Documentation ¶
Index ¶
- func CfnCustomDataIdentifier_CFN_RESOURCE_TYPE_NAME() *string
- func CfnCustomDataIdentifier_IsCfnElement(x interface{}) *bool
- func CfnCustomDataIdentifier_IsCfnResource(construct constructs.IConstruct) *bool
- func CfnCustomDataIdentifier_IsConstruct(x interface{}) *bool
- func CfnFindingsFilter_CFN_RESOURCE_TYPE_NAME() *string
- func CfnFindingsFilter_IsCfnElement(x interface{}) *bool
- func CfnFindingsFilter_IsCfnResource(construct constructs.IConstruct) *bool
- func CfnFindingsFilter_IsConstruct(x interface{}) *bool
- func CfnSession_CFN_RESOURCE_TYPE_NAME() *string
- func CfnSession_IsCfnElement(x interface{}) *bool
- func CfnSession_IsCfnResource(construct constructs.IConstruct) *bool
- func CfnSession_IsConstruct(x interface{}) *bool
- func NewCfnCustomDataIdentifier_Override(c CfnCustomDataIdentifier, scope constructs.Construct, id *string, ...)
- func NewCfnFindingsFilter_Override(c CfnFindingsFilter, scope constructs.Construct, id *string, ...)
- func NewCfnSession_Override(c CfnSession, scope constructs.Construct, id *string, props *CfnSessionProps)
- type CfnCustomDataIdentifier
- type CfnCustomDataIdentifierProps
- type CfnFindingsFilter
- type CfnFindingsFilterProps
- type CfnFindingsFilter_FindingCriteriaProperty
- type CfnFindingsFilter_FindingsFilterListItemProperty
- type CfnSession
- type CfnSessionProps
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func CfnCustomDataIdentifier_CFN_RESOURCE_TYPE_NAME ¶
func CfnCustomDataIdentifier_CFN_RESOURCE_TYPE_NAME() *string
func CfnCustomDataIdentifier_IsCfnElement ¶
func CfnCustomDataIdentifier_IsCfnElement(x interface{}) *bool
Returns `true` if a construct is a stack element (i.e. part of the synthesized cloudformation template).
Uses duck-typing instead of `instanceof` to allow stack elements from different versions of this library to be included in the same stack.
Returns: The construct as a stack element or undefined if it is not a stack element.
func CfnCustomDataIdentifier_IsCfnResource ¶
func CfnCustomDataIdentifier_IsCfnResource(construct constructs.IConstruct) *bool
Check whether the given construct is a CfnResource.
func CfnCustomDataIdentifier_IsConstruct ¶
func CfnCustomDataIdentifier_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.
func CfnFindingsFilter_CFN_RESOURCE_TYPE_NAME ¶
func CfnFindingsFilter_CFN_RESOURCE_TYPE_NAME() *string
func CfnFindingsFilter_IsCfnElement ¶
func CfnFindingsFilter_IsCfnElement(x interface{}) *bool
Returns `true` if a construct is a stack element (i.e. part of the synthesized cloudformation template).
Uses duck-typing instead of `instanceof` to allow stack elements from different versions of this library to be included in the same stack.
Returns: The construct as a stack element or undefined if it is not a stack element.
func CfnFindingsFilter_IsCfnResource ¶
func CfnFindingsFilter_IsCfnResource(construct constructs.IConstruct) *bool
Check whether the given construct is a CfnResource.
func CfnFindingsFilter_IsConstruct ¶
func CfnFindingsFilter_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.
func CfnSession_CFN_RESOURCE_TYPE_NAME ¶
func CfnSession_CFN_RESOURCE_TYPE_NAME() *string
func CfnSession_IsCfnElement ¶
func CfnSession_IsCfnElement(x interface{}) *bool
Returns `true` if a construct is a stack element (i.e. part of the synthesized cloudformation template).
Uses duck-typing instead of `instanceof` to allow stack elements from different versions of this library to be included in the same stack.
Returns: The construct as a stack element or undefined if it is not a stack element.
func CfnSession_IsCfnResource ¶
func CfnSession_IsCfnResource(construct constructs.IConstruct) *bool
Check whether the given construct is a CfnResource.
func CfnSession_IsConstruct ¶
func CfnSession_IsConstruct(x interface{}) *bool
Checks if `x` is a construct.
