@aws-sdk/client-securitylake 3.220.0

package/dist-types/models/models_0.d.ts

@@ -0,0 +1,1497 @@
+import { ExceptionOptionType as __ExceptionOptionType } from "@aws-sdk/smithy-client";
+import { SecurityLakeServiceException as __BaseException } from "./SecurityLakeServiceException";
+/**
+ * <p>You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization
+ *          request. An explicit denial occurs when a policy contains a Deny statement for the specific
+ *          Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also
+ *          no applicable Allow statement.</p>
+ */
+export declare class AccessDeniedException extends __BaseException {
+    readonly name: "AccessDeniedException";
+    readonly $fault: "client";
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<AccessDeniedException, __BaseException>);
+}
+export declare enum AccessType {
+    LAKEFORMATION = "LAKEFORMATION",
+    S3 = "S3"
+}
+/**
+ * <p>Amazon Security Lake can't find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.</p>
+ */
+export declare class AccountNotFoundException extends __BaseException {
+    readonly name: "AccountNotFoundException";
+    readonly $fault: "client";
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<AccountNotFoundException, __BaseException>);
+}
+export declare enum OcsfEventClass {
+    ACCESS_ACTIVITY = "ACCESS_ACTIVITY",
+    ACCOUNT_CHANGE = "ACCOUNT_CHANGE",
+    AUTHENTICATION = "AUTHENTICATION",
+    AUTHORIZATION = "AUTHORIZATION",
+    CLOUD_API = "CLOUD_API",
+    CLOUD_STORAGE = "CLOUD_STORAGE",
+    CONFIG_STATE = "CONFIG_STATE",
+    CONTAINER_LIFECYCLE = "CONTAINER_LIFECYCLE",
+    DATABASE_LIFECYCLE = "DATABASE_LIFECYCLE",
+    DHCP_ACTIVITY = "DHCP_ACTIVITY",
+    DNS_ACTIVITY = "DNS_ACTIVITY",
+    ENTITY_MANAGEMENT_AUDIT = "ENTITY_MANAGEMENT_AUDIT",
+    FILE_ACTIVITY = "FILE_ACTIVITY",
+    FTP_ACTIVITY = "FTP_ACTIVITY",
+    HTTP_ACTIVITY = "HTTP_ACTIVITY",
+    INVENTORY_INFO = "INVENTORY_INFO",
+    KERNEL_ACTIVITY = "KERNEL_ACTIVITY",
+    KERNEL_EXTENSION = "KERNEL_EXTENSION",
+    MEMORY_ACTIVITY = "MEMORY_ACTIVITY",
+    MODULE_ACTIVITY = "MODULE_ACTIVITY",
+    NETWORK_ACTIVITY = "NETWORK_ACTIVITY",
+    PROCESS_ACTIVITY = "PROCESS_ACTIVITY",
+    RDP_ACTIVITY = "RDP_ACTIVITY",
+    REGISTRY_KEY_ACTIVITY = "REGISTRY_KEY_ACTIVITY",
+    REGISTRY_VALUE_ACTIVITY = "REGISTRY_VALUE_ACTIVITY",
+    RESOURCE_ACTIVITY = "RESOURCE_ACTIVITY",
+    RFB_ACTIVITY = "RFB_ACTIVITY",
+    SCHEDULED_JOB_ACTIVITY = "SCHEDULED_JOB_ACTIVITY",
+    SECURITY_FINDING = "SECURITY_FINDING",
+    SMB_ACTIVITY = "SMB_ACTIVITY",
+    SMTP_ACTIVITY = "SMTP_ACTIVITY",
+    SSH_ACTIVITY = "SSH_ACTIVITY",
+    VIRTUAL_MACHINE_ACTIVITY = "VIRTUAL_MACHINE_ACTIVITY"
+}
+export declare enum SourceStatus {
+    ACTIVE = "ACTIVE",
+    DEACTIVATED = "DEACTIVATED",
+    PENDING = "PENDING"
+}
+/**
+ * <p>Log status for the Security Lake account.</p>
+ */
+export interface LogsStatus {
+    /**
+     * <p>Defines path the stored logs are available which has information on your systems,
+     *          applications, and services. </p>
+     */
+    pathToLogs: string | undefined;
+    /**
+     * <p>Health status of services including error codes and patterns.</p>
+     */
+    healthStatus: SourceStatus | string | undefined;
+}
+/**
+ * <p>Security Lake can collect logs and events from supported Amazon Web Services services and custom sources. </p>
+ */
+export interface AccountSources {
+    /**
+     * <p>Account ID of the Security Lake account for which logs are collected.</p>
+     */
+    account: string | undefined;
+    /**
+     * <p>The supported Amazon Web Services services from which logs and events are collected. Amazon Security Lake supports logs and events collection for natively-supported Amazon Web Services services. For more information, see the Amazon Security Lake User Guide. </p>
+     */
+    sourceType: string | undefined;
+    /**
+     * <p>Log status for the Security Lake account.</p>
+     */
+    logsStatus?: LogsStatus[];
+    /**
+     * <p>Initializes a new instance of the Event class.</p>
+     */
+    eventClass?: OcsfEventClass | string;
+}
+export declare enum Region {
+    AP_NORTHEAST_1 = "ap-northeast-1",
+    AP_SOUTHEAST_2 = "ap-southeast-2",
+    EU_CENTRAL_1 = "eu-central-1",
+    EU_WEST_1 = "eu-west-1",
+    US_EAST_1 = "us-east-1",
+    US_EAST_2 = "us-east-2",
+    US_WEST_2 = "us-west-2"
+}
+export declare enum AwsLogSourceType {
+    CLOUD_TRAIL = "CLOUD_TRAIL",
+    ROUTE53 = "ROUTE53",
+    SH_FINDINGS = "SH_FINDINGS",
+    VPC_FLOW = "VPC_FLOW"
+}
+/**
+ * <p>Automatically enable new organization accounts as member accounts from a Security Lake administrator
+ *          account.</p>
+ */
+export interface AutoEnableNewRegionConfiguration {
+    /**
+     * <p>The Regions where Security Lake is auto enabled</p>
+     */
+    region: Region | string | undefined;
+    /**
+     * <p>The Amazon Web Services sources which are auto enabled in Security Lake.</p>
+     */
+    sources: (AwsLogSourceType | string)[] | undefined;
+}
+/**
+ * <p>Amazon Security Lake  generally returns 404 errors if the requested object is missing from the
+ *          bucket.</p>
+ */
+export declare class BucketNotFoundException extends __BaseException {
+    readonly name: "BucketNotFoundException";
+    readonly $fault: "client";
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<BucketNotFoundException, __BaseException>);
+}
+/**
+ * <p>More than one process tried to modify a resource at the same time. </p>
+ */
+export declare class ConcurrentModificationException extends __BaseException {
+    readonly name: "ConcurrentModificationException";
+    readonly $fault: "client";
+    $retryable: {};
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ConcurrentModificationException, __BaseException>);
+}
+/**
+ * <p>Occurs when a conflict with a previous successful write is detected. This generally
+ *          occurs when the previous write did not have time to propagate to the host serving the
+ *          current request. A retry (with appropriate backoff logic) is the recommended response to
+ *          this exception.</p>
+ */
+export declare class ConflictException extends __BaseException {
+    readonly name: "ConflictException";
+    readonly $fault: "client";
+    /**
+     * <p>A conflict occurred when prompting for the Resource ID.</p>
+     */
+    resourceId: string | undefined;
+    /**
+     * <p>The resource type. </p>
+     */
+    resourceType: string | undefined;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ConflictException, __BaseException>);
