aws-cdk-lib 2.127.0__py3-none-any.whl → 2.129.0__py3-none-any.whl

aws_cdk/aws_wafv2/__init__.py

@@ -809,7 +809,7 @@ class CfnLoggingConfiguration(
 
             ``"FieldToMatch": { "Method": { "Name": "DELETE" } }``
 
-            :param json_body: Redact the request body JSON.
+            :param json_body: 
             :param method: Redact the indicated HTTP method. The method indicates the type of operation that the request is asking the origin to perform.
             :param query_string: Redact the query string. This is the part of a URL that appears after a ``?`` character, if any.
             :param single_header: Redact a single header. Provide the name of the header to inspect, for example, ``User-Agent`` or ``Referer`` . This setting isn't case sensitive. Example JSON: ``"SingleHeader": { "Name": "haystack" }``
@@ -859,8 +859,7 @@ class CfnLoggingConfiguration(
 
         @builtins.property
         def json_body(self) -> typing.Any:
-            '''Redact the request body JSON.
-
+            '''
             :see: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-loggingconfiguration-fieldtomatch.html#cfn-wafv2-loggingconfiguration-fieldtomatch-jsonbody
             '''
             result = self._values.get("json_body")
@@ -1041,17 +1040,10 @@ class CfnLoggingConfiguration(
             match_scope: builtins.str,
             invalid_fallback_behavior: typing.Optional[builtins.str] = None,
         ) -> None:
-            '''Inspect the body of the web request as JSON. The body immediately follows the request headers.
-
-            This is used to indicate the web request component to inspect, in the ``FieldToMatch`` specification.
-
-            Use the specifications in this object to indicate which parts of the JSON body to inspect using the rule's inspection criteria. AWS WAF inspects only the parts of the JSON that result from the matches that you indicate.
-
-            Example JSON: ``"JsonBody": { "MatchPattern": { "All": {} }, "MatchScope": "ALL" }``
-
-            :param match_pattern: The patterns to look for in the JSON body. AWS WAF inspects the results of these pattern matches against the rule inspection criteria.
-            :param match_scope: The parts of the JSON to match against using the ``MatchPattern`` . If you specify ``ALL`` , AWS WAF matches against keys and values. ``All`` does not require a match to be found in the keys and a match to be found in the values. It requires a match to be found in the keys or the values or both. To require a match in the keys and in the values, use a logical ``AND`` statement to combine two match rules, one that inspects the keys and another that inspects the values.
-            :param invalid_fallback_behavior: What AWS WAF should do if it fails to completely parse the JSON body. The options are the following:. - ``EVALUATE_AS_STRING`` - Inspect the body as plain text. AWS WAF applies the text transformations and inspection criteria that you defined for the JSON inspection to the body text string. - ``MATCH`` - Treat the web request as matching the rule statement. AWS WAF applies the rule action to the request. - ``NO_MATCH`` - Treat the web request as not matching the rule statement. If you don't provide this setting, AWS WAF parses and evaluates the content only up to the first parsing failure that it encounters. AWS WAF does its best to parse the entire JSON body, but might be forced to stop for reasons such as invalid characters, duplicate keys, truncation, and any content whose root node isn't an object or an array. AWS WAF parses the JSON in the following examples as two valid key, value pairs: - Missing comma: ``{"key1":"value1""key2":"value2"}`` - Missing colon: ``{"key1":"value1","key2""value2"}`` - Extra colons: ``{"key1"::"value1","key2""value2"}``
+            '''
+            :param match_pattern: 
+            :param match_scope: 
+            :param invalid_fallback_behavior: 
 
