Documentation
¶
Index ¶
- type AccessDeniedException
- type AccessType
- type AwsIdentity
- type AwsLogSourceConfiguration
- type AwsLogSourceName
- type AwsLogSourceResource
- type BadRequestException
- type ConflictException
- type CustomLogSourceAttributes
- type CustomLogSourceConfiguration
- type CustomLogSourceCrawlerConfiguration
- type CustomLogSourceProvider
- type CustomLogSourceResource
- type DataLakeAutoEnableNewAccountConfiguration
- type DataLakeConfiguration
- type DataLakeEncryptionConfiguration
- type DataLakeException
- type DataLakeLifecycleConfiguration
- type DataLakeLifecycleExpiration
- type DataLakeLifecycleTransition
- type DataLakeReplicationConfiguration
- type DataLakeResource
- type DataLakeSource
- type DataLakeSourceStatus
- type DataLakeStatus
- type DataLakeUpdateException
- type DataLakeUpdateStatus
- type HttpMethod
- type HttpsNotificationConfiguration
- type InternalServerException
- type LogSource
- type LogSourceResource
- type LogSourceResourceMemberAwsLogSource
- type LogSourceResourceMemberCustomLogSource
- type NotificationConfiguration
- type NotificationConfigurationMemberHttpsNotificationConfiguration
- type NotificationConfigurationMemberSqsNotificationConfiguration
- type ResourceNotFoundException
- type SourceCollectionStatus
- type SqsNotificationConfiguration
- type SubscriberResource
- type SubscriberStatus
- type Tag
- type ThrottlingException
- type UnknownUnionMember
Examples ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type AccessDeniedException ¶
type AccessDeniedException struct {
Message *string
ErrorCodeOverride *string
ErrorCode_ *string
// contains filtered or unexported fields
}
You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.
func (*AccessDeniedException) Error ¶
func (e *AccessDeniedException) Error() string
func (*AccessDeniedException) ErrorCode ¶
func (e *AccessDeniedException) ErrorCode() string
func (*AccessDeniedException) ErrorFault ¶
func (e *AccessDeniedException) ErrorFault() smithy.ErrorFault
func (*AccessDeniedException) ErrorMessage ¶
func (e *AccessDeniedException) ErrorMessage() string
type AccessType ¶
type AccessType string
const ( AccessTypeLakeformation AccessType = "LAKEFORMATION" AccessTypeS3 AccessType = "S3" )
Enum values for AccessType
func (AccessType) Values ¶
func (AccessType) Values() []AccessType
Values returns all known values for AccessType. Note that this can be expanded in the future, and so it is only as up to date as the client.
The ordering of this slice is not guaranteed to be stable across updates.
type AwsIdentity ¶ added in v1.4.0
type AwsIdentity struct {
// The external ID used to establish trust relationship with the Amazon Web
// Services identity.
//
// This member is required.
ExternalId *string
// The Amazon Web Services identity principal.
//
// This member is required.
Principal *string
// contains filtered or unexported fields
}
The Amazon Web Services identity.
type AwsLogSourceConfiguration ¶ added in v1.4.0
type AwsLogSourceConfiguration struct {
// Specify the Regions where you want to enable Security Lake.
//
// This member is required.
Regions []string
// The name for a Amazon Web Services source.
//
// This member is required.
SourceName AwsLogSourceName
// Specify the Amazon Web Services account information where you want to enable
// Security Lake.
Accounts []string
// The version for a Amazon Web Services source.