Returns: true if `x` is an object created from a class which extends `Construct`. Deprecated: use `x instanceof Construct` instead.
func NewCfnCustomDataIdentifier_Override ¶
func NewCfnCustomDataIdentifier_Override(c CfnCustomDataIdentifier, scope constructs.Construct, id *string, props *CfnCustomDataIdentifierProps)
Create a new `AWS::Macie::CustomDataIdentifier`.
func NewCfnFindingsFilter_Override ¶
func NewCfnFindingsFilter_Override(c CfnFindingsFilter, scope constructs.Construct, id *string, props *CfnFindingsFilterProps)
Create a new `AWS::Macie::FindingsFilter`.
func NewCfnSession_Override ¶
func NewCfnSession_Override(c CfnSession, scope constructs.Construct, id *string, props *CfnSessionProps)
Create a new `AWS::Macie::Session`.
Types ¶
type CfnCustomDataIdentifier ¶
type CfnCustomDataIdentifier interface { awscdk.CfnResource awscdk.IInspectable // The Amazon Resource Name (ARN) of the custom data identifier. AttrArn() *string // The unique identifier for the custom data identifier. AttrId() *string // Options for this resource, such as condition, update policy etc. CfnOptions() awscdk.ICfnResourceOptions CfnProperties() *map[string]interface{} // AWS resource type. CfnResourceType() *string // Returns: the stack trace of the point where this Resource was created from, sourced // from the +metadata+ entry typed +aws:cdk:logicalId+, and with the bottom-most // node +internal+ entries filtered. CreationStack() *[]*string // The description of the custom data identifier. // // The description can contain as many as 512 characters. Description() *string SetDescription(val *string) // An array that lists specific character sequences (ignore words) to exclude from the results. // // If the text matched by the regular expression is the same as any string in this array, Amazon Macie ignores it. The array can contain as many as 10 ignore words. Each ignore word can contain 4-90 characters. Ignore words are case sensitive. IgnoreWords() *[]*string SetIgnoreWords(val *[]*string) // An array that lists specific character sequences (keywords), one of which must be within proximity ( `MaximumMatchDistance` ) of the regular expression to match. // // The array can contain as many as 50 keywords. Each keyword can contain 3-90 characters. Keywords aren't case sensitive. Keywords() *[]*string SetKeywords(val *[]*string) // The logical ID for this CloudFormation stack element. // // The logical ID of the element // is calculated from the path of the resource node in the construct tree. // // To override this value, use `overrideLogicalId(newLogicalId)`. // // Returns: the logical ID as a stringified token. This value will only get // resolved during synthesis. LogicalId() *string // The maximum number of characters that can exist between text that matches the regex pattern and the character sequences specified by the `Keywords` array. // // Amazon Macie includes or excludes a result based on the proximity of a keyword to text that matches the regex pattern. The distance can be 1-300 characters. The default value is 50. MaximumMatchDistance() *float64 SetMaximumMatchDistance(val *float64) // A custom name for the custom data identifier. The name can contain as many as 128 characters. // // We strongly recommend that you avoid including any sensitive data in the name of a custom data identifier. Other users of your account might be able to see the identifier's name, depending on the actions that they're allowed to perform in Amazon Macie . Name() *string SetName(val *string) // The tree node. Node() constructs.Node // Return a string that will be resolved to a CloudFormation `{ Ref }` for this element. // // If, by any chance, the intrinsic reference of a resource is not a string, you could // coerce it to an IResolvable through `Lazy.any({ produce: resource.ref })`. Ref() *string // The regular expression ( *regex* ) that defines the pattern to match. // // The expression can contain as many as 512 characters. Regex() *string SetRegex(val *string) // The stack in which this element is defined. // // CfnElements must be defined within a stack scope (directly or indirectly). Stack() awscdk.Stack // Return properties modified after initiation. // // Resources that expose mutable properties should override this function to // collect and return the properties object for this resource. UpdatedProperites() *map[string]interface{} // Syntactic sugar for `addOverride(path, undefined)`. AddDeletionOverride(path *string) // Indicates that this resource depends on another resource and cannot be provisioned unless the other resource has been successfully provisioned. // // This can be used for resources across stacks (or nested stack) boundaries // and the dependency will automatically be transferred to the relevant scope. AddDependsOn(target awscdk.CfnResource) // Add a value to the CloudFormation Resource Metadata. // See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/metadata-section-structure.html // // Note that this is a different set of metadata from CDK node metadata; this // metadata ends up in the stack template under the resource, whereas CDK // node metadata ends up in the Cloud Assembly. // AddMetadata(key *string, value interface{}) // Adds an override to the synthesized CloudFormation resource. // // To add a // property override, either use `addPropertyOverride` or prefix `path` with // "Properties." (i.e. `Properties.TopicName`). // // If the override is nested, separate each nested level using a dot (.) in the path parameter. // If there is an array as part of the nesting, specify the index in the path. // // To include a literal `.