             :see: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-loggingconfiguration-jsonbody.html
             :exampleMetadata: fixture=_generated
@@ -1091,10 +1083,7 @@ class CfnLoggingConfiguration(
         def match_pattern(
             self,
         ) -> typing.Union[_IResolvable_da3f097b, "CfnLoggingConfiguration.MatchPatternProperty"]:
-            '''The patterns to look for in the JSON body.
-
-            AWS WAF inspects the results of these pattern matches against the rule inspection criteria.
-
+            '''
             :see: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-loggingconfiguration-jsonbody.html#cfn-wafv2-loggingconfiguration-jsonbody-matchpattern
             '''
             result = self._values.get("match_pattern")
@@ -1103,12 +1092,7 @@ class CfnLoggingConfiguration(
 
         @builtins.property
         def match_scope(self) -> builtins.str:
-            '''The parts of the JSON to match against using the ``MatchPattern`` .
-
-            If you specify ``ALL`` , AWS WAF matches against keys and values.
-
-            ``All`` does not require a match to be found in the keys and a match to be found in the values. It requires a match to be found in the keys or the values or both. To require a match in the keys and in the values, use a logical ``AND`` statement to combine two match rules, one that inspects the keys and another that inspects the values.
-
+            '''
             :see: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-loggingconfiguration-jsonbody.html#cfn-wafv2-loggingconfiguration-jsonbody-matchscope
             '''
             result = self._values.get("match_scope")
@@ -1117,22 +1101,7 @@ class CfnLoggingConfiguration(
 
         @builtins.property
         def invalid_fallback_behavior(self) -> typing.Optional[builtins.str]:
-            '''What AWS WAF should do if it fails to completely parse the JSON body. The options are the following:.
-
-            - ``EVALUATE_AS_STRING`` - Inspect the body as plain text. AWS WAF applies the text transformations and inspection criteria that you defined for the JSON inspection to the body text string.
-            - ``MATCH`` - Treat the web request as matching the rule statement. AWS WAF applies the rule action to the request.
-            - ``NO_MATCH`` - Treat the web request as not matching the rule statement.
-
-            If you don't provide this setting, AWS WAF parses and evaluates the content only up to the first parsing failure that it encounters.
-
-            AWS WAF does its best to parse the entire JSON body, but might be forced to stop for reasons such as invalid characters, duplicate keys, truncation, and any content whose root node isn't an object or an array.
-
-            AWS WAF parses the JSON in the following examples as two valid key, value pairs:
-
-            - Missing comma: ``{"key1":"value1""key2":"value2"}``
-            - Missing colon: ``{"key1":"value1","key2""value2"}``
-            - Extra colons: ``{"key1"::"value1","key2""value2"}``
-
+            '''
             :see: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-loggingconfiguration-jsonbody.html#cfn-wafv2-loggingconfiguration-jsonbody-invalidfallbackbehavior
             '''
             result = self._values.get("invalid_fallback_behavior")
@@ -1301,12 +1270,9 @@ class CfnLoggingConfiguration(
             all: typing.Any = None,
             included_paths: typing.Optional[typing.Sequence[builtins.str]] = None,
         ) -> None:
-            '''The patterns to look for in the JSON body.
-
-            AWS WAF inspects the results of these pattern matches against the rule inspection criteria.
-
-            :param all: Match all of the elements. You must specify either this setting or the ``IncludedPaths`` setting, but not both.
-            :param included_paths: Match only the specified include paths. Provide the include paths using JSON Pointer syntax. For example, ``"IncludedPaths": ["/dogs/0/name", "/dogs/1/name"]`` . For information about this syntax, see the Internet Engineering Task Force (IETF) documentation `JavaScript Object Notation (JSON) Pointer <https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6901>`_ . You must specify either this setting or the ``All`` setting, but not both. .. epigraph:: Don't use this option to include all paths. Instead, use the ``All`` setting.
+            '''
+            :param all: 
+            :param included_paths: 
 
             :see: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-loggingconfiguration-matchpattern.html
             :exampleMetadata: fixture=_generated
@@ -1336,10 +1302,7 @@ class CfnLoggingConfiguration(
 