SourceVersion *string
// contains filtered or unexported fields
}
To add a natively-supported Amazon Web Services service as a log source, use these parameters to specify the configuration settings for the log source.
type AwsLogSourceName ¶ added in v1.4.0
type AwsLogSourceName string
const ( AwsLogSourceNameRoute53 AwsLogSourceName = "ROUTE53" AwsLogSourceNameVpcFlow AwsLogSourceName = "VPC_FLOW" AwsLogSourceNameShFindings AwsLogSourceName = "SH_FINDINGS" AwsLogSourceNameCloudTrailMgmt AwsLogSourceName = "CLOUD_TRAIL_MGMT" AwsLogSourceNameLambdaExecution AwsLogSourceName = "LAMBDA_EXECUTION" AwsLogSourceNameS3Data AwsLogSourceName = "S3_DATA" AwsLogSourceNameEksAudit AwsLogSourceName = "EKS_AUDIT" AwsLogSourceNameWaf AwsLogSourceName = "WAF" )
Enum values for AwsLogSourceName
func (AwsLogSourceName) Values ¶ added in v1.4.0
func (AwsLogSourceName) Values() []AwsLogSourceName
Values returns all known values for AwsLogSourceName. Note that this can be expanded in the future, and so it is only as up to date as the client.
The ordering of this slice is not guaranteed to be stable across updates.
type AwsLogSourceResource ¶ added in v1.4.0
type AwsLogSourceResource struct {
// The name for a Amazon Web Services source. This must be a Regionally unique
// value.
SourceName AwsLogSourceName
// The version for a Amazon Web Services source. This must be a Regionally unique
// value.
SourceVersion *string
// contains filtered or unexported fields
}
Amazon Security Lake can collect logs and events from natively-supported Amazon Web Services services.
type BadRequestException ¶ added in v1.4.0
type BadRequestException struct {
Message *string
ErrorCodeOverride *string
// contains filtered or unexported fields
}
The request is malformed or contains an error such as an invalid parameter value or a missing required parameter.
func (*BadRequestException) Error ¶ added in v1.4.0
func (e *BadRequestException) Error() string
func (*BadRequestException) ErrorCode ¶ added in v1.4.0
func (e *BadRequestException) ErrorCode() string
func (*BadRequestException) ErrorFault ¶ added in v1.4.0
func (e *BadRequestException) ErrorFault() smithy.ErrorFault
func (*BadRequestException) ErrorMessage ¶ added in v1.4.0
func (e *BadRequestException) ErrorMessage() string
type ConflictException ¶
type ConflictException struct {
Message *string
ErrorCodeOverride *string
ResourceName *string
ResourceType *string
// contains filtered or unexported fields
}
Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.
func (*ConflictException) Error ¶
func (e *ConflictException) Error() string
func (*ConflictException) ErrorCode ¶
func (e *ConflictException) ErrorCode() string
func (*ConflictException) ErrorFault ¶
func (e *ConflictException) ErrorFault() smithy.ErrorFault
func (*ConflictException) ErrorMessage ¶
func (e *ConflictException) ErrorMessage() string
type CustomLogSourceAttributes ¶ added in v1.4.0
type CustomLogSourceAttributes struct {
// The ARN of the Glue crawler.
CrawlerArn *string
// The ARN of the Glue database where results are written, such as:
// arn:aws:daylight:us-east-1::database/sometable/* .
DatabaseArn *string
// The ARN of the Glue table.
TableArn *string
// contains filtered or unexported fields
}
The attributes of a third-party custom source.
type CustomLogSourceConfiguration ¶ added in v1.4.0
type CustomLogSourceConfiguration struct {
// The configuration used for the Glue Crawler for a third-party custom source.
//
// This member is required.
CrawlerConfiguration *CustomLogSourceCrawlerConfiguration
// The identity of the log provider for the third-party custom source.
//
// This member is required.
ProviderIdentity *AwsIdentity
// contains filtered or unexported fields
}
The configuration used for the third-party custom source.
type CustomLogSourceCrawlerConfiguration ¶ added in v1.4.0
type CustomLogSourceCrawlerConfiguration struct {
// The Amazon Resource Name (ARN) of the Identity and Access Management (IAM) role
// to be used by the Glue crawler. The recommended IAM policies are:
//
// - The managed policy AWSGlueServiceRole
//
// - A custom policy granting access to your Amazon S3 Data Lake
//
// This member is required.
