aws-sdk-wafv2 1.30.0 → 1.34.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +20 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-wafv2/client.rb +28 -21
- data/lib/aws-sdk-wafv2/client_api.rb +5 -0
- data/lib/aws-sdk-wafv2/errors.rb +16 -0
- data/lib/aws-sdk-wafv2/types.rb +33 -7
- data/lib/aws-sdk-wafv2.rb +1 -1
- metadata +4 -4
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: d099f15eedfbbdd9dc24e4c5f8e702fb582a030da23809cd33a2ad516e3ff3a3
|
4
|
+
data.tar.gz: 0ca782e16bcfa57e743c3dbc70c726e694332691be2f9dc8a8238f1521ab9530
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 62ef45a3b0dbb802eaa2b0fe38d5e8b596fc204708558233b80ed6183098ffa5ec4a3b1fca965a6aec9a61fc12972bdb822991ee56b4d1ccc96c2ff168e3a285
|
7
|
+
data.tar.gz: 65da37bd0740729524c7da56757c8ac9c4b581d81ce5b2ffab266273d049a8e33fd85b6a8a8d3c90e8785cd54151317ad1297abcb16e1bbf2800ce207139783d
|
data/CHANGELOG.md
CHANGED
@@ -1,6 +1,26 @@
|
|
1
1
|
Unreleased Changes
|
2
2
|
------------------
|
3
3
|
|
4
|
+
1.34.0 (2022-02-03)
|
5
|
+
------------------
|
6
|
+
|
7
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
8
|
+
|
9
|
+
1.33.0 (2021-12-21)
|
10
|
+
------------------
|
11
|
+
|
12
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
13
|
+
|
14
|
+
1.32.0 (2021-11-30)
|
15
|
+
------------------
|
16
|
+
|
17
|
+
* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
|
18
|
+
|
19
|
+
1.31.0 (2021-11-15)
|
20
|
+
------------------
|
21
|
+
|
22
|
+
* Feature - Your options for logging web ACL traffic now include Amazon CloudWatch Logs log groups and Amazon S3 buckets.
|
23
|
+
|
4
24
|
1.30.0 (2021-11-08)
|
5
25
|
------------------
|
6
26
|
|
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
1.
|
1
|
+
1.34.0
|
data/lib/aws-sdk-wafv2/client.rb
CHANGED
@@ -27,6 +27,8 @@ require 'aws-sdk-core/plugins/client_metrics_plugin.rb'
|
|
27
27
|
require 'aws-sdk-core/plugins/client_metrics_send_plugin.rb'
|
28
28
|
require 'aws-sdk-core/plugins/transfer_encoding.rb'
|
29
29
|
require 'aws-sdk-core/plugins/http_checksum.rb'
|
30
|
+
require 'aws-sdk-core/plugins/defaults_mode.rb'
|
31
|
+
require 'aws-sdk-core/plugins/recursion_detection.rb'
|
30
32
|
require 'aws-sdk-core/plugins/signature_v4.rb'
|
31
33
|
require 'aws-sdk-core/plugins/protocols/json_rpc.rb'
|
32
34
|
|
@@ -73,6 +75,8 @@ module Aws::WAFV2
|
|
73
75
|
add_plugin(Aws::Plugins::ClientMetricsSendPlugin)
|
74
76
|
add_plugin(Aws::Plugins::TransferEncoding)
|
75
77
|
add_plugin(Aws::Plugins::HttpChecksum)
|
78
|
+
add_plugin(Aws::Plugins::DefaultsMode)
|
79
|
+
add_plugin(Aws::Plugins::RecursionDetection)
|
76
80
|
add_plugin(Aws::Plugins::SignatureV4)
|
77
81
|
add_plugin(Aws::Plugins::Protocols::JsonRpc)