+}
+/**
+ * <p>There was a conflict when you attempted to modify a Security Lake source name. </p>
+ */
+export declare class ConflictSourceNamesException extends __BaseException {
+    readonly name: "ConflictSourceNamesException";
+    readonly $fault: "client";
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ConflictSourceNamesException, __BaseException>);
+}
+/**
+ * <p>A conflicting subscription exception operation is in progress. </p>
+ */
+export declare class ConflictSubscriptionException extends __BaseException {
+    readonly name: "ConflictSubscriptionException";
+    readonly $fault: "client";
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ConflictSubscriptionException, __BaseException>);
+}
+export declare enum Dimension {
+    MEMBER = "MEMBER",
+    REGION = "REGION",
+    SOURCE_TYPE = "SOURCE_TYPE"
+}
+export interface CreateAwsLogSourceRequest {
+    /**
+     * <p>Specifies the input order to enable dimensions in Security Lake, namely region, source
+     *          type, and member account.</p>
+     */
+    inputOrder: (Dimension | string)[] | undefined;
+    /**
+     * <p>Enables specific sources in all Regions and source types.</p>
+     */
+    enableAllDimensions?: Record<string, Record<string, string[]>>;
+    /**
+     * <p>Enables specific service sources in specific accounts or Regions.</p>
+     */
+    enableTwoDimensions?: Record<string, string[]>;
+    /**
+     * <p>Enables all sources in specific accounts or Regions.</p>
+     */
+    enableSingleDimension?: string[];
+}
+export interface CreateAwsLogSourceResponse {
+    /**
+     * <p>List of all accounts which are in the process of enabling a natively-supported Amazon Web Services service as a Security Lake.</p>
+     */
+    processing?: string[];
+    /**
+     * <p>List of all accounts in which enabling a natively-supported Amazon Web Services service as a Security Lake failed. The failure occurred as these accounts are not part of an organization.</p>
+     */
+    failed?: string[];
+}
+/**
+ * <p>Internal service exceptions are sometimes caused by transient issues. Before you start
+ *          troubleshooting, perform the operation again. </p>
+ */
+export declare class InternalServerException extends __BaseException {
+    readonly name: "InternalServerException";
+    readonly $fault: "server";
+    $retryable: {};
+    /**
+     * <p>Retry the request after the specified time. </p>
+     */
+    retryAfterSeconds?: number;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<InternalServerException, __BaseException>);
+}
+/**
+ * <p>The resource could not be found.</p>
+ */
+export declare class ResourceNotFoundException extends __BaseException {
+    readonly name: "ResourceNotFoundException";
+    readonly $fault: "client";
+    /**
+     * <p>The ID of the resource for which the type of resource could not be found.</p>
+     */
+    resourceId: string | undefined;
+    /**
+     * <p>The type of the resource that could not be found.</p>
+     */
+    resourceType: string | undefined;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ResourceNotFoundException, __BaseException>);
+}
+/**
+ * <p>Provides an extension of the AmazonServiceException for errors reported by Amazon S3
+ *          while processing a request. In particular, this class provides access to Amazon S3's
+ *          extended request ID. This ID is required debugging information in the case the user needs
+ *          to contact Amazon about an issue where Amazon S3 is incorrectly handling a request.</p>
+ */
+export declare class S3Exception extends __BaseException {
+    readonly name: "S3Exception";
+    readonly $fault: "client";
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<S3Exception, __BaseException>);
+}
+/**
+ * <p>The input fails to meet the constraints specified in Amazon Security Lake </p>
+ */
+export interface ValidationExceptionField {
+    /**
+     * <p>Name of the validation exception.</p>
+     */
+    name: string | undefined;
+    /**
+     * <p>Describes the error encountered.</p>
+     */
+    message: string | undefined;
+}
+export declare enum ValidationExceptionReason {
+    CANNOT_PARSE = "cannotParse",
+    FIELD_VALIDATION_FAILED = "fieldValidationFailed",
+    OTHER = "other",
+    UNKNOWN_OPERATION = "unknownOperation"
+}
+/**
+ * <p>Your signing certificate could not be validated. </p>
+ */
+export declare class ValidationException extends __BaseException {
+    readonly name: "ValidationException";
+    readonly $fault: "client";
+    /**
+     * <p>The reason for the validation exception. </p>
+     */
+    reason: ValidationExceptionReason | string | undefined;
+    /**
+     * <p>The list of parameters that failed to validate. </p>
+     */
+    fieldList?: ValidationExceptionField[];
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ValidationException, __BaseException>);
+}
+export interface CreateCustomLogSourceRequest {
+    /**
+     * <p>The custom source name for a third-party custom source. </p>
+     */
+    customSourceName: string | undefined;
+    /**
+     * <p>The Open Cybersecurity Schema Framework (OCSF) event class.</p>
+     */
+    eventClass: OcsfEventClass | string | undefined;
+    /**
+     * <p>The IAM Role ARN to be used by the Glue Crawler. The recommended IAM policies are:</p>
+     *          <ul>
+     *             <li>
+     *                <p>The managed policy <code>AWSGlueServiceRole</code>
+     *                </p>
+     *             </li>
+     *             <li>
+     *                <p>A custom policy granting access to your S3 Data Lake</p>
+     *             </li>
+     *          </ul>
+     */
+    glueInvocationRoleArn: string | undefined;
+    /**
+     * <p>The Account ID that will assume the above Role to put logs into the Data Lake.</p>
+     */
+    logProviderAccountId: string | undefined;
+}
+export interface CreateCustomLogSourceResponse {
+    /**
+     * <p>The location of the partition in the Security Lake S3 bucket.</p>
+     */
+    customDataLocation: string | undefined;
+    /**
+     * <p>The name of the Glue crawler.</p>
+     */
+    glueCrawlerName: string | undefined;
+    /**
+     * <p>The table name of the Glue crawler.</p>
+     */
+    glueTableName: string | undefined;
+    /**
+     * <p>The Glue database where results are written, such as:
+     *             <code>arn:aws:daylight:us-east-1::database/sometable/*</code>.</p>
+     */
+    glueDatabaseName: string | undefined;
+    /**
+     * <p> IAM Role ARN to be used by the entity putting logs into your Custom Source partition.