RoleArn *string
// contains filtered or unexported fields
}
The configuration used for the Glue Crawler for a third-party custom source.
type CustomLogSourceProvider ¶ added in v1.4.0
type CustomLogSourceProvider struct {
// The location of the partition in the Amazon S3 bucket for Security Lake.
Location *string
// The ARN of the IAM role to be used by the entity putting logs into your custom
// source partition. Security Lake will apply the correct access policies to this
// role, but you must first manually create the trust policy for this role. The IAM
// role name must start with the text 'Security Lake'. The IAM role must trust the
// logProviderAccountId to assume the role.
RoleArn *string
// contains filtered or unexported fields
}
The details of the log provider for a third-party custom source.
type CustomLogSourceResource ¶ added in v1.4.0
type CustomLogSourceResource struct {
// The attributes of a third-party custom source.
Attributes *CustomLogSourceAttributes
// The details of the log provider for a third-party custom source.
Provider *CustomLogSourceProvider
// The name for a third-party custom source. This must be a Regionally unique
// value.
SourceName *string
// The version for a third-party custom source. This must be a Regionally unique
// value.
SourceVersion *string
// contains filtered or unexported fields
}
Amazon Security Lake can collect logs and events from third-party custom sources.
type DataLakeAutoEnableNewAccountConfiguration ¶ added in v1.4.0
type DataLakeAutoEnableNewAccountConfiguration struct {
// The Amazon Web Services Regions where Security Lake is automatically enabled.
//
// This member is required.
Region *string
// The Amazon Web Services sources that are automatically enabled in Security Lake.
//
// This member is required.
Sources []AwsLogSourceResource
// contains filtered or unexported fields
}
Automatically enable new organization accounts as member accounts from an Amazon Security Lake administrator account.
type DataLakeConfiguration ¶ added in v1.4.0
type DataLakeConfiguration struct {
// The Amazon Web Services Regions where Security Lake is automatically enabled.
//
// This member is required.
Region *string
// Provides encryption details of Amazon Security Lake object.
EncryptionConfiguration *DataLakeEncryptionConfiguration
// Provides lifecycle details of Amazon Security Lake object.
LifecycleConfiguration *DataLakeLifecycleConfiguration
// Provides replication details of Amazon Security Lake object.
ReplicationConfiguration *DataLakeReplicationConfiguration
// contains filtered or unexported fields
}
Provides details of Amazon Security Lake object.
type DataLakeEncryptionConfiguration ¶ added in v1.4.0
type DataLakeEncryptionConfiguration struct {
// The identifier of KMS encryption key used by Amazon Security Lake to encrypt
// the Security Lake object.
KmsKeyId *string
// contains filtered or unexported fields
}
Provides encryption details of Amazon Security Lake object.
type DataLakeException ¶ added in v1.4.0
type DataLakeException struct {
// The underlying exception of a Security Lake exception.
Exception *string
// The Amazon Web Services Regions where the exception occurred.
Region *string
// List of all remediation steps for a Security Lake exception.
Remediation *string
// This error can occur if you configure the wrong timestamp format, or if the
// subset of entries used for validation had errors or missing values.
Timestamp *time.Time
// contains filtered or unexported fields
}
The details for an Amazon Security Lake exception.
type DataLakeLifecycleConfiguration ¶ added in v1.4.0
type DataLakeLifecycleConfiguration struct {
// Provides data expiration details of Amazon Security Lake object.
Expiration *DataLakeLifecycleExpiration
// Provides data storage transition details of Amazon Security Lake object.
Transitions []DataLakeLifecycleTransition
// contains filtered or unexported fields
}
Provides lifecycle details of Amazon Security Lake object.
type DataLakeLifecycleExpiration ¶ added in v1.4.0
type DataLakeLifecycleExpiration struct {
// Number of days before data expires in the Amazon Security Lake object.
Days *int32
// contains filtered or unexported fields
}
Provide expiration lifecycle details of Amazon Security Lake object.
type DataLakeLifecycleTransition ¶ added in v1.4.0
type DataLakeLifecycleTransition struct {
// Number of days before data transitions to a different S3 Storage Class in the
// Amazon Security Lake object.