         @builtins.property
         def all(self) -> typing.Any:
-            '''Match all of the elements.
-
-            You must specify either this setting or the ``IncludedPaths`` setting, but not both.
-
+            '''
             :see: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-loggingconfiguration-matchpattern.html#cfn-wafv2-loggingconfiguration-matchpattern-all
             '''
             result = self._values.get("all")
@@ -1347,15 +1310,7 @@ class CfnLoggingConfiguration(
 
         @builtins.property
         def included_paths(self) -> typing.Optional[typing.List[builtins.str]]:
-            '''Match only the specified include paths.
-
-            Provide the include paths using JSON Pointer syntax. For example, ``"IncludedPaths": ["/dogs/0/name", "/dogs/1/name"]`` . For information about this syntax, see the Internet Engineering Task Force (IETF) documentation `JavaScript Object Notation (JSON) Pointer <https://docs.aws.amazon.com/https://tools.ietf.org/html/rfc6901>`_ .
-
-            You must specify either this setting or the ``All`` setting, but not both.
-            .. epigraph::
-
-               Don't use this option to include all paths. Instead, use the ``All`` setting.
-
+            '''
             :see: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-wafv2-loggingconfiguration-matchpattern.html#cfn-wafv2-loggingconfiguration-matchpattern-includedpaths
             '''
             result = self._values.get("included_paths")

aws_cdk/aws_workspaces/__init__.py

@@ -146,8 +146,7 @@ class CfnConnectionAlias(
     @builtins.property
     @jsii.member(jsii_name="attrAssociations")
     def attr_associations(self) -> _IResolvable_da3f097b:
-        '''The association status of the connection alias.
-
+        '''
         :cloudformationAttribute: Associations
         '''
         return typing.cast(_IResolvable_da3f097b, jsii.get(self, "attrAssociations"))
@@ -449,7 +448,7 @@ class CfnWorkspace(
         :param id: Construct identifier for this resource (unique in its scope).
         :param bundle_id: The identifier of the bundle for the WorkSpace.
         :param directory_id: The identifier of the AWS Directory Service directory for the WorkSpace.
-        :param user_name: The user name of the user for the WorkSpace. This user name must exist in the AWS Directory Service directory for the WorkSpace.
+        :param user_name: The user name of the user for the WorkSpace. This user name must exist in the AWS Directory Service directory for the WorkSpace. The reserved keyword, ``[UNDEFINED]`` , is used when creating user-decoupled WorkSpaces.
         :param root_volume_encryption_enabled: Indicates whether the data stored on the root volume is encrypted.
         :param tags: The tags for the WorkSpace.
         :param user_volume_encryption_enabled: Indicates whether the data stored on the user volume is encrypted.
@@ -809,7 +808,7 @@ class CfnWorkspaceProps:
 
         :param bundle_id: The identifier of the bundle for the WorkSpace.
         :param directory_id: The identifier of the AWS Directory Service directory for the WorkSpace.
-        :param user_name: The user name of the user for the WorkSpace. This user name must exist in the AWS Directory Service directory for the WorkSpace.
+        :param user_name: The user name of the user for the WorkSpace. This user name must exist in the AWS Directory Service directory for the WorkSpace. The reserved keyword, ``[UNDEFINED]`` , is used when creating user-decoupled WorkSpaces.
         :param root_volume_encryption_enabled: Indicates whether the data stored on the root volume is encrypted.
         :param tags: The tags for the WorkSpace.
         :param user_volume_encryption_enabled: Indicates whether the data stored on the user volume is encrypted.
@@ -899,6 +898,8 @@ class CfnWorkspaceProps:
 
         This user name must exist in the AWS Directory Service directory for the WorkSpace.
 