+     *          Security Lake will apply the correct access policies to this Role, but this Role must have the
+     *          trust policy created manually. This Role's name must start with the text 'Security Lake'. It
+     *          must trust the <code>logProviderAccountId</code> to assume it.</p>
+     */
+    logProviderAccessRoleArn: string | undefined;
+}
+export declare enum StorageClass {
+    DEEP_ARCHIVE = "DEEP_ARCHIVE",
+    EXPIRE = "EXPIRE",
+    GLACIER = "GLACIER",
+    GLACIER_IR = "GLACIER_IR",
+    INTELLIGENT_TIERING = "INTELLIGENT_TIERING",
+    ONEZONE_IA = "ONEZONE_IA",
+    STANDARD_IA = "STANDARD_IA"
+}
+/**
+ * <p>Retention settings for the destination Amazon S3 buckets in Security Lake. </p>
+ */
+export interface RetentionSetting {
+    /**
+     * <p>The range of storage classes that you can choose from based on the data access,
+     *          resiliency, and cost requirements of your workloads.</p>
+     */
+    storageClass?: StorageClass | string;
+    /**
+     * <p>The retention period specifies a fixed period of time during which the Security Lake object
+     *          remains locked. You can specify the retention period for one or more source in days. </p>
+     */
+    retentionPeriod?: number;
+}
+/**
+ * <p>Provides details of lake configuration object in Amazon Security Lake.</p>
+ */
+export interface LakeConfigurationRequest {
+    /**
+     * <p>The type of encryption key used by Security Lake to encrypt the lake configuration
+     *          object.</p>
+     */
+    encryptionKey?: string;
+    /**
+     * <p>Retention settings for the destination Amazon S3 buckets. </p>
+     */
+    retentionSettings?: RetentionSetting[];
+    /**
+     * <p>A tag is a label that you assign to an Amazon Web Services resource. Each tag consists of a key and an
+     *          optional value, both of which you define.</p>
+     */
+    tagsMap?: Record<string, string>;
+    /**
+     * <p>Replication enables automatic, asynchronous copying of objects across Amazon S3 buckets.
+     *          Amazon S3 buckets that are configured for object replication can be owned by the same Amazon Web Services account or
+     *          by different accounts. You can replicate objects to a single destination bucket or to
+     *          multiple destination buckets. The destination buckets can be in different Amazon Web Services Regions or
+     *          within the same Region as the source bucket.</p>
+     *          <p>Set up one or more rollup Regions by providing the Region or Regions that should
+     *          contribute to the central rollup Region. </p>
+     */
+    replicationDestinationRegions?: (Region | string)[];
+    /**
+     * <p>Replication settings for the Amazon S3 buckets. This parameter uses the IAM role
+     *          created by you that is managed by Security Lake, to ensure the replication setting is correct. </p>
+     */
+    replicationRoleArn?: string;
+}
+export interface CreateDatalakeRequest {
+    /**
+     * <p>Enable Security Lake in the specified Regions to begin ingesting security data. To enable Security Lake in specific Amazon Web Services Regions, such as us-east-1 or ap-northeast-3, provide the Region codes. For a list of Region codes, see <a href="https://docs.aws.amazon.com/general/latest/gr/rande.html#regional-endpoints">Region codes</a> in the Amazon Web Services General Reference.</p>
+     */
+    regions?: (Region | string)[];
+    /**
+     * <p>Enable Security Lake with the specified configurations settings to begin ingesting security
+     *          data. </p>
+     */
+    configurations?: Record<string, LakeConfigurationRequest>;
+    /**
+     * <p>Enable Security Lake in all Regions to begin ingesting security data.</p>
+     */
+    enableAll?: boolean;
+    /**
+     * <p>The Role ARN used to create and update the Glue table with partitions generated by ingestion and normalization of Amazon Web Services log sources and custom sources.</p>
+     */
+    metaStoreManagerRoleArn?: string;
+}
+export interface CreateDatalakeResponse {
+}
+/**
+ * <p>You have exceeded your service quota. To perform the requested action, remove some of
+ *          the relevant resources, or use Service Quotas to request a service quota increase. </p>
+ */
+export declare class ServiceQuotaExceededException extends __BaseException {
+    readonly name: "ServiceQuotaExceededException";
+    readonly $fault: "client";
+    /**
+     * <p>The ID of the resource that exceeds the service quota.</p>
+     */
+    resourceId: string | undefined;
+    /**
+     * <p>The type of the resource that exceeds the service quota.</p>
+     */
+    resourceType: string | undefined;
+    /**
+     * <p>The code for the service in Service Quotas.</p>
+     */
+    serviceCode: string | undefined;
+    /**
+     * <p>That the rate of requests to Security Lake is exceeding the request quotas for your Amazon Web Services account.</p>
+     */
+    quotaCode: string | undefined;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ServiceQuotaExceededException, __BaseException>);
+}
+/**
+ * <p>The limit on the number of requests per second was exceeded. </p>
+ */
+export declare class ThrottlingException extends __BaseException {
+    readonly name: "ThrottlingException";
+    readonly $fault: "client";
+    $retryable: {
+        throttling: boolean;
+    };
+    /**
+     * <p>The code for the service in Service Quotas.</p>
+     */
+    serviceCode?: string;
+    /**
+     * <p>That the rate of requests to Security Lake is exceeding the request quotas for your Amazon Web Services account.</p>
+     */
+    quotaCode?: string;
+    /**
+     * <p>Retry the request after the specified time. </p>
+     */
+    retryAfterSeconds?: number;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ThrottlingException, __BaseException>);
+}
+export interface CreateDatalakeAutoEnableRequest {
+    /**
+     * <p>Enable Amazon Security Lake with the specified configurations settings to begin ingesting security
+     *          data for new accounts in Security Lake. </p>
+     */
+    configurationForNewAccounts: AutoEnableNewRegionConfiguration[] | undefined;
+}
+export interface CreateDatalakeAutoEnableResponse {
+}
+export interface CreateDatalakeDelegatedAdminRequest {
+    /**
+     * <p>Account ID of the Security Lake delegated administrator.</p>
+     */
+    account: string | undefined;
+}
+export interface CreateDatalakeDelegatedAdminResponse {
+}
+export declare enum SubscriptionProtocolType {
+    APP = "APP",
+    EMAIL = "EMAIL",
+    EMAIL_JSON = "EMAIL_JSON",
+    FIREHOSE = "FIREHOSE",
+    HTTP = "HTTP",
+    HTTPS = "HTTPS",
+    LAMBDA = "LAMBDA",
+    SMS = "SMS",
+    SQS = "SQS"
+}
+export interface CreateDatalakeExceptionsSubscriptionRequest {
+    /**
+     * <p>The subscription protocol to which exception messages are posted. </p>
+     */
+    subscriptionProtocol: SubscriptionProtocolType | string | undefined;
+    /**