Days *int32
// The range of storage classes that you can choose from based on the data access,
// resiliency, and cost requirements of your workloads.
StorageClass *string
// contains filtered or unexported fields
}
Provide transition lifecycle details of Amazon Security Lake object.
type DataLakeReplicationConfiguration ¶ added in v1.4.0
type DataLakeReplicationConfiguration struct {
// Specifies one or more centralized rollup Regions. The Amazon Web Services
// Region specified in the region parameter of the [CreateDataLake]CreateDataLake or [UpdateDataLake]UpdateDataLake
// operations contributes data to the rollup Region or Regions specified in this
// parameter.
//
// Replication enables automatic, asynchronous copying of objects across Amazon S3
// buckets. S3 buckets that are configured for object replication can be owned by
// the same Amazon Web Services account or by different accounts. You can replicate
// objects to a single destination bucket or to multiple destination buckets. The
// destination buckets can be in different Regions or within the same Region as the
// source bucket.
//
// [UpdateDataLake]: https://docs.aws.amazon.com/security-lake/latest/APIReference/API_UpdateDataLake.html
// [CreateDataLake]: https://docs.aws.amazon.com/security-lake/latest/APIReference/API_CreateDataLake.html
Regions []string
// Replication settings for the Amazon S3 buckets. This parameter uses the
// Identity and Access Management (IAM) role you created that is managed by
// Security Lake, to ensure the replication setting is correct.
RoleArn *string
// contains filtered or unexported fields
}
Provides replication details for objects stored in the Amazon Security Lake data lake.
type DataLakeResource ¶ added in v1.4.0
type DataLakeResource struct {
// The Amazon Resource Name (ARN) created by you to provide to the subscriber. For
// more information about ARNs and how to use them in policies, see the [Amazon Security Lake User Guide].
//
// [Amazon Security Lake User Guide]: https://docs.aws.amazon.com/security-lake/latest/userguide/subscriber-management.html
//
// This member is required.
DataLakeArn *string
// The Amazon Web Services Regions where Security Lake is enabled.
//
// This member is required.
Region *string
// Retrieves the status of the CreateDatalake API call for an account in Amazon
// Security Lake.
CreateStatus DataLakeStatus
// Provides encryption details of Amazon Security Lake object.
EncryptionConfiguration *DataLakeEncryptionConfiguration
// Provides lifecycle details of Amazon Security Lake object.
LifecycleConfiguration *DataLakeLifecycleConfiguration
// Provides replication details of Amazon Security Lake object.
ReplicationConfiguration *DataLakeReplicationConfiguration
// The ARN for the Amazon Security Lake Amazon S3 bucket.
S3BucketArn *string
// The status of the last UpdateDataLake or DeleteDataLake API request.
UpdateStatus *DataLakeUpdateStatus
// contains filtered or unexported fields
}
Provides details of Amazon Security Lake object.
type DataLakeSource ¶ added in v1.4.0
type DataLakeSource struct {
// The ID of the Security Lake account for which logs are collected.
Account *string
// The Open Cybersecurity Schema Framework (OCSF) event classes which describes
// the type of data that the custom source will send to Security Lake. The
// supported event classes are:
//
// - ACCESS_ACTIVITY
//
// - FILE_ACTIVITY
//
// - KERNEL_ACTIVITY
//
// - KERNEL_EXTENSION
//
// - MEMORY_ACTIVITY
//
// - MODULE_ACTIVITY
//
// - PROCESS_ACTIVITY
//
// - REGISTRY_KEY_ACTIVITY
//
// - REGISTRY_VALUE_ACTIVITY
//
// - RESOURCE_ACTIVITY
//
// - SCHEDULED_JOB_ACTIVITY
//
// - SECURITY_FINDING
//
// - ACCOUNT_CHANGE
//
// - AUTHENTICATION
//
// - AUTHORIZATION
//
// - ENTITY_MANAGEMENT_AUDIT
//
// - DHCP_ACTIVITY
//
// - NETWORK_ACTIVITY
//
// - DNS_ACTIVITY
//
// - FTP_ACTIVITY
//
// - HTTP_ACTIVITY
//
// - RDP_ACTIVITY
//
// - SMB_ACTIVITY
//
// - SSH_ACTIVITY
//
// - CONFIG_STATE
//
// - INVENTORY_INFO
//
// - EMAIL_ACTIVITY
//
// - API_ACTIVITY
//
// - CLOUD_API
EventClasses []string
// The supported Amazon Web Services services from which logs and events are
// collected. Amazon Security Lake supports log and event collection for natively
// supported Amazon Web Services services.