|
78
82
|
|
@@ -119,7 +123,9 @@ module Aws::WAFV2
|
|
119
123
|
# * EC2/ECS IMDS instance profile - When used by default, the timeouts
|
120
124
|
# are very aggressive. Construct and pass an instance of
|
121
125
|
# `Aws::InstanceProfileCredentails` or `Aws::ECSCredentials` to
|
122
|
-
# enable retries and extended timeouts.
|
126
|
+
# enable retries and extended timeouts. Instance profile credential
|
127
|
+
# fetching can be disabled by setting ENV['AWS_EC2_METADATA_DISABLED']
|
128
|
+
# to true.
|
123
129
|
#
|
124
130
|
# @option options [required, String] :region
|
125
131
|
# The AWS region to connect to. The configured `:region` is
|
@@ -173,6 +179,10 @@ module Aws::WAFV2
|
|
173
179
|
# Used only in `standard` and adaptive retry modes. Specifies whether to apply
|
174
180
|
# a clock skew correction and retry requests with skewed client clocks.
|
175
181
|
#
|
182
|
+
# @option options [String] :defaults_mode ("legacy")
|
183
|
+
# See {Aws::DefaultsModeConfiguration} for a list of the
|
184
|
+
# accepted modes and the configuration defaults that are included.
|
185
|
+
#
|
176
186
|
# @option options [Boolean] :disable_host_prefix_injection (false)
|
177
187
|
# Set to true to disable SDK automatically adding host prefix
|
178
188
|
# to default service endpoint when available.
|
@@ -305,7 +315,7 @@ module Aws::WAFV2
|
|
305
315
|
# seconds to wait when opening a HTTP session before raising a
|
306
316
|
# `Timeout::Error`.
|
307
317
|
#
|
308
|
-
# @option options [
|
318
|
+
# @option options [Float] :http_read_timeout (60) The default
|
309
319
|
# number of seconds to wait for response data. This value can
|
310
320
|
# safely be set per-request on the session.
|
311
321
|
#
|
@@ -321,6 +331,9 @@ module Aws::WAFV2
|
|
321
331
|
# disables this behaviour. This value can safely be set per
|
322
332
|
# request on the session.
|
323
333
|
#
|
334
|
+
# @option options [Float] :ssl_timeout (nil) Sets the SSL timeout
|
335
|
+
# in seconds.
|
336
|
+
#
|
324
337
|
# @option options [Boolean] :http_wire_trace (false) When `true`,
|
325
338
|
# HTTP debug output will be sent to the `:logger`.
|
326
339
|
#
|
@@ -4479,28 +4492,22 @@ module Aws::WAFV2
|
|
4479
4492
|
# You can access information about all traffic that WAF inspects using
|
4480
4493
|
# the following steps:
|
4481
4494
|
#
|
4482
|
-
# 1. Create an Amazon
|
4483
|
-
#
|
4484
|
-
#
|
4485
|
-
#
|
4486
|
-
#
|
4487
|
-
#
|
4488
|
-
# Give the data firehose a name that starts with the prefix
|
4489
|
-
# `aws-waf-logs-`. For example, `aws-waf-logs-us-east-2-analytics`.
|
4490
|
-
#
|
4491
|
-
# <note markdown="1"> Do not create the data firehose using a `Kinesis stream` as your
|
4492
|
-
# source.
|
4493
|
-
#
|
4494
|
-
# </note>
|
4495
|
+
# 1. Create your logging destination. You can use an Amazon CloudWatch
|
4496
|
+
# Logs log group, an Amazon Simple Storage Service (Amazon S3)
|
4497
|
+
# bucket, or an Amazon Kinesis Data Firehose. For information about
|
4498
|
+
# configuring logging destinations and the permissions that are
|
4499
|
+
# required for each, see [Logging web ACL traffic information][1] in
|
4500
|
+
# the *WAF Developer Guide*.
|
4495
4501
|
#
|
4496
|
-
# 2. Associate
|
4502
|
+
# 2. Associate your logging destination to your web ACL using a
|
4497
4503
|
# `PutLoggingConfiguration` request.
|
4498
4504
|
#
|
4499
4505
|
# When you successfully enable logging using a `PutLoggingConfiguration`
|
4500
|
-
# request, WAF
|
4501
|
-
#
|
4502
|
-
#
|
4503
|
-
#
|
4506
|
+
# request, WAF creates an additional role or policy that is required to
|
4507
|
+
# write logs to the logging destination. For an Amazon CloudWatch Logs
|
4508
|
+
# log group, WAF creates a resource policy on the log group. For an
|
4509
|
+
# Amazon S3 bucket, WAF creates a bucket policy. For an Amazon Kinesis
|
4510
|
+
# Data Firehose, WAF creates a service-linked role.
|
4504
4511
|
#
|
4505
4512
|
# <note markdown="1"> This operation completely replaces the mutable specifications that you
|
4506
4513
|
# already have for the logging configuration with the ones that you
|
@@ -6156,7 +6163,7 @@ module Aws::WAFV2
|
|
6156
6163
|
params: params,
|
6157
6164
|
config: config)
|
6158
6165
|
context[:gem_name] = 'aws-sdk-wafv2'
|
6159
|
-
context[:gem_version] = '1.