+     * <p>The account in which the exception notifications subscription is created.</p>
+     */
+    notificationEndpoint: string | undefined;
+}
+export interface CreateDatalakeExceptionsSubscriptionResponse {
+}
+/**
+ * <p>The supported source types from which logs and events are collected in Amazon Security Lake. </p>
+ */
+export declare type SourceType = SourceType.AwsSourceTypeMember | SourceType.CustomSourceTypeMember | SourceType.$UnknownMember;
+export declare namespace SourceType {
+    /**
+     * <p>Amazon Security Lake supports logs and events collection for natively-supported Amazon Web Services services. For more information, see the Amazon Security Lake User Guide.</p>
+     */
+    interface AwsSourceTypeMember {
+        awsSourceType: AwsLogSourceType | string;
+        customSourceType?: never;
+        $unknown?: never;
+    }
+    /**
+     * <p>Amazon Security Lake supports custom source types. For the detailed list, see the Amazon Security Lake User Guide.</p>
+     */
+    interface CustomSourceTypeMember {
+        awsSourceType?: never;
+        customSourceType: string;
+        $unknown?: never;
+    }
+    interface $UnknownMember {
+        awsSourceType?: never;
+        customSourceType?: never;
+        $unknown: [string, any];
+    }
+    interface Visitor<T> {
+        awsSourceType: (value: AwsLogSourceType | string) => T;
+        customSourceType: (value: string) => T;
+        _: (name: string, value: any) => T;
+    }
+    const visit: <T>(value: SourceType, visitor: Visitor<T>) => T;
+}
+export interface CreateSubscriberRequest {
+    /**
+     * <p>The supported Amazon Web Services services from which logs and events are collected. Amazon Security Lake
+     *          supports logs and events collection for natively-supported Amazon Web Services
+     *          services.</p>
+     */
+    sourceTypes: SourceType[] | undefined;
+    /**
+     * <p>The third party Amazon Web Services account ID used to access your data.</p>
+     */
+    accountId: string | undefined;
+    /**
+     * <p>The external ID of the subscriber. External ID allows the user that is assuming the role
+     *          to assert the circumstances in which they are operating. It also provides a way for the
+     *          account owner to permit the role to be assumed only under specific circumstances.</p>
+     */
+    externalId: string | undefined;
+    /**
+     * <p>The Amazon S3 or Lake Formation access type.</p>
+     */
+    accessTypes?: (AccessType | string)[];
+    /**
+     * <p>The name of your Amazon Security Lake subscriber account.</p>
+     */
+    subscriberName: string | undefined;
+    /**
+     * <p>The subscriber descriptions for the subscriber account in Amazon Security Lake. </p>
+     */
+    subscriberDescription?: string;
+}
+export interface CreateSubscriberResponse {
+    /**
+     * <p>The <code>subscriptionId</code> that was created by the <code>CreateSubscriber</code> API call.</p>
+     */
+    subscriptionId: string | undefined;
+    /**
+     * <p>The Amazon Resource Name (ARN) created by the user to provide to the subscriber. For
+     *          more information about ARNs and how to use them in policies, see IAM identifiers in the IAM
+     *          User Guide.</p>
+     */
+    roleArn?: string;
+    /**
+     * <p>The Amazon Resource Name (ARN) for the Amazon Simple Notification Service.</p>
+     */
+    snsArn?: string;
+    /**
+     * <p>The Amazon Resource Name (ARN) for the Amazon S3 bucket. </p>
+     */
+    s3BucketArn?: string;
+}
+/**
+ * <p>The request was rejected because an invalid or out-of-range value was supplied for an
+ *          input parameter. </p>
+ */
+export declare class InvalidInputException extends __BaseException {
+    readonly name: "InvalidInputException";
+    readonly $fault: "client";
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<InvalidInputException, __BaseException>);
+}
+export declare enum HttpsMethod {
+    POST = "POST",
+    PUT = "PUT"
+}
+export interface CreateSubscriptionNotificationConfigurationRequest {
+    /**
+     * <p>The subscription ID for which the subscription notification is specified. </p>
+     */
+    subscriptionId: string | undefined;
+    /**
+     * <p>The subscription endpoint in Security Lake.</p>
+     */
+    subscriptionEndpoint?: string;
+    /**
+     * <p>The key name for the subscription notification.</p>
+     */
+    httpsApiKeyName?: string;
+    /**
+     * <p>The key value for the subscription notification.</p>
+     */
+    httpsApiKeyValue?: string;
+    /**
+     * <p>The HTTPS method used for the subscription notification. </p>
+     */
+    httpsMethod?: HttpsMethod | string;
+    /**
+     * <p>Create a new subscription notification for the specified subscription ID in Security Lake.</p>
+     */
+    createSqs?: boolean;
+    /**
+     * <p>The Amazon Resource Name (ARN) specifying the role of the subscriber.</p>
+     */
+    roleArn?: string;
+}
+export interface CreateSubscriptionNotificationConfigurationResponse {
+    /**
+     * <p>Returns the Amazon resource name (ARN) of the queue.</p>
+     */
+    queueArn?: string;
+}
+export interface DeleteAwsLogSourceRequest {
+    /**
+     * <p>This is a mandatory input. Specifies the input order to disable dimensions in Security Lake,
+     *          namely Region, source type, and member. </p>
+     */
+    inputOrder: (Dimension | string)[] | undefined;
+    /**
+     * <p>Removes the specific Amazon Web Services sources from all Regions and source types.</p>
+     */
+    disableAllDimensions?: Record<string, Record<string, string[]>>;
+    /**
+     * <p>Remove a specific Amazon Web Services source from specific accounts or Regions.</p>
+     */
+    disableTwoDimensions?: Record<string, string[]>;
+    /**
+     * <p>Removes all Amazon Web Services sources from specific accounts or Regions.</p>
+     */
+    disableSingleDimension?: string[];
+}
+export interface DeleteAwsLogSourceResponse {
+    /**
+     * <p>Deletion of the Amazon Web Services sources is in-progress.</p>
+     */
+    processing?: string[];
+    /**
+     * <p>Deletion of the Amazon Web Services sources failed as the account is not a part of the organization.</p>
+     */
+    failed?: string[];
+}
+export interface DeleteCustomLogSourceRequest {
+    /**
+     * <p>The custom source name for the custome log source.</p>
+     */
+    customSourceName: string | undefined;
+}
+export interface DeleteCustomLogSourceResponse {
+    /**
+     * <p>The location of the partition in the Security Lake S3 bucket.</p>
+     */
+    customDataLocation: string | undefined;
+}
+export interface DeleteDatalakeRequest {
+}
+export interface DeleteDatalakeResponse {
+}
+export interface DeleteDatalakeAutoEnableRequest {
+    /**
+     * <p>Delete Amazon Security Lake with the specified configurations settings to stop ingesting security data for new accounts in Security Lake. </p>
+     */
+    removeFromConfigurationForNewAccounts: AutoEnableNewRegionConfiguration[] | undefined;