SourceName *string
// The log status for the Security Lake account.
SourceStatuses []DataLakeSourceStatus
// contains filtered or unexported fields
}
Amazon Security Lake collects logs and events from supported Amazon Web Services services and custom sources. For the list of supported Amazon Web Services services, see the Amazon Security Lake User Guide.
type DataLakeSourceStatus ¶ added in v1.4.0
type DataLakeSourceStatus struct {
// Defines path the stored logs are available which has information on your
// systems, applications, and services.
Resource *string
// The health status of services, including error codes and patterns.
Status SourceCollectionStatus
// contains filtered or unexported fields
}
Retrieves the Logs status for the Amazon Security Lake account.
type DataLakeStatus ¶ added in v1.4.0
type DataLakeStatus string
const ( DataLakeStatusInitialized DataLakeStatus = "INITIALIZED" DataLakeStatusPending DataLakeStatus = "PENDING" DataLakeStatusCompleted DataLakeStatus = "COMPLETED" DataLakeStatusFailed DataLakeStatus = "FAILED" )
Enum values for DataLakeStatus
func (DataLakeStatus) Values ¶ added in v1.4.0
func (DataLakeStatus) Values() []DataLakeStatus
Values returns all known values for DataLakeStatus. Note that this can be expanded in the future, and so it is only as up to date as the client.
The ordering of this slice is not guaranteed to be stable across updates.
type DataLakeUpdateException ¶ added in v1.4.0
type DataLakeUpdateException struct {
// The reason code for the exception of the last UpdateDataLake or DeleteDataLake
// API request.
Code *string
// The reason for the exception of the last UpdateDataLake or DeleteDataLake API
// request.
Reason *string
// contains filtered or unexported fields
}
The details of the last UpdateDataLake or DeleteDataLake API request which failed.
type DataLakeUpdateStatus ¶ added in v1.4.0
type DataLakeUpdateStatus struct {
// The details of the last UpdateDataLake or DeleteDataLake API request which
// failed.
Exception *DataLakeUpdateException
// The unique ID for the last UpdateDataLake or DeleteDataLake API request.
RequestId *string
// The status of the last UpdateDataLake or DeleteDataLake API request that was
// requested.
Status DataLakeStatus
// contains filtered or unexported fields
}
The status of the last UpdateDataLake or DeleteDataLake API request. This is set to Completed after the configuration is updated, or removed if deletion of the data lake is successful.
type HttpMethod ¶ added in v1.4.0
type HttpMethod string
const ( HttpMethodPost HttpMethod = "POST" HttpMethodPut HttpMethod = "PUT" )
Enum values for HttpMethod
func (HttpMethod) Values ¶ added in v1.4.0
func (HttpMethod) Values() []HttpMethod
Values returns all known values for HttpMethod. Note that this can be expanded in the future, and so it is only as up to date as the client.
The ordering of this slice is not guaranteed to be stable across updates.
type HttpsNotificationConfiguration ¶ added in v1.4.0
type HttpsNotificationConfiguration struct {
// The subscription endpoint in Security Lake. If you prefer notification with an
// HTTPs endpoint, populate this field.
//
// This member is required.