+        The reserved keyword, ``[UNDEFINED]`` , is used when creating user-decoupled WorkSpaces.
+
         :see: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-workspaces-workspace.html#cfn-workspaces-workspace-username
         '''
         result = self._values.get("user_name")

aws_cdk/aws_workspacesweb/__init__.py

@@ -156,8 +156,7 @@ class CfnBrowserSettings(
     @builtins.property
     @jsii.member(jsii_name="attrAssociatedPortalArns")
     def attr_associated_portal_arns(self) -> typing.List[builtins.str]:
-        '''A list of web portal ARNs that the browser settings resource is associated with.
-
+        '''
         :cloudformationAttribute: AssociatedPortalArns
         '''
         return typing.cast(typing.List[builtins.str], jsii.get(self, "attrAssociatedPortalArns"))
@@ -776,8 +775,7 @@ class CfnIpAccessSettings(
     @builtins.property
     @jsii.member(jsii_name="attrAssociatedPortalArns")
     def attr_associated_portal_arns(self) -> typing.List[builtins.str]:
-        '''A list of web portal ARNs that this IP access settings resource is associated with.
-
+        '''
         :cloudformationAttribute: AssociatedPortalArns
         '''
         return typing.cast(typing.List[builtins.str], jsii.get(self, "attrAssociatedPortalArns"))
@@ -1229,8 +1227,7 @@ class CfnNetworkSettings(
     @builtins.property
     @jsii.member(jsii_name="attrAssociatedPortalArns")
     def attr_associated_portal_arns(self) -> typing.List[builtins.str]:
-        '''A list of web portal ARNs that this network settings is associated with.
-
+        '''
         :cloudformationAttribute: AssociatedPortalArns
         '''
         return typing.cast(typing.List[builtins.str], jsii.get(self, "attrAssociatedPortalArns"))
@@ -2104,8 +2101,7 @@ class CfnTrustStore(
     @builtins.property
     @jsii.member(jsii_name="attrAssociatedPortalArns")
     def attr_associated_portal_arns(self) -> typing.List[builtins.str]:
-        '''A list of web portal ARNs that this trust store is associated with.
-
+        '''
         :cloudformationAttribute: AssociatedPortalArns
         '''
         return typing.cast(typing.List[builtins.str], jsii.get(self, "attrAssociatedPortalArns"))
@@ -2322,8 +2318,7 @@ class CfnUserAccessLoggingSettings(
     @builtins.property
     @jsii.member(jsii_name="attrAssociatedPortalArns")
     def attr_associated_portal_arns(self) -> typing.List[builtins.str]:
-        '''A list of web portal ARNs that this user access logging settings is associated with.
-
+        '''
         :cloudformationAttribute: AssociatedPortalArns
         '''
         return typing.cast(typing.List[builtins.str], jsii.get(self, "attrAssociatedPortalArns"))
@@ -2592,8 +2587,7 @@ class CfnUserSettings(
     @builtins.property
     @jsii.member(jsii_name="attrAssociatedPortalArns")
     def attr_associated_portal_arns(self) -> typing.List[builtins.str]:
-        '''A list of web portal ARNs that this user settings resource is associated with.
-
+        '''
         :cloudformationAttribute: AssociatedPortalArns
         '''
         return typing.cast(typing.List[builtins.str], jsii.get(self, "attrAssociatedPortalArns"))