+}
+export interface DeleteDatalakeAutoEnableResponse {
+}
+export interface DeleteDatalakeDelegatedAdminRequest {
+    /**
+     * <p>Account ID the Security Lake delegated administrator.</p>
+     */
+    account: string | undefined;
+}
+export interface DeleteDatalakeDelegatedAdminResponse {
+}
+export interface DeleteDatalakeExceptionsSubscriptionRequest {
+}
+export interface DeleteDatalakeExceptionsSubscriptionResponse {
+    /**
+     * <p>Retrieves the status of the delete Security Lake operation for an account. </p>
+     */
+    status: string | undefined;
+}
+export interface DeleteSubscriberRequest {
+    /**
+     * <p>A value created by Security Lake that uniquely identifies your <code>DeleteSubscriber</code> API request. </p>
+     */
+    id: string | undefined;
+}
+export interface DeleteSubscriberResponse {
+}
+export interface DeleteSubscriptionNotificationConfigurationRequest {
+    /**
+     * <p>The subscription ID of the Amazon Security Lake subscriber account.</p>
+     */
+    subscriptionId: string | undefined;
+}
+export interface DeleteSubscriptionNotificationConfigurationResponse {
+}
+export declare enum EndpointProtocol {
+    HTTPS = "HTTPS",
+    SQS = "SQS"
+}
+/**
+ * <p>Represents an error interacting with the Amazon EventBridge service.</p>
+ */
+export declare class EventBridgeException extends __BaseException {
+    readonly name: "EventBridgeException";
+    readonly $fault: "client";
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<EventBridgeException, __BaseException>);
+}
+/**
+ * <p>List of all failures.</p>
+ */
+export interface Failures {
+    /**
+     * <p>List of all exception messages.</p>
+     */
+    exceptionMessage: string | undefined;
+    /**
+     * <p>List of all remediation steps for failures.</p>
+     */
+    remediation: string | undefined;
+    /**
+     * <p>This error can occur if you configure the wrong timestamp format, or if the subset of entries used for validation had errors or missing values.</p>
+     */
+    timestamp: Date | undefined;
+}
+/**
+ * <p>Response element for actions which make changes namely create, update, or delete actions. </p>
+ */
+export interface FailuresResponse {
+    /**
+     * <p>List of Regions where the failure occurred. </p>
+     */
+    region?: string;
+    /**
+     * <p>List of all failures. </p>
+     */
+    failures?: Failures[];
+}
+export interface GetDatalakeRequest {
+}
+export declare enum SettingsStatus {
+    COMPLETED = "COMPLETED",
+    FAILED = "FAILED",
+    INITIALIZED = "INITIALIZED",
+    PENDING = "PENDING"
+}
+/**
+ * <p>Provides details of lake configuration object in Amazon Security Lake.</p>
+ */
+export interface LakeConfigurationResponse {
+    /**
+     * <p>The type of encryption key used by Security Lake to encrypt the lake configuration</p>
+     */
+    encryptionKey?: string;
+    /**
+     * <p>Retention settings for the destination Amazon S3 buckets. </p>
+     */
+    retentionSettings?: RetentionSetting[];
+    /**
+     * <p>A tag is a label that you assign to an Amazon Web Services resource. Each tag consists of a key and an
+     *          optional value, both of which you define.</p>
+     */
+    tagsMap?: Record<string, string>;
+    /**
+     * <p>Replication enables automatic, asynchronous copying of objects across Amazon S3 buckets.
+     *          Amazon S3 buckets that are configured for object replication can be owned by the same AWS account or
+     *          by different accounts. You can replicate objects to a single destination bucket or to
+     *          multiple destination buckets. The destination buckets can be in different Amazon Web Services Regions or
+     *          within the same Region as the source bucket.</p>
+     *          <p>Set up one or more rollup Regions by providing the Region or Regions that should
+     *          contribute to the central rollup Region. </p>
+     */
+    replicationDestinationRegions?: (Region | string)[];
+    /**
+     * <p>Replication settings for the Amazon S3 buckets. This parameter uses the IAM role
+     *          created by you that is managed by Security Lake, to ensure the replication setting is correct. </p>
+     */
+    replicationRoleArn?: string;
+    /**
+     * <p>Amazon Resource Names (ARNs) uniquely identify Amazon Web Services resources. Security Lake requires an ARN
+     *          when you need to specify a resource unambiguously across all of Amazon Web Services, such as in IAM
+     *          policies, Amazon Relational Database Service (Amazon RDS) tags, and API calls. </p>
+     */
+    s3BucketArn?: string;
+    /**
+     * <p>Retrieves the status of the configuration operation for an account in Amazon Security Lake. </p>
+     */
+    status?: SettingsStatus | string;
+}
+export interface GetDatalakeResponse {
+    /**
+     * <p>Retrieves the Security Lake configuration object. </p>
+     */
+    configurations: Record<string, LakeConfigurationResponse> | undefined;
+}
+export interface GetDatalakeAutoEnableRequest {
+}
+export interface GetDatalakeAutoEnableResponse {
+    /**
+     * <p>The configuration for new accounts.</p>
+     */
+    autoEnableNewAccounts: AutoEnableNewRegionConfiguration[] | undefined;
+}
+export interface GetDatalakeExceptionsExpiryRequest {
+}
+export interface GetDatalakeExceptionsExpiryResponse {
+    /**
+     * <p>The expiration period and time-to-live (TTL).</p>
+     */
+    exceptionMessageExpiry: number | undefined;
+}
+export interface GetDatalakeExceptionsSubscriptionRequest {
+}
+/**
+ * <p>Notifications in Security Lake which dictates how notifications are posted at the endpoint. </p>
+ */
+export interface ProtocolAndNotificationEndpoint {
+    /**
+     * <p>The protocol to which notification messages are posted. </p>
+     */
+    protocol?: string;
+    /**
+     * <p>The account which is subscribed to receive exception notifications. </p>
+     */
+    endpoint?: string;
+}
+export interface GetDatalakeExceptionsSubscriptionResponse {
+    /**
+     * <p>Retrieves the exception notification subscription information.</p>
+     */
+    protocolAndNotificationEndpoint: ProtocolAndNotificationEndpoint | undefined;
+}
+export interface GetDatalakeStatusRequest {
+    /**
+     * <p>The account IDs for which a static snapshot of the current Region, including enabled
+     *          accounts and log sources is retrieved.</p>
+     */
+    accountSet?: string[];
+    /**
+     * <p>The maximum limit of accounts for which the static snapshot of the current Region including enabled accounts and log sources is retrieved.</p>
+     */
+    maxAccountResults?: number;
+    /**
+     * <p>If nextToken is returned, there are more results available. The value of nextToken is a unique pagination token for each page. Make the call again using the returned token to retrieve the next page. Keep all other arguments unchanged. Each pagination token expires after 24 hours. Using an expired pagination token will return an HTTP 400 InvalidToken error.</p>