Endpoint *string
// The Amazon Resource Name (ARN) of the EventBridge API destinations IAM role
// that you created. For more information about ARNs and how to use them in
// policies, see [Managing data access]and [Amazon Web Services Managed Policies] in the Amazon Security Lake User Guide.
//
// [Managing data access]: https://docs.aws.amazon.com//security-lake/latest/userguide/subscriber-data-access.html
// [Amazon Web Services Managed Policies]: https://docs.aws.amazon.com/security-lake/latest/userguide/security-iam-awsmanpol.html
//
// This member is required.
TargetRoleArn *string
// The key name for the notification subscription.
AuthorizationApiKeyName *string
// The key value for the notification subscription.
AuthorizationApiKeyValue *string
// The HTTPS method used for the notification subscription.
HttpMethod HttpMethod
// contains filtered or unexported fields
}
The configurations used for HTTPS subscriber notification.
type InternalServerException ¶
type InternalServerException struct {
Message *string
ErrorCodeOverride *string
// contains filtered or unexported fields
}
Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.
func (*InternalServerException) Error ¶
func (e *InternalServerException) Error() string
func (*InternalServerException) ErrorCode ¶
func (e *InternalServerException) ErrorCode() string
func (*InternalServerException) ErrorFault ¶
func (e *InternalServerException) ErrorFault() smithy.ErrorFault
func (*InternalServerException) ErrorMessage ¶
func (e *InternalServerException) ErrorMessage() string
type LogSource ¶ added in v1.4.0
type LogSource struct {
// Specify the account from which you want to collect logs.
Account *string
// Specify the Regions from which you want to collect logs.
Region *string
// Specify the sources from which you want to collect logs.
Sources []LogSourceResource
// contains filtered or unexported fields
}
Amazon Security Lake can collect logs and events from natively-supported Amazon Web Services services and custom sources.
type LogSourceResource ¶ added in v1.4.0
type LogSourceResource interface {
// contains filtered or unexported methods
}
The supported source types from which logs and events are collected in Amazon Security Lake. For a list of supported Amazon Web Services services, see the Amazon Security Lake User Guide.
The following types satisfy this interface:
LogSourceResourceMemberAwsLogSource LogSourceResourceMemberCustomLogSource
Example (OutputUsage) ¶
package main
import (
"fmt"
"github.com/aws/aws-sdk-go-v2/service/securitylake/types"
)
func main() {
var union types.LogSourceResource
// type switches can be used to check the union value
switch v := union.(type) {
case *types.LogSourceResourceMemberAwsLogSource:
_ = v.Value // Value is types.AwsLogSourceResource
case *types.LogSourceResourceMemberCustomLogSource:
_ = v.Value // Value is types.CustomLogSourceResource
case *types.UnknownUnionMember:
fmt.Println("unknown tag:", v.Tag)
default:
fmt.Println("union is nil or unknown type")
}
}
Output:
type LogSourceResourceMemberAwsLogSource ¶ added in v1.4.0
type LogSourceResourceMemberAwsLogSource struct {
Value AwsLogSourceResource
// contains filtered or unexported fields
}
Amazon Security Lake supports log and event collection for natively supported Amazon Web Services services. For more information, see the Amazon Security Lake User Guide.
type LogSourceResourceMemberCustomLogSource ¶ added in v1.4.0
type LogSourceResourceMemberCustomLogSource struct {
Value CustomLogSourceResource
// contains filtered or unexported fields
}
Amazon Security Lake supports custom source types. For more information, see the Amazon Security Lake User Guide.
type NotificationConfiguration ¶ added in v1.4.0
type NotificationConfiguration interface {
// contains filtered or unexported methods
}
Specify the configurations you want to use for subscriber notification to notify the subscriber when new data is written to the data lake for sources that the subscriber consumes in Security Lake.