aws_cdk/triggers/__init__.py

@@ -417,6 +417,7 @@ class TriggerFunction(
         function_name: typing.Optional[builtins.str] = None,
         initial_policy: typing.Optional[typing.Sequence[_PolicyStatement_0fe33853]] = None,
         insights_version: typing.Optional[_LambdaInsightsVersion_9dfbfef9] = None,
+        ipv6_allowed_for_dual_stack: typing.Optional[builtins.bool] = None,
         layers: typing.Optional[typing.Sequence[_ILayerVersion_5ac127c8]] = None,
         log_format: typing.Optional[builtins.str] = None,
         logging_format: typing.Optional[_LoggingFormat_30be8e01] = None,
@@ -471,6 +472,7 @@ class TriggerFunction(
         :param function_name: A name for the function. Default: - AWS CloudFormation generates a unique physical ID and uses that ID for the function's name. For more information, see Name Type.
         :param initial_policy: Initial policy statements to add to the created Lambda Role. You can call ``addToRolePolicy`` to the created lambda to add statements post creation. Default: - No policy statements are added to the created Lambda role.
         :param insights_version: Specify the version of CloudWatch Lambda insights to use for monitoring. Default: - No Lambda Insights
+        :param ipv6_allowed_for_dual_stack: Allows outbound IPv6 traffic on VPC functions that are connected to dual-stack subnets. Only used if 'vpc' is supplied. Default: false
         :param layers: A list of layers to add to the function's execution environment. You can configure your Lambda function to pull in additional code during initialization in the form of layers. Layers are packages of libraries or other dependencies that can be used by multiple functions. Default: - No layers.
         :param log_format: Sets the logFormat for the function. Default: "Text"
         :param logging_format: Sets the loggingFormat for the function. Default: LoggingFormat.TEXT
@@ -527,6 +529,7 @@ class TriggerFunction(
             function_name=function_name,
             initial_policy=initial_policy,
             insights_version=insights_version,
+            ipv6_allowed_for_dual_stack=ipv6_allowed_for_dual_stack,
             layers=layers,
             log_format=log_format,
             logging_format=logging_format,
@@ -889,6 +892,7 @@ class TriggerProps(TriggerOptions):
         "function_name": "functionName",
         "initial_policy": "initialPolicy",
         "insights_version": "insightsVersion",
+        "ipv6_allowed_for_dual_stack": "ipv6AllowedForDualStack",
         "layers": "layers",
         "log_format": "logFormat",
         "logging_format": "loggingFormat",
@@ -945,6 +949,7 @@ class TriggerFunctionProps(_FunctionProps_a308e854, TriggerOptions):
         function_name: typing.Optional[builtins.str] = None,
         initial_policy: typing.Optional[typing.Sequence[_PolicyStatement_0fe33853]] = None,
         insights_version: typing.Optional[_LambdaInsightsVersion_9dfbfef9] = None,
+        ipv6_allowed_for_dual_stack: typing.Optional[builtins.bool] = None,
         layers: typing.Optional[typing.Sequence[_ILayerVersion_5ac127c8]] = None,
         log_format: typing.Optional[builtins.str] = None,
         logging_format: typing.Optional[_LoggingFormat_30be8e01] = None,
@@ -998,6 +1003,7 @@ class TriggerFunctionProps(_FunctionProps_a308e854, TriggerOptions):
         :param function_name: A name for the function. Default: - AWS CloudFormation generates a unique physical ID and uses that ID for the function's name. For more information, see Name Type.
         :param initial_policy: Initial policy statements to add to the created Lambda Role. You can call ``addToRolePolicy`` to the created lambda to add statements post creation. Default: - No policy statements are added to the created Lambda role.
         :param insights_version: Specify the version of CloudWatch Lambda insights to use for monitoring. Default: - No Lambda Insights
+        :param ipv6_allowed_for_dual_stack: Allows outbound IPv6 traffic on VPC functions that are connected to dual-stack subnets. Only used if 'vpc' is supplied. Default: false
         :param layers: A list of layers to add to the function's execution environment. You can configure your Lambda function to pull in additional code during initialization in the form of layers. Layers are packages of libraries or other dependencies that can be used by multiple functions. Default: - No layers.
         :param log_format: Sets the logFormat for the function. Default: "Text"
         :param logging_format: Sets the loggingFormat for the function. Default: LoggingFormat.TEXT
@@ -1072,6 +1078,7 @@ class TriggerFunctionProps(_FunctionProps_a308e854, TriggerOptions):
             check_type(argname="argument function_name", value=function_name, expected_type=type_hints["function_name"])
             check_type(argname="argument initial_policy", value=initial_policy, expected_type=type_hints["initial_policy"])
             check_type(argname="argument insights_version", value=insights_version, expected_type=type_hints["insights_version"])
+            check_type(argname="argument ipv6_allowed_for_dual_stack", value=ipv6_allowed_for_dual_stack, expected_type=type_hints["ipv6_allowed_for_dual_stack"])
             check_type(argname="argument layers", value=layers, expected_type=type_hints["layers"])
             check_type(argname="argument log_format", value=log_format, expected_type=type_hints["log_format"])
             check_type(argname="argument logging_format", value=logging_format, expected_type=type_hints["logging_format"])
@@ -1150,6 +1157,8 @@ class TriggerFunctionProps(_FunctionProps_a308e854, TriggerOptions):
             self._values["initial_policy"] = initial_policy
         if insights_version is not None:
             self._values["insights_version"] = insights_version
+        if ipv6_allowed_for_dual_stack is not None:
+            self._values["ipv6_allowed_for_dual_stack"] = ipv6_allowed_for_dual_stack
         if layers is not None:
             self._values["layers"] = layers
         if log_format is not None:
@@ -1449,6 +1458,17 @@ class TriggerFunctionProps(_FunctionProps_a308e854, TriggerOptions):
         result = self._values.get("insights_version")
         return typing.cast(typing.Optional[_LambdaInsightsVersion_9dfbfef9], result)
 