+     */
+    nextToken?: string;
+}
+export interface GetDatalakeStatusResponse {
+    /**
+     * <p>The list of enabled accounts and enabled sources.</p>
+     */
+    accountSourcesList: AccountSources[] | undefined;
+    /**
+     * <p>If nextToken is returned, there are more results available. The value of nextToken is a unique pagination token for each page. Make the call again using the returned token to retrieve the next page. Keep all other arguments unchanged. Each pagination token expires after 24 hours. Using an expired pagination token will return an HTTP 400 InvalidToken error.</p>
+     */
+    nextToken?: string;
+}
+export interface GetSubscriberRequest {
+    /**
+     * <p>A value created by Security Lake that uniquely identifies your <code>GetSubscriber</code> API request.</p>
+     */
+    id: string | undefined;
+}
+export declare enum SubscriptionStatus {
+    ACTIVE = "ACTIVE",
+    DEACTIVATED = "DEACTIVATED",
+    PENDING = "PENDING",
+    READY = "READY"
+}
+/**
+ * <p>Provides details of the Amazon Security Lake account subscription. Subscribers are notified
+ *          of new objects for a source as the data is written to your Amazon Security Lake S3 bucket. </p>
+ */
+export interface SubscriberResource {
+    /**
+     * <p>The subscription ID of the Amazon Security Lake subscriber account.</p>
+     */
+    subscriptionId: string | undefined;
+    /**
+     * <p>Amazon Security Lake supports logs and events collection for the natively-supported Amazon Web Services services. For more information, see the Amazon Security Lake  User Guide.</p>
+     */
+    sourceTypes: SourceType[] | undefined;
+    /**
+     * <p>The Amazon Web Services account ID of the account that you are using to create your Amazon Security Lake
+     *          account.</p>
+     */
+    accountId: string | undefined;
+    /**
+     * <p>The name of your Amazon Security Lake subscriber account.</p>
+     */
+    subscriberName?: string;
+    /**
+     * <p>The subscriber descriptions for a subscriber account. The description for a subscriber
+     *          includes <code>subscriberName</code>, <code>accountID</code>, <code>externalID</code>, and
+     *          <code>subscriptionId</code>.</p>
+     */
+    subscriberDescription?: string;
+    /**
+     * <p>Subscription status of the Amazon Security Lake subscriber account.</p>
+     */
+    subscriptionStatus?: SubscriptionStatus | string;
+    /**
+     * <p>The Amazon Resource Name (ARN) specifying the role of the subscriber.</p>
+     */
+    roleArn?: string;
+    /**
+     * <p>The Amazon Resource Name (ARN) for the Amazon Simple Notification Service.</p>
+     */
+    snsArn?: string;
+    /**
+     * <p>The Amazon Resource Name (ARN) for the Amazon S3 bucket. </p>
+     */
+    s3BucketArn?: string;
+    /**
+     * <p>You can choose to notify subscribers of new objects with an Amazon Simple Queue Service (Amazon SQS) queue or through messaging to an HTTPS endpoint provided by the subscriber. </p>
+     *          <p> Subscribers can consume data by directly querying Lake Formation tables in your
+     *          S3 bucket via services like Amazon Athena. This subscription type is defined as
+     *          <code>LAKEFORMATION</code>. </p>
+     */
+    accessTypes?: (AccessType | string)[];
+    /**
+     * <p>The subscription endpoint to which exception messages are posted. </p>
+     */
+    subscriptionEndpoint?: string;
+    /**
+     * <p>The subscription protocol to which exception messages are posted. </p>
+     */
+    subscriptionProtocol?: EndpointProtocol | string;
+    /**
+     * <p>The external ID of the subscriber. External ID allows the user that is assuming the role
+     *          to assert the circumstances in which they are operating. It also provides a way for the
+     *          account owner to permit the role to be assumed only under specific circumstances.</p>
+     */
+    externalId?: string;
+    /**
+     * <p>The date and time when the subscription was created. </p>
+     */
+    createdAt?: Date;
+    /**
+     * <p>The date and time when the subscription was created. </p>
+     */
+    updatedAt?: Date;
+}
+export interface GetSubscriberResponse {
+    /**
+     * <p>Subscription information for the specified subscription ID</p>
+     */
+    subscriber?: SubscriberResource;
+}
+export interface ListDatalakeExceptionsRequest {
+    /**
+     * <p>List the regions from which exceptions are retrieved.</p>
+     */
+    regionSet?: (Region | string)[];
+    /**
+     * <p>List the maximum number of failures in Security Lake.</p>
+     */
+    maxFailures?: number;
+    /**
+     * <p>List if there are more results available. if nextToken is returned, You can make the call again
+     *          using the returned token to retrieve the next page</p>
+     */
+    nextToken?: string;
+}
+export interface ListDatalakeExceptionsResponse {
+    /**
+     * <p>Lists the non-retryable failures in the current region.</p>
+     */
+    nonRetryableFailures: FailuresResponse[] | undefined;
+    /**
+     * <p>List if there are more results available. if nextToken is returned, You can make the call again
+     *          using the returned token to retrieve the next page</p>
+     */
+    nextToken?: string;
+}
+export interface ListLogSourcesRequest {
+    /**
+     * <p>Lists the log sources in input order, namely Region, source
+     *          type, and member account.</p>
+     */
+    inputOrder?: (Dimension | string)[];
+    /**
+     * <p>List the view of log sources for enabled Security Lake accounts in all Regions and source types.</p>
+     */
+    listAllDimensions?: Record<string, Record<string, string[]>>;
+    /**
+     * <p>Lists the log sources for the specified source types in enabled Security Lake
+     *          accounts for the entire Region, for selected member accounts.</p>
+     */
+    listTwoDimensions?: Record<string, string[]>;
+    /**
+     * <p>List the view of log sources for enabled Security Lake accounts for the entire region.</p>
+     */
+    listSingleDimension?: string[];
+    /**
+     * <p>The maximum number of accounts for which the configuration is displayed.</p>
+     */
+    maxResults?: number;
+    /**
+     * <p>If nextToken is returned, there are more results available. You can make the call again
+     *          using the returned token to retrieve the next page.</p>
+     */
+    nextToken?: string;
+}
+export interface ListLogSourcesResponse {
+    /**
+     * <p>Lists the log sources in the Regions for enabled Security Lake accounts.</p>
+     */
+    regionSourceTypesAccountsList: Record<string, Record<string, string[]>>[] | undefined;
+    /**
+     * <p>If nextToken is returned, there are more results available. You can make the call again
+     *          using the returned token to retrieve the next page.</p>
+     */
+    nextToken?: string;
+}
+export interface ListSubscribersRequest {
+    /**