The following types satisfy this interface:
NotificationConfigurationMemberHttpsNotificationConfiguration NotificationConfigurationMemberSqsNotificationConfiguration
Example (OutputUsage) ¶
package main
import (
"fmt"
"github.com/aws/aws-sdk-go-v2/service/securitylake/types"
)
func main() {
var union types.NotificationConfiguration
// type switches can be used to check the union value
switch v := union.(type) {
case *types.NotificationConfigurationMemberHttpsNotificationConfiguration:
_ = v.Value // Value is types.HttpsNotificationConfiguration
case *types.NotificationConfigurationMemberSqsNotificationConfiguration:
_ = v.Value // Value is types.SqsNotificationConfiguration
case *types.UnknownUnionMember:
fmt.Println("unknown tag:", v.Tag)
default:
fmt.Println("union is nil or unknown type")
}
}
Output:
type NotificationConfigurationMemberHttpsNotificationConfiguration ¶ added in v1.4.0
type NotificationConfigurationMemberHttpsNotificationConfiguration struct {
Value HttpsNotificationConfiguration
// contains filtered or unexported fields
}
The configurations used for HTTPS subscriber notification.
type NotificationConfigurationMemberSqsNotificationConfiguration ¶ added in v1.4.0
type NotificationConfigurationMemberSqsNotificationConfiguration struct {
Value SqsNotificationConfiguration
// contains filtered or unexported fields
}
The configurations for SQS subscriber notification.
type ResourceNotFoundException ¶
type ResourceNotFoundException struct {
Message *string
ErrorCodeOverride *string
ResourceName *string
ResourceType *string
// contains filtered or unexported fields
}
The resource could not be found.
func (*ResourceNotFoundException) Error ¶
func (e *ResourceNotFoundException) Error() string
func (*ResourceNotFoundException) ErrorCode ¶
func (e *ResourceNotFoundException) ErrorCode() string
func (*ResourceNotFoundException) ErrorFault ¶
func (e *ResourceNotFoundException) ErrorFault() smithy.ErrorFault
func (*ResourceNotFoundException) ErrorMessage ¶
func (e *ResourceNotFoundException) ErrorMessage() string
type SourceCollectionStatus ¶ added in v1.4.0
type SourceCollectionStatus string
const ( SourceCollectionStatusCollecting SourceCollectionStatus = "COLLECTING" SourceCollectionStatusMisconfigured SourceCollectionStatus = "MISCONFIGURED" SourceCollectionStatusNotCollecting SourceCollectionStatus = "NOT_COLLECTING" )
Enum values for SourceCollectionStatus
func (SourceCollectionStatus) Values ¶ added in v1.4.0
func (SourceCollectionStatus) Values() []SourceCollectionStatus
Values returns all known values for SourceCollectionStatus. Note that this can be expanded in the future, and so it is only as up to date as the client.
The ordering of this slice is not guaranteed to be stable across updates.
type SqsNotificationConfiguration ¶ added in v1.4.0
type SqsNotificationConfiguration struct {
// contains filtered or unexported fields
}
The configurations used for EventBridge subscriber notification.
type SubscriberResource ¶
type SubscriberResource struct {
// Amazon Security Lake supports log and event collection for natively supported
// Amazon Web Services services. For more information, see the [Amazon Security Lake User Guide].
//
// [Amazon Security Lake User Guide]: https://docs.aws.amazon.com/security-lake/latest/userguide/source-management.html
//
// This member is required.
Sources []LogSourceResource
// The subscriber ARN of the Amazon Security Lake subscriber account.
//
// This member is required.
SubscriberArn *string
// The subscriber ID of the Amazon Security Lake subscriber account.
//
// This member is required.
SubscriberId *string
// The Amazon Web Services identity used to access your data.
//
// This member is required.
SubscriberIdentity *AwsIdentity
// The name of your Amazon Security Lake subscriber account.
//
// This member is required.
SubscriberName *string
// You can choose to notify subscribers of new objects with an Amazon Simple Queue
// Service (Amazon SQS) queue or through messaging to an HTTPS endpoint provided by
// the subscriber.
//
// Subscribers can consume data by directly querying Lake Formation tables in your
// Amazon S3 bucket through services like Amazon Athena. This subscription type is
// defined as LAKEFORMATION .