` in the property name, prefix with a `\`. In most // programming languages you will need to write this as `"\\."` because the // `\` itself will need to be escaped. // // For example, // “`typescript // cfnResource.addOverride('Properties.GlobalSecondaryIndexes.0.Projection.NonKeyAttributes', ['myattribute']); // cfnResource.addOverride('Properties.GlobalSecondaryIndexes.1.ProjectionType', 'INCLUDE'); // “` // would add the overrides // “`json // "Properties": { // "GlobalSecondaryIndexes": [ // { // "Projection": { // "NonKeyAttributes": [ "myattribute" ] // ... // } // ... // }, // { // "ProjectionType": "INCLUDE" // ... // }, // ] // ... // } // “` // // The `value` argument to `addOverride` will not be processed or translated // in any way. Pass raw JSON values in here with the correct capitalization // for CloudFormation. If you pass CDK classes or structs, they will be // rendered with lowercased key names, and CloudFormation will reject the // template. AddOverride(path *string, value interface{}) // Adds an override that deletes the value of a property from the resource definition. AddPropertyDeletionOverride(propertyPath *string) // Adds an override to a resource property. // // Syntactic sugar for `addOverride("Properties.<...>", value)`. AddPropertyOverride(propertyPath *string, value interface{}) // Sets the deletion policy of the resource based on the removal policy specified. // // The Removal Policy controls what happens to this resource when it stops // being managed by CloudFormation, either because you've removed it from the // CDK application or because you've made a change that requires the resource // to be replaced. // // The resource can be deleted (`RemovalPolicy.DESTROY`), or left in your AWS // account for data recovery and cleanup later (`RemovalPolicy.RETAIN`). ApplyRemovalPolicy(policy awscdk.RemovalPolicy, options *awscdk.RemovalPolicyOptions) // Returns a token for an runtime attribute of this resource. // // Ideally, use generated attribute accessors (e.g. `resource.arn`), but this can be used for future compatibility // in case there is no generated attribute. GetAtt(attributeName *string) awscdk.Reference // Retrieve a value value from the CloudFormation Resource Metadata. // See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/metadata-section-structure.html // // Note that this is a different set of metadata from CDK node metadata; this // metadata ends up in the stack template under the resource, whereas CDK // node metadata ends up in the Cloud Assembly. // GetMetadata(key *string) interface{} // Examines the CloudFormation resource and discloses attributes. Inspect(inspector awscdk.TreeInspector) // Overrides the auto-generated logical ID with a specific ID. OverrideLogicalId(newLogicalId *string) RenderProperties(props *map[string]interface{}) *map[string]interface{} // Can be overridden by subclasses to determine if this resource will be rendered into the cloudformation template. // // Returns: `true` if the resource should be included or `false` is the resource // should be omitted. ShouldSynthesize() *bool // Returns a string representation of this construct. // // Returns: a string representation of this resource. ToString() *string ValidateProperties(_properties interface{}) }
A CloudFormation `AWS::Macie::CustomDataIdentifier`.
The `AWS::Macie::CustomDataIdentifier` resource is a set of criteria that you define to detect sensitive data in one or more data sources. Each identifier specifies a regular expression ( *regex* ) that defines a text pattern to match in the data. It can also specify character sequences, such as words and phrases, and a proximity rule that refine the analysis of a data source. By using custom data identifiers, you can tailor your analysis to meet your organization's specific needs and supplement the built-in, managed data identifiers that Amazon Macie provides.
A `Session` must exist for the account before you can create a `CustomDataIdentifier` . Use a [DependsOn attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-dependson.html) to ensure that the `Session` is created before the other resources. For example, `"DependsOn: Session"` .