|
6166
|
+
context[:gem_version] = '1.34.0'
|
6160
6167
|
Seahorse::Client::Request.new(handlers, context)
|
6161
6168
|
end
|
6162
6169
|
|
@@ -292,6 +292,7 @@ module Aws::WAFV2
|
|
292
292
|
WAFInvalidPermissionPolicyException = Shapes::StructureShape.new(name: 'WAFInvalidPermissionPolicyException')
|
293
293
|
WAFInvalidResourceException = Shapes::StructureShape.new(name: 'WAFInvalidResourceException')
|
294
294
|
WAFLimitsExceededException = Shapes::StructureShape.new(name: 'WAFLimitsExceededException')
|
295
|
+
WAFLogDestinationPermissionIssueException = Shapes::StructureShape.new(name: 'WAFLogDestinationPermissionIssueException')
|
295
296
|
WAFNonexistentItemException = Shapes::StructureShape.new(name: 'WAFNonexistentItemException')
|
296
297
|
WAFOptimisticLockException = Shapes::StructureShape.new(name: 'WAFOptimisticLockException')
|
297
298
|
WAFServiceLinkedRoleErrorException = Shapes::StructureShape.new(name: 'WAFServiceLinkedRoleErrorException')
|
@@ -1186,6 +1187,9 @@ module Aws::WAFV2
|
|
1186
1187
|
WAFLimitsExceededException.add_member(:message, Shapes::ShapeRef.new(shape: ErrorMessage, location_name: "Message"))
|
1187
1188
|
WAFLimitsExceededException.struct_class = Types::WAFLimitsExceededException
|
1188
1189
|
|
1190
|
+
WAFLogDestinationPermissionIssueException.add_member(:message, Shapes::ShapeRef.new(shape: ErrorMessage, location_name: "Message"))
|
1191
|
+
WAFLogDestinationPermissionIssueException.struct_class = Types::WAFLogDestinationPermissionIssueException
|
1192
|
+
|
1189
1193
|
WAFNonexistentItemException.add_member(:message, Shapes::ShapeRef.new(shape: ErrorMessage, location_name: "Message"))
|
1190
1194
|
WAFNonexistentItemException.struct_class = Types::WAFNonexistentItemException
|
1191
1195
|
|
@@ -1728,6 +1732,7 @@ module Aws::WAFV2
|
|
1728
1732
|
o.errors << Shapes::ShapeRef.new(shape: WAFInvalidParameterException)
|
1729
1733
|
o.errors << Shapes::ShapeRef.new(shape: WAFInvalidOperationException)
|
1730
1734
|
o.errors << Shapes::ShapeRef.new(shape: WAFLimitsExceededException)
|
1735
|
+
o.errors << Shapes::ShapeRef.new(shape: WAFLogDestinationPermissionIssueException)
|
1731
1736
|
end)
|
1732
1737
|
|
1733
1738
|
api.add_operation(:put_managed_rule_set_versions, Seahorse::Model::Operation.new.tap do |o|
|
data/lib/aws-sdk-wafv2/errors.rb
CHANGED
@@ -36,6 +36,7 @@ module Aws::WAFV2
|
|
36
36
|
# * {WAFInvalidPermissionPolicyException}
|
37
37
|
# * {WAFInvalidResourceException}
|
38
38
|
# * {WAFLimitsExceededException}
|
39
|
+
# * {WAFLogDestinationPermissionIssueException}
|
39
40
|
# * {WAFNonexistentItemException}
|
40
41
|
# * {WAFOptimisticLockException}
|
41
42
|
# * {WAFServiceLinkedRoleErrorException}
|
@@ -200,6 +201,21 @@ module Aws::WAFV2
|
|
200
201
|
end
|
201
202
|
end
|
202
203
|
|
204
|
+
class WAFLogDestinationPermissionIssueException < ServiceError
|
205
|
+
|
206
|
+
# @param [Seahorse::Client::RequestContext] context
|
207
|
+
# @param [String] message
|
208
|
+
# @param [Aws::WAFV2::Types::WAFLogDestinationPermissionIssueException] data
|
209
|
+
def initialize(context, message, data = Aws::EmptyStructure.new)
|
210
|
+
super(context, message, data)
|
211
|
+
end
|
212
|
+
|
213
|
+
# @return [String]
|
214
|
+
def message
|
215
|
+
@message || @data[:message]