AccessTypes []AccessType
// The date and time when the subscriber was created.
CreatedAt *time.Time
// RAM resource share. Before accepting the RAM resource share invitation, you can
// view details related to the RAM resource share.
//
// This field is available only for Lake Formation subscribers created after March
// 8, 2023.
ResourceShareArn *string
ResourceShareName *string
// The Amazon Resource Name (ARN) specifying the role of the subscriber.
RoleArn *string
// The ARN for the Amazon S3 bucket.
S3BucketArn *string
// The subscriber descriptions for a subscriber account. The description for a
// subscriber includes subscriberName , accountID , externalID , and subscriberId .
SubscriberDescription *string
// The subscriber endpoint to which exception messages are posted.
SubscriberEndpoint *string
// The subscriber status of the Amazon Security Lake subscriber account.
SubscriberStatus SubscriberStatus
// The date and time when the subscriber was last updated.
UpdatedAt *time.Time
// contains filtered or unexported fields
}
Provides details about the Amazon Security Lake account subscription. Subscribers are notified of new objects for a source as the data is written to your Amazon S3 bucket for Security Lake.
type SubscriberStatus ¶ added in v1.4.0
type SubscriberStatus string
const ( SubscriberStatusActive SubscriberStatus = "ACTIVE" SubscriberStatusDeactivated SubscriberStatus = "DEACTIVATED" SubscriberStatusPending SubscriberStatus = "PENDING" SubscriberStatusReady SubscriberStatus = "READY" )
Enum values for SubscriberStatus
func (SubscriberStatus) Values ¶ added in v1.4.0
func (SubscriberStatus) Values() []SubscriberStatus
Values returns all known values for SubscriberStatus. Note that this can be expanded in the future, and so it is only as up to date as the client.
The ordering of this slice is not guaranteed to be stable across updates.
type Tag ¶ added in v1.5.0
type Tag struct {
// The name of the tag. This is a general label that acts as a category for a more
// specific tag value ( value ).
//
// This member is required.
Key *string
// The value that’s associated with the specified tag key ( key ). This value acts
// as a descriptor for the tag key. A tag value cannot be null, but it can be an
// empty string.
//
// This member is required.
Value *string
// contains filtered or unexported fields
}
A tag is a label that you can define and associate with Amazon Web Services resources, including certain types of Amazon Security Lake resources. Tags can help you identify, categorize, and manage resources in different ways, such as by owner, environment, or other criteria. You can associate tags with the following types of Security Lake resources: subscribers, and the data lake configuration for your Amazon Web Services account in individual Amazon Web Services Regions.
A resource can have up to 50 tags. Each tag consists of a required tag key and an associated tag value. A tag key is a general label that acts as a category for a more specific tag value. Each tag key must be unique and it can have only one tag value. A tag value acts as a descriptor for a tag key. Tag keys and values are case sensitive. They can contain letters, numbers, spaces, or the following symbols: _ . : / = + @ -
For more information, see Tagging Amazon Security Lake resources in the Amazon Security Lake User Guide.
type ThrottlingException ¶
type ThrottlingException struct {
Message *string
ErrorCodeOverride *string
ServiceCode *string
QuotaCode *string
RetryAfterSeconds *int32
// contains filtered or unexported fields
}
The limit on the number of requests per second was exceeded.
func (*ThrottlingException) Error ¶
func (e *ThrottlingException) Error() string
func (*ThrottlingException) ErrorCode ¶
func (e *ThrottlingException) ErrorCode() string
func (*ThrottlingException) ErrorFault ¶
func (e *ThrottlingException) ErrorFault() smithy.ErrorFault
func (*ThrottlingException) ErrorMessage ¶
func (e *ThrottlingException) ErrorMessage() string
type UnknownUnionMember ¶
type UnknownUnionMember struct {
Tag string
Value []byte
// contains filtered or unexported fields
}
UnknownUnionMember is returned when a union member is returned over the wire, but has an unknown tag.
Source Files