Example:
// The code below shows an example of how to instantiate this type. // The values are placeholders you should change. import "github.com/aws/aws-cdk-go/awscdk" cfnCustomDataIdentifier := awscdk.Aws_macie.NewCfnCustomDataIdentifier(this, jsii.String("MyCfnCustomDataIdentifier"), &cfnCustomDataIdentifierProps{ name: jsii.String("name"), regex: jsii.String("regex"), // the properties below are optional description: jsii.String("description"), ignoreWords: []*string{ jsii.String("ignoreWords"), }, keywords: []*string{ jsii.String("keywords"), }, maximumMatchDistance: jsii.Number(123), })
func NewCfnCustomDataIdentifier ¶
func NewCfnCustomDataIdentifier(scope constructs.Construct, id *string, props *CfnCustomDataIdentifierProps) CfnCustomDataIdentifier
Create a new `AWS::Macie::CustomDataIdentifier`.
type CfnCustomDataIdentifierProps ¶
type CfnCustomDataIdentifierProps struct { // A custom name for the custom data identifier. The name can contain as many as 128 characters. // // We strongly recommend that you avoid including any sensitive data in the name of a custom data identifier. Other users of your account might be able to see the identifier's name, depending on the actions that they're allowed to perform in Amazon Macie . Name *string `field:"required" json:"name" yaml:"name"` // The regular expression ( *regex* ) that defines the pattern to match. // // The expression can contain as many as 512 characters. Regex *string `field:"required" json:"regex" yaml:"regex"` // The description of the custom data identifier. // // The description can contain as many as 512 characters. Description *string `field:"optional" json:"description" yaml:"description"` // An array that lists specific character sequences (ignore words) to exclude from the results. // // If the text matched by the regular expression is the same as any string in this array, Amazon Macie ignores it. The array can contain as many as 10 ignore words. Each ignore word can contain 4-90 characters. Ignore words are case sensitive. IgnoreWords *[]*string `field:"optional" json:"ignoreWords" yaml:"ignoreWords"` // An array that lists specific character sequences (keywords), one of which must be within proximity ( `MaximumMatchDistance` ) of the regular expression to match. // // The array can contain as many as 50 keywords. Each keyword can contain 3-90 characters. Keywords aren't case sensitive. Keywords *[]*string `field:"optional" json:"keywords" yaml:"keywords"` // The maximum number of characters that can exist between text that matches the regex pattern and the character sequences specified by the `Keywords` array. // // Amazon Macie includes or excludes a result based on the proximity of a keyword to text that matches the regex pattern. The distance can be 1-300 characters. The default value is 50. MaximumMatchDistance *float64 `field:"optional" json:"maximumMatchDistance" yaml:"maximumMatchDistance"` }
Properties for defining a `CfnCustomDataIdentifier`.
Example:
// The code below shows an example of how to instantiate this type. // The values are placeholders you should change. import "github.com/aws/aws-cdk-go/awscdk" cfnCustomDataIdentifierProps := &cfnCustomDataIdentifierProps{ name: jsii.String("name"), regex: jsii.String("regex"), // the properties below are optional description: jsii.String("description"), ignoreWords: []*string{ jsii.String("ignoreWords"), }, keywords: []*string{ jsii.String("keywords"), }, maximumMatchDistance: jsii.Number(123), }
type CfnFindingsFilter ¶
type CfnFindingsFilter interface { awscdk.CfnResource awscdk.IInspectable // The action to perform on findings that meet the filter criteria ( `FindingCriteria` ). Valid values are:. // // - ARCHIVE - Suppress (automatically archive) the findings. // - NOOP - Don't perform any action on the findings. Action() *string SetAction(val *string) // The Amazon Resource Name (ARN) of the filter. AttrArn() *string // An array of `FindingsFilterListItem` objects, one for each findings filter that's associated with the account. AttrFindingsFilterListItems() awscdk.IResolvable // The unique identifier for the filter. AttrId() *string // Options for this resource, such as condition, update policy etc. CfnOptions() awscdk.ICfnResourceOptions CfnProperties() *map[string]interface{} // AWS resource type. CfnResourceType() *string // Returns: the stack trace of the point where this Resource was created from, sourced // from the +metadata+ entry typed +aws:cdk:logicalId+, and with the bottom-most // node +internal+ entries filtered. CreationStack() *[]*string // A custom description of the filter. The description can contain as many as 512 characters. // // We strongly recommend that you avoid including any sensitive data in the description of a filter. Other users might be able to see the filter's description, depending on the actions that they're allowed to perform in Amazon Macie . Description() *string SetDescription(val *string) // The criteria to use to filter findings. FindingCriteria() interface{} SetFindingCriteria(val interface{}) // The logical ID for this CloudFormation stack element. // // The logical ID of the element // is calculated from the path of the resource node in the construct tree. // // To override this value, use `overrideLogicalId(newLogicalId)`. // // Returns: the logical ID as a stringified token. This value will only get // resolved during synthesis. LogicalId() *string // A custom name for the filter. // // The name must contain at least 3 characters and can contain as many as 64 characters. // // We strongly recommend that you avoid including any sensitive data in the name of a filter. Other users might be able to see