+     * <p>If nextToken is returned, there are more results available. You can make the call again
+     *          using the returned token to retrieve the next page.</p>
+     */
+    nextToken?: string;
+    /**
+     * <p>The maximum number of accounts for which the configuration is displayed.</p>
+     */
+    maxResults?: number;
+}
+export interface ListSubscribersResponse {
+    /**
+     * <p>The subscribers available in the specified Security Lake account ID.</p>
+     */
+    subscribers: SubscriberResource[] | undefined;
+    /**
+     * <p>If nextToken is returned, there are more results available. You can make the call again
+     *          using the returned token to retrieve the next page.</p>
+     */
+    nextToken?: string;
+}
+export interface UpdateDatalakeRequest {
+    /**
+     * <p>The configuration object</p>
+     */
+    configurations: Record<string, LakeConfigurationRequest> | undefined;
+}
+export interface UpdateDatalakeResponse {
+}
+export interface UpdateDatalakeExceptionsExpiryRequest {
+    /**
+     * <p>The time-to-live (TTL) for the exception message to remain.</p>
+     */
+    exceptionMessageExpiry: number | undefined;
+}
+export interface UpdateDatalakeExceptionsExpiryResponse {
+}
+export interface UpdateDatalakeExceptionsSubscriptionRequest {
+    /**
+     * <p>The subscription protocol to which exception messages are posted. </p>
+     */
+    subscriptionProtocol: SubscriptionProtocolType | string | undefined;
+    /**
+     * <p>The account which is subscribed to receive exception notifications.</p>
+     */
+    notificationEndpoint: string | undefined;
+}
+export interface UpdateDatalakeExceptionsSubscriptionResponse {
+}
+export interface UpdateSubscriberRequest {
+    /**
+     * <p>A value created by Security Lake that uniquely identifies your <code>UpdateSubscriber</code> API request. </p>
+     */
+    id: string | undefined;
+    /**
+     * <p>The supported Amazon Web Services services from which logs and events are collected. Amazon Security Lake
+     *          supports logs and events collection for the following natively-supported Amazon Web Services
+     *          services. For more information, see the Amazon Security Lake User Guide.</p>
+     */
+    sourceTypes?: SourceType[];
+    /**
+     * <p>External ID of the Security Lake account.</p>
+     */
+    externalId?: string;
+    /**
+     * <p>Name of the Security Lake account subscriber. </p>
+     */
+    subscriberName?: string;
+    /**
+     * <p>Description of the Security Lake account subscriber.</p>
+     */
+    subscriberDescription?: string;
+}
+export interface UpdateSubscriberResponse {
+    /**
+     * <p>The account subscriber in Amazon Security Lake.</p>
+     */
+    subscriber?: SubscriberResource;
+}
+export interface UpdateSubscriptionNotificationConfigurationRequest {
+    /**
+     * <p>The subscription ID for which the subscription notification is specified. </p>
+     */
+    subscriptionId: string | undefined;
+    /**
+     * <p>The subscription endpoint in Security Lake.</p>
+     */
+    subscriptionEndpoint?: string;
+    /**
+     * <p>The key name for the subscription notification.</p>
+     */
+    httpsApiKeyName?: string;
+    /**
+     * <p>The key value for the subscription notification.</p>
+     */
+    httpsApiKeyValue?: string;
+    /**
+     * <p>The HTTPS method used for the subscription notification. </p>
+     */
+    httpsMethod?: HttpsMethod | string;
+    /**
+     * <p>Create a new subscription notification for the specified subscription ID in Security Lake.</p>
+     */
+    createSqs?: boolean;
+    /**
+     * <p>The Amazon Resource Name (ARN) specifying the role of the subscriber. </p>
+     */
+    roleArn?: string;
+}
+export interface UpdateSubscriptionNotificationConfigurationResponse {
+    /**
+     * <p>Returns the Amazon resource name (ARN) of the queue.</p>
+     */
+    queueArn?: string;
+}
+/**
+ * @internal
+ */
+export declare const LogsStatusFilterSensitiveLog: (obj: LogsStatus) => any;
+/**
+ * @internal
+ */
+export declare const AccountSourcesFilterSensitiveLog: (obj: AccountSources) => any;
+/**
+ * @internal
+ */
+export declare const AutoEnableNewRegionConfigurationFilterSensitiveLog: (obj: AutoEnableNewRegionConfiguration) => any;
+/**
+ * @internal
+ */
+export declare const CreateAwsLogSourceRequestFilterSensitiveLog: (obj: CreateAwsLogSourceRequest) => any;
+/**
+ * @internal
+ */
+export declare const CreateAwsLogSourceResponseFilterSensitiveLog: (obj: CreateAwsLogSourceResponse) => any;
+/**
+ * @internal
+ */
+export declare const ValidationExceptionFieldFilterSensitiveLog: (obj: ValidationExceptionField) => any;
+/**
+ * @internal
+ */
+export declare const CreateCustomLogSourceRequestFilterSensitiveLog: (obj: CreateCustomLogSourceRequest) => any;
+/**
+ * @internal
+ */
+export declare const CreateCustomLogSourceResponseFilterSensitiveLog: (obj: CreateCustomLogSourceResponse) => any;
+/**
+ * @internal
+ */
+export declare const RetentionSettingFilterSensitiveLog: (obj: RetentionSetting) => any;
+/**
+ * @internal
+ */
+export declare const LakeConfigurationRequestFilterSensitiveLog: (obj: LakeConfigurationRequest) => any;
+/**
+ * @internal
+ */
+export declare const CreateDatalakeRequestFilterSensitiveLog: (obj: CreateDatalakeRequest) => any;
+/**
+ * @internal
+ */
+export declare const CreateDatalakeResponseFilterSensitiveLog: (obj: CreateDatalakeResponse) => any;
+/**
+ * @internal
+ */
+export declare const CreateDatalakeAutoEnableRequestFilterSensitiveLog: (obj: CreateDatalakeAutoEnableRequest) => any;
+/**
+ * @internal
+ */
+export declare const CreateDatalakeAutoEnableResponseFilterSensitiveLog: (obj: CreateDatalakeAutoEnableResponse) => any;
+/**
+ * @internal
+ */
+export declare const CreateDatalakeDelegatedAdminRequestFilterSensitiveLog: (obj: CreateDatalakeDelegatedAdminRequest) => any;
+/**
+ * @internal
+ */
+export declare const CreateDatalakeDelegatedAdminResponseFilterSensitiveLog: (obj: CreateDatalakeDelegatedAdminResponse) => any;
+/**
+ * @internal
+ */
+export declare const CreateDatalakeExceptionsSubscriptionRequestFilterSensitiveLog: (obj: CreateDatalakeExceptionsSubscriptionRequest) => any;
+/**
+ * @internal
+ */
+export declare const CreateDatalakeExceptionsSubscriptionResponseFilterSensitiveLog: (obj: CreateDatalakeExceptionsSubscriptionResponse) => any;
+/**
+ * @internal
+ */
+export declare const SourceTypeFilterSensitiveLog: (obj: SourceType) => any;
+/**
+ * @internal
+ */
+export declare const CreateSubscriberRequestFilterSensitiveLog: (obj: CreateSubscriberRequest) => any;
+/**
+ * @internal
+ */
+export declare const CreateSubscriberResponseFilterSensitiveLog: (obj: CreateSubscriberResponse) => any;
+/**
+ * @internal
+ */
+export declare const CreateSubscriptionNotificationConfigurationRequestFilterSensitiveLog: (obj: CreateSubscriptionNotificationConfigurationRequest) => any;
+/**
+ * @internal
+ */
