDestinationPermissionIssueException AWS API Documentation
|
12962
|
+
#
|
12963
|
+
class WAFLogDestinationPermissionIssueException < Struct.new(
|
12964
|
+
:message)
|
12965
|
+
SENSITIVE = []
|
12966
|
+
include Aws::Structure
|
12967
|
+
end
|
12968
|
+
|
12943
12969
|
# WAF couldn’t perform the operation because your resource doesn’t
|
12944
12970
|
# exist.
|
12945
12971
|
#
|
data/lib/aws-sdk-wafv2.rb
CHANGED
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-wafv2
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.31.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2021-11-
|
11
|
+
date: 2021-11-15 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|