the filter's name, depending on the actions that they're allowed to perform in Amazon Macie . Name() *string SetName(val *string) // The tree node. Node() constructs.Node // The position of the filter in the list of saved filters on the Amazon Macie console. // // This value also determines the order in which the filter is applied to findings, relative to other filters that are also applied to the findings. Position() *float64 SetPosition(val *float64) // Return a string that will be resolved to a CloudFormation `{ Ref }` for this element. // // If, by any chance, the intrinsic reference of a resource is not a string, you could // coerce it to an IResolvable through `Lazy.any({ produce: resource.ref })`. Ref() *string // The stack in which this element is defined. // // CfnElements must be defined within a stack scope (directly or indirectly). Stack() awscdk.Stack // Return properties modified after initiation. // // Resources that expose mutable properties should override this function to // collect and return the properties object for this resource. UpdatedProperites() *map[string]interface{} // Syntactic sugar for `addOverride(path, undefined)`. AddDeletionOverride(path *string) // Indicates that this resource depends on another resource and cannot be provisioned unless the other resource has been successfully provisioned. // // This can be used for resources across stacks (or nested stack) boundaries // and the dependency will automatically be transferred to the relevant scope. AddDependsOn(target awscdk.CfnResource) // Add a value to the CloudFormation Resource Metadata. // See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/metadata-section-structure.html // // Note that this is a different set of metadata from CDK node metadata; this // metadata ends up in the stack template under the resource, whereas CDK // node metadata ends up in the Cloud Assembly. // AddMetadata(key *string, value interface{}) // Adds an override to the synthesized CloudFormation resource. // // To add a // property override, either use `addPropertyOverride` or prefix `path` with // "Properties." (i.e. `Properties.TopicName`). // // If the override is nested, separate each nested level using a dot (.) in the path parameter. // If there is an array as part of the nesting, specify the index in the path. // // To include a literal `.` in the property name, prefix with a `\`. In most // programming languages you will need to write this as `"\\."` because the // `\` itself will need to be escaped. // // For example, // “`typescript // cfnResource.addOverride('Properties.GlobalSecondaryIndexes.0.Projection.NonKeyAttributes', ['myattribute']); // cfnResource.addOverride('Properties.GlobalSecondaryIndexes.1.ProjectionType', 'INCLUDE'); // “` // would add the overrides // “`json // "Properties": { // "GlobalSecondaryIndexes": [ // { // "Projection": { // "NonKeyAttributes": [ "myattribute" ] // ... // } // ... // }, // { // "ProjectionType": "INCLUDE" // ... // }, // ] // ... // } // “` // // The `value` argument to `addOverride` will not be processed or translated // in any way. Pass raw JSON values in here with the correct capitalization // for CloudFormation. If you pass CDK classes or structs, they will be // rendered with lowercased key names, and CloudFormation will reject the // template. AddOverride(path *string, value interface{}) // Adds an override that deletes the value of a property from the resource definition. AddPropertyDeletionOverride(propertyPath *string) // Adds an override to a resource property. // // Syntactic sugar for `addOverride("Properties.<...>", value)`. AddPropertyOverride(propertyPath *string, value interface{}) // Sets the deletion policy of the resource based on the removal policy specified. // // The Removal Policy controls what happens to this resource when it stops // being managed by CloudFormation, either because you've removed it from the // CDK application or because you've made a change that requires the resource // to be replaced. // // The resource can be deleted (`RemovalPolicy.DESTROY`), or left in your AWS // account for data recovery and cleanup later (`RemovalPolicy.RETAIN`). ApplyRemovalPolicy(policy awscdk.RemovalPolicy, options *awscdk.RemovalPolicyOptions) // Returns a token for an runtime attribute of this resource. // // Ideally, use generated attribute accessors (e.g. `resource.arn`), but this can be used for future compatibility // in case there is no generated attribute. GetAtt(attributeName *string) awscdk.Reference // Retrieve a value value from the CloudFormation Resource Metadata. // See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/metadata-section-structure.html // // Note that this is a different set of metadata from CDK node metadata; this // metadata ends up in the stack template under the resource, whereas CDK // node metadata ends up in the Cloud Assembly. // GetMetadata(key *string) interface{} // Examines the CloudFormation resource and discloses attributes. Inspect(inspector awscdk.TreeInspector) // Overrides the auto-generated logical ID with a specific ID. OverrideLogicalId(newLogicalId *string) RenderProperties(props *map[string]interface{}) *map[string]interface{} // Can be overridden by subclasses to determine if this resource will be rendered into the cloudformation template. // // Returns: `true` if the resource should be included or `false` is the resource // should be omitted. ShouldSynthesize() *bool // Returns a string representation of this construct. // // Returns: a string representation of this resource. ToString() *string ValidateProperties(_properties interface{}) }
A CloudFormation `AWS::Macie::FindingsFilter`.