|
216
|
+
end
|
217
|
+
end
|
218
|
+
|
203
219
|
class WAFNonexistentItemException < ServiceError
|
204
220
|
|
205
221
|
# @param [Seahorse::Client::RequestContext] context
|
data/lib/aws-sdk-wafv2/types.rb
CHANGED
@@ -5563,11 +5563,18 @@ module Aws::WAFV2
|
|
5563
5563
|
include Aws::Structure
|
5564
5564
|
end
|
5565
5565
|
|
5566
|
-
# Defines an association between
|
5567
|
-
#
|
5568
|
-
#
|
5569
|
-
#
|
5570
|
-
#
|
5566
|
+
# Defines an association between logging destinations and a web ACL
|
5567
|
+
# resource, for logging from WAF. As part of the association, you can
|
5568
|
+
# specify parts of the standard logging fields to keep out of the logs
|
5569
|
+
# and you can specify filters so that you log only a subset of the
|
5570
|
+
# logging records.
|
5571
|
+
#
|
5572
|
+
# For information about configuring web ACL logging destinations, see
|
5573
|
+
# [Logging web ACL traffic information][1] in the *WAF Developer Guide*.
|
5574
|
+
#
|
5575
|
+
#
|
5576
|
+
#
|
5577
|
+
# [1]: https://docs.aws.amazon.com/waf/latest/developerguide/logging.html
|
5571
5578
|
#
|
5572
5579
|
# @note When making an API call, you may pass LoggingConfiguration
|
5573
5580
|
# data as a hash:
|
@@ -5632,14 +5639,14 @@ module Aws::WAFV2
|
|
5632
5639
|
# @return [String]
|
5633
5640
|
#
|
5634
5641
|
# @!attribute [rw] log_destination_configs
|
5635
|
-
# The Amazon
|
5642
|
+
# The Amazon Resource Names (ARNs) of the logging destinations that
|
5636
5643
|
# you want to associate with the web ACL.
|
5637
5644
|
# @return [Array<String>]
|
5638
5645
|
#
|
5639
5646
|
# @!attribute [rw] redacted_fields
|
5640
5647
|
# The parts of the request that you want to keep out of the logs. For
|
5641
5648
|
# example, if you redact the `SingleHeader` field, the `HEADER` field
|
5642
|
-
# in the
|
5649
|
+
# in the logs will be `xxx`.
|
5643
5650
|
#
|
5644
5651
|
# <note markdown="1"> You can specify only the following fields for redaction: `UriPath`,
|
5645
5652
|
# `QueryString`, `SingleHeader`, `Method`, and `JsonBody`.
|
@@ -12940,6 +12947,25 @@ module Aws::WAFV2
|
|
12940
12947
|
include Aws::Structure
|
12941
12948
|
end
|
12942
12949
|
|
12950
|
+
# The operation failed because you don't have the permissions that your
|
12951
|
+
# logging configuration requires. For information, see [Logging web ACL
|
12952
|
+
# traffic information][1] in the *WAF Developer Guide*.
|
12953
|
+
#
|
12954
|
+
#
|
12955
|
+
#
|
12956
|
+
# [1]: https://docs.aws.amazon.com/waf/latest/developerguide/logging.html
|
12957
|
+
#
|
12958
|
+
# @!attribute [rw] message
|
12959
|
+
# @return [String]
|
12960
|
+
#
|
12961
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/wafv2-2019-07-29/WAFLogDestinationPermissionIssueException AWS API Documentation
|
12962
|
+
#
|
12963
|
+
class WAFLogDestinationPermissionIssueException < Struct.new(
|
12964
|
+
:message)
|
12965
|
+
SENSITIVE = []
|
12966
|
+
include Aws::Structure
|
12967
|
+
end
|
12968
|
+
|
12943
12969
|
# WAF couldn’t perform the operation because your resource doesn’t
|
12944
12970
|
# exist.
|
12945
12971
|
#
|
data/lib/aws-sdk-wafv2.rb
CHANGED
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-wafv2
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.
|
4
|
+
version: 1.34.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date:
|
11
|
+
date: 2022-02-03 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: aws-sdk-core
|
@@ -19,7 +19,7 @@ dependencies:
|
|
19
19
|
version: '3'
|
20
20
|
- - ">="
|
21
21
|
- !ruby/object:Gem::Version
|
22
|
-
version: 3.
|
22
|
+
version: 3.126.0
|
23
23
|
type: :runtime
|
24
24
|
prerelease: false
|
25
25
|
version_requirements: !ruby/object:Gem::Requirement
|
@@ -29,7 +29,7 @@ dependencies:
|
|
29
29
|
version: '3'
|
30
30
|
- - ">="
|
31
31
|
- !ruby/object:Gem::Version
|
32
|
-
version: 3.
|
32
|
+
version: 3.126.0
|
33
33
|
- !ruby/object:Gem::Dependency
|
34
34
|
name: aws-sigv4
|
35
35
|
requirement: !ruby/object:Gem::Requirement
|