+export declare const CreateSubscriptionNotificationConfigurationResponseFilterSensitiveLog: (obj: CreateSubscriptionNotificationConfigurationResponse) => any;
+/**
+ * @internal
+ */
+export declare const DeleteAwsLogSourceRequestFilterSensitiveLog: (obj: DeleteAwsLogSourceRequest) => any;
+/**
+ * @internal
+ */
+export declare const DeleteAwsLogSourceResponseFilterSensitiveLog: (obj: DeleteAwsLogSourceResponse) => any;
+/**
+ * @internal
+ */
+export declare const DeleteCustomLogSourceRequestFilterSensitiveLog: (obj: DeleteCustomLogSourceRequest) => any;
+/**
+ * @internal
+ */
+export declare const DeleteCustomLogSourceResponseFilterSensitiveLog: (obj: DeleteCustomLogSourceResponse) => any;
+/**
+ * @internal
+ */
+export declare const DeleteDatalakeRequestFilterSensitiveLog: (obj: DeleteDatalakeRequest) => any;
+/**
+ * @internal
+ */
+export declare const DeleteDatalakeResponseFilterSensitiveLog: (obj: DeleteDatalakeResponse) => any;
+/**
+ * @internal
+ */
+export declare const DeleteDatalakeAutoEnableRequestFilterSensitiveLog: (obj: DeleteDatalakeAutoEnableRequest) => any;
+/**
+ * @internal
+ */
+export declare const DeleteDatalakeAutoEnableResponseFilterSensitiveLog: (obj: DeleteDatalakeAutoEnableResponse) => any;
+/**
+ * @internal
+ */
+export declare const DeleteDatalakeDelegatedAdminRequestFilterSensitiveLog: (obj: DeleteDatalakeDelegatedAdminRequest) => any;
+/**
+ * @internal
+ */
+export declare const DeleteDatalakeDelegatedAdminResponseFilterSensitiveLog: (obj: DeleteDatalakeDelegatedAdminResponse) => any;
+/**
+ * @internal
+ */
+export declare const DeleteDatalakeExceptionsSubscriptionRequestFilterSensitiveLog: (obj: DeleteDatalakeExceptionsSubscriptionRequest) => any;
+/**
+ * @internal
+ */
+export declare const DeleteDatalakeExceptionsSubscriptionResponseFilterSensitiveLog: (obj: DeleteDatalakeExceptionsSubscriptionResponse) => any;
+/**
+ * @internal
+ */
+export declare const DeleteSubscriberRequestFilterSensitiveLog: (obj: DeleteSubscriberRequest) => any;
+/**
+ * @internal
+ */
+export declare const DeleteSubscriberResponseFilterSensitiveLog: (obj: DeleteSubscriberResponse) => any;
+/**
+ * @internal
+ */
+export declare const DeleteSubscriptionNotificationConfigurationRequestFilterSensitiveLog: (obj: DeleteSubscriptionNotificationConfigurationRequest) => any;
+/**
+ * @internal
+ */
+export declare const DeleteSubscriptionNotificationConfigurationResponseFilterSensitiveLog: (obj: DeleteSubscriptionNotificationConfigurationResponse) => any;
+/**
+ * @internal
+ */
+export declare const FailuresFilterSensitiveLog: (obj: Failures) => any;
+/**
+ * @internal
+ */
+export declare const FailuresResponseFilterSensitiveLog: (obj: FailuresResponse) => any;
+/**
+ * @internal
+ */
+export declare const GetDatalakeRequestFilterSensitiveLog: (obj: GetDatalakeRequest) => any;
+/**
+ * @internal
+ */
+export declare const LakeConfigurationResponseFilterSensitiveLog: (obj: LakeConfigurationResponse) => any;
+/**
+ * @internal
+ */
+export declare const GetDatalakeResponseFilterSensitiveLog: (obj: GetDatalakeResponse) => any;
+/**
+ * @internal
+ */
+export declare const GetDatalakeAutoEnableRequestFilterSensitiveLog: (obj: GetDatalakeAutoEnableRequest) => any;
+/**
+ * @internal
+ */
+export declare const GetDatalakeAutoEnableResponseFilterSensitiveLog: (obj: GetDatalakeAutoEnableResponse) => any;
+/**
+ * @internal
+ */
+export declare const GetDatalakeExceptionsExpiryRequestFilterSensitiveLog: (obj: GetDatalakeExceptionsExpiryRequest) => any;
+/**
+ * @internal
+ */
+export declare const GetDatalakeExceptionsExpiryResponseFilterSensitiveLog: (obj: GetDatalakeExceptionsExpiryResponse) => any;
+/**
+ * @internal
+ */
+export declare const GetDatalakeExceptionsSubscriptionRequestFilterSensitiveLog: (obj: GetDatalakeExceptionsSubscriptionRequest) => any;
+/**
+ * @internal
+ */
+export declare const ProtocolAndNotificationEndpointFilterSensitiveLog: (obj: ProtocolAndNotificationEndpoint) => any;
+/**
+ * @internal
+ */
+export declare const GetDatalakeExceptionsSubscriptionResponseFilterSensitiveLog: (obj: GetDatalakeExceptionsSubscriptionResponse) => any;
+/**
+ * @internal
+ */
+export declare const GetDatalakeStatusRequestFilterSensitiveLog: (obj: GetDatalakeStatusRequest) => any;
+/**
+ * @internal
+ */
+export declare const GetDatalakeStatusResponseFilterSensitiveLog: (obj: GetDatalakeStatusResponse) => any;
+/**
+ * @internal
+ */
+export declare const GetSubscriberRequestFilterSensitiveLog: (obj: GetSubscriberRequest) => any;
+/**
+ * @internal
+ */
+export declare const SubscriberResourceFilterSensitiveLog: (obj: SubscriberResource) => any;
+/**
+ * @internal
+ */
+export declare const GetSubscriberResponseFilterSensitiveLog: (obj: GetSubscriberResponse) => any;
+/**
+ * @internal
+ */
+export declare const ListDatalakeExceptionsRequestFilterSensitiveLog: (obj: ListDatalakeExceptionsRequest) => any;
+/**
+ * @internal
+ */
+export declare const ListDatalakeExceptionsResponseFilterSensitiveLog: (obj: ListDatalakeExceptionsResponse) => any;
+/**
+ * @internal
+ */
+export declare const ListLogSourcesRequestFilterSensitiveLog: (obj: ListLogSourcesRequest) => any;
+/**
+ * @internal
+ */
+export declare const ListLogSourcesResponseFilterSensitiveLog: (obj: ListLogSourcesResponse) => any;
+/**
+ * @internal
+ */
+export declare const ListSubscribersRequestFilterSensitiveLog: (obj: ListSubscribersRequest) => any;
+/**
+ * @internal
+ */
+export declare const ListSubscribersResponseFilterSensitiveLog: (obj: ListSubscribersResponse) => any;
+/**
+ * @internal
+ */
+export declare const UpdateDatalakeRequestFilterSensitiveLog: (obj: UpdateDatalakeRequest) => any;
+/**
+ * @internal
+ */
+export declare const UpdateDatalakeResponseFilterSensitiveLog: (obj: UpdateDatalakeResponse) => any;
+/**
+ * @internal
+ */
+export declare const UpdateDatalakeExceptionsExpiryRequestFilterSensitiveLog: (obj: UpdateDatalakeExceptionsExpiryRequest) => any;
+/**
+ * @internal
+ */
+export declare const UpdateDatalakeExceptionsExpiryResponseFilterSensitiveLog: (obj: UpdateDatalakeExceptionsExpiryResponse) => any;
+/**
+ * @internal
+ */
+export declare const UpdateDatalakeExceptionsSubscriptionRequestFilterSensitiveLog: (obj: UpdateDatalakeExceptionsSubscriptionRequest) => any;
+/**
+ * @internal
+ */
+export declare const UpdateDatalakeExceptionsSubscriptionResponseFilterSensitiveLog: (obj: UpdateDatalakeExceptionsSubscriptionResponse) => any;
+/**
+ * @internal
+ */
+export declare const UpdateSubscriberRequestFilterSensitiveLog: (obj: UpdateSubscriberRequest) => any;
+/**
+ * @internal
+ */
+export declare const UpdateSubscriberResponseFilterSensitiveLog: (obj: UpdateSubscriberResponse) => any;
+/**
+ * @internal
+ */
+export declare const UpdateSubscriptionNotificationConfigurationRequestFilterSensitiveLog: (obj: UpdateSubscriptionNotificationConfigurationRequest) => any;
+/**
+ * @internal
+ */
+export declare const UpdateSubscriptionNotificationConfigurationResponseFilterSensitiveLog: (obj: UpdateSubscriptionNotificationConfigurationResponse) => any;