The `AWS::Macie::FindingsFilter` resource represents an individual findings filter that you create and save to view, analyze, and manage findings. A *findings filter* is a set of criteria that specifies which findings to include in the results of a query for findings. A findings filter can also perform specific actions on findings that meet the filter's criteria.
A `Session` must exist for the account before you can create a `FindingsFilter` . Use a [DependsOn attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-dependson.html) to ensure that the `Session` is created before the other resources. For example, `"DependsOn: Session"` .
Example:
// The code below shows an example of how to instantiate this type. // The values are placeholders you should change. import "github.com/aws/aws-cdk-go/awscdk" var criterion interface{} cfnFindingsFilter := awscdk.Aws_macie.NewCfnFindingsFilter(this, jsii.String("MyCfnFindingsFilter"), &cfnFindingsFilterProps{ findingCriteria: &findingCriteriaProperty{ criterion: criterion, }, name: jsii.String("name"), // the properties below are optional action: jsii.String("action"), description: jsii.String("description"), position: jsii.Number(123), })
func NewCfnFindingsFilter ¶
func NewCfnFindingsFilter(scope constructs.Construct, id *string, props *CfnFindingsFilterProps) CfnFindingsFilter
Create a new `AWS::Macie::FindingsFilter`.
type CfnFindingsFilterProps ¶
type CfnFindingsFilterProps struct { // The criteria to use to filter findings. FindingCriteria interface{} `field:"required" json:"findingCriteria" yaml:"findingCriteria"` // A custom name for the filter. // // The name must contain at least 3 characters and can contain as many as 64 characters. // // We strongly recommend that you avoid including any sensitive data in the name of a filter. Other users might be able to see the filter's name, depending on the actions that they're allowed to perform in Amazon Macie . Name *string `field:"required" json:"name" yaml:"name"` // The action to perform on findings that meet the filter criteria ( `FindingCriteria` ). Valid values are:. // // - ARCHIVE - Suppress (automatically archive) the findings. // - NOOP - Don't perform any action on the findings. Action *string `field:"optional" json:"action" yaml:"action"` // A custom description of the filter. The description can contain as many as 512 characters. // // We strongly recommend that you avoid including any sensitive data in the description of a filter. Other users might be able to see the filter's description, depending on the actions that they're allowed to perform in Amazon Macie . Description *string `field:"optional" json:"description" yaml:"description"` // The position of the filter in the list of saved filters on the Amazon Macie console. // // This value also determines the order in which the filter is applied to findings, relative to other filters that are also applied to the findings. Position *float64 `field:"optional" json:"position" yaml:"position"` }
Properties for defining a `CfnFindingsFilter`.
Example:
// The code below shows an example of how to instantiate this type. // The values are placeholders you should change. import "github.com/aws/aws-cdk-go/awscdk" var criterion interface{} cfnFindingsFilterProps := &cfnFindingsFilterProps{ findingCriteria: &findingCriteriaProperty{ criterion: criterion, }, name: jsii.String("name"), // the properties below are optional action: jsii.String("action"), description: jsii.String("description"), position: jsii.Number(123), }
type CfnFindingsFilter_FindingCriteriaProperty ¶
type CfnFindingsFilter_FindingCriteriaProperty struct {
// Specifies a condition that defines the property, operator, and value to use to filter the results.
Criterion interface{} `field:"optional" json:"criterion" yaml:"criterion"`
}
Specifies, as a map, one or more property-based conditions that filter the results of a query for findings.