+    @builtins.property
+    def ipv6_allowed_for_dual_stack(self) -> typing.Optional[builtins.bool]:
+        '''Allows outbound IPv6 traffic on VPC functions that are connected to dual-stack subnets.
+
+        Only used if 'vpc' is supplied.
+
+        :default: false
+        '''
+        result = self._values.get("ipv6_allowed_for_dual_stack")
+        return typing.cast(typing.Optional[builtins.bool], result)
+
     @builtins.property
     def layers(self) -> typing.Optional[typing.List[_ILayerVersion_5ac127c8]]:
         '''A list of layers to add to the function's execution environment.
@@ -1904,6 +1924,7 @@ def _typecheckingstub__6f34c5ba084706d20d6ef37a7f59673b20ed3425ffc7035fc8ea888e9
     function_name: typing.Optional[builtins.str] = None,
     initial_policy: typing.Optional[typing.Sequence[_PolicyStatement_0fe33853]] = None,
     insights_version: typing.Optional[_LambdaInsightsVersion_9dfbfef9] = None,
+    ipv6_allowed_for_dual_stack: typing.Optional[builtins.bool] = None,
     layers: typing.Optional[typing.Sequence[_ILayerVersion_5ac127c8]] = None,
     log_format: typing.Optional[builtins.str] = None,
     logging_format: typing.Optional[_LoggingFormat_30be8e01] = None,
@@ -1991,6 +2012,7 @@ def _typecheckingstub__b2f4b009b0160d566d798bfa6d813ccc8440e1a9e0f75c99449184a2f
     function_name: typing.Optional[builtins.str] = None,
     initial_policy: typing.Optional[typing.Sequence[_PolicyStatement_0fe33853]] = None,
     insights_version: typing.Optional[_LambdaInsightsVersion_9dfbfef9] = None,
+    ipv6_allowed_for_dual_stack: typing.Optional[builtins.bool] = None,
     layers: typing.Optional[typing.Sequence[_ILayerVersion_5ac127c8]] = None,
     log_format: typing.Optional[builtins.str] = None,
     logging_format: typing.Optional[_LoggingFormat_30be8e01] = None,

{aws_cdk_lib-2.127.0.dist-info → aws_cdk_lib-2.129.0.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: aws-cdk-lib
-Version: 2.127.0
+Version: 2.129.0
 Summary: Version 2 of the AWS Cloud Development Kit library
 Home-page: https://github.com/aws/aws-cdk
 Author: Amazon Web Services