Example:
// The code below shows an example of how to instantiate this type. // The values are placeholders you should change. import "github.com/aws/aws-cdk-go/awscdk" var criterion interface{} findingCriteriaProperty := &findingCriteriaProperty{ criterion: criterion, }
type CfnFindingsFilter_FindingsFilterListItemProperty ¶
type CfnFindingsFilter_FindingsFilterListItemProperty struct { // The unique identifier for the filter. Id *string `field:"optional" json:"id" yaml:"id"` // The custom name of the filter. Name *string `field:"optional" json:"name" yaml:"name"` }
Specifies the unique identifier and custom name of a findings filter.
Example:
// The code below shows an example of how to instantiate this type. // The values are placeholders you should change. import "github.com/aws/aws-cdk-go/awscdk" findingsFilterListItemProperty := &findingsFilterListItemProperty{ id: jsii.String("id"), name: jsii.String("name"), }
type CfnSession ¶
type CfnSession interface { awscdk.CfnResource awscdk.IInspectable // The account ID for the AWS account in which the `Session` is created. AttrAwsAccountId() *string // The Amazon Resource Name (ARN) of the service-linked role that allows Amazon Macie to monitor and analyze data in AWS resources for the account. AttrServiceRole() *string // Options for this resource, such as condition, update policy etc. CfnOptions() awscdk.ICfnResourceOptions CfnProperties() *map[string]interface{} // AWS resource type. CfnResourceType() *string // Returns: the stack trace of the point where this Resource was created from, sourced // from the +metadata+ entry typed +aws:cdk:logicalId+, and with the bottom-most // node +internal+ entries filtered. CreationStack() *[]*string // The frequency with which Amazon Macie publishes updates to policy findings for an account. // // This includes publishing updates to AWS Security Hub and Amazon EventBridge (formerly called Amazon CloudWatch Events ). Valid values are: // // - FIFTEEN_MINUTES // - ONE_HOUR // - SIX_HOURS. FindingPublishingFrequency() *string SetFindingPublishingFrequency(val *string) // The logical ID for this CloudFormation stack element. // // The logical ID of the element // is calculated from the path of the resource node in the construct tree. // // To override this value, use `overrideLogicalId(newLogicalId)`. // // Returns: the logical ID as a stringified token. This value will only get // resolved during synthesis. LogicalId() *string // The tree node. Node() constructs.Node // Return a string that will be resolved to a CloudFormation `{ Ref }` for this element. // // If, by any chance, the intrinsic reference of a resource is not a string, you could // coerce it to an IResolvable through `Lazy.any({ produce: resource.ref })`. Ref() *string // The stack in which this element is defined. // // CfnElements must be defined within a stack scope (directly or indirectly). Stack() awscdk.Stack // The `MacieStatus` of the `Session` . // // Valid values include `ENABLED` and `PAUSED` . Status() *string SetStatus(val *string) // Return properties modified after initiation. // // Resources that expose mutable properties should override this function to // collect and return the properties object for this resource. UpdatedProperites() *map[string]interface{} // Syntactic sugar for `addOverride(path, undefined)`. AddDeletionOverride(path *string) // Indicates that this resource depends on another resource and cannot be provisioned unless the other resource has been successfully provisioned. // // This can be used for resources across stacks (or nested stack) boundaries // and the dependency will automatically be transferred to the relevant scope. AddDependsOn(target awscdk.CfnResource) // Add a value to the CloudFormation Resource Metadata. // See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/metadata-section-structure.html // // Note that this is a different set of metadata from CDK node metadata; this // metadata ends up in the stack template under the resource, whereas CDK // node metadata ends up in the Cloud Assembly. // AddMetadata(key *string, value interface{}) // Adds an override to the synthesized CloudFormation resource. // // To add a // property override, either use `addPropertyOverride` or prefix `path` with // "Properties." (i.e. `Properties.TopicName`). // // If the override is nested, separate each nested level using a dot (.) in the path parameter. // If there is an array as part of the nesting, specify the index in the path. // // To include a literal `.` in the property name, prefix with a `\`. In most // programming languages you will need to write this as `"\\."` because the // `\` itself will need to be escaped. // // For example, // “`typescript // cfnResource.addOverride('Properties.GlobalSecondaryIndexes.0.Projection.NonKeyAttributes', ['myattribute']); // cfnResource.addOverride('Properties.GlobalSecondaryIndexes.1.ProjectionType', 'INCLUDE'); // “` // would add the overrides // “`json // "Properties": { // "GlobalSecondaryIndexes": [ // { // "Projection": { // "NonKeyAttributes": [ "myattribute" ] // ... // } // ... // }, // { // "ProjectionType": "INCLUDE" // ... // }, // ] // ... // } // “` // // The `value` argument to `addOverride` will not be processed or translated // in any way. Pass raw JSON values in here with the correct capitalization // for CloudFormation. If you pass CDK classes or structs, they will be // rendered with lowercased key names, and CloudFormation will reject the // template. AddOverride(path *string, value interface{}) // Adds an override that deletes the value of a property from the resource definition. AddPropertyDeletionOverride(propertyPath *string) // Adds an override to a resource property. // // Syntactic sugar for `addOverride("Properties.<...>", value)`. AddPropertyOverride(propertyPath *string, value interface{}) // Sets the deletion policy of the resource based on the removal policy specified. // // The Removal Policy controls what happens to this resource when it stops // being managed by CloudFormation, either because you've removed it from the // CDK application or because you've made a change that requires the resource // to be replaced. // // The resource can be deleted (`RemovalPolicy.DESTROY`), or left in your AWS // account for data recovery and cleanup later (`RemovalPolicy.RETAIN`). ApplyRemovalPolicy(policy awscdk.RemovalPolicy, options *awscdk.RemovalPolicyOptions) // Returns a token for an runtime attribute of this resource. // // Ideally, use generated attribute accessors (e.g. `resource.arn`), but this can be used for future compatibility // in case there is no generated attribute. GetAtt(attributeName *string) awscdk.Reference // Retrieve a value value from the CloudFormation Resource Metadata. // See: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/metadata-section-structure.html // // Note that this is a different set of metadata from CDK node metadata; this // metadata ends up in the stack template under the resource, whereas CDK // node metadata ends up in the Cloud Assembly. // GetMetadata(key *string) interface{} // Examines the CloudFormation resource and discloses attributes. Inspect(inspector awscdk.TreeInspector) // Overrides the auto-generated logical ID with a specific ID. OverrideLogicalId(newLogicalId *string) RenderProperties(props *map[string]interface{}) *map[string]interface{} // Can be overridden by subclasses to determine if this resource will be rendered into the cloudformation template. // // Returns: `true` if the resource should be included or `false` is the resource // should be omitted. ShouldSynthesize() *bool // Returns a string representation of this construct. // // Returns: a string representation of this resource. ToString() *string ValidateProperties(_properties interface{}) }
A CloudFormation `AWS::Macie::Session`.
The `AWS::Macie::Session` resource represents the Amazon Macie service and configuration settings for an account. A `Session` is created for each AWS Region in which you enable Macie .
You must create a `Session` for an account before you can create an `AWS::Macie::FindingsFilter` or `AWS::Macie::CustomDataIdentifier` resource. Use a [DependsOn attribute](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-attribute-dependson.html) to ensure that the `Session` is created before the other resources. For example, `"DependsOn: Session"` .
Example:
// The code below shows an example of how to instantiate this type. // The values are placeholders you should change. import "github.com/aws/aws-cdk-go/awscdk" cfnSession := awscdk.Aws_macie.NewCfnSession(this, jsii.String("MyCfnSession"), &cfnSessionProps{ findingPublishingFrequency: jsii.String("findingPublishingFrequency"), status: jsii.String("status"), })
func NewCfnSession ¶
func NewCfnSession(scope constructs.Construct, id *string, props *CfnSessionProps) CfnSession
Create a new `AWS::Macie::Session`.
type CfnSessionProps ¶
type CfnSessionProps struct { // The frequency with which Amazon Macie publishes updates to policy findings for an account. // // This includes publishing updates to AWS Security Hub and Amazon EventBridge (formerly called Amazon CloudWatch Events ). Valid values are: // // - FIFTEEN_MINUTES // - ONE_HOUR // - SIX_HOURS. FindingPublishingFrequency *string `field:"optional" json:"findingPublishingFrequency" yaml:"findingPublishingFrequency"` // The `MacieStatus` of the `Session` . // // Valid values include `ENABLED` and `PAUSED` . Status *string `field:"optional" json:"status" yaml:"status"` }
Properties for defining a `CfnSession`.
Example:
// The code below shows an example of how to instantiate this type. // The values are placeholders you should change. import "github.com/aws/aws-cdk-go/awscdk" cfnSessionProps := &cfnSessionProps{ findingPublishingFrequency: jsii.String("findingPublishingFrequency"), status: jsii.String("status"), }